





{"id":6525,"date":"2026-07-04T10:09:52","date_gmt":"2026-07-04T02:09:52","guid":{"rendered":"https:\/\/www.killtest.hk\/?p=6525"},"modified":"2026-07-04T10:09:52","modified_gmt":"2026-07-04T02:09:52","slug":"lpi-303-300%ef%bc%88lpic-3-security%ef%bc%89%e8%aa%8d%e8%ad%89%e8%80%83%e8%a9%a6%e8%a7%a3%e6%9e%90","status":"publish","type":"post","link":"https:\/\/www.killtest.hk\/index.php\/killtest\/lpi-303-300%ef%bc%88lpic-3-security%ef%bc%89%e8%aa%8d%e8%ad%89%e8%80%83%e8%a9%a6%e8%a7%a3%e6%9e%90\/","title":{"rendered":"LPI 303-300\uff08LPIC-3 Security\uff09\u8a8d\u8b49\u8003\u8a66\u89e3\u6790"},"content":{"rendered":"\n<p>\u4e00\u3001\u8003\u8a66\u57fa\u672c\u8cc7\u8a0a<br>\u8a8d\u8b49\u540d\u7a31\uff1aLPIC-3 Security<br>\u8003\u8a66\u4ee3\u78bc\uff1a<a href=\"https:\/\/www.killtest.net\/LPIC-3\/303-300.asp\">303-300<\/a><br>\u767c\u8b49\u6a5f\u69cb\uff1aLinux Professional Institute<br>\u7b49\u7d1a\u5b9a\u4f4d\uff1aLPIC-3 \u9ad8\u7d1a Linux \u5b89\u5168\u7ba1\u7406\u5c08\u5bb6<br>\u8003\u8a66\u985e\u578b\uff1a\u591a\u9078\u984c\uff08Multiple Choice + Scenario\uff09<br>\u8003\u8a66\u8a9e\u8a00\uff1a\u82f1\u6587\u70ba\u4e3b\uff08\u90e8\u5206\u5730\u5340\u63d0\u4f9b\u591a\u8a9e\u8a00\uff09<br>\u6642\u9593\u9650\u5236\uff1a90 \u5206\u9418<br>\u984c\u91cf\uff1a\u7d04 60 \u984c\uff08\u4f9d\u7248\u672c\u7565\u6709\u5dee\u7570\uff09<br>\u901a\u904e\u65b9\u5f0f\uff1a\u55ae\u79d1\u901a\u904e\u5236\uff08LPIC-3 \u7121\u9700\u591a\u79d1\u7d44\u5408\uff09<br><br>\u4e8c\u3001\u8003\u8a66\u5b9a\u4f4d\u8207\u96e3\u5ea6\u5206\u6790<br>LPIC-3 \u662f Linux Professional Institute \u7684\u6700\u9ad8\u7d1a\u5225\u8a8d\u8b49\u4e4b\u4e00\u3002303-300\uff08Security\uff09\u4e3b\u8981\u805a\u7126\uff1aLinux \u4f01\u696d\u7d1a\u5b89\u5168\u67b6\u69cb\u8a2d\u8a08<br>\u5bc6\u78bc\u5b78\u8207\u6191\u8b49\u7cfb\u7d71<br>\u5b58\u53d6\u63a7\u5236\u8207\u5f37\u5236\u5b58\u53d6\u63a7\u5236\uff08MAC\uff09<br>\u5165\u4fb5\u9632\u8b77\u8207\u6ef2\u900f\u6e2c\u8a66\u6982\u5ff5<br>\u7db2\u8def\u5b89\u5168\u9632\u8b77\u6280\u8853<\/p>\n\n\n\n<p>\u96e3\u5ea6\u8a55\u50f9\uff1a4\u661f\uff08\u504f\u9ad8\uff09<br>\u504f\u300c\u67b6\u69cb + \u5b89\u5168\u8a2d\u8a08\u300d\u800c\u4e0d\u662f\u55ae\u7d14\u6307\u4ee4\u984c<br>\u975e\u7d14\u64cd\u4f5c\u578b\u8003\u8a66\uff0c\u66f4\u504f\u5411\u4f01\u696d\u5b89\u5168\u601d\u7dad<br><br>\u4e09\u3001\u8003\u8a66\u5927\u7db1\u8207\u6b0a\u91cd\u89e3\u6790\uff08\u6838\u5fc3\u91cd\u9ede\uff09<br>1. \u52a0\u5bc6\u8207\u6191\u8b49\u7cfb\u7d71\uff08Cryptography\uff09\u6b0a\u91cd\uff1a\u7d04 30%<br>\u91cd\u9ede\u5167\u5bb9\uff1aX.509 \u6191\u8b49\u8207 PKI \u67b6\u69cb<br>SSL\/TLS \u6191\u8b49\u6d41\u7a0b<br>DNSSEC \u5b89\u5168\u89e3\u6790\u6a5f\u5236<br>OpenSSL \u5de5\u5177\u4f7f\u7528<br>CA\uff08\u6191\u8b49\u6388\u6b0a\u4e2d\u5fc3\uff09\u7ba1\u7406<br>\u6191\u8b49\u7c3d\u767c\u8207\u64a4\u92b7<\/p>\n\n\n\n<p>\u5e38\u898b\u5de5\u5177\uff1a<br>openssl<br>dnssec-keygen<br>dig \/ delv<br>2. \u5b58\u53d6\u63a7\u5236\u8207\u6b0a\u9650\u5b89\u5168\uff08Access Control\uff09\u6b0a\u91cd\uff1a\u7d04 20%\u91cd\u9ede\u5167\u5bb9\uff1aLinux \u6a94\u6848\u6b0a\u9650\uff08rwx\uff09<br>SUID \/ SGID \/ Sticky Bit<br>ACL\uff08Access Control List\uff09<br>Extended Attributes\uff08xattr\uff09<br>\u6a94\u6848\u6b0a\u9650\u8a2d\u8a08\u8207\u6392\u932f<\/p>\n\n\n\n<p>\u5e38\u898b\u5de5\u5177\uff1achmod \/ chown<br>getfacl \/ setfacl<br>3. \u5f37\u5236\u5b58\u53d6\u63a7\u5236\uff08MAC\uff09<br>\u6b0a\u91cd\uff1a\u7d04 20%<\/p>\n\n\n\n<p>\u91cd\u9ede\u5167\u5bb9\uff1a<br>SELinux \u6df1\u5ea6\u7406\u89e3\u8207\u64cd\u4f5c<br>DAC vs MAC vs RBAC \u5dee\u7570<br>AppArmor \/ Smack \u57fa\u672c\u6982\u5ff5<br>SELinux policy \u7ba1\u7406\u8207\u6545\u969c\u6392\u9664<\/p>\n\n\n\n<p>\u5e38\u898b\u5de5\u5177\uff1a<br>getenforce \/ setenforce<br>sestatus<br>semanage<br>audit2allow<br>4. \u7cfb\u7d71\u8207\u7db2\u8def\u653b\u64ca\u6a21\u578b\uff08Threats\uff09<br>\u6b0a\u91cd\uff1a\u7d04 15%<\/p>\n\n\n\n<p>\u91cd\u9ede\u5167\u5bb9\uff1a<br>DoS \/ DDoS \u653b\u64ca<br>Man-in-the-Middle<br>ARP \/ IP spoofing<br>SQL Injection \/ XSS \/ CSRF<br>Rootkit \/ Trojan \/ Keylogger<br>Password attacks\uff08brute force \/ rainbow table\uff09<\/p>\n\n\n\n<p>\u7279\u9ede\uff1a<br>\u504f\u6982\u5ff5\u984c\uff0c\u4e0d\u8003\u5be6\u4f5c\u653b\u64ca\uff0c\u53ea\u8003\u7406\u89e3<\/p>\n\n\n\n<p>5. \u6ef2\u900f\u6e2c\u8a66\u8207\u5b89\u5168\u5de5\u5177\uff08Penetration Testing\uff09<br>\u6b0a\u91cd\uff1a\u7d04 15%<br>\u91cd\u9ede\u5167\u5bb9\uff1a<br>\u6ef2\u900f\u6e2c\u8a66\u6d41\u7a0b\uff08Recon \u2192 Exploit \u2192 Privilege Escalation\uff09<br>Nmap \u6383\u63cf\u6280\u8853<br>Metasploit \u67b6\u69cb<br>\u57fa\u790e Kali Linux \u5de5\u5177\u8a8d\u8b58<\/p>\n\n\n\n<p>\u5e38\u898b\u5de5\u5177\uff1a<br>nmap<br>metasploit framework<br>\u56db\u3001\u8003\u8a66\u7279\u9ede\u7e3d\u7d50<br>1. \u504f\u300c\u67b6\u69cb\u8a2d\u8a08\u300d\u800c\u975e\u64cd\u4f5c\u8a18\u61b6<br>\u4e0d\u50cf LPIC-1\/2 \u4ee5\u6307\u4ee4\u70ba\u4e3b\uff0c303-300 \u66f4\u504f\uff1a<br>\u5b89\u5168\u67b6\u69cb\u8a2d\u8a08<br>\u653b\u64ca\u9762\u5206\u6790<br>\u7cfb\u7d71\u9632\u8b77\u7b56\u7565<br> 2. \u6982\u5ff5\u984c\u6bd4\u4f8b\u9ad8<br>\u5e38\u898b\u984c\u578b\uff1a<br>\u54ea\u7a2e MAC \u6a21\u578b\u9069\u5408\u4f01\u696d\u74b0\u5883\uff1f<br>SELinux \u7684 enforcing vs permissive \u5dee\u7570<br>DNSSEC \u7684\u5b89\u5168\u6a5f\u5236<br>3. Linux \u6307\u4ee4\u4ecd\u7136\u91cd\u8981\uff0c\u4f46\u4e0d\u662f\u6838\u5fc3<br>\u6703\u8003\uff1a<br>openssl<br>chmod \/ ACL<br>SELinux \u5de5\u5177<\/p>\n\n\n\n<p>\u4f46\u4e0d\u6703\u50cf LPIC-1 \u90a3\u6a23\u7d30\u7bc0\u6307\u4ee4\u9677\u9631\u984c\u3002<\/p>\n\n\n\n<p>\u4e94\u3001\u5b78\u7fd2\u5efa\u8b70\u8def\u7dda<br>\u7b2c\u4e00\u968e\u6bb5\uff1aLinux \u5b89\u5168\u57fa\u790e<br>Linux permission model<br>ACL<br>\u57fa\u790e\u7db2\u8def\u5b89\u5168\u6982\u5ff5<br>\u7b2c\u4e8c\u968e\u6bb5\uff1aSELinux \u6df1\u5165<br>policy \/ context \/ mode<br>audit log \u6392\u932f<br>\u7b2c\u4e09\u968e\u6bb5\uff1a\u7db2\u8def\u653b\u64ca\u8207\u9632\u8b77<br>MITM \/ spoofing \/ injection<br>firewall \/ security design<br>\u7b2c\u56db\u968e\u6bb5\uff1a\u6ef2\u900f\u6e2c\u8a66\u6982\u5ff5<br>nmap<br>Metasploit \u57fa\u672c\u6d41\u7a0b<br>\u516d\u3001\u9069\u5408\u5831\u8003\u4eba\u7fa4<br>\u2714 Linux \u7cfb\u7d71\u5de5\u7a0b\u5e2b<br>\u2714 DevOps \/ SRE \u5de5\u7a0b\u5e2b<br>\u2714 \u8cc7\u5b89\u5de5\u7a0b\u5e2b\uff08Security Engineer\uff09<br>\u2714 \u60f3\u8f49\u4f01\u696d\u7d1a\u5b89\u5168\u67b6\u69cb\u7684\u4eba<\/p>\n\n\n\n<p>\u4e03\u3001\u8207\u5176\u4ed6 LPIC-3 \u8003\u8a66\u6bd4\u8f03<br>\u8003\u8a66 \u4e3b\u984c \u7279\u9ede<br>303-300 Security \u8cc7\u5b89 \/ SELinux \/ \u52a0\u5bc6<br>300-300 Mixed Environments Samba \/ AD \/ Windows\u6574\u5408<br>305-300 Virtualization KVM \/ Containers<\/p>\n\n\n\n<p>\u516b\u3001\u8003\u8a66\u50f9\u503c\u5206\u6790\uff082026\u89c0\u9ede\uff09<br>\u73fe\u5be6\u8077\u5834\u50f9\u503c\uff1a<br>\u4e2d\u5927\u578b\u4f01\u696d Linux \u5b89\u5168\u7ba1\u7406\u4ecd\u7136\u9700\u8981<br>SELinux + compliance\uff08\u5408\u898f\uff09\u9700\u6c42\u4e0a\u5347<br>DevSecOps \u8da8\u52e2\u63a8\u52d5\u9700\u6c42<br>\u4f46\u6ce8\u610f\uff1a<br>\u96f2\u7aef\uff08AWS\/Azure security\uff09\u5f71\u97ff\u529b\u4e0a\u5347<br>LPIC-3 \u504f\u50b3\u7d71 Linux on-prem \u67b6\u69cb<\/p>\n\n\n\n<p>\u4e5d\u3001\u7e3d\u7d50<br>LPI 303-300 \u662f\u4e00\u5f35\uff1a<br>\u504f\u300cLinux \u8cc7\u5b89\u67b6\u69cb\u8a2d\u8a08 + \u7cfb\u7d71\u9632\u8b77\u300d\u7684\u9ad8\u968e\u8b49\u7167<br>\u4e0d\u53ea\u662f\u64cd\u4f5c\uff0c\u66f4\u662f\u5b89\u5168\u601d\u7dad\u8207\u8a2d\u8a08\u80fd\u529b\u8003\u9a57<br>\u9069\u5408\u60f3\u9032\u5165\u4f01\u696d\u8cc7\u5b89\u6216 DevSecOps \u7684\u5de5\u7a0b\u5e2b<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u4e00\u3001\u8003\u8a66\u57fa\u672c\u8cc7\u8a0a\u8a8d\u8b49\u540d\u7a31\uff1aLPIC-3 Security\u8003\u8a66\u4ee3\u78bc\uff1a303-300\u767c\u8b49\u6a5f\u69cb\uff1aLinux Prof [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6525","post","type-post","status-publish","format-standard","hentry","category-killtest"],"_links":{"self":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6525","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/comments?post=6525"}],"version-history":[{"count":1,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6525\/revisions"}],"predecessor-version":[{"id":6526,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6525\/revisions\/6526"}],"wp:attachment":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/media?parent=6525"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/categories?post=6525"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/tags?post=6525"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}