Merge pull request #135 from TrevorSmale/U9

First Pass

Author: kolkhis

src/u9lab.md

@@ -1,28 +1,52 @@
 <div class="flex-container">
         <img src="https://github.com/ProfessionalLinuxUsersGroup/img/blob/main/Assets/Logos/ProLUG_Round_Transparent_LOGO.png?raw=true" width="64" height="64"></img>
     <p>
-        <h1>Under Construction</h1>
+        <h1>Unit 9 Lab - Certificate and Key Madness</h1>
     </p>
 </div>
 
-> If you are unable to finish the lab in the ProLUG lab environment we ask you `reboot`
-> the machine from the command line so that other students will have the intended environment.
+## Lab 🧪
 
-### Required Materials
-
-Putty or other connection tool Lab Server
-
-Root or sudo command access
-
-STIG Viewer 2.18 (download from <https://public.cyber.mil/stigs/downloads/> )
+These labs focus on pulling metric information and then visualizing that data quickly on dashboards for real time analysis.
 
 #### Downloads
 
-The lab has been provided below. The document(s) can be transposed to
+The worksheet has been provided below. The document(s) can be transposed to
 the desired format so long as the content is preserved. For example, the `.txt`
 could be transposed to a `.md` file.
 
-- <a href="./assets/downloads/u9/u9_lab.txt" target="_blank" download>📥 u9_lab(`.txt`)</a>
-- <a href="./assets/downloads/u9/u9_lab.docx" target="_blank" download>📥 u9_lab(`.docx`)</a>
+- <a href="./assets/downloads/u9/u9_lab.txt" target="_blank" download>📥 u9_worksheet(`.txt`)</a>
+- <a href="./assets/downloads/u9/u9_lab.pdf" target="_blank" download>📥 u9_worksheet(`.pdf`)</a>
+
+### Setting up Rsyslog with TLS
+
+1. Complete the lab: <https://killercoda.com/het-tanis/course/Linux-Labs/211-setting-up-rsyslog-with-tls>
+
+### Review Solving the Bottom Turtle
+
+1. Review pages 41-48 of <https://spiffe.io/pdf/Solving-the-bottom-turtle-SPIFFE-SPIRE-Book.pdf>
+    - Does the diagram on page 44 make sense to you for what you did with a certificate authority in this lab?
+
+### SSH – Public and Private key pairs
+
+Complete the lab: <https://killercoda.com/het-tanis/course/Linux-Labs/212-public-private-keys-with-ssh>
+
+1. Complete the lab here: <https://killercoda.com/het-tanis/course/Linux-Labs/110-fail2ban-with-metric-alerting>
+
+   - What is the significance of they permission settings that you saw on the generated
+public and private key pairs?
+
+## Digging Deeper challenge (not required for finishing lab)
+
+1. Complete the following labs and see if they reinforce any of your understanding of certificates with
+the use of Kubernetes.
+
+    - <https://killercoda.com/killer-shell-cks/scenario/certificate-signing-requests-sign-manually>
+
+    - <https://killercoda.com/killer-shell-cks/scenario/certificate-signing-requests-sign-k8s>
+
+2. Read the rest of <https://spiffe.io/pdf/Solving-the-bottom-turtle-SPIFFE-SPIRE-Book.pdf>
+    
+    - How does that align with your understanding of zero-trust? if you haven't read about zero-trust, start here:
 
-> Be sure to `reboot` the lab machine from the command line when you are done.
+    - <https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-207.pdf>

src/u9ws.md

@@ -1,6 +1,110 @@
 <div class="flex-container">
         <img src="https://github.com/ProfessionalLinuxUsersGroup/img/blob/main/Assets/Logos/ProLUG_Round_Transparent_LOGO.png?raw=true" width="64" height="64"></img>
     <p>
-        <h1>Under Construction</h1>
+        <h1>Unit 9 Worksheet - Certificate and Key Madness</h1>
     </p>
 </div>
+
+## Instructions
+
+---
+
+Fill out this sheet as you progress through the lab and discussions. Hold your worksheets until
+the end to turn them in as a final submission packet.
+
+### Resources / Important Links
+
+- <https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf/>
+- <https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r2.pdf/>
+- <https://www.sans.org/information-security-policy/>
+- <https://www.sans.org/blog/the-ultimate-list-of-sans-cheat-sheets/>
+- <https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf>
+- <https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r2.pdf>
+
+
+#### Downloads
+
+The worksheet has been provided below. The document(s) can be transposed to
+the desired format so long as the content is preserved. For example, the `.txt`
+could be transposed to a `.md` file.
+
+- <a href="./assets/downloads/u9/u9_worksheet.txt" target="_blank" download>📥 u9_worksheet(`.txt`)</a>
+- <a href="./assets/downloads/u9/u9_worksheet.pdf" target="_blank" download>📥 u9_worksheet(`.pdf`)</a>
+
+### Unit 9 Recording
+
+- Coming Soon
+
+#### Discussion Post #1
+
+Read the Security Services section, pages 22-23 of
+https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf and
+answer the following questions.
+
+1. How do these topics align with what you already know about system security?
+
+2. Were any of the terms or concepts new to you?
+
+<div class="warning">
+
+Submit your input by following the link below.
+
+The discussion posts are done in Discord Forums.
+
+</div>
+
+- [Link to Discussion Forum](https://discord.com/channels/611027490848374811/1377483939706310736)
+
+#### Discussion Post #2
+
+Review the TLS Overview section, pages 4-7 of https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r2.pdf and answer the following questions.
+
+1. What are the three subprotocols of TLS?
+
+2. How does TLS apply
+
+    - Confidentiality
+    - Integrity
+    - Authentication
+    - Anti-replay
+
+<div class="warning">
+
+Submit your input by following the link below.
+
+The discussion posts are done in Discord Forums.
+
+</div>
+
+- [Link to Discussion Forum](https://discord.com/channels/611027490848374811/1377484046757662801)
+
+## Definitions
+
+---
+
+- TLS
+- Symmetric Keys
+- Asymmetric Keys
+- Non-Repudiation
+- Anti-Replay
+- Plaintext
+- Cyphertext
+- Fingerprints
+- Passphrase (in key generation)
+
+## Digging Deeper
+
+---
+
+1. Finish reading about TLS in the publication and think about where you might apply it.
+
+## Reflection Questions
+
+---
+
+1. What were newer topics to you, or alternatively what was a new application of
+something you already had heard about?
+
+2. What questions do you still have about this week?
+
+3. How are you going to use what you've learned in your current role?