UNIX System Administration Handbook, Third Edition by Evi Nemeth, Garth Snyder, Scott Seebass, and Trent R. Hein Upper Saddle River, NJ: Prentice Hall. 2001. ISBN 0-13-020601-6. INDEX We have alphabetized files under their last components. And in most cases, only the last component is listed. For example, to find index entries relating to the /etc/passwd file, look under passwd . Our friendly vendors have forced our hand by hiding standard files in new and inventive directories on each system. Numbers 10BaseT et al. 374 4.4BSD 2 A Abell, Vic 64 accept 725-726 access agents 537, 540 access.conf file 690 /var/account file 209 acct file 208 aculog file 208 Adams, Rick 291 add_drv 248, 254 adding a user see logins adding new machines 298-305, 392-394 addresses electronic mail 542 Ethernet 269-270 Internet 271-283 IPv6 275-276, 281-283, 450-453 loopback 271 multicast 271 private 456 site-wide management 389-390 adduser 92 adjtime 834 /var/adm directory 207 administrative databases 513, 521-534 Admintool 729 ADR tapes 172, 175 ADSL 383-384 ADSM/TSM 202 Aggarwal, Vikas 648 air conditioning 749-751, 786 air plenums 376, 388 AIT tapes 173, 175 Aleks, Norm 558 aliases (email) 550-556 see also aliases file examples 553-554 for new users 77 for outgoing mail 583-586 hashed files 557 include directive 552 loops 552, 556 mailing list conventions 557 network distribution 514 postmaster 551 precedence 556 reading from a file 552 security 552-553 stored in LDAP 550, 553, 560-562, 582-583 to a file 553 to a program 553 where defined 551 aliases file 88, 514, 551-557, 609 Allen, Jeff 648 Allman, Eric 210, 537, 562-563, 570 Almquist, Phil 394 Alteon Networks 688, 755 always_add_domain 578 amadmin 190, 200 Amanda 187-201 configuration 190-196 debugging 196-199 dump compression 194 dump types 193-195 installation 188-190 log files 196 overview 187-188 restoring from 200-201 amanda.conf files 190-195, 197, 200 amandad 189 amcheck 189-190 amcleanup 189 amd 505, 509-512, 829 amdump 189 America Online 654, 791 American Power Conversion 752 amflush 189, 197 amlabel 189 amplot 190 amrestore 189, 201 amtape 190 anecdotes 800-805 anonymous FTP see FTP AOL (ISP) 654, 791 Apache 688-691, 694, 809, 833 APNIC 279, 401 appropriate use policies 788, 793 ARIN 278-279, 390 arp 286 ARP cache 286 ARP protocol 265, 270, 285-287 ARPANET 262, 373, 394 asppp.cf file 314 aspppd 314 AT&T Bell Labs 2, 818 ATA interface see IDE Atkins, Todd 222 ATM networks 381-382 Austin Group 819 Auth file 321 authlog file 208 auto.direct file 506, 508 auto_master file 505 automount 505-509, 829 direct maps 506-507 executable maps 507 indirect maps 506 master maps 507 Red Hat 509 replicated filesystems 508 automounters 504-512, 806, 829 amd 505, 509-512, 829 automount 505-509, 829 overview 504-505 replicated filesystems 508 autonomous sytems 348 Autostart file 321 AUUG group 814-815 Axent 654 B backups 164-203 see also Amanda checking tapes 168-169 commercial products 202-203 compression 170 creating 175-180 dump sequences 179-180 emergency restores 784 for ugprades 184 for Windows 196, 202, 775 general advice 165-169 incremental 176 interactive restore 181-182 media 169-175 backups continued mega-restore 182-184 network-wide 165 off-site storage 167 open source software 201 restoring from 165, 180-184 security 167, 662 Bailey, Mick 821 bash 81, 808 baud rate 113 BCP documents 264 bdf 134 Berkeley Fast File System 132, 147 Berkeley UNIX 2 BEST Power Technology 751 BGP protocol 347, 368 biff 830 /bin directory 64 BIND 809 see also DNS see also name servers see also named client configuration 410-414 FreeBSD 484-485 HP-UX 482-483 Red Hat 484 resolver 304-305, 407, 411-414 security 417-418, 422, 460-469 server configuration 414-469 Solaris 481-482 versions 402-403 biod 501, 829 BIOSes 17, 124-125 block device files 67, 247 blocking factor (tape) 185 board-swap maintenance 746 BOB-CAT-B 116 boot 140, 228 boot loaders 14, 17-22, 130 FreeBSD 19-20, 22 Linux (LILO) 18-22 Solaris 143 boot0cfg 19 BOOTP protocol 287-288 bootparamd 835 bootparams file 835 bootpd 319, 835 bootptab file 835 bootstrapping 12-33 automatic vs. manual 13 device probe 14 from alternate root 240 kernel initialization 14, 240 multibooting 20-22 bootstrapping continued overview 13-16 PC-specific issues 16-22 run levels 25-28 single-user mode 13, 15-16, 22-24 startup scripts 24-33 Bostic, Keith 557 break-ins 680-682 breakout boxes 115 broadcast storms 301 Brooks, Frederick P., Jr 530 BSD (Berkeley UNIX) 2 BugTraq 678 building wiring 386-387 BUS signal 50 byte swapping 185 C cable analyzer 385 cable modems 384 cables categories 375-376 fiber optic 380-381, 388 serial 96-101 UTP 375-377, 386 Cahalan, Albert 206 CAIDA 448 Campbell, Ralph 394 cancel 725 Castlewood Industries 171 Category 5 cable 376 catman 7-8 CATV 388 CCIE certification 815 ccTLDs 398 CD-R and CD-RW 171, 175 CENTR 401 Cerf, Vint 263 CERT 678, 682 cfengine 806 CGI scripting 687 Chapman, Brent 558 character device files 67, 247 Chatsworth Products 753 checklist file 62, 134, 147 checklists 779-780 checkpc 738 Checkpoint 296, 313 checksendmail 615 chflags 73 chfn 80 chgrp 74 chkconfig 30 chmod 73-74 chown 74-75 chroot 696 chsh 81 CIDR routing 276-278 CIFS filesystem 769-770 circuit boards 746-747 Cisco routers 368-370, 675, 680 clock algorithm 760 closelog 220-221 clri 138 CNAME hack 445-447 Cockcroft, Adrian 765 Compton's New Media 814 comsat 830 conf.modules file 255-256 conferences 814-816 .config file 231-233 config 234-236, 251 connectors DB-25 93-96 DB-9 98 mini DIN-8 97-98 RJ-11 113 RJ-45 99-101, 376 SCSI 121-122 /dev/console 220 CONT signal 50, 52, 58 control characters 110-112 control terminal 47 COPS 667, 809 copyright issues 788 Costales, Bryan 563, 570 cphack 789 cpio 185 CPU usage 757-759 crack 666, 784, 809 cron 157-163, 525, 823 and log files 204 common uses 160-162 for dumps 166 logging 158 restricting use 160 skipped commands 158 vendor specifics 163 cron.allow / cron.deny files 160 crontab 157, 160 crontab files 157-160 crypt 656 cryptography 669-675, 788 DES 78, 656, 674 cryptography continued Diffie-Hellman key exchange 464, 656 in DNS 462-468 password storage 78 public key 464, 673 csh 88 .cshrc file 88 CSLIP protocol 291 CSMA/CD (Ethernet) 373 CSRG group 2 CTS (Clear to Send) 102 cu 104, 114 Cubby v. CompuServe 791 CVS 808 CyberPatrol 789 cylinder groups 133 D da Silva, James 187 daemons BSD 827-831 for diskless clients 834-835 NFS 828-829 NIS 829-830 word origin 821 DARPA agency 678 DAT (4mm) tapes 172, 175 DB library 557, 565, 579 DB-25 connector 93-96 DB-9 connector 98 DCD (Carrier Detect) 101-102 dd 185-186 DDS (4mm) tapes 172, 175 Debian Linux 30 DeCSS 789 default permissions 75 default printer 707, 713, 721 default route 283-284, 302, 304, 316, 339, 344, 352, 367, 635 defaultdomain file 307 defaultrouter file 28, 309 delivery agents 537, 540 denial of service 611-612 Deraison, Renaud 665 DES encryption 78, 656, 674 /dev directory 64, 129, 246-247 device drivers 67, 224, 246-251 adding 246-251 device numbers 247-248 FreeBSD 251 Linux 249-251 device drivers continued loadable 229, 253-256 loopback 242 overview 224 pseudo-devices 242 Solaris 248-249 table of locations 248 device files 67, 72 block/character 67, 247 creating 252 for disks 129, 140, 144, 149, 154, 252-253 for printers 714 for serial ports 67, 103-104 for tape drives 67, 177 for terminals 67 major/minor device numbers 67, 247-248 naming conventions 252-253 security 659 Solaris 228 table by vendor 253 Devices file 314, 321 df 134 dfstab file 494 dhclient 332-333 dhclient.conf file 332 dhclient.leases file 333 DHCP 287-291, 459 FreeBSD 332-333 HP-UX 318-319 Red Hat 324-325 Solaris 310-311 /etc/dhcp.* files 28, 310 dhcp.leases file 290-291 dhcpagent 310-311 dhcpcd 324-325 dhcpd 290-291, 324, 835 dhcpd.conf file 290 dhcpdb2conf 319 dhcpinfo 310 dhcptools 319 Dialers file 314, 321 dial-ins and dial-outs see modems dial-up networking see PPP diary files 555, 810 diff 668 Diffie-Hellman key exchange 464, 656 dig 403, 461, 475-478, 809 Digital Millennium Copyright Act 787, 789 directed broadcast 296, 313, 320, 326, 333 directories 66 copying 184 permission bits 69 disable 726 disaster planning 169, 784-787 disklabel 20, 153-155 diskless clients 834-835 disklist file 190, 195-196 disks as backup media 174 bad blocks 129 boot loaders 130, 143 checking 136-138 cylinder groups 133 cylinders 128 device files 129, 140, 144, 149, 154, 252-253 floppy 170, 175 formatting 129-130 FreeBSD 153-156 HP-UX 143-148 I/O analysis 763-765 installing 128-156 labels 130-131 load balancing 756, 764 logical volume managers 131-132, 143-146 overview 126-136 partitions 130-131 performance 757-765 quotas 89, 490 RAID 132, 756 Red Hat 148-153 removable 171, 175 Solaris 139-143 SuperDisks 170, 175 testing 130 tracks and sectors 128 Zip 170-171, 175 disks 140 disktab file 155 distfile files 516 DIX Ethernet II 267 DLT tapes 172-173, 175 dmesg 139, 144 DMI standard 639 dmispd 643 DMTF task force 639 DNS see also name servers A records 441, 456 A6 records 450-451 see also BIND adding new machines 392-394 DNS continued client configuration 304-305, 410-414 CNAME records 445-447 DNAME records 451-453 DNSSEC 396-397, 399, 464-468 domain name rules 400-401 domain tree 397-402, 407-409, 455-457 dynamic updates 288, 459-460 EDNS0 (extended DNS) 410 forward/reverse mappings 397, 400, 441-443, 445-447 glue records 455-457 history 394-395 in-addr.arpa domain 442 IPv6 support 450-453 KEY records 464-468 lame delegations 478-479 LOC records 447-448 localhost configuration 455, 480-481 lookup example 408 MX records 443-444, 545, 566, 582-583 name service switch 304-305, 523-524 negative caching 409 NS records 440-441, 455 NXT records 466-467 overview 395-410 PTR records 442-443 Realtime Blackhole List 590, 601-602 recent developments 396-397 referrals 406 resolver 304-305, 407, 411-414 resource records 436-453 security 417-418, 422, 460-469 SIG records 467 SOA records 438-440 split DNS 428-429 SRV records 448-449 stub zones 425, 456-457 TCP vs. UDP 410 trailing dot in names 399, 437 TSIG/TKEY 462-464 TXT records 449 WKS records 449 zone serial numbers 439, 457 zone transfers 405, 410, 419-420, 458-459 dnskeygen 465 DNSSEC 396-397, 399, 464-468 dnssec-keygen 463, 465 dnssec-makekeyset 466 dnssigner 466 documentation 5-8, 389 diary files 810 for users 811 local 9, 89, 809-810 man pages 5-8 DOMAIN macro 576 domainname 527, 529 domains DNS 397-402 NIS 522 NIS+ 531 squatting (DNS) 398 dot files 87-88 DoubleClick.net 790 dropped packets 628 /dev/drum file 44, 659 drvconfig 140 DSL 383-384 DSR (Data Set Ready) 102 DTR (Data Terminal Ready) 102 dual booting 20-22 dummynet 334 dump 138-179, 195 Solaris 178-179 use by operators 129 dumpdates file 177, 189 dumps see backups Dunlap, Kevin 394 DVMRP protocol 351 E EDNS0 (extended DNS) 410 edquota 89 eeprom 102 EIGRP protocol 347, 350 electrical power 751-753 Electronic Frontier Foundation 789, 814 electronic mail 535-624 see also MX records see also Postfix see also sendmail access agents 537, 540 addressing 542 aliases see aliases (email) blacklists 601-602 configuring user agent 88 delivery agents 537, 540 denial of service 611-612 electronic mail continued design hints 546 distributing aliases 162 editing mailboxes 801 forgery 612-613 forwarding 551, 553, 555-556, 608, 621 headers 541-546, 604-606 home machine 88, 549 IMAP 537, 540, 546, 549-550, 775, 831 loops 552, 556 mail queue 567-570 mailing lists 557-560 message stores 540 message structure 541-546 ownership 778 privacy 802 proxies 547 relaying 597-599 security 607-614, 662 server architecture 547-548 social aspects 535 spam 535-536, 548, 590, 595-607, 792-793 spool directory 549 submission agents 537, 540-541 transport agents 537, 539 user agents 537-539 viruses 602 Windows software 775 elm 538 emacs 2, 88, 538, 809 emergencies 784-787 encryption see cryptography Energy Star certification 752 enscript 740-741, 809 envelope addresses 541 environment variables 88 equipment racks 752-753 error correction protocols 113-114 ESMTP protocol 617 /etc directory 64 ethereal 809 Ethernet addresses 269-270 ARP protocol 285-287 broadcast domain 375 cabling 268 collisions 374 congestion 389 connecting 377-380 design issues 387-389 dropped packets 628 Ethernet continued framing standards 267-268 hardware 375-380 hubs and concentrators 377 over UTP 375-377, 386 overview 373-375 packet encapsulation 266-267 promiscuous mode 636 switches 375, 377-379, 636 table of hardware 374 troubleshooting 385 ethers file 287, 514, 835 Eudora 538 EUROPEN 814 Exabyte tapes 171-172, 175 exec 48 execute bit 69-75 exmh 538, 809 expect 2, 370, 519 exportfs 493 exports file 414, 493-499 F Farmer, Dan 665, 667, 669 FC-AL 119 fd2log file 208 FDDI networks 380-381 fdisk 149-151, 153-154 FEATURE macro 577 Federated Naming Service 721 fiber optic cables 380-381, 388 Fibre Channel 119 file servers 503-504 file sets 186-187 files network distribution 515 ownership 37-38 permissions 69-75 types 66-69 filesystems busy 62 checking 16 cleaning up 161-162 copying 185 creating 132-133 damaged 136-138 design hints 166 disabling setuid execution 658 FreeBSD 155-156 HP-UX 145-148 inodes 133 ISO-9660 243 filesystems continued journaling 137, 142, 147 load balancing 756, 764 lost+found directory 134, 138 mount options 135 mounting 62-64, 133-136 mounting via NFS 501-502 organization 64-65 overview 132-133 patching 138 quotas 89, 490 Red Hat 151-153 replicated 508 root filesystem 64, 131, 240 size 167 Solaris 141-143 superblocks 133 unmounting 62, 135 Filter file 321 finger 80, 833 fingerd 661 fire walls (physical) 388 FireBERD 385 firewalls 296, 675-678 effect on traceroute 631 FreeBSD 333-337 packet-filtering 675 Red Hat 327-329 service proxies 676 stateful inspection 677 two-stage 676 FireWire 120 floppy disks 170, 175 flow control 102 Fluke LanMeter 385 fork 47-48 format 130, 140 .forward files 551, 553, 555-556, 608, 621 fragmentation 269 frame relay 382-383 framing 267-268 FreeBSD 4 fsck 133-138, 142, 152 at boot time 16 parallel operation 135 use of lost+found 134 with alternate superblock 133 fsflush 828 fstab file 62, 133-137, 152-153, 156, 501 and fsck 137 NFS filesystems 501 vs. automounting 504 FTP compared with HTTP 696 conflicts with NAT 281 for config files 520-521 quarantine host 676 security 659 server setup 696-697 through firewalls 676-677 ftp login 696 ftp.log file 208 ftpd 831 fully qualified domain name 399 fuser 63-64 FYI documents 264 G gated 316, 351-368, 832 address matching syntax 358 configuration 354-366 configuration example 364-366 control with gdc 353 debugging 353-355 ICMP redirects 363 interface configuration 356 OSPF configuration 360-362 RIP configuration 358-360 route preferences 356-357 route translation 364 static routes 363-364 vendor specifics 366-367 vendor support 353 gated.conf file 353-366 gatedlog file 208 GATEWAY kernel option 240 /etc/gateways file 309, 352 gdc 353 GECOS information 80 Geer, Dan 167 genericstable 581, 590, 594 gethostbyname 407 getpwent 514 getty 16, 105, 822 configuration file 108 on bidirectional ports 115 gettydefs file 106, 108-109 gettytab file 106-107 ghostscript 706, 740, 742 ghostview 742, 809 GIDs 38, 47, 72, 79-80 real vs. effective 38 site-wide management 490, 780 gimp 809 glimpse 809 globbing 5 GNU 789 gnutar 187, 195 /etc/group file 38, 80, 88-89, 91-92, 524, 533 and NIS 529 for FTP servers 696 network distribution 514 security 655, 659 group logins 657 groupadd / groupdel 91-92 groupmod 91-92 gTLDs 397, 399 guest logins 781 gzip 808 H halt 35 halting 33-36 hard carrier 101-102 hard disks see disks hard links 66-67 hard mounts 501 hardware auditing 235 circuit boards 746-747 decommissioning 745, 812-813 device priority 241 environment 749-751, 786 equipment racks 752-753 Ethernet switches 375, 377-379, 636 FreeBSD kernel configuration 240-244 labeling 810 log 745 maintenance 744-753 memory 14, 747-748, 755 monitors 170, 691, 747 networking 372-391 parallel ports 116-117 PC see PC hardware 776 power supplies 751-753 procurement 811-812 serial 93-103 static electricity 746-747 UPSs 786 USB 117 wiring 386-387 headers (email) 541-546, 604-606 Hewlett-Packard 3 hiring and firing 797-799 home directories 65, 81, 87 horror stories 800-805 host 461, 475-478 host unreachable error 631 host.conf file 305, 524 /etc/hostname file 322 hostname 299 hostname aliases 445 /etc/hostname.* files 28, 308 hostnames 269-270, 298-299 hosts file 298-300, 305-307, 316, 395, 407, 414, 524 and NIS 529 and rarpd 287, 835 name service switch 304-305, 523-524 network distribution 514 hosts.equiv file 660, 673, 709, 831 hosts.lpd file 709 HTTP protocol 685-691 httpd 688-691, 694, 809, 833 humidity 749 HUP signal 50-51, 210, 567 and cron 158 and inetd 826 and init 106, 823 and mountd 493, 499 and named 457 and sendmail 567, 578 and syslogd 210 hwconf file 31 I ICANN 278-279, 390, 401 ICMP 265, 337 echo request 627 redirects 285, 295, 313, 320, 326, 333, 363 sequence numbers 628 IDA sendmail 537 IDE interface 118-119, 124-126, 128 IDENT protocol 613 identd 613 IEEE standards 1284 (parallel ports) 116-117 1394 (FireWire) 120 802.11 (wireless) 268 802.1Q (VLAN trunking) 379 802.2 (link layer) 267 802.3 (Ethernet) 316, 374, 377 IETF 263 ifconfig 272, 300-302, 308-310, 315-316, 323, 331, 692-693 with PPP 293 ifdown 323 ifup 323 IGRP protocol 347, 350 IMAP 537, 540, 546, 549-550, 775, 831 imapd 540, 809, 831 Imation 170 in-addr.arpa domain 442 inetd 320, 518, 822-824 and ftpd 696 and portmap 827 and tcpd 666 configuration 824-825 HP extensions 666 inetd.conf file 189, 519, 666, 696, 824-825 init 13-16, 24-33, 36, 48, 822-823 changing run level 36 configuring 107-108 killing 36 role in login 105 run levels 25-28, 823 signaling 36, 106 System V version 823 init.d directory 25-28, 823 inittab file 105-109, 822-823 inodes 133 insmod 255 installboot 143 INT signal 50-51 intellectual property 778 Internet dial-up connections see PPP backup connections 348, 787 governance 263-265 standards and docs 263-265 sysadmin resources 9-10 wild frontier 778 Internet Official Protocol Standards 264 Internet protocol 265-285 see also routing address assignment 275-279, 298-299 address classes 272 addressing 269-283 ARP 265, 270, 285-287 broadcast addresses 301 CIDR 276-278 Internet protocol continued directed broadcast 296, 313, 320, 326, 333 fragmentation 269 IPSEC 297 packet forwarding 295, 302-304, 313, 320, 326, 333 ports 270-271 private addresses 279-281 source routing 296, 313, 319-320, 326, 333 subnetting 272-275 ioctl 108 IOS (router OS) 368-370 ioscan 144 iostat 763-764 ipcalc 274 ipchains 327-329, 334 ipf 334-337 ipf.rules file 335, 337 IPFilter 333-337 ipfstat 334 ipfw 333-334 ipnat 334-337 ipnat.rules file 336-337 IPSEC 297, 788 IPv6 275-276, 281-283 addressing 450-453 DNS support 396, 450-453 ISC (Internet Software Consortium) 288-289, 394 ISDN 383 IS-IS protocol 347, 351 ISO-9660 filesystem 243 ISOC (Internet Society) 263 ISPs appropriate use and spam policy 596, 788, 793 as backup mail servers 548 as potential spies 790 DNS services 400 IP address allocation 278-283 redundant 348, 787 reverse DNS delegation 445-447 J Jacobson, Van 263, 291, 629 Jaz disks 171, 175 Johner, Heinz 533 Joy, BIll 132 jukeboxes 173-174 JUS society 814 K Kahn, Bob 263 Karels, Mike 394 Kerberos 670-671 /kernel directory 227 kernel address space 44 and NFS 499 bootstrap information 240 config keyword 240 configuration 226-246 FreeBSD configuration 233-246 FreeBSD tuning 244-246 GATEWAY option 240 generic 226, 235 HP-UX configuration 229-231 initialization 14 installing 237 Linux configuration 231-233 location 64 maxusers keyword 238 options keyword 239-240 overview 224-225 panics 136, 138 pseudo-device keyword 242 Solaris configuration 226-229 table of BSD keywords 238 table sizes 238 kerneld 256 Keys file 321 kflushd 15 kill 51 KILL signal 50-51 Kim, Gene 668 /dev/kmem file 44, 659 Kolstad, Rob 615, 793 Kotsikonas, Anastasios 560 kpiod 15, 827 ksh 81 kswapd 15, 827 Kudzu 31 kupdate 15 L lanadmin 29, 317-318 LANs 373 lanscan 316-317 lastlog file 208 law see legal issues 787 LDAP documentation 533 overview 532-533 software 534 use with sendmail 550, 553, 560-562, 582-583 ldap_routing 582 Leffler, Sam 132, 577 legal issues 787-792, 813-814 Legato 203 liability 788, 791 Libes, Don 519 licenses (software) 792 LILO 18-23, 152, 232 lilo 18-19, 22, 152 lilo.conf file 18-19, 21, 152, 232 Link Control Protocol 291 links as shown by ls 72 hard 66-67 symbolic 68-69 Linux 3 Linux LVM 132 linuxconf 323 LISA conference 793, 816 ListProc 558, 560 LISTSERV Lite 558, 560 ln 66, 68 load averages 759 load balancing (disk) 756, 764 load balancing (web) 409, 445, 688, 755 loadable drivers 229, 253-256 dangers 253 FreeBSD 256 Linux 254-256 Solaris 253-254 loader.conf file 20 local_lmtp 586 local_procmail 587 LocalDirector 688, 755 localhost DNS configuration 455, 480-481 local-host-names file 578, 590 localization 805-809 lockd 490, 829 /dev/log 210 log files see also syslog accounting 208 Amanda 196 archiving 206 BIND 403, 423 design hints 218 log files continued discarding 204 filtering and postprocessing 222-223 finding 207-208 for cron 158 for login 208 for sendmail 617 for sudo 42 FreeBSD 209-210 HP-UX 209 logging to /dev/console 220 network-wide 218 not to manage 208-209 Red Hat 209 replacing while in use 206 rotating 205-206, 210 sendmail 617 Solaris 209 table of locations 208 logcheck 222-223 logger 219 logging in 105 logical unit numbers 123 logical volume managers 131-132, 143-146 .login file 88 login 39, 105, 208 ;login: newsletter 815 /etc/login.conf file 81 logingroup file 80 logins adding 85-89 bin 44, 79 daemon 44, 79 disabling 90-91 ftp 696 GECOS information 80 groups 79-80, 88-89 guest 781 home directories 65, 81, 87 mail home 88, 549 naming conventions 77-78 nobody 44, 491, 531 passwords 78-79, 86-87 policy agreements 782-783 pseudo-users 79 recycling UIDs 79 removing 90 root 39-43, 79, 657-658 shared 657, 780 shells 81 site-wide management 490, 780 sys 44 .logout file 88 loopback interface 271, 284, 299, 301, 343 lost+found directory 134, 138, 162 Lövstrand, Lennart 563 lp 719-720 lpacct file 208 lpadmin 722-724 lpbanner 738 lpc 708, 710-711 lpd 707-709, 828 lpd.conf file 737 lpd.perms file 737 lpd-errs file 208, 215 LPDEST environment variable 721 lpf 716 lpfilter 729 lpforms 729 lpget 729 lpmove 726 lpq 708-709 lpr 707-710 lprm 708, 710 LPRng 735-739, 809 lpsched 719-722, 828 lpset 729 lpshut 721 lpstat 724 lptcontrol 708 lptest 708 lpunlock 708 lpusers 729 ls 38, 71-73, 87 lsmod 254 lsof 64 Lucent Portmaster 295 lvcreate 145-146 lvextend 146 lvlnboot 146 M m4 563, 570-571 mactime 669 magnetic media 169-175 bin/mail 538 ucb/mail 538 mail headers 541-546, 604-606 mail homes 88, 549 mail submission agents 537, 540-541 mail.local 540, 586, 610 MAIL_HUB macro 584, 592 MAILER macro 576-577 mailers 576-577 fax 577 Usenet 576 mailertable 580 mailing lists 557-560 Mailman 558-560 .mailrc file 88 mailstats 614 mailx 88 main.cf file 619 maintenance 744-753 contracts 745-746 monitors 691 preventive 748-749 under warranty 746 Majordomo 208, 558-559 make 516, 522, 525 makedbm 525, 527 MAKEDEV 67, 252 makemap 579-580 Mammoth tapes 173, 175 /usr/man directory 7 man 7-8 man pages 5 Manheimer, Ken 559 MANPATH environment variable 7 MANs 373 master.cf file 619 /etc/master.passwd file 81, 86, 655 Mattel 789 MBR (Master Boot Record) 17-19 McCreary, Sean 719 McKusick, Kirk 132 MCSE certification 815 MD5-based passwords 78 mediainit 130, 144 /dev/mem file 44, 659 memory 14 effect on performance 755, 757 installing 747-748 management 760-763 memory-based filesystems 765 Merit GateD Consortium 352 message of the day 105, 790 message stores 537, 540 messages file 208, 215 Metcalfe, Bob 373 mfs 765 mh 538, 809 MIBs see SNMP Microsoft Windows see Windows mini DIN-8 connector 97-98 mkdir 66 mke2fs 151-152 mkfs 132, 151 mklost+found 134 mknod 67, 252 mkswap 152 Mockapetris, Paul 394 modems 113-115 modinfo 229, 253-254 modload 254, 256 modprobe 255-256 modstat 256 /modules directory 256 modunload 254, 256 monitors 170, 691, 747 Moore's Law 127, 263 Morning Star 321 Morris, Robert Jr. 651 MOSPF protocol 351 motd file 105, 790 mount 62, 133-136, 142, 147, 500 mount points 62 mountd 493, 829 mounting a filesystem see filesystems mpage 740, 809 mqueue directory 565, 568 MRTG program 647-648 mt 186-187 MTUs 268-269, 380, 628 Muffett, Alec D. E. 666 multibooting 20-22 multicasting 271 multiuser mode 16 mush 538 mutt 538 MX records 443-444, 545, 566, 582-583 N name servers see also BIND see also DNS see also named authoritative 404-406, 413 caching 404-406, 409-410 configuration 414-469 dynamic updates 459-460 forwarding 413, 421 internal 413 lame delegations 478-479 master vs. slave 405, 426 name servers continued recursive vs. nonrecursive 406-407, 412 zone delegation 407-409, 455-457 zone serial numbers 439, 457 zone transfers 405, 410, 419-420, 458-459 name service switch 304-305, 523-524 named 833 see also name servers access control lists 422, 460-462 address match lists 416 check-names option 419 chrooted 462 configuration 414-469 configuration examples 429-436 controls statement 427-428 debugging 473-479 determining version 403 error messages 471-473 forwarding 413, 421 FreeBSD 484-485 $GENERATE directive 454 HP-UX 482-483 $INCLUDE directive 454 include statement 417 key statement 427 listen-on option 421 localhost configuration 455, 480-481 logging 423, 469-473 notification options 418 options statement 417 $ORIGIN directive 454 overview 404 parser directives 453-454 query-source option 421 recursion 406-407, 418 Red Hat 484 root server hints 407, 426, 479-480 server access controls 422 server statement 422-423 Solaris 481-482 table of statements 416 trusted-keys statement 427 TSIG/TKEY 462-464 $TTL directive 437, 440, 454 version string 417-418 view statement 428-429 named continued wrangling with ndc 415, 427-428, 457, 473-475 zone serial numbers 439, 457 zone statement 424-427 zone transfers 405, 410, 419-420, 458-459 named pipes 68 named.boot file 415 named.conf file 415-436 named.run file 473 named.stats file 474 named_dump.db file 474 Napster 779 NAT 279-281 FreeBSD 336-337 Red Hat 327-330 natd 334 ncheck 138 ndc 415, 427-428, 457, 473-475 ndd 311-313, 319-320, 692 nddconf file 29, 320 Nemeth, Evi 656 Nessus 665 netconf file 29, 315-316, 318 netconfig file 697 netdaemons file 29 netgroup file 514, 522 netgroups 522 netmasks 272-275 netmasks file 308 Netscape Communicator 808 netstat 317, 324, 331, 631-636 examining interfaces 300 examining routing table 283-284 UDP pier overflows 500 nettl 638 Network Associates 671 network file 322 Network Solutions, Inc. 399 network unreachable error 302, 631 networking 271, 297 adding new machines 298-305, 392-394 addressing 269-283 administrative databases 513, 521-534 ARP protocol 265, 270, 285-287 ATM 381-382 broadcast addresses 301 cable modems 384 CIDR 276-278 config files by system 307 networking continued congestion 389 default route 283-284, 302, 304, 316, 339, 344, 352, 367, 635 DHCP 287-291 dropped packets 628 DSL 383-384 errors and collisions 633 FDDI 380-381 firewalls 296, 327-329, 333-337, 675-678 fragmentation 269 frame relay 382-383 FreeBSD 330-340 hardware 372-391 HP-UX 315-322 interface configuration 300-302 IP addresses 271-283 IPSEC 788 IPv6 275-276, 281-283 ISDN 383 kernel options 230, 233, 239-240, 244-246 load balancing 409, 445, 688, 755 loopback 271, 284, 299, 301, 343 management see SNMP MTUs 268-269, 380, 628 NAT 279-281, 327-329 network design 387-389 network interfaces 633 network printers 706, 728 packet sniffers 385, 636-639 packet TTLs 630 packets and nesting 266-267 performance 631 port scanning 663, 665 ports 270-271 PPP 291-295 protocol stack 265-267 protocol statistics 635-636 RARP protocol 287 Red Hat 322-330 redundant connections 348, 787 round trip time 628 routing see routing security see security Solaris 307-315 subnetting 272-275 troubleshooting 385, 626-636 viewing connections 632 virtual interfaces 691-694 virtual private networks 296-297 networking continued VLANs 379 wireless 268 wiring 386-387 networks file 303, 514 network-scripts directory 32 newaliases 162, 557 newfs 59, 132, 142, 146-147 newgrp 80 news see Usenet .newsrc file 88 newsyslog 211 NFS 488-512 see also automounters and the fstab file 135 daemons 828-829 dedicated file servers 503-504 dumping restrictions 176 exporting filesystems 493-500 FreeBSD 495, 498-499 hard vs. soft mounts 501 HP-UX 495-496, 500 junk files 161 kernel options 239 locking 549 magic cookies 491 monitoring and tuning 503 mounting remote filesystems 501-502 naming conventions 492 protocol versions 488 Red Hat 495, 497-498, 500, 509 security 491-492, 494, 502 Solaris 494-495, 500-501 table of mount options 502 TCP vs. UDP 489 use with Windows 770 nfsd 493, 499-500, 828 nfsiod 501, 829 nfsstat 503 nice 52-53 nice value 47, 52-53 NIS 298, 307, 515, 521, 523-530, 550 advantages and disadvantages 524-525 commonly-shared files 514 daemons 829-830 domains 522 map of servers 526 name service switch 523-524 netgroups 522 overview 525-527 query procedure 526 security 661-662 NIS continued setting up 527-530 slave servers 522 table of components 527 vendor specifics 529-530 vendor support 521 NIS+ 515 domains 531 relationship to NIS 530-531 vendor support 521 nisd 830 NLOGS syslog parameter 219 nmap 663-665, 808 nmbd 770 nmh 538 nobody login 44, 491, 531 nocanonify 579 NOCOL 648 nodename file 307 /etc/notrouter file 309 npasswd 809 NS records 440-441, 455 NSFNET 262 nslookup 407, 461, 475-478, 809 nss_ldap 534 nsswitch.conf file 305, 307-308, 523-524 NTP protocol 834 NTRIGUE 776 nullclient 585-586 nvi 809 O O'Reilly books 817 Oetiker, Tobi 647, 806 office wiring 386 off-site backups 167 on 832 one-time passwords 674 on-site maintenance 745 The Open Group 818 open relaying 597 Openlaw 789 OpenLDAP 534 openlog 220-221 openprom 228 OpenSSH 672 OpenView 643 OPIE 674 Orb disks 171, 175 ORBS (Open Relay Behavior-modification System) 597 OSPF 347, 350-351, 360-362, 368 designated routers 361 router priority 362 routing areas 360-361 OSTYPE macro 574-575 Ousterhout, John 519 Outlook Express 538 Owens, Keith 274 ownership of files 37-38, 74 of processes 38-39 P pac 715 pacadm 109 pacct file 208 packet filtering see firewalls packet sniffers 385, 636-639, 642 PADL Software 534 page clusters 760 pagedaemon 14, 827 pageout 827 paging 136, 760-761 Painter, Mark 394 PAM (pluggable authentication modules) 656 pam_ldap 534 parallel ports 116-117 partitions alternate root 240 design hints 166 entire disk 130 FreeBSD 153-156 HP-UX 143-148 load balancing 756, 764 overlapping 130 overview 130-131 purpose 130 Red Hat 148-153 root partition 64, 131, 240 size 167 Solaris 140-143 swap 131, 136 /etc/passwd file 38, 76-83, 86, 91-92, 514, 529 and mail aliases 551 security 655-659 passwd command 38-39, 78, 83, 86, 208, 215 passwords 78-79, 655-656 aging 657 guessing 666 passwords continued length 656 one-time 674 selection rules 39-40, 86-87, 655-656 shadow 78-79, 82-84, 656-657 patents 813-814 PC hardware 776 BIOSes 17, 124-125 boot device priority 17 bootstrapping 16-22 device drivers 246 general tips 776-777 multibooting 20-22 vs. workstations 17 PC systems see Windows PCL (printer PDL) 705 pclbanner 738 PDLs (page description languages) 704 Pendry, Jan-Simon 505 performance 754-768 CPU 757-759 disk 757-765 factors affecting 756-757 improving 755-756 load averages 759 memory 757, 761-763 troubleshooting 766-768 Perl 2, 10, 808 permanent virtual circuits 382 permissions 69-75 PGP 613, 671-672, 809 PGP (Pretty Good Privacy) 613 phone jacks 113 phones file 114-115, 577 pico 809 PIDs (process IDs) 46 PIM protocol 351 pine 538, 809 ping 627-629 piracy 792 PIX (Cisco product) 296, 320 pkgadd 248, 314, 808 pkginfo 314 /platform directory 227 pluggable authentication modules 656 pmadm 109 policy agreements 89, 779-785 Polk, Jeff 793 Pomes, Paul 563 POP 537, 540, 546, 549-550, 831 popper 831 pornography 698, 788, 791, 803 port scanning 663-665 portmap 492-493, 824-827 /usr/ports directory 690, 808 POSIX 818 Postel, Jon 263 Postfix 537, 618-623 architecture 618 configuration 619-621 example configuration 622-623 security 619 spam control 621-622 postmaster alias 551 PostScript 705-706 Powell, Patrick 735 power management 751 PPID (Parent Process ID) 46 PPP 291-295 address assignment 294 FreeBSD 337-340 HP-UX 321-322 link control 291-293 network control protocols 292 performance 292-293 Red Hat 329 routing 294 security 294 Solaris 209, 314-315 ppp 337-338 ppp.conf file 337-338 ppp.deny file 338 pppd 321, 338-339 pppstats 340 Predictive Networks 790 /var/preserve directory 162 Preston, W. Curtis 203 Pretty Good Privacy 613, 671-672, 809 printcap file 514, 707-709, 712-719 for LPRng 738 format and syntax 712-713 user-defined extensions 718 variables 713-718 variables for serial devices 717-718 PRINTER environment variable 707 .printers file 729 printers.conf file 722, 729 printing 703-743 access control 709 accounting 715, 738-739, 741 adding printers 728-734 BSD software 707-719 printing continued BSD vs. SysV 703-704 connection methods 705-706 debugging 739 default printer 707, 713, 721 filters (BSD) 716-717, 738 FreeBSD 734 HP-UX 731-732 interface programs 722-723, 726-727 LPRng 735-739 network printers 706, 728 philosophy 741-743 Red Hat 732-734 remote printers 715-716, 728 removing jobs 710, 725 security 742 Solaris 729-731 spool directory 713-714, 720 SysV examples 723 SysV software 719-728 to files and programs 719 toner cartridges 742 wedged printing system 711, 727-728 printtool 708 priority 47, 52-53 privacy 789-790 private IP addresses 279-281, 456 privileged ports 271, 663, 675 probe-scsi 139 process groups 47 processes components 45-47 control terminal 47 monitoring 53-57 ownership 38-39, 46-47 PPIDs 46 priority 47, 52-53 process groups 47 runaway 57-59 sending signals to 51 spontaneous 14-15 states 51-52 zombie 54, 823 procinfo 765 procmail 540, 587, 809 procurement 811-812 .profile file 88 .project file 833 promiscuous mode 636 protocol stack 266-267 protocols file 514, 824 proxy servers 695 prtconf 229 ps 53-56, 659, 759 psbanner 738 pseudo-devices 242 pstat 761-762, 766 PTR records 442-443 PTYs (pseudo-terminals) 242 public key cryptography 464, 673 pump 324-325 purchasing 811-812 pvcreate 144 pvdisplay 146 pwd_mkdb 81 Q queuemh 555, 796 QUIT signal 50-51 quotas 89, 490 R racks 752-753 RAID 132, 756 ram 765 RAM disks 765 RARP protocol 287, 835 rarpd 835 rc scripts see startup scripts rc.conf file 32, 330, 332-333 rc.config.d directory 28-29 rc.d directory 30 rc.local script (Red Hat) 30 rc.log file 29 rcmd 832 rcp 660, 672, 832 RCS 808 rdist 515-517 rdump see dump read bit 69-75 RealNames 401 Realtime Blackhole List 590, 601-602 reboot 35 rebooting 33-36 recommended vendors 390-391 recycling UIDs 79 Reed, Darren 333 regular files 66 reject 725-726 relative paths 68 relay-domains file 597 rem_drv 254 remote file 104, 114-115, 577 remote printers 715-716 removing a user see logins renice 52-53, 767 replicated filesystems 508 req 796 reset 112 resolv.conf file 304-306, 411-414 resolver (DNS) 304-305, 407, 411-414 restore 180-184 return air plenums 376, 388 rexd 661, 832 rexecd 661, 832 RFC documents 263-265 .rhosts file 516, 660, 673, 831 Rickert, Neil 563 Riggle, David 394 RIP protocol 347, 349-352, 358-360, 367-368 RIPE 279 RIPs (raster image processors) 704 RJ-11 connector 113 RJ-45 connector 99-101 rlogin 660, 672 rlogind 516, 660, 831 rlpdaemon 828 rlpr 740 rm 66, 68 rmail 538 rmmod 255 RMON MIB 642 rmuser 92 rndc 415, 427-428, 457, 473-475 root login 39-43 accessing 40-43 operations restricted to 39 security 657-658 subdividing 41-43 root partition 64, 131 alternate 240 device 240 root password 39-40 rotating log files 205-206 rotz 211 Rouillard, John 558 round robin (DNS) 409 route 284, 302-303, 323, 331, 340 route file 283 routed 309, 351-352, 367-368, 832 Router Discovery Protocol 351 routing 283-285, 342-371 autonomous systems 348 BGP 347, 368 Cisco routers 368-370 daemons 351-367 debugging 629-631, 634-635 default route 283-284, 302, 304, 316, 339, 344, 352, 367, 635 for PPP 294 ICMP redirects 285, 295, 313, 320, 326, 333, 363 IGRP/EIGRP 347, 350 IS-IS 347, 351 loopback 343 OSPF 347, 350-351, 360-362 packet forwarding 295, 302-304, 313, 320, 326, 333 RIP 347, 349-352, 358-360, 367-368 route tracing 628-631 Router Discovery Protocol 351 routers 368-370, 377, 379-380 static routes 284, 302-303, 363-364 strategy 367-368 tables 283, 634-635 unreachable networks 302, 631 vendor specifics 366-367 Rowland, Craig 222 rpc file 514, 825 RPC protocol 826-827 rpc.mountd 493, 829 rpc.nfsd 828 rpc.nisd 830 rpcbind 492-493, 824-827 rpm 808 rquotad 490 RRDtool 648 rrestore 180-184 RS-232 93-96, 102 see also serial cables rsh 516, 832 rshd 660, 832 rsync 518-519 RTS (Request to Send) 102 run levels 25-28 runaway processes 57-59 rwhod 831 S S/Key 674 S/MIME 613 sacadm 109 SafeFileEnvironment 610 SAGE guild 793, 814-816 SAGE-AU guild 814 SAINT 665 SAM administration tool 229-230, 316, 319 Samba 770-773, 809 SANS institute 679, 793, 814 sar 758, 761-762 SASL 614 SATAN 665 /sbin directory 64 SCA connector 121 SCCS 808 sched 15 SCHEDLOCK file 722 SCSI 118-124, 128-129 cables and connectors 121-122 differential 120-121, 123 logical unit numbers 123 Solaris 139-140 table of versions 121 target number 123-124 termination 122-123 troubleshooting 123-124 vs. IDE 126 wide 121 search bit 69-75 second system effect 530 Secure Remote Password 674 secure terminals 660 security 651-683 backups 167, 662 CERT 678 cryptography 669-675 directed broadcast 296, 313, 320, 326, 333 DNS 417-418, 422, 460-469 electronic mail 607-614, 662 firewalls 296, 327-329, 333-337, 675-678 handling a break-in 680-682 ICMP redirects 285, 295, 313, 320, 326, 333 in /etc/group 655, 659 in /etc/passwd 655-658 information sources 678-680 Kerberos 670-671 log files 204, 218 network 295-297, 313, 320-321, 326-329, 333-337 NFS 491-492, 494, 502 NIS 661-662 security continued notification of problems 223 packet forwarding 295, 313, 320, 326, 333 packet sniffers 636-639 passwords 655-656 policy 781-782 Postfix 619 power tools 663-675 PPP 294 printer 742 remote logging 660 secure terminals 660 setuid programs 38, 658-659 shadow passwords 78-79, 82-84, 656-657 SNMP 642 source routing 296, 313, 319-320, 326, 333 trojan horses 662-663 username uniqueness 78 vendor-specific resources 679 viruses 596 SecurityFocus 678 segmentation violation 50 SEGV signal 50 selfcheck 189 Seltzer, Margo 557 sendbackup 189 sendmail 537-624 access database 597, 599-601 always_add_domain feature 578 configuration 570-614 configuration examples 588-595 converting .mc to .cf 572-573 debugging 615-617 documentation 570 DOMAIN macro 576 FEATURE macro 577 genericstable feature 581, 590, 594 header checking 593, 602-603 history 537, 562-563 HP-UX 29 installation 565-566 ldap_routing feature 582 local_lmtp feature 586 local_procmail feature 587 log files 617 mail handling tables 579-583 mail to disabled account 91 MAIL_HUB macro 584, 592 sendmail continued MAILER macro 576-577 mailers 576-577 mailertable feature 580 masquerading 583-586 modes of operation 566 nocanonify feature 579 nullclient feature 585-586 old-style config options 587-588 OSTYPE macro 574-575 privacy options 610-611 queue 567-570 Red Hat 31-32 redirect feature 556 relaying 597-599 SafeFileEnvironment option 610 security 607-614, 662 service switch 566 SMART_HOST macro 584, 592 smrsh feature 586 spam-control features 595-607 special users 608-609 statistics 614 use_cw_file feature 578 vendor versions 564 verbose delivery 615-616 VERSIONID macro 574 versions 563 virtusertable feature 581-582, 590, 594 Sendmail Installation and Operation Guide 623 Sendmail, Inc. 537, 591 sendmail.cf file 565, 567, 570 sendmail.cw file 578 sendmail.st file 614 sendsize 189, 199 SEPP software 806 serial cables DCE vs. DTE 95 length limits 102 null modem 97 straight 97 variants 96-101 Yost standard 99-101 serial connectors DB-25 95-96 DB-9 98 mini DIN-8 97-98 RJ-45 99-101 serial driver device files 252 serial driver continued inspecting settings 111 resetting 112 setting options 111-112 special characters 110-112 serial ports 93-116 bidirectional 103 DCE vs. DTE 95 device files 67, 103-104 flow control 102 for terminals 104-110 hard/soft carrier 101-102 resetting 112 setting options 111-112 software aspects 103-112 Solaris 109 special characters 110-112 service proxy firewalls 676 service.switch file 566 /etc/services file 189, 271, 514, 519, 825-826 setgid bit 69, 72 setkey 297 setrlimit 767 setuid bit 69, 72 setuid execution 38 security issues 658-659 shell scripts 658 sh 2, 81, 88 /etc/shadow file 79, 82-84, 86, 514, 655-658 shadow passwords 78-79, 82-84, 656-657 share 493-494 shareall 493 shared logins 780 sharetab file 493 sharing a filesystem see NFS /etc/shells file 81, 91, 553 shells 81, 657 .shosts file 673 shutdown 34-35, 208, 215 shutdownlog file 208 shutting down 33-36 signals 38 see also individual signal names caught, blocked, or ignored 49 common signals 50-51 overview 48-51 sending 51 table of 49 single-user mode 13, 15-16, 22-24 FreeBSD 24 HP-UX 23 single-user mode continued Red Hat 15, 23-24 Solaris 22-23 skel directory 87 Slackware 30 slapd 534, 561 slarpd 534 SLIP protocol 291 SMART_HOST macro 584, 592 SmartList 558, 560 SMB protocol 770-773 smb.conf file 771 smbd 770 smbstatus 773 smbtar 187, 196, 775 smrsh 540, 586, 610 SMTP 537, 539, 617, 624, 676 smtpd 547 smtpfwdd 547 Sniffer Technologies 385 sniffit 809 snitches 819 SNMP 639-650 agents 642-646 basic data types 640 communities 642 free tools 646 HP-UX 29, 643-644 MIB-II 641 MIBs and OIDs 640 protocol operations 641 RMON MIB 642 security 642 Solaris 643 table of OIDs 641 traps 642 UCD implementation 645 snmpd 644-645, 831 snmpd.conf file 643-645 snmpdx 643 snmpget 646 snmpwalk 646 snmpXdmid 643 snoop 637-638 SOA records 438-440 socket 68 soft carrier 101-102 soft links 68-69 soft mounts 501 software patents 813-814 piracy 792 recommended 808-809 SoftWindows 776 Solaris 3 SONET 383 source routing 296, 313, 319-320, 326, 333 Spafford, Gene 668 spam 535-536, 548, 590, 595-607, 792-793 blacklists 601-602 danger of replying 596, 603 general policy 603-604 open relays 597-599 Postfix features 621-622 sendmail features 595-603 tracing 604-607 SpamCop 607 spdadd 297 spontaneous processes 14-15 spooler 704 spop 540 Squid 694-696, 792, 809 srm.conf file 690 SRP protocol 674 SSH 516, 660, 672-674, 808, 832 for Windows 773-774 sshd_config file 673 SSL (Secure Socket Layer) 686 stackers 173-174 /stand/system file 230-231 standard I/O channels 47 standards 817-819 StarOffice 776 startup files 87-88 startup scripts 13, 24-33 FreeBSD 32-33 HP-UX 28-29 Red Hat 30-32 Solaris 28 startx 88 statd 490, 829 static electricity 746-747 static routes 284, 363-364 static-routes file 323 STD documents 264 sticky bit 69 STOP signal 50, 52, 58, 767 stty 102, 111-112 stub zones 425, 456-457 su 40-41, 215 submission agents 537, 540-541 subnetting 272-275 sudo 41-43, 79, 657, 784, 808 sudo.log file 208 SUG (Sun Users Group) 815 sulog file 208 Sun Microsystems 3 SunOS 3 superblocks 133 SuperDisks 170, 175 superuser privileges 39-43 SUS specification 818 /dev/swap file 44 swap 136, 142, 761-762 swap partitions 131 swapinfo 148 swapon 135-136, 147-148, 152, 156, 761, 764 swapper 14, 827 swapping 136, 760, 764 swatch 222-223 switches (Ethernet) 375, 377-379, 636 symbolic links 68-69 sync 35, 133, 828 syncer 828 /sys directory 234 /etc/sysconfig directory 31 sysconfig directories 323 sysctl 333 sysdef 229 sysinstall 153 syslog 210-222 actions 213 configuration dump 220 configuration examples 215-218 configuring 211-215 debugging 219-220 design hints 218 facilities 211-213 forwarding hierarchy 218 FreeBSD 214-215 Red Hat 213-214 remote logging 660 severity levels 211-213 table of clients 219 time stamps 212 using from Perl 220-222 syslog 220-221 syslog.conf file 210-217, 617 syslogd 833 /etc/system file 228-229 system administration against your will 10 checklists 779-780 disaster planning 784-787 essential tasks 8-9 hiring and firing 797-799 Internet resources 9-10 system administration continued orgs and conferences 814-816 personality syndrome 10-11, 799 policy agreements 779-785 privileges 39-43 resources 814-817 salaries 793 scope of service 795-796 setting expectations 797 sharing staff 786 skill tests 798 suggested toolbox 753 survey results 793-795 trouble reporting 796 System III 2 system processes 14-15 System V 2 Systems file 314, 321 S talkd 830 tape blocking factor 185 tape drives ADR 172, 175 AIT 173, 175 DAT (4mm) 172, 175 device files 67, 177 device names 253 DLT 172-173, 175 Exabyte (8mm) 171-172, 175 jukeboxes 173-174 Mammoth 173, 175 summary table 175 Travan 172, 175 tapes see also tape drives care and feeding 169-170 checking 168-169 copying 186 labeling 165 life cycle 169 positioning 186-187 summary table 175 tapetype 193 tar 184-185 T-Berd line analyzer 385 Tcl (Tool Command Language) 519 TCP 265-266, 270 connection states 632-633 layers 265 vs. UDP for NFS 489 TCP wrappers 320, 666, 808 tcp.log file 208 tcpd 666, 808 tcpdump 638-639, 808 tcsh 81, 88, 808 TCT tool kit 669 telinit 36, 108, 823 telnet 672 telnetd 832 temperature 749 TERM environment variable 110, 112 TERM signal 36, 50-51, 823 TERMCAP environment variable 110 termcap file 106, 109-110, 514 terminal driver see serial driver terminals 104-110 capability databases 109-110 config files by vendor 105 configuring at login 112 device files 67 secure 660 setting options 111-112 Solaris 109 special characters 110-112 unwedging 112 terminators (SCSI) 122-123 terminfo file 106, 109-110 Terry, Douglas 394 TFTP protocol 289 tftpd 661, 835 The Coroner's Toolkit 669 third-party software 808-809 Thomas, Eric 560 threads 46 TIA/EIA-568A 376 time 833-834 time stamps 212 time to live 630 timed 834 tin 88 tip 104, 114 TLS security 608, 613 /tmp directory 64, 161 tmpfs 765 toner cartridges 742 tools (hardware) 753 top 57, 759 Torvalds, Linus 3 traceroute 628-631, 808 transport agents 537, 539 Travan tapes 172, 175 tripwire 668-669, 787, 809 trojan horses 662-663 trouble reporting 554, 796 troubleshooting gated 353-355 networks 385, 626-636 runaway processes 57-59 SCSI 123-124 sendmail.cf file 615-617 serial line 115-116 sluggish system 766-768 Solaris kernel 229 syslog 219-220 wedged terminal 112 your job 10 troubmh 796 tset 112 TSTP signal 50, 52 ttyadm 109 ttydefs file 109 ttymon 109 ttys file 106 ttytab file 106 ttytype file 106 typographic conventions 4-5 T UDP 265, 267, 271 vs. TCP for NFS 489 ufsdump 143, 178-179 ufsrestore 143 UIDs 38, 46, 72, 79 real vs. effective 38 recycling 79 site-wide management 490, 780 standard 44 Ultra SCSI see SCSI umask 75, 88 umount 62-63, 135, 502 uname 254 UniForum 815 uninterruptible power supplies 751 UNIX domain sockets 68 UNIX Systems Laboratories 818 unlink 68 unreachable networks 302, 631 unsubscribing from a mailing list 545, 559 update 828 upgrades 184, 805-809 UPSs (power supplies) 786 URLs 686 us domain 398 USB (Universal Serial Bus) 117, 119 use_cw_file 578 Usenet 698-700 BS factor 754 description 698 liability issues 791 news feeds 698 posting through email 576 server software 699 USENIX association 793, 814 user agents 537-539 user policy agreements 782-783 useradd / userdel 91-92 usermod 83, 91-92 usernames see logins USG (UNIX Support Group) 2 USL (Unix System Laboratories) 2 /usr filesystem 64 USR1 signal 311 /etc/utmp file 208, 657, 830 UTP cables 375-377, 386 /etc/uucp directory 314 uugetty 115 V V.90 modem standard 113 van den Berg, Stephen R. 560 /var filesystem 64 vendors bashing 811 logos 5 recommended 390-391 third-party 803 Venema, Wietse 537, 618, 665-666, 669 Veritas 132, 143, 146, 202 VERSIONID macro 574 vfstab file 62, 133-136, 142, 501, 504 vgcreate 145 vgdisplay 145-146 vgextend 145 vhand 827 vi 2, 88 Viega, John 559 vipw 86 Virtual Adrian 765 virtual memory 45, 131, 136, 761-763 virtual network interfaces 691-694 virtual private networks 296-297 virtusertable 581-582, 590, 594 viruses 596, 602 visudo 43 Vixie, Paul 394, 563 VLANs 379 vmstat 757-758, 762-763 VMware 776 volcopy 186 VXFS filesystem 147 W wait 48 WANs 373 war stories 800-805 warranties 745-746 Warren, Rob 789 Warsaw, Barry 559 WBEM standard 639 web hosting 684-694 see also Apache CGI scripting 687 disaster plan 785 load balancing 409, 445, 688, 755 UNIX vs. Windows 685 virtual interfaces 691-694 WebNFS 489-490 well-known ports 271, 663, 675 whatis file 8 wheel group 41, 79 Wilson, Chan 559 WINCH signal 50 Windows 769-776 apps under UNIX 776 backups 196, 202, 775 DNS problems 468-469 multibooting with UNIX 20-22 Wine 776 wireless networking 268 wiring 386-387 documentation 389, 810 standards 386-387 World Wide Web see also web hosting caching 694-696 HTTP protocol 687 linking patent 813 proxies 695 URLs 686 wreq 796 write bit 69-75 wtmp file 208 Wu, Thomas 674 X X Windows 88, 208, 774 X/Open 818 X0msgs file 208 X-10 control system 752 .Xdefaults file 88 xdm 88 xDSL 383-384 xdvi 742 X-Force 680 .xinitrc file 88 xlock 805 xntpd 53, 809, 834 XON/XOFF 102 xrdb 88 xtab file 493 Y Yellow Pages see NIS Ylonen, Tatu 672 Yost, Dave 99 ypbind 526-527, 829 ypcat 527 ypchfn 527 ypinit 527-528 ypldapd 534 ypmake 522, 527 ypmatch 527 yppasswd 527-528 yppasswdd 527 yppoll 527 yppush 526-527 ypserv 526-528, 830 ypservers map 526 ypset 522, 527 ypupdated 527 ypwhich 527 ypxfr 526-528 ypxfrd 527, 830 Z Zhou, Songnian 394 Zimmermann, Philip 671 Zip disks 170-171, 175 zombie processes 54, 823 zone transfers 405, 410, 419-420, 458-459 zones (in DNS) 404