Q9. What do you mean by BOOTP and DHCP?

network --bootproto dhcp

network --bootproto bootp

The line for static networking is more complex, as you must include all network configuration information on one line. You’ll need to specify:

• IP address

• netmask

• gateway IP address

• name server IP address

Q10. What is basic Hard disk Space is required for installing Linux as a Server, Workstation, laptop and custom?

Ans. Workstation:- Workstation installation, installing either GNOME2 or KDE3, requires at least 1.5 GB of free space. Choosing both GNOME and KDE requires at least 1.8 GB of free disk space.

Server:- A server installation requires 1.3 GB for a minimal installation without X (the graphical environment), at least 1.4 GB of free space if all components (package groups) other than X are installed, and at least 2.1 GB to install all packages including GNOME and KDE.

Laptop:- A laptop installation, when you choose to install GNOME or KDE, requires at least 1.5 GB of free space. If you choose both GNOME and KDE, you will need at least 1.8 GB of free disk space.

Custom:- A Custom installation requires 350 MB for a minimal installation and at least 3.7 GB of free space if every package is selected.

These recommendations are based on an installation that only installs one language (such as English). If we plan to install multiple languages to use on your system, you should increase the disk space requirements.

ext2 :- An ext2 file system supports standard Unix file types (regular_les, directories, symbolic links, etc). It provides the ability to assign long file names, up to 255 characters. Versions prior to Red Hat Linux 7.2 used ext2 file systems by default.

ext3 :- The ext3 _le system is based on the ext2 file system and has one main advantage of journaling. Using a journaling file system reduces time spent recovering a file system after a crash as there is no need to fsck1 the file system. The ext3 file system will select by default and is highly recommended.

software RAID:- Creating two or more software RAID partitions allows you to create a

RAID device.

Swap :- Swap partitions are used to support virtual memory. In other words, data is written to a swap partition when there is not enough RAM to store the data your system is processing.

Vfat : - The VFAT file system is a Linux file system that is compatible with Windows 95/NT long filenames on the FAT file system.

Q12. Write down the features of GRUB?

Ans. GRUB contains a number of features that make it preferable to other boot loaders available for the x86 architecture. Below is a list of some of the more important features:

1. GRUB Provides a true command-based, pre-OS environment on x86 machines. This affords the user maximum flexibility in loading operating systems with certain options or gathering information about the system. For years many non-x86 architectures have employed pre-OS environments that allow system booting from a command line. While some command features are available with LILO and other x86 boot loaders, GRUB is more feature rich.

2. GRUB supports Logical Block Addressing (LBA) mode. LBA places the addressing conversion used to find files in the hard driver's firmware, and it is used on many IDE and all SCSI hard devices. Before LBA, boot loaders could encounter the 1024-cylinder BIOS limitation, where the BIOS could not find a file after that cylinder head of the disk. LBA support allows GRUB to boot operating systems from partitions beyond the 1024-cylinder limit, so long as the system BIOS supports LBA mode. Most modern BIOS revisions support LBA mode.

3. GRUB can read ext2 partitions. This allows GRUB to access its configuration file, /boot/grub/grub. conf, every time the system boots, Making clear the need for the user to write a new version of the first stage boot loader to MBR when configuration changes are made. The only time a user would need to reinstall GRUB on the MBR is if the physical location of the /boot partition is moved on the disk.

1. It has no interactive command interface.

2. It stores information about the location of the kernel or other operating system it is to load on the MBR.

3. It cannot read ext2 partitions. The first point means the command prompt for LILO is not interactive and only allows one command with arguments. The last two points mean that if you change LILO's configuration file or install a new kernel, you must rewrite the Stage 1 LILO boot loader to the MBR by issuing the /sbin/lilo - v -v command. This is more risky than GRUB's method, because a misconfigured MBR leaves the system unbootable. With GRUB, if the configuration file is erroneously configured, it will simply default to its command line interface.

1. twm: - The minimalist Tab Window Manager, which provides the most basic

toolset of any of the window managers.

2. mwm: -The default window manager for the GNOME desktop environment, mwm

stands for Metacity Window Manager. It is a simple and efficient window manager which supports custom themes.

3. sawfish: - This full featured window manager for was the default until the release of

Red Hat Linux 8.0. It can be used either with or without the GNOME desktop environment.

4. wmaker: - WindowMaker is a full-featured GNU window manager designed to emulate

the look and feel of the NEXTSTEP environment. These window managers can be run as individual X clients to gain a better sense of their differences.

Type the xinit
command, where
is the location of the window manager binary file. The binary file can be found by typing which or by looking for the name of the window manager in a bin directory.

Q15. What do you mean by PAM? Also explain its advantages.

Ans. Pluggable Authentication Modules (PAM) allows the system administrator to set authentication policies for PAM-aware applications without having to recompile authentication programs. PAM does this by utilizing a Pluggable, modular architecture. Which modules PAM calls for a particular application is determined by looking at that application's PAM configuration _le in the /etc/pam.d/ directory. In mostly cases, you will never need to alter the default PAM configuration files for a PAMaware application. Whenever you use RPM to install programs that require authentication, they automatically make the changes necessary to do normal password authentication using PAM. However, if you need to customize the PAM configuration file, you must understand the structure of this file

Advantages of PAM

When used correctly, PAM provides the following advantages for a system administrator:

1. It provides a common authentication scheme that can be used with a wide variety of applications.

2. It allows great flexibility and control over authentication for both the system administrator and application developer.

3. It allows application developers to develop their program without implementing a particular authentication scheme.

Q16. What is SSH protocol? Explain it in detail?

Ans. SSH allows users to log into host systems remotely. Unlike rlogin or telnet SSH encrypts the login session, making it impossible for intruders to collect clear-text passwords. SSH is designed to replace older, less secure terminal applications used to log into remote systems, such as telnet or rsh. A related program called scp replaces older programs designed to copy files between hosts, such as ftp or rcp. Because these older applications do not encrypt passwords between the client and the server. Using secure methods to remotely log into other systems will decrease the security risks for both your system and the system you are logging into.

Features of SSH

SSH (or Secure SHELL) is a protocol for creating a secure connection between two systems using a client server architecture. Under the SSH protocol, the client machine initiates all connections to a server.

The SSH protocol provides the following safeguards:

1. After an initial connection, the client verifies it is connecting to the same server during subsequent sessions.

2. The client transmits its authentication information to the server, such as a username and password, in an encrypted format.

3. All data sent and received during the connection is transferred using strong, 128 bit encryption, making intercepted transmissions extremely difficult to decrypt and read.

4. The client has the ability to use X11 1 applications launched from the shell prompt. This technique, called X11 forwarding, provides a secure means to use graphical applications over a network.

5. Because the SSH protocol encrypts everything it sends and receives, it can be used to secure otherwise insecure protocols. Using a technique called port forwarding, an SSH server can become a conduit to secure insecure protocols, like POP, increasing overall system and data security. A large number of client and server programs can use the SSH protocol. Several different SSH client versions are available for almost every major operating system in use today. Even if the users connecting to your system are not running Red Hat Linux, they can still find and use an SSH client native for their operating system.

translation. A client application will request information from the nameserver, usually connecting to it on the server's port 53. The nameserver will attempt to resolve the FQDN based on its resolver library, which may contain authoritative information about the host requested or cached data about that name from an earlier query. If the nameserver does not already have the answer in its resolver library, it will turn to\ other nameserver, called root nameserver, to determine which nameserver are authoritative

for the FQDN in question. Then, with that information, it will query the authoritative nameserver for that name to determine the IP address. If performing a reverse lookup, the same procedure is used, except the query is made with an unknown IP address rather than a name.

Q19. What do you mean by NFS? Also explain the File Permission in NFS.

Ans. NFS (Network File System) exists to allow hosts to mount partitions on a remote system and use them as though they were local file systems. This allows files to be organized in a central location, while providing the functionality of allowing authorized users continuous access to them. Two versions of NFS are currently in use. NFS version 2 (NFSv2), which has been around for several years, is widely supported by various operating systems. NFS version 3 (NFSv3) has several more features, including a variable file handle size and better error reporting. Red Hat Linux supports both NFSv2 and NFSv3, and uses NFSv3 by default when connecting with a server that supports it.

File Permission

Once the NFS file system is mounted read-write by a remote host, protection for each shared file involves its permissions, and its user and group ID ownership. If two users that share the same user ID value mount the same NFS file system, they will be able to modify each others files. Additionally, anyone logged in as root on the client system can use the su - command to become a user who could access particular files via the NFS share. The default behavior when exporting a file system via NFS is to use root squashing. This sets the user ID of anyone accessing the NFS share as the root user on their local machine to a value of the server's nobody account. You should never turn off root squashing unless multiple users with root access to your server does not bother you. If you are only allowing users to read files via your NFS share, consider using the all squash option, which makes every user accessing your exported file system to take the user ID of the nobody user.

LDAP server it can either query a directory or upload information to it. In the event of a query, the server either answers the query or, if it can not answer locally, it can refer the query upstream to a higher level LDAP server which does have the answer. If the client application is attempting to upload information to an LDAP directory, the server verifies that the user has permission to make the change and then adds or updates the information.

Several Netscape applications, including Netscape Roaming Access are LDAP-enabled. Send mail can use LDAP to look up addresses. Any organization can use LDAP as an organization-wide directory and/or name service. We can even use a personal LDAP server to keep track of personal e-mail address book. LDAP can be used as an authentication service via the pam_ldap module. LDAP is commonly used as a central authentication server so that users have a unified login that covers console logins, POP servers, IMAP servers, machines connected to the network using Samba, and even

Windows NT machines. All of these login situations can rely on the same user ID and password combination, using LDAP. The pam_ldap module is provided in the nss_ldap package.

Section – C 2 Marks Questions

[QUESTIONS 1 TO 35] [PAGE 25 TO 27]
Q1. How you can mount NFS partitions?

Ans. Mounting NFS partitions works the same way as mounting the local partitions. The only difference is in how the partitions are addressed. On local disks, partitions are addressed by their device name such as /dev/hda1. In NFS mounts, partitions are referenced by their hostnames and export directories. So if the server named techniques is allowing the host to mount the directory /export/SL1200/MK2 and the user wants to mount this to /projects/secret , we will provide the following command.

[root@ptu /root] # mount technics:/export/SL1200/MK2 /projects/secret

#variable=value

#FOO=BAR

Q7. Describe the Pipe.

Ans. Pipes are a mechanism by which the output of one program can be sent as the input to another program. Individual programs can be chained together to become extremely powerful tools. The grep utility, given a stream of input, will try to match the line with the parameter supplied to it and display only matching lines. For example, if we were looking for all environment variables containing the string “OSTYPE”, we could enter this command:

[root@root /root]$ printenv | grep "OSTYPE"

The vertical bar ( | ) character represents the pipe between printenv and grep.

Group name

Encrypted password for the group

GID number

Comma-separated list of member users.

Q9. What does RPM stand for?

Ans. Red Hat Package Manager. The RPM package manager is an open source packaging system distributed under the GNU GPL. It runs on most Linux distributions and makes it easy for you to install, uninstall, and upgrade the software on your machine. Their .rpm file extension and the ‘package’ icon that appears in your navigation window can easily recognize RPM files:

Q10. What command is used to install the RPM database?

Ans. The command is used to install the RPM database is #pm –ivh
.

Q11. What information is stored in the /etc/password file?

Ans. The /etc/passwd file store the user’s login, encrypted password entry, UID, default GID, name, home directory and login shell. The file keeps one user per line, and a colon delimits each entry for the user. Many sites disable accounts by altering the encrypted password entry so that when the disabled account’s user enters their password, it won’t match the value in the password file. The guaranteed method of altering passwords for this reasons to insert an asterisk (*).

Q12. What command is used to upgrade the RPM database?

Ans. The command is used to upgrade the RPM database is #rpm – Uv
.

Q13. What command is used to check the dependencies of the RPM database?

Ans. The following command is used to check the dependencies of the RPM database.

#rpm –1 –force –nodeps