- You can follow along with the docker compose app, or on AWS ec2 with a awslinux2 instance. Regardless, it is recommended to have a look at the aws docker compose app after the course. It contains everything you need to follow along on a linux container.
- Print the 10th line of the file.
head -n10 file.txt | tail -n1
- Note: Head gets the top n number of lines, tail gets the last n number of lines. So we can simply get the last line after piping to tail
- Write a script that prints any given line number of a file.
- The first arg should be the file name
- Second arg the line number
- When complete, we will review a suggested solution
- With the suggeted solution, how can we check if it ran successfully?
echo $?will give us exit code of previous command, 0 is pass antything else is fail- What is the purpose of the shift command in this script?
-
Start the logger.sh script. Send it to background (ctrl +z) , start it in background (bg 1), and send it to foreground again (fg 1). Use the jobs command in between each step.
-
Kill the process (ctrl +c if in foreground, or kill -9 PID if in background) and start it again with & so that it starts in background
-
Confirm it is running with ps and grep
ps -ef | grep logger | grep -v grep
- Note: The second grep removes the first grep searching for the actual process!
- Note: Run
ps -efwithout grep. Notice the parent process to the logger script is the current bash session.
- Now save the PID in a variable named PID
PID=$(ps -ef | grep logger | grep -v grep | awk '{print $2')
- what is awk doing here?
- Break the command down, run the first part, then add subsequent pipes one at a time.
- What files are the process are writing to?
lsof -p $PIDor, for live viewsudo strace -f -t -e trace=file -p $PIDYou can even grep for the file access modessudo strace -f -t -e trace=file -p $PID 2>&1 | egrep "O_WRONLY\|O_CREAT\|O_APPEND"
- When done, exit strace and kill the process
- We started with a simple script that helped us review best bash practices (args, defensive coding)
- We reviewed how to search a commands manual entry page.
- Ran a simple script in the background and found out information about that process, including which files it has open.
- cd to
codedir. Read the man fordiff, search for large files, and use it to compare utils.py and app.py
- Note: git diff provides a better UX for comparing files, but will only be available if git is installed. The
commcommand is another alternative. - Note: search for the
<symbol in the manual to understand which file origined the line differencediff --speed-large-files utils.py app.py
-
What lines of code are repeated in app.py?
uniq -d app.py -
In the code direcrory, list all files containing the WHOLE word
hello(not words containing the string hello, such as nohello)
- Note: Make sure you read the man for grep and options
grep -lrw hello .
- Replace the word
hello(and only the word WHOLE word hello) to the word new in the file util.py
sed 's/\bhello\b/new/g' util.py
- Read the manual for sed (stream editor)
- Note: You can redirect the output with
>, or use the-ifor inplace - Now replace the word hello in EVERY file it occours, with one command
- First, read the man for
xargs grep -lrw hello . | xargs sed -i 's/\bhello\b/new/g'
- First, read the man for
- Intall a common web server, such as httpd, and start it. If on AWS, open port 80 (http) in AWS security group settings
sudo yum update
sudo yum install httpd
sudo systemctl start httpd
- Use
dig TXT +short o-o.myaddr.l.google.com @ns1.google.comto get public ip address, read man on dig! - Go to the ip address in browser
- Now read the man page for
netstat. Find out how to display listening ports. You should see port 80 (or http)
sudo netstat -lpn
- Stop httpd, then look at ports again
sudo systemctl stop httpd
netstat -lpn - If a server is running slow, you can use the
topcommand to view the most computationally expensive processes
- Network traffic
- If httpd is off, start it with
sudo systemctl start httpd - Lots of tools exists for network traffic, however, RedHat recommends
ss. One nice feature of netstat is the-ccontinious optionsudo netstat -ntcpwatch ss -mip - Note: ss does not have the continous option like netstat, watch is useful but does not output to a file. The commands below display to standard output, and save to a file.
echo "" > network.out; while true; do sleep 2; ss -mip >> network.out; tail -n5 network.out; done - What does the script above do with network.out?
- Finding log files through strace and file descriptors
- Sometimes logs are written to file descriptors, like standard output (1) or standard error (2)
- When a process makes a system call to open a file, it recieves a file descriptor that persist until the file is closed
- The httpd web server maintains an open connection to the access_log file. We will use
xargsandstraceto find the file!
ps aux | grep httpd | awk '{print"-p " $2}' | sudo xargs strace - Send a web request and look at the console. You should see a line that contains something similar to "write(8, "172.24.0.1 - - [25/Nov/2022:02:4"..., 194) = 194"
- The first argument to write is the file descriptor, which belongs to the PID within the brackets, lets suppose the PID is 145
- Obtain the file path of the file being written to with this
sudo ls -l /proc/145/fd - Just look for the path associated to the file descriptor written to to get the file path!
- git diff is the best tool for comparing files, but diff or comm work great. If the file is large, make sure to set the correct flags
- xargs is a powerfull tool for sending multiple arguments to a command from standard input.
- sed, grep, and awk are essential tools for searching/manipulating streams
- netstat and ss are great for viewing network activity of processes, while strace can show you all the files processes are interacting with
- BONUS CHALLENGE: use grep -P (perl regular expressions) to write a regex that can verify a password is more than 8 characters, has a number, captial letter, lower case letter, and special cahracter. Perl regular expressions will help you stand out in iinterviews!