/l3/users/10-06-2013/NT-Lnet/debian2.net.nt/root :1 :2 :3 :4
[ править ]

Журнал лабораторных работ

Содержание

Журнал

Вторник (06/11/13)

/dev/pts/0
08:35:43
#route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
default         net.nt          0.0.0.0         UG    0      0        0 eth0
192.168.13.0    *               255.255.255.0   U     0      0        0 eth0
08:40:44
#route -r 
route: неверный ключ -- «r»
Usage: route [-nNvee] [-FC] [<AF>]           List kernel routing tables
       route [-v] [-FC] {add|del|flush} ...  Modify routing table for AF.
       route {-h|--help} [<AF>]              Detailed usage syntax for specified AF.
       route {-V|--version}                  Display version/author and exit.
        -v, --verbose            be verbose
        -n, --numeric            don't resolve names
        -e, --extend             display other/more information
        -F, --fib                display Forwarding Information Base (default)
        -C, --cache              display routing cache instead of FIB
  <AF>=Use '-A <af>' or '--<af>'; default: inet
  List of possible address families (which support routing):
    inet (DARPA Internet) inet6 (IPv6) ax25 (AMPR AX.25)
    netrom (AMPR NET/ROM) ipx (Novell IPX) ddp (Appletalk DDP)
    x25 (CCITT X.25)
08:41:02
#mc
прошло 14 минут
08:55:25
#traceroute
Usage:
  traceroute [ -46dFITnreAUV ] [ -f first_ttl ] [ -g gate,... ] [ -i device ] [ -m max_ttl ] [ -N squeries ] [ -p port ] [ -t tos ] [ -l flow_label ] [ -w waittime ] [ -q nqueries ] [ -s src_addr ] [ -z sendwait ] host [ packetlen ]
Options:
  -4                          Use IPv4
  -6                          Use IPv6
  -d  --debug                 Enable socket level debugging
  -F  --dont-fragment         Do not fragment packets
  -f first_ttl  --first=first_ttl
                              Start from the first_ttl hop (instead from 1)
  -g gate,...  --gateway=gate,...
...
                              `-F -N 1'
  --back                      Guess the number of hops in the backward path and
                              print if it differs
  -V  --version               Print version info and exit
  --help                      Read this help and exit
Arguments:
+     host          The host to traceroute to
      packetlen     The full packet length (default is the length of an IP
                    header plus 40). Can be ignored or increased to a minimal
                    allowed value
08:55:30
#^C 








прошло 14 минут




09:09:59




#cat /etc/services


# Network services, Internet style
#
# Note that it is presently the policy of IANA to assign a single well-known
# port number for both TCP and UDP; hence, officially ports have two entries
# even if the protocol doesn't support UDP operations.
#
# Updated from http://www.iana.org/assignments/port-numbers and other
# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services .
# New ports will be added on request if they have been officially assigned
# by IANA and used in the real-world or are needed by a debian package.
...
vboxd           20012/tcp                       # voice box system
vboxd           20012/udp
binkp           24554/tcp                       # binkp fidonet protocol
asp             27374/tcp                       # Address Search Protocol
asp             27374/udp
csync2          30865/tcp                       # cluster synchronization tool
dircproxy       57000/tcp                       # Detachable IRC Proxy
tfido           60177/tcp                       # fidonet EMSI over telnet
fido            60179/tcp                       # fidonet EMSI over TCP
# Local services









прошло >3 часов




/dev/pts/0
12:30:52




#xconv.pl < /etc/inetd.conf > /root/xinetd.conf












12:31:32




#cat /root/xinetd.conf


# This file generated by xconv.pl, included with the xinetd
# package.  xconv.pl was written by Rob Braun (bbraun@synack.net)
#
# The file is merely a translation of your inetd.conf file into
# the equivalent in xinetd.conf syntax.  xinetd has many
# features that may not be taken advantage of with this translation.
# Please refer to the xinetd.conf man page for more information
# on how to properly configure xinetd.
# The defaults section sets some information for all services
defaults
...
        # USERID logs the remote user (using RFC 1413)
        # EXIT logs the exit status of the server.
        # DURATION logs the duration of the session.
        log_on_success = HOST PID
        # What to log when the connection fails.  Same options as above
        log_on_failure = HOST
        # The maximum number of connections a specific IP address can
        # have to a specific service.
        per_source  = 5
}











12:31:43




#xinetd












12:32:24




#ps waux | grep xinetd


root      1840  0.0  0.1   2448   804 ?        Ss   13:21   0:00 /usr/sbin/xinetd -pidfile /var/run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6
root      1965  0.0  0.1   5076   736 pts/1    S+   13:32   0:00 grep xinetd











12:32:39




#ps aux | grep xinetd


root      1840  0.0  0.1   2448   804 ?        Ss   13:21   0:00 /usr/sbin/xinetd -pidfile /var/run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6
root      1974  0.0  0.1   5076   740 pts/1    S+   13:32   0:00 grep xinetd











12:32:44




#ps aux | grep xinetd


root      1840  0.0  0.1   2448   804 ?        Ss   13:21   0:00 /usr/sbin/xinetd -pidfile /var/run/xinetd.pid -stayalive -inetd_compat -inetd_ipv6
root      1983  0.0  0.1   5076   736 pts/1    S+   13:33   0:00 grep xinetd











12:33:12




#/etc/init.d/xinetd stop


Stopping internet superserver: xinetd.











12:33:59




#tail /var/log/daemon.log


Jun 11 13:33:55 debian2 xinetd[2034]: removing daytime
Jun 11 13:33:55 debian2 xinetd[2034]: removing daytime
Jun 11 13:33:55 debian2 xinetd[2034]: removing discard
Jun 11 13:33:55 debian2 xinetd[2034]: removing discard
Jun 11 13:33:55 debian2 xinetd[2034]: removing echo
Jun 11 13:33:55 debian2 xinetd[2034]: removing echo
Jun 11 13:33:55 debian2 xinetd[2034]: removing time
Jun 11 13:33:55 debian2 xinetd[2034]: removing time
Jun 11 13:33:55 debian2 xinetd[2034]: xinetd Version 2.3.14 started with libwrap loadavg options compiled in.
Jun 11 13:33:55 debian2 xinetd[2034]: Started working: 0 available services











12:34:22




#tail /var/log/messages


Jun 10 16:59:20 debian2 kernel: [    3.676977] input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input3
Jun 10 16:59:20 debian2 kernel: [    3.677006] ACPI: Sleep Button [SLPF]
Jun 10 16:59:20 debian2 kernel: [    3.809479] parport_pc 00:0b: reported by Plug and Play ACPI
Jun 10 16:59:20 debian2 kernel: [    3.810418] parport0: PC-style at 0x378, irq 7 [PCSPP,TRISTATE]
Jun 10 16:59:20 debian2 kernel: [    4.174610] input: ImExPS/2 Generic Explorer Mouse as /devices/platform/i8042/serio1/input/input4
Jun 10 16:59:20 debian2 kernel: [    7.193672] Adding 688124k swap on /dev/xvda5.  Priority:-1 extents:1 across:688124k SS
Jun 10 16:59:20 debian2 kernel: [    7.377023] EXT3-fs (xvda1): using internal journal
Jun 10 16:59:20 debian2 kernel: [    7.572401] loop: module loaded
Jun 10 16:59:21 debian2 kernel: [   10.126067] sshd (1043): /proc/1043/oom_adj is deprecated, please use /proc/1043/oom_score_adj instead.
Jun 11 07:36:00 debian2 rsyslogd: [origin software="rsyslogd" swVersion="4.6.4" x-pid="825" x-info="http://www.rsyslog.com"] rsyslogd was HUPed, type 'lightweight'.











12:36:07




#mc










12:43:37




#killall -1 xinetd












12:43:45




#telnet 127.0.0.1 chargen


Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl
&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm
'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn
...
()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno
)*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnop
*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopq
+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqr
,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrs
-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrst^C^]
telnet> w
?Invalid command
telnet> q
Connection closed.











12:44:30




#nc 127.0.0.1:chargen





127.0.0.1:chargen: forward host lookup failed: Unknown host











12:44:46




#nc 127.0.0.1:19





127.0.0.1:19: forward host lookup failed: Unknown host











12:44:49




#nc 127.0.0.1 19





!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl
&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm
'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn
()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno
)*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnop
*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopq
...
{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcde
|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdef
}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl











12:45:37




#netstat -lnp


Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:59142           0.0.0.0:*               LISTEN      677/rpc.statd
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      665/portmap
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN      2034/xinetd
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      1043/sshd
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      1165/exim4
tcp6       0      0 :::22                   :::*                    LISTEN      1043/sshd
tcp6       0      0 ::1:25                  :::*                    LISTEN      1165/exim4
udp        0      0 0.0.0.0:111             0.0.0.0:*                           665/portmap
udp        0      0 0.0.0.0:55847           0.0.0.0:*                           677/rpc.statd
udp        0      0 0.0.0.0:853             0.0.0.0:*                           677/rpc.statd
Active UNIX domain sockets (only servers)
Proto RefCnt Flags       Type       State         I-Node   PID/Program name    Path
unix  2      [ ACC ]     STREAM     LISTENING     3602     860/acpid           /var/run/acpid.socket











12:46:42




#netstat -lnp -A inet


Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:59142           0.0.0.0:*               LISTEN      677/rpc.statd
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      665/portmap
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN      2034/xinetd
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      1043/sshd
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      1165/exim4
udp        0      0 0.0.0.0:111             0.0.0.0:*                           665/portmap
udp        0      0 0.0.0.0:55847           0.0.0.0:*                           677/rpc.statd
udp        0      0 0.0.0.0:853             0.0.0.0:*                           677/rpc.statd











12:46:47




#lsof


COMMAND    PID        USER   FD      TYPE     DEVICE SIZE/OFF       NODE NAME
init         1        root  cwd       DIR      202,1     4096          2 /
init         1        root  rtd       DIR      202,1     4096          2 /
init         1        root  txt       REG      202,1    31676     923989 /sbin/init
init         1        root  mem       REG      202,1     9736     688856 /lib/i686/cmov/libdl-2.11.3.so
init         1        root  mem       REG      202,1  1327556     688875 /lib/i686/cmov/libc-2.11.3.so
init         1        root  mem       REG      202,1   104276     678694 /lib/libselinux.so.1
init         1        root  mem       REG      202,1   215520     678692 /lib/libsepol.so.1
init         1        root  mem       REG      202,1   118060     680371 /lib/ld-2.11.3.so
init         1        root   10u     FIFO        0,5      0t0       2377 /dev/initctl
...
lsof      2210        root    5w     FIFO        0,8      0t0       8994 pipe
lsof      2210        root    6r     FIFO        0,8      0t0       8995 pipe
lsof      2211        root  cwd       DIR      202,1     4096      49057 /root
lsof      2211        root  rtd       DIR      202,1     4096          2 /
lsof      2211        root  txt       REG      202,1   121412     217507 /usr/bin/lsof
lsof      2211        root  mem       REG      202,1  3680336     230088 /usr/lib/locale/locale-archive
lsof      2211        root  mem       REG      202,1  1327556     688875 /lib/i686/cmov/libc-2.11.3.so
lsof      2211        root  mem       REG      202,1   118060     680371 /lib/ld-2.11.3.so
lsof      2211        root    4r     FIFO        0,8      0t0       8994 pipe
lsof      2211        root    7w     FIFO        0,8      0t0       8995 pipe











12:47:45




#lsof | grep listen















12:47:53




#lsof | grep LISTEN


portmap    665      daemon    5u     IPv4       3357      0t0        TCP *:sunrpc (LISTEN)
rpc.statd  677       statd    7u     IPv4       3391      0t0        TCP *:59142 (LISTEN)
sshd      1043        root    3u     IPv4       3739      0t0        TCP *:ssh (LISTEN)
sshd      1043        root    4u     IPv6       3742      0t0        TCP *:ssh (LISTEN)
exim4     1165 Debian-exim    3u     IPv4       3841      0t0        TCP localhost.localdomain:smtp (LISTEN)
exim4     1165 Debian-exim    4u     IPv6       3842      0t0        TCP [::1]:smtp (LISTEN)
xinetd    2034        root    5u     IPv4       8693      0t0        TCP *:chargen (LISTEN)











12:48:02




#cat /etc/services | grep jet















12:49:33




#cat /etc/services | grep ftp


ftp-data        20/tcp
ftp             21/tcp
tftp            69/udp
sftp            115/tcp
ftps-data       989/tcp                         # FTP over SSL (data)
ftps            990/tcp
venus-se        2431/udp                        # udp sftp side effect
codasrv-se      2433/udp                        # udp sftp side effect
gsiftp          2811/tcp
gsiftp          2811/udp
frox            2121/tcp                        # frox: caching ftp proxy
zope-ftp        8021/tcp                        # zope management by ftp











12:49:39




#cat /etc/services | grep jet















12:51:13




#cat /etc/services | grep chargen


chargen         19/tcp          ttytst source
chargen         19/udp          ttytst source











12:51:55




#mc










12:56:06




#/etc/init.s/xinetd restart





l3script: /etc/init.s/xinetd: Нет такого файла или каталога











12:56:17




#/etc/init.d/xinetd restart


Stopping internet superserver: xinetd.
Starting internet superserver: xinetd.











12:57:01




#mc










13:00:30




#telnet localhost chargen


Trying 127.0.0.1...
Connected to localhost.localdomain.
Escape character is '^]'.
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl
&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm
'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn
...
ghijklmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQ
hijklmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQR
ijklmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRS
jklmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRST
klmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTU
lmnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUV
mnopqrstuvwxyz{|}!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVW
nopqrstuvwxyz{|}!"#$%&'()*+,-
telnet> q
Connection closed.











13:00:45




#telnet localhost echo


Trying 127.0.0.1...
Connected to localhost.localdomain.
Escape character is '^]'.
df
df
df
df
df
df
^]
telnet> q
Connection closed.











13:00:57




#mc










13:02:29




#nmap localhost


Starting Nmap 5.00 ( http://nmap.org ) at 2013-06-11 14:02 EEST
Interesting ports on localhost.localdomain (127.0.0.1):
Not shown: 995 closed ports
PORT    STATE SERVICE
7/tcp   open  echo
19/tcp  open  chargen
22/tcp  open  ssh
25/tcp  open  smtp
111/tcp open  rpcbind
Nmap done: 1 IP address (1 host up) scanned in 0.14 seconds











13:02:34




#mc










13:05:14




#mc










13:07:39




#/etc/init.d/xinetd restart


Stopping internet superserver: xinetd.
Starting internet superserver: xinetd.











13:07:56




#mcedit /usr/local/etc/xinetd.d/





chargen  echo











13:07:56




#mcedit /usr/local/etc/xinetd.d/chargen


<------>socket_type<--->= dgram
<------>protocol<------>= udp
<------>user<--><------>= root
<------>wait<--><------>= yes
}...............................................................................
                            ....................................................









прошло 11 минут




/dev/pts/0
13:19:47




#man iptables








прошло 18 минут




13:37:53




#. /etc/bash_completion










прошло 55 минут




14:33:45




#iptables -L


Chain INPUT (policy ACCEPT)
target     prot opt source               destination
Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination











14:33:48




#iptables -F












14:33:50




#iptables -A INPUT -d 127.0.0.1 -p icmp -j DROP












14:35:56




#telnet 192.168.15.254 7





Trying 192.168.15.254...
sd
dssd
sdasd
asdasd
telnet: Unable to connect to remote host: Connection timed out











14:42:37




#sd





l3script: sd: команда не найдена











14:42:37




#dssd





l3script: dssd: команда не найдена











14:42:37




#sdasd





l3script: sdasd: команда не найдена











14:42:37




#asdasd





l3script: asdasd: команда не найдена











14:42:37




#telnet 192.168.15.254 7





Trying 192.168.15.254...
tytry
retret
ertretuyuy
ert
^C











14:42:48




#iptables -A INPUT -p tcp --dport 80 -j ACCEPT












14:43:24




#iptables -A INPUT -p tcp --dport 22 -j ACCEPT












14:43:41




#iptables -A INPUT -p tcp -j DROP












14:44:04




#ping 192.168.15.254


PING 192.168.15.254 (192.168.15.254) 56(84) bytes of data.
^C
--- 192.168.15.254 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 3015ms











14:46:29




#iptables -A INPUT -p tcp --dport 80 -j ACCEPT












14:48:44




#nmap localhost


Starting Nmap 5.00 ( http://nmap.org ) at 2013-06-11 15:49 EEST
Interesting ports on localhost.localdomain (127.0.0.1):
Not shown: 998 filtered ports
PORT   STATE  SERVICE
22/tcp open   ssh
80/tcp closed http
Nmap done: 1 IP address (1 host up) scanned in 4.00 seconds











14:49:56




#cat /root/ip1


# Generated by iptables-save v1.4.8 on Tue Jun 11 15:49:56 2013
*filter
:INPUT ACCEPT [16:1263]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [2148:102916]
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
COMMIT
# Completed on Tue Jun 11 15:49:56 2013











14:50:04




#iptables -F












14:50:13




#iptables-restor < /root/ip1





l3script: iptables-restor: команда не найдена











14:50:31




#iptables-restore < /root/ip1












14:51:15




#ifconfig


eth0      Link encap:Ethernet  HWaddr 00:16:3e:00:00:02
          inet addr:192.168.13.2  Bcast:192.168.13.255  Mask:255.255.255.0
          inet6 addr: fe80::216:3eff:fe00:2/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:290467 errors:0 dropped:0 overruns:0 frame:0
          TX packets:122067 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:2294200528 (2.1 GiB)  TX bytes:148764635 (141.8 MiB)
          Interrupt:72
lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:51492 errors:0 dropped:0 overruns:0 frame:0
          TX packets:51492 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:349178171 (333.0 MiB)  TX bytes:349178171 (333.0 MiB)











14:52:49




#iptables -A INPUT -i eth1 -p tcp --dport 2 -j ACCEPT












14:53:01




#iptables -A INPUT -i eth1 -p tcp --dport 80 -j ACCEPT












14:53:31




#iptables -A INPUT -i eth0 -p tcp --dport 22 -j ACCEPT












14:53:42




#iptables -A INPUT -i eth0 -p tcp --syn -j DROP












14:54:56




#iptables -t nat -L


Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination











15:00:09




#iptables -t nat -I PREROUTING -p tcp --dport 22 -j REDIRECT










Среда (06/12/13)


08:03:43




#mc










08:04:02




#ps -ax


Warning: bad ps syntax, perhaps a bogus '-'? See http://procps.sf.net/faq.html
  PID TTY      STAT   TIME COMMAND
    1 ?        Ss     0:03 init [2]
    2 ?        S      0:00 [kthreadd]
    3 ?        S      0:00 [ksoftirqd/0]
    4 ?        S      0:00 [kworker/0:0]
    5 ?        S      0:00 [kworker/u:0]
    6 ?        S      0:00 [migration/0]
    7 ?        S      0:01 [watchdog/0]
    8 ?        S<     0:00 [cpuset]
...
 1207 ?        Ss     5:35 l3-agent
 2649 ?        Ss     0:00 /usr/sbin/xinetd -pidfile /var/run/xinetd.pid -stayal
 2706 ?        Ss     0:00 sshd: root@pts/0
 2709 pts/0    Ss     0:00 -bash
 2726 pts/0    S+     0:00 script -f -c l3script -q /root/.lilalo//2346124331322
 2757 pts/0    S+     0:00 script -f -c l3script -q /root/.lilalo//2346124331322
 2758 pts/1    Ss     0:00 l3script
 2885 ?        Ss     0:00 sshd: root@pts/2
 2888 pts/2    Ss+    0:00 -bash
 3779 pts/1    R+     0:00 ps -ax











08:04:08




#ps axu


USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         1  0.0  0.1   2084   700 ?        Ss   Jun10   0:03 init [2]
root         2  0.0  0.0      0     0 ?        S    Jun10   0:00 [kthreadd]
root         3  0.0  0.0      0     0 ?        S    Jun10   0:00 [ksoftirqd/0]
root         4  0.0  0.0      0     0 ?        S    Jun10   0:00 [kworker/0:0]
root         5  0.0  0.0      0     0 ?        S    Jun10   0:00 [kworker/u:0]
root         6  0.0  0.0      0     0 ?        S    Jun10   0:00 [migration/0]
root         7  0.0  0.0      0     0 ?        S    Jun10   0:01 [watchdog/0]
root         8  0.0  0.0      0     0 ?        S<   Jun10   0:00 [cpuset]
root         9  0.0  0.0      0     0 ?        S<   Jun10   0:00 [khelper]
...
root      1207  0.2  2.1  16644 11172 ?        Ss   Jun10   5:35 l3-agent
root      2649  0.0  0.1   2448   888 ?        Ss   Jun11   0:00 /usr/sbin/xinet
root      2706  0.0  0.5   8312  2852 ?        Ss   Jun11   0:00 sshd: root@pts/
root      2709  0.0  0.5   7412  3000 pts/0    Ss   Jun11   0:00 -bash
root      2726  0.0  0.1   5144   756 pts/0    S+   Jun11   0:00 script -f -c l3
root      2757  0.0  0.0   5148   416 pts/0    S+   Jun11   0:00 script -f -c l3
root      2758  0.0  0.6   7572  3212 pts/1    Ss   Jun11   0:00 l3script
root      2885  0.0  0.5   8312  2848 ?        Ss   Jun11   0:00 sshd: root@pts/
root      2888  0.0  0.5   7412  2980 pts/2    Ss+  Jun11   0:00 -bash
root      3787  0.0  0.2   5624  1040 pts/1    R+   09:04   0:00 ps axu











08:04:22




#ps axu | grep telnetd


root      3796  0.0  0.1   5076   736 pts/1    S+   09:04   0:00 grep telnetd











08:04:37




#mc










08:11:57




#sshd restart





sshd re-exec requires execution with an absolute path









прошло 13 минут




08:25:24




#scp -r @root192.168.13.1:/etc ~/etc-over





ssh: Could not resolve hostname root192.168.13.1: Name or service not known











08:27:23




#scp -r root@192.168.13.1:/etc ~/etc-over





The authenticity of host '192.168.13.1 (192.168.13.1)' can't be established.
RSA key fingerprint is 62:dd:81:b1:0d:50:38:41:e7:82:ea:89:d5:48:16:e0.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.13.1' (RSA) to the list of known hosts.
root@192.168.13.1's password:
inittab                                       100% 2008     2.0KB/s   00:00
profile                                       100%  823     0.8KB/s   00:00
securetty                                     100% 3828     3.7KB/s   00:00
l3config.pm                                   100% 5830     5.7KB/s   00:00
anacron                                       100%  753     0.7KB/s   00:00
...
mountnfs                                      100% 4581     4.5KB/s   00:00
openssh-server                                100%  849     0.8KB/s   00:00
interfaces                                    100%  507     0.5KB/s   00:00
ifstate                                       100%   26     0.0KB/s   00:00
gprs                                          100%  950     0.9KB/s   00:00
provider                                      100%  656     0.6KB/s   00:00
pap                                           100%  653     0.6KB/s   00:00
deluser.conf                                  100%  600     0.6KB/s   00:00
crontab                                       100%  724     0.7KB/s   00:00
nsswitch.conf                                 100%  475     0.5KB/s   00:00











08:27:40




#ls ~


etc-over  ip1  xinetd.conf











08:27:45




#ls /root/etc-over/


acpi                    gai.conf          lynx-cur        rc5.d
adduser.conf            groff             magic           rc6.d
adjtime                 group             magic.mime      rc.local
aliases                 group-            mailcap         rcS.d
alternatives            grub.d            mailcap.order   reportbug.conf
anacrontab              gshadow           mailname        resolv.conf
apm                     gshadow-          mail.rc         rmt
apt                     gssapi_mech.conf  manpath.config  rpc
at.deny                 host.conf         mc              rsyslog.conf
bash.bashrc             hostname          mime.types      rsyslog.d
...
dictionaries-common     ld.so.conf.d      profile         updatedb.conf
discover.conf.d         lilalo            profile.d       vim
discover-modprobe.conf  locale.alias      protocols       w3m
dpkg                    locale.gen        python          wgetrc
emacs                   localtime         python2.6       X11
email-addresses         logcheck          rc0.d           xinetd.conf
environment             login.defs        rc1.d           xinetd.d
exim4                   logrotate.conf    rc2.d           xml
fonts                   logrotate.d       rc3.d           xnetd.conf
fstab                   lsb-base          rc4.d











08:27:58




#pw





l3script: pw: команда не найдена











08:32:00




#ssh root@192.168.1 pw useradd newuser





^C











08:32:09




#ssh root@192.168.13.1 useradd newuser1


root@192.168.13.1's password:











08:32:18




#ssh root@192.168.13.1 useradd newuser





root@192.168.13.1's password:











08:32:23




#ssh root@192.168.13.1 pw useradd newuser





root@192.168.13.1's password:
bash: pw: команда не найдена











08:32:31




#ssh root@192.168.13.1 rmuser newuser1





root@192.168.13.1's password:
bash: rmuser: команда не найдена











08:32:54




#ssh root@192.168.13.1 userdel newuser1


root@192.168.13.1's password:











08:33:11




#ssh root@192.168.13.1 useradd newuser


root@192.168.13.1's password:











08:33:23




#ssh root@192.168.13.1 passwd newuser


root@192.168.13.1's password:
Permission denied, please try again.
root@192.168.13.1's password:
Введите новый пароль UNIX: very,bad-password
Повторите ввод нового пароля UNIX: very,bad-password
passwd: пароль успешно обновлён











08:35:08




#ssh-key





ssh-keygen   ssh-keyscan











08:35:08




#ssh-key





ssh-keygen   ssh-keyscan











08:35:08




#ssh-keygen -t rsa1


Generating public/private rsa1 key pair.
Enter file in which to save the key (/root/.ssh/identity):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Passphrases do not match.  Try again.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/identity.
Your public key has been saved in /root/.ssh/identity.pub.
The key fingerprint is:
...
|                 |
|       . .       |
|      . o o      |
|    . .o +       |
|     +  S o +    |
|o . . .  + =     |
|.o . .  o .      |
|E    +.+         |
|    o.+.oo.      |
+-----------------+











08:37:39




#ssh-keygen -t rsa





Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
passphrase too short: have 2 bytes, need > 4
Saving the key failed: /root/.ssh/id_rsa.











08:38:17




#ssh-keygen -t dsa





Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
passphrase too short: have 2 bytes, need > 4
Saving the key failed: /root/.ssh/id_dsa.











08:38:24




#ssh-keygen -t rsa1


Generating public/private rsa1 key pair.
Enter file in which to save the key (/root/.ssh/identity):
/root/.ssh/identity already exists.
Overwrite (y/n)? y
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/identity.
Your public key has been saved in /root/.ssh/identity.pub.
The key fingerprint is:
1c:b0:87:92:ff:5f:c4:73:03:4a:8a:cc:72:31:23:3f root@debian2
...
|      .          |
|     . +         |
|    + * o . .    |
|     B B + o .   |
|    . E S . + o  |
|     o o   . o . |
|        .   .    |
|         . .     |
|          .      |
+-----------------+











08:38:48




#ssh-keygen -t rsa


Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
79:42:ca:f4:ae:41:a8:5a:d1:79:82:03:dc:87:18:62 root@debian2
The key's randomart image is:
+--[ RSA 2048]----+
|.E               |
|+ + .            |
|.o o .. .        |
| . o.= + .       |
|  + = = S .      |
|   + + . o       |
|  o   . .        |
| o     o         |
|.     .          |
+-----------------+











08:38:53




#ssh-keygen -t dsa


Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_dsa.
Your public key has been saved in /root/.ssh/id_dsa.pub.
The key fingerprint is:
d0:6f:48:d7:4b:38:32:72:2a:cb:b7:57:09:f5:d4:49 root@debian2
The key's randomart image is:
+--[ DSA 1024]----+
|             oE. |
|       .  .o. o  |
|      o *.+oo    |
|       *.* o..   |
|    . . S.o..    |
|   . o   .o      |
|    o .  .       |
|     . ..        |
|      ..         |
+-----------------+









прошло 25 минут




/dev/pts/4
09:04:06




#ssh-keygen -t rsa1





Generating public/private rsa1 key pair.
Enter file in which to save the key (/root/.ssh/identity):
/root/.ssh/identity already exists.
Overwrite (y/n)? n









прошло 16 минут




09:20:55




#ssh root@192.168.13.1





root@192.168.13.1's password:
Permission denied, please try again.
root@192.168.13.1's password:
Permission denied, please try again.
root@192.168.13.1's password:
Permission denied (publickey,password).









Файлы
  • /etc/services
  • /root/ip1
  • /root/xinetd.conf
    • /etc/services
    

    >
    # Network services, Internet style
#
# Note that it is presently the policy of IANA to assign a single well-known
# port number for both TCP and UDP; hence, officially ports have two entries
# even if the protocol doesn't support UDP operations.
#
# Updated from http://www.iana.org/assignments/port-numbers and other
# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services .
# New ports will be added on request if they have been officially assigned
# by IANA and used in the real-world or are needed by a debian package.
# If you need a huge list of used numbers please install the nmap package.
tcpmux          1/tcp                           # TCP port service multiplexer
echo            7/tcp
echo            7/udp
discard         9/tcp           sink null
discard         9/udp           sink null
systat          11/tcp          users
daytime         13/tcp
daytime         13/udp
netstat         15/tcp
qotd            17/tcp          quote
msp             18/tcp                          # message send protocol
msp             18/udp
chargen         19/tcp          ttytst source
chargen         19/udp          ttytst source
ftp-data        20/tcp
ftp             21/tcp
fsp             21/udp          fspd
ssh             22/tcp                          # SSH Remote Login Protocol
ssh             22/udp
telnet          23/tcp
smtp            25/tcp          mail
time            37/tcp          timserver
time            37/udp          timserver
rlp             39/udp          resource        # resource location
nameserver      42/tcp          name            # IEN 116
whois           43/tcp          nicname
tacacs          49/tcp                          # Login Host Protocol (TACACS)
tacacs          49/udp
re-mail-ck      50/tcp                          # Remote Mail Checking Protocol
re-mail-ck      50/udp
domain          53/tcp                          # name-domain server
domain          53/udp
mtp             57/tcp                          # deprecated
tacacs-ds       65/tcp                          # TACACS-Database Service
tacacs-ds       65/udp
bootps          67/tcp                          # BOOTP server
bootps          67/udp
bootpc          68/tcp                          # BOOTP client
bootpc          68/udp
tftp            69/udp
gopher          70/tcp                          # Internet Gopher
gopher          70/udp
rje             77/tcp          netrjs
finger          79/tcp
www             80/tcp          http            # WorldWideWeb HTTP
www             80/udp                          # HyperText Transfer Protocol
link            87/tcp          ttylink
kerberos        88/tcp          kerberos5 krb5 kerberos-sec     # Kerberos v5
kerberos        88/udp          kerberos5 krb5 kerberos-sec     # Kerberos v5
supdup          95/tcp
hostnames       101/tcp         hostname        # usually from sri-nic
iso-tsap        102/tcp         tsap            # part of ISODE
acr-nema        104/tcp         dicom           # Digital Imag. & Comm. 300
acr-nema        104/udp         dicom           # Digital Imag. & Comm. 300
csnet-ns        105/tcp         cso-ns          # also used by CSO name server
csnet-ns        105/udp         cso-ns
rtelnet         107/tcp                         # Remote Telnet
rtelnet         107/udp
pop2            109/tcp         postoffice pop-2 # POP version 2
pop2            109/udp         pop-2
pop3            110/tcp         pop-3           # POP version 3
pop3            110/udp         pop-3
sunrpc          111/tcp         portmapper      # RPC 4.0 portmapper
sunrpc          111/udp         portmapper
auth            113/tcp         authentication tap ident
sftp            115/tcp
uucp-path       117/tcp
nntp            119/tcp         readnews untp   # USENET News Transfer Protocol
ntp             123/tcp
ntp             123/udp                         # Network Time Protocol
pwdgen          129/tcp                         # PWDGEN service
pwdgen          129/udp                         # PWDGEN service
loc-srv         135/tcp         epmap           # Location Service
loc-srv         135/udp         epmap
netbios-ns      137/tcp                         # NETBIOS Name Service
netbios-ns      137/udp
netbios-dgm     138/tcp                         # NETBIOS Datagram Service
netbios-dgm     138/udp
netbios-ssn     139/tcp                         # NETBIOS session service
netbios-ssn     139/udp
imap2           143/tcp         imap            # Interim Mail Access P 2 and 4
imap2           143/udp         imap
snmp            161/tcp                         # Simple Net Mgmt Protocol
snmp            161/udp                         # Simple Net Mgmt Protocol
snmp-trap       162/tcp         snmptrap        # Traps for SNMP
snmp-trap       162/udp         snmptrap        # Traps for SNMP
cmip-man        163/tcp                         # ISO mgmt over IP (CMOT)
cmip-man        163/udp
cmip-agent      164/tcp
cmip-agent      164/udp
mailq           174/tcp                 # Mailer transport queue for Zmailer
mailq           174/udp                 # Mailer transport queue for Zmailer
xdmcp           177/tcp                         # X Display Mgr. Control Proto
xdmcp           177/udp
nextstep        178/tcp         NeXTStep NextStep       # NeXTStep window
nextstep        178/udp         NeXTStep NextStep       #  server
bgp             179/tcp                         # Border Gateway Protocol
bgp             179/udp
prospero        191/tcp                         # Cliff Neuman's Prospero
prospero        191/udp
irc             194/tcp                         # Internet Relay Chat
irc             194/udp
smux            199/tcp                         # SNMP Unix Multiplexer
smux            199/udp
at-rtmp         201/tcp                         # AppleTalk routing
at-rtmp         201/udp
at-nbp          202/tcp                         # AppleTalk name binding
at-nbp          202/udp
at-echo         204/tcp                         # AppleTalk echo
at-echo         204/udp
at-zis          206/tcp                         # AppleTalk zone information
at-zis          206/udp
qmtp            209/tcp                         # Quick Mail Transfer Protocol
qmtp            209/udp                         # Quick Mail Transfer Protocol
z3950           210/tcp         wais            # NISO Z39.50 database
z3950           210/udp         wais
ipx             213/tcp                         # IPX
ipx             213/udp
imap3           220/tcp                         # Interactive Mail Access
imap3           220/udp                         # Protocol v3
pawserv         345/tcp                         # Perf Analysis Workbench
pawserv         345/udp
zserv           346/tcp                         # Zebra server
zserv           346/udp
fatserv         347/tcp                         # Fatmen Server
fatserv         347/udp
rpc2portmap     369/tcp
rpc2portmap     369/udp                         # Coda portmapper
codaauth2       370/tcp
codaauth2       370/udp                         # Coda authentication server
clearcase       371/tcp         Clearcase
clearcase       371/udp         Clearcase
ulistserv       372/tcp                         # UNIX Listserv
ulistserv       372/udp
ldap            389/tcp                 # Lightweight Directory Access Protocol
ldap            389/udp
imsp            406/tcp                 # Interactive Mail Support Protocol
imsp            406/udp
svrloc          427/tcp                         # Server Location
svrloc          427/udp                         # Server Location
https           443/tcp                         # http protocol over TLS/SSL
https           443/udp
snpp            444/tcp                         # Simple Network Paging Protocol
snpp            444/udp
microsoft-ds    445/tcp                         # Microsoft Naked CIFS
microsoft-ds    445/udp
kpasswd         464/tcp
kpasswd         464/udp
saft            487/tcp                 # Simple Asynchronous File Transfer
saft            487/udp
isakmp          500/tcp                 # IPsec - Internet Security Association
isakmp          500/udp                 #  and Key Management Protocol
rtsp            554/tcp                 # Real Time Stream Control Protocol
rtsp            554/udp                 # Real Time Stream Control Protocol
nqs             607/tcp                         # Network Queuing system
nqs             607/udp
npmp-local      610/tcp         dqs313_qmaster          # npmp-local / DQS
npmp-local      610/udp         dqs313_qmaster
npmp-gui        611/tcp         dqs313_execd            # npmp-gui / DQS
npmp-gui        611/udp         dqs313_execd
hmmp-ind        612/tcp         dqs313_intercell        # HMMP Indication / DQS
hmmp-ind        612/udp         dqs313_intercell
qmqp            628/tcp
qmqp            628/udp
ipp             631/tcp                         # Internet Printing Protocol
ipp             631/udp
#
# UNIX specific services
#
exec            512/tcp
biff            512/udp         comsat
login           513/tcp
who             513/udp         whod
shell           514/tcp         cmd             # no passwords used
syslog          514/udp
printer         515/tcp         spooler         # line printer spooler
talk            517/udp
ntalk           518/udp
route           520/udp         router routed   # RIP
timed           525/udp         timeserver
tempo           526/tcp         newdate
courier         530/tcp         rpc
conference      531/tcp         chat
netnews         532/tcp         readnews
netwall         533/udp                         # for emergency broadcasts
gdomap          538/tcp                         # GNUstep distributed objects
gdomap          538/udp
uucp            540/tcp         uucpd           # uucp daemon
klogin          543/tcp                         # Kerberized `rlogin' (v5)
kshell          544/tcp         krcmd           # Kerberized `rsh' (v5)
dhcpv6-client   546/tcp
dhcpv6-client   546/udp
dhcpv6-server   547/tcp
dhcpv6-server   547/udp
afpovertcp      548/tcp                         # AFP over TCP
afpovertcp      548/udp
idfp            549/tcp
idfp            549/udp
remotefs        556/tcp         rfs_server rfs  # Brunhoff remote filesystem
nntps           563/tcp         snntp           # NNTP over SSL
nntps           563/udp         snntp
submission      587/tcp                         # Submission [RFC4409]
submission      587/udp
ldaps           636/tcp                         # LDAP over SSL
ldaps           636/udp
tinc            655/tcp                         # tinc control port
tinc            655/udp
silc            706/tcp
silc            706/udp
kerberos-adm    749/tcp                         # Kerberos `kadmin' (v5)
#
webster         765/tcp                         # Network dictionary
webster         765/udp
rsync           873/tcp
rsync           873/udp
ftps-data       989/tcp                         # FTP over SSL (data)
ftps            990/tcp
telnets         992/tcp                         # Telnet over SSL
telnets         992/udp
imaps           993/tcp                         # IMAP over SSL
imaps           993/udp
ircs            994/tcp                         # IRC over SSL
ircs            994/udp
pop3s           995/tcp                         # POP-3 over SSL
pop3s           995/udp
#
# From ``Assigned Numbers'':
#
#> The Registered Ports are not controlled by the IANA and on most systems
#> can be used by ordinary user processes or programs executed by ordinary
#> users.
#
#> Ports are used in the TCP [45,106] to name the ends of logical
#> connections which carry long term conversations.  For the purpose of
#> providing services to unknown callers, a service contact port is
#> defined.  This list specifies the port used by the server process as its
#> contact port.  While the IANA can not control uses of these ports it
#> does register or list uses of these ports as a convienence to the
#> community.
#
socks           1080/tcp                        # socks proxy server
socks           1080/udp
proofd          1093/tcp
proofd          1093/udp
rootd           1094/tcp
rootd           1094/udp
openvpn         1194/tcp
openvpn         1194/udp
rmiregistry     1099/tcp                        # Java RMI Registry
rmiregistry     1099/udp
kazaa           1214/tcp
kazaa           1214/udp
nessus          1241/tcp                        # Nessus vulnerability
nessus          1241/udp                        #  assessment scanner
lotusnote       1352/tcp        lotusnotes      # Lotus Note
lotusnote       1352/udp        lotusnotes
ms-sql-s        1433/tcp                        # Microsoft SQL Server
ms-sql-s        1433/udp
ms-sql-m        1434/tcp                        # Microsoft SQL Monitor
ms-sql-m        1434/udp
ingreslock      1524/tcp
ingreslock      1524/udp
prospero-np     1525/tcp                        # Prospero non-privileged
prospero-np     1525/udp
datametrics     1645/tcp        old-radius
datametrics     1645/udp        old-radius
sa-msg-port     1646/tcp        old-radacct
sa-msg-port     1646/udp        old-radacct
kermit          1649/tcp
kermit          1649/udp
l2f             1701/tcp        l2tp
l2f             1701/udp        l2tp
radius          1812/tcp
radius          1812/udp
radius-acct     1813/tcp        radacct         # Radius Accounting
radius-acct     1813/udp        radacct
msnp            1863/tcp                        # MSN Messenger
msnp            1863/udp
unix-status     1957/tcp                        # remstats unix-status server
log-server      1958/tcp                        # remstats log server
remoteping      1959/tcp                        # remstats remoteping server
cisco-sccp      2000/tcp                        # Cisco SCCP
cisco-sccp      2000/udp
search          2010/tcp        ndtp
pipe_server     2010/tcp
nfs             2049/tcp                        # Network File System
nfs             2049/udp                        # Network File System
gnunet          2086/tcp
gnunet          2086/udp
rtcm-sc104      2101/tcp                        # RTCM SC-104 IANA 1/29/99
rtcm-sc104      2101/udp
gsigatekeeper   2119/tcp
gsigatekeeper   2119/udp
gris            2135/tcp                # Grid Resource Information Server
gris            2135/udp                # Grid Resource Information Server
cvspserver      2401/tcp                        # CVS client/server operations
cvspserver      2401/udp
venus           2430/tcp                        # codacon port
venus           2430/udp                        # Venus callback/wbc interface
venus-se        2431/tcp                        # tcp side effects
venus-se        2431/udp                        # udp sftp side effect
codasrv         2432/tcp                        # not used
codasrv         2432/udp                        # server port
codasrv-se      2433/tcp                        # tcp side effects
codasrv-se      2433/udp                        # udp sftp side effect
mon             2583/tcp                        # MON traps
mon             2583/udp
dict            2628/tcp                        # Dictionary server
dict            2628/udp
gsiftp          2811/tcp
gsiftp          2811/udp
gpsd            2947/tcp
gpsd            2947/udp
gds_db          3050/tcp                        # InterBase server
gds_db          3050/udp
icpv2           3130/tcp        icp             # Internet Cache Protocol
icpv2           3130/udp        icp
mysql           3306/tcp
mysql           3306/udp
nut             3493/tcp                        # Network UPS Tools
nut             3493/udp
distcc          3632/tcp                        # distributed compiler
distcc          3632/udp
daap            3689/tcp                        # Digital Audio Access Protocol
daap            3689/udp
svn             3690/tcp        subversion      # Subversion protocol
svn             3690/udp        subversion
suucp           4031/tcp                        # UUCP over SSL
suucp           4031/udp                        # UUCP over SSL
sysrqd          4094/tcp                        # sysrq daemon
sysrqd          4094/udp                        # sysrq daemon
sieve           4190/tcp                        # ManageSieve Protocol
epmd            4369/tcp                        # Erlang Port Mapper Daemon
epmd            4369/udp                        # Erlang Port Mapper Daemon
remctl          4373/tcp                # Remote Authenticated Command Service
remctl          4373/udp                # Remote Authenticated Command Service
iax             4569/tcp                        # Inter-Asterisk eXchange
iax             4569/udp
mtn             4691/tcp                        # monotone Netsync Protocol
mtn             4691/udp                        # monotone Netsync Protocol
radmin-port     4899/tcp                        # RAdmin Port
radmin-port     4899/udp
rfe             5002/udp                        # Radio Free Ethernet
rfe             5002/tcp
mmcc            5050/tcp        # multimedia conference control tool (Yahoo IM)
mmcc            5050/udp
sip             5060/tcp                        # Session Initiation Protocol
sip             5060/udp
sip-tls         5061/tcp
sip-tls         5061/udp
aol             5190/tcp                        # AIM
aol             5190/udp
xmpp-client     5222/tcp        jabber-client   # Jabber Client Connection
xmpp-client     5222/udp        jabber-client
xmpp-server     5269/tcp        jabber-server   # Jabber Server Connection
xmpp-server     5269/udp        jabber-server
cfengine        5308/tcp
cfengine        5308/udp
mdns            5353/tcp                        # Multicast DNS
mdns            5353/udp                        # Multicast DNS
postgresql      5432/tcp        postgres        # PostgreSQL Database
postgresql      5432/udp        postgres
freeciv         5556/tcp        rptp            # Freeciv gameplay
freeciv         5556/udp
amqp            5672/tcp
amqp            5672/udp
amqp            5672/sctp
ggz             5688/tcp                        # GGZ Gaming Zone
ggz             5688/udp                        # GGZ Gaming Zone
x11             6000/tcp        x11-0           # X Window System
x11             6000/udp        x11-0
x11-1           6001/tcp
x11-1           6001/udp
x11-2           6002/tcp
x11-2           6002/udp
x11-3           6003/tcp
x11-3           6003/udp
x11-4           6004/tcp
x11-4           6004/udp
x11-5           6005/tcp
x11-5           6005/udp
x11-6           6006/tcp
x11-6           6006/udp
x11-7           6007/tcp
x11-7           6007/udp
gnutella-svc    6346/tcp                        # gnutella
gnutella-svc    6346/udp
gnutella-rtr    6347/tcp                        # gnutella
gnutella-rtr    6347/udp
sge_qmaster     6444/tcp                        # Grid Engine Qmaster Service
sge_qmaster     6444/udp                        # Grid Engine Qmaster Service
sge_execd       6445/tcp                        # Grid Engine Execution Service
sge_execd       6445/udp                        # Grid Engine Execution Service
mysql-proxy     6446/tcp                        # MySQL Proxy
mysql-proxy     6446/udp                        # MySQL Proxy
afs3-fileserver 7000/tcp        bbs             # file server itself
afs3-fileserver 7000/udp        bbs
afs3-callback   7001/tcp                        # callbacks to cache managers
afs3-callback   7001/udp
afs3-prserver   7002/tcp                        # users & groups database
afs3-prserver   7002/udp
afs3-vlserver   7003/tcp                        # volume location database
afs3-vlserver   7003/udp
afs3-kaserver   7004/tcp                        # AFS/Kerberos authentication
afs3-kaserver   7004/udp
afs3-volser     7005/tcp                        # volume managment server
afs3-volser     7005/udp
afs3-errors     7006/tcp                        # error interpretation service
afs3-errors     7006/udp
afs3-bos        7007/tcp                        # basic overseer process
afs3-bos        7007/udp
afs3-update     7008/tcp                        # server-to-server updater
afs3-update     7008/udp
afs3-rmtsys     7009/tcp                        # remote cache manager service
afs3-rmtsys     7009/udp
font-service    7100/tcp        xfs             # X Font Service
font-service    7100/udp        xfs
http-alt        8080/tcp        webcache        # WWW caching service
http-alt        8080/udp                        # WWW caching service
bacula-dir      9101/tcp                        # Bacula Director
bacula-dir      9101/udp
bacula-fd       9102/tcp                        # Bacula File Daemon
bacula-fd       9102/udp
bacula-sd       9103/tcp                        # Bacula Storage Daemon
bacula-sd       9103/udp
xmms2           9667/tcp        # Cross-platform Music Multiplexing System
xmms2           9667/udp        # Cross-platform Music Multiplexing System
nbd             10809/tcp                       # Linux Network Block Device
zabbix-agent    10050/tcp                       # Zabbix Agent
zabbix-agent    10050/udp                       # Zabbix Agent
zabbix-trapper  10051/tcp                       # Zabbix Trapper
zabbix-trapper  10051/udp                       # Zabbix Trapper
amanda          10080/tcp                       # amanda backup services
amanda          10080/udp
hkp             11371/tcp                       # OpenPGP HTTP Keyserver
hkp             11371/udp                       # OpenPGP HTTP Keyserver
bprd            13720/tcp                       # VERITAS NetBackup
bprd            13720/udp
bpdbm           13721/tcp                       # VERITAS NetBackup
bpdbm           13721/udp
bpjava-msvc     13722/tcp                       # BP Java MSVC Protocol
bpjava-msvc     13722/udp
vnetd           13724/tcp                       # Veritas Network Utility
vnetd           13724/udp
bpcd            13782/tcp                       # VERITAS NetBackup
bpcd            13782/udp
vopied          13783/tcp                       # VERITAS NetBackup
vopied          13783/udp
dcap            22125/tcp                       # dCache Access Protocol
gsidcap         22128/tcp                       # GSI dCache Access Protocol
wnn6            22273/tcp                       # wnn6
wnn6            22273/udp
#
# Datagram Delivery Protocol services
#
rtmp            1/ddp                   # Routing Table Maintenance Protocol
nbp             2/ddp                   # Name Binding Protocol
echo            4/ddp                   # AppleTalk Echo Protocol
zip             6/ddp                   # Zone Information Protocol
#=========================================================================
# The remaining port numbers are not as allocated by IANA.
#=========================================================================
# Kerberos (Project Athena/MIT) services
# Note that these are for Kerberos v4, and are unofficial.  Sites running
# v4 should uncomment these and comment out the v5 entries above.
#
kerberos4       750/udp         kerberos-iv kdc # Kerberos (server)
kerberos4       750/tcp         kerberos-iv kdc
kerberos_master 751/udp                         # Kerberos authentication
kerberos_master 751/tcp
passwd_server   752/udp                         # Kerberos passwd server
krb_prop        754/tcp         krb5_prop hprop # Kerberos slave propagation
krbupdate       760/tcp         kreg            # Kerberos registration
swat            901/tcp                         # swat
kpop            1109/tcp                        # Pop with Kerberos
knetd           2053/tcp                        # Kerberos de-multiplexor
zephyr-srv      2102/udp                        # Zephyr server
zephyr-clt      2103/udp                        # Zephyr serv-hm connection
zephyr-hm       2104/udp                        # Zephyr hostmanager
eklogin         2105/tcp                        # Kerberos encrypted rlogin
# Hmmm. Are we using Kv4 or Kv5 now? Worrying.
# The following is probably Kerberos v5  --- ajt@debian.org (11/02/2000)
kx              2111/tcp                        # X over Kerberos
iprop           2121/tcp                        # incremental propagation
#
# Unofficial but necessary (for NetBSD) services
#
supfilesrv      871/tcp                         # SUP server
supfiledbg      1127/tcp                        # SUP debugging
#
# Services added for the Debian GNU/Linux distribution
#
linuxconf       98/tcp                          # LinuxConf
poppassd        106/tcp                         # Eudora
poppassd        106/udp
ssmtp           465/tcp         smtps           # SMTP over SSL
moira_db        775/tcp                         # Moira database
moira_update    777/tcp                         # Moira update protocol
moira_ureg      779/udp                         # Moira user registration
spamd           783/tcp                         # spamassassin daemon
omirr           808/tcp         omirrd          # online mirror
omirr           808/udp         omirrd
customs         1001/tcp                        # pmake customs server
customs         1001/udp
skkserv         1178/tcp                        # skk jisho server port
predict         1210/udp                        # predict -- satellite tracking
rmtcfg          1236/tcp                        # Gracilis Packeten remote config server
wipld           1300/tcp                        # Wipl network monitor
xtel            1313/tcp                        # french minitel
xtelw           1314/tcp                        # french minitel
support         1529/tcp                        # GNATS
cfinger         2003/tcp                        # GNU Finger
frox            2121/tcp                        # frox: caching ftp proxy
ninstall        2150/tcp                        # ninstall service
ninstall        2150/udp
zebrasrv        2600/tcp                        # zebra service
zebra           2601/tcp                        # zebra vty
ripd            2602/tcp                        # ripd vty (zebra)
ripngd          2603/tcp                        # ripngd vty (zebra)
ospfd           2604/tcp                        # ospfd vty (zebra)
bgpd            2605/tcp                        # bgpd vty (zebra)
ospf6d          2606/tcp                        # ospf6d vty (zebra)
ospfapi         2607/tcp                        # OSPF-API
isisd           2608/tcp                        # ISISd vty (zebra)
afbackup        2988/tcp                        # Afbackup system
afbackup        2988/udp
afmbackup       2989/tcp                        # Afmbackup system
afmbackup       2989/udp
xtell           4224/tcp                        # xtell server
fax             4557/tcp                        # FAX transmission service (old)
hylafax         4559/tcp                        # HylaFAX client-server protocol (new)
distmp3         4600/tcp                        # distmp3host daemon
munin           4949/tcp        lrrd            # Munin
enbd-cstatd     5051/tcp                        # ENBD client statd
enbd-sstatd     5052/tcp                        # ENBD server statd
pcrd            5151/tcp                        # PCR-1000 Daemon
noclog          5354/tcp                        # noclogd with TCP (nocol)
noclog          5354/udp                        # noclogd with UDP (nocol)
hostmon         5355/tcp                        # hostmon uses TCP (nocol)
hostmon         5355/udp                        # hostmon uses UDP (nocol)
rplay           5555/udp                        # RPlay audio service
nrpe            5666/tcp                        # Nagios Remote Plugin Executor
nsca            5667/tcp                        # Nagios Agent - NSCA
mrtd            5674/tcp                        # MRT Routing Daemon
bgpsim          5675/tcp                        # MRT Routing Simulator
canna           5680/tcp                        # cannaserver
sane-port       6566/tcp        sane saned      # SANE network scanner daemon
ircd            6667/tcp                        # Internet Relay Chat
zope-ftp        8021/tcp                        # zope management by ftp
tproxy          8081/tcp                        # Transparent Proxy
omniorb         8088/tcp                        # OmniORB
omniorb         8088/udp
clc-build-daemon 8990/tcp                       # Common lisp build daemon
xinetd          9098/tcp
mandelspawn     9359/udp        mandelbrot      # network mandelbrot
git             9418/tcp                        # Git Version Control System
zope            9673/tcp                        # zope server
webmin          10000/tcp
kamanda         10081/tcp                       # amanda backup services (Kerberos)
kamanda         10081/udp
amandaidx       10082/tcp                       # amanda backup services
amidxtape       10083/tcp                       # amanda backup services
smsqp           11201/tcp                       # Alamin SMS gateway
smsqp           11201/udp
xpilot          15345/tcp                       # XPilot Contact Port
xpilot          15345/udp
sgi-cmsd        17001/udp               # Cluster membership services daemon
sgi-crsd        17002/udp
sgi-gcd         17003/udp                       # SGI Group membership daemon
sgi-cad         17004/tcp                       # Cluster Admin daemon
isdnlog         20011/tcp                       # isdn logging system
isdnlog         20011/udp
vboxd           20012/tcp                       # voice box system
vboxd           20012/udp
binkp           24554/tcp                       # binkp fidonet protocol
asp             27374/tcp                       # Address Search Protocol
asp             27374/udp
csync2          30865/tcp                       # cluster synchronization tool
dircproxy       57000/tcp                       # Detachable IRC Proxy
tfido           60177/tcp                       # fidonet EMSI over telnet
fido            60179/tcp                       # fidonet EMSI over TCP
# Local services

    /root/ip1
    

    >
    # Generated by iptables-save v1.4.8 on Tue Jun 11 15:49:56 2013
*filter
:INPUT ACCEPT [16:1263]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [2148:102916]
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
COMMIT
# Completed on Tue Jun 11 15:49:56 2013

    /root/xinetd.conf
    

    >
    # This file generated by xconv.pl, included with the xinetd
# package.  xconv.pl was written by Rob Braun (bbraun@synack.net)
#
# The file is merely a translation of your inetd.conf file into
# the equivalent in xinetd.conf syntax.  xinetd has many
# features that may not be taken advantage of with this translation.
# Please refer to the xinetd.conf man page for more information
# on how to properly configure xinetd.
# The defaults section sets some information for all services
defaults
{
        #The maximum number of requests a particular service may handle
        # at once.
        instances   = 25
        # The type of logging.  This logs to a file that is specified.
        # Another option is: SYSLOG syslog_facility [syslog_level]
        log_type    = FILE /var/log/servicelog
        # What to log when the connection succeeds.
        # PID logs the pid of the server processing the request.
        # HOST logs the remote host's ip address.
        # USERID logs the remote user (using RFC 1413)
        # EXIT logs the exit status of the server.
        # DURATION logs the duration of the session.
        log_on_success = HOST PID
        # What to log when the connection fails.  Same options as above
        log_on_failure = HOST
        # The maximum number of connections a specific IP address can
        # have to a specific service.
        per_source  = 5
}

    Статистика
    Время первой команды журнала08:35:43 2013- 6-11
    Время последней команды журнала09:20:55 2013- 6-12
    Количество командных строк в журнале100
    Процент команд с ненулевым кодом завершения, %15.00
    Процент синтаксически неверно набранных команд, % 9.00
    Суммарное время работы с терминалом *, час 3.41
    Количество командных строк в единицу времени, команда/мин 0.49
    Частота использования команд
    iptables14|============| 12.28%
    grep10|========|  8.77%
    ssh9|=======|  7.89%
    mc9|=======|  7.89%
    cat7|======|  6.14%
    ssh-keygen7|======|  6.14%
    ps6|=====|  5.26%
    telnet5|====|  4.39%
    lsof3|==|  2.63%
    /etc/init.d/xinetd3|==|  2.63%
    nc3|==|  2.63%
    nmap2|=|  1.75%
    netstat2|=|  1.75%
    ls2|=|  1.75%
    ssh-key2|=|  1.75%
    route2|=|  1.75%
    scp2|=|  1.75%
    tail2|=|  1.75%
    ip12|=|  1.75%
    mcedit2|=|  1.75%
    ifconfig1||  0.88%
    sshd1||  0.88%
    /etc/init.s/xinetd1||  0.88%
    man1||  0.88%
    traceroute1||  0.88%
    pw1||  0.88%
    xconv.pl1||  0.88%
    .1||  0.88%
    iptables-restore1||  0.88%
    killall1||  0.88%
    sdasd1||  0.88%
    sd1||  0.88%
    ping1||  0.88%
    dssd1||  0.88%
    xinetd.conf1||  0.88%
    asdasd1||  0.88%
    iptables-restor1||  0.88%
    xinetd1||  0.88%
    /etc/inetd.conf1||  0.88%
    ^C1||  0.88%
    ____
    *) Интервалы неактивности длительностью 30 минут и более не учитываются
    Справка
        Для того чтобы использовать LiLaLo, не нужно знать ничего особенного:
    всё происходит само собой.
    Однако, чтобы ведение и последующее использование журналов
    было как можно более эффективным, желательно иметь в виду следующее:
    
      
    
    1.  
    В журнал автоматически попадают все команды, данные в любом терминале системы.
    
      2. 
    
    2. 
    Для того чтобы убедиться, что журнал на текущем терминале ведётся, 
    и команды записываются, дайте команду w.
    В поле WHAT, соответствующем текущему терминалу, 
    должна быть указана программа script.
    
      3. 
    
    3. 
    Команды, при наборе которых были допущены синтаксические ошибки, 
    выводятся перечёркнутым текстом:

      

      


      $ l s-l
      

      bash: l: command not found

      
      		

      

      

      
    
      4. 
    
    4. 
    Если код завершения команды равен нулю, 
    команда была выполнена без ошибок.
    Команды, код завершения которых отличен от нуля, выделяются цветом.

      

      


      $ test 5 -lt 4
      

      		

      

      
    Обратите внимание на то, что код завершения команды может быть отличен от нуля
    не только в тех случаях, когда команда была выполнена с ошибкой.
    Многие команды используют код завершения, например, для того чтобы показать результаты проверки

      
    
      5. 
    
    5. 
    Команды, ход выполнения которых был прерван пользователем, выделяются цветом.

      

      


      $ find / -name abc
      

      find: /home/devi-orig/.gnome2: Keine Berechtigung
find: /home/devi-orig/.gnome2_private: Keine Berechtigung
find: /home/devi-orig/.nautilus/metafiles: Keine Berechtigung
find: /home/devi-orig/.metacity: Keine Berechtigung
find: /home/devi-orig/.inkscape: Keine Berechtigung
^C

      
      		

      

      

      
    
      6. 
    
    6. 
    Команды, выполненные с привилегиями суперпользователя,
    выделяются слева красной чертой.

      

      


      # id
      

      uid=0(root) gid=0(root) Gruppen=0(root)

      
      		

      

      
    
      
    
      7. 
    
    7. 
    Изменения, внесённые в текстовый файл с помощью редактора, 
    запоминаются и показываются в журнале в формате ed.
    Строки, начинающиеся символом "<", удалены, а строки,
    начинающиеся символом ">" -- добавлены.

      

      


      $ vi ~/.bashrc
      

      2a3,5
>    if [ -f /usr/local/etc/bash_completion ]; then
>         . /usr/local/etc/bash_completion
>        fi

      		

      

      
    
      
    
      8. 
    
    8. 
    Для того чтобы изменить файл в соответствии с показанными в диффшоте
    изменениями, можно воспользоваться командой patch.
    Нужно скопировать изменения, запустить программу patch, указав в
    качестве её аргумента файл, к которому применяются изменения,
    и всавить скопированный текст:

      

      


      $ patch ~/.bashrc
      
      		

      

      
    В данном случае изменения применяются к файлу ~/.bashrc
    
      9. 
    
    9. 
    Для того чтобы получить краткую справочную информацию о команде, 
    нужно подвести к ней мышь. Во всплывающей подсказке появится краткое
    описание команды.
    
      
    
      
    Если справочная информация о команде есть, 
    команда выделяется голубым фоном, например: vi.
    Если справочная информация отсутствует,
    команда выделяется розовым фоном, например: notepad.exe.
    Справочная информация может отсутствовать в том случае, 
    если (1) команда введена неверно; (2) если распознавание команды LiLaLo выполнено неверно;
    (3) если информация о команде неизвестна LiLaLo.
    Последнее возможно для редких команд.
    
      10. 
    
    10. 
    Большие, в особенности многострочные, всплывающие подсказки лучше 
    всего показываются браузерами KDE Konqueror, Apple Safari и Microsoft Internet Explorer.
    В браузерах Mozilla и Firefox они отображаются не полностью, 
    а вместо перевода строки выводится специальный символ.
    
      11. 
    
    11. 
    Время ввода команды, показанное в журнале, соответствует времени 
    начала ввода командной строки, которое равно тому моменту, 
    когда на терминале появилось приглашение интерпретатора
    
      12. 
    
    12. 
    Имя терминала, на котором была введена команда, показано в специальном блоке.
    Этот блок показывается только в том случае, если терминал
    текущей команды отличается от терминала предыдущей.
    
      13. 
    
    13. 
    Вывод не интересующих вас в настоящий момент элементов журнала,
    таких как время, имя терминала и других, можно отключить.
    Для этого нужно воспользоваться формой управления журналом
    вверху страницы.
    
      14. 
    
    14. 
    Небольшие комментарии к командам можно вставлять прямо из командной строки.
    Комментарий вводится прямо в командную строку, после символов #^ или #v.
    Символы ^ и v показывают направление выбора команды, к которой относится комментарий:
    ^ - к предыдущей, v - к следующей.
    Например, если в командной строке было введено:

      $ whoami

      

      user

      

      $ #^ Интересно, кто я?

      
    в журнале это будет выглядеть так:
    

      $ whoami

      

      user

      

      

        Интересно, кто я?
       
       
    
      15. 
    
    15. 
    Если комментарий содержит несколько строк,
    его можно вставить в журнал следующим образом:

      $ whoami

      

      user

      

      $ cat > /dev/null #^ Интересно, кто я?

      

      Программа whoami выводит имя пользователя, под которым 
мы зарегистрировались в системе.
-
Она не может ответить на вопрос о нашем назначении 
в этом мире.

      
    В журнале это будет выглядеть так:

      

      


      $ whoami
      

      user

      

      Интересно, кто я?
      
Программа whoami выводит имя пользователя, под которым
      
мы зарегистрировались в системе.
      

      
Она не может ответить на вопрос о нашем назначении
      
в этом мире.
      

      
      		

      

      
    Для разделения нескольких абзацев между собой
    используйте символ "-", один в строке.
    
      

      16. 
    
    16. 
    Комментарии, не относящиеся непосредственно ни к какой из команд, 
    добавляются точно таким же способом, только вместо симолов #^ или #v 
    нужно использовать символы #=
    
      17. 

    
    17. 
    Содержимое файла может быть показано в журнале.
    Для этого его нужно вывести с помощью программы cat.
    Если вывод команды отметить симоволами #!, 
    содержимое файла будет показано в журнале
    в специально отведённой для этого секции.
    
      18. 

    
      
    
    18. 
    Для того чтобы вставить скриншот интересующего вас окна в журнал,
    нужно воспользоваться командой l3shot.
    После того как команда вызвана, нужно с помощью мыши выбрать окно, которое
    должно быть в журнале.
    
      19. 
    
      

    
      
    
    19. 
    Команды в журнале расположены в хронологическом порядке.
    Если две команды давались одна за другой, но на разных терминалах,
    в журнале они будут рядом, даже если они не имеют друг к другу никакого отношения.

      1
    2
3   
    4

      
    Группы команд, выполненных на разных терминалах, разделяются специальной линией.
    Под этой линией в правом углу показано имя терминала, на котором выполнялись команды.
    Для того чтобы посмотреть команды только одного сенса, 
    нужно щёкнуть по этому названию.
    
      20. 
    
      

    

    О программе
        
    
    LiLaLo (L3) расшифровывается как Live Lab Log.
    
    Программа разработана для повышения эффективности обучения Unix/Linux-системам.
    
    (c) Игорь Чубин, 2004-2008
    
    
    
$Id$