Журнал лабораторных работ

17:42:29

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
ldap_read: want=8 error=Resource temporarily unavailable
==> bdb_bind: dn: cn=Manager,dc=mydc,dc=local
send_ldap_result: err=49 matched="" text=""
  0000:  30 0c 02 01 01 61 07 0a  01 31 04 00 04 00         0....a...1....
ldap_write: want=14, written=14
  0000:  30 0c 02 01 01 61 07 0a  01 31 04 00 04 00         0....a...1....
ux3:~connection_get(9)
ldap_read: want=8, got=7
  0000:  30 05 02 01 02 42 00                               0....B.
ldap_read: want=8, got=0

17:42:31

#getent passwd | less

17:43:28

#vim /tmp/123

/dev/pts/9

17:44:12

#/etc/init.d/ldap restart

Останавливается slapd:                      [  ОК  ]
Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:                              [  ОК  ]

17:44:24

#ping 192.168.16.254

PING 192.168.16.254 (192.168.16.254) 56(84) bytes of data.
64 bytes from 192.168.16.254: icmp_seq=0 ttl=64 time=0.325 ms
64 bytes from 192.168.16.254: icmp_seq=1 ttl=64 time=0.263 ms
64 bytes from 192.168.16.254: icmp_seq=2 ttl=64 time=0.252 ms
--- 192.168.16.254 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 0.252/0.280/0.325/0.032 ms, pipe 2

/dev/pts/16

17:44:40

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

17:45:04

#vim /etc/ldap.conf

17:46:41

#getent passwdwq!

Неизвестная база данных: passwdwq!
Попробуйте `getent --help' или `getent --usage' для
получения более подробного описания.

/dev/pts/9

17:47:03

#vim /etc/ldap.conf

/dev/pts/16

17:47:07

#Жцй!

bash: Жцй!: command not found

17:47:09

#ÐÑÐÑÐ¹!Ð

bash: Ð: command not found

/dev/pts/9

17:47:23

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

17:47:38

#getent passwd | grep ivanovi

17:47:55

#vim /etc/ldap.conf

17:50:44

#less /etc/ldap.secret

17:50:54

#getent passwd | grep ivanovi

/dev/pts/16

17:52:07

#ps aux | grep sla

ldap     14809  0.0  0.1  42988  3940 ?        Ssl  17:44   0:00 /usr/sbin/slapd -h ldap:/// -u ldap
root     15299  0.0  0.0   3788   768 pts/17   S+   17:52   0:00 grep sla

17:52:12

#Жgetent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

17:52:36

#rmp -ql openldap

bash: rmp: command not found

17:52:51

#rpm -ql openldap

/etc/openldap
/etc/openldap/cacerts
/etc/openldap/ldap.conf
/usr/lib/liblber-2.2.so.7
/usr/lib/liblber-2.2.so.7.0.22
/usr/lib/libldap-2.2.so.7
/usr/lib/libldap-2.2.so.7.0.22
/usr/lib/libldap_r-2.2.so.7
/usr/lib/libldap_r-2.2.so.7.0.22
/usr/share/doc/openldap-2.2.29
/usr/share/doc/openldap-2.2.29/ANNOUNCEMENT
/usr/share/doc/openldap-2.2.29/CHANGES
/usr/share/doc/openldap-2.2.29/COPYRIGHT
/usr/share/doc/openldap-2.2.29/LICENSE
/usr/share/doc/openldap-2.2.29/README
/usr/share/man/man5/ldap.conf.5.gz
/usr/share/man/man5/ldif.5.gz
/usr/share/openldap

17:52:56

#yum serach nss_ldap

usage: yum [options] < update | install | info | remove | list |
    clean | provides | search | check-update | groupinstall |
    groupupdate | grouplist | groupinfo | groupremove |
    makecache | localinstall | erase | upgrade | whatprovides |
    localupdate | resolvedep | shell | deplist >
options:
  -h, --help            show this help message and exit
  -t, --tolerant        be tolerant of errors
  -C                    run entirely from cache, don't update cache
  -c  [config file]     config file location
  -R  [minutes]         maximum command wait time
  -d  [debug level]     debugging output level
  -e  [error level]     error output level
  -y                    answer yes for all questions
  --version             show Yum version and exit
  --installroot=[path]  set install root
  --enablerepo=[repo]   enable one or more repositories (wildcards allowed)
  --disablerepo=[repo]  disable one or more repositories (wildcards allowed)
  --exclude=[package]   exclude package(s) by name or glob
  --obsoletes           enable obsoletes processing during updates
  --noplugins           disable Yum plugins

17:53:24

#yum search nss_ldap

Searching Packages:
Setting up repositories
base                      100% |=========================|  951 B    00:00
updates-released          100% |=========================|  951 B    00:00
Reading repository metadata in from local files
nss_ldap.i386                            234-4                  base
Matched from:
nss_ldap
This package includes two LDAP access clients: nss_ldap and pam_ldap.
Nss_ldap is a set of C library extensions that allow X.500 and LDAP
...
Matched from:
nss_ldap
This package includes two LDAP access clients: nss_ldap and pam_ldap.
Nss_ldap is a set of C library extensions that allow X.500 and LDAP
directory servers to be used as a primary source of aliases, ethers,
groups, hosts, networks, protocol, users, RPCs, services, and shadow
passwords (instead of or in addition to using flat files or NIS).
Pam_ldap is a module for Linux-PAM that supports password changes, V2
clients, Netscape's SSL, ypldapd, Netscape Directory Server password
policies, access authorization, and crypted hashes.

17:54:12

#yum install nss_ldap

Setting up Install Process
Setting up repositories
Reading repository metadata in from local files
Parsing package install arguments
Nothing to do

17:54:34

#rpm -ql nss_ldap

/etc/ldap.conf
/lib/libnss_ldap-2.3.5.so
/lib/security/pam_ldap.so
/usr/lib/libnss_ldap.so
/usr/share/doc/nss_ldap-234
/usr/share/doc/nss_ldap-234/ANNOUNCE.nss_ldap
/usr/share/doc/nss_ldap-234/AUTHORS.nss_ldap
/usr/share/doc/nss_ldap-234/AUTHORS.pam_ldap
/usr/share/doc/nss_ldap-234/COPYING.LIB.pam_ldap
/usr/share/doc/nss_ldap-234/COPYING.nss_ldap
...
/usr/share/doc/nss_ldap-234/pam.d/rsh
/usr/share/doc/nss_ldap-234/pam.d/samba
/usr/share/doc/nss_ldap-234/pam.d/shutdown
/usr/share/doc/nss_ldap-234/pam.d/ssh
/usr/share/doc/nss_ldap-234/pam.d/su
/usr/share/doc/nss_ldap-234/pam.d/vlock
/usr/share/doc/nss_ldap-234/pam.d/xdm
/usr/share/doc/nss_ldap-234/pam.d/xlock
/usr/share/doc/nss_ldap-234/pam.d/xscreensaver
/usr/share/doc/nss_ldap-234/pam.d/xserver

17:54:43

#ls /etc/ld

ldap.conf       ldap.conf.orig  ldap.secret     ld.so.cache     ld.so.conf      ld.so.conf.d/

17:54:43

#ls /etc/ld

ldap.conf       ldap.conf.orig  ldap.secret     ld.so.cache     ld.so.conf      ld.so.conf.d/

17:55:09

#less /usr/share/doc/nss_ldap-234/nsswitch.ldap

17:55:22

#cp /usr/share/doc/nss_ldap-234/nsswitch.ldap /etc/nsswitch.conf

cp: переписать `/etc/nsswitch.conf'? y

17:55:31

#Ðgetent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

/dev/pts/9

17:56:15

#hostname

linux3.mydc.local

17:56:52

#less /var/log/messages | tail

Dec 13 17:35:07 linux3 crond(pam_unix)[14373]: session closed for user root
Dec 13 17:40:01 linux3 crond(pam_unix)[14641]: session opened for user root by (uid=0)
Dec 13 17:40:04 linux3 crond(pam_unix)[14641]: session closed for user root
Dec 13 17:45:01 linux3 crond(pam_unix)[14864]: session opened for user root by (uid=0)
Dec 13 17:45:03 linux3 crond(pam_unix)[14864]: session closed for user root
Dec 13 17:50:01 linux3 crond(pam_unix)[15138]: session opened for user root by (uid=0)
Dec 13 17:50:04 linux3 crond(pam_unix)[15138]: session closed for user root
Dec 13 17:52:04 linux3 sshd(pam_unix)[15204]: session opened for user root by root(uid=0)
Dec 13 17:55:01 linux3 crond(pam_unix)[15399]: session opened for user root by (uid=0)
Dec 13 17:55:03 linux3 crond(pam_unix)[15399]: session closed for user root

17:57:45

#ls -lt /var/log/

итого 1780
-rw-------  1 root  root   742392 Дек 13 17:55 messages
-rw-------  1 root  root   184597 Дек 13 17:55 secure
-rw-------  1 root  root   180920 Дек 13 17:55 cron
-rw-r--r--  1 root  root  2920292 Дек 13 17:52 lastlog
-rw-rw-r--  1 root  utmp   177792 Дек 13 17:52 wtmp
-rw-------  1 root  root    15497 Дек 13 17:03 maillog
-rw-r--r--  1 root  root    45143 Дек 13 16:29 Xorg.0.log
-rw-r--r--  1 root  root    42269 Дек 13 16:23 Xorg.2.log
-rw-r--r--  1 root  root    42269 Дек 13 15:08 Xorg.2.log.old
...
-rw-------  1 root  root      208 Дек  9 20:49 boot.log
drwxr-xr-x  2 lp    sys       112 Дек  8 18:17 cups
-rw-r--r--  1 root  root      176 Дек  8 18:16 fix-nvidia.log
drwxr-x---  2 root  root       80 Дек  8 18:13 audit
drwxr-xr-x  2 uucp  uucp      120 Дек  8 08:02 uucp
-rw-r--r--  1 root  root    46574 Дек  8 08:02 scrollkeeper.log
drwxr-xr-x  2 root  root       80 Дек  8 07:54 mail
-rw-------  1 root  root        0 Дек  8 07:50 spooler
drwx------  2 root  root       48 Окт 20  2005 ppp
drwxr-xr-x  2 root  root       48 Окт 19  2005 vbox

/dev/pts/16

17:59:23

#vim /etc/ld

17:59:23

#vim /etc/ldap.secret

1c1
< rootdnpass
---
>

17:59:42

#vim /etc/ldap.secret

1c1
< 
---
> {SSHA}YTunKVqh2BIjKOEFXXY/GznCAKb2Q7Tl

18:00:07

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:00:11

#ls -lt | head

итого 913
-rw-r--r--  1 root root  30214 Дек 13 17:28 @
-rw-r--r--  1 root root 788484 Дек 13 15:39 phpldapadmin-1.0.2.tar.gz
-rw-r--r--  1 root root    138 Дек 11 12:51 1
drwxr-xr-x  3 root root    176 Дек 10 10:40 Desktop
drwxr-xr-x  2 root root     48 Дек 10 08:57 vmware
-rw-r--r--  1 root root   4951 Дек  9 13:24 install
-rw-r--r--  1 root root   5089 Дек  8 18:14 final_settings.err
-rw-r--r--  1 root root  86610 Дек  8 18:12 logs.tgz
drwxr-xr-x  2 root root     88 Дек  8 18:12 Templates

18:00:20

#cat \@

shadowWarning: 7
loginShell: /bin/false
uidNumber: 501
gidNumber: 501
homeDirectory: /dev/null
structuralObjectClass: account
entryUUID: d70391aa-3dd4-102c-9e51-f5742f693b7b
creatorsName: cn=Manager,dc=mydc,dc=local
modifiersName: cn=Manager,dc=mydc,dc=local
createTimestamp: 20071213143839Z
...
gidNumber: 48
homeDirectory: /var/www
gecos: Apache
structuralObjectClass: account
entryUUID: d72380a0-3dd4-102c-9e57-f5742f693b7b
creatorsName: cn=Manager,dc=mydc,dc=local
modifiersName: cn=Manager,dc=mydc,dc=local
createTimestamp: 20071213143840Z
modifyTimestamp: 20071213143840Z
entryCSN: 20071213143840Z#000006#00#000000

18:00:28

#ls -lt /var/log | head

итого 1780
-rw-------  1 root  root   742555 Дек 13 18:00 messages
-rw-------  1 root  root   184974 Дек 13 18:00 secure
-rw-------  1 root  root   181076 Дек 13 18:00 cron
-rw-r--r--  1 root  root  2920292 Дек 13 17:52 lastlog
-rw-rw-r--  1 root  utmp   177792 Дек 13 17:52 wtmp
-rw-------  1 root  root    15497 Дек 13 17:03 maillog
-rw-r--r--  1 root  root    45143 Дек 13 16:29 Xorg.0.log
-rw-r--r--  1 root  root    42269 Дек 13 16:23 Xorg.2.log
-rw-r--r--  1 root  root    42269 Дек 13 15:08 Xorg.2.log.old

18:00:42

#less /var/log/messages

18:01:06

#ls -lt /var/log | head

итого 1780
-rw-------  1 root  root   181153 Дек 13 18:01 cron
-rw-------  1 root  root   742718 Дек 13 18:01 messages
-rw-------  1 root  root   185351 Дек 13 18:01 secure
-rw-r--r--  1 root  root  2920292 Дек 13 17:52 lastlog
-rw-rw-r--  1 root  utmp   177792 Дек 13 17:52 wtmp
-rw-------  1 root  root    15497 Дек 13 17:03 maillog
-rw-r--r--  1 root  root    45143 Дек 13 16:29 Xorg.0.log
-rw-r--r--  1 root  root    42269 Дек 13 16:23 Xorg.2.log
-rw-r--r--  1 root  root    42269 Дек 13 15:08 Xorg.2.log.old

18:01:07

#less /var/log/secure

18:01:31

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:01:37

#vim /etc/ldap.conf

34c34
< #binddn cn=Manager,dc=mydc,dc=local
---
> binddn cn=Manager,dc=mydc,dc=local

18:01:59

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:02:18

#vim /etc/ldap.conf

38c38
< #bindpw rootdnpass
---
> bindpw rootdnpass

18:02:24

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:02:29

#vim /etc/ldap.conf

15c15
< host 127.0.0.1
---
> #host 127.0.0.1
23c23
< #uri ldap://127.0.0.1/
---
> uri ldap://127.0.0.1/

18:02:40

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:02:45

#/etc/init.d/ldap stop

Останавливается slapd:                      [  ОК  ]

18:02:53

#slapd -d 256

[1]+  Stopped                 slapd -d 256

18:03:06

#bg

[1]+ slapd -d 256 &

18:03:07

#getent passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
...
pvm:x:24:24::/usr/share/pvm3:/bin/bash
user:x:500:500:user:/home/user:/bin/bash
squid:x:23:23::/var/spool/squid:/sbin/nologin
user1$:x:501:501::/dev/null:/bin/false
winxp03$:x:502:501::/dev/null:/bin/false
truslan1:x:503:503::/home/truslan1:/bin/bash
truslan2:x:504:504::/home/truslan2:/bin/bash
domainuser1:x:505:511::/home/domainuser1:/bin/bash
ldap:x:55:55:LDAP User:/var/lib/ldap:/bin/false
apache:x:48:48:Apache:/var/www:/sbin/nologin

18:03:16

#telnet 127.0.0.1 389

Trying 127.0.0.1...
telnet: connect to address 127.0.0.1: Connection refused
telnet: Unable to connect to remote host: Connection refused

18:03:30

#ps aux | grep slap

root     15870  0.0  0.0   9260  1876 pts/17   S    18:03   0:00 slapd -d 256
root     15917  0.0  0.0   3788   768 pts/17   R+   18:03   0:00 grep slap

18:03:40

#pkill slapd

ux3:~[1]+  Завершено      slapd -d 256

18:03:47

#telnet 127.0.0.1 389

Trying 127.0.0.1...
telnet: connect to address 127.0.0.1: Connection refused
telnet: Unable to connect to remote host: Connection refused

18:03:50

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:07:10

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:07:15

#vim /etc/openldap/slapd.conf

12c12
< allow bind_v2
---
> #allow bind_v2
17d16
< logfile          /var/log/slapd
20c19
< 
---
> loglevel 256
22,27c21,26
< # modulepath	/usr/sbin/openldap
< # moduleload	back_bdb.la
< # moduleload	back_ldap.la
< # moduleload	back_ldbm.la
< # moduleload	back_passwd.la
< # moduleload	back_shell.la
---
>  modulepath	/usr/sbin/openldap
>  moduleload	back_bdb.la
>  moduleload	back_ldap.la
>  moduleload	back_ldbm.la
>  moduleload	back_passwd.la
>  moduleload	back_shell.la
85,89c84,88
< index objectClass                       eq,pres
< index ou,cn,mail,surname,givenname      eq,pres,sub
< index uidNumber,gidNumber,loginShell    eq,pres
< index uid,memberUid                     eq,pres,sub
< index nisMapName,nisMapEntry            eq,pres,sub
---
> #index objectClass                       eq,pres
> #index ou,cn,mail,surname,givenname      eq,pres,sub
> #index uidNumber,gidNumber,loginShell    eq,pres
> #index uid,memberUid                     eq,pres,sub
> #index nisMapName,nisMapEntry            eq,pres,sub

18:10:31

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:10:39

#ls /var/lock

lvm  mrtg  subsys  uucp
ux3:~

18:10:49

#uptime

 18:10:52 up 2 days,  6:10,  9 users,  load average: 2.47, 1.68, 1.14

18:10:52

#top

top - 18:11:01 up 2 days,  6:10,  9 users,  load average: 2.39, 1.69, 1.15
Tasks: 185 total,   1 running, 183 sleeping,   0 stopped,   1 zombie
Cpu(s): 38.3% us, 61.4% sy,  0.0% ni,  0.0% id,  0.0% wa,  0.3% hi,  0.0% si
Mem:   2059124k total,  1955584k used,   103540k free,   186800k buffers
  PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND
Swap:  4088532k total,      896k used,  4087636k free,  1360140k cached
 3251 user       5 -10  378m 299m 288m S 37.4 14.9 492:20.25 vmware-vmx
 2795 root      15   0 11616 7368 1536 S 30.1  0.4  42:21.88 l3-agent
 3220 user       5 -10  377m 293m 283m S 27.4 14.6 826:48.50 vmware-vmx
 3244 user       0 -20     0    0    0 S  3.3  0.0  48:33.38 vmware-rtc
...
 2179 smmsp     16   0  7152 1688  828 S  0.0  0.1   0:00.01 sendmail
 2188 root      16   0  1776  352  284 S  0.0  0.0   0:00.29 gpm
 2196 root      16   0  4540  944  552 S  0.0  0.0   0:00.07 crond
 2227 xfs       16   0 16100 7820 1940 S  0.0  0.4   0:01.95 xfs
 2253 root      16   0  1912  432  316 S  0.0  0.0   0:00.00 atd
 2269 dbus      16   0  2640  940  748 S  0.0  0.0   0:01.38 dbus-daemon
 2277 root      19   0  3008  928  816 S  0.0  0.0   0:00.00 cups-config-dae
 2286 root      16   0  4392 2460 1320 S  0.0  0.1   0:02.17 hald
 2292 root      18   0  2148  724  648 S  0.0  0.0   0:00.00 hald-addon-acpi
 2343 root      16   0  2144  856  768 S  0.0  0.0   0:16.12 hald-addon-stor

18:11:04

#slap

slapadd              slapd_db_archive     slapd_db_dump        slapd_db_recover     slapd_db_verify      slappasswd
slapcat              slapd_db_checkpoint  slapd_db_load        slapd_db_stat        slapdn               slaptest
slapd                slapd_db_deadlock    slapd_db_printlog    slapd_db_upgrade     slapindex

18:11:04

#slap

slapadd              slapd_db_archive     slapd_db_dump        slapd_db_recover     slapd_db_verify      slappasswd
slapcat              slapd_db_checkpoint  slapd_db_load        slapd_db_stat        slapdn               slaptest
slapd                slapd_db_deadlock    slapd_db_printlog    slapd_db_upgrade     slapindex

18:11:04

#slapd --help

slapd: invalid option -- -
usage: slapd options
        -4              IPv4 only
        -6              IPv6 only
        -T {acdipt}     Run in Tool mode
        -c cookie       Sync cookie of consumer
        -d level        Debug level
        -f filename     Configuration file
        -g group        Group (id or name) to run as
        -h URLs         List of URLs to serve
        -l facility     Syslog facility (default: LOCAL4)
        -n serverName   Service name
        -r directory    Sandbox directory to chroot to
        -s level        Syslog level
        -u user         User (id or name) to run as
        -V              print version info (-VV only)

18:11:15

#slapd -d 255 -4 -f /etc/openldap/slapd.conf -u openldap -g openldap

[1]+  Stopped                 slapd -d 255 -4 -f /etc/openldap/slapd.conf -u openldap -g openldap

18:12:10

#bg

[1]+ slapd -d 255 -4 -f /etc/openldap/slapd.conf -u openldap -g openldap &

18:12:15

#yum uninstall

^C
usage: yum [options] < update | install | info | remove | list |
    clean | provides | search | check-update | groupinstall |
    groupupdate | grouplist | groupinfo | groupremove |
    makecache | localinstall | erase | upgrade | whatprovides |
    localupdate | resolvedep | shell | deplist >
options:
  -h, --help            show this help message and exit
  -t, --tolerant        be tolerant of errors
  -C                    run entirely from cache, don't update cache
...
  -d  [debug level]     debugging output level
  -e  [error level]     error output level
  -y                    answer yes for all questions
  --version             show Yum version and exit
  --installroot=[path]  set install root
  --enablerepo=[repo]   enable one or more repositories (wildcards allowed)
  --disablerepo=[repo]  disable one or more repositories (wildcards allowed)
  --exclude=[package]   exclude package(s) by name or glob
  --obsoletes           enable obsoletes processing during updates
  --noplugins           disable Yum plugins

18:12:27

#yum remove openldap

--> Processing Dependency: libtl680li.so for package: openoffice.org-writer
--> Processing Dependency: libsvx680li.so for package: openoffice.org-calc
--> Processing Dependency: libkonqsidebarplugin.so.1 for package: kdeaddons
--> Processing Dependency: libecal-1.2.so.3 for package: evolution-webcal
--> Processing Dependency: libfile680li.so for package: openoffice.org-calc
--> Processing Dependency: libsd680li.so for package: openoffice.org-draw
--> Processing Dependency: libgconf-2.so.4 for package: vino
--> Processing Dependency: libgo680li.so for package: openoffice.org-calc
--> Processing Dependency: kdebase >= 6:3.5.0 for package: kdegraphics
--> Processing Dependency: libuser.so.1 for package: passwd
...
---> Package libgsf.i386 0:1.11.1-2 set to be erased
---> Package glade2.i386 0:2.12.1-1.1 set to be erased
---> Package gnome-applets.i386 1:2.12.2-0.110.1asp set to be erased
---> Package libgail-gnome.i386 0:1.1.0-5 set to be erased
---> Package bmp-docklet.i386 0:1.3-1.110asp set to be erased
---> Package php.i386 0:5.0.4-10.5 set to be erased
---> Package gnome-python2-bonobo.i386 0:2.12.1-1.1 set to be erased
---> Package bmp.i386 0:0.9.7.1-2.1.110asp set to be erased
---> Package kdenetwork.i386 7:3.5.0-0.1.fc4 set to be erased
--> Running transaction check

18:13:06

#telnet 127.0.0.1 389

18:13:21

#rpm -ev openldap

ошибка: Неудовлетворенные зависимости:
        liblber-2.2.so.7 нужен для (установлен)cyrus-sasl-2.1.20-5.i386
        liblber-2.2.so.7 нужен для (установлен)libuser-0.53.7-1.i386
        liblber-2.2.so.7 нужен для (установлен)autofs-4.1.4-15.i386
        liblber-2.2.so.7 нужен для (установлен)evolution-data-server-1.4.1.1-0.110.1asp.i386
        liblber-2.2.so.7 нужен для (установлен)evolution-2.4.1-0.110.4asp.i386
        liblber-2.2.so.7 нужен для (установлен)sendmail-8.13.4-2asp.i386
        liblber-2.2.so.7 нужен для (установлен)gnomemeeting-1.2.2-2.110am.i386
        liblber-2.2.so.7 нужен для (установлен)nfs-utils-1.0.7-12.FC4.i386
        liblber-2.2.so.7 нужен для (установлен)nss_ldap-234-4.i386
...
        libldap-2.2.so.7 нужен для (установлен)squid-2.5.STABLE13-1.110asp.i386
        libldap-2.2.so.7 нужен для (установлен)gq-1.2.2-2.110asp.i386
        libldap-2.2.so.7 нужен для (установлен)httpd-2.0.54-10.4.1.3asp.i386
        libldap-2.2.so.7 нужен для (установлен)php-ldap-5.0.4-10.5.i386
        libldap-2.2.so.7 нужен для (установлен)directory_administrator-1.7.1-1.110asp.i386
        openldap нужен для (установлен)evolution-connector-2.4.1-0.110.1asp.i386
        openldap нужен для (установлен)sendmail-8.13.4-2asp.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-clients-2.2.29-1.FC4.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-devel-2.2.29-1.FC4.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-servers-2.2.29-1.FC4.i386

18:13:28

#man rpm

18:20:13

#man yum

18:20:36

#yum upgrade openldap

Setting up Upgrade Process
Setting up repositories
Reading repository metadata in from local files
Could not find update match for openldap
No Packages marked for Update/Obsoletion

18:21:30

#man yum

18:22:55

#yum clean all

Cleaning up Everything
24 headers removed
23 packages removed
6 metadata files removed
0 cache files removed
2 cache files removed

18:22:59

#yum install openldap

Setting up Install Process
Setting up repositories
base                      100% |=========================|  951 B    00:00
updates-released          100% |=========================|  951 B    00:00
Reading repository metadata in from local files
primary.xml.gz            100% |=========================| 716 kB    02:43

18:30:32

#smbclient //net.nt

Unknown parameter encountered: "alog level"
Ignoring unknown parameter "alog level"
\\net.nt: Not enough '\' characters in service
Использование: [-?] [-?EgV] [-?EgV] [-?EgVNkP] [-?|--help] [--usage] [-R|--name-resolve NAME-RESOLVE-ORDER]
        [-M|--message HOST] [-I|--ip-address IP] [-E|--stderr] [-L|--list HOST]
        [-t|--terminal CODE] [-m|--max-protocol LEVEL] [-T|--tar <c|x>IXFqgbNan]
        [-D|--directory DIR] [-c|--command STRING] [-b|--send-buffer BYTES]
        [-p|--port PORT] [-g|--grepable] [-d|--debuglevel DEBUGLEVEL]
        [-s|--configfile CONFIGFILE] [-l|--log-basename LOGFILEBASE]
        [-V|--version] [-O|--socket-options SOCKETOPTIONS]
        [-n|--netbiosname NETBIOSNAME] [-W|--workgroup WORKGROUP]
        [-i|--scope SCOPE] [-U|--user USERNAME] [-N|--no-pass] [-k|--kerberos]
        [-A|--authentication-file FILE] [-S|--signing on|off|required]
        [-P|--machine-pass] service <password>

18:30:43

#smbclient //net.nt/vnc

Unknown parameter encountered: "alog level"
Ignoring unknown parameter "alog level"
Password:
Domain=[TECH] OS=[Unix] Server=[Samba 3.0.26a]
Server not using user level security and no password supplied.
smb: \> ls
  .                                   D        0  Thu Dec 13 18:24:47 2007
  ..                                  D        0  Mon Dec 10 11:15:19 2007
  vnc-4_1_2-x86_win32.exe             A   739240  Tue Dec 11 10:52:49 2007
  openldap-2.2.29-1.FC4.i386.rpm          256514  Thu Dec 13 18:24:50 2007
  phpldapadmin-1.0.2.tar.gz               788484  Thu Dec 13 15:37:35 2007
  vnc-3.3.7-x86_win32.exe                 577239  Fri Aug 24 20:56:05 2007
                34330 blocks of size 524288. 11832 blocks available
smb: \> get openldap-2.2.29-1.FC4.i386.rpm
getting file \openldap-2.2.29-1.FC4.i386.rpm of size 256514 as openldap-2.2.29-1.FC4.i386.rpm (6770,3 kb/s) (average 6770,3 kb/s)
smb: \> quit

18:31:09

#rpm -ihv openldap-2.2.29-1.FC4.i386.rpm

Подготовка...     ########################################### [100%]
        пакет openldap-2.2.29-1.FC4 уже установлен

18:31:21

#man rmp

18:31:28

#man rpm

18:31:55

#rpm -ihv --force openldap-2.2.29-1.FC4.i386.rpm

Подготовка...     ########################################### [100%]
   1:openldap               ########################################### [100%]

18:32:17

#vim /etc/openldap/

18:32:17

#vim /etc/openldap/slapd.conf

18:32:54

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:33:10

#vim /etc/openldap/slapd.conf

84,88c84,88
< #index objectClass                       eq,pres
< #index ou,cn,mail,surname,givenname      eq,pres,sub
< #index uidNumber,gidNumber,loginShell    eq,pres
< #index uid,memberUid                     eq,pres,sub
< #index nisMapName,nisMapEntry            eq,pres,sub
---
> index objectClass                       eq,pres
> index ou,cn,mail,surname,givenname      eq,pres,sub
> index uidNumber,gidNumber,loginShell    eq,pres
> index uid,memberUid                     eq,pres,sub
> index nisMapName,nisMapEntry            eq,pres,sub

18:33:23

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:33:27

#rpm -e openldap

ошибка: Неудовлетворенные зависимости:
        liblber-2.2.so.7 нужен для (установлен)cyrus-sasl-2.1.20-5.i386
        liblber-2.2.so.7 нужен для (установлен)libuser-0.53.7-1.i386
        liblber-2.2.so.7 нужен для (установлен)autofs-4.1.4-15.i386
        liblber-2.2.so.7 нужен для (установлен)evolution-data-server-1.4.1.1-0.110.1asp.i386
        liblber-2.2.so.7 нужен для (установлен)evolution-2.4.1-0.110.4asp.i386
        liblber-2.2.so.7 нужен для (установлен)sendmail-8.13.4-2asp.i386
        liblber-2.2.so.7 нужен для (установлен)gnomemeeting-1.2.2-2.110am.i386
        liblber-2.2.so.7 нужен для (установлен)nfs-utils-1.0.7-12.FC4.i386
        liblber-2.2.so.7 нужен для (установлен)nss_ldap-234-4.i386
...
        libldap-2.2.so.7 нужен для (установлен)squid-2.5.STABLE13-1.110asp.i386
        libldap-2.2.so.7 нужен для (установлен)gq-1.2.2-2.110asp.i386
        libldap-2.2.so.7 нужен для (установлен)httpd-2.0.54-10.4.1.3asp.i386
        libldap-2.2.so.7 нужен для (установлен)php-ldap-5.0.4-10.5.i386
        libldap-2.2.so.7 нужен для (установлен)directory_administrator-1.7.1-1.110asp.i386
        openldap нужен для (установлен)evolution-connector-2.4.1-0.110.1asp.i386
        openldap нужен для (установлен)sendmail-8.13.4-2asp.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-clients-2.2.29-1.FC4.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-devel-2.2.29-1.FC4.i386
        openldap = 2.2.29-1.FC4 нужен для (установлен)openldap-servers-2.2.29-1.FC4.i386

18:33:33

#man rpm

18:33:57

#rpm -e --nodeps openldap

предупреждение: /etc/openldap/ldap.conf сохранен как /etc/openldap/ldap.conf.rpmsave

18:34:01

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:34:12

#mv /etc/init.d/ldap /tmp

18:34:24

#rpm -ihv --force openldap-2.2.29-1.FC4.i386.rpm

Подготовка...     ########################################### [100%]
   1:openldap               ########################################### [100%]

18:34:31

#/etc/init.d/ldap start

bash: /etc/init.d/ldap: Нет такого файла или каталога

18:34:33

#mv /tmp/ldap /etc/init.d/

18:34:52

#/etc/init.d/ldap start

Checking configuration files for slapd:  config file testing succeeded
                                                           [  ОК  ]
Запускается slapd:

18:35:02

#ls -lt /var/log | head

итого 1780
-rw-------  1 root  root   743994 Дек 13 18:35 messages
-rw-------  1 root  root   187990 Дек 13 18:35 secure
-rw-------  1 root  root   182245 Дек 13 18:35 cron
-rw-rw-r--  1 root  utmp   178176 Дек 13 18:28 wtmp
-rw-------  1 root  root    15987 Дек 13 18:03 maillog
-rw-r--r--  1 root  root  2920292 Дек 13 17:52 lastlog
-rw-r--r--  1 root  root    45143 Дек 13 16:29 Xorg.0.log
-rw-r--r--  1 root  root    42269 Дек 13 16:23 Xorg.2.log
-rw-r--r--  1 root  root    42269 Дек 13 15:08 Xorg.2.log.old

18:35:11

#less /var/log/messages

Журнал лабораторных работ

Журнал

Четверг (12/13/07)

Файлы

Статистика

Справка

О программе