Book Image

Oracle Linux Cookbook

By : Erik Benner, Erik B. Thomsen, Jonathan Spindel
Book Image

Oracle Linux Cookbook

By: Erik Benner, Erik B. Thomsen, Jonathan Spindel

Overview of this book

Discover the power of Oracle Linux 8, the free and enterprise-grade Linux distribution designed for use in any environment, with this recipe-style book. Starting with instructions on how to obtain Oracle Linux for both X86 and ARM-based platforms, this book walks you through various installation methods, from running it as a Windows service to installing it on a Raspberry Pi. It unravels advanced topics such as system upgrades using Leapp for major version transitions and using a PXE server and kickstart files for more advanced installations. The book then delves into swapping kernels to take advantage of Oracle’s UEK, exploring boot options, managing software with DNF, and achieving high availability. Detailed recipes involving security topics will assist with tasks such as data encryption, both at rest and in motion. For developers, it offers guidance on building RPM files, using Docker and Podman in a containerized environment, working with AppStreams, and more. For large-scale deployments, the book introduces Oracle Linux Automation Manager for enterprise-level Ansible utilization, from setting up the Ansible server to basic playbook writing. Finally, you’ll discover strategies for cloud migration. By the end of this book, you’ll possess a comprehensive toolkit that will elevate your skills as a Linux administrator.

Related Content you might be interested in

Current Title:

Small book image
Oracle Linux Cookbook
Erik Benner | Erik B. Thomsen | Jonathan Spindel
Jan, 2024 | 548 pages
Small book image
Red Hat Enterprise Linux 9 Administration
Pedro Ibantildeez | Scott McCarty | Miguel Pérez Colino | Pablo Iranzo Gómez
Nov, 2022 | 530 pages
Small book image
Red Hat Enterprise Linux 8 Administration
Scott McCarty | Miguel Pérez Colino | Pablo Iranzo Gómez
Nov, 2021 | 534 pages
Small book image
Podman for DevOps
Gianni Salinetti | Alessandro Arrichiello
Apr, 2022 | 518 pages
Table of Contents (16 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Conventions used
Sections
Get in touch
Reviews
Share Your Thoughts
Download a free PDF copy of this book
1
Chapter 1: Oracle Linux 8 – Get It? Got It? Good!
Chapter 1: Oracle Linux 8 – Get It? Got It? Good!
Technical requirements
Oracle Linux 8 – which ISO is right? USB? Does anyone use DVDs?
Burning an ISO so it’s bootable
Two for the price of one – running Oracle Linux on Windows Subsystem for Linux (WSL)
Arm'ing for the future of IT – it’s not just a slice of Raspberry Pi
Leapping from Oracle Linux 7 to 8
Migrating from CentOS to Oracle Linux
Free Chapter
2
Chapter 2: Installing with and without Automation Magic
Chapter 2: Installing with and without Automation Magic
Technical requirements
Automating the OS install options with kickstart
DHCP server – more than just IPs
Setting up the web server – HTTPD
Serving up the boot – TFTPD
Back in the day – a manual installation
Appendix – kickstart options
3
Chapter 3: Exploring the Various Boot Options and Kernels in Oracle Linux
Chapter 3: Exploring the Various Boot Options and Kernels in Oracle Linux
Kernel basics – UEK and RHCK
Kernel basics – UEK and RHCK
Playing with UEFI
Playing with Secure Boot
TrenchBoot – improving boot security and integrity
Removing the RHCK
4
Chapter 4: Creating and Managing Single-Instance Filesystems
Chapter 4: Creating and Managing Single-Instance Filesystems
Technical requirements
What you need to know about local filesystems
Btrfs – creating, resizing, and monitoring
Btrfs – subvolumes, snapshots, quotas, and more
Protecting data with mdadm – a software RAID solution
Playing with logical volume management
XFS – creating, modifying, and more
5
Chapter 5: Software Management with DNF
Chapter 5: Software Management with DNF
What have they done to YUM, moving to DNF?
Using the DNF time machine
Building a DNF/YUM mirror from ULN
Creating a new RPM package
6
Chapter 6: Eliminating All the SPOFs! An Exercise in Redundancy
Chapter 6: Eliminating All the SPOFs! An Exercise in Redundancy
Technical requirements
Getting 99.999% availability and beyond
Load balancing a website
Making HAProxy highly available with Keepalived
HA clustering for all with Corosync and Pacemaker
Sharing a filesystem across multiple machines – cluster or distribute?
Generating, configuring, and monitoring Ethernet traffic over bond
7
Chapter 7: Oracle Linux 8 – Patching Doesn’t Have to Mean Rebooting
Chapter 7: Oracle Linux 8 – Patching Doesn’t Have to Mean Rebooting
Setting up Ksplice with internet access
Using Ksplice with no internet access
Installing and enabling Known Exploit Detection
8
Chapter 8: DevOps Automation Tools – Terraform, Ansible, Packer, and More
Chapter 8: DevOps Automation Tools – Terraform, Ansible, Packer, and More
Technical requirements
Do it once manually – rinse and repeat with Terraform
Creating portable roles for Ansible
Managing secrets with Ansible Vault
Cooking up the perfect lab environment with Vagrant
Using Packer to modify source images
Pack it up, pack it in, let me begin, err, umm… build
9
Chapter 9: Keeping the Data Safe – Securing a System
Chapter 9: Keeping the Data Safe – Securing a System
Technical requirements
Signing Git commits with GPG
Encrypting all web traffic
Encrypting all data at rest
Validating adherence to a compliance policy
Port protection and restricting network access
Keeping SELinux active
10
Chapter 10: Revisiting Modules and AppStreams
Chapter 10: Revisiting Modules and AppStreams
Technical requirements
Searching and listing AppStream modules
Installing applications and development tools via AppStream
Using AppStreams to install different versions of software
Removing packages via AppStream
11
Chapter 11: Lions, Tigers, and Containers – Oh My! Podman and Friends
Chapter 11: Lions, Tigers, and Containers – Oh My! Podman and Friends
Technical requirements
Ridding yourself of demons – err um – daemons, with Podman
Giving your containers a root canal
Creating handy-dandy utility containers
Docker Compose with Podman
Managing stacks with pods
Containerized databases
Buildah and Skopeo – Podman’s friends with benefits
12
Chapter 12: Navigating Ansible Waters
Chapter 12: Navigating Ansible Waters
Installing OLAM
Zip through configuring and managing OLAM from the foundation up
OLAM isn’t fantasy football, but they both use playbooks
Controlling the patching chaos
Look beyond automation
Set it and forget it
13
Chapter 13: Let’s All Go to the Cloud
Chapter 13: Let’s All Go to the Cloud
Technical requirements
Oracle Linux in the cloud
Making Docker Desktop more manageable with Portainer
Using VirtualBox to springboard VMs to OCI
For everyone else, let’s make custom images for AWS
14
Index
Index
Why subscribe?
15
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book

Playing with Secure Boot

Secure Boot is an additional optional feature implemented in UEFI intended to help prevent malware execution during a boot process. To enable or disable Secure Boot, you need to access your specific UEFI setup program. This is different for each system manufacturer. Check your system documentation to see how to access the UEFI configuration.

The Secure Boot steps are identical to the regular UEFI booting but an important exception is that it requires the components to be signed and authenticated to be loaded and executed (private and public key pairs are used for authentication). It consists of two launch Roots of Trust (RoT) to build the transitive trust chains:

  • The verification RoT is responsible for the signature verification. The verification RoT is the launch RoT, which is what most are referring to when speaking about Secure Boot, and it will lie on the boot flash drive as the RoT for storage to protect the key database. Verify only after the...
Previous Section
End of Section 5
Next Section