book

RHCSA Red Hat Enterprise Linux 9 Certification Study Guide, Eighth Edition (Exam EX200), 8th Edition

Name: RHCSA Red Hat Enterprise Linux 9 Certification Study Guide, Eighth Edition (Exam EX200), 8th Edition
ISBN: 9781260462081

by Michael Jang, Alessandro Orsaria

December 2023

Beginner to intermediate

976 pages

12h 19m

English

McGraw-Hill

Read now

Unlock full access

Cover
Title Page
Copyright Page
Dedication
About the Authors
Contents at a Glance
Contents
Acknowledgments
Preface
Introduction
RHCSA Exam Readiness Checklist

1 Prepare for the Red Hat RHCSA Certification
The RHCSA ExamThe Exam ExperienceEvolving RequirementsBasic Hardware RequirementsHardware CompatibilityArchitecturesRAM RequirementsStorage OptionsNetworkingVirtual Machine OptionsGet Red Hat Enterprise LinuxGet a Subscription at No CostPurchase a SubscriptionThird-Party RebuildsCheck the DownloadExercise 1-1: Get Red Hat Enterprise LinuxAn Environment for Practice LabsSystem RolesGetting VMware Workstation PlayerVirtual Networks on a HypervisorConfigure a Virtual Machine on VMware Workstation PlayerRHEL 9 InstallationBoot MediaBasic Installation StepsThe Installation Perspective on PartitionsPartition Creation ExerciseExercise 1-2: Partitioning During InstallationWow, Look at All That Software!Baseline PackagesDuring the InstallationInitial SetupCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
2 Fundamental Command-Line Skills
ShellsOther ShellsVirtual ConsolesGUI Shell InterfacesDifferences Between Regular and Administrative UsersStandard Streams and Command RedirectionStandard Command-Line ToolsFile and Directory ConceptsFile Lists and lsFile-Creation CommandsWildcardsFile SearchesFile PermissionsFile Permissions and OwnershipCommands to Change Permissions and OwnershipA Basic Introduction of User and Group ConceptsManaging Text FilesCommands to Read Text StreamsCommands to Process Text StreamsEdit Text Files at the ConsoleExercise 2-1: Using vi to Create a New UserIf You Don’t Like viEdit Text Files in the GUIAccessing the DocumentationWhen You Need HelpA Variety of man PagesThe info ManualsDetailed Documentation in /usr/share/docCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
3 Managing Basic Networking
A Networking PrimerIPv4 NetworksNetworks and RoutingTools and CommandsNetwork Configuration and TroubleshootingNetwork Configuration ServicesNetwork Configuration ToolsExercise 3-1: Configure IPv4 Settings on a Network InterfaceConfigure Name ResolutionHostname Configuration FilesAn Introduction to IPv6Basic IPv6 AddressingTroubleshooting ToolsConfigure IPv6 AddressesAdministration with Secure Shell and Secure CopyCommand-Line AccessMore SSH Command-Line ToolsGraphical Secure Shell AccessCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
4 Software Management
The RPM Package ManagerWhat Is a Package?What Is the RPM Database?What Is a Repository?Install an RPM PackageUninstall an RPM PackageInstall RPMs from Remote SystemsRPM Installation SecurityUpdating the KernelMore RPM CommandsPackage QueriesPackage SignaturesFile VerificationExercise 4-1: Practice with rpm CommandsDependencies and the dnf CommandAn Example of Dependency HellRelief from Dependency HellRed Hat Subscription ManagementExercise 4-2: Subscribe a System to Red Hat Subscription ManagementBasic dnf ConfigurationExercise 4-3: Create a dnf Repository from the RHEL 9 DVDThird-Party RepositoriesExercise 4-4: Configure Access to the EPEL RepositoryBasic dnf CommandsInstallation ModeSecurity and dnfUpdates and Security FixesPackage Groups and dnfMore dnf CommandsModule Streams (*)Certification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
5 systemd and the Boot Process
The Boot ProcessBasic System ConfigurationStartup MenusAccess to Linux BootloadersBootloaders and GRUB 2GRUB, the GRand Unified BootloaderExercise 5-1: Boot into a Different TargetExercise 5-2: Recover the Root PasswordModify the System BootloaderHow to Update GRUB 2The GRUB 2 Command LineExercise 5-3: Using the GRUB 2 Command LineAn Option for Booting from GRUB 2: Rescue ModeBetween GRUB 2 and LoginKernels and the Initial RAM DiskThe First Process, Targets, and UnitsSwitch Between TargetsReboot and Shut Down a System Normallysystemd Replaces Upstart and SysVinitsystemd UnitsVirtual Consoles and Login ScreensControl by TargetFunctionality by TargetThe Innards of systemd UnitsService ConfigurationTime SynchronizationTime Zone ConfigurationSync the Time with chronydCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
6 User Administration
User Account ManagementDifferent Kinds of UsersThe Shadow Password SuiteCommand-Line ToolsExercise 6-1: Add a User with Cockpit Web ConsoleExercise 6-2: Real and Fake ShellsModify an AccountAdministrative ControlThe Ability to Log InThe su CommandLimit Access to suThe sg CommandSuperuser Access with the sudo CommandUser and Shell ConfigurationHome Directories and /etc/skelExercise 6-3: Another Way to Secure a SystemShell Configuration Files in User Home DirectoriesLogin, Logout, and User SwitchingSpecial GroupsStandard and Red Hat GroupsShared DirectoriesExercise 6-4: Control Group Ownership with the SGID BitCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
7 Storage and Filesystem Administration
Storage Management and PartitionsCurrent System StateThe fdisk UtilityThe gdisk UtilityThe parted UtilityUsing parted: Starting, Getting Help, and QuittingGraphical OptionsExercise 7-1: Work with fdisk and partedFilesystem FormatsStandard FilesystemsJournaling FilesystemsFilesystem Format CommandsSwap VolumesFilesystem Check CommandsExercise 7-2: Format, Check, and Mount Different FilesystemsBasic Linux Filesystems and DirectoriesSeparate Linux FilesystemsDirectories That Can Be Mounted SeparatelyLogical Volume Manager (LVM)Definitions in LVMCreate a Physical VolumeCreate a Volume GroupCreate a Logical VolumeMake Use of a Logical VolumeMore LVM CommandsRemove a Logical VolumeResize Logical VolumesFilesystem ManagementThe /etc/fstab FileUniversally Unique Identifiers in /etc/fstabThe mount CommandMore Filesystem Mount OptionsVirtual FilesystemsAdd Your Own Filesystems to /etc/fstabRemovable Media and /etc/fstabNetwork FilesystemsThe AutomounterMounting via the AutomounterExercise 7-3: Configure the AutomounterCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
8 Linux Security
Basic Firewall ControlStandard PortsThe firewalld ServiceExercise 8-1: Adjust Firewall SettingsExercise 8-2: Firewall Configuration with the Cockpit Web ConsoleSecuring SSH with Key-Based AuthenticationSSH Configuration CommandsSSH Client Configuration FilesBasic Encrypted CommunicationSet Up a Private/Public Pair for Key-Based AuthenticationA Security-Enhanced Linux PrimerBasic Features of SELinuxSELinux StatusSELinux Configuration at the Command LineConfigure Basic SELinux SettingsConfigure Regular Users for SELinuxManage SELinux Boolean SettingsList and Identify SELinux File ContextsRestore SELinux File ContextsExercise 8-3: Configure a New Directory with Appropriate SELinux ContextsSELinux Port LabelingIdentify SELinux Process ContextsDiagnose and Address SELinux Policy ViolationsThe GUI SELinux Administration ToolCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
9 System Administration Tasks
Resource Management and System TuningSystem Resource Management CommandsSystem Tuning ProfilesArchives and Compressiongzip and bzip2tarstarRunning Tasks on a Schedule: cron and atThe System crontab and ComponentsHourly cron JobsRegular anacron JobsSetting Up cron for UsersExercise 9-1: Create a cron JobRunning a Job with the at SystemSecure cron and atBash ScriptsA “Hello, World” ScriptBash VariablesBash Control StructuresExercise 9-2: Create a ScriptLocal Log FilesSystem Log Configuration FileLog File ManagementA Variety of Log FilesService-Specific LogsExercise 9-3: Learn the Log FilesView systemd Journal Log EntriesCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
10 An Introduction to Containers
Fundamentals of Container TechnologyThe Rise of Container TechnologiesVirtualization and ContainersUnderstanding Container ArchitectureDocker and PodmanGetting Started with ContainersInstalling Container ToolsRunning Your First ContainerRootless and Rootful ContainersBuilding and Using Container ImagesImage RegistriesBuilding Container Images: A PrimerExercise 10-1: Building and Running a Container ImageExercise 10-2: Uploading an Image to Quay.ioManaging ContainersPodman CommandsRunning a Container as a SystemD ServiceExercise 10-3: Running a Container as a ServicePersistent StorageExercise 10-4: Attaching Persistent Storage to a ContainerCertification SummaryTwo-Minute DrillQ&A Self TestLab QuestionsSelf Test AnswersLab Answers
A Prepare a System for the Sample Exams
Sample Exam System Requirements
B Solutions to RHCSA Sample Exam 1
RHCSA Sample Exam 1 Discussion
C Solutions to RHCSA Sample Exam 2
RHCSA Sample Exam 2 Discussion
D About the Online Content
Single User License Terms and ConditionsDownloadable Book ResourcesLab FilesAppendix A: Prepare a System for the Sample ExamsSample ExamsTechnical Support
Index

Content preview from RHCSA Red Hat Enterprise Linux 9 Certification Study Guide, Eighth Edition (Exam EX200), 8th Edition

Chapter 8 Linux Security

CERTIFICATION OBJECTIVES

8.01 Basic Firewall Control

8.02 Securing SSH with Key-Based Authentication

8.03 A Security-Enhanced Linux Primer

Two-Minute Drill

Q&A Self Test

Linux security has been based on a concept known as discretionary access control (DAC). In the DAC model, access to “objects,” such as file and directories, is discretionary because it is controlled by the owner of the objects. Hence, the standard permissions and ownership associated with files and directories is an implementation of DAC.

Then, the U.S. National Security Agency (NSA) developed SELinux, which is an implementation of ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

CompTIA Network+ Certification All-in-One Exam Guide, Eighth Edition (Exam N10-008), 8th Edition

Publisher Resources

ISBN: 9781260462081

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

RHCSA Red Hat Enterprise Linux 9 Certification Study Guide, Eighth Edition (Exam EX200), 8th Edition

by Michael Jang, Alessandro Orsaria

Chapter 8

Linux Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.