Difference between revisions of "OPS235 Lab 5 - Fedora17"
Line 165: | Line 165: | ||
===Investigation 5: How do we Manage Runlevels?=== | ===Investigation 5: How do we Manage Runlevels?=== | ||
+ | {{Admon/note|Use fedora2|Perform these steps in the '''fedora2''' virtual machine.}} | ||
− | + | Runlevel is a Unix/Linux term relating to the operating system's mode of operation. For example, if the operating system operates in text-based or graphical mode, reboot, shutdown, etc. | |
− | |||
{{Admon/important| Security Advice | We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those that we think are not necessary.}} | {{Admon/important| Security Advice | We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those that we think are not necessary.}} | ||
Line 201: | Line 201: | ||
}} | }} | ||
+ | ===Investigation 6: How do we Manage System Services?=== | ||
+ | |||
+ | {{Admon/note|Remain in your fedora2 VM|Perform these steps in the '''fedora2''' virtual machine.}} | ||
+ | |||
+ | We have seen that maintaining unneeded '''packages can be a security risk''' due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to '''control services, and turn off those services that we think are not necessary to help reduce security risks'''.}} | ||
+ | |||
+ | #x | ||
+ | #x | ||
==Completing the Lab== | ==Completing the Lab== |
Revision as of 09:44, 10 February 2012
Contents
- 1 OPS235 Lab 5 - Archiving Files, Compiling Software Packages from Source, Managing Services
OPS235 Lab 5 - Archiving Files, Compiling Software Packages from Source, Managing Services
Overview
- In this lab, you are going to help conserve disk space by learning how to compress and decompress files that are stored your computer server. In addition, you will alternative methods of how to install programs (via git, and decompressing zipped tarball archives and then compiling source code).
- In addition, you will learn about how certain processes (services) work, and how the system administrator can manage these services (i.e. turn "on" and "off").
Objectives
- To create and use archive files (tar and tar.gz)
- Compiling software packages from source code
- Install an application from software development repositories using the bit utility
- Customising file-system start-up
Required Materials (Bring to All Labs)
- Fedora 16 LIVE CD - You can burn this onto a CD-R in the Open Lab
- Fedora 16 x_64 Installation DVD - You can burn this onto a DVD-R in the Open Lab (or burn image onto a DVD+R if you are using the Freedom Toaster).
- SATA Hard Disk (in removable disk tray)
- USB Memory Stick (minimum 64M)
- Lab Logbook (Lab5 Reference Sheet) (to make notes and observations).
Prerequisites
- Completion and Instructor "Sign-off" of Lab 4: OPS235 Lab 4
Linux Command Online Reference
Each Link below displays online manpages for each command (via http://linuxmanpages.com):
Archiving Utilities: | Service Management Utilities: | |
|
Resources on the web
Additional links to tutorials and HOWTOs:
Archiving Files / Compiling Software from Source Code
Archive files are often used to contain source code for software; in this lab you will also be compiling software from a source code archive.
Investigation 1: How do you create an archive file?
- Boot up your fecora3 VM.
- Change your working directory to
/usr/share/doc/sudo*
- Use the tar (tape archiver) command to create an archive file named
/tmp/archive1.tar
tar cvf /tmp/archive1.tar .
- What do the options c, v, and f mean?
- Record the archive file size.
- Compress the file using
gzip
:gzip /tmp/archive1.tar
- Record the archive file size after compression.
- Make sure you're still in
/usr/share/doc/sudo*
and then create a compressed archive:tar cvzf /tmp/archive2.tgz .
- What does the
z
option do? - Compare the sizes of
/tmp/archive1.tar.gz
and/tmp/archive2.tgz
. Why are they so close in size?
Investigation 2: How do you restore files from an archive?
- Create the directory
/tmp/extract1
- Change to the
/tmp/extract1
directory. - Move the file archive1.tar.gz to your current directory.
- Unzip the first archive you created:
gunzip archive1.tar.gz
- Extract the files from the first archive:
tar xvf archive1.tar
- Are all the files there?
- Compare
/tmp/extract1/README
and/usr/share/doc/sudo*/README
. Are they exactly the same? Why? - Create the directory
/tmp/extract2
- Move the file archive2.tgz to the
/tmp/extract2
directory. - Extract the files from the second archive:
tar xvzf /tmp/extract2/archive2.tgz
- Note that this time a separate
gunzip
command was not needed. Why? - Repeat the previous command, leaving out the option "z". Does it work? Why?
- Compare the
README
file in this directory with the original file. Are they exactly the same?
Investigation 3: How do you build software from source code?
Now that you know how to create and decompress "zipped tarball archives", we will demonstrate how to install applications from websites containing these types of archives. Although this method is not as "user-friendly" as using the yum or rpm command, this method is useful if the application is NOT contained in regular software repositories...
In order to build software from source code, you must have the appropriate software development tools (such as make and gcc) and libraries (such as GTK) installed. The required tools will vary depending on the computer languages used in the software being built.
- Boot up your fecora2 VM.
- Issue the following command to install a basic set of development tools and libraries:
yum groupinstall "Development Tools" "Development Libraries"
.
- Go to the directory
/tmp
- Use the
wget
command to download the "tar ball" that contains the source code for the NLED text editor.wget
is a command-line tool to download files from the web using the http or ftp protocols. - Extract the files. Change to the newly-extracted directory (
/tmp/nled-2.52
) - Check to see if there is a file named
configure
. If so, run it; if not, skip this step. (Most but not all source code archives contain this file) - Check to see if there is a file named
Makefile
ormakefile
. If so, type the command:make
- What does
make
do? - Some software distributed as source code can automatically install itself. Try this command:
make install
- Most but not all source code archives include the capability of installing themselves this way.
- If the command
make install
does not work (how can you tell?), copy thenled
program manually:cp nled /usr/local/bin
- Test
nled
to make sure it works.
Investigation 4: Using git
- Insert Lab investigation instructions here.
Managing System Services
Investigation 5: How do we Manage Runlevels?
Runlevel is a Unix/Linux term relating to the operating system's mode of operation. For example, if the operating system operates in text-based or graphical mode, reboot, shutdown, etc.
- Determine your current runlevel using the
runlevel
command. - Change to the appropriate startup directory in a terminal window. For example, if your runlevel is 4, change to
/etc/rc.d/rc4.d
- Observe the names of the symbolic links in that directory. What is the target (destination) of the links to?
- If you are not using the graphical user interface (GUI), use the startx command to start it.
- Run the menu option
System>Administration>Services
. You will then see the Service Configuration screen. - Find the
bluetooth
service and select customize from the tool bar. and deselect the checkbox for your runlevel from step 1. Quit the app. - Return to the terminal window you used in Step 2. Get a listing of the symbolic links in the startup directory. Is it any different from what you observed previously?
- Using the Service Configuration screen, re-enable the
bluetooth
service. - Check the symbolic links again. What has changed this time?
- Run this command:
chkconfig bluetooth off
- Now what has changed in the directory?
- Run this command:
chkconfig bluetooth on
- Now what has changed?
- Run the command:
chkconfig --list
- What does the output show?
- What is the relationship between the Service Configuration tool, the symbolic links in the startup directory, and the
chkconfig
command? - You can also use
chkconfig
to set services to be on or off for certain runlevels. For example, to turn httpd on for runlevel 4, we issue the command:chkconfig --level 4 httpd on
- To turn it off, we type:
chkconfig --level 4 httpd off
- To increase your computer's security, make sure these services are disabled:
- btseed, bttrack, cups, irda, mdmonitor, netfs, nfs, nfslock, pcscd, rpcgssd, rpcidmapd, rpcsvcgssd, sendmail, ypbind.
Investigation 6: How do we Manage System Services?
We have seen that maintaining unneeded packages can be a security risk due to the unnecessary increase in the complexity of your system. Similarly, it is also unnecessarily hazardous, and even more so, to leave unneeded services running. In this investigation, we will learn how to control services, and turn off those services that we think are not necessary to help reduce security risks.}}
- x
- x
Completing the Lab
Arrange evidence for each of these items on your screen, then ask your instructor to check each item:
- [ ]
/tmp/fstest
filesystem counted with files copied to it. - [ ]
nled
is installed - [ ] Correct services are disabled
- [ ]
/lab5
has an entry in/etc/fstab
Preparing for the Quizzes
- What is the advantage of disabling services such as bluetooth?
- What is the difference between a .tgz file and a .tar.gz file? What do these stand for?
- How do you ensure that a filesystem is mounted every time the system is started?
- How is creating and using a filesystem in a file different from creating and using a filesystem in a block device (such as a partition)?
- What is source code?
- How do you build software from source code?
- Which is preferred: installing from an RPM file, or installing from source code? Why?
- How do you use
chkconfig
? - The startup directory for each runlevel contains symbolic links. Where are the targets of the symbolic links?
- When you use the menu option System>Administration>Services, what program is run?