Ch 3 Essential File Mgmt Tools

Question 1

What is the layout of the Linux file system defined by?

Answer 1

The FHS - Filesystem Hierarchy Standard

Question 2

Where can you find documentation for the FHS?

Answer 2

man 7 file-hierarchy

Question 3

Name the most significant directories to know for the FHS

Answer 3

“bdrm shoves trump” or “dumb mothers rsvp”

/
/b - boot
/r - root
/o - opt
/s - sys
/e - etc
/m - mnt
/s - srv
/m - media
/r - run
/p - proc
/h - home
/d - dev
/t - tmp
/u - usr
/v - var

Question 4

What is the / directory?

Answer 4

root directory, where the file system tree starts

Question 5

What is the /boot directory?

Answer 5

it contains all files and directories needed to boot the Linux kernel

Question 6

What is the /dev directory?

Answer 6

it contains device files that are used for accessing physical devices. This is essential during boot (need to see the hard drive, /dev/sda!)

Question 7

What is the /etc directory for?

Answer 7

it contains confgiuration files that are used by programs and services on your server. essential during boot

Question 8

What is the /home directory for?

Answer 8

user for local user home directories, e.g. /home/elise, home/leelemur

Question 9

What is the /media or /mnt directory for?

Answer 9

cntain directories that are used for mounting devices in the file system tree (like a CD player)

Question 10

What is the /opt directory for?

Answer 10

Used for optional packages that may be installe don your server

Question 11

What is the /proc directory for?

Answer 11

used by the proc file system. This is a file system structure that gives access to kernel informaiton

Question 12

What is the /root directory for?

Answer 12

specifies the home directory of the root user

Question 13

What is the /run directory for?

Answer 13

Contains process and user-specific information that has been created since the last boot

Question 14

What is the /srv directory for?

Answer 14

May be used for data by services like NFS, FTP, and HTTP

Question 15

What is the /sys directory for?

Answer 15

Virtual Filesystem:
The /sys directory is part of the sysfs virtual filesystem, which is managed by the kernel.
Device Information:
It contains information about devices, including their drivers, configuration, and status.
Kernel Subsystem Access:
/sys provides access to various kernel subsystems, allowing users to read and potentially modify their configuration.
Not a Replacement for /dev:
While /sys provides device information, it’s not meant to be a replacement for the /dev directory, which provides access to devices through device nodes.
Forensic Tool:
The /sys directory can be valuable for forensic investigations, offering insights into kernel operations and hardware configurations, according to Medium.

Question 16

What is the /tmp directory for?

Answer 16

Purpose:
/tmp provides a location for programs to store temporary files, such as intermediate results, cached data, or files created during the execution of a process.
Temporary Nature:
Files in /tmp are not intended to be preserved across reboots, so they are typically cleared during system startup.
Memory-Based Storage:
Many Linux systems mount /tmp as a tmpfs, which means files are stored in RAM, making access very fast but also ensuring they are lost on reboot.
Common Use Cases:
Programs may use /tmp to store data while they are running, then delete it when the program is finished. For example, an application might use /tmp to store temporary files during a long operation, such as an image processing task.
Difference from /var/tmp:
While both /tmp and /var/tmp are used for temporary storage, /var/tmp is often backed by physical storage and is more likely to retain files across reboots, making it suitable for data that should be preserved through a system restart.

Question 17

What is the /usr directory for?

Answer 17

History:
Originally, /usr was intended to hold user home directories, but it evolved to its current role.
Purpose:
It’s designed to store files not required for the system’s fundamental functionality, often used for applications installed by users or the system administrator.
Structure:
/usr contains several subdirectories, each with a specific purpose:
/usr/bin: Contains executable user programs.
/usr/lib: Holds shared libraries.
/usr/share: Stores shared data, like documentation and fonts.
/usr/include: Contains header files for compiling software.
Relationship to other directories:
While /bin and /sbin contain basic system binaries, /usr/bin, /usr/sbin, and /usr/local/bin hold additional user and system-specific executables, respectively.

Question 18

What is the /var directory for?

Answer 18

Contains files that may change in size dynamically, such as log files, mail boxes, and spool files (aaaah so var maybe like “variable size”)

Question 19

What is a mount?

Answer 19

a mount is a connection between a device and a directory

Question 20

The linux filesystem hierarchy, starting at the /, may be distributed across many different devices and even many different computer systems….how?

Answer 20

These devices are mounted into the root directory

Question 21

What is involved in the mounting process?

Answer 21

a device connects to a specific directory. Once this has happened (it has been mounted), the device’s contents are accessible

Question 22

Linux lets you use multiple mounts (and therefore potentially different filesystems) on a filesystem. What’s a drawback of all files being on just one filesystem?

Answer 22

1) high activity in one area may fill the entire filesystem, which hurts the processes running
2) if all files are on the same devices, its harder to secure and determine security of different areas of the file system. When you mount a separate file system, you can add mount options that can add extra security
3) it’s harder to add addnl storage space if a file system is already filled

Question 23

How does linux avoid the pitfalls of everything being on one filesystem?

Answer 23

organize the filesystem into
1. diff devices
2. diff shares on other computers
3. logical volumes
4. disk partitions

Question 24

What directories are commonly mounted on dedicated devices?

Answer 24

/boot, /boot/EFI, /var, /home, /usr

Question 25

Why is /boot often on a separate device?

Answer 25

Separating this partition provides advantages such as reducing bootloader complexity and preventing accidental deletion of boot files when modifying other partitions Why is /boot often a separate partition? Bootloader Requirements: The bootloader (like GRUB) needs to be able to read and access the kernel and initrd during the initial boot process. Separating /boot allows for simpler bootloader implementations. Dual-Booting: If you have multiple operating systems installed, keeping /boot as a separate partition prevents accidental deletion of the bootloader when one of the operating systems is modified or deleted. File System Complexity: Having /boot as a separate partition simplifies the overall file system structure, making it easier to manage and maintain. Kernel Updates: During kernel updates, the new kernel is typically installed in the /boot partition. This separation ensures that the boot process can continue even if there's a problem with other parts of the file system. Security: Boot files are often considered critical for system integrity, and keeping them separate can enhance system security.

Question 26

Why does /boot/EFI sometimes need to be on its own device?

Answer 26

If the system uses EFI when booting (extensible firmware interface), then a dedicated mount is required for boot, to give access to all files required in the earliest stages of booting

Question 27

Why does the /var directory sometimes go on its own device?

Answer 27

because it grows dynamically and in an uncontrolled way -- like with log files. Having it stored separately from the rest of the file system keeps the rest of the filesystem from being filled

Question 28

Why is /home sometimes on its own device?

Answer 28

for security reasons by being on a separate device, it can get mounted with options like noexec and nodev its also beneficial when reinstalling a the OS, because then you can reuse that home directory in the new filesystem

Question 29

Why is the /usr directory sometimes on its own device?

Answer 29

because it contains OS files only, which users dont need write access for. by making it on a separate device, admins can more easily make it a read-only mount

Question 30

What command gives you an overview of all devices and their mount points?

Answer 30

mount

Question 31

What is /proc/mounts and what is it for

Answer 31

It's for the mount command. the kernel writes to this file, and it shows everything that is mounted it also shows kernel interfaces it also shows the mount options with the mount

Question 32

What does the df -Th command do?

Answer 32

shows all available disk space on mounted devices -- includes most system mounts -h flag gives human-readable output -T flag shows which file system TYPE is used on diff mounts

Question 33

What does findmnt do?

Answer 33

shows mounts and the relationships that exist between them is more abbreviated and less overwhelming than the mount command

Question 34

What default byte size is the output of the df command?

Answer 34

kibibytes

Question 35

What flag is needed to modify the df command to display a different size than kibibytes?

Answer 35

-m for mebibytes -h to see human readable format (KiB, MiB, GiB, TiB, PiB

Question 36

What is the ? for in context to file mgmt?

Answer 36

match any one character, e.g. ls c?t will show output of cut and cat

Question 37

What is the [auo] for in the context of file mgmt?

Answer 37

ls c[auo]t would match cat, cut, cot

Question 38

What's a command that can be used to remove a directory that isn't rm -rf?

Answer 38

rmdir

Question 39

What does ls -l do?

Answer 39

lists with file properties, like creation date and permissions

Question 40

ls -a

Answer 40

show hidden files too

Question 41

ls -lrt

Answer 41

=t show commands sorted based on mod date show most recent files last with the -r

Question 42

ls -R

Answer 42

list recursively from this location

Question 43

cp -R

Answer 43

copy recursively

Question 44

cp -a

Answer 44

preserve original permissions when copying (a for archive mode)

Question 45

what files don't get copied over with a regular cp command?

Answer 45

hidden files

Question 46

what are three ways to ensure hidden files are copied over?

Answer 46

1. cp /somedir/.* /tmp copy all files starting with a dot 2. cp -a /somedir/ . copies the entire directory of /somedir to the current directory. This creates a sudirectory called /somedir in the current directory 3. cp -a /somedir/. . copies all files to the current dir (this is a dot space dot, not a dot dot)

Question 47

Why does the rm -rf command prompt the user to confirm the delete?

Answer 47

because rm is an alias to rm -i, because of the /root/.bashrc config. The -f flag removes that alia from the bashrc however, for safety, it's good to have the prompt

Question 48

What's a way to cd to your home directory, using an environmental variable?

Answer 48

cd /home/$USER

Question 49

What are links for files, broadly?

Answer 49

They are like aliases but for a file

Question 50

What types of links are there?

Answer 50

hard links and symbolic links (symlinks)

Question 51

What is an inode?

Answer 51

It's where administrative data about a file is stored

Question 52

Is there an inode for every file in linux?

Answer 52

yes

Question 53

What data is stored in the inode, specifically?

Answer 53

* the data block where the file contents are stored * the creation, access, and modification date * permissions * file owners

Question 54

What impt info is NOT stored in an inode?

Answer 54

the name of the file

Question 55

What does an inode know instead of knowing its filename?

Answer 55

It konws how many names are associated with it (or rather, hard links)

Question 56

Every file has what, instead of a name?

Answer 56

a hard link -- but really, this is used as the name

Question 57

When you name a file, what is that name?

Answer 57

a hard link to that file

Question 58

Can a file have more than one hard link?

Answer 58

yes

Question 59

What's the advantage of multiple hard links for one file/inode?

Answer 59

This allows you to have a file available in multiple locations a change made in the file in one location changes it at all the other hard link locations!!!

Question 60

Every hard link for the same inode, points to the same...

Answer 60

data block

Question 61

What are three restrictions for hard links?

Answer 61

* they must exist on the same device (or partition, or logical volume, etc) * you can't hardlink a directory * when the last name/hard link is removed from a file, the access to the file's data is also removed

Question 62

if one hard link to a file is removed, what happens to other hard links for the same file?

Answer 62

they are unaffected

Question 63

What's another name for a symlink?

Answer 63

A symbolic link or a soft link

Question 64

How does a symlink relate to an inode?

Answer 64

it does not link directly to an inode, only the name of a file

Question 65

What's a disadvantage of symlinks?

Answer 65

when the original file is removed, the symlink becomes invalid and stops working

Question 66

What's an advantage of symlinks?

Answer 66

they can link to files on other devices and on directories (unlike hardlinks)

Question 67

What command is used to make links?

Answer 67

ln

Question 68

cp, ln, and mv all use what order for files?

Answer 68

source name first, then destination name,

Question 69

What is the command for making a soft link?

Answer 69

ln -s

Question 70

What restriction is there for creating a hard link?

Answer 70

you have to be the own of the item you want ot link to

Question 71

what does ln /etc/hosts . do?

Answer 71

Creates a hard link to /etc/hosts in the current directory

Question 72

what does ln -s /etc/hosts do?

Answer 72

create a symlink to the file /etc/hosts in the current directory (points to the hardlink)

Question 73

what does ln -s /home /tmp do?

Answer 73

creates a sym link to the directory /home in the directory /tmp

Question 74

How do you find out if a file is a hardlink or a softlink?

Answer 74

ls -l

Question 75

What's the first character in a file property if it's a soft link?

Answer 75

l

Question 76

What does ls -l show for a soft link?

Answer 76

the name of the item it links to, after the filename

Question 77

What does ls -l show for a hard link?

Answer 77

a counter for the number of hard links an inode has

Question 78

What is the \ doing in the command \ls -l ?

Answer 78

the \ means that the alias form of ls isn't used

Question 79

What file creates an archive of files?

Answer 79

tar

Question 80

What was the tar command originally designed for?

Answer 80

to stream files to a tape without any compression of the files -- and so it still doesn't compress anything by default

Question 81

What must be paired to tar to get it to actually compress files?

Answer 81

1) use a specific compression tool 2) specify an option that compresses the archive while it is created

Question 82

What is the tar command an acronym for?

Answer 82

The Tape ARchiver

Question 83

what's the current utility of tar?

Answer 83

to write file to an archive file

Question 84

what four things must you be able to do with tar on the RHCSA exam?

Answer 84

1) create an archive 2) list contents of an archive 3) extract an archive 4) compress and uncompress archives

Question 85

What is the command to create an archive?

Answer 85

tar -cf archivename.tar /files-you-want-to-archive

Question 86

What permissions are needed to archive files?

Answer 86

you need read permissions for the files and execute permissions on the directory the file is in

Question 87

What does the command tar -cvf /root/ homes.tar/home do? (run as root)

Answer 87

Write the contents of the /home directory and everything below it to the /root directory

Question 88

Is order of flag options in the tar command important?

Answer 88

yes

Question 89

Is the - necessary in tar flag options?

Answer 89

no

Question 90

What tar flag allows you to add a file to an existing archive?

Answer 90

-r

Question 91

What does tar -rvf /root/homes.tar /etc/hosts (run as root) do?

Answer 91

add /etc/hosts to the /root/homes.tar archive

Question 92

tar uses what template?

Answer 92

tar [dest] [source]

Question 93

What tar flag is used to update an existing archive file?

Answer 93

-u

Question 94

What does tar -uvf /root/homes.tar /home do?

Answer 94

write newer versions of all files in /home to the /root/homes.tar archive

Question 95

What does the tar -t flag do?

Answer 95

shows contents of the archive

Question 96

What does the command tar -tvf /root/homes.tar do?

Answer 96

lists the contents of the archive file

Question 97

Does an archive file need to end in .tar?

Answer 97

No, but it is wise to, so that you know you're dealing with an archive file

Question 98

How can you find out if a file is an archive file if it doesn't have a .tar ending?

Answer 98

the file command

Question 99

What tar command extracts contents of an archive?

Answer 99

tar -xvf /root/homes.tar

Question 100

What tar flag extracts?

Answer 100

-x

Question 101

What are two ways you can make sure an archive's contents go exactly where you want them to (and not your current working directory) when you extract an archive?

Answer 101

1. before extracting, cd to where you want it to extract to 2. use the -C flag. e.g., -C /targetdir

Question 102

What does the command tar -xvf homes.tar -C /tmp do?

Answer 102

extract (verbosely) the homes archive and plop its contents into the /tmp directory

Question 103

What is the star command for?

Answer 103

the star utility was designed to offer support for archiving nondefault file attributes, such as access control lists (permissions mgmt...) or SELinux file content

Question 104

Should star or tar be used for archiving?

Answer 104

Now tar can do everything star can do and more now, and star is no longer included in default installs

Question 105

What if you only wanted to extract one file out of an archive?

Answer 105

use a command like tar -xvf /archivename.tar file-you-want-to-extract following the pattern tar -extract [archive] [file from archive]

Question 106

What does the command tar -xvf /root/etc.tar /etc/hosts do?

Answer 106

extracts the file /etc/hosts from the /root/etc.tar archive (Which you could run after running tar -t to get contents of the archive)

Question 107

How do compression algorithms work, broadly?

Answer 107

They take advantage of the redundancy in files

Question 108

Does the tar command automatically compress files?

Answer 108

no, not unless you specify compression

Question 109

With the old version of tar, if you wanted to compress the archive, what did you do?

Answer 109

follow the archive creation with a compression algorithm command, like gzip or bzip2, thus creating an archive.tar.gz file

Question 110

What are three compression algs/commands?

Answer 110

bzip2, gzip, xz

Question 111

What command uses bzip2 decompression?

Answer 111

bunzip2

Question 112

What command uses gzip decompression?

Answer 112

gunzip

Question 113

what are the tar flag options for bzip2, gzip, and xz? (to use for compression, not decompression)

Answer 113

-j (bzip2) -z (gzip) -J (xz)

Question 114

What flags are used for tar and decompression?

Answer 114

flags are not necessarily as tar automatically recognizes compressed content

Question 115

What is this flag for tar? -c

Answer 115

create an archive

Question 116

What is this flag for tar? -v

Answer 116

show verbose output for tar

Question 117

What is this flag for tar? -t

Answer 117

show the content of an archive

Question 118

What is this flag for tar? -z

Answer 118

compress/decompress the archive while creating is using GZIP

Question 119

What is this flag for tar? -j

Answer 119

compress/decompress the archive while creating it using BZIP2

Question 120

What is this flag for tar? -J

Answer 120

compress/deconompress the archive using xz

Question 121

What is this flag for tar? -x

Answer 121

extract an archive

Question 122

What is this flag for tar? -u

Answer 122

update an archive -- only newer files will be written to the archive

Question 123

What is this flag for tar? -C

Answer 123

change the working directory before running the command

Question 124

What is this flag for tar? -r

Answer 124

append a file to an archive

Question 126

/usr/include

Answer 126

Contains header files for compiling software.

Question 127

/usr/share

Answer 127

Stores shared data, like documentation and fonts.

Question 128

/usr/lib

Answer 128

Holds shared libraries

Question 129

/usr/bin

Answer 129

Contains executable user programs.

Question 130

How are /opt and /usr distinct?

Answer 130

In Linux, /usr and /opt serve distinct purposes for managing software installations. /usr typically houses system-wide applications and libraries, often installed by the system's package manager, while /opt is designed for storing optional, add-on, or self-contained software packages, usually provided by third-party vendors. /usr: This directory contains system-wide applications, libraries, and other files that are essential for the operation of the Linux system. It's often mounted read-only and is managed by the system's package manager. Files within /usr are generally distributed as part of the operating system itself or through official repositories. /opt: This directory is intended for installing optional, add-on software that isn't part of the main operating system distribution. It's commonly used for installing pre-packaged software bundles or applications that come with their own directory structure. /opt is often used for software that doesn't rely on the standard system libraries and is designed to be self-contained.

Question 131

What makes /sys distinct from /dev?

Answer 131

SHORT /dev directory allows access to the device via the device files (or device nodes) /sys directory allows the viewing of the device information and details LONG The /sys filesystem (sysfs) contains files that provide information about devices: whether it's powered on, the vendor name and model, what bus the device is plugged into, etc. It's of interest to applications that manage devices. The /dev filesystem contains files that allow programs to access the devices themselves: write data to a serial port, read a hard disk, etc. It's of interest to applications that access devices. A metaphor is that /sys provides access to the packaging, while /dev provides access to the content of the box. The files in /sys are not device nodes, but symbolic links and regular files. Those regular files are special in that reading or writing to them invokes file-specific functions in the kernel, like device nodes. The difference is that files in /sys work this way because of the filesystem they are on, whereas device nodes work this way due to their device node characteristics (the file type indicating a (block or character) device, and the device major and minor number indicating which device it is). The reason for /dev existing independently of /sys is partly historical: /dev dates back to the dawn of Unix, while /sys is a much more recent invention. If Linux was designed today with no historical background, /dev/sda might be /sys/block/sda/content.

Question 132

Example path in /sys

Answer 132

/sys/block/*/device/serial (with * replaced by nvme0n1 or sda or hda

Question 133

What makes /proc distinct from /sys?

Answer 133

The /proc and /sys filesystems in Linux are both pseudo-filesystems that provide access to kernel data, but they differ in their primary purpose and content. /proc primarily focuses on providing information about processes running on the system, including their status, resources, and other relevant details. /sys, on the other hand, offers a window into the kernel's hardware configuration and exposes settings that can be modified to manage the system. Here's a more detailed comparison: /proc: Focus: Process information. Content: Each running process has a subdirectory under /proc named after its process ID (PID). This subdirectory contains files that provide information about that process, such as its current working directory, memory usage, and other details. Example: The ps command uses /proc to retrieve process information. Purpose: To query real-time information about processes running on the system. /sys: Focus: Hardware configuration and kernel settings. Content: /sys exposes various files and directories that represent hardware devices, drivers, and kernel settings. Example: You can use /sys to check the status of a USB device or configure its parameters. Purpose: To allow administrators and applications to interact with and manage the hardware and kernel. In essence, /proc is a snapshot of the running processes, while /sys provides a means to interact with and configure the system's hardware and kernel.

Question 134

Example subdirectories in /sys

Question 135

Question 136

Question 138

findmnt --fstab -t nfs What does this command do?

Answer 138

findmnt --fstab -t nfs Prints all NFS filesystems defined in /etc/fstab. findmnt --fstab /mnt/foo Prints all /etc/fstab filesystems where the mountpoint directory is /mnt/foo. It also prints bind mounts where /mnt/foo is a source.