Steps that were done when we installed your server

The following things were done to your server before you first logged on.

Remote Root Login Off / Enable Secure Shell (SSH) for Remote Login

  • Fedora Core first installs with all services and ports (except port 22) disabled. We needed to make a change to the ssd configureation and then start the ssh service so that users could login.
  • The change we made was to turn Off remote ROOT access to ssh (security improvement). This is a really important thing to do that isn't done when you install. Your systems have already had this done, but you can look at it yourself.
  • 1. using your choice of editors (like vi) 
    2. Change 
       #PermitRootLogin yes
       PermitRootLogin no
       #ClientAliveInterval 0
       ClientAliveInterval 300
    3. Save File
    4. Set sshd to run on startup
       # chkconfig sshd on 
    5. Start sshd, since at the time of the install it hadn't been started. 
       Normally you would use restart
       # /sbin/service sshd restart

    Network Manager and Configure Network Information

  • You can either Use the Network Connections or edit the files directly. If you want to edit the files, the information is below. If you use the Network Connections panel, then use information for your server setup.
    1. edit the config file for the ethernet interface.
       # vi /etc/sysconfig/network-scripts/ifcfg-eth0
    2. Add/change the following lines (xxx is used instead of the actual IP numbers).  
       Leave the HWADDR entry alone.
    3. Save File
    4. Check the DNS is configured
       # vi /etc/resolve.conf
       delete everything and make sure the file contains of the local DNS
    5. Save File  
    6. Edit the hosts file to add the host name and its IP
       # vi /etc/hosts
       add a link at the top that lists the IP of the system followed by the 
         a) system name and then the b) full system name
         Examples: 129.120.XXX.XXX   atlas
    7. Restart Network
       # /sbin/service network restart
    8. Ensure Network Services start each Boot
        # chkconfig network on
    9. Test network connectivity to make sure we had the system on the network
       # ping
       If the ping doesn't work or the system gives you a network error, 
       then be sure to check what you typed in above.

    We installed a few packages that students will need in the assignments

  • A list of any packages I decided to install for the student image.
    1. Python Dev Tolls
       # yum install python-setuptools-devel
    2. Nano edtor (simple text editors that can be used instead of vi
       # yum install nano
    3. Logwatch is program that runs dailys and generates a system status report.
       # yum install logwatch

    Turn off SeLinux

  • For this course, we will disable Selinux.
    1. vi /etc/selinux/config
    	edit line
    2. Save File
    3. Restart System

    Turn on the SSH Port in IPTables

    1. vi /etc/sysconfig/iptables
    	enter the following line
        	-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
    2. Save File
    3. Restart iptables
       # /sbin/service iptables restart