A named value stored in the shell environment that affects how processes behave, commonly used to pass configuration like paths, credentials, and flags to applications.

The standard Linux directory that contains system-wide configuration files for the operating system and installed applications, editable by the root user.

A Linux directory that holds variable data files that change during normal system operation, including logs, spools, caches, and runtime data.

A command-line utility for creating, extracting, and managing archive files, often combined with compression tools like gzip or bzip2 for backup and distribution.

A fast and versatile file synchronization and transfer tool that efficiently copies files locally or over SSH, transferring only the differences between source and destination.

A special file that acts as a pointer to another file or directory, allowing the same resource to be accessed from multiple locations in the filesystem.

The standard logging system on Linux that collects messages from the kernel and applications, routing them to log files or remote logging servers based on facility and severity.

A utility that automates the rotation, compression, and deletion of log files to prevent them from filling up disk space, configured via /etc/logrotate.conf.

A high-performance system logging daemon that extends syslog with features like filtering, TCP/TLS transport, and forwarding logs to remote centralized servers.

A cryptographic network protocol for securely logging into and executing commands on remote servers over an unsecured network, replacing older protocols like Telnet.

A pair of cryptographic keys a private key kept locally and a public key placed on the remote server used to authenticate SSH connections without a password.

The main configuration file for the OpenSSH server daemon, controlling options such as permitted authentication methods, port, and allowed users.

A security system that monitors and controls incoming and outgoing network traffic based on predetermined rules, protecting the server from unauthorized access.

A user-friendly frontend for managing iptables firewall rules on Ubuntu and Debian-based systems, designed to simplify firewall configuration.

A powerful Linux command-line utility for configuring kernel-level packet filtering rules that control network traffic flowing through the system.

Command-line tools for displaying network connections, routing tables, and interface statistics. ss is the modern replacement for the deprecated netstat.

A hierarchical system that translates human-readable domain names into IP addresses, enabling servers and clients to locate each other on a network.

A local file that maps hostnames to IP addresses, taking precedence over DNS resolution and useful for custom hostname overrides or blocking domains.

The physical random-access memory available to the system for storing running processes and kernel data, directly affecting system performance and capacity.

A designated area on disk that the Linux kernel uses as an overflow for RAM when physical memory is exhausted, allowing the system to continue operating at reduced performance.

A metric that represents the average number of processes waiting for CPU time over the last 1, 5, and 15 minutes, used to assess overall system load.

A command that reports virtual memory statistics, including processes, memory, swap, I/O, and CPU activity, useful for diagnosing performance bottlenecks.

A diagnostic tool that traces system calls and signals made by a process, helping debug application issues and understand how a program interacts with the kernel.

Runtime configuration variables that control kernel behavior such as network stack settings, memory management, and security policies, managed via the sysctl command.

An instance of a running program on a Linux system, each identified by a unique Process ID (PID) and managed by the kernel for CPU and memory allocation.

A unique numerical identifier assigned by the kernel to every running process, used to reference and manage processes with commands like kill and nice.

The standard init system and service manager for most modern Linux distributions, responsible for bootstrapping the system and managing services, sockets, and timers.

The primary command-line tool for interacting with systemd, used to manage services starting, stopping, enabling, disabling, and reloading them.

A command-line tool for querying and viewing logs collected by the systemd journal, supporting filtering by service, time range, priority, and more.

Commands used to send signals to processes, most commonly SIGTERM (graceful stop) or SIGKILL (force stop), to terminate or control running processes.

Interactive command-line utilities that display real-time information about running processes, CPU usage, memory consumption, and system load.

A time-based job scheduler in Linux that runs commands or scripts automatically at specified intervals, configured through crontab files.

The configuration file and command used to define and manage cron jobs for a specific user, with each line specifying a schedule and command to run.

Mandatory Access Control (MAC) security frameworks for Linux that enforce fine-grained policies restricting what processes can access, going beyond standard file permissions.

A flexible authentication framework in Linux that decouples authentication logic from applications, allowing system-wide policies for login, password strength, and MFA.

A tool that automates the installation, upgrade, configuration, and removal of software packages on a Linux system, resolving dependencies automatically.

The package management tools for Debian-based Linux distributions like Ubuntu, used to install, update, upgrade, and remove software packages from repositories.

Package managers for Red Hat-based Linux distributions such as CentOS, RHEL, and Fedora. dnf is the modern replacement for yum with improved performance.

The method and structure used by the operating system to organize, store, and retrieve files on a storage device, defining how data is laid out on disk.

The process of making a filesystem accessible at a specific directory path (mount point) in the Linux directory tree so the OS and users can read and write to it.

A system configuration file that defines how disk partitions and storage devices are automatically mounted at boot time, including their mount points and options.

A command that reports the amount of disk space used and available on all mounted filesystems, helping identify storage capacity issues.

A command that estimates the disk space used by files and directories, useful for identifying large files and directories consuming storage.

A storage abstraction layer in Linux that allows flexible management of disk space by grouping physical volumes into volume groups and carving them into logical volumes that can be resized dynamically.

A distributed filesystem protocol that allows a server to share directories over a network, enabling client machines to mount and access remote storage as if it were local.

The core component of the Linux operating system that manages hardware resources, process scheduling, memory, and system calls, acting as a bridge between hardware and user-space applications.

A command-line interpreter that provides an interface between the user and the kernel, accepting commands, executing programs, and scripting automation tasks.

The most widely used Unix shell and scripting language on Linux systems, supporting variables, loops, conditionals, and functions for automation.

A text-based interface through which users interact with the shell and operating system, either physically on the server or virtually over a network connection.

A command-line tool for searching plain text for lines matching a pattern using regular expressions, widely used for filtering logs and configuration files.

A stream editor for filtering and transforming text, commonly used in scripts to perform find-and-replace operations on files or command output.

A versatile text-processing language used for pattern scanning and reporting, especially useful for parsing structured output and extracting specific fields.

The superuser account in Linux with UID 0 that has unrestricted access to all commands, files, and system resources. Should be used sparingly for security reasons.

A command that allows permitted users to execute commands as the root user or another user, as configured in the /etc/sudoers file, without logging in as root.

The administration of user accounts on a Linux system, including creating, modifying, disabling, and deleting users and managing their group memberships.

A collection of user accounts that share the same access permissions to files and resources, simplifying permission management across multiple users.

A set of rules in Linux that control who can read, write, or execute a file or directory, defined for three classes owner, group, and others.

A Linux command used to change the read, write, and execute permissions of files and directories for the owner, group, and others.

A Linux command used to change the ownership of a file or directory, assigning a new owner user and optionally a new group.

A plain text file that stores essential information about each user account on the system, including username, UID, GID, home directory, and default shell.