Linux Administration: A Beginner s Guide, Seventh Edition
1st Edition
Published on 22. December 2015
883 pages
978-0-07-184537-3 (ISBN)
Available for download
Description
Now with a virtual machine showcasing the book's test system configuration, Linux Administration: A Beginner's Guide, Seventh Edition teaches system administrators how to set-up and configure Linux quickly and easily. Effectively set up and manage any version of Linux on individual servers or entire networks using this practical resource. Fully updated to cover the latest tools and techniques, Linux Administration: A Beginner s Guide, Seventh Edition features clear explanations, step-by-step instructions, and real-world examples. Find out how to configure hardware and software, work from the GUI or command line, maintain Internet and network services, and secure your data. Performance tuning, virtualization, containers, software management, and backup solutions are covered in detail. Install and configure Linux, including the latest distributions from Fedora, Ubuntu, CentOS, openSUSE, Debian, and RHEL Manage users, permissions, files, folders, and applications Set up and administer system services and daemons Manage software from source code or binary packages Customize, build, or patch the Linux kernel Work with physical and virtual file systems, such as proc, SysFS, and cgroup Understand networking protocols, including TCP/IP, ARP, IPv4, and IPv6 Build reliable firewalls and routers with Netfilter (iptables and nftables) and Linux Monitor and test network activity and minimize security threats Create and maintain DNS, FTP, web, e-mail, print, LDAP, and VoIP servers Share resources using GlusterFS, NFS, and Samba Implement popular cloud-based technologies using Linux virtualization and containers using KVM and Docker
More details
Other editions
Additional editions
Book
02/2016
7th Edition
McGraw-Hill Professional
€39.60
Article exhausted; check for reprint
Content
- Cover Page
- Title Page
- Copyright Page
- Dedication
- About the Author
- At a Glance
- Contents
- Acknowledgments
- Introduction
- PART I Introduction, Installation, and Software Management
- 1 Technical Summary of Linux Distributions
- Linux: The Operating System
- What Is Open Source Software and GNU All About?
- What Is the GNU Public License?
- Upstream and Downstream
- The Advantages of Open Source Software
- Understanding the Differences Between Windows and Linux
- Single Users vs. Multiple Users vs. Network Users
- The Monolithic Kernel and the Micro-Kernel
- Separation of the GUI and the Kernel
- My Network Places
- The Registry vs. Text Files
- Domains and Active Directory
- Summary
- 2 Installing Linux in a Server Configuration
- Hardware and Environmental Considerations
- Server Design
- Uptime
- Methods of Installation
- Installing Fedora
- Project Prerequisites
- The Installation
- Installation Summary
- Localization Section
- Software Section
- System Section
- Start the Installation, Set the Root Password, and Create a User Account
- Complete the Installation
- Log In
- Installing Ubuntu Server
- Start the Installation
- Configure the Network
- Set Up Users and Passwords
- Configure the Time Zone
- Set Up the Disk Partition
- Other Miscellaneous Tasks
- Summary
- 3 The Command Line
- An Introduction to Bash
- Job Control
- Environment Variables
- Pipes
- Redirection
- Command-Line Shortcuts
- Filename Expansion
- Environment Variables as Parameters
- Multiple Commands
- Backticks
- Documentation Tools
- The man Command
- The texinfo System
- Files, File Types, File Ownership, and File Permissions
- Normal Files
- Directories
- Hard Links
- Symbolic Links
- Block Devices
- Character Devices
- Named Pipes
- Listing Files: ls
- Change Ownership: chown
- Change Group: chgrp
- Change Mode: chmod
- File Management and Manipulation
- Copy Files: cp
- Move Files: mv
- Link Files: ln
- Find a File: find
- File Compression: gzip
- File Compression: bzip2
- File Compression: xz
- Create a Directory: mkdir
- Remove a Directory: rmdir
- Show Present Working Directory: pwd
- Tape Archive: tar
- Concatenate Files: cat
- Display a File One Screen at a Time: more
- Show the Directory Location of a File: which
- Locate a Command: whereis
- Editors
- vi
- emacs
- joe
- pico
- Miscellaneous Tools
- Disk Utilization: du
- Disk Free: df
- Synchronize Disks: sync
- List Processes: ps
- Show an Interactive List of Processes: top
- Send a Signal to a Process: kill
- Show System Name: uname
- Who Is Logged In: who
- A Variation on who: w
- Switch User: su
- Putting It All Together (Moving a User and Its Home Directory)
- Summary
- 4 Managing Software
- The Red Hat Package Manager
- Managing Software Using RPM
- Querying for Information the RPM Way (Getting to Know One Another)
- Installing Software with RPM (Moving in Together)
- Uninstalling Software with RPM (Ending the Relationship)
- Other Things RPM Can Do
- Yum
- DNF
- GUI RPM Package Managers
- Fedora
- openSUSE and SLE
- The Debian Package Management System
- APT
- Software Management in Ubuntu
- Querying for Information
- Installing Software in Ubuntu
- Removing Software in Ubuntu
- Compile and Install GNU Software
- Getting and Unpacking the Source Package
- Looking for Documentation
- Configuring the Package
- Compiling the Package
- Installing the Package
- Testing the Software
- Cleanup
- Common Problems When Building from Source Code
- Problems with Libraries
- Missing Configure Script
- Broken Source Code
- Summary
- PART II Single-Host Administration
- 5 Managing Users and Groups
- What Exactly Constitutes a User?
- Where User Information Is Kept
- The /etc/passwd File
- The /etc/shadow File
- The /etc/group File
- User Management Tools
- Command-Line User Management
- GUI User Managers
- Users and Access Permissions
- Understanding SetUID and SetGID Programs
- Sticky Bit
- Pluggable Authentication Modules
- How PAM Works
- PAM's Files and Their Locations
- Configuring PAM
- An Example PAM Configuration File
- The "Other" File
- D'oh! I Can't Log In!
- Debugging PAM
- A Grand Tour
- Creating Users with useradd
- Creating Groups with groupadd
- Modifying User Attributes with usermod
- Modifying Group Attributes with groupmod
- Deleting Users and Groups with userdel and groupdel
- Summary
- 6 Booting and Shutting Down
- Boot Loaders
- GRUB Legacy
- GRUB 2
- LILO
- Bootstrapping
- The init Process
- rc Scripts
- Writing Your Own rc Script
- Enabling and Disabling Services
- Enabling a Service
- Disabling a Service
- Graphical Service Managers
- Odds and Ends of Booting and Shutting Down
- fsck!
- Booting into Single-User ("Recovery") Mode
- Summary
- 7 File Systems
- The Makeup of File Systems
- i-Nodes
- Blocks
- Superblocks
- ext3
- ext4
- Btrfs
- XFS
- Which File System Should You Use?
- Managing File Systems
- Mounting and Unmounting Local Disks
- Using fsck
- Adding a New Disk
- Overview of Partitions
- Traditional Disk and Partition Naming Conventions
- Volume Management
- Creating Partitions and Logical Volumes
- Creating File Systems
- Summary
- 8 Core System Services
- The init Daemon
- upstart: Die init. Die Now!
- xinetd and inetd
- The /etc/xinetd.conf File
- Examples: A Simple Service Entry and Enabling/Disabling a Service
- The Logging Daemon
- rsyslogd
- systemd-journald (journald)
- The cron Program
- The crontab File
- Editing the crontab File
- Summary
- 9 The Linux Kernel
- What Exactly Is a Kernel?
- Finding the Kernel Source Code
- Getting the Correct Kernel Version
- Unpacking the Kernel Source Code
- Building the Kernel
- Preparing to Configure the Kernel
- Kernel Configuration
- Compiling the Kernel
- Installing the Kernel
- Booting the Kernel
- The Author Lied-It Didn't Work!
- Patching the Kernel
- Downloading and Applying Patches
- If the Patch Worked
- If the Patch Didn't Work
- Summary
- 10 Knobs and Dials: API (Virtual) File Systems
- What's Inside the /proc Directory?
- Tweaking Files Inside of /proc
- Some Useful /proc Entries
- Enumerated /proc Entries
- Common proc Settings and Reports
- SYN Flood Protection
- Issues on High-Volume Servers
- Debugging Hardware Conflicts
- SysFS
- cgroupfs
- tmpfs
- tmpfs Example
- Summary
- PART III Networking and Security
- 11 TCP/IP for System Administrators
- The Layers
- Packets
- TCP/IP Model and the OSI Model
- Headers
- Ethernet
- IP (IPv4)
- TCP
- UDP
- A Complete TCP Connection
- Opening a Connection
- Transferring Data
- Closing the Connection
- How ARP Works
- The ARP Header: ARP Works with Other Protocols, Too!
- Bringing IP Networks Together
- Hosts and Networks
- Subnetting
- Netmasks
- Static Routing
- Dynamic Routing with RIP
- tcpdump Bits and Bobs
- Reading and Writing Dumpfiles
- Capturing More or Less per Packet
- Performance Impact
- Don't Capture Your Own Network Traffic
- Troubleshooting Slow Name Resolution (DNS) Issues
- IPv6
- IPv6 Address Format
- IPv6 Address Types
- IPv6 Backward-Compatibility
- Summary
- 12 Network Configuration
- Modules and Network Interfaces
- Network Device Configuration Utilities (ip, ifconfig, and nmcli)
- Sample Usage-ifconfig, ip, and nmcli
- Setting Up NICs at Boot Time
- Managing Routes
- Sample Usage: Route Configuration
- Displaying Routes
- A Simple Linux Router
- Routing with Static Routes
- How Linux Chooses an IP Address
- Hostname Configuration
- Summary
- 13 Linux Firewall (Netfilter)
- How Netfilter Works
- A NAT Primer
- NAT-Friendly Protocols
- Chains
- Installing Netfilter
- Enabling Netfilter in the Kernel
- Configuring Netfilter
- Saving Your Netfilter Configuration
- The iptables Command
- firewalld
- Cookbook Solutions
- Simple NAT: iptables
- Simple NAT: nftables
- Simple Firewall: iptables
- Summary
- 14 Local Security
- Common Sources of Risk
- SetUID Programs
- Unnecessary Processes
- Picking the Right Runlevel
- Nonhuman User Accounts
- Limited Resources
- Mitigating Risk
- chroot
- SELinux
- AppArmor
- Monitoring Your System
- Logging
- Using ps and netstat
- Using df
- Automated Monitoring
- Mailing Lists
- Summary
- 15 Network Security
- TCP/IP and Network Security
- The Importance of Port Numbers
- Tracking Services
- Using the netstat Command
- Security Implications of netstat's Output
- Binding to an Interface
- Shutting Down Services
- Shutting Down xinetd and inetd Services
- Shutting Down Non-xinetd Services
- Monitoring Your System
- Making the Best Use of syslog
- Monitoring Bandwidth with MRTG
- Handling Attacks
- Trust Nothing (and No One)
- Change Your Passwords
- Pull the Plug
- Network Security Tools
- nmap
- Snort
- Nessus
- Wireshark/tcpdump
- Summary
- PART IV Internet Services
- 16 Domain Name System (DNS)
- The Hosts File
- How DNS Works
- Domain and Host Naming Conventions
- The Root Domain
- Subdomains
- The in-addr.arpa Domain
- Types of Servers
- Installing a DNS Server
- Understanding the BIND Configuration File
- The Specifics
- Configuring a DNS Server
- Defining a Primary Zone in the named.conf File
- Defining a Secondary Zone in the named.conf File
- Defining a Caching Zone in the named.conf File
- DNS Records Types
- SOA: Start of Authority
- NS: Name Server
- A: Address Record
- PTR: Pointer Record
- MX: Mail Exchanger
- CNAME: Canonical Name
- RP and TXT: The Documentation Entries
- Setting Up BIND Database Files
- DNS Server Setup Walk-Through
- The DNS Toolbox
- host
- dig
- nslookup
- whois
- nsupdate
- The rndc Tool
- Configuring DNS Clients
- The Resolver
- Configuring the Client
- Summary
- 17 File Transfer Protocol (FTP)
- The Mechanics of FTP
- Client/Server Interactions
- Obtaining and Installing vsftpd
- Configuring vsftpd
- Starting and Testing the FTP Server
- Customizing the FTP Server
- Setting Up an Anonymous-Only FTP Server
- Setting Up an FTP Server with Virtual Users
- Summary
- 18 Apache Web Server
- Understanding HTTP
- Headers
- Ports
- Process Ownership and Security
- Installing the Apache HTTP Server
- Apache Modules
- Starting Up and Shutting Down Apache
- Starting Apache at Boot Time
- Testing Your Installation
- Configuring Apache
- Creating a Simple Root-Level Page
- Apache Configuration Files
- Common Configuration Options
- Troubleshooting Apache
- Summary
- 19 Simple Mail Transfer Protocol (SMTP)
- Understanding SMTP
- Rudimentary SMTP Details
- Security Implications
- Email Components
- Installing the Postfix Server
- Installing Postfix via RPM in Fedora
- Installing Postfix via APT in Ubuntu
- Installing Postfix from Source Code
- Configuring the Postfix Server
- The main.cf File
- Checking Your Configuration
- Running the Server
- Checking the Mail Queue
- Flushing the Mail Queue
- The newaliases Command
- Making Sure Everything Works
- Summary
- 20 Post Office Protocol and Internet Mail Access Protocol (POP and IMAP)
- POP3 and IMAP Protocol Basics
- Dovecot (IMAP and POP3 Server)
- Installing Dovecot
- Dovecot Configuration Files and Options
- Configuring Dovecot
- Running Dovecot
- Checking Basic POP3 Functionality
- Checking Basic IMAP Functionality
- Other Issues with Mail Services
- SSL Security
- Availability
- Log Files
- Summary
- 21 Voice over Internet Protocol (VoIP)
- VoIP Overview
- VoIP Server
- Analog Telephone Adapter (ATA)
- IP Phones
- VoIP Protocols
- VoIP Implementations
- Asterisk
- How Asterisk Works
- Asterisk Installation
- Starting and Stopping Asterisk
- Understanding Asterisk Configuration Files and Structure
- SIP Channel Config: sip.conf
- The Dialplan: extensions.conf
- Modules: modules.conf
- Asterisk Network, Port, and Firewall Requirements
- Configuring the Local Firewall for Asterisk
- Configuring the PBX
- Local Extensions
- Outside Connection-(VoIP Trunking)
- Trunking Using Google Voice
- Asterisk Maintenance and Troubleshooting
- Asterisk CLI Commands
- Helpful CLI Commands
- Common Issues with VoIP
- Summary
- 22 Secure Shell (SSH)
- Understanding Public Key Cryptography
- Key Characteristics
- Cryptography References
- Understanding SSH Versions
- OpenSSH and OpenBSD
- Alternative Vendors for SSH Clients
- Installing OpenSSH via RPM in Fedora
- Installing OpenSSH via APT in Ubuntu
- Server Start-up and Shutdown
- SSHD Configuration File
- Using OpenSSH
- Secure Shell (ssh) Client Program
- Secure Copy (scp) Program
- Secure FTP (sftp) Program
- Files Used by the OpenSSH Client
- Summary
- PART V Intranet Services
- 23 Network File System (NFS)
- The Mechanics of NFS
- Versions of NFS
- Security Considerations for NFS
- Mount and Access a Partition
- Enabling NFS in Fedora, RHEL, and Centos
- Enabling NFS in Ubuntu
- The Components of NFS
- Kernel Support for NFS
- Configuring an NFS Server
- The /etc/exports Configuration File
- Configuring NFS Clients
- The mount Command
- Soft vs. Hard Mounts
- Cross-Mounting Disks
- The Importance of the intr Option
- Performance Tuning
- Troubleshooting Client-Side NFS Issues
- Stale File Handles
- Permission Denied
- Sample NFS Client and NFS Server Configuration
- Common Uses for NFS
- Summary
- 24 Samba
- The Mechanics of SMB
- Usernames and Passwords
- Encrypted Passwords
- Samba Daemons
- Installing Samba via RPM
- Installing Samba via APT
- Samba Administration
- Starting and Stopping Samba
- Creating a Share
- Using smbclient
- Mounting Remote Samba Shares
- Samba Users
- Creating Samba Users
- Allowing Null Passwords
- Changing Passwords with smbpasswd
- Using Samba to Authenticate Against a Windows Server
- winbindd Daemon
- Troubleshooting Samba
- Summary
- 25 Distributed File Systems (DFS)
- DFS Overview
- DFS Implementations
- GlusterFS
- Summary
- 26 Network Information Service (NIS)
- Inside NIS
- The NIS Servers
- Domains
- Configuring the Master NIS Server
- Establishing the Domain Name
- Starting NIS
- Editing the Makefile
- Using ypinit
- Configuring an NIS Client
- Install NIS Client-Side Package
- Editing the /etc/yp.conf File
- Enabling and Starting ypbind
- Editing the /etc/nsswitch.conf File
- NIS at Work
- Testing Your NIS Client Configuration
- Configuring a Secondary NIS Server
- Setting the Domain Name
- Setting Up the NIS Master to Push to Slaves
- Running ypinit
- NIS Tools
- Using NIS in Configuration Files
- Implementing NIS in a Real Network
- A Small Network
- A Segmented Network
- Networks Bigger than Buildings
- Summary
- 27 Lightweight Directory Access Protocol (LDAP)
- LDAP Basics
- LDAP Directory
- Client/Server Model
- Uses of LDAP
- LDAP Terminology
- OpenLDAP
- Server-Side Daemons
- OpenLDAP Utilities
- Installing OpenLDAP
- Configuring OpenLDAP
- Configuring slapd
- Starting and Stopping slapd
- Configuring OpenLDAP Clients
- Creating Directory Entries
- Searching, Querying, and Modifying the Directory
- Using OpenLDAP for User Authentication
- Configuring the Server
- Configuring the Client
- Summary
- 28 Printing
- Printing Terminologies
- The CUPS System
- Running CUPS
- Installing CUPS
- Configuring CUPS
- Adding Printers
- Local Printers and Remote Printers
- Using the Web Interface to Add a Printer
- Using Command-Line Tools to Add a Printer
- Routine CUPS Administration
- Setting the Default Printer
- Enabling, Disabling, and Deleting Printers
- Accepting and Rejecting Print Jobs
- Managing Printing Privileges
- Managing Printers via the Web Interface
- Using Client-Side Printing Tools
- lpr
- lpq
- lprm
- Summary
- 29 Dynamic Host Configuration Protocol (DHCP)
- The Mechanics of DHCP
- The DHCP Server
- Installing DHCP Software via RPM
- Installing DHCP Software via APT in Ubuntu
- Configuring the DHCP Server
- A Sample dhcpd.conf File
- The DHCP Client Daemon
- Configuring the DHCP Client
- Summary
- 30 Virtualization
- Why Virtualize?
- Virtualization Concepts
- Virtualization Implementations
- Hyper-V
- Kernel-Based Virtual Machine (KVM)
- QEMU
- User-Mode Linux (UML)
- VirtualBox
- VMware
- Xen
- KVM
- KVM Example
- Managing KVM Virtual Machines
- Setting Up KVM in Ubuntu/Debian
- Containers
- Containers vs. Virtual Machines
- Docker
- Summary
- 31 Backups
- Evaluating Your Backup Needs
- Amount of Data
- Backup Hardware and Backup Medium
- Network Throughput
- Speed and Ease of Data Recovery
- Data Deduplication
- Tape Management
- Command-Line Backup Tools
- dump and restore
- tar
- rsync
- Miscellaneous Backup Solutions
- Summary
- PART VI Appendixes
- A Creating a Linux Installer on Flash/USB Devices
- Creating a Linux Installer on Flash/USB Devices (via Linux OS)
- Creating a Linux Installer on Flash/USB Devices (via Microsoft Windows)
- Fedora Installer Using Live USB Creator on Windows
- Ubuntu Installer Using UNetbootin on Windows
- OpenSUSE Installer Using Pendrivelinux.com's Universal USB Installer on Windows
- B Demo Virtual Machine
- Basic Host System Requirements
- Installing the Virtualization Applications and Utilities
- Download and Prep the Demo VM Image File
- Import the Demo VM Image and Create a New VM Instance
- Managing the Demo Virtual Machine
- Connecting to the Demo VM
- Virtual Network Computing (VNC)
- Connecting via SSH
- Virtual Serial TTY Console
- Cockpit Application
- Just Use It!
- Feedback
- Index
