¥xÆW³Ì¤jµ{¦¡³]­pªÀ¸sºô¯¸
½u¤W¤H¼Æ
976
 
·|­ûÁ`¼Æ¡G245232
°Q½×¥DÃD¡G189102
Åwªï±z§K¶O¥[¤J·|­û
°Q½×°Ï¦Cªí >> ±MÄæ¤å³¹ >> Linux¾Ç²ßµ§°O
[]  
[§Ú­n¦^ÂÐ]
¦^À³¥DÃD ¥[¤J§ÚªºÃöª`¸ÜÃD ÀËÁ|¦¹½g°Q½× ±N´£°ÝªÌ¥[¤J­Ó¤H¶Â¦W³æ
Linux¾Ç²ßµ§°O
»ù­È : 0 QP  ÂI¾\¼Æ:942 ¦^À³¼Æ:0

¼Ó¥D

isaac
ªù¥~º~
0 1
14 0
µo°e¯¸¤º«H

1.­×§ï¨t统Àq认语¨¥设¸m
locale ¬d¬Ý¨t统ªºÀq认语¨¥设¸m
vi /etc/sysconfig/i18n
¨Ò¤l¡G
LANG="en_US.UTF-8"
SUPPORTED="zh_CN.GB18030:zh_CN:zh:en_US.UTF-8:en_US:en"
SYSFONT="latarcyrheb-sun16"


2.¬E载usb¡G
dmesg
cd /mnt
mkdir usb
mount /dev/sda usb
cd usb
¥X现usb内®e¡C


3.检测ip¦a§}«H®§
arp -n 检测ªºip¦a§}
会¥X现该ip¦a§}ªº详细«H®§¡A¥]¬Amac


4.nampÀˬd¹ïÀ³ip©Ò¶}ªºport
nmap -sT ipaddr ¡Ð¡ÐTCP connect() port scan
nmap -sU ipaddr ¡Ð¡ÐUDP port scan
nmap -sP ipaddr ¡Ð¡Ðping scan


5.¬dMAC¦a˯¹ïÀ³ºô¥d
# grep Macaddress /usr/share/ethereal/manuf


6.¸}¥»¦~¤ë¤é
#! /bin/sh
YMD=$(date +%y%m%d)
$YMD
将¦~¤ë¤é¥[¤J«ü©w¦a¤è¡C¡]¦p¤å¥ó¦W¥½§À¡^


7.dhcp¤À°tip给¨º¨ÇÉóªºlog
# /var/lib/dhcp/dhcpd.leases


8.¬d¬Ý连±µ¨ì¥t¥~¤@ºÝ¦a§}经过¦h¤Ö¸ô¥Ñ
# traceroute <hostname or ipaddr>


9.netstat§@¥Î
1)netstat -rn ¬d¬Ý¸ô¥Ñªí±¡况
2)netstat -a ¬d¬ÝÊI络连±µ±¡况
3)netstat -i ¬d¬ÝÊI络±µ¤f(ÊI¥d)°t¸m«H®§
4)netstat -s ¬d¬Ý统计¦U个¤£¦PÊI络协议
5)netstat -tulnp ¬d¬ÝªA务对应ªº监§vºÝ¤f


10.¬E载ºÏ盘¨t统©M¥~±µªº¦s储设备
1)fdisk -l ¬d¬Ý¦³¨º¨ÇºÏ盘¨t统©M¥~±µªº¦s储设备
2)mkdir /mnt/XXX XXX为设备¦W
3)mount §â»Ý­nªºmount¬E载¨ìlinux¨½­±
4)»Ý­n长´Á¬E载¤_linux¨t统¡A»Ý­n将¨ä写进¤À区ªí\etc\fstab

mount©R¥O¡G
®æ¦¡¡Gmount [-参数] [设备¦W称] [¬E载点]

¨ä¤¤±`¥Îªº参数¦³

-t<¤å¥ó¨t统类«¬> «ü©w设备ªº¤å¥ó¨t统类«¬¡A±`见ªº¦³¡G
minix linux³Ì¦­¨Ï¥Îªº¤å¥ó¨t统
ext2 linux¥H«e±`¥Îªº¤å¥ó¨t统
ext3 linux¥Ø«e±`¥Îªº¤å¥ó¨t统
msdos MS-DOSªºfat¡A´N¬Ofat16
vfat windows98±`¥Îªºfat32
nfs ÊI络¤å¥ó¨t统
iso9660 CD-ROM¥ú盘标­ã¤å¥ó¨t统
ntfs windows NT 2000ªº¤å¥ó¨t统
hpfs OS/2¤å¥ó¨t统
auto ¦Û动检测¤å¥ó¨t统

-o<选项> «ü©w¬E载¤å¥ó¨t统时ªº选项¡C¦³¨Ç¤]¥i¥Î¦b/etc/fstab¤¤¡C±`¥Îªº¦³
codepage=XXX ¥N码页
iocharset=XXX ¦r²Å¶°
ro ¥H¥u读¤è¦¡¬E载
rw ¥H读写¤è¦¡¬E载
nouser ¨Ï¤@¯ë¥Î户无ªk¬E载
user ¥i¥H让¤@¯ë¥Î户¬E载设
noauto¡A¨t统启动时¦}¤£¥ß§Y¦w装这个¤å¥ó¨t统¡A¦Ó¬Oª½¨ìºÞ²z员输¤Jmount©R¥O¤§¦Z¤~进¦æ¦w装

¥[¤Fcodepage=936©Miocharset=cp936参数¥H¤ä«ù¤¤¤å¤å¥ó¦W¡C
参数defaults实际¤W¥]§t¤F¤@组Àq认参数¡G

rw ¥H¥i读写¼Ò¦¡¬E载
suid 开启¥Î户ID©M¸s组ID设¸m¦ì
dev ¥i¸Ñ读¤å¥ó¨t统¤Wªº¦r²Å©Î区块设备
exec ¥i执¦æ¤G进¨î¤å¥ó
auto ¦Û动¬E载
nouser ¨Ï¤@¯ë¥Î户无ªk¬E载
async ¥H«D¦P¨B¤è¦¡执¦æ¤å¥ó¨t统ªº输¤J输¥X¾Þ§@

ÊI¤W§ä¨ìªº/etc/fstab¤å¥ó­×§ï¦Z¥i¥H¦Û动¬E载¡A¦}显¥Ü¤¤¤å¥Ø录¡A¤U­±´N¬O¨Ò¤l¡C
fstab®æ¦¡¡G
# Device Mountpoint FStype Options Dump Pass#

Device¡G¤@个设备ªº¦W称¡A´N¹³¤W¤@³¹ºÏ盘©R¦W规则©Ò´£¨ìªº¡]²Ä12.2节¡^¡C
mount-point¡G¤@个¥Ø录¡A¦b¥¦¤W­±¬E¤W¤å¥ó¨t统¡C
Fstype¡G­n¬E¤Wªº¤å¥ó¨t统类«¬¡CFreeBSDªºÀq认¤å¥ó¨t统¬Oufs¡C
Options¡G这个选项¬J¥i¥H¬Orw¥i读写¤å¥ó¨t统¡A¤]¥i¥H¬Oro¥u读¤å¥ó¨t统¡A¥i®ÚÕu¨ä¥L选项ªº­n¨D来©w义¡C¦b¨t统«ö顺§Ç启动过µ{¤¤¡A
¤@个´¶³qªº选项¬Onoauto¡A¥¦³q±`¤£会³Q¬E¤W¡C
Dump: ¦b¨t统DUMP时¬O§_»Ý­nBACKUPªº标§Ó¦ì¡A¨ä内©w­È¬O0
Pass: 设©w¦¹filesystem¬O§_­n¦b开Éó时°µcheckªº动§@,¥²­nªºcheck为1¤§¥~¡A¨ä¥¦¬Ò¥i视»Ý­n设©w¡A内©w­È¬O0

# /etc/fstab: static file system information.
#
#
proc /proc proc defaults 0 0
/dev/hdc2 / ext3 defaults,errors=remount-ro 0 1
/dev/hdc5 none swap sw 0 0
/dev/hdb /media/cdrom0 iso9660 ro,user,noauto 0 0
/dev/hda1 /mnt/win_c vfat codepage=936,iocharset=cp936 0 0
/dev/hda5 /mnt/win_d ntfs iocharset=cp936 0 0
/dev/hda6 /mnt/win_e ntfs iocharset=cp936 0 0
/dev/hda7 /mnt/win_f vfat codepage=936,iocharset=cp936 0 0
/dev/hda8 /mnt/win_g vfat codepage=936,iocharset=cp936 0 0
/dev/hdc1 /mnt/win_h vfat codepage=936,iocharset=cp936 0 0
/dev/cdrom /mnt/cdrom iso9660 noauto,codepage=936,iocharset=gb2312 0 0


11.¨t统¤é§Ó说©ú¡G
¨t统ªº¨º¨Ç讯®§¥H¤Î应该记录¦b¨º¨Ç档®×, ©Î¦p¦ó显¥Ü, ¬O¥Ñ /etc/syslog.conf 来±±¨îªº.
¥H¤U¬O RedHat ªº /var/log ¥Ø录¤¤¤@¨Ç­«­nªº记录档®×ªº说©ú.

1) /var/log/lastlog : 记录¨C个¨Ï¥ÎªÌ³Ìªñ签¤J¨t统ªº时间, ¦]¦¹当¨Ï¥ÎªÌ签¤J时, ´N会显¥Ü¨ä¤W¦¸签¤Jªº时间, ±z应该ª`·N¤@¤U这个时间,
­Y¤£¬O±z¤W¦¸签¤Jªº时间, ªí¥Ü±zªº帐号¥i¯à³Q¤H盗¥Î¤F. ¦¹档¥i¥Î /usr/bin/lastlog «ü¥O读¨ú.
2) /var/run/utmp : 记录¨C个¨Ï¥ÎªÌ签¤J¨t统ªº时间, who, users, finger µ¥«ü¥O会¬d这个档®×.
3) /var/log/wtmp : 记录¨C个¨Ï¥ÎªÌ签¤J¤Î签¥Xªº时间, last 这个«ü¥O会¬d这个档®×. 这个档®×¤]记录 shutdown ¤Î reboot ªº动§@.
4) /var/log/secure : 记录¨º¨Ç¯¸¥x连线进来, ¥H¤Î¨º¨Ç¦ì§}连线¥¢败.
5) /var/log/maillog : 记录 sendmail ¤Î pop µ¥¬Û关讯®§.
6) /var/log/cron : 记录 crontab ªº¬Û关讯®§
7) /var/log/dmesg : /bin/dmesg 会将这个档®×显¥Ü¥X来, ¥¦¬O开Éó时ªº画­±讯®§.
8) /var/log/xferlog : 记录¨º¨Ç¦ì§}来 ftp ®³¨ú¨º¨Ç档®×.
9) /var/log/messages : ¨t统¤j³¡¥÷ªº讯®§¬Ò记录¦b¦¹, ¥]¬A login, check password , failed login, ftp, su µ¥



12.nfsªA务¾¹简单·f«Ø¡G
1)启动¬Û应ªA务
service nfslock
service portmap start
service nfs

2)编辑exports¤å¥ó
设©w®æ¦¡¡G±ý¤À¨É¥X¥hªº¥Ø录 ¥DÉó¦W称1©ÎªÌIP1(参数1¡A参数2¡^ ¥DÉó¦W称2©ÎªÌIP2¡]参数3¡A参数4¡^
¨Ò¤l¡G/home/abc 192.168.0.0/24(ro) ·N«ä¤À¨É/home/abc这个¥Ø录¥h¥þÊI¬q¡A权­­¬O¥u读
¦P¤@个¥Ø录¤À¨É给两个¤£¦Pªº¥DÉó¡A¦ý´£¨Ñ给这两¥x¥DÉóªº权­­©M参数¬O¤£¦Pªº¡A©Ò¥H¤À别设©w两个¥DÉó±o¨ìªº权­­
¥i¥H设©wªº参数¥D­n¦³¥H¤U这¨Ç¡G
rw¡G¥i读写ªº权­­¡F
ro¡G¥u读ªº权­­¡F
no_root_squash¡Gµn¤J¨ìNFS¥DÉ󪺥Î户¦pªG¬OROOT¥Î户¡A¥L´N拥¦³ROOTªº权­­¡A¦¹参数«Ü¤£¦w¥þ¡A«Ø议¤£­n¨Ï¥Î¡C
root_squash¡G¦bµn¤J NFS ¥D¾÷¨Ï¥Î¤À¨É¤§¥Ø¿ýªº¨Ï¥ÎªÌ¦pªG¬O root ®É¡A¨º»ò³o­Ó¨Ï¥ÎªÌªºÅv­­±N³QÀ£ÁY¦¨¬°°Î¦W¨Ï¥ÎªÌ¡A
³q±`¥Lªº UID »P GID ³£·|Åܦ¨ nobody ¨º­Ó¨­¥÷¡F
all_squash¡G¤£ºÞµn陆NFS¥DÉ󪺥Î户¬O¤°¤\³£会³Q­«·s设©w为nobody¡C
anonuid¡G将µn¤JNFS¥DÉ󪺥Î户³£设©w¦¨«ü©wªºuser id,¦¹ID¥²须¦s¦b¤_/etc/passwd¤¤¡C
anongid¡G¦P anonuid ¡A¦ý¬OÅܦ¨ group ID ´N¬O¤F¡I
sync¡G资®Æ¦P¨B写¤J¦s储¾¹¤¤¡C
async¡G资®Æ会¥ý暂时¦s©ñ¦b内¦s¤¤¡A¤£会ª½±µ写¤Jµw盘¡C
insecure ¤¹许从这¥xÉó¾¹过来ªº«D±Â权访问¡C

3)exportfs
exportfs -rv<==¥þ³¡­«·s export ¤@¦¸
exportfs -au <==¥þ³¡³£¨ø载¤F

¨ãÊ^参数¡G
-a ¡G¥þ³¡mount©ÎªÌunmount /etc/exports¤¤ªº内®e
-r ¡G­«·smount /etc/exports¤¤¤À¨É¥X来ªº¥Ø录
-u ¡Gumount ¥Ø录
-v ¡G¦b export ªº?r­Ô¡A将详细ªº«H®§输¥X¨ì«Ì¹õ¤W

4)«È户ºÝ¾Þ§@showmount
showmout©R¥O对¤_NFSªº¾Þ§@©M¬d错¦³«Ü¤jªº帮§U¡A©Ò¥H§Ú们¥ý来¬Ý¤@¤Ushowmountªº¥Îªk
showmout
-a ¡G这个参数¬O¤@¯ë¦bNFS SERVER¤W¨Ï¥Î¡A¬O¥Î来显¥Ü¤w经mount¤W¥»Éónfs¥Ø录ªºclineÉ󾹡C
showmount -a ¥»Éóip
-e ¡G显¥Ü«ü©wªºNFS SERVER¤Wexport¥X来ªº¥Ø录¡C
showmount -e ip(nfsªA务¾¹ip)

5)«È户ºÝ¾Þ§@mount
®æ¦¡¡Gmount -t nfs hostname(orIP):/directory /mount/point
¨ãÊ^¨Ò¤l¡G
Linux: mount -t nfs hostname(orIP):/directory /mount/point
Solaris:mount -F nfs hostname(orIP):/directory /mount/point
BSD: mount hostname(orIP):/directory /mount/point
这Ïú¤â动¤èªkmount¥u¬O暂时mountªº¡A­«·s启动¦Z´N¤£会¦bmount¤W
¥i¥H¥Îdf©ÎªÌmount¬d¬Ýmount±¡况

6)让clientºÝ¨C¦¸开É󳣦Û动¬E¤WNFS
­×§ï/etc/fstab
®æ¦¡¡Ghostname(or ip):/directory /mount/point nfs rw 2 2



12.nisªA务¾¹简单·f«Ø¡G
nisServer
1)1)¥²须®M¥óªº¦w装ªº¥]¤Î·Q关设©w档
yp-tools ¡G´£¨Ñ NIS ¬ÛÃöªº¬d´M«ü¥O¥\¯à
ypbind ¡G´£¨Ñ NIS Client ºÝªº³]©w®M¥ó
ypserv ¡G´£¨Ñ NIS Server ºÝªº³]©w®M¥ó
portmap ¡G´N¬O RPC ¤@©w»Ý­nªº¸ê®Æ°Ú¡I

¬ÛÃöªº³]©wÀɬ°¡G
/etc/ypserv.conf ¡G´N¬O¥D­nªº³]©wÀɤF
/usr/sbin/ypserv ¡G¥D­nªºªA°È(daemon)°õ¦æÀÉ
/usr/sbin/rpc.yppasswdd¡GRPC ªºªA°ÈÅo¡I
/usr/sbin/rpc.ypxfrd ¡G¦P¼Ëªº¡A RPC ªºªA°ÈÅo¡I
/usr/lib/yp/ypinit ¡G«Ø¥ß NIS ¸ê®Æ®wªº°õ¦æµ{¦¡

2)±Ò°Ê portmap ¨Ã³]©w¶}¾÷®É±Ò°Ê
/etc/rc.d/init.d/portmap start()
netstat -tl (¬d¬Ý*:sunrpc¬O§_¦³¦¹项¦s¦b)
chkconfig --level 35 portmap on(³]©w portmap ¦b run-level ¬° 3, 5 ªº®É­Ô´N¶}¾÷®É±Ò°Ê)

3)±Ò°Ê time »P time-udp
vi /etc/xinetd.d/time
将disable = yes§ï¦¨disable = no
vi /etc/xinetd.d/time-udp
将disable = yes§ï¦¨disable = no
/etc/rc.d/init.d/xinetd restart
netstat -utl(¬d¬Ýtcp©Mudpªº*:time¬O§_¦³¦¹项¦s¦b)

4)«Ø¥ß NIS ªº»â°ì¦WºÙ ( nisdomainname )
nisdomainname <nis¦W称> (实际¤£»Ý­n¥[¤J<>)
vi /etc/rc.d/rc.local
/bin/nisdomainname <nis¦W称> (实际¤£»Ý­n¥[¤J<>)
vi /etc/sysconfig/network
NISDOMAIN=<nis¦W称> (实际¤£»Ý­n¥[¤J<>)

5)³]©w ypserv ªº³]©wÀÉ¡Gypserv.conf
¤W­±ªº参数°ò¥»¤£»Ý­n°t¸m
»Ý­n­×§ï¥H¤Uªº¦w¥þ©Ê设¸m¡G
®æ¦¡¬O¡G<¥D¾÷¦WºÙ/IP>:<ºô°ì¦WºÙ>:<¸ê®Æ®wÃþ§O>:<¦w¥þ©Ê>
1. ¥D¾÷¦WºÙ/IP¡G³o¸Ì¥i¥H³o¼Ë³]©w¡G192.168.1.0/255.255.255.0
2. ºô°ì¦WºÙ¡G³q±`³£³]©w¦¨¬° * §Y¥i¡I
3. ¸ê®Æ®wÃþ§O¡G¥i¥H¨Ï¥Î * ¨Óªí¥Ü©Ò¦³ªº¸ê®Æ®w¡I
4. ¦w¥þ©Ê¡G¥D­n¦³¤TºØ°Ñ¼Æ¡G
¡@¡@¡@¡@¡@¡@none ¡GµL½×¦p¦ó´N¬O¥i¥HµL±ø¥ó¶i¤J¥»¾÷¡F
¡@¡@¡@¡@¡@¡@port ¡G¶È¤¹³\ < 1024 ¥H¤Uªº port ¶i¤J¡F
¡@¡@¡@¡@¡@¡@deny ¡GµL½×¦p¦ó´N¬OÃö³¬¤£Åý¤H®aµn¤J¥D¾÷¡I
¨Ò¤l¡G
127.0.0.0/255.255.255.0 : * : * : port
192.168.10.0/255.255.255.0: * : * : none
* : * : * : deny


6)«Ø¥ßºô¸ô«H¥ô¸s²Õ
³o­Ó /etc/netgroup ÀÉ®×¥i¥H°O¿ý¦b§Ú­Ìºô°ì¸Ì­±³Q«H¥ôªº¸s¡A³o­ÓÀɮתº¤º®e·í¤¤¡A¨C¤@¦æ³£¦³¤T­ÓÄæ¦ì¡A¤À§O¥H³r¸¹¡y,¡z¹j¶}¡A®æ¦¡¬°¡G
<host>,<user>,<domain>
¥D¾÷,¨Ï¥ÎªÌ±b¸¹,»â°ì¦WºÙ

¨Æ¹ê¤W¡A¦pªG³o­ÓÀɮ׬O¡yªÅªº¡zªº¸Ü¡A¨º»ò¥NªíµÛ¡y¥þ³¡ªº¥D¾÷¡B±b¸¹»P»â°ì¦WºÙ³£±µ¨ü¡zªº·N«ä¡A
¦]¬°§Ú­Ì¤w¸g¦b /etc/ypserv.conf ¸ÌÀY³]©w¦n¤FÃö©ó¦w¥þªº¶µ¥Ø¤F¡A©Ò¥H³o­ÓÀÉ®×¥u­n«Ø¥ß§Y¥i(¥» ¨Ó¬O¤£¦s¦bªº¡I)
touch /etc/netgroup

7)±Ò°Ê ypserv ³o­Ó daemon ¡A¨Ã¥B³]©w¶}¾÷®É±Ò°Ê¡G
/etc/rc.d/init.d/ypserv start
/etc/rc.d/init.d/yppasswdd start
rpcinfo -u localhost ypserv (Æ[¹î¤@¤U¬O§_¯uªº¦³°Ê§@)
rpcinfo -u localhost yppasswdd (Æ[¹î¤@¤U¬O§_¯uªº¦³°Ê§@)
chkconfig --level 35 ypserv on
chkconfig --level 35 yppasswdd on (设©w开Éó启动)

8)»s§@¸ê®Æ®w¡B¨Ã­«·s±Ò°Ê ypserv »P yppasswd
/usr/lib/yp/ypinit -m
²Ä¤@个next host to add:¦Z­±ªº¦W称¬ONIS Server ªº¥D¾÷¦WºÙ
²Ä¤G个next host to add: <==¦b³o¸Ì«ö¤U[ctrl + d]¸õ¥X

Is this correct? [y/n: y] ¦b这¨½«öy
/etc/rc.d/init.d/ypserv restart
/etc/rc.d/init.d/yppasswdd restart

nisclient
1)¥²须®M¥óªº¦w装ªº¥]¤Î·Q关设©w档
yp-tools ¡G´£¨Ñ NIS ¬ÛÃöªº¬d´M«ü¥O¥\¯à
ypbind ¡G´£¨Ñ NIS Client ºÝªº³]©w®M¥ó

¬ÛÃöªº³]©wÀɬ°¡G
¡@/etc/yp.conf ¡G³]©w NIS Server ªº¥D¾÷¦WºÙ»P»â°ì¦WºÙ
/etc/hosts ¡G¦Ü¤Ö»Ý­n³]©w NIS server ¥D¾÷ IP ¹ïÀ³ªº¥D¾÷¦WºÙ³á¡I
/etc/passwd ¡G«ü©w»Ý­n¬d´Mªº¬O¤°»ò¡F
/etc/nsswitch.conf ¡G«ü©w­n¨Ï¥Î¤°»ò daemon ¬d´M±b¸¹»P±K½X¡C

2)±Ò°Ê portmap ¨Ã³]©w¶}¾÷®É±Ò°Ê
/etc/rc.d/init.d/portmap start()
netstat -tl (¬d¬Ý*:sunrpc¬O§_¦³¦¹项¦s¦b)
chkconfig --level 35 portmap on(³]©w portmap ¦b run-level ¬° 3, 5 ªº®É­Ô´N¶}¾÷®É±Ò°Ê)

3)³]©w NIS Server ªº IP ¹ïÀ³¥D¾÷¦WºÙ
vi /etc/hosts
ip¦a§} NIS Server ªº¥D¾÷¦WºÙ

4)³]©w NIS ªº domain »P NIS ªº¥D¾÷
NIS Server »P Client ªº NIS domain ¤@©w­n¬Û¦P
nisdomainname <nis¦W称> (实际¤£»Ý­n¥[¤J<>)
vi /etc/rc.d/rc.local
/bin/nisdomainname <nis¦W称> (实际¤£»Ý­n¥[¤J<>)
vi /etc/sysconfig/network
NISDOMAIN=<nis¦W称> (实际¤£»Ý­n¥[¤J<>)

«Ø¥ß NIS ¬d´Mªº¥D¾÷¦WºÙ¡G
vi /etc/yp.conf
# ¥[¤J³o¨â¦æ¡G
domain <nisdomain¦W称> (实际¤£»Ý­n¥[¤J<>)
ypserver <NIS Server ªº¥D¾÷¦WºÙ> (实际¤£»Ý­n¥[¤J<>)

5)­×§ï±K½XÅçÃÒªº¤è¦¡
vi /etc/passwd
¥Ñ©ó§Ú­Ì­n±N¸ê®Æ ³]©w¥H NIS Server ªº¸ê®Æ®w¨ÓÅçÃÒ¡A¦]¦¹¡A
¦b³o­ÓÀɮתº³Ì«á­±¥[¤J³o¤@¦æ:
+::::::
¦b + ¤§«á³sÄò¥[¤»­Ó¡y : ¡z¡A¨Ã¥B¤¤¶¡¨S¦³ªÅ¥Õ¦r¤¸¡I

¬d´M±K½Xªºµ{§Ç¡G
vi /etc/nsswitch.conf
# §ä¨ì¬ÛÃöªº°Ñ¼Æ¡A¨Ã§ï¦¨©³¤U³o¼Ë¡G
passwd: files nis nisplus
shadow: files nis nisplus
group: files nis nisplus
hosts: files nis dns
# ³o­ÓÀɮצb³]©w¤@¨Ç¸ê°Tªº¬d´Mµ{§Ç¡I¨º­Ó files «üªº¬O¥»¾÷ªº¬ÛÃöÀɮסA
# ¦Ü©ó nis «h¬O³z¹L NIS ¨Ó¶i¦æ¬d´M¡A¦Ü©ó nisplus «h¬O NIS+ ³o¬O¤ñ¸û·s
# ª©ªº NIS °Õ¡I¤£¹L¡A©x¤èºô¯¸¤W­±»¡¡A¥Ø«e³o­Óµo®iªº­pµe¤w¸g¼È°±¤F¡I
# 1. passwd: ´N¬O¨Ï¥ÎªÌ¬ÛÃö¸ê°T¬d´M¡A¤À§O¬° /etc/passwd, nis »P nisplus
# 2. shadow: ´N¬O¨Ï¥ÎªÌ±K½Xªº¬d´M¡A /etc/shadow, nis ¤Î nisplus
# 3. group: ´N¬O¨Ï¥ÎªÌªº¸s²Õ¸ê°T¬d´M¡A /etc/group, nis ¤Î nisplus
# 4. hosts: ´N¬O¥D¾÷¦WºÙ»PIP¹ïÀ³ªº¬d´M¡A/etc/hosts, nis ¤Î /etc/resolv.conf

6)±Ò°Ê ypbind »P³]©w¶}¾÷±Ò°Ê¡G
/etc/rc.d/init.d/ypbind start
rpcinfo -p localhost
chkconfig --level 35 ypbind on

7)¥Îyptest, ypwhich, ypcat验证nisclient
# yptest
# ypwhich -x
# ypcat -x

yptest ¡G¥D­n¦b´ú¸Õ yp ªº³]©w¤º®e¡B¸ê®Æ®w¤º®eµ¥µ¥©Ò¦³ NIS ¬ÛÃöªº¸ê®Æ´ú¸Õ¡F
ypwhich¡G¥D­n¦b´ú¸Õ NIS Client »P Server ¤§¶¡·¾³qªº¸ê®Æ®w (database) ¨ì©³¬O­þ´X­ÓÀɮסF
ypcat ¡G¥D­n¦b¨ú±o NIS Server ¤W­±ªº¨Ï¥ÎªÌ±K½X¸ê°T¡I


8)NIS »P NFS ªºµ²¦X³]©w
1. ³]©w NIS Server ¥D¾÷ªº NFS ¶}©ñ¥Ø¿ý¡G
vi /etc/exports
/home ip¡Bhostname(rw,async,no_root_squash)
¡@
exportfs -rv
/etc/rc.d/init.d/nfs start
chkconfig --level 35 nfs on
¡@
2. ³]©w NIS Client ªº mount ¸ê®Æ¡I
¥ý¥H root ªº¨­¥÷µn¤J¨ì NIS Client ¥D¾÷¤W­±¡G
mount -t nfs hostname(or ip):/home /home
¦pªG¨S¦³°ÝÃD¤F¡A´N±N¤W­±³o¤@¦æ¥[¤J /etc/rc.d/rc.local ·í¤¤


ª`·N¡G1.NIS »P NFS ªºµ²¦X³]©w¥X错问题¡G
¦pªG´£¥Ümount:hostname:/home failed,reason given by server permission denied.
这¥NªínfsclientÉó没¦³权­­访问nfsserÉó¡A»Ý­n¥hnfsserver­×§ï¡A处²z这个问题办ªk´N¬O
§â¬Û关ªºÉ󾹪ºip/¥DÉó¦W³£¦b/etc/hosts¤¤对应¦n¡AµM¦Z¦A­«载nfsªA务¡AµM¦Z¦b/etc/exports
¤¤¡A¥Îhostname来单独«ü¦VnfsclientÉó¡A这样´N¥i¥H¤F¡C

2.¦bÊI°ì¤W·s«Ø¤@个帐号¡A¦}¥Bnisclient¥i¥H¨Ï¥Î该帐号±K码ªº¥þ过µ{
1)¥ýµn¤J NIS Server ¥H useradd newaccount ¥H¤Î passwd newaccount ¨Ó·s¼W±b¸¹¡F
2)»s§@±K½X¸ê®Æ®w¡G¡y/usr/lib/yp/ypinit -m¡z
3)­«·s±Ò°Ê¡G¡y/etc/rc.d/init.d/ypserv restart ; /etc/rc.d/init.d/yppasswdd restart¡z¡C
¨C¦¸§ó°Ê NIS Server ¤W­±ªº¥Î¤á¸ê®Æ®É¡A«h NIS Server »Ý­n­«·s»s§@ DBM ¸ê®Æ®wÀɮפ~¦æ¡I

3. NIS Server/client ªº¬[ºc
1)NIS master/client ªº¯S¦â¬°¡G
2)NIS Server ªº master ¥ý±N¦Û¤vªº±b¸¹¡B±K½X¬ÛÃöÀÉ®×»s§@¦¨¬°¸ê®Æ®wÀÉ®×(database file)¡F
3)NIS Server ªº master ±N¦Û¤vªº¸ê®Æ®wÀɮ׶ǰe¨ì slave ¤W­±¡F
4)NIS Server ªº slave ±µ¦¬¨Ó¦Û¡y«H¥ôªº NIS Server master ¥D¾÷¡zªº¸ê®Æ«á¡A§ó·s¦Û¤vªº¸ê®Æ®w¡A¨Ï¦Û¤vªº¸ê®Æ®w»P master ¥D¾÷ªº¸ê®Æ¦P¨B¡F
5)ºô°ì·í¤¤ªº©Ò¦³ NIS Client ¬d´M NIS Server ®É¡A·|§ä´M¡y³Ì¥ý¦^À³ªº¨º¤@³¡ NIS ¥D¾÷ªº¸ê®Æ®w¤º®e¡z¡C

4.NIS ±Ò°Ê¤§«e»Ý­n¥ý±Ò°Ê¨º­ÓªA°È¡A§_«h´NµLªk±Ò°Ê¦¨¥\
¦]¬° NIS ¬O RPC Server ªº¤@ºØ¡A©Ò¥H¥²¶·­n±Ò°Ê portmap ³o­Ó daemon ¤~¦æ¡I




13.­­¨î¸ê®Æ§¨¤Uªº®e¶q¤£¥i¶W¹L100MB
dd if=/dev/zero of=100M.img bs=1024k count=100
mke2fs 100M.img
mount -t ext2 -o loop 100M.img /path/dir

©¹«á¸Ó /path/dir ´N¬O¥u¦³ 100M ªÅ¶¡¥i¥H¨Ï¥Î¡C
­ì²z¡G§â 100M ªºÀɮ׮榡¤Æ¦¨¬° ext2 fs¡AµM«á¥Î mount µ{¦¡¶Ç¤J loop °Ñ¼Æ¡A³z¹L loop kernel module ªº¤ä´©¡A
§â¸ÓÀÉ®×¼ÒÀÀÀ³¹ï¦¨¬° block device ¶µ¥Ø±¾¤J¨Ï¥Î¡C




14.iptables¤p°O¡I
--dport :¥ØªººÝ
--sport :¨Ó·½ºÝ
Client¬O¨Ó·½ºÝ¡AServer or Service¬O¥ØªººÝ
³]©w¤£Åý 22 port ³s½u¶i¤J¥D¾÷¤¤:
iptables -A INPUT -i eth0 -p tcp --dport 22 -j DROP
¦]¬°¤£½T©wClient¬O¥Î¤°»òport¨Ó³s¡A¥i¬O§A«o½T©w§AªºService Port­þ¤@­Ó¬O¶}µÛªº¡C©Ò¥H³oùإΠdport¡C





DEBIAN linux-----------------

1.apt-get --purge remove packages
·N«ä¬O§¹¥þ彻©³删°£¥]

2.apt-get update
apt-get upgrade
·N«ä¬O·j¯Á·s¥]¡A§ó·s¥]¡A©M¤w经¦w装¤_¨t统ªº软¥ó¤É级¡C

3.¦pªG·Q¦b¨t统启动时­Ô¦Û动¥[载±Ð¥»
¥i¥H¦b/etc/init.d/bootmisc.sh ¨½­±ªºexit 0«e¥[¤J¡C

4.apt-get install rcconf
¦w装¦¹软¥ó¥]¥Øªº¬O¥i¥HºÞ²z¨t统启动项¥Ø¡A设¸m启动©ÎªÌ¤£启动¡C

5.apt-get dist-upgrade
·N«ä¬O¨t统¤É级

6.apt-get install netselect
¦w装¦¹软¥ó¥]¬O为¤F选择¤@个¤U载³t«×§Öªº¥DÉó
netselect-apt stable
·j¯Á¥DÉó¡A¦}¦b当«e¥Ø录¤U¥Í¦¨¤@个sources.list¤å¥ó
¥i¥H将sources.listÂÐ盖­ì©lªºsources.list
­×§ïsources.list¦Z¡A¥²须­n运¦æ¤@¦¸apt-get update

7.apt-cache search packages
·N«ä¬O获±o软¥ó¥]¦W称
apt-cache show packages
·N«ä¬O获±o软¥ó¥]ªº详细«H®§

8.resolv.conf¤å¥ó¬O设¸mDNS¦a§}
nameserver XXX.XXX.XXX.XXX

9.interface¤å¥ó¬O设¸mÊI络¦a§}µ¥«H®§ªº
address ¬O设¸mIP¦a§}
network ¬O设¸m¦b¨º个ÊI络¤W¡A¤@¯ë¶ñÊI关
netmask ¬O设¸mÊI络±»码
gateway ¬O设¸mÊI关

10.¤É级内®Ö¨B骤¡G
1)apt-cache search kernel-image
2)apt-get install kernel.2.4.18.686
3)­×§ïlilo.conf
root=/dev/hdb2
initrd=/initrd.img
image=/boot/vmlinuz-2.4.18.686
label=Linux
read-only
#restricted
#alias=1
4)运¦ælilo -v -v -v
5)­«·s启动


11.ÊI络连±µ¡Geth0ªºmodule载¤J
insmod xxxxxx
xxxxx ¬°§Aªºethernet card ªº module name
¦b/lib/modules/kernel/driver/net

12.samba乱码问题¡I
¦bsmb.conf¥[¤Jdos charset = CP936
unix charset = CP936


¦pªG§A­n«ìÎ`­ì¦³ªºwindows¤Þ导¡A请进¨ìdos,运¦æfdisk /mbr§Y¥i²M°£¤Þ导区¤¤ªºgrub


sources.list:
deb ftp://debian.linux.org.tw/debian/ sarge main
deb-src ftp://debian.linux.org.tw/debian/ sarge main
deb http://non-us.debian.org/debian-non-US sarge/non-US main
deb-src http://non-us.debian.org/debian-non-US sarge/non-US main
__________________________________________________________________
deb http://debian.cn99.com/debian sarge main non-free contrib
deb http://debian.cn99.com/debian-non-US sarge/non-US main contrib non-free
deb http://debian.cn99.com/debian testing-proposed-updates main contrib non-free
deb http://debian.cn99.com/debian-non-US testing-proposed-updates/non-US main contrib non-free
deb http://debian.cn99.com/debian-security sarge/updates main contrib non-free
deb-src http://debian.cn99.com/debian sarge main non-free contrib
deb-src http://debian.cn99.com/debian-non-US sarge/non-US main contrib non-free
deb-src http://debian.cn99.com/debian testing-proposed-updates main contrib non-free
deb-src http://debian.cn99.com/debian-non-US testing-proposed-updates/non-US main contrib non-free
____________________________________________________________________________
deb ftp://mirrors.geekbone.org/debian sarge main non-free contrib
deb-src ftp://mirrors.geekbone.org/debian sarge main non-free contrib
deb ftp://mirrors.geekbone.org/debian-non-US sarge/non-US main contrib non-free
deb-src ftp://mirrors.geekbone.org/debian-non-US sarge/non-US main contrib non-free
deb ftp://mirrors.geekbone.org/debian proposed-updates main contrib non-free
deb-src ftp://mirrors.geekbone.org/debian proposed-updates main contrib non-free
deb ftp://mirrors.geekbone.org/debian-non-US proposed-updates/non-US main contrib non-free
deb-src ftp://mirrors.geekbone.org/debian-non-US proposed-updates/non-US main contrib non-free
deb ftp://mirrors.geekbone.org/debian-security sarge/updates main contrib non-free

·j´M¬ÛÃöTagsªº¤å³¹¡G [ Linux ] , [ Debian ] , [ ¾Ç²ßµ§°O ] ,
¥»½g¤å³¹µoªí©ó2007-03-26 09:51
§O§Ñ®½VP·PÁÂÀ°§U§Aªº¤H ·s¤â·|­ûÁ@¤@Á@
¥Ø«e©|µL¥ô¦ó¦^ÂÐ
   

¦^ÂÐ
¦p­n¦^À³,½Ð¥ýµn¤J.