Study Notes

Linux user’s group is collection of users who have the same property.This is a convenience for defining a group of users.The configuration is located in /etc/group.

The privilege of file is list as the following formation: -rw-rw-rwr. In the above string showed the information about file type and operating privilege.The first signature of this string indicate the type of file.”-” means general files,”d” means directory,”l” means link,and “s” means security socket.The follow three signature “rw-” indicates the privilege of the file’s owner.”r” means read,”w” means write, and “x” means execute.”-” means no privilege for operate the file.The middle three signature such as “rw-” is used for identifing the privelege of group.and the final three indicate the privilege of others.

If user A has the privilege of the directory,he can delete the file belong to others.How to forbid this?We could use the following command :

# chmod + t 

And then,the file could not be deleted by others including those men who have the operating privilege of the specific directory.For example, the /tmp directory could be benifit from this.All the user could only operate their own files and directories.

When a general user creates a directory,the default privilege is set as “drwxrwxr-x” 664; if a general file is created,its default property is “-rw-rw-r–” which also be called 775.

umask command is used to set the customer’s default privilege.For example,if the umask value is 002,the realy privilege is the value set by user substrate “002”.if the value set by user is 666,then the result is 664 which is created by substation between 666 and 002.

In this way,we could create the strictest privilege by setting the umask value to 777 because 777 is the maximal number and any other number substrate with 777 will get the result “0” that means no privilege for operating. But the most common way is setting the umask value to 077.It means only the owner could operate the file,groups and others have no privilege.

The grant rules: first,grant the strictest privilege by setting the umask value to 077,and then modify the privileges for identified usage.This method could avoid many unnecessary troubles because adding privilege is easier than deleting them.

Wisdom words : Victory belongs to the last second man who was wrong.

The hacker’s target why they attack your system is get the privilege of root. If they’ve gotten this privilege,they could do anything they want. So the security problem of Linux is concentred in administration of accout,file system and application services.

Many Linux users think their system which have no important information would not be attacked by hackers. They are wrong. Hackers always used these machines have been conquered to attacked other more important computers which are their really targets.

All the account’s information are stored in the file named “/etc/passwd” whose each line indicates the information of indentified accout. The root account’s user id is “0”(number zero). Those users whose id is “0” have the root privilege whatever their names are. For example. both toor and super belong to root. System account which belong to nobody would never login because they are used for special application.For example, “nobody” account response the user’s http request, and the “lp” account works on print request.

Summary: Three type account of Linux: root(toor,super), system account(nobody,lp), general account.

Intel server board SE7520BD2 has six DIMMs,each three DIMMs are belong to one channel.There are two banks in this board,each bank contains four ranks.In this way,there would be only four Dual rank of DDR333 in the serverboard. If we use DDR266,there is no limitation for DDR266 memory series.The board could support DDR266 up to 24GB and DDR333 up to 16GB. Single rank DDR333 memory really exist,which I’ve found in the SE7520’s memory list report.However,this report does not give us the details of 4GB DDR333.

I modified the “/etc/rc.d” file by adding “swapon /Swapdir/Swapfile” strings in order to run this command automatically when system start up.

ftp command
Formation: ftp -v -d -i -n -g [hostname]
-v : display all responsable messages
-d : debug mode
-i : elimitate automatical logining
Inner commands of ftp:
1. ![cmd[args]] : use the local shell in ftp command statue.
2. account[passwd] : supply the username and password
3. bye : turn off the ftp session.
4. cd remote-dir : cd the directory of remote-host
5. cd up : cd Up level directory
6. close : shutdown ftp connection between localhost and remote server
7. delete remote-file
8. debug[debug value]
9. dir : list all directories and files in the remote host.
10. disconnect : = close
11. get remote-file [local-file] : download file from remote host to local host.
12. hash : it will display a “#” after every 1024 bit has been transferred.
13. open host [port] : identify the remote host and its port
14. put local-file [remote-file] : upload file from localhost to remote host.
15. pwd : show the current working directory of remote host.
16. recv : = get
17. reset : clear message queue.
18. send local-file [remote-file] : = put
19. size file-name : show the file size of remote host
20. status : show the current ftp status
21. system : show the operated system of remote host
22. user username [passwd] [account] : indicate user’s profile to remote host.

If the ftp server permits,we could issue the following command to change user’s passward:

ftp> quote "site pswd oldpasswd newpasswd" 

In the Linux,there is a ftp tool named “lftp”,for example:

# lftp remote-host
# lftp > open remote-name
# lftp > user username
...... 

(testing ftp: 219.133.55.11 username:product)

In the Red Hat Linux9.0, the default X window setting is Gnome.I installed KDE desktop and then, I changed the desktop starting parameter in order to start x window with KDE. when the setting was confirmed,I rebooted the system. I usually start up my Linux9.0 in text mode,and in this way,input the username and password,issued the “startx” command.Yes,it really opened a KDE window,however,there was nothing in the screen except a living mouse.

I thought it may be caused by something wrong when system initialize.But the same thing happened after restarting the system again. When issued the “startx gnome” command,some error messages displayed and no GUI has been running up.It seemed no way to start my X window again.Some documents I found in the Internet said editing a file named “.xinitrc” could resolve this problem.It was dissapointed when I found no usrful message in both /etc/X11/xinit/.xinitrc.d and /etc/X11/xinit/.xinitrc file. I do not want to lose my operation system and re-install it,it will take me so much time.So,researching in the internet again untill I’ve found this “switchdeskop” command which is used to switch desktop windows between Gnome and KDE. And this command could only be issued before executing “startx” command. I restarted operating system again,and issues the following commands:

# switchdeskop Gnome
# startx 

Yeah!!! I was succeed!The system started up with Gnome desktop.Hmmm,I must found the reason caused this matted through system had been running up.”.Xclient-default” was included in switchdeskop’s manual(by issued: # man switchdeskop) contains messages what I want.For example,the “.Xclient-default” file’s content was listed here:

# pwd
/root
# cat .Xclient-default
*content*
---------------------------
# Created by Red Hat Deskop Switcher
exec gnome-session 

I think the switchdeskop command modified the “.Xclient-default” file so that the initial program read this message and start X window by this setting. To prove my guessing,I changed default starting desktop from Gnome to KDE,and restarted the system again.When system was restarted,the “.Xclient-default”file had really been modied,the string “gnome-session” had been insteaded by the string “startkde”.I changed the “startkde” to “gnome-session” and issued the “startx” command again,the system started up by Gnome desktop.I am right.The “.Xclient-default”file was operated by command “switchdeskop”.

Nautilus is the skin of Gnome.