Curs 01

Curs 1
Configurari de baza
Gestiunea Serviciilor de Ret, ea
6 octombrie 2011
GSR
Curs 1, Configur
ari de baz
a
1/51
Moto
User, n. The word computer professionals use when they mean

idiot.
Dave Barry
GSR
Curs 1, Configur
ari de baz
a
2/51
But first . . .
There are four major species of Unix sysad:
1. The TECHNICAL THUG. Usually a systems programmer who has
been forced into system administration; writes scripts in a polyglot
of the Bourne shell, sed, C, awk, perl, and APL.
2. The ADMINISTRATIVE FASCIST. Usually a retentive drone (or
rarely, a harridan ex-secretary) who has been forced into system
administration.
3. The MANIAC. Usually an aging cracker who discovered that neither
the Mossad nor Cuba are willing to pay a living wage for computer
espionage. Fell into system administration; occasionally approaches
major competitors with indesp schemes.
4. The IDIOT. Usually a cretin, morpohodite, or old COBOL
programmer selected to be the system administrator by a committee
of cretins, morphodites, and old COBOL programmers.
http://www.gnu.org/fun/jokes/know.your.sysadmin.html
GSR
Curs 1, Configur
ari de baz
a
3/51
Introducere
Configurarea unui server
Documentat, ie
Linia de comanda
Pachete
Utilizatori s, i parole
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
4/51
Prerequisites
generale
I
pentru acest capitol: Cartea de USO

I
I
I
GSR
Cartea de RL:
http://books.google.com/books?id=GdF_3ttxnRIC
Cartea de USO:
http://books.google.com/books?id=_JFGzyRxQGcC
Capitolul 1 Introducere
Capitolul 3 Gestiunea pachetelor s, i utilizatorilor
Capitolul 7 Analiza hardware a sistemului
Curs 1, Configur
ari de baz
a
5/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
6/51
Introducere
I
I
I
I
I
Gestiunea Serviciilor de Ret, ea (GSR) (fost Planificarea s, i

Implementarea Serviciilor de Ret, ea PISR)
Fancy name for Linux System Administration
Mapat peste certificarea LPI (Linux Professional Institute)
(LPIC1 s, i o parte din LPIC2)
Utilizare avansata/eficienta a sistemului de operare /
administrarea sistemului
Cerint, e
I
I
I
I
I
I
GSR
Cunos, tint, e de baza/medii de utilizarea unui sistem Linux

Folosirea liniei de comanda
Cunos, tint, e de sisteme de operare s, i ret, elistica
USO, RL, SO
Carte USO:
http://books.google.com/books?id=_JFGzyRxQGcC
Carte RL:
http://books.google.com/books?id=GdF_3ttxnRIC
Skill based, no brainer

Curs 1, Configur
ari de baz
a
7/51
Reguli s, i notare
Laborator: 2 puncte (activitate)
Test practic (1): 2.5 puncte (25 noiembrie 2010, laborator)

Test practic (2): 2.5 puncte (colocviu, laborator)
I
I
GSR
open-Google
fara resurse colaborative (discut, ii, chat, IRC, ntrebari pe
forumuri)
Examen final: 4 puncte (grila franceza, 44 ntrebari, 40p =

10)
Maxim 16 persoane la un laborator
Pentru o certificare LPIC (101, 102, 201, 202, ...) se obt, ine
punctajul pe laborator s, i examenul final
Curs 1, Configur
ari de baz
a
8/51
Resurse
http://elf.cs.pub.ro/gsr/wiki/
http://cs.curs.pub.ro/ cand va fi gata
http://swarm.cs.pub.ro/~razvan/books/cert.zip
EG106 18 stat, ii, Debian GNU/Linux testing
GSR
Curs 1, Configur
ari de baz
a
9/51
Structura curs
GSR
Configurari de baza
Gestiunea sistemului de fis, iere
Interact, iunea cu nucleul s, i gestiunea serviciilor
Drepturi, limitarea drepturilor, monitorizare
Shell scripting s, i automatizare
Elemente de securitate
Servicii de file sharing
Servicii de e-mail
LDAP (2)
Servicii web
Servicii pentru dezvoltatori
Curs 1, Configur
ari de baz
a
10/51
Certificari Linux
LPIC (Linux Professional Institute Certification)

I
I
I
CompTIA Linux+
I
I
GSR
Basic administration
Vendor independent
(RedHat) RHCT, RHCE, RHCA, RHCSS

I
Vendor independent
Technical profile
Three tiered (LPIC-1, LPIC-2, LPIC-3)
Vendor dependent, multi-tiered
(Novell) CLP/CLE
Curs 1, Configur
ari de baz
a
11/51
Aliniere LPIC
I
LPIC-1, fara urmatoarele subiecte

I
I
I
I
I
I
din LPIC-2, urmatoarele subiecte

I
I
I
I
I
208
209
210
211
212
Web Services
File sharing
Network client Management
E-mail Services
System Security
LPIC-3
I
I
I
I
I
GSR
102.3 Shared libraries

102.5 RPM and YUM package management
106 User Interface and Desktops (106.1, 106.2, 106.3)
107.3 Localisation and internationalisation
108.4 Manage printers and printing
109 Networking Fundamentals (presumed to be known)
301.2 Directory Design

301.3 Schemas
303.4 Securing the Directory
303.6 OpenLDAP Daemon Configuration
304 Usage (LDAP)
Curs 1, Configur
ari de baz
a
12/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
13/51
Cerint, e/Documentat, ie
GSR
Cartea de USO: TODO
Carte de RL: TODO
Professional Linux Administration
Curs 1, Configur
ari de baz
a
14/51
Problema
Avem un server
GSR
Cum procedam?
Curs 1, Configur
ari de baz
a
15/51
Instalarea unui server Linux
GSR
GNU/Linux vs. Linux
Debian GNU/Linux
Ubuntu Server
RedHat Enterprise Linux (RHEL) / CentOS
SuSE Linux Enterprise Server (SLES)
Curs 1, Configur
ari de baz
a
16/51
Sisteme de calcul
GSR
procesor (procese, servicii)
memorie (procese, servicii)
hard-disk (sisteme de fis, iere, programe, fis, iere de configurare)
placa de ret, ea (networking, servicii, utilizatori)
sloturi PCI
sloturi USB
nu au important, a deosebita: monitor, tastatura, alte periferice
nu sunt relevante: placa grafica s, i de sunet
Curs 1, Configur
ari de baz
a
17/51
Informat, ii despre sistem
GSR
comenzi dedicate (lshw, lcpci)
sisteme de fis, iere virtuale (procfs, sysfs, devfs/udev)
Curs 1, Configur
ari de baz
a
18/51
procfs
GSR
sistem de fis, iere virtual
informat, ii ale nucleului accesibile ca sistem de fis, iere
montat ca /proc
cpuinfo, meminfo, devices, filesystems, interrupts, modules
directoare PID-uri ale proceselor
pachetul procps: ps, top, free, kill, pkill, uptime
Curs 1, Configur
ari de baz
a
19/51
sysfs
GSR
sistem de fis, iere virtual
de la kernel 2.6
informat, ii despre dispozitive s, i drivere
/sys/devices/ (physical layout)
/sys/class/ (grouped)
/sys/bus/ (legatura cu magistralele)
/sys/block/
Curs 1, Configur
ari de baz
a
20/51
devfs, udev
GSR
kernel < 2.6.13 devfs
kernel >= 2.6.13 udev (se executa n user space)
dispozitive caracter
dispozitive bloc
dispozitive fizice
dispozitive virtuale (/dev/zero, /dev/null, /dev/full,

/dev/random, /dev/urandom)
Curs 1, Configur
ari de baz
a
21/51
Identificarea unui dispozitiv
GSR
Windows: numele unui dispozitiv (\\Device\\HardDisk0)
Linux: major s, i minor
Curs 1, Configur
ari de baz
a
22/51
GSR
major: tipul dispozitivului (driverul folosit)
Curs 1, Configur
ari de baz
a
22/51
GSR
major: tipul dispozitivului (driverul folosit)
minor: indexul dispozitivului
/proc/devices
Curs 1, Configur
ari de baz
a
22/51
Major, minor
brw-rw---brw-rw---brw-rw---brw-rw---crw-rw---crw-rw---crw-rw---crw-rw----
GSR
1
1
1
1
1
1
1
1
root
root
root
root
root
root
root
root
disk
disk
disk
disk
root
root
root
root
8,
8,
8,
8,
4,
4,
4,
4,
0
1
10
11
0
10
11
12
Oct
Oct
Oct
Oct
Oct
Oct
Oct
Oct
Curs 1, Configur
ari de baz
a
2
2
2
2
2
2
2
2
21:53
21:53
18:53
21:53
21:53
21:53
21:53
21:53
sda
sda1
sda10
sda11
tty0
tty10
tty11
tty12
23/51
Block devices vs. char devices
buffering vs. non buffering
data blocks
block I/O layer subsistem de gestiunea a cererilor pentru
dispozitivelor de tip bloc
I
I
I
GSR
sorting and merging

caching
I/O scheduling
Curs 1, Configur
ari de baz
a
24/51
Alte informat, ii despre sistem
GSR
Curs 1, Configur
ari de baz
a
25/51
GSR
timp de rulare
Curs 1, Configur
ari de baz
a
25/51
GSR
timp de rulare uptime
Curs 1, Configur
ari de baz
a
25/51
GSR
versiune kernel
Curs 1, Configur
ari de baz
a
25/51
GSR
versiune kernel uname
Curs 1, Configur
ari de baz
a
25/51
GSR
versiune sistem de operare
Curs 1, Configur
ari de baz
a
25/51
GSR
versiune sistem de operare /etc/issue
Curs 1, Configur
ari de baz
a
25/51
GSR
hostname
Curs 1, Configur
ari de baz
a
25/51
GSR
hostname /etc/hostname, hostname
Curs 1, Configur
ari de baz
a
25/51
GSR
configurare timp
Curs 1, Configur
ari de baz
a
25/51
GSR
configurare timp dpkg-reconfigure tzdata,

/etc/localtime, /etc/localtime
Curs 1, Configur
ari de baz
a
25/51
GSR

configurare locale
Curs 1, Configur
ari de baz
a
25/51
GSR

configurare locale dpkg-reconfigure locale
Curs 1, Configur
ari de baz
a
25/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
26/51
Documentare
GSR
la nivel de comanda (man, info)
la nivel de tutorial (ansamblu de comenzi) (Google)
la nivel de concept (cart, i)
Curs 1, Configur
ari de baz
a
27/51
Documentat, ia ntr-un sistem Linux
GSR
whatis
apropos
--help
help (pentru comenzi interne)
man
info
/usr/share/doc
Google
IRC
http://stackoverflow.com/
http://serverfault.com/
Curs 1, Configur
ari de baz
a
28/51
man
I
foloses, te pager-ul implicit pentru parcurgere (n general less)
SPACE, PgDn, CTRL+V, CTRL+F
PgDn, ALT+V, CTRL+B
ALT+HOME, ALT+SHIFT+<, gg,
ALT+END, ALT+SHIFT+>, G
/
sect, iuni
I
I
I
man read
man 2 read
pentru sysadmins
I
I
I
I
GSR
1
4
5
8
comenzi generale
dispozitive speciale
fis, iere s, i convent, ii (/etc/passwd, /etc/issue)
comenzi administrative (n general rulabile de root)
Curs 1, Configur
ari de baz
a
29/51
info
GSR
format TeXinfo
similar unei pagini web (referint, e)
documentat, ie mai citibila (nu are o sintaxa stricta precum o

pagina de manual)
info coreutils, info make, info libc
Curs 1, Configur
ari de baz
a
30/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
31/51
Linia de comanda n Linux
prompt (variabila PS1)
terminal, terminal virtual, emulator de terminal
shell
facilitat, i (biblioteca readline)
I
I
I
I
I
command completion
history
reverse search
editarea comenzii
keyboard shortcuts
I http://www.gnu.org/software/bash/manual/html_node/
Readline-Interaction.html
GSR
Curs 1, Configur
ari de baz
a
32/51
Scurtaturi utile
I
I
I
I
I
I
I
I
I
I
I
I
I
I
I
GSR
CTRL+P sageata sus

CTRL+N next match
CTRL+R reverse search
CTRL+C anulare comanda
CTRL+D parasire terminal
CTRL+L clear screen
CTRL+U s, tergere pana la nceput
CTRL+K s, tergere pana la sfars, it
CTRL+A mers la nceput
CTRL+E mers la sfars, it
ALT+F, CTRL+F cuvant/caracter nainte
ALT+B, CTRL+B cuvant/caracter napoi
ALT+D, CTRL+D/Delete s, tergere cuvant/caracter nainte
ALT+Backspace, Backspace s, tergere cuvant/caracter napoi
de obicei se dezactiveaza scurtaturile de terminal virtual
Curs 1, Configur
ari de baz
a
33/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
34/51
Pachete software
GSR
aplicat, ii/programe compilate s, i mpachetate
dependent, e
repository
PMS Package Management System (rezolva dependent, e)
Curs 1, Configur
ari de baz
a
35/51
Act, iuni cu pachete software
GSR
sincronizare/actualizare repository
cautare pachet n repository
informat, ii despre pachet
instalare
dezinstalare
cautare fis, ier n repository
cautare pachet local
cautare fis, ier n pachet local
reconfigurare
Curs 1, Configur
ari de baz
a
36/51
Aplicat, ii pentru pachete software n Linux
GSR
.deb (Debian-based) ar
.rpm (RPM-based) cpio/gzip
dpkg, rpm, Portage
apt, yum
Curs 1, Configur
ari de baz
a
37/51
dpkg
GSR
Debian package manager
instalare/dezinstalare/configurare
listare/cautare cont, inut pachete (-l, -L, -S)
echivalent rpm
dpkg-reconfigure pentru reconfigurarea pachetelor instalate
Curs 1, Configur
ari de baz
a
38/51
apt
GSR
Advanced Packaging Tool
front-end pentru dpkg
set de utilitare (apt-get, apt-cache)
rezolvare dependent, e
instalare, dezinstalare, actualizare baza de date, upgrade
cautare, verificare informat, ii
/etc/apt/sources.list
/var/cache/apt/archives
echivalent yum
Curs 1, Configur
ari de baz
a
39/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
40/51
Utilizatori
agent, ii sistemului
UID User ID
home folder
drepturi de acces (vezi cursul 2)
parola
shell
limitari (vezi cursul 4)

grupuri
I
I
I
GSR
GID Group ID
un grup cont, ine unul sau mai mult, i utilizatori
fiecare utilizator are un grup init, ial s, i grupuri secundare
Curs 1, Configur
ari de baz
a
41/51
Operat, ii cu utilizatori s, i grupuri
adaugare utilizator
I
I
s, tergere utilizator
I
I
groupadd, addgroup
s, tergere grup
I
GSR
usermod
adaugare grup
I
userdel, deluser
userdel -r ana.popescu
modificare utilizator
I
useradd, adduser (doar pe Debian)

useradd -m -d /home/users/apopescu -g users -s
/bin/bash apopescu
groupdel, groupadd
Curs 1, Configur
ari de baz
a
42/51
Informat, ii de stare
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
GSR
root@profus:# id razvan.deaconescu
uid=1059(razvan.deaconescu) gid=1010(prof) groups=1010(prof)
root@profus:# finger razvan.deaconescu
Login: razvan.deaconescu
Name: Razvan DEACONESCU
Directory: /home/prof/razvan.deaconescu Shell: /bin/bash
Last login Fri Oct 2 21:03 (EEST) on pts/1 from dhcp-227.cs.pub.ro
Mail forwarded to | /usr/bin/procmail
root@profus:# w
17:38:09 up 14 days, 4:01, 1 user, load average: 1.28, 2.28, 1.53
USER
TTY
FROM
LOGIN@
IDLE
JCPU
PCPU WHAT
root
pts/0
10.38.248.154
17:34
0.00s 0.03s 0.01s w
root@profus:# who
root
pts/0
Oct 8 17:34 (10.38.248.154)
root@profus:# last -3
root
pts/0
10.38.248.154
Thu Oct 8 17:34
still logged in
elena.ap pts/0
89.36.46.156
Thu Oct 8 00:10 - 01:02 (00:51)
emil.slu pts/1
82.76.28.29
Wed Oct 7 19:00 - 19:22 (00:22)
koala:# groups www-data
www-data tracker projects
Curs 1, Configur
ari de baz
a
43/51
/etc/passwd s, i /etc/shadow
razvan@valhalla:/proc$ tail -1 /etc/passwd

saned:x:121:131::/home/saned:/bin/false
razvan@valhalla:/proc$ sudo tail -1 /etc/shadow
Saned:*:14444:0:99999:7:::
razvan@valhalla:/proc$ sudo ls -l /etc/shadow
-rw-r----- 1 root shadow 1253 Sep 19 16:42 /etc/shadow
GSR
/etc/passwd: login, obsolete, uid, gid, info, home, shell
/etc/shadow: login, password, durata parola/activare/etc.
Curs 1, Configur
ari de baz
a
44/51
/etc/group
koala:~# tail /etc/group

tracker:x:1000:www-data
Debian-exim:x:105:
projects:x:1001:www-data
postfix:x:106:
[...]
GSR
groupname, pass, gid, users
Curs 1, Configur
ari de baz
a
45/51
Parole
stocate criptat (MD5, SHA) (man 3 crypt) n /etc/shadow
recomandat sa cont, ina litere mari, caractere speciale, numere
passwd
passwd username (ca root)

chpasswd (non-interactiv)
echo "ana:h4110w0r1d" | chpasswd
pwgen pentru generarea parolelor (us, or de ret, inut)

razvan@valhalla:/proc$ pwgen -c -n -y 10 1
eng<i7Zeje
GSR
Curs 1, Configur
ari de baz
a
46/51
Formatul unei parola
GSR
$6$QkLpTZ3Z$xNEvUmBjslVAI8FiC2uey4fIv
$id$salt$encrypted
6 SHA-512
salt perturbarea algoritmului
Curs 1, Configur
ari de baz
a
47/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
48/51
Cuvinte cheie
GSR
certificari
apropos, man, info
LPIC
linie de comanda
GNU/Linux
shell
Debian
biblioteca readline
sysfs
pachete, PMS
procfs
dpkg, apt
udev
utilizatori, grupuri
dispozitive
parole
Curs 1, Configur
ari de baz
a
49/51
Resurse utile
GSR
James Turnbull, Peter Lieverdink, Dennis Matotek Pro

Linux System Administration
http://elf.cs.pub.ro/pisr/
http://www.lpi.org/index.php/eng/certification/
the_lpic_program
http://debian.org/doc/user-manuals
http://wiki.debian.org/
http://www.debian-administration.org/
Curs 1, Configur
ari de baz
a
50/51
Outline
Introducere
Documentat, ie
Linia de comanda
Pachete
Keywords
Intrebari
GSR
Curs 1, Configur
ari de baz
a
51/51

Curs 01

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Curs 01

Caricato da

Copyright:

Formati disponibili

Curs 1

Gestiunea Serviciilor de Ret, ea

User, n. The word computer professionals use when they mean

pentru acest capitol: Cartea de USO

Gestiunea Serviciilor de Ret, ea (GSR) (fost Planificarea s, i

Cunos, tint, e de baza/medii de utilizarea unui sistem Linux

Skill based, no brainer

Laborator: 2 puncte (activitate)

Test practic (1): 2.5 puncte (25 noiembrie 2010, laborator)

Examen final: 4 puncte (grila franceza, 44 ntrebari, 40p =

Maxim 16 persoane la un laborator

http://cs.curs.pub.ro/ cand va fi gata

Gestiunea sistemului de fis, iere

Interact, iunea cu nucleul s, i gestiunea serviciilor

Drepturi, limitarea drepturilor, monitorizare

Shell scripting s, i automatizare

Servicii de file sharing

Servicii pentru dezvoltatori

LPIC (Linux Professional Institute Certification)

(RedHat) RHCT, RHCE, RHCA, RHCSS

Vendor dependent, multi-tiered

LPIC-1, fara urmatoarele subiecte

din LPIC-2, urmatoarele subiecte

102.3 Shared libraries

301.2 Directory Design

Cartea de USO: TODO

Carte de RL: TODO

Professional Linux Administration

Instalarea unui server Linux

GNU/Linux vs. Linux

RedHat Enterprise Linux (RHEL) / CentOS

SuSE Linux Enterprise Server (SLES)

procesor (procese, servicii)

memorie (procese, servicii)

hard-disk (sisteme de fis, iere, programe, fis, iere de configurare)

placa de ret, ea (networking, servicii, utilizatori)

nu au important, a deosebita: monitor, tastatura, alte periferice

nu sunt relevante: placa grafica s, i de sunet

Informat, ii despre sistem

comenzi dedicate (lshw, lcpci)

sisteme de fis, iere virtuale (procfs, sysfs, devfs/udev)

sistem de fis, iere virtual

informat, ii ale nucleului accesibile ca sistem de fis, iere

cpuinfo, meminfo, devices, filesystems, interrupts, modules

directoare PID-uri ale proceselor

pachetul procps: ps, top, free, kill, pkill, uptime

sistem de fis, iere virtual

informat, ii despre dispozitive s, i drivere

/sys/devices/ (physical layout)

/sys/bus/ (legatura cu magistralele)

kernel < 2.6.13 devfs

kernel >= 2.6.13 udev (se executa n user space)

dispozitive virtuale (/dev/zero, /dev/null, /dev/full,

Identificarea unui dispozitiv

Windows: numele unui dispozitiv (\\Device\\HardDisk0)

Linux: major s, i minor

Identificarea unui dispozitiv

Windows: numele unui dispozitiv (\\Device\\HardDisk0)

Linux: major s, i minor

major: tipul dispozitivului (driverul folosit)

Identificarea unui dispozitiv

Windows: numele unui dispozitiv (\\Device\\HardDisk0)

Linux: major s, i minor