Index

Index
Prev

ACK sweep, Description

adduser, Troubleshooting authorisation problems

AH, IPSEC

apsfilter, Using a Windows printer from Linux

APXS, APache eXtenSion (APXS) support tool

arp, ifconfig, arp and arpwatch

arpwatch, arp and arpwatch

ATS0=3, PPP Server

automount, Autofs and automounter, NFS client: software and configuration

plan, Where?
testing, How?
verifying, How?

badblocks, fsck (fsck.*)

bind, Name-server components in BIND

BIOS, The bootstrap process

blacklisting, Description

blank, Write the CD-image to a CD

boot, Configuring /etc/inittab

boot drive, The bootstrap process

boot option

boot sequence, The bootprocess

bootloader, The bootstrap process

bootstrap process, The bootstrap process

bootwait, Configuring /etc/inittab

bounce attack, Description

broadcast, The company's shared-networks and subnets

broadcast address, Ethernet Interfaces

bugtraq, Description

BUS, Write the CD-image to a CD

bzImage, Different types of kernel images

caching-only nameserver, A caching-only named.conf file

Carnegie Mellon, Description

CD-ROM filesystem, Creating an image for a CD-ROM

cdrecord, Write the CD-image to a CD

CERT, Description

http://www.cert.org, Website

Certificate Authority, Public key cryptography, How to create a SSL server Certificate

Certificate Signing Request, How to create a SSL server Certificate

CGI, Monitoring Apache load and performance, Configuring mod_perl

Challenge Handshake Authentication Protocol, Authentication with PPP

CHAP, PPP

chat, PPP Client

chfn, Shell startup environment

chsh, Login shells, Shell startup environment

CIAC, Description

COLUMNS, Core system variables

Common Log Format, Apache access_log file

Common Name, How to create a SSL server Certificate

Configuring

CONFIG_KMOD, Enabling kmod

CONFIG_MODULES, Enabling kmod

cpio, cpio

Creating

Cricket, Monitoring Apache load and performance

crtscts, PPP Server

Cryptography

CTRL-ALT-DEL, Configuring /etc/inittab

ctrl-alt-del, sysctl

ctrlaltdel, Configuring /etc/inittab

custom kernel, Building A Custom Kernel

cylinder, Physical installation

cylinder 0, The bootstrap process

dd, Making a copy of a data CD, dd

debugfs, Maintaining a Linux Filesystem (203.2)

default gateway, Routing Through a Gateway

default route, Routing Through a Gateway

deluser, Troubleshooting authorisation problems

depmod, Linux Kernel (201)

device or resource busy, rmmod

DHCP, What is DHCP?

dhcrelay, What is DHCP-relaying?

dial-in, PPP

directory blocks, Filesystems

Disk, Disk

dmesg, Physical installation

DNAT, Adding targets

DNS, Name-server components in BIND

documentation

/usr/doc, Getting help
/usr/man, Getting help
/usr/share/doc, Getting help

DoS Attack, Description

DoS Attacks

DOS extended partition, Extended partitions

DOS partition table, More about partitions tables

DoS with IP address spoofing, Description

DSA-key, Host keys

dumpe2fs, Maintaining a Linux Filesystem (203.2), dumpe2fs

Dynamic Shared Objects, Run-time loading of modules (DSO)

FAT, Mounting and Unmounting

fdisk, Configuring Logical Volume Management

filesystems, Filesystems

filter, Tables and Chains

format, Creating Filesystems

fortune, Shell startup environment

FORWARD, Tables and Chains

forwarding, Port and/or IP forwarding

free, Swap

fsck, When fsck is started but fails , Maintaining a Linux Filesystem (203.2), fsck (fsck.*)

FTP, squid

Fully Qualified Domain Name, How to create a SSL server Certificate

ICMP, ping, The Firm's network with IPCHAINS

ID, Write the CD-image to a CD

IDE, Physical installation

IDS, Description

ifconfig, Configuring the network interface, ifconfig

IFS, Core system variables

IKE, IPSEC

indirection blocks, Filesystems

inetd, What do TCP wrappers do?

inetd.conf, Configuring inetd for use with TCP wrappers

init scripts, The /etc/init.d/rc script

initdefault, Configuring /etc/inittab, Daemon initialization

initial RAM disk, The initial ram disk (initrd)

initrd, Linux Kernel (201), The initial ram disk (initrd)

inode, Filesystems

INPUT, Tables and Chains

INPUTRC, Shell startup environment

insmod, Linux Kernel (201), insmod

interval between checks, tune2fs

Intrusion Detection, Description

IP, Configuring the network interface

IP Addresses

automatic assignment, Choosing IP Addresses

IPCHAINS

ipchains, IP Masquerading with IPCHAINS

IPCP, PPP

IPSEC, VPN Types, IPSEC

IPTABLES, Implementation

iptables

iptables-restore, Saving And Restoring Firewall Rules

iptables-save, Saving And Restoring Firewall Rules

IPXCP, PPP

ip_conntrack, Connection tracking: Stateful Firewalling

ip_conntrack_ftp, Connection tracking: Stateful Firewalling

iso9660, Mounting and Unmounting

ISO9660, Creating an image for a CD-ROM

kbdrequest, Configuring /etc/inittab

kernel modules, What are kernel modules, Using kernel modules

kerneld, What are they?

kmod, What are they?

LBA, More about partitions tables

LCP, PPP Client

ld, How the dynamic linker locates shared objects

ld-linux.so, How the dynamic linker locates shared objects

ld.so, Shared libraries

ldconfig, ldconfig

ldd, How the dynamic linker locates shared objects

LD_LIBRARY_PATH, How the dynamic linker locates shared objects

LILO, The bootstrap process, Kernel loading

Linux, Linux Kernel (201)

Linux firewall, Implementation

linuxrc, The bootprocess

lo, The Loopback Interface

Logical Volume, Configuring Logical Volume Management

login, Shell startup environment

LOGNAME, Core system variables

loop mount, Test the CD-image

loopback interface, The Loopback Interface

lpr, Using lpr

lsmod, Linux Kernel (201), lsmod

LUN, Write the CD-image to a CD

lvcreate, Configuring Logical Volume Management

lvm, Configuring Logical Volume Management

lvol, Configuring Logical Volume Management

named, Name-server components in BIND

named.conf, Name-server components in BIND

NAT, Network Address Translation (NAT) , Tables and Chains

ncd, Name-server components in BIND

net.ipv4.ip_forward, sysctl

netfilter, Implementation

netmask, Ethernet Interfaces

Network, Remote/Network storage

Network Address Translation, Network Address Translation (NAT)

Network Ingress Filtering, Description

network scanning, Description

NFS, The Loopback Interface, NFS - The Network File System

nfsstat, The nfsstat command

NIC address, What is a host declaration?

NIS, The Loopback Interface

nmap, Description

-P0, Using the nmap command
ACK sweep, Description
bounce attack, Description
network scanning, Description
NULL Scan, Description
options, Using the nmap command
ping sweep, Description
reverse-ident, Description
SYN sweep, Description
TCP SYN, Description
testing a firewall, Description
Xmas Tree, Description

nsswitch.conf, Name-server components in BIND

NULL Scan, Description

objdump, ldconfig

odd-numbered releases, Identifying stable and development kernels and patches

off, Configuring /etc/inittab

once, Configuring /etc/inittab

ondemand, Configuring /etc/inittab

open relay, Description

OpenLDAP, What is it?

openssl, How to create a SSL server Certificate

Openswan, IPSEC

Optical Media, Optical Media

OUTPUT, Tables and Chains

Packet Flooding, Description

PAGER, Core system variables

panic, Customise, build and install a custom kernel and kernel modules (201.4)

PAP, PPP

partition, Filesystems, Physical installation

partition table entry, More about partitions tables

partition type

Password Authentication Protocol, Authentication with PPP

patch, Linux Kernel (201), Patching a Kernel (201.3), Patching a kernel

patch level, Identifying stable and development kernels and patches

PATH, Core system variables

PEM, How to create a SSL server Certificate

PHP, Configuring mod_php support

Physical Extents, Configuring Logical Volume Management

Physical Volume, Configuring Logical Volume Management

ping, ifconfig

ping sweep, Description

PKC, Public key cryptography

Port mapping, Description

Port redirection, Port Redirection with IPCHAINS

portsentry

Advanced Logic Mode, Run modes
Advanced Stealth UDP scan detection, Run modes
Advanced TCP stealth scan detection, Run modes
basic port-bound TCP mode, Run modes
basic port-bound UDP mode, Run modes
Stealth TCP scan detection, Run modes
Stealth UDP scan detection, Run modes

POSTROUTING, Tables and Chains

powerfail, Configuring /etc/inittab

powerfailnow, Configuring /etc/inittab

powerokwait, Configuring /etc/inittab

powerwait, Configuring /etc/inittab

PPP, Routing Through a Gateway, PPP

ppp0, PPP Client

pppd, PPP

PREROUTING, Tables and Chains

Print Services for Unix, Using lpr

printcap, Using a Windows printer from Linux

printers, Using Samba

Private Network Addresses, Private Network Addresses

procfs, sysctl

proper editor, Editors

PS1, Core system variables

PS2, Core system variables

PS3, Core system variables

PS4, Core system variables

RAID, What is RAID?

raidstart, Configuring RAID (using mdadm)

readline, Shell startup environment

reboot, What happens next, what does /sbin/init do?

removing a patch, Removing a kernel patch from a production kernel

reserved blocks, tune2fs

respawn, Configuring /etc/inittab

reverse zone, Zones and reverse zones

reverse-ident, Description

RFC1256, The Firm's network with IPCHAINS

RFC1631, Network Address Translation (NAT)

RFC2827, Description

RFC792, The Firm's network with IPCHAINS

RFC950, The Firm's network with IPCHAINS

rmmod, Linux Kernel (201), rmmod

rndc, The rndc program

Rock Ridge, Creating an image for a CD-ROM

rogue host, arp and arpwatch

ROM, The bootstrap process

root filesystem

route, Configuring the network interface, route, IP Masquerading with IPCHAINS

routing, Routing Through a Gateway

routing table, Configuring the network interface

ROWS, Core system variables

RPC, The Loopback Interface, Configuring the kernel for NFS

rpcinfo, rpcinfo

RRDtool, Monitoring Apache load and performance

RSA, How to create a SSL server Certificate

RSA-key, Host keys

Rsync, Rsync

runlevel, What happens next, what does /sbin/init do?

runlevel 1, What happens next, what does /sbin/init do?

runlevel 2-5, What happens next, what does /sbin/init do?

runlevel 6, What happens next, what does /sbin/init do?

runlevel s, What happens next, what does /sbin/init do?

runlevel S, What happens next, what does /sbin/init do?

Samba, What is Samba?

scp, SSH client and server

SCSI, Write the CD-image to a CD, Hardware RAID

sector 0, The bootstrap process

sector 0 of kernel, Kernel loading

security alerts, Security alerts

security vulnerabilities, Description

securityfocus, Website

SEI, Description

Server Message Block protocol, What is Samba?

set, Core system variables

set -o noclobber, Shell startup environment

set -o vi, Shell startup environment

shared libraries, Shared libraries

shared objects

SHELL, Core system variables

shell, Shell startup environment

SHLVL, Core system variables

showmount, Exporting filesystems, The showmount command, The showmount --exports command

single user mode, Booting into single user mode or a specific runlevel

SLIP, PPP

SMB, What is Samba?

smbclient, An example of the functionality we wish to achieve , With smbclient

smbmount, With smbmount

snapshots, LVM Snapshots

SNAT, Adding targets

Snort, Description

configuring, Description

software RAID, Software RAID

Split DNS, Split DNS: two DNS servers on one machine

split-level DNS, Internal DNS

squid, squid

-k reconfigure, squid
ACL, Access policies
authentication, Authenticators
auth_param, squid
cache_dir, squid
cache_mem, Utilizing memory usage
cache_swap, Utilizing memory usage
deny access, Redirectors
http_access, squid
http_access allow, Access policies
http_access deny, Access policies
http_port, squid
maximum_object_size, Utilizing memory usage
minimum_object_size, Utilizing memory usage
redirector, Redirectors
redirect_program, squid
squid.conf, Access policies
SSL, squid
StoreEntry, Utilizing memory usage

srm.conf, Installing the Apache web-server

SSH, VPN Types

ssh, SSH client and server

ssh-keygen, User keys, public and private

sshd, SSH client and server

sshd_config, Configuring sshd

SSL, Encrypted webservers: SSL

state, Connection tracking: Stateful Firewalling , Adding matching modules

Stateful Firewall, Connection tracking: Stateful Firewalling

static libraries, Shared libraries

strace, strace

striping, RAID levels

superblock, Filesystems

superblock location, debugfs

swap, Swap

swapon, Swap

SYN Attack, Description

SYN sweep, Description

sysctl, Using sysctl, Using /proc/sys/net/ipv4 (sysctl) to prevent simple DOS attacks , sysctl

sysctl -a, sysctl

sysinit, Configuring /etc/inittab

,, syslogd
alert, syslogd
auth, syslogd
authpriv, syslogd
crit, syslogd
cron, syslogd
daemon, syslogd
emerg, syslogd
err, syslogd
ftp, syslogd
info, syslogd
kern, syslogd
local0..7, syslogd
lpr, syslogd
mail, syslogd
news, syslogd
notice, syslogd
real file, syslogd
remote host, syslogd
split log, syslogd
syslog, syslogd
target logfile, syslogd
tty, syslogd
user, syslogd
user notify, syslogd
uucp, syslogd
wall, syslogd
warning, syslogd

syslog.conf, syslogd

Tape, Tape

Tar, TAR

TCP SYN, Description

tcp wrapper, Securing the portmapper

TCP wrappers, What do TCP wrappers do?

tcpd, What do TCP wrappers do?

tcpdump, tcpdump

telnet, The Loopback Interface

TERM, Core system variables

time-to-live, Routing Through a PPP Link

TIME_EXCEEDED, traceroute

TLS, Encrypted webservers: SSL

TMPDIR, Core system variables

traceroute, route

transparent proxy, Web-caches

Triple-DES, How to create a SSL server Certificate

troubleshooting

TTL, traceroute, The Firm's network with IPCHAINS

tune2fs, Maintaining a Linux Filesystem (203.2), tune2fs, Using tune2fs

tunnel, What Is A VPN

tunneling, Description

Prev
Bibliography	Home

Index

Symbols

A

B

C

D

E

F

G

H

I

K

L

M

N

O

P

R

S

T

U

V

W

X

Z