book

Linux System Administration

Name: Linux System Administration
ISBN: 9780596009526

by Tom Adelstein, Bill Lubanovic

March 2007

Intermediate to advanced

304 pages

11h 12m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Table of Contents
Preface
How This Book Is Organized
Conventions Used in This Book
Using Code Examples
Safari® EnabledHow to Contact Us
Acknowledgments
Requirements for a Linux System Administrator
About This Book
How Can We Help?
Where Do You Start?
Do You Need a Book?
Who Needs You?
Help Wanted

Analyzing Skill Sets
What System Managers Should Know About Linux
What’s Next
Setting Up a Linux Multifunction Server
Server Requirements
Installing Debian
Logging in Remotely
Configuring the Network
Changing the Default Debian Packages
Setting Up Quotas
Providing Domain Name Services
Adding a Relational Database: MySQL
Configuring Mail Securely with Postfix, POP3, and IMAP (1/3)
Configuring Mail Securely with Postfix, POP3, and IMAP (2/3)
Configuring Mail Securely with Postfix, POP3, and IMAP (3/3)
Putting Apache to Work
Adding FTP Services with ProFTPD
Summarizing Your Web Statistics with Webalizer
Synchronizing the System Clock
Installing Perl Modules Needed by SpamAssassin
What’s Next
The Domain Name System
DNS Basics
Advantages of Localized DNS Administration
Getting into the BIND
Components of BIND
Setting Up a DNS Server
Using a chroot Environment for Security
Configuring an Authoritative DNS Server
Your Responsibility in DNS
The Distributed Method of Resolving Domain Names
Finding a Domain
Answering Queries
Primary and Secondary DNS Servers
Caching-Only Servers
Editing the Configuration Files
named.conf
The Primary Zone File (1/2)
Enhancements and advanced features
The Primary Zone File (2/2)
Putting it all together
The Reverse Zone File
PTR records
Testing Lookups
Configuring the Secondary Nameserver
BIND Tools
nslookup
rndc
Troubleshooting BIND
Cannot Connect Using rndc
named Starts but Does Not Resolve Names
Hosts Aren’t Recognized
What’s Next
An Initial Internet-Ready Environment
Installing ISPConfig
Requirements
Getting Started (1/2)
Getting Started (2/2)
ISPConfig Directory Structure
Setting Up a Server and Users with ISPConfig
Adding Clients and Web Sites
Managing Users and Email
User, email, home, and public web directories
Email Client Configuration
Safeguarding a Linux Web Server
The Role of a Daemon-Monitoring Daemon
Installing and Configuring monit
What’s Next
Mail
Key Mail Service Terms
Postfix, Sendmail, and Other MTAs
The Postfix SMTP Mail Server on Debian
Debian Postfix-Related Packages
Installing Postfix on Debian
Basic Postfix Configuration
Testing Mail
Adding Authentication and Encryption
SASL AuthenticationConfiguring Postfix with SASL to authenticate users with accountsThe saslauthd daemon
Configuring Postfix with SASL to authenticate users without accounts
TLS Encryption
Configuring POP3 and IMAP Mail Delivery Agents
Email Client Configuration
What’s Next
Administering Apache
Static and Dynamic Files
A Simple LAMP Setup
Installation
Apache
PHP
MySQL
Apache Configuration Files
Configuration File Directives
User and Group directives
Listen directive
DocumentRoot directiveAuthentication and AuthorizationUser files
Group files
Containers and AliasesAbsolute pathnames: DirectoryRelative pathnames: LocationPattern matching: Files and FilesMatchAliases
Limits
Server-Side Includes
CGI
LocationFile suffix
PHP Module-Specific Directives
Virtual HostsIP-based virtual hostsName-based virtual hostsmod_vhost_alias
Logfiles
Log Splitting and Rotation
Splitting Logs with vlogger
Analyzing Logs with Webalizer
SSL/TLS Encryption
suEXEC Support
Benchmarking
Installing and Administering Drupal
Installing Drupal with apt-get
Installing Drupal from Source
Configuring Drupal
Troubleshooting
Web Page Doesn’t Appear in Browser
Virtual Hosts Don’t Work
SSI Doesn’t WorkCGI Program Doesn’t RunSSL Doesn’t Work
Further Reading
Load-Balanced Clusters
Load Balancing and High Availability
Load-Balancing Software
IPVS on the Load Balancer
ldirectord
Configuring the Realservers (Apache Nodes)
Configuring the Load Balancer
Testing the System
Adding HA to LB
Adding Other LB Services
Scaling Without LB and HA
Further Reading
Local Network Services
Distributed Filesystems
Introduction to Samba
Configuring the Network
DHCP
Installing DHCP
Starting Your DHCP Service
Providing Static IP Addresses
Assigning IPv6 Addresses with radvd
Gateway Services
Another Approach to Gateway Services
Print Services
Printing Software Considerations
Cross-Platform Printing
Controlling Print Queues from the Command Line
User Management
Removing a User
Sealing the Home Directory
Graphical User Managers
Virtualization in the Modern Enterprise
Why Virtualization Is Popular
High-Performance Computing
Business Continuity and Workload Management
Rapid Provisioning
How Virtualization Helps
Installing Xen on Fedora 5
Installing a Xen Guest OS
Fedora Core 5Other guests
Installing VMware
Installing a VMware Guest OS
Virtualization: A Passing Fad?
Scripting
bash Beginnings
Pathnames and Permissions
The Default Path
I/O Redirection
Variables
Useful Elements for bash Scripts
Expressions
Arithmetic
If...
Troubleshooting a Simple Script
Loops
cron Jobs
Scripting Language Shootout
Data Format: The /etc/passwd File
Script Versions (1/2)
The bash scriptThe Perl scriptThe PHP script
Script Versions (2/2)
The Python script
Choosing a Scripting Language
Further Reading
Backing Up Data
Backing Up User Data to a Server with rsync
rsync Basics
Making a User Backup Script
Listing Files on the Backup Server
Restoring Lost or Damaged Files
Automated Backups
tar Archives
Creating a New Archive
Extracting from an Archive
A Complete Example of Packing and Unpacking with tar
Summary
Saving Files on Optical Media
Accessing Your CD-R Drive
Setting Defaults
Preparing Files to Record on a CD-R
Recording the CD-R
Verifying the Recording
Backing Up and Archiving to Tape with Amanda
Installing Amanda
Configuring Amanda
Restoring Files Backed Up by Amanda
Backing Up MySQL Data
bash Script Samples
Adding Users
Random Password Generator
Authoritative DNS Lookup
Sending Files Between Shell Sessions (1/2)
Sending Files Between Shell Sessions (2/2)
Integrating ssh and screen
Index (1/2)
Index (2/2)

Content preview from Linux System Administration

Chapter 3: The Domain Name System

Getting into the BIND

Most of the DNS servers in the world are run by the Berkeley Internet Name Dae-

mon, or BIND. BIND is standard on every version of Unix and Linux. Since adminis-

trators are certain to run into it, this chapter covers BIND in detail.

The most popular alternative to BIND is the djbdns suite. It works

well, is used by many large nameservers, and has an arguably simpler

configuration. See http://cr.yp.to/djbdns.html for details.

We won’t offer a history lesson on BIND, because the subject would put you to

sleep. Still, we do need to address one historical concern. Some people continue to

use an antiquated, deprecated release of BIND: version 4. In this chapter, we use the

newer version 9.

If you work on a system with DNS configuration files that look different from the

syntax shown in this chapter, it’s probably because the system uses BIND 4. As we

said earlier, businesses hate to replace working systems, and it may require a catas-

trophe to get an IT department to upgrade to BIND 8 or 9. Because of the potential

for security exploits in BIND 4, however, you should strongly suggest such an

upgrade. (By the way, the version numbering jumped from 4 to 8 to match Send-

mail’s versions; don’t let anyone sell you BIND 5, 6, or 7.)

Components of BIND

BIND comes with three components. The first is the service or daemon that runs the

answering side ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9780596009526Catalog Page Errata

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Linux System Administration

by Tom Adelstein, Bill Lubanovic

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

More than 5,000 organizations count on O’Reilly

Julian F.

Addison B.

Amir M.

Mark W.

You might also like

Practical Linux System Administration

Beginning Linux System Administration

Mastering Linux System Administration

Linux Administration Cookbook

Publisher Resources