Next:
Linux in the Network
Up:
main
Previous:
The SuSE Linux Boot
Contents
Index
Network
Subsections
Linux in the Network
TCP/IP -- The Protocol Used by Linux
Layer Model
IP Addresses and Routing
IP Addresses
Netmasks and Routing
Domain Name System
DNS
whois
IPv6 -- The Next Generation's Internet
A New Internet Protocol
Advantages of IPv6
The IPv6 Address System
Structure of an IPv6 Address
IPv4 versus IPv6 -- Moving between the Two Worlds
Further Reading and Links
Network Integration
Preparing
Configuration Assisted by YaST Configuration Assisted by YaST
Hotplug and PCMCIA
Configuring IPv6
Manual Network Configuration
Configuration Files
Start-Up Scripts
Routing in SuSE Linux
DNS -- Domain Name System
Starting the Name Server BIND
The Configuration File /etc/named.conf
Important Configuration Options
The Configuration Section ``Logging''
Zone Entry Structure
Structure of Zone Files
Secure Transactions
Dynamic Update of Zone Data
DNSSEC
Further Reading
LDAP -- A Directory Service
LDAP versus NIS
Structure of an LDAP Directory Tree
Server Configuration with slapd.conf
Global Directives in slapd.conf
Database-Specific Directives in slapd.conf
Starting and Stopping the Servers
Data Handling in the LDAP Directory
Inserting Data into an LDAP Directory
Modifying Data in the LDAP Directory
Searching or Reading Data from an LDAP Directory
Deleting Data from an LDAP Directory
LDAP Configuration with YaST
Standard Procedure
Modules and Templates -- Configuration with YaST
Users and Groups -- Configuration with YaST
For More Information
NIS -- Network Information Service
NIS Master and Slave Server
The NIS Client Module of YaST
NFS -- Shared File Systems
Importing File Systems with YaST
Importing File Systems Manually
Exporting File Systems with YaST
Exporting File Systems Manually
DHCP
The DHCP Protocol
DHCP Software Packages
The DHCP Server dhcpd
Hosts with Fixed IP Addresses
For More Information
Time Synchronization with xntp
Configuration in a Network
Establishing a Local Time Normal
The Apache Web Server
Basics
Web Server
HTTP
URLs
Automatic Output of a Default Page
What Is Apache?
The Most Popular Web Server
Expandability
Customizability
Stability
Features
Virtual Hosts
Flexible URL Rewriting
Content Negotiation
Flexible Error Handling
Basics
Differences between Apache 1.3 and Apache 2
Overview
What is a Thread?
Threads and Processes
Conclusion
Installation
Package Selection in YaST
Activating Apache
Modules for Active Contents
Other Recommended Packages
Installation of Modules with apxs
Configuration
Configuration with SuSEconfig
Custom Configuration Files
Modules
Flags
Manual Configuration
The Configuration File
DocumentRoot
Timeout
MaxClients
LoadModule
Port
Directory
DirectoryIndex
AllowOverride
Order
AccessFileName
ErrorLog
LogLevel
Alias
ScriptAlias
Server-Side Includes
UserDir
Using Apache
Where Can I Place My Pages and Scripts?
Apache Operating Status
Active Contents
Overview
Script Interpreter as Module versus CGI
SSI
CGI
What Is CGI?
Advantages of CGI
GET and POST
Languages for CGI
Where Are the Scripts Placed?
Generating Active Contents with Modules
Modules for Scripting Languages
mod_perl
General Information about Perl
Setting up mod_perl
mod_perl versus CGI
mod_php4
mod_python
mod_ruby
Ruby
Virtual Hosts
Overview: Virtual Hosts
Name-Based Virtual Hosts
IP-Based Virtual Hosts
Overview
Configuring IP Aliasing
Virtual Hosts with IPs
Multiple Instances of Apache
Security
Minimizing the Risk
Access Permissions
DocumentRoot Should Belong to SuSE @nohyphen root
Publishing Documents from Home Directories
Stay Updated
Troubleshooting
Further Documentation
Apache
CGI
Security
Additional Sources
File Synchronization
Data Synchronization Software
InterMezzo
Unison
CVS
mailsync
Determining Factors for Selecting a Program
Client-Server vs. Peer-to-Peer
Portability
Interactive vs. Automatic
Speed
Conflicts: Incidence and Solution
Selecting and Adding Files
History
Data Volume and Hard Disk Requirements
GUI
User Friendliness
Security Against Attacks
Protection Against Data Loss
Introduction to InterMezzo
Architecture
Configuring an InterMezzo Server
Configuring InterMezzo Clients
Troubleshooting
Introduction to Unison
Uses
Requirements
Using Unison
More Information
Introduction to CVS
Uses
Configuring a CVS Server
Using CVS
More Information
Introduction to mailsync
Uses
Configuration and Use
Possible Problems
More Information
Heterogenous Networks
Samba
NetBIOS
Clients
Installing and Configuring the Server
The global Section
Shares
Security Levels
Samba as Login Server
Installing Clients
Windows 9x and ME
Optimization
Netatalk
Configuring the File Server
Configuring the Network --
atalkd.conf
Defining File Servers --
afpd.conf
Directories and Access Permissions --
AppleVolumes.default
File Specifications --
AppleVolumes.system
Configuring the Print Server
Starting the Server
Additional Information
Netware Emulation with MARSNWE
Starting the Netware Emulator MARSNWE
The Configuration File /etc/nwserv.conf
Access to Netware Servers and Their Administration
IPX Router with ipxrip
Internet
The smpppd as Dial-up Assistant
Program Components for the Internet Dial-Up
Configuring the smpppd
Configuring kinternet and cinternet for Remote Use
Configuring an ADSL or T-DSL Connection
Default Configuration
DSL Connection by Dial-on-Demand
Proxy Server: Squid
About Proxy Caches
Some Facts About Cache Proxying
Squid and Security
Multiple Caches
Caching Internet Objects
System Requirements
Hard Disks
Size of the Disk Cache
RAM
CPU
Starting Squid
Local DNS Server
The Configuration File /etc/squid/squid.conf
General Configuration Options (Selection)
Options for Access Controls
Transparent Proxy Configuration
Kernel Configuration
Configuration Options in /etc/squid/squid.conf
Firewall Configuration with SuSEfirewall2
Squid and Other Programs
cachemgr.cgi
Setup
Cache Manager ACLs in /etc/squid/squid.conf
Viewing the Statistics
squidGuard
Using squidGuard
Cache Report Generation with Calamaris
More Information about Squid
Security in the Network
Masquerading and Firewalls
Masquerading Basics
Firewalling Basics
SuSEfirewall2
Manual Configuration
Configuration with YaST
SSH -- Secure Shell, the Safe Alternative
The OpenSSH Package
The ssh Program
scp -- Secure Copy
sftp -- Secure File Transfer
The SSH Daemon (sshd) -- Server-Side
SSH Authentication Mechanisms
X, Authentication, and Other Forwarding Mechanisms
Network Authentication -- Kerberos
Kerberos Terminology
How Kerberos Works
Users' View of Kerberos
For More Information
Installing and Administering Kerberos
Choosing the Kerberos Realms
Setting up the KDC Hardware
Clock Synchronization
Log Configuration
Installing the KDC
Installing the RPMs
Setting the Master Key
Creating the Realm
Creating a Principal
Starting the KDC
Configuring Kerberos Clients
Static Configuration
DNS-Based Configuration
Adjusting the Clock Skew
Remote Kerberos Administration
Using kadmin for Remote Administration
Basic kadmin Commands
Creating Kerberos Host Principals
Enabling PAM Support for Kerberos
Configuring SSH for Kerberos Authentication
Using LDAP and Kerberos
Using Kerberos Authentication with LDAP
Kerberos Authentication and LDAP Access Control
Security and Confidentiality
Basic Considerations
Local Security and Network Security
Local Security
Passwords
The Boot Procedure
File Permissions
Buffer Overflows and Format String Bugs
Viruses
Network Security
X Window System and X11 Authentication
Buffer Overflows and Format String Bugs
DoS -- Denial of Service
Man in the Middle: Sniffing, Hijacking, Spoofing
DNS poisoning
Worms
Some General Security Tips and Tricks
Using the Central Security Reporting Address
root 2003-11-05