Essential Services

Question 1

What’s the purpose of a server?

Answer 1

The purpose of a server is usually to provide services to clients (“to serve” others).

Question 2

Which two types of clients do you know?

Answer 2

Clients and servers can be internal clients (in, e.g., a corporate network) or external (internet).

Question 3

What does IP stand for?

Answer 3

Internet Protocol

Question 4

What are Routers/Gateways used for?

Answer 4

Routers/Gateways are used to connect different networks in that they route packets originating from the source network to the destination network based on their destination IP address.

Question 5

What are NAT Routers? What’s special about them?

Answer 5

NAT Routers, allow a single external IP address to be used by many private addresses.

Question 6

Why are IPv4 addresses still in use?

Answer 6

A lot of devices still lack support for IPv6

Question 7

How are the parts of IPv6 addresses separated?

Answer 7

By :

Question 8

What does DNS stand for?

Answer 8

domain name system

Question 9

What does the DNS do?

Answer 9

As IP addresses, consisting of several numbers, are hard to remember, the domain name system (DNS) has been put in place. Its purpose is the translation of names to IP addresses and back.

Question 10

How does the communication between client and DNS server work?

Answer 10

The client queries the DNS server to resolve the name, that is it asks the DNS server for the IP address associated with a given name. The DNS servers responds with an IP address and the client can connect via this IP address.

Question 11

How many ports are there per IP address?

Answer 11

65535 (different doors)

Question 12

What are well-known ports?

Answer 12

Standardised ports, whose port number is associated with a known service. (service = server)

Question 13

What’s the job of the web server?

Answer 13

The web server is used, as the name suggests, to serve web pages.

Question 14

How are web pages requested and transferred?

Answer 14

With the HTTP protocol (hyper text transfer protocol)

Question 15

Name a popular web server

Answer 15

Apache 2

Question 16

What does SSL stand for?

Answer 16

secure socket layer

Question 17

Name SSL libraries

Answer 17

OpenSSL or GnuTLS

Question 18

Why is configuration split across multiple files?

Answer 18

For better separation

Question 19

What are the most important configurations?

Answer 19

• ServerAdmin
  Name (and e-mail address) of the server administrator
• ServerName
  Name of the server, usually fully qualified domain name (FQDN)
• DocumentRoot
  Where to look for documents to serve
• SSLEngine
  Enable/disable encryption (SSL)

Question 20

What is a Virtual Host?

Answer 20

One Apache server can be configured to serve multiple domains and IP addresses. A Virtual Host is used to serve different domains or subdomains on the same IP address. Apache then decides upon connecting, based on the name, which virtual host has to respond (Name-based Virtual Hosts). Each Virtual Host can have its own set of Apache options defined.

Question 21

How can you extend Apache’s functionality of a basic server?

Answer 21

By using modules

Question 22

Name some Modules

Answer 22

• Server Sided Scripts (PHP, WSGI, CGI, …)
• Encryption Support (SSL)
• Database Access (MySQL, PostgreSQL, SQLite, …)
• File Serving Capabilities (WebDAV)
• Proxy Support

Question 23

What is PHP?

Answer 23

A very powerful and common scripting language is PHP, the Hypertext Pre-Processor

Question 24

How and where are PHP scripts executed?

Answer 24

All PHP scripts are executed on the server and can run directly within Apache using the PHP interpreter (provided as an Apache Module).

Question 25

How are PHP scripts identified?

Answer 25

PHP scripts are identified by their file extension, nowadays most of the time simply .php

Question 26

Which applications are written in PHP?

Answer 26

Many modern web applications are written in PHP, examples include Webmail, Content Management Systems, Web Forms, Wiki Systems, etc.

Question 27

What can you find in /etc/php?

Answer 27

System-wide configuration for PHP and an Apache-specific configuration file.

Question 28

What’s SSH standard port?

Answer 28

22

Question 29

What can you do against SSH attackers?

Answer 29

It is good practice to change the port to a higher, unused number. However, this only reduces the amount of attacks, but is in no way a security concept (security by obscurity).

Question 30

How and why can you compare SSH and VPN?

Answer 30

SSH provides the ability to tunnel about anything over its encrypted channel. It thus provides nearly the capabilities of a fully-fledged virtual private network (VPN) solution.

Question 31

What is a Secure Shell Daemon?

Answer 31

Remote console login services are provided by the Secure Shell Daemon - ssh. It allows the user to remotely connect to a server and gain access to the console via an encrypted channel. Authentication can either be done via password or public key or even a combination thereof.

SSH also provides a secure way to copy files, without capabilities to list directory contents (scp). On the other hand, a secure implementation similar to FTP is availabe (sftp).

Question 32

Where lies the configuration of SSH?

Answer 32

The configuration of SSH is split into server and client side configuration files. Both files rely under the /etc/ssh directory and are even named very similarily.

Question 33

What is the SMTP Server?

Answer 33

The SMTP Server (Simple Mail Transfer Protocol) is used for sending an E-Mail from one machine to another (for example Postfix).

Question 34

What does IMAP stand for?

Answer 34

Internet Message Access Protocol

Question 35

What does POP stand for?

Answer 35

Post Office Protocol

Question 36

How does E-Mail communication work?

Answer 36

The SMTP Server sends an E-Mail from one machine to another. The E-Mail is then stored by the handling (receiving) SMTP service into the user’s inbox. An IMAP or POP server enable the receiver to check for and retrieve the message.

Question 37

Which ports do you need to run a secure, modern E-Mail system?

Answer 37

Ports 25, 143 and 110