S registers, 350
Samba
features, 386
for mixed-OS environment administering, 386
for Windows-based networks, 385
log files, 404
name server, 400
name service problems, 400
printer sharing facilities, 386
resources, 403
server configuration resources, 393
understanding of, 385
UNIX/Linux implementation, 385
Samba client tools
ntlm_auth, 404
rpcclient, 404
smbclient, 404
smbcquotas, 404
smbmnt, 404
smbmount, 404
smbsh, 404
smbtar, 404
smbtree, 405
smbumount, 404
Samba configuration files, 404
Samba daemons
nmbd, 404
smbd, 404
winbindd, 404
Samba security modes
ADS security, 398
domain security, 398
server security, 398
Samba setup
command-line configuration, 388
Samba configuration tool, use of, 388
Samba packages, use of, 387
Samba server access troubleshooting with
Samba server, Windows client, 401
Windows 98 clients, 402
Windows server, Linux client, 401
Samba shares, 387, 395. See also Samba users
Samba troubleshooting tips
file permission problems, 402
for homes directory sharing, 399
for printer sharing, 399
for resolving name service problems, 400
for server access, 401
host access blocking, 397
interfaces, blocking, 397
performance problems, 402
perimeter firewalls, blocking, 396
security modes
share level, 397
user level, 397
users and groups, blocking, 397
Samba users. See also Samba shares
guest access permissions, 387
guest ok option, 386
guest only option, 386
overview, 386
Samba utilities
log2pcap,405
nmblookup, 405
profiles, 405
smbstatus, 405
testparm, 405
testprns, 405
wbinfo, 405
Samba utilities, administrative
net, 404
pdbedit, 404
smbcontrol, 404
smbpasswd, 404
SWAT, 404
tdbbackup, 404
Samba Web Administration Tool. See SWAT
SAN (storage area network), 107, 109
SAN fibre channel, 109
Sarge trees, Debian, 546
SAX for SUSE configuring, 529
sax2
color depth configuration, 533
defined, 529
graphics card configuration, 531
initial screen, 530
monitor configuration, 532
resolution configuration, 534
scanning script
automating, 257
defined, 253
running, 255
scp configuring and using, 462
scp file transfer method, 456
SCP working
key-based authentication, 469
via encrypted network connection, 467
scp/sftp clients, 473
screen
configuring, 176
utility, 165
Screen section, 176
script alias directory, 431
script, scanning. See scanning script
scripts in RPM package
checking, 201
defined, 201
SCSI tape drives for backup, 110, 111
SCSI versus ATA, 449
secure system, 261
security baseline, creating. See system security
security foundation tenets
passwords, 261
patches, 261
scanning and reporting, 262
services, 261
security through obscurity method, 447
security-related update, 46, 50
Sendmail configuration files
/etc//mail/domaintable, 496
/etc/aliases, 495
/etc/mail/, 495
/etc/mail/access, 496
/etc/mall/genericstable, 496
/etc/mail/mailertable, 496
/etc/mail/sendmail.cf, 495
/etc/mail/sendmail.mc, 495
/etc/mail/virtusertable, 496
sendmail configuring
/etc/aliases file, use of, 498
/etc/mail/virtusertable file, use of, 496
overview, 493
Sendmail log files
/var/log/mailog, 496
/var/log/messages, 496
Sendmail options
public IP SMTP bindings, 501
sendmail.cf, rebuilding, 500
SMTP-Auth, 502
Sendmail problems and solutions
blacklisted IP addresses, 509
mail bouncing due to dynamic IP configuration, 511
miscofigured mail server, 510
spam, 509
Sendmail problems, diagnosing
using log files, 503
using telnet, 505
sendmail tips and tricks
outgoing mail queue, looking at, 500
Sendmail options, changing, 500
Sendmail settings, 499
system mail, redirecting, 499
user .forward files, securing, 500
Sendmail troubleshooting
e-mail address, not-deliverable, 506
expected e-mail volume, not receiving, 506
POP3, not running, 507
queue trouble, 507
Senmail not accepting connections, 506
Sendmail user/system directories
/var/spool/mail/, 496
/var/spool/mqueue/, 496
Sendmail. See also PostFix
binary, 487
command, 498
daemon, 489
overview, 485
resources, 517
versus PostFix, 512
sendmail.mc file, 500
serial modems, using, 347
server loads, locking
enterprise server needs, identifying, 74
overview, 73
Server Message Block. See SMB
server migrations
disk-to-disk, 133
overview, 133
security aspects, 135
software issues, 133
Web/Apache, 135
server. See also name servers
access control, 270
BIND/DNS, 311
config files, 120
NFS, 408
stand-alone, 283
troubleshooting, 6
ServerLayout section, 176
server-status module, 452
service location protocol (SLP), 535
service/packet filtering, 283
sfdisk command, 219
sftp
configuring and using, 462
file transfer method, 456
sh shell, 144
shared directory for NFS server configuring, 408
shell
bash shell tuning, 144
choosing and using, 143
for Linux troubleshooting, 139
terminal windows, 140
shell commands
alias, 145
cat, 145
chgrp, 145
chown, 145
df-h, 147
dmesg, 149
fdisk -l, 147
finger, 150
groups, 150
id, 150
lastlog, 150
lsmod, 160
lspci, 148
mv, 147
ping, 157
rm, 147
runlevel, 148
set, 149
sort, 145
ssh, 163
strace, 156
traceroute, 166
uname -a, 147
uname, 147
who, 150
shell script
automating, 257
creating, 253
testing, 255
shell types
ash, 143
bash shell, 253
bash, 143
csh, 144
ksh, 144
sh, 144
zsh, 144
shutting off services method, 115, 117
signature checking, 194
simple mail transfer protocol (SMTP), 166
single server access control
with iptables, 281
with TCP wrappers, 270
single-homed firewall, 270. See also dual-homed firewall
single-homed server, 275
slave BIND9 DNS servers, 328
slave name server
updating problems, 335
working, 328
slave server, configuring. See also master server, configuring
/etc/named.conf file, 329
zone refresh settings, 330
slave server, defined, 313
SLP (service location protocol), 535
small-to-medium backup. See also medium- to large-scale backup
AIT-1 tape, 108
AIT-2, 108
AIT-3, 108
CD-RW, 108
DDS3 tape, 108
DDS4, 108
DVD+/-RW, 107
DVD-RW, 108
hard disk, 108
LTO-1 tape, 108
LTO-2 tape, 108
SMB (Server Message Block) protocol
defined, 385
server security mode, 398
SMB shares. See Samba shares
smb.conf file
file sections
global, 389
homes, 389
local, 389
printers, 389
using, 389
smbclient command, 395
SMTP (simple mail transfer protocol)
daemon, 509
protocol, 505
use of, 166
SNARE tool, 245. See also Portsentry; Snort tool
Snort tool, 244. See also Portsentry; SNARE tool
SOA (Start of Authority Record), 320
software package signatures, checking
Fedora/Red Hat public keys, 194
GPG keys importing, 195
GPG keys viewing, 194
overview of, 194
third-party public keys, 195
software package. See also RPM packages
for Fedora, 14
troubleshooting reference, 208
troubleshooting, 207
verifying, 206
software packages, checking
dependencies, 197
package contents, cross- checking of, 200
scripts, 201
using RPM universal database, 198
software packages, querying
individual packages, 203
local or remote packages, 203
multiple packages, 205
overview, 202
software repositories for Linux installation, 20
source update, 40, 51. See also automated update; manual update
spam, dealing with, 509
SPI (stateful packet inspection), 265
SSH
firewalls and, 473
sessions, 279
ssh command, 163. See also remote login
SSH-based file transfers
scp, 456
sftp, 456
sshd
configuring, 463
sshd username/password authentication, 464
SSH-key based authentication, 80
SSL services for WebDAV securing, 478
stable release, Debian, 545
stand-alone
firewall, 270
Start Of Authority (SOA), 328, 330
state triggers, 292
stateful firewalling, 290
stateful packet inspection (SPI), 265
stateful packet network control, 274
stock or custom boot CD, 87
storage area network (SAN), 107, 109
strace command, 156
sudo command, 152
suexec binary, 444
suexec, Fedora Core and, 444
SUSE
/etc/sysconfig/network file, 527
config file settings, 527
configuring with SAX, 529
DHCP configuration, 528
distribution rpm files, 535
installation using YaST, 533
rc scripts, 528
setting options, 536
swap partition, creating, 535
troubleshooting, 523
using chkconfig, 529
using network scripts, 527
SUSE versions, current
SUSE Linux Desktop, 525
SUSE Linux Enterprise Server 8, 525
SUSE Linux OpenExchange Server, 525
SUSE Linux Personal 9.1, 525
SUSE Linux Professional 9.1, 524
SUSE Linux Standard Server 8, 525
SUSE, history of
SUSE's licenses and maintenance
for business products, 526
for home user versions, 526
SuSEconfig and YaST, 538
SuSEconfig, 527
sux command, 537
SWAT (Samba Web Administration Tool)
on Linux system, 390
remotely using, 392
shares adding features, 391
symlink pointers, 84
sysconfig directory, 526
syslinux boot media, 66, 95, 97
syslinux, 66
system backup runlevel, 117
system backup, 117
system baseline scan, 242
system binary, 255
system config files, 114
system directories, backing up, 113
System Logs tool, Red Hat, 243
system processes, examining, 153
system scanning, automating. See scanning script
system scans, 253
system security
chkrootkit package, adding, 251
RPM baseline, creating, 249
system security, overview, 249