Home | 简体中文 | 繁体中文 | 杂文 | Search | ITEYE 博客 | OSChina 博客 | Facebook | Linkedin | 知乎专栏 | Email

Netkiller Linux 手札

Netkiller Linux Cookbook

Mr. Neo Chan, 陈景峰 (BG7NYT)

 


中国广东省深圳市宝安区龙华镇
518109
+86 755 29812080
+86 755 29812080

版权声明

转载请与作者联系,转载时请务必标明文章原始出处和作者信息及本声明。

文档出处:
http://netkiller.github.io
http://netkiller.sourceforge.net

微信扫描二维码进入 Netkiller 微信订阅号

QQ群:128659835 请注明“读者”

内容摘要

本文档讲述Linux系统涵盖了系统管理与配置包括:

[注意]对初学Linux的爱好者忠告

玩Linux最忌reboot(重新启动)这是windows玩家坏习惯

Linux只要接上电源你就不要再想用reboot,shutdown,halt,poweroff命令,Linux系统和应用软件一般备有reload,reconfigure,restart/start/stop...不需要安装软件或配置服务器后使用reboot重新引导计算机

在Linux系统里SIGHUP信号被定义为刷新配置文件,有些程序没有提供reload参数,你可以给进程发送HUP信号,让它刷新配置文件,而不用restart.通过pkill,killall,kill 都可以发送HUP信号例如: pkill -HUP httpd

我的系列文档:

操作系统

Netkiller Linux 手札 Netkiller FreeBSD 手札 Netkiller Shell 手札 Netkiller Security 手札 Netkiller Web 手札 Netkiller Monitoring 手札 Netkiller Storage 手札 Netkiller Mail 手札

数据库

Netkiller Database 手札 Netkiller PostgreSQL 手札 Netkiller MySQL 手札 Netkiller NoSQL 手札 Netkiller LDAP 手札  

以下文档停止更新合并到 《Netkiller Linux 手札》

Netkiller Debian 手札 Netkiller CentOS 手札 Netkiller Multimedia 手札    

鸣谢

目录

1. 自述
1.1. 本文目的
1.2. 内容简介
1.3. 读者对象
1.4. 作者简介
1. Introduction
1.1. Linux 发行版本
1.1.1. Linux 下载排名
1.1.2. Debian 衍生版本
1.1.3. Redhat 衍生版本
1.1.4. FreeBSD 包风格的Linux 发行版
1.2. HDD Partition
1.3. Getting Started Guides
1.3.1. Scientific Linux
1.3.2. Redhat Linux
1.3.3. CentOS 6
1.3.4. 5.x 减肥
1.3.5. 6.x Mini 安装后需要做的一些事
I. System Administrator
3. 获取系统信息
3.1. Distribution information
3.2. System Infomation
3.2.1. Cpu Bit
3.3. shutdown
3.4. Profile
3.4.1. shell
4. Kernel
4.1. 编译安装内核
4.2. sysctl - configure kernel parameters at runtime
4.2.1. sysctl.d
4.2.2. vm.overcommit_memory
4.3. /sys
4.3.1. /sys/class/net/
4.4. /proc
4.4.1. 进程内存监控
4.4.2. ulimit 状态
5. Kernel modules
5.1. modprobe - program to add and remove modules from the Linux Kernel
6. Package Management
6.1. apt-cache
6.1.1. search
6.1.2. depends
6.1.3. policy
6.2. Apt-Get
6.2.1. Search
6.2.2. Installation
6.2.3. Update
6.2.4. Remove
6.3. aptitude
6.4. Automatic Updates
6.4.1. 升级过程中链接中断怎么办?
6.5. dpkg
6.5.1. -i|--install 安装.deb包
6.5.2. -r|--remove 卸载.deb包
6.5.3. -L|--listfiles <package> ... List files `owned' by package(s). 列出包中的文件
6.5.4. -l|--list [<pattern> ...] List packages concisely. 列出.deb包
6.5.5. Status
6.5.6. dpkg-deb - Debian package archive (.deb) manipulation tool
6.5.7. dpkg-reconfigure
6.6. Upgrading
6.6.1. GUI
6.6.2. CLI
6.6.3. CDROM
6.7. 制作.deb安装包
6.7.1. checkinstall — Track installation of local software, and produce a binary manageable with your package management software.
6.7.2. dh_make - prepare Debian packaging for an original source archive
6.7.3. control
7. Package Manager
7.1. Yum Resource & Yum Mirror
7.1.1. Fedora resource
7.1.2. rpmforge-release
7.1.3. atomic
7.1.4. famillecollet
7.1.5. rpmfind.net
7.1.6. pkgs.org
7.1.7. China Resource
7.1.8. 制作本地共享源
7.2. yum - Yellowdog Updater Modified
7.2.1. install
7.2.2. localinstall
7.2.3. list
7.2.4. search
7.2.5. update / upgrade
7.2.6. remove
7.2.7. installed
7.2.8. group
7.2.9. 查看包的依赖关系
7.2.10. provides / whatprovides
7.2.11. YUM 源管理
7.3. rpm - RPM Package Manager
7.3.1. install/upgrade/remove
7.3.2. query
7.4. rpmbuild - Build RPM Package(s)
7.4.1. RPM_directory_macros
7.4.2. --define 专递模板变量
7.4.3.
7.4.4. FAQ
8. Device information
8.1. dmesg - print or control the kernel ring buffer
8.2. smartctl - Control and Monitor Utility for SMART Disks
8.3. CPU 资源管理
8.3.1. lscpu - display information about the CPU architecture
8.3.2. chcpu - configure CPUs
8.4. lspci - list all PCI devices
8.5. lshw - list hardware
8.5.1. only show a certain class of hardware
8.6. hwinfo - Hardware Information
8.7. dmidecode - DMI table decoder
8.8. ethtool - Display or change ethernet card settings
8.9. usb device
8.10. lsscsi - list SCSI devices (or hosts) and their attributes
8.11. HBA
8.12. lsblk - list block devices
8.13. kudzu - detects and configures new and/or changed hardware on a system
8.14. udev - Linux dynamic device management
9. 区域/语言/时间
9.1. Ubuntu
9.1.1. time zone
9.1.2. to change system date/time
9.1.3. Language
9.2. CentOS 区域设置
9.2.1. 时区设置 CentOS 6
9.2.2. 日期、时间
9.2.3. 语言
10. console / terminal
10.1. serial console
10.2. console timeout
10.3. TUI (Text User Interface)
10.4. framebuffer
11. Harddisk
11.1. 查看分区分区 UUID
11.2. Label
11.2.1. Ext2
11.3. swap 交换分区
11.3.1. swapon failed: Invalid argument
11.4. Show partition
11.5. Create partition
11.6. Clone partition
11.7. estimate disk / directory / file space usage
11.8. Convert from ext3 to ext4 File system
11.9. GPT
11.9.1. 设置GTP磁盘
11.9.2. 查看分区
11.9.3. 创建分区
11.9.4. 删除分区
11.9.5. 退出
11.9.6. mount
11.10. loop devices
11.10.1. losetup - set up and control loop devices
12. Removable Storage
12.1. usb flash
12.2. CD / DVD
12.2.1. Mount an ISO file
12.2.2. create iso file from CD
12.2.3. burner
12.2.4. ISO Mirror
13. File System
13.1. /etc/fstab
13.1.1. /etc/fstab 例子
13.2. Mount partition
13.2.1. Mount
13.2.2. Umount
13.2.3. bind directory
13.3. ext2
13.4. ext3
13.5. ReiserFS
13.6. EXT4
13.6.1. install
13.6.2. format
13.6.3. label
13.6.4. mount/umount
13.6.5. LVM 卷
13.7. LVM
13.8. Btrfs
13.8.1. /etc/fstab
13.8.2. btrfs
13.8.3. Mount Btrfs
13.8.4. subvolumes
13.8.5. snapshot
13.8.6. btrfsctl
13.8.7. btrfs-vol
13.8.8. btrfs-convert
13.8.9. btrfsck
13.8.10. btrfs-debug-tree
13.9. zfs
13.10. iSCSI
13.10.1. GFS
13.11. GFS - Cluster Storage
13.12. glusterfs
13.13. RAM FS
13.14. tmpfs
13.15. ftp fs
13.16. SSHFS (sshfs - filesystem client based on SSH File Transfer Protocol)
13.17. davfs2 - mount a WebDAV resource as a regular file system
13.18. redisfs
13.19. File system test
13.19.1. ext4 vs btrfs
13.19.2. xfs vs jfs vs reiserfs
13.19.3. RAID10 (146G*8) vs EMC VNX 5300 (8G Fibre Channel)
13.19.4. Dell 2950(RAID5 500G SATA * 6) vs MD1200
13.20. 磁盘占用100%删除文件后不是放的解决方法
14. Networking
14.1. hosts
14.1.1. hostnamectl - Control the system hostname
14.1.2. /etc/hostname
14.1.3. /etc/host.conf
14.1.4. /etc/hosts
14.1.5. hosts.allow / hosts.deny
14.1.6. /etc/resolv.conf
14.2. Hostname
14.3. Network adapter
14.3.1. 接口名称
14.4. Ethernet Interfaces
14.4.1. ifquery
14.4.2. DHCP
14.4.3. Static IP
14.5. Mask
14.6. Gateway
14.7. Configuring Name Server Lookups
14.8. IP forwarding(IP转发)
14.9. bonding
14.9.1. Ubuntu
14.10. Finding optimal MTU
14.11. wireless
14.11.1. rfkill - tool for enabling and disabling wireless devices
14.11.2. iwlist - Get more detailed wireless information from a wireless interface
14.11.3. iwconfig - configure a wireless network interface
14.11.4. /proc/net/wireless
14.12. Linux IP And Router
14.12.1. netmask
14.12.2. arp - manipulate the system ARP cache
14.12.3. iproute2
14.12.4. 策略路由
14.12.5. 负载均衡
14.12.6. MASQUERADE
14.12.7. ip tunnel
14.12.8. VLAN
14.12.9. Zebra
14.13. CentOS 网络配置
14.13.1. Gateway
14.13.2. bonding
14.13.3. brctl
14.13.4. nmtui
15. Logging
15.1. rsyslog
15.1.1. rsyslog.conf
15.2. logrotate - rotates, compresses, and mails system logs
15.2.1. /etc/logrotate.conf
15.2.2. /etc/logrotate.d/
15.3. syslog-ng
15.4. syslog, klogctl - read and/or clear kernel message ring buffer; set console_loglevel
15.4.1. /etc/sysconfig/syslog
15.4.2. /etc/syslog.conf
15.4.3. logger
15.4.4. To Log Messages Over UDP Network
16. 设备管理
16.1. Debian/Ubuntu
16.1.1. update-rc.d - install and remove System-V style init script links
16.1.2. invoke-rc.d - executes System-V style init script actions
16.1.3. runlevel
16.1.4. sysv-rc-conf
16.1.5. xinetd - replacement for inetd with many enhancements
16.1.6. Scheduled Tasks
16.1.7. sv - control and manage services monitored by runsv
16.2. Services
16.2.1. systemctl
16.2.2. service
16.2.3. xinetd.d
16.2.4. rpcinfo
16.2.5. SELINUX
17. Process
17.1. top - display Linux tasks
17.2. ps - report a snapshot of the current processes
17.2.1. ps axef
17.2.2. ps -eo pid,cmd
17.2.3. ps jax
17.2.4. zombie process
17.3. mpstat
17.4. pstree - display a tree of processes
17.5. pid
17.5.1. pgrep, pkill - look up or signal processes based on name and other attributes
17.5.2. pidof -- find the process ID of a running program.
17.6. jobs
17.6.1. &
17.6.2. Ctrl + Z
17.6.3. jobs
17.6.4. fg / bg
17.6.5. nohup - run a command immune to hangups, with output to a non-tty
17.7. ionice - get/set program io scheduling class and priority
17.8. /proc 目录与进程的关系
17.8.1. /proc/*/fd/ 进程所打开的文件
18. Permission
18.1. User
18.1.1. Add a new user
18.1.2. remove an existed user
18.1.3. usermod - modify a user account
18.1.4. lock / unlock
18.2. Group
18.2.1. Add a new group
18.2.2. Add a user to the group
18.2.3. /etc/group
18.3. umask
18.4. Access Permissions
18.4.1. chown - change file owner and group
18.4.2. chgrp - change group ownership
18.4.3. chmod - change file access permissions
18.5. chattr - change file attributes on a Linux second extended file system
18.6. su - run a shell with substitute user and group IDs
18.7. runuser - run a command with substitute user and group ID
18.8. sudo, sudoedit - execute a command as another user
18.8.1. NOPASSWD
18.8.2. 允许或禁止命令
18.8.3. Cmnd_Alias 用法
18.8.4. wheel 组
18.9. ACL - Access Control List
18.9.1. getfacl - get file access control lists
18.9.2. setfacl - set file access control lists
19. /etc
19.1. /etc/inputrc
19.2. /etc/shells
20. kickstart
20.1. install kickstart
20.2. ks.cfg
20.3. boot 参数
21. System Utilities 配置工具
21.1. CentOS 6
21.1.1. system-config-date
21.1.2. system-config-firewall
21.1.3. system-config-securitylevel
21.1.4. system-config-language
21.1.5. system-config-keyboard
21.1.6. system-config-network
21.1.7. ntsysv
21.1.8. lokkit
21.1.9. system-config-kdump
21.1.10. system-config-services
21.1.11. authconfig-tui
II. Shell
22. Bash Shell
22.1. bash - GNU Bourne-Again SHell
22.1.1. -n 检查脚本是否有语法错误
22.1.2. -x 显示详细运行过程
22.2. Introduction
22.2.1. chsh - change login shell
22.2.2. test 命令
22.2.3. I/O 重定向
22.2.4. pipes (FIFOs)
22.2.5. mktemp - create a temporary file or directory 临时目录与文件
22.2.6. History 命令历史记录
22.2.7. hash - hash database access method
22.2.8. prompt
22.3. variable
22.3.1. 系统变量
22.3.2. 表达式
22.3.3. Internal Environment Variables
22.3.4. set 设置变量
22.3.5. unset 变量销毁
22.3.6. 设置变量默认值
22.3.7. export 设置全局变量
22.3.8. declare
22.3.9. Numerical 数值运算
22.3.10. Strings 字符串操作
22.3.11. Array 数组
22.3.12. read 赋值多个变量
22.3.13. eval
22.4. conditions if and case
22.4.1. if
22.4.2. case
22.5. Loops for, while and until
22.5.1. for
22.5.2. while
22.5.3. until
22.6. Functions
22.6.1. Local variables
22.7. User interfaces
22.7.1. input
22.8. Example
22.8.1. 有趣的Shell
22.8.2. backup
22.8.3. CPU 核心数
22.8.4. Password
22.8.5. processes
22.8.6. Shell 技巧
22.8.7. to convert utf-8 from gb2312 code
22.8.8. 使用内存的百分比
22.8.9. 合并apache被cronlog分割的log文件
23. Z Shell
23.1. installing Z shell
23.2. Starting file
23.2.1. ~/.zshrc
23.3. Prompting
23.4. Aliases
23.5. History
23.6. FAQ
23.6.1. Home/End key
24. Shell command
24.1. Help Commands
24.1.1. man - an interface to the on-line reference manuals
24.2. getconf - Query system configuration variables
24.3. Directory and File System Related
24.3.1. dirname
24.3.2. filename
24.3.3. test - check file types and compare values
24.3.4. stat
24.3.5. mkdir - make directories
24.3.6. rename
24.3.7. touch
24.3.8. ls - list directory contents
24.3.9. cp - copy files and directories
24.3.10. rm - remove files or directories
24.3.11. df - report file system disk space usage
24.3.12. du - estimate file space usage
24.3.13. tac - concatenate and print files in reverse
24.3.14. split - split a file into pieces
24.3.15. find - search for files in a directory hierarchy
24.4. package / compress and decompress
24.4.1. tar — The GNU version of the tar archiving utility
24.4.2. cpio - copy files to and from archives
24.4.3. gzip
24.4.4. zip, zipcloak, zipnote, zipsplit - package and compress (archive) files
24.4.5. RAR
24.4.6. 7-Zip
24.5. date and time
24.5.1. 日期格式
24.5.2. -d --date=
24.5.3. weekday name
24.5.4. UTC
24.6. Numeric
24.6.1. 数值运算
24.6.2. seq - print a sequence of numbers
24.6.3. bc - An arbitrary precision calculator language
24.7. Text Processing
24.7.1. iconv - Convert encoding of given files from one encoding to another
24.7.2. 字符串处理命令expr
24.7.3. cat - concatenate files and print on the standard output
24.7.4. nl - number lines of files
24.7.5. od - dump files in octal and other formats
24.7.6. tr - translate or delete characters
24.7.7. cut - remove sections from each line of files
24.7.8. printf - format and print data
24.7.9. Free `recode' converts files between various character sets and surfaces.
24.7.10. /dev/urandom 随机字符串
24.7.11. col - filter reverse line feeds from input
24.7.12. apg - generates several random passwords
24.7.13. head/tail
24.7.14. 反转字符串或文件内容
24.8. grep, egrep, fgrep, rgrep - print lines matching a pattern
24.8.1. 删除空行
24.8.2. -v, --invert-match
24.8.3. Output control
24.8.4. Context control
24.8.5. Regexp selection and interpretation
24.8.6. fgrep
24.8.7. egrep
24.9. sort - sort lines of text files
24.9.1. 对列排序
24.10. uniq
24.11. 表格操作/行列转换
24.11.1. column - columnate lists
24.11.2. paste - merge lines of files
24.12. standard input/output
24.12.1. xargs - build and execute command lines from standard input
24.13. Logging
24.13.1. logger - a shell command interface to the syslog(3) system log module
24.14. Password
24.14.1. Shadow password suite configuration.
24.14.2. newusers - update and create new users in batch
24.14.3. chpasswd - update passwords in batch mode
24.15. binutils
24.15.1. strings - print the strings of printable characters in files.
26. Utility Programs
26.1. ed, red - text editor
26.2. vim
26.2.1. 查找与替换
26.2.2. 插入文件
26.2.3. 批处理
26.2.4. line()
26.3. awk
26.3.1. 处理列
26.3.2. printf
26.3.3. Pattern(字符匹配)
26.3.4. Built-in Variables (NR/NF)
26.3.5. Built-in Functions
26.3.6. 过滤相同的行
26.4. sed
26.4.1. 查找与替换
26.4.2. 编辑文件
26.4.3. 内容打印
26.4.4. 编辑操作
26.5. CURL - transfer a URL
26.5.1. 基本用法
26.5.2. data
26.5.3. connect-timeout
26.5.4. max-time
26.5.5. compressed
26.5.6. vhosts
26.5.7. 输出格式定义
26.5.8. -A/--user-agent <agent string>
26.5.9. referer
26.5.10. -v
26.5.11. -o, --output FILE Write output to <file> instead of stdout
26.5.12. -H/--header <line> Custom header to pass to server (H)
26.5.13. curl-config
26.5.14. FAQ
26.6. expect
26.6.1. 模拟登录 telnet 获取Cisco配置
26.6.2. 模拟登录 ssh
26.6.3. SCP
26.7. expect-lite - quick and easy command line automation tool
26.8. sshpass - noninteractive ssh password provider
26.9. Klish - Kommand Line Interface Shell (the fork of clish project)
26.9.1. 安装Klish
26.9.2. 为用户指定clish作为默认Shell
26.9.3. FAQ
26.10. Limited command Shell (lshell)
26.11. wget - retrieves files from the web
26.11.1. Logging and input file
26.11.2. HTTP options
26.11.3. Recursive download
26.11.4. --no-passive-ftp disable the "passive" transfer mode.
26.12. TUI
26.12.1. screen - screen manager with VT100/ANSI terminal emulation
26.12.2. tmux — terminal multiplexer
26.12.3. byobu - wrapper script for seeding a user's byobu configuration and launching a text based window manager (either screen or tmux)
26.12.4. htop - interactive process viewer
26.12.5. elinks
26.12.6. chat
26.13. parallel - build and execute shell command lines from standard input in parallel
27. Shell Terminal
27.1. terminal
27.1.1. resize - set TERMCAP and terminal settings to current xterm window size
27.1.2. tset, reset - terminal initialization
27.1.3. stty - change and print terminal line settings
27.2. tput
27.2.1. Change the prompt color using tput
27.3. dialog
27.3.1. --inputbox
27.4. whiptail - display dialog boxes from shell scripts
27.4.1. --msgbox
27.4.2. --infobox
27.4.3. --yesno
27.4.4. --inputbox
27.4.5. --passwordbox
27.4.6. --textbox
27.4.7. --checklist
27.4.8. --radiolist
27.4.9. --menu
27.4.10. --gauge
III. Network Application
28. network tools
28.1. curl / w3m / lynx
29. OpenNTPD
29.1. install
29.1.1. ntpd - Network Time Protocol (NTP) daemon
29.1.2. Ubuntu
29.1.3. ntpdate
29.2. ntpdate
29.2.1. CentOS 7
29.2.2. CentOS 6
29.3. ntpd.conf / ntp.conf
29.3.1. server 配置
29.3.2. ntp 安全设置
29.4. ntpstat - show network time synchronisation status
29.5. ntpq - standard NTP query program
30. DHCP
30.1. DHCP Server
30.2. dhclient
30.3. release matching connections
31. DNS/Bind
31.1. 安装 bind9
31.2. forwarders
31.3. Load Balancing
31.4. view
31.5. Master / Slave
31.5.1. master /etc/named.conf
31.5.2. slave /etc/named.conf
31.5.3. FAQ
31.6. DNS tools
31.6.1. dig - DNS lookup utility
31.6.2. nslookup - query Internet name servers interactively
31.7. DNS
31.7.1. OpenDNS
31.7.2. Google DNS
31.8. NamedManager
32. dnsmasq
32.1. Install
32.1.1. CentOS / Redhat
32.1.2. Debian / Ubuntu
32.1.3. Firewall 设置
32.2. /etc/dnsmasq.conf
32.3. dnsmasq.resolv.conf
32.4. dnsmasq.hosts
32.5. /etc/dnsmasq.d/dnsmasq.server.conf
32.6. /etc/dnsmasq.d/dnsmasq.address.conf
32.6.1. 域名劫持
32.7. FAQ
33. rinetd — internet “redirection server”
33.1. rinetd install
33.1.1. ubuntu
33.1.2. centos
33.2. rinetd.conf
33.3. 防御脚本
33.4. rinetd.log
34. News Group (innd)
34.1. Ubuntu
34.2. CentOS
34.3. User Authentication
34.4. usenet 管理
34.5. 通过SSL连接
34.6. src.rpm 安装
34.7. 常用新闻组
35. IRC - Internet Relay Chat
35.1. IRC Protcol
35.2. IRC Commands
35.3. ircd-irc2 - The original IRCNet IRC server daemon
35.4. ircd-hybrid
35.5. IRC Client
35.5.1. ircII - interface to the Internet Relay Chat system
35.5.2. HydraIRC
35.5.3. XChat
35.5.4. Web IRC
35.5.5. Irssi - a modular IRC client for UNIX
35.5.6. F-IRC
36. jabber XMPP
36.1. ejabberd - Distributed, fault-tolerant Jabber/XMPP server written in Erlang
36.1.1. ejabberdctl
36.2. tigase
36.3. Openfire
36.4. DJabberd
36.5. freetalk - A console based Jabber client
36.6. library
36.6.1. python-xmpp
37. Proxy Server
37.1. Apache Proxy
37.2. Squid - Internet Object Cache (WWW proxy cache)
37.2.1. 源码安装
37.2.2. debian/ubuntu 安装
37.2.3. 配置
37.2.4. Squid 管理
37.2.5. 禁止页面被Cache
37.2.6. Squid 实用案例
37.2.7. squid+icap+clamav
37.3. Web page proxy
37.3.1. Surrogafier
37.3.2. CGIproxy
37.3.3. PHPProxy
37.3.4. BBlocked
37.3.5. Glype
37.3.6. Zelune
37.4. SOCKS
37.4.1. Socks5
37.4.2. dante-server - SOCKS (v4 and v5) proxy daemon(danted)
37.4.3. SSH Socks5 Tunnel
37.4.4. hpsockd - HP SOCKS server
38. Firewall
38.1. TCP/IP 相关内核配置项
38.1.1. net.ipv4.ip_forward
38.1.2. net.ipv4.icmp_echo_ignore_all
38.2. iptables - administration tools for packet filtering and NAT
38.2.1. Getting Started
38.2.2. 用户自定义规则连
38.2.3. Protocols 协议
38.2.4. Interfaces 网络适配器接口
38.2.5. 源IP地址
38.2.6. Ports 端口
38.2.7. NAT
38.2.8. Module(模块)
38.2.9. IPV6
38.2.10. iptables-xml - Convert iptables-save format to XML
38.2.11. access.log IP封锁脚本
38.2.12. Example
38.3. ulogd - The Netfilter Userspace Logging Daemon
38.4. ufw - program for managing a netfilter firewall
38.4.1. /etc/default/ufw
38.4.2. ip_forward
38.4.3. DHCP
38.4.4. Samba
38.5. Shorewall
38.5.1. Installation Instructions
38.5.2. Configuring Shorewall
38.6. Firewall GUI Tools
38.7. Endian Firewall
38.8. Smooth Firewall
38.9. Sphirewall
39. Stunnel - universal SSL tunnel
40. OpenSSH
40.1. 安装 OpenSSH
40.2. /etc/ssh/
40.2.1. sshd_config
40.2.2. ssh_config
40.2.3. ~/.ssh/config
40.3. OpenSSH Tunnel
40.3.1. SOCKS v5 Tunnel
40.4. ssh-keygen — authentication key generation, management and conversion
40.4.1. .ssh/known_hosts
40.5. ssh-keyscan
40.6. ssh-copy-id - install your public key in a remote machine's authorized_keys
40.7. ssh-agent
40.7.1. ssh-add
40.7.2. Lock / Unlock agent
40.7.3. Set lifetime (in seconds) when adding identities.
40.8. OpenSSH for Windows
40.8.1. Putty Client
40.9. FAQ
40.9.1. Pseudo-terminal will not be allocated because stdin is not a terminal.
40.9.2. 去掉 passphrase
40.9.3. 打印调试信息
41. Firewalld
41.1. firewalld
41.1.1. firewall-cmd
41.2. 如果你不习惯使用firewalld想用回Iptables
42. VPN (Virtual Private Network)
42.1. OpenVPN (openvpn - Virtual Private Network daemon)
42.1.1. 源码安装
42.1.2. Openvpn Server
42.1.3. openvpn - secure IP tunnel daemon.
42.1.4. 吊销(revoke)用户证书
42.1.5. Openvpn Client
42.1.6. OpenVPN GUI for Windows
42.1.7. point-to-point VPNs
42.1.8. VPN 案例
42.1.9. OpenVPN安全
42.2. pptpd
42.2.1. Server 服务端
42.2.2. Client 客户端
42.2.3. FAQ
42.3. l2tpd - dummy package for l2tpd to xl2tpd transition
42.4. Ipsec VPN
42.4.1. ipsec-tools - IPsec tools for Linux
42.4.2. openswan - IPSEC utilities for Openswan
42.4.3. strongswan - IPSec utilities for strongSwan
42.5. N2N VPN
42.6. Hypersocket VPN
43. Point to Point
43.1. download
43.1.1. rtorrent - ncurses BitTorrent client based on LibTorrent
43.1.2. mldonkey-server - Door to the 'donkey' network
43.1.3. amule - client for the eD2k and Kad networks, like eMule
IV. Web Application
44. Apache httpd
44.1. Install
44.1.1. Quick install apache with aptitude
44.1.2. CentOS 6
44.1.3. Compile and then install Apache
44.1.4. XAMPP
44.2. Module
44.2.1. Output a list of modules compiled into the server.
44.2.2. Core
44.2.3. mpm
44.2.4. Apache Log
44.2.5. mod_access
44.2.6. VirtualHost
44.2.7. Alias / AliasMatch
44.2.8. Redirect / RedirectMatch
44.2.9. Rewrite
44.2.10. Proxy
44.2.11. Deflate
44.2.12. Expires
44.2.13. Cache
44.2.14. usertrack
44.2.15. Charset
44.2.16. Dir
44.2.17. Includes
44.2.18. Apache Status
44.2.19. Mod Perl
44.2.20. mod_pagespeed -
44.2.21. Module FAQ
44.2.22. mod_setenvif
44.2.23. PHP 程序安全问题 php_admin_value
44.2.24. mod_spdy
44.3. 设置Apache实现防盗连
44.4. .htaccess
44.5. Error Prompt
44.5.1. Invalid command 'Order', perhaps misspelled or defined by a module not included in the server configuration
44.5.2. Invalid command 'AuthUserFile', perhaps misspelled or defined by a module not included in the server configuration
45. Nginx
45.1. Installing
45.1.1. Installing by apt-get under the debain/ubuntu
45.1.2. CentOS
45.1.3. installing by source
45.1.4. -V show version and configure options then exit
45.1.5. config test
45.1.6. rotate log
45.1.7. CentOS 7
45.2. nginx 配置文件
45.2.1. http 配置
45.2.2. events
45.2.3. gzip
45.2.4. server_tokens
45.2.5. ssi
45.2.6. server
45.2.7. HTTP2 配置 SSL证书
45.2.8. rewrite
45.2.9. upstream 负载均衡
45.2.10. fastcgi
45.2.11. return
45.2.12. Nginx 变量
45.3. Proxy
45.3.1. proxy_cache
45.3.2. rewrite + proxy_pass
45.3.3. request_filename + proxy_pass
45.3.4. $request_uri 与 proxy_pass 联合使用
45.3.5. try_files 与 proxy_pass 共用
45.3.6. Proxy 与 SSI
45.3.7. Host
45.3.8. expires
45.3.9. X-Forwarded-For
45.3.10. X-Sendfile
45.3.11. proxy_http_version
45.3.12. proxy_set_header
45.3.13. timeout 超时时间
45.3.14. example
45.4. ngx_http_flv_module
45.5. ngx_http_mp4_module
45.6. limit_zone
45.7. image_filter
45.8. Example
45.8.1. Nginx + Tomcat
45.8.2. 拦截index.html
45.9. FAQ
45.9.1. 405 Not Allowed?
45.9.2. 502 Bad Gateway?
45.9.3. 413 Request Entity Too Large
45.9.4. 502 Bad Gateway?
45.9.5. 499 Client Closed Request
45.9.6. proxy_pass
45.9.7. proxy_pass SESSION 丢失问题
45.9.8. [alert] 55785#0: *11449 socket() failed (24: Too many open files) while connecting to upstream
45.9.9. server_name 与 SSI 注意事项
45.9.10. location 跨 document_root 引用,引用 document_root 之外的资源
45.9.11. nginx: [warn] duplicate MIME type "text/html" in /etc/nginx/nginx.conf
46. Apache Tomcat
46.1. Tomcat 安装与配置
46.1.1. Tomcat 6
46.1.2. Tomcat 7
46.1.3. Java 8 + Tomcat 8
46.1.4. 防火墙配置
46.1.5. 启动脚本
46.1.6. 同时运行多实例
46.1.7. Testing file
46.1.8. mod_jk
46.1.9. mod_proxy_ajp
46.1.10. RewriteEngine 连接 Tomcat
46.2. 配置 Tomcat 服务器
46.2.1. server.xml
46.2.2. tomcat-users.xml
46.2.3. context.xml
46.2.4. logging.properties
46.3. 虚拟主机配置
46.3.1. 方案一
46.3.2. 方案二
46.3.3. Alias 别名
46.3.4. access_log
46.3.5. Context 配置
46.3.6. 主机绑定IP地址
46.4. SSI
46.5. Init.d Script
46.5.1. Script 1
46.5.2. Shell Script 2
47. Lighttpd
47.1. 安装Lighttpd
47.1.1. quick install with aptitude
47.1.2. yum install
47.1.3. to compile and then install lighttpd
47.2. /etc/lighttpd/lighttpd.conf
47.2.1. max-worker / max-fds
47.2.2. accesslog.filename
47.2.3. ETags
47.2.4. server.tag
47.3. Module
47.3.1. simple_vhost
47.3.2. ssl
47.3.3. redirect
47.3.4. rewrite
47.3.5. alias
47.3.6. auth
47.3.7. compress
47.3.8. expire
47.3.9. status
47.3.10. setenv
47.3.11. fastcgi
47.3.12. user-agent
47.3.13. spdy
47.4. 其他模块
47.4.1. mod_secdownload 防盗链
47.5. Example
47.5.1. s-maxage
48. Resin
48.1. 安装Resin
48.1.1. 直接使用
48.1.2. Debian/Ubuntu
48.1.3. 源码安装Resin
48.2. Compiling mod_caucho.so
48.3. resin.conf
48.3.1. Maximum number of threads
48.3.2. Configures the keepalive
48.3.3. ssl
48.4. virtual hosts
48.4.1. explicit host
48.4.2. regexp host
48.4.3. host-alias
48.4.4. configures a deployment directory for virtual hosts
48.4.5. Resources
48.5. FAQ
48.5.1. java.lang.OutOfMemoryError: PermGen space
49. Application Server
49.1. Zope
49.2. JBoss - JBoss Enterprise Middleware
50. Web Server Optimization
50.1. ulimit
50.1.1. open files
50.2. khttpd
50.3. php.ini
50.3.1. Resource Limits
50.3.2. File Uploads
50.3.3. Session Shared
50.3.4. PATHINFO
50.4. APC Cache (php-apc - APC (Alternative PHP Cache) module for PHP 5)
50.5. Zend Optimizer
50.6. eaccelerator
51. varnish - a state-of-the-art, high-performance HTTP accelerator
51.1. Varnish Install
51.2. varnish utility
51.2.1. status
51.2.2. varnishadm
51.2.3. varnishtop
51.2.4. varnishhist
51.2.5. varnishsizes
51.3. log file
51.4. Varnish Configuration Language - VCL
51.4.1. unset / set
51.5. example
52. Apache Traffic Server
52.1. Install
52.2. Configure
53. Cherokee
53.1. Installing Cherokee
54. Jetty
55. Other Web Server
55.1. Python SimpleHTTPServer
56. web 服务器排名
56.1. HTTP状态码
57. HTTP2
57.1. Chrome
V. Mail Server
58. Mail server constituent
59. mail user agent (MUA)
59.1. mail
59.2. mutt - text-based mailreader supporting MIME, GPG, PGP and threading
59.2.1. 发送邮件
59.3. alpine - Text-based email client, friendly for novices but powerful
59.4. fetchmail - SSL enabled POP3, APOP, IMAP mail gatherer/forwarder
59.5. GPG4WIN
59.6. Evolution
60. exim - meta-package to ease Exim MTA (v4) installation
60.1. install
60.1.1. ubuntu/debian
60.1.2. CentOS/Redhat
60.2. exim 命令
60.2.1. 刷新邮件队列
60.3. 配置exim
60.3.1. /etc/aliases 别名配置
60.4. FAQ
60.4.1. Mailing to remote domains not supported
61. postfix - High-performance mail transport agent
61.1. install
61.1.1. Ubuntu
61.1.2. CentOS
61.1.3. OSCM 通过配置管理脚本安装
61.2. 配置 Postfix
61.2.1. 转发配置
61.2.2. 拒收垃圾邮件
61.2.3. 收件箱配置
61.2.4. 邮件投递
61.2.5. 队列配置
61.2.6. 客户端
61.3. dkim
61.3.1. 增加域名
61.3.2. 测试
61.4. Rspamd
61.5. /var/log/maillog
61.5.1. 计算每分钟发送数量日志统计
61.5.2. 虚假地址统计
61.6. Post 命令
61.6.1. postconf - Postfix configuration utility
61.6.2. postsuper
61.6.3. postqueue - Postfix queue control
61.6.4. postmulti - Postfix multi-instance manager
61.7. Example
61.7.1. 站内电邮发送
61.7.2. EDM 服务器
61.8. FAQ
61.8.1. SMTP ERROR: RCPT TO command failed: 501 5.1.3 Bad recipient address syntax
61.8.2. connect to gmail-smtp-in.l.google.com[2607:f8b0:400e:c00::1a]:25: Network is unreachable
61.8.3. opendkim[5762]: 3012A802C1DD: [49.213.11.18] [49.213.11.18] not internal
61.8.4. opendkim[12578]: 4CC5C802C382: no signature data
61.8.5. /etc/opendkim/keys/default.private: open(): No such file or directory
62. 邮件原文
62.1. Subject Unicode
62.2. TO/CC/BCC
62.3. 正文
62.4. POP Sniffer
62.5. PHP mail()
63. 反垃圾邮件相关
63.1. Sender Policy Framework
63.1.1. 分析 SPF 记录
63.2. DKIM
63.3. 邮件被拒收处理方法
63.3.1. NetEase
63.3.2. Sohu
63.3.3. Tom
63.3.4. QQ
63.3.5. 21CN
64. Fax
64.1. HylaFAX
65. FAQ
65.1. 通过SSH与控制台不能登录
VI. Backup, Recovery, and Archiving Solutions
66. Logical Volume Manager (LVM)
66.1. 物理卷管理(physical volume)
66.1.1. pvcreate
66.1.2. pvdisplay
66.1.3. pvs
66.2. 卷组管理(Volume Group)
66.2.1. vgcreate
66.2.2. vgdisplay
66.2.3. vgs
66.2.4. vgchange
66.2.5. vgextend
66.2.6. vgreduce
66.3. 逻辑卷管理(logical volume)
66.3.1. lvcreate
66.3.2. lvdisplay
66.3.3. lvremove
66.4. Format
66.5. mount
66.5.1. lv
66.5.2. snapshot
66.6. snapshot backup
67. 文件传输
67.1. 跨服务器文件传输
67.1.1. scp - secure copy (remote file copy program)
67.1.2. nc - TCP/IP swiss army knife
67.2. wget - retrieves files from the web
67.2.1. 下载所有图片
67.2.2. mirror
67.2.3. reject
67.2.4. ftp 下载
67.3. axel - A light download accelerator - Console version
68. FTP (File Transfer Protocol)
68.1. lftp
68.1.1. pget
68.1.2. lftp 批处理
68.2. ncftp
68.2.1. batch command
68.2.2. ncftpget
68.2.3. ncftpput
68.3. FileZilla
68.4. vsftpd - The Very Secure FTP Daemon
68.4.1. 安装 vsftpd
68.4.2. ftp 帐号的shell权限
68.4.3. vsftpd 认证模块
68.4.4. chroot
68.4.5. FAT
68.5. ProFTPD + MySQL / OpenLDAP 用户认证
68.5.1. Proftpd + MySQL
68.5.2. Proftpd + OpenLDAP
68.6. Pure-FTPd + LDAP + MySQL + PGSQL + Virtual-Users + Quota
69. File Synchronize
69.1. rsync - fast remote file copy program (like rcp)
69.1.1. 安装Rsync与配置守护进程
69.1.2. rsyncd.conf
69.1.3. rsync 参数说明
69.1.4. step by step to learn rsync
69.1.5. rsync examples
69.1.6. rsync for windows
69.1.7. 多进程 rsync 脚本
69.2. tsync
69.3. Unison File Synchronizer
69.3.1. local
69.3.2. remote
69.3.3. config
69.4. csync2 - cluster synchronization tool
69.4.1. server
69.4.2. node
69.4.3. test
69.4.4. Advanced Configuration
69.4.5. 编译安装
69.5. synctool
70. File Share
70.1. NFSv4
70.1.1. Ubuntu
70.1.2. CentOS
70.1.3. exports
70.1.4. NFS For Windows
70.1.5. exportfs - maintain table of exported NFS file systems
70.2. Parallel NFS(pNFS)
70.3. Samba
70.3.1. install
70.3.2. smb.conf
70.3.3. testparm - check an smb.conf configuration file for internal correctness
70.3.4. smbstatus - report on current Samba connections
70.3.5. smbpasswd - change a user's SMB password
70.3.6. nmblookup - NetBIOS over TCP/IP client used to lookup NetBIOS names
70.3.7. smbfs/smbmount/smbumount
70.3.8. smbclient - ftp-like client to access SMB/CIFS resources on servers
70.3.9. smbtar - shell script for backing up SMB/CIFS shares directly to UNIX tape drives
70.3.10. by Example
70.3.11. FAQ
71. Distributed File Systems
71.1. DRBD (Distributed Replicated Block Device)
71.1.1. disk and partition
71.1.2. Installation
71.1.3. configure
71.1.4. Starting
71.1.5. Using
71.2. Network Block Device protocol
71.2.1. nbd-server - Network Block Device protocol - server
71.2.2. nbd-client - Network Block Device protocol - client
71.3. GridFS
71.3.1. nginx-gridfs
71.3.2. lighttpd-gridfs
71.4. Moose File System
71.4.1. Master server installation
71.4.2. Backup server (metalogger) installation
71.4.3. Chunk servers installation
71.4.4. Users’ computers installation
71.4.5. Testing MFS
71.5. LizardFS
71.6. Hadoop - HDFS
71.6.1. 单机安装
71.6.2. 分布式安装
71.6.3. 二进制包安装
71.6.4. FAQ
71.7. Ceph
71.7.1. Installation on Ubuntu
71.7.2. Installation on CentOS
71.7.3. Block Devices
71.8. GlusterFS
71.8.1. glusterfs-server
71.8.2. glusterfs-client
71.8.3. Testing
71.8.4. RAID
71.8.5. Filesystem Administration
71.8.6. CentOS 6.3
71.9. Lustre
71.10. MogileFS
71.11. Kosmos distributed file system (KFS)
71.12. BeeGFS - The Parallel Cluster File System
71.13. Coda
71.14. OpenAFS
72. Shared Storage
72.1. Oracle OCFS2
72.1.1. 安装
72.2. GFS2
72.3. fam & imon
73. Network Attached Storage(NAS 网络附加存储)
73.1. Network Storage - Openfiler
73.1.1. Accounts
73.1.2. Volumes
73.1.3. Quota
73.1.4. Shares
73.2. OpenMediaVault
73.3. FreeNAS
74. Backup / Restore
74.1. 备份策略
74.1.1. Incremental backup
74.1.2. Differential backup
74.2. dump / restore
74.3. Bacula, the Open Source, Enterprise ready, Network Backup Tool for Linux, Unix, Mac and Windows.
74.3.1. Install Backup Server
74.3.2. Install Backup Client
74.4. Amanda: Open Source Backup
74.5. Attic - 拥有重复数据删除技术的备份软件
74.5.1. 安装 Attic
74.5.2. 快速开始
74.6. SafeKeep
74.7. Opendedup
75. inotify
75.1. inotify-tools
75.2. Incron - cron-like daemon which handles filesystem events
75.2.1. incrontab - inotify cron table manipulator
75.2.2. 使用说明
75.3. inotify-tools + rsync
75.4. pyinotify
VII. Monitoring
90. NET SNMP (Simple Network Management Protocol)
90.1. 安装SNMP
90.1.1. Ubuntu
90.1.2. CentOS
90.2. 配置SNMP
90.2.1. community 配置
90.2.2. 定义可操作的范围
90.3. SNMP 命令
90.3.1. snmpwalk
90.3.2. snmpget
90.3.3. snmptest
90.4. Cisco MBI
90.4.1. Cisco 3750
90.4.2. Cisco ASA 5550
91. Zabbix
91.1. Installing and Configuring Zabbix
91.1.1. Ubuntu
91.1.2. CentOS Zabbix 2.4
91.1.3. Zabbix 3.x CentOS 7
91.2. web ui
91.2.1. 警告脚本
91.3. zabbix-java-gateway - Zabbix java gateway
91.4. zabbix-agent
91.4.1. Ubuntu
91.4.2. CentOS 7
91.4.3. zabbix_agentd 命令
91.4.4. Nginx status 监控
91.4.5. redis
91.4.6. MongoDB
91.4.7. PHP-FPM
91.4.8. Elasticsearch
91.4.9. Postfix
91.4.10. TCP stats
91.4.11. 应用依赖检查
91.4.12. Oracle
92. Cacti
92.1. Install Cacti for Ubuntu
92.2. Yum 安装
92.3. Source Install
92.4. Web 安装
92.5. Cacti plugins
92.5.1. Percona monitoring plugins
92.6. Template
92.6.1. Nginx
92.6.2. php-fpm
92.6.3. MySQL
92.6.4. Redis
92.6.5. Percona JMX Monitoring Template for Cacti
93. Nagios
93.1. Install
93.1.1. Nagios core
93.1.2. Monitor Client nrpe
93.1.3. Monitoring Windows Machines
93.1.4. PNP4Nagios 图表插件
93.2. nagios
93.3. nrpe node
93.4. 配置 Nagios
93.4.1. authorized
93.4.2. contacts
93.4.3. hostgroups
93.4.4. generic-service
93.4.5. SOUND OPTIONS
93.4.6. SMS 短信
93.4.7. nrpe plugins
93.5. 配置监控设备
93.5.1. routers
93.5.2. host
93.5.3. service
93.6. Nagios Plugins
93.6.1. check_ping
93.6.2. check_procs
93.6.3. check_users
93.6.4. check_http
93.6.5. check_mysql
93.6.6. Disk
93.6.7. check_tcp
93.6.8. check_log
93.6.9. check_traffic
93.6.10. Nagios nrpe plugins
93.6.11. check_nt
93.6.12. nsca - Nagios Service Check Acceptor
93.6.13. jmx
93.7. FAQ
93.7.1. Macro Name
93.7.2. 插件开发手册
94. Logs 分析
94.1. log
94.1.1. logwatch
94.1.2. logcheck : Analyzes log files and sends noticeable events as email
94.1.3. nulog
94.2. Web
94.2.1. Apache Log
94.2.2. awstats
94.2.3. webalizer
94.2.4. Sarg - Squid Analysis Report Generator
94.2.5. goaccess - Fast web log analyzer and interactive viewer.
94.3. Tomcat
94.3.1. 截取 0-3 点区间的日志
94.3.2. 监控Redis
94.4. Mail
94.4.1. pflogsumm.pl - Produce Postfix MTA logfile summary
94.5. /var/log/secure
94.6. rinetd.log
94.7. php-syslog-ng
94.8. Log Analyzer
94.9. Splunk
94.10. logstash - open source log management
94.11. Octopussy
94.12. eventlog-to-syslog
94.13. Apache Flume
95. MRTG
95.1. Ubuntu 安装
95.2. CentOS 安装
95.3. 监控多个设备
95.4. 批量生成监控配置文件
95.5. 图片尺寸
96. Munin
96.1. Ubuntu
96.1.1. Installation Monitor Server
96.1.2. Installation Node
96.1.3. Additional Plugins
96.1.4. plugins
96.2. CentOS
96.3. 用户认证
96.4. munin-node and plugins
96.4.1. munin-node.conf
96.4.2. mysql plugin
96.4.3. apache plugin
96.4.4. memcached plugin
96.5. munin.conf
96.6. munin-node
96.6.1. munin-node.conf
97. Ntop
97.1. Installation
97.1.1. Ubuntu
97.1.2. CentOS
97.2. Web UI
97.3. Plugins
97.3.1. NetFlow
98. Bandwidth
98.1. apt-get install
98.2. CentOS rpm/yum
98.3. source code
98.4. /etc/bandwidthd.conf
99. NetFlow
99.1. flow-tools - collects and processes NetFlow data
99.1.1. flow-capture
99.1.2. NetFlow into MySQL with flow-tools
99.2. netams - Network Traffic Accounting and Monitoring Software
99.2.1. netams-web
100. Ganglia
100.1. Server
100.2. Client
100.3. Plugin
100.4. Installing Ganglia on Centos
101. lvs-rrd
102. Observium
102.1. Installation
103. OpenTSDB
104. Graphite
105. Graphite - Scalable Realtime Graphing
106. BIG BROTHER
107. Big Sister
108. OpenNMS
109. Performance Co-Pilot
110. Clumon Performance Monitor
111. Zenoss
112. 商业软件
113. Hyperic HQ
114. OSSIM,Spiceworks,FireGen,LANSweeper,OSSEC,HIDS
115. HawtIO
116. moloch
117. varnish - a state-of-the-art, high-performance HTTP accelerator
117.1. Varnish Install
117.2. varnish utility
117.2.1. status
117.2.2. varnishadm
117.2.3. varnishtop
117.2.4. varnishhist
117.2.5. varnishsizes
117.3. log file
117.4. Varnish Configuration Language - VCL
117.4.1. unset / set
117.5. example
118. Apache Traffic Server
118.1. Install
118.2. Configure
VIII. Server Load Balancing
119. heartbeat
119.1. heartbeat+ldirectord
119.1.1. heartbeat
119.1.2. ldirectord
119.1.3. test
119.2. Pacemaker
120. Linux Virtual Server
120.1. 环境配置
120.2. VS/NAT
120.3. VS/TUN
120.4. VS/DR
120.4.1. 配置文件
120.5. ipvsadm script
120.6. Timeout
120.7. debug
120.8. ipvsadm monitor
121. keepalived
121.1. 安装
121.2. test
121.3. HAProxy and Keepalived (Virtual IP)
122. Piranha - Cluster administation tools
122.1. install
122.2. configure
122.3. real server
122.4. Example
122.4.1. Master
122.4.2. Slave
122.4.3. MySQL
123. HAProxy - fast and reliable load balancing reverse proxy
123.1. Installing
123.1.1. Ubuntu
123.1.2. CentOS
123.2. haproxy.cfg
123.2.1. stats
123.2.2. listen 方式
123.2.3. frontend/backend 方式
123.2.4. option
123.2.5. balance
123.2.6. server
123.3. Example 配置实例
123.3.1. HTTP 配置实例
123.3.2. Squid
123.3.3. haproxy + mysql 配置实例
123.3.4. HTTPS SSL证书卸载配置实例
123.3.5. 使用TCP模式实现SSL穿透
123.3.6. SMTP
124. balance - Load balancing solution and generic tcp proxy
124.1. balance
124.1.1. 编译安装
124.1.2. Ubuntu 安装
124.1.3. 测试安装是否正确
124.1.4. 用法
124.2. BalanceNG
124.3. RBridge
125. Perlbal
125.1. install
126. Pacemaker
127. Example
127.1. 双负载均衡的用法
127.2. 单台负载均衡的用法
127.3. 广域网负载均衡的用法
128. FAQ
128.1. Haproxy 与 Nginx
IX. Distributed Computing
129. Open Source Distributed Computing
129.1. Boinc (berkeley 分布式计算平台)
129.1.1. rc.local
129.2. ubuntu apt-get 安装
129.3. CentOS 安装
129.4. boinccmd
129.4.1. attach_project
129.4.2. nomorework | allowmorework 禁止下载任务 / 允许下载任务
130. Twitter Storm
130.1. 单机版
130.2. lein 安装
131. High performance Computing
131.1. Distributed Computing
131.1.1. OpenMosix
131.1.2. OpenSSI
131.2. Parallel Computing
131.2.1. EnFusion
131.2.2. SCore
131.2.3. Beowulf
132. Spark
133. Tachyon
134. Apache ZooKeeper
134.1. 安装配置
134.1.1. 单节点安装
134.1.2. 多节点安装
134.2. 管理 ZooKeeper
134.2.1. help
134.2.2. ls
134.2.3. create
134.2.4. get
134.2.5. set
134.2.6. delete
X. Security
135. Authentication
135.1. /etc/login.defs
135.2. PAM 插件认证
135.2.1. pam_tally2.so
135.2.2. pam_listfile.so
135.2.3. pam_access.so
135.2.4. pam_wheel.so
135.3. Network Authentication
135.3.1. Network Information Service (NIS)
135.3.2. OpenLDAP
135.3.3. Kerberos
135.3.4. FreeRADIUS (Remote Authentication Dial In User Service)
135.3.5. SASL (Simple Authentication and Security Layer)
135.3.6. GSSAPI (Generic Security Services Application Program Interface)
136. Sniffer
136.1. nmap - Network exploration tool and security / port scanner
136.1.1. 端口扫描
136.1.2. HOST DISCOVERY
136.1.3. SCAN TECHNIQUES
136.1.4. PORT SPECIFICATION AND SCAN ORDER
136.1.5. SCRIPT SCAN
136.1.6. OS DETECTION
136.1.7. OUTPUT
136.1.8. MISC
136.1.9. Nmap Scripting Engine (NSE)
136.2. tcpdump - A powerful tool for network monitoring and data acquisition
136.2.1. 监控网络适配器接口
136.2.2. 监控主机
136.2.3. 监控TCP端口
136.2.4. 监控协议
136.2.5. 输出到文件
136.2.6. src / dst
136.2.7. 保存结果
136.2.8. Cisco Discovery Protocol (CDP)
136.2.9. Flags
136.2.10. 案例
136.3. cdpr - Cisco Discovery Protocol Reporter
136.4. ncat - Concatenate and redirect sockets
136.4.1. TCP 数据传输
136.4.2. UDP 数据传输
136.4.3. 始终保持服务器开启
136.4.4. 传输视频流
136.5. ngrep - Network layer grep tool
136.5.1. 匹配关键字
136.5.2. 指定网络接口
136.6. Unicornscan,Zenmap,nast
136.7. netstat-nat - Show the natted connections on a linux iptable firewall
136.8. Tcpreplay
136.9. Wireshark
137. sqlmap - automatic SQL injection and database takeover tool
137.1. Installation
137.2. 开始入住实验
137.2.1. 测试脚本
137.2.2. sqlmap.ini
137.3. Request参数
137.3.1. --method, --data
137.3.2. --cookie
137.3.3. --referer
137.3.4. --user-agent
137.3.5. --headers
137.3.6. --referer
137.3.7. auth
137.3.8. --proxy
137.3.9. --threads
137.3.10. --delay
137.3.11. --timeout
137.4. Injection
137.4.1. --dbms
137.4.2. --prefix
137.4.3. --postfix
137.4.4. --string
137.4.5. --regexp
137.4.6. --excl-str
137.4.7. --excl-reg
137.5. Techniques
137.5.1. --stacked-test
137.5.2. --time-test
137.5.3. --union-test
137.5.4. --union-tech
137.5.5. --union-use
137.6. Enumeration
137.6.1. dbs
137.6.2. --count
137.6.3. --dump/--dump-all
137.6.4. --sql-query
137.6.5. --sql-shell
137.7. Miscellaneous
137.7.1. --update
137.7.2. --save
138. Vulnerability Scanner
138.1. Nessus
138.2. OpenVAS
139. Injection & Penetration
139.1. Backtrack Linux
140. SELinux
140.1. getsebool - get SELinux boolean value
140.2. sestatus - SELinux status tool
140.3. setsebool - set SELinux boolean value
140.4. chcon - change file SELinux security context
140.5. rsync
141. Suricata Engine
142. psad
143. fwknop
144. fwsnort
145. nftables
146. Haka
XI. Configuration Management(配置管理)
147. Ansible - SSH-based configuration management, deployment, and task execution system
147.1. install
147.2. Getting Started
147.3. ansible - run a command somewhere else
147.3.1. host-pattern
147.3.2. -a MODULE_ARGS, --args=MODULE_ARGS module arguments
147.3.3. -i INVENTORY, --inventory-file=INVENTORY specify inventory host file (default=/etc/ansible/hosts)
147.3.4. -m MODULE_NAME, --module-name=MODULE_NAME module name to execute (default=command)
147.3.5. -s, --sudo run operations with sudo (nopasswd)
147.3.6. -u REMOTE_USER, --user=REMOTE_USER connect as this user (default=root)
147.3.7. 使用实例
147.4. ansible-doc - Show Ansible module documentation
147.5. ansible-playbook - run an ansible playbook
147.5.1. 包含文件用法
148. Capistrano
149. Puppet
149.1. Installing Puppet CentOS 6.3
149.2. Puppet 签名
149.2.1. Agent 节点
149.2.2. Master 服务器
149.3. test
149.3.1. Master
149.3.2. Agent
149.4. 配置文件
149.4.1. /etc/sysconfig/puppet
149.4.2. /etc/puppet/fileserver.conf
149.5. manifests
149.5.1. node
149.5.2. group, user 用户组管理
149.5.3. file
149.5.4. package
149.5.5. service
149.5.6. exec
149.5.7. cron
149.6. modules
149.7. firewall 配置
149.8. debug
149.8.1. master
149.8.2. node
149.9. FAQ
149.9.1. err: Could not request certificate: No route to host - connect(2)
149.9.2. No help available unless you have RDoc::usage installed
150. SaltStack
150.1. 安装 Salt Stack
150.1.1. 服务端安装
150.1.2. 客户端安装
150.1.3. 防火墙配置
150.1.4. key 管理
150.1.5. 测试
150.1.6. Demo
150.2. salt-key - Salt key is used to manage Salt authentication keys
150.3. salt 命令
150.3.1. cmd
150.3.2. pkg.install
150.3.3. network.interfaces
150.3.4. salt example
150.4. /etc/salt/master
150.4.1. File Server settings
150.4.2. Pillar settings
150.4.3. Node Groups
150.4.4. File Server Backend
150.5. sls 脚本
150.5.1. pkg
150.5.2. service
150.6. FAQ
150.6.1. Git fileserver backend is enabled in configuration but could not be loaded, is git-python installed
151. Chef
151.1. 安装 Chef
151.1.1. CentOS
152. Cobbler
153. Cfengine
154. func
155. (R)?ex Deployment & Configuration Management
156. 基于Web的系统管理软件
156.1. Webmin
156.1.1. webalizer
156.2. ajenti
XII. Virtualization
157. KVM
157.1. kvm install usage yum
157.1.1. brctl / tunctl
157.1.2. virt-install
157.2. Ubuntu
157.3. CentOS 6.2
157.4. Scientific Linux Virtualization
157.5. libvirt
157.5.1. virsh
157.5.2. Virtual Machine Manager
157.6. FAQ
157.6.1. No hypervisor options were found for this connection
157.6.2. 如何判断当前服务器是实体机还是虚拟机
158. Xen
158.1. install
158.2. Manager
159. OpenVZ
159.1. 安装OpenVZ
159.2. 使用OpenVZ & 建立VPS
159.2.1. 安装操作系统模板
159.2.2. 创建OpenVZ操作系统节点(VPS)
159.3. 设置VPS参数
160. 虚拟机界面
160.1. OpenStack
160.2. CloudStack
160.3. OpenNode
160.4. OpenNEbula
161. Docker
161.1. Installation
161.1.1. CentOS
161.1.2. Ubuntu
161.2. 镜像
161.2.1.
161.2.2. 获取镜像
161.2.3. 列出本地镜像
161.2.4. 创建镜像
161.2.5. 保存和载入镜像
161.2.6. 删除本地镜像
161.3. 容器
161.3.1. 启动与终止容器
161.3.2. 进入容器
161.3.3. 导出和导入容器
161.3.4. 删除容器
161.4. 仓库
161.5. docker 命令
161.5.1. run
161.5.2. start / stop / restart
161.5.3. ps
161.5.4. top
161.5.5. inspect
161.5.6. images
162. vagrant - Tool for building and distributing virtualized development environments
XIII. Multimedia
163. Audio
163.1. ardour
163.2. LMMS
163.3. Qsynth
163.4. Rosegarden
163.5. TerminatorX
163.6. Pulseaudio
163.7. Synthesizer
163.7.1. ZynAddSubFX
163.8. Drums
163.8.1. Hydrogen
164. Video
164.1. OpenShot
164.2. cinelerra-cv
164.3. FFmpeg
165. Graphics
165.1. ImageMagick
165.1.1. install
165.1.2. convert
165.2. GraphicsMagick
165.2.1. 安装
165.2.2. mogrify
165.3. Photivo
165.4. How to add metadata to digital pictures from the command line
166. Music score
166.1. LilyPond
166.1.1. Example
166.2. MuseScore
167. Stream
167.1. broadcast streaming
167.1.1. gnump3d - A streaming server for MP3 and OGG files
167.1.2. icecast2 - Ogg Vorbis and MP3 streaming media server
167.1.3. shoutcast
167.1.4. PeerCast
167.2. WebRTC
168. 其他命令
XIV. Voice over IP
169. Gnu Gatekeeper
169.1. Gnu Gatekeeper Install
169.2. Gnu Gatekeeper Configure
169.3. Gnu Gatekeeper Test
169.3.1. Part I - Microsoft Windows NetMeeting
169.3.2. Part II - ohphone
170. OpenSIPS
170.1. 安装 OpenSIPS
170.1.1. centos 6.5 默认安装
170.1.2. 使用 yum.opensips.org 源安装
170.1.3. 编译安装
170.2. 数据库部署
170.2.1. DBTEXT
170.2.2. MySQL
170.2.3. PGSQL
170.2.4. Berkeley DB
170.3. 测试 opensips
171. PBX
171.1. Asterisk (OpenSource Linux PBX that supports both SIP and H.323)
171.2. FreeSWITCH
171.3. Yate - Yet Another Telephony Engine (includes SIP to H.323 translation)
172. VOCAL (includes a SIP to H.323 translator)
173. SIP/H.323 客户端
173.1. linphone
173.2. Yate Client
XV. 项目管理工具
174. TRAC
174.1. 安装
174.1.1. source code
174.1.2. easy_install
174.1.3. Apache httpd
174.2. Project Environment
174.2.1. Sqlite
174.2.2. MySQL
174.2.3. Plugin
174.3. trac.ini
174.3.1. repository
174.3.2. attachment 附件配置
174.4. trac-admin
174.4.1. adduser script
174.5. FAQ
174.5.1. TracError: Cannot load Python bindings for MySQL
174.6. Apache Bloodhound
175. GitLab
175.1. 安装 GitLab
175.2. 用户管理
175.3. 组管理
175.4. 项目管理
175.5. FAQ
175.5.1. gitolite 向 gitlab 迁移
175.5.2. 修改主机名
176. Redmine
176.1. CentOS 安装
176.2. Redmine 运行
176.3. 插件
176.3.1. workflow
177. TUTOS
178. Open Source Requirements Management Tool
XVI. Git - Fast Version Control System
179. Repositories 仓库管理
179.1. initial setup
179.2. checkout
179.3. Creating and Commiting
179.4. Manager remote
179.5. Status
179.6. Diff
179.7. Cloning
179.8. Push
179.9. Pull
179.10. fetch
179.11. Creating a Patch
179.12. reset
180. Manipulating branches
180.1. list branches
180.2. create branches
180.3. delete branches
180.4. switch branch
180.5. git-show-branch - Show branches and their commits
181. Sharing Repositories with others
181.1. Setting up a git server
182. command
182.1. git-add - Add file contents to the index
182.2. git-status - Show the working tree status
182.3. git-commit - Record changes to the repository
182.4. git-show - Show various types of objects
182.5. git-checkout - Checkout and switch to a branch
182.5.1. checkout master
182.5.2. checkout branch
182.6. git config
183. git-daemon 服务器
183.1. git-daemon - A really simple server for git repositories
183.2. git-daemon-sysvinit
183.3. inet.conf / xinetd 方式启动
183.4. git-daemon-run
183.5. Testing
184. git-svn - Bidirectional operation between a single Subversion branch and git
185. .gitignore
186. gitolite - SSH-based gatekeeper for git repositories
186.1. gitolite-admin
186.1.1. gitolite.conf
187. Web Tools
187.1. viewgit
188. FAQ
188.1. 导出最后一次修改过的文件
188.2. 导出指定版本区间修改过的文件
188.3. fatal: The remote end hung up unexpectedly
XVII. Subversion
189. Invoking the Server
189.1. Installing
189.1.1. CentOS
189.1.2. CentOS
189.2. standalone “daemon” process
189.2.1. starting subversion for debian/ubuntu
189.2.2. starting subversion daemon script for CentOS/Radhat
189.3. classic Unix-like inetd daemon
189.4. hooks
189.4.1. post-commit
189.5. WebDav
189.5.1. davfs2 - mount a WebDAV resource as a regular file system
190. repository 管理
190.1. create repository
190.2. user admin
190.3. authz
190.4. dump
191. 使用Subversion
191.1. Initialized empty subversion repository for project
191.2. ignore
191.3. 关键字替换
191.4. lock 加锁/ unlock 解锁
191.5. import
191.6. export 指定版本
191.7. 修订版本关键字
191.8. 恢复旧版本
192. branch
192.1. create
192.2. remove
192.3. switch
192.4. merge
192.5. relocate
193. FAQ
193.1. 递归添加文件
193.2. 清除项目里的所有.svn目录
193.3. color diff
193.4. cvs2svn
193.5. Macromedia Dreamweaver MX 2004 + WebDAV +Subversion
193.6. 指定用户名与密码
XVIII. cvs - Concurrent Versions System
194. installation
194.1. chroot
195. cvs login | logout
196. cvs import
197. cvs checkout
198. cvs update
199. cvs add
200. cvs status
201. cvs commit
202. cvs remove
203. cvs log
204. cvs annotate
205. cvs diff
206. rename file
207. revision
208. cvs export
209. cvs release
210. branch
210.1. milestone
210.2. patch branch
211. keywords
212. 其他命令
213. IBM WebSphere
213.1. WebSphere Commerce Engerprise 7.0
213.2. UpdateInstaller (AppServer, Plugins, IBMIHS)
213.2.1. WAS
213.2.2. Plugins
213.2.3. IHS
213.2.4. backup
213.3. UpdateInstaller (CommerceServer70)
213.4. WebSphere Commerce Engerprise 7.0 Feature Pack 2.iso
213.5. creating a WebSphere Commerce instance
213.6. enableFeature
213.6.1. foundation
213.6.2. management-center
213.6.3. store-enhancements
213.6.4. checkEnablementStatus
213.6.5. check version
213.7. Start IBMIHS and AppServer
213.7.1. IBMIHS
213.7.2. AppServer
213.7.3. Starting and stopping the WebSphere Commerce Information Center
213.7.4. 管理入口
213.8. Initialization store
XIX. X Window
214. install x window
214.1. xinput - utility to configure and test X input devices
215. X Setup
215.1. 取消开机启动画面
215.2. Automatic login
215.3. fonts 字体
215.4. disable x window
216. X Terminal
216.1. tsclient - Terminal Server Client supporting XDMCP, VNC and RDP
216.1.1. VNC
216.1.2. xdmcp
216.2. vinagre - a remote desktop viewer for the GNOME Desktop
216.3. rdesktop - A Remote Desktop Protocol client
216.3.1. -g: desktop geometry (WxH)
216.3.2. -f: full-screen mode
216.3.3. -A: enable SeamlessRDP mode
216.3.4. -z: enable rdp compression
216.3.5. -r: enable specified device redirection (this flag can be repeated)
216.4. tigervnc
216.5. TightVNC
217. Unity
217.1. Enable/Disable Auto Hide For Unity 2-D Launcher In Ubuntu 11.10
218. X Window System
218.1. Fluxbox
218.2. LXDE
218.3. Xfce
218.4. Xming X Server for Windows
219. X Application Software
219.1. ubuntu-restricted-extras
219.2. Keyboard Input Methods(输入法)
219.3. 浏览器
219.3.1. Firefox
219.3.2. Chromium Web Browser
219.4. Download Software
219.5. PAC Manager
219.6. LibreOffice
219.7. VYM (View Your Mind)
219.8. greenshot
219.9. Window Switch
219.10. gparted
220. Office
220.1. Calc
220.1.1. 函数
221. FAQ
221.1. 通过SSH与控制台不能登录
1. 附录
1.1. 参考文档
1.2. Red Hat 漏洞
1.3. National Vulnerability Database (NVD)
1.4. Red Hat Bug平台
2. 历史记录

表格清单

1.1. Linux server partition
1.2. Linux desktop partition
22.1. 文件目录表达式
22.2. 字符串表达式
22.3. 组合表达式
38.1. net.ipv4.ip_forward
73.1. Volume Group Management
8. 表格标题

范例清单

11.1. 增加交换分区
11.2. GPT Example
11.3. 创建扩展分区
14.1. bonding example
14.2. 命令行建立WiFi链接步骤
22.1. A "Power User" Prompt
22.2. A Prompt the Width of Your Term
22.3. The Elegant Useless Clock Prompt
22.4. Basic conditional example if .. then
22.5. Conditionals with variables
22.6. case
22.7. Functions with parameters sample
22.8. Using select to make simple menus
22.9. Using the command line
22.10. Reading user input with read
22.11. read
22.12. random password
24.1. backup(find + tar)
26.1. example for expect
26.2. example for expect
26.3. example 1
26.4. *.exp
26.5. parallel - build and execute shell command lines from standard input in parallel
27.1. whiptail - yesno
27.2. whiptail - inputbox
27.3. whiptail - passwordbox
27.4. whiptail - passwordbox
27.5. whiptail - example 1
27.6. whiptail - radiolist
38.1. /etc/sysconfig/iptables
38.2. connlimit 实例
38.3. CentOS 5.6
42.1. openvpn.conf
42.2. server.conf
42.3. Openvpn 桥接模式服务器配置实例
42.4. 双网卡配置实例
42.5. client.conf
42.6. server.ovpn
42.7. client.ovpn
42.8. office.conf
42.9. home.ovpn
44.1. index.php
44.2. autolamp.sh
44.3. R=301
44.4. mod_perl.conf
45.1. Expires Examples
45.2. nginx expires
45.3. Example: valid_referers
45.4. Nginx + Tomcat
46.1. /etc/profile.d/java.sh
46.2. tomcat firewall
46.3. /etc/init.d/tomcat
46.4. /etc/rc.d/init.d/www
47.1. /etc/init.d/lighttpd
47.2. lighttpd compress
47.3. lighttpd expire
47.4. fastcgi.conf
47.5. Cache
48.1. explicit host in resin.conf
48.2. regexp host in resin.conf
48.3. host-alias in the resin.conf
48.4. host-alias in a /var/www/hosts/foo/host.xml
48.5. host-alias-regexp in the resin.conf
48.6. shared database in host
48.7. rewrite-dispatch
51.1. default.vcl
62.1. Subject Unicode
69.1. examples
69.2. backup to a central backup server with 7 day incremental
69.3. backup to a spare disk
69.4. mirroring vger CVS tree
69.5. automated backup at home
69.6. Fancy footwork with remote file lists
69.7. /etc/csync2.cfg
71.1. nginx-gridfs
71.2. Mirror
71.3. Strip
85.1. nmon
91.1. zabbix-agent 配置实例
92.1. cacti config.php
93.1.
94.1. config.php
95.1. mrtg
117.1. default.vcl
121.1. keepalived.conf
121.2. /etc/keepalived/keepalived.conf
122.1. piranha master
122.2. piranha slave
123.1. haproxy + mysql 配置实例
123.2. Haproxy MySQL (Master + Master)
135.1. /etc/pam.d/sshd - pam_tally2.so
135.2. /etc/pam.d/sshd - pam_listfile.so
149.1. puppetd
149.2. puppetca
150.1. salt command
157.1. virsh
190.1. authz
comments powered by Disqus