Book Image

Mastering Ubuntu Server - Third Edition

By : Jay LaCroix
Book Image

Mastering Ubuntu Server - Third Edition

By: Jay LaCroix

Overview of this book

Ubuntu Server has taken data centers around the world by storm. Whether you're deploying Ubuntu for a large-scale project or for a small office, it is a stable, customizable, and powerful Linux distribution with innovative and cutting-edge features. For both simple and complex server deployments, Ubuntu's flexible nature can be easily adapted to meet to the needs of your organization. This third edition is updated to cover the advancements of Ubuntu 20.04 LTS and further train you to understand how to use Ubuntu Server, from initial deployment to creating production-ready resources for your network. The book begins with the concepts of user management, group management, and file system permissions. Continuing into managing storage volumes, you will learn how to format storage devices, utilize logical volume management, and monitor disk usage. Later, you will learn how to virtualize hosts and applications, which will include setting up QEMU & KVM, as well as containerization with both Docker and LXD. As the book continues, you will learn how to automate configuration with Ansible, as well as take a look at writing scripts. Lastly, you will explore best practices and troubleshooting techniques when working with Ubuntu Server that are applicable to real-world scenarios. By the end of this Ubuntu Server book, you will be well-versed in Ubuntu server’s advanced concepts and attain the required proficiency needed for Ubuntu Server administration.

Related Content you might be interested in

Current Title:

Small book image
Mastering Ubuntu Server - Third Edition
Jay LaCroix
Dec, 2020 | 702 pages
Small book image
Linux for System Administrators
Viorel Rudareanu | Daniil Baturin
Sep, 2023 | 294 pages
Small book image
Mastering Linux Administration
Alexandru Calcatinge | Julian Balog
Jun, 2021 | 772 pages
Small book image
CentOS Quick Start Guide
Shiwang Kalkhanda
Dec, 2018 | 320 pages
Table of Contents (26 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Deploying Ubuntu Server
Deploying Ubuntu Server
Technical requirements
Determining your server's role
Setting up our server
Obtaining installation media
Creating a bootable flash drive
Installing Ubuntu Server
Installing Ubuntu on a Raspberry Pi
Summary
Further Reading
Free Chapter
2
Managing Users and Permissions
Managing Users and Permissions
Understanding users and groups
Understanding when to use root
Creating and removing users
Understanding the /etc/passwd and /etc/shadow files
Distributing default configuration files with /etc/skel
Switching users
Managing groups
Managing passwords and password policies
Configuring administrator access with sudo
Setting permissions on files and directories
Summary
Further reading
3
Managing Software Packages
Managing Software Packages
Understanding Linux package management
Understanding the differences between Debian and Snap packages
Installing and removing software
Searching for packages
Managing package repositories
Backing up and restoring Debian packages
Cleaning up orphaned apt packages
Taking advantage of hardware enablement updates
Summary
Further reading
4
Navigating and Essential Commands
Navigating and Essential Commands
Learning essential Linux commands
Understanding the Linux filesystem layout
Viewing the contents of files
Viewing application log files
Summary
Further reading
5
Managing Files and Directories
Managing Files and Directories
Copying, moving, and renaming files and directories
Editing files with the Nano and Vim text editors
Input and output streams
Using symbolic and hard links
Summary
Further reading
6
Boosting Your Command-line Efficiency
Boosting Your Command-line Efficiency
Understanding the Linux shell
Understanding Bash history
Learning some useful command-line tricks
Understanding variables
Writing simple scripts
Putting it all together – Writing an rsync backup script
Summary
Further reading
7
Controlling and Managing Processes
Controlling and Managing Processes
Managing jobs
Understanding the ps command
Changing the priority of processes
Dealing with misbehaving processes
Managing system processes
Scheduling tasks with cron
Summary
Further reading
8
Monitoring System Resources
Monitoring System Resources
Viewing disk usage
Monitoring memory usage
Understanding load average
Viewing resource usage with htop
Summary
Further reading
9
Managing Storage Volumes
Managing Storage Volumes
Adding additional storage volumes
Formatting and partitioning storage devices
Mounting and unmounting volumes
Understanding the /etc/fstab file
Backing up and restoring volumes
Utilizing LVM
Summary
Further reading
10
Connecting to Networks
Connecting to Networks
Setting the hostname
Managing network interfaces
Assigning static IP addresses
Understanding Linux name resolution
Getting started with OpenSSH
Getting started with SSH key management
Simplifying SSH connections with a config file
Summary
Further reading
11
Setting Up Network Services
Setting Up Network Services
Planning your IP address scheme
Setting up a DHCP server for serving IP addresses
Adding a DNS server
Setting up an internet gateway
Keeping your clock in sync with NTP
Summary
Further reading
12
Sharing and Transferring Files
Sharing and Transferring Files
File server considerations
Sharing files with Windows users via Samba
Setting up NFS shares
Transferring files with rsync
Transferring files with SCP
Mounting remote directories with SSHFS
Summary
Further reading
13
Managing Databases
Managing Databases
Preparations for setting up a database server
Installing MariaDB
Understanding the MariaDB configuration files
Managing MariaDB databases
Setting up a secondary database server
Summary
Further reading
14
Serving Web Content
Serving Web Content
Installing and configuring Apache
Installing additional Apache modules
Securing Apache with TLS
Installing and configuring NGINX
Setting up failover with keepalived
Setting up and configuring Nextcloud
Summary
Further reading
15
Automating Server Configuration with Ansible
Automating Server Configuration with Ansible
Understanding the need for configuration management
Why Ansible?
Creating a Git repository
Getting started with Ansible
Making your servers do your bidding
Putting it all together – automating web server deployment
Using Ansible's pull method
Summary
Further reading
16
Virtualization
Virtualization
Prerequisites and considerations
Setting up a virtual machine server
Creating virtual machines
Bridging the virtual machine network
Simplifying virtual machine creation with cloning
Managing virtual machines via the command line
Summary
Further reading
17
Running Containers
Running Containers
What is containerization?
Understanding the differences between Docker and LXD
Installing Docker
Managing Docker containers
Automating Docker image creation with Dockerfiles
Managing LXD containers
Summary
Further reading
18
Container Orchestration
Container Orchestration
Container orchestration
Preparing a lab environment for Kubernetes testing
Utilizing MicroK8s
Setting up a Kubernetes cluster
Deploying containers via Kubernetes
Summary
Further reading
19
Deploying Ubuntu in the Cloud
Deploying Ubuntu in the Cloud
Understanding the difference between on-premises and cloud infrastructure
Important considerations when considering cloud computing as a potential solution
Becoming familiar with some basic AWS concepts
Creating an AWS account
Choosing a region
Deploying Ubuntu as an AWS EC2 instance
Creating and deploying Ubuntu AMI images
Automatically scaling Ubuntu EC2 deployments with Auto Scaling
Keeping costs down: understanding how to save money and make cost-effective decisions
Taking cloud further: additional resources to grow your knowledge
Summary
Further reading
20
Automating Cloud Deployments with Terraform
Automating Cloud Deployments with Terraform
Why it's important to automate your infrastructure
Introduction to Terraform and how it can fit within your workflow
Installing Terraform
Automating an EC2 instance deployment
Managing security groups with Terraform
Using Terraform to destroy unused resources
Combining Ansible with Terraform for a full deployment solution
Summary
21
Securing Your Server
Securing Your Server
Lowering your attack surface
Understanding and responding to CVEs
Installing security updates
Automatically installing patches with the Canonical Livepatch service
Monitoring Ubuntu servers with Canonical's Landscape service
Securing OpenSSH
Installing and configuring Fail2ban
MariaDB best practices for secure database servers
Setting up a firewall
Encrypting and decrypting disks with LUKS
Locking down sudo
Summary
Further reading
22
Troubleshooting Ubuntu Servers
Troubleshooting Ubuntu Servers
Evaluating the scope
Conducting a root cause analysis
Viewing system logs
Tracing network issues
Troubleshooting resource issues
Diagnosing defective RAM
Summary
Further reading
23
Preventing Disasters
Preventing Disasters
Preventing disasters
Utilizing Git for configuration management
Implementing a backup plan
Replacing failed RAID disks
Utilizing bootable recovery media
Summary
Further reading
24
Another Book You May Enjoy
Another Book You May Enjoy
25
Index
Index

Switching users

Now that we have several users on our system, we need to know how to switch between them. Of course, you can always just log in to the server as one of the users, but you can actually switch to any user account at any time, provided you either know that user's password or have sudo access.

The command you will use to switch from one user to another is the su command. If you enter su with no options, it will assume that you want to switch to root and will ask you for your root password. As I mentioned earlier, Ubuntu locks the root account by default, so at this point you may not have a root password.

Even though Ubuntu doesn't create a password for root by default, some Virtual Private Server (VPS) providers unlock the root password and actually have you log in as the root user. Having an unlocked root account is not a standard Ubuntu practice, and is a customization specific to some cloud providers.

Unlocking the root account is actually really simple; all you have to do is create a root password. To do that, you can execute the following command as any user with sudo access:

sudo passwd

The command will ask you to create and confirm your root password. From this point on, you will be able to use the root account as any other account. You can log in as root, switch to root—it's fully available now. You really don't have to unlock the root account in order to use it. You certainly can, but there are other ways to switch to root without unlocking it, and it's typically better to leave the root account locked unless you have a very specific reason to unlock it. The following command will allow you to switch to root from a user account that has sudo access:

sudo su -

Now you'll be logged in as root and will be able to execute any command you want with no restrictions whatsoever. To return to your previous logged-in account, simply type exit. You can tell which user you're logged in as by the value at the beginning of your bash prompt. What if you want to switch to an account other than root? Of course, you can simply log out and then log in as that user. But you really don't have to do that. The following command will do the job, providing you know the password for the account:

su - <username>

The shell will ask for that user's password and then you'll be logged in as that user. Again, type exit when you're done using the account, which will return you to the one you were using before you switched.

That command is all well and good if you know the user's password, but you often won't. Typically, in an enterprise, you'll create an account, force the user to change their password at first login, and then you will no longer know that user's password. Since you have root and sudo access, you could always change their password and then log in as them. But they'll know something is amiss if their password suddenly stops working—you're not eavesdropping, are you? Armed with sudo access, you can use sudo to change to any user you want to, even if you don't know their password. Just prefix our previous command with sudo and you'll only need to enter the password for your user account, instead of theirs:

sudo su - <username>

Switching to another user account is often very helpful for support (especially while troubleshooting permissions). As an example, say that a user comes to you complaining that he or she cannot access the contents of a specific directory, or they are unable to run a command. In that case, you can log in to the server, switch to their user account, and try to reproduce their problem. That way, you can not only see their problem yourself, but you can also test out whether or not your fix has solved their issue before you report back to them.

Now we have a full understanding of user accounts, and even how to switch between them. In the next section, we'll look into groups, which allow us to categorize our users.

Previous Section
End of Section 7
Next Section