I read through Chapter 2 of Linux Admin for Absolute Beginners by Martin Stevenson
Key Learnings:
Please create accounts for these co-workers.
C-Level Executives
Key Learnings:
- Add Users
- Passwords
- User groups
How to add users
The flags of adduser varies across different version of Linux, so consult the man pages for more info.I am practising on Kali Linux, the simplest command is:
sudo adduser --comment "Gym Owner Terry Crews" tcrews
You will need root access for this.
So using the root user or adding sudo will work.
Sometimes you'll see another command useradd instead.
The recommendation is to always use adduser.
If you have a new employee at your company or student who enters the university, they'll need access to the shared drive, a private drive for themselves etc.
sudo adduser --comment "Gym Owner Terry Crews" tcrews
You will need root access for this.
So using the root user or adding sudo will work.
Sometimes you'll see another command useradd instead.
The recommendation is to always use adduser.
adduser is a wrapper for useradd.
adduser is more user friendly and interactive than its back-end useradd. There's no difference in features provided.
Why is this important?
This is how we can create an account for users to access Linux servers.If you have a new employee at your company or student who enters the university, they'll need access to the shared drive, a private drive for themselves etc.
Groups
Groups keep users in their lanes.
Organisations can have hundreds or thousands of users.
While you can create a user and manually add them to have permission for a bunch of documents and folders, it takes a long time and there is an element of human error to miss one or two things.
Scaling this task would be really difficult unless you can group up permissions for folders based off some kind of label.
Linux uses "groups" to do this.
Users can be added to multiple groups
Folders can be shared to multiple groups
The passwords are stored in the etc/passwd file.
While you can create a user and manually add them to have permission for a bunch of documents and folders, it takes a long time and there is an element of human error to miss one or two things.
Scaling this task would be really difficult unless you can group up permissions for folders based off some kind of label.
Linux uses "groups" to do this.
Users can be added to multiple groups
Folders can be shared to multiple groups
Why do hackers care?
If you have access to the root user, accounts can be secretly added to provide a direct line.The passwords are stored in the etc/passwd file.
Access to this file would give the attacker logins to all users.
The sudo group is a group that provides superuser privileges.
The sudo group is a group that provides superuser privileges.
Practice Exercise
You are the new Linux Admin for your startup.Please create accounts for these co-workers.
C-Level Executives
John Smith: CEO
Jane Doe: CFO
Mary Jones: CTO
Peter Brown: COO
Sally Green: CMO
Senior Management
Jane Doe: CFO
Mary Jones: CTO
Peter Brown: COO
Sally Green: CMO
Senior Management
Mike Williams: VP of Sales
Nancy White: VP of Marketing
David Black: VP of Engineering
Elizabeth Blue: VP of Operations
Charles Brown: VP of HR
Staff
Nancy White: VP of Marketing
David Black: VP of Engineering
Elizabeth Blue: VP of Operations
Charles Brown: VP of HR
Staff
Eric Green: Software Engineer
Tom White: Designer
Ashley Black: QA Engineer
Ben Green: Customer Support Representative
Interns
Tom White: Designer
Ashley Black: QA Engineer
Ben Green: Customer Support Representative
Interns
Chris Smith: Software Engineering Intern
Matthew Jones: Design Intern
Sarah Brown: QA Engineering Intern
Thomas White: Customer Support Intern
Matthew Jones: Design Intern
Sarah Brown: QA Engineering Intern
Thomas White: Customer Support Intern
Usernames
For each of these users, we can create a login following a convention of <first letter of first name><surname>
jsmith
jdoe
mjones
pbrown
sgreen
Create the user
useradd --comment "Executive - CEO - John Smith" jsmith
useradd --comment "Engineering - Eric Green" egreen
Groups
We can also create groups for the users based on their level or function:
- corporate - C-Level executives
- engineering - software engineer
- design - designers
- qa - testers
- support - customer support
Sarah Brown is an QA intern so would only need to be added to the qa group.
Mary Jones is the CTO so would need to be in the corporate, engineering, qa and design groups
Create a group
groupadd corporate
Append group to user
usermod -a -G corporate mjones
For each function, I create sample files and assigned them to their own group based folders.
To change the
C-Level Files
CEO_presentation.pptx
CFO_financials.xlsx
CTO_roadmap.pdf
COO_operations_report.csv
CMO_marketing_plan.docx
Engineering Files
code_for_new_feature.py
unit_tests.py
integration_tests.py
deployment_script.sh
readme.md
Design Files
logo_design.psd
website_design.sketch
app_icon_design.ai
social_media_banner_design.png
marketing_materials_design.indd
QA Files
bug_report.txt
test_plan.xlsx
test_results.csv
regression_tests.py
performance_tests.sh
Customer support Files
FAQ.md
troubleshooting_guide.pdf
refund_policy.docx
contact_form.html
privacy_policy.pdf
Create a sample file
touch engineering/code_for_new_feature.py
Change the group of the folder
chgrp -R corporate corporate/
Comments
Post a Comment