book

BSD Unix® Toolbox: 1000+ Commands for FreeBSD®, OpenBSD, and NetBSD®

Name: BSD Unix® Toolbox: 1000+ Commands for FreeBSD®, OpenBSD, and NetBSD®
ISBN: 9780470376034

by Francois Caen, Christopher Negus

May 2008

Intermediate to advanced

309 pages

7h 35m

English

Wiley

Read now

Unlock full access

Copyright
About the Authors
About the Technical Editor
Credits
Acknowledgments
Introduction
Who Should Read This BookWhat This Book CoversHow This Book Is StructuredWhat You Need to Use This BookConventions
1. Starting with BSD Systems
1.1. About FreeBSD, NetBSD, and OpenBSD1.1.1. Finding BSD Resources1.2. Focusing on BSD Commands1.2.1. Finding Commands1.2.2. Command Reference Information in BSD1.3. Summary
2. Installing FreeBSD and Adding Software
2.1. Before Installing FreeBSD2.2. Installing FreeBSD2.2.1. Booting the Install Disc2.2.2. Starting the Install Process2.3. Adding, Deleting, and Managing Software2.3.1. Finding Software2.3.2. Installing Software Packages (binary)2.3.3. Removing Software Packages (binary)2.3.4. Installing Software Using Ports (source code)2.3.5. Getting the Ports Collection2.3.6. Getting and Installing Applications with Ports2.4. Checking Packages and Ports2.4.1. Checking Installed Packages Against Ports2.4.2. Upgrading Ports2.4.3. Auditing Installed Packages2.4.4. Cleaning Up the Ports Collection2.5. Summary
3. Using the Shell
3.1. Terminal Windows and Shell Access3.1.1. Using Terminal Windows3.1.2. Using Virtual Terminals3.2. Using the Shell3.2.1. Using Bash History3.2.2. Using Command Line Completion3.2.3. Redirecting stdin and stdout3.2.4. Using aliases3.2.5. Tailing Files3.3. Acquiring Super-User Power3.3.1. Using the su Command3.3.2. Delegating Power with sudo3.4. Using Environment Variables3.5. Creating Simple Shell Scripts3.5.1. Editing and Running a Script3.5.2. Adding Content to Your Script3.6. Summary
4. Working with Files
4.1. Understanding File Types4.1.1. Using Regular Files4.1.2. Using Directories4.1.3. Using Symbolic and Hard Links4.1.4. Using Device Files4.1.5. Using Named Pipes and Sockets4.2. Setting File and Directory Permissions4.2.1. Changing Permissions with chmod4.2.2. Setting the umask4.2.3. Changing Ownership4.3. Traversing the File System4.4. Copying Files4.5. Changing File Attributes4.6. Searching for Files4.6.1. Generating the locate Database4.6.2. Finding Files with locate4.6.3. Locating Files with find4.6.4. Using Other Commands to Find Files4.7. Finding Out More About Files4.7.1. Listing Files4.7.2. Verifying Files4.8. Summary

5. Manipulating Text
5.1. Matching Text with Regular Expressions5.2. Editing Text Files5.2.1. Using the JOE Editor5.2.2. Using the Pico and Nano Editors5.2.3. Graphical Text Editors5.3. Listing, Sorting, and Changing Text5.3.1. Listing Text Files5.3.2. Paging Through Text5.3.3. Paginating Text Files with pr5.3.4. Searching for Text with grep5.3.5. Replacing Text with sed5.3.6. Translate or Remove Characters with tr5.3.7. Checking Differences Between Two Files with diff5.3.8. Using awk and cut to Process Columns5.3.9. Converting Text Files to Different Formats5.4. Summary
6. Playing with Multimedia
6.1. Working with Audio6.1.1. Starting with Audio6.1.2. Playing Music6.1.3. Adjusting Audio Levels6.1.4. Ripping CD Music6.1.5. Encoding Music6.1.6. Converting Audio Files6.2. Transforming Images6.2.1. Getting Information about Images6.2.2. Converting Images6.2.3. Converting Images in Batches6.3. Summary
7. Administering File Systems
7.1. Understanding File System Basics7.1.1. Setting Up the Disk Initially7.1.2. Checking Your Disk Setup7.1.3. Understanding File System Types7.2. Creating and Managing File Systems7.2.1. Slicing and Partitioning Hard Disks7.2.2. Working with Linux-Compatible File Systems7.2.3. Creating a Memory Disk File System7.2.4. Creating and Using Swap Partitions7.3. Mounting and Unmounting File Systems7.3.1. Mounting File Systems from the fstab File7.3.2. Mounting File Systems with the mount Command7.3.3. Unmounting File Systems with umount7.4. Checking File Systems7.5. Finding Out About File System Use7.6. Summary
8. Backups and Removable Media
8.1. Backing Up Data to Compressed Archives8.1.1. Creating Backup Archives with tar8.1.2. Using Compression Tools8.1.3. Listing, Joining, and Adding Files to tar Archives8.2. Backing Up Over Networks8.2.1. Backing Up tar Archives Over ssh8.2.2. Backing Up Files with rsync8.2.3. Backing Up with unison8.2.4. Backing Up to Removable Media8.2.5. Creating Backup Images with mkisofs8.2.6. Burning Backup Images with cdrecord8.2.7. Making and Burning DVDs with growisofs8.3. Summary
9. Checking and Managing Running Processes
9.1. Listing Active Processes9.1.1. Viewing Active Processes with ps9.1.2. Watching Active Processes with top9.2. Finding and Controlling Processes9.2.1. Using pgrep to Find Processes9.2.2. Using fuser to Find Processes9.3. Summary
10. Managing the System
10.1. Monitoring Resources10.1.1. Monitoring Memory Use10.1.2. Monitoring CPU Usage10.1.3. Monitoring Storage Devices10.2. Mastering Time10.2.1. Changing Time Zone10.2.2. Displaying and Setting Your Time and Date10.2.3. Using Network Time Protocol to Set Date/Time10.2.4. Checking Uptime10.3. Managing the Boot Process10.3.1. Using the boot0 Boot Loader10.3.2. Using bsdlabel to Check Out Partitions10.3.3. Changing to the GRUB boot loader10.4. Controlling System Services10.5. Starting and Stopping Your System10.6. Straight to the Kernel10.7. Poking at the Hardware10.8. Summary
11. Managing Network Connections
11.1. Configuring Network Interfaces Using sysinstall11.2. Managing Network Interface Cards11.3. Managing Network Connections11.3.1. Starting and Stopping Ethernet Connections11.3.2. Starting and Stopping Network Services11.4. Using Wireless Connections11.4.1. Getting Wireless Driver11.4.2. Configuring Wireless Interfaces11.5. Checking Name Resolution11.6. Troubleshooting Network Problems11.6.1. Checking Connectivity to a Host11.6.2. Checking Address Resolution Protocol (ARP)11.6.3. Tracing Routes to Hosts11.6.4. Displaying netstat Connections and Statistics11.6.5. Other Useful Network Tools11.7. Summary
12. Accessing Network Resources
12.1. Running Commands to Browse the Web12.2. Transferring Files12.2.1. Downloading Files with wget12.2.2. Transferring Files with cURL12.2.3. Transferring Files with FTP Commands12.2.4. Using SSH Tools to Transfer Files12.2.5. Using Windows File Transfer Tools12.3. Sharing Remote Directories12.3.1. Sharing Remote Directories with NFS12.3.2. Sharing Remote Directories with Samba12.3.3. Sharing Remote Directories with SSHFS12.4. Chatting with Friends in IRC12.5. Using Text-Based e-mail Clients12.5.1. Managing e-mail with mail12.5.2. Managing e-mail with mutt12.6. Summary
13. Doing Remote System Administration
13.1. Doing Remote Login and Tunneling with SSH13.1.1. Configuring SSH13.1.2. Logging in Remotely with ssh13.2. Using screen: A Rich Remote Shell13.3. Using a Remote Windows Desktop13.3.1. Connecting to a Windows Desktop with tsclient13.3.2. Connecting to a Windows Desktop with rdesktop13.4. Using Remote BSD Desktop and Applications13.5. Sharing Desktops Using VNC13.5.1. Setting Up the VNC Server13.5.2. Starting Up the VNC Client13.5.3. Using VNC on Untrusted Networks with SSH13.5.4. Sharing a VNC Desktop with Vino13.6. Summary
14. Locking Down Security
14.1. Working with Users and Groups14.1.1. Managing Users the GUI Way14.1.2. Adding User Accounts14.1.3. Adding Batches of Users14.1.4. Setting User Account Defaults14.1.5. Using Options When Adding Users14.1.6. Using Login Classes14.1.7. Modifying User Accounts14.1.8. Deleting User Accounts14.1.9. Managing Passwords14.1.10. Adding Groups14.2. Checking on Users14.3. Securing Network Services14.4. Configuring the Built-In Firewall14.5. Working with System Logs14.6. Using Advanced Security Features14.7. Summary
A. Using vi or Vim Editors
A.1. Starting and Quitting the vi EditorA.2. Moving Around in viA.3. Changing and Deleting Text in viA.4. Using Miscellaneous CommandsA.5. Modifying Commands with NumbersA.6. Using Ex CommandsA.7. Working in Visual ModeA.8. Summary
B. Shell Special Characters and Variables
B.1. Using Special Shell CharactersB.2. Using Shell Variables
C. Personal Configuration Files

Content preview from BSD Unix® Toolbox: 1000+ Commands for FreeBSD®, OpenBSD, and NetBSD®

Chapter 14. Locking Down Security

Securing your BSD system means many things. To be secure, you need to restrict access to the user accounts and services on the system. However, after that, security means checking that no one has gotten around the defenses you have set up.

FreeBSD, NetBSD, OpenBSD, and other systems based on BSD distributions are designed in many ways to be secure by default. That means that there are no user accounts with blank passwords, that the firewall is restrictive by default, and that most network services (Web, FTP, and so on) are off by default (even if the service's software is installed).

As someone setting up a BSD system, you can go beyond the default settings to make your system even more secure. For example, by setting up services in chrooted jails you can prevent an intruder from accessing parts of the computer system that are outside the compromised service. By encrypting critical data, you can make it nearly impossible for someone to use stolen data.

Although many of the commands covered in this book can be used to check and improve the security of your BSD system, some basic BSD features are particularly geared toward security. For example, secure user accounts with good password ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Fedora® Linux® TOOLBOX: 1000+ Commands for Fedora, CentOS, and Red Hat® Power Users

Publisher Resources

ISBN: 9780470376034Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

BSD Unix® Toolbox: 1000+ Commands for FreeBSD®, OpenBSD, and NetBSD®

by Francois Caen, Christopher Negus

Chapter 14. Locking Down Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.