Home | 简体中文 | 繁体中文 | 杂文 | 打赏(Donations) | ITEYE 博客 | OSChina 博客 | Facebook | Linkedin | 知乎专栏 | Search | Email

Netkiller Linux 手札

Netkiller Linux Cookbook

Mr. Neo Chan, 陈景峰 (BG7NYT)

 


中国广东省深圳市宝安区龙华镇
518109
+86 755 29812080
+86 755 29812080

版权声明

转载请与作者联系,转载时请务必标明文章原始出处和作者信息及本声明。

文档出处:
http://netkiller.github.io
http://netkiller.sourceforge.net

微信扫描二维码进入 Netkiller 微信订阅号

QQ群:128659835 请注明“读者”

2017-02-13

内容摘要

本文档讲述Linux系统涵盖了系统管理与配置包括:

[注意]对初学Linux的爱好者忠告

玩Linux最忌reboot(重新启动)这是windows玩家坏习惯

Linux只要接上电源你就不要再想用reboot,shutdown,halt,poweroff命令,Linux系统和应用软件一般备有reload,reconfigure,restart/start/stop...不需要安装软件或配置服务器后使用reboot重新引导计算机

在Linux系统里SIGHUP信号被定义为刷新配置文件,有些程序没有提供reload参数,你可以给进程发送HUP信号,让它刷新配置文件,而不用restart.通过pkill,killall,kill 都可以发送HUP信号例如: pkill -HUP httpd

我的系列文档:

操作系统

Netkiller Linux 手札
Netkiller FreeBSD 手札
Netkiller Shell 手札
Netkiller Security 手札
Netkiller Web 手札
Netkiller Monitoring 手札
Netkiller Storage 手札
Netkiller Mail 手札
Netkiller Virtualization 手札

以下文档停止更新合并到 《Netkiller Linux 手札》

Netkiller Debian 手札 Netkiller CentOS 手札 Netkiller Multimedia 手札    

目录

1. 自述
1.1. 本文目的
1.2. 内容简介
1.3. 读者对象
1.4. 作者简介
1.5. 打赏(Donations)
1.5.1. 微信(Wechat)
1.5.2. 支付宝(Alipay)
1.5.3. PayPal Donations
1.5.4. 银行(Bank)
1. Introduction
1.1. Linux 发行版本
1.1.1. Linux 下载排名
1.1.2. Debian 衍生版本
1.1.3. Redhat 衍生版本
1.1.4. FreeBSD 包风格的Linux 发行版
1.2. HDD Partition
1.3. Getting Started Guides
1.3.1. Scientific Linux
1.3.2. Redhat Linux
1.3.3. CentOS 6
1.3.4. 5.x 减肥
1.3.5. 6.x Mini 安装后需要做的一些事
I. System Administrator
3. 获取系统信息
3.1. Distribution information
3.2. System Infomation
3.2.1. Cpu Bit
3.3. shutdown
3.4. Profile
3.4.1. shell
4. Kernel
4.1. 编译安装内核
4.2. sysctl - configure kernel parameters at runtime
4.2.1. sysctl.d
4.2.2. vm.overcommit_memory
4.3. /sys
4.3.1. /sys/class/net/
4.4. /proc
4.4.1. 进程内存监控
4.4.2. ulimit 状态
5. Kernel modules
5.1. modprobe - program to add and remove modules from the Linux Kernel
6. Package Management
6.1. apt-cache
6.1.1. search
6.1.2. depends
6.1.3. policy
6.2. Apt-Get
6.2.1. Search
6.2.2. Installation
6.2.3. Update
6.2.4. Remove
6.2.5. purge
6.3. aptitude
6.4. Automatic Updates
6.4.1. 升级过程中链接中断怎么办?
6.5. dpkg
6.5.1. -i|--install 安装.deb包
6.5.2. -r|--remove 卸载.deb包
6.5.3. -L|--listfiles <package> ... List files `owned' by package(s). 列出包中的文件
6.5.4. -l|--list [<pattern> ...] List packages concisely. 列出.deb包
6.5.5. Status
6.5.6. dpkg-deb - Debian package archive (.deb) manipulation tool
6.5.7. dpkg-reconfigure
6.6. Upgrading
6.6.1. GUI
6.6.2. CLI
6.6.3. CDROM
6.7. 制作.deb安装包
6.7.1. checkinstall — Track installation of local software, and produce a binary manageable with your package management software.
6.7.2. dh_make - prepare Debian packaging for an original source archive
6.7.3. control
7. Package Manager
7.1. Yum Resource & Yum Mirror
7.1.1. Fedora resource
7.1.2. rpmforge-release
7.1.3. atomic
7.1.4. famillecollet
7.1.5. rpmfind.net
7.1.6. pkgs.org
7.1.7. China Resource
7.1.8. 制作本地共享源
7.2. yum - Yellowdog Updater Modified
7.2.1. install
7.2.2. localinstall
7.2.3. list
7.2.4. search
7.2.5. update / upgrade
7.2.6. remove
7.2.7. installed
7.2.8. group
7.2.9. 查看包的依赖关系
7.2.10. provides / whatprovides
7.2.11. YUM 源管理
7.3. rpm - RPM Package Manager
7.3.1. install/upgrade/remove
7.3.2. query
7.4. rpmbuild - Build RPM Package(s)
7.4.1. RPM_directory_macros
7.4.2. --define 专递模板变量
7.4.3.
7.4.4. FAQ
8. Device information
8.1. dmesg - print or control the kernel ring buffer
8.2. smartctl - Control and Monitor Utility for SMART Disks
8.3. CPU 资源管理
8.3.1. lscpu - display information about the CPU architecture
8.3.2. chcpu - configure CPUs
8.4. lspci - list all PCI devices
8.5. lshw - list hardware
8.5.1. only show a certain class of hardware
8.6. hwinfo - Hardware Information
8.7. dmidecode - DMI table decoder
8.8. ethtool - Display or change ethernet card settings
8.9. usb device
8.10. lsscsi - list SCSI devices (or hosts) and their attributes
8.11. HBA
8.12. lsblk - list block devices
8.13. kudzu - detects and configures new and/or changed hardware on a system
8.14. udev - Linux dynamic device management
9. 区域/语言/时间
9.1. Ubuntu
9.1.1. time zone
9.1.2. to change system date/time
9.1.3. Language
9.2. CentOS 区域设置
9.2.1. 时区设置 CentOS 6
9.2.2. 日期、时间
9.2.3. 语言
10. console / terminal
10.1. serial console
10.2. console timeout
10.3. TUI (Text User Interface)
10.4. framebuffer
11. Harddisk
11.1. 查看分区分区 UUID
11.2. Label
11.2.1. Ext2
11.3. swap 交换分区
11.3.1. swapon failed: Invalid argument
11.4. Show partition
11.5. Create partition
11.6. Clone partition
11.7. estimate disk / directory / file space usage
11.8. Convert from ext3 to ext4 File system
11.9. GPT
11.9.1. 设置GTP磁盘
11.9.2. 查看分区
11.9.3. 创建分区
11.9.4. 删除分区
11.9.5. 退出
11.9.6. mount
11.10. loop devices
11.10.1. losetup - set up and control loop devices
12. Removable Storage
12.1. usb flash
12.2. CD / DVD
12.2.1. Mount an ISO file
12.2.2. create iso file from CD
12.2.3. burner
12.2.4. ISO Mirror
13. File System
13.1. /etc/fstab
13.1.1. /etc/fstab 例子
13.2. Mount partition
13.2.1. Mount
13.2.2. Umount
13.2.3. bind directory
13.3. ext2
13.4. ext3
13.5. ReiserFS
13.6. EXT4
13.6.1. install
13.6.2. format
13.6.3. label
13.6.4. mount/umount
13.6.5. LVM 卷
13.7. LVM
13.8. Btrfs
13.8.1. /etc/fstab
13.8.2. btrfs
13.8.3. Mount Btrfs
13.8.4. subvolumes
13.8.5. snapshot
13.8.6. btrfsctl
13.8.7. btrfs-vol
13.8.8. btrfs-convert
13.8.9. btrfsck
13.8.10. btrfs-debug-tree
13.9. zfs
13.10. iSCSI
13.10.1. GFS
13.11. GFS - Cluster Storage
13.12. glusterfs
13.13. RAM FS
13.14. tmpfs
13.15. ftp fs
13.16. SSHFS (sshfs - filesystem client based on SSH File Transfer Protocol)
13.17. davfs2 - mount a WebDAV resource as a regular file system
13.18. redisfs
13.19. File system test
13.19.1. ext4 vs btrfs
13.19.2. xfs vs jfs vs reiserfs
13.19.3. RAID10 (146G*8) vs EMC VNX 5300 (8G Fibre Channel)
13.19.4. Dell 2950(RAID5 500G SATA * 6) vs MD1200
13.20. 磁盘占用100%删除文件后不是放的解决方法
14. Networking
14.1. hosts
14.1.1. hostnamectl - Control the system hostname
14.1.2. /etc/hostname
14.1.3. /etc/host.conf
14.1.4. /etc/hosts
14.1.5. hosts.allow / hosts.deny
14.1.6. /etc/resolv.conf
14.2. Hostname
14.3. Network adapter
14.3.1. 接口名称
14.4. Ethernet Interfaces
14.4.1. ifquery
14.4.2. DHCP
14.4.3. Static IP
14.5. Mask
14.6. Gateway
14.7. Configuring Name Server Lookups
14.8. IP forwarding(IP转发)
14.9. bonding
14.9.1. Ubuntu
14.10. Finding optimal MTU
14.11. wireless
14.11.1. rfkill - tool for enabling and disabling wireless devices
14.11.2. iwlist - Get more detailed wireless information from a wireless interface
14.11.3. iwconfig - configure a wireless network interface
14.11.4. /proc/net/wireless
14.12. Linux IP And Router
14.12.1. netmask
14.12.2. arp - manipulate the system ARP cache
14.12.3. iproute2
14.12.4. 策略路由
14.12.5. 负载均衡
14.12.6. MASQUERADE
14.12.7. ip tunnel
14.12.8. VLAN
14.12.9. Zebra
14.13. CentOS 网络配置
14.13.1. Gateway
14.13.2. bonding
14.13.3. brctl
14.13.4. nmtui
15. Logging
15.1. rsyslog
15.1.1. rsyslog.conf
15.2. logrotate - rotates, compresses, and mails system logs
15.2.1. /etc/logrotate.conf
15.2.2. /etc/logrotate.d/
15.3. syslog-ng
15.4. syslog, klogctl - read and/or clear kernel message ring buffer; set console_loglevel
15.4.1. /etc/sysconfig/syslog
15.4.2. /etc/syslog.conf
15.4.3. logger
15.4.4. To Log Messages Over UDP Network
16. 设备管理
16.1. Debian/Ubuntu
16.1.1. update-rc.d - install and remove System-V style init script links
16.1.2. invoke-rc.d - executes System-V style init script actions
16.1.3. runlevel
16.1.4. sysv-rc-conf
16.1.5. xinetd - replacement for inetd with many enhancements
16.1.6. Scheduled Tasks
16.1.7. sv - control and manage services monitored by runsv
16.2. Services
16.2.1. systemctl
16.2.2. service
16.2.3. xinetd.d
16.2.4. rpcinfo
16.2.5. SELINUX
17. Process
17.1. top - display Linux tasks
17.2. ps - report a snapshot of the current processes
17.2.1. ps axef
17.2.2. ps -eo pid,cmd
17.2.3. ps jax
17.2.4. zombie process
17.3. mpstat
17.4. pstree - display a tree of processes
17.5. pid
17.5.1. pgrep, pkill - look up or signal processes based on name and other attributes
17.5.2. pidof -- find the process ID of a running program.
17.6. jobs
17.6.1. &
17.6.2. Ctrl + Z
17.6.3. jobs
17.6.4. fg / bg
17.6.5. nohup - run a command immune to hangups, with output to a non-tty
17.7. ionice - get/set program io scheduling class and priority
17.8. /proc 目录与进程的关系
17.8.1. /proc/*/fd/ 进程所打开的文件
18. Permission
18.1. User
18.1.1. Add a new user
18.1.2. remove an existed user
18.1.3. usermod - modify a user account
18.1.4. lock / unlock
18.2. Group
18.2.1. Add a new group
18.2.2. Add a user to the group
18.2.3. /etc/group
18.3. umask
18.4. Access Permissions
18.4.1. chown - change file owner and group
18.4.2. chgrp - change group ownership
18.4.3. chmod - change file access permissions
18.5. chattr - change file attributes on a Linux second extended file system
18.6. su - run a shell with substitute user and group IDs
18.7. runuser - run a command with substitute user and group ID
18.8. sudo, sudoedit - execute a command as another user
18.8.1. NOPASSWD
18.8.2. 允许或禁止命令
18.8.3. Cmnd_Alias 用法
18.8.4. wheel 组
18.9. ACL - Access Control List
18.9.1. getfacl - get file access control lists
18.9.2. setfacl - set file access control lists
19. /etc
19.1. /etc/inputrc
19.2. /etc/shells
20. kickstart
20.1. install kickstart
20.2. ks.cfg
20.3. boot 参数
21. System Utilities 配置工具
21.1. CentOS 6
21.1.1. system-config-date
21.1.2. system-config-firewall
21.1.3. system-config-securitylevel
21.1.4. system-config-language
21.1.5. system-config-keyboard
21.1.6. system-config-network
21.1.7. ntsysv
21.1.8. lokkit
21.1.9. system-config-kdump
21.1.10. system-config-services
21.1.11. authconfig-tui
II. Shell
22. Bash Shell
22.1. bash - GNU Bourne-Again SHell
22.1.1. -n 检查脚本是否有语法错误
22.1.2. -x 显示详细运行过程
22.2. Introduction
22.2.1. chsh - change login shell
22.2.2. 切换身份
22.2.3. test 命令
22.2.4. I/O 重定向
22.2.5. pipes (FIFOs)
22.2.6. mktemp - create a temporary file or directory 临时目录与文件
22.2.7. History 命令历史记录
22.2.8. hash - hash database access method
22.2.9. prompt
22.3. variable
22.3.1. 系统变量
22.3.2. 表达式
22.3.3. Internal Environment Variables
22.3.4. set 设置变量
22.3.5. unset 变量销毁
22.3.6. 设置变量默认值
22.3.7. export 设置全局变量
22.3.8. declare
22.3.9. Numerical 数值运算
22.3.10. Strings 字符串操作
22.3.11. Array 数组
22.3.12. read 赋值多个变量
22.3.13. eval
22.4. conditions if and case
22.4.1. if
22.4.2. case
22.5. Loops for, while and until
22.5.1. for
22.5.2. while
22.5.3. until
22.6. Functions
22.6.1. Local variables
22.7. User interfaces
22.7.1. input
22.8. subshell
22.9. Example
22.9.1. 有趣的Shell
22.9.2. backup
22.9.3. CPU 核心数
22.9.4. Password
22.9.5. processes
22.9.6. Shell 技巧
22.9.7. to convert utf-8 from gb2312 code
22.9.8. 使用内存的百分比
22.9.9. 合并apache被cronlog分割的log文件
23. Z Shell
23.1. installing Z shell
23.2. Oh My ZSH!
23.3. Starting file
23.3.1. ~/.zshrc
23.4. Prompting
23.5. Aliases
23.6. History
23.7. FAQ
23.7.1. Home/End key
24. Berkeley UNIX C shell (csh)
24.1.
25. KornShell
25.1.
26. Shell command
26.1. Help Commands
26.1.1. man - an interface to the on-line reference manuals
26.2. getconf - Query system configuration variables
26.3. Directory and File System Related
26.3.1. dirname
26.3.2. filename
26.3.3. test - check file types and compare values
26.3.4. file — determine file type
26.3.5. stat
26.3.6. mkdir - make directories
26.3.7. rename
26.3.8. touch
26.3.9. truncate
26.3.10. ls - list directory contents
26.3.11. cp - copy files and directories
26.3.12. rm - remove files or directories
26.3.13. df - report file system disk space usage
26.3.14. du - estimate file space usage
26.3.15. tac - concatenate and print files in reverse
26.3.16. split - split a file into pieces
26.3.17. find - search for files in a directory hierarchy
26.4. package / compress and decompress
26.4.1. tar — The GNU version of the tar archiving utility
26.4.2. cpio - copy files to and from archives
26.4.3. gzip
26.4.4. zip, zipcloak, zipnote, zipsplit - package and compress (archive) files
26.4.5. RAR
26.4.6. 7-Zip
26.5. date and time
26.5.1. 日期格式
26.5.2. -d --date=
26.5.3. weekday name
26.5.4. UTC
26.6. Numeric
26.6.1. 数值运算
26.6.2. seq - print a sequence of numbers
26.6.3. bc - An arbitrary precision calculator language
26.7. Text Processing
26.7.1. iconv - Convert encoding of given files from one encoding to another
26.7.2. 字符串处理命令expr
26.7.3. cat - concatenate files and print on the standard output
26.7.4. nl - number lines of files
26.7.5. od - dump files in octal and other formats
26.7.6. tr - translate or delete characters
26.7.7. cut - remove sections from each line of files
26.7.8. printf - format and print data
26.7.9. Free `recode' converts files between various character sets and surfaces.
26.7.10. /dev/urandom 随机字符串
26.7.11. col - filter reverse line feeds from input
26.7.12. apg - generates several random passwords
26.7.13. head/tail
26.7.14. 反转字符串或文件内容
26.8. grep, egrep, fgrep, rgrep - print lines matching a pattern
26.8.1. 删除空行
26.8.2. -v, --invert-match
26.8.3. Output control
26.8.4. Context control
26.8.5. Regexp selection and interpretation
26.8.6. fgrep
26.8.7. egrep
26.9. sort - sort lines of text files
26.9.1. 对列排序
26.10. uniq
26.11. 表格操作/行列转换
26.11.1. column - columnate lists
26.11.2. paste - merge lines of files
26.12. standard input/output
26.12.1. xargs - build and execute command lines from standard input
26.13. Logging
26.13.1. logger - a shell command interface to the syslog(3) system log module
26.14. Password
26.14.1. Shadow password suite configuration.
26.14.2. newusers - update and create new users in batch
26.14.3. chpasswd - update passwords in batch mode
26.15. binutils
26.15.1. strings - print the strings of printable characters in files.
28. Utility Programs
28.1. ed, red - text editor
28.2. vim
28.2.1. 查找与替换
28.2.2. 插入文件
28.2.3. 批处理
28.2.4. line()
28.3. awk
28.3.1. 处理列
28.3.2. printf
28.3.3. Pattern(字符匹配)
28.3.4. Built-in Variables (NR/NF)
28.3.5. Built-in Functions
28.3.6. 过滤相同的行
28.4. sed
28.4.1. 查找与替换
28.4.2. 编辑文件
28.4.3. 内容打印
28.4.4. 编辑操作
28.4.5. 管道操作
28.5. CURL - transfer a URL
28.5.1. 基本用法
28.5.2. data
28.5.3. connect-timeout
28.5.4. max-time
28.5.5. compressed
28.5.6. vhosts
28.5.7. 输出格式定义
28.5.8. -A/--user-agent <agent string>
28.5.9. referer
28.5.10. -v
28.5.11. -o, --output FILE Write output to <file> instead of stdout
28.5.12. -H/--header <line> Custom header to pass to server (H)
28.5.13. curl-config
28.5.14. RestFul 应用 JSON 数据处理
28.5.15. FAQ
28.6. expect
28.6.1. 模拟登录 telnet 获取Cisco配置
28.6.2. 模拟登录 ssh
28.6.3. SCP
28.7. expect-lite - quick and easy command line automation tool
28.8. sshpass - noninteractive ssh password provider
28.9. Klish - Kommand Line Interface Shell (the fork of clish project)
28.9.1. 安装Klish
28.9.2. 为用户指定clish作为默认Shell
28.9.3. FAQ
28.10. Limited command Shell (lshell)
28.11. wget - retrieves files from the web
28.11.1. Logging and input file
28.11.2. HTTP options
28.11.3. Recursive download
28.11.4. --no-passive-ftp disable the "passive" transfer mode.
28.12. TUI
28.12.1. screen - screen manager with VT100/ANSI terminal emulation
28.12.2. tmux — terminal multiplexer
28.12.3. byobu - wrapper script for seeding a user's byobu configuration and launching a text based window manager (either screen or tmux)
28.12.4. htop - interactive process viewer
28.12.5. elinks
28.12.6. chat
28.13. parallel - build and execute shell command lines from standard input in parallel
29. Shell Terminal
29.1. terminal
29.1.1. resize - set TERMCAP and terminal settings to current xterm window size
29.1.2. tset, reset - terminal initialization
29.1.3. stty - change and print terminal line settings
29.2. tput
29.2.1. Change the prompt color using tput
29.3. dialog
29.3.1. --inputbox
29.4. whiptail - display dialog boxes from shell scripts
29.4.1. --msgbox
29.4.2. --infobox
29.4.3. --yesno
29.4.4. --inputbox
29.4.5. --passwordbox
29.4.6. --textbox
29.4.7. --checklist
29.4.8. --radiolist
29.4.9. --menu
29.4.10. --gauge
III. Network Application
30. network tools
30.1. curl / w3m / lynx
31. OpenNTPD
31.1. install
31.1.1. ntpd - Network Time Protocol (NTP) daemon
31.1.2. Ubuntu
31.1.3. ntpdate
31.2. ntpdate
31.2.1. CentOS 7
31.2.2. CentOS 6
31.3. ntpd.conf / ntp.conf
31.3.1. server 配置
31.3.2. ntp 安全设置
31.4. ntpstat - show network time synchronisation status
31.5. ntpq - standard NTP query program
32. DHCP
32.1. DHCP Server
32.2. dhclient
32.3. release matching connections
33. DNS/Bind
33.1. 安装 bind9
33.2. forwarders
33.3. Load Balancing
33.4. view
33.5. Master / Slave
33.5.1. master /etc/named.conf
33.5.2. slave /etc/named.conf
33.5.3. FAQ
33.6. DNS tools
33.6.1. dig - DNS lookup utility
33.6.2. nslookup - query Internet name servers interactively
33.7. DNS
33.7.1. OpenDNS
33.7.2. Google DNS
33.8. NamedManager
34. dnsmasq
34.1. Install
34.1.1. CentOS / Redhat
34.1.2. Debian / Ubuntu
34.1.3. Firewall 设置
34.2. /etc/dnsmasq.conf
34.3. dnsmasq.resolv.conf
34.4. dnsmasq.hosts
34.5. /etc/dnsmasq.d/dnsmasq.server.conf
34.6. /etc/dnsmasq.d/dnsmasq.address.conf
34.6.1. 域名劫持
34.7. FAQ
35. rinetd — internet “redirection server”
35.1. rinetd install
35.1.1. ubuntu
35.1.2. centos
35.2. rinetd.conf
35.3. 防御脚本
35.4. rinetd.log
36. News Group (innd)
36.1. Ubuntu
36.2. CentOS
36.3. User Authentication
36.4. usenet 管理
36.5. 通过SSL连接
36.6. src.rpm 安装
36.7. 常用新闻组
37. IRC - Internet Relay Chat
37.1. IRC Protcol
37.2. IRC Commands
37.3. ircd-irc2 - The original IRCNet IRC server daemon
37.4. ircd-hybrid
37.5. IRC Client
37.5.1. ircII - interface to the Internet Relay Chat system
37.5.2. HydraIRC
37.5.3. XChat
37.5.4. Web IRC
37.5.5. Irssi - a modular IRC client for UNIX
37.5.6. F-IRC
38. jabber XMPP
38.1. ejabberd - Distributed, fault-tolerant Jabber/XMPP server written in Erlang
38.1.1. ejabberdctl
38.2. tigase
38.3. Openfire
38.4. DJabberd
38.5. freetalk - A console based Jabber client
38.6. library
38.6.1. python-xmpp
39. Proxy Server
39.1. Apache Proxy
39.2. Squid - Internet Object Cache (WWW proxy cache)
39.2.1. 源码安装
39.2.2. debian/ubuntu 安装
39.2.3. 配置
39.2.4. Squid 管理
39.2.5. 禁止页面被Cache
39.2.6. Squid 实用案例
39.2.7. squid+icap+clamav
39.3. Web page proxy
39.3.1. Surrogafier
39.3.2. CGIproxy
39.3.3. PHPProxy
39.3.4. BBlocked
39.3.5. Glype
39.3.6. Zelune
39.4. SOCKS
39.4.1. Socks5
39.4.2. dante-server - SOCKS (v4 and v5) proxy daemon(danted)
39.4.3. SSH Socks5 Tunnel
39.4.4. hpsockd - HP SOCKS server
40. Firewall
40.1. TCP/IP 相关内核配置项
40.1.1. net.ipv4.ip_forward
40.1.2. net.ipv4.icmp_echo_ignore_all
40.2. iptables - administration tools for packet filtering and NAT
40.2.1. Getting Started
40.2.2. 用户自定义规则连
40.2.3. Protocols 协议
40.2.4. Interfaces 网络适配器接口
40.2.5. 源IP地址
40.2.6. Ports 端口
40.2.7. NAT
40.2.8. Module(模块)
40.2.9. IPV6
40.2.10. iptables-xml - Convert iptables-save format to XML
40.2.11. access.log IP封锁脚本
40.2.12. Example
40.3. ulogd - The Netfilter Userspace Logging Daemon
40.4. ufw - program for managing a netfilter firewall
40.4.1. /etc/default/ufw
40.4.2. ip_forward
40.4.3. DHCP
40.4.4. Samba
40.5. Firewalld
40.5.1. firewalld
40.5.2. 如果你不习惯使用firewalld想用回Iptables
40.6. Shorewall
40.6.1. Installation Instructions
40.6.2. Configuring Shorewall
40.7. Firewall GUI Tools
40.8. Endian Firewall
40.9. Smooth Firewall
40.10. Sphirewall
41. Stunnel - universal SSL tunnel
42. OpenSSH
42.1. 安装 OpenSSH
42.2. /etc/ssh/
42.2.1. sshd_config
42.2.2. ssh_config
42.2.3. ~/.ssh/config
42.3. OpenSSH Tunnel
42.3.1. SOCKS v5 Tunnel
42.4. ssh-keygen — authentication key generation, management and conversion
42.4.1. .ssh/known_hosts
42.5. ssh-keyscan
42.6. ssh-copy-id - install your public key in a remote machine's authorized_keys
42.7. ssh-agent
42.7.1. ssh-add
42.7.2. Lock / Unlock agent
42.7.3. Set lifetime (in seconds) when adding identities.
42.8. OpenSSH for Windows
42.8.1. Putty Client
42.9. FAQ
42.9.1. Pseudo-terminal will not be allocated because stdin is not a terminal.
42.9.2. 去掉 passphrase
42.9.3. 打印调试信息
43. VPN (Virtual Private Network)
43.1. OpenVPN (openvpn - Virtual Private Network daemon)
43.1.1. 源码安装
43.1.2. Openvpn Server
43.1.3. openvpn - secure IP tunnel daemon.
43.1.4. 吊销(revoke)用户证书
43.1.5. Openvpn Client
43.1.6. OpenVPN GUI for Windows
43.1.7. point-to-point VPNs
43.1.8. VPN 案例
43.1.9. OpenVPN安全
43.2. pptpd
43.2.1. Server 服务端
43.2.2. Client 客户端
43.2.3. FAQ
43.3. l2tpd - dummy package for l2tpd to xl2tpd transition
43.4. strongswan - IPSec utilities for strongSwan
43.4.1. 安装 strongswan VPN 服务器
43.4.2. 防火墙配置
43.4.3. 配置 IPSEC
43.4.4. Windows 10 VPN 客户端配置
43.4.5. FAQ
43.5. openswan - IPSEC utilities for Openswan
43.6. Ipsec VPN
43.6.1. ipsec-tools - IPsec tools for Linux
43.7. N2N VPN
43.8. Hypersocket VPN
44. Point to Point
44.1. download
44.1.1. rtorrent - ncurses BitTorrent client based on LibTorrent
44.1.2. mldonkey-server - Door to the 'donkey' network
44.1.3. amule - client for the eD2k and Kad networks, like eMule
IV. Web Application
45. Apache httpd
45.1. Install
45.1.1. Quick install apache with aptitude
45.1.2. CentOS 6
45.1.3. Compile and then install Apache
45.1.4. XAMPP
45.2. Module
45.2.1. Output a list of modules compiled into the server.
45.2.2. Core
45.2.3. mpm
45.2.4. Apache Log
45.2.5. mod_access
45.2.6. VirtualHost
45.2.7. Alias / AliasMatch
45.2.8. Redirect / RedirectMatch
45.2.9. Rewrite
45.2.10. Proxy
45.2.11. Deflate
45.2.12. Expires
45.2.13. Cache
45.2.14. usertrack
45.2.15. Charset
45.2.16. Dir
45.2.17. Includes
45.2.18. Apache Status
45.2.19. Mod Perl
45.2.20. mod_pagespeed -
45.2.21. Module FAQ
45.2.22. mod_setenvif
45.2.23. PHP 程序安全问题 php_admin_value
45.2.24. mod_spdy
45.3. 设置Apache实现防盗连
45.4. .htaccess
45.5. Error Prompt
45.5.1. Invalid command 'Order', perhaps misspelled or defined by a module not included in the server configuration
45.5.2. Invalid command 'AuthUserFile', perhaps misspelled or defined by a module not included in the server configuration
46. Nginx
46.1. Installing
46.1.1. Installing by apt-get under the debain/ubuntu
46.1.2. CentOS
46.1.3. installing by source
46.1.4. -V show version and configure options then exit
46.1.5. config test
46.1.6. rotate log
46.1.7. CentOS 7
46.2. nginx 配置文件
46.2.1. http 配置
46.2.2. events
46.2.3. gzip
46.2.4. server_tokens
46.2.5. ssi
46.2.6. server
46.2.7. HTTP2 配置 SSL证书
46.2.8. rewrite
46.2.9. upstream 负载均衡
46.2.10. fastcgi
46.2.11. return
46.2.12. Nginx 变量
46.3. Proxy
46.3.1. proxy_cache
46.3.2. rewrite + proxy_pass
46.3.3. request_filename + proxy_pass
46.3.4. $request_uri 与 proxy_pass 联合使用
46.3.5. try_files 与 proxy_pass 共用
46.3.6. Proxy 与 SSI
46.3.7. Host
46.3.8. expires
46.3.9. X-Forwarded-For
46.3.10. X-Sendfile
46.3.11. proxy_http_version
46.3.12. proxy_set_header
46.3.13. timeout 超时时间
46.3.14. example
46.4. Nginx module
46.4.1. stub_status
46.4.2. sub_filter 页面中查找和替换
46.4.3. auth_basic
46.4.4. valid_referers
46.4.5. ngx_http_flv_module
46.4.6. ngx_http_mp4_module
46.4.7. limit_zone
46.4.8. image_filter
46.5. Example
46.5.1. Nginx + Tomcat
46.5.2. 拦截index.html
46.5.3. Session 的 Cookie 域处理
46.6. FAQ
46.6.1. 405 Not Allowed?
46.6.2. 502 Bad Gateway?
46.6.3. 413 Request Entity Too Large
46.6.4. 502 Bad Gateway?
46.6.5. 499 Client Closed Request
46.6.6. proxy_pass
46.6.7. proxy_pass SESSION 丢失问题
46.6.8. [alert] 55785#0: *11449 socket() failed (24: Too many open files) while connecting to upstream
46.6.9. server_name 与 SSI 注意事项
46.6.10. location 跨 document_root 引用,引用 document_root 之外的资源
46.6.11. nginx: [warn] duplicate MIME type "text/html" in /etc/nginx/nginx.conf
47. Apache Tomcat
47.1. Tomcat 安装与配置
47.1.1. Tomcat 6
47.1.2. Tomcat 7
47.1.3. Java 8 + Tomcat 8
47.1.4. 防火墙配置
47.1.5. 同时运行多实例
47.1.6. Testing file
47.1.7. mod_jk
47.1.8. mod_proxy_ajp
47.1.9. RewriteEngine 连接 Tomcat
47.2. 配置 Tomcat 服务器
47.2.1. server.xml
47.2.2. tomcat-users.xml
47.2.3. context.xml
47.2.4. logging.properties
47.3. 虚拟主机配置
47.3.1. 方案一
47.3.2. 方案二
47.3.3. Alias 别名
47.3.4. access_log
47.3.5. Context 配置
47.3.6. 主机绑定IP地址
47.4. SSI
47.5. Logging 日志
47.5.1. 开启 debug 模式
47.5.2. 切割 catalina.out 日志
47.6. Init.d Script
47.6.1. Script 1
47.6.2. Shell Script 2
48. Lighttpd
48.1. 安装Lighttpd
48.1.1. quick install with aptitude
48.1.2. yum install
48.1.3. to compile and then install lighttpd
48.2. /etc/lighttpd/lighttpd.conf
48.2.1. max-worker / max-fds
48.2.2. accesslog.filename
48.2.3. ETags
48.2.4. server.tag
48.3. Module
48.3.1. simple_vhost
48.3.2. ssl
48.3.3. redirect
48.3.4. rewrite
48.3.5. alias
48.3.6. auth
48.3.7. compress
48.3.8. expire
48.3.9. status
48.3.10. setenv
48.3.11. fastcgi
48.3.12. user-agent
48.3.13. spdy
48.4. 其他模块
48.4.1. mod_secdownload 防盗链
48.5. Example
48.5.1. s-maxage
49. Resin
49.1. 安装Resin
49.1.1. 直接使用
49.1.2. Debian/Ubuntu
49.1.3. 源码安装Resin
49.2. Compiling mod_caucho.so
49.3. resin.conf
49.3.1. Maximum number of threads
49.3.2. Configures the keepalive
49.3.3. ssl
49.4. virtual hosts
49.4.1. explicit host
49.4.2. regexp host
49.4.3. host-alias
49.4.4. configures a deployment directory for virtual hosts
49.4.5. Resources
49.5. FAQ
49.5.1. java.lang.OutOfMemoryError: PermGen space
50. Application Server
50.1. Zope
50.2. JBoss - JBoss Enterprise Middleware
51. Web Server Optimization
51.1. ulimit
51.1.1. open files
51.2. khttpd
51.3. php.ini
51.3.1. Resource Limits
51.3.2. File Uploads
51.3.3. Session Shared
51.3.4. PATHINFO
51.4. APC Cache (php-apc - APC (Alternative PHP Cache) module for PHP 5)
51.5. Zend Optimizer
51.6. eaccelerator
52. varnish - a state-of-the-art, high-performance HTTP accelerator
52.1. Varnish Install
52.2. varnish utility
52.2.1. status
52.2.2. varnishadm
52.2.3. varnishtop
52.2.4. varnishhist
52.2.5. varnishsizes
52.3. log file
52.4. Varnish Configuration Language - VCL
52.4.1. unset / set
52.5. example
53. Apache Traffic Server
53.1. Install
53.2. Configure
54. Cherokee
54.1. Installing Cherokee
55. Jetty
56. Other Web Server
56.1. Python SimpleHTTPServer
57. web 服务器排名
57.1. HTTP状态码
58. HTTP2
58.1. Chrome
V. Mail Server
59. Mail server constituent
60. mail user agent (MUA)
60.1. mail
60.2. mutt - text-based mailreader supporting MIME, GPG, PGP and threading
60.2.1. 发送邮件
60.3. alpine - Text-based email client, friendly for novices but powerful
60.4. fetchmail - SSL enabled POP3, APOP, IMAP mail gatherer/forwarder
60.5. GPG4WIN
60.6. Evolution
61. exim - meta-package to ease Exim MTA (v4) installation
61.1. install
61.1.1. ubuntu/debian
61.1.2. CentOS/Redhat
61.2. exim 命令
61.2.1. 刷新邮件队列
61.3. 配置exim
61.3.1. /etc/aliases 别名配置
61.4. FAQ
61.4.1. Mailing to remote domains not supported
62. postfix - High-performance mail transport agent
62.1. install
62.1.1. Ubuntu
62.1.2. CentOS
62.1.3. OSCM 通过配置管理脚本安装
62.2. 配置 Postfix
62.2.1. 转发配置
62.2.2. 拒收垃圾邮件
62.2.3. 收件箱配置
62.2.4. 邮件投递
62.2.5. 队列配置
62.2.6. 客户端
62.3. dkim
62.3.1. 增加域名
62.3.2. 测试
62.4. Rspamd
62.5. /var/log/maillog
62.5.1. 计算每分钟发送数量日志统计
62.5.2. 虚假地址统计
62.6. Post 命令
62.6.1. postconf - Postfix configuration utility
62.6.2. postsuper
62.6.3. postqueue - Postfix queue control
62.6.4. postmulti - Postfix multi-instance manager
62.7. Example
62.7.1. 站内电邮发送
62.7.2. EDM 服务器
62.8. FAQ
62.8.1. SMTP ERROR: RCPT TO command failed: 501 5.1.3 Bad recipient address syntax
62.8.2. connect to gmail-smtp-in.l.google.com[2607:f8b0:400e:c00::1a]:25: Network is unreachable
62.8.3. opendkim[5762]: 3012A802C1DD: [49.213.11.18] [49.213.11.18] not internal
62.8.4. opendkim[12578]: 4CC5C802C382: no signature data
62.8.5. /etc/opendkim/keys/default.private: open(): No such file or directory
63. 邮件原文
63.1. Subject Unicode
63.2. TO/CC/BCC
63.3. 正文
63.4. POP Sniffer
63.5. PHP mail()
64. 反垃圾邮件相关
64.1. Sender Policy Framework
64.1.1. 分析 SPF 记录
64.2. DKIM
64.3. 邮件被拒收处理方法
64.3.1. NetEase
64.3.2. Sohu
64.3.3. Tom
64.3.4. QQ
64.3.5. 21CN
65. Fax
65.1. HylaFAX
66. FAQ
66.1. 通过SSH与控制台不能登录
VI. Backup, Recovery, and Archiving Solutions
67. Logical Volume Manager (LVM)
67.1. 物理卷管理(physical volume)
67.1.1. pvcreate
67.1.2. pvdisplay
67.1.3. pvs
67.2. 卷组管理(Volume Group)
67.2.1. vgcreate
67.2.2. vgdisplay
67.2.3. vgs
67.2.4. vgchange
67.2.5. vgextend
67.2.6. vgreduce
67.3. 逻辑卷管理(logical volume)
67.3.1. lvcreate
67.3.2. lvdisplay
67.3.3. lvremove
67.4. Format
67.5. mount
67.5.1. lv
67.5.2. snapshot
67.6. snapshot backup
68. 文件传输
68.1. 跨服务器文件传输
68.1.1. scp - secure copy (remote file copy program)
68.1.2. nc - TCP/IP swiss army knife
68.2. wget - retrieves files from the web
68.2.1. 下载所有图片
68.2.2. mirror
68.2.3. reject
68.2.4. ftp 下载
68.3. axel - A light download accelerator - Console version
69. FTP (File Transfer Protocol)
69.1. lftp
69.1.1. pget
69.1.2. lftp 批处理
69.2. ncftp
69.2.1. batch command
69.2.2. ncftpget
69.2.3. ncftpput
69.3. FileZilla
69.4. vsftpd - The Very Secure FTP Daemon
69.4.1. 安装 vsftpd
69.4.2. ftp 帐号的shell权限
69.4.3. vsftpd 认证模块
69.4.4. chroot
69.4.5. FAT
69.5. ProFTPD + MySQL / OpenLDAP 用户认证
69.5.1. Proftpd + MySQL
69.5.2. Proftpd + OpenLDAP
69.6. Pure-FTPd + LDAP + MySQL + PGSQL + Virtual-Users + Quota
70. File Synchronize
70.1. rsync - fast remote file copy program (like rcp)
70.1.1. 安装Rsync与配置守护进程
70.1.2. rsyncd.conf
70.1.3. rsync 参数说明
70.1.4. step by step to learn rsync
70.1.5. rsync examples
70.1.6. rsync for windows
70.1.7. 多进程 rsync 脚本
70.2. tsync
70.3. Unison File Synchronizer
70.3.1. local
70.3.2. remote
70.3.3. config
70.4. csync2 - cluster synchronization tool
70.4.1. server
70.4.2. node
70.4.3. test
70.4.4. Advanced Configuration
70.4.5. 编译安装
70.5. synctool
71. File Share
71.1. NFSv4
71.1.1. Ubuntu
71.1.2. CentOS
71.1.3. exports
71.1.4. NFS For Windows
71.1.5. exportfs - maintain table of exported NFS file systems
71.2. Parallel NFS(pNFS)
71.3. Samba
71.3.1. install
71.3.2. smb.conf
71.3.3. testparm - check an smb.conf configuration file for internal correctness
71.3.4. smbstatus - report on current Samba connections
71.3.5. smbpasswd - change a user's SMB password
71.3.6. nmblookup - NetBIOS over TCP/IP client used to lookup NetBIOS names
71.3.7. smbfs/smbmount/smbumount
71.3.8. smbclient - ftp-like client to access SMB/CIFS resources on servers
71.3.9. smbtar - shell script for backing up SMB/CIFS shares directly to UNIX tape drives
71.3.10. by Example
71.3.11. FAQ
72. Distributed File Systems
72.1. DRBD (Distributed Replicated Block Device)
72.1.1. disk and partition
72.1.2. Installation
72.1.3. configure
72.1.4. Starting
72.1.5. Using
72.2. Network Block Device protocol
72.2.1. nbd-server - Network Block Device protocol - server
72.2.2. nbd-client - Network Block Device protocol - client
72.3. GridFS
72.3.1. nginx-gridfs
72.3.2. lighttpd-gridfs
72.4. Moose File System
72.4.1. Master server installation
72.4.2. Backup server (metalogger) installation
72.4.3. Chunk servers installation
72.4.4. Users’ computers installation
72.4.5. Testing MFS
72.5. LizardFS
72.6. Hadoop - HDFS
72.6.1. 单机安装
72.6.2. 分布式安装
72.6.3. 二进制包安装
72.6.4. FAQ
72.7. Ceph
72.7.1. Installation on Ubuntu
72.7.2. Installation on CentOS
72.7.3. Block Devices
72.8. GlusterFS
72.8.1. glusterfs-server
72.8.2. glusterfs-client
72.8.3. Testing
72.8.4. RAID
72.8.5. Filesystem Administration
72.8.6. CentOS 6.3
72.9. Lustre
72.10. MogileFS
72.11. Kosmos distributed file system (KFS)
72.12. BeeGFS - The Parallel Cluster File System
72.13. Coda
72.14. OpenAFS
73. Shared Storage
73.1. Oracle OCFS2
73.1.1. 安装
73.2. GFS2
73.3. fam & imon
74. Network Attached Storage(NAS 网络附加存储)
74.1. Network Storage - Openfiler
74.1.1. Accounts
74.1.2. Volumes
74.1.3. Quota
74.1.4. Shares
74.2. OpenMediaVault
74.3. FreeNAS
75. Backup / Restore
75.1. 备份策略
75.1.1. Incremental backup
75.1.2. Differential backup
75.2. dump / restore
75.3. Bacula, the Open Source, Enterprise ready, Network Backup Tool for Linux, Unix, Mac and Windows.
75.3.1. Install Backup Server
75.3.2. Install Backup Client
75.4. Amanda: Open Source Backup
75.5. Attic - 拥有重复数据删除技术的备份软件
75.5.1. 安装 Attic
75.5.2. 快速开始
75.6. SafeKeep
75.7. Opendedup
76. inotify
76.1. inotify-tools
76.2. Incron - cron-like daemon which handles filesystem events
76.2.1. incrontab - inotify cron table manipulator
76.2.2. 使用说明
76.3. inotify-tools + rsync
76.4. pyinotify
VII. Monitoring
91. NET SNMP (Simple Network Management Protocol)
91.1. 安装SNMP
91.1.1. Ubuntu
91.1.2. CentOS
91.2. 配置SNMP
91.2.1. community 配置
91.2.2. 定义可操作的范围
91.3. SNMP 命令
91.3.1. snmpwalk
91.3.2. snmpget
91.3.3. snmptest
91.4. Cisco MBI
91.4.1. Cisco 3750
91.4.2. Cisco ASA 5550
92. Zabbix
92.1. Installing and Configuring Zabbix
92.1.1. Ubuntu
92.1.2. CentOS Zabbix 2.4
92.1.3. Zabbix 3.x CentOS 7
92.2. web ui
92.2.1. 警告脚本
92.3. zabbix-java-gateway - Zabbix java gateway
92.4. zabbix-agent
92.4.1. Ubuntu
92.4.2. CentOS 7
92.4.3. zabbix_agentd 命令
92.4.4. Nginx status 监控
92.4.5. redis
92.4.6. MongoDB
92.4.7. PHP-FPM
92.4.8. Elasticsearch
92.4.9. Postfix
92.4.10. TCP stats
92.4.11. 应用依赖检查
92.4.12. Oracle
93. Cacti
93.1. Install Cacti for Ubuntu
93.2. Yum 安装
93.3. Source Install
93.4. Web 安装
93.5. Cacti plugins
93.5.1. Percona monitoring plugins
93.6. Template
93.6.1. Nginx
93.6.2. php-fpm
93.6.3. MySQL
93.6.4. Redis
93.6.5. Percona JMX Monitoring Template for Cacti
94. Nagios
94.1. Install
94.1.1. Nagios core
94.1.2. Monitor Client nrpe
94.1.3. Monitoring Windows Machines
94.1.4. PNP4Nagios 图表插件
94.2. nagios
94.3. nrpe node
94.4. 配置 Nagios
94.4.1. authorized
94.4.2. contacts
94.4.3. hostgroups
94.4.4. generic-service
94.4.5. SOUND OPTIONS
94.4.6. SMS 短信
94.4.7. nrpe plugins
94.5. 配置监控设备
94.5.1. routers
94.5.2. host
94.5.3. service
94.6. Nagios Plugins
94.6.1. check_ping
94.6.2. check_procs
94.6.3. check_users
94.6.4. check_http
94.6.5. check_mysql
94.6.6. Disk
94.6.7. check_tcp
94.6.8. check_log
94.6.9. check_traffic
94.6.10. Nagios nrpe plugins
94.6.11. check_nt
94.6.12. nsca - Nagios Service Check Acceptor
94.6.13. jmx
94.7. FAQ
94.7.1. Macro Name
94.7.2. 插件开发手册
95. ElasticSearch + Logstash + Kibana
95.1. ElasticSearch + Logstash + Kibana 安装
95.1.1. ElasticSearch 安装
95.1.2. Kibana 安装
95.1.3. Logstash 安装
95.1.4. Beats 安装
95.2. 配置 Broker(Redis)
95.2.1. indexer
95.2.2. shipper
95.3. logstash 配置项
95.3.1. input
95.3.2. filter
95.3.3. output
95.4. FAQ
95.4.1. 查看 Kibana 数据库
95.4.2. logstash 无法写入 elasticsearch
95.4.3. 标准输出
96. Logs 分析
96.1. log
96.1.1. logwatch
96.1.2. logcheck : Analyzes log files and sends noticeable events as email
96.1.3. nulog
96.2. Web
96.2.1. Apache Log
96.2.2. awstats
96.2.3. webalizer
96.2.4. Sarg - Squid Analysis Report Generator
96.2.5. goaccess - Fast web log analyzer and interactive viewer.
96.3. Tomcat
96.3.1. 截取 0-3 点区间的日志
96.3.2. 监控Redis
96.4. Mail
96.4.1. pflogsumm.pl - Produce Postfix MTA logfile summary
96.5. OpenSSH 日志 /var/log/secure
96.5.1. 查看登陆用户
96.6. rinetd.log
96.7. php-syslog-ng
96.8. Log Analyzer
96.9. Splunk
96.10. Octopussy
96.11. eventlog-to-syslog
96.12. Apache Flume
97. MRTG
97.1. Ubuntu 安装
97.2. CentOS 安装
97.3. 监控多个设备
97.4. 批量生成监控配置文件
97.5. 图片尺寸
98. Munin
98.1. Ubuntu
98.1.1. Installation Monitor Server
98.1.2. Installation Node
98.1.3. Additional Plugins
98.1.4. plugins
98.2. CentOS
98.3. 用户认证
98.4. munin-node and plugins
98.4.1. munin-node.conf
98.4.2. mysql plugin
98.4.3. apache plugin
98.4.4. memcached plugin
98.5. munin.conf
98.6. munin-node
98.6.1. munin-node.conf
99. Ntop
99.1. Installation
99.1.1. Ubuntu
99.1.2. CentOS
99.2. Web UI
99.3. Plugins
99.3.1. NetFlow
100. Bandwidth
100.1. apt-get install
100.2. CentOS rpm/yum
100.3. source code
100.4. /etc/bandwidthd.conf
101. NetFlow
101.1. flow-tools - collects and processes NetFlow data
101.1.1. flow-capture
101.1.2. NetFlow into MySQL with flow-tools
101.2. netams - Network Traffic Accounting and Monitoring Software
101.2.1. netams-web
102. Ganglia
102.1. Server
102.2. Client
102.3. Plugin
102.4. Installing Ganglia on Centos
103. lvs-rrd
104. Observium
104.1. Installation
105. OpenTSDB
106. Graphite
107. Graphite - Scalable Realtime Graphing
108. BIG BROTHER
109. Big Sister
110. OpenNMS
111. Performance Co-Pilot
112. Clumon Performance Monitor
113. Zenoss
114. 商业软件
115. Hyperic HQ
116. OSSIM,Spiceworks,FireGen,LANSweeper,OSSEC,HIDS
117. HawtIO
118. moloch
119. varnish - a state-of-the-art, high-performance HTTP accelerator
119.1. Varnish Install
119.2. varnish utility
119.2.1. status
119.2.2. varnishadm
119.2.3. varnishtop
119.2.4. varnishhist
119.2.5. varnishsizes
119.3. log file
119.4. Varnish Configuration Language - VCL
119.4.1. unset / set
119.5. example
120. Apache Traffic Server
120.1. Install
120.2. Configure
VIII. Server Load Balancing
121. heartbeat
121.1. heartbeat+ldirectord
121.1.1. heartbeat
121.1.2. ldirectord
121.1.3. test
121.2. Pacemaker
122. Linux Virtual Server
122.1. 环境配置
122.2. VS/NAT
122.3. VS/TUN
122.4. VS/DR
122.4.1. 配置文件
122.5. ipvsadm script
122.6. Timeout
122.7. debug
122.8. ipvsadm monitor
123. keepalived
123.1. 安装
123.2. test
123.3. HAProxy and Keepalived (Virtual IP)
124. Piranha - Cluster administation tools
124.1. install
124.2. configure
124.3. real server
124.4. Example
124.4.1. Master
124.4.2. Slave
124.4.3. MySQL
125. HAProxy - fast and reliable load balancing reverse proxy
125.1. Installing
125.1.1. Ubuntu
125.1.2. CentOS
125.2. haproxy.cfg
125.2.1. stats
125.2.2. listen 方式
125.2.3. frontend/backend 方式
125.2.4. option
125.2.5. balance
125.2.6. server
125.3. Example 配置实例
125.3.1. HTTP 配置实例
125.3.2. Squid
125.3.3. haproxy + mysql 配置实例
125.3.4. HTTPS SSL证书卸载配置实例
125.3.5. 使用TCP模式实现SSL穿透
125.3.6. SMTP
126. balance - Load balancing solution and generic tcp proxy
126.1. balance
126.1.1. 编译安装
126.1.2. Ubuntu 安装
126.1.3. 测试安装是否正确
126.1.4. 用法
126.2. BalanceNG
126.3. RBridge
127. Perlbal
127.1. install
128. Pacemaker
129. Example
129.1. 双负载均衡的用法
129.2. 单台负载均衡的用法
129.3. 广域网负载均衡的用法
130. FAQ
130.1. Haproxy 与 Nginx
IX. Distributed Computing
131. Open Source Distributed Computing
131.1. Boinc (berkeley 分布式计算平台)
131.1.1. rc.local
131.2. ubuntu apt-get 安装
131.3. CentOS 安装
131.4. boinccmd
131.4.1. attach_project
131.4.2. nomorework | allowmorework 禁止下载任务 / 允许下载任务
132. Twitter Storm
132.1. 单机版
132.2. lein 安装
133. High performance Computing
133.1. Distributed Computing
133.1.1. OpenMosix
133.1.2. OpenSSI
133.2. Parallel Computing
133.2.1. EnFusion
133.2.2. SCore
133.2.3. Beowulf
134. Spark
135. Tachyon
136. Apache ZooKeeper
136.1. 安装配置
136.1.1. 单节点安装
136.1.2. 多节点安装
136.2. 管理 ZooKeeper
136.2.1. help
136.2.2. ls
136.2.3. create
136.2.4. get
136.2.5. set
136.2.6. delete
X. Security
137. Authentication
137.1. /etc/login.defs
137.2. PAM 插件认证
137.2.1. pam_tally2.so
137.2.2. pam_listfile.so
137.2.3. pam_access.so
137.2.4. pam_wheel.so
137.3. Network Authentication
137.3.1. Network Information Service (NIS)
137.3.2. OpenLDAP
137.3.3. Kerberos
137.3.4. FreeRADIUS (Remote Authentication Dial In User Service)
137.3.5. SASL (Simple Authentication and Security Layer)
137.3.6. GSSAPI (Generic Security Services Application Program Interface)
138. Sniffer
138.1. nmap - Network exploration tool and security / port scanner
138.1.1. 端口扫描
138.1.2. HOST DISCOVERY
138.1.3. SCAN TECHNIQUES
138.1.4. PORT SPECIFICATION AND SCAN ORDER
138.1.5. SCRIPT SCAN
138.1.6. OS DETECTION
138.1.7. OUTPUT
138.1.8. MISC
138.1.9. Nmap Scripting Engine (NSE)
138.2. tcpdump - A powerful tool for network monitoring and data acquisition
138.2.1. 监控网络适配器接口
138.2.2. 监控主机
138.2.3. 监控TCP端口
138.2.4. 监控协议
138.2.5. 输出到文件
138.2.6. src / dst
138.2.7. 保存结果
138.2.8. Cisco Discovery Protocol (CDP)
138.2.9. Flags
138.2.10. 案例
138.3. cdpr - Cisco Discovery Protocol Reporter
138.4. ncat - Concatenate and redirect sockets
138.4.1. TCP 数据传输
138.4.2. UDP 数据传输
138.4.3. 始终保持服务器开启
138.4.4. 传输视频流
138.5. ngrep - Network layer grep tool
138.5.1. 匹配关键字
138.5.2. 指定网络接口
138.6. Unicornscan,Zenmap,nast
138.7. netstat-nat - Show the natted connections on a linux iptable firewall
138.8. Tcpreplay
138.9. Wireshark
139. sqlmap - automatic SQL injection and database takeover tool
139.1. Installation
139.2. 开始入住实验
139.2.1. 测试脚本
139.2.2. sqlmap.ini
139.3. Request参数
139.3.1. --method, --data
139.3.2. --cookie
139.3.3. --referer
139.3.4. --user-agent
139.3.5. --headers
139.3.6. --referer
139.3.7. auth
139.3.8. --proxy
139.3.9. --threads
139.3.10. --delay
139.3.11. --timeout
139.4. Injection
139.4.1. --dbms
139.4.2. --prefix
139.4.3. --postfix
139.4.4. --string
139.4.5. --regexp
139.4.6. --excl-str
139.4.7. --excl-reg
139.5. Techniques
139.5.1. --stacked-test
139.5.2. --time-test
139.5.3. --union-test
139.5.4. --union-tech
139.5.5. --union-use
139.6. Enumeration
139.6.1. dbs
139.6.2. --count
139.6.3. --dump/--dump-all
139.6.4. --sql-query
139.6.5. --sql-shell
139.7. Miscellaneous
139.7.1. --update
139.7.2. --save
140. Vulnerability Scanner
140.1. Nessus
140.2. OpenVAS
141. Injection & Penetration
141.1. Backtrack Linux
142. SELinux
142.1. getsebool - get SELinux boolean value
142.2. sestatus - SELinux status tool
142.3. setsebool - set SELinux boolean value
142.4. chcon - change file SELinux security context
142.5. rsync
143. Suricata Engine
144. psad
145. fwknop
146. fwsnort
147. nftables
148. Haka
XI. Configuration Management(配置管理)
149. Ansible - SSH-based configuration management, deployment, and task execution system
149.1. install
149.2. Getting Started
149.3. ansible - run a command somewhere else
149.3.1. host-pattern
149.3.2. -a MODULE_ARGS, --args=MODULE_ARGS module arguments
149.3.3. -i INVENTORY, --inventory-file=INVENTORY specify inventory host file (default=/etc/ansible/hosts)
149.3.4. -m MODULE_NAME, --module-name=MODULE_NAME module name to execute (default=command)
149.3.5. -s, --sudo run operations with sudo (nopasswd)
149.3.6. -u REMOTE_USER, --user=REMOTE_USER connect as this user (default=root)
149.3.7. 使用实例
149.4. ansible-doc - Show Ansible module documentation
149.5. ansible-playbook - run an ansible playbook
149.5.1. 包含文件用法
150. Capistrano
151. Puppet
151.1. Installing Puppet CentOS 6.3
151.2. Puppet 签名
151.2.1. Agent 节点
151.2.2. Master 服务器
151.3. test
151.3.1. Master
151.3.2. Agent
151.4. 配置文件
151.4.1. /etc/sysconfig/puppet
151.4.2. /etc/puppet/fileserver.conf
151.5. manifests
151.5.1. node
151.5.2. group, user 用户组管理
151.5.3. file
151.5.4. package
151.5.5. service
151.5.6. exec
151.5.7. cron
151.6. modules
151.7. firewall 配置
151.8. debug
151.8.1. master
151.8.2. node
151.9. FAQ
151.9.1. err: Could not request certificate: No route to host - connect(2)
151.9.2. No help available unless you have RDoc::usage installed
152. SaltStack
152.1. 安装 Salt Stack
152.1.1. 服务端安装
152.1.2. 客户端安装
152.1.3. 防火墙配置
152.1.4. key 管理
152.1.5. 测试
152.1.6. Demo
152.2. salt-key - Salt key is used to manage Salt authentication keys
152.3. salt 命令
152.3.1. cmd
152.3.2. pkg.install
152.3.3. network.interfaces
152.3.4. salt example
152.4. /etc/salt/master
152.4.1. File Server settings
152.4.2. Pillar settings
152.4.3. Node Groups
152.4.4. File Server Backend
152.5. sls 脚本
152.5.1. pkg
152.5.2. service
152.6. FAQ
152.6.1. Git fileserver backend is enabled in configuration but could not be loaded, is git-python installed
153. Chef
153.1. 安装 Chef
153.1.1. CentOS
154. Cobbler
155. Cfengine
156. func
157. (R)?ex Deployment & Configuration Management
158. 基于Web的系统管理软件
158.1. Webmin
158.1.1. webalizer
158.2. ajenti
XII. Virtualization
159. Docker
159.1. Installation
159.1.1. CentOS 6
159.1.2. CentOS 7 docker-ce
159.1.3. Ubuntu
159.1.4. Ubuntu docker-ce
159.2. 镜像
159.2.1. 搜索镜像
159.2.2. 获取镜像
159.2.3. 列出本地镜像
159.2.4. 创建镜像
159.2.5. 保存和载入镜像
159.2.6. 删除本地镜像
159.3. 容器
159.3.1. 启动与终止容器
159.3.2. 进入容器
159.3.3. 导出和导入容器
159.3.4. 删除容器
159.4. 仓库
159.4.1. 登陆仓库
159.4.2. 获取镜像
159.4.3. 上传镜像
159.5. 卷管理
159.5.1. 列出卷
159.5.2. 创建卷
159.5.3. 挂在镜像
159.5.4. 检查卷
159.5.5. 删除卷
159.5.6. 销毁所有未使用的卷
159.5.7. 在多个容器间共享卷
159.5.8. 容器绑定本地文件系统
159.6. 操作系统
159.6.1. /etc/hosts 配置
159.6.2. sysctl
159.6.3. ulimits
159.7. Dockerfile
159.8. docker 命令
159.8.1. run
159.8.2. start / stop / restart
159.8.3. ps
159.8.4. top
159.8.5. inspect
159.8.6. images
159.9. Docker Example
159.9.1. Example Java - Spring boot with Docker
160. Kernel-based Virtual Machine(KVM)
160.1. kvm install usage yum
160.1.1. brctl / tunctl
160.1.2. virt-install
160.2. Ubuntu
160.3. CentOS 6.2
160.4. Scientific Linux Virtualization
160.5. libvirt
160.5.1. virsh
160.5.2. Virtual Machine Manager
160.6. FAQ
160.6.1. No hypervisor options were found for this connection
160.6.2. 如何判断当前服务器是实体机还是虚拟机
161. Xen
161.1. install
161.2. Manager
162. OpenVZ
162.1. 安装OpenVZ
162.2. 使用OpenVZ & 建立VPS
162.2.1. 安装操作系统模板
162.2.2. 创建OpenVZ操作系统节点(VPS)
162.3. 设置VPS参数
163. 虚拟机界面
163.1. OpenStack
163.2. CloudStack
163.3. OpenNode
163.4. OpenNEbula
164. vagrant - Tool for building and distributing virtualized development environments
164.1. vagrant for windows
XIII. Multimedia
165. Audio
165.1. ardour
165.2. LMMS
165.3. Qsynth
165.4. Rosegarden
165.5. TerminatorX
165.6. Pulseaudio
165.7. Synthesizer
165.7.1. ZynAddSubFX
165.8. Drums
165.8.1. Hydrogen
166. Video
166.1. OpenShot
166.2. cinelerra-cv
166.3. FFmpeg
167. Graphics
167.1. ImageMagick
167.1.1. install
167.1.2. convert
167.2. GraphicsMagick
167.2.1. 安装
167.2.2. mogrify
167.3. Photivo
167.4. How to add metadata to digital pictures from the command line
168. Music score
168.1. LilyPond
168.1.1. Example
168.2. MuseScore
169. Stream
169.1. broadcast streaming
169.1.1. gnump3d - A streaming server for MP3 and OGG files
169.1.2. icecast2 - Ogg Vorbis and MP3 streaming media server
169.1.3. shoutcast
169.1.4. PeerCast
169.2. WebRTC
170. 其他命令
XIV. Voice over IP
171. Gnu Gatekeeper
171.1. Gnu Gatekeeper Install
171.2. Gnu Gatekeeper Configure
171.3. Gnu Gatekeeper Test
171.3.1. Part I - Microsoft Windows NetMeeting
171.3.2. Part II - ohphone
172. OpenSIPS
172.1. 安装 OpenSIPS
172.1.1. centos 6.5 默认安装
172.1.2. 使用 yum.opensips.org 源安装
172.1.3. 编译安装
172.2. 数据库部署
172.2.1. DBTEXT
172.2.2. MySQL
172.2.3. PGSQL
172.2.4. Berkeley DB
172.3. 测试 opensips
173. PBX
173.1. Asterisk (OpenSource Linux PBX that supports both SIP and H.323)
173.2. FreeSWITCH
173.3. Yate - Yet Another Telephony Engine (includes SIP to H.323 translation)
174. VOCAL (includes a SIP to H.323 translator)
175. SIP/H.323 客户端
175.1. linphone
175.2. Yate Client
XV. 项目管理工具
176. TRAC
176.1. Ubuntu 安装
176.1.1. source code
176.1.2. easy_install
176.1.3. Apache httpd
176.2. CentOS 安装
176.2.1. trac.ini
176.2.2. standalone
176.2.3. Using Authentication
176.2.4. trac-admin
176.3. Project Environment
176.3.1. Sqlite
176.3.2. MySQL
176.3.3. Plugin
176.4. trac.ini
176.4.1. repository
176.4.2. attachment 附件配置
176.5. trac-admin
176.5.1. adduser script
176.6. FAQ
176.6.1. TracError: Cannot load Python bindings for MySQL
176.7. Apache Bloodhound
177. GitLab
177.1. 安装 GitLab
177.2. GitLab Runner
177.3. 用户管理
177.4. 组管理
177.5. 项目管理
177.6. FAQ
177.6.1. gitolite 向 gitlab 迁移
177.6.2. 修改主机名
178. Redmine
178.1. CentOS 安装
178.2. Redmine 运行
178.3. 插件
178.3.1. workflow
179. TUTOS
180. Open Source Requirements Management Tool
181. Git - Fast Version Control System
181.1. Repositories 仓库管理
181.1.1. initial setup
181.1.2. checkout
181.1.3. Creating and Commiting
181.1.4. Manager remote
181.1.5. Status
181.1.6. Diff
181.1.6.1. --name-only 仅显示文件名
181.1.7. Cloning
181.1.8. Push
181.1.9. Pull
181.1.10. fetch
181.1.11. Creating a Patch
181.1.12. reset
181.2. Manipulating branches
181.2.1. list branches
181.2.2. create branches
181.2.3. delete branches
181.2.4. switch branch
181.2.5. git-show-branch - Show branches and their commits
181.3. Sharing Repositories with others
181.3.1. Setting up a git server
181.4. command
181.4.1. git-add - Add file contents to the index
181.4.2. git-status - Show the working tree status
181.4.3. git-commit - Record changes to the repository
181.4.4. git-show - Show various types of objects
181.4.5. git-checkout - Checkout and switch to a branch
181.4.5.1. checkout master
181.4.5.2. checkout branch
181.4.6. git config
181.5. git-daemon 服务器
181.5.1. git-daemon - A really simple server for git repositories
181.5.2. git-daemon-sysvinit
181.5.3. inet.conf / xinetd 方式启动
181.5.4. git-daemon-run
181.5.5. Testing
181.6. git-svn - Bidirectional operation between a single Subversion branch and git
181.7. .gitignore
181.8. .gitattributes
181.8.1. SVN Keywords
181.9. gitolite - SSH-based gatekeeper for git repositories
181.9.1. gitolite-admin
181.9.1.1. gitolite.conf
181.10. Web Tools
181.10.1. viewgit
181.11. FAQ
181.11.1. 导出最后一次修改过的文件
181.11.2. 导出指定版本区间修改过的文件
181.11.3. fatal: The remote end hung up unexpectedly
181.11.4. 回撤提交
182. Subversion
182.1. Invoking the Server
182.1.1. Installing
182.1.1.1. Ubuntu
182.1.1.2. CentOS 5
182.1.1.3. CentOS 6
182.1.2. standalone “daemon” process
182.1.2.1. starting subversion for debian/ubuntu
182.1.2.2. starting subversion daemon script for CentOS/Radhat
182.1.3. classic Unix-like inetd daemon
182.1.4. hooks
182.1.4.1. post-commit
182.1.5. WebDav
182.1.5.1. davfs2 - mount a WebDAV resource as a regular file system
182.2. repository 管理
182.2.1. create repository
182.2.2. user admin
182.2.3. authz
182.2.4. dump
182.3. 使用Subversion
182.3.1. Initialized empty subversion repository for project
182.3.2. ignore
182.3.3. 关键字替换
182.3.4. lock 加锁/ unlock 解锁
182.3.5. import
182.3.6. export 指定版本
182.3.7. 修订版本关键字
182.3.8. 恢复旧版本
182.4. branch
182.4.1. create
182.4.2. remove
182.4.3. switch
182.4.4. merge
182.4.5. relocate
182.5. FAQ
182.5.1. 递归添加文件
182.5.2. 清除项目里的所有.svn目录
182.5.3. color diff
182.5.4. cvs2svn
182.5.5. Macromedia Dreamweaver MX 2004 + WebDAV +Subversion
182.5.6. 指定用户名与密码
183. cvs - Concurrent Versions System
183.1. installation
183.1.1. chroot
183.2. cvs login | logout
183.3. cvs import
183.4. cvs checkout
183.5. cvs update
183.6. cvs add
183.7. cvs status
183.8. cvs commit
183.9. cvs remove
183.10. cvs log
183.11. cvs annotate
183.12. cvs diff
183.13. rename file
183.14. revision
183.15. cvs export
183.16. cvs release
183.17. branch
183.17.1. milestone
183.17.2. patch branch
183.18. keywords
184. 其他命令
185. IBM WebSphere
185.1. WebSphere Commerce Engerprise 7.0
185.2. UpdateInstaller (AppServer, Plugins, IBMIHS)
185.2.1. WAS
185.2.2. Plugins
185.2.3. IHS
185.2.4. backup
185.3. UpdateInstaller (CommerceServer70)
185.4. WebSphere Commerce Engerprise 7.0 Feature Pack 2.iso
185.5. creating a WebSphere Commerce instance
185.6. enableFeature
185.6.1. foundation
185.6.2. management-center
185.6.3. store-enhancements
185.6.4. checkEnablementStatus
185.6.5. check version
185.7. Start IBMIHS and AppServer
185.7.1. IBMIHS
185.7.2. AppServer
185.7.3. Starting and stopping the WebSphere Commerce Information Center
185.7.4. 管理入口
185.8. Initialization store
XVI. X Window
186. install x window
186.1. xinput - utility to configure and test X input devices
187. X Setup
187.1. 取消开机启动画面
187.2. Automatic login
187.3. fonts 字体
187.4. disable x window
188. X Terminal
188.1. tsclient - Terminal Server Client supporting XDMCP, VNC and RDP
188.1.1. VNC
188.1.2. xdmcp
188.2. vinagre - a remote desktop viewer for the GNOME Desktop
188.3. rdesktop - A Remote Desktop Protocol client
188.3.1. -g: desktop geometry (WxH)
188.3.2. -f: full-screen mode
188.3.3. -A: enable SeamlessRDP mode
188.3.4. -z: enable rdp compression
188.3.5. -r: enable specified device redirection (this flag can be repeated)
188.4. tigervnc
188.5. TightVNC
189. Unity
189.1. Enable/Disable Auto Hide For Unity 2-D Launcher In Ubuntu 11.10
190. X Window System
190.1. Fluxbox
190.2. LXDE
190.3. Xfce
190.4. Xming X Server for Windows
191. X Application Software
191.1. ubuntu-restricted-extras
191.2. Keyboard Input Methods(输入法)
191.3. 浏览器
191.3.1. Firefox
191.3.2. Chromium Web Browser
191.4. Download Software
191.5. PAC Manager
191.6. LibreOffice
191.7. VYM (View Your Mind)
191.8. greenshot
191.9. Window Switch
191.10. gparted
192. Office
192.1. Calc
192.1.1. 函数
193. FAQ
193.1. 通过SSH与控制台不能登录
1. 附录
1.1. 参考文档
1.2. Red Hat 漏洞
1.3. National Vulnerability Database (NVD)
1.4. Red Hat Bug平台
1.5. Redhat Doc
1.6. System reduce
2. 历史记录

表格清单

1.1. Linux server partition
1.2. Linux desktop partition
22.1. 文件目录表达式
22.2. 字符串表达式
22.3. 组合表达式
40.1. net.ipv4.ip_forward
74.1. Volume Group Management
8. 表格标题

范例清单

11.1. 增加交换分区
11.2. GPT Example
11.3. 创建扩展分区
14.1. bonding example
14.2. 命令行建立WiFi链接步骤
22.1. A "Power User" Prompt
22.2. A Prompt the Width of Your Term
22.3. The Elegant Useless Clock Prompt
22.4. Basic conditional example if .. then
22.5. Conditionals with variables
22.6. case
22.7. Functions with parameters sample
22.8. Using select to make simple menus
22.9. Using the command line
22.10. Reading user input with read
22.11. read
22.12. random password
26.1. backup(find + tar)
28.1. example for expect
28.2. example for expect
28.3. example 1
28.4. *.exp
28.5. parallel - build and execute shell command lines from standard input in parallel
29.1. whiptail - yesno
29.2. whiptail - inputbox
29.3. whiptail - passwordbox
29.4. whiptail - passwordbox
29.5. whiptail - example 1
29.6. whiptail - radiolist
40.1. /etc/sysconfig/iptables
40.2. connlimit 实例
40.3. CentOS 5.6
43.1. openvpn.conf
43.2. server.conf
43.3. Openvpn 桥接模式服务器配置实例
43.4. 双网卡配置实例
43.5. client.conf
43.6. server.ovpn
43.7. client.ovpn
43.8. office.conf
43.9. home.ovpn
45.1. index.php
45.2. autolamp.sh
45.3. R=301
45.4. mod_perl.conf
46.1. Expires Examples
46.2. nginx expires
46.3. Example: valid_referers
46.4. Nginx + Tomcat
47.1. /etc/profile.d/java.sh
47.2. /etc/init.d/tomcat
47.3. Example /srv/apache-tomcat/conf
47.4. tomcat firewall
47.5. /etc/rc.d/init.d/www
48.1. /etc/init.d/lighttpd
48.2. lighttpd compress
48.3. lighttpd expire
48.4. fastcgi.conf
48.5. Cache
49.1. explicit host in resin.conf
49.2. regexp host in resin.conf
49.3. host-alias in the resin.conf
49.4. host-alias in a /var/www/hosts/foo/host.xml
49.5. host-alias-regexp in the resin.conf
49.6. shared database in host
49.7. rewrite-dispatch
52.1. default.vcl
63.1. Subject Unicode
70.1. examples
70.2. backup to a central backup server with 7 day incremental
70.3. backup to a spare disk
70.4. mirroring vger CVS tree
70.5. automated backup at home
70.6. Fancy footwork with remote file lists
70.7. /etc/csync2.cfg
72.1. nginx-gridfs
72.2. Mirror
72.3. Strip
86.1. nmon
92.1. zabbix-agent 配置实例
93.1. cacti config.php
94.1.
96.1. config.php
97.1. mrtg
119.1. default.vcl
123.1. keepalived.conf
123.2. /etc/keepalived/keepalived.conf
124.1. piranha master
124.2. piranha slave
125.1. haproxy + mysql 配置实例
125.2. Haproxy MySQL (Master + Master)
137.1. /etc/pam.d/sshd - pam_tally2.so
137.2. /etc/pam.d/sshd - pam_listfile.so
151.1. puppetd
151.2. puppetca
152.1. salt command
160.1. virsh
182.1. authz