book

Mastering Linux Administration

by Alexandru Calcatinge, Julian Balog

June 2021

Beginner

772 pages

16h 33m

English

Packt Publishing

Read now

Unlock full access

ContributorsAbout the authorsAbout the reviewer
Who this book is forWhat this book coversTo get the most out of this bookDownload the example code filesDownload the color imagesConventions usedGet in touchReviews
Technical requirementsThe Linux operating systemLinux distributionsChoosing the right Linux distributionCommon Linux distributionsLinux distributions – a practical guideInstalling Linux – the basicsHow to install LinuxInstalling UbuntuInstalling CentOSThe Windows Subsystem for Linux (WSL)Installing Linux graphical user interfacesGNOMEKDESetting up and using the Linux workstationInstalling Ubuntu DesktopDefault software packagesAdditional software packagesManaging software packages with APTSummaryQuestions
Technical requirementsIntroducing the Linux shellBash shell featuresThe shell connectionThe command-line promptShell command typesCommand structureHelp from the manualThe Linux filesystemDirectory structureWorking with files and directoriesUnderstanding file pathsBasic file operationsCommands for file viewingCommands for file propertiesUsing text editors to create and edit filesSummaryQuestionsFurther reading
Technical requirementsLinux software package typesThe DEB and RPM package typesThe snap and flatpak package typesManaging software packagesManaging DEB packagesManaging RPM packagesUsing snap and flatpak packagesApplication streams in CentOS 8Building a package from sourceThe source code filePreparing the source codeSetting up the environmentSummaryQuestionsFurther reading
Technical requirementsManaging usersUnderstanding sudoCreating, modifying, and deleting usersManaging groupsCreating, modifying, and deleting groupsManaging permissionsFile and directory permissionsSummaryQuestions
Technical requirementsIntroducing processesUnderstanding process typesThe anatomy of a processWorking with processesThe ps commandThe pstree commandThe top commandThe kill and killall commandsThe pgrep and pkill commandsWorking with daemonsWorking with SysV daemonsWorking with systemd daemonsExploring interprocess communicationShared storageShared memoryUnnamed pipesNamed pipesMessage queuesSocketsWorking with signalsSummaryQuestions
Technical requirementsUnderstanding devices in LinuxLinux abstraction layersDevice files and naming conventionsUnderstanding filesystem types in LinuxThe Ext4 filesystem featuresThe XFS filesystem featuresThe btrfs filesystem featuresUnderstanding disks and partitionsCommon disk types usedPartitioning disksLogical Volume Management in LinuxLVM snapshotsSummary

Technical requirementsExploring basic networkingComputer networksThe OSI modelThe TCP/IP modelTCP/IP protocolsIP addressesSockets and portsLinux network configurationWorking with networking servicesDHCP serversDNS serversAuthentication serversFile sharingPrinter serversFile transferMail serversNTP serversRemote accessUnderstanding network securityVPNsWorking with VPNsSetting up OpenVPNSummaryQuestions
Technical requirementsGitHubQuestionsFurther reading
Technical requirementsUnderstanding Linux securityIntroducing SELinuxWorking with SELinuxIntroducing AppArmorWorking with AppArmorFinal considerationsWorking with firewallsIntroducing netfilterWorking with iptablesIntroducing nftablesUsing firewall managersSummaryQuestionsFurther reading
Planning for disaster recoveryA very short introduction to risk managementRisk calculationDesigning a disaster recovery planBacking up and restoring the systemDisk cloning solutionsIntroducing common Linux diagnostic tools for troubleshootingTools for troubleshooting boot issuesTools for troubleshooting general system issuesTools for troubleshooting network issuesTools for troubleshooting hardware issuesSummaryExercisesFurther reading
Technical requirementsIntroduction to virtualization on LinuxEfficiency in resource usageIntroduction to hypervisorUnderstanding VMsChoosing the hypervisorUnderstanding Linux containersContainers versus VMsUnderstanding the underlying container technologyUnderstanding DockerWorking with DockerWhich Docker version to choose?Installing Docker CEUsing the Docker commandsManaging Docker containersDeploying a containerized application with DockerSummaryFurther reading
Technical requirementsIntroduction to cloud technologiesUnderstanding the need for cloud computing standardsKnowing the architecture of the cloudKnowing the key features of cloud computingShort introduction to OpenStackIntroducing IaaS solutionsAmazon EC2Microsoft Azure Virtual MachinesOther strong IaaS offeringsIntroducing PaaS solutionsAmazon Elastic BeanstalkGoogle App EngineDigitalOcean App PlatformRed Hat OpenShiftCloud FoundryThe Heroku platformIntroducing CaaS solutionsIntroducing the Kubernetes container orchestration solutionDeploying containers in the cloudThe rise of micro operating systemsIntroducing microservicesIntroducing DevOpsIntroducing cloud management toolsSummaryFurther reading
Technical requirementsWorking with AWS EC2Creating AWS EC2 instancesUsing AWS EC2 instancesWorking with the AWS CLIWorking with Microsoft AzureCreating a virtual machineManaging virtual machinesWorking with the Azure CLISummaryQuestionsFurther reading
Technical requirementsIntroducing KubernetesUnderstanding the Kubernetes architectureIntroducing the Kubernetes object modelThe anatomy of a Kubernetes clusterInstalling and configuring KubernetesInstalling Kubernetes on desktopInstalling Kubernetes on virtual machinesRunning Kubernetes in the cloudWorking with KubernetesUsing kubectlDeploying applicationsSummaryQuestionsFurther reading
Technical requirementsIntroducing AnsibleUnderstanding the Ansible architectureIntroducing configuration managementInstalling AnsibleInstalling Ansible on UbuntuInstalling Ansible on RHEL/CentOSInstalling Ansible using pipWorking with AnsibleSetting up the lab environmentConfiguring AnsibleUsing Ansible ad hoc commandsUsing Ansible playbooksUsing templates with Jinja2Using roles with Ansible GalaxySummaryQuestionsFurther reading
Other Books You May EnjoyPackt is searching for authors like youLeave a review - let other readers know what you think

Content preview from Mastering Linux Administration

Chapter 9: Securing Linux

Securing a Linux machine is usually a balancing act. The endgame is essentially protecting data from unwanted access. While there are many ways to achieve this goal, we should adopt the methods that yield maximum protection, along with the most efficient system administration. Gauging the attack and vulnerability surfaces, both internal and external, is always a good start. The rest of the work is building fences and putting on armor – not too high and not too heavy. The outer fence is a network firewall. Internally, at the system level, we build application security policies. This chapter introduces both, albeit the art of the balancing act is left to you.

In the first part of this chapter, we'll look at access control ...