Difference between revisions of "OPS235 Lab 5 - Fedora17"

From CDOT Wiki
Jump to: navigation, search
Line 165: Line 165:
 
===Investigation 5: How do we Manage Runlevels?===
 
===Investigation 5: How do we Manage Runlevels?===
  
 +
{{Admon/note|Use fedora2|Perform these steps in the '''fedora2''' virtual machine.}}
  
 
+
Runlevel is a Unix/Linux term relating to the operating system's mode of operation. For example, if the operating system operates in text-based or graphical mode, reboot, shutdown, etc.
{{Admon/note|Use fedora2|Perform these steps in the '''fedora2''' virtual machine.}}
 
  
 
{{Admon/important| Security Advice | We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those that we think are not necessary.}}
 
{{Admon/important| Security Advice | We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those that we think are not necessary.}}
Line 201: Line 201:
 
}}
 
}}
  
 +
===Investigation 6: How do we Manage System Services?===
 +
 +
{{Admon/note|Remain in your fedora2 VM|Perform these steps in the '''fedora2''' virtual machine.}}
 +
 +
We have seen that maintaining unneeded '''packages can be a security risk''' due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to '''control services, and turn off those services that we think are not necessary to help reduce security risks'''.}}
 +
 +
#x
 +
#x
  
 
==Completing the Lab==
 
==Completing the Lab==

Revision as of 10:44, 10 February 2012

Important.png
This is a draft only!
It is still under construction and content may change. Do not rely on this information.

OPS235 Lab 5 - Archiving Files, Compiling Software Packages from Source, Managing Services


Overview

  • In this lab, you are going to help conserve disk space by learning how to compress and decompress files that are stored your computer server. In addition, you will alternative methods of how to install programs (via git, and decompressing zipped tarball archives and then compiling source code).
  • In addition, you will learn about how certain processes (services) work, and how the system administrator can manage these services (i.e. turn "on" and "off").


Objectives

  1. To create and use archive files (tar and tar.gz)
  2. Compiling software packages from source code
  3. Install an application from software development repositories using the bit utility
  4. Customising file-system start-up


Required Materials (Bring to All Labs)

  • Fedora 16 LIVE CD - You can burn this onto a CD-R in the Open Lab
  • Fedora 16 x_64 Installation DVD - You can burn this onto a DVD-R in the Open Lab (or burn image onto a DVD+R if you are using the Freedom Toaster).
  • SATA Hard Disk (in removable disk tray)
  • USB Memory Stick (minimum 64M)
  • Lab Logbook (Lab5 Reference Sheet) (to make notes and observations).

Prerequisites

  • Completion and Instructor "Sign-off" of Lab 4: OPS235 Lab 4


Linux Command Online Reference

Each Link below displays online manpages for each command (via http://linuxmanpages.com):

Archiving Utilities: Service Management Utilities:


Resources on the web

Additional links to tutorials and HOWTOs:


Archiving Files / Compiling Software from Source Code

Archive files are often used to contain source code for software; in this lab you will also be compiling software from a source code archive.

Note.png
Do not Shut-Down VMs Until Instructed
You will be running all 3 VMs eventually when performing this tutorial, Leave all VMs running until you are instructed to shut them down at the end of this lab.

Investigation 1: How do you create an archive file?

Note.png
Use fedora3
Perform these steps in the fedora3 virtual machine.
  1. Boot up your fecora3 VM.
  2. Change your working directory to /usr/share/doc/sudo*
  3. Use the tar (tape archiver) command to create an archive file named /tmp/archive1.tar
    • tar cvf /tmp/archive1.tar .
Important.png
Warning!
Don't miss the . at the end of the tar commands below! It specifies what should go into the archive: the contents of the current directory.
  1. What do the options c, v, and f mean?
  2. Record the archive file size.
  3. Compress the file using gzip:
    • gzip /tmp/archive1.tar
  4. Record the archive file size after compression.
  5. Make sure you're still in /usr/share/doc/sudo* and then create a compressed archive:
    • tar cvzf /tmp/archive2.tgz .
  6. What does the z option do?
  7. Compare the sizes of /tmp/archive1.tar.gz and /tmp/archive2.tgz. Why are they so close in size?


Investigation 2: How do you restore files from an archive?

Note.png
Remain in your fedora3 VM
Perform these steps in the fedora3 virtual machine.
  1. Create the directory /tmp/extract1
  2. Change to the /tmp/extract1 directory.
  3. Move the file archive1.tar.gz to your current directory.
  4. Unzip the first archive you created:
    • gunzip archive1.tar.gz
  5. Extract the files from the first archive:
    • tar xvf archive1.tar
  6. Are all the files there?
  7. Compare /tmp/extract1/README and /usr/share/doc/sudo*/README. Are they exactly the same? Why?
  8. Create the directory /tmp/extract2
  9. Move the file archive2.tgz to the /tmp/extract2 directory.
  10. Extract the files from the second archive:
    • tar xvzf /tmp/extract2/archive2.tgz
  11. Note that this time a separate gunzip command was not needed. Why?
  12. Repeat the previous command, leaving out the option "z". Does it work? Why?
  13. Compare the README file in this directory with the original file. Are they exactly the same?


Investigation 3: How do you build software from source code?

Now that you know how to create and decompress "zipped tarball archives", we will demonstrate how to install applications from websites containing these types of archives. Although this method is not as "user-friendly" as using the yum or rpm command, this method is useful if the application is NOT contained in regular software repositories...

Note.png
Use fedora2
Perform these steps in the fedora2 virtual machine.

In order to build software from source code, you must have the appropriate software development tools (such as make and gcc) and libraries (such as GTK) installed. The required tools will vary depending on the computer languages used in the software being built.

  1. Boot up your fecora2 VM.
  2. Issue the following command to install a basic set of development tools and libraries:
    yum groupinstall "Development Tools" "Development Libraries".
Note.png
Installing Development Libraries
In the future, remember the above procedure whenever installing software from source. Sometimes, you need to install additional tools or libraries in order to compile a particular software package
  1. Go to the directory /tmp
  2. Use the wget command to download the "tar ball" that contains the source code for the NLED text editor. wget is a command-line tool to download files from the web using the http or ftp protocols.
  3. Extract the files. Change to the newly-extracted directory (/tmp/nled-2.52)
  4. Check to see if there is a file named configure. If so, run it; if not, skip this step. (Most but not all source code archives contain this file)
  5. Check to see if there is a file named Makefile or makefile. If so, type the command:
    • make
  6. What does make do?
  7. Some software distributed as source code can automatically install itself. Try this command:
    • make install
  8. Most but not all source code archives include the capability of installing themselves this way.
  9. If the command make install does not work (how can you tell?), copy the nled program manually:
    • cp nled /usr/local/bin
  10. Test nled to make sure it works.

Investigation 4: Using git

Note.png
'Use VM NAME'
Perform these steps in the NAME virtual machine.
  1. Insert Lab investigation instructions here.

Managing System Services

Investigation 5: How do we Manage Runlevels?

Note.png
Use fedora2
Perform these steps in the fedora2 virtual machine.

Runlevel is a Unix/Linux term relating to the operating system's mode of operation. For example, if the operating system operates in text-based or graphical mode, reboot, shutdown, etc.

Important.png
Security Advice
We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those that we think are not necessary.
  1. Determine your current runlevel using the runlevel command.
  2. Change to the appropriate startup directory in a terminal window. For example, if your runlevel is 4, change to /etc/rc.d/rc4.d
  3. Observe the names of the symbolic links in that directory. What is the target (destination) of the links to?
  4. If you are not using the graphical user interface (GUI), use the startx command to start it.
  5. Run the menu option System>Administration>Services. You will then see the Service Configuration screen.
  6. Find the bluetooth service and select customize from the tool bar. and deselect the checkbox for your runlevel from step 1. Quit the app.
  7. Return to the terminal window you used in Step 2. Get a listing of the symbolic links in the startup directory. Is it any different from what you observed previously?
  8. Using the Service Configuration screen, re-enable the bluetooth service.
  9. Check the symbolic links again. What has changed this time?
  10. Run this command:
    • chkconfig bluetooth off
  11. Now what has changed in the directory?
  12. Run this command:
    • chkconfig bluetooth on
  13. Now what has changed?
  14. Run the command:
    • chkconfig --list
  15. What does the output show?
  16. What is the relationship between the Service Configuration tool, the symbolic links in the startup directory, and the chkconfig command?
  17. You can also use chkconfig to set services to be on or off for certain runlevels. For example, to turn httpd on for runlevel 4, we issue the command:
    • chkconfig --level 4 httpd on
  18. To turn it off, we type:
    • chkconfig --level 4 httpd off
  19. To increase your computer's security, make sure these services are disabled:
    • btseed, bttrack, cups, irda, mdmonitor, netfs, nfs, nfslock, pcscd, rpcgssd, rpcidmapd, rpcsvcgssd, sendmail, ypbind.
Note.png
Determining Required Services
You should understand that while most services in this list are often not needed, or are needed under circumstances different than those which occur here, there may be situations in which some of them are required, and it may be up to you as an administrator to determine which services are needed, and which should be turned off.

You can find out some basic information about a particular service by querying rpm for information about the package that installed the service file in /etc/rc.d/init.d. For example, to find out about the cups service, execute: rpm -qif /etc/rc.d/init.d/cups

Investigation 6: How do we Manage System Services?

Note.png
Remain in your fedora2 VM
Perform these steps in the fedora2 virtual machine.

We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those services that we think are not necessary to help reduce security risks.}}

  1. x
  2. x

Completing the Lab

Arrange evidence for each of these items on your screen, then ask your instructor to check each item:

  1. [ ] /tmp/fstest filesystem counted with files copied to it.
  2. [ ] nled is installed
  3. [ ] Correct services are disabled
  4. [ ] /lab5 has an entry in /etc/fstab

Preparing for the Quizzes

  1. What is the advantage of disabling services such as bluetooth?
  2. What is the difference between a .tgz file and a .tar.gz file? What do these stand for?
  3. How do you ensure that a filesystem is mounted every time the system is started?
  4. How is creating and using a filesystem in a file different from creating and using a filesystem in a block device (such as a partition)?
  5. What is source code?
  6. How do you build software from source code?
  7. Which is preferred: installing from an RPM file, or installing from source code? Why?
  8. How do you use chkconfig?
  9. The startup directory for each runlevel contains symbolic links. Where are the targets of the symbolic links?
  10. When you use the menu option System>Administration>Services, what program is run?
Important.png
Backup your work
Backup your disk images for fedora2 and fedora3 Virtual Machines.