Attached you'll find my current WIP for the category layout. I started with Richard's (to save typing/sorting of tasks, and implemented comments, structure suggestions, organization opinions, task comments from everyone else on the list, as well as added a thought or two of my own. Below I've listed the "what I thought about this" items regarding the organization. Comment on them if you see ways that I'm wrong, or to improve. Please look at the task lines beneath the category headers to see if they are in the best location. As we've already stated, Linux moves rapidly, and since these original tasks were developed (I'm embarassed to admit how long ago) new releases have been made. We must consider additions such as iptables. Comment on those items, please. I do have a couple mails of general comments (David's comes to mind specifically) that I haven't fully absorbed, incorporated into this layout. Please don't think I've ignored them, or missed something obvious. I wanted to continue discussion and moving forward with this stage. I want to work with the contract objective writers through next week to finalize our objectives. My thought, from both a study/prep perspective and an LPI development perspective is this: Begin with Kernel topics, as the kernel is the core of everything Linux and the biggest conceptual difference between Linux and our popular competing OS'es. Understanding Kernel concepts from the beginning (in a learning environment) makes transition into the OS easier. In exam prep, or actually taking the exam, since everything relies on kernel stuff, it's best to tackle that information first (even if it is technical more complex than things like DNS or logs). Following understanding kernel topics, I see moving into general system operations, obviously starting with the system startup. This fits a logical step by step introduction for training issues, as well as provides natural path for self-study and exam taking. After the system startup, I see filesystem issues. (You can't tackle filesystem configuration if you haven't started your system yet!). Next, I put hardware. To properly configure hardware, you should understand kernel already and issues regarding various filesystems, for both training and exam taking purposes. Next I start tackling network issues, starting, of course, with fundamental network operations. I split and joined a couple network areas into general topic names, allowing for more easy updates/additions (e.g. if for some reason we decided to cover qmail someday, it would fit under Mail and News, without major reorganization). This also allowed for an extra category. So, following general network I placed Mail and News, as these are the first client-side network services any admin typically addresses at any level. Even if in a training environment, this should provide easy lead into learning the server-side elements of Mail and News. Next I placed DNS issues. Domain Name Service is a category of its own, just like Mail and News. Following DNS, I placed Web Services. Web services can include several topics, specifically both Apache and Squid. There are probably others which would fit into a generic category like this as well. After all the WWW topics are discussed, I've entered File and Service Sharing. Specifically this covers, IMO, both NFS and Samba. I considered a "Heterogenous Environment" or "Windows Interoperability" or something topic, but as we don't really want to focus on $OS, I prefer the generic title. Next I listed Network Client Management. I think this can include everything from client address management, to network address management, login management, etc. Again, probably more tasks could fit into this category. Once you have your system up, running, on the network, etc, I think it's pertinent to discuss maintaining your system. This can include the logging issues, package management issues (though perhaps that might go into customizing???) and general best practices. Once you're successfully maintaining your system, you can address system security. We do need to add/update for iptables in this section. After you've addressed all of these topics, I think it's pertinent to discuss how to break your system, err, I mean customize and automate it :) This includes auto tasks with cron, writing perl scripts, and utlizing regular expressions and such. Finally, after having broken your system, we should discuss troubleshooting. -- Kara Pritchard Phone: 618-398-7360 Author, RHCE Exam Cram Director of Exam Development http://www.lpi.org/ Site Manager http://www.LinuxUsersGroups.org/ --
Preliminary Objectives May 30, 2001 Kara J. Pritchard Kernel 2.2.1 best practices, kernel, recompile 2.2.2 best practices, kernel, updates 2.2.5 kernel, patch, usb 2.2.7 best practices, kernel, install 2.2.8 kernel, patch 2.2.9 kernel, patch, update 2.2.10 kernel, patch, revert 2.2.12 kernel, configure 2.2.13 kernel, .config, configure 2.2.15 kernel, patch, upgrade 2.3.4 kernel, zImage, bzImage, best practices 2.3.5 kernels, stable, development 2.3.8 kernel, upgrade, patch 2.3.9 kernel, LILO, boot image 2.3.13 compile, /usr/src/linux*, revisions 2.3.14 kernel, patches, Linus, AC, subsystems, experiemental 2.4.1 best practices, kernel, disable support 2.4.2 kernel, modularize, rebuild, best practices 2.4.3 kernel, SMP 2.4.5 kernel, SMP 2.4.7 kernel, /proc/sys/kernel/*, command line 2.4.8 kernel, binary support, configure 2.4.10 kernel, serial console, debugging, best practices 2.5.5 kernel, compile, source tree, sound, PCMCIA 2.5.7 kernel, module, /etc/conf.modules 2.5.8 kernel, modules, /etc/conf.modules 2.5.9 kernel, modules 2.5.10 modprobe, insmod System Startup 1.4.1 /etc/init.d, /etc/rc.d/init.d 1.4.2 runlevels, system configuration 1.4.6 init=/bin/sh, system boot 2.2.11 initrd 2.3.3 chkconfig, services, runlevels 1.4.7 root filesystem, mount, error maintenance, read-only, reboot Filesystem 1.2.9 fstab, mounting filesystems, configuring filesystems 1.2.5 fsck, ext2 1.2.10 automount filesystem 1.3.8 /var, partitions, filesystem maintenance 1.3.10 mkisofs, filesystem maintenance, iso9660 Hardware 4.1.1 RAID, mkraid, software RAID 4.1.2 RAID, mirror, stripe, hardware, configure 4.2.1 hardware, hard drive, configure 4.2.2 hardware, kernel, UDMA66, configure 4.2.3 hardware, LVM, hard drive, configure 4.3.2 hardware, dumb terminal, configure 4.3.3 hardware, UPS, configure 4.4.5 hardware, serial ports, configure 4.6.3 hardware, kernel, IDE, cd-burner, configure 4.8.1 PCMCIA, configure 4.8.2 PCMCIA, network, configure 4.11.3 hdparm, hard drive, configure 4.11.1 interrupts, /proc/interrupts, maintenance 4.9.1 video, XFree, LCD, configure 4.11.2 tune2fs, hard drive, maintenance Network 3.2.3 path MTU discovery 3.4.6 route 3.5.1 network blocks, /0, /1, ... /32 3.17.4 virtual network, ifconfig, subnets, configure 3.17.5 network, gateway, subnets, configure 3.10.3 tcpdump, monitor bandwidth 3.10.4 ippl, ip-logging, install 3.10.5 ippl-log, logging, portscans 3.10.12 MAC addresses, arp 3.10.13 arpwatch, monitor 3.10.14 ARP, configure 3.11.4 /etc/nsswitch.conf, LDAP, NIS, PAM, NSS, configure 3.15.2 PPP, configure 3.16.7 tcpdump, debugging, network 3.16.9 telnet, nc, network, debugging 4.10.2 network, routers, configure 4.10.4 modem, ISDN, dial-in, configure 5.2.20 laptop, network, configure 5.2.21 laptop, script, network, configure, develop 5.2.12 point to point network, configure 3.15.3 mgetty, dial-up, terminal session, modem, configure 3.15.5 mgetty, autoppp, configure 5.2.1 VPN, configure 5.2.19 dial-in access, maintenance, best practices Mail & News 1.2.14 sendmail, email aliases, /etc/aliases 1.2.13 majordomo, monitor logs, error maintenance 1.3.12 procmail 1.5.3 sendmail, mail quota 3.8.2 INN, news, maintenance 3.9.1 virtual mail domain 3.9.3 virtual mail domain users 3.9.4 Sendmail, virtual domains 3.9.5 Sendmail, virtusertable 3.9.6 Sendmail, mail relay, internal servers 3.9.7 Sendmail, virtusertables 3.9.9 Sendmail, RBL, MTA, configure 3.9.10 SMTP, best practices, maintenance DNS 3.1.1 DNS, chroot 3.1.2 DNS, primary domain database, forward reverse zones 3.1.3 DNS, primary domain database, forward and reverse zone files 3.1.4 BIND, domain spoofing, key statement 3.1.5 BIND, DNS, nobody user 3.1.6 DNS, BIND, named.conf 3.1.7 DNS, slave, named.conf 3.1.8 primary forward domain, DNS 3.1.9 primary reverse domain, in-addr.arpa 3.1.10 BIND, secondary DNS 3.1.11 DNS, master, slave 3.1.12 BIND, upgrade 3.1.13 BIND, firewall, internal 3.1.14 BIND, SOA, NS, CNAME, PTR, MX 3.1.15 DNS, subdomain 3.10.1 primary server, mirror server 3.16.3 backup server, configure Web Services 3.6.1 Apache, access.log, best practices, logging 3.6.2 .htaccess, user restrictions 3.6.3 Apache, mod_perl 3.6.4 Apache, PHP3 3.6.6 Apache, mod_auth, htpasswd, htgroup 3.6.7 Apache, module, install 3.6.10 Apache, virtual hosts, httpd.conf 3.6.11 Apache, SSL 3.6.12 Apache, SSL, httpd.conf 3.6.13 Apache, MaxkeepAliveRequests 3.6.14 Apache, MinSpareServers, MaxSpareServers, httpd.conf 3.6.15 Apache, StartServers, httpd.conf 3.6.16 Apache, httpd servers, MaxClients, httpd.conf 3.6.17 Apache, Redirect, httpd.conf 3.19.1 squid, acl, http_acces, squid.conf 3.19.2 squid, authenticage_program, acl, http_access, configure 3.19.3 squid, squid.conf, maintenance File and Service sharing 3.12.1 /etc/lmhosts, static hosts, nmbd 3.12.2 samba, windows clients, configure 3.12.3 samba, login profile 3.12.4 nmbd, WINS, configure 3.12.5 samba, workgroup, smb.conf 3.12.6 samba, printer, smb.conf 3.12.7 samba, directories, smb.conf 3.12.9 samba, fileshare, smbmount 3.12.10 samba, NT domain, smb.conf 3.12.11 samba, print server, NT domain, smb.conf 3.14.1 NFS, exportfs, /etc/exports 3.14.2 NFS, hosts, subnets, /etc/exports, configure 3.14.3 NFS, second NIC, remote network, configure 3.14.5 NFS, tcpwrappers, hosts.deny 3.14.6 NFS, /etc/exports, filesystem, configure 3.14.7 NFS, /etc/exports, maintenance 3.14.8 NFS, server client, users, configure 3.14.9 NFS, filesystem, 8k block, mount, configure 3.14.10 NFS, filesystem, mount, locking, configure 3.14.11 mount, filesystems, options, hard, intr, soft, timeo Network Client Management 3.13.1 DHCP, static hosts, dhcpd.conf 3.13.2 DHCP, subnet, dynamic range, static, configure 3.13.2 DHCP, dynamic IP range, dhcpd.conf 3.13.4 DHCP, local LAN, configure 3.13.5 DHCP, local LAN, remote DHCP, configure 3.13.6 DHCP, bootp, dhcpd.conf 3.18.3 LDAP, LDIF, maintenance, configure 3.18.5 LDAP, maintenance 3.18.6 LDAP, system database, configure 3.18.7 LDAP, ldapsearch, query 3.11.1 NIS, password, configure 3.11.2 NIS, master, ypinit, configure 3.11.3 NIS, configure 3.11.5 NIS, slave server, configure 6.3.7 PAM, authentication, configure 3.4.3 network address translation System Maintenance 3.16.2 log server, configure 3.16.5 syslog, configure, network log server 5.1.8 logging, maintenance, best practices 5.1.11 log, log server, /etc/syslog.conf, configure 6.1.1 /var/log/messages, kernel, maintenance, error control 6.1.2 /var/log/secure, login, maintenance, error control 6.1.3 /var/log/xferlog, transfers, maintenance, error control 6.1.4 /var/log/maillog, errors, maintenance, error control 6.1.5 /var/httpd/*, errors, maintenance, error control 6.1.6 /var/log/* maintenance, error control, best practices 1.7.6 rebuild packages (RPM, DEB) 6.3.8 backup, maintenance, best practices System Security 1.1.5 configure ssh 3.2.1 IP forwarding, /proc/sys/net/ipv4/ip_forward 3.2.2 tcp_max_syn_backlog, tcp_syn_retries, tcp_syncookies, syn connections, synflood 3.4.1 ipchains, ip masq 3.4.2 ipchains, input 3.4.4 ipchains, firewall rules 3.7.1 secure, anonymous FTP, best practices 3.7.2 FTP, /etc/ftpaccess, DENY 5.2.2 SSH, configure 5.2.5 SSH, public/private key, ~/.ssh/identity, ~/.ssh/identity.pub, maintenance 5.2.7 SSH, public key, remote login, ~/.ssh/authoirzed_keys 5.2.8 SSH, ssh-agent, configure 5.2.9 remote connections, best practices 5.2.10 secure ports, remote administration, superuser, best practices 5.2.11 tcpwrappers, ipchains, remote access, best practices 5.2.13 SSH, port forward, encryption, configure 5.2.16 SSH, version 1, version 2, configure 5.2.17 SSH, maintenance, best practices 5.2.18 SSH, trusted hosts, configure 5.2.22 kerberos, security, maintenance, configure 6.3.1 SSH, /etc/ssh/sshd_config, DenyGroup, configure 6.2.2 security audit, strcpy, sprintf, maintenance, best practices 6.2.9 snort, intrusion detection, monitoring, best practices 6.2.10 snort, configure 6.2.8 open mail relays, anonymous FTP, monitoring, best practices 6.4.1 firewall, configure 6.4.3 ipchains, network blocks, configure 6.4.4 ipchains, ICMP, network blocks, configure 6.4.5 ipchains, ICMP, configure 6.2.7 bug track, security alerts, monitoring, best practices 6.3.5 bugfixes, maintenance, security System Customization and Automation 1.7.1 Perl, modules, scripts 1.7.2 Perl, taint, security, scripts 1.7.3 Perl, modules, CPAN 1.7.4 sed, regular expressions 1.7.5 awk, regular expressions 5.1.1 script, automation, develop 5.1.2 cron, script, error maintenance, develop 5.1.10 script, maintenance, develop 5.2.15 cron scripts, rsync, develope 6.2.6 script, monitor, error control, best practices, develop Troubleshooting 6.2.1 lsof, abnormal programs, maintenance, error control, best practices 6.2.3 netstat, process maintenance, best practices 1.2.4 monitor processes, use 'ps' 3.16.8 lsof, server port, monitor 1.2.12 best practices, monitor logs, error maintenance 1.2.15 best practices, /var/spool/mail, sendmail, monitor logs, error maintenance 1.2.17 filesystems, /proc/filesystems, kernel support 1.3.4 best practices, find, error maintenance 3.16.4 monitoring server, configure, best practices 3.16.6 mon, big brother, network monitor, configure 3.16.10 mon, big brother, network, service, monitoring, configure 5.1.4 snmp, system load, maintenance 5.1.9 idled, maintenance 6.2.4 cmp, diff, maintenance, best practices 6.2.5 md5sum, files, maintenance
