Buchindex von Linux Server Hacks, Volume Two : Tips & Tools for Connecting, Monitoring, and Troubleshooting

- Weitere Informationen zu diesem Buch:
  Inhaltsverzeichnis | Index | Probekapitel | Kolophon | Rezensionen |

Linux Server Hacks, Volume Two
Tips & Tools for Connecting, Monitoring, and Troubleshooting

William von Hagen & Brian K. Jones

First Edition Januar 2006
ISBN 978-0-596-10082-7

Seiten 478

EUR29.00, SFR49.90

Weitere Informationen zu diesem Buch

Buch weiterempfehlen

Index

[ Symbols ], [ A ], [ B ], [ C ], [ D ], [ E ], [ F ], [ G ], [ H ], [ I ], [ J ], [ K ], [ L ], [ M ], [ N ], [ O ], [ P ], [ Q ], [ R ], [ S ], [ T ], [ U ], [ V ], [ W ], [ X ], [ Z ],

Symbols[ Top ]
/proc filesystem, 332-336

A [ Top ]
access
denying all, 7-8
IP addresses and, 283-286
accounts, user accounts
disabling, 2-4
distributed authentication and, 3
local authentication and, 2
ACLs (access control lists)
current, 237
installation, 234
permissions and, 233-239
setting, 237
support, 234
fstab, 234
kernel support, 234
user-space, 235
types, 235
utilities, 236
adopting Linux, tips for, 184-187
Afick, 301
amd automounter, 260-263
attributes, extended, 240-245
authentication
distributed, user account disabling, 3
introduction, 1
LDAP, client system update, 26
local, user account disabling, 2
login, Kerberos and, 34
NFS, 36-40
NIS, 36-40
PAMs, customization, 8-15
Samba, 17
winbindd, 19
Windows
debugging, 20
testing, 20
Windows domain controllers and, 16-21
Auto YaST, 159
autocomplete, bash shell and, 150-152
autofs, automounting NFS home directories, 257-259
automated installation, 159-164
TFTP server and, 161
automation
chkrootkit, 309
MRTG, 354
automounting, amd, 260-263
Autopsy, installation, 440

B [ Top ]
backups
commands, 223
disk-to-disk, 221-228
item selection, 227
removable media, 221
scripts for, 225
bad blocks, 408
bad disks, cloning, 412
bandwidth, resource hogs, 315
bash shell
autocomplete and, 150-152
BIND 9 name server configuration, 104
BIND, recent versions, 103
BIOS, settings, boot up and, 389
boot process, journaling filesystems and, 316-321
boot up
BIOS settings and, 389
single-user mode, 394
troubleshooting, 389-395
browsers, VNC server access, 54-56

C [ Top ]
centralized login, LDAP, 21-28
centralizing resources, NFS, 251-257
chrootkit
automating, 309
installation, 306
running, 306
cloning bad disks, 412
cloning systems, 214-220
cloning systems, partitions, 216
code examples, xviii
collaboration, Wikis and, 145-149
command line, PHP and, 173-176
commands
backups, 223
disown, 153-154
kill, 337-339
logger, 363
nohup, 153-154
process-control, 153-154
running on multiple servers, 144
script, 157-159
sysctl, 321-323
userdel, 3
common mistakes, 181-184
compiling kernel
distributed compiling daemon, 178
speed, 178
compression, VNC server and, 59
computer forensics, 438-445
configuration
amd, 261
BIND 9 name server, 104
DHCP, ISC DHCP server, 105
DHCP services, 99
Fluxbox, 329
fstab, extended attributes and, 241
grub.conf, editing, 149-150
HTTP printing, 132
Kerberos server, 30
kernel, extended attributes and, 241
MediaWiki, 147
NFS clients, 255
NFS server, 252
NFS service, 256
NX clients, 86
OpenLDAP, 23
printers, CUPS, 125
printing, 130
Samba, 17, 265-266
snort, 287
syslog, 375-378
Tripwire
execution file, 294
policy file, 296
configuration files, PAMs, 9
console
disconnecting during session, 155-156
server port, 164-167
console servers, 339-343
conventions in book, xviii
copy-on-write snapshot, LVM volume, 210-213
crashed disks
recovering from, 407-415
types, 408
CUPS (Common Unix Printing System), 97
HTTP printing, server-side configuration, 136
Macintosh centralization, 134-138
print server creation, 119-127
print testing, 124
printer configuration, 125
printers, defining new, 120
printing troubleshooting, 126
remote access configuration, 134
remote printer definition, 128
remote printing, enabling, 125, 139
secure printers, defining, 138-142
server, testing Mac printing, 137
Windows printing integration, 130-133

D [ Top ]
databases, LDAP, 4
DBAN (Darik's Boot and Nuke), 436
dd utility, cloning and, 214
ddrescue, 412
debugging, Windows authentication, 20
deleted files
recovering, 430-433
TSK and, 443
deleting files permanently, 433-435
deny access, 7
desktop
FreeNX, 83-96
NoMachine.com, 84
NX, 84
remote autostart, 60-68
remote Windows, 78
secure remote, 56-60, 82-93
SSH connections and, 176-178
telnet connections, 176-178
VNC, 47-57
DHCP (Dynamic Host Configuration Protocol), 97
automatic installation and, 160
Dynamic DNS integration, 102-108
ISC DHCP server configuration, 105
LTSP and, 73
PXE and, 160
server, installation, 99
services configuration, 99
setup, 98-102
diagnostics, disaster prevention, 346-351
directories
ACLs, setting, 237
attributes, extended attributes, 240-245
NFS, autofs and, 257-259
sharing, WebDAV, 276-279
directory permissions, file sharing and, 232
directory services, LDAP, 21
disaster prevention, 346-351
disk quotas, 246-250
disk space, freeing via truncating, 228-229
disks
crashed
recovering, 407-415
types of, 408
erasing hard, 435-438
unmounting, 400-403
disk-to-disk backups, 221-228
disown command, 153-154
distcc Knoppix, 179
distributed authentication, user account disabling, 3
DNS, Dynamic DNS integration, 102-108
documentation, manpages and, 167-170
domain controllers (Windows), authentication and, 16-20
domain, joining, 19
Dynamic DNS
DHCP integration, 102-108
DNS integration, 102-108

E [ Top ]
encoding mechanisms for VNC, 52
encryption
logs, 379
SSH and, VNC and, 56-60
erasing hard disks, 435-438
examples, code examples, xviii
ext3 journaling filesystem, 318
crashed disks, 407-415
lost+found, 422-430
partition tables, 405-407
extended attributes, 240-245
displaying, 242
fstab configuration, 241
kernel configuration, 241
removing, 244
searching for, 244
setting, 243
support, installation, 240
user-space applications, 242

F [ Top ]
FAI (Fully Automated Install), 159
FDS (Fedora Directory Server), 363
file sharing
directory permissions, 232
groups and, 229-233
permissions, ACLs, 233-239
protection modes, 230
Samba, 264-269
unmask and, 230
WebDAV and, 276-279
files
ACLs, setting, 237
attributes, extended attributes, 240-245
deleting permanently, 433-435
erasing, 433-435
password files, editing, 5-6
truncating, 228-229
filesystems
consistency resolution, 394
converting to journaling filesystems, 319
diagnostics, 409
ext3, 323
journals, 411
/proc, 332-336
recovering, 409-416
ReiserFS
recovery, 415-421
Fluxbox, 328
configuration, 329
Slit, 331
themes, 331
fonts, X Windows, 111-119
server setup, 113
forensics, 438-445
freeing disk space via truncating, 228-229
FreeNX, 82-89
server installation, 83
VNC server and, 89-91
Windows Terminal Services and, 91-92
fsck utility, 422-430
fstab ACL support, 234
fstab, extended attributes and, 241
fuser command, 402-403

G [ Top ]
Gentoo, 178
Ghost for Linux, 215
gpart, 405
GPL (General Public License), VNC and, 47
graphical updates, VNC viewers, 60
group entries, migrating to LDAP, 25
groups
file sharing and, 229-233
grubby command line tool, 149
grub.conf, editing, 149-150

H [ Top ]
hacker, definition, xv
hacking, definition, xiv
hard disk, erasing, 435-438
hosts, monitoring multiple, 354-356
hosts.allow, 283
hosts.deny, 283
hot swapping, 204
HTTP printing server-side configuration, 132
CUPS, 136

I [ Top ]
inetd
service streamlining, 282
Xvnc integration, 61
init process, 398
init=bin/sh, 398
installation
ACLs, 234
automated, 159-164
Autopsy, 440
chrootkit, 306
DHCP server, 99
extended attribute support, 240
FreeNX server, 83
Kerberos, 30
Kerberos applications, 33
Kerberos clients, 33
Kerberos server, 30
LDAP clients/servers, 22
MediaWiki, 147
MRTG, 352
NIS clients/servers, 37
NX clients, 85
snort, 287
Tripwire, 294
TSK, 439
IP addresses, printing restriction, 140
ISC DHCP server configuration, 105

J [ Top ]
Jabber, messaging clients, 368-370
JFS (Journaled File System), 318
journaling filesystems, boot processes and, 316-321
junior admins, mistakes, 181-184

K [ Top ]
KDC (Kerberos Key Distribution Center), 29
Kerberos, 29
authentication, 34-36
client installation, 33
installation, 30
keys, 29
login authentication, 34
server configuration, 30
server installation, 30
tickets, 29
tokens, 29
kernel configuration, extended attributes, 241
kernel support, ACLs, 234
keys, Kerberos, 29
kickstart, 159
kill command, 337-339
krb-telnet, 34

L [ Top ]
LDAP (Lightweight Directory Access Protocol), 3
authentication, client system updates, 26
clients, installation, 22
databases, 4
login centralization, 21-28
OpenLDAP, 22
servers
group entry migration, 25
installation, 22
password migration, 25
user migration, 25
syncing with NIS, 41-44
ldapsearch, PHP and, 174
LDIF (LDAP Data Interchange Format) files, 25
levels of RAID, 205
Linux, adopting, tips for, 184-187
Linux-PAM library, 8
local authentication, user account disabling, 2
logfile monitoring, 364-368
logcheck utility, 366
logger command, 363
log-guardian, 365
logical volumes, 194
creating from volume group, 199
logical extents, 195
volume groups, 195
login
authentication, Kerberos, 34
centralization, LDAP and, 21-28
deny, 7
PAMs used, 11
root, rsync and, 263
VNC port forwarding and, 58
logs
messaging Jabber clients, 368-370
security, 379-382
LogWatch, 311
lost+found directory, 422-430
lpd, 119
lsof command, 401, 402
LTSP
client
boot media preparation, 76
boot process, 69
booting, 77
DHCP and, 73
NFS and, 74
server configuration, 71
software
download, 70
installation, 70
TFTP and, 74
XDMCP and, 74
LTSP (Linux Terminal Server Project), 69-78
LVM (Logical Volume Management)
copy-on-write snapshot creation, 210-213
RAID and, 203-209
storage flexibility, 194-203

M [ Top ]
Macintosh printing
centralization, CUPS and, 134-138
testing, 137
macros, Vim, 170-173
recording, 170
makewhatis, 311
manpages, documentation and, 167-170
md (multiple device) interface, RAID and, 203
Meaning of Life, 42
MediaWiki, 146
configuration, 147
installation, 147
minicom, serial console port connection, 164
mirroring, RAID and, 204
mistakes, common, 181-184
monitoring
logfiles, 364-368
MRTG, 351-354
multiple hosts, 354-356
Nagois and, 382-387
remote, 357-362
services, Zabbix and, 371-374
syslog and, 362-364
traffic, 351-354
monitors, multiple displays, 323-327
MRTG (Multi-Router Traffic Grapher), 351-354
multixterm, xterms and, 144

N [ Top ]
Nagois, 382-387
NAS (Network Attached Storage), 269-275
NFS
authentication, NIS and, 36-40
client configuration, 255
home directories, automounting autofs and, 257-259
LTSP and, 74
resource centralization, 251-257
server configuration, 252
service configuration, 256
NIS (Network Information Service), 3
client installation, 37
client setup, 39
LDAP data sync, 41-44
NFS authentication and, 36-40
passwords and, 3
server installation, 37
server setup, 37
NIS password map, removing users, 343-345
nohup command, 153-154
noise, logfile filtering, 364-368
NTP (Network Time Protocol), 97
clock synchronization and, 108-111
NX clients
configuration, 86
installation, 85
NX server, VNC and, 89-91

O [ Top ]
OpenLDAP, 22
server configuration, 23
optimization, sysctl command, 321-323
organization of book, xv
organization tips, 187-192

P [ Top ]
PAM-aware applications, 9
pam_limits, resources and, 311
PAMs (Pluggable Authentication Modules), 1
authentication, customization, 8-15
configuration files, 9
missing, 15
login and, 11
overview, 9
pam_winbind.so, 18
partimage, 215
building, 215
partition cloning, 216
partition restore, 219
partition tables, 407
partitions
cloning, 216
gpart and, 405
recovering lost, 404-407
restoring with partimage, 219
scanning, 405
passwords
files, editing, 5-6
migrating to LDAP, 25
NIS and, 3
NIS password map, removing users, 343-345
vncserver script, 49
performance
resource hogs, 311-316
VNC, 52
window mangers, 327-332
permissions
denying all access, 7-8
file sharing and, 232
ACLs, 233-239
PHP
command line and, 173-176
ldapsearch and, 174
physical extents, 195
physical volumes, 195
allocating, 196
volume group assignment, 199
ports, VNC
forwarding to host, 57
forwarding without remote login, 58
public/private forwarding, 58
preventing disaster, 346-351
printers
configuration, CUPS, 125
new, CUPS, 120
remote connectivity, CUPS, 128-130
remote, defining, 128
printing
configuration
Windows 2000, 130
Windows XP, 130
HTTP printing server-side configuration, 132
remote, enabling, 125
restricting, 140
troubleshooting CUPS, 126
prioritization tips, 187-192
process-control commands, 153-154
processes
continuing after logout, 153-154
terminating, 337-339
protection modes, 230
PXE (Preboot eXecution Environment), 160

Q [ Top ]
quotas, disk quota setup, 246-250

R [ Top ]
RAID (Redundant Array of Inexpensive Disks)
device creation, 206
levels, 205
LVM and, 203-209
md interface, 203
mirroring and, 204
redundancy and, 204
rdesktop, 79
RDP (Remote Desktop Protocol), 79
rebooting, troubleshooting, 389-395
recording macros with Vim, 170
recovery
crashed disks, 407-415
deleted files, 430-433
forensics and, 438-445
fsck utility, 422-430
lost+found and, 425
TSK and, 443
redundancy, RAID and, 204
Reiser4 journaling filesystem, 318
ReiserFS journaling filesystem, 318
recovery, 415-421
remote connectivity
CUPS printers, 128
CUPS server, 134
desktop, 46-96
introduction, 45
sessions, mapping to, 81
VNC and, 46-54
Webmin, 93-96
windows, 78-82
remote monitoring, 357-362
remote printing, enabling, 125
removable media, backups and, 221
rescue disk creation, 396
resources
centralization, NFS and, 251-257
troubleshooting, 311-316
restores, partitions, 219
rootkits, 303-309
rstatd daemon, 354
rsync, 263-264
runlevel problems, troubleshooting, 392

S [ Top ]
Samba, 16
authentication in, 267
configuration, 17, 264-269
mount, client, 262
share setup, 265-266
samba-winbind package, 16
SANs (Storage Area Network), 269-275
screen, 155-156
script command, 157-159
scripts
backups, 225
screen sessions, 156
searches, extended attributes, 244
security
access, IP addresses and, 283-286
disabling services and, 281-282
hosts.allow and, 283
hosts.deny and, 283
introduction, 280
Kerberos and, 29
logs, 379-382
rootkits, 303-309
snort and, 286-293
Tripwire, 293
VNC, SSH and, 56-60
Windows Terminal Services, FreeNX and, 91-92
X Windows and, 82-89
serial console port, 164-167
servers
BIND 9, configuration, 104
commands, running on multiple, 144
console servers, 339-343
CUPS print server, 119-127
DHCP, installation, 99
FreeNX, installation, 83
Kerberos
configuration, 30
installation, 30
LTSP, configuration, 71
NFS, configuration, 252
NIS, setup, 37
OpenLDAP, configuration, 23
serial console port, 164-167
VNC
autostart, 60-68
compression and, 59
connecting to, 49
termination, 51
web access, 54-56
X Windows environment customization, 49
X Windows font server setup, 113
server-side configuration, HTTP printing, 136
services
disabling, security and, 281-282
Zabbix and, 371-374
sharing directories, WebDAV, 276-279
sharing files
directory permissions, 232
groups and, 229-233
protection modes, 230
Samba, 264-269
unmask and, 230
WebDAV and, 276-279
short read error, 409
shortcut keys, Vim, 172
shred utility, 434, 436
SIGHUP signals, 153
single-user mode boot, 394
Sleuth Kit (see TSK)
Slit, Fluxbox, 331
SMART (Self Monitoring, Analysis, and Reporting Technology), 346
smartctl utility, 346
smartd daemon, 346
smartmontools, 346
smb-client package, 16
smbpasswd command, 267
snapshots (see copy-on-write snapshot)
SNMP (Simple Network Management Protocol), 357-362
snort, 286
configuration, 287
installation, 287
starting, 290
SSH connections
desktop and, 176-178
VNC and, 56-60
SSH tunnel setup, 57
startup troubleshooting, 389-395, 398-399
storage flexibility, LVM and, 194-203
stunnel, 379
synchronization
LDAP data with NIS, 41-44
rsync, 263-264
sysctl command, 321-323
syslog, 362-364
configuration, 375-378
messaging and, 368-370
syslog-ng, 381
system cloning, 214-220
system services
clock synchronization, 108-111
CUPS
Linux connections to remote printers, 128
Macintosh printing centralization, 134-138
secure printer definition, 138-142
Windows printing integration, 130-133
CUPS print server creation, 119-127
DHCP and Dynamic DNS integration, 102-108
DHCP setup, 98-102
DNS, Dynamic DNS integration, 102-108
NTP clock synchronization, 108-111

T [ Top ]
tab completion, bash shell and, 150-152
telnet connections, desktop and, 176-178
terminating processes, 337-339
text editors, user account disabling, 2
TFTP server
automatic installation and, 161
LTSP and, 74
tickets (Kerberos), 29
TightVNC, 47
tokens, Kerberos, 29
top-secret group, 230
traffic monitoring, 351
training, script command and, 157-159
Tripwire
Afick and, 301
configuration
execution file, 294
policy file, 296
database update, 303
installation, 294
troubleshooting
booting, 389-395
resources, resource hogs, 311-316
startup, 398-399
truncating files, 228-229
TSK (The Sleuth Kit), 439
Autopsy, 440
installation, 439
txt2man, 167-170

U [ Top ]
UIDs (user IDs), reusing, 3
ulimit, resources and, 311
unmask, file sharing and, 230
unmounting disks, 400-403
user account disabling
distributed authentication and, 3
instantly, 2
local authentication and, 2
userdel command, 3
users
migrating to LDAP, 25
restricting printing, 140
user-space applications, extended attributes, 242
user-space support for ACLs, 235

V [ Top ]
Vim
macro creation, 170-173
macro recording, 170
shortcut keys, 172
VNC
encoding mechanisms, 52
GPL and, 47
performance, 52
ports
forwarding to host, 57
forwarding without remote login, 58
public/private forwarding, 58
security, SSH and, 56-60
server
compression and, 59
connecting to, 49
JAR file installation, 56
Java class installation, 56
starting, 48
startup, 47
termination, 51
web access, 54-56
X Windows environment customization, 49
servers
autostart, 60-68
viewer updates, 60
TightVNC and, 47
viewers
graphical updates, 60
starting, 67
XDMCP integration, 60-68
VNC server
FreeNX and, 89-91
NX server and, 89-91
vncserver
passwords and, 49
Xvnc server start, 48
volume groups, 195
logical volume creation, 199
physical volume assignment, 199
volumes
physical volumes, 195
(see also logical volumes; physical volumes)

W [ Top ]
WebDAV, 276-279
Webmin, 93-96
Wikipedia, 146
Wikis
collaboration and, 145-149
data structure, 149
MediaWiki, 146
configuration, 147
installation, 147
winbindd, 19
window managers, performance and, 327-332
Windows
authentication
debugging, 20
testing, 20
CUPS printing integration, 130-133
domain controllers, authentication and, 16-21
network access and, 78-82
Windows 2000 printing configuration, 130
Windows Terminal Services
FreeNX and, 91-92
Windows XP printing configuration, 130

X [ Top ]
X Windows
environment customization, VNC and, 49
font resource centralization, 111-119
font server
copying fonts to, 114
desktop systems and, 116
restarting, 115
setup, 113
troubleshooting, 117
FreeNX and, 82-89
multiple monitors, 323-327
security, 82-89
startup troubleshooting, 392
VNC and, 46
XDMCP, 60-68
activation, 64
LTSP and, 74
VNC and, 60-67
XFS journaling filesystem, 318
xinetd, service streamlining, 282
xterms
multixterm and, 144
Xvnc
inetd integration, 61
starting, 47
startup
troubleshooting, 68
xinetd integration, 61

Z [ Top ]
Zabbix, service monitoring, 371-374

Zurück zu Linux Server Hacks, Volume Two

O’Reilly Verlag

Index

Themen

Buchreihen

Special Interest

International Sites