finals

Question 1

what does a package manager do?

Answer 1

makes it easy for users to manage software on their system. Allows you to do stuff like install, remove, update software

Question 2

What is an advantage of package manager?

Answer 2

generally handle dependencies. If a package needs additional software to run, the package manager will install it too

Question 3

What is one of the few tools that makes one Linux distro different from another?

Answer 3

the package manager. And diff distros will have different packages in their package repositories

Question 4

What’s the package manager for Arch Linux?

Answer 4

pacman

Question 5

What’s the package manager for Ubuntu?

Answer 5

apt

Question 6

What’s the package manager for Nix?

Answer 6

nix

Question 7

What is one of the reasons Arch Linux is so popular?

Answer 7

it has a lot of packages and those packages are generally up-to-date

Question 8

Which distro has the largest package repository? By how much?

Answer 8

Nix. By ~30% more

Question 9

pacman command to refresh local package repository?

Answer 9

pacman -Sy

Question 10

pacman command to upgrade isntalled packages

Answer 10

pacman -Syu

Question 11

pacman command to install one or more packages and any dependencies

Answer 11

pacman -S <packages>

Question 12

pacman command to search for a packages

Answer 12

pacman -Ss <search term>

Question 13

pacman command to remove a package, configuration files, and package dependencies

Answer 13

packman -Rns <packages>

Question 14

pacman command to display remote information about a package. To display extensive info about a given package??

Answer 14

pacman -Si <package>

Question 15

what is getopts? What arguments does it take?

Answer 15

it’s a shell builtin that can be used to handle options in shells scripts.

it takes 3 arguments:
- valid options that will be handled
- a variable populated with option arguments (ie “${opt}” )
- a list of options and arguments to be processed $@

Question 16

what is optarg?

Answer 16

when a flag is set to expect an argument, the argument for that flag is held in the OPTARG variable (eg. my_script -n “ted” <– the OPTARG for -n is the string “ted”)

Question 17

how to tell getopts to run in silent error checking mode?

Answer 17

Put a colon in the options string

eg. “:a:b:”
the first : tells it to run in silent error checking mode

Question 18

what does “shift” do?

Answer 18

Shift positional parameters n characters to the LEFT (default is 1 character).
Cannot undo it (no “unshift”).
Shifts are cumulative

Question 19

how to shift positional parameters to remove any options handled by getopts

Answer 19

shift $(($OPTIND -1))

Question 20

do the flags and flag options come first or the positional arguments?

Answer 20

flags and flag options should be provided before positional arguments

Question 21

how to check if there are positional parameters

Answer 21

shift $(($OPTIND -1))

if [[ $# -lt 1 ]]; then
echo “….”
exit 1
fi

Question 22

What’s FTP?

Answer 22

File Transfer Protocol

Popular method of transferring files to and from remote servers

Question 23

Why was FTP deprecated?

Answer 23

Lack of security features

Question 24

What’s SFTP?

Answer 24

Secure(or SSH) File Transfer Protocol

provides functionality similar to FTP, but uses SSH for security

Question 25

How to get the help menu for sftp?

Answer 25

?
or
help

Question 26

What’s the sftp command to make a local directory? To make a remote directory?

Answer 26

local directory:
lmkdir dir-name

remote directory:
mkdir dir-name

Question 27

how to download a file from remote server?

Answer 27

Connect via sftp. Then:
get file-path

Question 28

How to upload a file via sftp?

Answer 28

put file-path

file will be uploaded to the users home directory

Question 29

Vim: what does gg do?

Answer 29

go to beginning of file

Question 30

Vim: what does =G do?

Answer 30

indent and go to file end

Question 31

Vim: how do you move to the first instance of a character in a line?

Answer 31

f <character>

eg. f g
will move to the first instance of the letter g on the current line

Question 32

What can pacman do?

Answer 32

can install, update, remove packages

Question 33

What’s a package and what does it contain?

Answer 33

A package is an archive.
It contains:
o All of the compiled files of an application
o Metadata about the app (eg. app name, version, dependencies, etc)
o Installation files and directives for pacman
o (optionally) extra files to make your life easier (eg. a start/stop script)

Question 34

benefits of using packages instead of compiling and installing programs yourself

Answer 34

o Easily updatable
o Dependency checks
o Clean removal

Question 35

why should you use “pacman -Syu package_nam” instead of “pacman -Sy package_name”

Answer 35

in practice, do not run “pacman -Sy package_name” cuz it can lead to dependency issues

Question 36

How to install single package or list of packages?

Answer 36

pacman -S package_name1 package_name2

Question 37

What’s a virtual package?

Answer 37

Special package that does not exist by itself but is provided by 1 or more other packages. Virtual packages cannot be installed by their name; they’re installed when you have installed a package providing the virtual package

Question 38

To remove a single package but leave its dependencies installed

Answer 38

pacman -R package_name

Question 39

To remove package and its dependencies not required by other packages

Answer 39

pacman -Rs package_name

Question 40

To remove package that’s required by another packages without removing the dependent package

Answer 40

pacman -Rdd package_name

Question 41

To search for already installed package

Answer 41

pacman -Qs string1 string2

Question 42

To list all packages no longer required as dependencies (orphans)

Answer 42

pacman -Qdt

Question 43

Pacman stores downloaded packages where?

Answer 43

/var/cache/pacman/pkg/

Question 44

Does pacman remove old or uninstalled versions automatically? Yes or no, and what are the advantages?

Answer 44

No.
o Allows downgrade without having to retrieve previous version through other means
o Package that has been uninstalled can easily be reinstalled directly from cahce directory without new download from the repository

Question 45

How to delete all cached versions of installed and uninstalled packages except for the most recent 3

Answer 45

paccache -r

Question 46

To remove all cached packages not currently installed and unused sync databases

Answer 46

pacman -Sc

Question 47

How to download package without installing it

Answer 47

pacman -Sw package_name

Question 48

What is a “unit”?

Answer 48

any resource/object that systemd knows how to manage

Question 49

What is a unit file?
Where are systemd unit files found?

Answer 49

unit file is a plain text ini-style file that encodes information about a service, socket, device,… controlled and supervised by systemd

/usr/lib/systemd/system
/run/systemd/system
/etc/systemd/system

Question 50

Where are the system’s copy of unit files? The systemd unit files distributed with installed RPM

Answer 50

/usr/lib/systemd/system

Question 51

Where are dynamically created unit files created at runtime

Answer 51

/run/systemd/system

Question 52

What should you do if you need to modify the system’s copy of a unit file?

Answer 52

create a unit file here: /etc/systemd/system

Question 53

Order of precedence for unit files?

Answer 53

1. /etc/systemd/system
2. /run/systemd/system
3. /usr/lib/systemd/system

Question 54

How can you override specific directives from the system’s unit file?

Answer 54

Create subdirectory named after the unit file with .d appended to the end

eg. for unit called example.service, create a subdir called example.service.d and in this directory a file ending with .conf will override or extend the attributes of the system’s unit file

Question 55

What are the types of unit files?

Answer 55

.service
.socket
.device
.mount
.automount
.swap
.target
.path
.timer
.snapshot
.slice
.scope

Question 56

what do service files do?

Answer 56

Manages services/applications (start/stop, auto-start conditions, dependencies, ordering info for related software).

Question 57

what are the sections of a service unit file?

Answer 57

[Unit]
…
[Service]
…
[Install]
…

Question 58

What is “WantedBy=” in a unit file? Which section does it go in?

Answer 58

In [Install]
Specifies how unit should be enabled. Lets you specify dependency relationship.

eg. WantedBy=multi-user.target

Question 59

What are template unit files? How do you identify it?

Answer 59

can be used to make multiple instances of units. They have a @ after base unit file and before unit (eg. example@.service)

Question 60

What is systemd?

Answer 60

it’s an init system and system manager

Question 61

what’s the fundamental purpose a an init system?

Answer 61

initialize components that must be started after linux kernel is booted

Question 62

How to start service?

Answer 62

sudo systemctl start application.service

Question 63

how to stop service

Answer 63

sudo systemctl stop application.service

Question 64

how to restart or reload a service?

Answer 64

sudo systemctl reload-or-restart application.service

Question 65

How to enable service? Disable?

Answer 65

sudo systemctl enable application.service
sudo systemctl disable application.service

Question 66

What does enabling a service do?

Answer 66

Tells systemd to start the service automatically at boot. It will create a symbolic link from the system’s copy of the service file (usually at /usr/lib/systemd/system or /etc/systemd/system) into a location where systemd looks for autostart files (usually etc/systemd/system/some_target.target.wants)

Question 67

how to check status of service?

Answer 67

systemctl status application.service

Question 68

how to check if unit is currently active?

Answer 68

systemctl is-active application.service

exit code 0 if it’s active

Question 69

How to check if unit is enabled?

Answer 69

systemctl is-enabled application.service

exit code 0 if enabled, exit code 1 if disabled

Question 70

How to get a list of all “active/running” units that systemd knows about?

How to see every available unit file within systemd path (all installed; including those systemd didn’t try to load)?

Answer 70

systemctl list-units

systemctl list-unit-files

Question 71

how to show process status for a PID? Status of a unit?

Answer 71

systemctl status <pid></pid>

systemctl status <unit></unit>

Question 72

what is systemctl?

Answer 72

a tool used to manage services. eg. find information about services, start/stop service, enable/disable service

Question 73

How to see unit’s dependency tree?

Answer 73

systemctl list-dependencies sshd.service

Question 74

What is masking a unit and how do you do it?

Answer 74

sudo systemctl mask nginx.service

marks the unit as completely unstartable

Question 75

Command that will open a unit file snippet? What does it do?

Answer 75

sudo systemctl edit nginx.service

make a blank file that can be used to override or add directives. A dir is created in /etc/systemd/system that contains the name of the unit w/ .d appended. In that dir, a snippet called override.conf is created

Question 76

how to reload systemd manager configuraiton? (reload configuration files)

Answer 76

sudo systemctl daemon-reload

Reload the systemd manager configuration. When you modify unit files or other systemd configuration files

Question 77

What is a target?

Answer 77

A group of services that are attached through dependencies that start all of the services required to meet some sort of system state. Special unit files that describes a system state or synchronization point.
Have suffix .target

Question 78

How to find default target for system?

Answer 78

systemctl get-default

Question 79

how to list available targets?

how to see current targets loaded into memory?

Answer 79

systemctl list-unit-files –type=target

systemctl list-unit –type=target

Question 80

list all active targets

Answer 80

systemctl list-units –type==target

Question 81

How to isolate a target?

Answer 81

sudo systemctl isolate multi-user.target

Question 82

how to restart systemctl?

Answer 82

sudo systemctl reboot

Question 83

how to put system into rescue (single-user) mode?

Answer 83

sudo systemctl rescue

Question 84

What’s nginx?

Answer 84

open-source, high-performance HTTP web server

Question 85

What’s a web server? What’s the purpose of it?

Answer 85

a web server is software we can run on our hardware server. The purpose is to server documents over the internet. Usually using HTTP(s). Web severs help provide secure access to documents. Many provide additional features like load balancing and proxy forwarding

Question 86

What is a firewall?

Answer 86

A security system which monitors and governs the network traffic. Kind of like having a gatekeeper. Allows certain things in and out.

Question 87

What port is SSH?

Answer 87

22

Question 88

What’s port number for HTTP?

Answer 88

80

Question 89

Why use a firewall?

Answer 89

Main use care is for security. It can intercept incoming malicious traffic before it reaches network. Can prevent sensitive information from leaving network.

Also filters content.W

Question 90

What’s UFW?

Answer 90

a program that makes it easier to manage a netfilter firewall. UFW manages nftables or iptables

Question 91

how to install ufw?

Answer 91

sudo pacman -S ufw

Question 92

what are the 2 parts to enabling ufw?

Answer 92

1. enable ufw service managed by systemd
2. enable configured firewall (managed by ufw utility itself)

Question 93

how to enable and start ufw with systemctl? When happens when you use this command?

Answer 93

sudo systemctl enable –now ufw.service

creates a symbolic link: /etc/systemd/system/multi-user.target.wants/ufw.service -> /usr/lib/systemd/system/ufw.service

Question 94

where are the system-wide configuration files for ufw?

Answer 94

/etc/ufw

Question 95

how to check status of ufw? What does it show?

Answer 95

sudo ufw status verbose

shows port it’s connecting to (“To”), if it’s allowing/denying/etc (“Action”), and connection from where (“From”)

Question 96

what’s the defult ufw configuration?

Answer 96

deny all incoming traffic
allow all outgoing traffic

Question 97

how to set default for ufw? eg. default to not allow anything in?

Answer 97

sudo ufw default…

sudo ufw default deny incoming
sudo ufw default allow outgoing

Question 98

what happens when you use “sudo ufw limit ssh”?

Answer 98

UFW sets up rules to limit new incoming connections to the SSH port (port 22) to a threshold that typically allows 6 connections from a single IP address within a period of 30 seconds. If this rate is exceeded, subsequent connection attempts are blocked for a period of time

Question 99

how to allow addresses in the range 203.0.113.0/24 to connect via ssh?

Answer 99

sudo ufw allow from 203.0.113.0/24 to any port 22

Question 100

how to deny traffic from the address 203.1.113.4?

Answer 100

sudo ufw deny from 203.1.113.4

Question 101

how to rate limit ssh connection?

how to allow ssh from anywhere?

Answer 101

ufw limit ssh

sudo ufw allow ssh

Question 102

what’s port 22?

Answer 102

ssh

Question 103

what’s port 80?

Answer 103

http

Question 104

ufw - how to see list of application commands?

Answer 104

sudo ufw app list

Question 105

ufw how to allow http connections?

Answer 105

sudo ufw allow http

Question 106

how to turn on firewall?

Answer 106

sudo ufw enable

Question 107

how to delete a rule in ufw? Eg. delete ssh

Answer 107

sudo ufw delete allow SSH

Question 108

how to get number list/status of ufw rules?

Answer 108

sudo ufw status numbered

shows the rules but numbered and you can remove it with its number (eg. sudo ufw delete 2)

Question 109

what’s an advantage of cloud service provider offering a firewall over a tool like UFW?

Answer 109

you can configure a firewall in the cloud service provider than put it in front of multiple servers

Question 110

when would you use UFW instead of a cloud service providers firewall?

Answer 110

• need firewall rules for specific application (lets you manage rules tailored to the needs of the applications on that server without affecting the other systems)
• When you don’t have a cloud firewall tool you can use.

Question 111

what’s a proxy server?

Answer 111

intermediary server that sits b/w the client and destination server on the internet. It acts on behalf of the client, making requests to resources on other servers and then returning the data back to the client.

Question 112

describe where a REVERSE proxy sits. What does it do? Benefits?

Answer 112

user’s device –> internet –> reverse proxy –> original server

Reverse proxy sits in front of 1 or more web servers. It receives requests intended for the servers, processes them, then forwards it to the appropriate server. Client doesn’t know anything about the actual server.

Useful for load balancing, web acceleration, security

Question 113

describe where a FORWARD proxy sits. What does it do? benefits?

Answer 113

user’s device <– forward proxy <– internet <– server

sits between client and internet. Retrieves data from internet on behalf of client.

Useful for: privacy/anonymity, malware prevention, content control/filtering, caching

Question 114

what is “proxy_pass”? Where is it used/set?

Answer 114

It’s a directive used in web server configuration (like nginx) to forward requests received by server to another server. “proxy_pass” is key component to set up reverse proxy. Enables nginx to act on behalf of the client to retrieve resources from another server (the proxy server or backend server) and then send t back to the client.

Configured in location blocks in nginx configuration file. In a server block

Question 115

What is the “proxy_set_header”?

Answer 115

it’s a directive used to pass headers from the original request to the proxy server.
In the nginx configuration –> in the server block –> in the location block

Question 116

vim: what does 0 do?

Answer 116

go to start of line

Question 117

vim: what does $ do?

Answer 117

go to end of a line

Question 118

vim: what does M do?

Answer 118

move to middle of screen

Question 119

What has a PID 1?

Answer 119

systemd

Question 120

how to create symlink?

Answer 120

ln -s /source/location /destination/location

Question 121

how to disable a site?

Answer 121

unlink the active symlink in /etc/nginx/sites-enabled

eg.
unlink /etc/nginx/sites-enabled/example.conf

Question 122

what is the SaaS version of nginx?

Answer 122

the .com version

Question 123

what is the .org version of nginx?

Answer 123

open source web server

Question 124

how to start nginx service?

Answer 124

sudo systemctl start nginx.service

Question 125

where is the main nginx configuration file?

Answer 125

/etc/nginx/nginx.conf

Question 126

what’s a common dir for storing web content served by nginx? (There’s no default, it’s based on the distro)

Answer 126

/var/www/html

Question 127

what’s https port number?

Answer 127

443

Question 128

what command validates nginx.conf file for syntax errors?

Answer 128

sudo nginx -t

Question 129

Where is the HTML document nginx is serving by default? (But it depends on the distro)

Answer 129

/usr/share/nginx/html/index.html

Question 130

when do you use “sudo systemctl reload nginx”

Answer 130

reloads the configuration of the Nginx

Question 131

where is default configuration of systemd?

Answer 131

/etc/systemd/system. conf

Question 132

vim: what’s gg

Answer 132

go to the file beginning

Question 133

what’s a service? what are 2 examples of services?

Answer 133

any background process that runs without a user interface. Services generally wait for events to occur that trigger some response. “Service” sometimes used interchangeably with “daemons”.

2 examples: web server (waits for response from client before returning response), sshd (waits for remote user to login via ssh)

Question 134

what is multi-user.target?

Answer 134

when all of the services needed for a minimal working server have started. this is a common one for servers

Question 135

what’s grphical.target?

Answer 135

when all services needed for graphical login have started. when you can login through graphical login manager. this is a common one for desktop. graphical.target first loads the multi-user.target and adds several additional dependencies to tit

Question 136

What does in the /etc/systemd/system/ directory?

Answer 136

• Systemd files created by “systemctl enable”
• unit files added for extending a service

Question 137

How do you handle dependency when: unit A needs unit B to be running before A is started?

Answer 137

in [Unit] section of A, add Requires=B and After=B

Note: with After= then the two units can be started in parallel

Question 138

What happens with WantedBy= ?

Answer 138

When unit with this directive is enabled, a dir will be made in /etc/systemd/system named after the specified unit (that you want) with .wants appended to the end. Then a symbolic link to the current unit will be placed inside.

Question 139

What are some thing in the [Unit] section of a unit file?

Answer 139

usually used for metadata and configuring relationships

eg.
Description=
Requires=
Before=

Question 140

vim: c, ci”, ca”

Answer 140

c key in normal mode is “change”.

ci” will delete contents inside of matching quotes as long as cursor is anywhere inside of the quotes.

ca” will also delete the quotation marks

can also be ci( and stuff. a = around, i=inside

Eg. when you press c then w, it deletes from the cursor position to the end of the word under the cursor.