Top Menu

Thank you for choosing Superb as your dedicated hosting partner.  We hope this document helps you on your way to administering your Linux server.  The possible range of topics to cover is nearly limitless so it is not possible to cover everything.  We've tried to cover the most important and relevant to you.  The topics covered in this document will also be covered in books and other sources of information widely available on the net which you can use to further your understanding.  As well, we will include relevant links throughout this document so that you can get more in depth information.

The LINUX operating system is made up of three parts; the kernel, the shell and the programs.

The kernel of Linux is the hub of the operating system: it allocates time and memory to programs and handles the filestore and communications in response to system calls.

As an illustration of the way that the shell and the kernel work together, suppose a user types rm myfile (which has the effect of removing the file "myfile"). The shell searches the filestore for the file containing the program rm, and then requests the kernel, through system calls, to execute the program rm on myfile. When the process rm myfile has finished running, the shell then returns the Linux prompt % to the user, indicating that it is waiting for further commands.

The shell acts as an interface between the user and the kernel. When a user logs in, the login program checks the username and password, and then starts another program called the shell. The shell is a command line interpreter (CLI). It interprets the commands the user types in and arranges for them to be carried out. The commands are themselves programs: when they terminate, the shell gives the user another prompt (% on our systems).

Filename Completion - By typing part of the name of a command, filename or directory and pressing the [Tab] key, the bash shell will complete the rest of the name automatically. If the shell finds more than one name beginning with those letters you have typed, it will beep, prompting you to type a few more letters before pressing the tab key again.

History - The shell keeps a list of the commands you have typed in. If you need to repeat a command, use the cursor keys to scroll up and down the list or type history for a list of previous commands.

SSH was created to encrypt the data being sent over the network as well as provide an option that prevents passwords from being ever passed over the network. We recommend connection to your server via SSH.  To connect to your server via SSH, you need to have a ssh client installed.  We recommend one of the following:

• PuTTY for Windows (free)
• OpenSSH for Windows (free)
• SSH for Mac (free)
• SecureCRT for Windows (commercial)
• F-Secure for Windows and Mac (commercial)

For more information, please refer to The SSH FAQ

For security reason, please do not  SSH to your server directly as root.  Always connect using your own login first and then use the command su (switch user) to root.  Root is used for administrative purposes. The root login is much like the administrative login on Windows or many other servers. You will have full access to all areas of the server. Therefore, only use root when you absolutely need to perform administrative tasks.  All other times, log in as yourself.

Navigation

Navigating around the files and directories of your hard drive could be a dreaded task for you, but it is necessary knowledge. In this section, we will cover some basic commands to help you navigate through your system.

% cd my_directory

there are two special directories called "." and ".."

In Linux, "." means the current directory, so typing

% cd . (NOTE: there is a space between cd and the dot)

means stay where you are (the my_directory directory).
This may not seem very useful at first, but using "." as the name of the current directory will save a lot of typing, as you will see later.

".." means the parent of the current directory, so typing

% cd ..

will take you one directory up the hierarchy (back to your home directory). Try it now.

Note: typing cd with no argument always returns you to your home directory. This is very useful if you are lost in the file system.

ls (list)
The ls letters stand for list.  Typing ls will give you a listing of all the files in the current directory. If you're new to Linux, chances are that the directories you are commonly in will be empty, and after the ls command is run, you are not given any information and will just be returned to the command prompt (the shell).

There are "hidden" files in Linux, too. Their file names start with a dot, and doing a normal ls will not show them in a directory. Many configuration files start with a dot on their file names because they would only get in the way of users who would like to see more commonly used items. To view hidden

% ls -a

To view more information about the files in a directory, use the -l flag with ls. It will show the file permissions as well as the file size, which are probably what are the most useful things to know about files.

You can put flags together, so to view all the files in a directory, show their permissions/size, and view all the files that way through the subdirectories, you could type:

% ls -laR

% pwd

The full pathname will look something like this:

/home/joe

which means that joe (your home directory) is inside the /home directory.

~ (your home directory)
Home directories can also be referred to by the tilde ~ character. It can be used to specify paths starting at your home directory. So typing

% ls ~/html will list the contents of your html directory, no matter where you currently are in the file system.Typing

% ls ~ would list the contents of your home directory;

And typing% ls ~/.. would list the parent directory - that is one directory above your current one.

Most of the file management in Linux is done through the command line, so once you learn some basic commands and utilities, you will find it surprisingly easy and efficient.

There are other extensions to the cp command. You can use the -f parameter to force it. You can use the -a (arvhive) parameter to preserve all attributes of the original files or directories.

Using the cp command, you can copy an entire directory to its new destination. Suppose you want to  copy a directory (and all of its contents) from /home/template/html/index.html to your current directory, you would type:

% cp -rpf /home/template/html/index.html .

To move a file from one place to another, use the mv command. This has the effect of moving rather than copying the file, so you end up with only one file rather than two.It can also be used to rename a file, by "moving" the file to the same directory, but giving it a different name.

% rm -i my_file

To delete something in some other directory, use the full path as the file name. For example, if you want to delete a file called "foobar" that's in the directory /usr/local/src/, you would type:

% rm -i /usr/local/src/foobar

To remove an entire directory and all of its contents, type rm -rf /directory where "/directory" is the path to the directory that you want to delete. The "r" and "f" paramters stand for "recursive" and "force" respectively. We cannot stress how potentially harmful this rm command (used in conjunction with -rf) to your system's health. Do be careful.

A common way to edit files is to download them to your local computer, edit them using your favourite text editor, and uploading them when you are done.  However, if you wish to edit your files on the server itself, you have a variety of text editor tools at your disposal.  The basic syntax to invoke these text editors is the same. Type the name of the editor followed by the file you want to edit, separated by a space in between. Non-existent files will be blank and will be created when you save.

Emacs is text editor that probably has more features than any other in the Unix/Linux world.  In order to take advantage of its power, you will need to learn its commands.  To start of it, there are  two important commands you need to know:

While you're editing a certain file with emacs, you can save it with the [Ctrl]-x [Ctrl]-s keystrokes. Then to exit, type [Ctrl]-x [Ctrl]-c.

The instructions for using pico are located on the screen. You save the file by using the [Ctrl]-o keystroke (for write-out) and exit with [Ctrl]-x.

• The left group of 3 gives the file permissions for the user that owns the file (or directory) (ee51ab in the above example);
• the middle group gives the permissions for the group of people to whom the file (or directory) belongs (eebeng95 in the above example);
• the rightmost group gives the permissions for all others.

• r indicates read permission (or otherwise - for no read permission), that is, the permission to read and copy the file
• w indicates write permission (or otherwise - for no write permission), that is, the permission to change or delete a file
• x , indicates execution permission (or otherwise - for no executable permission), that is, the permission to execute a file, where appropriate

• r allows users to list files in the directory
• w means that users may delete files from the directory or move files into it
• x means the right to access files in the directory. This implies that you may read files in the directory provided you have read permission on the individual files.

• -rwxrwxrwx a file that everyone can read, write and execute (and delete)
• -rw------- a file that only the owner can read and write - no-one else
  can read or write and no-one has execution rights (e.g. your mailbox file).
  

1. M for memory usage information
2. P for CPU information
3. q to quit

Disk Quota

The main purpose of quota is to limit the disk space or the number of inodes used by a user or group. Disk space is referred to the ammount of space allocated to the user whereas the inodes refer to the number of files that a user can access at a time. On every server where disk space is shared among users there is a need to restrict them to a certain amount of disk space. This is done to prevent some users hogging up the entire disk space.  Inodes limitation is rarely used so we will not discuss it here.

Disk quotas are implemented per user (or per group) per disk partition. During the boot time each partition is checked to see if quota has been implemented on it or not. To implement user or group quotas for a given partition we specify usrquota or grpquota options in the fourth field of /etc/fstab file.

The contents of the above files are not in human readable form. The most important thing is in order for quota to work on a partition, you have to initialize this file.  To do that you have to run quota check for both group and user. If you use the default -avu option it only checks the user quotas and uitilizes the aquota.user file only. Example:

Once you have initialize the aquota.user or the aquota.group or both files, you can finally turn on quota.  Use this command:

Conversely, if you wish to turn off quota, use this command:

Now that quota to your desired partitions have been turned on, you can go ahead and allocate quota to your users.  To accomplish this, you use the edquota (edit quota) command. The edquota command puts you into a "vi" editing mode so knowledge of the "vi" editor is necessary. Another editor may be specified with the EDITOR environment variable. You are NOT editing the aquota.user file directly. The /partition/aquota.user or aquota.group file is a binary file which you do not edit directly. The command edquota gives you an ascii interface with the text is prepared for you. When you ":wq" to save the file from the vi session, it is converted to binary by the edquota command and stored in the aquota.user or aquota.group file. edquota

To allocate 100MB of disk space for user joe in the "/" partition, you type:

Quotas for user joe:
           /dev/sdb6: blocks in use: 56, limits (soft = 0, hard = 0)
                   inodes in use: 50, limits (soft = 0, hard = 0)

You need to change this text so it will look like (remember that we are only interested in limiting the space consumption and not the number of files:

Quotas for user joe:
           /dev/sdb6: blocks in use: 56, limits (soft = 100000, hard = 105000)
                   inodes in use: 50, limits (soft = 0, hard = 0)

Explanation of terms:

Grace Period
Grace period is a time limit before the soft limit is enforced for a file system with quota enabled. Also when it is enabled, the user absolutely cannot go beyond the hard limit if set.  Time units of sec(onds), min(utes), hour(s), day(s), week(s), and month(s) can be used. To set a grace period for user joe, you type: % edquota -t joe Time units may be: days, hours, minutes, or seconds Grace period before enforcing soft limits for users: /dev/hda2: block grace period: 0 days, file grace period: 0 days

0 days indicate that grace period has NOT been enabled.  Change the 0 days part to any length of time you feel reasonable. A good choice might be 7 days (or 1 week).

Viewing a user's quota
To view joe's current quota and  usage information, type:

% quota -v joe

To display a summary report of all users' quota and usage information on your server, type:

% repquota -a

This topic is vast in its scope and it is not the intention of this document to cover it in any significant detail.  If you wish to find out more, please refer to many available books and other resources on this topic.  We will just point out the tools available to you and especially help you set up  multiple IPs on your server.

These programs will modify values in the following files:

• /etc/sysconfig/network - Defines your network and some of its characteristics.
• /etc/HOSTNAME - Shows the host name of this host. IF your server's name is "myhost" then that is exactly the text this file will contain.
• /etc/resolv.conf - Specifies the domain to be searched for host names to connect to, the nameserver address, and the search order for the nameservers.
• /etc/host.conf - Specifies the order nameservice looks to resolve names.
• /etc/hosts - Shows addresses and names of local hosts.
• /etc/networks - Provides a database of network names with network addresses similar to the /etc/hosts file. This file is not required for operation.
• /etc/sysconfig/network-scripts/ifcfg-eth* - There is a file for each network interface. This file contains the IP address of the interface and many other network variables.

• netstat - Displays information about the systems network connections, including port connections, routing tables, and more. The command "netstar -r" will display the routing table.
• traceroute - This command can be used to determine the network route from your computer to some other computer on your network or the internet. To use it you can type "route IPaddress" of the computer you want to see the route to.
• nslookup - Used to query DNS servers for information about hosts.
• arp - This program lets the user read or modify their arp cache.
• tcpdump - This program allows the user to see TCP traffic on their network.
• dig(1) - Send domain name query packets to name servers for debugging or testing.

 For any of the above command, if you wish to know more detail, please type man <command>.

Although there are configuration utilities you can use to help you perform this task,  we will show you a simple manual procedure to do this.  The rationale is that if something goes wrong with the configuration, at least you know what has been done and you can reverse it.  What you are trying to accomplish is what many people refer to as IP address aliasing.  That is, enabling multiple IP addresses on one ethernet card. Assuming that your server currently has the IP address: 192.168.100.4 and you wish to set up the additional 192.168.100.50 IP to it.  The following is a step by step instructions on how to manually and permanently add that IP to your server:

1. % cd /etc/sysconfig/network-scripts 
2. % cp ifcfg-eth0 ifcfg-eth:0 (assuming that you this is the first additional IP, otherwise change 0 to 1 for second additional IP and 0 to 2 for third additional IP and so on)
3. % vi ifcfg-eth:0  (or instead of vi use your favourite text editor)
   Initially, the file will look similar to this:
   
   DEVICE=eth0
   ONBOOT=yes
   BOOTPROTO=static
   IPADDR="192.168.100.4"
   NETMASK="255.255.255.0"
   GATEWAY="192.168.100.1"
   
   You will need to change it to:
   
   DEVICE=eth0:0
   ONBOOT=yes
   BOOTPROTO=static
   IPADDR="192.168.100.50"
   NETMASK="255.255.255.0"
   GATEWAY="192.168.100.1"
   

Please note that if the new IP given to you does not belong to the same C-block as the IP of your server, the NETMASK and GATEWAY parameters will necessarily be different for this file.  Please consult us for the the exact values of those.  

To set up additional IPs, repeat the above procedure using different filename, such as ifcfg-eth:1, device=eth0:1, and change IPADDR as appropriate.

In order for your changes to take effect, you must restart your server's network functions.  To do that, type:

At the time of this writing, Apache still dominates the internet as the most deployed web server.  When we install your Linux server, we configure it with Apache web server.  In this section, we will go over some Apache basics so that you can hopefully understand how it works and configure it to host your site(s).

% /etc/rc.d/init.d/httpd start
% /etc/rc.d/init.d/httpd restart 

Apache was set up on your server to serve its web pages from the directory /home/httpd/html/. The default home page for the default configuration is index.html.

If you intend to only serve one web site, then all you need to do is upload all your web content to this /home/httpd/html directory.  However, Apache may be configured to host multiple domains each serving files from a different directory. This is referred to as virtual hosting, and it consists of two types:

• Name based virtual hosts: One IP address but multiple domains
• IP based virtual hosts: One IP address for each domain

Before we get into how to configure apache for virtual hosting, we need to focus on the all important /etc/httpd/conf/httpd.conf file.