CentOS 6 Linux Server Cookbook E-Book

CentOS 6 Linux Server Cookbook

Credits

About the Author

About the Reviewers

I thank my lover, Lysanne, who accepted to allow me some free time slots for this review even with a two year-old and a six month-old to take care of. The presence of these three human beings in my life is simply invaluable.

I must also thank my friend Sébastien, whose generosity is only matched by his knowledge and kindness. I would never have reached that high in my career if it wasn't for him.

He would like to thank every person who dedicates their time developing free and open source software, and making them available for us to 
play with.

In memory of my father, who valued the importance of education and was an inspiration to me.

www.PacktPub.com

You might want to visit www.PacktPub.com for support files and downloads related to your book.

Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at <[email protected]> for more details.

At www.PacktPub.com, you can also read a collection of free technical articles, sign up for a range of free newsletters and receive exclusive discounts and offers on Packt books and eBooks.

http://PacktLib.PacktPub.com

Do you need instant solutions to your IT questions? PacktLib is Packt's online digital book library. Here, you can access, read and search across Packt's entire library of books. 

Preface

Chapter 1, Installing CentOS, is a series of recipes that introduces you to the task of installing your server, updating, and enhancing the minimal install with additional tools and adding a desktop environment. It is designed to get you started and to provide a reference that shows you a number of ways to achieve the desired installation.

Chapter 2, Configuring CentOS, is designed to follow on from a successful installation to offer a helping hand and provide you with a number of recipes that will enable you to achieve the desired server configuration. From changing the time zone and updating the hardware clock to binding multiple IP addresses, you will not only learn how to resolve a fully qualified domain name but you will be shown how to work with multiple Ethernet devices and manage SELinux.

Chapter 3, Working with CentOS, provides the building blocks that will enable you to champion your server and take control of your environment. It is here to kick start your role as a server administrator, by disseminating a wealth of information that will walk you through a variety of steps that are required to develop a fully considered and professional server solution.

Chapter 4, Managing Packages with Yum, serves to introduce you to the definitive package manager for CentOS 6 server. From upgrading the system to finding, installing, removing, and enhancing your system with additional repositories, it is the purpose of this chapter to explain the open source command-line package management utility known as the Yellowdog Updater, Modified.

Chapter 5, Securing CentOS, discusses the need to implement a series of solutions that will deliver the level of protection you need to run a successful server solution. From escalating user privileges to preventing dictionary-based attacks, you will see how easy it is to build a server that not only considers the need to reduce risk from external attack but one that will provide additional protection for your users.

Chapter 6, Working with Samba, focuses on the power and simplicity of file sharing with Samba in order to provide CentOS 6 server with the ability to provide a sense of community within the workplace.

Chapter 7, Working with Domains, considers the steps required to implement domain names, domain resolution, and DNS queries on a CentOS 6 server. The domain name system is an essential role of any server and whether you are intending to support a home network or a full corporate environment, it is the purpose of this chapter to provide a series of solutions that will deliver the beginning of a future-proof solution.

Chapter 8, Working with Databases, provides a series of recipes that delivers instant access to MySQL and PostgreSQL with the intention of explaining the necessary steps required to deploy them on a CentOS 6 server.

Chapter 9, Providing Mail Services, introduces you to the process of enabling a domain-wide Mail Transport Agent to your CentOS 6 server. From building a local POP3/SMTP server to configuring SASL and dealing with SPAM, the purpose of this chapter is to provide the groundwork for all your future e-mail-based needs.

Chapter 10, Working with Apache, investigates the role of this well known server technology to full effect, and whether you are intending to run a development server or a live production server, this chapter provides you with the necessary steps to deliver the features you need to become the master of your web based publishing solution.

Chapter 11, Working with FTP, concentrates on the role of VSFTP with a series of recipes that will provide the guidance you need to install, configure and manage the File Transfer Protocol you want to provide on a CentOS 6 server.

What you need for this book

Who this book is for

Conventions

Note

Warnings or important notes appear in a box like this.

Tip

Tips and tricks appear like this.

Reader feedback

Customer support

Although we have taken every care to ensure the accuracy of our content, mistakes do happen. If you find a mistake in one of our books—maybe a mistake in the text or the code—we would be grateful if you would report this to us. By doing so, you can save other readers from frustration and help us improve subsequent versions of this book. If you find any errata, please report them by visiting http://www.packtpub.com/submit-errata, selecting your book, clicking on the erratasubmissionform link, and entering the details of your errata. Once your errata are verified, your submission will be accepted and the errata will be uploaded on our website, or added to any list of existing errata, under the Errata section of that title. Any existing errata can be viewed by selecting your title from http://www.packtpub.com/support.

Piracy of copyright material on the Internet is an ongoing problem across all media. At Packt, we take the protection of our copyright and licenses very seriously. If you come across any illegal copies of our works, in any form, on the Internet, please provide us with the location address or website name immediately so that we can pursue a remedy.

Please contact us at <[email protected]> with a link to the suspected pirated material.

We appreciate your help in protecting our authors, and our ability to bring you valuable content.

You can contact us at <[email protected]> if you are having a problem with any aspect of the book, and we will do our best to address it.

Chapter 1. Installing CentOS

This chapter is a collection of recipes that will guide you through the process of un-wrapping the box and exploring a wide range of installation techniques by downloading CentOS and confirming the checksum on a Windows desktop; performing an installation of CentOS using the graphical installer; running a netinstall over HTTP; installing CentOS in Text Mode and building a minimal installation; re-installing the boot loader; updating the installation and enhancing the minimal install with additional administration and development tools; finishing the installation process with Firstboot; adding the GNOME desktop environment, changing the runlevel and installing additional software.

Downloading CentOS and confirming the checksum on a Windows desktop

To complete this recipe it is assumed that you are using a typical Windows-based computer (Windows 7, Windows Vista, or similar) with full administration rights. You will need an Internet connection to download the required installation files and access to a standard DVD/CD disk burner with the appropriate software in order to create the relevant installation disks.

Regardless as to what type of installation files you download, the following techniques can be applied to all image files supplied by the CentOS project:

The act of downloading an installation image and validating the file's integrity is just the first step towards building the perfect server, and although the process of downloading CentOS is very simple, many do forget the need to confirm the checksum.

So what have we learned from this experience?

We began this recipe by showing you how to download CentOS by outlining the various options available to you. It is not expected that you will need to do this often, but during the course of this recipe you also learned how to navigate the CentOS Project website and select the best download location based on your current location.

Having done this, our next step was to obtain a copy of md5sum.txt before downloading the preferred image files.

The time required to complete the task of downloading the relevant files will depend largely on the speed of your Internet connection, but it was important that we obtained a copy of md5sum.exe in order to confirm file integrity and compare the value given against those listed in md5sum.txt.

The DOS-based tool was obtained from http://mirror.centos.org/centos/dostools/md5sum.exe.

Having completed these steps, we then proceed to open a command prompt session and navigate to the expected destination of all the files by typing:

We then proceeded to view the contents of C:\Users\<username>\Downloads by typing the following command:

This action lists the filenames concerned, thereby enabling us to modify the following command in order to validate the appropriate ISO files:

The resulting response provides us with the checksum value of the file in question in order that we can compare it with the corresponding value found in md5sum.txt.

For example, the content of md5sum.txt may look like this:

Whereas the display in command prompt may show:

You should repeat this process for all image files, and if these values match, then you can be confident that your download is verified. A fact that not only reduces the chance of wasting optical disks, but with security in mind, it also implies that what you downloaded is what you were expecting to download (and not something else).

So remember, with every new release the CentOS team will update the main website and enable you to download the required image files. Unless the CentOS project states otherwise, you will only need to do this once, as all minor updates can be managed like any other operating system (discussed later in this book). However, if you do intend to download them again, then it is always a good idea to check the integrity of your image files with the md5sum checksum tool.

Performing an installation of CentOS using the graphical installer

Before we begin, it is assumed that you have followed a previous recipe in which you were shown how to download CentOS, confirm the checksum of the relevant image files, and create the relevant installation disks.

Depending on which installation image(s) were downloaded, in order to complete this recipe you will be expected to have completed the initial stages of a network install or that you are using one of the following DVD suites:

In addition to this, you should be confident that your server can meet the following minimum specifications:

Of course, it should be said that the preceding specification acts as guidance only and further details concerning the minimum system requirements can be found at the end of this recipe.

To begin this recipe, start by booting your computer from the first CentOS installation DVD and wait for the welcome screen:

In this recipe you have discovered how to install the CentOS 6 operating system, and having covered the typical approach to the graphical installation process you are now in a position to develop the server with additional configuration changes and packages that will suit the role you intend the server to fulfill.

So what have we learned from this experience?

We started by initializing the main installer and determining whether we would like to check the installation media for possible corruption and defects. Of course, validating the data on your disk is always a useful process and it can save time in the long run, but you should be aware that it will not necessarily guarantee a trouble-free installation. For this reason, most users who have already validated the checksum tend to skip this process.

The next steps then welcomed us to CentOS and invited us to confirm the appropriate language, keyboard, location, hostname, root password, network, and storage settings.

For example, any changes to the language setting were immediate, whereas the configuration of your network settings was simply a matter of ensuring the Ethernet device would connect automatically and modifying the appropriate IPv4/IPv6 settings. You were able to create a static or dynamic IP address, while the setting of a root password was simply a matter of choosing an appropriate series of alpha-numeric values that did not consist of known words, typical phrases, or contain any whitespace. Whatever password you decide on, it should consist of no less than six characters to avoid any warnings issued by the installer.

During the next stage, we then considered the need to partition the hard disks by selecting the default option known as Use All Space. By choosing this option, you were allowing the installer to determine the relative sizes of each partition and to build a logical volume that would assign GRUB to a default location. Of course, diving in to the depths of partition management was beyond the purpose of this recipe, but you did see that the various options that enable you to build your own custom layout should this be the preferred option.

You were then given the option to change the location of GRUB. This is not always deemed to be necessary, as moving GRUB can be an awkward process for even the most experienced users but ignoring this, you did discover an option that would enable you to password-protect the boot loader and provide additional system-wide protection.

Finally we came upon the package group selection screen where we discovered that CentOS not only enables us to choose a minimal install, but it also provides for a significant number of package selection groups that are designed for convenience.

The sole purpose of these groups is to simplify the process of selecting the correct packages for your installation. I think you would agree that most of the group titles are self-explanatory, but it is generally accepted that a minimal install is by far the most efficient method of installing any server because it is far easier to add and configure packages when we need them rather than simply installing everything at once. This rule of thumb not only reduces your initial workload, but it also ensures that your server remains safe and secure which is of a particular concern if it is located in the public domain.

So in conclusion, I think it would be appropriate to say that there is always more to discover about the installation process and that there are many different ways to install your server, but at this early stage you should now take the time to sit back and relax. Well done, you have now completed the recommend installation process and yes, you can now install CentOS.

Running a netinstall over HTTP

Before we begin, it is assumed that you have followed a previous recipe in which you downloaded the netinstall image of Centos 6, confirmed the checksum values of the image file, and that you have already created the relevant installation disk.

To complete this recipe you will need an active Internet connection, and because this recipe will serve as a starting point to the graphical installation process, you should be confident that your server can meet the following minimum requirements:

To begin this recipe, insert the netinstall disc, boot your computer from the optical drive, and wait for the welcome screen to appear:

The purpose of this recipe was to introduce you to the concept of the CentOS network installation process in order to show you just how simple this approach can be. By completing this recipe you have not only saved time by limiting your initial download to those files required by the installation process, but you have been able to take advantage of the full graphical installation method without the need for a complete DVD suite.

So what have we learned from this experience?

We have learned how to boot from the netinstall image, initialize the main installer, test the optical media for errors, provide the relevant network settings for the host computer, and provide a URL in order to download the relevant files.

The URL in this case was web-based and dependent on the preferred architecture, but as an alternative you could have modified this instruction to use a local mirror site or even implement an installation from a local repository from your local network.

So in conclusion, it must be said that if you are intending to install more than one server at a time (with a full array of packages), then this may not be the best approach, but for a single server or multiple servers using a minimal install, then the netinstall image represents a far more flexible approach. Rather than waiting to download a complete set of installation files you may never need, the installer will download the required files directly from the chosen location thereby ensuring that you will not only reduce the overall time it takes to get your server up and running, but you will be able to take advantage of the full installation without the need for a DVD drive.

Installing CentOS in Text Mode and building a minimal installation