Book Image

Mastering Ubuntu Server - Second Edition

By : Jay LaCroix
Book Image

Mastering Ubuntu Server - Second Edition

By: Jay LaCroix

Overview of this book

Ubuntu Server has taken the data centers by storm. Whether you're deploying Ubuntu for a large-scale project or for a small office, it is a stable, customizable, and powerful Linux distribution that leads the way with innovative and cutting-edge features. For both simple and complex server deployments, Ubuntu's flexible nature can be easily adapted to meet to the needs of your organization. With this book as your guide, you will learn all about Ubuntu Server, from initial deployment to creating production-ready resources for your network. The book begins with the concept of user management, group management, and filesystem permissions. Continuing into managing storage volumes, you will learn how to format storage devices, utilize logical volume management, and monitor disk usage. Later, you will learn how to virtualize hosts and applications, which will cover setting up KVM/QEMU, as well as containerization with both Docker and LXD. As the book continues, you will learn how to automate configuration with Ansible, as well as take a look at writing scripts. Lastly, you will explore best practices and troubleshooting techniques when working with Ubuntu Server that are applicable to real-world scenarios. By the end of the book, you will be an expert Ubuntu Server administrator who is well-versed in its advanced concepts.

Related Content you might be interested in

Current Title:

Small book image
Mastering Ubuntu Server - Second Edition
Jay LaCroix
May, 2018 | 552 pages
Small book image
Linux for System Administrators
Viorel Rudareanu | Daniil Baturin
Sep, 2023 | 294 pages
Small book image
Mastering Linux Administration
Alexandru Calcatinge | Julian Balog
Jun, 2021 | 772 pages
Small book image
Ubuntu 20.04 Essentials
Neil Smyth
Aug, 2020 | 328 pages
Table of Contents (21 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Deploying Ubuntu Server
Deploying Ubuntu Server
Technical requirements
Setting up our lab
Determining your server's role
Deciding between 32- and 64-bit installations
Obtaining Ubuntu Server installation media
Creating a bootable Ubuntu Server flash drive
Planning the partitioning layout
Installing Ubuntu Server
Installing Ubuntu Server on Raspberry Pi 3
Summary
Questions
Further reading
2
Managing Users
Managing Users
Understanding when to use root
Creating and removing users
Understanding the /etc/passwd and /etc/shadow files
Distributing default configuration files with /etc/skel
Switching users
Managing groups
Managing passwords and password policies
Configuring administrator access with sudo
Setting permissions on files and directories
Summary
Questions
Further reading
3
Managing Storage Volumes
Managing Storage Volumes
Understanding the Linux filesystem
Using symbolic and hard links
Viewing disk usage
Adding additional storage volumes
Partitioning and formatting volumes
Mounting and unmounting volumes
Understanding the /etc/fstab file
Managing swap
Utilizing LVM volumes
Understanding RAID
Summary
Questions
Further reading
4
Connecting to Networks
Connecting to Networks
Setting the hostname
Managing network interfaces
Assigning static IP addresses
Understanding NetworkManager
Understanding Linux name resolution
Getting started with OpenSSH
Getting started with SSH key management
Simplifying SSH connections with a config file
Summary
Questions
Further reading
5
Managing Software Packages
Managing Software Packages
Understanding Linux package management
Taking advantage of hardware enablement updates
Understanding the differences between Debian and Snap packages
Installing and removing software
Searching for packages
Managing package repositories
Backing up and restoring Debian packages
Cleaning up orphaned apt packages
Making use of Aptitude
Summary
Questions
6
Controlling and Monitoring Processes
Controlling and Monitoring Processes
Showing running processes with the ps command
Managing jobs
Dealing with misbehaving processes
Utilizing htop
Managing system processes
Monitoring memory usage
Scheduling tasks with cron
Understanding load average
Summary
Questions
Further reading
7
Setting Up Network Services
Setting Up Network Services
Planning your IP address scheme
Serving IP addresses with isc-dhcp-server
Setting up DNS with bind
Creating a secondary (slave) DNS server
Setting up an internet gateway
Keeping your clock in sync with NTP
Summary
Questions
Further reading
8
Sharing and Transferring Files
Sharing and Transferring Files
File server considerations
Sharing files with Windows users via Samba
Setting up NFS shares
Transferring files with rsync
Transferring files with scp
Mounting remote directories with SSHFS
Summary
Questions
Further reading
9
Managing Databases
Managing Databases
Preparations for setting up a database server
Installing MariaDB
Understanding the MariaDB configuration files
Managing MariaDB databases
Setting up a slave database server
Summary
Questions
10
Serving Web Content
Serving Web Content
Installing and configuring Apache
Installing additional Apache modules
Securing Apache with SSL
Installing and configuring NGINX
Setting up failover with keepalived
Setting up and configuring Nextcloud
Summary
Questions
Further reading
11
Learning Advanced Shell Techniques
Learning Advanced Shell Techniques
Understanding the Linux shell
Understanding Bash history
Learning some useful command-line tricks
Redirecting output
Understanding variables
Writing simple scripts
Putting it all together: Writing an rsync backup script
Summary
Questions
Further reading
12
Virtualization
Virtualization
Setting up a virtual machine server
Creating virtual machines
Bridging the virtual machine network
Simplifying virtual machine creation with cloning
Managing virtual machines via the command line
Summary
Questions
Further reading
13
Running Containers
Running Containers
What is containerization?
Understanding the differences between Docker and LXD
Installing Docker
Managing Docker containers
Automating Docker image creation with Dockerfiles
Managing LXD containers
Summary
Questions
Further reading
14
Automating Server Configuration with Ansible
Automating Server Configuration with Ansible
Understanding the need for configuration management
Why Ansible?
Creating a Git repository
Getting started with Ansible
Making your servers do your bidding
Putting it all together – Automating web server deployment
Using Ansible's pull method
Summary
Questions
Further reading
15
Securing Your Server
Securing Your Server
Lowering your attack surface
Understanding and responding to CVEs
Installing security updates
Automatically installing patches with the Canonical Livepatch service
Monitoring Ubuntu servers with Canonical's Landscape service
Securing OpenSSH
Installing and configuring Fail2ban
MariaDB best practices for secure database servers
Setting up a firewall
Encrypting and decrypting disks with LUKS
Locking down sudo
Summary
Questions
Further reading
16
Troubleshooting Ubuntu Servers
Troubleshooting Ubuntu Servers
Evaluating the problem space
Conducting a root cause analysis
Viewing system logs
Tracing network issues
Troubleshooting resource issues
Diagnosing defective RAM
Summary
Questions
17
Preventing and Recovering from Disasters
Preventing and Recovering from Disasters
Preventing disasters
Utilizing Git for configuration management
Implementing a backup plan
Replacing failed RAID disks
Utilizing bootable recovery media
Summary
Questions
Further Reading
18
Using the Alternate Installer
Using the Alternate Installer
Obtaining the Alternate Installer
Installing via the Alternate Installer
Setting up software RAID
Summary
19
Assessments
Assessments
Chapter 1 – Deploying Ubuntu Server
Chapter 2 – Managing Users
Chapter 3 – Managing Storage Volumes
Chapter 4 – Connecting to Networks
Chapter 5 – Managing Software Packages
Chapter 6 – Controlling and Monitoring Processes
Chapter 7 – Setting Up Network Services
Chapter 8 - Accessing and sharing files
Chapter 9 - Sharing and Transferring Files
Chapter 10 – Serving Web Content
Chapter 11 – Learning Advanced Shell Techniques
Chapter 12 – Virtualization
Chapter 13 – Running Containers
Chapter 14 – Automating Server Configuration with Ansible
Chapter 15 – Securing Your Server
Chapter 16 – Troubleshooting Ubuntu Servers
Chapter 17 – Preventing and Recovering from Disasters
20
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Summary

In this chapter, we looked at the ways in which we can harden the security of our server. A single chapter or book can never give you an all-inclusive list of all the security settings you can possibly configure, but the examples we worked through in this chapter are a great starting point. Along the way, we looked at the concepts of lowering your attack surface, as well as the principle of least privilege. We also looked into securing OpenSSH, which is a common service that many attackers will attempt to use in their favor. We also looked into Fail2ban, which is a handy daemon that can block other nodes when there are a certain number of authentication failures. We also discussed configuring our firewall, using the Uncomplicated Firewall (UFW) utility. Since data theft is also unfortunately common, we covered encrypting our backup disks.

In the next chapter, we'll...

Previous Section
End of Section 13
Next Section