# RHCSA EX200 - Understand and use essential tools
# RHCSA EX200 - Accessing linux systems LAB
- Log in and switch users in multiuser targets
- Access remote systems using SSH
- Configure Key-based authentication for SSH
- Securely transfer files between systems
```bash
csr@MainPC:~/Downloads$ ssh cloud_user@3.80.189.75
The authenticity of host '3.80.189.75 (3.80.189.75)' can't be established.
ED25519 key fingerprint is SHA256:4nFxuEkL7XMM8ehB0hYTUHPRJTYV0O8iyC8MsidjbUs.
This key is not known by any other names.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '3.80.189.75' (ED25519) to the list of known hosts.
(cloud_user@3.80.189.75) Password:
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
cloud_user@server1: ~ $ whoami ; groups
cloud_user
cloud_user wheel sysadmins
cloud_user@server1: ~ $ id
uid=1001(cloud_user) gid=1001(cloud_user) groups=1001(cloud_user),10(wheel),49999(sysadmins) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
cloud_user@server1: ~ $
```
This will show what happens and what files are sourced or executed when using different types of privilege elevations
```bash
cloud_user@server1: ~ $ sudo -i
[sudo] password for cloud_user:
root@server1: ~ # echo export SOURCED1=.bash_profile >> ~/.bash_profile ; echo 'echo $SOURCED1' >> ~/.bash_profile
root@server1: ~ # grep SOURCED .bash_profile
export SOURCED1=.bash_profile
echo $SOURCED1
root@server1: ~ # echo export SOURCED2=.bashrc >> ~/.bashrc ; echo 'echo $SOURCED2' >> ~/.bashrc
root@server1: ~ # grep SOURCED .bashrc
export SOURCED2=.bashrc
echo $SOURCED2
```
```shell
cloud_user@server1: ~ $ sudo -k ## When used without a command, invalidates the user's cached credentials for the current session. The next time sudo is run in the session, a password must be entered if the security policy requires authentication
cloud_user@server1: ~ $ sudo -i echo
[sudo] password for cloud_user:
.bashrc
.bash_profile
```
```bash
cloud_user@server1: ~ $ sudo -i passwd root
[sudo] password for cloud_user:
.bashrc
.bash_profile
Changing password for user root.
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
cloud_user@server1: ~ $ su -c 'echo $PATH'
Password:
/home/cloud_user/.local/bin:/home/cloud_user/bin:/usr/local/bin:/usr/bin:/usr/local/sbin:/usr/sbin
cloud_user@server1: ~ $ su - -c 'echo $PATH'
Password:
.bashrc
.bash_profile
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin
cloud_user@server1: ~ $
```
sudo = cloud\_user
sudo -i = root user
su = cloud\_user
su - = root user
##### Task 2 - access remote systems using ssh
Ssh to second server
```shell
cloud_user@server1: ~ $ ssh cloud_user@10.0.1.197
The authenticity of host '10.0.1.197 (10.0.1.197)' can't be established.
ECDSA key fingerprint is SHA256:FplhCnLMLm5YPqa00ssQlH/FEVGrxMaNkThmr4r8AaI.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '10.0.1.197' (ECDSA) to the list of known hosts.
Password:
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
cloud_user@server2: ~ $
```
Retrieving information from remote server and creating a file to input data
```bash
cloud_user@server1: ~ $ ssh -t cloud_user@10.0.1.197 df -hT >> server_health.txt
Password:
Connection to 10.0.1.197 closed.
cloud_user@server1: ~ $ ls
audit build init_pass mariadb_repo_setup Public server_health.txt Templates wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $ cat server_health.txt
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 0 373M 0% /run/user/1001
cloud_user@server1: ~ $ ssh -t cloud_user@10.0.1.197 df free >> server_health.txt
Password:
Connection to 10.0.1.197 closed.
cloud_user@server1: ~ $ cat server_health.txt
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 0 373M 0% /run/user/1001
df: free: No such file or directory
cloud_user@server1: ~ $ free
total used free shared buff/cache available
Mem: 3818520 279104 2419652 18768 1119764 3297500
Swap: 8388604 0 8388604
cloud_user@server1: ~ $ ssh cloud_user@10.0.1.197
Password:
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
Last login: Wed Apr 10 18:37:25 2024 from 10.0.1.151
cloud_user@server2: ~ $ free
total used free shared buff/cache available
Mem: 3818520 241588 2697600 18764 879332 3336480
Swap: 8388604 0 8388604
cloud_user@server2: ~ $ exit
logout
Connection to 10.0.1.197 closed.
cloud_user@server1: ~ $ ssh -t cloud_user@10.0.1.197 free >> server_health.txt
Password:
Connection to 10.0.1.197 closed.
cloud_user@server1: ~ $ cat server_health.txt
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 0 373M 0% /run/user/1001
df: free: No such file or directory
total used free shared buff/cache available
Mem: 3818520 239348 2699840 18692 879332 3338776
Swap: 8388604 0 8388604
```
##### Task 3 - creating a keygen to ssh to remote server
```bash
cloud_user@server1: ~ $ ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/home/cloud_user/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/cloud_user/.ssh/id_rsa.
Your public key has been saved in /home/cloud_user/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:Ag8dXpCf+hWNs+ftc4ItGtOET3s3vd6UKPAWwJCdlbg cloud_user@server1
The key's randomart image is:
+---[RSA 3072]----+
| o++ +.. |
| o.+o+ . |
| o o. +.o |
| + oE=.. |
| o.S..=o |
| .. ==o.. o|
| . .o*+=.o+|
| . .o=.=o=|
| .. oo*.|
+----[SHA256]-----+
cloud_user@server1: ~ $ ssh-copy-id 10.0.1.197
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/cloud_user/.ssh/id_rsa.pub"
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
Password:
Number of key(s) added: 1
Now try logging into the machine, with: "ssh '10.0.1.197'"
and check to make sure that only the key(s) you wanted were added.
cloud_user@server1: ~ $ ssh cloud_user@10.0.1.197
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
Last login: Wed Apr 10 18:38:22 2024 from 10.0.1.151
cloud_user@server2: ~ $
```
`eval` used on a Unix or Linux system to execute the arguments as a shell command. The eval command is helpful when you want to execute a Unix or Linux command that has been saved in a variable
`ssh-agent` is a background program that handles passwords for [SSH](https://kb.iu.edu/d/aelc) private keys. The `ssh-add` command prompts the user for a private key password and adds it to the list maintained by `ssh-agent`. Once you add a password to `ssh-agent`, you will not be prompted for it when using SSH or [scp](https://kb.iu.edu/d/agye) to connect to hosts with your public key.
```bash
cloud_user@server1: ~ $ eval $(ssh-agent -s)
Agent pid 3231
cloud_user@server1: ~ $ ssh-add
Identity added: /home/cloud_user/.ssh/id_rsa (cloud_user@server1)
cloud_user@server1: ~ $ ssh cloud_user@10.0.1.197
Register this system with Red Hat Insights: insights-client --register
Create an account or view all your systems at https://red.ht/insights-dashboard
Last login: Wed Apr 10 18:41:49 2024 from 10.0.1.151
cloud_user@server2: ~ $
```
# RHCSA EX200 - VIM Survival kit LAB
- Creating, opening, and exiting a file
- Making simple change to a file
- Changing a system file
- Simple navigation
- Inserting, Copying and Deleting
- Undoing and redoing
- Saving and or exiting
- Resources for getting help
##### 1. - Creating opening and exiting a file.
Open a new file typing vim on shell
enter I to insert text, escape to go back to navigation mode then :w name to save the file name
now if we try to edit a system file for example vim /etc/hosts we can look at the bottom this file is readonly
to exit a file without making changes you need to exit by hitting escape key then type q! this will exit and ignore any changes
##### 2- Making simple changes to a file
Copy a random file to make changes, we choose help.txt from vim
```bash
cloud_user@ip-10-0-1-10:~$ cp /usr/share/vim/vim80/doc/help.txt ~/vimhelp.txt
cloud_user@ip-10-0-1-10:~$ ls
myfirstnovel.txt vimhelp.txt
cloud_user@ip-10-0-1-10:~$
```
vim vimhelp.txt
[](https://wiki.tinod.net/uploads/images/gallery/2024-04/NXMsI4MQOAgfU48t-image.png)
let s modify the VIM main help file
[](https://wiki.tinod.net/uploads/images/gallery/2024-04/PJuSWb4KW1X2jfY4-image.png)
##### 3.- Changing a system file
sudo -i vim /etc/hosts (will allow us to run the command as root.
add snowblower to the localhost
[](https://wiki.tinod.net/uploads/images/gallery/2024-04/aoX52uGFfjTlvpy7-image.png)
```bash
cloud_user@ip-10-0-1-10:~$ sudo -i vim /etc/hosts
cloud_user@ip-10-0-1-10:~$ grep snowblower /etc/hosts
127.0.0.1 localhost snowblower
cloud_user@ip-10-0-1-10:~$ ping -c 4 snowblower
PING localhost (127.0.0.1) 56(84) bytes of data.
64 bytes from localhost (127.0.0.1): icmp_seq=1 ttl=64 time=0.017 ms
64 bytes from localhost (127.0.0.1): icmp_seq=2 ttl=64 time=0.035 ms
64 bytes from localhost (127.0.0.1): icmp_seq=3 ttl=64 time=0.029 ms
64 bytes from localhost (127.0.0.1): icmp_seq=4 ttl=64 time=0.029 ms
--- localhost ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3055ms
rtt min/avg/max/mdev = 0.017/0.027/0.035/0.008 ms
```
#####
##### 4.- Simple Navigation
on navigation mode "gg" will take you to the top of the file, shift g will take you to the bottom of the file, for example if you wan to go to line 25 you type "25 gg" you can also go to the 50% of the line by typing "50 %"
press w will take you forward one word, press b will take you backwards one word
now type / to search mode, search for Vim and hit enter it will take you to the first word that matches (capital wise) press n to go to the next one or shift n to go backwards.
##### 5. - Inserting copying and deleting
o = insert a line below the cursor
dd = deletes a line
VA\]1%Ex^
# RHCSA EX200 - Managing Files LAB
creating a tar from /usr/share/doc directory
```bash
[csr@rhel-lab1 ~]$ du -sh /usr/share/doc
63M /usr/share/doc
[csr@rhel-lab1 ~]$ tar -cf documentation.tar /usr/share/doc
tar: Removing leading `/' from member names
[csr@rhel-lab1 ~]$ ls
2 archives documentation.tar Desktop Documents Downloads Music output Pictures Public Templates Videos
[csr@rhel-lab1 ~]$ ls -l
total 59748
-rw-r--r--. 1 csr csr 1328 Apr 11 18:55 2
drwxr-xr-x. 2 csr csr 26 Apr 9 18:32 archives
-rw-r--r--. 1 csr csr 61173760 Apr 15 18:33 documentation.tar
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Desktop
drwxr-xr-x. 2 csr csr 72 Apr 11 18:04 Documents
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Downloads
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Music
-rw-r--r--. 1 csr csr 6 Apr 11 17:56 output
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Pictures
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Public
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Templates
drwxr-xr-x. 2 csr csr 6 Apr 10 12:03 Videos
[csr@rhel-lab1 ~]$ du -sh *.tar
59M ddocumentation.tar
```
listing content of a tar file - tar-tvf filename (t list the content, -v verbose, -f use file archive)
```bash
[csr@rhel-lab1 ~]$ tar -tvf documentation.tar | more
drwxr-xr-x root/root 0 2024-04-09 17:31 usr/share/doc/
drwxr-xr-x root/root 0 2024-04-08 14:55 usr/share/doc/hwdata/
-rw-r--r-- root/root 175 2023-08-21 01:22 usr/share/doc/hwdata/LICENSE
drwxr-xr-x root/root 0 2024-04-08 14:55 usr/share/doc/xkeyboard-config/
-rw-r--r-- root/root 510 2021-06-08 15:20 usr/share/doc/xkeyboard-config/AUTHORS
-rw-r--r-- root/root 9244 2021-06-08 15:20 usr/share/doc/xkeyboard-config/COPYING
-rw-r--r-- root/root 861 2021-06-08 15:20 usr/share/doc/xkeyboard-config/HOWTO.testing
-rw-r--r-- root/root 2303 2021-06-08 15:20 usr/share/doc/xkeyboard-config/HOWTO.transition
-rw-r--r-- root/root 5108 2021-06-08 15:20 usr/share/doc/xkeyboard-config/NEWS
-rw-r--r-- root/root 1627 2021-06-08 15:20 usr/share/doc/xkeyboard-config/README
-rw-r--r-- root/root 7515 2021-06-08 15:20 usr/share/doc/xkeyboard-config/README.config
-rw-r--r-- root/root 23948 2021-06-08 15:20 usr/share/doc/xkeyboard-config/README.enhancing
-rw-r--r-- root/root 1882 2021-06-08 15:20 usr/share/doc/xkeyboard-config/README.symbols
```
create the same but compressed using gz
```bash
[csr@rhel-lab1 ~]$ tar -czvf documentation.tar.gz /usr/share/doc | more
tar: Removing leading `/' from member names
/usr/share/doc/
/usr/share/doc/hwdata/
/usr/share/doc/hwdata/LICENSE
/usr/share/doc/xkeyboard-config/
/usr/share/doc/xkeyboard-config/AUTHORS
/usr/share/doc/xkeyboard-config/COPYING
/usr/share/doc/xkeyboard-config/HOWTO.testing
/usr/share/doc/xkeyboard-config/HOWTO.transition
/usr/share/doc/xkeyboard-config/NEWS
/usr/share/doc/xkeyboard-config/README
/usr/share/doc/xkeyboard-config/README.config
/usr/share/doc/xkeyboard-config/README.enhancing
/usr/share/doc/xkeyboard-config/README.symbols
/usr/share/doc/tzdata/
/usr/share/doc/tzdata/README
/usr/share/doc/tzdata/theory.html
/usr/share/doc/tzdata/tz-art.html
/usr/share/doc/tzdata/tz-link.html
[csr@rhel-lab1 ~]$ du -sh docu*.*
59M documentation.tar
19M documentation.tar.gz
```
using J for compression
```shell
[csr@rhel-lab1 ~]$ tar -cjvf documentation.tar.bz2 /usr/share/doc | more
tar: Removing leading `/' from member names
/usr/share/doc/
/usr/share/doc/hwdata/
/usr/share/doc/hwdata/LICENSE
/usr/share/doc/xkeyboard-config/
/usr/share/doc/xkeyboard-config/AUTHORS
/usr/share/doc/xkeyboard-config/COPYING
/usr/share/doc/xkeyboard-config/HOWTO.testing
/usr/share/doc/xkeyboard-config/HOWTO.transition
/usr/share/doc/xkeyboard-config/NEWS
/usr/share/doc/xkeyboard-config/README
/usr/share/doc/xkeyboard-config/README.config
/usr/share/doc/xkeyboard-config/README.enhancing
/usr/share/doc/xkeyboard-config/README.symbols
/usr/share/doc/tzdata/
[csr@rhel-lab1 ~]$ du -sh docu*.*
59M documentation.tar
16M documentation.tar.bz2
19M documentation.tar.gz
```
Listing the gz file content
```shell
[csr@rhel-lab1 ~]$ tar -ttzvf documentation.tar.gz | more
drwxr-xr-x root/root 0 2024-04-09 17:31 usr/share/doc/
drwxr-xr-x root/root 0 2024-04-08 14:55 usr/share/doc/hwdata/
-rw-r--r-- root/root 175 2023-08-21 01:22 usr/share/doc/hwdata/LICENSE
drwxr-xr-x root/root 0 2024-04-08 14:55 usr/share/doc/xkeyboard-config/
-rw-r--r-- root/root 510 2021-06-08 15:20 usr/share/doc/xkeyboard-config/AUTHORS
-rw-r--r-- root/root 9244 2021-06-08 15:20 usr/share/doc/xkeyboard-config/COPYING
-rw-r--r-- root/root 861 2021-06-08 15:20 usr/share/doc/xkeyboard-config/HOWTO.testing
-rw-r--r-- root/root 2303 2021-06-08 15:20 usr/share/doc/xkeyboard-config/HOWTO.transition
-rw-r--r-- root/root 5108 2021-06-08 15:20 usr/share/doc/xkeyboard-config/NEWS
-rw-r--r-- root/root 1627 2021-06-08 15:20 usr/share/doc/xkeyboard-config/READ
```
untar file and view the content using tree
```shell
[csr@rhel-lab1 ~]$ mkdir doctests
[csr@rhel-lab1 ~]$ mv documentation.tar* /doctests/
mv: target '/doctests/' is not a directory
[csr@rhel-lab1 ~]$ mv documentation.tar* ~/doctests/
[csr@rhel-lab1 ~]$ cd doctests/
[csr@rhel-lab1 doctests]$ ls
documentation.tar documentation.tar.bz2 documentation.tar.gz
[csr@rhel-lab1 doctests]$ tar -xzvf documentation.tar.gz
[csr@rhel-lab1 doctests]$ ls -la
total 93816
drwxr-xr-x. 3 csr csr 99 Apr 15 18:51 .
drwx------. 17 csr csr 4096 Apr 15 18:49 ..
-rw-r--r--. 1 csr csr 61173760 Apr 15 18:33 documentation.tar
-rw-r--r--. 1 csr csr 15930018 Apr 15 18:44 documentation.tar.bz2
-rw-r--r--. 1 csr csr 18954095 Apr 15 18:42 documentation.tar.gz
drwxr-xr-x. 3 csr csr 19 Apr 15 18:51 usr
[csr@rhel-lab1 doctests]$ tree usr | more
usr
└── share
└── doc
├── abattis-cantarell-fonts
│ ├── NEWS
│ └── README.md
├── accountsservice
│ ├── AUTHORS
│ └── README.md
├── adcli
│ ├── AUTHORS
│ ├── ChangeLog
│ ├── COPYING
│ ├── NEWS
│ └── README
├── adobe-mappings-cmap
│ ├── README.md
│ └── VERSIONS.txt
├── adobe-mappings-pdf
│ └── README.md
├── adobe-source-code-pro-fonts
│ └── README.md
├── alsa-lib
│ ├── asoundrc.txt
```
extract a single file from the tar document
```
[csr@rhel-lab1 doctests]$ tar -xzvf documentation.tar.gz usr/share/doc/gdisk/gdisk_test.sh
usr/share/doc/gdisk/gdisk_test.sh
[csr@rhel-lab1 doctests]$
[csr@rhel-lab1 doctests]$ tree usr
usr
└── share
└── doc
└── gdisk
└── gdisk_test.sh
```
using gunzip
```shell
cloud_user@server1: ~ $ ls
audit build init_pass mariadb_repo_setup Public Templates wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $ gzip wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $ ll
total 740
drwxrwxr-x. 2 cloud_user cloud_user 74 Sep 8 2020 audit
drwxrwxr-x. 2 cloud_user cloud_user 55 Sep 8 2020 build
-rw-r--r--. 1 cloud_user cloud_user 1 Apr 30 2021 init_pass
-rwxrwxr-x. 1 cloud_user cloud_user 19519 Sep 9 2020 mariadb_repo_setup
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Public
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Templates
-rw-r--r--. 1 cloud_user cloud_user 729756 Sep 9 2020 wget-1.19.5-8.el8_1.1.x86_64.rpm.gz
```
unzip it
```shell
cloud_user@server1: ~ $ gunzip wget-1.19.5-8.el8_1.1.x86_64.rpm.gz
cloud_user@server1: ~ $ ll
total 760
drwxrwxr-x. 2 cloud_user cloud_user 74 Sep 8 2020 audit
drwxrwxr-x. 2 cloud_user cloud_user 55 Sep 8 2020 build
-rw-r--r--. 1 cloud_user cloud_user 1 Apr 30 2021 init_pass
-rwxrwxr-x. 1 cloud_user cloud_user 19519 Sep 9 2020 mariadb_repo_setup
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Public
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Templates
-rw-r--r--. 1 cloud_user cloud_user 752504 Sep 9 2020 wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $
```
same apply to bzip
```shell
cloud_user@server1: ~ $ bzip2 wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $ ll
total 744
drwxrwxr-x. 2 cloud_user cloud_user 74 Sep 8 2020 audit
drwxrwxr-x. 2 cloud_user cloud_user 55 Sep 8 2020 build
-rw-r--r--. 1 cloud_user cloud_user 1 Apr 30 2021 init_pass
-rwxrwxr-x. 1 cloud_user cloud_user 19519 Sep 9 2020 mariadb_repo_setup
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Public
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Templates
-rw-r--r--. 1 cloud_user cloud_user 736128 Sep 9 2020 wget-1.19.5-8.el8_1.1.x86_64.rpm.bz2
cloud_user@server1: ~ $ bunzip2 wget-1.19.5-8.el8_1.1.x86_64.rpm.bz2
cloud_user@server1: ~ $ ll
total 760
drwxrwxr-x. 2 cloud_user cloud_user 74 Sep 8 2020 audit
drwxrwxr-x. 2 cloud_user cloud_user 55 Sep 8 2020 build
-rw-r--r--. 1 cloud_user cloud_user 1 Apr 30 2021 init_pass
-rwxrwxr-x. 1 cloud_user cloud_user 19519 Sep 9 2020 mariadb_repo_setup
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Public
drwxr-xr-x. 2 cloud_user cloud_user 6 May 8 2019 Templates
-rw-r--r--. 1 cloud_user cloud_user 752504 Sep 9 2020 wget-1.19.5-8.el8_1.1.x86_64.rpm
cloud_user@server1: ~ $
```
Task 2
Using brackets and how to create multiple files
```
cloud_user@server1: ~ $ mkdir -p ~/code/ursula/{cloudform,xml} ~/code/mortimer/json
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ └── json
└── ursula
├── cloudform
└── xml
5 directories, 0 files
cloud_user@server1: ~ $
cloud_user@server1: ~ $ touch ~/code/ursula/{file1,file2,file3}.json ~/code/ursula/file{1,2,3}.xml
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ └── json
└── ursula
├── cloudform
├── file1.json
├── file1.xml
├── file2.json
├── file2.xml
├── file3.json
├── file3.xml
└── xml
5 directories, 6 files
cloud_user@server1: ~ $ touch ~/code/mortimer/{file1,file2,file3}.cf
cloud_user@server1: ~ $ tree
.
├── audit
│ ├── devsys05-account-audit.log
│ └── devsys08-account-audit.log
├── build
│ ├── devsys12-account-audit.log
│ └── dnf.log
├── code
│ ├── mortimer
│ │ ├── file1.cf
│ │ ├── file2.cf
│ │ ├── file3.cf
│ │ └── json
│ └── ursula
│ ├── cloudform
│ ├── file1.json
│ ├── file1.xml
│ ├── file2.json
│ ├── file2.xml
│ ├── file3.json
│ ├── file3.xml
│ └── xml
├── init_pass
├── mariadb_repo_setup
├── Public
├── Templates
└── wget-1.19.5-8.el8_1.1.x86_64.rpm
```
moving files around
```shell
cloud_user@server1: ~ $ mv ~/code/ursula/*.xml ~/code/ursula/xml/
cloud_user@server1: ~ $ tree
.
├── audit
│ ├── devsys05-account-audit.log
│ └── devsys08-account-audit.log
├── build
│ ├── devsys12-account-audit.log
│ └── dnf.log
├── code
│ ├── mortimer
│ │ ├── file1.cf
│ │ ├── file2.cf
│ │ ├── file3.cf
│ │ └── json
│ └── ursula
│ ├── cloudform
│ ├── file1.json
│ ├── file2.json
│ ├── file3.json
│ └── xml
│ ├── file1.xml
│ ├── file2.xml
│ └── file3.xml
├── init_pass
├── mariadb_repo_setup
├── Public
├── Templates
└── wget-1.19.5-8.el8_1.1.x86_64.rpm
10 directories, 16 files
cloud_user@server1: ~ $
cloud_user@server1: ~ $ mv ~/code/ursula/*.json ~/code/mortimer/json/
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ ├── file1.cf
│ ├── file2.cf
│ ├── file3.cf
│ └── json
│ ├── file1.json
│ ├── file2.json
│ └── file3.json
└── ursula
├── cloudform
└── xml
├── file1.xml
├── file2.xml
└── file3.xml
5 directories, 9 files
cloud_user@server1: ~ $
cloud_user@server1: mortimer $ mv *.cf ../ursula/cloudform/
cloud_user@server1: mortimer $ cd
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ └── json
│ ├── file1.json
│ ├── file2.json
│ └── file3.json
└── ursula
├── cloudform
│ ├── file1.cf
│ ├── file2.cf
│ └── file3.cf
└── xml
├── file1.xml
├── file2.xml
└── file3.xml
5 directories, 9 files
cloud_user@server1: ~ $
cloud_user@server1: ~ $ cp ~/code/ursula/cloudform/ ~/code/mortimer/ -r
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ ├── cloudform
│ │ ├── file1.cf
│ │ ├── file2.cf
│ │ └── file3.cf
│ └── json
│ ├── file1.json
│ ├── file2.json
│ └── file3.json
└── ursula
├── cloudform
│ ├── file1.cf
│ ├── file2.cf
│ └── file3.cf
└── xml
├── file1.xml
├── file2.xml
└── file3.xml
6 directories, 12 files
cloud_user@server1: ~ $ rm -rf ~/code/ursula/cloudform/
cloud_user@server1: ~ $ tree code
code
├── mortimer
│ ├── cloudform
│ │ ├── file1.cf
│ │ ├── file2.cf
│ │ └── file3.cf
│ └── json
│ ├── file1.json
│ ├── file2.json
│ └── file3.json
└── ursula
└── xml
├── file1.xml
├── file2.xml
└── file3.xml
5 directories, 9 files
cloud_user@server1: ~ $
```
task 3 creating softlinks and hardlinks
l
```shell
cloud_user@server1: links $ ll
total 0
cloud_user@server1: links $ touch original
cloud_user@server1: links $ ll -i #Use -i to show the inode nuber
total 0
12583416 -rw-rw-r--. 1 cloud_user cloud_user 0 Apr 16 01:20 original
cloud_user@server1: links $
```
creating a softlink
```shell
cloud_user@server1: links $ ln -s original softlink
cloud_user@server1: links $ ll -i
total 0
12583416 -rw-rw-r--. 1 cloud_user cloud_user 0 Apr 16 01:20 original
12583419 lrwxrwxrwx. 1 cloud_user cloud_user 8 Apr 16 01:22 softlink -> original
```
creating a softlink to a folder, we can notice they have different inode numbers
```shell
cloud_user@server1: links $ mkdir directory
cloud_user@server1: links $ ln -s directory/ otherdirectory
cloud_user@server1: links $ ls -li
total 0
33560168 drwxrwxr-x. 2 cloud_user cloud_user 6 Apr 16 01:22 directory
12583416 -rw-rw-r--. 1 cloud_user cloud_user 0 Apr 16 01:20 original
12583420 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:22 otherdirectory -> directory/
12583419 lrwxrwxrwx. 1 cloud_user cloud_user 8 Apr 16 01:22 softlink -> original
```
creating a hardlink we can notice the inode is the same
```shell
cloud_user@server1: links $ ln original hardlink
cloud_user@server1: links $ ls -li
total 0
33560168 drwxrwxr-x. 2 cloud_user cloud_user 6 Apr 16 01:22 directory
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 hardlink
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 original
12583420 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:22 otherdirectory -> directory/
12583419 lrwxrwxrwx. 1 cloud_user cloud_user 8 Apr 16 01:22 softlink -> original
```
creating a softlink to fstab
```shell
cloud_user@server1: links $ ln -s /etc/fstab softtab
cloud_user@server1: links $ ll -i
total 0
33560168 drwxrwxr-x. 2 cloud_user cloud_user 6 Apr 16 01:22 directory
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 hardlink
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 original
12583420 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:22 otherdirectory -> directory/
12583419 lrwxrwxrwx. 1 cloud_user cloud_user 8 Apr 16 01:22 softlink -> original
12583421 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:25 softtab -> /etc/fstab
```
now a hardlink to fstab
```shell
cloud_user@server1: links $ ln /etc/fstab hardtab
ln: failed to create hard link 'hardtab' => '/etc/fstab': Operation not permitted
cloud_user@server1: links $ sudo ln /etc/fstab hardtab
[sudo] password for cloud_user:
cloud_user@server1: links $ ll -i
total 4
33560168 drwxrwxr-x. 2 cloud_user cloud_user 6 Apr 16 01:22 directory
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 hardlink
71951 -rw-r--r--. 2 root root 475 May 8 2019 hardtab
12583416 -rw-rw-r--. 2 cloud_user cloud_user 0 Apr 16 01:20 original
12583420 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:22 otherdirectory -> directory/
12583419 lrwxrwxrwx. 1 cloud_user cloud_user 8 Apr 16 01:22 softlink -> original
12583421 lrwxrwxrwx. 1 cloud_user cloud_user 10 Apr 16 01:25 softtab -> /etc/fstab
```
finding where a hardlink belongs using the inode to search
```shell
cloud_user@server1: links $ find / -inum 71951 2> /dev/null
/proc/2428/oom_adj
/etc/fstab
/home/cloud_user/links/hardtab
```
Now we are going to find by inode number and also execute an ls -li
```shell
cloud_user@server1: links $ find / -inum 71951 -exec ls -li {} \; 2> /dev/null
71951 -rw-r--r--. 1 root root 0 Apr 16 01:27 /proc/2428/oom_adj
71951 -rw-r--r--. 2 root root 475 May 8 2019 /etc/fstab
71951 -rw-r--r--. 2 root root 475 May 8 2019 /home/cloud_user/links/hardtab
cloud_user@server1: links $
```
```shell
cloud_user@server1: links $ find ./ -inum 12583416
./original
./hardlink
cloud_user@server1: links $
```
Task 4
share directory for tree users
creating a working folder
```
loud_user@server1: ~ $ sudo -i
[sudo] password for cloud_user:
root@server1: ~ # mkdir /project-phoenix
root@server1: ~ # ls
anaconda-ks.cfg aws-cfn-bootstrap-1.4 original-ks.cfg
root@server1: ~ # pwd
/root
root@server1: ~ # cd ..
root@server1: / # ls
bin boot data dev etc home lib lib64 media mnt opt proc project-phoenix root run sbin srv swapfile sys tmp usr var
root@server1: / # cd /home/
root@server1: home # ls -ld /project-phoenix/
drwxr-xr-x. 2 root root 6 Apr 16 02:11 /project-phoenix/
```
creating users
```shell
root@server1: home #
root@server1: home # useradd -m -g users -G devops snuffy ; passwd snuffy
Changing password for user snuffy.
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
root@server1: home # useradd -m -g devops -G users ursula ; passwd ursula
Changing password for user ursula.
New password:
Retype new password:
Sorry, passwords do not match.
passwd: Authentication token manipulation error
root@server1: home # passwd ursula
Changing password for user ursula.
New password:
Retype new password:
Sorry, passwords do not match.
^[[Apasswd: Authentication token manipulation error
root@server1: home # passwd ursula
Changing password for user ursula.
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
root@server1: home # useradd -m -g sysadmins -G users mortimer ; passwd mortimer
Changing password for user mortimer.
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
root@server1: home # cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:65534:65534:Kernel Overflow User:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
systemd-coredump:x:999:997:systemd Core Dumper:/:/sbin/nologin
systemd-resolve:x:193:193:systemd Resolver:/:/sbin/nologin
tss:x:59:59:Account used by the trousers package to sandbox the tcsd daemon:/dev/null:/sbin/nologin
polkitd:x:998:996:User for polkitd:/:/sbin/nologin
unbound:x:997:995:Unbound DNS resolver:/etc/unbound:/sbin/nologin
sssd:x:996:993:User for sssd:/:/sbin/nologin
insights:x:995:992:Red Hat Insights:/var/lib/insights:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
chrony:x:994:991::/var/lib/chrony:/sbin/nologin
cloud_user:x:1001:1001::/home/cloud_user:/bin/bash
ssm-user:x:1002:1002::/home/ssm-user:/bin/bash
qemu:x:107:107:qemu user:/:/sbin/nologin
rtkit:x:172:172:RealtimeKit:/proc:/sbin/nologin
pulse:x:171:171:PulseAudio System Daemon:/var/run/pulse:/sbin/nologin
usbmuxd:x:113:113:usbmuxd user:/:/sbin/nologin
gluster:x:993:986:GlusterFS daemons:/run/gluster:/sbin/nologin
saslauth:x:992:76:Saslauthd user:/run/saslauthd:/sbin/nologin
geoclue:x:991:985:User for geoclue:/var/lib/geoclue:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/lib/rpcbind:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
dnsmasq:x:984:984:Dnsmasq DHCP and DNS server:/var/lib/dnsmasq:/sbin/nologin
pipewire:x:983:982:PipeWire System Daemon:/var/run/pipewire:/sbin/nologin
colord:x:982:981:User for colord:/var/lib/colord:/sbin/nologin
gdm:x:42:42::/var/lib/gdm:/sbin/nologin
radvd:x:75:75:radvd user:/:/sbin/nologin
gnome-initial-setup:x:981:980::/run/gnome-initial-setup/:/sbin/nologin
avahi:x:70:70:Avahi mDNS/DNS-SD Stack:/var/run/avahi-daemon:/sbin/nologin
setroubleshoot:x:980:979::/var/lib/setroubleshoot:/sbin/nologin
flatpak:x:979:978:User for flatpak system helper:/:/sbin/nologin
devops:x:1003:1003:DevOps Admin Service Account:/home/devops:/bin/bash
mysql:x:977:976:MySQL server:/var/lib/mysql:/sbin/nologin
snuffy:x:1004:100::/home/snuffy:/bin/bash
ursula:x:1005:1003::/home/ursula:/bin/bash
mortimer:x:1006:49999::/home/mortimer:/bin/bash
```
Set folder permissions
set the grouup to users and change permissions to folder
```shell
root@server1: home #
root@server1: home # ls -ld /project-phoenix/
drwxr-xr-x. 2 root root 6 Apr 16 02:11 /project-phoenix/
root@server1: home # chown .users /project-phoenix/
root@server1: home # ls -ld /project-phoenix/
drwxr-xr-x. 2 root users 6 Apr 16 02:11 /project-phoenix/
root@server1: home # chmod g+w /project-phoenix/
root@server1: home # ls -ld /project-phoenix/
drwxrwxr-x. 2 root users 6 Apr 16 02:11 /project-phoenix/
root@server1: home #
```
test permissions
```shell
root@server1: home # su snuffy
snuffy@server1: home $ touch /project-phoenix/snuffy.file1
snuffy@server1: home $ exit
exit
root@server1: home # sudo - ursula
sudo: -: command not found
root@server1: home # su - ursula
[ursula@server1 ~]$ touch /project-phoenix/ursula.file1
[ursula@server1 ~]$ exit
logout
root@server1: home # su - mortimer
[mortimer@server1 ~]$ touch /project-phoenix/mortimer.file1
[mortimer@server1 ~]$ logout
root@server1: home # ls -l /project-phoenix/
total 0
-rw-r--r--. 1 mortimer sysadmins 0 Apr 16 02:18 mortimer.file1
-rw-r--r--. 1 snuffy users 0 Apr 16 02:18 snuffy.file1
-rw-r--r--. 1 ursula devops 0 Apr 16 02:18 ursula.file1
root@server1: home #
```
Change so all users has the same ownership
```bash
root@server1: home # ls -ld /project-phoenix/ ; ls -l /project-phoenix/
drwxrwxr-x. 2 root users 68 Apr 16 02:18 /project-phoenix/
total 0
-rw-r--r--. 1 mortimer sysadmins 0 Apr 16 02:18 mortimer.file1
-rw-r--r--. 1 snuffy users 0 Apr 16 02:18 snuffy.file1
-rw-r--r--. 1 ursula devops 0 Apr 16 02:18 ursula.file1
root@server1: home # chmod g+s /project-phoenix/
root@server1: home # ls -ld /project-phoenix/
drwxrwsr-x. 2 root users 68 Apr 16 02:18 /project-phoenix/
root@server1: home # su - snuffy
Last login: Tue Apr 16 02:17:55 UTC 2024 on pts/0
[snuffy@server1 ~]$ touch /project-phoenix/snuffy.file2
[snuffy@server1 ~]$ exxit
bash: exxit: command not found...
e^C
[snuffy@server1 ~]$ exit
logout
root@server1: home # su - ursula
Last login: Tue Apr 16 02:18:22 UTC 2024 on pts/0
[ursula@server1 ~]$ touch /project-phoenix/ursula.file2
[ursula@server1 ~]$ exit
logout
root@server1: home # su - mortimer
Last login: Tue Apr 16 02:18:36 UTC 2024 on pts/0
[mortimer@server1 ~]$ touch /project-phoenix/mortimer.file2
[mortimer@server1 ~]$ exit
logout
root@server1: home # ls -ld /project-phoenix/
drwxrwsr-x. 2 root users 130 Apr 16 02:20 /project-phoenix/
root@server1: home # ls -l /project-phoenix/
total 0
-rw-r--r--. 1 mortimer sysadmins 0 Apr 16 02:18 mortimer.file1
-rw-r--r--. 1 mortimer users 0 Apr 16 02:20 mortimer.file2
-rw-r--r--. 1 snuffy users 0 Apr 16 02:18 snuffy.file1
-rw-r--r--. 1 snuffy users 0 Apr 16 02:20 snuffy.file2
-rw-r--r--. 1 ursula devops 0 Apr 16 02:18 ursula.file1
-rw-r--r--. 1 ursula users 0 Apr 16 02:20 ursula.file2
```
make another change to make sure users cannot delete files from other users
```bash
root@server1: home # chmod +t /project-phoenix/
root@server1: home # ls -ld /project-phoenix/
drwxrwsr-t. 2 root users 130 Apr 16 02:20 /project-phoenix/ # Notice there is a t at the end of the permissions
root@server1: home #
root@server1: home # chown .users /project-phoenix/*.* # change all file groups to users
root@server1: home # ls -l /project-phoenix/
total 0
-rw-r--r--. 1 mortimer users 0 Apr 16 02:18 mortimer.file1
-rw-r--r--. 1 mortimer users 0 Apr 16 02:20 mortimer.file2
-rw-r--r--. 1 snuffy users 0 Apr 16 02:18 snuffy.file1
-rw-r--r--. 1 snuffy users 0 Apr 16 02:20 snuffy.file2
-rw-r--r--. 1 ursula users 0 Apr 16 02:18 ursula.file1
-rw-r--r--. 1 ursula users 0 Apr 16 02:20 ursula.file2
```
# RHCSA EX200 - Input/Output Redirection LAB
### Use Input/Output Redirection
#### Create a Server Health Log File
1. Create a server health log file that contains a sequential number of outputs with the hostname, date and time, and a simple header:
```
cloud_user@server1: ~ $ { echo " " ; echo "==== `date` on `hostname` ====" ; df -hT ; }
==== Wed May 1 20:53:07 UTC 2024 on server1 ====
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 4.0K 373M 1% /run/user/1001
```
2. Rerun the previous command, and output this to a text file:
```
{ echo " " ; echo "==== `date` on `hostname` ====" ; df -hT ; } > `hostname`-health.txt
```
3. Review the output:
```bash
cloud_user@server1: ~ $ cat server1-health.txt
==== Wed May 1 20:53:51 UTC 2024 on server1 ====
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 4.0K 373M 1% /run/user/1001
```
Observe what was added to the file.
4. Rerun the first `echo` command to create the server health log file twice more:
```
{ echo " " ; echo "==== `date` on `hostname` ====" ; df -hT ; } > `hostname`-health.txt
```
5. Review the output using `cat server1-health.txt` again to see how many times the command was run.
6. Change the server health log file to contain a double redirect to ensure that the initial and subsequent outputs are not overwritten:
```
{ echo " " ; echo "==== `date` on `hostname` ====" ; df -hT ; } >> `hostname`-health.txt
```
7. Run the above command 2 more times.
8. Inspect the output again using `cat server1-health.txt`.
9.
cat server1-health.txt
cloud\_user@server1: ~ $ cat server1-health.txt
==== Wed May 1 20:58:43 UTC 2024 on server1 ====
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 4.0K 373M 1% /run/user/1001
==== Wed May 1 21:00:24 UTC 2024 on server1 ====
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 4.0K 373M 1% /run/user/1001
==== Wed May 1 21:00:25 UTC 2024 on server1 ====
Filesystem Type Size Used Avail Use% Mounted on
devtmpfs devtmpfs 1.8G 0 1.8G 0% /dev
tmpfs tmpfs 1.9G 0 1.9G 0% /dev/shm
tmpfs tmpfs 1.9G 17M 1.9G 1% /run
tmpfs tmpfs 1.9G 0 1.9G 0% /sys/fs/cgroup
/dev/xvda2 xfs 20G 14G 6.7G 67% /
tmpfs tmpfs 373M 4.0K 373M 1% /run/user/1001