Linux

Question 1

How to check the kernel version of a Linux system?

Answer 1

Uname -a

Question 2

How to see the current IP address on Linux?

Answer 2

Ip a

Question 3

How to check for free disk space in Linux?

Answer 3

df -ah

Question 4

How to see if a Linux service is running?

Answer 4

Service –status-all

Service

Question 5

How to check the size of a directory in Linux?

Answer 5

Du -sh foldername

Question 6

How to check for open ports in Linux?

Answer 6

Netstat -tulpn

ON REMOTE HOST
telnet 8.8.8.8 53
nc -w5 -z -v (AKA NETCAT)

Question 7

How to check Linux process information (CPU usage, memory, user information, etc.)?

Answer 7

Ps aux
Top
htop

Question 8

How to deal with mounts in Linux

Answer 8

mount

Question 9

what does LSOF return

Answer 9

the list of open files
COMMAND
PID
TID
TASKCMD
USER
FD (file descriptor)
TYPE
DEVICE
SIZE
NODE
NAME

Question 10

Difference b/t CTRL-C and CTRL-Z in linux

Answer 10

CTRL - C sends SIGINT which interrupts the application, usually cause process abort and give you a blank prompt

CTRL - Z send SIGSTP which sends the application to suspend mode on the backend to be continued later with fg

Question 11

Difference between Tar and ZIP

Answer 11

tar is only an archiver while zip archives and compresses.

tar preserves setuid, setgid, and sticky bit

Question 12

SETUID

Answer 12

Setuid is a Linux file permission setting that allows a USER to execute that file or program with the permission of the owner of that file. This is primarily used to elevate the privileges of the current user.

Question 13

SETGUID

Answer 13

Setuid is a Linux file permission setting that allows a USER to execute that file or program with the permission of the owner of that file. This is primarily used to elevate the privileges of the current user.

Same as SETUID except with GROUPS

Question 14

STICKY BIT

Answer 14

Prevents everyone except the OWNER of a directory from deleting a file…like on tmp folders.

Question 15

How to check open ports on a remote server without NET CAT or NMAP

Answer 15

echo > /dev/tcp// && echo “GOOD” || “BAD”

Question 16

5 ways to secure an SSH connection.

Answer 16

Disable Password Based Logins and Allow Key based logins
Disable root login
Change the standard port number
Force the service to use only SSH v2
White List users or servers “Allowed List” is the new PC term.

Question 17

LVM

Answer 17

Logical Volume Manager
LV-extend / LV-reduce to extend or reduce partition sizes
create/resize/delete LVM partitions while the server is running.

Question 18

How would you connect to a machine in the cloud

Answer 18

Is there a VPN…connect to it.

SSH @

Question 19

CD

Answer 19

change directory

CD /

Question 20

LS

Answer 20

list directory contents.

ls [flags] [directory]

Question 21

PWD

Answer 21

print working directory (path of current directory or the one you choose)

Question 22

echo

Answer 22

Displays a line of txt

Question 23

grep

Answer 23

print lines to match patterns
If no FILE is given, recursive searches examine the working directory, and nonrecursive searches read standard
input.

Question 24

cp

Answer 24

Copy file

cp

Question 25

systemctl

Answer 25

Control the systemd system and service manager

Question 26

How to list services with systemctl

Answer 26

systemctl list-units type=service

Question 27

how to get status of a service

Answer 27

systemctl status

Question 28

how do you enable a service to start at boot time

Answer 28

systemctl enable

Question 29

start or stop a service

Answer 29

systemctl start/stop

Question 30

What is init system.

Answer 30

``` o Init is the first process o Starts all services and units o Reparening orphaned processes o Systemctl enable/start services o Journalctl -fu nginx (logs) ```

Question 31

How do you show ip address of eth0

Answer 31

• Ip addr show dev eth0

Question 32

how to you display route information

Answer 32

ip route show

Question 33

Know the basics of System D

Answer 33

``` Contains Init which boots the rest of the system Collection of programs and libraries systemctl and journalctl init process management network management login management logs etc ```

Question 34

What is a linux user made of?

Answer 34

Bascially a bunch of lines in a bunch of different files Passwd gives username UID password or reference to the hashed password file remove user from all groups before deleting

Question 35

What do you know about PROC?

Answer 35

Proc file system (procfs) is virtual file system created on fly when system boots and is dissolved at time of system shut down. It contains useful information about the processes that are currently running, it is regarded as control and information center for kernel.

Question 36

How can you check resource utilization

Answer 36

top, htop, or atop

Question 37

How do you look for application binary?

Answer 37

whereis will show you where the app and man pages live

Question 38

report a snapshot of the current processes.

Answer 38

ps

Question 39

How to get open files by process id

Answer 39

LSOF -p

Question 40

how to view open ports on a machine

Answer 40

netstat -tulpn

Question 41

What can prevent you from writing a file?

Answer 41

Ownership in a folder Permissions I-node exhaustion...you can run df -i

Question 42

What are I-nodes

Answer 42

``` Linux datastructure that contains info on files When are they created. File type Permissions Owner ID Group ID Size of file Time last accessed Time last modified Soft/Hard Links Access Control List (ACLs) ```

Question 43

What commands can you use to find i node info on a file

Answer 43

stat (various arguments) %i displays inode number | ls -lhi | grep

Question 44

How to check inode usage on a system

Answer 44

df -ih

Question 45

What happens to the inode when you copy vs move a file

Answer 45

copy creates new inode | move same inode, new info

Question 46

How do you identify where an application is installed

Answer 46

use the WHICH or WHEREIS

Question 47

What is cron

Answer 47

daemon to execute scheduled commands

Question 48

How to find config files for applications

Answer 48

Use Find in the /etc folder

Question 49

You want to check the logs for an apache / nginx server, but you cant find them in /var/log/, where would you look

Answer 49

find out where the application is installed and check the .conf file

Question 50

How would you access a web service running in server B only accessible from server A, to which you have access, but from your local machine

Answer 50

ssh tunnel using port forwarding -L or proxy socks -D ssh -L 8080:192.168.1.1:3389 user@192.168.1.1

Question 51

• Difference between a process and a thread?

Answer 51

Process is an instance of a computer program that is being executed, while a thread is a component of a process which is the smallest execution unit. Processes have their own memory space, which the thread, in turn, use. In a multi-processing environment, each process executes independently. But a thread can read, write or modify data of another thread.

Question 52

What command used to find processes as well as cpu and memory usage?

Answer 52

top, htop

Question 53

What is the difference between a L4 and L7 load balancer?

Answer 53

Layer 4 load balancing takes place at the transport layer of the OSI model, which is in charge of delivering messages regardless of their content. Layer 4 load balancers simply route network packets to and from the upstream server without inspecting them. By reviewing the initial few packets in the transmission control protocol (TCP) stream, they can only make limited routing decisions. It is still the heart of the OSI. QUICK, EFFICIENT, SECURE.....NO SMARTBALANCING, NO MICROSERVICES Layer 7 load balancing works at the application layer of the OSI model, which is in charge of the message’s actual content. Application Load Balancers route network traffic in a more complex way, typically for TCP-based traffic such as HTTP or HTTPS. A Layer 7 load balancer, unlike a Layer 4 load balancer, disconnects network traffic and processes the message inside. BASED ON URL, SMART ROUTING, CACHING...EXPENSIVE, NEEDS DECRYPTION

Question 54

whats the difference between df and free

Answer 54

df is to check free disk space | free is to check free memory

Question 55

how does kill work?

Answer 55

The default signal for kill is TERM. Use -l or -L to list available signals. Particularly useful signals include HUP, INT, KILL, STOP, CONT, and 0. Al‐ ternate signals may be specified in three ways: -9, -SIGKILL or -KILL. Negative PID values may be used to choose whole process groups; see the PGID column in ps command output. A PID of -1 is special; it indicates all processes except the kill process itself and init.

Question 56

Which files are open?

Answer 56

o lsof

Question 57

Which processes have this file open?

Answer 57

o lsof

Question 58

Which files does process X have open

Answer 58

lsof -p 1 | lsof -p `pgrep ABC

Question 59

Where is the binary for this process

Answer 59

o lsof -p ABC | grep bin

Question 60

Which shared libraries is this program using? (manually upgrading software, i.e. openssl)

Answer 60

o lsof -p PID | grep .so

Question 61

Where is this thing logging to?

Answer 61

o lsof -p ABC | grep log

Question 62

Which processes still have this old library open

Answer 62

o lsof grep libname.so

Question 63

Which files does user XYZ have open?

Answer 63

o lsof -u XYZ | lsof -u XYZ -i (selects IPv 4/6 files for networking)

Question 64

Which process is listening on Port X (or using Protocol Y)?

Answer 64

lsof -i :80 | lsof -i tcp

Question 65

what is uptime and how do CPUs affect load averages

Answer 65

tells uptime of machine and session time of use load averages if 1 CPU .5 is 50% load load averages if 4 CPUS 1 is 25% aggregated load of 4 CPUs

Question 66

how do you check kernel erros

Answer 66

dmesg -T

Question 67

what does vmstat give you

Answer 67

``` overal stats by time memory swpd=paging...free,buff,cache swap in and out io -disk bits in and bits out system cpu looking at user, system, idel and steal ```

Question 68

how to check CPU balance

Answer 68

mpstat -P ALL 1

Question 69

how to check process usage at specified intervals

Answer 69

pidstat 1

Question 70

how to check disk I/O stats

Answer 70

io stat -xz 1

Question 71

how to check memory usage

Answer 71

free -m

Question 72

how to check network I/O | how to check TCP stats

Answer 72

sar -n DEV 1 | sar -n TCP, ETCP 1

Question 73

check performance overview

Answer 73

top

Question 74

how to check system calls and signals

Answer 74

strace

Question 75

Application Latency Problems | what do you check

Answer 75

Disk with iostat Swaps with vmstat Network with sar system calls with strace

Question 76

Slow Performance Troubleshooting steps

Answer 76

``` overview with vmstat mpstat for cpu usage pidstat to check when ps is hogging resources check disk with iostat run strace -tp 'pgrep ' | head 100 ```

Question 77

CPU high troubleshooting

Answer 77

``` top (not always super usefull) mpstat 1 iostat -x 1 sar -n DEV 1 vmstat 1 perf record -F 99 -a -g --sleep 10 perf report -n --stdio ```

Question 78

how to grab columns in linux

Answer 78

ps | awk '{print $1}' prints first column

Question 79

get every single user on the system

Answer 79

awk -F ":" '{print $1}' /etc/passwd

Question 80

how to print multiple columns with separators from a file

Answer 80

awk F ":" '{print $1"\t"$6"\t"$7}' /etc/passwd awk 'BEGIN{FS=":"; OFS="-"} {PRINT $1, $6, $7}' /etc/passwd

Question 81

how to get unique values

Answer 81

uniq

Question 82

what does drwx---r-x mean 777?

Answer 82

d=directory- -=file l=link read write execute for user/owner....no permissions for group...and read and execute for everyone else 777 is rwx for all three r=4 w=2 x=1

Question 83

how do you find hostname based on ip address and vice versa

Answer 83

nslookup

Question 84

how to you find hostname for machine

Answer 84

hostname

Question 85

how to move or rename a file

Answer 85

mv

Question 86

how to make a link file

Answer 86

ln

Question 87

tcpdump

Answer 87

kinda like wireshark | terrible performance inhibitor

Question 88

advanced networking tools

Answer 88

ss gives more socket info | iptraf gives a histogram of network packet size

Question 89

how to check paging information

Answer 89

pcstat

Question 90

multi-tool for CPU profiling PMC profilng Static/Dynamic Tracing

Answer 90

PERF

Question 91

What is a PMC

Answer 91

performance monitoring console (counter)

Question 92

how to check and repair filesystem

Answer 92

fsck

Question 93

how to set file permission

Answer 93

setfacl -m u::rwx filename -x to remove

Question 94

crontab fields

Answer 94

Min/Hour/DOM/Month/DOW/cmd