| /l3/users/18-02-1008/nt-lnet/debian1.unix.nt/root :1 :2 :3 :4 :5 :6 :7 :8 :9 :10 :11 :12 :13 :14 :15 |
|
|
#cat /etc/passwd | nc -l -p 55000
GET / HTTP/1.1 Host: 192.168.16.201:55000 User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.12) Gecko/20080129 Iceweasel/2.0.0.12 (Debian-2.0.0.12-1) Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 300 Connection: keep-alive |
|
#cat /etc/passwd | nc -l -p 55000
|
|
#tar cv /etc | nc -l -p 55000
/etc/alternatives/view.fr.ISO8859-1.1.gz /etc/alternatives/vi.ru.1.gz /etc/alternatives/view.fr.1.gz /etc/alternatives/vi.1.gz /etc/alternatives/libgksu-gconf-defaults /etc/alternatives/ex.pl.ISO8859-2.1.gz /etc/alternatives/x-window-manager /etc/alternatives/view.pl.ISO8859-2.1.gz /etc/alternatives/ex.ru.1.gz /etc/alternatives/vi.pl.UTF-8.1.gz ... /etc/default/tmpfs /etc/default/ifupdown /etc/default/bootlogd /etc/default/rcS /etc/default/popa3d /etc/default/syslogd /etc/default/devpts /etc/debconf.conf /etc/manpath.config /etc/hosts.allow |
|
#tar cv /etc | nc -l -p 55000
|
|
#netstat -lnp | grep :110
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 4052/popa3d |
|
#cd /tmp
|
|
#mkfifo /tmp/pipe
|
|
#man mkfifo
|
|
#mkfifo /tmp/fifo
|
|
#nc 127.0.0.1 110 < /tmp/fifo | nc -l -p 11000 > /tmp/fifo
|
|
#nc -h
[v1.10]
connect to somewhere: nc [-options] hostname port[s] [ports] ...
listen for inbound: nc -l -p port [-options] [hostname] [port]
options:
-c shell commands as `-e'; use /bin/sh to exec [dangerous!!]
-e filename program to exec after connect [dangerous!!]
-b allow broadcasts
-g gateway source-routing hop point[s], up to 8
-G num source-routing pointer: 4, 8, 12, ...
-h this cruft
...
-q secs quit after EOF on stdin and delay of secs
-s addr local source address
-t answer TELNET negotiation
-u UDP mode
-v verbose [use twice to be more verbose]
-w secs timeout for connects and final net reads
-x tos set Type Of Service
-z zero-I/O mode [used for scanning]
port numbers can be individual or ranges: lo-hi [inclusive];
hyphens in port names must be backslash escaped (e.g. 'ftp\-data').
|
|
#nc -c /bin/bash -l -p 55000
|
|
#yes BBB | nc 192.168.16.203 55000
AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA ... AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA AAAA |
|
#dd if=/dev/zero | nc -l -p 55000
|
|
#dd if=/dev/ra
ram0 ram10 ram12 ram14 ram2 ram4 ram6 ram8 random ram1 ram11 ram13 ram15 ram3 ram5 ram7 ram9 |
|
#dd if=/dev/random | nc -l -p 55000
0+5 записей считано 0+0 записей написано скопировано 0 байт (0 B), 21,5623 секунд, 0,0 kB/s |
|
#dd if=/dev/random of=/dev/null
0+1 записей считано 0+0 записей написано скопировано 0 байт (0 B), 4,09711 секунд, 0,0 kB/s |
|
#dd if=/dev/urandom of=/dev/null
28922+0 записей считано 28921+0 записей написано скопировано 14807552 байта (15 MB), 2,49982 секунд, 5,9 MB/s |
|
#dd if=/dev/urandom | nc -l -p 55000
|
|
#dd if=/dev/urandom of=/dev/null
|
|
#route -n
Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.100.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 192.168.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 172.16.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth2 0.0.0.0 192.168.16.254 0.0.0.0 UG 0 0 0 eth0 |
|
#uxterm
_X11TransSocketINETConnect() can't get address for localhost:6010: Name or service not known Warning: This program is an suid-root program or is being run by the root user. The full text of the error or warning message cannot be safely formatted in this environment. You may get a more descriptive message by running the program as a non-root user or by removing the suid bit on the executable. xterm Xt error: Can't open display: %s |
|
#su - user
|
|
$uxterm
xterm Xt error: Can't open display: xterm: DISPLAY is not set |
|
$exit
|
|
#sysctl -a | grep ip_forw
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]# sysctl -a | grep ip_forw
error: "Operation not permitted" reading key "net.ipv6.route.flush"
error: "Operation not permitted" reading key "net.ipv4.route.flush"
net.ipv4.ip_forward = 0
[root@debian1:~]#
error: "Operation not permitted" reading key "net.ipv6.route.flush"
error: "Operation not permitted" reading key "net.ipv4.route.flush"
net.ipv4.ip_forward = 0
|
|
#^# Enable forwarding on gateway
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]# sysctl -a | grep ip_forw
error: "Operation not permitted" reading key "net.ipv6.route.flush"
error: "Operation not permitted" reading key "net.ipv4.route.flush"
net.ipv4.ip_forward = 0
[root@debian1:~]# ^# Enable forwarding on gateway
bash: :s^# Enable forwarding on gateway: substitution failed
[root@debian1:~]# sysctl -a | grep ip_forw
bash: :s^# Enable forwarding on gateway: substitution failed
Enable forwarding on gateway:\ |
|
#sysctl -v
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed |
|
#sysctl net.ipv4.ip_forward=1
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed net.ipv4.ip_forward = 1 |
|
#sysctl -a | grep ip_forw
error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 1 |
|
#cat /proc/sys/net/ipv4/ip_forward
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed 1 |
|
##sysctl net.ipv4.ip_forward=1
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed |
|
#grep net.ipv4.ip_forward /etc/sysctl.conf
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed |
|
#grep net\.ipv4\.ip_forward /etc/sysctl.conf
|
|
#grep ip_forward /etc/sysctl.conf
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed |
|
#vim /etc/sysctl.conf
|
|
#sysctl -w net.ipv4.ip_forward=1
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed net.ipv4.ip_forward = 1 |
|
#vim /etc/sysctl.conf
|
|
#cat /proc/sys/net/ipv4/ip_forward
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed 1 |
|
#sysctl -w net.ipv4.ip_forward=0
net.ipv4.ip_forward = 0 |
|
#cat /proc/sys/net/ipv4/ip_forward
0 |
|
#vim /etc/sysctl.conf
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/sysctl.conf 2008-02-19 08:14:59.000000000 +0000 @@ -0,0 +1,26 @@ +# +# /etc/sysctl.conf - Configuration file for setting system variables +# See sysctl.conf (5) for information. +# + +#kernel.domainname = example.com +#net/ipv4/icmp_echo_ignore_broadcasts=1 + +# Uncomment the following to stop low-level messages on console +#kernel.printk = 4 4 1 7 + +##############################################################3 +# Functions previously found in netbase +# + +# Uncomment the next line to enable Spoof protection (reverse-path filter) +#net.ipv4.conf.default.rp_filter=1 + +# Uncomment the next line to enable TCP/IP SYN cookies +#net.ipv4.tcp_syncookies=1 + +# Uncomment the next line to enable packet forwarding for IPv4 +NET.IPV4.conf.default.forwarding=1 + +# Uncomment the next line to enable packet forwarding for IPv6 +#net.ipv6.conf.default.forwarding=1 |
|
#vim /etc/sysctl.conf
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/sysctl.conf 2008-02-19 08:15:11.000000000 +0000 @@ -0,0 +1,26 @@ +# +# /etc/sysctl.conf - Configuration file for setting system variables +# See sysctl.conf (5) for information. +# + +#kernel.domainname = example.com +#net/ipv4/icmp_echo_ignore_broadcasts=1 + +# Uncomment the following to stop low-level messages on console +#kernel.printk = 4 4 1 7 + +##############################################################3 +# Functions previously found in netbase +# + +# Uncomment the next line to enable Spoof protection (reverse-path filter) +#net.ipv4.conf.default.rp_filter=1 + +# Uncomment the next line to enable TCP/IP SYN cookies +#net.ipv4.tcp_syncookies=1 + +# Uncomment the next line to enable packet forwarding for IPv4 +net.ipv4.conf.default.forwarding=1 + +# Uncomment the next line to enable packet forwarding for IPv6 +#net.ipv6.conf.default.forwarding=1 |
|
#vim /etc/sysctl.conf
|
|
#vim /etc/sysctl.conf
|
|
#grep net.ipv4 /etc/sysctl.conf
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed #net/ipv4/icmp_echo_ignore_broadcasts=1 #net.ipv4.conf.default.rp_filter=1 #net.ipv4.tcp_syncookies=1 net.ipv4.conf.default.forwarding=1 |
|
#sysctl -h
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]#
[root@debian1:~]# sysctl -a | grep ip_forw
error: "Operation not permitted" reading key "net.ipv6.route.flush"
error: "Operation not permitted" reading key "net.ipv4.route.flush"
net.ipv4.ip_forward = 0
[root@debian1:~]# ^# Enable forwarding on gateway
bash: :s^# Enable forwarding on gateway: substitution failed
usage: sysctl [-n] [-e] variable ...
sysctl [-n] [-e] [-q] -w variable=value ...
sysctl [-n] [-e] -a
sysctl [-n] [-e] [-q] -p <file> (default /etc/sysctl.conf)
sysctl [-n] [-e] -A
|
|
#sysctl /etc/
|
|
#sysctl | grep ipv4
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed |
|
#sysctl -a | grep ip_fo
error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 |
|
#sysctl /etc/sysctl.conf
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed error: ".etc.sysctl/conf" is an unknown key |
|
#sysctl -p /etc/sysctl.conf
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed net.ipv4.conf.default.forwarding = 1 |
|
#sysctl -a | grep forward
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 ... net.ipv6.conf.lo.forwarding = 0 net.ipv4.conf.eth0.mc_forwarding = 0 net.ipv4.conf.eth0.forwarding = 0 net.ipv4.conf.lo.mc_forwarding = 0 net.ipv4.conf.lo.forwarding = 0 net.ipv4.conf.default.mc_forwarding = 0 net.ipv4.conf.default.forwarding = 1 net.ipv4.conf.all.mc_forwarding = 0 net.ipv4.conf.all.forwarding = 0 net.ipv4.ip_forward = 0 |
|
#man 3 sysctl
|
|
#apropos sysctl
[root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# [root@debian1:~]# sysctl -a | grep ip_forw error: "Operation not permitted" reading key "net.ipv6.route.flush" error: "Operation not permitted" reading key "net.ipv4.route.flush" net.ipv4.ip_forward = 0 [root@debian1:~]# ^# Enable forwarding on gateway bash: :s^# Enable forwarding on gateway: substitution failed sysctl (8) - configure kernel parameters at runtime sysctl.conf (5) - sysctl(8) preload/configuration file |
|
#man 8 sysctl
|
|
#man sysctl.conf
|
|
#ls /proc/sys
[root@debian1:user]# ls /proc/sys
sys/ sysrq-trigger sysvipc/
[root@debian1:user]# ls /proc/sys
sys/ sysrq-trigger sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/ fs/ kernel/ net/ vm/ xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct hostname osrelease printk_ratelimit sh
bootloader_type hotplug ostype printk_ratelimit_burst sh
cad_pid max_lock_depth overflowgid pty/ sy
cap-bound modprobe overflowuid random/ ta
core_pattern msgmax panic randomize_va_space th
core_uses_pid msgmnb panic_on_oops real-root-dev un
ctrl-alt-del msgmni pid_max sem ve
domainname ngroups_max printk shmall
[root@debian1:user]# ls /proc/sys/kernel/
sys/ sysrq-trigger sysvipc/
|
|
#ls /proc/sys
sys/ sysrq-trigger sysvipc/ |
|
#ls /proc/sys/
debug/ fs/ kernel/ net/ vm/ xen/ |
|
#ls /proc/sys/kernel/
acct hostname osrelease printk_ratelimit shmmax bootloader_type hotplug ostype printk_ratelimit_burst shmmni cad_pid max_lock_depth overflowgid pty/ sysrq cap-bound modprobe overflowuid random/ tainted core_pattern msgmax panic randomize_va_space threads-max core_uses_pid msgmnb panic_on_oops real-root-dev unknown_nmi_panic ctrl-alt-del msgmni pid_max sem version domainname ngroups_max printk shmall |
|
#ls /proc/sys/kernel/
[root@debian1:user]# ls /proc/sys sys/ sysrq-trigger sysvipc/ [root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# |
|
#find /usr -name sysctl
[root@debian1:user]# ls /proc/sys sys/ sysrq-trigger sysvipc/ [root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# |
|
#find /usr -name sys
/usr/include/sys /usr/lib/perl/5.8.8/sys |
|
#find /usr -name sys*
/usr/sbin/syslog-facility /usr/sbin/syslogd-listfiles /usr/include/bits/syscall.h /usr/include/bits/sys_errlist.h /usr/include/bits/syslog-path.h /usr/include/syscall.h /usr/include/asm-x86_64/system.h /usr/include/sys /usr/include/sys/syscall.h /usr/include/sys/sysmacros.h ... /usr/share/man/man8/syslogd-listfiles.8.gz /usr/share/man/man8/syslog-facility.8.gz /usr/share/man/man8/sysctl.8.gz /usr/share/man/man8/syslogd.8.gz /usr/share/man/man5/syslog.conf.5.gz /usr/share/man/man5/sysctl.conf.5.gz /usr/share/lintian/overrides/sysv-rc /usr/share/iceweasel/defaults/syspref /usr/share/vim/vim70/ftplugin/sysctl.vim /usr/share/vim/vim70/syntax/sysctl.vim |
|
#find /usr -name sys* | less
|
|
#less /usr/include/sys/sysctl.h
|
|
#tail -f /var/log/messages
[root@debian1:user]# [root@debian1:user]# [root@debian1:user]# Feb 19 05:37:38 debian1 -- MARK -- Feb 19 05:57:38 debian1 -- MARK -- Feb 19 06:17:38 debian1 -- MARK -- Feb 19 06:26:19 debian1 syslogd 1.4.1#18: restart. Feb 19 06:37:38 debian1 -- MARK -- Feb 19 06:57:38 debian1 -- MARK -- Feb 19 07:17:39 debian1 -- MARK -- Feb 19 07:37:39 debian1 -- MARK -- Feb 19 07:57:39 debian1 -- MARK -- Feb 19 08:10:03 debian1 kernel: process `sysctl' is using deprecated sysctl (syscall) net.ipv6.neigh.eth0.base_reachable_time; Use net.ipv6.neigh.eth0.base_reachable_time_ms instead. List of systcl vars: http://sysctl.enderunix.org |
|
#dpkg -L /sbin/s
[root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# sfdisk shutdown startpar sulogin swapon syslogd shadowconfig slattach start-stop-daemon swapoff sysctl |
|
#dpkg -L /sbin/sysctl
Пакет /sbin/sysctl не установлен. Для проверки файлов архивов используйте команду dpkg --info (dpkg-deb --info), для вывода списка файлов в них -- команду dpkg--contents (dpkg-deb --contents). |
|
#dpkg -S /sbin/sysctl
sys/ sysrq-trigger sysvipc/ [root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# procps: /sbin/sysctl |
|
#dpkg -L procps
/. /etc /etc/sysctl.conf /etc/init.d /etc/init.d/procps.sh /lib /lib/libproc-3.2.7.so /sbin /sbin/sysctl /bin ... /usr/share/doc/procps/examples /usr/share/doc/procps/examples/sysctl.conf /usr/share/doc/procps/changelog.Debian.gz /usr/share/doc/procps/README.top.gz /usr/share/menu /usr/share/menu/procps /usr/bin/snice /usr/bin/pkill /usr/share/man/man1/snice.1.gz /usr/share/man/man1/pkill.1.gz |
|
#dpkg -L procps | less
|
|
#less /usr/share/doc/procps/examples/sysctl.con
|
|
#less /usr/share/doc/procps/examples/sysctl.conf
|
|
#dpkg -L procps | less
|
|
#less /usr/share/doc/procps/README.Debian
|
|
#dpkg -l | grep inetd
[root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# ii openbsd-inetd 0.20050402-6 The OpenBSD Internet Superserver ii update-inetd 4.27-0.5 inetd.conf updater |
|
#vim /etc/inetd.conf
|
|
#man inetd.conf
|
|
#vim /etc/inetd.conf
|
|
#man inetd.conf
|
|
#vim /etc/inetd.conf
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/inetd.conf 2008-02-19 08:43:46.000000000 +0000 @@ -0,0 +1,42 @@ +# /etc/inetd.conf: see inetd(8) for further informations. +# +# Internet superserver configuration database +# +# +# Lines starting with "#:LABEL:" or "#<off>#" should not +# be changed unless you know what you are doing! +# +# If you want to disable an entry so it isn't touched during +# package updates just comment it out with a single '#' character. +# +# Packages should modify this file by using update-inetd(8) +# +# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args> +# +#:INTERNAL: Internal services +#discard stream tcp nowait root internal +#discard dgram udp wait root internal +#daytime stream tcp nowait root internal +#time stream tcp nowait root internal + +#:STANDARD: These are standard services. + +#:BSD: Shell, login, exec and talk are BSD protocols. + +#:MAIL: Mail, news and uucp services. + +#:INFO: Info services + +#:BOOT: TFTP service is provided primarily for booting. Most sites +# run this only on machines acting as "boot servers." + +#:RPC: RPC based services + +#:HAM-RADIO: amateur-radio services + +#:OTHER: Other services + +vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24 + + +reboot dgram udp wait root /sbin/reboot reboot now |
|
#vim /etc/services
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/services 2008-02-19 08:44:04.000000000 +0000 @@ -0,0 +1,558 @@ +# Network services, Internet style +# +# Note that it is presently the policy of IANA to assign a single well-known +# port number for both TCP and UDP; hence, officially ports have two entries +# even if the protocol doesn't support UDP operations. +# +# Updated from http://www.iana.org/assignments/port-numbers and other +# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services . +# New ports will be added on request if they have been officially assigned +# by IANA and used in the real-world or are needed by a debian package. +# If you need a huge list of used numbers please install the nmap package. + +tcpmux 1/tcp # TCP port service multiplexer +echo 7/tcp +echo 7/udp +discard 9/tcp sink null +discard 9/udp sink null +systat 11/tcp users +daytime 13/tcp +daytime 13/udp +netstat 15/tcp +qotd 17/tcp quote +msp 18/tcp # message send protocol +msp 18/udp +chargen 19/tcp ttytst source +chargen 19/udp ttytst source +ftp-data 20/tcp +ftp 21/tcp +fsp 21/udp fspd +ssh 22/tcp # SSH Remote Login Protocol +ssh 22/udp +telnet 23/tcp +smtp 25/tcp mail +time 37/tcp timserver +time 37/udp timserver +rlp 39/udp resource # resource location +nameserver 42/tcp name # IEN 116 +whois 43/tcp nicname +tacacs 49/tcp # Login Host Protocol (TACACS) +tacacs 49/udp +re-mail-ck 50/tcp # Remote Mail Checking Protocol +re-mail-ck 50/udp +domain 53/tcp # name-domain server +domain 53/udp +mtp 57/tcp # deprecated +tacacs-ds 65/tcp # TACACS-Database Service +tacacs-ds 65/udp +bootps 67/tcp # BOOTP server +bootps 67/udp +bootpc 68/tcp # BOOTP client +bootpc 68/udp +tftp 69/udp +gopher 70/tcp # Internet Gopher +gopher 70/udp +rje 77/tcp netrjs +finger 79/tcp +www 80/tcp http # WorldWideWeb HTTP +www 80/udp # HyperText Transfer Protocol +link 87/tcp ttylink +kerberos 88/tcp kerberos5 krb5 kerberos-sec # Kerberos v5 +kerberos 88/udp kerberos5 krb5 kerberos-sec # Kerberos v5 +supdup 95/tcp +hostnames 101/tcp hostname # usually from sri-nic +iso-tsap 102/tcp tsap # part of ISODE +acr-nema 104/tcp dicom # Digital Imag. & Comm. 300 +acr-nema 104/udp dicom # Digital Imag. & Comm. 300 +csnet-ns 105/tcp cso-ns # also used by CSO name server +csnet-ns 105/udp cso-ns +rtelnet 107/tcp # Remote Telnet +rtelnet 107/udp +pop2 109/tcp postoffice pop-2 # POP version 2 +pop2 109/udp pop-2 +pop3 110/tcp pop-3 # POP version 3 +pop3 110/udp pop-3 +sunrpc 111/tcp portmapper # RPC 4.0 portmapper +sunrpc 111/udp portmapper +auth 113/tcp authentication tap ident +sftp 115/tcp +uucp-path 117/tcp +nntp 119/tcp readnews untp # USENET News Transfer Protocol +ntp 123/tcp +ntp 123/udp # Network Time Protocol +pwdgen 129/tcp # PWDGEN service +pwdgen 129/udp # PWDGEN service +loc-srv 135/tcp epmap # Location Service +loc-srv 135/udp epmap +netbios-ns 137/tcp # NETBIOS Name Service +netbios-ns 137/udp +netbios-dgm 138/tcp # NETBIOS Datagram Service +netbios-dgm 138/udp +netbios-ssn 139/tcp # NETBIOS session service +netbios-ssn 139/udp +imap2 143/tcp imap # Interim Mail Access P 2 and 4 +imap2 143/udp imap +snmp 161/tcp # Simple Net Mgmt Protocol +snmp 161/udp # Simple Net Mgmt Protocol +snmp-trap 162/tcp snmptrap # Traps for SNMP +snmp-trap 162/udp snmptrap # Traps for SNMP +cmip-man 163/tcp # ISO mgmt over IP (CMOT) +cmip-man 163/udp +cmip-agent 164/tcp +cmip-agent 164/udp +mailq 174/tcp # Mailer transport queue for Zmailer +mailq 174/udp # Mailer transport queue for Zmailer +xdmcp 177/tcp # X Display Mgr. Control Proto +xdmcp 177/udp +nextstep 178/tcp NeXTStep NextStep # NeXTStep window +nextstep 178/udp NeXTStep NextStep # server +bgp 179/tcp # Border Gateway Protocol +bgp 179/udp +prospero 191/tcp # Cliff Neuman's Prospero +prospero 191/udp +irc 194/tcp # Internet Relay Chat +irc 194/udp +smux 199/tcp # SNMP Unix Multiplexer +smux 199/udp +at-rtmp 201/tcp # AppleTalk routing +at-rtmp 201/udp +at-nbp 202/tcp # AppleTalk name binding +at-nbp 202/udp +at-echo 204/tcp # AppleTalk echo +at-echo 204/udp +at-zis 206/tcp # AppleTalk zone information +at-zis 206/udp +qmtp 209/tcp # Quick Mail Transfer Protocol +qmtp 209/udp # Quick Mail Transfer Protocol +z3950 210/tcp wais # NISO Z39.50 database +z3950 210/udp wais +ipx 213/tcp # IPX +ipx 213/udp +imap3 220/tcp # Interactive Mail Access +imap3 220/udp # Protocol v3 +pawserv 345/tcp # Perf Analysis Workbench +pawserv 345/udp +zserv 346/tcp # Zebra server +zserv 346/udp +fatserv 347/tcp # Fatmen Server +fatserv 347/udp +rpc2portmap 369/tcp +rpc2portmap 369/udp # Coda portmapper +codaauth2 370/tcp +codaauth2 370/udp # Coda authentication server +clearcase 371/tcp Clearcase +clearcase 371/udp Clearcase +ulistserv 372/tcp # UNIX Listserv +ulistserv 372/udp +ldap 389/tcp # Lightweight Directory Access Protocol +ldap 389/udp +imsp 406/tcp # Interactive Mail Support Protocol +imsp 406/udp +https 443/tcp # http protocol over TLS/SSL +https 443/udp +snpp 444/tcp # Simple Network Paging Protocol +snpp 444/udp +microsoft-ds 445/tcp # Microsoft Naked CIFS +microsoft-ds 445/udp +kpasswd 464/tcp +kpasswd 464/udp +saft 487/tcp # Simple Asynchronous File Transfer +saft 487/udp +isakmp 500/tcp # IPsec - Internet Security Association +isakmp 500/udp # and Key Management Protocol +rtsp 554/tcp # Real Time Stream Control Protocol +rtsp 554/udp # Real Time Stream Control Protocol +nqs 607/tcp # Network Queuing system +nqs 607/udp +npmp-local 610/tcp dqs313_qmaster # npmp-local / DQS +npmp-local 610/udp dqs313_qmaster +npmp-gui 611/tcp dqs313_execd # npmp-gui / DQS +npmp-gui 611/udp dqs313_execd +hmmp-ind 612/tcp dqs313_intercell # HMMP Indication / DQS +hmmp-ind 612/udp dqs313_intercell +ipp 631/tcp # Internet Printing Protocol +ipp 631/udp +# +# UNIX specific services +# +exec 512/tcp +biff 512/udp comsat +login 513/tcp +who 513/udp whod +shell 514/tcp cmd # no passwords used +syslog 514/udp +printer 515/tcp spooler # line printer spooler +talk 517/udp +ntalk 518/udp +route 520/udp router routed # RIP +timed 525/udp timeserver +tempo 526/tcp newdate +courier 530/tcp rpc +conference 531/tcp chat +netnews 532/tcp readnews +netwall 533/udp # for emergency broadcasts +gdomap 538/tcp # GNUstep distributed objects +gdomap 538/udp +uucp 540/tcp uucpd # uucp daemon +klogin 543/tcp # Kerberized `rlogin' (v5) +kshell 544/tcp krcmd # Kerberized `rsh' (v5) +afpovertcp 548/tcp # AFP over TCP +afpovertcp 548/udp +remotefs 556/tcp rfs_server rfs # Brunhoff remote filesystem +nntps 563/tcp snntp # NNTP over SSL +nntps 563/udp snntp +submission 587/tcp # Submission [RFC2476] +submission 587/udp +ldaps 636/tcp # LDAP over SSL +ldaps 636/udp +tinc 655/tcp # tinc control port +tinc 655/udp +silc 706/tcp +silc 706/udp +kerberos-adm 749/tcp # Kerberos `kadmin' (v5) +# +webster 765/tcp # Network dictionary +webster 765/udp +rsync 873/tcp +rsync 873/udp +ftps-data 989/tcp # FTP over SSL (data) +ftps 990/tcp +telnets 992/tcp # Telnet over SSL +telnets 992/udp +imaps 993/tcp # IMAP over SSL +imaps 993/udp +ircs 994/tcp # IRC over SSL +ircs 994/udp +pop3s 995/tcp # POP-3 over SSL +pop3s 995/udp +# +# From ``Assigned Numbers'': +# +#> The Registered Ports are not controlled by the IANA and on most systems +#> can be used by ordinary user processes or programs executed by ordinary +#> users. +# +#> Ports are used in the TCP [45,106] to name the ends of logical +#> connections which carry long term conversations. For the purpose of +#> providing services to unknown callers, a service contact port is +#> defined. This list specifies the port used by the server process as its +#> contact port. While the IANA can not control uses of these ports it +#> does register or list uses of these ports as a convienence to the +#> community. +# +socks 1080/tcp # socks proxy server +socks 1080/udp +proofd 1093/tcp +proofd 1093/udp +rootd 1094/tcp +rootd 1094/udp +openvpn 1194/tcp +openvpn 1194/udp +rmiregistry 1099/tcp # Java RMI Registry +rmiregistry 1099/udp +kazaa 1214/tcp +kazaa 1214/udp +nessus 1241/tcp # Nessus vulnerability +nessus 1241/udp # assessment scanner +lotusnote 1352/tcp lotusnotes # Lotus Note +lotusnote 1352/udp lotusnotes +ms-sql-s 1433/tcp # Microsoft SQL Server +ms-sql-s 1433/udp +ms-sql-m 1434/tcp # Microsoft SQL Monitor +ms-sql-m 1434/udp +ingreslock 1524/tcp +ingreslock 1524/udp +prospero-np 1525/tcp # Prospero non-privileged +prospero-np 1525/udp +datametrics 1645/tcp old-radius +datametrics 1645/udp old-radius +sa-msg-port 1646/tcp old-radacct +sa-msg-port 1646/udp old-radacct +kermit 1649/tcp +kermit 1649/udp +l2f 1701/tcp l2tp +l2f 1701/udp l2tp +radius 1812/tcp +radius 1812/udp +radius-acct 1813/tcp radacct # Radius Accounting +radius-acct 1813/udp radacct +msnp 1863/tcp # MSN Messenger +msnp 1863/udp +unix-status 1957/tcp # remstats unix-status server +log-server 1958/tcp # remstats log server +remoteping 1959/tcp # remstats remoteping server +nfs 2049/tcp # Network File System +nfs 2049/udp # Network File System +rtcm-sc104 2101/tcp # RTCM SC-104 IANA 1/29/99 +rtcm-sc104 2101/udp +cvspserver 2401/tcp # CVS client/server operations +cvspserver 2401/udp +venus 2430/tcp # codacon port +venus 2430/udp # Venus callback/wbc interface +venus-se 2431/tcp # tcp side effects +venus-se 2431/udp # udp sftp side effect +codasrv 2432/tcp # not used +codasrv 2432/udp # server port +codasrv-se 2433/tcp # tcp side effects +codasrv-se 2433/udp # udp sftp side effect +mon 2583/tcp # MON +mon 2583/udp +dict 2628/tcp # Dictionary server +dict 2628/udp +gpsd 2947/tcp +gpsd 2947/udp +gds_db 3050/tcp # InterBase server +gds_db 3050/udp +icpv2 3130/tcp icp # Internet Cache Protocol +icpv2 3130/udp icp +mysql 3306/tcp +mysql 3306/udp +nut 3493/tcp # Network UPS Tools +nut 3493/udp +distcc 3632/tcp # distributed compiler +distcc 3632/udp +daap 3689/tcp # Digital Audio Access Protocol +daap 3689/udp +svn 3690/tcp subversion # Subversion protocol +svn 3690/udp subversion +suucp 4013/tcp # UUCP over SSL +suucp 4013/udp # UUCP over SSL +sysrqd 4094/tcp # sysrq daemon +sysrqd 4094/udp # sysrq daemon +iax 4569/tcp # Inter-Asterisk eXchange +iax 4569/udp +radmin-port 4899/tcp # RAdmin Port +radmin-port 4899/udp +rfe 5002/udp # Radio Free Ethernet +rfe 5002/tcp +mmcc 5050/tcp # multimedia conference control tool (Yahoo IM) +mmcc 5050/udp +sip 5060/tcp # Session Initiation Protocol +sip 5060/udp +sip-tls 5061/tcp +sip-tls 5061/udp +aol 5190/tcp # AIM +aol 5190/udp +xmpp-client 5222/tcp jabber-client # Jabber Client Connection +xmpp-client 5222/udp jabber-client +xmpp-server 5269/tcp jabber-server # Jabber Server Connection +xmpp-server 5269/udp jabber-server +cfengine 5308/tcp +cfengine 5308/udp +mdns 5353/tcp # Multicast DNS +mdns 5353/udp # Multicast DNS +postgresql 5432/tcp postgres # PostgreSQL Database +postgresql 5432/udp postgres +ggz 5688/tcp # GGZ Gaming Zone +ggz 5688/udp # GGZ Gaming Zone +x11 6000/tcp x11-0 # X Window System +x11 6000/udp x11-0 +x11-1 6001/tcp +x11-1 6001/udp +x11-2 6002/tcp +x11-2 6002/udp +x11-3 6003/tcp +x11-3 6003/udp +x11-4 6004/tcp +x11-4 6004/udp +x11-5 6005/tcp +x11-5 6005/udp +x11-6 6006/tcp +x11-6 6006/udp +x11-7 6007/tcp +x11-7 6007/udp +gnutella-svc 6346/tcp # gnutella +gnutella-svc 6346/udp +gnutella-rtr 6347/tcp # gnutella +gnutella-rtr 6347/udp +sge_qmaster 6444/tcp # Grid Engine Qmaster Service +sge_qmaster 6444/udp # Grid Engine Qmaster Service +sge_execd 6445/tcp # Grid Engine Execution Service +sge_execd 6445/udp # Grid Engine Execution Service +afs3-fileserver 7000/tcp bbs # file server itself +afs3-fileserver 7000/udp bbs +afs3-callback 7001/tcp # callbacks to cache managers +afs3-callback 7001/udp +afs3-prserver 7002/tcp # users & groups database +afs3-prserver 7002/udp +afs3-vlserver 7003/tcp # volume location database +afs3-vlserver 7003/udp +afs3-kaserver 7004/tcp # AFS/Kerberos authentication +afs3-kaserver 7004/udp +afs3-volser 7005/tcp # volume managment server +afs3-volser 7005/udp +afs3-errors 7006/tcp # error interpretation service +afs3-errors 7006/udp +afs3-bos 7007/tcp # basic overseer process +afs3-bos 7007/udp +afs3-update 7008/tcp # server-to-server updater +afs3-update 7008/udp +afs3-rmtsys 7009/tcp # remote cache manager service +afs3-rmtsys 7009/udp +font-service 7100/tcp xfs # X Font Service +font-service 7100/udp xfs +bacula-dir 9101/tcp # Bacula Director +bacula-dir 9101/udp +bacula-fd 9102/tcp # Bacula File Daemon +bacula-fd 9102/udp +bacula-sd 9103/tcp # Bacula Storage Daemon +bacula-sd 9103/udp +amanda 10080/tcp # amanda backup services +amanda 10080/udp +hkp 11371/tcp # OpenPGP HTTP Keyserver +hkp 11371/udp # OpenPGP HTTP Keyserver +bprd 13720/tcp # VERITAS NetBackup +bprd 13720/udp +bpdbm 13721/tcp # VERITAS NetBackup +bpdbm 13721/udp +bpjava-msvc 13722/tcp # BP Java MSVC Protocol +bpjava-msvc 13722/udp +vnetd 13724/tcp # Veritas Network Utility +vnetd 13724/udp +bpcd 13782/tcp # VERITAS NetBackup +bpcd 13782/udp +vopied 13783/tcp # VERITAS NetBackup +vopied 13783/udp +wnn6 22273/tcp # wnn6 +wnn6 22273/udp + +# +# Datagram Delivery Protocol services +# +rtmp 1/ddp # Routing Table Maintenance Protocol +nbp 2/ddp # Name Binding Protocol +echo 4/ddp # AppleTalk Echo Protocol +zip 6/ddp # Zone Information Protocol + +#========================================================================= +# The remaining port numbers are not as allocated by IANA. +#========================================================================= + +# Kerberos (Project Athena/MIT) services +# Note that these are for Kerberos v4, and are unofficial. Sites running +# v4 should uncomment these and comment out the v5 entries above. +# +kerberos4 750/udp kerberos-iv kdc # Kerberos (server) +kerberos4 750/tcp kerberos-iv kdc +kerberos_master 751/udp # Kerberos authentication +kerberos_master 751/tcp +passwd_server 752/udp # Kerberos passwd server +krb_prop 754/tcp krb5_prop hprop # Kerberos slave propagation +krbupdate 760/tcp kreg # Kerberos registration +swat 901/tcp # swat +kpop 1109/tcp # Pop with Kerberos +knetd 2053/tcp # Kerberos de-multiplexor +zephyr-srv 2102/udp # Zephyr server +zephyr-clt 2103/udp # Zephyr serv-hm connection +zephyr-hm 2104/udp # Zephyr hostmanager +eklogin 2105/tcp # Kerberos encrypted rlogin +# Hmmm. Are we using Kv4 or Kv5 now? Worrying. +# The following is probably Kerberos v5 --- ajt@debian.org (11/02/2000) +kx 2111/tcp # X over Kerberos +iprop 2121/tcp # incremental propagation +# +# Unofficial but necessary (for NetBSD) services +# +supfilesrv 871/tcp # SUP server +supfiledbg 1127/tcp # SUP debugging + +# +# Services added for the Debian GNU/Linux distribution +# +linuxconf 98/tcp # LinuxConf +poppassd 106/tcp # Eudora +poppassd 106/udp +ssmtp 465/tcp smtps # SMTP over SSL +moira_db 775/tcp # Moira database +moira_update 777/tcp # Moira update protocol +moira_ureg 779/udp # Moira user registration +spamd 783/tcp # spamassassin daemon +omirr 808/tcp omirrd # online mirror +omirr 808/udp omirrd +customs 1001/tcp # pmake customs server +customs 1001/udp +skkserv 1178/tcp # skk jisho server port +predict 1210/udp # predict -- satellite tracking +rmtcfg 1236/tcp # Gracilis Packeten remote config server +wipld 1300/tcp # Wipl network monitor +xtel 1313/tcp # french minitel +xtelw 1314/tcp # french minitel +support 1529/tcp # GNATS +sieve 2000/tcp # Sieve mail filter daemon +cfinger 2003/tcp # GNU Finger +ndtp 2010/tcp # Network dictionary transfer protocol +frox 2121/tcp # frox: caching ftp proxy +ninstall 2150/tcp # ninstall service +ninstall 2150/udp +zebrasrv 2600/tcp # zebra service +zebra 2601/tcp # zebra vty +ripd 2602/tcp # ripd vty (zebra) +ripngd 2603/tcp # ripngd vty (zebra) +ospfd 2604/tcp # ospfd vty (zebra) +bgpd 2605/tcp # bgpd vty (zebra) +ospf6d 2606/tcp # ospf6d vty (zebra) +ospfapi 2607/tcp # OSPF-API +isisd 2608/tcp # ISISd vty (zebra) +afbackup 2988/tcp # Afbackup system +afbackup 2988/udp +afmbackup 2989/tcp # Afmbackup system +afmbackup 2989/udp +xtell 4224/tcp # xtell server +fax 4557/tcp # FAX transmission service (old) +hylafax 4559/tcp # HylaFAX client-server protocol (new) +distmp3 4600/tcp # distmp3host daemon +munin 4949/tcp lrrd # Munin +enbd-cstatd 5051/tcp # ENBD client statd +enbd-sstatd 5052/tcp # ENBD server statd +pcrd 5151/tcp # PCR-1000 Daemon +noclog 5354/tcp # noclogd with TCP (nocol) +noclog 5354/udp # noclogd with UDP (nocol) +hostmon 5355/tcp # hostmon uses TCP (nocol) +hostmon 5355/udp # hostmon uses UDP (nocol) +rplay 5555/udp # RPlay audio service +rplay 5555/tcp +rptp 5556/udp # Remote Play Transfer Protocol +rptp 5556/tcp +nsca 5667/tcp # Nagios Agent - NSCA +mrtd 5674/tcp # MRT Routing Daemon +bgpsim 5675/tcp # MRT Routing Simulator +canna 5680/tcp # cannaserver +sane-port 6566/tcp sane saned # SANE network scanner daemon +ircd 6667/tcp # Internet Relay Chat +zope-ftp 8021/tcp # zope management by ftp +webcache 8080/tcp # WWW caching service +tproxy 8081/tcp # Transparent Proxy +omniorb 8088/tcp # OmniORB +omniorb 8088/udp +clc-build-daemon 8990/tcp # Common lisp build daemon +xinetd 9098/tcp +mandelspawn 9359/udp mandelbrot # network mandelbrot +git 9418/tcp # Git Version Control System +zope 9673/tcp # zope server +webmin 10000/tcp +kamanda 10081/tcp # amanda backup services (Kerberos) +kamanda 10081/udp +amandaidx 10082/tcp # amanda backup services +amidxtape 10083/tcp # amanda backup services +smsqp 11201/tcp # Alamin SMS gateway +smsqp 11201/udp +xpilot 15345/tcp # XPilot Contact Port +xpilot 15345/udp +sgi-cmsd 17001/udp # Cluster membership services daemon +sgi-crsd 17002/udp +sgi-gcd 17003/udp # SGI Group membership daemon +sgi-cad 17004/tcp # Cluster Admin daemon +isdnlog 20011/tcp # isdn logging system +isdnlog 20011/udp +vboxd 20012/tcp # voice box system +vboxd 20012/udp +binkp 24554/tcp # binkp fidonet protocol +asp 27374/tcp # Address Search Protocol +asp 27374/udp +csync2 30865/tcp # cluster synchronization tool +dircproxy 57000/tcp # Detachable IRC Proxy +tfido 60177/tcp # fidonet EMSI over telnet +fido 60179/tcp # fidonet EMSI over TCP +vnc1 65535/tcp #VNC_inetd +reboot 65534/tcp #VNC_inetd +# Local services |
|
#vim /etc/services
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/services 2008-02-19 08:44:19.000000000 +0000 @@ -0,0 +1,558 @@ +# Network services, Internet style +# +# Note that it is presently the policy of IANA to assign a single well-known +# port number for both TCP and UDP; hence, officially ports have two entries +# even if the protocol doesn't support UDP operations. +# +# Updated from http://www.iana.org/assignments/port-numbers and other +# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services . +# New ports will be added on request if they have been officially assigned +# by IANA and used in the real-world or are needed by a debian package. +# If you need a huge list of used numbers please install the nmap package. + +tcpmux 1/tcp # TCP port service multiplexer +echo 7/tcp +echo 7/udp +discard 9/tcp sink null +discard 9/udp sink null +systat 11/tcp users +daytime 13/tcp +daytime 13/udp +netstat 15/tcp +qotd 17/tcp quote +msp 18/tcp # message send protocol +msp 18/udp +chargen 19/tcp ttytst source +chargen 19/udp ttytst source +ftp-data 20/tcp +ftp 21/tcp +fsp 21/udp fspd +ssh 22/tcp # SSH Remote Login Protocol +ssh 22/udp +telnet 23/tcp +smtp 25/tcp mail +time 37/tcp timserver +time 37/udp timserver +rlp 39/udp resource # resource location +nameserver 42/tcp name # IEN 116 +whois 43/tcp nicname +tacacs 49/tcp # Login Host Protocol (TACACS) +tacacs 49/udp +re-mail-ck 50/tcp # Remote Mail Checking Protocol +re-mail-ck 50/udp +domain 53/tcp # name-domain server +domain 53/udp +mtp 57/tcp # deprecated +tacacs-ds 65/tcp # TACACS-Database Service +tacacs-ds 65/udp +bootps 67/tcp # BOOTP server +bootps 67/udp +bootpc 68/tcp # BOOTP client +bootpc 68/udp +tftp 69/udp +gopher 70/tcp # Internet Gopher +gopher 70/udp +rje 77/tcp netrjs +finger 79/tcp +www 80/tcp http # WorldWideWeb HTTP +www 80/udp # HyperText Transfer Protocol +link 87/tcp ttylink +kerberos 88/tcp kerberos5 krb5 kerberos-sec # Kerberos v5 +kerberos 88/udp kerberos5 krb5 kerberos-sec # Kerberos v5 +supdup 95/tcp +hostnames 101/tcp hostname # usually from sri-nic +iso-tsap 102/tcp tsap # part of ISODE +acr-nema 104/tcp dicom # Digital Imag. & Comm. 300 +acr-nema 104/udp dicom # Digital Imag. & Comm. 300 +csnet-ns 105/tcp cso-ns # also used by CSO name server +csnet-ns 105/udp cso-ns +rtelnet 107/tcp # Remote Telnet +rtelnet 107/udp +pop2 109/tcp postoffice pop-2 # POP version 2 +pop2 109/udp pop-2 +pop3 110/tcp pop-3 # POP version 3 +pop3 110/udp pop-3 +sunrpc 111/tcp portmapper # RPC 4.0 portmapper +sunrpc 111/udp portmapper +auth 113/tcp authentication tap ident +sftp 115/tcp +uucp-path 117/tcp +nntp 119/tcp readnews untp # USENET News Transfer Protocol +ntp 123/tcp +ntp 123/udp # Network Time Protocol +pwdgen 129/tcp # PWDGEN service +pwdgen 129/udp # PWDGEN service +loc-srv 135/tcp epmap # Location Service +loc-srv 135/udp epmap +netbios-ns 137/tcp # NETBIOS Name Service +netbios-ns 137/udp +netbios-dgm 138/tcp # NETBIOS Datagram Service +netbios-dgm 138/udp +netbios-ssn 139/tcp # NETBIOS session service +netbios-ssn 139/udp +imap2 143/tcp imap # Interim Mail Access P 2 and 4 +imap2 143/udp imap +snmp 161/tcp # Simple Net Mgmt Protocol +snmp 161/udp # Simple Net Mgmt Protocol +snmp-trap 162/tcp snmptrap # Traps for SNMP +snmp-trap 162/udp snmptrap # Traps for SNMP +cmip-man 163/tcp # ISO mgmt over IP (CMOT) +cmip-man 163/udp +cmip-agent 164/tcp +cmip-agent 164/udp +mailq 174/tcp # Mailer transport queue for Zmailer +mailq 174/udp # Mailer transport queue for Zmailer +xdmcp 177/tcp # X Display Mgr. Control Proto +xdmcp 177/udp +nextstep 178/tcp NeXTStep NextStep # NeXTStep window +nextstep 178/udp NeXTStep NextStep # server +bgp 179/tcp # Border Gateway Protocol +bgp 179/udp +prospero 191/tcp # Cliff Neuman's Prospero +prospero 191/udp +irc 194/tcp # Internet Relay Chat +irc 194/udp +smux 199/tcp # SNMP Unix Multiplexer +smux 199/udp +at-rtmp 201/tcp # AppleTalk routing +at-rtmp 201/udp +at-nbp 202/tcp # AppleTalk name binding +at-nbp 202/udp +at-echo 204/tcp # AppleTalk echo +at-echo 204/udp +at-zis 206/tcp # AppleTalk zone information +at-zis 206/udp +qmtp 209/tcp # Quick Mail Transfer Protocol +qmtp 209/udp # Quick Mail Transfer Protocol +z3950 210/tcp wais # NISO Z39.50 database +z3950 210/udp wais +ipx 213/tcp # IPX +ipx 213/udp +imap3 220/tcp # Interactive Mail Access +imap3 220/udp # Protocol v3 +pawserv 345/tcp # Perf Analysis Workbench +pawserv 345/udp +zserv 346/tcp # Zebra server +zserv 346/udp +fatserv 347/tcp # Fatmen Server +fatserv 347/udp +rpc2portmap 369/tcp +rpc2portmap 369/udp # Coda portmapper +codaauth2 370/tcp +codaauth2 370/udp # Coda authentication server +clearcase 371/tcp Clearcase +clearcase 371/udp Clearcase +ulistserv 372/tcp # UNIX Listserv +ulistserv 372/udp +ldap 389/tcp # Lightweight Directory Access Protocol +ldap 389/udp +imsp 406/tcp # Interactive Mail Support Protocol +imsp 406/udp +https 443/tcp # http protocol over TLS/SSL +https 443/udp +snpp 444/tcp # Simple Network Paging Protocol +snpp 444/udp +microsoft-ds 445/tcp # Microsoft Naked CIFS +microsoft-ds 445/udp +kpasswd 464/tcp +kpasswd 464/udp +saft 487/tcp # Simple Asynchronous File Transfer +saft 487/udp +isakmp 500/tcp # IPsec - Internet Security Association +isakmp 500/udp # and Key Management Protocol +rtsp 554/tcp # Real Time Stream Control Protocol +rtsp 554/udp # Real Time Stream Control Protocol +nqs 607/tcp # Network Queuing system +nqs 607/udp +npmp-local 610/tcp dqs313_qmaster # npmp-local / DQS +npmp-local 610/udp dqs313_qmaster +npmp-gui 611/tcp dqs313_execd # npmp-gui / DQS +npmp-gui 611/udp dqs313_execd +hmmp-ind 612/tcp dqs313_intercell # HMMP Indication / DQS +hmmp-ind 612/udp dqs313_intercell +ipp 631/tcp # Internet Printing Protocol +ipp 631/udp +# +# UNIX specific services +# +exec 512/tcp +biff 512/udp comsat +login 513/tcp +who 513/udp whod +shell 514/tcp cmd # no passwords used +syslog 514/udp +printer 515/tcp spooler # line printer spooler +talk 517/udp +ntalk 518/udp +route 520/udp router routed # RIP +timed 525/udp timeserver +tempo 526/tcp newdate +courier 530/tcp rpc +conference 531/tcp chat +netnews 532/tcp readnews +netwall 533/udp # for emergency broadcasts +gdomap 538/tcp # GNUstep distributed objects +gdomap 538/udp +uucp 540/tcp uucpd # uucp daemon +klogin 543/tcp # Kerberized `rlogin' (v5) +kshell 544/tcp krcmd # Kerberized `rsh' (v5) +afpovertcp 548/tcp # AFP over TCP +afpovertcp 548/udp +remotefs 556/tcp rfs_server rfs # Brunhoff remote filesystem +nntps 563/tcp snntp # NNTP over SSL +nntps 563/udp snntp +submission 587/tcp # Submission [RFC2476] +submission 587/udp +ldaps 636/tcp # LDAP over SSL +ldaps 636/udp +tinc 655/tcp # tinc control port +tinc 655/udp +silc 706/tcp +silc 706/udp +kerberos-adm 749/tcp # Kerberos `kadmin' (v5) +# +webster 765/tcp # Network dictionary +webster 765/udp +rsync 873/tcp +rsync 873/udp +ftps-data 989/tcp # FTP over SSL (data) +ftps 990/tcp +telnets 992/tcp # Telnet over SSL +telnets 992/udp +imaps 993/tcp # IMAP over SSL +imaps 993/udp +ircs 994/tcp # IRC over SSL +ircs 994/udp +pop3s 995/tcp # POP-3 over SSL +pop3s 995/udp +# +# From ``Assigned Numbers'': +# +#> The Registered Ports are not controlled by the IANA and on most systems +#> can be used by ordinary user processes or programs executed by ordinary +#> users. +# +#> Ports are used in the TCP [45,106] to name the ends of logical +#> connections which carry long term conversations. For the purpose of +#> providing services to unknown callers, a service contact port is +#> defined. This list specifies the port used by the server process as its +#> contact port. While the IANA can not control uses of these ports it +#> does register or list uses of these ports as a convienence to the +#> community. +# +socks 1080/tcp # socks proxy server +socks 1080/udp +proofd 1093/tcp +proofd 1093/udp +rootd 1094/tcp +rootd 1094/udp +openvpn 1194/tcp +openvpn 1194/udp +rmiregistry 1099/tcp # Java RMI Registry +rmiregistry 1099/udp +kazaa 1214/tcp +kazaa 1214/udp +nessus 1241/tcp # Nessus vulnerability +nessus 1241/udp # assessment scanner +lotusnote 1352/tcp lotusnotes # Lotus Note +lotusnote 1352/udp lotusnotes +ms-sql-s 1433/tcp # Microsoft SQL Server +ms-sql-s 1433/udp +ms-sql-m 1434/tcp # Microsoft SQL Monitor +ms-sql-m 1434/udp +ingreslock 1524/tcp +ingreslock 1524/udp +prospero-np 1525/tcp # Prospero non-privileged +prospero-np 1525/udp +datametrics 1645/tcp old-radius +datametrics 1645/udp old-radius +sa-msg-port 1646/tcp old-radacct +sa-msg-port 1646/udp old-radacct +kermit 1649/tcp +kermit 1649/udp +l2f 1701/tcp l2tp +l2f 1701/udp l2tp +radius 1812/tcp +radius 1812/udp +radius-acct 1813/tcp radacct # Radius Accounting +radius-acct 1813/udp radacct +msnp 1863/tcp # MSN Messenger +msnp 1863/udp +unix-status 1957/tcp # remstats unix-status server +log-server 1958/tcp # remstats log server +remoteping 1959/tcp # remstats remoteping server +nfs 2049/tcp # Network File System +nfs 2049/udp # Network File System +rtcm-sc104 2101/tcp # RTCM SC-104 IANA 1/29/99 +rtcm-sc104 2101/udp +cvspserver 2401/tcp # CVS client/server operations +cvspserver 2401/udp +venus 2430/tcp # codacon port +venus 2430/udp # Venus callback/wbc interface +venus-se 2431/tcp # tcp side effects +venus-se 2431/udp # udp sftp side effect +codasrv 2432/tcp # not used +codasrv 2432/udp # server port +codasrv-se 2433/tcp # tcp side effects +codasrv-se 2433/udp # udp sftp side effect +mon 2583/tcp # MON +mon 2583/udp +dict 2628/tcp # Dictionary server +dict 2628/udp +gpsd 2947/tcp +gpsd 2947/udp +gds_db 3050/tcp # InterBase server +gds_db 3050/udp +icpv2 3130/tcp icp # Internet Cache Protocol +icpv2 3130/udp icp +mysql 3306/tcp +mysql 3306/udp +nut 3493/tcp # Network UPS Tools +nut 3493/udp +distcc 3632/tcp # distributed compiler +distcc 3632/udp +daap 3689/tcp # Digital Audio Access Protocol +daap 3689/udp +svn 3690/tcp subversion # Subversion protocol +svn 3690/udp subversion +suucp 4013/tcp # UUCP over SSL +suucp 4013/udp # UUCP over SSL +sysrqd 4094/tcp # sysrq daemon +sysrqd 4094/udp # sysrq daemon +iax 4569/tcp # Inter-Asterisk eXchange +iax 4569/udp +radmin-port 4899/tcp # RAdmin Port +radmin-port 4899/udp +rfe 5002/udp # Radio Free Ethernet +rfe 5002/tcp +mmcc 5050/tcp # multimedia conference control tool (Yahoo IM) +mmcc 5050/udp +sip 5060/tcp # Session Initiation Protocol +sip 5060/udp +sip-tls 5061/tcp +sip-tls 5061/udp +aol 5190/tcp # AIM +aol 5190/udp +xmpp-client 5222/tcp jabber-client # Jabber Client Connection +xmpp-client 5222/udp jabber-client +xmpp-server 5269/tcp jabber-server # Jabber Server Connection +xmpp-server 5269/udp jabber-server +cfengine 5308/tcp +cfengine 5308/udp +mdns 5353/tcp # Multicast DNS +mdns 5353/udp # Multicast DNS +postgresql 5432/tcp postgres # PostgreSQL Database +postgresql 5432/udp postgres +ggz 5688/tcp # GGZ Gaming Zone +ggz 5688/udp # GGZ Gaming Zone +x11 6000/tcp x11-0 # X Window System +x11 6000/udp x11-0 +x11-1 6001/tcp +x11-1 6001/udp +x11-2 6002/tcp +x11-2 6002/udp +x11-3 6003/tcp +x11-3 6003/udp +x11-4 6004/tcp +x11-4 6004/udp +x11-5 6005/tcp +x11-5 6005/udp +x11-6 6006/tcp +x11-6 6006/udp +x11-7 6007/tcp +x11-7 6007/udp +gnutella-svc 6346/tcp # gnutella +gnutella-svc 6346/udp +gnutella-rtr 6347/tcp # gnutella +gnutella-rtr 6347/udp +sge_qmaster 6444/tcp # Grid Engine Qmaster Service +sge_qmaster 6444/udp # Grid Engine Qmaster Service +sge_execd 6445/tcp # Grid Engine Execution Service +sge_execd 6445/udp # Grid Engine Execution Service +afs3-fileserver 7000/tcp bbs # file server itself +afs3-fileserver 7000/udp bbs +afs3-callback 7001/tcp # callbacks to cache managers +afs3-callback 7001/udp +afs3-prserver 7002/tcp # users & groups database +afs3-prserver 7002/udp +afs3-vlserver 7003/tcp # volume location database +afs3-vlserver 7003/udp +afs3-kaserver 7004/tcp # AFS/Kerberos authentication +afs3-kaserver 7004/udp +afs3-volser 7005/tcp # volume managment server +afs3-volser 7005/udp +afs3-errors 7006/tcp # error interpretation service +afs3-errors 7006/udp +afs3-bos 7007/tcp # basic overseer process +afs3-bos 7007/udp +afs3-update 7008/tcp # server-to-server updater +afs3-update 7008/udp +afs3-rmtsys 7009/tcp # remote cache manager service +afs3-rmtsys 7009/udp +font-service 7100/tcp xfs # X Font Service +font-service 7100/udp xfs +bacula-dir 9101/tcp # Bacula Director +bacula-dir 9101/udp +bacula-fd 9102/tcp # Bacula File Daemon +bacula-fd 9102/udp +bacula-sd 9103/tcp # Bacula Storage Daemon +bacula-sd 9103/udp +amanda 10080/tcp # amanda backup services +amanda 10080/udp +hkp 11371/tcp # OpenPGP HTTP Keyserver +hkp 11371/udp # OpenPGP HTTP Keyserver +bprd 13720/tcp # VERITAS NetBackup +bprd 13720/udp +bpdbm 13721/tcp # VERITAS NetBackup +bpdbm 13721/udp +bpjava-msvc 13722/tcp # BP Java MSVC Protocol +bpjava-msvc 13722/udp +vnetd 13724/tcp # Veritas Network Utility +vnetd 13724/udp +bpcd 13782/tcp # VERITAS NetBackup +bpcd 13782/udp +vopied 13783/tcp # VERITAS NetBackup +vopied 13783/udp +wnn6 22273/tcp # wnn6 +wnn6 22273/udp + +# +# Datagram Delivery Protocol services +# +rtmp 1/ddp # Routing Table Maintenance Protocol +nbp 2/ddp # Name Binding Protocol +echo 4/ddp # AppleTalk Echo Protocol +zip 6/ddp # Zone Information Protocol + +#========================================================================= +# The remaining port numbers are not as allocated by IANA. +#========================================================================= + +# Kerberos (Project Athena/MIT) services +# Note that these are for Kerberos v4, and are unofficial. Sites running +# v4 should uncomment these and comment out the v5 entries above. +# +kerberos4 750/udp kerberos-iv kdc # Kerberos (server) +kerberos4 750/tcp kerberos-iv kdc +kerberos_master 751/udp # Kerberos authentication +kerberos_master 751/tcp +passwd_server 752/udp # Kerberos passwd server +krb_prop 754/tcp krb5_prop hprop # Kerberos slave propagation +krbupdate 760/tcp kreg # Kerberos registration +swat 901/tcp # swat +kpop 1109/tcp # Pop with Kerberos +knetd 2053/tcp # Kerberos de-multiplexor +zephyr-srv 2102/udp # Zephyr server +zephyr-clt 2103/udp # Zephyr serv-hm connection +zephyr-hm 2104/udp # Zephyr hostmanager +eklogin 2105/tcp # Kerberos encrypted rlogin +# Hmmm. Are we using Kv4 or Kv5 now? Worrying. +# The following is probably Kerberos v5 --- ajt@debian.org (11/02/2000) +kx 2111/tcp # X over Kerberos +iprop 2121/tcp # incremental propagation +# +# Unofficial but necessary (for NetBSD) services +# +supfilesrv 871/tcp # SUP server +supfiledbg 1127/tcp # SUP debugging + +# +# Services added for the Debian GNU/Linux distribution +# +linuxconf 98/tcp # LinuxConf +poppassd 106/tcp # Eudora +poppassd 106/udp +ssmtp 465/tcp smtps # SMTP over SSL +moira_db 775/tcp # Moira database +moira_update 777/tcp # Moira update protocol +moira_ureg 779/udp # Moira user registration +spamd 783/tcp # spamassassin daemon +omirr 808/tcp omirrd # online mirror +omirr 808/udp omirrd +customs 1001/tcp # pmake customs server +customs 1001/udp +skkserv 1178/tcp # skk jisho server port +predict 1210/udp # predict -- satellite tracking +rmtcfg 1236/tcp # Gracilis Packeten remote config server +wipld 1300/tcp # Wipl network monitor +xtel 1313/tcp # french minitel +xtelw 1314/tcp # french minitel +support 1529/tcp # GNATS +sieve 2000/tcp # Sieve mail filter daemon +cfinger 2003/tcp # GNU Finger +ndtp 2010/tcp # Network dictionary transfer protocol +frox 2121/tcp # frox: caching ftp proxy +ninstall 2150/tcp # ninstall service +ninstall 2150/udp +zebrasrv 2600/tcp # zebra service +zebra 2601/tcp # zebra vty +ripd 2602/tcp # ripd vty (zebra) +ripngd 2603/tcp # ripngd vty (zebra) +ospfd 2604/tcp # ospfd vty (zebra) +bgpd 2605/tcp # bgpd vty (zebra) +ospf6d 2606/tcp # ospf6d vty (zebra) +ospfapi 2607/tcp # OSPF-API +isisd 2608/tcp # ISISd vty (zebra) +afbackup 2988/tcp # Afbackup system +afbackup 2988/udp +afmbackup 2989/tcp # Afmbackup system +afmbackup 2989/udp +xtell 4224/tcp # xtell server +fax 4557/tcp # FAX transmission service (old) +hylafax 4559/tcp # HylaFAX client-server protocol (new) +distmp3 4600/tcp # distmp3host daemon +munin 4949/tcp lrrd # Munin +enbd-cstatd 5051/tcp # ENBD client statd +enbd-sstatd 5052/tcp # ENBD server statd +pcrd 5151/tcp # PCR-1000 Daemon +noclog 5354/tcp # noclogd with TCP (nocol) +noclog 5354/udp # noclogd with UDP (nocol) +hostmon 5355/tcp # hostmon uses TCP (nocol) +hostmon 5355/udp # hostmon uses UDP (nocol) +rplay 5555/udp # RPlay audio service +rplay 5555/tcp +rptp 5556/udp # Remote Play Transfer Protocol +rptp 5556/tcp +nsca 5667/tcp # Nagios Agent - NSCA +mrtd 5674/tcp # MRT Routing Daemon +bgpsim 5675/tcp # MRT Routing Simulator +canna 5680/tcp # cannaserver +sane-port 6566/tcp sane saned # SANE network scanner daemon +ircd 6667/tcp # Internet Relay Chat +zope-ftp 8021/tcp # zope management by ftp +webcache 8080/tcp # WWW caching service +tproxy 8081/tcp # Transparent Proxy +omniorb 8088/tcp # OmniORB +omniorb 8088/udp +clc-build-daemon 8990/tcp # Common lisp build daemon +xinetd 9098/tcp +mandelspawn 9359/udp mandelbrot # network mandelbrot +git 9418/tcp # Git Version Control System +zope 9673/tcp # zope server +webmin 10000/tcp +kamanda 10081/tcp # amanda backup services (Kerberos) +kamanda 10081/udp +amandaidx 10082/tcp # amanda backup services +amidxtape 10083/tcp # amanda backup services +smsqp 11201/tcp # Alamin SMS gateway +smsqp 11201/udp +xpilot 15345/tcp # XPilot Contact Port +xpilot 15345/udp +sgi-cmsd 17001/udp # Cluster membership services daemon +sgi-crsd 17002/udp +sgi-gcd 17003/udp # SGI Group membership daemon +sgi-cad 17004/tcp # Cluster Admin daemon +isdnlog 20011/tcp # isdn logging system +isdnlog 20011/udp +vboxd 20012/tcp # voice box system +vboxd 20012/udp +binkp 24554/tcp # binkp fidonet protocol +asp 27374/tcp # Address Search Protocol +asp 27374/udp +csync2 30865/tcp # cluster synchronization tool +dircproxy 57000/tcp # Detachable IRC Proxy +tfido 60177/tcp # fidonet EMSI over telnet +fido 60179/tcp # fidonet EMSI over TCP +vnc1 65535/tcp #VNC_inetd +reboot 65534/udp +# Local services |
|
#sudo /etc/init.d/openbsd-inetd restart
sys/ sysrq-trigger sysvipc/ [root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# Restarting internet superserver: inetd. |
|
#pkill -1 inetd
[root@debian1:user]# ls /proc/sys sys/ sysrq-trigger sysvipc/ [root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# |
|
#vim /etc/inetd.conf
|
|
#netstat -lnp | grep 655
[root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# tcp 0 0 0.0.0.0:65535 0.0.0.0:* LISTEN 4213/inetd udp 0 0 0.0.0.0:65534 0.0.0.0:* 4213/inetd |
|
#vim /etc/inetd.conf
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/inetd.conf 2008-02-19 08:46:44.000000000 +0000 @@ -0,0 +1,42 @@ +# /etc/inetd.conf: see inetd(8) for further informations. +# +# Internet superserver configuration database +# +# +# Lines starting with "#:LABEL:" or "#<off>#" should not +# be changed unless you know what you are doing! +# +# If you want to disable an entry so it isn't touched during +# package updates just comment it out with a single '#' character. +# +# Packages should modify this file by using update-inetd(8) +# +# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args> +# +#:INTERNAL: Internal services +#discard stream tcp nowait root internal +#discard dgram udp wait root internal +#daytime stream tcp nowait root internal +#time stream tcp nowait root internal + +#:STANDARD: These are standard services. + +#:BSD: Shell, login, exec and talk are BSD protocols. + +#:MAIL: Mail, news and uucp services. + +#:INFO: Info services + +#:BOOT: TFTP service is provided primarily for booting. Most sites +# run this only on machines acting as "boot servers." + +#:RPC: RPC based services + +#:HAM-RADIO: amateur-radio services + +#:OTHER: Other services + +vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24 + + + |
|
#grep chargen /etc/services
[root@debian1:user]# ls /proc/sys/ debug/ fs/ kernel/ net/ vm/ xen/ [root@debian1:user]# ls /proc/sys/kernel/ acct hostname osrelease printk_ratelimit sh bootloader_type hotplug ostype printk_ratelimit_burst sh cad_pid max_lock_depth overflowgid pty/ sy cap-bound modprobe overflowuid random/ ta core_pattern msgmax panic randomize_va_space th core_uses_pid msgmnb panic_on_oops real-root-dev un ctrl-alt-del msgmni pid_max sem ve domainname ngroups_max printk shmall [root@debian1:user]# ls /proc/sys/kernel/ [root@debian1:user]# [root@debian1:user]# [root@debian1:user]# chargen 19/tcp ttytst source chargen 19/udp ttytst source |
|
#vim /etc/inetd.conf
--- /dev/null 2008-02-18 16:17:15.730715587 +0000 +++ /etc/inetd.conf 2008-02-19 08:47:39.000000000 +0000 @@ -0,0 +1,42 @@ +# /etc/inetd.conf: see inetd(8) for further informations. +# +# Internet superserver configuration database +# +# +# Lines starting with "#:LABEL:" or "#<off>#" should not +# be changed unless you know what you are doing! +# +# If you want to disable an entry so it isn't touched during +# package updates just comment it out with a single '#' character. +# +# Packages should modify this file by using update-inetd(8) +# +# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args> +# +#:INTERNAL: Internal services +#discard stream tcp nowait root internal +#discard dgram udp wait root internal +#daytime stream tcp nowait root internal +#time stream tcp nowait root internal + +#:STANDARD: These are standard services. + +#:BSD: Shell, login, exec and talk are BSD protocols. + +#:MAIL: Mail, news and uucp services. + +#:INFO: Info services + +#:BOOT: TFTP service is provided primarily for booting. Most sites +# run this only on machines acting as "boot servers." + +#:RPC: RPC based services + +#:HAM-RADIO: amateur-radio services + +#:OTHER: Other services + +vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24 + +chargen stream tcp nowait nobody internal + |
0
| Время первой команды журнала | 16:20:52 2008- 2-18 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Время последней команды журнала | 10:46:56 2008- 2-19 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в журнале | 99 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент команд с ненулевым кодом завершения, % | 25.25 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент синтаксически неверно набранных команд, % | 1.01 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Суммарное время работы с терминалом *, час | 1.13 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в единицу времени, команда/мин | 1.47 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Частота использования команд |
|
В журнал автоматически попадают все команды, данные в любом терминале системы.
Для того чтобы убедиться, что журнал на текущем терминале ведётся, и команды записываются, дайте команду w. В поле WHAT, соответствующем текущему терминалу, должна быть указана программа script.
Команды, при наборе которых были допущены синтаксические ошибки, выводятся перечёркнутым текстом:
$ l s-l bash: l: command not found |
Если код завершения команды равен нулю, команда была выполнена без ошибок. Команды, код завершения которых отличен от нуля, выделяются цветом.
$ test 5 -lt 4 |
Команды, ход выполнения которых был прерван пользователем, выделяются цветом.
$ find / -name abc find: /home/devi-orig/.gnome2: Keine Berechtigung find: /home/devi-orig/.gnome2_private: Keine Berechtigung find: /home/devi-orig/.nautilus/metafiles: Keine Berechtigung find: /home/devi-orig/.metacity: Keine Berechtigung find: /home/devi-orig/.inkscape: Keine Berechtigung ^C |
Команды, выполненные с привилегиями суперпользователя, выделяются слева красной чертой.
# id uid=0(root) gid=0(root) Gruppen=0(root) |
Изменения, внесённые в текстовый файл с помощью редактора, запоминаются и показываются в журнале в формате ed. Строки, начинающиеся символом "<", удалены, а строки, начинающиеся символом ">" -- добавлены.
$ vi ~/.bashrc
|
Для того чтобы изменить файл в соответствии с показанными в диффшоте изменениями, можно воспользоваться командой patch. Нужно скопировать изменения, запустить программу patch, указав в качестве её аргумента файл, к которому применяются изменения, и всавить скопированный текст:
$ patch ~/.bashrc |
Для того чтобы получить краткую справочную информацию о команде, нужно подвести к ней мышь. Во всплывающей подсказке появится краткое описание команды.
Если справочная информация о команде есть, команда выделяется голубым фоном, например: vi. Если справочная информация отсутствует, команда выделяется розовым фоном, например: notepad.exe. Справочная информация может отсутствовать в том случае, если (1) команда введена неверно; (2) если распознавание команды LiLaLo выполнено неверно; (3) если информация о команде неизвестна LiLaLo. Последнее возможно для редких команд.
Большие, в особенности многострочные, всплывающие подсказки лучше всего показываются браузерами KDE Konqueror, Apple Safari и Microsoft Internet Explorer. В браузерах Mozilla и Firefox они отображаются не полностью, а вместо перевода строки выводится специальный символ.
Время ввода команды, показанное в журнале, соответствует времени начала ввода командной строки, которое равно тому моменту, когда на терминале появилось приглашение интерпретатора
Имя терминала, на котором была введена команда, показано в специальном блоке. Этот блок показывается только в том случае, если терминал текущей команды отличается от терминала предыдущей.
Вывод не интересующих вас в настоящий момент элементов журнала, таких как время, имя терминала и других, можно отключить. Для этого нужно воспользоваться формой управления журналом вверху страницы.
Небольшие комментарии к командам можно вставлять прямо из командной строки. Комментарий вводится прямо в командную строку, после символов #^ или #v. Символы ^ и v показывают направление выбора команды, к которой относится комментарий: ^ - к предыдущей, v - к следующей. Например, если в командной строке было введено:
$ whoami
user
$ #^ Интересно, кто я?в журнале это будет выглядеть так:
$ whoami
user
| Интересно, кто я? |
Если комментарий содержит несколько строк, его можно вставить в журнал следующим образом:
$ whoami
user
$ cat > /dev/null #^ Интересно, кто я?
Программа whoami выводит имя пользователя, под которым мы зарегистрировались в системе. - Она не может ответить на вопрос о нашем назначении в этом мире.В журнале это будет выглядеть так:
$ whoami user
|
Комментарии, не относящиеся непосредственно ни к какой из команд, добавляются точно таким же способом, только вместо симолов #^ или #v нужно использовать символы #=
1
2
3
4
Группы команд, выполненных на разных терминалах, разделяются специальной линией.
Под этой линией в правом углу показано имя терминала, на котором выполнялись команды.
Для того чтобы посмотреть команды только одного сенса,
нужно щёкнуть по этому названию.
LiLaLo (L3) расшифровывается как Live Lab Log.
Программа разработана для повышения эффективности обучения Unix/Linux-системам.
(c) Игорь Чубин, 2004-2008