Uploaded byChSheraz3
PPTX, PDF61 views

Linux Servers.pptx

This document provides an overview of common Linux server software including Samba, FTP, NFS, Apache, and Docker. It describes the purpose and key features of each type of server such as Samba for file sharing with Windows clients, FTP for file transfers, NFS for network file sharing, Apache as a popular web server, and Docker for containerization. Security considerations and configurations are also summarized for each server software.

Embed presentation

Download to read offline
Linux Servers An Overview
Contents • Samba Server • FTP Server • NFS Server • Apache Server • Docker
Samba • Free software re-implementation of the SMB networking protocol • File and print services for various Microsoft Windows clients • Integration with a Microsoft Windows Server domain, either as a Domain Controller (DC) or as a domain member • Version 4 Active Directory and Microsoft Windows NT domains • Runs on most Unix-like systems, such as Linux, Solaris, AIX and the BSD variants, including Apple's macOS Server, and macOS client (Mac OS X 10.2 and greater).
Samba • Runs on a number of other operating systems such as OpenVMS and IBM i. • Samba is standard on nearly all distributions of Linux and is commonly included as a basic system service on other Unix-based operating systems as well. • Samba is released under the terms of the GNU General Public License. • The name Samba comes from SMB (Server Message Block), the name of the proprietary protocol used by the Microsoft Windows network file system.
Security of Samba • Some versions of Samba 3.6.3 and lower suffer serious security issues which can allow anonymous users to gain root access to a system from an anonymous connection, through the exploitation of an error in Samba's remote procedure call. • On 12 April 2016, Badlock, a crucial security bug in Windows and Samba, was disclosed.
Security of Samba • On 24 May 2017, it was announced that a remote code execution vulnerability had been found in Samba named EternalRed or SambaCry, affecting all versions since 3.5.0. • On 14 September 2020, a proof-of-concept exploit for the netlogon vulnerability called Zerologon (CVE-2020-1472) for which a patch exists since August was published. Some federal agencies using the software have been ordered to install the patch.
File Transfer Protocol (FTP) • Standard communication protocol used for the transfer of computer files from a server to a client on a computer network. • Built on a client–server model architecture using separate control and data connections between the client and the server • FTP users may authenticate themselves with a clear-text sign-in protocol, normally in the form of a username and password, but can connect anonymously if the server is configured to allow it. • For secure transmission that protects the username and password, and encrypts the content, FTP is often secured with SSL/TLS (FTPS) or replaced with SSH File Transfer Protocol (SFTP)
File Transfer Protocol (FTP) • The first FTP client applications were command-line programs and are still shipped with most Windows, Unix, and Linux operating systems. • Many dedicated FTP clients and automation utilities have since been developed for desktops, servers, mobile devices, and hardware. • FTP has been incorporated into productivity applications such as HTML editors and file managers. • An FTP client used to be commonly integrated in web browsers, where file servers are browsed with the URI prefix "ftp://". • Throughout 2021, the two major web browser vendors removed this ability
Data transfer modes in FTP • Stream mode (MODE S): • Data is sent as a continuous stream, relieving FTP from doing any processing. • Rather, all processing is left up to TCP. • No End-of-file indicator is needed, unless the data is divided into records. • Block mode (MODE B): • Designed primarily for transferring record-oriented files (STRU R), although can also be used to transfer stream-oriented (STRU F) text files. • FTP puts each record (or line) of data into several blocks (block header, byte count, and data field) and then passes it on to TCP. • Compressed mode (MODE C): • Extends MODE B with data compression using run-length encoding.
Security in FTP • FTP was not designed to be a secure protocol, and has many security weaknesses. • In May 1999, the authors of RFC 2577 listed a vulnerability to the following problems: • Brute-force attack • FTP bounce attack • Packet capture • Port stealing (guessing the next open port and usurping a legitimate connection) • Spoofing attack • Username enumeration • DoS or DDoS
Network File System (NFS) • A distributed file system protocol originally developed by Sun Microsystems (Sun) in 1984, allowing a user on a client computer to access files over a computer network much like local storage is accessed. • NFS, like many other protocols, builds on the Open Network Computing Remote Procedure Call (ONC RPC) system. • NFS is an open IETF standard defined in a Request for Comments (RFC), allowing anyone to implement the protocol.
Version of NFS • NFSv1 • for in-house experimental purposes • NFSv2 • operated only over User Datagram Protocol (UDP) • NFSv3 • Support 64 bits file sizes • WebNFS • Allowing it to function behind restrictive firewalls without the complexity of Portmap and MOUNT protocols. • WebNFS had a fixed TCP/UDP port number (2049) • NFSv4
Apache HTTP Server • Free and open-source cross-platform web server software • Developed and maintained by an open community of developers under the auspices of the Apache Software Foundation. • The vast majority of Apache HTTP Server instances run on a Linux distribution but current versions also run on Microsoft Windows, OpenVMS and a wide variety of Unix-like systems • As of March 2022, Netcraft estimated that Apache served 23.04% of the million busiest websites
Security of Apache HTTP Server • Can be hacked and exploited. • The main Apache attack tool is Slowloris, which exploits a bug in Apache software. • It creates many sockets and keeps each of them alive and busy by sending several bytes (known as "keep-alive headers") to let the server know that the computer is still connected and not experiencing network problems. • The Apache developers have addressed Slowloris with several modules to limit the damage caused
Docker • Set of platform as a service (PaaS) products that use OS-level virtualization to deliver software in packages called containers. • The service has both free and premium tiers. • The software that hosts the containers is called Docker Engine. • It was first started in 2013 and is developed by Docker, Inc.
Feature Apache (Web Server) Samba Server NFS Server FTP Server DNS Server Purpose/ Function Web hosting File and print sharing for Windows clients Network file sharing File transfer over a network Translate domain names to IP addresses Protocols Supported HTTP, HTTPS SMB/CIFS NFS FTP, FTPS, SFTP DNS, DNSSEC Platform Compatibility Cross-platform Primarily for Windows, but compatible with Linux/Unix Cross- platform Cross-platform Cross-platform Configuration Apache configuration files (httpd.conf, .htaccess) smb.conf /etc/exports Configuration file (e.g., vsftpd.conf) Named configuration (named.conf)
Feature Apache (Web Server) Samba Server NFS Server FTP Server DNS Server Security Access control through .htaccess, SSL/TLS support User authentication, Access control lists File permissions, IP-based access control User authentication, Encryption support DNSSEC for enhanced security Authentication Basic, Digest, SSL client certificates User authentication via Samba, PAM integration Typically relies on system user authentication Username/pass word, Anonymous login N/A (Authentication handled by other systems) Performance High- performance, scalable Depends on the network and hardware Efficient for large file transfers Performance varies based on configuration Low-latency resolution of domain names
Feature Apache (Web Server) Samba Server NFS Server FTP Server DNS Server Ease of Use Configuration may be complex for beginners Configuration through smb.conf can be challenging Configuration can be straightforward Configurable, some GUI interfaces available Configuration can be complex for advanced setups Community/Supp ort Large community, extensive documentation Active community, good support Established, well-supported Varies based on the specific FTP server software Established, well-supported Common Use Cases Hosting websites and web applications Sharing files and printers in Windows environments Sharing files between Unix/Linux systems Transferring files over a network Resolving domain names to IP addresses
Feature Apache (Web Server) Samba Server NFS Server FTP Server DNS Server Popular Implementations Apache HTTP Server Samba NFS vsftpd, ProFTPD, Pure-FTPd BIND (Berkeley Internet Name Domain) Notable Features Module support, URL rewriting, Virtual hosting Integration with Active Directory, Printing support Mounting remote file systems, Client caching Multiple transfer modes (active/passive), SSL/TLS support Zone transfers, DNSSEC support Open Source Yes Yes Yes Yes Yes

More Related Content

PPTX
Linux Servers
byShafaan Khaliq Bhatti
 
PDF
Linux Servers
byRanjith Siji
 
PPT
Chapter 05
bycclay3
 
PPTX
A Presentation on Servers & Splunk
byAvinash Kumar
 
PDF
What is Web Server & It's Types.pdf
byDinesh Katyare
 
PPTX
A comprehensive guide that explains the core functioning of Linux, covering t...
bydomaron20
 
PPT
Ch18 system administration
byRaja Waseem Akhtar
 
PDF
Ch2 the application layer protocols_ftp_telnet_samba_dhcp_4
bySyed Ariful Islam Emon
 
Linux Servers
byShafaan Khaliq Bhatti
 
Linux Servers
byRanjith Siji
 
Chapter 05
bycclay3
 
A Presentation on Servers & Splunk
byAvinash Kumar
 
What is Web Server & It's Types.pdf
byDinesh Katyare
 
A comprehensive guide that explains the core functioning of Linux, covering t...
bydomaron20
 
Ch18 system administration
byRaja Waseem Akhtar
 
Ch2 the application layer protocols_ftp_telnet_samba_dhcp_4
bySyed Ariful Islam Emon
 

Similar to Linux Servers.pptx

PDF
U4_FTP_slides_v1 servicios de red administración de sistemas informáticos
byJuanM75975
 
PPTX
RHCE (RED HAT CERTIFIED ENGINEERING)
bySumant Garg
 
PPTX
File Transfer Protocol
byguest029bcd
 
PPTX
introduction on server.pptx
byMugabo4
 
PPTX
Ports and services
byIlan Mindel
 
ODP
Using samba
byAli Abdo
 
PDF
Application layer and protocols of application layer
byTahmina Shopna
 
PPT
NFS.ppt shshsjsjsjssjsjsksksksksksisisisisi
bymukul narayana
 
PPT
file transfer and access utilities
bytumetr1
 
PPT
Presentation on samba server & apache server
byManoz Kumar
 
PPT
Nfs
bytmavroidis
 
PDF
Web hosting presentations by hostindia.net
byHostin Services Pvt Ltd
 
PDF
Linux cifs-client-guide
byunixadminrasheed
 
PPT
Nfs
byWaqas !!!!
 
PPT
Chapter 8
bywebhostingguy
 
DOCX
Project on squid proxy in rhel 6
byNutan Kumar Panda
 
PPTX
Linux Based Network Proposal
byChris Riccio
 
PPTX
solar wind66657657777777544533335567.pptx
byFutureTechnologies3
 
PPT
Chapter 06
bycclay3
 
PPT
network filesystem briefs
bybergwolf
 
U4_FTP_slides_v1 servicios de red administración de sistemas informáticos
byJuanM75975
 
RHCE (RED HAT CERTIFIED ENGINEERING)
bySumant Garg
 
File Transfer Protocol
byguest029bcd
 
introduction on server.pptx
byMugabo4
 
Ports and services
byIlan Mindel
 
Using samba
byAli Abdo
 
Application layer and protocols of application layer
byTahmina Shopna
 
NFS.ppt shshsjsjsjssjsjsksksksksksisisisisi
bymukul narayana
 
file transfer and access utilities
bytumetr1
 
Presentation on samba server & apache server
byManoz Kumar
 
Nfs
bytmavroidis
 
Web hosting presentations by hostindia.net
byHostin Services Pvt Ltd
 
Linux cifs-client-guide
byunixadminrasheed
 
Nfs
byWaqas !!!!
 
Chapter 8
bywebhostingguy
 
Project on squid proxy in rhel 6
byNutan Kumar Panda
 
Linux Based Network Proposal
byChris Riccio
 
solar wind66657657777777544533335567.pptx
byFutureTechnologies3
 
Chapter 06
bycclay3
 
network filesystem briefs
bybergwolf
 

More from ChSheraz3

PPT
Lecture-1.ppt
byChSheraz3
 
PPTX
5-Networking-Red-Hat-Commands-slides.pptx
byChSheraz3
 
PPTX
Servers.pptx
byChSheraz3
 
PPTX
RAID & It’s Levels.pptx
byChSheraz3
 
PPTX
Attack Snapchat by using SQL injection in cyber security
byChSheraz3
 
PPTX
Organizations and Team Structure
byChSheraz3
 
PPTX
NS 2.pptx
byChSheraz3
 
PPT
Network Security.ppt
byChSheraz3
 
PPT
Network security.ppt
byChSheraz3
 
PPT
MISch04
byChSheraz3
 
Lecture-1.ppt
byChSheraz3
 
5-Networking-Red-Hat-Commands-slides.pptx
byChSheraz3
 
Servers.pptx
byChSheraz3
 
RAID & It’s Levels.pptx
byChSheraz3
 
Attack Snapchat by using SQL injection in cyber security
byChSheraz3
 
Organizations and Team Structure
byChSheraz3
 
NS 2.pptx
byChSheraz3
 
Network Security.ppt
byChSheraz3
 
Network security.ppt
byChSheraz3
 
MISch04
byChSheraz3
 

Recently uploaded

PDF
The Tale of Melon City poem ppt by Sahasra
bybitrasahasra
 
PPTX
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
PPTX
Overview of how to Create a Model in Odoo 18
byCeline George
 
PDF
The voice of the rain poem class 11th.pdf
byReeta Baral
 
PDF
Analyzing the data of your initial survey
byThelma Villaflores
 
PDF
Most Imp Chapters & Weightage for Boards 2025.pdf
byTamannaSagar
 
PDF
Micro Economics for class 12 and class 11
bysurajbajaj4116
 
PPTX
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
PPTX
PARENTAL ROUTES OF DRUGS ADMINISTRATION .pptx
byAneetaSharma15
 
PPTX
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
PPTX
How to Track a Link Using Odoo 18 SMS Marketing
byCeline George
 
PPTX
UNIT 1: COMMUNICATION SKILLS, BARRIERS TO COMMUNICATION, PERSPECTIVES IN COMM...
byPOOJA KARVANDE
 
PPTX
Access partner report in Odoo 18.2 _ Odoo 19
byCeline George
 
PPTX
Nursing Unit Management, patient care unit, physical layout of nursing unit,t...
byyellow4878
 
PPTX
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
PPTX
Multiple Linear Regression - Least Square Method X₁ on X₂ and X₃
bySundar B N
 
PPTX
Introduction-to-Anatomy-and-Physiology.pptx
byAshish Umale
 
PPTX
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 
PDF
International Men's Day Event: Breaking the Silence: Embracing Vulnerability ...
byAssociation for Project Management
 
PDF
Risk management in Moroccan public hospitals_ a literature review
byMan_Ebook
 
The Tale of Melon City poem ppt by Sahasra
bybitrasahasra
 
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
Overview of how to Create a Model in Odoo 18
byCeline George
 
The voice of the rain poem class 11th.pdf
byReeta Baral
 
Analyzing the data of your initial survey
byThelma Villaflores
 
Most Imp Chapters & Weightage for Boards 2025.pdf
byTamannaSagar
 
Micro Economics for class 12 and class 11
bysurajbajaj4116
 
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
PARENTAL ROUTES OF DRUGS ADMINISTRATION .pptx
byAneetaSharma15
 
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
How to Track a Link Using Odoo 18 SMS Marketing
byCeline George
 
UNIT 1: COMMUNICATION SKILLS, BARRIERS TO COMMUNICATION, PERSPECTIVES IN COMM...
byPOOJA KARVANDE
 
Access partner report in Odoo 18.2 _ Odoo 19
byCeline George
 
Nursing Unit Management, patient care unit, physical layout of nursing unit,t...
byyellow4878
 
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
Multiple Linear Regression - Least Square Method X₁ on X₂ and X₃
bySundar B N
 
Introduction-to-Anatomy-and-Physiology.pptx
byAshish Umale
 
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 
International Men's Day Event: Breaking the Silence: Embracing Vulnerability ...
byAssociation for Project Management
 
Risk management in Moroccan public hospitals_ a literature review
byMan_Ebook
 

Linux Servers.pptx

  • 1.
  • 2.
    Contents • Samba Server •FTP Server • NFS Server • Apache Server • Docker
  • 3.
    Samba • Free softwarere-implementation of the SMB networking protocol • File and print services for various Microsoft Windows clients • Integration with a Microsoft Windows Server domain, either as a Domain Controller (DC) or as a domain member • Version 4 Active Directory and Microsoft Windows NT domains • Runs on most Unix-like systems, such as Linux, Solaris, AIX and the BSD variants, including Apple's macOS Server, and macOS client (Mac OS X 10.2 and greater).
  • 4.
    Samba • Runs ona number of other operating systems such as OpenVMS and IBM i. • Samba is standard on nearly all distributions of Linux and is commonly included as a basic system service on other Unix-based operating systems as well. • Samba is released under the terms of the GNU General Public License. • The name Samba comes from SMB (Server Message Block), the name of the proprietary protocol used by the Microsoft Windows network file system.
  • 5.
    Security of Samba •Some versions of Samba 3.6.3 and lower suffer serious security issues which can allow anonymous users to gain root access to a system from an anonymous connection, through the exploitation of an error in Samba's remote procedure call. • On 12 April 2016, Badlock, a crucial security bug in Windows and Samba, was disclosed.
  • 6.
    Security of Samba •On 24 May 2017, it was announced that a remote code execution vulnerability had been found in Samba named EternalRed or SambaCry, affecting all versions since 3.5.0. • On 14 September 2020, a proof-of-concept exploit for the netlogon vulnerability called Zerologon (CVE-2020-1472) for which a patch exists since August was published. Some federal agencies using the software have been ordered to install the patch.
  • 7.
    File Transfer Protocol(FTP) • Standard communication protocol used for the transfer of computer files from a server to a client on a computer network. • Built on a client–server model architecture using separate control and data connections between the client and the server • FTP users may authenticate themselves with a clear-text sign-in protocol, normally in the form of a username and password, but can connect anonymously if the server is configured to allow it. • For secure transmission that protects the username and password, and encrypts the content, FTP is often secured with SSL/TLS (FTPS) or replaced with SSH File Transfer Protocol (SFTP)
  • 8.
    File Transfer Protocol(FTP) • The first FTP client applications were command-line programs and are still shipped with most Windows, Unix, and Linux operating systems. • Many dedicated FTP clients and automation utilities have since been developed for desktops, servers, mobile devices, and hardware. • FTP has been incorporated into productivity applications such as HTML editors and file managers. • An FTP client used to be commonly integrated in web browsers, where file servers are browsed with the URI prefix "ftp://". • Throughout 2021, the two major web browser vendors removed this ability
  • 9.
    Data transfer modesin FTP • Stream mode (MODE S): • Data is sent as a continuous stream, relieving FTP from doing any processing. • Rather, all processing is left up to TCP. • No End-of-file indicator is needed, unless the data is divided into records. • Block mode (MODE B): • Designed primarily for transferring record-oriented files (STRU R), although can also be used to transfer stream-oriented (STRU F) text files. • FTP puts each record (or line) of data into several blocks (block header, byte count, and data field) and then passes it on to TCP. • Compressed mode (MODE C): • Extends MODE B with data compression using run-length encoding.
  • 10.
    Security in FTP •FTP was not designed to be a secure protocol, and has many security weaknesses. • In May 1999, the authors of RFC 2577 listed a vulnerability to the following problems: • Brute-force attack • FTP bounce attack • Packet capture • Port stealing (guessing the next open port and usurping a legitimate connection) • Spoofing attack • Username enumeration • DoS or DDoS
  • 11.
    Network File System(NFS) • A distributed file system protocol originally developed by Sun Microsystems (Sun) in 1984, allowing a user on a client computer to access files over a computer network much like local storage is accessed. • NFS, like many other protocols, builds on the Open Network Computing Remote Procedure Call (ONC RPC) system. • NFS is an open IETF standard defined in a Request for Comments (RFC), allowing anyone to implement the protocol.
  • 12.
    Version of NFS •NFSv1 • for in-house experimental purposes • NFSv2 • operated only over User Datagram Protocol (UDP) • NFSv3 • Support 64 bits file sizes • WebNFS • Allowing it to function behind restrictive firewalls without the complexity of Portmap and MOUNT protocols. • WebNFS had a fixed TCP/UDP port number (2049) • NFSv4
  • 13.
    Apache HTTP Server •Free and open-source cross-platform web server software • Developed and maintained by an open community of developers under the auspices of the Apache Software Foundation. • The vast majority of Apache HTTP Server instances run on a Linux distribution but current versions also run on Microsoft Windows, OpenVMS and a wide variety of Unix-like systems • As of March 2022, Netcraft estimated that Apache served 23.04% of the million busiest websites
  • 14.
    Security of ApacheHTTP Server • Can be hacked and exploited. • The main Apache attack tool is Slowloris, which exploits a bug in Apache software. • It creates many sockets and keeps each of them alive and busy by sending several bytes (known as "keep-alive headers") to let the server know that the computer is still connected and not experiencing network problems. • The Apache developers have addressed Slowloris with several modules to limit the damage caused
  • 15.
    Docker • Set ofplatform as a service (PaaS) products that use OS-level virtualization to deliver software in packages called containers. • The service has both free and premium tiers. • The software that hosts the containers is called Docker Engine. • It was first started in 2013 and is developed by Docker, Inc.
  • 16.
    Feature Apache (WebServer) Samba Server NFS Server FTP Server DNS Server Purpose/ Function Web hosting File and print sharing for Windows clients Network file sharing File transfer over a network Translate domain names to IP addresses Protocols Supported HTTP, HTTPS SMB/CIFS NFS FTP, FTPS, SFTP DNS, DNSSEC Platform Compatibility Cross-platform Primarily for Windows, but compatible with Linux/Unix Cross- platform Cross-platform Cross-platform Configuration Apache configuration files (httpd.conf, .htaccess) smb.conf /etc/exports Configuration file (e.g., vsftpd.conf) Named configuration (named.conf)
  • 17.
    Feature Apache (Web Server) Samba ServerNFS Server FTP Server DNS Server Security Access control through .htaccess, SSL/TLS support User authentication, Access control lists File permissions, IP-based access control User authentication, Encryption support DNSSEC for enhanced security Authentication Basic, Digest, SSL client certificates User authentication via Samba, PAM integration Typically relies on system user authentication Username/pass word, Anonymous login N/A (Authentication handled by other systems) Performance High- performance, scalable Depends on the network and hardware Efficient for large file transfers Performance varies based on configuration Low-latency resolution of domain names
  • 18.
    Feature Apache (Web Server) Samba ServerNFS Server FTP Server DNS Server Ease of Use Configuration may be complex for beginners Configuration through smb.conf can be challenging Configuration can be straightforward Configurable, some GUI interfaces available Configuration can be complex for advanced setups Community/Supp ort Large community, extensive documentation Active community, good support Established, well-supported Varies based on the specific FTP server software Established, well-supported Common Use Cases Hosting websites and web applications Sharing files and printers in Windows environments Sharing files between Unix/Linux systems Transferring files over a network Resolving domain names to IP addresses
  • 19.
    Feature Apache (Web Server) Samba ServerNFS Server FTP Server DNS Server Popular Implementations Apache HTTP Server Samba NFS vsftpd, ProFTPD, Pure-FTPd BIND (Berkeley Internet Name Domain) Notable Features Module support, URL rewriting, Virtual hosting Integration with Active Directory, Printing support Mounting remote file systems, Client caching Multiple transfer modes (active/passive), SSL/TLS support Zone transfers, DNSSEC support Open Source Yes Yes Yes Yes Yes