A Real-World Banking System Using useradd, chmod, ACLs, systemd, and More!
π What if you could manage 10,000 bank customers using only Linux commands?
In this hands-on project, youβll simulate a secure banking portal that handles users, enforces privacy, encrypts backups, and even triggers alerts on suspicious activity.
π¦ Scenario: Youβre the Sysadmin for a Bank
Your Mission:
- Give employees admin access (but safely).
- Ensure customers can only access their data.
- Maintain daily encrypted transaction logs.
- Detect fraudulent logins in real time.
Letβs turn a regular Linux machine into a secure bank portal. π»πΈ
## π Table of Contents
- π§ Step 1: Create Users & Groups
- π° Step 2: Secure the Banking Directories
- π Step 3: Monitor Suspicious Activity
- β° Step 4: Automate Encrypted Daily Backups
- π§ Step 5: Simulate a Customer Login
- π» Demo: Bank Customer Login Simulation
π§ Step 1: Create Users & Groups
π Tools: useradd, usermod, groups
# Employees and Customers
Similarly, Create Groups, Assign Users to groups
sudo groupadd employees
sudo groupadd customers
sudo usermod -aG employees manager teller
sudo usermod -aG customers john jane
β Why?
- Groups control permissions.
- Customers canβt peek into each otherβs data.
- Employees can manage transactions but not compromise privacy.
π° Step 2: Secure the Banking Directories
π Tools: mkdir, chmod, chown, setfacl
# Create folders
# Permissions
# Let employees read but not write customer data
π Why?
- chmod 700: Only the customer can access their folder.
- setfacl: Employees can view but not edit customer files.
- /bank/transactions: Editable only by employees.
π Step 3: Monitor Suspicious Activity
π Tools: grep, journalctl, find
# Failed logins (fraud detection)
sudo grep "Failed password" /var/log/auth.log
Similarly, You can Check Suspicious activity by these commands:
# Audit sudo usage
sudo journalctl -q | grep "sudo.*COMMAND"
# Detect changes in the last hour
sudo find /bank -type f -mmin -60 -ls
π¨ Why?
- Spot brute-force attacks and insider misuse.
- Know whoβs using sudo, when, and for what.
- Track recent changes to sensitive files.
β° Step 4: Automate Encrypted Daily Backups
π Tools: systemd, tar, gpg, cron
# 1. Backup script
# 2. Make executable
# 3. Systemd timer
# 4. Start the timer
ποΈ Why?
- Protects data even if the system is breached.
- Systemd ensures it runs reliablyβeven after reboot.
π§ Step 5: Simulate a Customer Login
π» Demo: Bank Customer Login Simulation
π Conclusion
With just a few Linux commands, you've built a:
β
Secure multi-user bank portal
β
Automated encrypted backups
β
Real-time monitoring system
π‘ Want to take it further? Add:
- Email alerts for suspicious logins
- Web frontend using Apache/Nginx
- PostgreSQL for storing balances
#30DaysLinuxChallenge #CloudWhisler
DevOps #Linux #RHCSA #Opensource #AWS #CloudComputing
Catch out by My LinkedIn profile
https://www.linkedin.com/in/rajpreet-gill-4569b4161/
Top comments (1)
been messing with user permissions before but tbh never thought about banking setups like this, feels like i'm missing a trick