CH02 — PRESENTATION

Linux Distributions & Uses

Linux is not one OS — it is a family. Explore the major distributions, understand their distinct philosophies and target audiences, compare package managers, and learn to choose the right distro for every scenario from desktop to enterprise server to penetration testing.

Slide 1 — What Is a Distribution?

Kernel + Tools + Package Manager + Desktop = Distribution

The Linux kernel is just the engine. A distribution (distro) assembles the kernel with a curated collection of userspace tools, libraries, a package manager, installation system, and optionally a desktop environment into a coherent, installable operating system.

Think of it this way: the Linux kernel is like a car engine. Ubuntu, Fedora, and Arch are different car manufacturers that all use the same engine family but produce very different vehicles — different interiors, feature sets, target drivers, and maintenance requirements.

There are over 600 active Linux distributions. Understanding the major "family trees" — Debian, Red Hat, and Arch — gives you a framework for navigating all of them.

Slide 2 — Major Distributions

Ubuntu

BEGINNER FRIENDLY

Based on Debian. The most popular desktop Linux. LTS (Long Term Support) releases every 2 years with 5-year support. Large community, excellent documentation. Default for cloud VMs (AWS, GCP, Azure). Uses APT package manager.

Debian

STABILITY

The grandfather of Ubuntu. Rock-solid stability — packages are thoroughly tested before inclusion. "Stable" branch may lag behind latest versions by 1-2 years. Used for servers, embedded systems, and as the base for 100+ other distros. APT package manager.

Fedora

CUTTING EDGE

Red Hat's upstream testing ground. Gets new technology first — Wayland, systemd, new kernel features appear in Fedora before anywhere else. Releases every 6 months. Ideal for developers wanting current tools. Uses DNF package manager. Gateway to RHEL.

Red Hat Enterprise (RHEL)

ENTERPRISE SERVER

The commercial enterprise Linux standard. Subscriptions include certified support, security patches, and compliance tools. Dominant in corporate data centers. RHCE/RHCSA certifications are industry gold standard. Uses YUM/DNF package manager.

Rocky Linux / AlmaLinux

RHEL CLONE

Free, community-maintained RHEL-compatible distributions created after CentOS was discontinued. Binary compatible with RHEL — same packages, same behavior, no subscription cost. Used by organizations needing RHEL compatibility without paid support.

Arch Linux

ADVANCED USERS

Minimalist, rolling-release. You build it from scratch — choose every component. No graphical installer. Exceptional documentation (Arch Wiki is the best Linux reference on the internet). Uses Pacman. For experienced users who want full control.

Kali Linux

SECURITY / PENTEST

Offensive Security's penetration testing distribution. Pre-loaded with 600+ security tools: Metasploit, nmap, Wireshark, Burp Suite, Aircrack-ng, John the Ripper. Based on Debian. Not intended for daily use — runs as root by default. The standard for ethical hacking.

Linux Mint

WINDOWS MIGRATION

Ubuntu-based with a traditional desktop (Cinnamon). Designed for Windows users migrating to Linux. Out-of-the-box multimedia support, familiar interface. Excellent hardware compatibility. Popular in education and home computing.

Raspberry Pi OS

IoT / EDUCATION

Formerly Raspbian. Optimized for the Raspberry Pi ARM hardware. Lightweight, includes educational tools (Scratch, Python IDE). Powers robotics projects, home automation, network monitoring, and IoT devices. Debian-based with Pi-specific drivers.

Slide 3 — Package Managers

How Linux Software Is Installed and Managed

A package manager is the Linux equivalent of an app store — but smarter. It handles downloading, installing, updating, and removing software along with all dependencies automatically. No manually hunting for installers or DLL hell.

APT

Debian, Ubuntu, Mint

sudo apt update sudo apt install nginx sudo apt upgrade sudo apt remove nginx apt search keyword

DNF / YUM

RHEL, Fedora, CentOS, Rocky

sudo dnf update sudo dnf install nginx sudo dnf upgrade sudo dnf remove nginx dnf search keyword

Pacman

Arch Linux, Manjaro

sudo pacman -Syu sudo pacman -S nginx sudo pacman -R nginx pacman -Ss keyword pacman -Qi package

# APT workflow example (Ubuntu/Debian)
$ sudo apt update              # Refresh package index from repositories
$ sudo apt upgrade             # Upgrade all installed packages
$ sudo apt install python3     # Install a specific package
$ sudo apt install -y nginx    # Install without confirmation prompt
$ apt show nginx               # Show package details and dependencies
$ sudo apt autoremove          # Remove orphaned dependencies
$ sudo apt purge nginx         # Remove package AND configuration files

# Repository management
$ cat /etc/apt/sources.list    # View configured repositories
$ sudo add-apt-repository ppa:user/repo  # Add PPA (Ubuntu)
    

Slide 4 — Choosing the Right Distribution

IF NEW TO LINUX

Choose Ubuntu LTS or Linux Mint. Largest community, most documentation, best hardware support, familiar enough to ease the learning curve without sacrificing Linux fundamentals.

IF DOING SECURITY / PENTEST

Start with Kali Linux in a VM. All tools pre-installed. Learn the tools, then transition to installing them on a general distro so you understand the underlying system. Kali as your daily driver is an anti-pattern.

IF SETTING UP A SERVER

Ubuntu Server LTS for ease and cloud compatibility. Debian Stable for maximum stability. Rocky Linux / AlmaLinux if RHEL compatibility is required (enterprise, regulated industries).

IF DEVELOPING SOFTWARE

Fedora Workstation (latest toolchains), Ubuntu LTS (stability + Docker support), or Pop!_OS (developer workflow, NVIDIA support). Match your distro to your deployment target.

IF STUDYING FOR RHCSA/RHCE

Use RHEL Developer Subscription (free) or Rocky Linux. AlmaLinux is also acceptable. Practice on what the exam tests — Fedora is too different.

IF BUILDING IoT / EMBEDDED

Raspberry Pi OS for Pi hardware. Yocto Project or Buildroot for custom embedded systems. Alpine Linux for minimal Docker containers (5MB base image vs. Ubuntu's 77MB).

Slide 5 — Linux Use Cases in the Real World

Desktop, Server, Cloud, Security, IoT, and More

Web Servers: Apache and Nginx run on Linux. When you browse any major website, you are communicating with Linux servers. 96% of web servers run Linux.

Cloud Computing: AWS, Azure, and Google Cloud are Linux underneath. Container orchestration (Kubernetes) runs on Linux nodes. Serverless functions execute in Linux containers.

Cybersecurity: Every major offensive security tool is Linux-native. Blue team tools (Splunk, ELK, Suricata, Zeek) run on Linux. Forensic investigation is primarily Linux-based.

Embedded / IoT: Android is Linux. Smart TVs, routers, industrial controllers, medical devices, and automotive systems run Linux kernels. The world's critical infrastructure runs on Linux.

THE KALI MISCONCEPTION

New security students often make Kali their daily-use OS. This is counterproductive. Kali is a specialized toolbox — it runs many services as root, has a minimized attack surface for offensive work, and was not designed for general productivity. The better path: learn Linux fundamentals on Ubuntu or Debian, understand how to install and configure security tools manually, then use Kali or Parrot in a VM when needed. A security professional who can only use Kali's pre-installed tools is less dangerous than one who can build their own toolkit on any Linux system.

Presentation Complete

Mark complete to save your progress and unlock the Chapter 2 quiz.

Progress saved. Head to the quiz to test your knowledge.