0 Basic Learning Cloud computing and Big Data DBA cluster Architect "Linux systems \ Network services and Security Configuration January 6, 2015 Wednesday"

NTP1. Function: Synchronization time. 2. Principle: Layered structure. 3. Software: el6:ntp       el7:chrony4.el6 Master profile  /etc/ntp.confrestrict 172.25.0.0 Mask 255.255.255.0 --and who's going to do it with me sync server 172.25.0.10 --I'm looking for someone to do synchronous special expression 127.127.1.0  Represents the local system time. Synchronizes with local time, specifying the number of tiers: Server 127.127.1.0 fudge127.127.1.0 stratum on the client, use Ntpdate-u 172.25.0. 11来 Sync time when we restart the NTP service, we need to wait 5-10 minutes for the synchronization to succeed. 5. EL7 Master profile/etc/chrony.confallow 172.25.0/24  Allow who to do with me sync server-- and who do synchronize and local time to do synchronization, specify the number of tiers in the way server 172.25.0.10local stratum on the client, using Ntpdate-u 172.25.0. 10来 and Server Synchronization 6. Services el6 Service ntpd restartel7   systemctl Restart Chronyd.service 

Ftp1. Role: Sharing files 2. Software Vsftpd3How it works: Active mode: Server port 21st handles link requests and transmits data to the client via port 20th. Passive mode: The server processes the link request through 21 ports, and then opens a port number that notifies the client to  from the port number. 4. VSFTPD supported user types: Anonymous users and Local Users anonymous users: Users who do not have an account specified in the FTP server, but who can access the appropriate resources for the FTP server. Local User:/etc/passwd users 5. VSFTPD structure 1) master configuration file/etc/vsftpd/vsftpd.conf 2) data file/var/ftp/Pub Catalog 6Access mode 1) anonymous access [1] browser ftp://172.25.0.11/pub/lftp Tools--Corresponding software name: LFTP [2] LFTP IP address [[email protected] ~]# lftp 172.25.0.11LFTP 172.25.0.11:~> lsDrwxr-xr-x 2 0 0 4096 Jan 06 06:43Publftp 172.25.0.11:/> CD pub/Lftp 172.25.0.11:/pub> ls-rw-r--r--1 0 0 0 Jan 06 06:43file1-rw-r--r--1 0 0 0 Jan 06 06:43file10-rw-r--r--1 0 0 0 Jan 06 06:43file2-rw-r--r--1 0 0 0 Jan 06 06:43file3-rw-r--r--1 0 0 0 Jan 06 06:43file4-rw-r--r--1 0 0 0 Jan 06 06:43file5-rw-r--r--1 0 0 0 Jan 06 06:43file6-rw-r--r--1 0 0 0 Jan 06 06:43file7-rw-r--r--1 0 0 0 Jan 06 06:43file8-rw-r--r--1 0 0 0 Jan 06 06:43File9lftp 172.25.0.11:/pub>Exit 2Local user access to the LFTP tool: For local users, its shared directory is his home directory. lftp [email protected][Email protected] ~]# lftp [email protected]password:lftp [email protected]:~> ls ls:login failed:500 oops:cannot change directory:/home/testuserlftp [email protected]:~> Read the file is not home directory because selinux caused the need to open setsebool-p ftp_home_dir. Download Lftp after Login , use get to download lftp 172.25.0.11:/pub> get file1 the location of the download is in your current location. 8. Upload thelocal user's upload: lftp after landing, use put to upload lftp [email protected ]:~> put testuserfile can upload an absolute path to the file in the directory where we are located anonymous user uploads: 1) Program Restrictions vim/etc/vsftpd/vsftpd.conf Open Anon_ upload_enable=YES 2) UGO The rwx permissions that are used to access the directory to the FTP user. 3) SELinux permissions semanage fcontext-a-T public_content_rw_t pub--& GT; Note the path/var/ftp/pub restorecon-r-v pub--for/var/ftp/pub setsebool-p allow_ftpd_anon_write. Black and White List blacklist:/etc/vsftpd/ftpusers in the main configuration file there is a row parameter: userlist_enable=Yes if the parameter is yes, the/etc/vsftpd/user_ List is a blacklist. If the parameter is no, the/etc/vsftpd/user_list is the whitelist. If there is no configuration for the row, the default parameter is No. Man 5 vsftpd.conf    

0 Basic Learning Cloud computing and Big Data DBA cluster architect Linux systems \ Network services and Security Configuration January 6, 2015 Wednesday "