GitHub/school-of-sre
1
0
Fork 0
mirror of https://github.com/linkedin/school-of-sre synced 2026-01-18 14:38:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs (level 101): fix typos, punctuation, formatting (#160)

Browse Source 
* docs: formatted for readability

* docs: rephrased and added punctuation

* docs: fix typos, punctuation, formatting

* docs: fix typo and format

* docs: fix caps and formatting

* docs: fix punctuation and formatting

* docs: capitalized SQL commands, fixed puntuation, formatting

* docs: fix punctuation

* docs: fix punctuation and formatting

* docs: fix caps,punctuation and formatting

* docs: fix links, punctuation, formatting

* docs: fix code block formatting

* docs: fix punctuation, indentation and formatting
This commit is contained in:
Jana R
2024-07-28 17:38:19 +05:30
committed by GitHub
parent bdcc6856ed
commit 4239ecf473
58 changed files with 1522 additions and 1367 deletions
Download Patch File Download Diff File Expand all files Collapse all files

279
courses/level101/linux_basics/linux_server_administration.md
View File

@@ -1,6 +1,6 @@
# Linux Server Administration
In this course will try to cover some of the common tasks that a linux
In this course, will try to cover some of the common tasks that a Linux
server administrator performs. We will first try to understand what a
particular command does and then try to understand the commands using
examples. Do keep in mind that it's very important to practice the Linux
@@ -8,7 +8,7 @@ commands on your own.
## Lab Environment Setup
- Install docker on your system - [https://docs.docker.com/engine/install/](https://docs.docker.com/engine/install/) OR you can used online [Docker playground](https://labs.play-with-docker.com/)
- Install docker on your system - [https://docs.docker.com/engine/install/](https://docs.docker.com/engine/install/) OR you can use online [Docker playground](https://labs.play-with-docker.com/)
- We will be running all the commands on Red Hat Enterprise Linux (RHEL) 8 system.
@@ -18,7 +18,7 @@ commands on your own.
## Multi-User Operating Systems
An operating system is considered as multi-user if it allows multiple people/users to use a computer and not affect each other's files and preferences. Linux based operating systems are multi-user in nature as it allows multiple users to access the system at the same time. A typical computer will only have one keyboard and monitor but multiple users can log in via SSH if the computer is connected to the network. We will cover more about SSH later.
An operating system is considered as multi-user if it allows multiple people/users to use a computer and not affect each other's files and preferences. Linux-based operating systems are multi-user in nature as it allows multiple users to access the system at the same time. A typical computer will only have one keyboard and monitor but multiple users can log in via SSH if the computer is connected to the network. We will cover more about SSH later.
As a server administrator, we are mostly concerned with the Linux servers which are physically present at a very large distance from us. We can connect to these servers with the help of remote login methods like SSH.
@@ -37,26 +37,28 @@ Since Linux supports multiple users, we need to have a method which can protect
### id command
`id` command can be used to find the uid and gid associated with an user.
`id` command can be used to find the `uid` and `gid` associated with an user.
It also lists down the groups to which the user belongs to.
The uid and gid associated with the root user is 0.
The `uid` and `gid` associated with the root user is 0.
![](images/linux/admin/image30.png)
A good way to find out the current user in Linux is to use the whoami
A good way to find out the current user in Linux is to use the `whoami`
command.
![](images/linux/admin/image35.png)
**"root" user or superuser is the most privileged user with**
**`root` user or superuser is the most privileged user with**
**unrestricted access to all the resources on the system. It has UID 0**
### Important files associated with users/groups
| /etc/passwd | Stores the user name, the uid, the gid, the home directory, the login shell etc |
| -------------| ---------------------------------------------------------------------------------
| /etc/shadow | Stores the password associated with the users |
| /etc/group | Stores information about different groups on the system |
| Files | Description |
|--------------|----------------------------------------------------------------------------------------|
| /etc/passwd | Stores the user name, the `uid`, the `gid`, the home directory, the login shell etc |
| /etc/shadow | Stores the password associated with the users |
| /etc/group | Stores information about different groups on the system |
![](images/linux/admin/image23.png)
@@ -64,7 +66,7 @@ command.
![](images/linux/admin/image9.png)
If you want to understand each filed discussed in the above outputs, you can go
If you want to understand each field discussed in the above outputs, you can go
through below links:
- [https://tldp.org/LDP/lame/LAME/linux-admin-made-easy/shadow-file-formats.html](https://tldp.org/LDP/lame/LAME/linux-admin-made-easy/shadow-file-formats.html)
@@ -77,21 +79,18 @@ Some of the commands which are used frequently to manage users/groups
on Linux are following:
- `useradd` - Creates a new user
- `passwd` - Adds or modifies passwords for a user
- `usermod` - Modifies attributes of an user
- `userdel` - Deletes an user
### useradd
The useradd command adds a new user in Linux.
The `useradd` command adds a new user in Linux.
We will create a new user 'shivam'. We will also verify that the user
has been created by tailing the /etc/passwd file. The uid and gid are
We will create a new user `shivam`. We will also verify that the user
has been created by tailing the `/etc/passwd` file. The `uid` and `gid` are
1000 for the newly created user. The home directory assigned to the user
is /home/shivam and the login shell assigned is /bin/bash. Do note that
is `/home/shivam` and the login shell assigned is `/bin/bash`. Do note that
the user home directory and login shell can be modified later on.
![](images/linux/admin/image41.png)
@@ -104,17 +103,17 @@ override these default values when creating a new user.
### passwd
The passwd command is used to create or modify passwords for a user.
The `passwd` command is used to create or modify passwords for a user.
In the above examples, we have not assigned any password for users
'shivam' or 'amit' while creating them.
`shivam` or `amit` while creating them.
"!!" in an account entry in shadow means the account of an user has
`!!` in an account entry in shadow means the account of an user has
been created, but not yet given a password.
![](images/linux/admin/image13.png)
Let's now try to create a password for user "shivam".
Let's now try to create a password for user `shivam`.
![](images/linux/admin/image55.png)
@@ -129,118 +128,118 @@ Also, when you login using root user, the password will be asked.
### usermod
The usermod command is used to modify the attributes of an user like the
The `usermod` command is used to modify the attributes of an user like the
home directory or the shell.
Let's try to modify the login shell of user "amit" to "/bin/bash".
Let's try to modify the login shell of user `amit` to `/bin/bash`.
![](images/linux/admin/image17.png)
In a similar way, you can also modify many other attributes for a user.
Try 'usermod -h' for a list of attributes you can modify.
Try `usermod -h` for a list of attributes you can modify.
### userdel
The userdel command is used to remove a user on Linux. Once we remove a
The `userdel` command is used to remove a user on Linux. Once we remove a
user, all the information related to that user will be removed.
Let's try to delete the user "amit". After deleting the user, you will
not find the entry for that user in "/etc/passwd" or "/etc/shadow" file.
Let's try to delete the user `amit`. After deleting the user, you will
not find the entry for that user in `/etc/passwd` or `/etc/shadow` file.
![](images/linux/admin/image34.png)
## Important commands for managing groups
Commands for managing groups are quite similar to the commands used for managing users. Each command is not explained in detail here as they are quite similar. You can try running these commands on your system.
Commands for managing groups are quite similar to the commands used for managing users. Each command is not explained in detail here as they are quite similar. You can try running these commands on your system.
| groupadd \<group_name\> | Creates a new group |
| ------------------------ | ------------------------------- |
| groupmod \<group_name\> | Modifies attributes of a group |
| groupdel \<group_name\> | Deletes a group |
| gpasswd \<group_name\> | Modifies password for group |
| Command | Description |
| -----------------------| ------------------------------- |
| groupadd <group_name\> | Creates a new group |
| groupmod <group_name\> | Modifies attributes of a group |
| groupdel <group_name\> | Deletes a group |
| gpasswd <group_name\> | Modifies password for group |
![](images/linux/admin/image52.png)
We will now try to add user "shivam" to the group we have created above.
We will now try to add user `shivam` to the group we have created above.
![](images/linux/admin/image33.png)
## Becoming a Superuser
**Before running the below commands, do make sure that you have set up a
password for user "shivam" and user "root" using the passwd command
password for user `shivam` and user `root` using the `passwd` command
described in the above section.**
The su command can be used to switch users in Linux. Let's now try to
switch to user "shivam".
The `su` command can be used to switch users in Linux. Let's now try to
switch to user `shivam`.
![](images/linux/admin/image37.png)
Let's now try to open the "/etc/shadow" file.
Let's now try to open the `/etc/shadow` file.
![](images/linux/admin/image29.png)
The operating system didn't allow the user "shivam" to read the content
of the "/etc/shadow" file. This is an important file in Linux which
stores the passwords of users. This file can only be accessed by root or
users who have the superuser privileges.
The operating system didn't allow the user `shivam` to read the content
of the `/etc/shadow` file. This is an important file in Linux which
stores the passwords of users. This file can only be accessed by `root` or
users who have the `superuser` privileges.
**The sudo command allows a** **user to run commands with the security
**The `sudo` command allows a** **user to run commands with the security
privileges of the root user.** Do remember that the root user has all
the privileges on a system. We can also use su command to switch to the
the privileges on a system. We can also use `su` command to switch to the
root user and open the above file but doing that will require the
password of the root user. An alternative way which is preferred on most
modern operating systems is to use sudo command for becoming a
modern operating systems is to use `sudo` command for becoming a
superuser. Using this way, a user has to enter his/her password and they
need to be a part of the sudo group.
need to be a part of the `sudo` group.
**How to provide superpriveleges to other users ?**
Let's first switch to the root user using su command. Do note that using
Let's first switch to the root user using `su` command. Do note that using
the below command will need you to enter the password for the root user.
![](images/linux/admin/image44.png)
In case, you forgot to set a password for the root user, type "exit" and
In case, you forgot to set a password for the root user, type `exit` and
you will be back as the root user. Now, set up a password using the
passwd command.
`passwd` command.
**The file /etc/sudoers holds the names of users permitted to invoke
sudo**. In redhat operating systems, this file is not present by
default. We will need to install sudo.
**The file `/etc/sudoers` holds the names of users permitted to invoke
`sudo`**. In Red Hat operating systems, this file is not present by
default. We will need to install `sudo`.
![](images/linux/admin/image3.png)
We will discuss the yum command in detail in later sections.
We will discuss the `yum` command in detail in later sections.
Try to open the "/etc/sudoers" file on the system. The file has a lot of
Try to open the `/etc/sudoers` file on the system. The file has a lot of
information. This file stores the rules that users must follow when
running the sudo command. For example, root is allowed to run any
running the `sudo` command. For example, `root` is allowed to run any
commands from anywhere.
![](images/linux/admin/image8.png)
One easy way of providing root access to users is to add them to a group
which has permissions to run all the commands. "wheel" is a group in
redhat Linux with such privileges.
which has permissions to run all the commands. `wheel` is a group in
Red Hat Linux with such privileges.
![](images/linux/admin/image25.png)
Let's add the user "shivam" to this group so that it also has sudo
Let's add the user `shivam` to this group so that it also has `sudo`
privileges.
![](images/linux/admin/image48.png)
Let's now switch back to user "shivam" and try to access the
"/etc/shadow" file.
Let's now switch back to user `shivam` and try to access the
`/etc/shadow` file.
![](images/linux/admin/image56.png)
We need to use sudo before running the command since it can only be
accessed with the sudo privileges. We have already given sudo privileges
to usershivam” by adding him to the groupwheel”.
We need to use `sudo` before running the command since it can only be
accessed with the `sudo` privileges. We have already given `sudo` privileges
to user `shivam` by adding him to the group `wheel`.
## File Permissions
@@ -250,8 +249,8 @@ permissions for the owner of the file, the members of a group of related
users and everybody else. This is to make sure that one user is not
allowed to access the files and resources of another user.
To see the permissions of a file, we can use the ls command. Let's look
at the permissions of /etc/passwd file.
To see the permissions of a file, we can use the `ls` command. Let's look
at the permissions of `/etc/passwd` file.
![](images/linux/admin/image40.png)
@@ -265,10 +264,10 @@ related to file permissions.
### Chmod command
The chmod command is used to modify files and directories permissions in
The `chmod` command is used to modify files and directories permissions in
Linux.
The chmod command accepts permissions in as a numerical argument. We can
The `chmod` command accepts permissions in as a numerical argument. We can
think of permission as a series of bits with 1 representing True or
allowed and 0 representing False or not allowed.
@@ -288,26 +287,26 @@ We will now create a new file and check the permission of the file.
![](images/linux/admin/image15.png)
The group owner doesn't have the permission to write to this file. Let's
give the group owner or root the permission to write to it using chmod
give the group owner or root the permission to write to it using `chmod`
command.
![](images/linux/admin/image26.png)
Chmod command can be also used to change the permissions of a directory
`chmod` command can be also used to change the permissions of a directory
in the similar way.
### Chown command
The chown command is used to change the owner of files or
The `chown` command is used to change the owner of files or
directories in Linux.
Command syntax: chown \<new_owner\> \<file_name\>
Command syntax: `chown \<new_owner\> \<file_name\>`
![](images/linux/admin/image6.png)
**In case, we do not have sudo privileges, we need to use sudo
command**. Let's switch to user 'shivam' and try changing the owner. We
have also changed the owner of the file to root before running the below
**In case, we do not have `sudo` privileges, we need to use `sudo`
command**. Let's switch to user `shivam` and try changing the owner. We
have also changed the owner of the file to `root` before running the below
command.
![](images/linux/admin/image12.png)
@@ -317,53 +316,53 @@ similar way.
### Chgrp command
The chgrp command can be used to change the group ownership of files or
directories in Linux. The syntax is very similar to that of chown
The `chgrp` command can be used to change the group ownership of files or
directories in Linux. The syntax is very similar to that of `chown`
command.
![](images/linux/admin/image27.png)
Chgrp command can also be used to change the owner of a directory in the
`chgrp` command can also be used to change the owner of a directory in the
similar way.
## SSH Command
The ssh command is used for logging into the remote systems, transfer files between systems and for executing commands on a remote machine. SSH stands for secure shell and is used to provide an encrypted secured connection between two hosts over an insecure network like the internet.
The `ssh` command is used for logging into the remote systems, transfer files between systems and for executing commands on a remote machine. `SSH` stands for secure shell and is used to provide an encrypted secured connection between two hosts over an insecure network like the internet.
Reference:
[https://www.ssh.com/ssh/command/](https://www.ssh.com/ssh/command/)
We will now discuss passwordless authentication which is secure and most
commonly used for ssh authentication.
commonly used for `ssh` authentication.
### Passwordless Authentication Using SSH
Using this method, we can ssh into hosts without entering the password.
Using this method, we can `ssh` into hosts without entering the password.
This method is also useful when we want some scripts to perform
ssh-related tasks.
Passwordless authentication requires the use of a public and private key pair. As the name implies, the public key can be shared with anyone but the private key should be kept private.
Lets not get into the details of how this authentication works. You can read more about it
Let's not get into the details of how this authentication works. You can read more about it
[here](https://www.digitalocean.com/community/tutorials/understanding-the-ssh-encryption-and-connection-process)
Steps for setting up a passwordless authentication with a remote host:
1. Generating public-private key pair
**If we already have a key pair stored in \~/.ssh directory, we will not need to generate keys again.**
**If we already have a key pair stored in `~/.ssh` directory, we will not need to generate keys again.**
Install openssh package which contains all the commands related to ssh.
Install `openssh` package which contains all the commands related to `ssh`.
![](images/linux/admin/image49.png)
Generate a key pair using the ssh-keygen command. One can choose the
Generate a key pair using the `ssh-keygen` command. One can choose the
default values for all prompts.
![](images/linux/admin/image47.png)
After running the ssh-keygen command successfully, we should see two
keys present in the \~/.ssh directory. Id_rsa is the private key and
id_rsa.pub is the public key. Do note that the private key can only be
After running the `ssh-keygen` command successfully, we should see two
keys present in the `~/.ssh` directory. `id_rsa` is the private key and
`id_rsa.pub` is the public key. Do note that the private key can only be
read and modified by you.
![](images/linux/admin/image7.png)
@@ -372,40 +371,48 @@ Steps for setting up a passwordless authentication with a remote host:
There are multiple ways to transfer the public key to the remote server.
We will look at one of the most common ways of doing it using the
ssh-copy-id command.
`ssh-copy-id` command.
![](images/linux/admin/image11.png)
Install the openssh-clients package to use ssh-copy-id command.
Install the `openssh-clients` package to use `ssh-copy-id` command.
![](images/linux/admin/image46.png)
Use the ssh-copy-id command to copy your public key to the remote host.
Use the `ssh-copy-id` command to copy your public key to the remote host.
![](images/linux/admin/image50.png)
Now, ssh into the remote host using the password authentication.
Now, `ssh` into the remote host using the password authentication.
![](images/linux/admin/image51.png)
Our public key should be there in \~/.ssh/authorized_keys now.
Our public key should be there in `~/.ssh/authorized_keys` now.
![](images/linux/admin/image4.png)
\~/.ssh/authorized_key contains a list of public keys. The users
associated with these public keys have the ssh access into the remote
`~/.ssh/authorized_key` contains a list of public keys. The users
associated with these public keys have the `ssh` access into the remote
host.
### How to run commands on a remote host ?
General syntax: ssh \<user\>@\<hostname/hostip\> \<command\>
General syntax:
```shell
ssh \<user\>@\<hostname/hostip\> \<command\>
```
![](images/linux/admin/image14.png)
### How to transfer files from one host to another host ?
General syntax: scp \<source\> \<destination\>
General syntax:
```shell
scp \<source\> \<destination\>
```
![](images/linux/admin/image32.png)
@@ -418,32 +425,32 @@ systems.
| Packaging systems | Distributions |
| ---------------------- | ------------------------------------------ |
| Debian style (.deb) | Debian, Ubuntu |
| Red Hat style (.rpm) | Fedora, CentOS, Red Hat Enterprise Linux |
| Debian style (`.deb`) | Debian, Ubuntu |
| Red Hat style (`.rpm`) | Fedora, CentOS, Red Hat Enterprise Linux |
**Popular Packaging Systems in Linux**
|Command | Description |
| ----------------------------- | --------------------------------------------------- |
| yum install \<package_name\> | Installs a package on your system |
| yum update \<package_name\> | Updates a package to it's latest available version |
| yum remove \<package_name\> | Removes a package from your system |
| yum search \<keyword\> | Searches for a particular keyword |
| yum install <package_name\> | Installs a package on your system |
| yum update <package_name\> | Updates a package to its latest available version |
| yum remove <package_name\> | Removes a package from your system |
| yum search <keyword\> | Searches for a particular keyword |
[DNF](https://docs.fedoraproject.org/en-US/quick-docs/dnf/) is
the successor to YUM which is now used in Fedora for installing and
managing packages. DNF may replace YUM in the future on all RPM based
managing packages. DNF may replace YUM in the future on all RPM-based
Linux distributions.
![](images/linux/admin/image20.png)
We did find an exact match for the keyword httpd when we searched using
yum search command. Let's now install the httpd package.
We did find an exact match for the keyword `httpd` when we searched using
`yum search` command. Let's now install the `httpd` package.
![](images/linux/admin/image28.png)
After httpd is installed, we will use the yum remove command to remove
httpd package.
After `httpd` is installed, we will use the `yum remove` command to remove
`httpd` package.
![](images/linux/admin/image43.png)
@@ -454,15 +461,15 @@ used to monitor the processes on Linux systems.
### ps (process status)
The ps command is used to know the information of a process or list of
The `ps` command is used to know the information of a process or list of
processes.
![](images/linux/admin/image24.png)
If you get an error "ps command not found" while running ps command, do
install **procps** package.
If you get an error "ps command not found" while running `ps` command, do
install `procps` package.
ps without any arguments is not very useful. Let's try to list all the
`ps` without any arguments is not very useful. Let's try to list all the
processes on the system by using the below command.
Reference:
@@ -470,28 +477,28 @@ Reference:
![](images/linux/admin/image42.png)
We can use an additional argument with ps command to list the
information about the process with a specific process ID.
We can use an additional argument with `ps` command to list the
information about the process with a specific process ID (PID).
![](images/linux/admin/image2.png)
We can use grep in combination with ps command to list only specific
We can use `grep` in combination with `ps` command to list only specific
processes.
![](images/linux/admin/image1.png)
### top
The top command is used to show information about Linux processes
The `top` command is used to show information about Linux processes
running on the system in real time. It also shows a summary of the
system information.
![](images/linux/admin/image53.png)
For each process, top lists down the process ID, owner, priority, state,
cpu utilization, memory utilization and much more information. It also
lists down the memory utilization and cpu utilization of the system as a
whole along with system uptime and cpu load average.
For each process, `top` lists down the process ID, owner, priority, state,
CPU utilization, memory utilization and much more information. It also
lists down the memory utilization and CPU utilization of the system as a
whole along with system uptime and CPU load average.
## Memory Management
@@ -500,21 +507,21 @@ used to view information about the system memory.
### free
The free command is used to display the memory usage of the system. The
The `free` command is used to display the memory usage of the system. The
command displays the total free and used space available in the RAM
along with space occupied by the caches/buffers.
![](images/linux/admin/image22.png)
free command by default shows the memory usage in kilobytes. We can use
`free` command by default shows the memory usage in kilobytes. We can use
an additional argument to get the data in human-readable format.
![](images/linux/admin/image5.png)
### vmstat
The vmstat command can be used to display the memory usage along with
additional information about io and cpu usage.
The `vmstat` command can be used to display the memory usage along with
additional information about IO and CPU usage.
![](images/linux/admin/image38.png)
@@ -525,27 +532,27 @@ used to view disk space on Linux.
### df (disk free)
The df command is used to display the free and available space for each
The `df` command is used to display the free and available space for each
mounted file system.
![](images/linux/admin/image36.png)
### du (disk usage)
The du command is used to display disk usage of files and directories on
The `du` command is used to display disk usage of files and directories on
the system.
![](images/linux/admin/image10.png)
The below command can be used to display the top 5 largest directories
in the root directory.
in the `root` directory.
![](images/linux/admin/image18.png)
## Daemons
A computer program that runs as a background process is called a daemon.
Traditionally, the name of daemon processes ended with d - sshd, httpd
A computer program that runs as a background process is called a _daemon_.
Traditionally, the name of daemon processes ends with `d` - `sshd`, `httpd`,
etc. We cannot interact with a daemon process as they run in the
background.
@@ -553,12 +560,12 @@ Services and daemons are used interchangeably most of the time.
## Systemd
Systemd is a system and service manager for Linux operating systems.
Systemd units are the building blocks of systemd. These units are
`systemd` is a system and service manager for Linux operating systems.
`systemd` units are the building blocks of `systemd`. These units are
represented by unit configuration files.
The below examples shows the unit configuration files available at
/usr/lib/systemd/system which are distributed by installed RPM packages.
`/usr/lib/systemd/system` which are distributed by installed RPM packages.
We are more interested in the configuration file that ends with service
as these are service units.
@@ -566,8 +573,8 @@ as these are service units.
### Managing System Services
Service units end with .service file extension. Systemctl command can be
used to start/stop/restart the services managed by systemd.
Service units end with `.service` file extension. `systemctl` command can be
used to start/stop/restart the services managed by `systemd`.
| Command | Description |
| ------------------------------- | -------------------------------------- |