Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
198 Cards in this Set
- Front
- Back
|
manages system hardware and provides an execution environment for user programs
|
kernel
|
|
|
- communicates directly with hardware
- manages system memory - schedules processes - provides a virtual machine environment |
kernel
|
|
|
converts a process running in user mode to a protected kernel mode process
|
system call interface layer
|
|
|
what are the unix layers of defining software
|
hardware interface
kernel system call |
|
|
software layer that converts a process running in user mode to a protected kernel mode process
|
system call
|
|
|
software layer that maps user requests and device driver actions
|
kernel services layer
|
|
|
2 rings of protection
|
kernel space and user space
|
|
|
kernels can go into user space
|
true
|
|
|
users can go into kernel space
|
false
|
|
|
a process executing in kernel space is said to be executing in ____ mode
|
kernel
|
|
|
a user process becomes a kernel process when it executes a ____ ____ and starts executing in kernel mode
|
system call
|
|
|
users and kernel do/do not share memory space
|
do not
|
|
|
____ provides the user interface between the user and the kernel
|
shell
|
|
|
most services are built into the kernel as ___ ____
|
system calls
|
|
|
2 important unix system services
|
SMC
SADAM |
|
|
provide interface to allow user programs to access kernel functions
|
system calls
|
|
|
provide mapping of system call interface to the kernel routines that perform system functions
|
run time library
|
|
|
allows a program to run in the background
|
&
|
|
|
cmd to show snapshot of processes
|
ps -elf
|
|
|
whoami
|
who logged in right now
|
|
|
who am i
|
originally logged in as
|
|
|
cmd to view system calls in solaris
|
truss
|
|
|
cmd to view system calls in linux
|
strace
|
|
|
3 categories of system calls
|
file/device manipulation
process control info manipulation |
|
|
cmd to show all running commands (constantly updates itself)
|
prstat
|
|
|
cmd to find/filter processes
|
pgrep
|
|
|
tar -cvf filename.tar /etc /var
|
creates a tar file of the /etc and /var directories
|
|
|
tar -xvf etc-var.tar
|
extracts the tar archive
|
|
|
restoring a backup creates a new inode number
|
true
|
|
|
how to tell an environmental variable
|
its in caps
|
|
|
the ___ account is unique and cannot be deleted or renamed
|
root
|
|
|
user id 0
|
root
|
|
|
user id 1
|
init
|
|
|
3 user management directories
|
/etc/passwd
/etc/shadow /etc/group |
|
|
etc passwd field 1
|
user/login
|
|
|
etc passwd field 2
|
passwd placeholder
|
|
|
etc passwd field 3
|
UID
|
|
|
etc passwd field 4
|
GID
|
|
|
etc passwd field 5
|
comments
|
|
|
etc passwd field 6
|
home path
|
|
|
etc passwd last field
|
shell
|
|
|
how do you lock down a system account?
|
passwd -l <system account name>
then: pwconv |
|
|
what is *LK* and NP in etc/shadow
|
locked and no passwd
|
|
|
how can you further lock a system account besides locked passwd?
|
noshell
|
|
|
layer that controls the hardware that manages mapping of virtual to physical memory
|
hardware address translation (HAT)
|
|
|
this probes and controls the MMU
|
HAT
|
|
|
this implements all the low-level trap handlers to manage page faults and memory exceptions
|
HAT
|
|
|
Solaris optimizes memory by allowing shared memory, but protects memory by doing what?
|
keeping a users processes from accessing the memory of another process.
|
|
|
what is the boot processes
|
boot prom
boot program kernel init |
|
|
swapping involves moving all ____ data and memory pages associated with a process
|
modified
|
|
|
when a process is swapped, is the whole process written to swap space?
|
yes
|
|
|
whats the major difference between swapping and paging
|
swapping moves the whole process
paging writes a few bytes at a time |
|
|
the prom is aka what
|
forth monitor
|
|
|
what are the 3 phases of boot prom
|
post
banner boot block |
|
|
what starts the boot program
|
boot block
|
|
|
what locates and loads the kernel
|
boot program
|
|
|
what boot process loads modules and mounts root file system
|
kernel
|
|
|
what boot process creates user processes
|
kernel
|
|
|
what boot process starts /sbin/init and reads /etc/inittab
|
kernel
|
|
|
what boot process loads the init
|
kernel
|
|
|
what boot process maintains the system at a particular run level?
|
init
|
|
|
what shows the ethernet address/mac, memory amnt, cpu type/spd, and open boot version
|
banner
|
|
|
what is like the gina in solaris/linux
|
getty - linux
ttymon - solaris |
|
|
in inittab:
fs::sysinit:/sbin/rcs sysinit what is field 1? |
label
|
|
|
in inittab:
fs::sysinit:/sbin/rcs sysinit what is field 2 mean? |
empty, means run at all levels
|
|
|
in inittab:
fs::sysinit:/sbin/rcs sysinit what is field 3? |
it can hold 3 things:
boot off wait |
|
|
how do i show what run level is currently on?
|
who -r
|
|
|
what are the 6 solaris run levels?
|
0 shutdown
1 single user/admin 2 multi user 3 multi user mode including NFS (default) 4 user defined 5 safe to power off 6 stop and reboot |
|
|
what is different about solaris and linux run levels?
|
4 is not defined
5 is default 6 is graceful reboot |
|
|
how do you change your run levels in solaris and linux
|
init #
telinit # |
|
|
what causes linux to read the /etc/inittab
|
telinit -q
|
|
|
the run-level scripts in the rc directories are really a symbolic link to the actual script in the ____ directory
|
sbin
|
|
|
master copies of the startup scripts in rc directories reside where?
|
/etc/init.d
|
|
|
when a system call is invoked, the cpu does what?
|
switches from user mode to kernel mode, the kernel will now run on behalf of the user
|
|
|
how does a system call start/end?
|
fork
parent - wait child execute child exit |
|
|
every process has a parent, who's everybody's daddy?
|
init
|
|
|
what is used to create a child process in the image of the parent
|
fork
|
|
|
what is the kernel providing through system calls?
|
interfaces between user, app, and service
|
|
|
how many system calls does unix provide
|
200
|
|
|
how to view the parent/child processes
|
ptree
|
|
|
what is a zombie
|
child process died, but hasnt been reaped, its entry still exists in the process table
|
|
|
what is an orphan
|
parent dies and child exists
|
|
|
what system call allows files to be memory mapped
|
mmap
|
|
|
what system call returns system information pertaining to the platform?
|
uname
uname -X |
|
|
what are the 2 types of sockets
|
tcp/udp
|
|
|
what provides the perception of varied access to devices?
|
library functions
|
|
|
in a library function, what describes the functionality of a library?
|
header
|
|
|
what are the 4 parts of a header file in a library function?
|
macro definitions
data definitions structure definitions function of prototypes |
|
|
what provides the kernel with all the information needed to communicate with the system?
|
kernel modules
|
|
|
what cmd in solaris/linux allows us to view modules?
|
modinfo
lsmod (linux) |
|
|
what makes the installation of drivers easier?
|
loadable kernel modules (lkm)
|
|
|
this allows modification to kernel parameters at run-time
|
sysdef (sol)
sysctrl (linux) |
|
|
where are parameters for sysdef and sysctrl held?
|
sysdef = /usr/sbin/sysdef
sysctrl = /etc/sysctrl.conf |
|
|
where can you set parameters for sysdef?
|
/etc/system
|
|
|
where are kernel parameters available?
|
/proc/sys
|
|
|
what is PID 0
|
scheduler
|
|
|
what is PID 1
|
init (daddy of processes)
|
|
|
what are the 5 interrupts we need to know?
|
1 sighup
2 sigint 3 sigquit 9 sigkill 15 sigterm |
|
|
how do you view process states?
|
ps -elf
|
|
|
what are process states:
r, s, z, t |
r=can be Run
s=sleeping z=zombie t=stopped/suspended |
|
|
what are the 2 types of interrupts?
|
interrupt and trap
|
|
|
what is the difference between an interrupt and a trap?
|
interrupt = external/asynchronous
trap = within the current process |
|
|
command to show your current default shell
|
echo $SHELL
|
|
|
how to restrict a users default shell
|
change it to RBASH, RKSH, etc..
in their /etc/passwd |
|
|
what's the only thing bourne can do?
|
shell scripts
|
|
|
what can korn and bash do?
|
everything:
history alias file complete commandline edit job control |
|
|
what can C shell do?
|
everything but command line editing
|
|
|
what are the 3 main environmental variables
|
PATH, HOME, SHELL
|
|
|
3 types of files
|
ordinary, directory, device
|
|
|
what 2 types of ordinary files
|
text and binary
|
|
|
what type of file has a filename and an inode number, and has no data
|
directory file
|
|
|
what kind of file has characteristics of the operation of a device
|
device file
|
|
|
what 2 types of device files?
|
block device
character (raw) device |
|
|
where are block devices located
|
/dev/dsk
|
|
|
where are raw/character devices located?
|
/dev/rdsk
|
|
|
in solaris, each disk device is described in 3 ways:
|
physical device name
instance name logical device name |
|
|
physical device names are in the ___ directory
|
/devices
|
|
|
this device information command displays system config, memory, and device config, it also shows if the system has actually ID'd the device
|
prtconf
|
|
|
this device information command displays device config, system hardware, psuedo devices, loadable modules, and kernel parameters
|
sysdef
|
|
|
this device information cmd displays diagnostic messages and list of devices attached to the system, shows mapping from instance names to physical names
|
dmesg
|
|
|
this is what the kernel uses to refer to devices on the system
|
instance names
|
|
|
cmd to view instance names
|
dmesg
|
|
|
the system administrator uses this to refer to a device
|
logical device name
|
|
|
what is this
/dev/dsk/c0t0d0s7 /home |
logical name
c=controller t=target d=disk s=slice |
|
|
whats the difference between socket and internet socket
|
socket = pipe between processes on the same computer
internet socket = pipe between 2 computers |
|
|
how are file permissions ordered?
i.e: -rw-r--r-- |
file type
owner/user group other |
|
|
whats this:
u+x, g+wx, o+wx |
symbolic permission change
|
|
|
in the permission:
-rw-r--r-- 1 what's the 1? |
number of links
|
|
|
in the owner spot, what does it mean if there's a UID there?
|
the user was deleted
|
|
|
what are the 5 layers of the file system
|
1 file name
2 metadata (inode) 3 data (sectors, fragments, blocks) 4 file system (super block) 5 physical (vtoc) |
|
|
what is the record that describes the characteristics of the file system, and a copy is maintained in the kernel
|
superblock
|
|
|
what is a fixed length of table entries that hold info about one file, kernel keeps a copy
|
inode block
|
|
|
what command shows the inode number?
|
ls -i
|
|
|
what file system component contains the actual information
|
data block
|
|
|
whats the difference between hardlinks and softlinks
|
hardlinks: changes occupy both, constant mirror copy, same name and inode
soflinks: essentially a shortcut, can exist in separate file systems/volumes |
|
|
whats field 1 of the etc/shadow
|
User Name
|
|
|
field2 etc shadow
|
hash - 1st 2 chars are the salt
|
|
|
field 3 etc shadow
|
lastchg
|
|
|
field 4 etc shadow
|
min days between passwd changes
|
|
|
field 5 etc shadow
|
max days passwd is valid
|
|
|
field 6 etc shadow
|
warning number of days before passwd change
|
|
|
field 7 etc shadow
|
inactive days before lockout
|
|
|
field 8 etc shadow
|
expire account date
|
|
|
where are the dump levels located
|
/etc/dumpdates
|
|
|
cmd to change user perameters
|
usermod
|
|
|
where are groups
|
/etc/group
|
|
|
what is the primary group for root
|
other
|
|
|
where is a copy of inetd.conf
|
/etc/inet
|
|
|
what other groups does root belong to?
|
bin sys and lp
|
|
|
what is this
ftp stream tcp nowait root /user/sbin/ftpd ftpd |
inetd.conf
|
|
|
inetd.conf errors are logged here
|
/var/adm/messages
|
|
|
what is this an example of:
systat 11/tcp users |
/etc/services
|
|
|
what is this an example of:
yppasswdd 100009 yppasswd |
/etc/rpc
|
|
|
how do you configure an ip setting
|
ifconfig ip netmask up/down
|
|
|
what are:
lo0 eri0 pcn0 |
lo0 loopback interface
eri0 fast ethernet on ultrasparcs pcn0 vmware interface |
|
|
how to turn on telnet
|
chkconfig telnet on
|
|
|
allows sharing of files on unix
|
NFS
|
|
|
who makes the choice of transport protocol on NFS
|
client
|
|
|
where share files are identified
|
/etc/dfs/dfstab
|
|
|
what does this do:
share -F nfs /path |
share filesystem NFS path
|
|
|
whats this do:
/etc/init.d/nfs.server start |
starts the nfs server
|
|
|
whats this do:
/etc/init.d/nfs.client start |
starts client side nfs
|
|
|
why use samba?
|
unix has no problem seeing windows, windows cant see unix, so samba fixes that
|
|
|
what does samba implement to show windows the unix system?
|
cifs
|
|
|
CIFS functionality is in these 2 daemons
|
smbd nmdb
|
|
|
of smdb and nmdb (CIFS functionality) which provides name resolution, and which file and print services?
|
smbd = file/print
nmdb = name |
|
|
where do you configure samba?
|
smb.conf
|
|
|
where are user's secondary groups found?
|
/etc/group
|
|
|
of smbd and nmbd, which starts first?
|
smbd
|
|
|
of smbd and nmbd, which performs service announcements?
|
nmbd
|
|
|
nfsd, mountd, rpcbind daemons must be on for this service to work
|
NFS
|
|
|
how to test that our samba parameters were entered correctly
|
testparm
|
|
|
LDAP uses ___ to allow for 1 password -> many services
|
single sign-on
|
|
|
ascii text representation of LDAP entries
|
LDIF
|
|
|
what are:
openldap openldap-clients openldap-servers |
the 3 packages for LDAP
openldap - libraries -clients - cmd line tools -servers - servers and other utilities |
|
|
in the openldap-servers package, what are the 2 servers?
|
slap/slurp (stand alone and update)
|
|
|
what is in the /etc/openldap/ldap.conf
|
ldap client apps
|
|
|
whats in /etc/openldap/slapd.conf
|
configuration of the slapd daemon
|
|
|
whats in /etc/openldap/schema
|
ldap schema directory
|
|
|
apache comes in these 2 distros
|
binary
source |
|
|
what are these the 3 directories of:
server_root default error log document root |
apache
|
|
|
in apache, the access_log is a subdirectory of this:
|
default error log
|
|
|
what is the main apache conf file?
|
httpd.conf
|
|
|
solaris DNS
|
BIND
|
|
|
You see these processes running:
named and/or in.named what service is running? |
BIND/DNS
|
|
|
in DNS/BIND, what file maps IP's to Hostnames
|
/etc/hosts
|
|
|
in DNS/BIND, what file controls how hostnames are resolved
|
/etc/nsswitch.conf
|
|
|
in DNS/BIND what specifies machines to use for name resolution
|
/etc/resolve.conf
|
|
|
what is the main configuration file for BIND
|
/etc/named.conf
|
|
|
this BIND/DNS file is also known as the cache file (holds names and locations of the root servers)
|
Root servers file
|
|
|
in BIND/DNS, this is where error messages go
|
var/adm/messages
|
|
|
this network service allows the admin to configure the network from a central location
|
NIS+
|
|
|
NIS+ is flat or hierarchical?
|
hierarchical
|
|
|
how to view current chronjobs
|
crontab -e
|
|
|
what does cron.allow and cron.deny do? what if they are both missing?
|
allow or deny people the ability to create/edit crons.
if none, then only sysadmin or all users are allowd (depending on system) |
|
|
what is:
/var/spool/crontabs |
location of the crontab
|
|
|
integrity checking tool
|
tripwire
|
|
|
what does this do:
./tripwire -update /nameoffile\ |
check all, except this file
|
