Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Ubuntu Server Cookbook
  • Table Of Contents Toc
Ubuntu Server Cookbook

Ubuntu Server Cookbook

By : Uday Sawant
5 (2)
Buy this Book
close
close
Ubuntu Server Cookbook

Ubuntu Server Cookbook

5 (2)
By: Uday Sawant
Buy this Book

Overview of this book

Ubuntu is one of the most secure operating systems and defines the highest level of security as compared other operating system. Ubuntu server is a popular Linux distribution and the first choice when deploying a Linux server. It can be used with a $35 Raspberry Pi to top-notch, thousand-dollar-per-month cloud hardware. Built with lists that there are 4 million + websites built using Ubuntu. With its easy-to-use package management tools and availability of well-known packages, we can quickly set up our own services such as web servers and database servers using Ubuntu. This book will help you develop the skills required to set up high performance and secure services with open source tools. Starting from user management and an in-depth look at networking, we then move on to cover the installation and management of web servers and database servers, as well as load balancing various services. You will quickly learn to set up your own cloud and minimize costs and efforts with application containers. Next, you will get to grips with setting up a secure real-time communication system. Finally, we’ll explore source code hosting and various collaboration tools. By the end of this book, you will be able to make the most of Ubuntu’s advanced functionalities.
Table of Contents (16 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Sections
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Managing Users and Groups
chevron up
Icon
1. Managing Users and Groups
Icon
Introduction
Icon
Creating a user account
Icon
Creating user accounts in batch mode
Icon
Creating a group
Icon
Adding group members
Icon
Deleting a user account
Icon
Managing file permissions
Icon
Getting root privileges with sudo
Icon
Setting resource limits with limits.conf
Icon
Setting up public key authentication
Icon
Securing user accounts
2
2. Networking
Icon
2. Networking
Icon
Introduction
Icon
Connecting to a network with a static IP
Icon
Installing the DHCP server
Icon
Installing the DNS server
Icon
Hiding behind the proxy with squid
Icon
Being on time with NTP
Icon
Discussing load balancing with HAProxy
Icon
Tuning the TCP stack
Icon
Troubleshooting network connectivity
Icon
Securing remote access with OpenVPN
Icon
Securing a network with uncomplicated firewall
Icon
Securing against brute force attacks
Icon
Discussing Ubuntu security best practices
3
3. Working with Web Servers
Icon
3. Working with Web Servers
Icon
Introduction
Icon
Installing and configuring the Apache web server
Icon
Serving dynamic contents with PHP
Icon
Hosting multiple websites with a virtual domain
Icon
Securing web traffic with HTTPS
Icon
Installing Nginx with PHP_FPM
Icon
Setting Nginx as a reverse proxy
Icon
Load balancing with Nginx
Icon
Setting HTTPs on Nginx
Icon
Benchmarking and performance tuning of Apache
Icon
Securing the web server
Icon
Troubleshooting the web server
4
4. Working with Mail Servers
Icon
4. Working with Mail Servers
Icon
Introduction
Icon
Sending e-mails with Postfix
Icon
Enabling IMAP and POP3 with Dovecot
Icon
Adding e-mail accounts
Icon
Mail filtering with spam-assassin
Icon
Troubleshooting the mail server
Icon
Installing the Zimbra mail server
5
5. Handling Databases
Icon
5. Handling Databases
Icon
Introduction
Icon
Installing relational databases with MySQL
Icon
Storing and retrieving data with MySQL
Icon
Importing and exporting bulk data
Icon
Adding users and assigning access rights
Icon
Installing web access for MySQL
Icon
Setting backups
Icon
Optimizing MySQL performance – queries
Icon
Optimizing MySQL performance – configuration
Icon
Creating MySQL replicas for scaling and high availability
Icon
Troubleshooting MySQL
Icon
Installing MongoDB
Icon
Storing and retrieving data with MongoDB
6
6. Network Storage
Icon
6. Network Storage
Icon
Introduction
Icon
Installing the Samba server
Icon
Adding users to the Samba server
Icon
Installing the secure FTP server
Icon
Synchronizing files with Rsync
Icon
Performance tuning the Samba server
Icon
Troubleshooting the Samba server
Icon
Installing the Network File System
7
7. Cloud Computing
Icon
7. Cloud Computing
Icon
Introduction
Icon
Creating virtual machine with KVM
Icon
Managing virtual machines with virsh
Icon
Setting up your own cloud with OpenStack
Icon
Adding a cloud image to OpenStack
Icon
Launching a virtual instance with OpenStack
Icon
Installing Juju a service orchestration framework
Icon
Managing services with Juju
8
8. Working with Containers
Icon
8. Working with Containers
Icon
Introduction
Icon
Installing LXD, the Linux container daemon
Icon
Deploying your first container with LXD
Icon
Managing LXD containers
Icon
Managing LXD containers – advanced options
Icon
Setting resource limits on LXD containers
Icon
Networking with LXD
Icon
Installing Docker
Icon
Starting and managing Docker containers
Icon
Creating images with a Dockerfile
Icon
Understanding Docker volumes
Icon
Deploying WordPress using a Docker network
Icon
Monitoring Docker containers
Icon
Securing Docker containers
9
9. Streaming with Ampache
Icon
9. Streaming with Ampache
Icon
Introduction
Icon
Installing the Ampache server
Icon
Uploading contents and creating catalogs
Icon
Setting on-the-fly transcoding
Icon
Enabling API access for remote streaming
Icon
Streaming music with Ampache
10
10. Communication Server with XMPP
Icon
10. Communication Server with XMPP
Icon
Introduction
Icon
Installing Ejabberd
Icon
Creating users and connecting with the XMPP client
Icon
Configuring the Ejabberd installation
Icon
Creating web client with Strophe.js
Icon
Enabling group chat
Icon
Chat server with Node.js
11
11. Git Hosting
Icon
11. Git Hosting
Icon
Introduction
Icon
Installing Git
Icon
Creating a local repository with Git CLI
Icon
Storing file revisions with Git commit
Icon
Synchronizing the repository with a remote server
Icon
Receiving updates with Git pull
Icon
Creating repository clones
Icon
Installing GitLab, your own Git hosting
Icon
Adding users to the GitLab server
Icon
Creating a repository with GitLab
Icon
Automating common tasks with Git hooks
12
12. Collaboration Tools
Icon
12. Collaboration Tools
Icon
Introduction
Icon
Installing the VNC server
Icon
Installing Hackpad, a collaborative document editor
Icon
Installing Mattermost – a self-hosted slack alternative
Icon
Installing OwnCloud, self-hosted cloud storage
13
13. Performance Monitoring
Icon
13. Performance Monitoring
Icon
Introduction
Icon
Monitoring the CPU
Icon
Monitoring memory and swap
Icon
Monitoring the network
Icon
Monitoring storage
Icon
Setting performance benchmarks
14
14. Centralized Authentication Service
Icon
14. Centralized Authentication Service
Icon
Introduction
Icon
Installing OpenLDAP
Icon
Installing phpLDAPadmin
Icon
Ubuntu server logins with LDAP
Icon
Authenticating Ejabberd users with LDAP
15
Index
Icon
Index

Managing file permissions

We have created users and groups. In this recipe, you will work with default file permissions for users and groups, as well as see how to modify those permissions.

Getting ready

Create two users, user1 and user2. Create new group editor and add user1 and user2 as members.

How to do it…

Follow these steps to manage file permissions, follow these steps:

  1. To change groups for files and directories:
    1. Log in with user1.
    2. Create a new directory documents under home:
      	user1@ubuntu:~$ mkdir documents
    3. Create a text file under documents:
      	user1@ubuntu:~$ echo "hello world"> documents/file.txt
    4. Now log in with user2:
      	user1@ubuntu:~$ su user2
    5. Try to edit the same text file. It should say Permission denied:
      user2@ubuntu:/home/user1$ echo "hello again">documents/file.txt
      How to do it…
    6. log in as user1 and change the group of documents to editor:
      	user1@ubuntu:~$ chgrp -R editor documents
      How to do it…
    7. Switch to user2 and try editing the same file. Now it should work:
      How to do it…
  2. To set permissions with chmod, follow these steps:
    1. Create simple shell script with the following command:
      	$ echo 'echo "Hello World!!"'> hello.sh
    2. Execute a shell script with the following command:
      	$ ./hello.sh
      How to do it…
    3. Set executable permission to hello.sh with the following command:
      	$ chmod u+x hello.sh
    4. Check new permission with the following command:
      	$ ls -l
      How to do it…
    5. Execute hello.sh again:
    How to do it…
  3. To protect shared files with sticky bit, follow these steps:
    1. Log in as user1 and set sticky bit for directory documents:
      	user1@ubuntu:~$ chmod +t documents
    2. Log in as user2 and create a new file.
    3. Try to delete any file under documents. It should fail:
    How to do it…

How it works…

When you create a new file or directory in Ubuntu, the default permissions for files are read and write access to owner and owner's private group, along with read, write, and execute access for directories. You can check the default setting with umask -S.

In our example, we have user1 and user2. Both of them are members of the editor group. When user1 creates a file, the default permissions are limited to user1 and its private group (user1) named after the user account. This is the reason user2 sees Permission denied on editing file. By changing the group of documents to editor we allow all members of editor to read and write to files in documents.

With the chmod command, we can set permissions at a more granular level. In our example of hello.sh, we have set the executable permission for hello.sh. Similarly, we can set read permission as follows:

$chmod +r filename

To set write permission, use the following command:

$chmod +w filename

You can set more selective permissions with additional parameters before mode expression as follows:

$chmod ugo+x filename

Here, u sets the permission for user, g for group, and o for all others.

To remove permissions, replace + with -. For example, $chmod o-w filename. Alternatively, you can use the Octal format to specify permissions:

$chmod 777 filename

This gives read, write, and execute permission to user group and others, whereas the command $chmod 600 filename gives set, read, and write permissions for owner and no permission to groups and others. In Octal format [777], the first bit is used for the user or owner of the file, the second bit is for group, and the third bit is for everyone else. Check out the following table for more information:

Notation

Octal value

Permissions

-|---|---|---

0|000|000|000

Regular files, no permissions

d|r--|r--|r--

d|400|400|400

Directory, read permission to owner, group, and others

-|rw-|r--|r--

-|644|644|644

Regular file, read and write permission to owner and read permission to group or others

-|rwx|rwx|rwx

-|777|777|777

Regular file, all permissions to everyone

Finally, when you share files within a group of users, there are chances that someone deletes the file that is required by other users. Sticky bit can protect these file from deletion. When sticky bit is set, only the owner or a user with root privileges can delete a file.

You can set sticky bit with the command chmod as $chmod +t directoryName. Sticky bit is shown in long listing (ls -l) with symbol t or T. Additionally, sticky bit works only with directories and is ignored on ordinary files.

There's more…

Many times when working as a root user, all files and directories created are owned by root. A non-root user can't write to these directories or files. You can use the command chown to change the ownership of such files and assign them to respective users.

To change ownership of a file, use the following command:

$chown newuser filename

To change the owner as well as the group of file, use the following command:

$chown newuser:newgroup filename

You can skip changing owner and change only the group with the following command:

$chown :newgroup filename

Note that the chown command can only be used by users with root privileges.

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Ubuntu Server Cookbook
End of Section 1
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon