![]() ![]() ![]() ![]() |
|||||
|
|||||
¼Ó¥D isaac ![]()
![]() |
locale ¬d¬Ý¨t统ªºÀq认语¨¥设¸m vi /etc/sysconfig/i18n ¨Ò¤l¡G LANG="en_US.UTF-8" SUPPORTED="zh_CN.GB18030:zh_CN:zh:en_US.UTF-8:en_US:en" SYSFONT="latarcyrheb-sun16" 2.¬E载usb¡G dmesg cd /mnt mkdir usb mount /dev/sda usb cd usb ¥X现usb内®e¡C 3.检测ip¦a§}«H®§ arp -n 检测ªºip¦a§} 会¥X现该ip¦a§}ªº详细«H®§¡A¥]¬Amac 4.nampÀˬd¹ïÀ³ip©Ò¶}ªºport nmap -sT ipaddr ¡Ð¡ÐTCP connect() port scan nmap -sU ipaddr ¡Ð¡ÐUDP port scan nmap -sP ipaddr ¡Ð¡Ðping scan 5.¬dMAC¦a˯¹ïÀ³ºô¥d # grep Macaddress /usr/share/ethereal/manuf 6.¸}¥»¦~¤ë¤é #! /bin/sh YMD=$(date +%y%m%d) $YMD 将¦~¤ë¤é¥[¤J«ü©w¦a¤è¡C¡]¦p¤å¥ó¦W¥½§À¡^ 7.dhcp¤À°tip给¨º¨ÇÉóªºlog # /var/lib/dhcp/dhcpd.leases 8.¬d¬Ý连±µ¨ì¥t¥~¤@ºÝ¦a§}经过¦h¤Ö¸ô¥Ñ # traceroute <hostname or ipaddr> 9.netstat§@¥Î 1)netstat -rn ¬d¬Ý¸ô¥Ñªí±¡况 2)netstat -a ¬d¬ÝÊI络连±µ±¡况 3)netstat -i ¬d¬ÝÊI络±µ¤f(ÊI¥d)°t¸m«H®§ 4)netstat -s ¬d¬Ý统计¦U个¤£¦PÊI络协议 5)netstat -tulnp ¬d¬ÝªA务对应ªº监§vºÝ¤f 10.¬E载ºÏ盘¨t统©M¥~±µªº¦s储设备 1)fdisk -l ¬d¬Ý¦³¨º¨ÇºÏ盘¨t统©M¥~±µªº¦s储设备 2)mkdir /mnt/XXX XXX为设备¦W 3)mount §â»Ýnªºmount¬E载¨ìlinux¨½± 4)»Ýn长´Á¬E载¤_linux¨t统¡A»Ýn将¨ä写进¤À区ªí\etc\fstab mount©R¥O¡G ®æ¦¡¡Gmount [-参数] [设备¦W称] [¬E载点] ¨ä¤¤±`¥Îªº参数¦³ -t<¤å¥ó¨t统类«¬> «ü©w设备ªº¤å¥ó¨t统类«¬¡A±`见ªº¦³¡G minix linux³Ì¦¨Ï¥Îªº¤å¥ó¨t统 ext2 linux¥H«e±`¥Îªº¤å¥ó¨t统 ext3 linux¥Ø«e±`¥Îªº¤å¥ó¨t统 msdos MS-DOSªºfat¡A´N¬Ofat16 vfat windows98±`¥Îªºfat32 nfs ÊI络¤å¥ó¨t统 iso9660 CD-ROM¥ú盘标ã¤å¥ó¨t统 ntfs windows NT 2000ªº¤å¥ó¨t统 hpfs OS/2¤å¥ó¨t统 auto ¦Û动检测¤å¥ó¨t统 -o<选项> «ü©w¬E载¤å¥ó¨t统时ªº选项¡C¦³¨Ç¤]¥i¥Î¦b/etc/fstab¤¤¡C±`¥Îªº¦³ codepage=XXX ¥N码页 iocharset=XXX ¦r²Å¶° ro ¥H¥u读¤è¦¡¬E载 rw ¥H读写¤è¦¡¬E载 nouser ¨Ï¤@¯ë¥Î户无ªk¬E载 user ¥i¥H让¤@¯ë¥Î户¬E载设 noauto¡A¨t统启动时¦}¤£¥ß§Y¦w装这个¤å¥ó¨t统¡A¦Ó¬Oª½¨ìºÞ²z员输¤Jmount©R¥O¤§¦Z¤~进¦æ¦w装 ¥[¤Fcodepage=936©Miocharset=cp936参数¥H¤ä«ù¤¤¤å¤å¥ó¦W¡C 参数defaults实际¤W¥]§t¤F¤@组Àq认参数¡G rw ¥H¥i读写¼Ò¦¡¬E载 suid 开启¥Î户ID©M¸s组ID设¸m¦ì dev ¥i¸Ñ读¤å¥ó¨t统¤Wªº¦r²Å©Î区块设备 exec ¥i执¦æ¤G进¨î¤å¥ó auto ¦Û动¬E载 nouser ¨Ï¤@¯ë¥Î户无ªk¬E载 async ¥H«D¦P¨B¤è¦¡执¦æ¤å¥ó¨t统ªº输¤J输¥X¾Þ§@ ÊI¤W§ä¨ìªº/etc/fstab¤å¥ó×§ï¦Z¥i¥H¦Û动¬E载¡A¦}显¥Ü¤¤¤å¥Ø录¡A¤U±´N¬O¨Ò¤l¡C fstab®æ¦¡¡G # Device Mountpoint FStype Options Dump Pass# Device¡G¤@个设备ªº¦W称¡A´N¹³¤W¤@³¹ºÏ盘©R¦W规则©Ò´£¨ìªº¡]²Ä12.2节¡^¡C mount-point¡G¤@个¥Ø录¡A¦b¥¦¤W±¬E¤W¤å¥ó¨t统¡C Fstype¡Gn¬E¤Wªº¤å¥ó¨t统类«¬¡CFreeBSDªºÀq认¤å¥ó¨t统¬Oufs¡C Options¡G这个选项¬J¥i¥H¬Orw¥i读写¤å¥ó¨t统¡A¤]¥i¥H¬Oro¥u读¤å¥ó¨t统¡A¥i®ÚÕu¨ä¥L选项ªºn¨D来©w义¡C¦b¨t统«ö顺§Ç启动过µ{¤¤¡A ¤@个´¶³qªº选项¬Onoauto¡A¥¦³q±`¤£会³Q¬E¤W¡C Dump: ¦b¨t统DUMP时¬O§_»ÝnBACKUPªº标§Ó¦ì¡A¨ä内©wȬO0 Pass: 设©w¦¹filesystem¬O§_n¦b开Éó时°µcheckªº动§@,¥²nªºcheck为1¤§¥~¡A¨ä¥¦¬Ò¥i视»Ýn设©w¡A内©wȬO0 # /etc/fstab: static file system information. # # proc /proc proc defaults 0 0 /dev/hdc2 / ext3 defaults,errors=remount-ro 0 1 /dev/hdc5 none swap sw 0 0 /dev/hdb /media/cdrom0 iso9660 ro,user,noauto 0 0 /dev/hda1 /mnt/win_c vfat codepage=936,iocharset=cp936 0 0 /dev/hda5 /mnt/win_d ntfs iocharset=cp936 0 0 /dev/hda6 /mnt/win_e ntfs iocharset=cp936 0 0 /dev/hda7 /mnt/win_f vfat codepage=936,iocharset=cp936 0 0 /dev/hda8 /mnt/win_g vfat codepage=936,iocharset=cp936 0 0 /dev/hdc1 /mnt/win_h vfat codepage=936,iocharset=cp936 0 0 /dev/cdrom /mnt/cdrom iso9660 noauto,codepage=936,iocharset=gb2312 0 0 11.¨t统¤é§Ó说©ú¡G ¨t统ªº¨º¨Ç讯®§¥H¤Î应该记录¦b¨º¨Ç档®×, ©Î¦p¦ó显¥Ü, ¬O¥Ñ /etc/syslog.conf 来±±¨îªº. ¥H¤U¬O RedHat ªº /var/log ¥Ø录¤¤¤@¨Ç«nªº记录档®×ªº说©ú. 1) /var/log/lastlog : 记录¨C个¨Ï¥ÎªÌ³Ìªñ签¤J¨t统ªº时间, ¦]¦¹当¨Ï¥ÎªÌ签¤J时, ´N会显¥Ü¨ä¤W¦¸签¤Jªº时间, ±z应该ª`·N¤@¤U这个时间, Y¤£¬O±z¤W¦¸签¤Jªº时间, ªí¥Ü±zªº帐号¥i¯à³Q¤H盗¥Î¤F. ¦¹档¥i¥Î /usr/bin/lastlog «ü¥O读¨ú. 2) /var/run/utmp : 记录¨C个¨Ï¥ÎªÌ签¤J¨t统ªº时间, who, users, finger µ¥«ü¥O会¬d这个档®×. 3) /var/log/wtmp : 记录¨C个¨Ï¥ÎªÌ签¤J¤Î签¥Xªº时间, last 这个«ü¥O会¬d这个档®×. 这个档®×¤]记录 shutdown ¤Î reboot ªº动§@. 4) /var/log/secure : 记录¨º¨Ç¯¸¥x连线进来, ¥H¤Î¨º¨Ç¦ì§}连线¥¢败. 5) /var/log/maillog : 记录 sendmail ¤Î pop µ¥¬Û关讯®§. 6) /var/log/cron : 记录 crontab ªº¬Û关讯®§ 7) /var/log/dmesg : /bin/dmesg 会将这个档®×显¥Ü¥X来, ¥¦¬O开Éó时ªº画±讯®§. 8) /var/log/xferlog : 记录¨º¨Ç¦ì§}来 ftp ®³¨ú¨º¨Ç档®×. 9) /var/log/messages : ¨t统¤j³¡¥÷ªº讯®§¬Ò记录¦b¦¹, ¥]¬A login, check password , failed login, ftp, su µ¥ 12.nfsªA务¾¹简单·f«Ø¡G 1)启动¬Û应ªA务 service nfslock service portmap start service nfs 2)编辑exports¤å¥ó 设©w®æ¦¡¡G±ý¤À¨É¥X¥hªº¥Ø录 ¥DÉó¦W称1©ÎªÌIP1(参数1¡A参数2¡^ ¥DÉó¦W称2©ÎªÌIP2¡]参数3¡A参数4¡^ ¨Ò¤l¡G/home/abc 192.168.0.0/24(ro) ·N«ä¤À¨É/home/abc这个¥Ø录¥h¥þÊI¬q¡A权¬O¥u读 ¦P¤@个¥Ø录¤À¨É给两个¤£¦Pªº¥DÉó¡A¦ý´£¨Ñ给这两¥x¥DÉóªº权©M参数¬O¤£¦Pªº¡A©Ò¥H¤À别设©w两个¥DÉó±o¨ìªº权 ¥i¥H设©wªº参数¥Dn¦³¥H¤U这¨Ç¡G rw¡G¥i读写ªº权¡F ro¡G¥u读ªº权¡F no_root_squash¡Gµn¤J¨ìNFS¥DÉ󪺥Î户¦pªG¬OROOT¥Î户¡A¥L´N拥¦³ROOTªº权¡A¦¹参数«Ü¤£¦w¥þ¡A«Ø议¤£n¨Ï¥Î¡C root_squash¡G¦bµn¤J NFS ¥D¾÷¨Ï¥Î¤À¨É¤§¥Ø¿ýªº¨Ï¥ÎªÌ¦pªG¬O root ®É¡A¨º»ò³oӨϥΪ̪ºÅv±N³QÀ£ÁY¦¨¬°°Î¦W¨Ï¥ÎªÌ¡A ³q±`¥Lªº UID »P GID ³£·|Åܦ¨ nobody ¨ºÓ¨¥÷¡F all_squash¡G¤£ºÞµn陆NFS¥DÉ󪺥Î户¬O¤°¤\³£会³Q«·s设©w为nobody¡C anonuid¡G将µn¤JNFS¥DÉ󪺥Î户³£设©w¦¨«ü©wªºuser id,¦¹ID¥²须¦s¦b¤_/etc/passwd¤¤¡C anongid¡G¦P anonuid ¡A¦ý¬OÅܦ¨ group ID ´N¬O¤F¡I sync¡G资®Æ¦P¨B写¤J¦s储¾¹¤¤¡C async¡G资®Æ会¥ý暂时¦s©ñ¦b内¦s¤¤¡A¤£会ª½±µ写¤Jµw盘¡C insecure ¤¹许从这¥xÉó¾¹过来ªº«D±Â权访问¡C 3)exportfs exportfs -rv<==¥þ³¡«·s export ¤@¦¸ exportfs -au <==¥þ³¡³£¨ø载¤F ¨ãÊ^参数¡G -a ¡G¥þ³¡mount©ÎªÌunmount /etc/exports¤¤ªº内®e -r ¡G«·smount /etc/exports¤¤¤À¨É¥X来ªº¥Ø录 -u ¡Gumount ¥Ø录 -v ¡G¦b export ªº?rÔ¡A将详细ªº«H®§输¥X¨ì«Ì¹õ¤W 4)«È户ºÝ¾Þ§@showmount showmout©R¥O对¤_NFSªº¾Þ§@©M¬d错¦³«Ü¤jªº帮§U¡A©Ò¥H§Ú们¥ý来¬Ý¤@¤Ushowmountªº¥Îªk showmout -a ¡G这个参数¬O¤@¯ë¦bNFS SERVER¤W¨Ï¥Î¡A¬O¥Î来显¥Ü¤w经mount¤W¥»Éónfs¥Ø录ªºclineÉ󾹡C showmount -a ¥»Éóip -e ¡G显¥Ü«ü©wªºNFS SERVER¤Wexport¥X来ªº¥Ø录¡C showmount -e ip(nfsªA务¾¹ip) 5)«È户ºÝ¾Þ§@mount ®æ¦¡¡Gmount -t nfs hostname(orIP):/directory /mount/point ¨ãÊ^¨Ò¤l¡G Linux: mount -t nfs hostname(orIP):/directory /mount/point Solaris:mount -F nfs hostname(orIP):/directory /mount/point BSD: mount hostname(orIP):/directory /mount/point 这Ïú¤â动¤èªkmount¥u¬O暂时mountªº¡A«·s启动¦Z´N¤£会¦bmount¤W ¥i¥H¥Îdf©ÎªÌmount¬d¬Ýmount±¡况 6)让clientºÝ¨C¦¸开É󳣦Û动¬E¤WNFS ×§ï/etc/fstab ®æ¦¡¡Ghostname(or ip):/directory /mount/point nfs rw 2 2 12.nisªA务¾¹简单·f«Ø¡G nisServer 1)1)¥²须®M¥óªº¦w装ªº¥]¤Î·Q关设©w档 yp-tools ¡G´£¨Ñ NIS ¬ÛÃöªº¬d´M«ü¥O¥\¯à ypbind ¡G´£¨Ñ NIS Client ºÝªº³]©w®M¥ó ypserv ¡G´£¨Ñ NIS Server ºÝªº³]©w®M¥ó portmap ¡G´N¬O RPC ¤@©w»Ýnªº¸ê®Æ°Ú¡I ¬ÛÃöªº³]©wÀɬ°¡G /etc/ypserv.conf ¡G´N¬O¥Dnªº³]©wÀɤF /usr/sbin/ypserv ¡G¥DnªºªA°È(daemon)°õ¦æÀÉ /usr/sbin/rpc.yppasswdd¡GRPC ªºªA°ÈÅo¡I /usr/sbin/rpc.ypxfrd ¡G¦P¼Ëªº¡A RPC ªºªA°ÈÅo¡I /usr/lib/yp/ypinit ¡G«Ø¥ß NIS ¸ê®Æ®wªº°õ¦æµ{¦¡ 2)±Ò°Ê portmap ¨Ã³]©w¶}¾÷®É±Ò°Ê /etc/rc.d/init.d/portmap start() netstat -tl (¬d¬Ý*:sunrpc¬O§_¦³¦¹项¦s¦b) chkconfig --level 35 portmap on(³]©w portmap ¦b run-level ¬° 3, 5 ªº®ÉÔ´N¶}¾÷®É±Ò°Ê) 3)±Ò°Ê time »P time-udp vi /etc/xinetd.d/time 将disable = yes§ï¦¨disable = no vi /etc/xinetd.d/time-udp 将disable = yes§ï¦¨disable = no /etc/rc.d/init.d/xinetd restart netstat -utl(¬d¬Ýtcp©Mudpªº*:time¬O§_¦³¦¹项¦s¦b) 4)«Ø¥ß NIS ªº»â°ì¦WºÙ ( nisdomainname ) nisdomainname <nis¦W称> (实际¤£»Ýn¥[¤J<>) vi /etc/rc.d/rc.local /bin/nisdomainname <nis¦W称> (实际¤£»Ýn¥[¤J<>) vi /etc/sysconfig/network NISDOMAIN=<nis¦W称> (实际¤£»Ýn¥[¤J<>) 5)³]©w ypserv ªº³]©wÀÉ¡Gypserv.conf ¤W±ªº参数°ò¥»¤£»Ýn°t¸m »Ýn×§ï¥H¤Uªº¦w¥þ©Ê设¸m¡G ®æ¦¡¬O¡G<¥D¾÷¦WºÙ/IP>:<ºô°ì¦WºÙ>:<¸ê®Æ®wÃþ§O>:<¦w¥þ©Ê> 1. ¥D¾÷¦WºÙ/IP¡G³o¸Ì¥i¥H³o¼Ë³]©w¡G192.168.1.0/255.255.255.0 2. ºô°ì¦WºÙ¡G³q±`³£³]©w¦¨¬° * §Y¥i¡I 3. ¸ê®Æ®wÃþ§O¡G¥i¥H¨Ï¥Î * ¨Óªí¥Ü©Ò¦³ªº¸ê®Æ®w¡I 4. ¦w¥þ©Ê¡G¥Dn¦³¤TºØ°Ñ¼Æ¡G ¡@¡@¡@¡@¡@¡@none ¡GµL½×¦p¦ó´N¬O¥i¥HµL±ø¥ó¶i¤J¥»¾÷¡F ¡@¡@¡@¡@¡@¡@port ¡G¶È¤¹³\ < 1024 ¥H¤Uªº port ¶i¤J¡F ¡@¡@¡@¡@¡@¡@deny ¡GµL½×¦p¦ó´N¬OÃö³¬¤£Åý¤H®aµn¤J¥D¾÷¡I ¨Ò¤l¡G 127.0.0.0/255.255.255.0 : * : * : port 192.168.10.0/255.255.255.0: * : * : none * : * : * : deny 6)«Ø¥ßºô¸ô«H¥ô¸s²Õ ³oÓ /etc/netgroup ÀÉ®×¥i¥H°O¿ý¦b§Ú̺ô°ì¸Ì±³Q«H¥ôªº¸s¡A³oÓÀɮתº¤º®e·í¤¤¡A¨C¤@¦æ³£¦³¤TÓÄæ¦ì¡A¤À§O¥H³r¸¹¡y,¡z¹j¶}¡A®æ¦¡¬°¡G <host>,<user>,<domain> ¥D¾÷,¨Ï¥ÎªÌ±b¸¹,»â°ì¦WºÙ ¨Æ¹ê¤W¡A¦pªG³oÓÀɮ׬O¡yªÅªº¡zªº¸Ü¡A¨º»ò¥NªíµÛ¡y¥þ³¡ªº¥D¾÷¡B±b¸¹»P»â°ì¦WºÙ³£±µ¨ü¡zªº·N«ä¡A ¦]¬°§Ṳ́w¸g¦b /etc/ypserv.conf ¸ÌÀY³]©w¦n¤FÃö©ó¦w¥þªº¶µ¥Ø¤F¡A©Ò¥H³oÓÀÉ®×¥un«Ø¥ß§Y¥i(¥» ¨Ó¬O¤£¦s¦bªº¡I) touch /etc/netgroup 7)±Ò°Ê ypserv ³oÓ daemon ¡A¨Ã¥B³]©w¶}¾÷®É±Ò°Ê¡G /etc/rc.d/init.d/ypserv start /etc/rc.d/init.d/yppasswdd start rpcinfo -u localhost ypserv (Æ[¹î¤@¤U¬O§_¯uªº¦³°Ê§@) rpcinfo -u localhost yppasswdd (Æ[¹î¤@¤U¬O§_¯uªº¦³°Ê§@) chkconfig --level 35 ypserv on chkconfig --level 35 yppasswdd on (设©w开Éó启动) 8)»s§@¸ê®Æ®w¡B¨Ã«·s±Ò°Ê ypserv »P yppasswd /usr/lib/yp/ypinit -m ²Ä¤@个next host to add:¦Z±ªº¦W称¬ONIS Server ªº¥D¾÷¦WºÙ ²Ä¤G个next host to add: <==¦b³o¸Ì«ö¤U[ctrl + d]¸õ¥X Is this correct? [y/n: y] ¦b这¨½«öy /etc/rc.d/init.d/ypserv restart /etc/rc.d/init.d/yppasswdd restart nisclient 1)¥²须®M¥óªº¦w装ªº¥]¤Î·Q关设©w档 yp-tools ¡G´£¨Ñ NIS ¬ÛÃöªº¬d´M«ü¥O¥\¯à ypbind ¡G´£¨Ñ NIS Client ºÝªº³]©w®M¥ó ¬ÛÃöªº³]©wÀɬ°¡G ¡@/etc/yp.conf ¡G³]©w NIS Server ªº¥D¾÷¦WºÙ»P»â°ì¦WºÙ /etc/hosts ¡G¦Ü¤Ö»Ýn³]©w NIS server ¥D¾÷ IP ¹ïÀ³ªº¥D¾÷¦WºÙ³á¡I /etc/passwd ¡G«ü©w»Ýn¬d´Mªº¬O¤°»ò¡F /etc/nsswitch.conf ¡G«ü©wn¨Ï¥Î¤°»ò daemon ¬d´M±b¸¹»P±K½X¡C 2)±Ò°Ê portmap ¨Ã³]©w¶}¾÷®É±Ò°Ê /etc/rc.d/init.d/portmap start() netstat -tl (¬d¬Ý*:sunrpc¬O§_¦³¦¹项¦s¦b) chkconfig --level 35 portmap on(³]©w portmap ¦b run-level ¬° 3, 5 ªº®ÉÔ´N¶}¾÷®É±Ò°Ê) 3)³]©w NIS Server ªº IP ¹ïÀ³¥D¾÷¦WºÙ vi /etc/hosts ip¦a§} NIS Server ªº¥D¾÷¦WºÙ 4)³]©w NIS ªº domain »P NIS ªº¥D¾÷ NIS Server »P Client ªº NIS domain ¤@©wn¬Û¦P nisdomainname <nis¦W称> (实际¤£»Ýn¥[¤J<>) vi /etc/rc.d/rc.local /bin/nisdomainname <nis¦W称> (实际¤£»Ýn¥[¤J<>) vi /etc/sysconfig/network NISDOMAIN=<nis¦W称> (实际¤£»Ýn¥[¤J<>) «Ø¥ß NIS ¬d´Mªº¥D¾÷¦WºÙ¡G vi /etc/yp.conf # ¥[¤J³o¨â¦æ¡G domain <nisdomain¦W称> (实际¤£»Ýn¥[¤J<>) ypserver <NIS Server ªº¥D¾÷¦WºÙ> (实际¤£»Ýn¥[¤J<>) 5)×§ï±K½XÅçÃÒªº¤è¦¡ vi /etc/passwd ¥Ñ©ó§ÚÌn±N¸ê®Æ ³]©w¥H NIS Server ªº¸ê®Æ®w¨ÓÅçÃÒ¡A¦]¦¹¡A ¦b³oÓÀɮתº³Ì«á±¥[¤J³o¤@¦æ: +:::::: ¦b + ¤§«á³sÄò¥[¤»Ó¡y : ¡z¡A¨Ã¥B¤¤¶¡¨S¦³ªÅ¥Õ¦r¤¸¡I ¬d´M±K½Xªºµ{§Ç¡G vi /etc/nsswitch.conf # §ä¨ì¬ÛÃöªº°Ñ¼Æ¡A¨Ã§ï¦¨©³¤U³o¼Ë¡G passwd: files nis nisplus shadow: files nis nisplus group: files nis nisplus hosts: files nis dns # ³oÓÀɮצb³]©w¤@¨Ç¸ê°Tªº¬d´Mµ{§Ç¡I¨ºÓ files «üªº¬O¥»¾÷ªº¬ÛÃöÀɮסA # ¦Ü©ó nis «h¬O³z¹L NIS ¨Ó¶i¦æ¬d´M¡A¦Ü©ó nisplus «h¬O NIS+ ³o¬O¤ñ¸û·s # ª©ªº NIS °Õ¡I¤£¹L¡A©x¤èºô¯¸¤W±»¡¡A¥Ø«e³oÓµo®iªºpµe¤w¸g¼È°±¤F¡I # 1. passwd: ´N¬O¨Ï¥ÎªÌ¬ÛÃö¸ê°T¬d´M¡A¤À§O¬° /etc/passwd, nis »P nisplus # 2. shadow: ´N¬O¨Ï¥ÎªÌ±K½Xªº¬d´M¡A /etc/shadow, nis ¤Î nisplus # 3. group: ´N¬O¨Ï¥ÎªÌªº¸s²Õ¸ê°T¬d´M¡A /etc/group, nis ¤Î nisplus # 4. hosts: ´N¬O¥D¾÷¦WºÙ»PIP¹ïÀ³ªº¬d´M¡A/etc/hosts, nis ¤Î /etc/resolv.conf 6)±Ò°Ê ypbind »P³]©w¶}¾÷±Ò°Ê¡G /etc/rc.d/init.d/ypbind start rpcinfo -p localhost chkconfig --level 35 ypbind on 7)¥Îyptest, ypwhich, ypcat验证nisclient # yptest # ypwhich -x # ypcat -x yptest ¡G¥Dn¦b´ú¸Õ yp ªº³]©w¤º®e¡B¸ê®Æ®w¤º®eµ¥µ¥©Ò¦³ NIS ¬ÛÃöªº¸ê®Æ´ú¸Õ¡F ypwhich¡G¥Dn¦b´ú¸Õ NIS Client »P Server ¤§¶¡·¾³qªº¸ê®Æ®w (database) ¨ì©³¬Oþ´XÓÀɮסF ypcat ¡G¥Dn¦b¨ú±o NIS Server ¤W±ªº¨Ï¥ÎªÌ±K½X¸ê°T¡I 8)NIS »P NFS ªºµ²¦X³]©w 1. ³]©w NIS Server ¥D¾÷ªº NFS ¶}©ñ¥Ø¿ý¡G vi /etc/exports /home ip¡Bhostname(rw,async,no_root_squash) ¡@ exportfs -rv /etc/rc.d/init.d/nfs start chkconfig --level 35 nfs on ¡@ 2. ³]©w NIS Client ªº mount ¸ê®Æ¡I ¥ý¥H root ªº¨¥÷µn¤J¨ì NIS Client ¥D¾÷¤W±¡G mount -t nfs hostname(or ip):/home /home ¦pªG¨S¦³°ÝÃD¤F¡A´N±N¤W±³o¤@¦æ¥[¤J /etc/rc.d/rc.local ·í¤¤ ª`·N¡G1.NIS »P NFS ªºµ²¦X³]©w¥X错问题¡G ¦pªG´£¥Ümount:hostname:/home failed,reason given by server permission denied. 这¥NªínfsclientÉó没¦³权访问nfsserÉó¡A»Ýn¥hnfsserver×§ï¡A处²z这个问题办ªk´N¬O §â¬Û关ªºÉ󾹪ºip/¥DÉó¦W³£¦b/etc/hosts¤¤对应¦n¡AµM¦Z¦A«载nfsªA务¡AµM¦Z¦b/etc/exports ¤¤¡A¥Îhostname来单独«ü¦VnfsclientÉó¡A这样´N¥i¥H¤F¡C 2.¦bÊI°ì¤W·s«Ø¤@个帐号¡A¦}¥Bnisclient¥i¥H¨Ï¥Î该帐号±K码ªº¥þ过µ{ 1)¥ýµn¤J NIS Server ¥H useradd newaccount ¥H¤Î passwd newaccount ¨Ó·s¼W±b¸¹¡F 2)»s§@±K½X¸ê®Æ®w¡G¡y/usr/lib/yp/ypinit -m¡z 3)«·s±Ò°Ê¡G¡y/etc/rc.d/init.d/ypserv restart ; /etc/rc.d/init.d/yppasswdd restart¡z¡C ¨C¦¸§ó°Ê NIS Server ¤W±ªº¥Î¤á¸ê®Æ®É¡A«h NIS Server »Ýn«·s»s§@ DBM ¸ê®Æ®wÀɮפ~¦æ¡I 3. NIS Server/client ªº¬[ºc 1)NIS master/client ªº¯S¦â¬°¡G 2)NIS Server ªº master ¥ý±N¦Û¤vªº±b¸¹¡B±K½X¬ÛÃöÀÉ®×»s§@¦¨¬°¸ê®Æ®wÀÉ®×(database file)¡F 3)NIS Server ªº master ±N¦Û¤vªº¸ê®Æ®wÀɮ׶ǰe¨ì slave ¤W±¡F 4)NIS Server ªº slave ±µ¦¬¨Ó¦Û¡y«H¥ôªº NIS Server master ¥D¾÷¡zªº¸ê®Æ«á¡A§ó·s¦Û¤vªº¸ê®Æ®w¡A¨Ï¦Û¤vªº¸ê®Æ®w»P master ¥D¾÷ªº¸ê®Æ¦P¨B¡F 5)ºô°ì·í¤¤ªº©Ò¦³ NIS Client ¬d´M NIS Server ®É¡A·|§ä´M¡y³Ì¥ý¦^À³ªº¨º¤@³¡ NIS ¥D¾÷ªº¸ê®Æ®w¤º®e¡z¡C 4.NIS ±Ò°Ê¤§«e»Ýn¥ý±Ò°Ê¨ºÓªA°È¡A§_«h´NµLªk±Ò°Ê¦¨¥\ ¦]¬° NIS ¬O RPC Server ªº¤@ºØ¡A©Ò¥H¥²¶·n±Ò°Ê portmap ³oÓ daemon ¤~¦æ¡I 13.¨î¸ê®Æ§¨¤Uªº®e¶q¤£¥i¶W¹L100MB dd if=/dev/zero of=100M.img bs=1024k count=100 mke2fs 100M.img mount -t ext2 -o loop 100M.img /path/dir ©¹«á¸Ó /path/dir ´N¬O¥u¦³ 100M ªÅ¶¡¥i¥H¨Ï¥Î¡C ì²z¡G§â 100M ªºÀɮ׮榡¤Æ¦¨¬° ext2 fs¡AµM«á¥Î mount µ{¦¡¶Ç¤J loop °Ñ¼Æ¡A³z¹L loop kernel module ªº¤ä´©¡A §â¸ÓÀÉ®×¼ÒÀÀÀ³¹ï¦¨¬° block device ¶µ¥Ø±¾¤J¨Ï¥Î¡C 14.iptables¤p°O¡I --dport :¥ØªººÝ --sport :¨Ó·½ºÝ Client¬O¨Ó·½ºÝ¡AServer or Service¬O¥ØªººÝ ³]©w¤£Åý 22 port ³s½u¶i¤J¥D¾÷¤¤: iptables -A INPUT -i eth0 -p tcp --dport 22 -j DROP ¦]¬°¤£½T©wClient¬O¥Î¤°»òport¨Ó³s¡A¥i¬O§A«o½T©w§AªºService Portþ¤@Ó¬O¶}µÛªº¡C©Ò¥H³oùإΠdport¡C DEBIAN linux----------------- 1.apt-get --purge remove packages ·N«ä¬O§¹¥þ彻©³删°£¥] 2.apt-get update apt-get upgrade ·N«ä¬O·j¯Á·s¥]¡A§ó·s¥]¡A©M¤w经¦w装¤_¨t统ªº软¥ó¤É级¡C 3.¦pªG·Q¦b¨t统启动时Ô¦Û动¥[载±Ð¥» ¥i¥H¦b/etc/init.d/bootmisc.sh ¨½±ªºexit 0«e¥[¤J¡C 4.apt-get install rcconf ¦w装¦¹软¥ó¥]¥Øªº¬O¥i¥HºÞ²z¨t统启动项¥Ø¡A设¸m启动©ÎªÌ¤£启动¡C 5.apt-get dist-upgrade ·N«ä¬O¨t统¤É级 6.apt-get install netselect ¦w装¦¹软¥ó¥]¬O为¤F选择¤@个¤U载³t«×§Öªº¥DÉó netselect-apt stable ·j¯Á¥DÉó¡A¦}¦b当«e¥Ø录¤U¥Í¦¨¤@个sources.list¤å¥ó ¥i¥H将sources.listÂÐ盖ì©lªºsources.list ×§ïsources.list¦Z¡A¥²须n运¦æ¤@¦¸apt-get update 7.apt-cache search packages ·N«ä¬O获±o软¥ó¥]¦W称 apt-cache show packages ·N«ä¬O获±o软¥ó¥]ªº详细«H®§ 8.resolv.conf¤å¥ó¬O设¸mDNS¦a§} nameserver XXX.XXX.XXX.XXX 9.interface¤å¥ó¬O设¸mÊI络¦a§}µ¥«H®§ªº address ¬O设¸mIP¦a§} network ¬O设¸m¦b¨º个ÊI络¤W¡A¤@¯ë¶ñÊI关 netmask ¬O设¸mÊI络±»码 gateway ¬O设¸mÊI关 10.¤É级内®Ö¨B骤¡G 1)apt-cache search kernel-image 2)apt-get install kernel.2.4.18.686 3)×§ïlilo.conf root=/dev/hdb2 initrd=/initrd.img image=/boot/vmlinuz-2.4.18.686 label=Linux read-only #restricted #alias=1 4)运¦ælilo -v -v -v 5)«·s启动 11.ÊI络连±µ¡Geth0ªºmodule载¤J insmod xxxxxx xxxxx ¬°§Aªºethernet card ªº module name ¦b/lib/modules/kernel/driver/net 12.samba乱码问题¡I ¦bsmb.conf¥[¤Jdos charset = CP936 unix charset = CP936 ¦pªG§An«ìÎ`즳ªºwindows¤Þ导¡A请进¨ìdos,运¦æfdisk /mbr§Y¥i²M°£¤Þ导区¤¤ªºgrub sources.list: deb ftp://debian.linux.org.tw/debian/ sarge main deb-src ftp://debian.linux.org.tw/debian/ sarge main deb http://non-us.debian.org/debian-non-US sarge/non-US main deb-src http://non-us.debian.org/debian-non-US sarge/non-US main __________________________________________________________________ deb http://debian.cn99.com/debian sarge main non-free contrib deb http://debian.cn99.com/debian-non-US sarge/non-US main contrib non-free deb http://debian.cn99.com/debian testing-proposed-updates main contrib non-free deb http://debian.cn99.com/debian-non-US testing-proposed-updates/non-US main contrib non-free deb http://debian.cn99.com/debian-security sarge/updates main contrib non-free deb-src http://debian.cn99.com/debian sarge main non-free contrib deb-src http://debian.cn99.com/debian-non-US sarge/non-US main contrib non-free deb-src http://debian.cn99.com/debian testing-proposed-updates main contrib non-free deb-src http://debian.cn99.com/debian-non-US testing-proposed-updates/non-US main contrib non-free ____________________________________________________________________________ deb ftp://mirrors.geekbone.org/debian sarge main non-free contrib deb-src ftp://mirrors.geekbone.org/debian sarge main non-free contrib deb ftp://mirrors.geekbone.org/debian-non-US sarge/non-US main contrib non-free deb-src ftp://mirrors.geekbone.org/debian-non-US sarge/non-US main contrib non-free deb ftp://mirrors.geekbone.org/debian proposed-updates main contrib non-free deb-src ftp://mirrors.geekbone.org/debian proposed-updates main contrib non-free deb ftp://mirrors.geekbone.org/debian-non-US proposed-updates/non-US main contrib non-free deb-src ftp://mirrors.geekbone.org/debian-non-US proposed-updates/non-US main contrib non-free deb ftp://mirrors.geekbone.org/debian-security sarge/updates main contrib non-free |