Launching a Shell

Where do shells come from? Sometimes Linux will launch one for you automatically. This is often the case when you log in over a network using ssh or a similar tool. The first significant thing you see is a shell prompt awaiting your command.

Other times, you have to launch a shell manually. This is common when using a graphical desktop full of icons and menus with no shell in sight. In such cases, you need a GUI application called a terminal or terminal program that runs shells in a window. The sidebar “Shell Versus Terminal” clarifies the difference between shells and terminals.

Every distro with a graphical desktop includes at least one terminal program, but you might have to hunt for it. Search for an application, icon, or menu item named Terminal, Konsole, xterm, gnome-terminal, uxterm, or something similar, and run it to open a terminal. Also try pressing Ctrl-Alt-t (hold the Control and Alt keys and press T), which opens a terminal in some environments.

Command-Line Warm-Up

To give you a feel for Linux, here are 10 simple commands to try right now in a shell. Type them exactly, including capital and small letters, spaces, and all symbols after the prompt. At the end of each command, press Enter.²

Display a calendar for November 2023:

→ cal nov 2023
   November 2023
Su Mo Tu We Th Fr Sa
          1  2  3  4
 5  6  7  8  9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30

List the contents of the /bin directory, which contains many commands:

→ ls /bin
bash      less        rm
bunzip2   lessecho    rmdir
busybox   lessfile    rnano
⋮

Count the number of visible items in your home directory (represented here by a variable, HOME, that I discuss later):

→ ls $HOME | wc -l
8                     Your value may be different

See how much space is used on a partition of your hard disk:

→ df -h /
Filesystem  Size  Used Avail Use% Mounted on
/dev/sdb1    78G   30G   48G  61% /

Watch the processes running on your computer (press “q” to quit):

→ top -d1

Print the file /etc/hosts, which contains names and addresses of computers, on your default printer if you have one set up:

→ lpr /etc/hosts

See how long you’ve been logged in:

→ last -1 $USER
smith  pts/7 :0  Tue Nov 10 20:12  still logged in

Download a file sample.pdf from this book’s website to your current directory, without needing a web browser:

→ curl -O https://linuxpocketguide.com/sample.pdf

See who owns the domain name oreilly.com (press the space bar to move forward page by page, and press “q” to quit):

→ whois oreilly.com | less
Domain Name: OREILLY.COM
Registrar: GODADDY.COM, LLC
⋮

Finally, clear your terminal or screen:

→ clear

Congratulations, you are now a Linux user!

Home Directories

Users’ personal files are usually kept in the directory /home (for ordinary users) or /root (for the superuser). Your home directory is typically /home/<your-username> (/home/smith, /home/funkydance, etc.). There are several ways to visit or refer to your home directory:

cd

With no arguments, the cd command returns you (i.e., sets the shell’s current directory) to your home directory.

HOME variable

The environment variable HOME (see “Shell Variables”) contains the name of your home directory:

→ echo $HOME                 Print the directory name
/home/smith
→ cd $HOME/linuxpocketguide  Visit a subdirectory

~

When used in place of a directory, a lone tilde is expanded by the shell to the name of your home directory.

→ echo ~                  Print the directory name
/home/smith
→ cd ~/linuxpocketguide   Visit a subdirectory

When the tilde is followed by a username (as in ~fred), the shell expands this string to be the user’s home directory:

→ cd ~fred       Visit Fred's home directory, if it exists
→ pwd            The “print working directory” command
/home/fred

System Directories

A Linux system has tens of thousands of system directories. They contain OS files, applications, documentation, and just about everything except personal user files (which typically live in /home).

Unless you’re a system administrator, you’ll rarely visit most system directories—but with a little knowledge you can understand or guess their purposes. Their names often contain three parts, as shown in Figure 1-4.

Figure 1-4. Directory scope, category, and application

Kernel-Related Directories

Some directories support the Linux kernel, the lowest-level part of the Linux OS:

/boot

Files for booting the system. The kernel lives here, typically in /boot/vmlinuz or a file of similar name.

/lost+found

Damaged files that were rescued by a disk recovery tool.

/proc

Files for currently running processes; for advanced users.

/sys

Files for kernel internals; for advanced users.

The files in /proc and /sys provide views into the running kernel and have special properties. Files in /proc always appear to be zero-sized, read-only, and dated now, but their contents magically contain information about the Linux kernel:

→ ls -lG /proc/version
-r--r--r--  1 root  0 Oct  3 22:55 /proc/version
→ cat /proc/version
Linux version 5.15.0-76-generic ...

Files in /sys also have misleading sizes and magical contents:

→ ls -lG /sys/power/state
-rw-r--r-- 1 root 4096 Jul  8 06:12 /sys/power/state
→ cat /sys/power/state
freeze mem disk

/proc and /sys are used mostly by system programs, but feel free to view them. Here are some examples:

→ ls -l /proc/self

File Permissions

A Linux system may have many user accounts. To maintain privacy and security, most users can access only some files on the system, not all. This access control is embodied in two questions:

Who has permission?

Every file and directory has an owner who can do anything they want with it. Typically, a file’s owner is the user who created it. A superuser can change a file’s owner.

Additionally, a predefined group of users may access a file. Groups are defined by the system administrator and I cover them in “Group Management”.

Finally, a file or directory can be opened to all users who have accounts on the system. You’ll also see this set of users called the world or simply other.

What kind of permission is granted?

File owners, groups, and the world may each have permission to read, write (modify), and execute (run) particular files. Permissions also extend to directories, which users may read (view files within the directory), write (create and delete files within the directory), and execute (enter the directory with cd).

To see the ownership and permissions of a file named myfile, run ls -l, described in “Basic File Operations”:

→ ls -l myfile
-rw-r--r-- 1 smith smith  1168 Oct 28  2015 myfile

To see the ownership and permissions of a directory named mydir, add the -d option:

→ ls -ld mydir
drwxr-x--- 3 smith smith  4096 Jan 08 15:02 mydir

In the output, the file permissions are the 10 leftmost characters, a string of r (read), w (write), x (execute), other letters, and dashes. For example:

-rwxr-x---

Here’s what these letters and symbols mean, briefly:

My example -rwxr-x--- means a file that can be read, written, and executed by the owner; read and executed by the group, but not written; and not accessed at all by other users. To change the owner, group, or permissions, use the commands chown, chgrp, and chmod, respectively, as described in “Properties of Files”.

Which Shell Are You Running?

This book assumes that your shell is bash. To identify your shell, run:

→ echo $SHELL
/bin/bash

If your shell isn’t bash and you wish to try it, run the command bash directly, because bash, like all shells, is just a program. (It’s located at /bin/bash.)

→ bash

Run the command exit when done to return to your regular shell. To change your default shell to bash, see the chsh command in “User Account Management”.

Pattern Matching

Pattern matching in the shell, sometimes called wildcards, is a shorthand to work with sets of files. For example, the pattern a* refers to files whose names begin with lowercase “a.” The shell expands a pattern into the full set of filenames it matches. If you run:

→ ls a* 
aardvark  adamantium  apple

the shell invisibly expands the pattern a* into the filenames that begin with “a” in your current directory, as if you had typed:

→ ls aardvark adamantium apple

ls never knows you used a pattern: it sees only the final list of filenames after expansion. This means every Linux program you launch from a shell, regardless of its origin, “works” with patterns and other shell features. This is a critically important point. A surprising number of Linux users think that programs expand their own file patterns on the command line. They don’t. The shell does it before the associated program even runs.

Patterns never match two special characters: a leading period and the directory slash (/). These characters must be given literally. A pattern like .bas* matches .bashrc, and /etc/*conf matches all filenames ending in conf in the /etc directory.

To match a literal dash in a character set, put it first or last so it’s not part of a range. To include a literal closing square bracket in the set, put it first in the set, or escape it with a backslash (\]). To include a ^ or ! symbol literally, place it somewhere other than first in the set, or escape it.

Brace Expansion

Similar to file patterns, expressions with curly braces also expand to become multiple arguments to a command. The comma-separated expression:

{bubble,quick,merge}

expands first to bubble, then quick, and finally merge within a command line, like this:

→ echo {bubble,quick,merge}sort.java
bubblesort.java quicksort.java mergesort.java

Curly braces can also expand to a sequence of values in a range, if you separate the endpoints of the range with two dots (..):

→ echo {3..12}
3 4 5 6 7 8 9 10 11 12
→ echo {A..E}
A B C D E
→ echo file{1..5}.py
file1.py file2.py file3.py file4.py file5.py

Shell Variables

You can define variables in a shell and assign them values:

→ MYVAR=3      Assign the value 3 to variable MYVAR

To refer to a value, simply place a dollar sign in front of the variable name:

→ echo $MYVAR
3

The shell defines some standard variables when you log in:

Variables and their values are limited, by default, to the shell that defines them. To make a variable and its value available to other programs your shell invokes (i.e., subprocesses), use the export command:

→ MYVAR=3
→ export MYVAR

or the shorthand:

→ export MYVAR=3

Your exported variable is now called an environment variable. To go further and make a variable available to every new shell you run, not just subprocesses of your current shell, place the variable definition beforehand in a shell configuration file; see “Tailoring Shell Behavior”.

To list a shell’s environment variables, run:

→ printenv

To set an environment variable just for the duration of one command, prepend variable=value to the command line:

→ printenv HOME
/home/smith
→ HOME=/home/sally printenv HOME
/home/sally
→ printenv HOME
/home/smith            The original value is unaffected

Search Path

Programs may be scattered all over the Linux filesystem, mostly in directories like /bin and /usr/bin. When you run a command that invokes a program, somehow the shell must locate the program in the filesystem:

→ who         The shell must locate the “who” program to run it

The shell finds the program by consulting the value of the environment variable PATH, which is a list of directories separated by colons. This list is called the shell’s search path.

→ echo $PATH
/usr/local/bin:/bin:/usr/bin    Search path with 3 directories

The shell looks for an executable file named who in each listed directory in sequence. If it locates who (say, in /usr/bin/who), it executes the program, and also caches the location for next time (run hash --help for more on caching). Otherwise, it reports a failure:

bash: who: command not found

To print a command’s location in your search path, run the type or which command:

→ type who                     The output may vary:
who is hashed (/usr/bin/who)   This means "who" is cached
who is /usr/bin/who            This means "who" isn't cached
→ which who
/usr/bin/who

To add directories to your shell’s search path temporarily, modify its PATH variable. For example, append /usr/sbin to your shell’s search path:

→ PATH=$PATH:/usr/sbin
→ echo $PATH
/usr/local/bin:/bin:/usr/bin:/usr/sbin

This change affects only the current shell. To make it stick, modify PATH in a bash configuration file, as explained in “Tailoring Shell Behavior”. Then log out and log back in, or run the configuration file by hand in each open shell window. For example:

→ . $HOME/.bashrc    If you modified $HOME/.bashrc

Aliases

The alias command defines a convenient shorthand for another command. For example, this alias:

→ alias ll='ls -lG'

defines a new command ll that runs ls -lG:

→ ll
total 436
-rw-r--r--    1 smith     3584 Oct 11 14:59 file1
-rwxr-xr-x    1 smith       72 Aug  6 23:04 file2
⋮

Define aliases in your ~/.bashrc file (see “Tailoring Shell Behavior”) to make them available to future shells.⁸ To list all your aliases, run alias. If you want more flexibility than aliases provide, see “Programming with Shell Scripts”, run info bash, and read up on “shell functions.”

Built-in Commands

Most Linux commands are programs in the Linux filesystem. Examples are wc and who, which usually live in the directory /usr/bin. The shell locates and runs them using the PATH variable, as I described in “Search Path”. Some other commands, however, are built-in features of the shell, known as built-in commands. You’ve seen several built-in commands in this chapter, such as cd, alias, and export. To determine whether a command is in the filesystem, a built-in command, or an alias, run the type command:

→ type wc cd ll             Print the types of these commands
wc is /usr/bin/wc           A program in the filesystem
cd is a shell builtin       A built-in shell command
ll is aliased to `ls -lG'   An alias

Input, Output, and Redirection

Most Linux commands accept input and/or produce output. Keyboard input is called standard input or stdin. Output to your display is called standard output or stdout. Error messages are treated specially and printed on standard error or stderr, which also is usually your display, but Linux separates stderr from stdout internally.⁹

The shell can redirect standard input, standard output, and standard error to and from files. In other words, any command that reads from standard input can have its input come from a file instead with the shell’s < operator:

→ command < infile

Likewise, any command that writes to standard output can write to a file instead:

→ command > outfile      Create/overwrite outfile
→ command >> outfile     Append to outfile

A command that writes to standard error can have its error output redirected to a file as well, leaving standard output unaffected:

→ command 2> errorfile

To redirect both standard output and standard error to files:

→ command > outfile 2> errorfile  Separate files
→ command &> outfile              Single file (preferred)
→ command >& outfile              Single file (less common)

Combined Commands

Bash lets you move beyond simple commands by combining multiple programs on a single command line.

→ command1 ; command2 ; command3

→ command1 && command2 && command3

→ command1 || command2 || command3

→ who | sort

→ who | sort | awk '{print $1}' | less

→ date +%Y                 Print the current year
2024
→ echo This year is `date +%Y`
This year is 2024

→ echo This year is $(date +%Y)
This year is 2024

→ echo Next year is $(expr $(date +%Y) + 1)
Next year is 2025

→ ls jpegexample
file1.jpg  file2.jpg  file3.jpg  ...
file1.txt  file2.txt  file3.txt  ...

→ cd jpegexample
→ ls *.jpg | cut -d. -f1 > /tmp/jpegs
→ ls *.txt | cut -d. -f1 > /tmp/texts
→ diff /tmp/jpegs /tmp/texts
5a6
> file6       No file6.jpg was found
8d8
< file9       No file9.txt was found

→ diff <(ls *.jpg|cut -d. -f1) <(ls *.txt|cut -d. -f1)

Preventing Evaluation

The shell evaluates every character of a command. To prevent evaluation, use quoting or escaping.

→ echo 'The variable HOME has value $HOME'
The variable HOME has value $HOME
→ echo "The variable HOME has value $HOME"
The variable HOME has value /home/smith

→ echo a*                    A file pattern
aardvark  adamantium  apple
→ echo a\*                   A literal asterisk
a*
→ echo "I live in $HOME"     Print a variable value
I live in /home/smith
→ echo "I live in \$HOME"    Print a literal dollar sign
I live in $HOME

→ echo "There is a tab between here^V    and here"
There is a tab between here      and here

Command-line Editing

Bash lets you edit the command line you’re working on, using keystrokes inspired by the text editors Emacs and Vim (see “Creating and Editing Files”). To enable command-line editing with Emacs keys, run this command (and place it in a bash configuration file to make it permanent):

→ set -o emacs

For vi (or Vim) keys:

→ set -o vi

Command History

A shell can recall previous commands and re-execute them, a feature called command history. Try these useful history-related commands and expressions:

→ !! <Enter>

→ ls z* 
zebra.txt  zipfile.zip  zookeeper
→ rm !$     Same as “rm z*”

→ ls myfile emptyfile hugefile
emptyfile  hugefile  myfile
→ wc !* 
      18      211     1168 myfile
       0        0        0 emptyfile
  333563  2737540 18577839 hugefile
  333581  2737751 18579007 total

Filename Completion

In the middle of typing a filename, press the Tab key and the shell automatically completes the filename for you. If several filenames match what you’ve entered so far, the shell beeps, indicating the match is ambiguous. Immediately press Tab a second time and the shell presents the alternatives. Try this:

→ cd /usr/bin
→ ls un<Tab><Tab>

The shell displays all files in /usr/bin that begin with un, such as uniq and unzip. Enter a few more characters to disambiguate your choice and press Tab again.

Shell Job Control

All Linux shells have job control: the ability to run commands in the background (multitasking behind the scenes) and foreground (the active process at your shell prompt). A job is simply the shell’s unit of work. When you run a command interactively, your current shell tracks it as a job. When the command completes, the associated job disappears. Jobs are at a higher level than Linux processes; the Linux OS knows nothing about them. They are merely constructs of the shell. Here is some important vocabulary about job control:

Foreground job

In a shell, a running job that occupies the shell prompt so you cannot run another command

Background job

In a shell, a running job that doesn’t occupy the prompt, so you can run other commands in the same shell

Suspend

To stop a foreground job temporarily

Resume

To cause a suspended job to start running in the foreground again

Disown

To tell the shell to stop tracking the job; the underlying processes continue to run

The built-in command jobs lists the jobs running in your current shell by number and name:

→ jobs
[1]-  Running         emacs myfile &    A background job
[2]+  Stopped         ssh example.com   A suspended job

The integer on the left is the job number, and the plus sign identifies the default job affected by the fg (foreground) and bg (background) commands.

Placed at the end of a command line, the ampersand causes the given command to run as a background job:

→ emacs myfile &
[2] 28090

The shell’s response includes the job number (2) and the process ID of the command (28090).

Typing ^Z in a shell, while a job runs in the foreground, suspends that job. It simply stops running, but its state is remembered:

→ sleep 10                  Waits for 10 seconds
^Z
[1]+  Stopped    sleep 10
→

Now you’re ready to run bg to put the sleep command into the background, or fg to resume it in the foreground. You could also leave it suspended and run other commands.

The built-in suspend command pauses the current shell if possible, as if you’d applied ^Z to the shell itself. For instance, if you create a superuser shell with sudo and want to return to your original shell, suspend pauses the superuser shell:

→ whoami
smith
→ sudo bash                  Run a superuser shell
[sudo] password: xxxxxxxx
# whoami
root
# suspend                    Suspend the superuser shell
[1]+  Stopped    sudo bash
→ whoami                     Back to the original shell
smith

The built-in command bg sends a suspended job to run in the background. With no arguments, bg operates on the most recently suspended job. To specify a particular job (shown by the jobs command), supply the job number or name preceded by a percent sign:

→ bg %2          Send job 2 to the background
→ bg %cat        Send job beginning with “cat” to the background

Some types of interactive jobs cannot remain in the background—for instance, if they are waiting for input. If you try, the shell suspends the job and displays:

[2]+  Stopped      command line here

Now resume the job (with fg) and continue.

The built-in command fg brings a suspended or backgrounded job into the foreground. With no arguments, it selects a job, usually the most recently suspended or backgrounded one. To specify a particular job (as shown by the jobs command), supply the job number or name preceded by a percent sign:

→ fg %2      Bring job 2 into the foreground
→ fg %cat    Bring job beginning with “cat” into the foreground

The built-in command disown tells your current shell to “forget” a job. The Linux processes behind the job keep running—you just can’t control them anymore with bg, fg, jobs, and other job-related commands. This is useful for long jobs that you don’t need to interact with, or jobs that should keep running after your shell exits. See also nohup in “Controlling Processes”.

→ disown %2         Forget job #2
→ disown %cat       Forget job beginning with “cat”
→ disown -h %2      Mark job #2 to keep running after shell exits
→ disown -r         Forget all running jobs
→ disown -a         Forget all jobs

Running Multiple Shells at Once

Job control can manage several commands at once, but only one can run in the foreground at a time. More powerfully, you can run multiple shells at once, each with a foreground command and any number of background commands.

If your Linux computer runs a window system such as KDE or GNOME, you can easily run many shells at the same time by opening multiple shell windows (see “Launching a Shell”). In addition, certain shell window programs, such as KDE’s konsole, can open multiple tabs within a single window, each one running a shell.

Even without a window system—say, over an SSH network connection—you can manage multiple shells at once. The tmux command simulates multiple shell windows in an ordinary ASCII terminal. Using special keystrokes, you can switch from one virtual window to another at will. (Another such program is screen, but tmux is better maintained and easier to configure.) To begin a session with tmux, run:

→ tmux

A new shell launches with an extra status bar at the bottom of the terminal, indicating that you’re running one virtual window. The tmux program provides 10 such windows by default, labeled from 0 to 9, that you may switch between. Each window runs a single shell at first, but you can split a window into multiple “panes” to display multiple shells at once. Try these keystrokes to get the hang of tmux:

1. In the current tmux window, run ls.

2. Press ^Bc (Ctrl-B, then press c). tmux displays a fresh shell prompt in a second virtual window. The status bar changes to show two virtual windows numbered 0 and 1.

3. In this second window, run a different command (say, df).

4. Press ^Bn and you’ll switch back to window 0, where your output from ls is now visible again.

5. Press ^Bn a few more times to toggle between the two virtual windows.

6. Press ^B% to split the current window into two panes side by side.

7. Press ^B" to split the current pane into two, vertically. You’re now viewing three shells in separate panes.

Most aspects of tmux are configurable in the file ~/.tmux_conf, even the choice of ^B as the prefix key. Here are common keystroke commands:

A few notes about running tmux:

• If shells within tmux are missing your aliases, variables, or other shell settings, that’s because tmux runs a login shell that does not source your .bashrc initialization file. It only sources your startup file (.bash_profile, .bash_login, or .profile). To correct this issue, append these lines to your startup file:

  # Source my .bashrc file
  if [ -f ~/.bashrc ]; then
    . ~/.bashrc
  fi

• If you run a text editor, tmux captures all Ctrl-B keystrokes, even those intended as editing commands. Press ^B^B to send a true Ctrl-B to your editor.

• Don’t run tmux locally on a graphical desktop; run multiple shell windows instead. It’s easier and avoids a problem: if you’ve configured your shell to run commands on logout (for example, in the file ~/.bash_logout), tmux’s shells will run those commands on exit, even though you haven’t logged out of the desktop. This may have unwanted effects on your desktop login session.

Killing a Command in Progress

To kill a foreground command immediately, press ^C. Here I kill the cat command as it prints a huge file:

→ cat hugefile
Lorem ipsum dolor sit amet, consectetur adipiscing
odio. Praesent libero. Sed cursus ante dapibus diam.
quis sem at nibh elementum blah blah blah ^C
→

To kill a background command, bring it into the foreground with fg and then press ^C:

→ sleep 50 &
[1] 12752
→ jobs
[1]-  Running       sleep 50 &
→ fg %1
sleep 50
^C
→

or run the kill command described in “Controlling Processes”. The keystroke ^C is a shell feature. It has no effect on programs that “catch” ^C and do not terminate, like text editors and GUI applications. Use kill for those.

Terminating a Shell

To terminate a shell, either run the exit command:

→ exit

or press ^D on a line by itself. The keystroke ^D sends an “end of file” signal to any program reading from standard input. This includes the shell itself.

Tailoring Shell Behavior

Several files in your home directory control the behavior of bash shells. The startup files .bash_profile, .bash_login, and .profile contain commands that run each time you log in. (Choose just one startup file and stick with it. I recommend .bash_profile because some other shells also use .profile.) Commands in the initialization file .bashrc run every time you launch an interactive shell, and commands in .bash_logout run each time you log out. All these files can set variables, run programs, print silly messages, or whatever you like. Other Linux shells use other configuration files as shown in Table 1-1.

Other shell configuration files live in /etc for system-wide control; see the respective manual page, or manpage, for each shell. All these configuration files are examples of shell scripts: executable files that contain shell commands. I cover this feature in more detail in “Programming with Shell Scripts”.