· KLDP.org · KLDP.net · KLDP Wiki · KLDP BBS ·
Linuxdoc Sgml/Server Admin-KLDP

You are not allowed to 'edit'


¿Ïº®ÇÑ ¸®´ª½º ¼­¹ö ±¸Ãà

¿Ïº®ÇÑ ¸®´ª½º ¼­¹ö ±¸Ãà

À̸¸¿ë geoman@nownuri.net, ÀÌÁØÇÏ

1998³â 10¿ù 17ÀÏ SGMLÆíÁý ¹× ±³Á¤: À¯ ¼ºÅ alloying@nownuri.net 1998³â 11¿ù 7ÀÏ
ÀÌ ±Û¿¡¼­´Â ÅÚ³Ý ¼­ºñ½º, FTP ¼­ºñ½º, ¸ÞÀÏ ¼­ºñ½º, À¥ ¼­ºñ½º, NFS ¼­ºñ½º¸¦ ¾î¶»°Ô ±¸ÇöÇÒ °ÍÀÎÁö ±×¸®°í ±¸ÇöÇÒ ¶§ ÁÖÀÇÇÒ Á¡Àº ¹«¾ùÀÎÁö¸¦ ¾Ë¾Æº¸±â·Î ÇÑ´Ù.
LINK : http://quangduc.com.vn/dichvu/cuuhogiaothong cuu ho giao thong] [http://quangduc.com.vn/dichvu/chamsocxe cham soc xe] [http://quangduc.com.vn/dichvu/tuvanbaohiem bao hiem oto] [http://quangduc.com.vn/sanpham do choi oto] [http://quangduc.com.vn oto] [http://www.laocaitravel.com du lich sapa]

1. ½ÃÀÛÇÏ´Â À̾߱â

¸®´ª½ºÀÇ ¼¼°è·Î ¹ßÀ» µé¿©³õÀº ¿©·¯ºÐÀ» ¾ðÁ¦³ª ȯ¿µÇÑ´Ù. ¿©·¯ºÐÀÌ ¸®´ª½º·ÎºÎÅÍ ¹«¾ùÀ» ¿øÇϴ°¡? ¸®´ª½º·ÎºÎÅÍ ¿øÇÏ´Â °ÍÀº °¡Áö°¢»öÀÌ°í ¸¹±âµµ Çϸ鼭 ÀûÀ» ¼öµµ ÀÖ´Ù. ¸®´ª½º¸¦ °ÔÀÓ±â·Î »ç¿ëÇϰųª ÀÌ·±Àú·± Àå³­°¨À» ½ÃÇèÇغ¸´Âµ¥ »ç¿ëÇÏ´Â »ç¶÷µµ ÀÖ°í À©µµ95º¸´Ù ¾ÈÁ¤ÀûÀÎ À¥ ¼­ÇÎÀ» ¹Ù¶ó°í ¸®´ª½º¸¦ ¾²´Â »ç¶÷µµ ÀÖÀ» °ÍÀÌ´Ù. ¸¸Á·½º·´Áö´Â ¾ÊÁö¸¸ ¸®´ª½º¿¡¼­ ³×Æ®½ºÄÉÀÌÇÁ À¥ ¼­ÇÎÀº ±¦ÂúÀº ¼öÁØÀÌ´Ù. ÇÊÀÚÀÇ °æ¿ì ¼ö¸¹Àº ¸®´ª½º ¸®¼Ò½º¸¦ ã¾Æ´Ù´Ï±â À§ÇØ 8°³ ÀÌ»óÀÇ ºê¶ó¿ìÀú È­¸éÀ» ½áµµ ¾È½ÉÇÏ°í »ç¿ëÇÒ ¼ö Àֱ⿡ À¥ ¼­ÇΠŬ¶óÀ̾ðÆ®·Î ¸®´ª½º¸¦ ³ôÀÌ Æò°¡ÇÑ´Ù. ¶Ç´Â ¸®´ª½º¸¦ ÇÁ·Î±×·¡¹Ö ȯ°æÀ¸·Î »ç¿ëÇÏ´Â »ç¶÷µµ ÀÖÀ» °ÍÀÌ´Ù. ³×Æ®¿öÅ© ÇÁ·Î±×·¡¹Ö, X À©µµ ÇÁ·Î±×·¡¹Ö¿¡ ¾ÆÁÖ ÁÁÀº ȯ°æÀ̶ó°í ¸»ÇÒ ¼ö ÀÖ´Ù. ¸®´ª½º¿¡¼­ POSIX ±Ô°ÝÀ¸·Î ÇÁ·Î±×·¡¹ÖÇÑ ¼Ò½º´Â ´Ù¸¥ Ç÷§Æû¿¡¼­ ¾ó¸¶µçÁö ¼Ò½º ÄÚµåÀÇ º¯°æ¾øÀÌ ÄÄÆÄÀÏÇÏ¿© »ç¿ëÇÒ ¼ö ÀÖ´Ù. ƯÈ÷ X À©µµ´Â Ç¥ÁØÀûÀ̱⠶§¹®¿¡ Æ÷ÆÃÀº Á¤¸» ½±´Ù. ¸¹Àº ±â´ë°¡ ÀÖ±â´Â ÇÏÁö¸¸ ±×·¯ÇÑ ±â´ëµé Áß¿¡¼­ Àü¼¼°èÀûÀ¸·Î ¸®´ª¼­µéÀÌ ¸®´ª½º¿¡°Ô¼­ ¿øÇÏ´Â °Í Áß Çϳª´Â¡°¸·°­ÇÑ ³×Æ®¿öÅ© ¼­¹ö¡±, ¡°´Ù¾çÇÑ ±â´ÉÀÇ ³×Æ®¿öÅ© ¼­¹ö¡±·Î¼­ÀÇ ¿ªÇÒÀÏ °ÍÀÌ´Ù. ±Ô¸ð·Î´Â ¾ÆÁ÷ ½ã¸¶ÀÌÅ©·Î½Ã½ºÅÛÁî»çÀÇ ½ºÆÅ ¸Ó½ÅµéÀ» µû¶ó°¥ ¼ö ¾øÁö¸¸ ÀÎÅͳ×Æ®¿¡ ÆÛÁ®ÀÖ´Â °³ÀÎ »ç¿ëÀÚµéÀÇ »çÀÌÆ®´Â ¿©Áö¾øÀÌ ÀÎÅÚ ¸Ó½Å À§¿¡¼­ ¸®´ª½º ¼­¹ö·Î ¿î¿µµÇ°í ÀÖ´Ù´Â °ÍÀ» ¾Æ´ÂÁö ¸ð¸£°Ú´Ù. ¿ì¸® ³ª¶óÀÇ °æ¿ì ºñÁ¤»óÀûÀÎ ÄÄÇ»ÅÍ È°¿ëÀ¸·Î ÀÎÇØ ¾ÈÁ¤¼ºÀ» Àǽɹްí ÀÖ´Â À©µµ95°°Àº °ÍÀ» °¡Áö°í ¼­¹ö±îÁö ÇØ°áÇÏÁö ¾ÊÀ¸¸é ¾È½ÉÀÌ ¾ÈµÇ´Â ºÐÀ§±â¿Í´Â Á¤¸» ´Ù¸£´Ù. ¸®´ª½ºÀÇ Áø°¡°¡ ¹ßÈֵǴ °÷Àº ¹Ù·Î ³×Æ®¿öÅ© ¼­¹öÀÌ´Ù.

¸¹Àº ´ëÇлý°ú ¿¬±¸¿øµéÀÌ ÀڽŵéÀÇ ³×Æ®¿öÅ© ¼­¹ö¸¦ ±¸ÃàÇÏ°í ½Í´Ù´Â »ý°¢À» ¸¹ÀÌ ÇÒ °ÍÀÌ´Ù. ¿©·¯ºÐ¿¡°Ô ¼­¹ö ¿î¿µÃ¼°è·Î¼­ ¸¹Àº ¼±ÅñÇÀÌ ÀÖÁö´Â ¾Ê´Ù. Á¦ÀÏ ¸¹ÀÌ »ç¿ëµÇ´Â Ŭ¶óÀ̾ðÆ® ¿î¿µÃ¼°è À©µµ95°°Àº °ÍÀ¸·Î ¼­¹ö¸¦ ÇÑ´Ù´Â °ÍÀº Á» ¿ì½º¿î ÀÏÀÌ°í ´ëºÎºÐÀÇ ¼±ÅñÇÀº ¸®´ª½º/À©µµNT/FreeBSD Á¤µµ°¡ µÉ °ÍÀÌ´Ù. ´õ ÀÌ»ó ¹è¿ì´Â °ÍÀÌ ±ÍÂú°Å³ª ³²ÀÌ ¾Ë¾Æ¼­ ÇØÁÖ±æ ¹Ù¶ó´Â »ç¶÷ÀÇ °æ¿ì¿¡´Â À¯´Ð½º °è¿­Ã³·³ ´Ù¾çÇÑ ±â´ÉÀ» ±âº»À¸·Î Á¦°øÇÏ´Â °ÍÀº ¾Æ´ÏÁö¸¸ ¹öÀü 4.0ÀÌ µÇ°í ³ª¼­ ¾µ¸¸ÇØÁ³´Ù´Â Æò°¡µµ ÀÖ´Â À©µµÁîNT ¼­¹ö ¹öÀüÀ» ¼³Ä¡ÇÏ´Â °Íµµ ÁÁÀ» °ÍÀÌ´Ù(ÀÌ¹Ì Áö³­ ´Þ ¼­¹ö ¹öÀüÀÌ ÇÁ·Î±×·¥¼¼°è CDºÎ·ÏÀ¸·Î ³ª°£ °ÍÀ¸·Î ¾È´Ù. ¿öÅ©½ºÅ×ÀÌ¼Ç ¹öÀü°ú È¥µ¿ÇÏÁö ¸»±â ¹Ù¶õ´Ù. ¹°·Ð º£Å¸¹öÀüÀÓ ¶ÇÇÑ ÀØÁö ¸» °Í). IIS ¶Ç´Â FrontPage°°Àº °Í¿¡ ´ëÇÑ ³»¿ëÀº ÇØ´ç Áö½ÄÀ» °¡Áø »ç¶÷À̳ª µ¿È£È¸¿¡¼­ ÇØ°áÇϱ⠹ٶõ´Ù. ³ª¸ÓÁö ¼±ÅñÇÀº ¸®´ª½º/FreeBSD ¿Í °°Àº ÀÚÀ¯ ¿î¿µÃ¼°èµéÀε¥ ¾î¶² °ÍÀ» ¼±ÅÃÇÏµç ¿©·¯ºÐ ¸¶À½ÀÌ´Ù. Àڱ⿡°Ô °¡Àå Àͼ÷ÇÑ °ÍÀ» »ç¿ëÇϱ⠹ٶõ´Ù. FreeBSD °æ¿ì¿¡ ¹öŬ¸® À¯´Ð½ºÀÇ ÀüÅëÀûÀÎ °­Á¡ÀÎ ³×Æ®¿öÅ·¿¡¼­ °­·ÂÇÑ ±â´ÉÀ» ¹ßÈÖÇÑ´Ù´Â »ç½ÇÀ» ¾Æ´Â »ç¶÷Àº ÀÌ¹Ì ¾Ë°í ÀÖ´Â ¹ÙÀÌ´Ù. ÇÏÁö¸¸ °á±¹ ¼±ÅÃÀº ¸®´ª½º¿¡°Ô·Î µ¹¾Æ¿Â´Ù°í »ý°¢ÇÑ´Ù. FreeBSD´Â UC ¹öŬ¸®Ãø¿¡¼­¸¸ Áß¾ÓÁýÁßÀûÀ¸·Î °³¹ßÇÏ°í ÀÖ´Ù. ÀÌÁ¡ÀÌ ¸®´ª½º¿Í ¸¹ÀÌ ´Ù¸£´Ù. ¡®»ç¿ëÀÚ = °³¹ßÀÚ¡¯ÀÎ µ¶Æ¯ÇÑ °­·ÂÇÔÀ» Áö´Ï°í ÀÖ´Â ¸®´ª½ºÀÇ °æ¿ì ¹Ù·Î FreeBSD µîÀÇ ¸ðµç Ç¥ÁØÀûÀÎ ¸ðµ¨µéÀ» º¸¸é¼­ ³×Æ®¿öÅ· µ¥¸óµéÀ» Æ÷ÆÃÇÏ¿´±â ¶§¹®¿¡ BSD °è¿­ÀÇ °­·ÂÇÔµµ °¡Áö°í ÀÖ´Â ¿î¿µÃ¼°èÀ̱⠶§¹®ÀÌ´Ù.

ó¸® ´É·ÂÀ¸·Î µûÁöÀÚ¸é µÑ »çÀÌ¿¡ Ä¿´Ù¶õ Â÷ÀÌ´Â ¾ø´Ù. ¸¸¾à ¸®´ª½º°¡ µÚÁø´Ù°í ÇÑ´Ù¸é ¸çÄ¥ ¾ÈÀ¸·Î ºÐ¸íÈ÷ ÆÐÄ¡°¡ ³ª¿Ã °ÍÀÌ´Ù. Àü¼¼°è ÇØÄ¿µéÀÇ ÀÚÁ¸½ÉÀÌ °É¸° ¿î¿µÃ¼°è ¸®´ª½º´Â ÃæºÐÈ÷ ¹ÏÀ» ¸¸ÇÑ ¿î¿µÃ¼°è¶ó´Â °ÍÀ» °­Á¶ÇÏ°í ½Í´Ù. ÇÏÁö¸¸ ±¸½½ÀÌ ¼­¸»ÀÌ¶óµµ ²ç¾î¾ß º¸¹è¶ó°í ¿©·¯ºÐÀÌ ¾î¶»°Ô »ç¿ëÇϴ°¡¿¡ µû¶ó Å©°Ô ±× ¼º´ÉÀÌ Á¿ìµÈ´Ù´Â °Íµµ ÀØÁö ¸»¾Æ¾ß ÇÑ´Ù. ¸®´ª½º´Â ±×¾ß¸»·Î ¿î¿µÀÇ ¹¦¹Ì¸¦ ¹ßÈÖÇÒ ¼ö ÀÖ´Â ÀþÀº °ü¸®Àڵ鿡 µû¶ó ±× ¼ºÆа¡ ´Þ·È´Ù. ¿­Á¤À» °¡Áö°í ´Þ·Áµé¸é ¿©·¯ºÐ ÁÖÀÇÀÇ ¾î¶² ¼­¹öµéµµ µû¶ó¿Ã ¼ö ¾ø´Â °­·ÂÇÑ ¼­¹ö°¡ µÇ¸ç ±×·¸Áö ¾ÊÀ¸¸é ¸®´ª½º¿¡ ´ëÇØ ½Ç¸ÁÇÏ°í ¸®´ª½ºÀÇ ¸í¿¹¸¦ ¶³¾î¶ß¸± ¼öµµ ÀÖ´Ù. Ç×»ó ¿·¿¡ ¿©·¯ºÐ°ú °°Àº ¸®´ª¼­µéÀÌ ÀÖ´Ù´Â °ÍÀ» ÀØÁö ¸»°í ¾î·Á¿î °ÍÀÌ ÀÖÀ¸¸é ¼­·Î ¹°¾îº¸¶ó. ¹°·Ð ¸®´ª¼­·Î¼­ ¸ðµç ÀÏÀÇ Ã¥ÀÓÀº ÀڱⰡ Áø´Ù´Â »ç½Çµµ ÀØÁö ¸»ÀÚ. ³¡³» Çس»°í¾ß ¸»°Ú´Ù´Â »ý°¢À» °¡Áö¸é ¸®´ª½º´Â ¿©·¯ºÐ¿¡°Ô ÃÊ°­·Â ¼­¹ö·Î ´Ù°¡¿Ã °ÍÀ» ¾à¼ÓÇÏ¸ç ±ÛÀ» ½ÃÀÛÇÑ´Ù.

2. ¾î¶² ¼­ºñ½º¸¦ Á¦°øÇÒ °ÍÀΰ¡?

¿©·¯ºÐÀÌ ¾Ë°í ÀÖ´Â ³×Æ®¿öÅ© ¼­ºñ½º¸¦ »ý°¢Çغ¸µµ·Ï ÇÏÀÚ. ÅÚ³Ý ¼­¹ö, FTP ¼­¹ö, ¸ÞÀÏ ¼­¹ö, À¥ ¼­¹ö µîÀº °¡Àå ±âº»ÀûÀÎ ¼­¹öÀÇ ±â´ÉÀ̶ó°í ¸»ÇÒ ¼ö ÀÖ´Ù. ±×¿Ü¿¡µµ NFS ¼­¹ö µîÀÇ ±â´É ¶ÇÇÑ Çس¾ ¼ö ÀÖ°í ³×Æ®¿öÅ·¿¡ ´ëÇÑ ÃæºÐÇÑ Áö½ÄÀ» °¡Áö°í ÀÖ´Â DNS ¼­¹ö, NIS ¼­¹ö ±×¸®°í ´Ù¾çÇÑ Ç÷§ÆûÀÇ ¿î¿µÃ¼°è¿¡¼­ µ¹¾Æ°¡´Â Ŭ¶óÀ̾ðÆ®µé¿¡ ´ëÇÑ ÆÄÀÏ ¼­¹ö, ÇÁ¸°Æ® ¼­¹ö ±â´ÉÀ» ÃæºÐÈ÷ Çس¾ ¼ö ÀÖ´Ù.

  1. ÅÚ³Ý ¼­ºñ½º
  2. FTP ¼­ºñ½º
  3. ¸ÞÀÏ ¼­ºñ½º
  4. NFS ¼­ºñ½º
  5. À¥ ¼­ºñ½º

ÀÌÁ¦ À§¿¡¼­ ¸»ÇÑ 5 ´ë ¼­ºñ½º¸¦ ¾î¶»°Ô ±¸ÇöÇÒ °ÍÀÎÁö, ±×¸®°í ±¸ÇöÇÒ ¶§ ÁÖÀÇÇÒ Á¡Àº ¹«¾ùÀÎÁö¸¦ ¾Ë¾Æº¼ °ÍÀÌ´Ù.

3. ÅÚ³Ý ¼­ºñ½º(Telnet)

À¯´Ð½º °è¿­ °íÀ¯ÀÇ ¸ÚÁø ±â´ÉÀ̶ó°í ÇÒ ¼ö ÀÖ´Ù. ¿ø°Ý È£½ºÆ®·ÎºÎÅÍ ¼­¹ö·ÎÀÇ Á¢¼ÓÀ» Çã¶ôÇÏ°í ¿©·¯ºÐ ¼­¹öÀÇ ½Ã½ºÅÛ ÀÚ¿øÀ» »ç¿ëÇÒ ¼ö ÀÖµµ·Ï Çã¿ëÇØÁÖ´Â °ÍÀÌ´Ù. telnet <È£½ºÆ®¸í ¶Ç´Â È£½ºÆ® IP ÁÖ¼Ò> ¸¦ ÀÔ·ÂÇÏ°í µé¾î°¨À¸·Î½á Á¢¼ÓÇÑ »ç¶÷ÀÌ ¸¶Ä¡ ±× ¼­¹ö ÄÜ¼Ö ¾Õ¿¡ ¾É¾Æ ÀÖ´Â °Íó·³ ¼­¹öÀÇ ÇÁ·Î±×·¥À» »ç¿ëÇÒ ¼ö ÀÖ´Ù.

Ŭ¶óÀ̾ðÆ®/¼­¹ö ¸ðµ¨À» ¸ð¸£°í¼­´Â ³×Æ®¿öÅ©¸¦ »ç¿ëÇÑ´Ù´Â °ÍÀÌ ºÒ°¡´ÉÇÏ´Ù°í ¸»ÇÏ°í ½Í´Ù. ÇÏÁö¸¸ ÀÌ À̽´´Â Ŭ¶óÀ̾ðÆ® »ç¿ëÀÚ¿¡°Ô ÇÊ¿äÇÑ ³»¿ëÀÌ´Ù. »ç¿ëÀÚ´Â ¼­¹öÀÇ ÀÚ¿øÀ» »ç¿ëÇÏ°í ÀÖÀ¸¸ç ±× °á°ú¸¸À» ÀÚ½ÅÀÇ Å͹̳ηΠÃâ·Â ¹Þ´Â´Ù´Â »ç½ÇÀ» Àß ¾Ë°í ÀÖ¾î¾ß ÇÑ´Ù.

3.1 »çÀü Áغñ

ÅÚ³Ý µîÀÇ µ¥¸ó¿¡ ¾à°£ÀÇ ¹ö±×°¡ ÀÖ´Ù°í ¾Ë·ÁÁ® ÀÖ´Ù. ²À ¾öû³­ ¹ö±×, º¸¾È¿¡ °ü°èµÈ ¹ö±×´Â ¾Æ´Ï´õ¶óµµ ³×Æ®¿öÅ© µ¥¸ó¿¡ ´ëÇؼ­´Â Á¤±âÀûÀ¸·Î ÃֽŠ¹öÀüÀ¸·Î ±³Ã¼ÇÒ Çʿ伺ÀÌ ÀÖ´Ù. ±×°Í ¸»°í ³×Æ®¿öÅ© °ü¸®ÀÚ°¡ ÇÒ ÀÏÀÌ ¶Ç ¹«¾ùÀ̰ڴ°¡? ¿©·¯ºÐÀÌ ¹Þ¾Æ¿Í¾ß ÇÒ ÆÄÀÏÀº netkit-base-0.10.tar.gz¶ó´Â ÆÄÀÏÀÌ´Ù(¹°·Ð À̺¸´Ù »óÀ§ ¹öÀüÀÌ ÀÖ´Ù¸é ±×°ÍÀ» ¹Þ¾Æ¿À¶ó). ÁÖ »çÀÌÆ®´Â ftp.uk.linux.orgÀÌ¸ç ºÎ »çÀÌÆ®´Â À¯¸íÇÑ sunsite.unc.eduÀÌ´Ù. ¹°·Ð ±¹³»¿¡µµ ¹Ì·¯ »çÀÌÆ®°¡ ÀÖ´Ù. ÆÄÀÏÀ» ¹ÞÀ» ¶§´Â ²À .tar.gz´ë½Å .txt ¶Ç´Â .lsm ( Linux Software Map )À̶ó´Â À̸§À¸·Î ³¡³ª´Â ÆÄÀÏÀ» ¹Þ¾Æ¼­ È®ÀÎÇغ¸±â ¹Ù¶õ´Ù. ÀڷḦ Ç®°í ±×³É makeÇÏ´Â °Í¸¸À¸·Îµµ ¿øÇÏ´Â ÆÄÀÏÀ» ÄÄÆÄÀÏÇÒ ¼ö ÀÖµµ·Ï µÇ¾î ÀÖ´Ù. ÇÊÀÚ´Â ¾ËÂ¥ ½½·¢¿þ¾î 3.1°ú libc 5.4.7¿¡¼­ ¿¡·¯ Çϳª ¾øÀÌ ¹«»çÈ÷ ÄÄÆÄÀÏ ÇÏ¿´´Ù. ¼³Ä¡´Â ·çÆ® ±ÇÇÑÀ¸·Î make installÀÌ´Ù. ÅÚ³Ý ¸»°íµµ ¿©·¯ °¡Áö ³×Æ®¿öÅ© µ¥¸óµéÀ» ¼³Ä¡ÇØÁØ´Ù. biff, comsat, finger, fingerd, inetd, ping, rlogin, rlogind, rpc, rpcgen, rpc.usersd, rpc.rwalld, rpcinfo, rsh, rshd, rusers, rwall, rwho, rwhod, bsdslattach, talk, talkd, timed µîÀÌ ¹Ù·Î ±×°ÍÀÌ´Ù. µÚ¿¡ d·Î ³¡³ª´Â ÆÄÀÏÀº ¸ðµÎ µ¥¸óÀ» ¶æÇÑ´Ù.

3.2 »ç¿ëÀÚ °èÁ¤ ¸¸µé±â

ÀÏ´Ü »ç¿ëÀÚÀÇ ¿äûÀ» ¹Þ¾Æ¼­ ¼­¹öÀÇ Çϵåµð½ºÅ©¿¡ °èÁ¤À» ¸¸µé¾î¾ß ÇÑ´Ù. º¸Åë ¸¹Àº ¹èÆ÷ÆÇ¿¡¼­´Â adduser¿Í °°Àº ½ºÅ©¸³Æ® ¶Ç´Â ½ÇÇàÆÄÀÏ(½ºÅ©¸³Æ®´Â ÇØÅ·Çϱ⠽¬¿ì¹Ç·Î ¾Æ¿¹ ½ÇÇàÆÄÀÏ·Î ¸¸µå´Â °Íµµ ÁÁÀº ¹æ¹ýÀÌ´Ù)À» Á¦°øÇؼ­ »ç¿ëÀÚ¸¦ µî·ÏÇÒ ¼ö ÀÖµµ·Ï ÇØÁÖ°í ÀÖ´Ù. »ç¿ë¹ýÀº ´ÙÀ½°ú °°´Ù.

# adduser

Adding a new user. The username should not exceed 8 characters
in length, or you may run into problems later.

»ç¿ëÀÚ ID¸¦ ¸¸µé ¶§´Â 8ÀÚ ÀÌ»ó ³ÖÁö ¸»¶ó. ±×°ÍÀ» ¿°µÎ¿¡ µÎ±â ¹Ù¶õ´Ù.

Enter login name for new account (^C to quit): foo

Editing information for new user [foo]

»ç¿ëÀÚ¿¡ °üÇÑ Á¤º¸¸¦ ³Ö´Â´Ù. »ç¿ëÀÚÀÇ º»¸í, GID, UID, Ȩ µð·ºÅ丮, »ç¿ëÇÏ´Â ¼ÐÀÇ Á¾·ù, Æнº¿öµå µî ¾ÆÁÖ Áß¿äÇÑ Á¤º¸¸¦ ÀÔ·ÂÇØ¾ß ÇÑ´Ù. ƯÈ÷ UID´Â ¸ðµç »ç¿ëÀÚ¿¡°Ô À¯ÀÏÇÑ ¼öÄ¡¿©¾ß ÇϹǷΠ°¢º°È÷ ÁÖÀÇÇϱ⠹ٶõ´Ù.

Full Name: Lee Man Yong
GID [100]: ?
¿©±â¼­ ±×³É ¿£ÅÍ, »ç¿ëÀÚ ±×·ìÀ» ¸¸µé¾îÁÖ±æ ¿øÇÑ´Ù¸é Àá½Ã µÚÀÇ ¼³¸íÀ» º¸¶ó.
Group 'users', GID 100
First unused uid is 506

adduser ½ºÅ©¸³Æ®°¡ ÀÚµ¿À¸·Î »ç¿ëµÇÁö ¾ÊÀº UID Áß °¡Àå ³·Àº ¹øÈ£¸¦ ¿©·¯ºÐ¿¡°Ô Á¦°øÇØÁØ´Ù. ±× °ªÀ» ±×³É »ç¿ëÇÏ¸é µÈ´Ù. ¿©·¯ºÐÀÌ Æ¯º°ÇÏ°Ô ÇØÁÙ ÇÊ¿ä°¡ ÀÖ´Ù¸é ¿øÇÏ´Â ¼öÄ¡¸¦ Àû¾îÁØ´Ù. ÇÏÁö¸¸ Àý´ë Áߺ¹µÈ ¼öÄ¡°¡ µé¾î°¡¼­´Â ¾ÈµÈ´Ù´Â °ÍÀ» ¸í½ÉÇ϶ó.

UID [506]: ?

Home Directory [/home/foo]: ?
Ȩ µð·ºÅ丮´Â º¸Åë /home ¾Æ·¡¿¡ »ý±ä´Ù. ÇÏ Áö¸¸ Á¤¸»·Î ´ëÇü ¼­¹öÀÎ °æ¿ì¿¡´Â »ç¿ëÀÚµéÀ» ¿©·¯ ±×·ìÀ¸·Î ³ª´©¾î /home1, /home2, /home3 ÀÌ·± ½ÄÀ¸·Î µð·ºÅ丮¸¦ ¸¹ÀÌ ³ª´©°í ±× ¾Æ·¡¿¡ ÀûÀýÇÏ°Ô ¹èºÐÇØÁֱ⵵ ÇÑ´Ù. ¿¹¸¦ µé¾î Çб³¿¡¼­ Çйø º°·Î °ü¸®¸¦ ÇÏ·Á°í ÇÑ´Ù¸é /90, /91, /92 ó·³ ÇØÁÖ°í »ç¿ëÀÚÀÇ ÇйøÀ» ¾Ë¾Æ¼­ °ü¸®ÇÏ´Â °ÍÀÌ ÁÁÁö ¾ÊÀ»±î? ÀÛÀº ½Ã½ºÅÛ¿¡¼­´Â ±×³É /home Çϳª ¾Æ·¡¿¡´Ù°¡ °ü¸®ÇÏ´Â °ÍÀÌ ÁÁ´Ù.

Shell [/bin/bash]: ?
¶Ç´Â C ¼ÐÀ» ¼±È£ÇÏ´Â »ç¶÷Àº /bin/tcsh¶ó°í ÀÔ·ÂÇØÁØ´Ù.

Password [foo]:Shell [/bin/bash]: ********?

Æнº¿öµå¸¦ Á¦¿ÜÇÏ°í´Â ´ëºÎºÐÀÇ ¼³Á¤Àº <¿£ÅÍ>Å°¸¸À¸·Îµµ ÇØ°áµÈ´Ù. Æнº¿öµå´Â ¿µ¾î»çÀü¿¡ ÀÖ´Â ´Ü¾î¸¦ »ç¿ëÇÏÁö ¸»°í ´ë¼Ò¹®ÀÚ, ¼ýÀÚ¸¦ ¼¯¾î¼­ »ç¿ëÇÏ´Â °ÍÀÌ ÁÁ´Ù. Çб³ ·£ ȯ°æ¿¡¼­ ¹ÏÀ» ¼ö ÀÖ´Â »ç¶÷µé³¢¸® »ç¿ëÇÏ´Â ´À½¼ÇÑ ½Ã½ºÅÛÀ̶ó¸é º° »ó°ü¾ø´Ù. ³ªÁß¿¡ ¼¼ÆÃÀ» ÅëÇؼ­ ¿©·¯ºÐÀÇ ·£¿¡ ¹°¸° ¹ÏÀ» ¼ö ÀÖ´Â ÄÄÇ»ÅÍµé »©°í´Â ´Ù¸¥ °÷¿¡¼­ ÅÚ³Ý Á¢¼ÓÀ» ÇÒ ¼ö ¾øµµ·Ï ¸¸µé ¼ö ÀÖÀ¸´Ï±î ±×¶§ °¡¼­ ¾Ë¾Æº¸µµ·Ï ÇÏÀÚ.

Information for new user [foo]:
Home directory: [/home/foo] Shell: [/bin/bash]
uid: [506] gid: [100]

¿©·¯ºÐÀÌ ÀÔ·ÂÇÑ ÃÖÁ¾ Á¤º¸¸¦ º¸¿©ÁÖ¸ç »ç¿ëÀÚ¸¦ µî·ÏÇÒ °ÍÀÎÁö ¹°¾î¿Â´Ù.

Is this correct? [y/N]: Y

Adding login [foo] and making directory [/home/foo]

Adding the files from the /etc/skel directory:
./.less -> /home/foo/./.less
./.lessrc -> /home/foo/./.lessrc
./.Xdefaults -> /home/foo/./.Xdefaults
./.Xmodmap -> /home/foo/./.Xmodmap
./.bash_logout -> /home/foo/./.bash_logout
./.bash_profile -> /home/foo/./.bash_profile
./.bashrc -> /home/foo/./.bashrc
./.emacs -> /home/foo/./.emacs
./.inputrc -> /home/foo/./.inputrc
./.kermrc -> /home/foo/./.kermrc
./.mailcap -> /home/foo/./.mailcap
./.mime.types -> /home/foo/./.mime.types
./.cshrc -> /home/foo/./.cshrc

½ºÅ©¸³Æ®´Â ¸¶Áö¸·À¸·Î »ç¿ëÀÚ È¨µð·ºÅ丮¸¦ ¸¸µé°í ±âº»ÀûÀÎ ¼¼ÆÃÀ» ´ã°í ÀÖ´Â ÆÄÀϵéÀ» ÀÚµ¿À¸·Î /etc/skel µð·ºÅ丮¿¡¼­ »ç¿ëÀÚ È¨µð·ºÅ丮·Î º¹»çÇÑ´Ù. .bashrc, .inputrc, .cshrc µî Áß¿äÇÑ ÆÄÀÏÀ» ²À /etc/skel¿¡ ³Ö¾îµÎ°í »ç¿ëÀÚµéÀÌ Ã³À½ºÎÅÍ Áß¿äÇÏÁö ¾ÊÀº ¼¼Æÿ¡ ½Ã°£À» ½ñÁö ¾Ê¾Æµµ µÇµµ·Ï ½Å°æÀ» ¾²¸é ÁÁ´Ù. °ü¸®ÀÚ ÇÑ ¸íÀÇ À§·ÂÀº ´ë´ÜÇÏ´Ù. ±× »ç¶÷ÀÌ ÇÑ ½Ã°£¸¸ ºÀ»çÇÏ¸é ³ª¸ÓÁö »ç¶÷µéÀº ÇÑ ½Ã°£¾¿ÀÌ ¸ðµÎ Àý¾àµÈ´Ù.

3.3 »ç¿ëÀÚ °èÁ¤À» ¸¸µé°í ³­ ÈÄÀÇ Á¡°Ë »çÇ×

ù ¹ø°, Æ۹̼Ç! Æ۹̼Ç! Æ۹̼Ç! »ç¿ëÀÚÀÇ È¨ µð·ºÅ丮´Â º¸Åë drwxr-xr-x¶ó´Â Æ۹̼ÇÀ» °¡Áö°í ÀÖ´Ù. ¾ÕÀÇ d ´Â µð·ºÅ丮¶ó´Â ÀǹÌÀÏ »ÓÀÌ°í ³ª¸ÓÁö rwx, r-x, r-x°¡ °¢°¢ »ç¿ëÀÚ, ±×·ì, ŸÀο¡ ´ëÇÑ Æ۹̼ÇÀ̶ó´Â °ÍÀ» ¾Ë °ÍÀÌ´Ù. º¸¾ÈÀÌ Áß¿äÇÏ°Ô ´À²¸Áö´Â ȯ°æ¿¡¼­´Â ŸÀο¡ ´ëÇÏ¿© x Æ۹̼ÇÀ» ¾ø¾Ö¸é ¾Æ¿¹ µð·ºÅ丮·Î µé¾î¿Ã ¼ö ¾øÀ¸´Ï »ç¿ëÀڵ鿡°Ô ¸Ã±â±âº¸´Ù´Â ½ºÅ©¸³Æ® °°Àº °ÍÀ» Çϳª ¸¸µé¾î¼­ ¸ðµç »ç¿ëÀÚµéÀÇ È¨ µð·ºÅ丮¿¡¼­ ŸÀÎÀÇ ½ÇÇà Æ۹̼ÇÀ» Á¦°ÅÇØÁÖ´Â °Íµµ ÁÁ´Ù. »ç½Ç °ü¸®ÀÚ°¡ ÇØ¾ß ÇÒ ´ëºÎºÐÀÇ ÀÏÀº Æ۹̼ÇÀÌ´Ù. ÀÌ°Å Çϳª¸¸ Àß °ü¸®Çϸé Á¦ÀÏ ¾ÈÀüÇÑ ¼­¹ö°¡ µÈ´Ù. ¿©·¯ºÐÀÇ ¼­¹ö¿¡ µé¾î¿Í¼­ Àå³­À» ÇÏ°í ½Í¾îÇÏ´Â Å©·¢Ä¿°¡ ÀÖ´Ù ÇÏ´õ¶óµµ öÅë°°Àº Æ۹̼ǿ¡ ±Ý¹æ ½ÈÁõÀ» ´À³¥ °ÍÀÌ´Ù. ±× Å©·¢Ä¿´Â ´Ù½Ã´Â ¿©·¯ºÐÀÇ ¼­¹ö·Î µé¾î¿ÀÁö ¾Ê´Â´Ù. ¿Ö³ÄÇϸé Á»Ã³·³ ½±°Ô Å©·¢ÀÌ µÇÁú ¾Ê¾Æ Àڱ⠽º½º·Î ÁöÄ¡±â ¶§¹®ÀÌ´Ù. ¾Æ¸¶µµ ´Ù¸¥ °÷À» ã¾Æ ¶°³¯ °ÍÀÌ´Ù. µÎ ¹ø° root¸¸ÀÌ »ç¿ëÇÏ´Â ½ÇÇàÆÄÀÏÀÇ Æ۹̼ÇÀ» öÀúÈ÷ Ç϶ó. ƯÈ÷ /sbin, /usr/sbin µð·ºÅ丮´Â ŸÀο¡ ´ëÇÑ ½ÇÇàÆ۹̼Ç(µð·ºÅ丮¿¡ ´ëÇÑ ½ÇÇà Æ۹̼ÇÀº Ư¼öÇÑ Àǹ̸¦ °®´Â´Ù)À» ¾ø¾Ö¼­ µé¾î°¥ ¼öÁ¶Â÷ ¾øµµ·Ï Ç϶ó. /sbin °ú /usr/sbin µð·ºÅ丮¿¡ ÀÖ´Â ´ëºÎºÐÀÇ ÇÁ·Î±×·¥µéÀº root°¡ ¾Æ´Ñ »ç¶÷ÀÌ »ç¿ëÇÒ ÇÊ¿ä°¡ ÀüÇô ¾ø´Ù. ƯÈ÷ fdisk°°Àº °ÍÀº Àý´ë ŸÀÎÀÇ ½ÇÇà Æ۹̼ÇÀÌ À־ ¾ÈµÈ´Ù. ¼¼ ¹ø° ¾µ¸ð¾ø´Â ÇÁ·Î±×·¥Àº Áö¿î´Ù. ¿¹¸¦ µé¾î »ç¿ëÀÚ¸¦ º¯°æÇÏ¿© »ç¿ëÇÒ ¼ö ÀÖ°Ô ÇØÁÖ´Â su´Â ¾ÆÁÖ À§ÇèÇÑ ¸í·ÉÀÓ¿¡ Ʋ¸²¾ø´Ù. su°¡ ÀÖ´Ù¸é ÀϹݻç¿ëÀÚ·Î µé¾î¿Í¼­µµ ·çÆ®ÀÇ Æнº¿öµå¸¸ ¾Ë¾Æ³»¸é ¾ðÁ¦µçÁö ·çÆ®·Î µ¹º¯ÇÒ ¼ö Àֱ⠶§¹®ÀÌ´Ù. su¿Í sudo¿¡ ´ëÇؼ­´Â Àß »ý°¢Çغ¸±â ¹Ù¶õ´Ù.

3.4 ÄõÅÍ Á¦ÇÑ °¡Çϱâ

ÄõÅÍ(quota) Á¦ÇÑÀ̶õ »ç¿ëÀÚ°¡ ÀÌ¿ëÇÒ ¼ö ÀÖ´Â Çϵåµð½ºÅ©ÀÇ ¾çÀ» Á¦ÇÑÇÏ´Â °ÍÀ» ¸»ÇÑ´Ù. Ä¿³Î ÄÄÆÄÀÏÇÒ ¶§ ÄõÅÍ Á¦ÇÑ ±â´ÉÀ» ²À Áý¾î³Ö¾î¼­ ÄÄÆÄÀÏÇÏ°í ÄõÅÍ Á¦ÇÑÀ» °¡ÇÒ ¼ö ÀÖ°Ô ÇØÁÖ´Â ÇÁ·Î±×·¥µé(quota, edquota, quotacheck, quotaon, repquota, quotactl)À» ÀÌ¿ëÇÏ¸é µÈ´Ù. ÄõÅÍ Á¦ÇÑÀ» ÇÏ´Â ÀÌÀ¯´Â Àý´ë·Î »ç¿ëÀڵ鿡°Ô Á¦ÇÑÀ» °¡ÇÏ·Á´Â °ÍÀÌ ¾Æ´Ï´Ù. ´ÙÁß »ç¿ëÀÚ È¯°æ¿¡¼­ ÇÑ »ç¶÷ÀÇ »ç¿ëÀÚ°¡ ÀÚ¿øÀ» µ¶Â÷ÁöÇÔÀ¸·Î½á ´Ù¸¥ »ç¿ëÀÚ¿¡°Ô ÇÇÇظ¦ ÁÖ´Â ÀÏÀ» ¾ø¾Ö±â À§Çؼ­ÀÌ´Ù. ¾ÇÀÇÀûÀÎ »ç¿ëÀÚ°¡ ÀÎÅͳ×Æ®·ÎºÎÅÍ À©µµ95¿ë ¿À¶ôÀ» Àܶà ftp·Î ¹Þ¾Æ³õ°í /home ÆÄƼ¼ÇÀ» ´Ù Â÷ÁöÇØ ¹ö¸®¸é ¾î¶»°Ô ÇÒ °ÍÀΰ¡? ÄõÅÍ Á¦ÇѸ¸ÀÌ ÀÖ´Ù¸é »ç¿ëÀÚµéÀº ºÒÆòÀ» ÇÒ °ÍÀÌ´Ù. ±×·¡¼­ ÄõÅÍ Á¦ÇÑ°ú ÇÔ²² ÀÖ¾î¾ß ÇÒ °ÍÀº ¸ðµç »ç¶÷ÀÌ ÀÚÀ¯·Ó°Ô »ç¿ëÇÒ ¼ö ÀÖ´Â Çϵåµð½ºÅ© °ø°£ÀÌ´Ù. Ȩ µð·ºÅ丮¿¡¼­´Â ÄõÅ͸¦ °ÉÁö¸¸ ±× ÀÚÀ¯°ø°£¸¸Àº »ç¿ëÀÚµéÀÇ ÀÚÀ²¿¡ ¸Ã±â´Â °ÍÀÌ´Ù. º¸Åë ¿©ºÐÀÇ Çϵåµð½ºÅ©°¡ ÀÖÀ¸¸é /var/tmp µîÀÇ µð·ºÅ丮¿¡ ¸¶¿îÆ®½Ã Äѳõ°í Æ۹̼ÇÀ» ÀÚÀ¯·Ó°Ô ÇØÁØ´Ù.

3.5 ÆÄƼ¼Ç ¿øÄ¢

/home ÆÄƼ¼Ç, /var/tmp µîÀÇ ÆÄƼ¼ÇÀº ·çÆ® ÆÄƼ¼ÇÀ̳ª ±âŸ /usr ÆÄƼ¼Ç°ú ±¸ºÐÇÏ¿© »ç¿ëÇÏ´Â °ÍÀÌ ÁÁ´Ù. ÆÄƼ¼ÇÀ» µû·Î ºÐÇÒÇؼ­ ¸¶¿îÆ®ÇÏ¿© »ç¿ëÇϵ簡 ¾Æ´Ï¸é ¿©ºÐÀÇ Çϵåµð½ºÅ©°¡ ¸¹À» ¶§´Â ¾Æ¿¹ ´Ù¸¥ Çϵåµð½ºÅ©¿¡ µÎ¸é ÁÁ´Ù. ƯÈ÷ /usr ÆÄƼ¼ÇÀº Àбâ Àü¿ëÀ¸·Î¸¸ ¸¶¿îÆ®µÇ´Â °ÍÀÌ Á¦ÀÏ ¹Ù¶÷Á÷ÇÏ´Ù. ÀÚ¼¼ÇÑ »çÇ×Àº ¸®´ª½º ÆÄÀÏ ½Ã½ºÅÛ ±Ô°ÝÀÎ FSSTND ¹®¼­¸¦ ±¸Çؼ­ Àо±â ¹Ù¶õ´Ù.

3.6 »ç¿ëÀÚ Áö¿ì±â

»ç¿ëÀÚ¸¦ Áö¿ö¾ß ÇÒ ¶§µµ ÀÖÀ» °ÍÀÌ´Ù. ÇÏÁö¸¸ ¿©·¯ºÐÀÌ ±â´ëÇÏ´Â deluser¿Í °°Àº °ÍÀº ¾ø´Ù. ÇÏÁö¸¸ Áö¿ì´Â ¹æ¹ýÀº ¾ÆÁÖ °£´ÜÇÏ´Ù. /etc/passwd¿¡¼­ »ç¿ëÀÚ¿¡ ÇØ´çÇÏ´Â ÁÙÀ» Áö¿ì°í ±× »ç¿ëÀÚÀÇ È¨ µð·ºÅ丮¸¦ ¸ðµÎ Áö¿öÁÖ¸é µÈ´Ù. ÇÏÁö¸¸ ±× »ç¿ëÀÚÀÇ ÆÄÀÏÀÌ È¨ µð·ºÅ丮 »Ó¸¸ ¾Æ´Ï¶ó ´Ù¸¥ °÷¿¡ »êÀçÇØ ÀÖÀ» ¼öµµ ÀÖ´Ù. ±×·² ¶§´Â ´ÙÀ½°ú °°ÀÌ ÇÏ¸é µÈ´Ù.

find / \( -nogroup -o -nouser \) -print

ÀÌ·¸°Ô ÇÏ¸é »ç¿ëÀÚ¸¦ Áö¿ì±â ¶§¹®¿¡ »ý±ä °í¾Æ ÆÄÀϵéÀÌ ³ª¿­µÈ´Ù. ±×·±µ¥ ÀÌ·± ¹æ¹ýÀº »ó´çÈ÷ Á¶½ÉÇØ¾ß ÇÑ´Ù. ¶æÇÏÁö ¾Ê´Â ÆÄÀÏÀ» Áö¿ï ¼öµµ Àֱ⠶§¹®ÀÌ´Ù. ¶Ç´Â ¹Ì¸® find / -user foo·Î ÆÄÀϵéÀ» °Ë»öÇؼ­ ¼öµ¿À¸·Î Áö¿ìÀÚ. º¸Åë

find / -user foo -exec rm -f {} \;

ÇÏ¸é µÉ °ÍÀ¸·Î »ý°¢ÇÏ´Â »ç¶÷ÀÌ ¸¹Àºµ¥ ÀÌ°ÍÀº ¿©·¯ºÐ ½Ã½ºÅÛÀÇ Æ۹̼ÇÀÌ ¿Ïº®ÇÑ °æ¿ì¿¡³ª Á¦´ë·Î µÇÁö Çà¿©³ª Á¶±ÝÀÌ¶óµµ Àß ¸øÇÏ´Â °æ¿ì¿¡´Â ¿øÇÏÁö ¾Ê´Â ÆÄÀÏÀ» Áö¿ì´Â ¼ö°¡ ÀÖ´Ù. °ü¸®ÀÚ, ±×¸®°í °ü¸®ÀÚÀÇ °³ÀÎ ¾ÆÀ̵ðÀÎ °æ¿ì¸¸ Á¶½ÉÇÏ¸é µÈ´Ù. ³ª¸ÓÁö ÀÏ¹Ý »ç¿ëÀÚ¿¡ ´ëÇؼ­´Â

find / -user <»ç¿ëÀÚ¸í> -exec rm -f {} \;

¸¸ Çصµ µÉ °ÍÀÌ´Ù. ¾îÂîµÇ¾úµç ¿©·¯ºÐÀÌ °ü¸®ÀÚ¶ó¸é Á¤¸»·Î Èï¹Ì·Î¿î find ¸í·ÉÀ» Àß ÀÍÇôµÎ±æ ¹Ù¶õ´Ù. °ü¸®ÀÚ°¡ find¶ó´Â ¸í·ÉÀ» ¸ð¸¥´Ù¸é ÀÌ¹Ì ½Ç°ÝÀÌ´Ù.

3.7 Æнº¿öµå ÆÄÀÏ¿¡ Àͼ÷ÇØÁö±â

/etc/passwd ÆÄÀÏÀ» ÇÑ ¹ø »ìÆ캸±â ¹Ù¶õ´Ù.

ftp:*:404:1::/home/ftp:/bin/bash
guest:*:405:100:guest:/dev/null:/dev/null
yong:JprJGlXBC1bGQ:501:100:Lee Man Yong,Home,,(02) 603-2461,:/home/yong:/bin/bash
smileguy:EbhqvUES5/4/s:502:100:J J H:/home/smileguy:/bin/bash
postgres:PbKIAttHJZqJw:503:100:Postgres95 Master:/home/postgres95:/bin/csh

Çü½ÄÀº ´ÙÀ½°ú °°´Ù.

»ç¿ëÀÚ¸í:¾ÏȣȭµÈ Æнº¿öµå:UID:GID:»ç¿ëÀÚÁ¤º¸:Ȩ µð·ºÅ丮:»ç¿ë¼Ð

7°³ÀÇ Çʵ尡 ÄÝ·Ð(:)À¸·Î ºÐ¸®µÇ¾î ÀÖ´Ù. adduser¶ó´Â ½ºÅ©¸³Æ®¸¦ ¾²Áö ¾Ê°í ±×³É ¼öµ¿À¸·Î ÀÔ·ÂÇصµ µÈ´Ù. ftp, guest¶ó´Â »ç¿ëÀÚ¸¦ ÇÑ ¹ø »ìÆ캸ÀÚ. ftp¶ó´Â »ç¿ëÀÚ´Â À͸í FTP »ç¿ëÀÚ¸¦ ¸»Çϴµ¥ Æнº¿öµå Çʵ忡 ¾Ö½ºÅ͸®½ºÅ© ¹®ÀÚ(*)°¡ ÀÖ´Â °ÍÀ» ÁÖ¸ñÇÏÀÚ. ÀÌ·¸°Ô ÇÏ¸é ±× »ç¶÷Àº µî·ÏµÇ¾î ÀÖ±â´Â ÇÏÁö¸¸ ·Î±×ÀÎ ÇÒ ¼ö°¡ ¾ø°Ô µÈ´Ù. Àá½Ã ¾î¶² »ç¶÷À» ·Î±×ÀÎÇÏÁö ¸øÇÏ°Ô ¸¸µé·Á¸é Æнº¿öµå ¸Ç ¾Õ¿¡ ¾Ö½ºÅ͸®½ºÅ© ¹®ÀÚ(*)¸¦ ³Ö¾îÁÖ¸é µÈ´Ù. ±×°ÍÀ» ÇØÁ¦ÇÏ¸é ´Ù½Ã ·Î±×ÀÎÇÒ ¼ö ÀÖ´Ù.

3.8 ±×·ì ¸¸µé±â

±×·ìÀ¸·Î °ü¸®ÇÒ Çʿ伺¿¡ ´ëÇÏ¿© À§¿¡¼­ ¾ê±âÇÑ ¹Ù ÀÖ´Ù. ±×°ÍÀº ±×·¸°Ô ¾î·ÆÁö ¾Ê´Ù. /etc/group À̶ó´Â ÆÄÀÏÀ» ÇÑ ¹ø »ìÆ캸µµ·Ï ÇÏÀÚ. Çü½ÄÀº /etc/passwd ÆÄÀÏ°ú ºñ½ÁÇÏ´Ù. ''±×·ì¸í:Æнº¿öµå:GID:±×·ìȸ¿ø¸í ¸®½ºÆ®'' ¶ó´Â °£´ÜÇÑ Çü½ÄÀ» °®´Â´Ù. º¸´Ù½ÃÇÇ Æнº¿öµå Çʵå´Â ¸ðµÎ ¾Æ¹« °Íµµ ³ÖÁö ¾Ê¾Ò´Ù. ±×·ì¿¡ Æнº¿öµå¸¦ ºÎ¿©ÇÏ·Á´Â °æ¿ì¸¦ »©°í´Â ´ëºÎºÐ »ç¿ëÀÚ Æнº¿öµå ¸¸À¸·Îµµ ÃæºÐÇÑ °Í °°´Ù. »õ·Î¿î ±×·ìÀ» ¸¸µé·Á¸é À§¿¡ ÀÖ´Â ±×·ì Áß ´Ù¸¥ À̸§ ±×¸®°í À¯ÀÏÇÑ GID¸¦ ºÎ¿©ÇÑ´Ù. ±×¸®°í ¿øÇÏ´Â »ç¿ëÀÚ¸¦ ȸ¿ø ¸®½ºÆ®¿¡ ÄÞ¸¶(,)·Î ºÐ¸®ÇÏ¿© ³ÖÀ¸¸é µÈ´Ù.

root::0:root
bin::1:root,bin,daemon
daemon::2:root,bin,daemon
sys::3:root,bin,adm
adm::4:root,adm,daemon
tty::5:
disk::6:root,adm
lp::7:lp
mem::8:
kmem::9:
wheel::10:root
floppy::11:root
mail::12:mail
news::13:news
uucp::14:uucp
man::15:man
users::100:games
nogroup::-2:

3.9 ¼Îµµ Æнº¿öµå ½Ã½ºÅÛ

»ó´çÇÑ º¸¾ÈÀÌ ÇÊ¿äÇÑ ½Ã½ºÅÛÀÇ °æ¿ì¿¡´Â ¼Îµµ Æнº¿öµå¶ó´Â °ÍÀ» »ç¿ëÇÑ´Ù. /etc/passwd ÆÄÀÏÀº ·çÆ® »ç¿ëÀÚ¸¸ÀÌ ¾Æ´Ñ ¸ðµç »ç¶÷µéÀÌ ÀÐÀ» ¼ö ÀÖ´Â ÆÄÀÏÀ̹ǷΠ¿øÇÏ´Â »ç¶÷Àº ´©±¸³ª Ä«ÇǺ»À» °¡Áú ¼ö ÀÖ°í Àϸí '»çÀü °ø°Ý (Dictionary Attack)¡¯À̶ó´Â ¹æ½ÄÀ» ½á¼­ °£´ÜÇÑ Æнº¿öµå¸¦ ¾´ »ç¿ëÀÚµéÀÇ ¾ÏÈ£¸¦ ±ý ¼ö Àֱ⠶§¹®ÀÌ´Ù. ±×·¡¼­ ÁøÂ¥ Æнº¿öµå´Â ´Ù¸¥ °÷¿¡ ¼û°ÜµÎ°í ¾µ¸ð¾ø´Â /etc/passwd¸¦ º¸¿©ÁÖ´Â ¼Îµµ(Shadow) Æнº¿öµå ½Ã½ºÅÛÀ̶ó´Â °ÍÀÌ ³ª¿Â °ÍÀÌ´Ù. ¼Îµµ Æнº¿öµå¸¦ ´Ù·çÁö´Â ¸øÇÏ°Ú´Ù. ¿Ö³ÄÇÏ¸é »ó´çÈ÷ ¹ø°Å·Ó±â ¶§¹®ÀÌ´Ù. »ç½Ç ¼Îµµ Æнº¿öµå ½Ã½ºÅÛÀ¸·Î ÀüȯÇÏ·Á¸é »ó´çÇÑ ³ë·ÂÀÌ µç´Ù. ´ÜÁö Æнº¿öµå ½ºÅÛ¸¸ ¹Ù²Ù´Â °ÍÀÌ ¾Æ´Ï¶ó ±×¿¡ ¿¬°üµÈ ¸ðµç ÇÁ·Î±×·¥µéÀ» ¼Îµµ Æнº¿öµå¿ëÀ¸·Î ±¸ÇØ¾ß ÇÑ´Ù´Â ¼ö°í°¡ µç´Ù. °ü·Ã How-To ¹®¼­°¡ ÀÖÀ¸´Ï °ü½É ÀÖ´Â »ç¶÷µéÀº ±×°ÍÀ» Âü°íÇϱ⠹ٶõ´Ù.

3.10 X À©µµ ÇÁ·Î±×·¥ »ç¿ëÇÏ°Ô ¸¸µé±â

ÅÚ³ÝÀ¸·Î ÇÒ ¼ö ÀÖ´Â Àç¹ÌÀÖ´Â ÀÏ Áß Çϳª°¡ ¹Ù·Î X Ŭ¶óÀ̾ðÆ®/X ¼­¹öÀÇ ¿¬°áÀÌ´Ù. ¸¸¾à ¿©·¯ºÐÀÇ ¼­¹ö¿¡ X À©µµ¸¦ ÀÛµ¿½ÃÄ×´Ù¸é ±×¸®°í ÀûÀýÇÑ ¼¼ÆÃÀ» ÇØÁÖ¸é X À©µµ »ç¿ëÀÚµéÀº ¿©·¯ºÐÀÇ X À©µµ ÇÁ·Î±×·¥À» °¡µ¿½ÃÄѼ­ ÀÚ½ÅÀÇ ·ÎÄà X À©µµ¿¡¼­ ±× °á°ú¸¦ »ç¿ëÇÒ ¼ö ÀÖ´Ù. ÀÌ·¸°Ô ÇÔÀ¸·Î½á ´ëÇü ¼­¹ö¸¸ÀÌ Æ¯Á¤ ´ëÇü ÇÁ·Î±×·¥µéÀ» ±¸ºñÇÏ°í À־ Á¢¼Ó¸¸ ÇÏ¸é ¸¶Ä¡ ÀÚ±â ÄÄÇ»ÅÍÀÇ ÇÁ·Î±×·¥À» ¾²µí »ç¿ëÇÒ ¼ö ÀÖ´Ù. ¹°·Ð ÃæºÐÇÑ ³×Æ®¿öÅ© ¼Óµµ°¡ ³ª¿Í¾ß ÇÑ´Ù. ÀϹÝÀûÀ¸·Î X ¼­¹ö°¡ ÀÛµ¿ÇÏ¸é ´Ù¸¥ È£½ºÆ®¿¡¼­ µé¾î¿Í¼­ ¼­¹öÀÇ X ÇÁ·Î±×·¥À» »ç¿ëÇÏ¿© ÀÚ½ÅÀÇ X Å͹̳ο¡¼­ °á°ú¸¦ º¼ ¼ö ÀÖ°Ô µÇ¾îÀÖÁö ¾Ê´Ù. ±×·¡¼­ ¼­¹ö¿¡¼­´Â ´ÙÀ½°ú °°Àº ÀÏÀ» ÇØÁÖ¾î¾ß ÇÑ´Ù.

xhost +È£½ºÆ®¸í
¶Ç´Â
xhost +

¼³Á¤ÇÑ È£½ºÆ®¸íÀ¸·ÎºÎÅÍ X ¿¬°áÀ» Çã¿ëÇÑ´Ù. Ç÷¯½º(+) ¹®ÀÚ ´ë½Å ¸¶À̳ʽº (-) ¹®ÀÚ¸¦ »ç¿ëÇϸé ÁÖ¾îÁø È£½ºÆ®·ÎºÎÅÍ X ¿¬°áÀ» ºÒÇãÇÑ´Ù. ±×³É Ç÷¯½º ÀÚ¸¸ ¾²¸é ¸ðµç È£½ºÆ®·ÎºÎÅÍÀÇ Á¢¼ÓÀ» Çã¿ëÇÑ´Ù. ¸¶Âù°¡Áö·Î ¸¶À̳ʽº ¹®ÀÚ¸¸ ¾²¸é ¸ðµç È£½ºÆ®·ÎºÎÅÍÀÇ Á¢¼ÓÀ» ºÒÇãÇÑ´Ù. ±×³É ¾Æ¹«·± Àμö¾øÀÌ xhost¶ó°í ½ÇÇàÇϸé ÇöÀçÀÇ »óŸ¦ º¸¿©ÁØ´Ù. º¸ÅëÀº ·ÎÄà ȣ½ºÆ®¿¡¼­¸¸ Á¢¼ÓÀ» Çã¿ëÇÑ´Ù. º¸Åë X À©µµ ÇÁ·Î±×·¥µéÀº ¾öû³­ ½Ã½ºÅÛ ÀÚ¿øÀ» »ç¿ëÇϱ⠶§¹®¿¡ ¾ÆÁÖ ³ôÀº »ç¾çÀÇ ÄÄÇ»ÅÍ, ÃæºÐÇÑ ·¥( 64¸Þ°¡ ÀÌ»ó, ±× ÀÌ»óÀÏ ¶§´Â ²À ij½Ã·¥ 512KB·Î ´Ã¸®±â ¹Ù¶õ´Ù. 128 ¸Þ°¡ ÀÌ»óÀÏ ¶§´Â Ä¿³Î¿¡°Ô ¿É¼ÇÀ» ÁÖ¾î¾ß¸¸ µÈ´Ù´Â »ç½ÇÀ» ¾Ë¾Æ¾ß ÇÑ´Ù), ÃæºÐÇÑ ½º¿Ò ÆÄƼ¼Ç( 100¸Þ°¡ ÀÌ»ó )À» ¿ä±¸ÇÑ´Ù.

3.11 ·Î±×ÀÎÇÏ´Â »ç¿ëÀÚ¿¡°Ô °ø°íÇϱâ

/etc/issue.netÀ̶ó´Â ÆÄÀÏ¿¡´Ù ¿©·¯ºÐÀÌ ¿øÇÏ´Â °ø°í¹®À» Àû¾îÁÖ¸é µÈ´Ù. ±× ÆÄÀÏ¿¡´Â ¿î¿µÃ¼°è, ¹öÀü, ÀÛµ¿µÇ´Â ¸Ó½Å ¸íĪ(ÀÎÅÚ ¸Ó½ÅÀÎÁö ¾ËÆÄÀÎÁö ¾Æ´Ï¸é ½ºÆÅÀÎÁö), ³¯Â¥ µîÀ» ³ªÅ¸³»´Â Ư¼ö¹®ÀÚ°¡ µé¾î°¥ ¼ö ÀÖ´Ù. ÀÌ ÆÄÀÏÀ» ÅëÇؼ­ ½Ã½ºÅÛ Á¡°ËÀ̶óµçÁö Ä¿³Î ¹öÀü¾÷À¸·Î ÀÎÇÑ ¼­ºñ½ºÀÇ ÀϽà Áß´Ü µîÀ» °ø°íÇÒ ¼ö ÀÖ´Ù.

/etc/issue.net ¿¹Á¦
%s %r (%m) %v (%t)
   Áö±Ý ÇöÀç´Â %d ÀÔ´Ï´Ù.
   ȯ¿µÇÕ´Ï´Ù!
freeyong:~$ telnet localhost
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.

Linux 2.0.23 (i586) #7 Wed Oct 23 05:03:07 KST 1996 (ttyp4)
   Áö±Ý ÇöÀç´Â 11:14 on Saturday, 02 November 1996 ÀÔ´Ï´Ù.
   ȯ¿µÇÕ´Ï´Ù!

3.12 ¾ÈÀü Å͹̳Î

»ç¿ëÀÚ Áß¿¡¼­ °¡Àå Ư¼öÇÏ°í ¸·°­ÇÑ ±Ç·ÂÀ» °¡Áø »ç¿ëÀÚ´Â ¹Ù·Î ·çÆ®ÀÌ´Ù. ¸¹Àº Å©·¢Ä¿µéÀÌ À¯´Ð½ºÀÇ °¡Àå ¾Æ¸§´Ù¿î ¼­ºñ½º Áß ÇϳªÀÎ ÅÚ³ÝÀ» ÁÖ°ø°Ý ´ë»óÀ¸·Î ÇÏ´Â °ÍÀº ³î¶ó¿î ÀÏÀÌ ¾Æ´Ï´Ù. ¿ø°ÝÁö¿¡¼­ ·Î±×ÀÎÇÏ¿© »ó´ë ÄÄÇ»Å͸¦ ¸¶À½²¯ »ç¿ëÇÒ ¼ö ÀÖ´Ù´Â °ÍÀº Å« ¸Å·ÂÀ̱⵵ ÇÏÁö¸¸ Ä¿´Ù¶õ º¸¾ÈÀÇ ¹®Á¦ÀÏ ¼öµµ ÀÖ´Ù. Å©·¢Ä¿µéÀÌ ¾î¶² ½ÄÀ¸·Îµç ù ¹ø° ¸ñÇ¥·Î ¼¼¿ì´Â °ÍÀº ·çÆ®ÀÇ ºñ¹Ð¹øÈ£¸¦ ¾Ë¾Æ³»´Â ÀÏÀÌ´Ù. ±×·¸°Ô µÇ¸é ±× ½Ã½ºÅÛÀº ¿ÏÀüÈ÷ ±×ÀÇ ¼Õ¾È¿¡ µé°Ô µÇ´Â °ÍÀÌ´Ù. ÃÖ´ëÇÑ Å©·¢Ä¿µéÀ» ¿¹¹æÇϱâ À§ÇØ ¾ÈÀü Å͹̳Î(Secure Terminal)À̶ó´Â °³³äÀÌ ÀÖ´Ù. ·çÆ® »ç¿ëÀڴ Ưº°ÇϹǷΠ¹Ì¸® Á¤ÇØÁø ¸î °³ÀÇ ÄܼÖ, ±×¸®°í ¾ÈÀüÇÏ´Ù°í »ý°¢ÇÏ´Â Å͹̳θ¸À» »ç¿ëÇÒ ¼ö ÀÖµµ·Ï Á¦ÇÑÇÏ´Â °ÍÀÌ´Ù. º¸ÅëÀº ·çÆ®°¡ Ưº°È÷ ÇÊ¿äÇÑ °æ¿ì°¡ ¾Æ´Ï¶ó¸é ¿ø°ÝÁö¿¡¼­ÀÇ ·Î±×ÀÎ, °ü¸®´Â ÇàÇÏÁö ¾Ê´Â °ÍÀÌ ÁÁ´Ù. °ü·Ã ÆÄÀÏÀº /etc/securetty¶ó´Â ÆÄÀÏÀÌ´Ù. ¾ËÂ¥½½·¢¿þ¾î¿¡´Â ½É°¢ÇÏ´Ù¸é ½É°¢ÇÏ´Ù°í ¸»ÇÒ ¼ö ÀÖ´Â ¿À·ù°¡ µé¾îÀÖ´Ù. ´ÙÀ½ ÆÄÀÏÀ» »ìÆ캸µµ·Ï ÇÏÀÚ.

console
tty1
tty2
tty3
tty4
tty5
tty6
ttyS0
ttyS1
ttyS2
ttyS3
ttyp0
ttyp1
ttyp2
ttyp3

¿ì¼± ·çÆ®´Â ÄÜ¼Ö Áï Àڱ⠼­¹ö ¾Õ¿¡¼­ ·Î±×ÀÎÇÒ ¼ö ÀÖ´Ù. ±× ´ÙÀ½Àº °¡»ó ÄܼÖÀÎ tty1ºÎÅÍ tty6 ±×¸®°í Á÷Á¢ Á¢¼ÓµÈ ½Ã¸®¾ó ¶óÀÎ ¶Ç´Â ¸ðµ© Á¢¼ÓÀÎ ttyS0ºÎÅÍ ttyS3ÀÌ ÀÖ´Ù. ¾ËÂ¥¿þ¾î¿¡¼­ ¹®Á¦°¡ µÇ´Â °ÍÀº ¹Ù·Î °¡»ó Å͹̳ÎÀÎ ttyp0ºÎÅÍ ttyp3¸¦ Ãß°¡ÇÑ °ÍÀÌ´Ù. ÀÌ°ÍÀº Á¦ÀÛÀÚÀÇ ¿À·ùÀÌ´Ù. ¸¸¾à ¿ø°ÝÁö¿¡¼­µµ ·çÆ®ÀÇ °ü¸®¸¦ ÇÒ ¼ö ÀÖÀ» ¸¸Å­ º¸¾ÈÀÇ ¹®Á¦°¡ ¾ø´Â °÷¿¡¼­´Â ³öµÎ¾îµµ ÁÁ´Ù. ·çÆ®·Î ·Î±×ÀÎÇÏ·Á°í ÇÏ´Ù°¡ ¾ÈÀü Å͹̳ÎÀÌ ¾Æ´Ï¶ó°í °ÅºÎÇÏ´Â ¸ð½ÀÀ» ÇÑ ¹ø º¸ÀÚ.

Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
 Linux 2.0.25 (i586) #14 Sun Nov 10 02:32:27 KST 1996 (ttyp5)

   Áö±Ý ÇöÀç´Â 18:58 on Monday, 11 November 1996 ÀÔ´Ï´Ù.
   ȯ¿µÇÕ´Ï´Ù!

freeyong login: root
root login refused on this terminal.

4. FTP ¼­ºñ½º

FTP´Â TCP/IPÀÇ ¾ÆÁÖ Áß¿äÇÑ ºÎºÐÀ¸·Î ³²¾ÆÀÖ´Â ¼­ºñ½ºÀÌ´Ù. À¥ÀÇ µîÀåÀ¸·Î Á¶±Ý ¹«±â·ÂÇØÁø °Í°°ÀÌ º¸¿©µµ ´ë·® ÆÄÀÏ Àü¼Û¿¡´Â ¿ª½Ã FTP ¼­ºñ½º°¡ ÃÖ°íÀÌ´Ù. ±×¸®°í FTP´Â »ç¶óÁö±âº¸´Ù´Â À¥ ºê¶ó¿ìÀú ¾ÈÀ¸·Î ÅëÇյǴ ¾ç»óÀ» ¶ì°í ÀÖ´Ù. FTP ¼­ºñ½º´Â Å©°Ô µÎ °¡Áö·Î ³ª´­ ¼ö Àִµ¥ ¼­¹ö ½Ã½ºÅÛ¿¡ µî·ÏÇÑ »ç¿ëÀÚµéÀ» À§ÇÑ ÀϹÝÀûÀÎ FTP¿Í À͸íÀÇ ¸ðµç »ç¿ëÀڵ鿡°Ô °³¹æÇÏ´Â À͸í (Anonymous) FTP°¡ ÀÖ´Ù. µî·Ï »ç¿ëÀÚ¿¡ ´ëÇÑ FTP ¼­ºñ½º´Â Åڳݰú ºñ½ÁÇÏ°Ô »ç¿ëÀÚ¸í°ú Æнº¿öµå¸¦ ÀԷ¹ްí Àڱ⠱ÇÇѸ¸Å­ ÆÄÀÏ¿¡ Á¢±ÙÇؼ­ ¹Þ¾Æ°¥ ¼ö ÀÖÀ¸¸ç ÀÚ½ÅÀÇ È¨ µð·ºÅ丮 °°Àº °÷¿¡´Â ¾÷·Îµåµµ °¡´ÉÇÏ´Ù. ¾à°£ÀÇ ÁÖÀǸ¦ ¿äÇÏ´Â °ÍÀÌ ¹Ù·Î À͸í FTPÀÌ´Ù. ÀÏ´ÜÀº ¿©·¯ºÐÀÌ °®°í ÀÖ´Â ´ëºÎºÐÀÇ ¼Ò±Ô¸ð FTP¿¡ ±×·¸°Ô ¸¹Àº Á¢¼ÓÀÌ ÀÌ·ç¾îÁöÁö´Â ¾ÊÀ»Áö ¸ð¸£³ª Ä¿´Ù¶õ FTP »çÀÌÆ®¸¦ °Ç¼³ÇÏ·Á°í ÇÑ´Ù¸é Á¤¸»·Î ¾öû³­ ½Ã½ºÅÛÀÌ ¾Æ´Ï¸é ¾ÈµÉ °ÍÀÌ´Ù.

4.1 À͸í FTP ¼­ºñ½º Áغñ»çÇ×

ÇÑ ¸¶µð·Î Åڳݰú ¸¶Âù°¡Áö·Î ¸®´ª½º ¼³Ä¡¿Í ÇÔ²² FTP ¼­ºñ½º´Â ±âº»À¸·Î ÀÌ·ç¾îÁø´Ù. ¿©·¯ºÐÀÇ ¸®´ª½º ¸Ó½ÅÀÌ ÀÌ¹Ì ³×Æ®¿öÅ©¿¡ Á¸ÀçÇÑ´Ù¸é ¿©·¯ºÐµµ ¸ð¸£´Â »çÀÌ¿¡ ´©±º°¡ ÀÌ¹Ì ¿©·¯ºÐÀÇ ÄÄÇ»Å͸¦ À͸í FTP·Î »ç¿ëÇÏ°í ÀÖ´ÂÁöµµ ¸ð¸¥´Ù. FTP ¼­ºñ½º ¶ÇÇÑ ¼öÆÛ ¼­¹ö inetd¿¡ ÀÇÇØ °ü¸®µÈ´Ù. ºü¸¥ ¹ÝÀÀ ½Ã°£À» °®±â À§Çؼ­´Â ftpd¸¦ ±×³É ¶ç¿öµµ ±¦Âú´Ù.

4.2 »õ·Î¿î FTP µ¥¸óÀÇ ¼³Ä¡

/usr/sbin µð·ºÅ丮·Î °¡º¸µµ·Ï ÇÏÀÚ.

freeyong:/usr/sbin# ls -l *ftpd
-rwxr--r--   1 root     root         8528 Sep  9 14:14 in.tftpd*
-rwxr-xr-x   1 root     bin         77444 Dec  6  1995 wu.ftpd*

À§¿¡¼­ º¸´Â ¹Ù¿Í °°ÀÌ wu.ftpd°¡ ¾ø´Ù¸é ³×Æ®¿öÅ© Å°Æ®¸¦ ¹Þ¾Æ´Ù°¡ ¼³Ä¡ÇØ ÁÖ´Â °ÍÀÌ ÁÁ´Ù. ±âº» ¼³Á¤Ä¡ÀÌ´Ù. ¿ö½ÌÅÏ ´ëÇп¡¼­ ¸¸µç ¶Ù¾î³­ ftp µ¥¸óÀÌ¸ç °ÅÀÇ ¸ðµç À¯´Ð½º °è¿­ »çÀÌÆ®¿¡¼­ ã¾Æ º¼ ¼ö ÀÖÀ» °ÍÀÌ´Ù. ¿ì¸®°¡ ¼³Ä¡ÇÒ ftp µ¥¸óÀº ¹Ù·Î ¿ö½ÌÅÏ ´ëÇÐÀÇ wu.ftpdÀÌ´Ù.

4.3 À͸í FPTÀÇ º¸¾È Á¡°Ë

À͸í FTP´Â ƯÈ÷ ¾ÈÀü¼ºÀÌ Áß¿äÇÏ´Ù. Ç×»ó ¾ÇÀǸ¦ °¡Áø »ç¶÷µéÀÌ Á¸ÀçÇÑ´Ù´Â ½ÄÀ¸·Î »ý°¢ÇÏ´Â °ÍÀº ÁÁÁö ¾Ê´Ù. º¸¾ÈÀ» ÇÏ´Â ÀÌÀ¯´Â Å©·¢Ä¿¸¦ ¸·°Ú´Ù´Â °Íº¸´Ù´Â ½Ã½ºÅÛÀÇ Çٽɺθ¦ ŸÀο¡°Ô µå·¯³»Áö ¾ÊÀ½À¸·Î½á ¿¹±âÄ¡ ¾ÊÀº ÀϵéÀ» ¸·°íÀÚ ÇÏ´Â °ÍÀÌ´Ù. ±×·³ Á¡°ËÀ» Çغ¸ÀÚ.

ftp:*:404:1::/home/ftp:/bin/bash

/etc/passwd¸¦ º¸¸é À§¿Í °°ÀÌ µÇ¾î ÀÖ´Â °ÍÀ» º¼ ¼ö ÀÖÀ» °ÍÀÌ´Ù. Æнº¿öµå Çʵ忡 ¾Ö½ºÅ͸®½ºÅ© ¹®ÀÚ¸¸ ÀÖÀ¸¹Ç·Î ftp¶ó´Â ·Î±×ÀθíÀ¸·Î´Â ÅÚ³Ý Á¢¼Ó°°Àº °ÍÀº ÇÒ ¼ö ¾øµµ·Ï µÇ¾î ÀÖ´Ù. Á¢¼Ó ÀÚü°¡ ºÒ°¡´ÉÇϱâ´Â ÇÏÁö¸¸ ¾ÈÀüÇÏ°Ô Çϱâ À§Çؼ­ ¼Ðµµ /bin/bash °°Àº °É·Î ÁöÁ¤ÇÏ´Â °Íº¸´Ù´Â ±×³É /bin/false°°Àº °ÍÀ¸·Î ÁöÁ¤Çصδ °Íµµ ÁÁ´Ù. ½½·¢¿þ¾î, ¾ËÂ¥¿þ¾î µî ¸ðµç °æ¿ì¿¡ À־ ftp¶ó´Â »ç¿ëÀÚ´Â À§¿¡¼­ º¸¸é 1¹ø ±×·ì¿¡ ¼ÓÇÏ´Â °ÍÀ¸·Î ³ª¿ÍÀִµ¥ 1¹ø ±×·ìÀº bin ±×·ìÀÌ´Ù. º¸ÅëÀº anonymous¶ó´Â ±×·ìÀ» »õ·Î ¸¸µç ÈÄ¿¡ ±× ±×·ìÀÇ ¸â¹ö·Î ¼³Á¤Çϸé ÁÁÀ» µí ÇÏ´Ù.

4.4 À͸í FTP Ȩ µð·ºÅ丮

À͸í FTPÀÇ È¨ µð·ºÅ丮´Â À§¿¡¼­Ã³·³ /home/ftpÀÌ´Ù. ÀÚ, Àá½Ã ¿©·¯ºÐÀÌ ¾î¶² À͸í FTP¿¡ µé¾î°¬À» ¶§¸¦ »ý°¢Çغ¸ÀÚ. ±×·¯¸é ÀüÇü ÀûÀ¸·Î ´ÙÀ½°ú °°Àº µð·ºÅ丮°¡ º¸ÀÏ °ÍÀÌ´Ù. ¸¸¾à ¿©·¯ºÐÀÌ cd / ¶ó´Â ¸í·ÉÀ¸·Î ½Ã½ºÅÛÀÇ ·çÆ® µð·ºÅ丮·Î °¡·Á°í Çغ¸¾ÒÀÚ ¿©·¯ºÐÀÌ ¿øÇÏ´Â µð·ºÅ丮·Î °¡´Â °ÍÀÌ ¾Æ´Ï¶ó ½ÇÁ¦·Î´Â Àüü ½Ã½ºÅÛ¿¡¼­ /home/ftp¿¡ ÇØ´çÇÏ´Â °÷¿¡ ¸Ó¹«¸¦ »ÓÀÌ´Ù. ÀÌ°ÍÀÌ À͸í FTP¿Í ÀÏ¹Ý »ç¿ëÀÚµéÀÇ FTP°¡ ´Ù¸¥ Á¡ÀÌ´Ù. À͸í FTPÀÇ °æ¿ì¿¡´Â ftp »ç¿ëÀÚ¿¡°Ô ÀÖ¾î /home/ftp°¡ ¸¶Ä¡ / ó·³ ÀÛµ¿Çϵµ·Ï µÇ¾î ÀÖ´Ù. ³»ºÎÀûÀ¸·Î chroot¶ó´Â °ÍÀÌ ÀÛµ¿ÇÏ¿© /home/ftp¶ó´Â µð·ºÅ丮¸¦ ·çÆ® µð·ºÅ丮ó·³ ÀνÄÇϵµ·Ï Çϴϱî /home/ftp ÀÌÇÏÀÇ ¸ðµç µð·ºÅ丮µéÀº Á¢±ÙÀ» ÇÒ ¼ö ¾øµµ·Ï ÇÑ °ÍÀÌ´Ù. °¢ µð·ºÅ丮¸¦ Á¡°ËÇغ¸µµ·Ï ÇÏÀÚ.

drwxr-xr-x    8 root  wheel   1024 Aug 23 20:30 .
drwxr-xr-x     8 root  wheel   1024 Aug 23 20:30 ..
drwxr-xr-x     2 root  wheel   1024 Aug 23 20:30 bin
drwxr-xr-x     2 root  wheel   1024 Aug 23 20:30 etc
drwxrwxrwx   3 root   wheel   1024 Oct 11 16:21 incoming
drwxr-xr-x     2 root  wheel   1024 Nov 17  1993 lib
drwxr-xr-x     2 root  wheel   1024 Aug 23 20:30 pub
drwxr-xr-x     3 root  wheel   1024 Aug 23 20:30 usr
-rw-r--r--     1 root  root     312 Aug  1  1994 welcome.msg

¿ì¼± /home/ftp Áï  ftp µð·ºÅ丮´Â ftp¶ó´Â »ç¿ëÀÚ°¡ ¼ÒÀ¯ÇÏ°í ÀÖ¾î¾ß ÇÑ´Ù. ±×¸®°í ´Ù¸¥ »ç¶÷µéÀº ¾²±â Æ۹̼ÇÀ» °¡Á®¼­´Â ¾ÈµÈ´Ù.  ftp/bin Áï /home/ftp/bin¿¡´Â ls¶ó´Â ½ÇÇàÆÄÀÏÀÌ Àû¾îµµ Çϳª µé¾îÀÖ¾î¾ß ÇÏ¸ç ¼ÒÀ¯±ÇÀº ¼öÆÛ À¯Àú, ·çÆ®°¡ °¡Áö°í ÀÖÀ¸¸ç lsÀÇ Æ۹̼ÇÀº 111ÀÌ´Ù.  ftp/etc´Â ¼öÆÛ À¯ÀúÀÇ ¼ÒÀ¯ÀÌ¸ç ¾²±â ±ÝÁö°¡ µÇ¾î ÀÖ¾î¾ß ÇÑ´Ù. ³»¿ëÀ» º¸¸é passwd¿Í group ÆÄÀÏÀÌ Àִµ¥ ½ÇÁ¦·Î´Â ½Ã½ºÅÛ ÀüüÀÇ Æнº¿öµå¿Í ±×·ì ÆÄÀÏ°ú´Â ´Ù¸¥ ÆÄÀÏÀÌ´Ù. ÀÌ ÆÄÀÏÀÌ ÀÖ´Â ÀÌÀ¯´Â dir ÇßÀ» ¶§ ¼ýÀÚ°¡ ¾Æ´Ï¶ó »ç¿ëÀÚ¸í ±×·ì¸íÀÌ ³ª¿Àµµ·Ï Çϱâ À§ÇÔÀÌ´Ù. Àß º¸¸é Æнº¿öµå °°Àº °Ç ¾Æ¿¹ ¾ø´Ù´Â °ÍÀ» ¾Ë ¼ö ÀÖ´Ù. ÀÌ ÆÄÀÏÀ» Áö¿ì¸é ¿ÂÅë »ç¿ëÀÚ¸í°ú ±×·ì¸íÀÌ ¼ýÀڷθ¸ ³ª¿Ã °ÍÀÌ´Ù.  ftp/pub´Â ÀÏ´Ü Àб⸸ µÇ¾î¾ß ÇÑ´Ù. ¾÷·Îµå ÆÄÀÏÀº  ftp/incomingÀ» ÀÌ¿ëÇ϶ó. ¹èÆ÷Æǵ鿡¼­ incoming µð·ºÅ丮ÀÇ ¼ÒÀ¯ÀÚ°¡ À߸øµÇ¾î Àִµ¥ ¼ÒÀ¯ÀÚ´Â ·çÆ®°¡ ¾Æ´Ï¶ó ftp¿©¾ß ÇÑ´Ù. ·çÆ® ±ÇÇÑÀ¸·Î µé¾î°¡¼­ chown ftp  ftp/incomingÀ̶ó°í ÇÏ¸é µÈ´Ù. ´ÜÁö ftp »ç¿ëÀÚ¿¡°Ô¸¸ ¾²±â ±ÇÇÑÀÌ À־ ¾÷·Îµå¸¦ ÇÒ ¼ö ÀÖµµ·Ï µÇ¾î ÀÖ´Ù. ftp »ç¿ëÀÚ¿¡°Ô¸¸ ¾²±â ±ÇÇÑÀÌ ÀÖµµ·Ï Á¶Á¤ÇÑ´Ù. ÀÏ´Ü ÇÑ ¹ø ¿Ã¸° ÆÄÀÏ¿¡ ´ëÇؼ­´Â Áö¿ï ¼ö ¾ø´Ù. »ç¶÷µé¿¡°Ô ÆÄÀϸ¸ ¿Ã¸± °ÍÀÌ ¾Æ´Ï¶ó ¼³¸í¼­µµ ²À ¿Ã·ÁÁÖµµ·Ï ºÎŹÇÑ´Ù. °ü¸®ÀÚ´Â Á¤±âÀûÀ¸·Î incoming µð·ºÅ丮¸¦ º¸°í pub µð·ºÅ丮 ¹Ø¿¡´Ù ¾Ë¸Â°Ô ¹üÁÖ·Î ³ª´©¾î¼­ ´Ù½Ã »ç¿ëÀÚµéÀÌ ´Ù¿î·Îµå¸¸ ÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.

4.5 »ç¿ëÀÚ È¯¿µ ¸Þ½ÃÁö

/home/ftp µð·ºÅ丮¸¦ º¸¸é welcome.msg ÆÄÀÏÀ» º¼ ¼ö ÀÖ´Ù. ±×°÷¿¡´Ù »ç¿ëÀڵ鿡°Ô ¾Ë·Á¾ß ÇÒ »çÇ×À» Àû¾îÁÖ¸é µÈ´Ù. ½Ã½ºÅÛ Á¤±â Á¡°Ë, ¾÷±×·¹ÀÌµå ¼Ò½Ä µî ¶Ç´Â »õ·Î¿î ÀÚ·á ¼Ò½ÄÀ» Ç×»ó ¿Ã·ÁÁÖ¸é ÁÁÀ» °ÍÀÌ´Ù. °¢ µð·ºÅ丮·Î µé¾î°¥ ¶§¸¶´Ù °£´ÜÇÑ ¾È³»¸¦ ÇØÁÖ´Â °æ¿ì°¡ ÀÖ´Ù. ÀÌ ¶§´Â .message¶ó´Â ÆÄÀÏÀ» °¢ µð·ºÅ丮¿¡ ¸¸µé¾î¼­ È­¸é¿¡ Ç¥½ÃÇÏ°í ½ÍÀº ³»¿ëÀ» ÀûÀ¸¸é µÈ´Ù. ÇǸ®¾îµå(.) ¹®ÀÚ·Î ½ÃÀÛÇÏ´Â ÆÄÀÏÀÓ¿¡ À¯ÀÇÇ϶ó.

4.6 ½Ãµð·Ò ³»¿ëÀ» Á¦°øÇÏ·Á°í ÇÒ ¶§

½Ãµð·ÒÀ» ¸¶¿îÆ®½ÃÄѼ­ ±× ³»¿ëÀ» Á¦°øÇÏ´Â °Íµµ ¾ÈÀüÇÑ ¹æ¹ý ÁßÀÇ Çϳª¶ó°í »ý°¢ÇÑ´Ù. ±×¸®°í Çϵåµð½ºÅ© ¿ë·®À» Àý¾àÇÒ ¼ö Àֱ⠶§¹®¿¡ ¾ÆÁÖ ÁÁ´Ù. ±×·±µ¥ ¸¹Àº »ç¶÷µéÀÌ ½Ãµð·Ò ³»¿ëÀ» À͸í FTP·Î Á¦°øÇÏ·Á°í ÇÒ ¶§ ¾à°£ÀÇ ¾î·Á¿òÀ» °Þ°í ÀÖ´Â °Í °°´Ù. ¿©·¯ºÐÀÌ ¿øÇÏ´Â °÷¿¡ ¸¶¿îÆ®¸¦ Çß´Ù°í »ý°¢Çϰųª ¶Ç´Â ±âÁ¸¿¡ /cdromÀ¸·Î ¸¶¿îÆ®µÈ °ÍÀ» /home/ftp ÇÏÀ§ µð·ºÅ丮¿¡¼­ ¸µÅ©ÇÏ¸é µÇÁö ¾ÊÀ»±î »ý°¢Çصµ ÀüÇô ½Ãµð·ÒÀÌ ÀÖ´Â µð·ºÅ丮¸¦ ãÁö ¸øÇϱ⠶§¹®ÀÌ´Ù. ¿Ö ±×·²±î? ¹Ù·Î À͸í FTP´Â /home/ftp ¸¦ chroot ¸í·ÉÀ¸·Î °­Á¦·Î ·çÆ®(/) µð·ºÅ丮ó·³ º¸µµ·Ï ¸¸µé¾ú±â ¶§¹®ÀÌ´Ù. µû¶ó¼­ ¿©·¯ºÐÀÌ ¹«½ÉÄÚ /home/ftp ¹Û¿¡ ÀÖ´Â µð·ºÅ丮¸¦ Á¢±ÙÇÏ·Á°í Çϰųª ¸µÅ©ÇÏ·Á°í Çϸé ãÀ» ¼ö ¾ø´Ù°í ³ª¿Â´Ù. µû¶ó¼­ ½Ãµð·ÒÀ» º¸ÅëÀº /home/ftp µð·ºÅ丮¿¡ .1 ó·³ µµÆ®·Î ½ÃÀÛÇÏ´Â µð·ºÅ丮¸¦ ¸¸µç ÈÄ¿¡ ´ÙÀ½°ú °°ÀÌ ÇØÁØ´Ù.

mount -t iso9660 /dev/cdrom /home/ftp/.1

±×¸®°í /home/ftp ¾È¿¡¼­´Â ¸ðµÎ ´Ù /.1À» ±âÁØÀ¸·Î ½Ãµð·ÒÀÇ °¢ µð·ºÅ丮¸¦ ¸µÅ©ÇØµÎ¸é µÈ´Ù. ÀÏ´Ü /home/ftp/.1À̶ó´Â µð·ºÅ丮¿¡´Ù°¡ ¸¶¿îÆ®¸¦ ÇÏ°í À͸í FTP·Î µé¾î°¡°Ô µÇ¸é ±× µð·ºÅ丮´Â chroot ¸í·É¿¡ ÀÇÇÏ¿© ÀÌÁ¦ºÎÅÍ´Â /.1·Î¸¸ ÀνĵȴÙ. ±×°ÍÀº FTP Ŭ¶óÀ̾ðÆ®³ª ¼­¹ö¿¡°Ôµµ ¸¶Âù°¡ÁöÀÌ´Ù. µû¶ó¼­ ¸¸¾à¿¡ ½Ãµð·ÒÀÇ slakware¶ó´Â µð·ºÅ丮¸¦ /pub/slakware¶ó´Â µð·ºÅ丮·Î ¼­ºñ½ºÇÏ°í ½Í´Ù¸é ´ÙÀ½°ú °°ÀÌ ÇÑ´Ù.

cd /home/ftp
cd pub
ln -s /.1/slakware slakware ( Àý´ë·Î /home/ftp/.1ÀÌ ¾Æ´Ï´Ù. )

¶Ç ´Ù¸¥ °í¿ë·® Çϵåµð½ºÅ©¸¦ ¸¶¿îÆ®Çؼ­ »ç¿ëÇÏ·Á°í ÇÑ´Ù¸é ¸¶¿îÆ®¸¦ ²À Àбâ Àü¿ëÀ¸·Î Çصα⠹ٶõ´Ù. -o ro ¿É¼ÇÀ» ²À ºÙÀ̱⠹ٶõ´Ù.

4.7 ¸µÅ© ÁÖÀÇ!

º¸¾È¿¡¼­ Á¤¸»·Î Áß¿ä½ÃÇØ¾ß ÇÒ °ÍÀÌ ÀÖ´Ù. ¹Ù·Î ¸µÅ©ÀÇ ¹®Á¦ÀÌ´Ù. ¹°·Ð /home/ftp ¶ó´Â µð·ºÅ丮 ±¸Á¶ ¹ÛÀÇ µð·ºÅ丮¸¦ /home/ftp ¾ÈÂÊ¿¡´Ù ¸µÅ©Çغ¸¾ÒÀÚ ¾Æ¹«·± ¼Ò¿ëÀÌ ¾ø´Ù. ¾Õ¼­ ¸»ÇÑ ¹Ù¿Í °°ÀÌ À͸í FTP ¼¼¼Ç¿¡¼­ chroot°¡ È£ÃâµÇ¸é /home/ftp ¹ÛÀÇ µð·ºÅ丮¿¡ ´ëÇÑ º¸È£°¡ ÀÌ·ç¾îÁö±â ¶§¹®ÀÌ´Ù. ±×·¡¼­ À§¿Í °°ÀÌ Æ¯Á¤ ÆÄƼ¼ÇÀ» /home/ftp ¾È ÂÊ¿¡ ¸¶¿îÆ®ÇÏ´Â ¹æ¹ýÀ» »ç¿ëÇϴµ¥ ±×·¯ÇÑ ÆÄƼ¼ÇÀº ²À À͸í FTP ¿ëÀ¸·Î¸¸ ¾²±â ¹Ù¶õ´Ù. ¸¸¾à À͸í FTP°¡ ¾Æ´Ï¶ó ´Ù¸¥ ÀϹÝÀûÀÎ ¿ëµµ·Î »ç¿ëÇÏ°Ô µÈ´Ù¸é ¸µÅ©¸¦ µû¶ó ¿Ã¶ó°¡´Ù ³»·Á¿À´Â ¼ø°£ ¿ì¿¬Ä¡ ¾Ê°Ô ¿©·¯ºÐÀÌ ¿øÇÏÁö ¾Ê´Â µð·ºÅ丮¸¦ º¸¿©ÁÙ ¼öµµ ÀÖ°Ô µÈ´Ù. ¿¹¸¦ µé¾î ÇÊÀÚ´Â ¾ËÂ¥¿þ¾î ½Ãµð·ÒÀ» À͸í FTP·Î Á¦°øÇϱâ À§ÇØ ¿ì¼± ½Ãµð·ÒÀ» /home/ftp/.1 À̶ó´Â µð·ºÅ丮¿¡ ¸¶¿îÆ®ÇÏ¿´´Ù. ±×¸®°í pub µð·ºÅ丮¿¡ °¡¼­ ´ÙÀ½°ú °°ÀÌ Çß´Ù°í Ä¡ÀÚ.

ln -s /.1/rootdsks rootdsks

ÀÚ, È®ÀÎÀ» Çϱâ À§Çؼ­ À͸í FTP·Î µé¾î°¡º¸ÀÚ.

cd pub
cd rootdsks
cd ..

¿©±â¼­ ¿ì¸®´Â ´Ù½Ã pub·Î µ¹¾Æ¿À´Â °ÍÀÌ ¾Æ´Ï¶ó .1À̶ó´Â µð·ºÅ丮·Î µé¾î°¡°Ô µÈ´Ù.

4.8 FTP ¼­ºñ½ºÀÇ ¼±Àü

FTP ¼­ºñ½ºÀÇ ¾àÁ¡À» Çϳª µé¶ó¸é ÇÊÀÚ´Â ¹Ù·Î ¼±Àü °¡´É¼ºÀ̶ó°í ¸»ÇÏ°í ½Í´Ù. °¢±¤¹Þ°í ÀÖ´Â À¥ ¼­ºñ½ºº¸´Ù´Â ÀÚ±â ÀÚ½ÅÀ» È­·ÁÇÏ°Ô ¼±ÀüÇÒ ¹æ¹ýÀ» °®Áö ¸øÇϴ óÁöÀ̱⠶§¹®ÀÌ´Ù. µû¶ó¼­ ÈǸ¢ÇÑ FTP ¼­ºñ½º¿¡ ´ëÇؼ­´Â À¥ ÆäÀÌÁö¸¦ ÀÌ¿ëÇÏ¿© ¼±ÀüÀ» Àß ÇØÁֱ⠹ٶõ´Ù. ±×·¡¾ß »ç¿ëÀÚµéÀÌ ¸¹ÀÌ ÀÌ¿ëÇÒ ¼ö ÀÖ´Ù. À¥ ÆäÀÌÁö¿¡¼­ FTP »çÀÌÆ®·Î ¸µÅ©¸¦ ÇØÁÖ´Â °Íµµ ÁÁÀº ¹æ¹ýÀÌ´Ù. ÀÌ·¸°Ô Çϸé À¥ ¼­ºñ½º¿Í FTP ¼­ºñ½º°¡ Á¶È­¸¦ ÀÌ·ê ¼ö ÀÖ´Ù.

4.9 À͸í FTP Á¢±Ù ±ÇÇÑ ¼¼ÆÃ

Á¢±Ù ±ÇÇÑ¿¡ ´ëÇÑ ¼¼ÆÃÀº /etc µð·ºÅ丮ÀÇ ftpusers, ftpgroups¶ó´Â ÆÄÀÏÀ» ÅëÇØ ¼­ ÇÑ´Ù. ftpusers¶ó´Â ÆÄÀÏÀÇ ³»¿ëÀ» ÇÑ ¹ø »ìÆ캸ÀÚ.

# The entire line gets matched, so no comments or extra characters on
# lines containing a username.
#
root
uucp
news

# End of ftpusers.
news

À§¿¡¼­ ³ª¿­ÇÑ root, uucp, news¶ó´Â »ç¿ëÀÚ¿¡ ´ëÇؼ­´Â FTP Á¢±Ù ÀÚü¸¦ ºÒ ÇãÇÑ´Ù. Áï ftpusrs¿¡ µî·ÏµÈ »ç¿ëÀÚ´Â Á¢±Ù ±ÇÇÑÀ» ¹Þ´Â °ÍÀÌ ¾Æ´Ï¶ó Á¢±Ù ±ÇÇÑÀ» Á¦ÇÑ ¹Þ´Â´Ù´Â °ÍÀÌ´Ù. ÀÌµé ¿­°ÅÇÑ »ç¿ëÀÚµéÀÌ ³Ê¹«µµ °­·ÂÇϱ⠶§¹®¿¡ Ä¿´Ù¶õ ¹®Á¦¸¦ ÀÏÀ¸Å³ ¼ÒÁö°¡ Å©´Ù. µ¿½Ã »ç¿ëÀÚ Á¦ÇÑ¿¡ ´ëÇؼ­ ¾Ë¾Æº¸ÀÚ. À͸í FTP¸¦ ¹«ÇÑÁ¤ ¸ðµç »ç¶÷µéÀÌ »ç¿ëÇÒ ¼ö ÀÖ°Ô ÇÒ ¼ö´Â ¾ø´Ù. ¿©·¯ºÐÀÇ ¼­¹ö ¼º´É°ú ´ë¿ªÆø¿¡ µû¶ó ¼¼ÆÃÀ» ÇØ¾ß ÇÒ °ÍÀÌ´Ù. Áö¿ª(local)»ç¿ëÀÚ´Â ´ë¿ªÆøÀ» Å©°Ô ¿ä±¸ÇϹǷΠ´õ¿í ÀûÀº ÀοøÀ¸·Î Á¦ÇÑÇØ¾ß ÇÏ¸ç ¿ø°Ý(remote) »ç¿ëÀÚ´Â Àü¼Û·üÀÌ ºñ±³Àû »ó´çÈ÷ ¶³¾îÁö¹Ç·Î ÈξÀ ¸¹Àº ÀοøÀ» ¼ö¿ëÇÒ ¼ö ÀÖÀ» °ÍÀÌ´Ù. ±×°ÍÀ» ¼³Á¤ÇÏ´Â ÆÄÀÏÀÌ ¹Ù·Î /etc/ftpaccess ÀÌ´Ù.

limit   local   20  Any                  /etc/msgs/msg.toomany
limit   remote  100 SaSu|Any1800-0600   /etc/msgs/msg.toomany
limit   remote  60  Any          /etc/msgs/msg.toomany

¿ì¼± ùÁÙÀ» º¸¸é Áö¿ª »ç¿ëÀÚ´Â ¾î´À ¶§µç (Any) 20¸íÀ¸·Î Á¦ÇÑÇÑ´Ù. ±×¸®°í »ç¶÷ÀÌ ³Ê¹« ¸¹¾Æ¼­ Á¢±ÙÀ» °ÅºÎÇÒ ¶§´Â /etc/msgs/msg.toomany¶ó´Â ÆÄÀÏ ³»¿ëÀ» º¸¿©ÁØ´Ù. µÎ ¹ø° ÁÙÀÇ °æ¿ì ¿ø°Ý »ç¿ëÀÚÀÇ °æ¿ì SaSu Áï Åä¿äÀÏ (Saturday), ÀÏ¿äÀÏ(Sunday) ¶Ç´Â ¾î´À ³¯À̵ç 18½ÃºÎÅÍ 06 ½Ã±îÁö´Â 100¸íÀ¸·Î Á¦ÇÑÇÑ´Ù. ÀÌ Á¶°ÇÀ» ¸¸Á·ÇÏÁö ¾ÊÀ¸¸é 60¸íÀ¸·Î Á¦ÇѵȴÙ. Á¶°Ç½Ä¿¡ À־ ù ¹ø° Á¶°Ç½ÄÀÌ À¯È¿ÇÏ¸é ±×°Í¸¸ Àû¿ëÇÑ´Ù´Â »ç½ÇÀ» ±â¾ïÇϱ⠹ٶõ´Ù. µÎ ¹ø° ÁÙÀÌ ¿ø°Ý »ç¿ëÀÚ¿¡°Ô Àû¿ëµÇ¸é ¼¼ ¹ø° ÁÙÀº ó¸®ÇÏÁö ¾Ê´Â´Ù. »ç¿ë ÀοøÀ» -1·Î ¼¼ÆÃÇϸé Àοø Á¦ÇÑÀ» ¾ø¾Ö´Â °ÍÀÌ´Ù.

5. ¸ÞÀÏ ¼­ºñ½º

ÀÎÅͳ×Æ®ÀÇ ±âÃÊ ¼­ºñ½º¸¦ µé¶ó°í ÇÑ´Ù¸é ¹Ù·Î À̸ÞÀÏ ¼­ºñ½º¸¦ µé ¼ö ÀÖÀ» °ÍÀÌ´Ù. À̸ÞÀÏÀ̾߸»·Î Á÷ÀåÀÎÀ̵ç ÇлýÀ̵ç ÀÎÅͳ×Æ®¿¡ ´ëÇØ ¾ó¸¶³ª ¾Ë°í ÀֳĿ¡ »ó°ü¾øÀÌ ÇѹøÂëÀº µé¾îº¸¾ÒÀ» °ÍÀÌ°í µû¶ó¼­ ¸¹Àº »ç¶÷µéÀÌ ±× »ç¿ë¹ýÀ» ¾Ë°í ÀÖ´Ù. ÆíÁö¸¦ Æò»ý ÇÑ ¹øµµ ¾²Áö ¾ÊÀº »ç¶÷Àº ¾øÀ» °ÍÀÌ´Ù. ±×¸®°í ÀÌ ½Ã´ë¿¡ ž¼­ À̸ÞÀÏ ÇÑ ¹ø ¾Èº¸³»°í Á×´Â »ç¶÷Àº ¾øÀ» °ÍÀÌ´Ù. ¸ÞÀÏ ¼­ºñ½º´Â FTP, À¥ ¼­ºñ½º¿Í °°Àº °ÍÀÌ ¾ø¾îµµ ÀÇ»ç¼ÒÅëÀ» °¡´ÉÄÉ ÇØÁÖ´Â ÃÖ¼ÒÇÑÀÇ ¼ö´ÜÀÌ´Ù. ±×¸®°í °³ÀÎµé »çÀÌÀÇ ¸Þ½ÃÁö Àü´Þ¿¡ ¾²ÀÌ´Â Àý´ëÀûÀ¸·Î ÇÊ¿äÇÑ ¼­ºñ½ºÀÌ´Ù.

5.1 À̸ÞÀÏ ¼­¹ö?

´Ù¸¥ ¿î¿µÃ¼°è¿¡¼­´Â ³×Æ®½ºÄÉÀÌÇÁ ¸ÞÀϼ­¹ö¶óµçÁö ¸¶ÀÌÅ©·Î¼ÒÇÁÆ® ¸ÞÀÏ µîÀÇ ´Ù¾çÇÑ ¼±ÅñÇÀÌ ÀÖÁö¸¸ À¯´Ð½º °è¿­Àº ´Ü¿¬ sendmail»ÓÀ̶ó°í ¸»ÇÒ ¼ö ÀÖ´Ù. ´Ù¾ç¼ºÀÇ ºÎÁ·À̶ó±â º¸´Ù´Â sendmailÀÇ ÀüÅëÀûÀÎ °­·ÂÇÔ ¶§¹®À̶ó°í ¸»ÇÒ ¼ö ÀÖ´Ù. sendmailÀ̶ó°í ÇÏ´Â °ÍÀº »ó´çÈ÷ ´Ù·ç±â Èûµç À̸ÞÀÏ ¼­¹öÀÌ´Ù. ½ÉÁö¾î ¼¾µå¸ÞÀÏÀ» ¼¼ÆÃÇÒ Á¤µµ¸é ±× »ç¶÷Àº ÁøÁ¤ÇÑ ³×Æ®¿öÅ© °ü¸®ÀÚ¶ó°í ¸»ÇÏ°í ÀÖÀ» Á¤µµÀÌ´Ù. Àç¹ÌÀÖ´Â °ÍÀº ¼¾µå¸ÞÀÏ ¼¼ÆÃÀÌ ¾ó¸¶³ª »ç¶÷À» °Ì¸Ô°Ô ÇÏ´ÂÁö ¼¾µå¸ÞÀÏ ¼¼ÆÃÀ» 2¹ø ÀÌ»ó Çغ¸´Â »ç¶÷Àº ¹ÌÄ£ »ç¶÷À̶ó´Â ¸»µµ ÀÖÀ» Á¤µµÀÌ´Ù. ¼¾µå¸ÞÀÏÀ» °¡Áö°í ¿©·¯ºÐÀº »ó»óÇÒ ¼ö ¾ø´Â ¸¹Àº ÀÏÀ» ÇÒ ¼ö ÀÖ´Ù. ÃæºÐÇÏ°Ô °øºÎÇÏ·Á¸é ¸¶À½À» ±»°Ô ¸Ô°í ¿À·¼¸® ÃâÆǻ翡¼­ ³ª¿Â Á¤¸»·Î µÎ²¨¿î ¼¾µå¸ÞÀÏ Ã¥À» »ç¼­ º¸¸é µÈ´Ù. ÇÏÁö¸¸ ±×·¸°Ô °Ì¸ÔÀ» ÇÊ¿ä´Â ¾ø´Ù. ¿ì¸®´Â ¾ÆÁÖ °£´ÜÇÑ ¸î °¡Áö ±â´É¸¸À» »ç¿ëÇÒ °ÍÀ̱⠶§¹®¿¡ ÇØ´ç »çÇ׸¸À» Àá±ñ¸¸ ÀÍÈ÷¸é µÈ´Ù. ±×¸®°í ±× ÀÌ»óÀÇ ±â´ÉÀ» ¾²´Â ÀÏÀº °ÅÀÇ ¾øÀ» °ÍÀÌ´Ù. ¼¾µå¸ÞÀÏ ÃֽŠ¹öÀüÀº 8.9.1ÀÌ´Ù. ½½·¢¿þ¾î 3.1 ÃʱâÆÇ, ¾ËÂ¥½½·¢¿þ¾î¿¡´Â 8.8.2 ÀÌÀü ¹öÀüÀÌ µé¾îÀÖ°í º¸¾È¿¡¼­ ¾à°£ÀÇ ¹ö±×°¡ ÀÖ´Ù°í º¸°íµÇ°í ÀÖ´Ù. ¾ËÂ¥¿þ¾îÀÇ °æ¿ì ÇÑ±Û ¼¾µå¸ÞÀÏÀº ÇÑ±Û ÆÐÄ¡ÆÇÀ¸·Î ¹öÀüÀÌ ÈξÀ ³·´Ù. µû¶ó¼­ º»°ÝÀûÀÎ ¸ÞÀÏ ¼­¹ö·Î ¸®´ª½º ¸Ó½ÅÀ» »ç¿ëÇÏ·Á´Â ºÐµéÀº ´ÙÀ½°ú °°ÀÌ ÇØ¾ß ÇÑ´Ù.

  • ¿µ¹® ¼¾µå¸ÞÀÏ 8.8.8 ÀÌ»ó
  • ÇÑ±Û pine 3.96k

±âÁ¸ÀÇ ¼¾µå¸ÞÀÏÀº pkgtoolÀ» ½ÇÇàÇÑ ÈÄ remove¸¦ ¼±ÅÃÇÏ°í sendmail ºÎºÐÀ» Áö¿öÁÖ¸é µÈ´Ù. Áö¿ì±â¿¡ ¾Õ¼­ ¿ì¼±Àº ps aux ¸í·ÉÀ¸·Î sendmailÀÇ ÇÁ·Î¼¼½º¸¦ È®ÀÎÇÑ ÈÄ ÇÁ·Î¼¼½º¸¦ Á×ÀδÙ. ±×¸®°í ³ª¼­ ½ÇÇàÇϱ⠹ٶõ´Ù.

5.2 ¼¾µå¸ÞÀÏ ¼¼ÆÃ-±âº»

¼¾µå¸ÞÀÏÀ» ¼³Ä¡ÇÏ°í setupÀ» ½ÇÇà½ÃÄѼ­ ½Ã½ºÅÛ ¼³Á¤À» ´Ù½Ã ÇØÁØ´Ù. configure ¸Þ´º¸¦ ¼±ÅÃÇÑ ÈÄ¿¡ ´Ù¸¥ ¼¼ÆÃÀº º¯È­½ÃÅ°Áö ¸»°í °è¼Ó Ãë¼Ò½ÃŲ ÈÄ¿¡ SENDMAIL CONFIGURATION¿¡¼­ SMTP+BIND ¶Ç´Â SMTP¸¦ ¼±ÅÃÇÑ´Ù. ÀüÀÚ´Â ³×ÀÓ¼­¹ö¸¦ °¡Áö°í ÀÖ´Â °æ¿ìÀ̸ç ÈÄÀÚ´Â ³×ÀÓ¼­¹ö¸¦ °¡Áö°í ÀÖÁö ¾ÊÀº °æ¿ìÀÌ´Ù.

5.3 ¼¾µå¸ÞÀÏ ¼¼ÆÃ-°í±Þ

¸¹Àº »ç¶÷µé¿¡°Ô´Â ÇØ´çµÇÁö ¾Ê°ÚÁö¸¸ ¸®´ª½º ¼­¹ö ÇÑ ´ë¸¦ ¸î ´ëÀÇ ·£¿¡ ¹°¸° ÄÄÇ»Å͵鿡 ´ëÇÑ ¸ÞÀÏ °ÔÀÌÆ®¿þÀÌ(gateway)·Î »ç¿ëÇÏ°íÀÚ ÇÒ ¶§°¡ ÀÖÀ» °ÍÀÌ´Ù. ±×¸®°í ´Ù¸¥ ¸¹Àº ¿ëµµ·Î »ç¿ëÇÒ ÇÊ¿ä°¡ ÀÖ´Ù. ÀÌ·² ¶§´Â ¹Ù·Î ¿©·¯ºÐÀÇ ³×Æ®¿öÅ© °ü¸®Àڷμ­ÀÇ ½É°¢ÇÑ µµÀüÀÌ ÀÌ·ç¾îÁø °ÍÀÏ °ÍÀÌ´Ù. °£·«ÇÑ ¼Ò°³±Û¿¡¼­´Â ÃæºÐÄ¡ ¾ÊÀ¸¹Ç·Î ²À Àڱ⺸´Ù ÈξÀ ½Ç·ÂÀÌ ¸¹Àº ¸®´ª¼­µéÀ̳ª ¿À·¼¸® »çÀÇ SendmailÃ¥À» ±¸ÀÔÇغ¸±â ¹Ù¶õ´Ù.

6. NFS ¼­ºñ½º

¿©·¯ºÐÀº Network File System À̶ó´Â °ÍÀ» µé¾îº» ÀûÀÌ ÀÖ´ÂÁö ¸ð¸£°Ú´Ù. À¯´Ð½º¿¡ °ü½ÉÀÌ ¸¹Àº »ç¶÷µéÀº ÀÌ¹Ì µé¾îº» ÀûÀÌ ÀÖ´Â À¯¸íÇÑ ³×Æ®¿öÅ© ¼­ºñ½º Áß ÇϳªÀÌ´Ù. ¹Ù·Î »ó´ë¹æÀÇ ÆÄÀÏ ½Ã½ºÅÛ ÀϺθ¦ ¸¶Ä¡ ÀÚ±â ÀÚ½ÅÀÇ µð·ºÅ丮ÀÎ °Íó·³ »ç¿ëÇÒ ¼ö ÀÖ°Ô ÇØÁÖ´Â °ÍÀÌ NFSÀÌ´Ù. NFS °¡ Áß¿äÇÑ ÀÌÀ¯´Â ¾öû³­ °í¿ë·® ÇÏµå µð½ºÅ©¸¦ žÀçÇÏ°í ÀÖ´Â ¸î ´ëÀÇ ¿öÅ©½ºÅ×À̼ÇÀÌ ³×Æ®¿öÅ©ÀÇ ´Ù¸¥ ÄÄÇ»Å͵鿡°Ô ÆÄÀÏ ½Ã½ºÅÛ ¼­ºñ½º¸¦ ÇØÁÜÀ¸·Î½á ¸ðµç ÄÄÇ»Å͵éÀÌ ÇÊ¿ä ÀÌ»óÀÇ ÀÚ¿øÀ» °¡Áú ÇÊ¿äµµ ¾ø°í ¼ÒÇÁÆ®¿þ¾î¸¦ À̸® Àú¸® ±ò¾ÆµÑ ÇÊ¿äµµ ¾ø¾îÁö°Ô µÈ´Ù. »ý°¢Çغ¸¶ó. »ç¹«½Ç °÷°÷ ±×¸®°í Çб³ »ç¹«½Ç °÷°÷¿¡ ¾Æ·¡ÇѱÛÀ» ¼³Ä¡Çß´Ù°í Ä¡ÀÚ. Á¾Á¾ °æÇèÇغ¸¾ÒÀ» °ÍÀÌ´Ù. °¢ »ç¹«½Ç¿¡¼­ ¾Æ·¡ÇѱÛÀÌ Áö¿öÁ³´Ù°í ´Ù½Ã ±ò¾Æ´Þ¶ó°í ¿äûÇÏ´Â °æ¿ì°¡ ¸¹´Ù. ÀÏÀÏÀÌ ¸ðµç PC¿¡ ¼³Ä¡¸¦ ÇÑ´Ù´Â °ÍÀº Á¤¸»·Î ½Ã°£³¶ºñÀÌ´Ù. Â÷¶ó¸® Çѱ۰ú ÄÄÇ»Åͻ翡 »ç¿ëÀοø¿¡ µû¸¥ ¶óÀ̼¾½º·á¸¦ ÁöºÒÇÑ ´ÙÀ½ Áß¾Ó È£½ºÆ® 2-3´ë Á¤µµÀÇ ÆÄƼ¼Ç¿¡´Ù°¡ ¾Æ·¡ÇѱÛÀ» ¼³Ä¡ÇصдÙ. ±×¸®°í ±×°ÍÀ» NFS ·Î ³»ºÎ »ç¿ëÀڵ鿡°Ô °³¹æÇØÁÖ´Â °ÍÀÌ´Ù. ¹°·Ð ÃæºÐÇÑ ¼Óµµ°¡ Á¦°øµÇ¾î¾ß ÇÒ °ÍÀÌ´Ù. ±×·¡¼­ ÇöÀç·Î´Â ¼Õ¼ö ÀÏÀÏÀÌ PC¿¡ ¾Æ·¡ÇѱÛÀ» Çϳª¾¿ ¼³Ä¡ÇÏ´Â ¼ö°í¸¦ ÇÏ°í ÀÖÀ» µû¸§ÀÌ´Ù. ¿ì¼±Àº Ŭ¶óÀ̾ðÆ® °üÁ¡¿¡¼­ NFS ¸¶¿îÆ®¸¦ ¾î¶»°Ô ÇÒ °ÍÀÎÁö¸¦ ¾Ë¾Æº¸±â·Î ÇÑ´Ù.

6.1 Ŭ¶óÀ̾ðÆ®·Î¼­ NFS ¸¶¿îÆ®Çϱâ

¸¸¾à ¿©·¯ºÐÀÌ ¼ÓÇÑ ·£ ȯ°æ¿¡¼­ ¶Ç´Â ÀÎÅͳ×Æ®¿¡¼­ ´©±º°¡ ¿©·¯ºÐ¿¡°Ô ±×µéÀÇ Æ¯Á¤ µð·ºÅ丮¸¦ NFS·Î ¸¶¿îÆ®ÇÒ ¼ö ÀÖ°Ô Çã°¡ÇØÁÖ¾ú´Ù°í ÇÏÀÚ. nfs-host.xxx.co.kr¶ó´Â È£½ºÆ®°¡ ÀÚ½ÅÀÇ /usr/local µð·ºÅ丮¸¦ ¸¶¿îÆ®Çϵµ·Ï Çã°¡ÇØÁÖ¾ú´Ù°í °¡Á¤ÇÑ´Ù. ¿©·¯ºÐÀÌ ·£À̵ç PPP µç °£¿¡ TCP/IP Á¢¼ÓÀ» ÀÌ·ç¾î ³Â´Ù¸é ´ÙÀ½°ú °°ÀÌ ÇÏ¸é µÈ´Ù.

# mount -t nfs nfs-host.xxx.co.kr:/usr/local /usr/local

À§ ¸í·ÉÀº »ó´ëÆí nfs-host.xxx.co.krÀÇ /usr/local µð·ºÅ丮¸¦ ÀÚ½ÅÀÇ /usr/local µð·ºÅ丮·Î NFS ¹æ½ÄÀ¸·Î ¸¶¿îÆ®ÇÏ´Â °ÍÀÌ´Ù. ¸®´ª½º¿¡¼­´Â ¸¶¿îÆ® ¿É¼Ç -o rsize=8192, wsize=8192À» ÁÖ¸é ´õ È¿À²ÀûÀÎ ¼Óµµ¸¦ ¾ò¾î³¾ ¼ö ÀÖ´Ù°í ÇÑ´Ù. ÀÌ·¸°Ô ÇÏ°í ³ª¼­ cd /usr/local ÇÏ¸é ¾ó¸¶µçÁö ¿©·¯ºÐÀÌ µð·ºÅ丮ÀÎ °Íó·³ »ç¿ëÇÒ ¼ö ÀÖ´Ù. ÇÏÁö¸¸ ´ëºÎºÐÀÇ °æ¿ì ÆÄÀÏÀ» Áö¿ì°Å³ª º¯°æÇÒ ¼ö´Â ¾øµµ·Ï Àбâ Àü¿ëÀ¸·Î¸¸ Çã°¡ÇØÁÙ °ÍÀÌ´Ù. ¿©·¯ºÐÀÌ À©µµ95¿Í °°Àº °ÍÀ» »ç¿ëÇÏ°í ÀÖ´Ù¸é ¼Î¾î¿þ¾î³ª Á¤Ç° NFS Ŭ¶óÀ̾ðÆ®¸¦ ±¸ÀÔÇØ¾ß ÇÒ °ÍÀÌ´Ù.

6.2 NFS ¼­¹ö·Î¼­ÀÇ Áغñ

¿©·¯ºÐÀÌ ¾ËÂ¥¿þ¾î ¶Ç´Â ´ëºÎºÐÀÇ ¹èÆ÷ÆÇÀ¸·Î ¼³Ä¡¸¦ Çϸé ÀÌ¹Ì NFS µ¥¸óµé À̶ó°í ºÎ¸£´Â °ÍµéÀÌ ±× Áï½Ã »ç¿ë °¡´ÉÇϵµ·Ï µÇ¾î ÀÖ´Ù. ´ÜÁö /etc/rc.d/rc.inet2¸¦ ¾à°£ ¼öÁ¤ÇÏ¸é ±×¸¸ÀÌ´Ù.

# # Start the various SUN RPC servers.
if [ -f ${NET}/rpc.portmap ]; then
#  # Start the NFS server daemons.
if [ -f ${NET}/rpc.mountd ]; then
  echo -n " mountd"
  ${NET}/rpc.mountd
  fi
if [ -f ${NET}/rpc.nfsd ]; then
  echo -n " nfsd"
  ${NET}/rpc.nfsd
  fi
     .
     .
     .

ÀÌ·± ºÎºÐÀ» ã¾Ò´Â°¡? rpc.mountd¿Í rpc.nfsd°¡ ÀÛµ¿ÇÒ ¼ö ÀÖµµ·Ï ÁÖ¼®¹® ó ¸®¸¦ ¾ø¾Öµµ·Ï ÇÑ´Ù. ÀüÀÚ´Â NFS ¸¶¿îÆ® µ¥¸óÀÌ°í ÈÄÀÚ´Â NFS ÆÄÀÏ ¼­¹ö µ¥ ¸óÀÌ´Ù. ±× ´ÙÀ½Àº ¿©·¯ºÐÀÇ ¾î´À µð·ºÅ丮¸¦ ´©±¸¿¡°Ô ¾î¶² ¿É¼ÇÀ¸·Î Á¦°øÇÒ °ÍÀÎÁö¸¦ °áÁ¤ÇÏ´Â ÀÏÀÌ ³²¾Ò´Ù. ¿©±â¼­ Áß¿äÇÑ ÆÄÀÏÀº ¹Ù·Î /etc/exports¶ó´Â ÆÄÀÏÀÌ´Ù.

# See exports(5) for a description.
# This file contains a list of all directories exported to other computers.
# It is used by rpc.nfsd and rpc.mountd.
/home/alzza2    168.126.124.228(ro)
/home/alzza2    206.48.168.180(ro)
/home/yong      localhost(ro)

# sample /etc/exports file
       /               master(rw) trusty(rw,no_root_squash)
/projects       proj*.local.domain(rw)
       /usr            *.local.domain(ro) @trusted(rw)
/home/joe       pc001(rw,all_squash,anonuid=150,anongid=100)
       /pub            (ro,insecure,all_quash)

man exports Çغ¸¸é ³ª¿À´Â ¿¹Á¦ exports ÆÄÀÏÀÇ ³»¿ëÀÌ´Ù. È£½ºÆ®º°·Î ±×¸®°í »ç¿ëÀÚº°·Î °ýÈ£ ¾È¿¡ Ä£ ¿É¼ÇÀ» ÁÖ°í Çã°¡ÇÒ ¼ö ÀÖµµ·Ï ÇØÁÖ°í ÀÖ´Ù. ¿©·¯ºÐÀÌ ÀÏ´Ü ¾Ë¾ÆµÎ¾î¾ß ÇÒ ¿É¼ÇÀº ¹Ù·Î ro, rw Á¤µµÀÏ °ÍÀÌ´Ù. ¸Ç ¸ÕÀú master, trusty¶ó´Â È£½ºÆ®¿¡ ´ëÇؼ­´Â ·çÆ® µð·ºÅ丮 / ÀÚü¸¦ Àбâ/¾²±â·Î Çã¿ëÇÏ°í ÀÖ´Ù. µµ¸ÞÀθíÀÌ local.domainÀÌ°í È£½º¸íÀÌ proj·Î ½ÃÀÛÇϴ ȣ½ºÆ®¿¡ ´ëÇؼ­´Â /projects¶ó´Â µð·ºÅ丮¸¦ Àбâ/¾²±â·Î Çã¿ëÇÏ°í ÀÖ´Ù. ¸Ç ¸¶Áö¸·À» º¸¸é ¸ðµç È£½ºÆ®¿¡ ´ëÇÏ¿© /pub µð·ºÅ丮¸¦ Àбâ Àü¿ëÀ¸·Î Çã¿ëÇØÁÖ°í ÀÖ´Ù. º¸´Â ¹Ù¿Í °°ÀÌ / µð·ºÅ丮´Â ´Ù¸¥ È£½ºÆ®¿¡ ±×¸®°í ±× ÇϺΠµð·ºÅ丮¿¡ ÇØ´çÇÏ´Â /pub´Â ÀϹÝÀε鿡°Ô Çã¿ëÇÏ´Â ½ÄÀ¸·Î °¢ ÆÄƼ¼ÇÀÌ µû·Î ºÐ¸®µÇÁö ¾Ê¾Æµµ Áߺ¹Çؼ­ ¾î¶² µð·ºÅ丮¿Í ±× ÇϺεð·ºÅ丮¸¦ º°µµ·Î ¸¶¿îÆ®¸¦ Çã¿ëÇÒ ¼ö ÀÖ´Ù. ³Ê¹« °£´ÜÇÏÁö ¾ÊÀº°¡?

7. ¸®´ª½º ¼­¹ö ½Ã½ºÅÛ¿¡ ´ëÇÑ ÀÌÇØ

¸®´ª½ºÀÇ ÀÎÅͳ×Æ® ¼­ºñ½º¿¡´Â ±×¿¡ ÇØ´çµÇ´Â µ¥¸óµéÀÌ Àֱ⠸¶·ÃÀÌ´Ù. µ¥¸óµéÀº Á¤È®È÷ ¼­¹ö¿¡¼­ È°µ¿ ÁßÀÎ ÇÁ·Î¼¼½º¸¦ ¸»Çϴµ¥ Æò¼Ò¿¡´Â ÄðÄð ÀḸ ÀÚ°í ÀÖ´Ù°¡ Ŭ¶óÀ̾ðÆ®ÀÇ Á¢¼Ó ¿ä±¸°¡ »ý±â¸é ±ú¾î³­´Ù. ÅÚ³Ý ¼­ºñ½º¿¡´Â telnet µ¥¸óÀÌ, FTP ¼­ºñ½º¿¡ ´ëÇؼ­´Â ftp µ¥¸óÀÌ, ¸ÞÀÏ ¼­ºñ½º¿¡ ´ëÇؼ­´Â mail µ¥¸óÀÌ ±×¸®°í NFS ¼­ºñ½º¿¡ ´ëÇؼ­´Â nfs µ¥¸óÀÌ, ¸¶Áö¸·À¸·Î À¥ ¼­ºñ½º¿¡ ´ëÇؼ­´Â À¥ µ¥¸óÀÌ ÇÊ¿äÇÏ´Ù. ¸ÞÀÏ¿¡ ´ëÇؼ­´Â sendmail ¶Ç´Â smailÀ̶ó´Â µ¥¸óÀÌ ±×¸®°í NFS¿¡ ´ëÇؼ­´Â Àü¼úÇÑ rpc.mountd, rpc.nfsd°¡ Çùµ¿ÇØ¾ß ÇÏ°í À¥ ¼­ºñ½º´Â º¸Åë httpd¶ó´Â µ¥¸óÀÌ Àִµ¥ telnet°ú ftp ÀÇ °æ¿ì¿¡´Â ±×·¸°Ô ´Üµ¶À¸·Î ¶á´Ù±â º¸´Ù´Â inetd ¼öÆÛ µ¥¸óÀ̶ó´Â °Í¿¡ ÀÇÇؼ­ Á¦¾î¸¦ ¹Þ¾Æ¼­ ÇÊ¿äÇÒ ¶§¸¸ ½ÇÇàµÇµµ·Ï µÇ¾î ÀÖ´Ù. ºÎÆà °úÁ¤À» Àß »ìÆ캸¸é inetd¶ó´Â °ÍÀÌ ¶ß´Â °ÍÀ» º¼ ¼ö ÀÖ´Ù. inetd µ¥¸ó¿¡ Áß¿äÇÑ ¼³Á¤ÆÄÀÏÀº /etc/inetd.conf¶ó´Â ÆÄÀÏÀÌ´Ù. ±× ³»¿ëÀ» ÀϺθ¸ »ìÆ캸µµ·Ï ÇÏÀÚ.

# See "man 8 inetd" for more information.
#
# If you make changes to this file, either reboot your machine or send the
# inetd a HUP signal:
# Do a "ps x" as root and look up the pid of inetd. Then do a
# "kill -HUP <pid of inetd>".
# The inetd will re-read this file whenever it gets that signal.
#
# <service_name>  <sock_type> <proto>   <flags> <user> <server_path>
<args>
#

#
# These are standard services.
#
ftp     stream  tcp     nowait  root    /usr/sbin/tcpd  wu.ftpd
telnet  stream  tcp     nowait  root    /usr/sbin/tcpd  in.telnetd
nntp    stream  tcp     nowait  root    /usr/sbin/tcpd  in.nntpd
# The comsat daemon notifies the user of new mail when biff is set to y:
comsat        dgram   udp     wait    root    /usr/sbin/tcpd  in.comsat
#
# Shell, login, exec and talk are BSD protocols.
#
shell   stream  tcp     nowait  root    /usr/sbin/tcpd  in.rshd -L
login   stream  tcp     nowait  root    /usr/sbin/tcpd  in.rlogind
# exec  stream  tcp     nowait  root    /usr/sbin/tcpd  in.rexecd
# talk  dgram   udp     wait    root    /usr/sbin/tcpd  in.talkd
ntalk   dgram   udp     wait    root    /usr/sbin/tcpd  in.talkd
#
# Pop et al
#
# pop2  stream  tcp     nowait  root    /usr/sbin/tcpd  in.pop2d
pop3    stream  tcp     nowait  root    /usr/sbin/tcpd  in.pop3d

#
# Finger, systat and netstat give out user information which may be
# valuable to potential "system crackers."  Many sites choose to disable
# some or all of these services to improve security.
# Try "telnet localhost systat" and "telnet localhost netstat" to see that
# information yourself!
#
finger  stream  tcp     nowait  nobody  /usr/sbin/tcpd  in.fingerd -w
systat  stream  tcp     nowait  nobody  /usr/sbin/tcpd  /bin/ps -auwwx
netstat stream  tcp     nowait  root    /usr/sbin/tcpd  /bin/netstat -a

À§ ¼³Á¤ ÆÄÀÏÀ» Á¶±ÝÀÌ¶óµµ ¹Ù²Ù´Â °æ¿ì¿¡´Â ¾Õ ºÎºÐ¿¡¼­ ¼³¸íÇÑ °Íó·³ inetd¸¦ kill -HUP Çؼ­ ÇÁ·Î¼¼½º¸¦ Á×ÀÎ ÈÄ ´Ù½Ã ¶ç¿ö¾ß ÇÑ´Ù. À§¿¡¼­ ¿­°ÅÇÑ °ÍÀº ½Ã½ºÅÛ ¿î¿µ¿¡¼­ ¾ÆÁÖ Áß¿äÇÑ µ¥¸óµéÀ̶ó°í ÇÒ ¼ö ÀÖ´Ù. ÀÌ ¸ðµç °ÍÀ» °ü¸®ÇϹǷΠ¼öÆÛ µ¥¸óÀ̶ó°í ÇÒ ¼ö ÀÖ´Ù. Âü°í·Î /etc/services¶ó´Â ÆÄÀÏÀ» º¸¸é ¿©·¯ºÐÀÇ ¼­ºñ½º°¡ ¾î¶² ÇÁ·ÎÅäÄÝ( TCP Àΰ¡? UDP Àΰ¡? )Àΰ¡ ±×¸®°í ¾î¶² Æ÷Æ®¸¦ »ç¿ëÇϴ°¡¿¡ ´ëÇؼ­ °¨ÀâÀ» ¼ö ÀÖÀ¸¸®¶ó º»´Ù. ²À ÇÑ ¹ø ÆÄÀÏÀÇ ³»¿ëÀ» ¸ð¸£´õ¶óµµ ÈȾ±â ¹Ù¶õ´Ù. ¸¶Áö¸·À¸·Î À§ÀÇ inetd.conf ÆÄÀÏÀ» Àß »ìÆ캸¸é ±×³É in.telnetd¸¦ ¼öÇà½ÃÅ°´Â °ÍÀÌ ¾Æ´Ï¶ó /usr/sbin/tcpd¶ó´Â °Í¿¡ ÀÇÇؼ­ º¸È£µÇ¾î(Wrap) ¼öÇàµÈ´Ù. ÀÌ·¸°Ô tcpd¶ó°í ºÎ¸£´Â °Í¿¡ ÀÇÇØ ¼öÇàµÇ´Â ¼­ºñ½ºµéÀº Á¢±Ù Á¦¾î¿Í ¸ð´ÏÅ͸µÀÌ °¡´ÉÇØÁø´Ù. ¸Ç ÆäÀÌÁö¸¦ º¸¸é Á¤¸» ÀåȲÇÏ°Ô ¼³¸íµÇ¾î ÀÖÀ¸¹Ç·Î Âü°íÇϱ⠹ٶõ´Ù. ÀÏ´ÜÀº tcpd¿¡ ÀÇÇؼ­ ¾î¶»°Ô È£½ºÆ®º° Á¢±Ù Á¦ÇÑÀ» °¡ÇÒ ¼ö ÀÖ´ÂÁö ¾Ë¾Æº¸ÀÚ. ¾Çµ¶ÇÑ »ç¿ëÀÚµéÀÌ ¸¹Àº È£½ºÆ®´Â Á¢±ÙÀ» °ÅºÎÇغ¸ÀÚ. ¼­·Î Å©·¢Å·À» ¸¹ÀÌ ÇÏ´Â Çб³ °úµé »çÀÌ¿¡¼­´Â Á¢±Ù Á¦ÇÑÀ» °¡ÇÏ´Â °Íµµ ÁÁÀ» °ÍÀÌ´Ù. °ü°èµÈ ÆÄÀÏÀº 2°³ÀÌ´Ù. /etc/hosts.allow ¿Í /etc/hosts.deny Áï ÀüÀÚ´Â Çã¿ëÇÏ´Â »çÀÌÆ®, ÈÄÀÚ´Â °ÅºÎÇÏ´Â »çÀÌÆ®°¡ µÈ´Ù. ±ÔÄ¢Àº /etc/hosts.deny¿¡ ³Ö´Â È£½ºÆ®¿¡¼­´Â Á¢±ÙÀÌ ºÒÇãµÈ´Ù. ÇÏÁö¸¸ /etc/hosts.allow¿¡ µé¾î°£ »çÀÌÆ®´Â ÀüÀÚ¿¡ °ÅºÎ È£½ºÆ® ¸ñ·Ï¿¡ »ó°ü¾øÀÌ Á¢±ÙÀÌ Çã¿ëµÈ´Ù. µû¶ó¼­ /etc/hosts.allow´Â Àß ÀÛ¼ºÇØ¾ß ÇÑ´Ù. ¿¹Á¦¸¦ ÇÑ ¹ø »ìÆ캸±â ¹Ù¶õ´Ù. µÑ ´Ù Çü½ÄÀº °°À¸´Ï Çϳª¸¸ ¾Ë¾Æº¸°Ú´Ù.

µ¥¸ó ¸®½ºÆ®: È£½ºÆ® ¸®½ºÆ®
ALL: ALL EXCEPT terminalserver.foobar.edu
in.talkd: ALL
in.ntalkd: ALL
in.fingerd: ALL
in.ftpd: LOCAL, .my.domain
ALL EXCEPT in.fingerd: other.host.name

ÄÝ·Ð(:)¾Õ¿¡´Ù ¼­ºñ½º µ¥¸ó ¸®½ºÆ®¸¦ Àû¾îÁÖ°í µÚ¿¡´Â È£½ºÆ®¸íÀ» Àû¾îÁØ´Ù. À§ÀÇ ¿¹¿¡¼­ º¸¸é ALL, EXCEPT, LOCAL µîÀÇ Æ¯¼öÇÑ ¸íĪÀÌ ³ª¿À´Âµ¥ °¢°¢Àº ¿©·¯ºÐÀÌ »çÀü¿¡¼­ ãÀ» ¼ö ÀÖ´Â ÀÇ¹Ì¿Í °°´Ù°í º¸¸é µÈ´Ù. ALL°ú EXCEPT´Â µ¥¸ó ¸®½ºÆ®¿Í È£½ºÆ® ¸®½ºÆ® ¾çÀÚ¿¡ ¾²ÀÏ ¼ö ÀÖ´Ù. º¸¾ÈÀÌ Á¤¸»·Î ¹®Á¦µÇ´Â »çÀÌÆ®¿¡¼­´Â ¿ì¼±Àº hosts.deny ÆÄÀÏ¿¡ ALL: ALLÀ̶ó°í ½áÁØ´Ù. ÀÌ·¸°Ô ÇÏ¸é ¸ðµç È£½ºÆ®¿¡ ´ëÇÏ¿© ¾î¶² ¼­ºñ½ºµµ ÀÏ´Ü ºÒÇãÇسõ´Â´Ù. ±×¸®°í hosts.allow¿¡¼­ Çϳª¾¿ Çã¿ëÇØÁÖ¸é µÈ´Ù. ÀÚ¼¼ÇÑ »çÇ×Àº ¸Ç ÆäÀÌÁö¸¦ º¸¸é µÈ´Ù.

$ man 5 hosts_access

8. ¾ÆÆÄÄ¡(Apache) HTTP ¼­¹ö ¼³Ä¡¿Í ¿î¿µ

´Ü¼øÇÑ Å¬¶óÀ̾ðÆ®·ÎÀÇ Àü¶ô! ÀÎÅͳ×Æ® »ç¿ëÀα¸°¡ ´Ã¾î³ª±ä Çصµ ±×¸®°í ³×Æ®¿öÅ© ¼Óµµ°¡ »¡¶óÁö±â´Â ÇßÁö¸¸ °³ÀÎ »ç¿ëÀÚµéÀº ¿©ÀüÈ÷ ÁøÁ¤ÇÑ(?) »ç¿ëÀÚ ¼öÁØ¿¡ ¸Ó¹°°í ÀÖ´Ù. ÇÏÁö¸¸ PC ÇÑ ´ë¿Í ¸®´ª½º ±×¸®°í Àû´çÇÑ ¼ÓµµÀÇ ³×Æ®¿öÅ©¸¸ ÀÖ´Ù¸é ÀÌÁ¦ ¿©·¯ºÐÀÇ ¸®´ª½º ¸Ó½ÅÀº ´õ ÀÌ»ó Ŭ¶óÀ̾ðÆ® ¸Ó½ÅÀÌ ¾Æ´Ï´Ù. À¥¼­ºñ½º¸¦ »ó¿ëÀ¸·Î ÇÒ °ÍÀÌ ¾Æ´Ï¶ó¸é ³×Æ®¿öÅ© ¼Óµµ´Â ¸ðµ©¼Óµµ Á¤µµ¸¸ µÅµµ »ó°ü¾øÁö ¾ÊÀ»±î? SLIPÀ̳ª PPP·Î µ¿Àû IP¸¦ ÇÒ´ç¹Þ¾Æ °¡²û ¿î¿µÇغ¸´Â °³ÀÎ ¼­¹öµµ Àç¹ÌÀÖÀ» °ÍÀÌ´Ù. Àá½Ã ¼­¹ö·Î ÀÛµ¿ÇÏ´Â ¿©·¯ºÐÀÇ ¸®´ª½º ¸Ó½ÅÀ¸·Î Ä£±¸µéÀ» ÃÊ´ëÇغ¸´Â °Íµµ ÁÁ´Ù. ÇöÀç Á¶»çµÈ ¹Ù¿¡ ÀÇÇϸé Àü¼¼°èÀûÀ¸·Î °¡Àå ¸¹ÀÌ »ç¿ëµÇ´Â À¥ ¼­¹ö´Â ´Ü¿¬ ¾ÆÆÄÄ¡ ¼­¹öÀÌ¸ç ¿ì¸®³ª¶ó¿¡¼­´Â NCSA¼­¹ö¸¦ °¡Àå ¸¹ÀÌ »ç¿ëÇÑ´Ù°í ÇÑ´Ù. ¸î °¡Áö ¹®¼­¸¦ ã¾Æº¸¸é ¿ì¸®³ª¶ó¿¡¼­ NCSA¼­¹ö°¡ °¡Àå ¸¹ÀÌ »ç¿ëµÇ´Â ÀÌÀ¯·Î ÇѱÛÈ­µÈ ¹®¼­°¡ ÀÖ´Ù´Â »ç½ÇÀ» µé°í ÀÖ´Ù. NCSA ¼­¹öÀÇ ¹ö±×¸¦ ¼öÁ¤Çϸ鼭 (¾ÆÆÄÄ¡ ¼­¹öÀÇ À̸§Àº NCSA 1.3¿¡ ´ëÇÑ A PAtCHy ¹öÀüÀ̶ó´Â ¸»·ÎºÎÅÍ À¯·¡µÈ °ÍÀ̶ó ÇÑ´Ù), °¡Àå ºü¸¥ ¼­¹ö·Î ÀÎÁ¤µÇ°í ÀÖÀ¸¸ç Àü¼¼°èÀûÀ¸·Î °¡Àå ¸¹ÀÌ »ç¿ëµÇ´Â ¾ÆÆÄÄ¡ ¼­¹ö¿¡ ´ëÇÑ ÇÑ±Û ¹®¼­°¡ ³ª¿Â´Ù¸é ÁÁÀº ¼º´ÉÀÇ ¾ÆÆÄÄ¡ ¼­¹ö°¡ ±¹³»¿¡¼­µµ ¸¹ÀÌ »ç¿ëµÇ¸®¶ó ¹ÏÀ¸¸ç ÀÌ ±ÛÀ» Àû´Â´Ù. ÇÊÀÚ°¡ Á¢ÇÒ ¼ö ÀÖ°í ¸¶À½´ë·Î »ç¿ëÇÒ ¼ö ÀÖ´Â À¯ÀÏÇÑ ½Ã½ºÅÛÀº ¸®´ª½ºÀ̱⠶§¹®¿¡ ¸®´ª½º¿¡¼­ÀÇ ¾ÆÆÄÄ¡ ¼­¹ö ¼³Ä¡/¿î¿µ ¹æ¹ý°ú »ç¿ëÀÚ È®ÀÎ(User Authentification)¿¡ ´ëÇØ °£´ÜÈ÷ ±â¼úÇÑ´Ù. ¾ÆÆÄÄ¡ ¼­¹ö ´ëºÎºÐÀÇ ±â´ÉÀº NCSA ¼­¹ö·ÎºÎÅÍ ¹°·Á¹ÞÀº °ÍÀ̱⠶§¹®¿¡ NCSA ¼­¹ö ¹®¼­¸¸À¸·Îµµ ÃæºÐÇÏÁö¸¸ ¾ÆÆÄÄ¡ ¼­¹ö ƯÀ¯ÀÇ ±â´É ¶Ç´Â È®ÀåµÈ °³³äµéÀÌ Á¸ÀçÇϹǷΠNCSA¿¡¼­ ã¾Æ ºÒ ¼ö ¾ø´Â ºÎºÐÀ» ÁÖ¸ñÇÏ°í ½Í´Ù. ´Ù¸¥ ¿î¿µÃ¼°è¿¡¼­ ¼³Ä¡, ¿î¿µÇÏ´Â ¹ýÀ̳ª ´õ ¸¹Àº Á¤º¸¸¦ ¿øÇÑ´Ù¸é ÀÌ ±Û ¸¶Áö¸·¿¡ ÀÖ´Â ¿©·¯ Âü°íÀÚ·áµéÀ» Á÷Á¢ ã¾Æº¸±â ¹Ù¶õ´Ù.

8.1 Áغñ»çÇ×

  • ¾ÆÆÄÄ¡ 1.1.1 ÀÌ»óÀÇ ¼Ò½º
  • Àڽſ¡°Ô ÇÊ¿äÇÑ ¸ðµâµé, ¿¹¸¦ µé¾î, °ü°èÇü µ¥ÀÌÅͺ£À̽º Æ÷½ºÆ®±×·¡½º 95¸¦ À§ÇÑ mod_auth_pg95.c µî
  • ¸®´ª½º ¸Ó½Å ÇÑ ´ë
  • IP ÁÖ¼Ò; DNS µî·ÏÀÌ µÇ¾î ÀÖ´Ù¸é ÁÁ°í ±×·¸Áö ¾Ê¾Æµµ ¼­¹ö ¿î¿µÀº °¡´ÉÇÏ´Ù.

8.2 ¼³Ä¡

1) ¾ÆÆÄÄ¡ ¼­¹ö ¼Ò½º Ç®±â ¸ÕÀú ¾ÆÆÄÄ¡ ¼Ò½º¸¦ /usr/local/etc¿¡ º¹»çÇÏ°í ¾ÐÃàÀ» Ǭ´Ù.

/usr/local/etc# tar xvzf apache_1.1.1.tar.gz

apache_1.1.1À̶ó´Â µð·ºÅ丮°¡ »ý±â¸ç ¾ÆÆÄÄ¡ ¼­¹ö¿Í °ü·ÃµÈ ¸ðµç ÆÄÀÏÀÌ Ç®·Á ³ª¿Â´Ù. ÀϹÝÀûÀ¸·Î ¾ÆÆÄÄ¡ ¼­¹ö ¹èÆ÷º»Àº httpd¶ó´Â µð·ºÅ丮 ¾Æ·¡¿¡ ¼³Ä¡µÇ¹Ç·Î ¸µÅ©¸¦ ¸¸µé¾îÁְųª httpd ¶ó´Â À̸§À» ¹Ù²Ùµµ·Ï ÇÏÀÚ.

/usr/local/etc# mv apache_1.1.1 httpd

¶Ç´Â

/usr/local/etc# ln -s apache_1.1.1 httpd

2) µð·ºÅ丮 ¼³¸í ¾ÐÃàÀ» Ç®¾ú´Ù¸é ´ÙÀ½°ú °°Àº ³»¿ëÀ» º¼ ¼ö ÀÖ´Ù.

-rw-r--r--     1 129   kmem  3738 Mar 13  1996 CHANGES
-rw-r--r--     1 129   kmem   2604 Feb 22  1996 LICENSE
-rw-r--r--     1 129   kmem   3059 Jul  3 15:24 README
drwxr-xr-x     2 129  kmem   1024 Jul  9 04:04 cgi-bin/
drwxr-xr-x     2 129   kmem  1024 Jul  9 04:04 conf/
drwxr-xr-x     2 129   kmem  1024 Jul  9 04:04 htdocs/
drwxr-xr-x     2 129  kmem   2048 Jul  9 04:04 icons/
drwxr-xr-x     2 129  kmem   1024 Jul  9 04:04 logs/
drwxr-xr-x     2 129  kmem   2048 Jul 10 00:02 src/
drwxr-xr-x     2 129  kmem   1024 Jul  9 04:05 support/

µð·ºÅ丮¸í   µð·ºÅ丮 ³»¿ë
cgi-bin      CGI ½ºÅ©¸³Æ® ¸ðÀ½
conf         ¾ÆÆÄÄ¡ ½ÇÇàÇÒ ¶§ ȯ°æ ÃʱⰪ ¼³Á¤ÆÄÀÏ
htdocs       ÀϹÝÀûÀÎ ¼­¹ö ȨÆäÀÌÁö µð·ºÅ丮
icons        ¾ÆÆÄÄ¡ ¼­¹ö ÀÚüÀûÀ¸·Î »ç¿ëÇÏ´Â ¾ÆÀÌÄÜ
logs         ¿©·¯ °¡Áö »ç¿ë ±â·Ï ÀúÀå ÆÄÀÏ
src          ¾ÆÆÄÄ¡ ¼Ò½º
support      ¼­¹öÀÇ º¸¾È¿¡ °ü·ÃµÈ ÇÁ·Î±×·¥µéÀÌ µé¾îÀÖ´Ù.

8.3 ÄÄÆÄÀÏ Àü src/Configuration ÆÄÀÏ ¼öÁ¤

¸ÕÀú Configuration.tmpl ÆÄÀÏÀ» ConfigurationÀ¸·Î º¹»çÇÑ´Ù.

/usr/local/etc/httpd/src# cp Configuration.tmpl Configuration

¿¡µðÅÍ·Î ConfigurationÆÄÀÏÀ» ºÒ·¯µé¿© ¼öÁ¤À» ½ÃÀÛÇØ º¸ÀÚ.

  • ÄÄÆÄÀÏ·¯ ¼³Á¤Àº gcc·Î µÇ¾î ÀÖÀ» °ÍÀÌ´Ù. ¸®´ª½º´Â ÀÌ ¼¼»ó¿¡¼­ Á¦ÀÏ ¸ÚÁø C ÄÄÆÄÀÏ·¯¸¦ ±âº»À¸·Î »ç¿ëÇÏ°í ÀÖ´Ù.
  • CFLAGS µî ÄÄÆÄÀÏ·¯ ¿É¼Ç ¼³Á¤ ¸ðµâ°ú °ü·ÃµÈ ¿É¼Çµéµµ ÀÌ°÷¿¡ Àû¾î ³Ö´Â´Ù.
    CFLAGS= -O2
    LFLAGS=
    EXTRA_LIBS=
    
  • ¿ì¸®´Â ¸®´ª½º¿¡ ¼³Ä¡¸¦ ÇϹǷΠ¸®´ª½º¿¡ ÇØ´çÇÏ´Â ºÎºÐÀÇ #Ç¥½Ã¸¦ ¾ø¾Öµµ ·Ï ÇÑ´Ù.
    AUX_CFLAGS= -DLINUX
    
  • ¸ðµâ ¼³Á¤

Configuration ÆÄÀÏ¿¡ ÀÖ´Â ¸ðµâÀÇ ¸ñ·ÏÀº È°¼ºÈ­µÇµç µÇÁö ¾Êµç »ó°ü¾øÀÌ ¸ðµÎ src µð·ºÅ丮¿¡ ¼Ò½º·Î Æ÷ÇԵǾî ÀÖ´Ù. ÇÏÁö¸¸ »õ·Î¿î ±â´ÉÀÇ ¸ðµâµé ¿¹¸¦ µé¾î Æ÷½ºÆ®±×·¡½º95¿ë ¸ðµâÀÎ mod_auth_pg95À» »ç¿ëÇϱâ À§Çؼ­´Â ÇØ´ç ¼Ò½º¸¦ src µð·ºÅ丮¿¡ Æ÷ÇÔ½ÃÅ°°í ConfigurationÆÄÀÏ¿¡µµ Æ÷ÇÔ½ÃÄÑ¾ß ÇÑ´Ù. ¸ðµâÀº ÆÄÀÏÀÇ À̸§À» º¸¸é ±× ±â´ÉÀ» ´ë°­ ¾Ë ¼ö ÀÖÀ¸¸ç ´õ ÀÚ¼¼È÷ ¾Ë°íÀÚ ÇÑ´Ù¸é http://www.apache.org/docs/modules.html¿¡¼­ ¸¹Àº Á¤º¸¸¦ ¾òÀ» ¼ö ÀÖÀ» °ÍÀÌ´Ù. ±âº»ÀûÀ¸·Î Á¦°øµÇ°í È°¼ºÈ­µÈ ¸ðµâÀº ´ÙÀ½°ú °°´Ù.

mime_module
access_module
auth_module
negotiation_module
includes_module
dir_module
cgi_module
userdir_module
alias_module
env_module
common_log_module

±âº»ÀûÀ¸·Î Á¦°øµÇ³ª »ç¿ëÀÚ°¡ ¸í½ÃÀûÀ¸·Î È°¼ºÈ­½ÃÄÑ¾ß ÇÏ´Â °ÍµéÀº ´ÙÀ½°ú °°´Ù.

asis_module
imap_module
action_module
agent_log_module
referer_log_module
config_log_module
cern_meta_module
status_module
info_module
anon_auth_module
db_auth_module
dbm_auth_module
msql_auth_module
digest_module
dld_module
cookies_module
proxy_module

8.4 ÄÄÆÄÀÏ

¸ðµâ¼³Á¤±îÁö ¸¶ÃÆÀ¸¸é ÀÌÁ¦ ÀúÀåÀ» ÇÏ°í, ./Configure¸¦ ½ÇÇà½ÃŲ µÚ ÄÄÆÄÀÏÀ» ÇÑ´Ù.

/usr/local/etc/httpd/src# ./Configure
Using 'Configuration' as config file
/usr/local/etc/httpd/src# make

8.5 ¼­¹ö ȯ°æ ¼³Á¤

ÄÄÆÄÀÏÀÌ ¼º°øÀûÀ¸·Î ¿Ï·áµÇ¾úÀ¸¸é src µð·ºÅ丮¿¡ httpd°¡ »ý¼ºµÇ¾úÀ» °ÍÀÌ´Ù. ÀÌÁ¦´Â ¼­¹öÀÇ È¯°æÀ» ¼³Á¤ÇØ ÁÖÀÚ. conf µð·ºÅ丮¿¡´Â 4°³ÀÇ È¯°æ ¼³Á¤ÆÄÀÏÀÌ ÀÖ´Ù. ±× Áß *.conf-dist ÆÄÀÏÀ» *.conf·Î º¹»çÇÏ°í ±× º¹»çº»À» °¡Áö°í ¼­¹öÀÇ È¯°æ¼³Á¤À» ÇØÁÖÀÚ.

/usr/local/etc/httpd/conf# cp access.conf-dist access.conf
/usr/local/etc/httpd/conf# cp httpd.conf-dist httpd.conf
/usr/local/etc/httpd/conf# cp srm.conf-dist srm.conf

access.confÆÄÀÏ ¼öÁ¤

Directory¿¡ ÁöÁ¤µÈ µð·ºÅ丮¸¦ ¼­¹öÀÇ È¨µð·ºÅ丮·Î ÁöÁ¤ÇÑ´Ù.

<Directory /usr/local/etc/httpd/htdocs>
Options Indexes FollowSymLinks

°¡´ÉÇÑ ¿É¼ÇÀº ´ÙÀ½°ú °°´Ù.

None : ¾î¶² ¿É¼Çµµ ÀÌ¿ëÇÒ ¼ö ¾ø´Ù.
All : MultiViews ¿É¼ÇÀ» ÀÌ¿ëÇÒ ¼ö ÀÖ´Ù.
Indexes : URL¿¡ ÁöÁ¤µÈ µð·ºÅ丮¿¡ (index.html °°Àº)ÁöÁ¤µÈ ÆÄÀÏÀÌ ¾øÀ»
          °æ¿ì µð·ºÅ丮ÀÇ ÆÄÀÏ ¸ñ·ÏÀ» º¸¿©ÁÖ´Â ¿É¼Ç.
Includes : ¼­¹öÃøÀÇ Ãß°¡ÀûÀÎ Á¤º¸¸¦ Á¦°øÇÒ ¼ö ÀÖ°Ô ÇÑ´Ù.
FollowSymLinks : µð·ºÅ丮ÀÇ ½Éº¼¸¯ ¸µÅ©¸¦ »ç¿ë °¡´ÉÇÏ°Ô ÇÑ´Ù.
ExecCGI : CGI ½ºÅ©¸³Æ®¸¦ ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇÑ´Ù.
MultiViews : All ¿É¼ÇÀÌ ¼³Á¤µÇ¾úÀ» ¶§¸¸ ÁöÁ¤µÈ ¸ñ·ÏÀÇ multiviews¸¦ Çã¿ëÇÑ´Ù.

# This controls which options the .htaccess files in directories can
# override. Can also be "All", or any combination of "Options", "FileInfo",
# "AuthConfig", and "Limit"
AllowOverride None
.htaccessÆÄÀÏÀº ¼­¹öÀÇ °¢ µð·ºÅ丮¿¡ ´ëÇÑ Á¢±ÙÀ» Á¦¾îÇϱâ À§ÇÑ °ÍÀ¸·Î µð·ºÅ丮¿¡ .htaccessÆÄÀÏÀÌ ÀÖÀ¸¸é ¼­¹ö Àüü¿¡ ÀÛ¿ëÇÏ´Â access.confº¸´Ù ¿ì¼±±ÇÀ» °¡Áø´Ù. ´ÙÀ½Àº .htaccessÆÄÀÏ¿¡ ´ëÇÑ Override¿¡ ´ëÇÑ ¿É¼ÇÀÌ´Ù.

None : .htaccessÆÄÀÏÀ» ÀÐÀ» ¼ö ¾ø°Ô ÇÑ´Ù.
All : ¸ðµç ÁöÁ¤¿¡ ´ëÇØ °¡´ÉÇÏ°Ô ÇÑ´Ù.
Options : ±ÔÁ¤µÈ µð·ºÅ丮 Çü½ÄÀ» ÄÁÆ®·ÑÇÏ´Â ÁöÁ¤ÀÇ »ç¿ëÀ» Çã¶ôÇÑ´Ù.
FileInfo : ¹®¼­Çü½ÄÀ» ÄÁÆ®·ÑÇÏ´Â ÁöÁ¤ÀÇ »ç¿ëÀ» Çã¿ëÇÑ´Ù.
AuthConfig : »ç¿ëÀÚ ÀÎÁõ ÁöÁ¤ÀÇ »ç¿ëÀ» Çã¿ëÇÑ´Ù. »ç¿ëÀÚ ÀÎÁõ º¯¼ö¸¦ »ç¿ëÇÑ´Ù.
Limit : È£½ºÆ® Á¢±ÙÀ» ÄÁÆ®·ÑÇÏ´Â ÁöÁ¤À» Çã¿ëÇÑ´Ù.

# Controls who can get stuff from this server.
order allow,deny
allow from all

</Directory>

order : ¼­¹ö°¡ ¾×¼¼½º ÄÁÆ®·ÑÀ» ¼öÇàÇÏ´Â ¼ø¼­¸¦ ³ªÅ¸³½´Ù. allow±â´ÉÀ» ¸ÕÀú
        ¼öÇàÇÏ°í, deny±â´ÉÀ» ¼öÇàÇ϶ó´Â °ÍÀÌ´Ù.
allow from : ³ª¿­µÇ´Â Áּҵ鿡 ´ëÇÑ ¾×¼¼½º ÄÁÆ®·ÑÀ» °¡´ÉÇÏ°Ô ÇÑ´Ù. »ç¿ë
             °¡´ÉÇÑ ÁÖ¼Ò´Â µµ¸ÞÀÎ ³×ÀÓ, È£½ºÆ® À̸§ ÁÖ¼Ò, È£½ºÆ® ip ÁÖ¼Ò,
             ipÁÖ¼ÒÀÇ ¾ÕºÎºÐ 3¹ÙÀÌÆ®, ¸ðµç ÁÖ¼Ò¿¡ ÇØ´çÇÏ´Â allÀÌ ÀÖ´Ù.
deny from : allow from°ú ¹Ý´ëµÇ´Â °³³äÀÌ¸ç »ç¿ë °¡´ÉÇÑ ÁÖ¼Ò´Â allow from
            °ú °°´Ù.
require : »ç¿ëÀÚ, ±×·ì¿¡ ´ëÇÑ Á¢±ÙÀ» ÅëÁ¦ÇÒ ¼ö ÀÖ´Ù.
 »ç¿ë¹æ¹ý : require entity en1 en2 ... enn
            entity¿¡ µé¾î°¥ ¼ö ÀÖ´Â °ÍÀº user, group, valid-userÀÇ ¼¼ °¡ÁöÀÌ´Ù.
user : ÁöÁ¤µÈ »ç¿ëÀڵ鿡°Ô¸¸ Á¢±ÙÀ» Çã¿ëÇÏ´Â °ÍÀ¸·Î ÁöÁ¤µÈ »ç¿ëÀÚ¿¡ ´ëÇÑ
       Á¤º¸´Â AuthUserFile¿¡¼­ ÁöÁ¤ÇÑ ÆÄÀÏ¿¡ ÀÖ´Ù.
group : ÁöÁ¤µÈ ±×·ì¿¡°Ô¸¸ Á¢±ÙÀ» Çã¿ëÇÏ´Â °ÍÀ¸·Î ÁöÁ¤µÈ ±×·ì¿¡ ´ëÇÑ Á¤º¸´Â
        AuthGroupFile¿¡¼­ ÁöÁ¤ÇÑ ÆÄÀÏ¿¡ ÀÖ´Ù.
valid-user : AuthUserFile¿¡ ÀÖ´Â ¸ðµç »ç¿ëÀÚ¿¡ ´ëÇØ Á¢±ÙÀ» Çã¿ëÇÑ´Ù.

# /usr/local/etc/httpd/cgi-bin should be changed to whatever your
# ScriptAliased CGI directory exists, if you have that configured.
cgi-binµð·ºÅ丮¿¡ ´ëÇÑ Options¸¦ ÁöÁ¤ÇÑ´Ù. ¿É¼ÇÀº htdocs ¼³Á¤ÀÇ ¿É¼Ç°ú °°´Ù.

<Directory /usr/local/etc/httpd/cgi-bin>
AllowOverride None
Options None
</Directory>

¼­¹öÀÇ »óÅ°á°ú¸¦ http://servename/statusÀÇ URL¿¡ Á¢±ÙÇÏ¸é º¼ ¼ö ÀÖ°Ô ÇØÁÖ´Â ¿É¼ÇÀÌ´Ù. 'allow from ¼­¹ö µµ¸ÞÀÎ ³×ÀÓ' ÀÇ Çü½ÄÀ¸·Î Á¢±ÙÀÌ °¡´ÉÇÏ´Ù.

#</Location /status>
#SetHandler server-status
#order deny,allow
#deny from all
#allow from .nowhere.com
#</Location>

±× ¿Ü Á¢±Ù Á¦¾î¿¡ ´ëÇÑ °ü·Ã »çÇ×À» Ãß°¡·Î ÀÛ¼ºÇÒ ¼ö ÀÖ´Ù.

httpd.conf

# ServerType is either inetd, or standalone.
ServerType standalone
¼­¹öÀÇ Å¸ÀÔÀ» ÁöÁ¤ÇÏ´Â °ÍÀ¸·Î standaloneÀº httpd µ¥¸ó ÇÁ·Î¼¼½º°¡ »ç¿ëÀÚÀÇ
¿äûÀ» ó¸®ÇÏ´Â °ÍÀÌ°í inetd´Â inetd µ¥¸ó ÇÁ·Î¼¼½º°¡ ó¸®ÇÏ°Ô ÇÏ´Â °ÍÀÌ´Ù.
standaloneÀÌ ´õ È¿À²ÀûÀÎ ¹æ¹ýÀÌ´Ù.

Port 80
½Ã½ºÅÛ¿¡ ÀÇÇØ ¹Ì¸® httpd¸¦ À§ÇØ ¿¹¾àµÈ Æ÷Æ® ¹øÈ£´Â 80¹øÀÌ´Ù. 0¿¡¼­ 1023
±îÁöÀÇ Æ÷Æ®¹øÈ£´Â ½Ã½ºÅÛ¿¡ ÀÇÇØ ¹Ì¸® ¿¹¾àµÇ¾î ÀÖ´Ù. ±× ÀÌ»óÀÇ Æ÷Æ®¹øÈ£¸¦
ÁöÁ¤ÇÏ¿© ÀϹݻç¿ëÀÚµµ httpdÀ» ¼³Ä¡, ¿î¿µ °¡´ÉÇÏ´Ù. http://aaa.bbb.ccc:8080/
µîÀ¸·Î »ç¿ëÇÒ ¼ö ÀÖ´Ù.

HostnameLookups on
À¥¼­¹ö¿¡ ´ëÇÑ Á¢±ÙÀ» µµ¸ÞÀÎ ³×ÀÓÀ̳ª ipÁÖ¼Ò (on) ¶Ç´Â ipÁÖ¼Ò¸¸À¸·Î(off)
Á¢±ÙÇÏ°Ô ÇÒ °ÍÀÎÁö¸¦ °áÁ¤ÇÏ´Â °ÍÀÌ´Ù.

# If you wish httpd to run as a different user or group, you must run
# httpd as root initially and it will switch. 
# User/Group: The name (or #number) of the user/group to run httpd as.
#  On SCO (ODT 3) use User nouser and Group nogroup User nobody
Group #-1
ServerTypeÀÌ standaloneÀÏ ¶§¸¸ Àû¿ëµÇ´Â °ÍÀ¸·Î ¼­¹ö°¡ »ç¿ëÀÚÀÇ ¿äû¿¡ ´ëÇؼ­
»ý¼ºÇÏ´Â child httpd ÇÁ·Î¼¼½º¿¡ ´ëÇÑ user id, group id ÀÌ´Ù. ÀϹÝÀûÀ¸·Î
½Ã½ºÅÛ¿¡¼­ »ç¿ëÇÏÁö ¾Ê´Â °Íµé·Î ÁöÁ¤ÇÏ´Â °ÍÀÌ ¹Ù¶÷Á÷ÇÏ´Ù. ½½·¢ 3.1±â¹Ý
¹èÆ÷º»¿¡´Â /etc/group¿¡ nogroup -2°¡ ÁöÁ¤µÇ¾î ÀÖ´Ù.

# ServerAdmin: Your address, where problems with the server should be
# e-mailed.
ServerAdmin you@your.address
¼­¹ö °ü¸®ÀÚÀÇ e-mail ÁÖ¼Ò¸¦ ÁöÁ¤ÇÑ´Ù.

# ServerRoot: The directory the server's config, error, and log files
# are kept in
ServerRoot /usr/local/etc/httpd
¼­¹öÀÇ Root µð·ºÅ丮¸¦ ÁöÁ¤ÇÑ´Ù.

# ErrorLog: The location of the error log file. If this does not start
# with /, ServerRoot is prepended to it.
ErrorLog logs/error_log
¼­¹ö¿¡¼­ ¹ß»ýÇÏ´Â ¿¡·¯¸¦ ±â·ÏÇÏ´Â ·Î±× ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù.

# TransferLog: The location of the transfer log file. If this does not
# start with /, ServerRoot is prepended to it.
TransferLog logs/access_log
¼­¹ö¿¡ ´ëÇÑ »ç¿ëÀÚµéÀÇ ¿¢¼¼½º Á¤º¸¸¦ ±â·ÏÇÏ´Â ·Î±×ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù.

# PidFile: The file the server should log its pid to
PidFile logs/httpd.pid
httpd µ¥¸ó ÇÁ·Î¼¼½ºÀÇ ÇÁ·Î¼¼½º id¸¦ ±â·ÏÇÏ°í ÀÖ´Â ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù.

# ScoreBoardFile: File used to store internal server process information
ScoreBoardFile logs/apache_status
¼­¹ö ÇÁ·Î¼¼½ºÀÇ Á¤º¸¸¦ ´ã°í ÀÖ´Â ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù.

# ServerName allows you to set a host name which is sent back to clients
# for your server if it's different than the one the program would get (i.e.
# use "www" instead of the host's real name).
#
# Note: You cannot just invent host names and hope they work. The
# name you define here must be a valid DNS name for your host. If you
# don't understand this, ask your network administrator.
#ServerName new.host.name
¼­¹öÀÇ µµ¸ÞÀÎ ³×ÀÓÀ» ÁöÁ¤ÇÑ´Ù. ÀÚ½ÅÀÇ ¼­¹ö°¡ µµ¸ÞÀÎ ³×ÀÓÀ» °¡ÁöÁö ¾Ê¾Ò´Ù¸é
³öµÐ´Ù. °¡Á³´Ù¸é È°¼ºÈ­ ½ÃÄÑÁÖ°í µµ¸ÞÀÎ ³×ÀÓÀ» ±âÀÔÇÑ´Ù.

# Timeout: The number of seconds before receives and sends time out
#  n.b. the compiled default is 1200 (20 minutes !)
Timeout 400
Ŭ¶óÀ̾ðÆ®°¡ Á¤º¸¸¦ ¹ÞÀ» ¶§±îÁö ¼Ò¿äµÇ´Â ´ë±â½Ã°£ÀÇ ÃÖ´ë °ªÀ» ÁöÁ¤ÇÑ´Ù.
³×Æ®¿öÅ©°¡ ÀÀ´äÀÌ ´ÊÀ» ¼ö·Ï ¼öÄ¡¸¦ ´Ã¸®´Â °ÍÀÌ ÁÁ´Ù.

# KeepAlive: The number of Keep-Alive persistent requests to accept
# per connection. Set to 0 to deactivate Keep-Alive support
KeepAlive 5
Á¢¼ÓµÈ ä·Î Ưº°ÇÑ ¿äûÀÌ ¾øÀ½¿¡µµ °è¼Ó ¿¬°áÀ» À¯Áö½Ãų ¼öÄ¡¸¦ ÁöÁ¤ÇÑ´Ù.

# KeepAliveTimeout: Number of seconds to wait for the next request
KeepAliveTimeout 15
KeepAlive°¡ ÁöÁ¤µÇ¾úÀ» ¶§ ´ÙÀ½ ¿äûÀ» ±â´Ù¸®´Â ¼öÄ¡¸¦ ÃÊ ´ÜÀ§·Î ÁöÁ¤ÇÑ´Ù.

# Server-pool size regulation. Rather than making you guess how many
# server processes you need, ¾ÆÆÄÄ¡ dynamically adapts to the load it
# sees --- that is, it tries to maintain enough server processes to
# handle the current load, plus a few spare servers to handle transient
# load spikes (e.g., multiple simultaneous requests from a single
# Netscape browser).
# It does this by periodically checking how many servers are waiting
# for a request. If there are fewer than MinSpareServers, it creates
# a new spare. If there are more than MaxSpareServers, some of the
# spares die off. These values are probably OK for most sites ---
MinSpareServers 5
MaxSpareServers 10
httpd µ¥¸óÇÁ·Î¼¼½ºÀÇ child ÇÁ·Î¼¼½º¿¡ ´ëÇØ MinSpare Serversº¸´Ù ÀÛÀ¸¸é »õ
·Î¿î ÇÁ·Î¼¼½º¸¦ »ý¼ºÇÏ°í MaxSpare Serversº¸´Ù ¸¹À¸¸é ¿©ºÐÀÇ ÇÁ·Î¼¼½º¸¦
Á×ÀÌ´Â(kill) °ÍÀ» ÁöÁ¤ÇÑ´Ù.

# Number of servers to start --- should be a reasonable ballpark figure.
StartServers 5
httpd ¼­¹ö¸¦ óÀ½ ½ÇÇà½Ãų ¶§ ¿©ºÐÀÇ ÇÁ·Î¼¼½º¸¦ »ý¼º½Ãų ¼öÄ¡¸¦ ÁöÁ¤ÇÑ´Ù.

# Limit on total number of servers running, i.e., limit on the number
# of clients who can simultaneously connect --- if this limit is ever
# reached, clients will be LOCKED OUT, so it should NOT BE SET TOO
LOW.
# It is intended mainly as a brake to keep a runaway server from taking
# Unix with it as it spirals down...
MaxClients 150
Çѹø¿¡ Á¢±Ù °¡´ÉÇÑ Å¬¶óÀ̾ðÆ®ÀÇ ¼öÄ¡¸¦ ÁöÁ¤ÇÑ´Ù.

# MaxRequestsPerChild: the number of requests each child process is
# allowed to process before the child dies.
# The child will exit so as to avoid problems after prolonged use when
# ¾ÆÆÄÄ¡ (and maybe the libraries it uses) leak. On most systems, this
# isn't really needed, but a few (such as Solaris) do have notable leaks
# in the libraries.
MaxRequestsPerChild 30
child ÇÁ·Î¼¼½º°¡ ÀÀ´äÇÒ ¼öÄ¡¸¦ ÁöÁ¤ÇÑ´Ù. ¾Æ¸¶ ¸®´ª½º¿¡¼­´Â »ó°ü ¾ø´Â µíÇÏ´Ù.

# Proxy Server directives. Uncomment the following line to
# enable the proxy server:
#ProxyRequests On
¾ÆÆÄÄ¡ ¼­¹ö´Â ÇÁ¶ô½Ã ¼­¹öÀÇ ±â´Éµµ Çϴµ¥ onÀ¸·Î È°¼ºÈ­ ½ÃÄÑÁÖ¸é µÈ´Ù.

# To enable the cache as well, edit and uncomment the following lines:
#CacheRoot /usr/local/etc/httpd/proxy
#CacheSize 5
#CacheGcInterval 4
#CacheMaxExpire 24
#CacheLastModifiedFactor 0.1
#CacheDefaultExpire 1
#NoCache adomain.com anotherdomain.edu joes.garage.com
ÇÁ¶ô½Ã ¼­¹ö¸¦ ÁöÁ¤ÇßÀ» ¶§ ÇÊ¿äÇÑ ¼³Á¤µéÀÌ´Ù.
Virtual È£½ºÆ® °ü·ÃµÈ ºÎºÐÀº mini FAQÀÇ Virtual-Web¹®¼­¸¦ Àо±â ¹Ù¶õ´Ù.

srm.conf

# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
DocumentRoot /usr/local/etc/httpd/htdocs
'access.conf'ÀÇ DocumentRoot ÁöÁ¤ºÎºÐ°ú µ¿ÀÏÇÏ´Ù.
# UserDir: The name of the directory which is appended onto a user's
# home directory if a ~user request is recieved.
UserDir public_html
½Ã½ºÅÛÀ» »ç¿ëÇÏ´Â ÀÏ¹Ý »ç¿ëÀÚµéÀÇ °³ÀÎ À¥ Ȩ µð·ºÅ丮¸¦ ÁöÁ¤ÇÑ´Ù.
$HOME/public_html µð·ºÅ丮¸¦ ¸¸µé¾î¼­ ȨÆäÀÌÁö¸¦ µî·ÏÇÒ ¼ö ÀÖ´Ù.
µð·ºÅ丮¸íÀº ¼­¹ö °ü¸®ÀÚ°¡ º¯°æÇÒ ¼ö ÀÖ´Ù.

# DirectoryIndex: Name of the file or files to use as a pre-written HTML
# directory index. Separate multiple entries with spaces.
DirectoryIndex index.html
ƯÁ¤ ÆÄÀÏÀ» ÁöÁ¤ÇÏÁö ¾Ê°í µð·ºÅ丮¸¸ ÁöÁ¤ÇßÀ» ¶§ ºÒ·¯µéÀÏ ¹®¼­¸¦ ÁöÁ¤ÇÑ´Ù.

# FancyIndexing is whether you want fancy directory indexing or
# standard
FancyIndexing on
µð·ºÅ丮ÀÇ ³»¿ëÀ» º¸¿©ÁÙ ¶§ ÁöÁ¤µÈ ¾ÆÀÌÄÜÀ¸·Î º¸¿©ÁÙ °ÍÀÎÁö ÁöÁ¤ÇÑ´Ù.

# AddIcon tells the server which icon to show for different files or
# filename extensions
AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
AddIconByType (TXT,/icons/text.gif) text/*
....(Áß·«)
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^
ÁöÁ¤µÈ ¾ÆÀÌÄÜ ¸ñ·ÏÀÌ´Ù.

# DefaultIcon is which icon to show for files which do not have an icon
# explicitly set.
DefaultIcon /icons/unknown.gif
¾ÆÀÌÄÜ ¸ñ·Ï¿¡ ¾ø´Â ÆÄÀÏÀ» º¸¿©ÁÙ ¶§ »ç¿ëµÉ ¾ÆÀÌÄÜÀ» ÁöÁ¤ÇÑ´Ù.

# AddDescription allows you to place a short description after a file in
# server-generated indexes.
# Format: AddDescription "description" filename
# ReadmeName is the name of the README file the server will look for
# by default. Format: ReadmeName name
#
# The server will first look for name.html, include it if found, and it will
# then look for name and include it as plaintext if found.
#
# HeaderName is the name of a file which should be prepended to
# directory indexes.
ReadmeName README
HeaderName HEADER
µð·ºÅ丮 ¸ñ·ÏÀ» º¸¿©ÁÙ ¶§ ¸ñ·ÏÀÇ ¸¶Áö¸· ºÎºÐ µÚ¿Í ¸ñ·ÏÀÇ ½ÃÀÛ Àü¿¡ º¸¿©ÁÙ
³»¿ëÀ» ´ã°í ÀÖ´Â ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù. ¿©±â¼­´Â ¸ñ·ÏÀÇ µÚ¿¡ README, ¸ñ·ÏÀÇ
óÀ½¿¡ HEADER¸¦ º¸¿©ÁÖ°Ô ÁöÁ¤µÇ¾î ÀÖ´Ù.

# IndexIgnore is a set of filenames which directory indexing should ignore
# Format: IndexIgnore name1 name2...
IndexIgnore */.??* *~ *# */HEADER* */README* */RCS
µð·ºÅ丮¸¦ Ãâ·ÂÇÒ ¶§ ¹«½ÃÇÒ ÆÄÀϵéÀ» ÁöÁ¤ÇÑ´Ù.

# AccessFileName: The name of the file to look for in each directory
# for access control information.
AccessFileName .htaccess
¼­¹ö°¡ µð·ºÅ丮¸¦ Ãâ·ÂÇÒ ¶§ Âü°íÇÒ ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù.

# DefaultType is the default MIME type for documents which the server
# cannot find the type of from filename extensions.
DefaultType text/plain
»ç¿ëÀÚÀÇ ¿äûÀ¸·Î °¢ ÆÄÀÏ¿¡ ´ëÇÑ ÇൿÀ» ÃëÇÒ ¶§ ¼­¹ö°¡ ¾ËÁö ¸øÇÏ´Â Çü½ÄÀÇ
ÆÄÀÏÀÏ °æ¿ì Ç¥½Ã Çü½ÄÀ» ÁöÁ¤ÇÑ´Ù.

# AddEncoding allows you to have certain browsers (Mosaic/X 2.1+)
# uncompress information on the fly. Note: Not all browsers support this.
AddEncoding x-compress Z
AddEncoding x-gzip gz
¾ÐÃà Äڵ忡 ´ëÇÑ ÀÎÄÚµùÁ¤º¸¸¦ ÁöÁ¤ÇÑ´Ù.

# Redirect allows you to tell clients about documents which used to exist
# in your server's namespace, but do not anymore. This allows you to tell
# theclients where to look for the relocated document.
# Format: Redirect fakename url
°¡»ó ÀÚ·áÆÄÀÏÀ» url¿¡ ÁöÁ¤µÈ ¹®¼­·Î Redirect ÇÑ´Ù.

# Aliases: Add here as many aliases as you need (with no limit). The for
# mat is Alias fakename realname
#Alias /icons/ /usr/local/etc/httpd/icons/
ÆÄÀϸíÀ̳ª µð·ºÅ丮¸íÀ» alias ÇÒ ¼ö ÀÖ´Ù. È°¼ºÈ­ ½ÃÄÑÁØ´Ù.

# ScriptAlias: This controls which directories contain server scripts.
# Format: ScriptAlias fakename realname
#ScriptAlias /cgi-bin/ /usr/local/etc/httpd/cgi-bin/
¼­¹ö¿¡¼­ »ç¿ëÇÏ´Â cgi¸¦ ´ãÀº µð·ºÅ丮¸¦ ÁöÁ¤ÇÑ´Ù. ÀÌ µð·ºÅ丮ÀÇ ÆÄÀϵéÀº
¼­¹ö¿¡ ÀÇÇØ cgi½ºÅ©¸³Æ®·Î ÀνĵȴÙ. È°¼ºÈ­ ½ÃÄÑÁØ´Ù.
AddTypeÀº ext¿¡ ÇØ´çÇÏ´Â È®ÀåÀÚ¸¦ °¡Áø ÆÄÀÏÀ» mime.types¿¡ ±â¼úµÈ mime
typeÇüÅ·ΠÁ¤ÀÇ ÇÏ´Â °ÍÀÌ´Ù.
Çü½Ä : AddType type/subtype ext1
AddHandler¿ª½Ã ext¿¡ ÇØ´çÇÏ´Â È®ÀåÀÚ¿¡ ´ëÇÑ Çൿ ¾ç½ÄÀ» Á¤ÀÇÇÏ´Â °ÍÀÌÁö
¸¸, ÀϹÝÀûÀÎ È®ÀåÀÚ¸¦ °¡Áø ÆÄÀϵ鿡 ´ëÇÑ Á¤ÀǸ¦ ÇÑ´Ù.
Çü½Ä : AddHandler action-name ext1

# To use CGI scripts:
#AddHandler cgi-script .cgi
¼­¹öÀÇ ¾î¶² À§Ä¡¿¡ ÀÖ´øÁö .cgi È®ÀåÀÚ¸¦ °¡Áø ÆÄÀÏÀº cgi-script·Î ÀνÄÇÏ°Ô
ÇÑ´Ù.
.pl, .sh µîÀÇ ´Ù¸¥ È®ÀåÀÚµµ Ãß°¡ÇÒ ¼ö ÀÖ´Ù.

# To use server-parsed HTML files
#AddType text/html .shtml
#AddHandler server-parsed .shtml
Server Side Includes (SSI)¸¦ »ç¿ëÇÒ ¶§ ÇÊ¿äÇÏ´Ù. SSI´Â HTMLÆÄÀÏ ¼Ó¿¡ ¾î
¶² ½ÇÇà ÇÁ·Î±×·¥ÀÇ °á°ú³ª ƯÁ¤ ÆÄÀÏÀ» Æ÷ÇÔÇÒ ¼ö ÀÖ°Ô ÇÑ´Ù.

# Uncomment the following line to enable ¾ÆÆÄÄ¡'s send-asis HTTP file
# feature
#AddHandler send-as-is asis
mime type sttpd/send-as-is¿¡ ´ëÇÑ ¼³Á¤ÀÌ´Ù.

# If you wish to use server-parsed imagemap files, use
#AddHandler imap-file map
mime type application/x-httpd-imap¿¡ ´ëÇÑ ¼³Á¤ÀÌ´Ù.

ÁöÁ¤µÈ media type¿¡ ´ëÇØ ÇØ´ç ½ºÅ©¸³Æ®¸¦ ½ÇÇà °¡´ÉÇÏ°Ô ÇÒ ¼ö ÀÖ´Ù.
Çü½Ä : Action media/type /cgi-script/location
Çü½Ä : Action handler-name /cgi-script/location
¿¹) Action text/html /cgi-bin/footer
CERN HTTP ¼­¹öÀÇ meta informationÀ» emulateÇØ ÁØ´Ù. ÀÚ¼¼ÇÑ ³»¿ëÀº
CERN HTTP ¼­¹ö¹®¼­¸¦ Àо±æ ¹Ù¶õ´Ù.

# MetaDir: specifies the name of the directory in which ¾ÆÆÄÄ¡ can find
# meta information files. These files contain additional HTTP headers
# to include when sending the document

#MetaDir .web

# MetaSuffix: specifies the file name suffix for the file containing the
# meta information.

#MetaSuffix .meta


# Customizable error response (¾ÆÆÄÄ¡ style)
# these come in three flavors
# ¼­¹ö ¿¡·¯¿¡ ´ëÇÑ ÀÀ´äÀ» ÁöÁ¤ÇØ ÁÙ ¼ö ÀÖ½À´Ï´Ù.
# °¢ ¿¡·¯ Äڵ忡 ´ëÇÑ ÀÀ´äÀ» cgi³ª ÀÏ¹Ý ÅؽºÆ®·Î ¸¸µé¾î¼­ »ç¿ëÀÚ¿¡°Ô
º¸¿©ÁÙ ¼ö ÀÖ´Ù. ¾î¶² ¼­¹ö¿¡ Á¢¼ÓÇϸé ÇØ´ç URLÀÌ ¾ø´Ù´Â µîÀÇ Çѱ۸޽ÃÁö°¡
°¡´ÉÇÑ °Íµµ ÀÌ°ÍÀ» ÀÌ¿ëÇÏ´Â °ÍÀÌ´Ù.
#    1) plain text
#ErrorDocument 500 "The server made a boo boo.
#  n.b.  the (") marks it as text, it does not get output
#
#    2) local redirects
#ErrorDocument 404 /missing.html
#  to redirect to local url /missing.html
#ErrorDocument 404 /cgi-bin/missing_handler.pl
#  n.b. can redirect to a script or a document using server-side-includes.
#
#    3) external redirects
#ErrorDocument 402 http://other.server.com/subscription_info.html
#

mime.types

mime.typesÆÄÀÏÀº ¼­¹ö¿¡ ÀÇÇØ ¸®ÅϵǴ ÆÄÀÏÀÇ ÆÄÀϸí°ú MIMEÇü½ÄÀ» ±â¼úÇÏ´Â
°Í¿¡ ´ëÇØ ±ÔÁ¤ÇÑ´Ù.
type/subtype ext1 ext2 ext3 ...À¸·Î ±â¼úµÇ¸ç ext1 µîÀº ÆÄÀϸíÀÌ ÇØ´ç È®ÀåÀÚ¸¦
°¡Á³À» ¶§ Ŭ¶óÀ̾ðÆ®¿¡°Ô Àü´ÞµÇ´Â È®ÀåÀÚÀÌ´Ù.
¿¹) video/mpeg                      mpeg mpg mpe

8.6 ¼­¹öÀÇ ½ÇÇà

À§¿¡¼­¿Í °°ÀÌ È¯°æ¼³Á¤À» ¸¶ÃÆÀ¸¸é, ¾ÆÆÄÄ¡ ¼­¹ö¸¦ ½ÇÇà½ÃÄѺ¸ÀÚ. ·çÆ® ±ÇÇÑÀ¸·Î

/usr/local/etc/httpd/src/httpd -f /usr/local/etc/httpd/conf/httpd.conf
¸¦ ½ÇÇàÇصµ µÇ¸ç /etc/ rc.d/rc.local µî¿¡ À§ÀÇ ³»¿ëÀ» »ðÀÔÇÏ¸é ºÎÆÃÇÒ ¶§ ÀÚµ¿À¸·Î ¾ÆÆÄÄ¡ ¼­¹ö°¡ ÀÛµ¿ÇÑ´Ù.

»ç¿ë °¡´ÉÇÑ ¿É¼ÇÀº ´ÙÀ½°ú °°´Ù.

-d serverroot º¸Åë httpd.conf¿¡ ÁöÁ¤µÈ ServerRoot º¯¼ö¿¡ ´ëÇÑ ÁöÁ¤À» ÇÒ
              ¼ö ÀÖ°Ô ÇÑ´Ù. µðÆúÆ®´Â /usr/local/etc/httpd ÀÌ´Ù.

-f config     ȯ°æ¼³Á¤ ÆÄÀÏÀ» ÁöÁ¤Çؼ­ ½ÃÀÛÇÏ°Ô ÇÑ´Ù. ÁöÁ¤µÈ configÆÄÀÏÀÌ
              / ·Î ½ÃÀÛÇÏÁö  ¾ÊÀ¸¸é ServerRoot¿¡ ´ëÇÑ »ó´ëÆнº·Î ÀνÄÇÑ´Ù.
              µðÆúÆ®´Â conf/httpd.conf ÀÌ´Ù.

-X            ³»ºÎÀûÀÎ Å×½ºÆ®¸¦ À§ÇØ ½Ì±Û ÇÁ·Î¼¼½º ¸ðµå·Î ½ÇÇà½ÃŲ´Ù.
              ¼­¹ö µ¥¸óÀº ¾Æµé ÇÁ·Î¼¼½º¸¦ forkÇÏÁö ¾Ê´Â´Ù.  À¥¼­ºñ½º¸¦ ÇÏ·Á¸é
              ÀÌ ¸ðµå¸¦ »ç¿ëÇÏÁö ¸»¶ó.

-v            httpdÀÇ ¹öÀüÀ» ÇÁ¸°Æ®ÇÏ°í ½ÇÇàÀ» ¸¶Ä£´Ù.

-?            httpdÀÇ ¿É¼ÇÀ» ÇÁ¸°Æ®ÇÏ°í ½ÇÇàÀ» ¸¶Ä£´Ù.

8.7 »ç¿ëÀÚ ÀÎÁõ(User Authentication)

»ç¿ëÀÚ°¡ ¹®¼­¿¡ Á¢±ÙÇÏ·Á ÇÒ ¶§ »ç¿ëÀÚ¸¦ È®ÀÎÇÏ´Â °ÍÀ» ¸»ÇÑ´Ù. ÀÌ°ÍÀº »ç¿ëÀÚÀÇ ¾ÆÀ̵ð¿Í Æнº¿öµå¸¦ È®ÀÎÇÔÀ¸·Î½á °¡´ÉÇÏ´Ù. »ç¿ëÀÚ ÀÎÁõÀ» À§Çؼ­´Â ´ÙÀ½ ȯ°æº¯¼ö¸¦ ÁöÁ¤ÇØ ÁÖ¾î¾ß ÇÑ´Ù. conf/access.confÆÄÀÏ¿¡ ÁöÁ¤ÇÏ¸é ¼­¹öÀÇ ¸ðµç µð·ºÅ丮¸¦ ´ë»óÀ¸·Î ÇÏ°í °¢ µð·ºÅ丮¿¡ conf/srm.confÀÇ Access FileNameº¯¼ö¿¡¼­ ÁöÁ¤ÇÑ ÆÄÀÏÀ̸§(º¸Åë .htaccess)ÀÌ Á¸ÀçÇÏ¸é ±× ÆÄÀÏÀ» ÂüÁ¶ÇÑ´Ù. conf/access.conf ÆÄÀÏÀÇ µð·ºÅ丮 ÁöÁ¤ºÎºÐ¿¡ AllowOverride AuthConfigÁöÁ¤À» ÇØÁÖ¸é ¾Æ·¡ÀÇ È¯°æº¯¼ö¸¦ »ç¿ëÇÒ ¼ö ÀÖ´Ù. access.confÆÄÀÏÀÇ ¼³¸íÀ» ÂüÁ¶Çϱ⠹ٶõ´Ù.

AuthType Basic

»ç¿ëÇÏ´Â ÀÎÁõÀÇ ¹æ½ÄÀ» ÁöÁ¤ÇÑ´Ù. ÇöÀç±îÁö Basic¸¸ ±¸ÇöµÇ¾î ÀÖ´Ù.

AuthName somedomain

»ç¿ëÀÚ ÀÎÁõÀ» È®ÀÎÇÏ´Â È®ÀÎóÀÇ À̸§À» ¹àÈù´Ù. ¿©·¯ À̸§À» ³ª¿­ÇÒ ¼ö ÀÖ´Ù.

AuthUserFile /web/users

ÀÎÁõµÈ »ç¿ëÀÚÀÇ µ¥ÀÌÅ͸¦ º¸°üÇÒ ÆÄÀÏÀ» ÁöÁ¤ÇÑ´Ù. supportµð·ºÅ丮¿¡ º¸¸é ¸î °¡Áö º¸¾È¿¡ °ü·ÃµÈ ÇÁ·Î±×·¥µéÀÌ ¼Ò½º ÇüÅ·ΠÁ¸ÀçÇÑ´Ù. ÀÌ°ÍÀ» make¸í·ÉÀ» ÁÖ¾î ÄÄÆÄÀÏÇÏ°í ³ª¸é ½ÇÇà °¡´ÉÇÑ ÆÄÀϵé Áß htpasswd¶ó´Â ¸í·ÉÀÌ »ý¼ºµÇ¸ç ÀÌ ¸í·ÉÀÌ »ç¿ëÀÚ¸¦ µî·Ï½ÃÅ°´Â ÀÏÀ» ¼öÇàÇÑ´Ù. /web/¿¡ ÁöÁ¤µÈ µð·ºÅ丮¿¡¼­ ../support/htpasswd -c users username ¶ó°í ÇØÁÖ¸é »ç¿ëÀÚ°¡ »ý¼ºµÇ¸ç »õ·Î¿î »ç¿ëÀÚ µî·ÏÀº -c ¿É¼ÇÀ» »©°í ¸í·ÉÀ» ÁÖ¸é µÈ´Ù. »ç¿ëÀÚ »èÁ¦´Â ÇØ´ç ÆÄÀÏ¿¡¼­ »ç¿ëÀÚ µ¥ÀÌÅÍ ºÎºÐÀ» »èÁ¦ÇØÁÖ¸é µÈ´Ù.

AuthGroupFile /web/groups

ÀÎÁõµÈ ±×·ìÀÇ µ¥ÀÌÅ͸¦ º¸°üÇÑ´Ù. ÀÌ ÆÄÀÏÀº Á÷Á¢ ¸¸µé¾î ÁÖ¸é µÈ´Ù.

 ¿¹)  group1: user1 user2 user3
      group2: user2 user5 user6

´ÙÀ½Àº /usr/local/etc/httpd/htdocs µð·ºÅ丮ÀÇ Á¢±Ù Á¦¾î¸¦ AuthUserFile¿¡ ÁöÁ¤µÈ »ç¿ëÀÚ¿¡ ´ëÇؼ­¸¸ Á¢±ÙÀ» Çã¿ëÇϵµ·Ï ¼³Á¤À» ¸¶Ä£ access.confÀÇ ³»¿ëÀÌ´Ù.

<Directory /usr/local/etc/httpd/htdocs>
Options Indexes FollowSymLinks
AllowOverride AuthConfig
order allow,deny
allow from all
AuthType Basic
AuthName liberty
AuthUserFile /usr/local/etc/httpd/conf/users
AuthGroupFile /usr/local/etc/httpd/conf/group
require valid-user
</Directory>

8.8 ¸®´ª½º ÆÄÀÏ ½Ã½ºÅÛ Ç¥ÁØ¿¡ µû¸£±â

¾ËÂ¥¿þ¾î¿¡ ÀÖ´Â ¾ÆÆÄÄ¡ 1.0 À» ¼³Ä¡ÇÏ¸é ¾ÆÆÄÄ¡ ½ÇÇà ÆÄÀÏÀ» Á¦¿ÜÇÏ°í´Â cgi-bin, conf, htdocs, icons, logs µîÀÇ µð·ºÅ丮°¡ ¸ðµÎ /var/lib/httpd¶ó´Â µð·ºÅ丮 ¾Æ·¡ ÀÖÀ½À» ¾Ë ¼ö ÀÖ´Ù. ¸®´ª½º ÆÄÀÏ ½Ã½ºÅÛ Ç¥ÁØ¿¡¼­´Â ½Ã½ºÅÛ ¿î¿µ µµÁß¿¡ °»½ÅµÇ´Â ÀÚ·áµé¿¡ ´ëÇؼ­´Â /usr ÆÄƼ¼Ç ¾Æ·¡ µÎ´Â °ÍÀ» ±ÇÀåÇÏÁö ¾Ê´Â´Ù. ƯÈ÷ htdocs, logs µîÀº ºó¹øÇÏ°Ô º¯È­ÇÏ´Â µð·ºÅ丮À̹ǷΠ/var¿¡ À§Ä¡ÇÏ°í ÀÖ¾î¾ß ÇÑ´Ù. ÀÌÀü ¾ÆÆÄÄ¡ ¼­¹ö¸¦ ¼³Ä¡Çß´Ù¸é ¿ì¼±Àº pkgtoolÀ» °¡Áö°í »èÁ¦¸¦ ÇÑ´Ù. ±×¸®°í /usr/local/etc/httpd¿¡ ÀÖ´Â °ÍµéÀ» ¸ðµÎ /var/lib/httpd·Î ¿Å±ä ´ÙÀ½ /usr/local/etc/httpd´Â ´ÜÁö /var/lib/httpd¿¡ ´ëÇÑ ¸µÅ©·Î ¸¸µé¾îµÎ´Â °ÍÀÌ ÁÁ´Ù. ÆÄÀÏ ½Ã½ºÅÛ Ç¥ÁØ¿¡ ´ëÇؼ­ Àß ¸ð¸£´Â »ç¶÷Àº ±×³É ³Ñ¾î°¡µµ ÁÁ´Ù.

8.9 ¸¶Ä¡¸ç

°¡Àå ÁÁÀº À¥¼­¹ö·Î ÀÎÁ¤µÇ´Â ¾ÆÆÄÄ¡ ¼­¹ö°¡ ´ÜÁö ¼Ò°³ ±Û Çϳª ¾ø´Ù´Â ÀÌÀ¯·Î ±¹³»¿¡¼­´Â °ÅÀÇ ¾²ÀÌÁö ¾Ê°í ÀÖ´Ù´Â °Í¿¡ ¾ÈŸ±î¿òÀ» ´À³¢¸ç ÀûÀº Áö½ÄÀ̳ª¸¶ ¾ÆÆÄÄ¡ ¼­¹ö¸¦ ¿î¿µÇغ» °æÇèÀ» ¹ÙÅÁÀ¸·Î ÀÌ ±ÛÀ» ½è´Ù. ÀÌÈÄ SSL(Secure Socket Layer) µîÀÇ ¾ÆÆÄÄ¡ ¼­¹öÀÇ ¸¹Àº ±â´ÉÀ» Á¤¸®ÇÑ ±ÛÀ» ÀÛ¼ºÇÒ ¿¹Á¤ÀÌ´Ù.


ID
Password
Join
A well-known friend is a treasure.


sponsored by andamiro
sponsored by cdnetworks
sponsored by HP

Valid XHTML 1.0! Valid CSS! powered by MoniWiki
last modified 2012-04-04 10:59:09
Processing time 0.0013 sec