Linux下五种服务器配置(未齐全)

冲动是魔鬼
因为冲动答应同学在Linux下配置五种服务器的,除了Mail是因为下载软件太慢放弃了,别的倒是挺happy的配置好了，通过这个过程，唉～爽死我了

作者：中原工学院 计算机学院 网络工程 031 杨松

WWW的就不详细写了，可以参看这一篇～

FTP采用的是VSFTP，就图它的名气，倒是配置的也是乱七八糟。

从CU的download中找到的vsftpd-2.0.5.tar.gz

这是下载页面
http://download.chinaunix.net/download/0001000/19.shtml
这是下载地址
http://download.chinaunix.net/down.php?id=24703&ResourceID=19&site=1

安装过程参考解压缩后的INSTLL文件
1.解压缩
[root@netyang work]# tar xf vsftpd-2.0.5.tar.gz
2.修改builddefs.h如下

[root@netyang vsftpd-2.0.5]# cat builddefs.h #ifndef VSF_BUILDDEFS_H #define VSF_BUILDDEFS_H #undef VSF_BUILD_TCPWRAPPERS #undef VSF_BUILD_PAM #undef VSF_BUILD_SSL #endif /* VSF_BUILDDEFS_H */

就是把 #ifdefine VSF_BUILD_PAM给修改了

然后执行make

接下来,添加相应的文件夹和用户,用于匿名登录的

[root@netyang vsftpd-2.0.5]# useradd nobody
useradd：用户 nobody 已存在
[root@netyang vsftpd-2.0.5]# mkdir /usr/share/empty/
mkdir: 无法创建目录 “/usr/share/empty/”: 文件已存在

下面是匿名用户所在的目录,我把它放在我的/home下面
[root@netyang vsftpd-2.0.5]# mkdir /home/server/
[root@netyang vsftpd-2.0.5]# mkdir /home/server/ftp

然后添加匿名的ftp用户
[root@netyang vsftpd-2.0.5]# useradd -d /home/server/ftp ftp

修改组权限
[root@netyang vsftpd-2.0.5]# chown root.root /home/server/ftp
[root@netyang vsftpd-2.0.5]# chmod og-w /home/server/ftp

然后就是
[root@netyang vsftpd-2.0.5]# make install
将生成的vsftpd文件,和一些man文件(man5和man8)拷贝到指定的位置.

[root@netyang vsftpd-2.0.5]# cp vsftpd /usr/local/sbin/vsftpd
[root@netyang vsftpd-2.0.5]# cp vsftpd.conf.5 /usr/local/man/man5
[root@netyang vsftpd-2.0.5]# cp vsftpd.8 /usr/local/man/man8

如果make install的时候出错了,就把这些文件手工拷备过去就行了.不拷问题也不大,就是少了手册.

但是这个不拷备不行
[root@netyang vsftpd-2.0.5]# cp vsftpd.conf /etc

接下来配置一下/etc/vsftpd.conf
anonymous_enable=YES
local_enable=YES
write_enable=YES
local_umask=022
connect_from_port_20=YES
ascii_upload_enable=YES
ascii_download_enable=YES
ftpd_banner=Welcome ! This's Netyang's VSFTP
listen=YES
userlist_deny=NO
因为最后一行指定了userlist了,所以要创建它.
[root@netyang vsftpd-2.0.5]# cat /etc/vsftpd.userlist
netyang
ftptest
yangsong
songyang
这些都是本地用户,把他们统统都划分到ftp组,并且不给家目录就好了.
我做一个例子,别的一样

[root@netyang vsftpd-2.0.5]# userdel songyang [root@netyang vsftpd-2.0.5]# useradd -d /home/server/ftp/ -g ftp songyang useradd：警告：此主目录已经存在。 不从 skel 目录里向其中复制任何文件。 [root@netyang vsftpd-2.0.5]# passwd songyang Changing password for user songyang. New UNIX password: BAD PASSWORD: it is based on a dictionary word Retype new UNIX password: passwd: all authentication tokens updated successfully.

然后启动vsftpd,并试图用匿名用户和本地用户登录,看看效果

[root@netyang vsftpd-2.0.5]# ftp localhost
Connected to netyang.Bei.
220 Welcome ! This's Netyang's VSFTP
530 Please login with USER and PASS.
530 Please login with USER and PASS.
KERBEROS_V4 rejected as an authentication type
Name (localhost:root): yangsong
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
-rw-r--r--    1 508      508      12869362 Dec 29 13:31 qq.tar.gz
226 Directory send OK.
ftp> lcd /home/netyang
Local directory now /home/netyang
ftp> put vsftpd-2.0.5.tar.gz
local: vsftpd-2.0.5.tar.gz remote: vsftpd-2.0.5.tar.gz
200 PORT command successful. Consider using PASV.
150 Ok to send data.
226 File receive OK.
155985 bytes sent in 0.058 seconds (2.6e+03 Kbytes/s)
ftp> ls
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
-rw-r--r--    1 508      508      12869362 Dec 29 13:31 qq.tar.gz
-rw-r--r--    1 508      508        155985 Dec 31 13:55 vsftpd-2.0.5.tar.gz
226 Directory send OK.
ftp> del vsftpd-2.0.5.tar.gz
250 Delete operation successful.
ftp> ls
200 PORT command successful. Consider using PASV.
150 Here comes the directory listing.
-rw-r--r--    1 508      508      12869362 Dec 29 13:31 qq.tar.gz
226 Directory send OK.
ftp> close
测试中发现不能使用匿名登录,大概是使用userlist的缘故吧.这里先放下,有空了我在查查.
FTP就此结束了吧
============================================================================
DNS(Domain Name Service)
采用了Fedora 6自带的RPM包,翻阅网上无数教程,重装无数边,终于搞定.经验分享
安装(注:我用的是FC6的DVD.ISO,我把它挂载到/mnt/ISO 挂载命令mount -t iso9660 -o loop ISO的位置 /mnt/ISO 请根据实际情况修改):
[root@netyang RPMS]# pwd
/mnt/ISO/Fedora/RPMS
[root@netyang RPMS]# rpm -ivh bind-libs-9.3.2-41.fc6.i386.rpm bind-9.3.2-41.fc6.i386.rpm bind-chroot-9.3.2-41.fc6.i386.rpm caching-nameserver-9.3.2-41.fc6.i386.rpm 
检查/var/named下是否有如下的文件夹和文件
[root@netyang named]# pwd
/var/named/chroot/var/named
文件路径的错误会让人发疯.
[root@netyang named]# ls -la
总计 52
drwxr-x--- 4 named named 4096 12-31 20:53 .
drwxr-x--- 5 root  named 4096 12-31 20:29 ..
drwxrwx--- 2 named named 4096 12-31 20:30 data
-rw-r----- 1 named named  198 09-11 17:13 localdomain.zone
-rw-r----- 1 named named  195 09-11 17:13 localhost.zone
-rw-r----- 1 named named  427 09-11 17:13 named.broadcast
-rw-r----- 1 named named 2518 09-11 17:13 named.ca
-rw-r--r-- 1 root  root   959 12-31 20:53 named.conf
-rw-r----- 1 named named  424 09-11 17:13 named.ip6.local
-rw-r----- 1 named named  426 09-11 17:13 named.local
-rw-r----- 1 named named  427 09-11 17:13 named.zero
-rw-r--r-- 1 named named  488 12-31 20:49 netyang.org
drwxrwx--- 2 named named 4096 2004-07-27 slaves
这是完成后的ls结果,完成前的要剪掉蓝色的两行(没有作逆行解析)
如果没有named.conf那就创建一个.其中的内容是

首先修改/etc/

[root@netyang named]# cat named.conf options {         directory "/var/named";         /*          * If there is a firewall between you and nameservers you want          * to talk to, you might need to uncomment the query-source          * directive below. Previous versions of BIND always asked          * questions using port 53, but BIND 8.1 uses an unprivileged          * port by default.          */         // query-source address * port 53; }; // // a caching only nameserver config // controls {         inet 127.0.0.1 allow { localhost; } keys { rndckey; }; }; zone "." IN {         type hint;         file "named.ca"; }; zone "localhost" IN {         type master;         file "localhost.zone";         allow-update { none; }; }; zone "0.0.127.in-addr.arpa" IN {         type master;         file "named.local";         allow-update { none; }; }; zone "netyang.org" IN {         type master;         file "netyang.org";         allow-update { none; }; }; include "/etc/rndc.key";

注意:netyang.org是我的域名,要注意修改一下.手工创建的话就把这个给复制走.省事了.
其中的
zone "netyang.org" IN {
        type master;
        file "netyang.org";
        allow-update { none; };
};
是正向解析的.没有写反向的.懒(~~),去网上搜吧,一搜一把
其中提到的netyang.org也是在这里创建的.内容是下面的样子

[root@netyang named]# cat netyang.org @ IN SOA netyang.net. root.netyang.net. (                           2006123100 ; serial, todays date + todays serial #                           28800 ; refresh, seconds                           7200 ; retry, seconds                           3600000 ; expire, seconds                           86400 ) ; minimum, seconds         NS ns.netyang.org. @ IN A 192.168.0.1 www IN A 192.168.0.1 mail IN A 192.168.0.1 @ MX 10 mail.netyang.org.

请一定注意这里的(.)少了会产生各种让人模不到北的错误.
然后运行一下
[root@netyang named]# /etc/init.d/named start
启动 named：                                               [确定]
Good.DNS的效果图如下
500)this.width=500;" border="0">
==========================

DHCP的配置:
DHCP相对简单一点.只要安装了如下的软件然后稍作修改即可
要安装的软件
dhcp-3.0.4-21.fc6.i386.rpm
我的是已经默认装过了

修改/etc/dhcpd.conf如下

[root@netyang RPMS]# cat /etc/dhcpd.conf # # DHCP Server Configuration file. # see /usr/share/doc/dhcp*/dhcpd.conf.sample # ddns-update-style interim; ignore client-updates; subnet 192.168.0.0 netmask 255.255.255.0 { option routers 192.168.0.1; option subnet-mask 255.255.255.0; option broadcast-address 192.168.0.255; option domain-name-servers 219.150.150.150; option domain-name "www.netyang.org"; option domain-name-servers 219.150.150.150; option time-offset -18000; range dynamic-bootp 192.168.0.128 192.168.0.255; default-lease-time 21600; max-lease-time 43200; host ns { hardware ethernet 00:16:36:7F:3B:A1; fixed-address 192.168.0.1; } }

其中的基本不用解释了,看懂英文就出来了.如果是针对MS的话,host那段不用写(不过据我测试,写了WindowsXP也可以获取到IP地址)

然后
[root@netyang RPMS]# service dhcpd start
启动 dhcpd：                                               [确定]
OK,DHCP结束,截图在Windows上,有空了上传上来.
=========

MAIL的放弃老.