Linux

Recommendations

Info

6.1 authpriv.∗ /var/log/secure authpriv* /var/log/secure ∗.info;mail.none;authpriv.none;cron.none /var/log/messages info /var/log/messages mailauthprivcron 3 none mail - authpriv.∗ /var/log/secure mail.∗ -/var/log/maillog cron.∗ /var/log/cron 6.1.9 syslog iptables iptables /etc/sysconfig/iptables 22 ACCEPT REJECT # Firewall configuration written by system-config-firewall # Manual customization of this file is not recommended. ∗filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A INPUT -j LOG --log-level debug --log-prefix ’[iptables_test]:’ www.lpi.or.jp 172 (C) LPI-Japan
6 -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT iptables reload # service iptables reload iptables: Trying to reload firewall rules: [ OK ] /etc/rsyslog.conf kern/var/log/kern.log # vi /etc/rsyslog.conf # Log all kernel messages to the console. # Logging much else clutters up the screen. #kern.∗ /dev/console kern.* /var/log/kern.log rsyslog # service rsyslog restart : [ OK ] : [ OK ] iptables 80 Web /var/log/kern.log 80 # tail /var/log/kern.log Dec 25 14:54:16 server kernel: imklog 5.8.10, log source = /proc/kmsg starte d. Dec 25 14:54:50 server kernel: ’[iptables_test]:’IN=eth0 OUT= MAC=00:1c:42:65:a f:c4:00:1c:42:00:00:08:08:00 SRC=192.168.0.2 DST=192.168.0.10 LEN=64 TOS=0 x00 PREC=0x00 TTL=64 ID=24955 DF PROTO=TCP SPT=57191 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 6.1.10 UDP syslog syslog UDP www.lpi.or.jp 173 (C) LPI-Japan
Page 2 and 3:
Linux LPI-Japan 2015-04-16
Page 4 and 5:
7 Linux Linux Linux OS Red
Page 6 and 7:
LPIC Linux Web 1 1 W
Page 8 and 9:
sato • 1 • 2 • 3
Page 11 and 12:
i . . . . . . . . . . . . . . . .
Page 13 and 14:
2.2 network NetworkManager . . . .
Page 15 and 16:
4.1.10 umask . . . . . . . . . . .
Page 17:
6.3.1 . . . . . . . . . . . . . .
Page 20 and 21:
1.1 fined_r:unconfined_t:s0-s0:c0.
Page 22 and 23:
1.1 # passwd suzuki suzuki : su
Page 24 and 25:
1.2 1.2.1 1 () # id suzuki ui
Page 26 and 27:
1.2 # id suzuki uid=501(suzuki) gi
Page 28 and 29:
1.3 $ ll 0 -rw-rw-r--. 1 suzuki s
Page 30 and 31:
1.3 $ chmod u-x testdir $ ls -l
Page 32 and 33:
1.3 Account expires : never Minimu
Page 34 and 35:
1.3 drwx------. 26 sato sato 4096
Page 36 and 37:
1.4 SSH 1.4.2 SSH CentOS OpenSSH
Page 38 and 39:
1.4 SSH RX packets:19972 errors:0
Page 40 and 41:
1.4 SSH 1.4.8 SSH SSH Linux ssh-
Page 42 and 43:
1.4 SSH ~/.ssh id_rsa.pub id_r
Page 44 and 45:
1.4 SSH authorized_keys SELinux
Page 46 and 47:
1.4 SSH [sshuser@client ~]$ ssh ss
Page 48 and 49:
1.4 SSH 1.1 IP IP SSH OK 2.
Page 50 and 51:
1.4 SSH 1.4 1.4.15 Tera Term T
Page 52 and 53:
1.4 SSH 1.7 From: TeraTerm SSH SC
Page 54 and 55:
1.5 root OpenSSH /etc/ssh/sshd_con
Page 56 and 57:
1.5 root 1.5.3 su su root root
Page 58 and 59:
1.5 root #2) Think before you type
Page 60 and 61:
1.5 root 28608 pts/0 S 0:00 su - h
Page 62 and 63:
2.1 TX packets:45 errors:0 dropped
Page 64 and 65:
2.1 ARP ARP ip neighbor show ar
Page 66 and 67:
2.1 udp 0 0 0.0.0.0:111 0.0.0.0:
Page 68 and 69:
2.1 Transceiver: internal Auto-neg
Page 70 and 71:
2.3 # chkconfig network on # chkco
Page 72 and 73:
2.3 2.3.5 /etc/services /etc/ser
Page 74 and 75:
2.4 iptables NAPT(IP ) IP 1 IP
Page 76 and 77:
2.4 iptables INPUT OUTPUT FORWARD
Page 78 and 79:
2.4 iptables # system-config-firew
Page 80 and 81:
2.5 DHCP 5. system-config-firewa
Page 82 and 83:
2.5 DHCP range 192.168.0.200 192.1
Page 84 and 85:
2.5 DHCP 2.5.8 Windows DHCP Wind
Page 86 and 87:
2.5 DHCP 2.7 TCP/IPv4 4 (TCP/IP
Page 88 and 89:
2.5 DHCP 2.10 IP IP DNS 2.5.9
Page 91 and 92:
3 3.1 OS OS 1. 2. BIOS 3. GRU
Page 93 and 94:
3 timeout=5 splashimage=(hd0,0)/g
Page 95 and 96:
3 ..- 2.6.32-504.el6.x86_64 3
Page 97 and 98:
3 0 1 2 3 4 5 6 0 0 #
Page 99 and 100:
3 3.1.6 runlevel # runlevel N
Page 101 and 102:
3 httpd : [ OK ] httpd # servic
Page 103 and 104:
3 5 rc5.d # ls /etc/rc.d init
Page 105 and 106:
3 3.3 cron Linux cron 3.3.1 c
Page 107 and 108:
3 0-59 0-23 1-31 1-12 0-70
Page 109 and 110:
3 3.3.7 cron crontab -r cron #
Page 111 and 112:
3 # ls /etc/cron.hourly/ 0anacron
Page 113 and 114:
3 #period in days delay in minute
Page 115 and 116:
3 # ntpq -p remote refid st t whe
Page 117:
3 3.4.6 NTP NTP NTP NTP /etc/
Page 120 and 121:
4.1 # id sato uid=500(sato) gid=50
Page 122 and 123:
4.1 [sato@server ~]$ umask 0002 um
Page 124 and 125:
4.1 /etc/profile # cat /etc/bashr
Page 126 and 127:
4.1 [sato@server ~]$ write suzuki
Page 128 and 129:
4.2 POSIX ACL 4.2.2 ACL ACL getfa
Page 130 and 131:
4.2 POSIX ACL # yum install samba S
Page 132 and 133:
4.2 POSIX ACL 4.2 3. 4.3 sato
Page 134 and 135:
4.2 POSIX ACL Windows samba_acl_te
Page 136 and 137:
4.3 SELinux 4.3 SELinux SELinux Li
Page 138 and 139:
4.3 SELinux /etc/selinux/config SE
Page 140 and 141: 4.3 SELinux 4.3.7 Boolean SELinux
Page 142 and 143: 4.3 SELinux 4.8 Forbidden root /va
Page 144 and 145: 4.4 LVM PV PV 8E Linux /dev/sd
Page 146 and 147: 4.4 LVM lvcreate lvcreate -L -n
Page 148 and 149: 4.4 LVM # df /mnt/LVMtest/ Filesys
Page 150 and 151: 4.5 4.5 4.5.1 CD DVD
Page 152 and 153: 4.5 4.5.5 tar Tape Archiver tar
Page 154 and 155: 4.5 # dd if=/dev/sdb of=/dev/sdc 2
Page 156 and 157: 4.5 -0 0 0 -u /etc/dumpdates
Page 158 and 159: 4.5 efi symvers-2.6.32-504.el6.x86
Page 161 and 162: 5 5.1 Linux Linux Linux 1
Page 163 and 164: 5 enabled 0 yum --enablerepo
Page 165 and 166: 5 ∗ base: ftp.nara.wide.ad.jp
Page 167 and 168: 5 5.1.5 yum Locale LANG yum gro
Page 169 and 170: 5 # ln -s /media/CentOS_6.6_Final
Page 171 and 172: 5 PID USER PR NI VIRT RES SHR S %
Page 173 and 174: 5 5.2.3 vmstat vmstat CPU vmst
Page 175 and 176: 5 # iostat Linux 2.6.32-504.el6.x
Page 177 and 178: 5 dm-0 0.00 0.00 1.17 5.33 41.92
Page 179 and 180: 5 # sar -f /var/log/sa/sa22 Linux
Page 181 and 182: 5 Detail Low0Med5High10 Service
Page 183 and 184: 5 # logwatch --print ############
Page 185 and 186: 6 6.1 OS 6.1.1 CentOS /var/
Page 187 and 188: 6 syslogd 6.1.5 syslog facil
Page 189: 6 6.1.7 - Y * @ IP UDP
Page 193 and 194: 6 $ModLoad TCP $InputTCPServerRu
Page 195 and 196: 6 syslogrsyslog ```shell-session
Page 197 and 198: 6 extension .baksome.log some.
Page 199 and 200: 6 prerotate firstaction postrot
Page 201 and 202: 6 • netstat • tcpdump • Wir
Page 203 and 204: 6 6.2.4 tcpdump GUI Wiresh
Page 205 and 206: 6 Wireshark Network Analyzer # wi
Page 207 and 208: 6 6.3 http Filter:httpEnter Hy
Page 209 and 210: 6 1. CentOS DVD BIOS DVD 2. R
Page 211 and 212: 6 6.8 4. /mnt/sysimage Read-On
Page 213 and 214: 6 6.11 shell 7. bash /mnt/sysim
Page 215 and 216: 7 CentOS 7 7.1 CentOS 7 CentOS
Page 217 and 218: 7 CentOS 7 systemctl status sys
Page 219 and 220: 7 CentOS 7 7.2.4 systemctl list-
Page 221 and 222: 7 CentOS 7 7.2.8 systemctl enabl
Page 223 and 224: 7 CentOS 7 2. /etc/systemd/system
Page 225 and 226: 7 CentOS 7 1 28 17:29:04 centos7.
Page 227 and 228: 7 CentOS 7 sources: services: dhc
Page 229 and 230: 7 CentOS 7 7.1 GUI NetworkManag
Page 231: Linux 2015 4 16 v1.0.0 LPI-Ja
show all

Linux

Create successful ePaper yourself

Delete template?

Save as template?