/l3/users/18-02-1008/nt-lnet/debian1.unix.nt/root :1 :2 :3 :4 :5 :6 :7 :8 :9 :10 :11 :12 :13 :14 :15
[ править ]

Журнал лабораторных работ

Содержание

Журнал

Вторник (02/19/08)

/dev/ttyp4
10:46:56
#vim /etc/inetd.conf
--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 08:47:39.000000000 +0000
@@ -0,0 +1,42 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+#discard		dgram	udp	wait	root	internal
+#daytime		stream	tcp	nowait	root	internal
+#time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+chargen stream tcp nowait nobody internal
+
10:47:39
#invoke-rc.d 
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
.bash_history                               .gconf/                                     .vnc/
.bash_logout                                .gconfd/                                    .Xauthority
.bash_profile                               .l3rc                                       .xsession-errors
.bashrc                                     .lilalo/                                    Xterm.log.debian1.2008.02.18.11.20.06.1593
.dmrc                                       .mozilla/
.fluxbox/                                   .viminfo
10:47:39
#. /etc/bash_completion
[root@debian1:user]# ls /proc/sys
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
10:48:05
#invoke-rc.d openbsd-inetd restart
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Restarting internet superserver: inetd.
10:48:18
#less /var/log/
10:48:29
#vim .bashrc
10:48:37
#vim .
10:48:37
#vim .bash_profile
--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ .bash_profile	2008-02-19 08:49:15.000000000 +0000
@@ -0,0 +1,19 @@
+l3-agent
+# ~/.bash_profile: executed by bash(1) for login shells.
+# see /usr/share/doc/bash/examples/startup-files for examples.
+# the files are located in the bash-doc package.
+
+# the default umask is set in /etc/login.defs
+#umask 022
+
+# include .bashrc if it exists
+if [ -f ~/.bashrc ]; then
+    . ~/.bashrc
+fi
+
+# set PATH so it includes user's private bin if it exists
+if [ -d ~/bin ] ; then
+    PATH=~/bin:"${PATH}"
+fi
+. .bashrc
+. /etc/bash_completion
10:49:16
#less /var/log/daemon.log
10:49:36
#netstat -lnp | grep :19
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4399/inetd
10:49:45
#telnet m1 19
RSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:
STUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;
TUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<
UVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=
VWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>
WXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?
XYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@
YZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@A
Z[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@AB
[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABC
...
~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdef
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl
&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm
'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn
()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno
10:49:56
#vim /etc/inetd.conf
10:52:04
#invoke-rc.d openbsd-inetd restart
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Restarting internet superserver: inetd.
10:52:15
#netstat -lnp | grep :19
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4652/inetd
10:52:20
#telnet m1 19
wxyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_
xyz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`
yz{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`a
z{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ab
{|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abc
|}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcd
}~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcde
~ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdef
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefgh
"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghi
#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghij
$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijk
%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijkl
&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklm
'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmn
()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmno
10:52:45
#man inetd
10:53:48
#vim /etc/inetd.conf
--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 08:54:14.000000000 +0000
@@ -0,0 +1,42 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+discard		dgram	udp	wait	root	internal
+daytime		stream	tcp	nowait	root	internal
+time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+chargen stream tcp nowait nobody internal
+
10:54:15
#top 
top - 08:54:16 up 16:37,  5 users,  load average: 0.52, 0.43, 0.29
Tasks:  61 total,   1 running,  60 sleeping,   0 stopped,   0 zombie
Cpu(s):  0.4%us,  0.0%sy,  0.0%ni, 99.4%id,  0.2%wa,  0.0%hi,  0.0%si,  0.0%st
Mem:    524436k total,   194220k used,   330216k free,    57276k buffers
  PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND
Swap:        0k total,        0k used,        0k free,    58960k cached
    1 root      15   0  1960  648  552 S  0.0  0.1   0:00.06 init
    2 root      RT   0     0    0    0 S  0.0  0.0   0:00.00 migration/0
    3 root      34  19     0    0    0 S  0.0  0.0   0:00.00 ksoftirqd/0
    4 root      10  -5     0    0    0 S  0.0  0.0   0:00.00 events/0
...
 2466 root      15   0  4712  676  556 S  0.0  0.1   0:00.00 script
 2470 root      17   0 11288 6532 1404 S  0.0  1.2   3:00.81 l3-agent
 2471 root      15   0  7872 2364 1916 S  0.0  0.5   0:00.17 sshd
 2503 root      15   0  4716  464  336 S  0.0  0.1   0:00.08 script
 2504 root      15   0  5784 1780 1348 S  0.0  0.3   0:00.02 bash
 2533 root      15   0  4716  680  556 S  0.0  0.1   0:00.01 script
 2604 user      16   0 11120 6316 1404 S  0.0  1.2   0:53.99 l3-agent
 2854 root      15   0  4720  468  336 S  0.0  0.1   0:00.07 script
 2855 root      15   0  5780 1784 1352 S  0.0  0.3   0:00.00 bash
 2958 nobody    15   0 16960  12m 1492 S  0.0  2.5   0:04.19 Xvnc
10:54:18
#invoke-rc.d openbsd-inetd restart
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Restarting internet superserver: inetd.
10:54:28
#netstat -lnp | grep inetd
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd
10:54:33
#grep 9 /etc/services
swat            901/tcp                         # swat
kpop            1109/tcp                        # Pop with Kerberos
linuxconf       98/tcp                          # LinuxConf
moira_ureg      779/udp                         # Moira user registration
support         1529/tcp                        # GNATS
afbackup        2988/tcp                        # Afbackup system
afbackup        2988/udp
afmbackup       2989/tcp                        # Afmbackup system
afmbackup       2989/udp
hylafax         4559/tcp                        # HylaFAX client-server protocol (new)
munin           4949/tcp        lrrd            # Munin
clc-build-daemon 8990/tcp                       # Common lisp build daemon
xinetd          9098/tcp
mandelspawn     9359/udp        mandelbrot      # network mandelbrot
git             9418/tcp                        # Git Version Control System
zope            9673/tcp                        # zope server
fido            60179/tcp                       # fidonet EMSI over TCP
10:54:48
#grep 9\/ /etc/services
iax             4569/tcp                        # Inter-Asterisk eXchange
iax             4569/udp
radmin-port     4899/tcp                        # RAdmin Port
radmin-port     4899/udp
xmpp-server     5269/tcp        jabber-server   # Jabber Server Connection
xmpp-server     5269/udp        jabber-server
afs3-rmtsys     7009/tcp                        # remote cache manager service
afs3-rmtsys     7009/udp
kpop            1109/tcp                        # Pop with Kerberos
moira_ureg      779/udp                         # Moira user registration
support         1529/tcp                        # GNATS
afmbackup       2989/tcp                        # Afmbackup system
afmbackup       2989/udp
hylafax         4559/tcp                        # HylaFAX client-server protocol (new)
munin           4949/tcp        lrrd            # Munin
mandelspawn     9359/udp        mandelbrot      # network mandelbrot
fido            60179/tcp                       # fidonet EMSI over TCP
10:54:57
#grep \ 9\/ /etc/services 
[root@debian1:user]# ls /proc/sys
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
10:55:05
#grep 9\/ /etc/services | less
10:55:28
#q 
bash: q: command not found
10:55:29
#grep 9\/ /etc/services 










10:55:32




#telnet m1 9





Trying 192.168.16.201...
telnet: Unable to connect to remote host: Connection refused











10:55:37




#grep \ 9\/ /etc/services





[root@debian1:user]# ls /proc/sys
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#











10:55:48




#less /etc/services










10:56:04




#netstat -lnp | grep inetd


tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











10:56:07




#less /etc/services










10:56:14




#telnet m1 37





Trying 192.168.16.201...
Connected to m1.unix.nt.
Escape character is '^]'.
Ëe2Connection closed by foreign host.











10:56:18




#LANG=C telnet m1 37





[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Trying 192.168.16.201...
Connected to m1.unix.nt.
Escape character is '^]'.
Ëe>Connection closed by foreign host.











10:56:30




#date


sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Вто Фев 19 08:56:41 UTC 2008











10:56:41




#netstat -lnp | grep inetd


acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











10:57:01




#less /etc/services










10:57:09




#telnet m1 13





Trying 192.168.16.201...
Connected to m1.unix.nt.
Escape character is '^]'.
Tue Feb 19 08:57:15 2008
Connection closed by foreign host.











10:57:15




#netstat -lnp | grep inetd


acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











10:57:32




#less /etc/services










10:57:39




#netstat -lnp | grep inetd


tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











10:57:44




#man bash\










10:59:26




#vim /etc/services


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/services	2008-02-19 08:59:49.000000000 +0000
@@ -0,0 +1,558 @@
+# Network services, Internet style
+#
+# Note that it is presently the policy of IANA to assign a single well-known
+# port number for both TCP and UDP; hence, officially ports have two entries
+# even if the protocol doesn't support UDP operations.
+#
+# Updated from http://www.iana.org/assignments/port-numbers and other
+# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services .
+# New ports will be added on request if they have been officially assigned
+# by IANA and used in the real-world or are needed by a debian package.
+# If you need a huge list of used numbers please install the nmap package.
+
+tcpmux		1/tcp				# TCP port service multiplexer
+echo		7/tcp
+echo		7/udp
+discard		9/tcp		sink null
+discard		9/udp		sink null
+systat		11/tcp		users
+daytime		13/tcp
+daytime		13/udp
+netstat		15/tcp
+qotd		17/tcp		quote
+msp		18/tcp				# message send protocol
+msp		18/udp
+chargen		19/tcp		ttytst source
+chargen		19/udp		ttytst source
+ftp-data	20/tcp
+ftp		21/tcp
+fsp		21/udp		fspd
+ssh		22/tcp				# SSH Remote Login Protocol
+ssh		22/udp
+telnet		23/tcp
+smtp		25/tcp		mail
+time		37/tcp		timserver
+time		37/udp		timserver
+rlp		39/udp		resource	# resource location
+nameserver	42/tcp		name		# IEN 116
+whois		43/tcp		nicname
+tacacs		49/tcp				# Login Host Protocol (TACACS)
+tacacs		49/udp
+re-mail-ck	50/tcp				# Remote Mail Checking Protocol
+re-mail-ck	50/udp
+domain		53/tcp				# name-domain server
+domain		53/udp
+mtp		57/tcp				# deprecated
+tacacs-ds	65/tcp				# TACACS-Database Service
+tacacs-ds	65/udp
+bootps		67/tcp				# BOOTP server
+bootps		67/udp
+bootpc		68/tcp				# BOOTP client
+bootpc		68/udp
+tftp		69/udp
+gopher		70/tcp				# Internet Gopher
+gopher		70/udp
+rje		77/tcp		netrjs
+finger		79/tcp
+www		80/tcp		http		# WorldWideWeb HTTP
+www		80/udp				# HyperText Transfer Protocol
+link		87/tcp		ttylink
+kerberos	88/tcp		kerberos5 krb5 kerberos-sec	# Kerberos v5
+kerberos	88/udp		kerberos5 krb5 kerberos-sec	# Kerberos v5
+supdup		95/tcp
+hostnames	101/tcp		hostname	# usually from sri-nic
+iso-tsap	102/tcp		tsap		# part of ISODE
+acr-nema	104/tcp		dicom		# Digital Imag. & Comm. 300
+acr-nema	104/udp		dicom		# Digital Imag. & Comm. 300
+csnet-ns	105/tcp		cso-ns		# also used by CSO name server
+csnet-ns	105/udp		cso-ns
+rtelnet		107/tcp				# Remote Telnet
+rtelnet		107/udp
+pop2		109/tcp		postoffice pop-2 # POP version 2
+pop2		109/udp		pop-2
+pop3		110/tcp		pop-3		# POP version 3
+pop3		110/udp		pop-3
+sunrpc		111/tcp		portmapper	# RPC 4.0 portmapper
+sunrpc		111/udp		portmapper
+auth		113/tcp		authentication tap ident
+sftp		115/tcp
+uucp-path	117/tcp
+nntp		119/tcp		readnews untp	# USENET News Transfer Protocol
+ntp		123/tcp
+ntp		123/udp				# Network Time Protocol
+pwdgen		129/tcp				# PWDGEN service
+pwdgen		129/udp				# PWDGEN service
+loc-srv		135/tcp		epmap		# Location Service
+loc-srv		135/udp		epmap
+netbios-ns	137/tcp				# NETBIOS Name Service
+netbios-ns	137/udp
+netbios-dgm	138/tcp				# NETBIOS Datagram Service
+netbios-dgm	138/udp
+netbios-ssn	139/tcp				# NETBIOS session service
+netbios-ssn	139/udp
+imap2		143/tcp		imap		# Interim Mail Access P 2 and 4
+imap2		143/udp		imap
+snmp		161/tcp				# Simple Net Mgmt Protocol
+snmp		161/udp				# Simple Net Mgmt Protocol
+snmp-trap	162/tcp		snmptrap	# Traps for SNMP
+snmp-trap	162/udp		snmptrap	# Traps for SNMP
+cmip-man	163/tcp				# ISO mgmt over IP (CMOT)
+cmip-man	163/udp
+cmip-agent	164/tcp
+cmip-agent	164/udp
+mailq		174/tcp			# Mailer transport queue for Zmailer
+mailq		174/udp			# Mailer transport queue for Zmailer
+xdmcp		177/tcp				# X Display Mgr. Control Proto
+xdmcp		177/udp
+nextstep	178/tcp		NeXTStep NextStep	# NeXTStep window
+nextstep	178/udp		NeXTStep NextStep	#  server
+bgp		179/tcp				# Border Gateway Protocol
+bgp		179/udp
+prospero	191/tcp				# Cliff Neuman's Prospero
+prospero	191/udp
+irc		194/tcp				# Internet Relay Chat
+irc		194/udp
+smux		199/tcp				# SNMP Unix Multiplexer
+smux		199/udp
+at-rtmp		201/tcp				# AppleTalk routing
+at-rtmp		201/udp
+at-nbp		202/tcp				# AppleTalk name binding
+at-nbp		202/udp
+at-echo		204/tcp				# AppleTalk echo
+at-echo		204/udp
+at-zis		206/tcp				# AppleTalk zone information
+at-zis		206/udp
+qmtp		209/tcp				# Quick Mail Transfer Protocol
+qmtp		209/udp				# Quick Mail Transfer Protocol
+z3950		210/tcp		wais		# NISO Z39.50 database
+z3950		210/udp		wais
+ipx		213/tcp				# IPX
+ipx		213/udp
+imap3		220/tcp				# Interactive Mail Access
+imap3		220/udp				# Protocol v3
+pawserv		345/tcp				# Perf Analysis Workbench
+pawserv		345/udp
+zserv		346/tcp				# Zebra server
+zserv		346/udp
+fatserv		347/tcp				# Fatmen Server
+fatserv		347/udp
+rpc2portmap	369/tcp
+rpc2portmap	369/udp				# Coda portmapper
+codaauth2	370/tcp
+codaauth2	370/udp				# Coda authentication server
+clearcase	371/tcp		Clearcase
+clearcase	371/udp		Clearcase
+ulistserv	372/tcp				# UNIX Listserv
+ulistserv	372/udp
+ldap		389/tcp			# Lightweight Directory Access Protocol
+ldap		389/udp
+imsp		406/tcp			# Interactive Mail Support Protocol
+imsp		406/udp
+https		443/tcp				# http protocol over TLS/SSL
+https		443/udp
+snpp		444/tcp				# Simple Network Paging Protocol
+snpp		444/udp
+microsoft-ds	445/tcp				# Microsoft Naked CIFS
+microsoft-ds	445/udp
+kpasswd		464/tcp
+kpasswd		464/udp
+saft		487/tcp			# Simple Asynchronous File Transfer
+saft		487/udp
+isakmp		500/tcp			# IPsec - Internet Security Association
+isakmp		500/udp			#  and Key Management Protocol
+rtsp		554/tcp			# Real Time Stream Control Protocol
+rtsp		554/udp			# Real Time Stream Control Protocol
+nqs		607/tcp				# Network Queuing system
+nqs		607/udp
+npmp-local	610/tcp		dqs313_qmaster		# npmp-local / DQS
+npmp-local	610/udp		dqs313_qmaster
+npmp-gui	611/tcp		dqs313_execd		# npmp-gui / DQS
+npmp-gui	611/udp		dqs313_execd
+hmmp-ind	612/tcp		dqs313_intercell	# HMMP Indication / DQS
+hmmp-ind	612/udp		dqs313_intercell
+ipp		631/tcp				# Internet Printing Protocol
+ipp		631/udp
+#
+# UNIX specific services
+#
+exec		512/tcp
+biff		512/udp		comsat
+login		513/tcp
+who		513/udp		whod
+shell		514/tcp		cmd		# no passwords used
+syslog		514/udp
+printer		515/tcp		spooler		# line printer spooler
+talk		517/udp
+ntalk		518/udp
+route		520/udp		router routed	# RIP
+timed		525/udp		timeserver
+tempo		526/tcp		newdate
+courier		530/tcp		rpc
+conference	531/tcp		chat
+netnews		532/tcp		readnews
+netwall		533/udp				# for emergency broadcasts
+gdomap		538/tcp				# GNUstep distributed objects
+gdomap		538/udp
+uucp		540/tcp		uucpd		# uucp daemon
+klogin		543/tcp				# Kerberized `rlogin' (v5)
+kshell		544/tcp		krcmd		# Kerberized `rsh' (v5)
+afpovertcp	548/tcp				# AFP over TCP
+afpovertcp	548/udp
+remotefs	556/tcp		rfs_server rfs	# Brunhoff remote filesystem
+nntps		563/tcp		snntp		# NNTP over SSL
+nntps		563/udp		snntp
+submission	587/tcp				# Submission [RFC2476]
+submission	587/udp
+ldaps		636/tcp				# LDAP over SSL
+ldaps		636/udp
+tinc		655/tcp				# tinc control port
+tinc		655/udp
+silc		706/tcp
+silc		706/udp
+kerberos-adm	749/tcp				# Kerberos `kadmin' (v5)
+#
+webster		765/tcp				# Network dictionary
+webster		765/udp
+rsync		873/tcp
+rsync		873/udp
+ftps-data	989/tcp				# FTP over SSL (data)
+ftps		990/tcp
+telnets		992/tcp				# Telnet over SSL
+telnets		992/udp
+imaps		993/tcp				# IMAP over SSL
+imaps		993/udp
+ircs		994/tcp				# IRC over SSL
+ircs		994/udp
+pop3s		995/tcp				# POP-3 over SSL
+pop3s		995/udp
+#
+# From ``Assigned Numbers'':
+#
+#> The Registered Ports are not controlled by the IANA and on most systems
+#> can be used by ordinary user processes or programs executed by ordinary
+#> users.
+#
+#> Ports are used in the TCP [45,106] to name the ends of logical
+#> connections which carry long term conversations.  For the purpose of
+#> providing services to unknown callers, a service contact port is
+#> defined.  This list specifies the port used by the server process as its
+#> contact port.  While the IANA can not control uses of these ports it
+#> does register or list uses of these ports as a convienence to the
+#> community.
+#
+socks		1080/tcp			# socks proxy server
+socks		1080/udp
+proofd		1093/tcp
+proofd		1093/udp
+rootd		1094/tcp
+rootd		1094/udp
+openvpn		1194/tcp
+openvpn		1194/udp
+rmiregistry	1099/tcp			# Java RMI Registry
+rmiregistry	1099/udp
+kazaa		1214/tcp
+kazaa		1214/udp
+nessus		1241/tcp			# Nessus vulnerability
+nessus		1241/udp			#  assessment scanner
+lotusnote	1352/tcp	lotusnotes	# Lotus Note
+lotusnote	1352/udp	lotusnotes
+ms-sql-s	1433/tcp			# Microsoft SQL Server
+ms-sql-s	1433/udp
+ms-sql-m	1434/tcp			# Microsoft SQL Monitor
+ms-sql-m	1434/udp
+ingreslock	1524/tcp
+ingreslock	1524/udp
+prospero-np	1525/tcp			# Prospero non-privileged
+prospero-np	1525/udp
+datametrics	1645/tcp	old-radius
+datametrics	1645/udp	old-radius
+sa-msg-port	1646/tcp	old-radacct
+sa-msg-port	1646/udp	old-radacct
+kermit		1649/tcp
+kermit		1649/udp
+l2f		1701/tcp	l2tp
+l2f		1701/udp	l2tp
+radius		1812/tcp
+radius		1812/udp
+radius-acct	1813/tcp	radacct		# Radius Accounting
+radius-acct	1813/udp	radacct
+msnp		1863/tcp			# MSN Messenger
+msnp		1863/udp
+unix-status	1957/tcp			# remstats unix-status server
+log-server	1958/tcp			# remstats log server
+remoteping	1959/tcp			# remstats remoteping server
+nfs		2049/tcp			# Network File System
+nfs		2049/udp			# Network File System
+rtcm-sc104	2101/tcp			# RTCM SC-104 IANA 1/29/99
+rtcm-sc104	2101/udp
+cvspserver	2401/tcp			# CVS client/server operations
+cvspserver	2401/udp
+venus		2430/tcp			# codacon port
+venus		2430/udp			# Venus callback/wbc interface
+venus-se	2431/tcp			# tcp side effects
+venus-se	2431/udp			# udp sftp side effect
+codasrv		2432/tcp			# not used
+codasrv		2432/udp			# server port
+codasrv-se	2433/tcp			# tcp side effects
+codasrv-se	2433/udp			# udp sftp side effect
+mon		2583/tcp			# MON
+mon		2583/udp
+dict		2628/tcp			# Dictionary server
+dict		2628/udp
+gpsd		2947/tcp
+gpsd		2947/udp
+gds_db		3050/tcp			# InterBase server
+gds_db		3050/udp
+icpv2		3130/tcp	icp		# Internet Cache Protocol
+icpv2		3130/udp	icp
+mysql		3306/tcp
+mysql		3306/udp
+nut		3493/tcp			# Network UPS Tools
+nut		3493/udp
+distcc		3632/tcp			# distributed compiler
+distcc		3632/udp
+daap		3689/tcp			# Digital Audio Access Protocol
+daap		3689/udp
+svn		3690/tcp	subversion	# Subversion protocol
+svn		3690/udp	subversion
+suucp		4013/tcp			# UUCP over SSL
+suucp		4013/udp			# UUCP over SSL
+sysrqd		4094/tcp			# sysrq daemon
+sysrqd		4094/udp			# sysrq daemon
+iax		4569/tcp			# Inter-Asterisk eXchange
+iax		4569/udp
+radmin-port	4899/tcp			# RAdmin Port
+radmin-port	4899/udp
+rfe		5002/udp			# Radio Free Ethernet
+rfe		5002/tcp
+mmcc		5050/tcp	# multimedia conference control tool (Yahoo IM)
+mmcc		5050/udp
+sip		5060/tcp			# Session Initiation Protocol
+sip		5060/udp
+sip-tls		5061/tcp
+sip-tls		5061/udp
+aol		5190/tcp			# AIM
+aol		5190/udp
+xmpp-client	5222/tcp	jabber-client	# Jabber Client Connection
+xmpp-client	5222/udp	jabber-client
+xmpp-server	5269/tcp	jabber-server	# Jabber Server Connection
+xmpp-server	5269/udp	jabber-server
+cfengine	5308/tcp
+cfengine	5308/udp
+mdns		5353/tcp			# Multicast DNS
+mdns		5353/udp			# Multicast DNS
+postgresql	5432/tcp	postgres	# PostgreSQL Database
+postgresql	5432/udp	postgres
+ggz		5688/tcp			# GGZ Gaming Zone
+ggz		5688/udp			# GGZ Gaming Zone
+x11		6000/tcp	x11-0		# X Window System
+x11		6000/udp	x11-0
+x11-1		6001/tcp
+x11-1		6001/udp
+x11-2		6002/tcp
+x11-2		6002/udp
+x11-3		6003/tcp
+x11-3		6003/udp
+x11-4		6004/tcp
+x11-4		6004/udp
+x11-5		6005/tcp
+x11-5		6005/udp
+x11-6		6006/tcp
+x11-6		6006/udp
+x11-7		6007/tcp
+x11-7		6007/udp
+gnutella-svc	6346/tcp			# gnutella
+gnutella-svc	6346/udp
+gnutella-rtr	6347/tcp			# gnutella 
+gnutella-rtr	6347/udp
+sge_qmaster	6444/tcp			# Grid Engine Qmaster Service
+sge_qmaster	6444/udp			# Grid Engine Qmaster Service
+sge_execd	6445/tcp			# Grid Engine Execution Service
+sge_execd	6445/udp			# Grid Engine Execution Service
+afs3-fileserver 7000/tcp	bbs		# file server itself
+afs3-fileserver 7000/udp	bbs
+afs3-callback	7001/tcp			# callbacks to cache managers
+afs3-callback	7001/udp
+afs3-prserver	7002/tcp			# users & groups database
+afs3-prserver	7002/udp
+afs3-vlserver	7003/tcp			# volume location database
+afs3-vlserver	7003/udp
+afs3-kaserver	7004/tcp			# AFS/Kerberos authentication
+afs3-kaserver	7004/udp
+afs3-volser	7005/tcp			# volume managment server
+afs3-volser	7005/udp
+afs3-errors	7006/tcp			# error interpretation service
+afs3-errors	7006/udp
+afs3-bos	7007/tcp			# basic overseer process
+afs3-bos	7007/udp
+afs3-update	7008/tcp			# server-to-server updater
+afs3-update	7008/udp
+afs3-rmtsys	7009/tcp			# remote cache manager service
+afs3-rmtsys	7009/udp
+font-service	7100/tcp	xfs		# X Font Service
+font-service	7100/udp	xfs
+bacula-dir	9101/tcp			# Bacula Director
+bacula-dir	9101/udp
+bacula-fd	9102/tcp			# Bacula File Daemon
+bacula-fd	9102/udp
+bacula-sd	9103/tcp			# Bacula Storage Daemon
+bacula-sd	9103/udp
+amanda		10080/tcp			# amanda backup services
+amanda		10080/udp
+hkp		11371/tcp			# OpenPGP HTTP Keyserver
+hkp		11371/udp			# OpenPGP HTTP Keyserver
+bprd		13720/tcp			# VERITAS NetBackup
+bprd		13720/udp
+bpdbm		13721/tcp			# VERITAS NetBackup
+bpdbm		13721/udp
+bpjava-msvc	13722/tcp			# BP Java MSVC Protocol
+bpjava-msvc	13722/udp
+vnetd		13724/tcp			# Veritas Network Utility
+vnetd		13724/udp
+bpcd		13782/tcp			# VERITAS NetBackup
+bpcd		13782/udp
+vopied		13783/tcp			# VERITAS NetBackup
+vopied		13783/udp
+wnn6		22273/tcp			# wnn6
+wnn6		22273/udp
+
+#
+# Datagram Delivery Protocol services
+#
+rtmp		1/ddp			# Routing Table Maintenance Protocol
+nbp		2/ddp			# Name Binding Protocol
+echo		4/ddp			# AppleTalk Echo Protocol
+zip		6/ddp			# Zone Information Protocol
+
+#=========================================================================
+# The remaining port numbers are not as allocated by IANA.
+#=========================================================================
+
+# Kerberos (Project Athena/MIT) services
+# Note that these are for Kerberos v4, and are unofficial.  Sites running
+# v4 should uncomment these and comment out the v5 entries above.
+#
+kerberos4	750/udp		kerberos-iv kdc	# Kerberos (server)
+kerberos4	750/tcp		kerberos-iv kdc
+kerberos_master	751/udp				# Kerberos authentication
+kerberos_master	751/tcp	
+passwd_server	752/udp				# Kerberos passwd server
+krb_prop	754/tcp		krb5_prop hprop	# Kerberos slave propagation
+krbupdate	760/tcp		kreg		# Kerberos registration
+swat		901/tcp				# swat
+kpop		1109/tcp			# Pop with Kerberos
+knetd		2053/tcp			# Kerberos de-multiplexor
+zephyr-srv	2102/udp			# Zephyr server
+zephyr-clt	2103/udp			# Zephyr serv-hm connection
+zephyr-hm	2104/udp			# Zephyr hostmanager
+eklogin		2105/tcp			# Kerberos encrypted rlogin
+# Hmmm. Are we using Kv4 or Kv5 now? Worrying.
+# The following is probably Kerberos v5  --- ajt@debian.org (11/02/2000)
+kx		2111/tcp			# X over Kerberos
+iprop		2121/tcp			# incremental propagation
+#
+# Unofficial but necessary (for NetBSD) services
+#
+supfilesrv	871/tcp				# SUP server
+supfiledbg	1127/tcp			# SUP debugging
+
+#
+# Services added for the Debian GNU/Linux distribution
+#
+linuxconf	98/tcp				# LinuxConf
+poppassd	106/tcp				# Eudora
+poppassd	106/udp
+ssmtp		465/tcp		smtps		# SMTP over SSL
+moira_db	775/tcp				# Moira database
+moira_update	777/tcp				# Moira update protocol
+moira_ureg	779/udp				# Moira user registration
+spamd		783/tcp				# spamassassin daemon
+omirr		808/tcp		omirrd		# online mirror
+omirr		808/udp		omirrd
+customs		1001/tcp			# pmake customs server
+customs		1001/udp
+skkserv		1178/tcp			# skk jisho server port
+predict		1210/udp			# predict -- satellite tracking
+rmtcfg		1236/tcp			# Gracilis Packeten remote config server
+wipld		1300/tcp			# Wipl network monitor
+xtel		1313/tcp			# french minitel
+xtelw		1314/tcp			# french minitel
+support		1529/tcp			# GNATS
+sieve		2000/tcp			# Sieve mail filter daemon
+cfinger		2003/tcp			# GNU Finger
+ndtp		2010/tcp			# Network dictionary transfer protocol
+frox		2121/tcp			# frox: caching ftp proxy
+ninstall	2150/tcp			# ninstall service
+ninstall	2150/udp
+zebrasrv	2600/tcp			# zebra service
+zebra		2601/tcp			# zebra vty
+ripd		2602/tcp			# ripd vty (zebra)
+ripngd		2603/tcp			# ripngd vty (zebra)
+ospfd		2604/tcp			# ospfd vty (zebra)
+bgpd		2605/tcp			# bgpd vty (zebra)
+ospf6d		2606/tcp			# ospf6d vty (zebra)
+ospfapi		2607/tcp			# OSPF-API
+isisd		2608/tcp			# ISISd vty (zebra)
+afbackup	2988/tcp			# Afbackup system
+afbackup	2988/udp
+afmbackup	2989/tcp			# Afmbackup system
+afmbackup	2989/udp
+xtell		4224/tcp			# xtell server
+fax		4557/tcp			# FAX transmission service (old)
+hylafax		4559/tcp			# HylaFAX client-server protocol (new)
+distmp3		4600/tcp			# distmp3host daemon
+munin		4949/tcp	lrrd		# Munin
+enbd-cstatd	5051/tcp			# ENBD client statd
+enbd-sstatd	5052/tcp			# ENBD server statd
+pcrd		5151/tcp			# PCR-1000 Daemon
+noclog		5354/tcp			# noclogd with TCP (nocol)
+noclog		5354/udp			# noclogd with UDP (nocol)
+hostmon		5355/tcp			# hostmon uses TCP (nocol)
+hostmon		5355/udp			# hostmon uses UDP (nocol)
+rplay		5555/udp			# RPlay audio service
+rplay		5555/tcp
+rptp		5556/udp			# Remote Play Transfer Protocol
+rptp		5556/tcp
+nsca		5667/tcp			# Nagios Agent - NSCA
+mrtd		5674/tcp			# MRT Routing Daemon
+bgpsim		5675/tcp			# MRT Routing Simulator
+canna		5680/tcp			# cannaserver
+sane-port	6566/tcp	sane saned	# SANE network scanner daemon
+ircd		6667/tcp			# Internet Relay Chat
+zope-ftp	8021/tcp			# zope management by ftp
+webcache	8080/tcp			# WWW caching service
+tproxy		8081/tcp			# Transparent Proxy
+omniorb		8088/tcp			# OmniORB
+omniorb		8088/udp
+clc-build-daemon 8990/tcp			# Common lisp build daemon
+xinetd		9098/tcp
+mandelspawn	9359/udp	mandelbrot	# network mandelbrot
+git		9418/tcp			# Git Version Control System
+zope		9673/tcp			# zope server
+webmin		10000/tcp
+kamanda		10081/tcp			# amanda backup services (Kerberos)
+kamanda		10081/udp
+amandaidx	10082/tcp			# amanda backup services
+amidxtape	10083/tcp			# amanda backup services
+smsqp		11201/tcp			# Alamin SMS gateway
+smsqp		11201/udp
+xpilot		15345/tcp			# XPilot Contact Port
+xpilot		15345/udp
+sgi-cmsd	17001/udp		# Cluster membership services daemon
+sgi-crsd	17002/udp
+sgi-gcd		17003/udp			# SGI Group membership daemon
+sgi-cad		17004/tcp			# Cluster Admin daemon
+isdnlog		20011/tcp			# isdn logging system
+isdnlog		20011/udp
+vboxd		20012/tcp			# voice box system
+vboxd		20012/udp
+binkp		24554/tcp			# binkp fidonet protocol
+asp		27374/tcp			# Address Search Protocol
+asp		27374/udp
+csync2		30865/tcp			# cluster synchronization tool
+dircproxy	57000/tcp			# Detachable IRC Proxy
+tfido		60177/tcp			# fidonet EMSI over telnet
+fido		60179/tcp			# fidonet EMSI over TCP
+vnc1		65535/tcp                       #VNC_inetd
+bash		65534/udp
+# Local services









10:59:50




#vim /etc/services


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/services	2008-02-19 09:00:02.000000000 +0000
@@ -0,0 +1,558 @@
+# Network services, Internet style
+#
+# Note that it is presently the policy of IANA to assign a single well-known
+# port number for both TCP and UDP; hence, officially ports have two entries
+# even if the protocol doesn't support UDP operations.
+#
+# Updated from http://www.iana.org/assignments/port-numbers and other
+# sources like http://www.freebsd.org/cgi/cvsweb.cgi/src/etc/services .
+# New ports will be added on request if they have been officially assigned
+# by IANA and used in the real-world or are needed by a debian package.
+# If you need a huge list of used numbers please install the nmap package.
+
+tcpmux		1/tcp				# TCP port service multiplexer
+echo		7/tcp
+echo		7/udp
+discard		9/tcp		sink null
+discard		9/udp		sink null
+systat		11/tcp		users
+daytime		13/tcp
+daytime		13/udp
+netstat		15/tcp
+qotd		17/tcp		quote
+msp		18/tcp				# message send protocol
+msp		18/udp
+chargen		19/tcp		ttytst source
+chargen		19/udp		ttytst source
+ftp-data	20/tcp
+ftp		21/tcp
+fsp		21/udp		fspd
+ssh		22/tcp				# SSH Remote Login Protocol
+ssh		22/udp
+telnet		23/tcp
+smtp		25/tcp		mail
+time		37/tcp		timserver
+time		37/udp		timserver
+rlp		39/udp		resource	# resource location
+nameserver	42/tcp		name		# IEN 116
+whois		43/tcp		nicname
+tacacs		49/tcp				# Login Host Protocol (TACACS)
+tacacs		49/udp
+re-mail-ck	50/tcp				# Remote Mail Checking Protocol
+re-mail-ck	50/udp
+domain		53/tcp				# name-domain server
+domain		53/udp
+mtp		57/tcp				# deprecated
+tacacs-ds	65/tcp				# TACACS-Database Service
+tacacs-ds	65/udp
+bootps		67/tcp				# BOOTP server
+bootps		67/udp
+bootpc		68/tcp				# BOOTP client
+bootpc		68/udp
+tftp		69/udp
+gopher		70/tcp				# Internet Gopher
+gopher		70/udp
+rje		77/tcp		netrjs
+finger		79/tcp
+www		80/tcp		http		# WorldWideWeb HTTP
+www		80/udp				# HyperText Transfer Protocol
+link		87/tcp		ttylink
+kerberos	88/tcp		kerberos5 krb5 kerberos-sec	# Kerberos v5
+kerberos	88/udp		kerberos5 krb5 kerberos-sec	# Kerberos v5
+supdup		95/tcp
+hostnames	101/tcp		hostname	# usually from sri-nic
+iso-tsap	102/tcp		tsap		# part of ISODE
+acr-nema	104/tcp		dicom		# Digital Imag. & Comm. 300
+acr-nema	104/udp		dicom		# Digital Imag. & Comm. 300
+csnet-ns	105/tcp		cso-ns		# also used by CSO name server
+csnet-ns	105/udp		cso-ns
+rtelnet		107/tcp				# Remote Telnet
+rtelnet		107/udp
+pop2		109/tcp		postoffice pop-2 # POP version 2
+pop2		109/udp		pop-2
+pop3		110/tcp		pop-3		# POP version 3
+pop3		110/udp		pop-3
+sunrpc		111/tcp		portmapper	# RPC 4.0 portmapper
+sunrpc		111/udp		portmapper
+auth		113/tcp		authentication tap ident
+sftp		115/tcp
+uucp-path	117/tcp
+nntp		119/tcp		readnews untp	# USENET News Transfer Protocol
+ntp		123/tcp
+ntp		123/udp				# Network Time Protocol
+pwdgen		129/tcp				# PWDGEN service
+pwdgen		129/udp				# PWDGEN service
+loc-srv		135/tcp		epmap		# Location Service
+loc-srv		135/udp		epmap
+netbios-ns	137/tcp				# NETBIOS Name Service
+netbios-ns	137/udp
+netbios-dgm	138/tcp				# NETBIOS Datagram Service
+netbios-dgm	138/udp
+netbios-ssn	139/tcp				# NETBIOS session service
+netbios-ssn	139/udp
+imap2		143/tcp		imap		# Interim Mail Access P 2 and 4
+imap2		143/udp		imap
+snmp		161/tcp				# Simple Net Mgmt Protocol
+snmp		161/udp				# Simple Net Mgmt Protocol
+snmp-trap	162/tcp		snmptrap	# Traps for SNMP
+snmp-trap	162/udp		snmptrap	# Traps for SNMP
+cmip-man	163/tcp				# ISO mgmt over IP (CMOT)
+cmip-man	163/udp
+cmip-agent	164/tcp
+cmip-agent	164/udp
+mailq		174/tcp			# Mailer transport queue for Zmailer
+mailq		174/udp			# Mailer transport queue for Zmailer
+xdmcp		177/tcp				# X Display Mgr. Control Proto
+xdmcp		177/udp
+nextstep	178/tcp		NeXTStep NextStep	# NeXTStep window
+nextstep	178/udp		NeXTStep NextStep	#  server
+bgp		179/tcp				# Border Gateway Protocol
+bgp		179/udp
+prospero	191/tcp				# Cliff Neuman's Prospero
+prospero	191/udp
+irc		194/tcp				# Internet Relay Chat
+irc		194/udp
+smux		199/tcp				# SNMP Unix Multiplexer
+smux		199/udp
+at-rtmp		201/tcp				# AppleTalk routing
+at-rtmp		201/udp
+at-nbp		202/tcp				# AppleTalk name binding
+at-nbp		202/udp
+at-echo		204/tcp				# AppleTalk echo
+at-echo		204/udp
+at-zis		206/tcp				# AppleTalk zone information
+at-zis		206/udp
+qmtp		209/tcp				# Quick Mail Transfer Protocol
+qmtp		209/udp				# Quick Mail Transfer Protocol
+z3950		210/tcp		wais		# NISO Z39.50 database
+z3950		210/udp		wais
+ipx		213/tcp				# IPX
+ipx		213/udp
+imap3		220/tcp				# Interactive Mail Access
+imap3		220/udp				# Protocol v3
+pawserv		345/tcp				# Perf Analysis Workbench
+pawserv		345/udp
+zserv		346/tcp				# Zebra server
+zserv		346/udp
+fatserv		347/tcp				# Fatmen Server
+fatserv		347/udp
+rpc2portmap	369/tcp
+rpc2portmap	369/udp				# Coda portmapper
+codaauth2	370/tcp
+codaauth2	370/udp				# Coda authentication server
+clearcase	371/tcp		Clearcase
+clearcase	371/udp		Clearcase
+ulistserv	372/tcp				# UNIX Listserv
+ulistserv	372/udp
+ldap		389/tcp			# Lightweight Directory Access Protocol
+ldap		389/udp
+imsp		406/tcp			# Interactive Mail Support Protocol
+imsp		406/udp
+https		443/tcp				# http protocol over TLS/SSL
+https		443/udp
+snpp		444/tcp				# Simple Network Paging Protocol
+snpp		444/udp
+microsoft-ds	445/tcp				# Microsoft Naked CIFS
+microsoft-ds	445/udp
+kpasswd		464/tcp
+kpasswd		464/udp
+saft		487/tcp			# Simple Asynchronous File Transfer
+saft		487/udp
+isakmp		500/tcp			# IPsec - Internet Security Association
+isakmp		500/udp			#  and Key Management Protocol
+rtsp		554/tcp			# Real Time Stream Control Protocol
+rtsp		554/udp			# Real Time Stream Control Protocol
+nqs		607/tcp				# Network Queuing system
+nqs		607/udp
+npmp-local	610/tcp		dqs313_qmaster		# npmp-local / DQS
+npmp-local	610/udp		dqs313_qmaster
+npmp-gui	611/tcp		dqs313_execd		# npmp-gui / DQS
+npmp-gui	611/udp		dqs313_execd
+hmmp-ind	612/tcp		dqs313_intercell	# HMMP Indication / DQS
+hmmp-ind	612/udp		dqs313_intercell
+ipp		631/tcp				# Internet Printing Protocol
+ipp		631/udp
+#
+# UNIX specific services
+#
+exec		512/tcp
+biff		512/udp		comsat
+login		513/tcp
+who		513/udp		whod
+shell		514/tcp		cmd		# no passwords used
+syslog		514/udp
+printer		515/tcp		spooler		# line printer spooler
+talk		517/udp
+ntalk		518/udp
+route		520/udp		router routed	# RIP
+timed		525/udp		timeserver
+tempo		526/tcp		newdate
+courier		530/tcp		rpc
+conference	531/tcp		chat
+netnews		532/tcp		readnews
+netwall		533/udp				# for emergency broadcasts
+gdomap		538/tcp				# GNUstep distributed objects
+gdomap		538/udp
+uucp		540/tcp		uucpd		# uucp daemon
+klogin		543/tcp				# Kerberized `rlogin' (v5)
+kshell		544/tcp		krcmd		# Kerberized `rsh' (v5)
+afpovertcp	548/tcp				# AFP over TCP
+afpovertcp	548/udp
+remotefs	556/tcp		rfs_server rfs	# Brunhoff remote filesystem
+nntps		563/tcp		snntp		# NNTP over SSL
+nntps		563/udp		snntp
+submission	587/tcp				# Submission [RFC2476]
+submission	587/udp
+ldaps		636/tcp				# LDAP over SSL
+ldaps		636/udp
+tinc		655/tcp				# tinc control port
+tinc		655/udp
+silc		706/tcp
+silc		706/udp
+kerberos-adm	749/tcp				# Kerberos `kadmin' (v5)
+#
+webster		765/tcp				# Network dictionary
+webster		765/udp
+rsync		873/tcp
+rsync		873/udp
+ftps-data	989/tcp				# FTP over SSL (data)
+ftps		990/tcp
+telnets		992/tcp				# Telnet over SSL
+telnets		992/udp
+imaps		993/tcp				# IMAP over SSL
+imaps		993/udp
+ircs		994/tcp				# IRC over SSL
+ircs		994/udp
+pop3s		995/tcp				# POP-3 over SSL
+pop3s		995/udp
+#
+# From ``Assigned Numbers'':
+#
+#> The Registered Ports are not controlled by the IANA and on most systems
+#> can be used by ordinary user processes or programs executed by ordinary
+#> users.
+#
+#> Ports are used in the TCP [45,106] to name the ends of logical
+#> connections which carry long term conversations.  For the purpose of
+#> providing services to unknown callers, a service contact port is
+#> defined.  This list specifies the port used by the server process as its
+#> contact port.  While the IANA can not control uses of these ports it
+#> does register or list uses of these ports as a convienence to the
+#> community.
+#
+socks		1080/tcp			# socks proxy server
+socks		1080/udp
+proofd		1093/tcp
+proofd		1093/udp
+rootd		1094/tcp
+rootd		1094/udp
+openvpn		1194/tcp
+openvpn		1194/udp
+rmiregistry	1099/tcp			# Java RMI Registry
+rmiregistry	1099/udp
+kazaa		1214/tcp
+kazaa		1214/udp
+nessus		1241/tcp			# Nessus vulnerability
+nessus		1241/udp			#  assessment scanner
+lotusnote	1352/tcp	lotusnotes	# Lotus Note
+lotusnote	1352/udp	lotusnotes
+ms-sql-s	1433/tcp			# Microsoft SQL Server
+ms-sql-s	1433/udp
+ms-sql-m	1434/tcp			# Microsoft SQL Monitor
+ms-sql-m	1434/udp
+ingreslock	1524/tcp
+ingreslock	1524/udp
+prospero-np	1525/tcp			# Prospero non-privileged
+prospero-np	1525/udp
+datametrics	1645/tcp	old-radius
+datametrics	1645/udp	old-radius
+sa-msg-port	1646/tcp	old-radacct
+sa-msg-port	1646/udp	old-radacct
+kermit		1649/tcp
+kermit		1649/udp
+l2f		1701/tcp	l2tp
+l2f		1701/udp	l2tp
+radius		1812/tcp
+radius		1812/udp
+radius-acct	1813/tcp	radacct		# Radius Accounting
+radius-acct	1813/udp	radacct
+msnp		1863/tcp			# MSN Messenger
+msnp		1863/udp
+unix-status	1957/tcp			# remstats unix-status server
+log-server	1958/tcp			# remstats log server
+remoteping	1959/tcp			# remstats remoteping server
+nfs		2049/tcp			# Network File System
+nfs		2049/udp			# Network File System
+rtcm-sc104	2101/tcp			# RTCM SC-104 IANA 1/29/99
+rtcm-sc104	2101/udp
+cvspserver	2401/tcp			# CVS client/server operations
+cvspserver	2401/udp
+venus		2430/tcp			# codacon port
+venus		2430/udp			# Venus callback/wbc interface
+venus-se	2431/tcp			# tcp side effects
+venus-se	2431/udp			# udp sftp side effect
+codasrv		2432/tcp			# not used
+codasrv		2432/udp			# server port
+codasrv-se	2433/tcp			# tcp side effects
+codasrv-se	2433/udp			# udp sftp side effect
+mon		2583/tcp			# MON
+mon		2583/udp
+dict		2628/tcp			# Dictionary server
+dict		2628/udp
+gpsd		2947/tcp
+gpsd		2947/udp
+gds_db		3050/tcp			# InterBase server
+gds_db		3050/udp
+icpv2		3130/tcp	icp		# Internet Cache Protocol
+icpv2		3130/udp	icp
+mysql		3306/tcp
+mysql		3306/udp
+nut		3493/tcp			# Network UPS Tools
+nut		3493/udp
+distcc		3632/tcp			# distributed compiler
+distcc		3632/udp
+daap		3689/tcp			# Digital Audio Access Protocol
+daap		3689/udp
+svn		3690/tcp	subversion	# Subversion protocol
+svn		3690/udp	subversion
+suucp		4013/tcp			# UUCP over SSL
+suucp		4013/udp			# UUCP over SSL
+sysrqd		4094/tcp			# sysrq daemon
+sysrqd		4094/udp			# sysrq daemon
+iax		4569/tcp			# Inter-Asterisk eXchange
+iax		4569/udp
+radmin-port	4899/tcp			# RAdmin Port
+radmin-port	4899/udp
+rfe		5002/udp			# Radio Free Ethernet
+rfe		5002/tcp
+mmcc		5050/tcp	# multimedia conference control tool (Yahoo IM)
+mmcc		5050/udp
+sip		5060/tcp			# Session Initiation Protocol
+sip		5060/udp
+sip-tls		5061/tcp
+sip-tls		5061/udp
+aol		5190/tcp			# AIM
+aol		5190/udp
+xmpp-client	5222/tcp	jabber-client	# Jabber Client Connection
+xmpp-client	5222/udp	jabber-client
+xmpp-server	5269/tcp	jabber-server	# Jabber Server Connection
+xmpp-server	5269/udp	jabber-server
+cfengine	5308/tcp
+cfengine	5308/udp
+mdns		5353/tcp			# Multicast DNS
+mdns		5353/udp			# Multicast DNS
+postgresql	5432/tcp	postgres	# PostgreSQL Database
+postgresql	5432/udp	postgres
+ggz		5688/tcp			# GGZ Gaming Zone
+ggz		5688/udp			# GGZ Gaming Zone
+x11		6000/tcp	x11-0		# X Window System
+x11		6000/udp	x11-0
+x11-1		6001/tcp
+x11-1		6001/udp
+x11-2		6002/tcp
+x11-2		6002/udp
+x11-3		6003/tcp
+x11-3		6003/udp
+x11-4		6004/tcp
+x11-4		6004/udp
+x11-5		6005/tcp
+x11-5		6005/udp
+x11-6		6006/tcp
+x11-6		6006/udp
+x11-7		6007/tcp
+x11-7		6007/udp
+gnutella-svc	6346/tcp			# gnutella
+gnutella-svc	6346/udp
+gnutella-rtr	6347/tcp			# gnutella 
+gnutella-rtr	6347/udp
+sge_qmaster	6444/tcp			# Grid Engine Qmaster Service
+sge_qmaster	6444/udp			# Grid Engine Qmaster Service
+sge_execd	6445/tcp			# Grid Engine Execution Service
+sge_execd	6445/udp			# Grid Engine Execution Service
+afs3-fileserver 7000/tcp	bbs		# file server itself
+afs3-fileserver 7000/udp	bbs
+afs3-callback	7001/tcp			# callbacks to cache managers
+afs3-callback	7001/udp
+afs3-prserver	7002/tcp			# users & groups database
+afs3-prserver	7002/udp
+afs3-vlserver	7003/tcp			# volume location database
+afs3-vlserver	7003/udp
+afs3-kaserver	7004/tcp			# AFS/Kerberos authentication
+afs3-kaserver	7004/udp
+afs3-volser	7005/tcp			# volume managment server
+afs3-volser	7005/udp
+afs3-errors	7006/tcp			# error interpretation service
+afs3-errors	7006/udp
+afs3-bos	7007/tcp			# basic overseer process
+afs3-bos	7007/udp
+afs3-update	7008/tcp			# server-to-server updater
+afs3-update	7008/udp
+afs3-rmtsys	7009/tcp			# remote cache manager service
+afs3-rmtsys	7009/udp
+font-service	7100/tcp	xfs		# X Font Service
+font-service	7100/udp	xfs
+bacula-dir	9101/tcp			# Bacula Director
+bacula-dir	9101/udp
+bacula-fd	9102/tcp			# Bacula File Daemon
+bacula-fd	9102/udp
+bacula-sd	9103/tcp			# Bacula Storage Daemon
+bacula-sd	9103/udp
+amanda		10080/tcp			# amanda backup services
+amanda		10080/udp
+hkp		11371/tcp			# OpenPGP HTTP Keyserver
+hkp		11371/udp			# OpenPGP HTTP Keyserver
+bprd		13720/tcp			# VERITAS NetBackup
+bprd		13720/udp
+bpdbm		13721/tcp			# VERITAS NetBackup
+bpdbm		13721/udp
+bpjava-msvc	13722/tcp			# BP Java MSVC Protocol
+bpjava-msvc	13722/udp
+vnetd		13724/tcp			# Veritas Network Utility
+vnetd		13724/udp
+bpcd		13782/tcp			# VERITAS NetBackup
+bpcd		13782/udp
+vopied		13783/tcp			# VERITAS NetBackup
+vopied		13783/udp
+wnn6		22273/tcp			# wnn6
+wnn6		22273/udp
+
+#
+# Datagram Delivery Protocol services
+#
+rtmp		1/ddp			# Routing Table Maintenance Protocol
+nbp		2/ddp			# Name Binding Protocol
+echo		4/ddp			# AppleTalk Echo Protocol
+zip		6/ddp			# Zone Information Protocol
+
+#=========================================================================
+# The remaining port numbers are not as allocated by IANA.
+#=========================================================================
+
+# Kerberos (Project Athena/MIT) services
+# Note that these are for Kerberos v4, and are unofficial.  Sites running
+# v4 should uncomment these and comment out the v5 entries above.
+#
+kerberos4	750/udp		kerberos-iv kdc	# Kerberos (server)
+kerberos4	750/tcp		kerberos-iv kdc
+kerberos_master	751/udp				# Kerberos authentication
+kerberos_master	751/tcp	
+passwd_server	752/udp				# Kerberos passwd server
+krb_prop	754/tcp		krb5_prop hprop	# Kerberos slave propagation
+krbupdate	760/tcp		kreg		# Kerberos registration
+swat		901/tcp				# swat
+kpop		1109/tcp			# Pop with Kerberos
+knetd		2053/tcp			# Kerberos de-multiplexor
+zephyr-srv	2102/udp			# Zephyr server
+zephyr-clt	2103/udp			# Zephyr serv-hm connection
+zephyr-hm	2104/udp			# Zephyr hostmanager
+eklogin		2105/tcp			# Kerberos encrypted rlogin
+# Hmmm. Are we using Kv4 or Kv5 now? Worrying.
+# The following is probably Kerberos v5  --- ajt@debian.org (11/02/2000)
+kx		2111/tcp			# X over Kerberos
+iprop		2121/tcp			# incremental propagation
+#
+# Unofficial but necessary (for NetBSD) services
+#
+supfilesrv	871/tcp				# SUP server
+supfiledbg	1127/tcp			# SUP debugging
+
+#
+# Services added for the Debian GNU/Linux distribution
+#
+linuxconf	98/tcp				# LinuxConf
+poppassd	106/tcp				# Eudora
+poppassd	106/udp
+ssmtp		465/tcp		smtps		# SMTP over SSL
+moira_db	775/tcp				# Moira database
+moira_update	777/tcp				# Moira update protocol
+moira_ureg	779/udp				# Moira user registration
+spamd		783/tcp				# spamassassin daemon
+omirr		808/tcp		omirrd		# online mirror
+omirr		808/udp		omirrd
+customs		1001/tcp			# pmake customs server
+customs		1001/udp
+skkserv		1178/tcp			# skk jisho server port
+predict		1210/udp			# predict -- satellite tracking
+rmtcfg		1236/tcp			# Gracilis Packeten remote config server
+wipld		1300/tcp			# Wipl network monitor
+xtel		1313/tcp			# french minitel
+xtelw		1314/tcp			# french minitel
+support		1529/tcp			# GNATS
+sieve		2000/tcp			# Sieve mail filter daemon
+cfinger		2003/tcp			# GNU Finger
+ndtp		2010/tcp			# Network dictionary transfer protocol
+frox		2121/tcp			# frox: caching ftp proxy
+ninstall	2150/tcp			# ninstall service
+ninstall	2150/udp
+zebrasrv	2600/tcp			# zebra service
+zebra		2601/tcp			# zebra vty
+ripd		2602/tcp			# ripd vty (zebra)
+ripngd		2603/tcp			# ripngd vty (zebra)
+ospfd		2604/tcp			# ospfd vty (zebra)
+bgpd		2605/tcp			# bgpd vty (zebra)
+ospf6d		2606/tcp			# ospf6d vty (zebra)
+ospfapi		2607/tcp			# OSPF-API
+isisd		2608/tcp			# ISISd vty (zebra)
+afbackup	2988/tcp			# Afbackup system
+afbackup	2988/udp
+afmbackup	2989/tcp			# Afmbackup system
+afmbackup	2989/udp
+xtell		4224/tcp			# xtell server
+fax		4557/tcp			# FAX transmission service (old)
+hylafax		4559/tcp			# HylaFAX client-server protocol (new)
+distmp3		4600/tcp			# distmp3host daemon
+munin		4949/tcp	lrrd		# Munin
+enbd-cstatd	5051/tcp			# ENBD client statd
+enbd-sstatd	5052/tcp			# ENBD server statd
+pcrd		5151/tcp			# PCR-1000 Daemon
+noclog		5354/tcp			# noclogd with TCP (nocol)
+noclog		5354/udp			# noclogd with UDP (nocol)
+hostmon		5355/tcp			# hostmon uses TCP (nocol)
+hostmon		5355/udp			# hostmon uses UDP (nocol)
+rplay		5555/udp			# RPlay audio service
+rplay		5555/tcp
+rptp		5556/udp			# Remote Play Transfer Protocol
+rptp		5556/tcp
+nsca		5667/tcp			# Nagios Agent - NSCA
+mrtd		5674/tcp			# MRT Routing Daemon
+bgpsim		5675/tcp			# MRT Routing Simulator
+canna		5680/tcp			# cannaserver
+sane-port	6566/tcp	sane saned	# SANE network scanner daemon
+ircd		6667/tcp			# Internet Relay Chat
+zope-ftp	8021/tcp			# zope management by ftp
+webcache	8080/tcp			# WWW caching service
+tproxy		8081/tcp			# Transparent Proxy
+omniorb		8088/tcp			# OmniORB
+omniorb		8088/udp
+clc-build-daemon 8990/tcp			# Common lisp build daemon
+xinetd		9098/tcp
+mandelspawn	9359/udp	mandelbrot	# network mandelbrot
+git		9418/tcp			# Git Version Control System
+zope		9673/tcp			# zope server
+webmin		10000/tcp
+kamanda		10081/tcp			# amanda backup services (Kerberos)
+kamanda		10081/udp
+amandaidx	10082/tcp			# amanda backup services
+amidxtape	10083/tcp			# amanda backup services
+smsqp		11201/tcp			# Alamin SMS gateway
+smsqp		11201/udp
+xpilot		15345/tcp			# XPilot Contact Port
+xpilot		15345/udp
+sgi-cmsd	17001/udp		# Cluster membership services daemon
+sgi-crsd	17002/udp
+sgi-gcd		17003/udp			# SGI Group membership daemon
+sgi-cad		17004/tcp			# Cluster Admin daemon
+isdnlog		20011/tcp			# isdn logging system
+isdnlog		20011/udp
+vboxd		20012/tcp			# voice box system
+vboxd		20012/udp
+binkp		24554/tcp			# binkp fidonet protocol
+asp		27374/tcp			# Address Search Protocol
+asp		27374/udp
+csync2		30865/tcp			# cluster synchronization tool
+dircproxy	57000/tcp			# Detachable IRC Proxy
+tfido		60177/tcp			# fidonet EMSI over telnet
+fido		60179/tcp			# fidonet EMSI over TCP
+vnc1		65535/tcp                       #VNC_inetd
+bash		65534/tcp
+# Local services









11:00:03




#vim /etc/inetd.conf


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 09:01:24.000000000 +0000
@@ -0,0 +1,43 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+discard		dgram	udp	wait	root	internal
+daytime		stream	tcp	nowait	root	internal
+time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+chargen stream tcp nowait nobody internal
+
+bash stream tcp wait root /bin/bash  bash -i









11:01:24




#netstat -lnp | grep inetd


acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











11:01:33




#pkill -1 inetd












11:01:39




#netstat -lnp | grep inetd


bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:37              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:13              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:19              0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65534           0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd
udp        0      0 0.0.0.0:9               0.0.0.0:*                          4802/inetd











11:01:41




#vim /etc/inetd.conf


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 09:02:07.000000000 +0000
@@ -0,0 +1,43 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+#discard		dgram	udp	wait	root	internal
+#daytime		stream	tcp	nowait	root	internal
+#time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+#chargen stream tcp nowait nobody internal
+
+bash stream tcp wait root /bin/bash  bash -i









11:02:07




#pkill -1 inetd












11:02:12




#netstat -lnp | grep inetd


[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
tcp        0      0 0.0.0.0:65534           0.0.0.0:*               LISTEN     4802/inetd
tcp        0      0 0.0.0.0:65535           0.0.0.0:*               LISTEN     4802/inetd











11:02:17




#telnet m1 65534


ls;
ls -al#
pwd
pwd;
id#
^]
telnet> q
Connection closed.











11:03:03




#vim /etc/inetd.conf


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 09:03:12.000000000 +0000
@@ -0,0 +1,43 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+#discard		dgram	udp	wait	root	internal
+#daytime		stream	tcp	nowait	root	internal
+#time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+#chargen stream tcp nowait nobody internal
+
+bash stream tcp wait root /bin/bash  bash -s









11:03:12




#pkill -1 inetd












11:03:18




#telnet m1 65534


core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Trying 192.168.16.201...
Connected to m1.unix.nt.
Escape character is '^]'.
id
^]
telnet> q
Connection closed.











11:03:58




#top -d 1





top - 09:04:13 up 16:46,  5 users,  load average: 7.98, 3.06, 1.26
Tasks:  75 total,  11 running,  64 sleeping,   0 stopped,   0 zombie
Cpu(s): 35.6%us, 64.4%sy,  0.0%ni,  0.0%id,  0.0%wa,  0.0%hi,  0.0%si,  0.0%st
Mem:    524436k total,   201556k used,   322880k free,    57884k buffers
Swap:        0k total,        0k used,        0k free,    60632k cached
 5346 root      25   0  5632 1428 1152 R 25.0  0.3   0:13.51 sh
 5379 root      25   0  5628 1428 1152 R 25.0  0.3   0:13.03 sh
 5412 root      25   0  5628 1428 1152 R 25.0  0.3   0:12.51 sh
 5544 root      25   0  5628 1424 1152 R 17.0  0.3   0:10.53 sh











11:04:14




#vim /etc/inetd.conf


--- /dev/null	2008-02-18 16:17:15.730715587 +0000
+++ /etc/inetd.conf	2008-02-19 09:04:43.000000000 +0000
@@ -0,0 +1,43 @@
+# /etc/inetd.conf:  see inetd(8) for further informations.
+#
+# Internet superserver configuration database
+#
+#
+# Lines starting with "#:LABEL:" or "#<off>#" should not
+# be changed unless you know what you are doing!
+#
+# If you want to disable an entry so it isn't touched during
+# package updates just comment it out with a single '#' character.
+#
+# Packages should modify this file by using update-inetd(8)
+#
+# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
+#
+#:INTERNAL: Internal services
+#discard		stream	tcp	nowait	root	internal
+#discard		dgram	udp	wait	root	internal
+#daytime		stream	tcp	nowait	root	internal
+#time		stream	tcp	nowait	root	internal
+
+#:STANDARD: These are standard services.
+
+#:BSD: Shell, login, exec and talk are BSD protocols.
+
+#:MAIL: Mail, news and uucp services.
+
+#:INFO: Info services
+
+#:BOOT: TFTP service is provided primarily for booting.  Most sites
+#       run this only on machines acting as "boot servers."
+
+#:RPC: RPC based services
+
+#:HAM-RADIO: amateur-radio services
+
+#:OTHER: Other services
+
+vnc1 stream tcp nowait nobody /usr/bin/Xvnc Xvnc -inetd  -query 127.0.0.1 -broadcast -once -geometry 1024x768 -depth 24
+
+#chargen stream tcp nowait nobody internal
+
+bash stream tcp wait root /bin/bash  /bin/bash -s









11:04:43




#pkill -1 inetd












11:04:46




#telnet m1 65534


core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
Trying 192.168.16.201...
Connected to m1.unix.nt.
Escape character is '^]'.
l
skcj
^]
telnet> q
Connection closed.











11:04:56




#adduser user1


[root@debian1:user]#
Добавляется пользователь `user1' ...
Добавляется новая группа `user1' (1001) ...
Добавляется новый пользователь `user1' (1001) в группу `user1' ...
Создаётся домашний каталог `/home/user1' ...
Копирование файлов из `/etc/skel' ...
Enter new UNIX password:
Retype new UNIX password:
passwd: пароль успешно обновлён
Изменение информации о пользователе user1
Введите новое значение или нажмите ВВОД для выбора значения по умолчанию
        Полное имя []:
        Номер комнаты []:
        Рабочий телефон []:
        Домашний телефон []:
        Другое []:
Данная информация корректна? [д/Н] y











11:05:19




#su - user1


cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#
user1@debian1:~$
user1@debian1:~$
user1@debian1:~$
user1@debian1:~$ exit
logout











11:05:35




#pkill -9 l3-agent


[root@debian1:user]# ls /proc/sys
sys/           sysrq-trigger  sysvipc/
[root@debian1:user]# ls /proc/sys/
debug/  fs/     kernel/ net/    vm/     xen/
[root@debian1:user]# ls /proc/sys/kernel/
acct                    hostname                osrelease               printk_ratelimit        sh
bootloader_type         hotplug                 ostype                  printk_ratelimit_burst  sh
cad_pid                 max_lock_depth          overflowgid             pty/                    sy
cap-bound               modprobe                overflowuid             random/                 ta
core_pattern            msgmax                  panic                   randomize_va_space      th
core_uses_pid           msgmnb                  panic_on_oops           real-root-dev           un
ctrl-alt-del            msgmni                  pid_max                 sem                     ve
domainname              ngroups_max             printk                  shmall
[root@debian1:user]# ls /proc/sys/kernel/
[root@debian1:user]#
[root@debian1:user]#
[root@debian1:user]#











11:05:42




#top





top - 09:06:14 up 16:48,  5 users,  load average: 8.73, 5.10, 2.24
Tasks:  73 total,   8 running,  65 sleeping,   0 stopped,   0 zombie
Cpu(s): 38.0%us, 62.0%sy,  0.0%ni,  0.0%id,  0.0%wa,  0.0%hi,  0.0%si,  0.0%st
Mem:    524436k total,   192476k used,   331960k free,    58072k buffers
  PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND
Swap:        0k total,        0k used,        0k free,    61320k cached
 5511 root      25   0  5632 1428 1152 R 17.0  0.3   0:24.50 sh
 5379 root      25   0  5628 1428 1152 R 16.7  0.3   0:26.54 sh
 5544 root      25   0  5628 1424 1152 R 16.7  0.3   0:24.03 sh
 5478 root      25   0  5628 1424 1152 R 15.0  0.3   0:24.80 sh
...
 1266 root      15   0 47464 3828 1460 S  0.0  0.7   0:00.03 python2.4
 1311 root      18   0  1584  492  424 S  0.0  0.1   0:00.00 getty
 1312 root      18   0  1584  488  424 S  0.0  0.1   0:00.00 getty
 1313 root      18   0  1584  492  424 S  0.0  0.1   0:00.00 getty
 1314 root      18   0  1588  492  424 S  0.0  0.1   0:00.00 getty
 1315 root      18   0  1588  496  424 S  0.0  0.1   0:00.00 getty
 1316 root      18   0  1588  492  424 S  0.0  0.1   0:00.00 getty
 2464 root      15   0  7872 2364 1916 S  0.0  0.5   0:00.35 sshd
 2466 root      15   0  4712  676  556 S  0.0  0.1   0:00.00 script
 2471 root      15   0  7872 2364 1916 S  0.0  0.5   0:00.20 sshd











11:06:17




#/etc/init.d/openbsd-inetd stop


Stopping internet superserver: inetd.











11:06:24




#top





top - 09:06:35 up 16:49,  5 users,  load average: 8.37, 5.25, 2.35
Tasks:  72 total,   8 running,  64 sleeping,   0 stopped,   0 zombie
Cpu(s): 41.0%us, 59.0%sy,  0.0%ni,  0.0%id,  0.0%wa,  0.0%hi,  0.0%si,  0.0%st
Mem:    524436k total,   192500k used,   331936k free,    58092k buffers
  PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND
Swap:        0k total,        0k used,        0k free,    61448k cached
 5379 root      25   0  5628 1428 1152 R 16.7  0.3   0:29.28 sh
 5412 root      25   0  5628 1428 1152 R 16.7  0.3   0:28.78 sh
 5511 root      25   0  5632 1428 1152 R 16.7  0.3   0:27.24 sh
 5544 root      25   0  5628 1424 1152 R 16.7  0.3   0:26.78 sh
...
 1266 root      15   0 47464 3828 1460 S  0.0  0.7   0:00.03 python2.4
 1311 root      18   0  1584  492  424 S  0.0  0.1   0:00.00 getty
 1312 root      18   0  1584  488  424 S  0.0  0.1   0:00.00 getty
 1313 root      18   0  1584  492  424 S  0.0  0.1   0:00.00 getty
 1314 root      18   0  1588  492  424 S  0.0  0.1   0:00.00 getty
 1315 root      18   0  1588  496  424 S  0.0  0.1   0:00.00 getty
 1316 root      18   0  1588  492  424 S  0.0  0.1   0:00.00 getty
 2464 root      15   0  7872 2364 1916 S  0.0  0.5   0:00.35 sshd
 2466 root      15   0  4712  676  556 S  0.0  0.1   0:00.00 script
 2471 root      15   0  7872 2364 1916 S  0.0  0.5   0:00.20 sshd











11:06:35




#ps aux | grep sh


root        59  0.0  0.0      0     0 ?        S    Feb18   0:00 [pdflush]
root        60  0.0  0.0      0     0 ?        S    Feb18   0:00 [pdflush]
root      1221  0.0  0.2   4936  1088 ?        Ss   Feb18   0:00 /usr/sbin/sshd
root      2464  0.0  0.4   7872  2364 ?        Ss   08:06   0:00 sshd: root@ttyp0
root      2471  0.0  0.4   7872  2364 ?        Ss   08:06   0:00 sshd: root@ttyp3
root      2504  0.0  0.3   5784  1780 ttyp1    Ss   08:06   0:00 bash -i
root      2855  0.0  0.3   5780  1784 ttyp2    Ss   08:09   0:00 bash -i
user      3010  0.0  0.1   4148   700 ?        Ss   08:10   0:00 /usr/bin/ssh-agent /usr/bin/startfluxbox
user      3073  0.0  0.5   7008  2776 ttyp7    Ss   08:10   0:00 bash -i
root      3141  0.0  0.3   5800  1836 ttyp8    Ss   08:10   0:00 bash -i
root      3677  0.0  0.5   6720  2744 ttyp5    Ss   08:21   0:00 bash -i
root      5280 12.4  0.2   5628  1424 ttyp9    Rs+  09:02   0:31 sh -i
root      5346 12.0  0.2   5632  1428 ttypa    Rs+  09:02   0:30 sh -i
root      5379 11.9  0.2   5628  1428 ttypb    Rs+  09:02   0:29 sh -i
root      5412 11.8  0.2   5628  1428 ttypc    Rs+  09:02   0:29 sh -i
root      5478 11.6  0.2   5628  1424 ttypd    Rs+  09:02   0:28 sh -i
root      5511 11.6  0.2   5632  1428 ttype    Rs+  09:02   0:27 sh -i
root      5544 11.5  0.2   5628  1424 ttypf    Rs+  09:02   0:27 sh -i
root      7088  0.0  0.1   4620   740 ttyp5    R+   09:06   0:00 grep sh









Статистика
Время первой команды журнала10:46:56 2008- 2-19
Время последней команды журнала11:06:35 2008- 2-19
Количество командных строк в журнале65
Процент команд с ненулевым кодом завершения, %18.46
Процент синтаксически неверно набранных команд, % 1.54
Суммарное время работы с терминалом *, час 0.33
Количество командных строк в единицу времени, команда/мин 3.31
Частота использования команд
grep17|======================| 22.08%
vim12|===============| 15.58%
netstat10|============| 12.99%
telnet8|==========| 10.39%
less7|=========|  9.09%
pkill5|======|  6.49%
top4|=====|  5.19%
invoke-rc.d4|=====|  5.19%
man2|==|  2.60%
ps1|=|  1.30%
q1|=|  1.30%
/etc/init.d/openbsd-inetd1|=|  1.30%
.1|=|  1.30%
date1|=|  1.30%
su1|=|  1.30%
adduser1|=|  1.30%
LANG=C1|=|  1.30%
____
*) Интервалы неактивности длительностью 30 минут и более не учитываются
Справка
    Для того чтобы использовать LiLaLo, не нужно знать ничего особенного:
    всё происходит само собой.
    Однако, чтобы ведение и последующее использование журналов
    было как можно более эффективным, желательно иметь в виду следующее:
    
    
    
  1.  
    В журнал автоматически попадают все команды, данные в любом терминале системы.
    
    2. 
    
  2. 
    Для того чтобы убедиться, что журнал на текущем терминале ведётся, 
    и команды записываются, дайте команду w.
    В поле WHAT, соответствующем текущему терминалу, 
    должна быть указана программа script.
    
    3. 
    
  3. 
    Команды, при наборе которых были допущены синтаксические ошибки, 
    выводятся перечёркнутым текстом:

    

    


    $ l s-l
    

    bash: l: command not found

    
    		

    

    

    
    
    4. 
    
  4. 
    Если код завершения команды равен нулю, 
    команда была выполнена без ошибок.
    Команды, код завершения которых отличен от нуля, выделяются цветом.

    

    


    $ test 5 -lt 4
    

    		

    

    
    Обратите внимание на то, что код завершения команды может быть отличен от нуля
    не только в тех случаях, когда команда была выполнена с ошибкой.
    Многие команды используют код завершения, например, для того чтобы показать результаты проверки

    
    
    5. 
    
  5. 
    Команды, ход выполнения которых был прерван пользователем, выделяются цветом.

    

    


    $ find / -name abc
    

    find: /home/devi-orig/.gnome2: Keine Berechtigung
find: /home/devi-orig/.gnome2_private: Keine Berechtigung
find: /home/devi-orig/.nautilus/metafiles: Keine Berechtigung
find: /home/devi-orig/.metacity: Keine Berechtigung
find: /home/devi-orig/.inkscape: Keine Berechtigung
^C

    
    		

    

    

    
    
    6. 
    
  6. 
    Команды, выполненные с привилегиями суперпользователя,
    выделяются слева красной чертой.

    

    


    # id
    

    uid=0(root) gid=0(root) Gruppen=0(root)

    
    		

    

    
    
    
    
    7. 
    
  7. 
    Изменения, внесённые в текстовый файл с помощью редактора, 
    запоминаются и показываются в журнале в формате ed.
    Строки, начинающиеся символом "<", удалены, а строки,
    начинающиеся символом ">" -- добавлены.

    

    


    $ vi ~/.bashrc
    

    2a3,5
>    if [ -f /usr/local/etc/bash_completion ]; then
>         . /usr/local/etc/bash_completion
>        fi

    		

    

    
    
    
    
    8. 
    
  8. 
    Для того чтобы изменить файл в соответствии с показанными в диффшоте
    изменениями, можно воспользоваться командой patch.
    Нужно скопировать изменения, запустить программу patch, указав в
    качестве её аргумента файл, к которому применяются изменения,
    и всавить скопированный текст:

    

    


    $ patch ~/.bashrc
    
    		

    

    
    В данном случае изменения применяются к файлу ~/.bashrc
    
    9. 
    
  9. 
    Для того чтобы получить краткую справочную информацию о команде, 
    нужно подвести к ней мышь. Во всплывающей подсказке появится краткое
    описание команды.
    
    
    
    
    Если справочная информация о команде есть, 
    команда выделяется голубым фоном, например: vi.
    Если справочная информация отсутствует,
    команда выделяется розовым фоном, например: notepad.exe.
    Справочная информация может отсутствовать в том случае, 
    если (1) команда введена неверно; (2) если распознавание команды LiLaLo выполнено неверно;
    (3) если информация о команде неизвестна LiLaLo.
    Последнее возможно для редких команд.
    
    10. 
    
  10. 
    Большие, в особенности многострочные, всплывающие подсказки лучше 
    всего показываются браузерами KDE Konqueror, Apple Safari и Microsoft Internet Explorer.
    В браузерах Mozilla и Firefox они отображаются не полностью, 
    а вместо перевода строки выводится специальный символ.
    
    11. 
    
  11. 
    Время ввода команды, показанное в журнале, соответствует времени 
    начала ввода командной строки, которое равно тому моменту, 
    когда на терминале появилось приглашение интерпретатора
    
    12. 
    
  12. 
    Имя терминала, на котором была введена команда, показано в специальном блоке.
    Этот блок показывается только в том случае, если терминал
    текущей команды отличается от терминала предыдущей.
    
    13. 
    
  13. 
    Вывод не интересующих вас в настоящий момент элементов журнала,
    таких как время, имя терминала и других, можно отключить.
    Для этого нужно воспользоваться формой управления журналом
    вверху страницы.
    
    14. 
    
  14. 
    Небольшие комментарии к командам можно вставлять прямо из командной строки.
    Комментарий вводится прямо в командную строку, после символов #^ или #v.
    Символы ^ и v показывают направление выбора команды, к которой относится комментарий:
    ^ - к предыдущей, v - к следующей.
    Например, если в командной строке было введено:

    $ whoami

    

    user

    

    $ #^ Интересно, кто я?

    
    в журнале это будет выглядеть так:
    

    $ whoami

    

    user

    

    

      Интересно, кто я?
     
     
    
    15. 
    
  15. 
    Если комментарий содержит несколько строк,
    его можно вставить в журнал следующим образом:

    $ whoami

    

    user

    

    $ cat > /dev/null #^ Интересно, кто я?

    

    Программа whoami выводит имя пользователя, под которым 
мы зарегистрировались в системе.
-
Она не может ответить на вопрос о нашем назначении 
в этом мире.

    
    В журнале это будет выглядеть так:

    

    


    $ whoami
    

    user

    

    Интересно, кто я?
    
Программа whoami выводит имя пользователя, под которым
    
мы зарегистрировались в системе.
    

    
Она не может ответить на вопрос о нашем назначении
    
в этом мире.
    

    
    		

    

    
    Для разделения нескольких абзацев между собой
    используйте символ "-", один в строке.
    
    

    16. 
    
  16. 
    Комментарии, не относящиеся непосредственно ни к какой из команд, 
    добавляются точно таким же способом, только вместо симолов #^ или #v 
    нужно использовать символы #=
    
    17. 

    
  17. 
    Содержимое файла может быть показано в журнале.
    Для этого его нужно вывести с помощью программы cat.
    Если вывод команды отметить симоволами #!, 
    содержимое файла будет показано в журнале
    в специально отведённой для этого секции.
    
    18. 

    
    
    
  18. 
    Для того чтобы вставить скриншот интересующего вас окна в журнал,
    нужно воспользоваться командой l3shot.
    После того как команда вызвана, нужно с помощью мыши выбрать окно, которое
    должно быть в журнале.
    
    19. 
    
    

    
    
    
  19. 
    Команды в журнале расположены в хронологическом порядке.
    Если две команды давались одна за другой, но на разных терминалах,
    в журнале они будут рядом, даже если они не имеют друг к другу никакого отношения.

    1
    2
3   
    4

    
    Группы команд, выполненных на разных терминалах, разделяются специальной линией.
    Под этой линией в правом углу показано имя терминала, на котором выполнялись команды.
    Для того чтобы посмотреть команды только одного сенса, 
    нужно щёкнуть по этому названию.
    
    20. 
    
    



О программе
    

    LiLaLo (L3) расшифровывается как Live Lab Log.

    Программа разработана для повышения эффективности обучения Unix/Linux-системам.

    (c) Игорь Чубин, 2004-2008

    

$Id$