{"id":7,"date":"2026-06-15T09:00:00","date_gmt":"2026-06-15T09:00:00","guid":{"rendered":"http:\/\/backendside.com\/blog\/2026\/06\/15\/5-essential-linux-commands\/"},"modified":"2026-06-24T05:03:59","modified_gmt":"2026-06-24T05:03:59","slug":"5-essential-linux-commands","status":"publish","type":"post","link":"https:\/\/backendside.com\/blog\/2026\/06\/15\/5-essential-linux-commands\/","title":{"rendered":"5 Essential Linux Commands Every Admin Should Know"},"content":{"rendered":"

You can spend years learning Linux, but a surprisingly small set of commands carries you through the vast majority of day-to-day administration. Master these five — really master them, including the flags that matter — and you will troubleshoot faster, script with confidence, and spend less time reaching for the manual.<\/p>\n

\n
🔧 BackendSide Tool<\/div>\n

RemoteDesk — SSH, SFTP, RDP & VNC in One App<\/h4>\n

Before you can run any of these commands you need a solid connection. RemoteDesk<\/strong> is a modern Windows remote-access client that puts SSH, SFTP, RDP and VNC in one tabbed window — with an encrypted session vault, jump-host chains, and MobaXterm import so you can move all your existing servers over in minutes.<\/p>\n

Explore RemoteDesk →<\/a>\n<\/div>\n

1. grep — find anything, instantly<\/h2>\n

grep<\/code> searches text and command output for patterns. It is the single most useful command for digging through logs and config files.<\/p>\n

# find every line containing \"error\" under \/var\/log (case-insensitive)\ngrep -ri \"error\" \/var\/log\n\n# show line numbers, and 3 lines of context around each match\ngrep -n -C 3 \"timeout\" app.log\n\n# invert the match: show lines that do NOT contain \"debug\"\ngrep -v \"debug\" app.log\n\n# combine with a pipe to filter another command's output\nss -tan | grep ESTAB<\/code><\/pre>\n
Learn -i<\/code> (ignore case), -r<\/code> (recursive), -n<\/code> (line numbers), -v<\/code> (invert) and -E<\/code> (extended regex) and you can find almost anything.<\/p>\n
2. ss — what is listening and connected<\/h2>\n
ss<\/code> is the modern replacement for netstat<\/code> and is dramatically faster. Use it to answer “what is listening on this box?” and “who is connected?”<\/p>\n
# every listening TCP\/UDP port, with the owning process\nss -tulpn\n\n# all established TCP connections\nss -tan state established\n\n# connections to a specific port\nss -tn dst :443<\/code><\/pre>\n
3. journalctl — read the logs properly<\/h2>\n
On systemd-based distributions, journalctl<\/code> is how you read logs without hunting through files by hand.<\/p>\n
# follow a service's logs live (like tail -f)\njournalctl -u nginx -f\n\n# only errors and worse, since the last boot\njournalctl -p err -b\n\n# everything in the last hour\njournalctl --since \"1 hour ago\"<\/code><\/pre>\n
The combination of -u<\/code> (unit), -p<\/code> (priority), -b<\/code> (boot) and --since\/--until<\/code> lets you zero in on exactly the window you care about.<\/p>\n
4. rsync — fast, resumable copies and backups<\/h2>\n
rsync<\/code> copies only what changed, can resume interrupted transfers, and works seamlessly over SSH — making it the backbone of countless backup scripts.<\/p>\n
# mirror a directory locally, preserving permissions, with progress\nrsync -avh --progress \/data\/ \/backup\/data\/\n\n# copy to a remote server over SSH\nrsync -avz \/data\/ user@server:\/srv\/data\/\n\n# preview what WOULD change without touching anything\nrsync -avh --dry-run --delete \/data\/ \/backup\/data\/<\/code><\/pre>\n
Always test destructive options like --delete<\/code> with --dry-run<\/code> first.<\/p>\n
5. htop — understand load at a glance<\/h2>\n
htop<\/code> is an interactive, colour-coded view of processes, CPU and memory. Sort by CPU or memory, filter by name, view the process tree, and send signals (including kill) without leaving the screen. When a server is “slow”, htop<\/code> is usually the fastest way to see why.<\/p>\n
From running commands to watching continuously<\/h2>\n
These commands are perfect for answering questions in the moment. But you do not want to be running them by hand at 3 a.m. to discover a disk filled up an hour ago — that is where continuous monitoring comes in.<\/p>\n
\n
🔧 BackendSide Tool<\/div>\n
BackendSideMon — Real-Time Server Monitoring<\/h4>\n
Running commands by hand tells you how a server is doing right now<\/em>; BackendSideMon<\/strong> tells you around the clock. It tracks TCP\/UDP\/ICMP stats, processes and connections through a clean web dashboard, and runs as a service on both Windows and Linux — so problems surface before your users report them.<\/p>\n
  Explore BackendSideMon →<\/a>\n<\/div>\n
Key takeaways<\/h2>\n
    \n
  • grep<\/code> finds patterns in files and output — learn -i<\/code>, -r<\/code>, -n<\/code>, -v<\/code>.<\/li>\n
  • ss<\/code> shows listening ports and live connections, faster than netstat.<\/li>\n
  • journalctl<\/code> filters systemd logs by unit, priority, boot and time.<\/li>\n
  • rsync<\/code> gives you efficient, resumable copies and backups — test with --dry-run<\/code>.<\/li>\n
  • htop<\/code> shows what is eating CPU and memory in real time.<\/li>\n<\/ul>\n
    Get comfortable with these five and you will handle most of what a Linux server throws at you.<\/p>\n","protected":false},"excerpt":{"rendered":"
    Five Linux commands every administrator should master \u2014 grep, ss, journalctl, rsync and htop \u2014 with practical examples and the flags that matter.<\/p>\n","protected":false},"author":1,"featured_media":24,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-7","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/posts\/7","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/comments?post=7"}],"version-history":[{"count":1,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/posts\/7\/revisions"}],"predecessor-version":[{"id":19,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/posts\/7\/revisions\/19"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/media\/24"}],"wp:attachment":[{"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/media?parent=7"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/categories?post=7"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/backendside.com\/blog\/wp-json\/wp\/v2\/tags?post=7"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}