1. Higher Colleges of Technology
Non-Exam based Assessment
Program Computer and Information Science Division (CIS)
Course CIS 2903 – Operating Systems
Academic Honesty Statement
In accordancewith HCT policy LP201- Academic Honesty
• Students are required to refrain from all forms of academic dishonesty as defined and explained in HCT procedures
and directions from HCT personnel.
• A student found guilty of having committed acts of academic dishonesty may be subject to one or more of the
disciplinary measures as outlined in Article33 of the Student and Academic Regulations.
إفادة
األمانة
األكاديمية
اًقوف
لسياسة
كليات
التقنية
العليا
- LP201
األمانة
األكاديمية
•
ُطلبي
من
الطلبة
االمتناع
عن
كافة
أشكال
سوء
األمانة
،األكاديمية
كما
هو
ّنيمب
وموضح
في
السياسات
واإلجراءات
الخاصة
بكليات
التقنية
،العليا
والتوجيهات
الصادرة
من
موظفي
الكليات
.
•
في
حالة
ارتكاب
الطالب
أي
شكل
من
أشكال
سوء
األمانة
األكاديمية
سوف
يتعرض
الى
واحد
أ
و
أ
كثر
من
التدابير
التأديبية
على
النحو
المبين
في
المادة
33
من
ا
أل
نظمة
األكاديمية
.
Signature: _____________________________________________
Section:_______________________________________________________________
Student HCT ID:H00384866 Student Name: Ahmed Abdullrahman Ahmed
Student HCT ID: Student Name: Hamdan
Student HCT ID: Student Name: Mohammed Ali
Student HCT ID: Student Name: Majid Ibrahim
For Examiner’s Use Only:
Course CLOs CLO4 CLO5 CLO6
Marks Allocated
Marks Obtained
Instructions to Candidates
You should have:
Notes:
2. 2
CIS-2903: Project Guidelines
General Information
This document provides you the project requirements, assessed CLOs, and grading rubric to perform all the tasks in a
successful andprofessional way.Thisprojectisworth 25% of the course final grade and itis dividedintotwoparts:
Part A – WrittenReport[50%]
Part B – Presentation/Oral Defense [50%]
Course Learning Outcomes
CLO4 - Performcommonworkstationadministrationandtroubleshootingtaskswhichinclude creating
directories,users,groups,files,andstorage
CLO5 - Applyvarioustechniquestosecure networkservicessuchasTCP/IP,vsftpd,sshd, andhttpd
CLO6 - Demonstrate configurationof secure UsersAuthentication (SSH), TCPservices,andiptables
Re
3. 3
Part A: Written Report (50 marks)
This part is worth 50% of the project grade. In this part, students are required to select and install a suitable Linux
distribution.The followinginstructionscanbe performedon the chosenLinux distribution.
1) Report Format (2 Marks)
You have to document all the tasks listed under each one of the following sub-headings in your written
reportwith appropriate title,command details,screenshots,and a briefdescription.
2) CLO4 - Selection of a Suitable Linux Distribution and Installation (3 Marks)
Each team has the option to choose the Linux distribution they prefer to perform the tasks listed in this
project. You can choose any Linux distribution EXCEPT Fedora. You are also required to get your instructor
approval of your chosen distribution. Check the website https://distrowatch.com/ to find a suitable Linux
distributionforyou.
You need to justify the selection of a particular Linux distribution and state the following features of your
selected Linux distribution:
a. Kernel version uname -r
b. Package manager
Inside your virtual machine, download the .iso file (distribution image) for the chosen Linux distribution.
Install andconfigure the Linux distributionasa Virtual machine.
3) CLO4 - Configuration of Linux Hard Disks (3 Marks)
Adda secondharddiskto yourLinux Server
a. Adda second harddrive with size 1.5 GB to holdthe company data.
Use all the space in the second hard drive to create a single partition.
a. Format the partitionwith ntfsLinux file system.EXT4
b. Mount thispartitionto a directorycalled Companyat a location thatisaccessible byall users.
Premotions
Note:you may need to create this empty directory to mountthenew partition.
4) CLO4 - Managing User and Group Accounts (3 Marks)
Create the followingtwousergroups:
a. The firstgroup is calledDirectors.
b. The secondgroup is calledMentors.
4. 4
Create user account for two Directors, with their full names. Add these users to the Directors group. Make sure
that the Directors groupis configuredastheirdefaultgroup.
g
Create useraccount forthree Mentors,withtheirfull names.Make sure thatthe Mentors groupis configuredas
theirdefaultgroup.
5) CLO4 - Managing File and Directory Permissions (3 Marks)
Create two directories in the mounted partition (second hard disk) to hold the company data (use any suitable
names for bothdirectories):
a. The firstdirectoryisfor membersof the Directors group.
b. The other directoryis for members of the Mentors group.
Configure the permissions of the above twodirectoriesasfollows:
a. Members of Mentors 777 group have full access (r,w,x) to their directory, but read-only access to
the Directors’directory. 444
b. Members of Directors group have full access to their directory 777. Also, read and write permissions
to data in the directory holding the Mentors’ data. 666
6) CLO5 - Configuring Network Settings (8 Marks)
List the interfaces of your Linux server.
Configure the appropriate network settings so that your Linux server has a static IP address and a specific subnet
mask.
Pingto the loopbackinterface.Experimentwiththese useful pingoptions.
Show the current TCP/IP network status of your host using the netstat command. Experiment with these useful
netstatoptions.
netstat
7) CLO5 - Installing and Configuring FTP Services (7 Marks)
Install andconfigure the FTP servicesonyourLinux machine.
5. 5
To install FTP: apt install vsftpd
To start FTP service: systemctl start vsftpd
Configure yourLinux serverasa FTPserverthat allowslocal userstoaccesstheirhome directoriesremotely.
In /etc/vsftpd/vsftpd.conf filewe configureuserlist_deny=NOandwe specifyourusersinuser_list file
Testthe FTPserverfunctionalitylocally(fromthe same computer).
To test the FTP server, we type ftp
Test your FTP server by downloading (get) four files and uploading (put) seven files from any other machine, i.e.,
Windows or Linux. Use wildcards for operations on multiple files.
Note: You can create another virtual Linux machine OR use the Fedora Linux machine that you used for your course
labsto testthe FTP server.
8) CLO5 - Configuring and Managing httpd Service (5 Marks)
Stopand start the Apache httpdservice onyour Linux machine.
To see if it’sinstalled:dpkg -l httpd
To install httpd: apt install httpd
To start httpd service:systemctl starthttpd
To stop httpdservice:systemctl stophttpd
Checkthe status of the httpd service.Ensure thatthe service isrunning.
To check the status of httpd: systemctl status httpd
Testthe httpdserverfunctionality(locallyorremotely)byaccessingthe home page ina browser.
e.g. http://localhost
Start and enable Apache httpdservice torunonsystemboot.
To start and enable Apache:systemctl starthttpd
systemctl enable httpd
9) CLO5 - Configuring and Managing SSH (6 Marks)
Stopand start the ssh service onyour Linux machine.
To install ssh:aptinstall openssh-server
To start ssh service:systemctl startsshd
To stop sshservice;systemctl stopsshd
Checkthe status of the ssh service.
6. 6
To check sshservice:systemctl status sshd
Testthe sshserverfunctionality by remotely downloadingthree textfilestoyourlocal machine.
To downloadafile tothe local machine:scp root@IP:/file/to/downloadfile
Loginto the ssh serverremotelyandcreate afile called file.sshinthe loggedinuser’shome directory.
To loginto the sshserverand create a file:sshuser@IPtouchfile.ssh
10) CLO6 - Securing Linux Servers using iptables (10 Marks)
To protect the valuable information in your Linux server, the network traffic must be allowed only on specific
ports. Hence, you need to configure your firewall (iptables) to protect the computer. This can be done by
blockingthe unwantedincomingconnections. Complete the followingtasksonyourLinux server.
1) List all the firewall rules iptables -L
2) Viewthe currentdefaultpolicy iptables -L|greppolicy
3) Setthe defaultpolicyto acceptall forwardingandoutgoingconnections
iptables –policyINPUTACCEPT
iptables –policyFORWARDACCEPT
4) Adda rule toallowall SSH traffic. iptables -A INPUT-ptcp --dport22 -j ACCEPT
iptables -A OUTPUT-p tcp --dport22 -j ACCEPT
5) Adda rule todrop all FTP traffic. Verifythisbytryingtosendandreceive filesvia ftp.
6) Delete the rule thatyoujustcreatedto drop all FTPtraffic.
7) Adda rule toallow all trafficforincoming SSHrequests.
8) Save all iptablesrulestofile named iptables-backup.bak.
9) Flush(clear) all the firewall rules.
10) Restore all the rulesfrom the backedup file iptables-backup.bak.
Part B: Project Demo and Viva (50 marks)
This part is worth 50% of the project grade. In this part, students are required to demonstrate their project and be
ready to defend it. Each group member is expected to present its project to demonstrate its individual members'
understandingof wholeproject.
The presentationwill be followedbya question/answersessioninwhicheachof the team memberswill be
askedquestionson the learningoutcomesassessedinthisproject.
The waystudentsanswerquestionswill be evaluatedindividually.
You are requiredto bringyour Linux Serverfor demonstration.
Submission details
You are required to submit your project, online before due date on Blackboard Learn with plagiarism check report using Safe
Assign.
7. 7
Project Part Due Date
Project Part 1 (Written Report) Week 14
Project Part 2 (Presentation Oral/Defense) Week 14
CIS 2903 Group Project Rubric Structure 202110
8. 8
Absen
t (F)
Insufficient (1-
59%)
(F)
Emerging (60-
69%)
(D/D+/C-)
Satisfactory
(70-76%)
(C/C+)
Competent
(77-86%)
(B-/B/B+)
Mastering (87-
100%)
(A-/A)
Group
Grading
[50%]
CLO4
Deliverable
[15
%]
CLO4.
Perform
common
workstation
administration
and
troubleshooting
tasks
which
include
creating
directories,
users,
groups,
files
and
storage.
OS
Installation
with errors.
Missing
information.
Missing
screen shots
or captions.
Second hard
disk is added
with errors.
Partition
labelis
missing.
Mount point
not
accessible as
per specs.
Some User
and group
accounts
missing.
There is no
logical flow
to the
configuration
of the user
and group
accounts.
File and
directory
permissions
implementati
on needs
improvement
. Security
rights donot
work as they
are intended.
Some of the
following:
Random
selection of
Linux OS
with no clear
reasoning.
Some
information
about kernel
version and
package
manager
missing.
Installation is
done with
fewerrors or
the few
missing
information
or missing
labels or
captions in
the
screenshots.
Second hard
disk is added.
Minor
mismatch in
the specified
size. Label is
incorrect or
missing.
Mount point
is not as per
specifications
.
Minor
deviations in
the user and
group
accounts as
per specs.
Some group
and user
information
missing.
Minor
deviations in
the
implementati
on of
permissions
as per specs.
Security
rights are not
foolproof and
other users
may have
access.
Most but not all of
the following:
Random
selection of
Linux OS
with no clear
reasoning.
Some
information
about kernel
version and
package
manager
missing.
Installation is
done with
fewerrors or
the few
missing
information
or missing
labels or
captions in
the
screenshots.
Second hard
disk is added.
Minor
mismatch in
the specified
size. Label is
incorrect or
missing.
Mount point
is not as per
specifications
.
Minor
deviations in
the user and
group
accounts as
per specs.
Some group
and user
information
missing.
Minor
deviations in
the
implementati
on of
permissions
as per specs.
Security
rights are not
foolproof and
other users
may have
access.
Most but not all of
the following:
Appropriate
Linux OS is
selected with
reasoning.
Clearly
indicates the
kernel
version and
the package
manager.
OS
installation is
explained
with clear
and
captioned
screenshots.
Second hard
disk is added
correctly
with the
specified
size. The
partition is
formatted
with the
correct file
system. The
partitions
has a proper
label and is
mounted to a
location as
per the
specifications
.
User and
group
accounts are
created as
per
specifications
. All
information
such as
usernames as
additional
groups have
been
implemented
following
best
practices.
All of the
following:
Appropriate
Linux OS is
selected with
reasoning.
Clearly
indicates the
kernel
version and
the package
manager.
OS
installation is
explained
with clear
and
captioned
screenshots.
Second hard
disk is added
correctly
with the
specified
size. The
partition is
formatted
with the
correct file
system. The
partitions
has a proper
label and is
mounted to a
location as
per the
specifications
.
User and
group
accounts are
created as
per
specifications
. All
information
such as
usernames as
additional
groups have
been
implemented
following
best
practices.
9. 9
File and
directory
permissions
have been
implemented
as per the
specifications
. Directories
are created in
the mounted
partition.
Appropriate
access is
provided for
users as per
specifications
.
Security
rights works
flawlessly.
File and
directory
permissions
have been
implemented
as per the
specifications
. Directories
are created in
the mounted
partition.
Appropriate
access is
provided for
users as per
specifications
.
Security
rights works
flawlessly.
CLO5
Deliverable
[20
%]
CLO5.
Apply
various
techniques
to
secure
network
services
such
as
TCP/IP,
vsftpd,
sshd
and
httpd
FTP server
installation
has issues.
Configuration
is not done
correctly.
Does not
follow
directory
access as per
specs.
httpd service
runs but is
incorrectly
configured.
Access issues
from local
and remote.
Not
configured
for system
boot startup.
Cannot start
or stop the
sshd service.
Access issues
from local
and remote.
Major issues
in creating
files
remotely.
Some but not
most of the
following:
Minor
deviations in
the network
configuration
tasks.
Some
flags/options
missing in
the network
commands
such as ping,
netstat usage.
Some
screenshots
are missing
as proof of
work.
FTP server is
installed.
Minor
configuration
issues
present. ftp
server can be
locally
accessed but
remote
access has
issues. Some
directories
can be
accessed.
Minor errors
in httpd
configuration
. Service does
not run
Most but not all of
the following:
Minor
deviations in
the network
configuration
tasks.
Some
flags/options
missing in
the network
commands
such as ping,
netstat usage.
Some
screenshots
are missing
as proof of
work.
FTP server is
installed.
Minor
configuration
issues
present. ftp
server can be
locally
accessed but
remote
access has
issues. Some
directories
can be
accessed.
Minor errors
in httpd
configuration
. Service does
not run
consistently
Most but not all of
the following:
All network
configuration
tasks has
been
implemented
and works
properly
supported
with clear
organized
captioned
screenshots.
Appropriate
IP address
has been
configured.
Network
commands
such as ping,
netstat works
as per the
specs.
Experiment
with useful
command
options.
Successfully
installed and
configured
the ftp
server. Local
users can
access their
home
directories.
ftp services
can be
accessed
locally and
remotely.
Appropriate
ftp client is
used to
access
All of the
following:
All network
configuration
tasks has
been
implemented
and works
properly
supported
with clear
organized
captioned
screenshots.
Appropriate
IP address
has been
configured.
Network
commands
such as ping,
netstat works
as per the
specs.
Experiment
with useful
command
options.
Successfully
installed and
configured
the ftp
server. Local
users can
access their
home
directories.
ftp services
can be
accessed
locally and
remotely.
Appropriate
ftp client is
used to
access
10. 10
consistently
each time.
Remote
access is
lacking.
Minor
configuration
s issue that
fails to start
the service at
system boot.
Minor errors
in sshd
configuration
. Service does
not run
consistently
each time.
Remote
access is
lacking.
Minor issues
in creating
files
remotely.
Some
screenshots
are not
provided,
partially
missing or
not clear as
proof of
work.
each time.
Remote
access is
lacking.
Minor
configuration
s issue that
fails to start
the service at
system boot.
Minor errors
in sshd
configuration
. Service does
not run
consistently
each time.
Remote
access is
lacking.
Minor issues
in creating
files
remotely.
Some
screenshots
are not
provided,
partially
missing or
not clear as
proof of
work.
services
remotely.
httpd
configuration
is done
correctly as
specifications
. Service is
running and
can be tested
successfully
locally as
well as
remotely.
Service is
correctly
configured to
start at
system boot.
sshd
configuration
is done
correctly as
specifications
. Service is
running and
can be tested
successfully
locally as
well as
remotely.
Files can be
uploaded and
downloaded
correctly. File
creation at
specified
location is
successful.
services
remotely.
httpd
configuration
is done
correctly as
specifications
. Service is
running and
can be tested
successfully
locally as
well as
remotely.
Service is
correctly
configured to
start at
system boot.
sshd
configuration
is done
correctly as
specifications
. Service is
running and
can be tested
successfully
locally as
well as
remotely.
Files can be
uploaded and
downloaded
correctly. File
creation at
specified
location is
successful.
CLO6
Deliverable
[10
%]
CLO
6.
Demonstrate
configuration
of
secure
Users
Authentication
TCP
services,
and
IPtables
Manytasks
completionis
missing. Some
are not
working.
Missing proof
of work
screenshots.
Some tasks are
completed. Some
task completionis
missingor does
not work as
intended. Some
screenshots are
missing.
Most of tasks are
completed. Some
task completion
are missing or does
not work as
intended. Some
screenshots are
missing.
Most but not all 10
tasks for iptables
has beendone
correctlyand
works as intended.
Clear screenshots
have been used as
proof of work.
All 10 tasks for
iptables has been
done correctlyand
works as intended.
Clear screenshots
have been used as
proof of work.
Written
Communication
[5%]
Ideas and
evidence are
disorganized,
making
relationships
unclear
No
transitions
are used, or
are used
ineffectively
Conclusion,
when
appropriate,
is absent or
restates the
introduction
or prompt
Some but not all
of the following:
Ideas and
evidence are
sequenced to
show
relationships
Transitions
connect ideas
Conclusion,
when
appropriate,
follows from
and supports
the
controlling
idea
Most but not all of
the following:
Ideas and
evidence are
sequenced to
show
relationships
Transitions
connect ideas
Conclusion,
when
appropriate,
follows from
and supports
the
controlling
idea
All of the
following:
Ideas and
evidence are
sequenced to
show
relationships
Transitions
connect ideas
Conclusion,
when
appropriate,
follows from
and supports
the
controlling
idea
All of the
following:
Ideas and
evidence are
logically
sequenced to
show clear
relationships
Transitions
are varied
and connect
ideas,
showing
clear
relationships
Conclusion,
when
appropriate,
11. 11
Student does
not use
proper
structure,
format,
referencing,
as stated in
the project
description
Student has
an
accumulation
of errors in
grammar,
usage, and
mechanics
that distract
or interfere
with meaning
Student uses
proper
structure,
format,
referencing,
as stated in
the project
description
Is free of
distracting
errors in
grammar,
usage, and
mechanics
Student uses
proper
structure,
format,
referencing,
as stated in
the project
description
Is free of
distracting
errors in
grammar,
usage, and
mechanics
Student uses
proper
structure,
format,
referencing,
as stated in
the project
description
Is free of
distracting
errors in
grammar,
usage, and
mechanics
is logical and
raises
important
implications
Student uses
proper
structure &
format used,
including
APA
referencing,
as stated in
the project
description
Is free of
distracting
errors in
grammar,
usage, and
mechanics
Individual
Grading
[50%]
Lab
Work
[10
%]
Failed to produce
evidence of lab
work or produced
mostly inaccurate
or incomplete lab
work throughout
the semester.
Produced
evidence of some
but not all lab
work that is
accurate but
occasionally
incomplete
throughout the
semester.
Produced
evidence of most
but not all lab
work that is
accurate but
occasionally
incomplete
throughout the
semester.
Produced
evidence of most
but not all lab
work that is
accurate and
complete
throughout the
semester. The
screenshots are
clear and proof of
originality such as
hostname
reflecting the
student ID is
provided.
Produced
evidence of ALL
lab work that is
accurate and
complete
throughout the
semester. The
screenshots are
clear and proof of
originality such as
hostname
reflecting the
student ID is
provided.
12. 12
Oral
Communication
[10%]
Communicat
es with a
limited sense
of audience
and purpose
(No eye
contact, no
body
language,and
no poise)
Communicat
es
information
and ideas
with limited
clarity
Uses
language
with limited
accuracy and
effectiveness
Tension and
nervousness
are obvious;
has trouble
recovering
from
mistakes
Uses
inappropriat
e IT tools to
present ideas
Some but not all
of the following:
Communicat
es with a
clear sense of
audience and
purpose (Eye
contact, body
language,and
poise)
Communicat
es
information
and ideas
with
considerable
clarity
Uses
Language
with
considerable
accuracy and
effectiveness
Makes minor
mistakes, but
quickly
recovers
from them;
displays little
or no
tensions
Uses
appropriate
IT tools to
effectively
present ideas
Most but not all of
the following:
Communicat
es with a
clear sense of
audience and
purpose (Eye
contact, body
language,and
poise)
Communicat
es
information
and ideas
with
considerable
clarity
Uses
language
with
considerable
accuracy and
effectiveness
Makes minor
mistakes, but
quickly
recovers
from them;
displays little
or no
tensions
Uses
appropriate
IT tools to
effectively
present ideas
All of the
following:
Communicat
es with a
clear sense of
audience and
purpose (Eye
contact, body
language,and
poise)
Communicat
es
information
and ideas
with
considerable
clarity
Uses
language
with
considerable
accuracy and
effectiveness
Makes minor
mistakes, but
quickly
recovers
from them;
displays little
or no
tensions
Uses
appropriate
IT tools to
effectively
present ideas
All of the
following:
Communicat
es with a
strong sense
of audience
and purpose
(holds
attention
with the use
if direct eye
contact,
seldom
looking at
notes)
Communicat
es
information
and ideas
with a high
degree of
clarity
Uses
Language
with a high
degree of
accuracy and
effectiveness
Student
displays
relaxed,self-
confident,
with no
mistakes
Uses
appropriate
IT tools to
effectively
present ideas
Follow-up
questions
and
discussion
[20
%]
[All
CLOs]
Unable to
answer
questions
from the
examining
board
Able to
answer some
but not all
questions
from the
examining
board
Able to
answer most
but not all
questions
from the
examining
board
Able to
answer all
questions
from the
examining
board
Able to
answer all
questions
and
demonstrate
a complete
understandin
g of the study
13. 13
Collaboration
[10%]
Does not
participate in
the task or is
so often off-
task that
he/she
makes no
contribution
to the group
goal
Participates
in the task,
but does not
cooperate
with others
or with the
group
process
Participates
in
discussions
Remains
focused on
the topic
Completes
some tasks
independentl
y
Cooperates
with the
group
process, but
does not
coordinate
his or her
contributions
with those of
others
Listens
without
interrupting
Actively
solicits
others’ ideas
Accepts
assigned
tasks
Goes along
with group
consensus
Builds on
others’ ideas
Coordinates
both
processes
and products
with those of
teammates,
but does not
resolve major
conflicts
Actively
listens
Gives and
receives
constructive
feedback
Adapts
ideas/proces
s to
accommodat
e teammates
Seeks
consensus
Resolves
minor
conflicts
effectively
Student
coordinates
processes
and products
with those of
teammates
Resolves
both major
and minor
conflicts
effectively
Expresses
disagreement
s honestly
but tactfully
Supports
group
decisions
even if not in
total
agreement
Compromises
and
negotiates to
reach
solution
Demonstrate
s effective
team
leadership
skills across
technical or
professional
computing
activities