9 Services

Question 1

services

Answer 1

interactive programs run in the background users can interact with

ex: web service users can interact with

Question 2

daemons

Answer 2

noninteractive programs running on the system and don’t communicate with users

ex: httpd is required to make web service run

Question 3

what is systemd?

Answer 3

software suit that provides an init method/daemon

Question 4

improvements over SysVinit

Answer 4

support parallelization (starting programs at the same time). us Control Groups (cgroups) instead of PID for petter categorization and isolation

Question 5

systemd service commands of systemctl

systemctl {subcommand} {service}

Answer 5

start
stop
restart
enable
disable
status
mask -creates a sym link to /dev/null to prevent starting service

Question 6

unit vs unit files

Answer 6

the term unit describes a resource systemd knows how to manage

unit file defines how the unit must be manages by systemd

Question 7

/lib/systemd/system

Answer 7

house default unit files

Question 8

/etc/systemd/system

Answer 8

configurations managed here and changes to these files override settings default unit settings in /lib but it doesn’t overwrite the file with new configurations

Question 9

.service files directives

Answer 9

Before=
-this will start before any unit in this field
After=
-when multiple units are specified, this unit will start after any unit listed
Requires=
-Units listed will be started if possible, and the primary unit will fail if the units specified by Requires= fail to start
Wants=
-Units listed will be started if possible, but the primary unit will still launch even if the units specified by Wants= fail to start
Type=
-Configures the startup type for the service; Values include simple, exec, forking, oneshot, dbus, notify, and idle
User=
-Specifies the user under whose authority the service runs (usually root)
ExecStart=
-Executes commands along a specified absolute path upon startup to start a service
ExecStop=
-Executes commands along a specified absolute path upon shutdown to stop a service

Question 10

Timer unit files directives

Answer 10

OnBootSec - (monotonic) time spanning from an even such as system startup
OnCalender - (realtime) time referenced from system clock

Question 11

OnCalender format for timer unit files

Answer 11

{day of the week: Fri} (Year-Month-Day) (Hour:Min:Sec) –>

• --* ::*

*/ in a field of {clock time} - specifies whenever this amount of time passes (not the time of day) in clocks field containing this, the value associated and what after matches value execute
ex: :/30:00
in the minute field and associated value is 30 so at least every 30 min, and whatever is after

Question 12

.mount unit files options

Answer 12

What=
-Absolute path to storage to mount
Where=
-Absolute path to mount point directory
Type=
-Define the filesystem type (optional)
Options=
-Any additional required options for the mount action

systemd unit files use dashes as a delimiter for paths when read

Question 13

common .target unit files

Answer 13

default -The target to which the system boots by default

multi-user.target - Starts the enable services and the system to the CLI

graphical.target - Starts the enable services and the system to the GUI

network-online - Starts the specified network services, and delays the target until network service is established

Question 14

systemctl get-default

Answer 14

display default target

Question 15

systemctl isolate {graphical | multi-user}.target

Answer 15

swap system to graphical or multi-user target.

temporary?

Question 16

/etc/rsyslog.conf

Answer 16

main rsyslog configurations file

Question 17

/etc/rsyslog.d/50-default.conf

Answer 17

additional configurations r syslog file

Question 18

cron.error -/var/log/cron

Answer 18

logs all cron messages from error and upwards to /var/log/cron

Question 19

/var/log/syslog
/var/log/messages

Answer 19

general system logs for 1. Debian 2. Red hat derivatives

Log location for rsyslog daemon

Question 20

/var/log/auth.log
/var/log/secure

Answer 20

authentication logs for 1. Debian 2. Red Hat derivatives

Question 21

/var/log/yum.log

Answer 21

logs YUM package management

Question 22

/var/log/httpd

Answer 22

dir for Apache webserver log information

Question 23

how to make a centralized server for rsyslogs where other servers will forward

Answer 23

1. uncomment lines in the /etc/rsyslog.conf on the central server
   # Provides UDP syslog reception
   $ModLoad imudp.so
   $UDPServerRun 514
2. configure a template to organize the storage of inbound logs
   $template DynamicFile,”/var/log/%HOSTNAME%/forwarded-logs.log” . -?DynamicFile
3. configure firewall to accept inbound connections over port 514/udp

-On the forwarding server, edit the /etc/rsyslog.conf file and add the following line to the Rules section: . @IP
-Where IP is the IP
-address of the
-destination log
-storage server.
-Restart the rsyslogd on both servers.

4. On forwarding server, type “ logger TEST “and search /var/log for a dir of the forwarding server and an entry

Question 24

Configure network time NTPd (daemon)

older service

Answer 24

synchronizes system time against 1 more more specified time servers over port 123/udp.
Configure: define time servers by editing /etc/ntp.conf
- add “server
{timeserver-IP-
address}” entry

restart service

Question 25

when is chrony better than ntpd

Answer 25

when Linux deployments lack constant or consistent network connections, time cant be accurately or immediately synchronized time settings.

Question 26

Configure chrony

latest service

Answer 26

Uses port 123/udp
edit chrony configuration file /etc/chrony.conf

view detail configs, status, and sync info with:
chronyc -n tracking
chronyc activity

Question 27

cron jobs

Answer 27

primary Linux schedular is cron. the tool references a crontab file to determine if a task has been assigned.
cron jobs can be used to specify tasks each min, hr, day, month, week day.

Question 28

cron date format

Answer 28

” * * * * * <cmd> "</cmd>

• min (0 - 59)
• hour (0 - 23)
• day of month (1 - 31)
• month (1 - 12)
  *day of week (0 - 6)

Question 29

/etc/crontab

Answer 29

system wide crontab file

Question 30

/var/spool/cron/crontabs

Answer 30

a per-use crontab

Question 31

crontab -e

crontab [options]

Answer 31

like visudo - its the formal way to edit the cron daemon. cron configurations rely on crontab file

Editing the file is used to schedule events

Question 32

at cmd

at [options] {time}

Answer 32

runs a task once at the specified time. flexible as it can be specify a date and time or to run after a given time period.

used in an interactive manner where “ at {time} “ once executed with pop and interactive menu to specify task.
- Ctrl + D exits

can be used noninteractively by piping “at {time}”
ex: echo “Hi” | at 3 pm

time arguments excepts:
-noon -12:00 p.m.
-teatime - 4:00 p.m.
-midnight - 12:00 a.m.
-now + # {minutes | hour} - time # {min | hr} from now

Question 33

crony vs at

Answer 33

cron scheduling executes at every occurrence of date/time .
at only executes task once and must be made against with the same command to execute similar task

Question 34

what other files can schedule events

Answer 34

systemd .timer files from unit files:
/etc/systemd/system

Question 35

configure an Apache web server

Answer 35

1. edit /etc/httpd/conf/httpd.conf file.
   -find Listen and add
   next to it {localhost
   | 127.0.0.1}:80
   ex: Listen localhost:80
   -find DocumentRoot
   and add
   “/var/www/html”
   next to it like Listen
   ex: DocumentRoot “/var/www/html”

indicates to listens for connections to itself over port 80 and where the file that make up the website are found

2. configure firewall to permit inbound http connections (80/tcp)
   firewall-cmd
   –permanent
   –zone=public
   –add-service=http
   ^(all one line)

firewall-cmd –reload

3. use a text editor to create a simple test web page and save as index.html
   note: rename old
   index file
4. change ownership and grp of the file to Apache

chown apache:apache /var/www/html/index.html

5. enable and start/restart service

systemctl enable httpd
systemctl {start | restart} httpd

6. launch browser to display webpage

firefox http://localhost

Question 36

configure NFS

permits file sharing and accessing over the network from a central server

Answer 36

1. deploy NFS server and install, enable, and start service.

systemctl enable nfs-server
systemctl start nfs-server

2. create or select directories on file server that should be shared/exported over network. note these and possible required permissions
3. Edit /etc/exports file to make these resources available over network
   -must use absolute
   path

ex:
{(dir | file) path} {Network ID/CIDR} ({privileges - symbolic}, sync)
the dir/file will be available to clients connecting from that subnet and have specified privileges

{(dir | file) path} *(ro, sync)

the dir/file can be accessible from any client IP, the “ro” permission specifies read-only (optional)

4. restart service
5. might need to configure firewalls for NFS connections: 111/tcp (and udp) plus 2049/tcp (and /udp)

Question 37

Configure NFS clients

Answer 37

1. display available directories on remote file server

showmount -e {remote -server-IP-address}

2. on client, mount exported dir to a local mount point can create subdir int /mnt for nfs-share

mount -t nfs4 {remote-server-IP}:{NFS dir | file} {mount-point}

can mount -t samba2 work?

Question 38

CUPS

Answer 38

print management system for Linux enable a computer to be a print server. CUPS host can initiate client print jobs.

it can process different data formats on the same server.

Question 39

How to manage CUPS?

Answer 39

provides a web-based interface for configuring the service .

Question 40

/etc/cups/cupsd.conf
/etc/cups/cups-files.conf

Answer 40

CUPS configuration files that the provided CUPS web-based interface modifies

Question 41

CUPS configuration

Answer 41

1. install service and start
   systemctl enable cups
   system start cups
2. open fire wall to CUPS port 631/tcp
3. management interface is access from web:
   http://localhost:631

Question 42

what is lpr

Answer 42

submits files via the command line for printing, and are sent to a default printer unless specified a printer to print or queue.

Question 43

lpr options cmd -E -P {destination}
-# {copies} -T {name} -l -o {options} -p -r

lpr [options] {file}

Answer 43

-E - force encryption

-P {destination} - specify printer

-# {copies} - copies 1-100

-T {name} - set job name

-o {option} set job option like landscape mode, scale output, double-sided etc.

-p print specified files with shaded header including date, time, job name, page #

-r printed files should be deleted after printing

Question 44

lpq cmd

Answer 44

display existing print jobs a printer is managing

Question 45

date cmd and options

Answer 45

print date in specified format

formation date is an argument with with preceding “+”
ex: date +[argument]

• %A - Display the full weekday name.
  -%B - Display the full month name.
  -%F - Display the date in YYYY-MM-DD format.
  -%H - Display the hour in 24-hour format.
  -%I - Display the hour in 12-hour format.
  -%j - Display the day of the year.
  -%S - Display seconds.
  -%V - Display the week of the year.
  -%x - Display the date representation based on the locale.
  -%X - Display the time representation based on the locale.
  -%Y - Display the year.

Question 46

/etc/localtime

Answer 46

maintains date of system
format: <day><month><day><24 hour time ##:##:##> <time> <year></year></time></day></month></day>

Question 47

change systems date

Answer 47

date -s

Question 48

timedatectl cmd

timedate [option] [subcommand]

Answer 48

set system date and time info

subcommand:
status - show current settings
restart - sync local (system) clock base on hardware
list-timezones
set-timezones {time-zone}
ex: timedatectl set-timezone
“America/Denver”
set-time {HH:MM:SS}

options:
-H execute on remote host specified by IP or hostname
–no-ask-password prevent user being asked to authenticate when performing a priv task
–adjust-system-clock sync system clock to real-time clock
-M {local container} execute on local container

Question 49

/usr/share/zoneinfo/

Answer 49

store regional time zones and can use to trouble shoot.
they are special files and to change time zone, create a sym link to on of the time zones in /etc/localtime file