New SA Training Topic 6: Service Management Our organization takes advantage of many service type to provide functionality to users and ease management.

Slides:

Advertisements

Similar presentations

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.

Advertisements

Chapter One The Essence of UNIX.

NIS Consistent configuration across the network. Why NIS? Primary reason is to provide same user configuration across the network Users go any machine.

NIS – Network Information System WeeSan Lee

Hands-On Microsoft Windows Server 2003 Administration Chapter 9 Administering DNS.

Linux Networking TCP/IP stack – kernel controls the TCP/IP protocol – Ethernet adapter is hooked to the kernel in with the ipconfig command – ifconfig.

Chapter 3 Unix Overview. Figure 3.1 Unix file system.

Week 2 - Installation SQL SERVER2000 ENTERPRISE EDITION INSTALLATION.

1 Network File System. 2 Network Services A Linux system starts some services at boot time and allow other services to be started up when necessary. These.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 12: Managing and Implementing Backups and Disaster Recovery.

© 2005 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice Advanced Samba Administration Part.

VPN Plus Samba Making My Home Computing Environment Identical to My Work Computing Environment.

Linux+ Guide to Linux Certification, Third Edition

DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.

1 Chapter Overview Monitoring Server Performance Monitoring Shared Resources Microsoft Windows 2000 Auditing.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Configuring CIFS Upon completion of this module, you should be able to: Configure the Data Mover for a Windows environment Create and Join a CIFS Server.

MCTS Guide to Configuring Microsoft Windows Server 2008 Active Directory Chapter 3: Introducing Active Directory.

Module 7: Configuring TCP/IP Addressing and Name Resolution.

Instructor: Michael Teske BI222.  Lab follow up  Current events  Linux/Unix best practices  Project Management.

Lecture – Single Login NIS and Winbind. NIS Network Information Service (NIS) is the traditional directory service on UNIX platforms Still widely used.

5 Copyright © 2007, Oracle. All rights reserved. Configuring the Oracle Network Environment.

TELE 301 Lecture 11: DNS 1 Overview Last Lecture –Scheduled tasks and log management This Lecture –DNS Next Lecture –Address assignment (DHCP)

1 Web Server Administration Chapter 9 Extending the Web Environment.

Linux Networking #2 Dr. Michael L. Collard 1.

Connecting to Network. ♦ Overview ► A network connection is required to communicate with other computers when they are in a network. Network interface.

Managing Windows Server 2008 R2 Lesson 2. Objectives.

1 Linux Basics for Networking. 2 Module - Linux Basics for Networking ♦ Overview This module focuses on the basics of networking using Redhat Enterprise.

VsFTP in Linux. Introduction to FTP The File Transfer Protocol (FTP) is used as one of the most common means of copying files between servers over the.

SUSE Linux Enterprise Server Administration (Course 3037)

Setting up NIS and HTTP. Network Information Service Reading: 1. Linux NIS HOWTO: howto/HOWTOhttp://

ITI-481: Unix Administration Meeting 5. Today’s Agenda Network Information Service (NIS) The Cron Program Syslogd and Logging.

CIM6400 CTNW (04/05) 1 CIM6400 CTNW Lesson 6 – More on Windows 2000.

system hardening Act of modifying a system to make it more secure Protecting against internal and external threats Usually a balance between security.

SAMBA Integrating Linux and Window. What is Samba? Free suite of programs that enables flavors of UNIX to work with other operating systems such as OS/2.

Network Services CSCI N321 – System and Network Administration Copyright © 2000, 2007 by Scott Orr and the Trustees of Indiana University.

The Linux Operating System Lecture 4: TCP/IP, Networking and Networked Services Tonga Institute of Higher Education.

Automating File Sharing Chapter 19. Chapter Goals Understand how to automount file systems under Windows. Understand how to create a consistent name space.

Learningcomputer.com SQL Server 2008 Configuration Manager.

ITI-481: Unix Administration Meeting 3. Today’s Agenda Hands-on exercises with booting and software installation. Account Management Basic Network Configuration.

October 8, 2015 University of Tulsa - Center for Information Security Microsoft Windows 2000 DNS October 8, 2015.

1 Network Administration ITA3564 Leung Hung

Linux Services Muhammad Amer. 2 xinetd Programs  In computer networking, xinetd, the eXtended InterNET Daemon, is an open-source super-server daemon.

Centralized logins with NIS Eric Stolten Tim Meade Mark Sidnam.

Application Layer Khondaker Abdullah-Al-Mamun Lecturer, CSE Instructor, CNAP AUST.

Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 13 FTP and Telnet.

Berkeley R Utilities & the new S Utilities The Unix (or Berkeley) r utilities provide an alternative to IP facilities telnet and ftp. Three programs: rlogin.

CIS 192B – Lesson 3 Network Information Services.

Networking in Linux. ♦ Introduction A computer network is defined as a number of systems that are connected to each other and exchange information across.

1/14 Char 18 Sharing System Files Content –NIS(The Network Information Service) –NIS+

Linux Overview Why Linux ? Not-so-ancient history –Torvalds, Linus Torvalds, 002 the Helsinki University, as a student, low budget, work home –rapid and.

1 Network Information System (NIS). 2 Module – Network Information System (NIS) ♦ Overview This module focuses on configuring and managing Network Information.

Network Infrastructure Microsoft Windows 2003 Network Infrastructure MCSE Study Guide for Exam

1 Chapter Overview Creating Web Sites and FTP Sites Creating Virtual Directories Managing Site Security Troubleshooting IIS.

Linux Operations and Administration

Linux Operations and Administration

system hardening Act of modifying a system to make it more secure Protecting against internal and external threats Usually a balance between security.

中華技術學院 Linux 課程中華技術學院 Linux 課程 Chap one : Service Control 王俊城RHCE/RHCX.

Lecture 02 File and File system. Topics Describe the layout of a Linux file system Display and set paths Describe the most important files, including.

system hardening Act of modifying a system to make it more secure Protecting against internal and external threats Usually a balance between security.

Chapter 17: Sharing System Files Stephen Workman.

Chap-I Network and System Configuration in Linux

ITIS 3110 System Hardening.

Module Overview Installing and Configuring a Network Policy Server

Chapter 9 Router Configuration (Ospf, Rip) Webmin, usermin Team viewer

Network Services CSCI N321 – System and Network Administration

Network Services.

COP 4343 Unix System Administration

Presentation transcript:

New SA Training Topic 6: Service Management Our organization takes advantage of many service type to provide functionality to users and ease management. Some services we use:  Directory Service  DNS  DHCP  WWW  FTP  Samba

Directory Service Directory Service – A directory service gives us a single point from which we can locate various objects. Some kinds of data that can go into directory services: * hosts/IPs * users * groups* netgroups * passwords * services * networks * software configuration * software installation/availability

Directory Service (cont.) Directory services is a large topic that tries to get at the heart of a hard problem: how is data managed across a system? More concretely Why does every application have a different configuration file in different locations, each of which uses a different syntax? Why is Operating System configuration information scattered around a system? Would it then be better to create some standards for managing this data? (i.e., develop methods for managing CRUD for data?)

Directory Service (cont.) For directory services, these are some helpful dimensions to consider: What data? Where is it kept? How does the application/system know how to find the data? How does the application/system access the data? In addition How are each of those changed? Which can or can't be changed? What are the implications of changing (or not changing) them?

Windows Service Management Windows Services: Control Panel -> Administrative Tools -> Services or net start Tabs General  Startup Type – Auto, Manual, Disabled  Status - Start, Pause, Resume, Stop Log On – Local system acct or other acct Recovery – What should be done if service fails? Dependencies – What depends on this service and what does this service depend on?

How is data managed across a system? Registry Hives – logical groups of keys, subkeys, and values (HKEY’s) Keys - similar to folders Values – setting names and the associated data Active Directory Centrally stores information and settings Some items are distributed back to the clients Windows Service Mgmt (cont.)

Linux Services Xinetd – a daemon that manages other daemons Listens on behalf of the daemons it manages Starts the managed daemons as needed Shuts down the managed daemons as needed Advantages of Xinetd over inetd Flexible configuration language More secure Better log management

Linux Services (cont.) Xinetd Can do more than just start, pause, or stop services However, it doesn't handle dependencies Daemon is xinetd Default configuration is /etc/xinetd.conf Configuration can include the directive includedir /etc/xinetd.d Supports options such as: only_from, no_access, access_times, redirect, cps, max_load, and instances

Linux Services (cont.) Defaults { log_type= SYSLOG local4 info log_on_success= HOST EXIT log_on_failure= HOST ATTEMPT RECORD instances= 2 } Service ftp { socket_type= stream Protocol= tcp wait= no user= root server= /usr/sbin/wu.ftpd server_args= -a only_from= /16 log_on_success+= Duration } Includedir /etc/xinetd.d

Linux Services (cont.) Sample of file included from xinetd.d: # default: off # description: rsync server is a good addition to an # ftp server, as it allows crc checksumming etc. service rsync { disable= yes socket_type= stream wait = no user = root server = /usr/bin/rsync server_args = --daemon log_on_failure += USERID }

Linux Services (cont.) /etc/nsswitch.conf enables various Directory-related libraries Information sources for the following items can be configured using nsswitch.conf in Linux passwd shadow group ethernet addresses hosts (name/IP address mappings) network names and numbers network protocols services mail aliases automount

Linux Services (cont.) Locations to include can be: flat files in standard locations, DNS, NIS, NIS+, etc. The entry '[NOTFOUND=return]' means that the search should stop if the search in the previous location turned up nothing. If the search failed due to some other reason (like no NIS server responding) then the search continues with the next entry Example: passwd:files db nisplus nis hosts:files dns group:files shadow:db files services:nisplus [NOTFOUND=return] files

Linux Services (cont.) NIS: Network Information Services, a protocol developed by Sun to help manage directory services, who made the standard public, and it became a de facto standard. However, the lack of security is a serious problem today. Simple (built on RPCs, master-slave server relationship with replication, a broadcast-based protocol for client-master communication) No security Client can only be in one domain (which is separate from DNS domain!) Client: ypbind Server: ypserv Other commands: ypcat, ypwhich, ypdomainname and ypset

Linux Services (cont.) Files: /etc/yp.conf and /var/ypbinding/[domainname] NIS server configuration: starts with /etc/ypserv.conf /var/yp/Makefile is the basic configuration file. /var/yp/Makefile Configuration is basically:  Pre-setup Makefile (determining maps and locations of data input).  Edit contents  ypmake (which just does a make -f Makefile usually).