## 4. Linux

### Intro to Linux

**Open Source**: Open source software is software with source code that anyone can inspect, modify, and enhance. A common misconception is thinking that open source software is "free of charge". But, the real difference is the access that many people (developers) have to the software code and thus, the capacity of improving it, compared to a private source software.

**Linux**:

Started as a Unix-like kernel, released under GPL license, created by Linus Torvalds.

Linux is an open source OS/kernel with a huge community support, which supports a wide variety of hardware and customisation, and where most servers run and it's easier to implement automation features. It is also a secured OS.

Linux principles:

* Everything is a file (including your hardwarde)

* Small single purpose programs

* Ability to chain programs together for complex operations

* Avoid captive user interface (users input)

* Configuration data stored in text file

**Popular desktop Linux OS**:

* Ubuntu Linux

* Linux Mint

* Arch Linux

* Fedora

* Debian

* OpenSuse

**Popular server Linux OS**:

* Red Hat Enterprise Linux (Not open source): stable and secure OS (RPM-based, `.rpm` extension) -> Servers

* Ubuntu Server: more focused on user friendliness: latest and greatest open source software available (debian-based, `.deb` extension) -> DevOps/Automation

* Centos (similar to Red Hat but open source)

* SUSE Enterprise Linux

**Important Linux Directories**:

* Home directories: `/root` (admin), `/home/username`

* User executable: `/bin`, `/usr/bin`, `/usr/local/bin`

* System executables: `/sbin`, `/usr/sbin`, `/usr/local/sbin` (only executed by root user)

* Other mountpoints: `/media`, `/mnt` (connect usb or cd)

* Configuration: `/etc` (network, server, user configurations)

* Temporary files: `/tmp`

* Kernels and bootloader: `/boot`

* Server data: `/var`, `/srv` (website, sql data files)

* System information: `/proc`, `/sys`

* Shared libraries: `/lib`, `/usr/lib`, `/usr/local/lib`

### Important Linux Commands

To try the Linux commands, let's access the VMs created using Vagrant through Gitbash:

```
$ vagrant global-status
$ cd (go to vagrant-vms location in pc)
$ vagrant up
$ vagrant ssh
```

Once inside the VM, you can use the following Linux commands:

* `$ whoami`: get username

* `$ pwd`: get present working directory

* `$ ls`: show files and folders within the current directory

* `$ cat file-path`: read a file in the given directory

    - `cat /etc/os-release`: reads the OS file (name, version, etc.)

* `$ sudo -i`: switch to root user (admin) (only vagrant user has permission to switch to root user). `$` symbol will change for `#` symbol.

* `# cd /`: go to the root directory (different from root user)

* `# ls`: if you use this command in the root directory, you will find the files for the Linux OS (top level directory): `bin`, `boot`, `lib`, `home`, `sbin`, `tmp`, `vagrant`, etc.

* `exit`: log you out of the current user (`root #` or `user $`)

* `history`: shows all the commands that you executed

### File Commands

General syntax: `command options arguments` , e.g., `cp -r dirname1 dirname2/`. To check for each command's options, use `command --help`.

* `mkdir dirname`: creates directories with the name `dirname` in the pwd

* `touch file.txt`: creates an empty file with the name `file.txt` in the pwd

* `cp file.txt dirname/`: copies the `file.txt` file to the directory `dirname`.

    - `cp /home/username/dirname1/file.txt /home/username/dirname2`: copies file using absolute path.

* `ls dirname/`: lists the files and directories inside `dirname` when your pwd is different to `dirname`

* `cp -r dirname1 dirname2/`: copies directory `dirname1` to `dirname2`

* `mv file.txt dirname/`: moves `file.txt` to directory `dirname`. The same syntax works for directories.

    - `mv file.txt file2.txt`: renames `file.txt` to `file2.txt`

* `rm file.txt`: removes `file.txt` in the current directory

    - `rm -r dirname`: removes directory `dirname` in current directory
    - `rm -rf *`: removes everything in the current directory. `rf` forces the machine to do the command without asking. `*` means everything in the current directory.

### Regular Expressions

* `mv *.txt dirname/`: Moves everything that finishes with `.txt` to the directory `dirname`. `*` means everything in the current directory.

### VIM Editor

VIM is a text editor. Install it on the VM using `sudo yum install vim -y`.

* `vim file.txt`: creates a new file and opens in command mode.

    - 3 opening modes: command mode (default), insert mode (edit mode) (`i`) and extended command mode (save and quit) (`:`)
    - In command mode, just press `i` button to change to insert mode. `o` is used to go to the next level (line).
    - After editing the file, press `esc` button to change back to command mode.
    - Finally, press `:` button to change to extended command mode. Write `:w` to write (save) the file and `:q` to exit. You can use `:wq` to save and quit at the same time or `:q!` to forcefully quit without saving anything.

* Other commands in extended mode:

    - `:se nu`: shows line numbers on the side
    - Some shortcuts: `shift + g` to go to the end of the file, `gg` to go back to the beginning, `yy` for copying line ('yanking'), `number + yy` (e.g.,`4yy`) for copying a number of lines, `p` for pasting below, `shift + p` for pasting above, `dd` for deleting/cutting line, `number + dd` for deleting a number of lines `u` to undo
    - `/word` to search for `word` in the file. You must be in command mode.
    - Use `:%s/word1/word2` to replace `word1` for `word2` in each line. If you want to replace it in all the document, use `:%s/word1/word2/g` where `g` is global.

### Types of files in Linux

* Regular file (`-`): Normal files such as text, data, or executable files

* Directory (`d`): Files that are lists of other files

* Link (`l`): A shortcut that points to the location of the actual file

* Special file (`c`): Mechanism used for input and output, such as files in `/dev`

* Socket (`s`): A special file that provides inter-process networking protected by the file system's access control

* Pipe (`p`): A special file that allows processes to communicate with each other without using network socket semantics

You can check the type of the file by running the command `ls -l` (long list), which gives a detailed list of the files in a directory. The type of the file is given at the beginning:

* `-rw-------. 1 root root 2200 Nov 4 16:39 anaconda-ks.cfg` -> Regular file (text, binary files, etc.)

* `drwxr-xr-x. 2 root root    6 Dec 6 07:54 devopsdir` -> Directory file

You can also run the command `file file.txt` to check the file type of `file.txt`: `file.txt ASCII text` or `dirname: directory`

**Creating links to a file located somewhere else**:

If you try to create files/directories in directories that do not exist, an error will appear.

e.g. `mkdir /dirname1/dirname2/file`, `dirname2` does not exist. So, you need to use the option `-p`:

`mkdir -p /dirname1/dirname2/file`, it will create the whole structure.

Once the file is created, you can access that file in that location without changing the pwd or mentioning all the path to it. -> Create a *link*:

* `ln -s /dirname1/dirname2/file filelinkname`

* If you run `ls -l`, you will find the link named `filelinkname` which will point to the file in `/dirname1/dirname2/` directory.

* And if you run `cat filelinkname`, you can see the content of this link file.

* If the original file is moved, a highlight will appear when you run `ls -l`, which will mean that link is not working anymore.

* To remove a link, use `rm filelinkname` (remove) or `unlink filelinkname`.


**Change hostname**

In `/etc/` directory of the `root` user:

* Create a text file `vim /etc/hostname`

* Edit the file inserting the first line `centos.devops.in`, save and quit `:wq`

* Run the command `hostname centos7.devops.in` and logout `logout`.

* Log in back again using `vagrant ssh`

* You should see that the hostname has changed. Run `hostname` and the new hostname will appear.

* You can also check `ls -ltr /etc/` (`-lt` orders the files placing the last updated first, `-ltr` places them in the reverse order) the file `hostname`

### Filters and Redirection

**Filtering Commands**:

* `grep keyword file.txt`: searchs for the `keyword` inside a file within a directory. Linux is case sensitive for `keyword`s. If you want to ignore the case sentitivity, use the option `grep -i keyword file.txt`.

* `grep -i keyword *`: searchs for the `keyword`, ignoring the case and in all the files of the current directory but not directories. You can use `grep -iR keyword *` to allow the search to contain directories.

* `grep -R SETTINGS /dirname1/*`: searchs for a `SETTINGS` file in all the files/directories in `dirname1`.

* `grep -vi keyword file.txt`: Avoids searching for `keyword` in a file, ignoring the case.

* `less file.txt`: reads a file (no editing). You can move with arrows or search for a keyword. 

* `more file.txt`: shows the content of the file by percentages. You can move using Enter.

* `head file.txt`: shows the first lines of a file. To show a specific number of lines: `head -n file.txt` (e.g., `head -20 file.txt`)

* `tail file.txt`: shows the last lines of a file. Similarly, you can show a specific number of lines using `tail -n file.txt`. One option is to use `tail -f file.txt`, which shows the last lines and the new ones that are being included when editing the file. This is very useful for `.log` files. You can leave this showing using `Ctrl + C`.

* `cut -d: -f1 file`: if you need to delimite a file which specific delimiters (e.g., comma, colon, etc.), you can use `cut` with the option `-d:` (colon (:) as the delimeter), check the field (column) you want to extract using `-f1` and the file name or directory. It's better to check the file first to see how it is delimited.

* `sed 's/word1/word2/g' file.txt`: replaces `word1` for `word2` globally (`g`) in the whole `file.txt`. To actually change the content of the file, use `sed -i 's/word1/word2/g' file.txt`.

**Redirection Commands**:

Redirect the printing (showing) on the screen to another file, for example.

Use `>` after a command.

* `uptime > /dirname/file.txt`: creates a new file `file.txt` in the given directory with the `uptime` data. If the file already exists, then it will overwrite it.

* If you don't want to overwrite the existing file but append the new content, use `>>`: `ls >> /dirname/file.txt`. It will show both `uptime` + `ls` contents.

* You can also redirect the output you don't want to see to the directory `/dev/null` when in the root user. This directory does not contain anything and when something is redirected there, it's gone. Useful in installations.

* You can redirect this "empty" directory to any file to erase its content: `cat /dev/null > /dirname/file.txt`.

### Piping

First,

* `wc -l /dirname/file.txt`: counts number of lines in a file

Piping (`|`) is used to send an output generated by a command as input for another command.

* `ls | wc -l`: counts the number of files in the list of files of the current directory. `ls` shows the files/directories in a directory and `wc -l` counts this.

* `ls | grep keyword`: searchs `keyword` in the list of files of the current directory.


### Users and Groups

* Users and groups are used to control access to files and resources, programs or processes (files).

* Every user has a user ID (UID) and all the UID information is stored in `/etc/passwd` file

* Another file `/etc/shadow` has encrypted password and other information like expiry of the user.

* There are three kinds of users in Linux:

    | Type    | EXAMPLE               | USERD ID (ID) | GROUP ID (GID) | HOME DIR         | SHELL            |
    |---------|-----------------------|---------------|----------------|------------------|------------------|
    | ROOT    | `root`                | 0             | 0              | `/root`          | `/bin/bash`      |
    | REGULAR | `scaceresg`, `vagrant`| 1000 to 60000 | 1000 to 60000  | `/home/username` | `/bin/bash`      |
    | SERVICE | `ftp`, `ssh`, `apache`| 1 to 999      | 1 to 999       | `var/ftp`, `/etc`| `/sbin/nologin`  |

* Users can be extracted in the root user using `cat /etc/passwd`. This shows the following seven columns separated by colons (`:`):

    `root:x:0:0:root:/root:/bin/bash` -> username:shadowfile:userid:groupid:comment:homedirectory:loginshell

    - shadowfile: holds the encrypted password

* Groups can be extracted in the root user using `cat /etc/group`.

* `id username`: shows information of the username.

* To add a new user, use `useradd username`, which creates a new user in `/etc/passwd` and group in `/etc/group`.

* To add a new group, use `groupadd groupname`. To add users to a group, use `usermod -aG groupname username` or directly modifying the group file using `vim /etc/group`

    - `groupname:x:1004:username1` -> edit and insert -> `groupname:x:1004:username1,username2`

* To set a password so an user can log in use `passwd username`

* As a `root` user, you don't need to log in as a normal username. You can switch users using `su - username`

* Other useful commands:

    - `last`: checks recent logins
    - `who`: shows current logged user
    - `lsof -u username`: lists all the open files by an user.
    - `userdel username`: deletes user, but keeps the home directory.
    - `userdel -r username`: deletes both user and home directory.
    - `groupdel groupname`: deletes group.

### File Permissions

Permissions can be easily seen when running the command `ls -l` in a directory.

For the `/root` directory:
```
-rw-------. 1 root root 2058 Aug 17 10:02 anaconda-ks.cfg
lrwxrwxrwx. 1 root root   37 Aug 16 21:16 cmds -> /opt/dev/ops/devops/test/commands.txt
drwxr-xr-x. 2 root root   31 Aug 17 10:10 devopsdir
```

For `anaconda-ks.cfg` file:

`-rw-------` indicates the permissions/mod:

* First placeholder: `-` is the file type (regular)
* Next three placeholders: for the user/owner of the file `rw-`. `r` means "read" and `w` means "write"
* Next three for the group: `---`
* Last three is for others: `---`

For `devopsdir` file:

`drwxr-xr-x`

* `d`: file type (directory)
* `rwx`: User/owner (`root`) can 'read', 'write' or `x` means "execute"
* `r-x`: Group (`root`) can 'read' and 'execute'
* `r-x`: Other users can 'read' and 'execute'

Execute permission for a directory means that you can do `cd`.

To change the permissions:

* Use the command `chown username:groupname /dirname` to give ownership of a file/directory to a `username:groupname`. Use the recursive `-R` option when you need to change a directory with many files.

* Use `chmod` to change the permissions for each type of users: `chmod o-x /dirname`, i.e., for others (`o`), remove (`-`) execute permission (`x`). Or `chmod g+w /dirname` to add (`+`) writing permissions (`w`) for group (`g`).

### `sudo`

`sudo` allows to give power to any user to execute commands owned by root user.

`sudo -i` is used to connect to the root user. `su - username` is used by the root user (or whoever has access) to connect to any user.

The command `visudo` allows to open the `/etc/sudoers` file in write mode.

* The file is in the `/etc/sudoers` directory: 

    `ls -l /etc/sudoers` -> `-r--r-----. 1 root root 4328 Jan 19  2023 /etc/sudoers`

    There's no `w` write permission even for the root user for security reasons and permissions cannot be changed.

* You need to open it using `visudo`, which allows editing. You can modify the permissions by adding the following line:

    `username   ALL=(ALL)   ALL` or `username   ALL=(ALL)   NOPASSWD: ALL` to avoid requesting password.

* If the `sudoers` file is found with syntax errors, a message in the terminal will appear, where you can press `e` to edit it again.

* You can create a file, based on the `vagrant` file in the `/etc/sudoers.d/` directory. You can add the permissions for root connection in this file. If you want to add a group of user, use `%`, i.e., 

    `%groupname  ALL=(ALL)   NOPASSWD: ALL`, for example.

### Package Management

Methods for setting up software.

If you were to use a command/package that is not installed by default in Linux, you have to options:

* Installing it manually: which includes:
    - searching on the web for the installer (in pages like RPM Find (https://rpmfind.net/linux/RPM/index.html)), 
    - copying the link of the installer and run the `curl <link> -o filename` command to download the installer as the given filename
    - and install the package using the command `rpm -ivh filename.rpm`, where options `i` means "install", `v` means "verbose" and `h` is "human-readable format"

The problem is that, sometimes, installing a package, requires installing other required dependencies, which will take the same process. Imagine installing 1000 dependencies!

* Use `yum`, which will do everything in the manual process.
    - `yum` has information about the repositories on the internet for installation. The file with these repos are located in `/etc/yum.repos.d/`. You can check the file `centos.repo`.
    - To check if a package is in the repositories, use `yum search packagename`
    - To install a package, run `yum install packagename`. It shows the package and the required dependencies to install and will ask for your confirmation.
    - To remove a package, run `yum remove packagename`

If a package (e.g. `jenkins`) is not in yum's repositories, you can always search for it on the internet.

### Services

You can run/manage services using `httpd` package and `systemctl` command.

`httpd` stands for Hypertext Transfer Protocol daemon and it is a web server usually used for Apache applications.

* Install `httpd` using `yum install httpd -y`

* Check the status of the services using `systemctl status httpd` -> Check the line `Active: inactive (dead)`

* Start the service using `systemctl start httpd`. If you check the status again, you will see that it appears `Active: active (running) since date`

* Similar to start, you can run `restart`, `reload`, `is-active`, `is-enabled`

* If you logout of your vagrant account, the server will appear inactive again. To avoid this, you can run `systemctl enable httpd` so the server comes up when rebooting.

Another service is `sshd` which enables us to login using a safe shell.

### Processes

Many processes are running or sleeping in the Linux OS. `top` is used to check all the dynamic processes based on the comsumption of CPU and RAM. Use `q` to exit top. Processes are identified with a PID (Process ID).

Similar to `top`, you can use `ps aux`, which shows the processes and then exits.

`ps -ef` shows the processes and their parent/child processes ("forking").

You can run command `kill PID` to stop processes, where PID is the parent process ID. This automatically closes the child processes and then itself.

Sometimes, processes won't stop even after using the command `kill`. So, you would need to forcefully stop them by using `kill -9`. This will not close the child processes.

### Archiving

Use `tar -czvf filename.tar.gz dirname/` to archive and compress files. Options `c` means to create archive, `z` means to compress, `v` is verbose and `f` means file. `.tar` represents a Tarball, `gz` represents that it was compressed with `z` option. Finally, you add the `dirname/` to archive and compress.

To unarchive a file: `tar -xzvf filename.tar.gz` in the file directory. Option `x` means uncompress. You can also give the directory to uncompress it: `tar -xzvf filename.tar.gz -C /dirname2/` where `/dirname2/` is the final directory.

An alternative tool is using `zip` and `unzip` command. You need to install it first: `yum install zip unzip`:

* Run `zip -r filename.zip dirname/` to create compressed file. Option `r` for directories.

* Uncompress using `unzip filename.zip`

### Ubuntu commands

Differences between Ubuntu and CentOS:

* `useradd` -> In Ubuntu, use `adduser` command.

* `visudo` -> In Ubuntu, the default editor is `nano`. We can change the default to be `vim` using the command:

    `export EDITOR=vim`

* Package manager: To install a package after downloading the installer from the URL, use `dpkg -i filename.deb`. To list all the packages use `dpkg -l`. To remove a package, use `dpkg -r packagename`.

* For automatically management of packages, use `apt`. `apt` repos are located in `/etc/apt/sources.list`. To install software in Ubuntu/Debian:

    - `apt update`
    - Search for a package if you need to using `apt search packagename`
    - To install, use `apt install packagename` 
    - To remove a package, use `apt remove packagename`. This option does not remove the software configuration and data. To remove all of this, use `apt purge packagename`.

In Ubuntu, `httpd` is called `apache2`. Also, in Ubuntu, services are started and enabled automatically after installing.