Presentation is loading. Please wait.

Presentation is loading. Please wait.

System Administration HW5 - Micro Computer Center yihshih / lctseng.

Published byKenneth Kennedy Modified over 9 years ago

Similar presentations

Presentation on theme: "System Administration HW5 - Micro Computer Center yihshih / lctseng."— Presentation transcript:

1 System Administration HW5 - Micro Computer Center yihshih / lctseng

2 Computer Center, CS, NCTU 2 Share these files: master.passwd hosts group netgroup ypservers amd.map or auto_master sahome saduty sabsd NIS Master NIS Slave ……... sa-core NIS Client ypbind yppush

3 Computer Center, CS, NCTU 3 Export /net/data (ro) /net/home (maproot=nobody) /usr/ports sahome saduty sabsd NFS Master NFS Client ……... sa-core NFS Client nullfs Export /net/data (ro) /net/home (maproot=nobody) /net/admin /usr/ports 1.Sudoers 2./usr/ports

4 Computer Center, CS, NCTU 4 sahome saduty sabsd ……... sa-core ssh 1.Only sa-adm can login sa-core. 2.Connect to sahome only from saduty 3.Connect to sa-core only from sa-bsd ssh

5 Computer Center, CS, NCTU 5 Requirements (1) - Overview  Machines sahome: NFS Server, NIS Master Server, (NIS Client) saduty: NIS Slave Server, (NIS/NFS Client) sabsd: (NIS/NFS Client)  Groups sysadm: can access /net/data/sata, can sudo everything but su and any shells nctucs: everyone  Netgroups sa-adm: admin users, can login sa-core sa-core: core machines (sahome and saduty) sa-bsd: all freebsd machines (sahome, saduty, sabsd)

6 Computer Center, CS, NCTU 6 Requirements (2) - sahome  nullfs /net/home -> /vol/home /net/data -> /vol/data /net/admin -> /vol/admin  NIS Bind priority: sahome>saduty  login sa-adm only Only from saduty

7 Computer Center, CS, NCTU 7 Requirements (3) - saduty  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro) /net/admin -> sahome:/vol/admin (ro)  NIS Bind priority: saduty>sahome  login sa-adm only

8 Computer Center, CS, NCTU 8 Requirements (4) - sabsd  NFS /net/home -> sahome:/vol/home (maproot=nobody) /net/data -> sahome:/vol/data (ro)  NIS Bind priority: saduty>sahome  login All

9 Computer Center, CS, NCTU 9 Requirement (5)  All machines share /net/data/sudoers  All user’s home directory must be in /net/home except root  Auto-start all services  Auto-mount all folders with amd or autofs  User can change password on NIS Clients

10 Computer Center, CS, NCTU 10 Rup  You can run rup on all servers.

11 Computer Center, CS, NCTU 11 Ports tree  Sahome exports its /usr/ports.  Write /etc/make.conf DISTDIR WRKDIRPREFIX  Write a program which will update its ports tree. It must be automatically executed at 1:30 A.M everyday on sahome.

12 Computer Center, CS, NCTU 12 Log server  Sahome as a Log server.  Write a program which will record the ssh information everyday. When Who Where Ex: Dec 14 17:26:10 hwchiu login saduty fail from 192.168.157.139  The program must be automatically executed at 11:50 P.M. everyday on sahome.

13 Computer Center, CS, NCTU 13 Log server (continue)  Your program should write the result to /net/data/ssh/  The filename should follow the rule Year_Month_Day Example. 2013_Dec_13

14 Computer Center, CS, NCTU 14 Step 1 - Setup sahome as NIS Master Server  Edit /etc/rc.conf nis_server, nisdomainname, yppasswdd  Edit /var/yp/Makefile #NOPUSH = "True" HOSTS = $(YPDIR)/hosts GROUP = $(YPDIR)/group AMDHOST = $(YPDIR)/amd.map  Create /var/yp/hosts, /var/yp/group…etc Edit /var/yp/master.passwd & /var/yp/group to create your accounts Edit /var/yp/hosts to fit your environment  Initial and start services

15 Computer Center, CS, NCTU 15 Step 2 - Setup NIS Clients  Add NIS Servers’ IP to /etc/hosts  Edit /etc/master.passwd & /etc/group vipw  Edit /etc/nsswitch.conf hosts : files nis dns  Edit /etc/rc.conf nis_client, nisdomainname, ypbind  Testing tools ypcat ypwhich

16 Computer Center, CS, NCTU 16 Step 3 - Setup NFS environment  Nullfs (NFS Server) $ mount_nullfs /vol/home /net/home In /etc/fstab: /vol/home /net/home nullfs rw 2 2  Edit /etc/exports (NFS Server)  Edit /etc/rc.conf amd or autofs (NFS Client) nfs_server, mountd (NFS Server)  Edit amd.map (NIS Server)

17 Computer Center, CS, NCTU 17 Step 4 - Setup saduty as a NIS Slave Server  Edit /etc/rc.conf nis_server, nisdomainname, ypxfrd Modity ypbind sequence (on every clients)  Edit /var/yp/ypservers (on cshome)  Initial and (re)start services

18 Computer Center, CS, NCTU 18 Step 5 - Finishing  sudoers (/usr/local/etc/sudoers) Including other sudoers file from /net/data/sudoers man sudoers to see more about “include”.  sahome:/etc/hosts.allow sa-adm only can login sahome from saduty.  /net/data/sata sysadm only/  Login permissions only sa-adm can login sa-core.

19 Computer Center, CS, NCTU 19 After NIS & NFS servers.  Rup.  Ports tree.  Log server.

20 Computer Center, CS, NCTU 20 Let’s hack into the Kernel  Build another kernel by yourself  Make your kernel smaller by 10% ls -l /boot/kernel/kernel  Make sure everything is still okay At least for this homework!

21 Computer Center, CS, NCTU 21 Help! The kernel source is missing…  Reinstall Freebsd and select ‘src’ to install source codes  Fetch from official site ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.1- RELEASE/src.txzftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.1- RELEASE/src.txz Download it and extract  tar -C / -xzf src.txz  Wait for a very long time

22 Computer Center, CS, NCTU 22 Help  Go to bsd*.cs.nctu.edu.tw  IRC channel #nctuNASA on freenode  Email ta@nasa.cs.nctu.edu.tw  Goto CSCC to ask professional 3F!

23 Computer Center, CS, NCTU 23 Appendix Appendix A – mount_nullfs  $ man exports A host may be specified only once for each local file system on the server and there may be only one default entry for each server file system that applies to all other hosts.  The command mount_nullfs For example  % mkdir /home/allhomemake a directory for Real NFS Home  % mkdir /home/for_nismake a directory for NFS Home exports  % mount_nullfs /home/allhome /home/for_nis mount it  Use it in /etc/fstab Change the fstype to nullfs For example  /home/allhome /home/for_nis nullfsrw22

Download ppt "System Administration HW5 - Micro Computer Center yihshih / lctseng."

Similar presentations

IMS Client Installation Procedures 1. Copy the Voicemail Pro from the shared folder on the Voicemail Pro server. Go to Start, Run, and \\ or \\

IMS Client Installation Procedures 1. Copy the Voic Pro from the shared folder on the Voic Pro server. Go to Start, Run, and \\ or \\
System Administration Final Project - Micro Computer Center hchung, hwchiu.

System Administration Final Project - Micro Computer Center hchung, hwchiu.
Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.

Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.
Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.

Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.
PC Cluster Setup on Linux Fedora Core 5 High Performance Computing Lab Department of Computer Science and Information Engineering Tunghai University, Taichung,

PC Cluster Setup on Linux Fedora Core 5 High Performance Computing Lab Department of Computer Science and Information Engineering Tunghai University, Taichung,
NIS – Network Information System WeeSan Lee

NIS – Network Information System WeeSan Lee
Chapter 3 Rootly Powers. Computer Center, CS, NCTU 2 The Root  Root Root is God, also called super-user. UID is 0  UNIX permits the superuser to perform.

Chapter 3 Rootly Powers. Computer Center, CS, NCTU 2 The Root  Root Root is God, also called super-user. UID is 0  UNIX permits the superuser to perform.
Lesson 22 – Introduction to Linux Systems Administration.

Lesson 22 – Introduction to Linux Systems Administration.
Helpful tips for working with NJIT University Computing Systems for Homework and projects Rafael Orta, Prashanth Sanagavarapu and George Blank.

Helpful tips for working with NJIT University Computing Systems for Homework and projects Rafael Orta, Prashanth Sanagavarapu and George Blank.
Virtual Machine and UNIX. What is a VM? VM stands for Virtual Machine. It is a software emulation of hardware. By using a VM, you can have the same hardware.

Virtual Machine and UNIX. What is a VM? VM stands for Virtual Machine. It is a software emulation of hardware. By using a VM, you can have the same hardware.
Network File System Joe Paulowskey Joe Paulowskey Susan Mulholland Joe Woulfe.

Network File System Joe Paulowskey Joe Paulowskey Susan Mulholland Joe Woulfe.
Remote Disk Access with NFS

Remote Disk Access with NFS
DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.

DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.
Please Dial in, class will begin shortly

Please Dial in, class will begin shortly
CSN08101 Digital Forensics Lecture 1B: Essential Linux and Caine Module Leader: Dr Gordon Russell Lecturers: Robert Ludwiniak.

CSN08101 Digital Forensics Lecture 1B: Essential Linux and Caine Module Leader: Dr Gordon Russell Lecturers: Robert Ludwiniak.
System Administration HW2 - FTP, Samba, BT, ZFS jwbai.

System Administration HW2 - FTP, Samba, BT, ZFS jwbai.
1 Network File Sharing. 2 Module - Network File Sharing ♦ Overview This module focuses on configuring Network File System (NFS) for servers and clients.

1 Network File Sharing. 2 Module - Network File Sharing ♦ Overview This module focuses on configuring Network File System (NFS) for servers and clients.
Final Project – NFS and NIS jwbai. Computer Center, CS, NCTU 2 Goal master.passwd passwd group netgroup amd.conf userA, /nis/home/userA userB, /nis/home/userB.

Final Project – NFS and NIS jwbai. Computer Center, CS, NCTU 2 Goal master.passwd passwd group netgroup amd.conf userA, /nis/home/userA userB, /nis/home/userB.

Similar presentations

Ads by Google