Class-8

Class 8 – OS Security

This lecture introduces the concepts of operating system hardening, security features across different operating systems, and the fundamentals of auditing and logging.

Key Topics Covered:

OS Hardening Overview
OS hardening is the process of securing an operating system by reducing its attack surface. It involves removing unnecessary services, applying patches, enabling strong authentication, managing file permissions, logging, and following the Principle of Least Privilege. Hardening prevents exploitation, improves resilience, and ensures compliance with standards.

OS Security Features
Windows: Built-in tools like Windows Defender, Firewall, BitLocker, and Security Center help enhance security.
Kali Linux: AppArmor, unattended upgrades, and fail2ban protect against intrusions.
macOS: Gatekeeper, FileVault, built-in firewall, and XProtect defend against malware.

Malware and Defense Tools
Each OS faces common malware threats. The lecture covers defense tools like anti-virus, firewalls, intrusion detection systems, and regular security updates.

Auditing and Logs
Auditing tracks system events to detect suspicious activity, ensure compliance, and assist in incident response.
Logs record important system data. Knowing where logs are stored is crucial:

Windows: Event Viewer
Kali Linux: /var/log/
macOS: Console.app and /var/log/system.log

The session emphasizes OS hardening as an essential practice to prevent breaches and maintain system integrity. Logging and auditing help in early detection of incidents and serve as valuable tools for monitoring, forensics, and compliance.