49_752622 bindex.qxp 3/28/06 11:39 PM Page 777

Index

virtual host setup, archives. See also backups Symbols 603–606 commands for, 172 apache2 Internet service, multivolume archives, 438 * (asterisk) wildcard, 580 single-volume archive, 167–168 apmd Internet service, 580 436–437 ! FTP command, 368 append FTP command, 368 tar program, 26, 436–441 ? FTP command, 368 application gateway, 508 Arkeia utility, 436 ? (question mark) wildcard, Application layer, TCP/IP, array variables, Perl, 167–168 276 747, 749 application-proxy gateway arrays, C programming, A firewall, 537–538 707–708 applications ascii FTP command, 368 ABI (application binary databases, 209 Aspell, 208, 222–223 interface), LSB and, 15 default availability, associative arrays, Perl, AbiWord, 208 212–214 747, 750 access point, wireless graphics and imaging, 210 asterisk (*) wildcard, network, 292–293 GUIs, 19–21 167–168 accounts, users, system Internet, 210–211 ATA support, kernel, 483 administration, 373 multimedia, 209 ATAPI support, kernel, 483 acpid Internet service, 580 office applications, 208 atd Internet service, 580 Actions menu, office tools, 208 attachments to e-mail, 316 GNOME desktop, 142 text edtiors, 208 audio CDs ADSL (Asymmetric DSL), Applications menu multimedia applications, 258 Debian GNOME desktop, 228 alt newsgroups, 348 142 playing, 230–231 amaroK, 209 Fedora Core GNOME audits, security. See apache Internet service, desktop, 145 security audits 580 GNOME desktop, authentication Apache Web server 157 computer vulnerabilities, access-control directives, Applixware 551 601–603 description, 21 security, 504, 508 computer vulnerabilities overview, 220 authorization, security, 504 and, 551 APT autoconf GNU software configuration, 589–606 DEB files and, 459–461 package, 17 configuration file, 593–603COPYRIGHTEDDebian updates, 465–466 MATERIALautofs Internet service, 580 configuration tools, MEPIS updates, automake GNU software 590–592 465–466 package, 17 installation, 587–588 Ubuntu Linux updates, automated backups, 440 naming of, 588 465–466 automatic command resource configuration completion, 167 directives, 596–600 automation, system starting, 588–589 administration, 374 49_752622 bindex.qxp 3/28/06 11:39 PM Page 778

778 Linux All-in-One Desk Reference For Dummies

Binutils GNU software BrightStore ARCserve B package, 17 Backup for Linux, 436 bionet newsgroups, 348 Browse Windows Network, backdoor, security, 508 bit newsgroups, 348 MEPIS KDE desktop, backups. See also archives biz newsgroups, 348 152 automated, 440 block devices browsers. See Web commercial utilities, kernel, 482–483 browsers 435–436 overview, 402 BRU utility, 436 devices, 435 blogs, 358–360 buffer overflow, security, incremental, 440 BogoMIPS, 112 508 media, 434–435 boot commands, , building kernel, 491–492 multivolume archives, 438 84–86 building modules, modular single-volume archive, /boot directory, 427 kernel, 491–492 436–437 /boot/grub configuration built-in functions, Perl, strategies, 434–435 file, 390 762–763 system administration, /boot/grub/menu.lst burning CDs/DVDs 374 configuration file, 390 ISO images and, 37–39 tapes, 439–440 boot loader Knoppix, 38–39 Bare Metal Plus utility, 436 Fedora Core installation, 52 multimedia applications, bash GNU software kernel and, 112 233–234 package, 17 startup and, 111 Nautilus, 186–187 bash shell SUSE Linux installation, 68 business requirements for built-in commands, boot messages, kernel security, 501 739–742 startup and, 112 overview, 162 boot options, Linux kernel, starting, 126–127 87–89 C bastion host, security, 508 /boot/System.map bc GNU software C++, compiling, 680 configuration file, 390 package, 17 C and C++ compilers, GCC, /boot/vmlinuz /bin directory, 427 678–682 configuration file, 390 binary FTP command, 369 C programming booting BIND DNS arrays, 707–708 definition, 111 computer vulnerabilities, bit fields, 707–710 from DVD drive, 33 551 break statement, 715 /etc/inittab file, 386–387 Debian, 642 case statement, 716 Fedora Core, 113–114 Fedora Core, 642 compound statements, init process, 384–386 MEPIS, 642 716 login screen, 113–114 named daemon, 643 continue statement, network configuration at resolver library, 644 716–717 boot time, 308–309 Ubuntu, 642 declarations, 700 Ubuntu, 114 utility programs, 644–645 default label, 717 Xandros, 113–114 Xandros, 642 definitions, 700 break statement, C BIND name server, 643 programming, 715 49_752622 bindex.qxp 3/28/06 11:39 PM Page 779

Index 779

do statement, 717 setup, 264–267 chkconfig command enumerations, 706 upstream data, 262 Fedora Core, 576–577 expression statements, cabling, Ethernet, 281–283 SUSE Linux, 576–577 717 caching name server chmod FTP command, 369 expressions, 711–713 /etc/named.conf file, clari newsgroups, 348 function library, 722–723 647–650 client/server model, function prototypes, resource record formats, sockets, 568 721–722 650–653 clients, Internet services, functions, variable zone files, 650 565 number of arguments, Calc, OpenOffice.org, Clipboard Tool 722 216–217 MEPIS KDE desktop, 153 goto statement, 718 calculators SUSE Linux desktop, 155 header files, 699, 722–723 GNOME, 219–220 clock if-else statement, 718–719 KDE, 219–220 SUSE Linux desktop, 155 if statement, 718 calendars, 218–219 Xandros Desktop, 160 macros, 704–705 case statement, C program- close FTP command, 369 null statement, 719 ming, 716 command completion, 167 operators, 711–715 categories of newsgroups, command line pointers, 708–709 347–348 arguments, 163 preprocessor directives, CD/DVD Burning option, command line options, 701–705 MEPIS KDE desktop, 163 program structure, 153 description, 127 699–701 cd FTP command, 369 programming and, 675 return statement, 719 CD with book command-line FTP client, shared libraries, 724–729 burning, 32–33 366–370 for statement, 717–718 distributions, 31–32 command processor, structures, 707–710 cdrdao, 209 programming, 675 switch statement, 719–720 cdrecord, 209 commands type definitions, 709–710 CDs. See also audio CDs archiving, 172 type qualifiers, 710 burning, multimedia compressing files, 172 unions, 707–710 applications, 233–234 date and time, 173 variables, 705–706 burning, ISO images, depmod, 404 void type, 722 37–39 directory management, while statement, 720–721 burning, Nautilus, 186–187 170, 201–202 CA (certificate authority), introduction, 25 directory navigation, security, 508 management, 103 195–196 cable modem connection SUSE Linux installation, disk-space usage, 204–206 CMTS (Cable Modem 63–65 dmesg, 112 Termination System), certificate, security, 508 , 457–459 263 character device support, ed text editor, 244 comparison to other kernel, 486 error messages, saving to connections, 255–256 character devices, 402–403 file, 166 connecting with, 262–267 file management, overview, 255 170, 200–201 49_752622 bindex.qxp 3/28/06 11:39 PM Page 780

780 Linux All-in-One Desk Reference For Dummies

commands (continued) compilers FTP server, 608–612 file system management, GCC, 678–682 INN server, 628–635 173 programming and, 676 introduction, 28 finding files, 171, 202–203 compound statements, C kernel, 476–491 FTP, 366–370 programming, 716 printers, Debian, 90–91 grep, 163 compressing files, printers, Fedora Core, help, 170 commands for, 172 92–94 input, 165 computer, programming printers, Knoppix, 94–96 insmod, 404 and, 673–674 printers, MEPIS, 94–96 iptables, 541–545 computer programming. printers, SUSE, 97–99 ksyms, 404 See programming printers, Ubuntu, 99–100 lsmod, 404 computer systems Linux printers, Xandros, 100–103 managing processes, 172 runs on, 10 Samba, 667–669 modinfo, 404 computer vulnerabilities system configuration files, modprobe, 404 Apache Web Server, 551 390–392 mounting/unmounting, authentication, 551 configuration files 203–204 BIND DNS, 551 sendmail, 617–623 mtools, 446–447 CVS, 551 vsftpd file, 608–309 navigation, 194–206 databases, 552 vsftpd.conf file, 609–612 output, saving, 165 host security, 552 connection-oriented ownership, changing, Linux kernel, 552 protocols, sockets, 567 199–200 NFS (Network File connectionless protocols, permissions, 196–198 System), 551 sockets, 567 permissions, changing, NIS (Network Information connections to Internet 199–200 Service), 551 cable modem, 255 processing files, 171 Open SSL (Open Secure cable modem setup, repeating, 169 Sockets Layer), 551 262–267 rmmod, 404 resources for information, dialup networking, RPM files, 450 550 255, 267–274 shell commands, 127 sendmail, 551 DSL (digital subscriber su -, 382 SNMP, 551 line), 254–262 uptime, 395 subversion, 551 LANs, 285–286 user account concatenating shell console management, 416–417 commands, 164 opening, 161 user management, 172 conditional directives, C, virtual, 161 vi text editor, 247–249 703–704 const type qualifier, C wildcards, 167–168 confidentiality, security, 508 programming, 710 Yum, 466–469 configuration. See also context menus commercial backup TCP/IP configuration desktop context menus, utilities, 435–436 files 135–136 commercially available Apache Web server, icon context menus, software, office 589–606 136–137 applications, 220–222 Fedora Core, networks, continue statement, C comp newsgroups, 348 52–53 programming, 716–717 49_752622 bindex.qxp 3/28/06 11:39 PM Page 781

Index 781

Control Center, MEPIS KDE tables, defining, 226–227 declarations desktop, 152 tables, loading data, C programming, 700 Coreutils GNU software 227–228 variables, C programming, package, 18 vulnerabilities and, 552 705–706 cpio GNU software date and time decryption package, 18 commands, 173 GPG, 526–527 CPU (central processing Debian GNOME desktop, security, 508 unit), programming, 142 default label, C 674 Fedora Core GNOME programming, 717 crackers, security, 499, 508 desktop, 146 definitions cron Internet service, 580 Knoppix desktop, 148 C programming, 700 crond Internet service, 580 MEPIS KDE desktop, 153 variables, C programming, CrossOver Office, 21, 208, Ubuntu GNOME desktop, 705–706 221–222 158 delete FTP command, 369 cryptography support, date command, 175–176 denial of service, security, kernel, 491 DDoS (distributed denial of 502 CSMA/CD (Carrier-Sense service), security, 509 depmod command, 404 Multiple DEB files Desktop Pager Access/Collision APT and, 459–461 Knoppix desktop, 147 Detection), 280–281 dpkg command, 457–458 MEPIS KDE desktop, 153 CVE (Common filenames, 456–457 SUSE Linux desktop, 155 Vulnerabilities and Debian GNU/Linux Xandros Desktop, 160 Exposures), computer description, 11 detection, host security, vulnerabilities, 550 GNOME desktop, 142–144 552 CVS (Concurrent Versions GUI sysadmin tools, 375 /dev directory, 427 System) inetd, 531 development environment computer vulnerabilities, installation, 42–48 CVS (Concurrent Versions 551 printer configuration, System), 23 description, 23 90–91 GNU C compiler and, 23 software installation, GNU C++ compiler and, 23 104–106 GNU compiler for Java, 23 D standalone servers, 530 GNU debugger and, 23 data protection, security, text mode installation, 82 GNU emacs editor, 23 504 update-rc.d command, GNU make utility and, 23 data types, C programming, 577–578 GNU profiling utility, 23 705–706 updating, 465–466 Perl, 23 databases versions, 15 Python, 23 building, 224–225 debugging RCS (Revision Control creating empty, 225 gdb and, 691–695 System), 23 designing, 225 kernel, 491 shared libraries, 23 MySQL, 209, 223 programming and, 676 Subversion, 23 PostgreSQL, 209, 223 Tcl/Tk (Tool command querying, 228 language and toolkit), 23 device drivers, 401 49_752622 bindex.qxp 3/28/06 11:39 PM Page 782

782 Linux All-in-One Desk Reference For Dummies

devices digital cameras display configuration block devices, 402 digiKam, 229–230 option, Knoppix block devices, kernel, multimedia aplications, desktop, 147 482–483 228 distributed responsibility, character devices, digital signature DNS, 640 402–403 GPG, 525–526 distributions files, 401–403 security, 508 CD with book, 31–32 mounting on file system, digital signatures, 521–522 Debian GNU, 11 429–430 dir FTP command, 369 Fedora Core, 12 naming, udev and, directories , 12 403–404 description, 181 GNU software, 17–19 network devices, 403 listings, commands, kernel, 10 DHCP (Dynamic Host 196–198 Knoppix, 12 Configuration Protocol) management, commands, Linspire, 12 description, 279 170 Live CDs, 13 Internet services, 570 navigating, commands, , 12 Dia, 208 195–196 MEPIS Linux, 12 dialup networking ownership, 516 Linux, 13 connection path, URLs, 337 SUSE Linux, 13 CHAP authentication, pathname, 182 Ubuntu Linux, 13 272–274 permissions, commands, version numbers, 14–15 comparison to other 196–198 Xandros Desktop OS, 13 connections, 255–256 /proc file system, 398–400 dmesg command, 112 connecting with, 267–274 security, 516–520 DMZ, security, 509 DNS (Domain Name top-level, 183–184 DNS (Domain Name Service), 268 directory management, System) IP (Internet Protocol), 268 commands, 201–202 BIND, 642–645 modem connection, Disabled option, SELinux, 57 caching name server 269–270 disclosure of information to configuration, 647–657 overview, 255 public, security, 502 configuration, resolver, PAP authentication, disconnect FTP command, 646–647 272–274 369 distributed responsibility, PPP (Point-to-Point disk partition 640 Protocol), 268 Fedora Core installation, FQDN, 642 PPP (Point-to-Point 50–51 hierarchical domain Protocol), connection installation, 31–32, 33–34 names, 641–642 setup, 270–272 Live CDs, 40 localhost.zone file, Winmodems, 270 SUSE Linux installation, 68 655–656 Dictionary, 208 Windows, resizing, 40–42 name server, 656–657 diff GNU software disk performance, 396–397 overview, 639–641 package, 18 disk-space, usage, primary name server, digiKam commands, 204–206 configuration, 657–659 description, 209 disk usage, 396–397 resolver configuration, digital cameras, 229–230 disks, 25 646–647 resource records, 651–653 49_752622 bindex.qxp 3/28/06 11:39 PM Page 783

Index 783

root zone files, 653–655 DVD drive /etc/at.allow configuration utility programs, 644–645 booting from, 33 file, 390 zone file, 656 installation, 34 /etc/at.deny configuration do statement, C DVDs file, 391 programming, 717 burning, ISO images and, /etc/bash.bashrc documentation, online, 37–39 configuration file, 391 23–24 introduction, 25 /etc/bashrc configuration domain names management, 103 file, 391 FQDN, 642 dynamically linked, shared /etc/cups/cupsd.conf hierarchical, 641–642 libraries, 23 configuration file, 391 URLs, 337 /etc directory, 427 DoS (denial of service) /etc/fonts configuration file, attack, 499, 508 E 391 DOS/Windows file system e-mail /etc/fstab configuration file, mounting disk partition, attachments, 316 391, 430–432 441–442 distributions, 21 /etc/group configuration mounting floppy disks, HTML messages, 316 file, 391, 418–419, 554 442–443 introduction, 253 /etc/grub.conf configuration mtools, 444–448 MTA, 314 file, 391 downloading, software, MUA, 314 /etc/host.conf 461–462 ed text editor configuration file, dpkg command, 457–459 command mode, 241 300–301 driver modules commands, 244 /etc/hosts configuration /etc/modprobe.conf file, description, 18 file, 300, 391 405–406 text input mode, 241 /etc/hosts.allow loading/unloading, emacs GNU software configuration file, 404–405 package, 18, 208 301–302, 391 dselect, dpkg utility, 459 encryption /etc/hosts.deny DSL (digital subscriber GPG, 526–527 configuration file, line) public key, 520–521 302, 391 ADSL (Asymmetric DSL), security, 509 /etc/httpd/conf/httpd.conf 258 Enforcing option, configuration file, 391 comparison to other SELinux, 57 /etc/init.d configuration connections, 255–256 enumerations, C file, 391 connecting with, 256–262 programming, 706 /etc/init.d/rcS configuration IDSL (ISDN DSL), 258 environment variables, file, 392 local loop, 256 programming, 675 /etc/inittab configuration overview, 254–255 Epiphany, 210, 339 file, 386–387, 391 SDSL (Symmetric DSL), error message, saving to /etc/issue configuration file, 258 file, 166 391 setup, 259–262 /etc/apache2/httpd.conf /etc/lilo.conf configuration dual-horned host, security, configuration file, 390 file, 391 509 /etc//sources.list /etc/login.defs configuration file, 390 configuration file, 391 49_752622 bindex.qxp 3/28/06 11:39 PM Page 784

784 Linux All-in-One Desk Reference For Dummies

/etc/modprobe.conf /etc/vfsftpd.ftpusers file, configuration file, 612 F 391, 405–406 /etc/vfsftpd.user_list file, Fedora Core /etc/modules.conf 612 boot loader installation, 52 configuration file, 391 /etc/X11 configuration file, booting, 113–114 /etc/mtab configuration file, 392 chkconfig command, 391 /etc/X11/XF86Config-4 576–577 /etc/named.conf file, configuration file, 392 description, 12 647–650 /etc/X11/XF86Config disk partition, 50–51 /etc/networks configuration configuration file, 392 firewall configuration, file, 300 /etc/X11/xorg.xonf 56–57 /etc/nsswitch.conf configuration file, 392 GNOME desktop, 144–146 configuration file, /etc/xinetd configuration GUI sysadmin tools, 302–303 file, 392 375–376 /etc/passwd configuration /etc/yum.conf configuration installation, 48–57 file, 391, 417–418, file, 392 installation type, 49–50 513–515, 554 Ethernet keyboard, installation, 49 /etc/profile configuration cabling, 281–283 network configuration, file, 391 CSMA/CD, 280–281 52–53 /etc/profile.d configuration overview, 280–281 packages, installation, file, 392 reasons to use, 280 54–56 /etc/rc.d/rc.sysinit setup, 279–283 printer configuration, configuration file, 392 wireless networks. See 92–94 /etc/resolve.conf wireless Ethernet root password, 53–54 configuration file, 301 networks Security Level /etc/shadow configuration Evolution Configuration tool, 540 file, 392, 554 description, 210 SELinux configuration, /etc/shells configuration Fedora Core GNOME 56–57 file, 392 desktop, 146 software installation, /etc/skel configuration file, overview, 317–321 106–107 392 Ubuntu GNOME desktop, standalone servers, 530 /etc/ssh/ssh_config, 158 TCP/IP network OpenSSH and, 533 exploit tools, security, 509 configuration, 284 /etc/ssh/sshd_config, exporting, file system, NFS text mode installation, 82 OpenSSH and, 533 and, 432–433, 662–664 time zone, 53 /etc/sysconfig configuration expression statements, C updates, 466–469 file, 392 programming, 717 xinetd, 531 /etc/sysctl.conf expressions file formats, executable, configuration file, 392 C programming, 711–713 kernel, 481 /etc/termcap configuration Perl, 746, 751–752 file management, file, 392 programming, 676 commands, 200–201 /etc/udev configuration file, regular expressions, Perl, 392 752–755 49_752622 bindex.qxp 3/28/06 11:39 PM Page 785

Index 785

File Manager, MEPIS KDE processing, commands, setup overview, 534–536 desktop, 152 171, 176–179 stateful inspection file sharing, NFS, 661–665 security, 516–520 firewall, 536–537 file systems sharing, NFS, 432–434 floppy disks, backup commands for, 173 system configuration files, devices, 435 description, 181 390–392 floppy tape drive, kernel, devices, mounting, viewing, Konqueror, 486–487 429–430 191–193 flow control, scripting, directories, 427–428 filters, packet filter firewall, 736–739 DOS/Windows, 441–444 536 flow-control statements exporting, NFS, 662–664 finding files, commands, Perl, 746, 755–758 hierarchy, 426–428 202–203 programming and, 677 introduction, 26 Findutils GNU software folders kernel and, 489–490 package, 18 Nautilus, browsing, mounting, NFS, 664–665 finger GNU software 188–190 mounting/unmounting, package, 18 viewing, Konqueror, system administration fingerprints, 521 191–193 and, 374, 433–434 Firefox Web Browser for statement NFS, 26, 432–434 description, 210 C programming, 717–718 overview, 425–426 Fedora Core GNOME Perl, 757–758 file transfer utilities, desktop, 146 foreach statement, Perl, distributions, 22 introduction, 339 757–758 filenames Knoppix desktop, 147 FQDN (fully qualified DEB files, 456–457 MEPIS KDE desktop, 153 domain name), 642 pathname and, 182 surfing, 343–344 frame buffer, kernel, 488 pipe prefix, Perl, 761–762 user interface, 340–342 FTP (file transfer protocol) RPM files, 451 Xandros Desktop, 159 command-line FTP client, URLs, 337 firewalls 366–370 files application-proxy gateway commands, 366–370 device files, 401–403 firewall, 537–538 description, 279 finding, commands, characteristics, 535–536 /etc/vfsftpd.ftpusers file, 171, 202–203 Fedora Core 612 management, commands, configuration, 56–57 /etc/vfsftpd.user_list file, 170 iptables command, 612 ownership, 422–423, 516 541–545 graphical FTP clients, permissions, changing, NATs (Network Address 361–366 517 Translations), 538 Internet services, 570 permissions, default, networks and, 27 server configuration, 517–519 packet filter firewall, 536 608–612 permissions, set user ID, packet filtering, enabling, server installation, 607 519–520 539–545 SUSE Linux installation, /proc file system, 398–400 security, 509 60–63 vsftpd configuration files, 608–309 49_752622 bindex.qxp 3/28/06 11:39 PM Page 786

786 Linux All-in-One Desk Reference For Dummies

function keys GNOME Calculator, 208, gnumeric GNU software Debian installation, 44 219–220 package, 18 SUSE Linux installer, 64 GNOME CD Player, 209 goto statement, C function library, C GNOME Ghostview, 236–237 programming, 718 programming, 722–723 GNOME (GNU Object Model goto statement, Perl, 758 function prototypes, C Environment) GPG programming, 721–722 customization, 119–121 decryption, 526–527 functions Debian desktop, 142–144 encryption, 526–527 built-in, Perl, 762–763 Fedora Core desktop, key exchange, 524–525 C programming, variable 144–146 key pair generation, 523 number of arguments, introduction, 20 signing files, 525–526 722 launcher applets, 117 GPL (GNU General Public Perl, 746 login, 116 License), 695–697 programming and, 677 logout, 121 gpm Internet service, 580 shell, scripting, 735–736 menu buttons, 117–119 GQview, 210 overview, 115–116 graphical FTP clients Pager applet, 117 gFTP, 362–363 G panels, 116–117, 137–139 introduction, 361–362 Gaim Places menu, 118 KBear, 363–364 description, 210 System menu, 118 Web browser as FTP overview, 327–329 Ubuntu Linux desktop, client, 364–366 gawk GNU software 156–158 graphics, advanced, kernel package, 18 Weather applet, 117 support, 487 GCC compiler, 678–682 GNU graphics and imaging gcc GNU software licenses, 695–697 applications package, 18 shell, 17 Akregator, 211 gdb GNU software text terminal, 17 GGv, 210 package, 18 GNU C compiler, 23 The GIMP, 210, 234–236 gdbm GNU software GNU C++ compiler, 23 GNOME Ghostview, package, 18 GNU C Library GNU 236–237 Gentoo Linux, 12 software package, 18 GQview, 210 get FTP command, 369 GNU compiler for Java, 23 KFax, 210 gettext GNU software GNU debugger Kmail, 211 package, 18 description, 23 Konqueror, 211 gFTP, 210, 362–363 gdb, debugging with, Kooka, 210 GGv, 210 691–695 KPhone, 211 ghostscript GNU software gdb, running, 689–690 KSnapshot, 210 package, 18 gdb commands, 690–691 Linphone, 211 Ghostview, 236–237 GNU emacs editor, 23 Skype, 211 ghostview GNU software GNU profiling utility, 23 XChat, 211 package, 18 GNU Project, 16 Xpdf, 210 The GIMP GNU software GNU software, packages, XSane, 210 package, 18, 20, 210, 17–19 xscanimage, 210 234–236 GNUchess GNU software grep command, 163 package, 18 grep GNU software package, 19 49_752622 bindex.qxp 3/28/06 11:39 PM Page 787

Index 787

groff GNU software host addresses, IP package, 19 H addresses, 277 groups host connectivity, 304–305 hard drive file ownership, 422–423 host security installation and, 34 managing, 418–419 operating system, 552 programming, 674 growisofs, 209 permissions, 552 storage, 25 GRUB boot loader host-security tools, 558 hardware Fedora Core installation, 52 HTML (Hypertext Markup DVD drive, 34 introduction, 111–112 Language) hard drives, 34 setup, 493–495 anchor, URLs, 337 installation, 34–36 gtk+ GNU software Web documents, 334 keyboard, 34 package, 19 HTML messages, e-mail, 316 modem, 34 GUI desktops HTTP (HyperText Transfer monitor, 35 common features, 134–142 Protocol) mouse, 35 context menus, 135–136 description, 279 network card, 35 default, 115, 133 HTTP daemons, 583 printer, 35 GNOME, 115–121 Internet services, 570 processor, 35 icon context menus, as Internet standard, 584 RAM, 35 136–137 Web documents, 334 SCSI controller, 35 KDE, 122–125 httpd, 22 sound card, 35 Main menu, 139–142 HTTPD directives, Apache SUSE Linux, 36 panels, 137–139 Web server system administration, 374 SUSE Linux, 153–156 configuration files, video card, 35 Xandros, 158–160 594–596 hash, security, 509 GUI file managers httpd Internet service, 580 hash FTP command, 369 Konqueror, 190–194 hypertext links. See links hashes, 521 Nautilus shell, 186–190 header files, C program- GUI system administration ming, 722–723 tools I Help Debian, 375 Ubuntu GNOME desktop, I/O redirection, shell Fedora Core, 375–376 158 commands, 165 Knoppix, 376–377 Xandros Desktop, 160 I20 support, kernel, 484–485 MEPIS Linux, 377–378 help, commands, 170 I2C support, kernel, 487 SUSE Linux, 378–379 help FTP command, 369 icon context menus, 136–137 Ubuntu Linux, 379–380 Hide Panel option icons Xandros, 380–381 SUSE Linux desktop, 155 Debian GNOME desktop, GUI text editors, 239–240 Xandros Desktop, 160 142 GUI user managers, adding Hide panel option, Knoppix Fedora Core GNOME user accounts, 414–416 desktop, 147 desktop, 144 GUI utilities, root, 382 hiding NATs, 538 Knoppix desktop, 147 GUIs (graphical user hiearchy of file system, MEPIS KDE desktop, 150 interfaces), 426–428 SUSE Linux desktop, 154 applications, 19–21 /home directory, 428 Xandros Desktop, 158 gzip GNU software Home Folder IDE Zip drives, backup package, 19 Knoppix desktop, 147 devices, 435 MEPIS KDE desktop, 152 IDSL (ISDN DSL), 258 SUSE Linux desktop, 155 49_752622 bindex.qxp 3/28/06 11:39 PM Page 788

788 Linux All-in-One Desk Reference For Dummies

IDSs (Intrustion Detection innd, 22 remote access, 254 Systems), 558 innd Internet service, 580 servers, 21–22 IEEE 1394 support, kernel, input device support, TCP/IP, 277 484 kernel, 486 Web, 254 ieee newsgroups, 348 insmod command, 404 Internet access, security, if-else statement, C installation 504 programming, 718–719 Apache Web server, Internet applications if statement 587–588 Akregator, 211 C programming, 718 Debian software, 104–106 Epiphany, 210 Perl, 755–756 disk partition, 31–34 Evolution, 210 IM clients Fedora Core, 48–57 Firefox, 210 Gaim, 327–329 Fedora Core software, Gaim, 210 Kopete, 329–331 106–107 gFTP, 210 image FTP command, 369 hardware and, 34–36 KMail, 211 implementation, security, INN server, 628 KNode, 210 504–505 introduction, 27–28 Konqueror, 211 Impress, OpenOffice.org, Live CD distribution, 33 Kopete, 210 217–218 mail server, 613–628 KPhone, 211 incident handling, security, MEPIS, 57–60 Linphone, 211 504 MEPIS software, 104–106 Lynx, 210 incident response, 555 RPMs, 453–454 Mozilla, 210 incremental backups, 440 Samba, 666–667 Pan, 211 indent GNU software software, 103–104 Skype, 211 package, 19 SRPMs, 464–465 Thunderbird, 210 inetd SUSE Linux, 60–71 XChat, 211 Internet super server, SUSE Linux software, Internet servers 572–573 107–108 httpd, 22 network security review, text mode, 82 innd, 22 555–556 Ubuntu software, 104–106 in.telnetd, 22 Info Center, MEPIS KDE Unbuntu Linux, 71–72 sendmail, 22 desktop, 152 Xandros Desktop OS, sshd, 22 information sharing via 73–80 super servers, 530–531 Internet, 254 Xandros software, 108–110 vsftpd, 22 init command integrity, security, 509 Internet services run levels, 387–388 in.telnetd, 22 acpid, 580 starting/stopping servers, Internet apache, 580 389 connections, 254–256 apache2, 580 init process e-mail, 253 apmd, 580 booting, 384–386 information sharing, 254 atd, 580 run level, 385 Internet services, 278–279 autofs, 580 INN server LAN connection, 285–286 clients, 565 configuration, 628–635 as network of networks, cron, 580 installation, 628 254 crond, 580 InterNetNews, 630–634 newgroups, 254 DHCP and, 570 starting, 628–635 port numbers, 278–279 FTP and, 570 inn.conf file, 631–632 gpm, 580 49_752622 bindex.qxp 3/28/06 11:39 PM Page 789

Index 789

GUI tools, 578–581 Internet super servers, introduction, 20 HTTP, 570 530–531, 572–575 Knoppix, 146–150 httpd, 580 InterNetNews logout, 125 innd, 580 files, 630–631 MEPIS desktop, 150–153 isdn, 580 incoming.conf file, 634 panel, 122 named, 580 inn.conf file, 631–632 KDE System Guard, MEPIS network, 580 newsfeeds file, 632–634 KDE desktop, 152 networking, 580 programs, 630 kernel nfs, 580 readers.conf file, 634 ATA support, 483 NFS and, 570 startup, 635 ATAPI support, 483 nfslock, 580 IP addresses block devices, 482–483 nfsserver, 580 dotted-decimal notation, boot loader and, 112 NNTP, 570 278 boot options, 87–89 NTP, 570 dotted-quad notation, 278 building, 491–492 overview, 565–566 host addresses, 277 bus options, 481 pcmcia, 580 IP routing table, 304 character devices, 486 port numbers, 570–571 network addresses, 277 configuration, 476–491 portmap, 580 IP spoofing, security, 509 cryptography support, protocols, 570–571 IPSec, security, 509 491 samba, 581 iptables command, 541–545 debugging, 491 security, 504, 529–532 IPv6, 278 distributions, 10 sendmail, 581 ISA bus, 481 executable file formats, server processes, 571 isdn Internet service, 580 481 servers, 565 ISDN subsystem, kernel, file systems support, smb, 581 486 489–490 smbfs, 581 ISOLINUX boot loader, 112 floppy tape drive, 486–487 SMTP and, 570 frame buffer, 488 SNMP and, 570 graphics, advanced, 487 snmpd, 581 J I10 support, 484–485 sockets, 566–569 job scheduling I2C support, 487 spamassassin, 581 one-time jobs, 407–409 IEEE 1394 support, 484 ssh, 581 recurring jobs, 409–412 input devices, 486 SSH and, 570 installation, 493–495 sshd, 581 ISDN subsystem support, standalone, security, 530 K 486 sysklogd, 581 loadable module support, syslog, 581 k12 newsgroups, 348 479 TCP/IP, 566–569 Kaffeine, 209 memory technology TELNET, 570 Kate, 208 devices, 481 TFTP, 571 K3b, 209 MFM support, 483 vsftpd, 581 KBear, 363–364 modular, 475–476 winbind, 581 KCalc, 208 monolithic, 475–476 xfs, 581 KDE (K Desktop multimedia device xinetd, 581 Environment) support, 487 ypbind, 581 calculator, 219–220 native language support, customization, 124–125 490 49_752622 bindex.qxp 3/28/06 11:39 PM Page 790

790 Linux All-in-One Desk Reference For Dummies

kernel (continued) text mode installation, 82 libpng GNU software networking support, 485 update-rc.d command, package, 19 partition types, 490 577–578 licenses, 695–697 Plug and Play support, 482 Knoppix menu, Knoppix LILO boot loader, 111–112 port support, 482 desktop, 147 links, 335–337 power management Konqueror Web browser Linspire, 12 options, 480 files, viewing, 191–193 Linux processor type, 479–480 folders, viewing, 191–193 commands, 170–173 RAM disk file, creating, MEPIS KDE desktop, 153 distributions, 10–14 492–493 overview, 339 introduction, 9 rebuilding, 474–491 SUSE Linux desktop, 155 linux newsgroups, 348 RLL support, 483 viewing Web pages, 194 Linux-related newsgroups, SCSI devices, 484 Kontact 348–349 security options, 491 description, 208 Live CDs, 13 setup options, 479 MEPIS KDE desktop, 153 disk partition, 40 sound support, 488 overview, 218–219 installation, 33 telephony support, 486 SUSE Linux desktop, 155 Knoppix, 36 USB support, 488 Kooka, 210 loadable module support, version numbers, 14 Kopete kernel, 479 vulnerabilities, 552 description, 210 loading/unloading modules, watchdog timer, 486 overview, 329–331 commands, 404–405 key pairs KOrganizer, 208 localhost.zone file, DNS, exchanging keys, 524–525 KsCD, 209 655–656 generating, 523 KSnapshot, 210 Lock Desktop, Xandros keyboard ksyms command, 404 Desktop, 160 Fedora Core installation, 49 KWrite, 208 log analysis and monitoring installation, 34 tools, 558 SUSE Linux installation, 68 logic bombs, security, 509 keyboard layout, Knoppix L login desktop, 147 LANs (local are GNOME, 116 KFax, 210 networks), 27 root, 381–382 KMail, 325–327 Ethernet, setup, 279–283 Logout, Xandros Desktop, KNode, 354–356 Ethernet cabling, 281–283 160 description, 210 Internet connection, logout KNode newsreader, 350 285–286 GNOME, 121 Knonqueror Web Browser, TCP/IP, 275–279 KDE, 125 Knoppix desktop, 147 TCP/IP configuration, LONE-TAR utility, 436 Knoppix 283–285 LPJ (loops per jiffy), 112 boot commands, 84–86 Launcher applets, GNOME, ls command, 164 burning CDs/DVDs, 38–39 117 ls FTP command, 369 description, 12 lcd FTP command, 369 LSB (Linux Standard Base) exploring Live CD, 36 less GNU software ABI and, 15 GUI sysadmin tools, package, 19 certification program, 16 376–377 LGPL (GNU Library General common specification, 15 KDE desktop, 146–150 Public License), hardware-specific Live DVD, 13 695, 697 specifications, 15 printer configuration, /lib directory, 428 lsmod command, 404 94–96 Lynx, 210 49_752622 bindex.qxp 3/28/06 11:39 PM Page 791

Index 791

menu buttons, GNOME mouse M desktop, 117–119 installation, 35 MEPIS Linux SUSE Linux installation, 68 m4 GNU software description, 12 Mozilla, 210, 339 package, 19 GUI sysadmin tools, mput FTP command, 369 m4 macro processor, 377–378 MTA (mail transport agent), sendmail, 618–620 inetd, 531 314 macros, C programming, installation, 57–60 mtools GNU software 702–705 KDE desktop, 150–153 package mail readers printer configuration, commands, 446–447 Evolution, 317–321 94–96 description, 19 KMail, 325–327 software installation, /etc/mtools.conf file, Thunderbird, 321–325 104–106 445–446 mail server standalone servers, 530 overview, 444–445 installation, 613–628 update-rc.d command, MUA (mail user agent), sendmail, 614–628 577–578 314 Main menu updating, 465–466 multimedia applications categories, 141 MEPIS OS Center, MEPIS amaroK, 209 introduction, 139 KDE desktop, 152 audio CDs, 228, 230–231 Knoppix desktop, 147 MFM support, kernel, 483 burning CDs, 233–234 MEPIS KDE desktop, 150 mget FTP command, 369 cdrdao, 209 SUSE Linux desktop, 155 microprocessor, 24 cdrecord, 209 Xandros Desktop, 159 misc newsgroups, 348 digiKam, 209 make files, reading, 682 mitigation, security, 504–505 digital cameras, 228 make utility (GNU) mkdir FTP command, 369 GNOME CD Player, 209 description, 19, 23 mls FTP command, 369 growisofs, 209 makefile names, 683 /mnt directory, 428 Kaffeine, 209 makefile options, 683–684 modem, installation, 34 K3b, 209 makefile sample, 686–687 moderated newsgroups, 348 KsCD, 209 makefiles, 682 modinfo command, 404 Rhythmbox, 209 running, 687–689 modprobe command, 404 sound files, 231–233 variables, 684–686 modular kernel, 475–476, Totem, 209 man command, man 491–492 X-CD-Roast, 209 pages, 24 modules, Perl, 746, 763–769 xine, 209 man pages, documenta- monitor, installation, 35 XMMS, 209 tion, 24 monolithic kernel, 475–476 multimedia devices, kernel, managing groups, 418–419 Mount Windows Shares, 487 managing security, 505 MEPIS KDE desktop, 153 MySQL Mandriva Linux, 12 mounting description, 209 MD5 message-digest commands, 203–204 MySQL monitor, 226 algorithm, 515 devices on file system, querying databases, 228 mdelete FTP command, 369 429–430 SQL and, 223 mdir FTP command, 369 file system, NFS, 433–434, tables, defining, 226–227 /media directory, 428 664–665 tables, loading data, 228 memory floppy disks, programming, 674 DOS/Windows system, technology devices, 442–443 kernel, 481 NTFS partition, 444 49_752622 bindex.qxp 3/28/06 11:39 PM Page 792

792 Linux All-in-One Desk Reference For Dummies

network security revew linux, 348 N inetd and, 555–556 Linux-related, 348–349 xinetd and, 555–556 misc, 348 name server, DNS, 657–659 network status, 305–307 moderated, 348 named daemon, BIND, 643 network utilities, 558 news, 348 named Internet service, 580 networking overview, 254 naming, devices, udev, kernel support, 485 posting news, 353–354 403–404 TCP/IP, configuration, reading, 349–356 NATs (Network Address 283–285 rec, 348 Translations), wireless (See wireless sci, 348 implementation, 538 Ethernet networks) soc, 348 Nautilus File Browser, networking Internet subscriptions, 353 Debian GNOME service, 580 talk, 348 desktop, 142 networks testing, 637 Nautilus shell configuration, at boot Usenet, 345 burning CDs, 186–187 time, 308–309 UUCP, 345 files, viewing, 186 configuration, Fedora Web sites for, 357 folders, browsing in Core installation, 52–53 newsreaders navigation window, firewalls, 27 introduction, 349–350 188–190 LANs, 27 KNode, 350, 354–356 folders, viewing, 186 protocols, 21 Pan, 350 object window, 186 security, system Thunderbird, 350–353 navigating, Linux commands administration, 374 nfs Internet service, 580 and, 194–206 status, system NFS (Network File System) ncurses GNU software administration, 374 computer vulnerabilities package, 19 news newsgroups, 348 and, 551 Nessus Security Scanner, news server, INN server, description, 279 559–561 628–635 exporting file system, netfilter, 539–545 news services, 432–433, 662–664 network, security issues, distributions, 21 file sharing, 661–665 506–507 newsgroups Internet services, 570 network addresses, IP adding, 637 mounting file system, addresses and, 277 alt, 347 433–434, 664–665 network card, installation bionet, 347 sharing, 26 and, 35 bit, 347 nfslock Internet service, network devices, 403 biz, 347 580 network interfaces, 303–304 categories, 347–348 nfsserver Internet service, network Internet service, clari, 347 580 580 comp, 347 NIS (Network Information Network layer, TCP/IP, 276 configuration files, Service), computer network management, updating, 636–637 vulnerabilities, 551 TCP/IP configuration hierarchy, 346–347 nmap (network mapper), files, 299–303 hierarchy, defining, 636 port scanning tool, network packets, sniffing, ieee, 348 558–559 307–308 k12, 348 49_752622 bindex.qxp 3/28/06 11:39 PM Page 793

Index 793

NNTP (Network News open FTP command, 369 operators Transfer Protocol), OpenOffice C programming, 711–715 279, 349, 570 description, 208 Perl, 751–752 nonrepudiation, security, Knoppix desktop, 147 /opt directory, 428 509 OpenOffice.org Calc, ownership NTFS partition, mounting, Fedora Core GNOME commands, changing, 444 desktop, 146 199–200 NTP (Network Time OpenOffice.org Impress, directories, 516 Protocol), Internet Fedora Core GNOME files, 516 services, 570 desktop, 146 groups, 422–423 null statement, C OpenOffice.org office suite users, 422–423 programming, 719 Calc, 216–217 NVD (National Vulnerability Impress, 217–218 Database), computer introduction, 214–215 P vulnerabilities, 550 Writer, 215–216 packages OpenOffice.org Quickstart, building from source files, O MEPIS KDE desktop, 461–465 153 groups, Fedora Core objects, Perl, 766–767 OpenOffice.org Writer installation, 54–56 office applications Fedora Core GNOME Perl, 746, 763–766 AbiWord, 208 desktop, 146 packet, security, 510 Applixware Office, 220 MEPIS KDE desktop, 153 packet filter firewall, 536 Aspell utility, 222–223 OpenSSH packet filtering calculators, 219–220 /etc/ssh/ssh_config, 533 enabling, 539–545 calendars, 218–219 /etc/ssh/sshd_config, 533 security, 510 commercial, 220–222 /usr/bin/scp and, 533 Security Level CrossOver Office, /usr/bin/slogin, 533 Configuration tool, 208, 221–222 /usr/bin/ssh-keygen, 533 539–540 Dia, 208 /usr/sbin/ssh, 532 packet sniffers, 558 OpenOffice.org, /usr/sbin/sshd, 532 Pager applet, GNOME, 117 208, 214–218 OpenSSL, computer PAMs (pluggable StarOffice, 208, 220–221 vulnerabilities, 551 authentication office tools operating system modules), 515 Aspell, 208 definition, 9 Pan newsreader, 350 Dictionary, 208 host security, 552 panels GNOME Calculator, 208 multitasking, 10 common features, 137–139 KCalc, 208 multiuser, 10 GNOME, 116–117 Kontact, 208 overview, 10 KDE, 122 KOrganizer, 208 programming, 675 partition. See disk partition one-time jobs, scheduling, resetting, 10 kernel, 490 407–409 system administration, NTFS, mounting, 444 online documentation, 374 PartitionMagic, resizing 23–24 Windows partition, 40–41 49_752622 bindex.qxp 3/28/06 11:39 PM Page 794

794 Linux All-in-One Desk Reference For Dummies

password checking tools, functions, built-in, /etc/vsftpd, 554 558 762–763 /etc/vsftpd.ftpusers, 554 passwords goto statement, 758 /etc/xinetd.conf, 554 /etc/group, 554 if statement, 755–756 /etc/xinetd.d, 554 /etc/passwd, 554 introduction, 743–744 files, changing, 517 /etc/shadow, 554 Linux command access, files, default, 517–519 PAMs, 515 758–760 host security, 552 root, forgotten, 383–384 modules, 746, 763–766 set user ID, 519–520 root, Fedora Core, 53–54 modules, English, 768–769 /var/log, 554 securing, 513–515 objects, 766–767 /var/log/lastlog, 554 security, 554–555 objects, accessing, /var/log/messages, 554 shadow passwords, 767–768 /var/log/wtmp, 554 514–515 objects, creating, 767–768 Permissive option, patch GNU software operators, 751–752 SELinux, 57 package, 19 packages, 746, 763–766 physical console, virtual pathname, parts of, 182 script writing, 745–746 console and, 161 PCI bus, 481 for statement, 757–758 Physical layer, TCP/IP, 277 PCMCIA bus, 481 statements, 746 PKI (Public Key pcmcia Internet service, subroutines, 762–763 Infrastructure), 580 syntax, 747 security, 510 penetration testing, 557 unless statement, 755–756 Places menu performance variables, 746–750 Fedora Core GNOME disk performance, 396–397 which command, 744 desktop, 145 disk usage, 396–397 while statement, 756–757 Ubuntu GNOME desktop, system administration, permissions 157 374 /boot/grub/menu.lst, 553 Places menu, GNOME, top utility, 393–395 commands, 196–198, descripton, 118 uptime command, 395 199–200 Plug and Pay support, vmstat utility, 395–396 /etc/cron.allow, 553 kernel, 482 perimeter network, /etc/cron.deny, 553 pointers, C programming, security, 510 /etc/crontab, 553 708–709 peripherals, 24, 26 /etc/hosts.allow, 553 port address transations, Perl /etc/hosts.deny, 553 NATs, 538 description, 23 /etc/logrotate.conf, 553 port numbers, TCP/IP, expressions, 746, 751–752 /etc/pam.d, 553 278–279 expressions, regular, /etc/rc.d, 553 port scanners, tool names, 752–755 /etc/securetty, 553 558 file access, 760–761 /etc/security, 553 port scanning, security, 510 filenames, pipe prefix, /etc/shadow, 553 port-scanning tools, 761–762 /etc/shutdown.allow, 553 security, 529 flow-control statements, /etc/ssh, 553 port support, kernel, 482 746, 755–758 /etc/sysconfig, 553 portmap Internet service, foreach statement, /etc/sysctl.conf, 553 580 757–758 /etc/syslog.conf, 553 ports, URLs, 337 functions, 746 /etc/udev/udev.conf, 554 49_752622 bindex.qxp 3/28/06 11:39 PM Page 795

Index 795

PostgreSQL processes description, 209 commands for, 172 Q relational databases, 223 programming, 675 QTParted, resizing posting news to shell commands, 174–175 Windows partition, newsgroups, 353–354 processor, installation, 35 41–42 power management, kernel, processor types, kernel, querying databases, 480 479–480 MySQL, 228 Powersaver Tool, SUSE programming querying RPMs, 451–453 Linux desktop, 155 C. See C programming question mark (?) wildcard, predefined variables, Perl, command line, 675 167–168 750 command processor, 675 quit FTP command, 369 preprocessor directives, compilers, 676 C programming computer, 673–674 conditional directives, CPU, 674 R 703–704 debugging, 676 include directive, 702 environment variables, RAM (random access macro definition, 702–705 675 memory), 24 overview, 701–702 expressions, 676 disk file, creating, 492–493 prevention, host security, flow-control statements, installation, 35 552 677 programming, 674 primary name server, functions, 677 rcs GNU software configuration, 657–659 hard drive, 674 package, 19 printer, installation, 35 memory, 674 RCS (Revision Control printers operating system, 675 System), 23 Debian configuration, overview, 676–677 reading RSS feeds, 358–360 90–91 processes, 675 reboot problem, Fedora Core shell, 675 troubleshooting, 87 configuration, 92–94 software-development rebooting, 495–496 Knoppix configuration, tools, 677–695 rec newsgroups, 348 94–96 statements, 677 recurring jobs, scheduling, MEPIS configuration, text editor, 676 409–412 94–96 variables, 676 recv FTP command, 369 SUSE configuration, 97–99 prompt FTP command, 369 regular expressions, Perl, Ubuntu configuration, protocols 752–755 99–100 description, 21 remote access, Internet Xandros configuration, URLs, 336–337 use, 254 100–103 proxy server, security, 510 remote login printing, system public key cryptography, distributions and, 22 administration, 374 security, 510 SSH, 532–534 probability and impact, public key encryption, removing RPMs, 454 security, 503 520–521 rename FTP command, 369 /proc file system, 398–400 put FTP command, 369 repeating commands, 169 pwd FTP command, 369 resolver library, DNS, 644 Python, 23 resource record (RR) formats, 650–653 49_752622 bindex.qxp 3/28/06 11:39 PM Page 796

796 Linux All-in-One Desk Reference For Dummies

response, host security, 552 SDSL (Symmetric DSL), 258 responsibilites, security, S security 504 application gateway, 508 Samba return statement, C audits, 504 configuration, 667–669 programming, 719 authentication, 504, 508 installation, 666–667 Rhythmbox, 209 authorization, 504 resources, 669 risk analysis, security backdoor, 508 software package probability and impact, bastion host, 508 components, 665–666 503 buffer overflow, 508 testing, 669 threats, 502 business requirements, Windows server setup, vulnerabilites, 502–503 501 665–669 RLL support, kernel, 483 CA (certificate authority), samba Internet service, 581 rmdir FTP command, 369 508 SANS Institute, computer rmmod command, 404 certificate, 508 vulnerabilities, 550 root confidentiality, 508 /sbin directory, 428 becoming, 173–174 crackers, 499, 508 /sbin/hotplug, device /etc/passwd file entry, 513 data protection, 504 naming, 403 GUI utilities, 382 DDoS (distributed denial /sbin/udev, device naming, logging in as, 381–382 of service), 509 403 password, forgotten, decryption, 508 scalar variables, Perl, 383–384 digital signature, 508 747–749 /root directory, 428 directories, 516–520 scheduling jobs root domain, DNS, 641–642 DMZ, 509 one-time jobs, 407–409 root password DoS (denial of service) recurring jobs, 409–412 Fedora Core, 53–54 attack, 499, 508 sci newsgroups, 348 GNOME login, 116 dual-horned host, 509 screening router, security, root zone files, DNS, ecryption, 509 510 653–655 encryption, 520–527 scripting RPM files exploit tools, 509 bash shell, built-in commands, 450 files, 516–520 commands, 739–742 filenames, 451 firewalls, 509, 534–545 flow control, 736–739 installation, 453–454 framework, establishing, introduction, 731–734 introduction, 449–450 500–505 Perl, 745–746 querying, 451–453 GPG, 523–527 shell functions, 735–736 removing, 454 hash, 509 storage, 734–735 SRPMs (source RPMs), host, 509 scripts, writing, 179–180 464–465 host security issues, SCSI controller, installa- upgrading, 454–455 506, 552–555 tion, 35 verification, 455 implementation, 504–505 SCSI devices, kernel, 484 RSS feeds, reading, 358–360 incident handling, 504 SCSI tape drives, backup run level incident response, 555 devices, 435 init command, 387–388 integrity, 509 SCSI Zip drives, backup init process, 385 Internet access, 504 devices, 435 49_752622 bindex.qxp 3/28/06 11:39 PM Page 797

Index 797

Internet services, 504, symmetric key sendmail.cf file, syntax, 529–532 encryption, 510 623–625 introduction, 25 system administration, servers IP spoofing, 509 374 Internet servers, 21–22 IPSec, 509 TCP wrapper, 531–532 Internet services, 565 kernel, 491 test methodology, standalone, running, logic bombs, 509 implementing, 549–557 575–581 management, 505 testing tools, 557–561 starting/stopping, 389–390 mitigation, 504–505 threats, 511 Windows, Samba, 665–669 monitoring system Trojan horses, 511 set user ID permission, security, 527 updates, 511–512 519–520 network security issues, viruses, 511 setuid program, security, 506–507 vulnerabilities, 511 510 news, 511–512 war-dialing, 511 shadows passwords, nonrepudiation, 509 war-driving, 511 514–515 packet, 510 worm, 511 shared libraries packet filtering, 510 security audits C programming, 724–729 PAMs (pluggable introduction, 504 description, 23 authentication need for, 548 sharing files, NFS, modules), 515 non-technical aspects, 548 26, 432–434 passwords, 513–515, overview, 547–549 Sharutils GNU software 554–555 technical aspects, 549 package, 19 penetration testing, 557 sed GNU software shell. See also bash shell perimeter network, 510 package, 19 bash, built-in commands, PK (Public Key SELinux, Fedora Core 739–742 infrastructure), 510 configuration, 56–57 blanks, 163 policy, 500 send FTP command, 369 command completion, 167 policy establishment, sendmail command I/O redirection, 503–504 alias file, 628 165 port scanning, 510 computer vulnerabilities, command input, 164 proxy server, 510 551 command line, 163 public key cryptography, configuration file, 617–623 command output, 164 510 description, 22 command syntax, 162–164 reasons for, 499–500 /etc/mail directory, command wildcards, responsibilities, 504 625–626 167–168 risk analysis, 502–503 .forward file, 627 commands, 127 screening router, 510 introduction, 581 commands, combining, securing system, 505–507 m4 macro processor, 164 setuid program, 510 618–620 commands, shadow passwords, macro file, 620–623 concatenating, 164 514–515 mail delivery, 615–617 commands, input, 165 signing files, 520–527 overview, 614 commands, repeating, 169 sniffer, 510 testing, 614–615 Spyware, 510 49_752622 bindex.qxp 3/28/06 11:39 PM Page 798

798 Linux All-in-One Desk Reference For Dummies

shell (continued) sniffer, security, 510 source code, programming, commands, saving output sniffing network packets, 676 to file, 165 307–308 source files functions, scripting, SNMP (Simple Network building software 735–736 Management Protocol) packages from, 461–465 GNU, 17 computer vulnerabilities, programming and, 676 grep command, 163 551 spamassassin Internet ls command, 164 description, 279 service, 581 overview, 125–126 Internet services, 570 spyware, security, 510 process management, snmpd Internet service, 581 SRPMs (source RPMs), 174–175 soc newsgroups, 348 installation, 464–465 root and, 173–174 sockets /srv directory, 428 script writing, 179–180 attributes, 566 ssh Internet service, 581 stderr, 164 client/server model, 568 SSH (Secure Shell) stdin, 164 connection-oriented description, 279 stdout, 164 protocols, 567 Internet services, 570 terminal, opening, 161 connectionless protocols, remote logins, 532–534 shell scripting. See 567 sshd Internet service, scripting Internet services, 566–569 22, 581 Show Desktop option software standalone Internet Debian GNOME desktop, development services 142 environment, 22–23 security, 530 Fedora Core GNOME downloading, 461–462 starting automatically at desktop, 146 installation, 103–104 boot time, 576–581 Knoppix desktop, 147 packages, building from starting/stopping MEPIS KDE desktop, 152 source files, 461–465 manually, 575–576 Ubuntu GNOME desktop, SUSE Linux installation, 68 StarOffice, 21, 208, 220–221 158 system administration, starting INN server, 628–635 Xandros Desktop, 160 374 starting Linux, boot loader, shut down, 129–130 unpacking, 461–462 111 signal 11 error, 86–87 software-development tools starting servers, 389 signing files C compiler, 677 startup scripts, init digital signatures, 521–522 CVS, 677 process, 388–389 GPG, 525–526 debugger, 677 startup/shutdown, system single-volume archive, gdb, 677 administration, 374 436–437 make utility, 677 stateful inspection firewall, size FTP command, 369 RCS, 677 536–537 Slackware Linux, 13 text editors, 677 statements smb Internet service, 581 version control system, C programming, 715–721 smbfs Internet service, 581 677 Perl, 746 SMTP (Simple Mail Transfer sound, kernel, 488 programming, 677 Protocol) sound card, installation, 35 static NATs, 538 description, 279 sound files, playing, status FTP command, 369 Internet services, 570 231–233 49_752622 bindex.qxp 3/28/06 11:39 PM Page 799

Index 799

stderr, shell commands, updates online, 469–470 performance monitoring, 164 xinetd, 531 393–397 stdin, shell commands, YaST, 65–71 printing system, 374 164 SUSE Watcher, SUSE Linux /proc file system, 398–400 stdout, shell commands, desktop, 155 root, logging in as, 164 switch statement, C 381–384 stopping servers, 389 programming, 719–720 security monitoring, 374 storage, hard drive, 25 symmetric key encryption, security setup, 374 su - command, 382 security, 510 software installation, 374 subdirectories Synaptic , SUSE Linux GUI sysadmin /usr, 184–185 MEPIS KDE desktop, tools, 378–379 /var, 185 152 system information, subroutines, Perl, 762–763 syntax, Perl, 747 viewing, 398–400 subscribing to newsgroups, sysfc, device naming, 403 system performance 353 sysklogd Internet service, monitoring, 374 Subversion, 23 581 system startup/shutdown, subversion, computer syslog Internet service, 581 374 vulnerabilities, 551 system administration task automation, 374 super servers, 530–531 backups, 374 Ubuntu GUI sysadmin SUSE Hardware Tool, SUSE Debian GUI sysadmin tools, 379–380 Linux desktop, 155 tools, 375 user accounts, SUSE Help Center, SUSE device files, 401–403 adding/removing, 373 Linux desktop, 155 device naming, udev, utilities, 374 SUSE Linux 403–404 Xandros GUI sysadmin chkconfig command, driver modules, tools, 380–381 576–577 loading/unloading, system configuration, files, description, 13 404–405 390–392 desktop, 153–156 Fedora Core GUI sysadmin system files FTP installation, 60–63 tools, 375–376 /boot/grub/menu.lst, 553 GUI sysadmin tools, file system /etc/cron.allow, 553 378–379 mounting/unmounting, /etc/cron.deny, 553 hardware, 36 374 /etc/crontab, 553 installation, 60–71 hardware management, /etc/hosts.allow, 553 installation from CDs, 374 /etc/hosts.deny, 553 63–65 introduction, 25 /etc/logrotate.conf, 553 packet filtering, 540 job scheduling, 407–412 /etc/pam.d, 553 printer configuration, Knoppix GUI sysadmin /etc/passwd, 553 97–99 tools, 376–377 /etc/rc.d, 553 software installation, MEPIS GUI sysadmin /etc/securetty, 553 107–108 tools, 377–378 /etc/security, 553 standalone servers, 530 network status /etc/shadow, 553 TCP/IP network monitoring, 374 /etc/shutdown.allow, 553 configuration, 284 operating system, 374 /etc/ssh, 553 text mode installation, 82 /etc/sysconfig, 553 49_752622 bindex.qxp 3/28/06 11:39 PM Page 800

800 Linux All-in-One Desk Reference For Dummies

system files (continued) TCP/IP configuration files telephony support, kernel, /etc/sysctl.conf, 553 basic files, 299 486 /etc/syslog.conf, 553 /etc/host.conf, 300–301 TELNET /etc/udev/udev.conf, 554 /etc/hosts, 300 description, 279 /etc/vsftpd, 554 /etc/hosts.allow, 301–302 Internet services, 570 /etc/vsftpd.ftpusers, 554 /etc/hosts.deny, 302 10Base2 Ethernet cabling, /etc/xinetd.conf, 554 /etc/networks, 300 281 /etc/xinetd.d, 554 /etc/nsswitch.conf, 10Base5 Ethernet cabling, /var/log, 554 302–303 281 /var/log/lastlog, 554 /etc/resolve.conf, 301 terminal, opening, 161 /var/log/messages, 554 TCP/IP (Transmission Terminal Program /var/log/wtmp, 554 Control Protocol/ Debian GNOME desktop, system information, Internet Protocol), 21 142 viewing, 398–400 Application layer, 276 Knoppix desktop, 147 System menu, Ubuntu DHCP, 279 MEPIS KDE desktop, 152 GNOME desktop, 158 FTP, 279 SUSE Linux desktop, 155 System menu, GNOME host connectivity, 304–305 test methodology descripton, 118 HTTP, 279 computer vulnerabilities, Fedora Core, 146 Internet, 277 550–552 System Performance Internet services, 566–569 security, overview, Monitor, MEPIS KDE introduction, 275–276 549–550 desktop, 153 IP addresses, 277–278 testing tools, security system security monitoring, IP routing table, 304 host-security tools, 558 527 layers, 276–277 IDSs (Intrustion Detection network interfaces, Systems), 558 303–304 introduction, 557 T Network layer, 276 log analysis and tables, databases network status, 305–307 monitoring tools, 558 defining, 226–227 networking configuration, network utilities, 558 loading data, 227–228 283–285 packet sniffers, 558 talk newsgroups, 348 NFS, 279 password checking tools, tape backups, 439–440 NNTP, 279 558 tar GNU software Physical layer, 277 port scanners, 558 package, 19 port numbers, 278–279 vulnerability scanners, tar program SMTP, 279 558 archives, 26 sniffing network packets, texinfo GNU software automated backups, 440 307–308 package, 19 extracting files, 437–438 SNMP, 279 text editor, programming, incremental backups, 440 SSH, 279 676 multivolume archives, 438 TELNET, 279 Text Editor option, MEPIS options, 437 TFTP, 279 KDE desktop, 153 single-volume archive, Transport layer, 276 text editors 436–437 TCP wrapper ed, 240–244 Tcl/Tk (Tool Command inetd, 572 emacs, 208 Language/toolkit), 23 security, 531–532 GUI text editors, 239–240 Kate, 208 49_752622 bindex.qxp 3/28/06 11:39 PM Page 801

Index 801

KWrite, 208 Totem, 209 unauthorized access, vi, 240–249 Transport layer, TCP/IP, 276 security, 502 vim, 208 Trash icon, Debian GNOME UNIX, shell and, 125–126 text mode installation, 82 desktop, 142 unless statement, Perl, text terminal, GNU, 17 Trojan horse, security, 511 755–756 TFTP (Trivial File Transfer troubleshooting unmounting, commands, Protocol) Knoppix boot commands, 203–204 description, 279 84–86 unpacking software, Internet services and, 571 Linux kernel boot options 461–462 thickwire Ethernet cabling, and, 87–89 update-rc.d command 281 PC reboot problem, 87 Debian, 577–578 thinwire Ethernet cabling, signal 11 error, 86–87 Knoppix, 577–578 281 X Window System, 82–84 MEPIS, 577–578 threats, security twisted-pair cabling, Ubuntu, 577–578 denial of service, 502 Ethernet, 282 Xandros, 577–578 disdclosure of information type definitions, C updates to public, 502 programming, 709–710 Debian GNU/Linux, overview, 511 type qualifiers, C 465–466 unauthorized access, 502 programming, 710 Fedora Core, 466–469 Thunderbird Mail MEPIS Linux, 465–466 buttons, 322–323 online updates, composing messages, U applications, 465–472 324–325 Ubuntu Linux security, 511–512 description, 210 booting, 114 Ubuntu GNOME desktop, Inbox, 324 description, 13 158 overview, 321–325 GNOME desktop, 156–158 Ubuntu Linux, 465–466 sending messages, GUI sysadmin tools, Xandros Desktop, 160, 324–325 379–380 471–472 Xandros Desktop, 159 inetd, 531 upgrades, RPMs, 454–455 Thunderbird newsreader, installation, 71–72 uptime command, 395 350–353 printer configuration, URLs (Uniform Resource time GNU software 99–100 Locators), 335–337 package, 19 software installation, USB support, kernel, 488 time zone 104–106 user accounts Fedora Core, 53 standalone servers, 530 adding, 413–417 SUSE Linux installation, 68 text mode installation, 82 commands for managing, TKIP (Temporal Key update-rc.d command, 416–417 Integrity Protocol), 291 577–578 /etc/passwd file, 417–418 /tmp directory, 428 updating, 465–466 GUI user managers, top-level directories, listing, udev, device naming, 414–416 183–184 403–404 system administration, top utility UDP (User Datagram 373 introduction, 393 Protocol), 567 user environment, 420–422 output screen, 394–395 user FTP command, 369 49_752622 bindex.qxp 3/28/06 11:39 PM Page 802

802 Linux All-in-One Desk Reference For Dummies

users Perl, 746, 747–750 vsftpd commands for programming, 676 configuration files, management, 172 verification, RPMs, 455 608–309 file ownership, 422–423 version numbers description, 22 /usr/bin/scp, OpenSSH, 533 distribution-specific, vsftpd Internet service, 581 /usr/bin/slogin, OpenSSH, 14–15 vsftpd server, security, 530 533 kernel, 14 vsftpd.conf file, 609–612 /usr/bin/ssh-keygen, vi text editor vulnerabilities, security, OpenSSH, 533 buffer, 245 502–503, 511. See also /usr hierarchy, 428 colon command mode, computer /usr/sbin/ssh, OpenSSH, 246 vulnerabilities 532 commands, 247–249 vulnerability scanners, 558 /usr/sbin/sshd, OpenSSH, cursor movement 532 commands, 246 /usr subdirectory, 184–185 text input command W utilities mode, 246 war-dialing, security, 511 commercial backup visual command mode, war-driving, security, 511 utilities, 435–436 246 Wastebasket icon, Debian system administration, video card, installation, 35 GNOME desktop, 142 374 vim, 208 watchdog timer, kernel, 486 UUCP (UNIX-to-UNIX Copy virtual console, opening, Weather, MEPIS KDE Protocol), 345 161 desktop, 153 virtual host setup, Apache Weather applet, GNOME, V Web server, 603–606 117 viruses, security, 511 Web /var hierarchy, 428 vmstat utility, 395–396 distributions, 21 /var/log/apache2 void type, C programming, HTML, 334 configuration file, 392 722 HTTP, 334 /var/log/boot.msg volatile type qualifier, C links, 335–337 configuration file, 392 programming, 710 overview, 333–335 /var/log/cron configuration Volume URLs, 335–337 file, 392 Debian GNOME desktop, uses, 254 /var/log/dmesg 142 Web Browser, Ubuntu configuration file, 392 Fedora Core GNOME GNOME desktop, 158 /var/log/httpd desktop, 146 Web browsers configuration file, 392 MEPIS KDE desktop, 153 Epiphany, 339 /var/log/messages SUSE Linux desktop, 155 Firefox, 339 configuration file, 392 Ubuntu GNOME desktop, as FTP clients, 364–366 /var subdirectory, 185 158 home page, changing, variables Xandros Desktop, 160 342–343 C programming, 705–706 volume, Knoppix desktop, HTML documents, 334 makefiles, 684–686 148 49_752622 bindex.qxp 3/28/06 11:39 PM Page 803

Index 803

introduction, 337–338 WEP and, 289–291 software installation, Konqueror, 339 wireless access point, 108–110 Mozilla, 339 configuration, 292–293 standalone servers, 530 Web servers Workspace Switcher text mode installation, 82 HTML documents, 334 Debian GNOME desktop, udates, 471–472 overview, 337–338 142 update-rc.d command, Web sites Fedora Core GNOME 577–578 newsgroups, 357 desktop, 146 Xandros File Manager, security updates, 511–512 Ubuntu GNOME desktop, Xandros Desktop, 159 WEP (Wired Equivalent 158 XFree86, 20 Privacy), wireless World Wide Web. See Web xfs Internet service, 581 networking, 289–291 worms, security, 511 xine, 209 while statement Writer, OpenOffice.org, xinetd C programming, 720–721 215–216 Internet service, 581 Perl, 756–757 writing scripts, shell, Internet super server, Wi-Fi (Wireless Fidelity) 179–180 573–575 networks, 287 network security review, wildcards in commands, 555–556 167–168 X server, security, 530 winbind Internet service, X-CD-Roast, 209 XMMS, 209 581 X Window System X.OrgX11, 20 window list, Knoppix GUIs, 20 Xpdf, 210 desktop, 147 troubleshooting, 82–84 XSane, 210 window selector, Debian XFree89, 20 xscanimage, 210 GNOME desktop, 142 X.Org X11, 20 XWD (X Window Dump), Windows Xandros Desktop OS scripting and, 731 partitions, resizing, 40–42 booting, 113–114 server setup, Samba, Custom Install, 76–80 Y 665–669 description, 13 Winmodems, 270 Express Install, 75–76 YaST, SUSE installation, wireless Ethernet networks GUI sysadmin tools, 65–71 ad hoc mode, 289 380–381 ypbind Internet service, configuration, 293–297 icons, 158 581 hardware setup, 291–292 inetd, 531 Yum, 466–469 infrastructure mode, 289 installation, 73–80 overview, 287–288 printer configuration, standards, 287–289 100–103 49_752622 bindex.qxp 3/28/06 11:39 PM Page 804

Notes ______