Linux

Recommendations

Info

3.4 NTP 3.4.5 NTP UDP 123 NTP iptables /etc/sysconfig/iptables iptables # vi /etc/sysconfig/iptables # Firewall configuration written by system-config-firewall # Manual customization of this file is not recommended. ∗filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -A INPUT -m state --state NEW -m udp -p udp --dport 123 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT service iptables # service iptables reload iptables: Trying to reload firewall rules: [ OK ] # iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT udp -- anywhere anywhere state NEW udp dpt:ntp REJECT all -- anywhere anywhere reject-with icmp-host-prohibited www.lpi.or.jp 98 (C) LPI-Japan
3 3.4.6 NTP NTP NTP NTP /etc/ntp.conf server NTP pool.ntp.org server NTP 192.168.0.10 NTP yum [root@client ~]# yum install ntp [root@client ~]# vi /etc/ntp.conf #server 0.centos.pool.ntp.org iburst #server 1.centos.pool.ntp.org iburst #server 2.centos.pool.ntp.org iburst #server 3.centos.pool.ntp.org iburst server 192.168.0.10 iburst NTP # service ntpd restart ntpd : [ OK ] ntpd : [ OK ] ntpq [root@client ~]# ntpq -p remote refid st t when poll reach delay offset jitter ============================================================================== ∗server 157.7.154.29 3 u 2 64 1 0.152 0.108 0.007 www.lpi.or.jp 99 (C) LPI-Japan
Page 2 and 3:
Linux LPI-Japan 2015-04-16
Page 4 and 5:
7 Linux Linux Linux OS Red
Page 6 and 7:
LPIC Linux Web 1 1 W
Page 8 and 9:
sato • 1 • 2 • 3
Page 11 and 12:
i . . . . . . . . . . . . . . . .
Page 13 and 14:
2.2 network NetworkManager . . . .
Page 15 and 16:
4.1.10 umask . . . . . . . . . . .
Page 17:
6.3.1 . . . . . . . . . . . . . .
Page 20 and 21:
1.1 fined_r:unconfined_t:s0-s0:c0.
Page 22 and 23:
1.1 # passwd suzuki suzuki : su
Page 24 and 25:
1.2 1.2.1 1 () # id suzuki ui
Page 26 and 27:
1.2 # id suzuki uid=501(suzuki) gi
Page 28 and 29:
1.3 $ ll 0 -rw-rw-r--. 1 suzuki s
Page 30 and 31:
1.3 $ chmod u-x testdir $ ls -l
Page 32 and 33:
1.3 Account expires : never Minimu
Page 34 and 35:
1.3 drwx------. 26 sato sato 4096
Page 36 and 37:
1.4 SSH 1.4.2 SSH CentOS OpenSSH
Page 38 and 39:
1.4 SSH RX packets:19972 errors:0
Page 40 and 41:
1.4 SSH 1.4.8 SSH SSH Linux ssh-
Page 42 and 43:
1.4 SSH ~/.ssh id_rsa.pub id_r
Page 44 and 45:
1.4 SSH authorized_keys SELinux
Page 46 and 47:
1.4 SSH [sshuser@client ~]$ ssh ss
Page 48 and 49:
1.4 SSH 1.1 IP IP SSH OK 2.
Page 50 and 51:
1.4 SSH 1.4 1.4.15 Tera Term T
Page 52 and 53:
1.4 SSH 1.7 From: TeraTerm SSH SC
Page 54 and 55:
1.5 root OpenSSH /etc/ssh/sshd_con
Page 56 and 57:
1.5 root 1.5.3 su su root root
Page 58 and 59:
1.5 root #2) Think before you type
Page 60 and 61:
1.5 root 28608 pts/0 S 0:00 su - h
Page 62 and 63:
2.1 TX packets:45 errors:0 dropped
Page 64 and 65:
2.1 ARP ARP ip neighbor show ar
Page 66 and 67: 2.1 udp 0 0 0.0.0.0:111 0.0.0.0:
Page 68 and 69: 2.1 Transceiver: internal Auto-neg
Page 70 and 71: 2.3 # chkconfig network on # chkco
Page 72 and 73: 2.3 2.3.5 /etc/services /etc/ser
Page 74 and 75: 2.4 iptables NAPT(IP ) IP 1 IP
Page 76 and 77: 2.4 iptables INPUT OUTPUT FORWARD
Page 78 and 79: 2.4 iptables # system-config-firew
Page 80 and 81: 2.5 DHCP 5. system-config-firewa
Page 82 and 83: 2.5 DHCP range 192.168.0.200 192.1
Page 84 and 85: 2.5 DHCP 2.5.8 Windows DHCP Wind
Page 86 and 87: 2.5 DHCP 2.7 TCP/IPv4 4 (TCP/IP
Page 88 and 89: 2.5 DHCP 2.10 IP IP DNS 2.5.9
Page 91 and 92: 3 3.1 OS OS 1. 2. BIOS 3. GRU
Page 93 and 94: 3 timeout=5 splashimage=(hd0,0)/g
Page 95 and 96: 3 ..- 2.6.32-504.el6.x86_64 3
Page 97 and 98: 3 0 1 2 3 4 5 6 0 0 #
Page 99 and 100: 3 3.1.6 runlevel # runlevel N
Page 101 and 102: 3 httpd : [ OK ] httpd # servic
Page 103 and 104: 3 5 rc5.d # ls /etc/rc.d init
Page 105 and 106: 3 3.3 cron Linux cron 3.3.1 c
Page 107 and 108: 3 0-59 0-23 1-31 1-12 0-70
Page 109 and 110: 3 3.3.7 cron crontab -r cron #
Page 111 and 112: 3 # ls /etc/cron.hourly/ 0anacron
Page 113 and 114: 3 #period in days delay in minute
Page 115: 3 # ntpq -p remote refid st t whe
Page 120 and 121: 4.1 # id sato uid=500(sato) gid=50
Page 122 and 123: 4.1 [sato@server ~]$ umask 0002 um
Page 124 and 125: 4.1 /etc/profile # cat /etc/bashr
Page 126 and 127: 4.1 [sato@server ~]$ write suzuki
Page 128 and 129: 4.2 POSIX ACL 4.2.2 ACL ACL getfa
Page 130 and 131: 4.2 POSIX ACL # yum install samba S
Page 132 and 133: 4.2 POSIX ACL 4.2 3. 4.3 sato
Page 134 and 135: 4.2 POSIX ACL Windows samba_acl_te
Page 136 and 137: 4.3 SELinux 4.3 SELinux SELinux Li
Page 138 and 139: 4.3 SELinux /etc/selinux/config SE
Page 140 and 141: 4.3 SELinux 4.3.7 Boolean SELinux
Page 142 and 143: 4.3 SELinux 4.8 Forbidden root /va
Page 144 and 145: 4.4 LVM PV PV 8E Linux /dev/sd
Page 146 and 147: 4.4 LVM lvcreate lvcreate -L -n
Page 148 and 149: 4.4 LVM # df /mnt/LVMtest/ Filesys
Page 150 and 151: 4.5 4.5 4.5.1 CD DVD
Page 152 and 153: 4.5 4.5.5 tar Tape Archiver tar
Page 154 and 155: 4.5 # dd if=/dev/sdb of=/dev/sdc 2
Page 156 and 157: 4.5 -0 0 0 -u /etc/dumpdates
Page 158 and 159: 4.5 efi symvers-2.6.32-504.el6.x86
Page 161 and 162: 5 5.1 Linux Linux Linux 1
Page 163 and 164: 5 enabled 0 yum --enablerepo
Page 165 and 166: 5 ∗ base: ftp.nara.wide.ad.jp
Page 167 and 168:
5 5.1.5 yum Locale LANG yum gro
Page 169 and 170:
5 # ln -s /media/CentOS_6.6_Final
Page 171 and 172:
5 PID USER PR NI VIRT RES SHR S %
Page 173 and 174:
5 5.2.3 vmstat vmstat CPU vmst
Page 175 and 176:
5 # iostat Linux 2.6.32-504.el6.x
Page 177 and 178:
5 dm-0 0.00 0.00 1.17 5.33 41.92
Page 179 and 180:
5 # sar -f /var/log/sa/sa22 Linux
Page 181 and 182:
5 Detail Low0Med5High10 Service
Page 183 and 184:
5 # logwatch --print ############
Page 185 and 186:
6 6.1 OS 6.1.1 CentOS /var/
Page 187 and 188:
6 syslogd 6.1.5 syslog facil
Page 189 and 190:
6 6.1.7 - Y * @ IP UDP
Page 191 and 192:
6 -A INPUT -j REJECT --reject-wit
Page 193 and 194:
6 $ModLoad TCP $InputTCPServerRu
Page 195 and 196:
6 syslogrsyslog ```shell-session
Page 197 and 198:
6 extension .baksome.log some.
Page 199 and 200:
6 prerotate firstaction postrot
Page 201 and 202:
6 • netstat • tcpdump • Wir
Page 203 and 204:
6 6.2.4 tcpdump GUI Wiresh
Page 205 and 206:
6 Wireshark Network Analyzer # wi
Page 207 and 208:
6 6.3 http Filter:httpEnter Hy
Page 209 and 210:
6 1. CentOS DVD BIOS DVD 2. R
Page 211 and 212:
6 6.8 4. /mnt/sysimage Read-On
Page 213 and 214:
6 6.11 shell 7. bash /mnt/sysim
Page 215 and 216:
7 CentOS 7 7.1 CentOS 7 CentOS
Page 217 and 218:
7 CentOS 7 systemctl status sys
Page 219 and 220:
7 CentOS 7 7.2.4 systemctl list-
Page 221 and 222:
7 CentOS 7 7.2.8 systemctl enabl
Page 223 and 224:
7 CentOS 7 2. /etc/systemd/system
Page 225 and 226:
7 CentOS 7 1 28 17:29:04 centos7.
Page 227 and 228:
7 CentOS 7 sources: services: dhc
Page 229 and 230:
7 CentOS 7 7.1 GUI NetworkManag
Page 231:
Linux 2015 4 16 v1.0.0 LPI-Ja
show all

Linux

Create successful ePaper yourself

Delete template?

Save as template?