作者 主題: Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL  (閱讀 14765 次)

0 會員 與 1 訪客 正在閱讀本文。

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
1.113.5 Setup and configure basic DNS services

port scan / portscan
port connect scan
http://solosoho.com/networksecurity/getportscan.html

***configure hostname lookups
vi /etc/named.conf
代碼: [選擇]

options {
        directory "/var/named";
                                                                               
        pid-file   "/var/run/named/named.pid";
                                                                               
        forward only;
        forwarders       {
                      168.95.1.1;
                      61.64.127.1;
             };
         allow-query { any; };
         allow-transfer { any; };
};
zone "." {
        type hint;
        file "root.hint";
};
zone "pattatech.com" {
        type master;
        file "named.pattatech.com";
update-policy {
        grant www subdomain pattatech.com. ANY;
};
                                                                               
};
 zone "100.168.192.in-addr.arpa" {
        type master;
        file "named.192.168.100";
};
                                                                               
key www {
        algorithm "hmac-md5";
        secret "PnMP8OLAIcTNYUtlExprAg==";
};
                                                                               
controls {
        inet 127.0.0.1 allow { localhost; } keys { localhost; };
};
                                                                               
zone "localhost" IN {
        type master;
        file "localhost.zone";
        allow-update { none; };
};
                                                                               
zone "0.0.127.in-addr.arpa" IN {
        type master;
        file "named.local";
        allow-update { none; };
};




vi /var/named.pattatech.com
代碼: [選擇]

$ORIGIN .
$TTL 600        ; 10 minutes
pattatech.com           IN SOA  pc1.pattatech.com. root.pc1.pattatech.com. (
                                200408324  ; serial
                                28800      ; refresh (8 hours) 自動query
                                14400      ; retry (4 hours) 如果query不到重試時間
                                720000     ; expire (1 week 1 day 8 hours) 重試都無回應,將所有record標為無效的record
                                86400      ; TTL (1 day)
                                )
                        NS      pc1.pattatech.com.
                        MX      10 mail.pattatech.com.
$ORIGIN pattatech.com.
dns                     CNAME   pc1
$TTL 0  ; 0 seconds
$TTL 600        ; 10 minutes
ftp                     CNAME   pc1
$TTL 0  ; 0 seconds
mail                    A       1.4.6.5
pc1                     A       1.4.6.5
pc41                    A       192.168.100.41
www                     A       218.160.137.35



vi /etc/rc.d/init.d/named  #RH9 only
代碼: [選擇]

/usr/sbin/rndc stop;false


service named restart
less /var/log/message|grep named

host -t SOA pattatech.com 192.168.100.1
host -t NS pattatech.com 192.168.100.1
host -t MX pattatech.com 192.168.100.1
dig +qr www.isc.org any -x 127.0.0.1 isc.org ns +noqr

dig  www.pattatech.com @192.168.100.1


***troubleshoot problems with local caching-only name server.  ???

vi /etc/named.conf

-------------resource -----------------

代碼: [選擇]

options {
        pid-file "/var/run/named/named.pid";  //我這裡?#93;定 pid-file !這個時候,
                       //請特別留意該路徑的所有人 ( owner )
                       //一定是要 named 這個人才行!
        forward only;             //只允許 forward!
        forwarders {
                168.95.1.1;          //我這裡使用 hinet 的 DNS !
                139.175.10.20;        //這個是 seednet 的 DNS !
        };
};


代碼: [選擇]
zone "." {               //看到了沒!?這個就是所謂的 zone 啦!
        type hint;           //選擇的 type 為 hint (root . 專用)
        file "named.root";       //?#93;定檔案的檔名!很多時候預?#93;為 named.root
};

// 再來則是定義出 localhost 的正反解了!很簡單啦!就是 127.0.0.1 而已
zone "localhost" {           //這個 zone 表示?#93;定檔的預?#93; domain name 為
                    //localhost 的意思喔!這裡請『特別』搞清楚!
        type master;          //主要的在本機的?#93;定檔!
        file "named.localhost";    //檔名!可以隨自己高興隨便取!
};
zone "0.0.127.in-addr.arpa" {     //反解的 IP 網段!那個 in-addr.arpa 是
                    //固定的 IP 段寫法!
        type master;
        file "named.127.0.0";
};

:roll: 單純的caching only nameservers只需此3個zone


-ls -al /var/run/named
drwxr-xr-x    2 named    named        4096 Dec  5 02:28 ./  <==注意這個 owner 喔!
-netstat -utln
-tail -n 15 /var/log/messages | grep named

----------resource from vbird.org-----------

troubleshooting
-ping 168.95.1.1
-nslookup

-nslookup /?   #on windows
-nslookup host server  #just lookup 'host' using 'server'

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/fdc12a63-df4e-49e7-94d6-177536b18eb6.mspx

 #find out the dns ip
 #type the domain name direct to the found dns
 www.google.com

-route PRINT #windows command



***understanding of the domain registration and DNS translation process.

delegation and tree structure


***understanding key differences in configuration files for bind 4 and bind 8

BIND v4
/etc/named.boot

代碼: [選擇]

directory /var/named
cache . root.hints
primary 0.0.127.IN-ADDR.ARPA 127.0.0.zone
primary localhost localhost.zone
secondary  ucsc.edu   128.114.129.22     ucsc.bak

#Each secondary entry lists the zone name that the server is secondary for, one or more IP addresses of a primary server for that zone, and the location of the backup zone file.


BIND v8

代碼: [選擇]

options {
        directory "/var/named";
};

zone "." {
        type hint;
        file "root.hints";
};

zone "0.0.127.IN-ADDR.ARPA" {
        type master;
        file "127.0.0.zone";
};

zone "localhost" {
        type master;
        file "localhost.zone";
};



***/etc/nsswitch.conf
較舊的系統使用/etc/host.conf
hosts: files dns


wget ftp://rs.internic.net/domain/named.root
rpm -ql caching-nameserver


***Change Record Standard Operation Process
1. Down TTL
2. Wait Last TTL expire
3. change record
4. Test by External client
5. Restore TTL

***TTL
1.RR;s TTL
2.option $TTL
3.SOA's TTL


***Master/Slave SOP
1.add all ns record on master including master & slaves
2.slave set masters tag
#vi /etc/named.conf
代碼: [選擇]

zone "test.cxm" {
type slave;
masters {192.168.100.1; };
file "slave.test.cxm";
};


3. restart master

4. change record & serial number

5. check whether the slave also update[/url]




***使用ipconfig 將dns的cache 清掉
ipconfig /flushdns

netman

  • 管理員
  • 俺是博士!
  • *****
  • 文章數: 17465
    • 檢視個人資料
    • http://www.study-area.org
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #1 於: 2004-09-13 11:54 »
若是 public 的 domain name,
最好不要混用 private IP 與 public IP ...
要不然, 可用 bind 9 的 view 功能.

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
1.113.1 Configure and manage inetd, xinetd, and related services

***configure which services are available through inetd

vi /etc/inetd.conf
代碼: [選擇]

#
<service_name> <socket_type> <proto> <flags> <user>  <server_path>      <args>

#When TCP wrappers is used, <server_path> specifies tcpd

ftp              stream       tcp    nowait   root    /user/sbin/tcpd   /user/sbin/in.ftpd
telnet           stream       tcp    nowait   root    /usr/sbin/tcpd    /usr/sbin/in.telnetd
#
pop-2            stream       tcp    nowait   root    /usr/sbin/tcpd    ipop2d
pop-3            stream       tcp    nowait   root    /usr/sbin/tcpd    ipop3d
imap             stream       tcp    nowait   root    /usr/sbin/tcpd    imapd
#
finger           stream       tcp    nowait   nobody  /usr/sbin/tcpd    /usr/sbin/in-fingerd
ident            stream       tcp    nowait   nobody  /usr/sbin/identd  identd -I
#
tftp             dgram        udp    wait     nobody  /usr/sbin/tcpd    /usr/sbin/in.tftpd /boot
bootps           dgram        udp    wait     root    /usr/sbin/bootpd  bootpd -i -t 120


#commented out to stop the service

$ killall -HUP inetd


***use tcpwrappers to allow or deny services on a host-by-host basis


vi /etc/hosts.allow
man -S 5 hosts_access

代碼: [選擇]

ftp: LOCAL


vi /etc/host.deny
代碼: [選擇]

ALL: ALL



***manually start, stop, and restart internet services

/etc/rc.d/init.d/xinetd start
/etc/init.d/xinet.d start
/etc/init.d/xinetd stop
/etc/init.d/xinetd restart

killall -HUP xinetd
servcie xinetd restart

***configure basic network services including telnet and ftp

--xconv.pl < /etc/inetd.conf > /etc/xinetd.conf


vi /etc/inetd.conf #inetd

vi /etc/xinetd.d/telnet #xinetd
代碼: [選擇]

service telnet
{
        disable = yes
        flags           = REUSE
        socket_type     = stream
        wait            = no
        user            = root
        server          = /usr/sbin/in.telnetd
        log_on_failure  += USERID
}



configure files almost in /etc directory

***/etc/services
define the port and name of services

***/ect/xinetd.log ??? no such file
??? /var/log/xinetd.log

代碼: [選擇]


defaults
{
        instances               = 60 #限制行程上限
[color=red]        log_type                = SYSLOG authpriv [/color]
[color=blue]        log_type                = FILE /var/log/xinetd.log [/color]

        log_on_success          = HOST PID
        log_on_failure          = HOST
        cps                     = 25 30 #最多可同時接受25連線,一但超過,該項服務會在30秒之內被停止
           no_access = 0.0.0.0/0 #效果相當於/etc/hosts.deny裡的ALL:ALL
        only_from = clients_list #only_from 效力高於no_access
        diabled = telnet ftp #disable 列出你想停用的每一項服務
}


小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
Lpi 102 Task Oriented (1)Topic 113: Networking Services
« 回覆 #3 於: 2004-09-14 06:03 »
***modify simple parameters in sendmail configuration files (including the "Smart Host" parameter, if necessary),

vi /etc/mail/sendmail.mc
代碼: [選擇]

DAEMON_OPTIONS(`Port=smtp,Addr=0.0.0.0, Name=MTA')dnl

TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')

define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')



m4 sendmail.mc > sendmail.cf

service sendmail restart

outloook client

pop3

mail.pattatech.com
mail.pattatech.com

user
password

外寄郵件需要驗證 打勾



vi /etc/sendmail.cf

Cw #localhostnmae
Fw #localhostfilelocation
AliasFile #alias path
ForwardPath #forward path
Djmailhub.abc.com #What is my fully qualified doamin name?
DMabc.com #What is my (outgoing) domainname to masquerade as?
Cwxyz.com mail.xyz.com sys1.xyz.com #For which domain do i accept e-mail
DSfirewall.xyz.com #Is there a "smart" MTA to which i can send all my non-local mail?

Kaccess hash -o /etc/mail/access.db  #For which domains do i relay?
O DaemonPortOptions=Port=smtp,Addr=127.0.0.1,Name=MTA  #What interfaces do I listen to?

***create mail aliases
vi /etc/alias
代碼: [選擇]

sysadmin: jdean, bsmith
harry: harry@newhost.xyz.com
joe-fax: | /usr/local/bin/fax-it ???


newalias

***manage the mail queue
mailq
mailstats
/var/spool/mail ??? how to delete
/var/spool/mqueue/ ???


***start and stop sendmail
/etc/init.d/sendmail [start|stop|restart]
chkconfig --level 35 sendmail on
ntsysv
服務組態設定


***configure mail forwarding

vi ~/.forward

代碼: [選擇]

fred@newhost.xyz.com
joe
| "cat >>~fred/forwarded-mail"


chattr +i ~fred/.forward #not allow fred to forward

vi /etc/mail/virtusertable
代碼: [選擇]


samiam@bovine.net colin

@yourdoamin.com %1@othercompany.com #ABC.com --> xyz.com

@yourdomain.com jschmoes #把整個doamin送到某個人的信箱中

bogus@yourdoamin.comerror:nouser NO SUCH USER


makemap hash vitusertable.db < vitusertable


***perform basic troubleshooting of sendmail ???


***checking for and closing open relay on the mailserver
vi /etc/mail/access


代碼: [選擇]

#LHS RHS
#FROM/TO ACTION
#IP/不完整IP/主機名稱/E-mail   RELAY/DISCARD/REJECT

192.168.100 RELAY
test.cxm RELAY
to:blah@your-domain.com.tw   REJECT
from:test@your-domain.com.tw  REJECT



makemap hash access.db < access

[root @test sendmail]# cd /usr/local/src/sendmail-8.12.7/cf/cf  ???
[root @test cf]# vi sendmail.mc ???


***/etc/aliases or /etc/mail/aliases

mail -s "test 002" sysop <</path/tofile
echo xxx | mail -s "test 002 " sysop
ls -la $MAIL
less ~/mbox

telnet localhost 25  #SMTP 寄信
helo localhost
mail from:"sysop@localhost"
rcpt to:root
data

  From:
  To:
  Subject:
   xxx

.

Quit

#vi /etc/xinetd/ipop3
disable = no
#service xinetd restart
#echo "got it" | mail -s "reply " sysop@localhost

telnet localhost 110 #POP3 收信
user sysop
pass 123456
retr #把信收下來
list #列出所有的信
dele #刪除所有的信
dele 1
quit

mail -f ~/mbox ???


***將mail留在exchange server上
控制台/郵件/電子郵件帳號/傳送郵件至下列位置/mailbox-xxx.xxx




1 local?
cat /etc/mail/local-host-names
hostname
sendmail.cf
grep '^Cw' sendmail.cf
localhost
grep '^fw' sendmail.cf
/etc/mail/local-host-names

2.rewirte (u)

2.1 /etc/alias
2.2 ~/.forward
2.3 /etc/mail/virtusertable (u@H)

grep 'AliasFile' sendmail.cf
/etc/alias
u:alias
root: sysop, root@otherhost
sysop: u1, u2, u3@other.host

grep 'forward' sendmail.cf
0 ForwardPath=$x/.forward
vi ~/.forward
root
chmod g-w ~/forward

www.sendmail.org/virtual-hosting.html

@yourdoamin.com %1@othercompany.com
ABC.com --> xyz.com

@yourdomain.com jschmoes
把整個doamin送到某個人的信箱中

bogus@yourdoamin.comerror:nouser NO SUCH USER

grep -i 'Virtuser' sendmail.cf
Kvirtuser hash -o /etc/mail/vitusertable ???

cd /etc/mail
vi /vitusertable
makemap hash vitusertable.db < vitusertable



3.Relay/access (8.9.x)
/etc/mail/access (source/destination)

4.m4

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
1.113.4 Properly manage the NFS, smb, and nmb daemons
« 回覆 #4 於: 2004-09-16 06:43 »
1.113.4 Properly manage the NFS, smb, and nmb daemons

***how to mount remote filesystems using NFS

1.create mount point
#mkdir
2. check sersrver
#rpcinfo -p pc1.pattatech.com
#showmount -e pc1.pattatech.com

3.mount server:
#mount -t nfs -o soft,bf,intr pc1.pattatech.com:/tmp /mnt/nfs
#mount

4.vi /etc/fstab
代碼: [選擇]

pc1.pattatech.com:/mnt/cdrom /mnt/cdrom  nfs ro,noauto 0,0
pc1.pattatech.com:/home /home nfs rw 0,0
pc41.pattatech.com:/data/budget /budget nfs rw 0,0



unix
代碼: [選擇]


#more /etc/fstab
root_domain#root /              advfs rw 0 0
/proc            /proc  procfs rw 0 0
usr_domain#usr   /usr           advfs rw 0 0
/dev/rz0b        swap1  ufs sw 0 2
sybase#sybase   /sybase         advfs rw 0 0
sybasetmp#sybasetmp     /sybasetmp      advfs rw 0 0
/sybase@dec2    /dec2   nfs ro,bg 0 0
/decsybase@dec3 /test nfs   rw,bg 0 0

***vi /etc/exports
/sybase
/sybasetmp -rw=dec2

***mount partition
mount -t nfs -o rw /decsybase@dec3 /test



***configure NFS for exporting local filesystems

0.1 rpm -qf `which portmap`
0.2 rpm -qa |grep nfs
0.3 apt-get install nfs-server
0.4 rpm -qf /etc/rc.d/inet.d/nfs

1.vi /etc/exports
[code]
#</dir/path> [hosts](option) [hosts(options)] ....
/tmp *.test.cxm(ro) pc11.test.cxm(rw) *.*.test.cxm(ro) *(ro) (ro) * (ro)

1.2.man 5 exports
/EXAMPLE


2. NFS server run?
#rpcinfo -p  #you must see the mountd and nfs to ensure the nfs is running

if it is running
#exportfs -rav

if it is not running
#service nfs start

3. showmount -e pc11.test.cxm

4. tail /var/log/messages



***start, stop, and restart the NFS server
#service nfs [start,stop,restart]

note: connetion refused

#service iptables stop

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
Re: 1.113.4 Properly manage the NFS, smb, and nmb daemons
« 回覆 #5 於: 2004-09-17 08:09 »
引述: "小徒兒"
1.113.4 Properly manage the NFS, smb, and nmb daemons

***how to mount remote filesystems using NFS

1.create mount point
#mkdir
2. check sersrver
#rpcinfo -p pc1.pattatech.com
#showmount -e pc1.pattatech.com

3.mount server:
#mount -t nfs -o soft,bf,intr pc1.pattatech.com:/tmp /mnt/nfs
#mount

4.vi /etc/fstab
代碼: [選擇]

pc1.pattatech.com:/mnt/cdrom /mnt/cdrom  nfs ro,noauto 0,0
pc1.pattatech.com:/home /home nfs rw 0,0
pc41.pattatech.com:/data/budget /budget nfs rw 0,0




***configure NFS for exporting local filesystems

0.1 rpm -qf `which portmap`
0.2 rpm -qa |grep nfs
0.3 apt-get install nfs-server
0.4 rpm -qf /etc/rc.d/inet.d/nfs

1.vi /etc/exports
[code]
#</dir/path> [hosts](option) [hosts(options)] ....
/tmp *.test.cxm(ro) pc11.test.cxm(rw) *.*.test.cxm(ro) *(ro) (ro) * (ro)

1.2.man 5 exports
/EXAMPLE


2. NFS server run?
#rpcinfo -p  #you must see the mountd and nfs to ensure the nfs is running

if it is running
#exportfs -rav

if it is not running
#service nfs start

3. showmount -e pc11.test.cxm

4. tail /var/log/messages



***start, stop, and restart the NFS server
#service nfs [start,stop,restart]

note: connetion refused

#service iptables stop



***install and configure Samba using the included GUI tools
vi /etc/xinetd.d/swat
[code]
#only_from = localhost
disable=no
[/code]

/etc/rc.d/init.d/xinetd restart
http://localhost:901 #swat

or 系統設定 伺服器設定 samba


***edit of the /etc/smb.conf
mkdir /upload
chmod o+rwx /upload


vi /etc/samba/smb.conf
[global]
 local master = yes
 security = share #or user domain server
[homes]
[printer] #/etc/print.bap
[myshare]
[upload]
   comment = upload
   path = /upload
   public = yes
   writable = yes
   printable = no

[tmp] #if you want to enable the tmp directory sharing,delete the comment mark " ; "

cat /etc/passwd | mksmbpasswd.sh > /etc/samba/smbpasswd
chmod 500 /etc/samba
chmod 600 /etc/samba/smbpasswd
smbpasswd sysop2

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
1.113.3 Operate and perform basic configuration of Apache
« 回覆 #6 於: 2004-09-20 14:31 »
1.113.3 Operate and perform basic configuration of Apache

telnet localhost 80
GET /index.html

by tarbal
代碼: [選擇]

/usr/local/apache/conf  
./configure --help|less
./configure --enable-mods-shared=all --enable-ssl=shared --enable-so | tee configure.out
ps -ef|grep httpd
vi /etc/rc.local  #Add "/usr/local/apache2/bin/apachctl start"
vi /root/.bash_profile #Add "/usr/local/apache2/bin" to the begin of PATH



useradd -d /usr/local/apache2/htdocs -s /sbin/nologin www
vi httpd.conf

代碼: [選擇]

User www
Group www


chown -R www.www /usr/local/apache2/htdocs/*
tail /usr/local/apache2/logs/access_log
tail /usr/local/apache2/logs/error_log

vi /usr/local/apache2/con/httpd.conf
代碼: [選擇]

Alias /etc/ "/etc/"



/etc/httpd/ # by rpm
which apachectl


***modify simple parameters in Apache configuration files
***httpd.conf
HostnameLookups on | off | double
ErrorLog filename | syslog[:facility]
Loglevel crit | warn
LogFormat format [nickname] #%h hostname
CustomLog file-or-pipe format-or-nickname
CustomLog logs/custom1 fullinfo #file nichname
PidFile /var/run/httpd.pid
ServerName www.ibm.com:80 #配合dns要設喔
Timeout number #connection 裡得一個request可以持續多久
KeepAlive on |off #是否是一個request一個connection,還是多個reqeust可以共用一個connection

KeepAliveTimeout 15 #如果在兩個request之間,間隔在15秒之內,那就保留這個connection

MaxkeepAliveRequest 100 #一個keepalive 的connection可以讓你最多提出多少請求

MinSpareServers number #最少保留幾個idle server

StartServers #第一次啟動多少的server,一直用掉不增加,直到低於minspareservers的數目會自動產生

MaxClients number #同時間可接受多少個connection

MaxRequestsPerChild number #一個形成可以回覆多少個request就要退休自動kill掉

DirectoryIndex filename [..]
Alias url-path directory-filename #Example:Alias /icons /usr/local/apache2/icons
Alias /ftp/ /usr/anon-ftp/files
ScriptAlias /cgi-bin/ /usr/local/apache2/cgi-bin #不允許顯士內容,只允許去執行

BrowserMatch regex envar[=value] [...] #BrowserMatch "MSIE 4\.ob2"

apachectl command#start,startssl,stop,restart,fullstatus,status,graceful,configtest,help



ServerRoot "/usr/local/apache2"
PidFile /var/log/httpd/httpd.pid
Timeout 300  
KeepAlive On
MaxKeepAliveRequests 200
KeepAliveTimeout 15


<IfModule prefork.c>
StartServers         5
MinSpareServers     5
MaxSpareServers    10
MaxClients        150
MaxRequestsPerChild  0
</IfModule>

Listen 80

User nobody
Group nogroup

ServerAdmin root@localhost

AddDefaultCharset Big5
LanguagePriority tw en da nl et fr de el it ja ko no pl pt pt-br ltz ca es sv

HostnameLookups Off   是否要查此連線ip的domain name, Syntax: HostnameLookups on | off | double

DocumentRoot "/usr/local/apache2/htdocs"

<Location /perl>
SetHandler       perl-script
PerlSendHeader   On
PerlHandler      Apache::Registry
Options          ExecCGI

</Location>

<Directory /usr/www/site.filter/htdocs>
DirectoryIndex index.zhtml
</Directory>

DirectoryIndex index.html index.htm index.php index.cgi index.php3 index.html.var index.html.en index.html.it index.html.ko index.html.big5

AddLanguage it .it
AddLanguage en .en
AddLanguage ko .ko
AddLanguage tw .big5

LanguagePriority tw en it ko

LoadModule php4_module        modules/libphp4.so
AddType application/x-httpd-php .php
AddHandler cgi-script .cgi .pl

ErrorLog /var/log/httpd/error_log
CustomLog /var/log/httpd/access_log combined


***start, stop, and restart httpd
***apachectl
***httpd

#byrpm
/etc/rc.d/init.d/httpd start  
/etc/rc.d/init.d/httpd stop

#bytarball
/usr/local/apache2/bin/apachectl start  
/usr/local/apache2/bin/apachectl stop  



***arrange for automatic restarting of httpd upon boot
#by rpm
chkconfig httpd on

#by tarball
/usr/local/apache2/bin/apachectl start >> /etc/rc.d/rc.local

-resource from vbird.org --

小圭

  • 憂鬱的高中生
  • ***
  • 文章數: 92
    • 檢視個人資料
    • 超好用網路行銷工具
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #7 於: 2004-09-21 21:30 »
*_(ro) 是代表不帶小數點的hostname嗎?

_ =>表示空格

忘了...
更多超好用網路行銷工具在這
請各位幫我在活動相片按讚哦:http://on.fb.me/1DREeVa

netman

  • 管理員
  • 俺是博士!
  • *****
  • 文章數: 17465
    • 檢視個人資料
    • http://www.study-area.org
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #8 於: 2004-09-21 23:02 »
* (ro) 是說:
給所有不帶點的 hostname 以 default options 以外, 還給任意 hostname 以 ro option .

小圭

  • 憂鬱的高中生
  • ***
  • 文章數: 92
    • 檢視個人資料
    • 超好用網路行銷工具
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #9 於: 2004-09-22 00:24 »
所以總結是...不管啥米..通通都是預設option (ro) 是吧? ^^
更多超好用網路行銷工具在這
請各位幫我在活動相片按讚哦:http://on.fb.me/1DREeVa

netman

  • 管理員
  • 俺是博士!
  • *****
  • 文章數: 17465
    • 檢視個人資料
    • http://www.study-area.org
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #10 於: 2004-09-22 06:52 »
*(ro)
* (ro)
畢竟是不同的:
前者只 export 給 *
但後者卻 export 給 everyone ...

小徒兒

  • 區域板主
  • 鑽研的研究生
  • *****
  • 文章數: 622
    • 檢視個人資料
Lpi 102 Task Oriented (1): Networking Services:NFS,DNS,MAIL
« 回覆 #11 於: 2004-09-28 00:39 »
引述: "netman"
*(ro)
* (ro)
畢竟是不同的:
前者只 export 給 *
但後者卻 export 給 everyone ...


*(ro) 前者只export read only permission 給 * (不含小數點的host)

* (ro) 後者會不含小數點的host就deny 所有的存取 , export read only permission給everyone