Preview only show first 10 pages with watermark. For full document please download

Unixcbt Feat. Solaris10 Notes

UnixCBT feat. Solaris 10 Edition Training Notes – 20060801.01 Table of Contents Apache Web Server - Notes.......................................................................................................................3 BIND DNS Implementation - Notes.......................................................................................................... 6 System Scheduler – Cron - Notes.....................................................................................................

   EMBED

Share

Transcript

  UnixCBT feat. Solaris 10 Edition Training Notes – 20060801.01  Table of Contents Apache Web Server - Notes.......................................................................................................................3BIND DNS Implementation - Notes..........................................................................................................6System Scheduler – Cron - Notes..............................................................................................................8File System Management - Notes............................................................................................................10Volume Management - Notes..................................................................................................................12File Transfer Protocol Daemon (FTPD) Implementation - Notes........................................................... 15GNU Privacy Guard (GPG) - Notes........................................................................................................ 17MySQL Implementation - Notes..............................................................................................................18 NETSTAT - Notes...................................................................................................................................19 Network Configuration Overview - Notes...............................................................................................20 Network File System(NFS) - Notes.........................................................................................................22AutoFS - Notes.........................................................................................................................................23 Network Mapper Nmap - Notes...............................................................................................................23 Network Time Protocol (NTP) - Notes....................................................................................................24Quota Implementation & Management - Notes.......................................................................................25Samba – Windows Integration - Notes....................................................................................................25Remote Desktop Installation - Notes.......................................................................................................26Samba Server Configuration - Notes.......................................................................................................26System Security Overview - Notes..........................................................................................................27Sendmail MTA Features - Notes............................................................................................................. 27Snoop – Network Sniffer - Notes.............................................................................................................30TCPDump – Network Sniffer - Notes......................................................................................................30Snort Network Intrusion Detection System (NIDS) - Notes....................................................................31SYSLOG Implementation - Notes...........................................................................................................32Log Rotation using logadm - Notes.........................................................................................................32Zettabyte File System (ZFS) - Notes....................................................................................................... 33Solaris Zones - Notes...............................................................................................................................34  Apache Web Server - Notes SAMP - Solaris Apache MySQL PHP/PerlLAMP - Linux Apache MySQL PHP/Perl/PythonModular & Reliable2 Versions (1.3.33 & 2.0.50) are included with Solaris 10svcs -a | grep -i apacheNote: Apache2 documentation is available @: http://localhost/manualSteps to invoke Apache on Solaris 10:1. cp /etc/apache2/httpd.conf-example /etc/apache2/httpd.conf2. update servername & server admin directives for main server3. svcadm enable apache24. netstat -anP tcp | grep 80 && http://localhost/manualNote: Typical classes of web server errors:200 - OK300 - Redirect400 - client error500 - server errorsNote: Apache ALWAYS maintains a DEFAULT HOST. Config is in httpd.conf and outsideof ANY and ALL virtual hosts containersNote: Apache requires the following info. for the DEFAULT HOST:1. ServerName linuxcbtsun1.linuxcbt.internal2. ServerAdmin3. DocumentRoot - where to serve content from4. IP Address:Port to bind to - optional5. Logging information - custom/combined & error logsNote: Listen directive controls IPs and ports that Apache binds toNote: specify 'Listen' directive(s) in the DEFAULT HOST(httpd.conf)Note: You can specify multiple Listen DirectivesNote: Apache binds to ALL IP addresses when 'Listen' is specified without an IPaddressDEFAULT HOST(IP:PORT)-Virtual Host 1-Virtual Host 2<Directory /var/apache2/htdocs >Options Indexes FollowSymLinksAllowOverride NoneOrder allow,denyAllow from all</Directory><Directory /var/apache2/htdocs/temp >Options FollowSymLinksAllowOverride NoneOrder allow,denyAllow from all</Directory>  Note: <Directory /var/apache2/htdocs > - applies to all sub-directories###Order, Allow, Deny Rules###Note: Order is specified and Deny or Allow or combination followsNote: Allow|Deny supports the following attributes1. IP Address - 127.0.0.12. IP Address range3. IP Subnet Mask using CIDR or Class notation - 192.168.1.0/24 or192.168.1.0/255.255.255.04. 192.168.15. ALL6. Environment variables - referrer, user agentsUsed to influence default doc: DirectoryIndex index.html index.html.varLogFormat is used to define logging keywords that can be referencedApache can log to multiple log files, various keywords, simultaneously###Alias Directive###Maps webspace location to file system location, usually non-document root###Files Directive###Facilitates restrictions on matchings files regardless of location on server<Files noaccess.html>Order allow,denyDeny from all</Files>Note: When applied OUTSIDE of <Directory> block, applies to all instances of namedfile throughout the web serverTask: Create web-accessible directory, but, restrict access to certain IPsSteps:1. mkdir /var/apache2/private2. Create appropriate Alias - Alias /private/ /var/apache2/private/3. Create appropriate <Directory> block###Virtual Hosts Support###2 Types of Virtual Hosts are supported:1. IP-based - Each virtual host is associated with a distinct address2. Name Based - All or a group of Virtual Hosts share a distinct address###IP-based Virtual Hosting###Note: System requires multiple IP addressesNote: Default Apache Host binds to ALL IP addresses on port 80Steps:1. Implement appropriate 'Listen' directive2. Configure Virtual Hosts3. Restart Apache4. Test configurationListen 192.168.1.50:80<VirtualHost 192.168.1.50:80>ServerName linuxcbtsun1.linuxcbt.internalServerAdmin [email protected]