4 - Linux Fundamentals

Question 1

What part of your computer system is Linux?

Answer 1

The OS kernel. Coordinates between hardware, software, users and files.

Question 2

What is User Space

Answer 2

Everything that happens outside of the kernel

Question 3

What starts the OS kernel?

Answer 3

The bootloader

Question 4

What starts the computer’s bootloader?

Answer 4

BIOS/UEFI

Question 5

What is “ring zero”?

Answer 5

kernel space

Question 6

Where does the kernel export data about hardware (as virtual files)?

Answer 6

/proc/ and /sys/

Question 7

Where does the kernel present the virtual files representing hardware such as HIDs and drive partitions?

Answer 7

/dev/

Question 8

What are the two types of device files?

Answer 8

Block and Character

Question 9

What Linux command can you use to determine if a device file is a block file or a character file?

Answer 9

ls -l

Question 10

Are disk drives in /dev/ more likely to be block devices or character devices?

Answer 10

Block devices

Question 11

Are peripherals and serial ports in /dev/ more likely to be block devices or character devices?

Answer 11

Character devices

Question 12

Which system can be used to issue device-specific commands to devices?

Answer 12

ioctl

Question 13

What is the file path for the root of the Linux virtual file tree?

Answer 13

/

Question 14

What is the file path for a user home?

Answer 14

/home/username

Question 15

What is the command used to mount a disk?

Answer 15

mount

Question 16

What would mkfs.ext4 /dev/sda1 do?

Answer 16

Format the disk at sda1 to the ext4 filesystem.

Question 17

What is a Process?

Answer 17

A running instance of a program.

Question 18

What is a PID?

Answer 18

Process Identifier, the reference for a running process.

Question 19

How many things can a CPU core do at once?

Answer 19

one

Question 20

What user account do processes run under?

Answer 20

The user who started the process.

Question 21

How can you get a command line if your GUI is broken?

Answer 21

Launch a virtual console with CTRL+ALT+F1 (F1 through F6 all work)

Question 22

What does the pwd command do?

Answer 22

(Print Working Directory) Prints the current location yur shell is working in.

Question 23

What is the command to change directories?

Answer 23

cd followed by an absolute or relative path.

Question 24

What does cd - do?

Answer 24

Takes you to the last directory you navigated away from.

Question 25

What command takes you to the parent directory?

Answer 25

cd ..

Question 26

What is the command to create a directory?

Answer 26

mkdir directoryName

Question 27

Which command is for moving or renaming files or directories?

Answer 27

mv

Question 28

Which command is for removing an empty directory?

Answer 28

rmdir directoryName

Question 29

Which command is for removing a file?

Answer 29

rm fileName

Question 30

What command means “copy”?

Answer 30

cp

Question 31

Which command lists directory contents?

Answer 31

ls

Question 32

When you try to run a program, where is Linux looking for the program to run?

Answer 32

The list of directories in the PATH environment variable.

Question 33

What does echo $PATH do?

Answer 33

Shows the list of directories in your PATH environment variable.

Question 34

What are common paths for executable commands?

Answer 34

/usr/local/sbin,/usr/local/bin,/usr/sbin,usr/bin,/sbin,/bin

Question 35

How do you ask Linux about the location of a command.

Answer 35

type followed by the command shows the command’s path.

Question 36

“In penetration tests, you will most often receive shell access to a system after a successful exploit, rather than a graphical user interface. Proficiency with the command line is essential for your success as a security professional.”

Answer 36

Did you know that?

Question 37

How can you print the contents of an environment variable to the screen?

Answer 37

echo $VAR

Question 38

Where are two places system variables can be placed, for use by command line programs?

Answer 38

/etc/profile and ~/.profile

Question 39

Where should you save environment variables to make them available to all sessions regardless of whether a shell has been executed?

Answer 39

etc/environment

Question 40

FHS

Answer 40

Filesystem Hierarchy Standard

Question 41

/bin/

Answer 41

basic programs

Question 42

/boot/

Answer 42

Kali Linux kernel and other files required for its early boot process

Question 43

/dev/

Answer 43

device files

Question 44

/etc/

Answer 44

configuration files

Question 45

/home/

Answer 45

user’s personal files

Question 46

/lib/

Answer 46

basic libraries

Question 47

/media/

Answer 47

mount points for removable drives (usb, dvd)

Question 48

/mnt/

Answer 48

temporary mount point

Question 49

/opt/

Answer 49

third party extra applications

Question 50

/root/

Answer 50

root’s personal files

Question 51

/run/

Answer 51

volatile runtime storage, doesn’t persist across reboots

Question 52

/sbin/

Answer 52

system programs

Question 53

/srv/

Answer 53

data used by servers hosted on this system

Question 54

/tmp/

Answer 54

temporary files, (often emptied at boot)

Question 55

/usr/

Answer 55

a parent folder for applications and data

Question 56

/usr/bin/

Answer 56

basic programs

Question 57

/usr/sbin/

Answer 57

system programs

Question 58

/usr/lib/

Answer 58

basic libraries

Question 59

/usr/share/

Answer 59

architecture-independent data

Question 60

/usr/local/

Answer 60

used by the admin for installing applications without interfering with files handled by dpkg

Question 61

/var/

Answer 61

variable data handled by services. This includes log files, queues, spools, and caches.

Question 62

/proc/ and /sys/

Answer 62

Used by the kernel for exporting data to user space

Question 63

~

Answer 63

$HOME

Question 64

What is in your home directory?

Answer 64

dotfiles (application configuration files) and user files

Question 65

What flag do you add to ls to show hidden files?

Answer 65

-a

Question 66

XDG Base Directory Specification’s location for user config files?

Answer 66

~/.config

Question 67

XDG Base Directory Specification’s location for user cache files?

Answer 67

~/.cache

Question 68

XDG Base Directory Specification’s location for user application data files?

Answer 68

~/.local

Question 69

cat

Answer 69

reads a file to the screen

Question 70

less or more

Answer 70

read files to the screen, with pagination

Question 71

>

Answer 71

output into a file

Question 72

>>

Answer 72

append a file with output

Question 73

echo

Answer 73

print a string or evaluated variable to the terminal

Question 74

How do you search for files?

Answer 74

find directory criteria such as find /etc -name "host*"

(locate could also work, but you need to know about find)

Question 75

How do you search within files?

Answer 75

grep expression files such as grep "user@example.com" filename.txt

Question 76

How do you find a process’ PID?

Answer 76

ps aux

Question 77

What command would you use to send a kill signal to a process?

Answer 77

kill such as kill -s KILL 667288

Question 78

What do you add to a command to run it in the background?

Answer 78

& at the end

Question 79

How do you access a background process?

Answer 79

fg %job-number

Question 80

How do you find your background processes?

Answer 80

jobs

Question 81

What does CTRL-Z do?

Answer 81

Pauses a job and puts it into the background.

Question 82

How do you resume a paused background job?

Answer 82

bg %job-number

Question 83

What are the three user categories for file permissions?

Answer 83

• Owner u
• Owner Group g
• Others o

Question 84

What are the three types of file rights?

Answer 84

• Read r
• Write w
• Execute x

Question 85

What are the two rights particular to executable files?

Answer 85

• setuid
• setgid

s

Question 86

Why would a penetration tester look for executables that have the setuid permission allowed?

Answer 86

If the software is vulnerable, they may be able to execute commands as root.

Question 87

What does execute access mean in the context of a directory?

Answer 87

The user may travel through a directory, even if they don’t have permission to read the contents.

example: cd noread/destination

Question 88

What effect does the setgid permission have on a directory?

Answer 88

Files created in the directory will belong to the group that owns the directory, rather than the main group of the user who created the file.

Question 89

What is the Sticky Bit?

Answer 89

t is a permission for directories that restricts the deletion of files to the files owner, or the owner of the file’s parent directory.

Question 90

What command changes the owner of a file?

Answer 90

chown user file

Question 91

What command changes the owner group of a file?

Answer 91

chgrp group file

Question 92

Which command changes the rights of a file?

Answer 92

chmod rights file

Question 93

Which command could you use to change the user and group of a file at the same time?

Answer 93

chown user:group file

Question 94

What are the two ways of representing rights?

Answer 94

• symbolic
• octal

Question 95

What are the respective octal values for read, write, and execute?

Answer 95

• read = 4
• write = 2
• execute = 1

Question 96

What are the respective octal values of setuid, setgid, and sticky?

Answer 96

• setuid = 4
• setgid = 2
• sticky = 1

Question 97

What is “u=rwx,g+rw,o-r” in octal

Answer 97

773

Question 98

What are the rights “a=rx “ in octal

Answer 98

555

Question 99

What permission results from “chmod 4754 file”

Answer 99

• u = read
• g = read, write, execute
• o = read, execute
• setuid

Question 100

Which command is used to restrict permissions with an octal “mask”

Answer 100

umask

Question 101

What flag on chmod, chown, etc. makes the command recursive?

Answer 101

-R

Question 102

What is the difference between the ‘x’ and ‘X’ user right symbols.

Answer 102

• x is for executing files
• X is for traversing directories

Question 103

Which command displays information on memory utilization?

Answer 103

free

Question 104

What option can you add to the free command to have the output displayed in more “human readable” units?

Answer 104

-h

Question 105

Which options could you append to free to display the output in MiB or GiB?

Answer 105

-m or -g

Question 106

What command will show your disk utilization?

Answer 106

df (disk free)

Question 107

Which command displays the identity of the user?

Answer 107

id

Question 108

Which command returns a line documenting the kernel name, hostname, kernel release, kernel version, machine type, and the name of the OS?

Answer 108

uname -a

Question 109

“the kernel emits messages that it stores in a ____ ______ whenever something interesting happens”

Answer 109

ring buffer

Question 110

How do you display the kernel logs?

Answer 110

dmesg

Question 111

What command is for reading the systemd journal?

Answer 111

journalctl

Question 112

What do the following journalctl options do?

• -r
• -f
• -u

Answer 112

• reverse chronological
• continuously
• limit messages to those emitted by a specific systemd unit

Question 113

What’s a tool that can summarize the data exported by the kernel to /proc/ and /sys/?

Answer 113

• lspci for pci devices.
• lsusb for usb devices.
• lspcmcia for pcmcia devices.

Question 114

What does lsdev list?

Answer 114

Communication resources used by devices.

Question 115

What command is like a combination of: lspci, lsusb, and lsdev

Answer 115

lshw

Question 116

Which command would you use to export information you’d want to include in any hardware support problems?

Answer 116

lshw

Question 117

Which command can you use to launch a text editor?

Answer 117

editor

Question 118

How is locate different than find?

Answer 118

locate searches for files using a database. find looks through the file tree for files.

Question 119

What does time do?

Answer 119

Measures how long it takes for a command to run

Question 120

What does updatedb do?

Answer 120

Updates the database of file locations used by locate.

Question 121

What is zcat used for?

Answer 121

Displaying the contents of compressed files without decompressing