网络安全与防火墙实验篇(1)

LinuxApachePGPNTPGPNTPGPPGPMD5sumHASHPGPVPNLinuxgnupgsnifferIISSSLNATE-mailTribeFloodNetwork(TFN)LinuxLinuxWindowsNTWindowsNTplistenNTNC(Netcat)IISWebIISFTPWinrouteWinRouteHTTPWinRouteFTPRedButtonNTUNIXPATHWebTrendsSecurityAnalyzerUNIXrNTNTFTPTELNETTCPWraLinuxgnupgtracertWS_pingpropackSNMPLinuxNmapISSinternetSCannerSYNFloodSmurfL0phtCrackWindowsNTJohntheRipperLinuxNetBusNetBusNetBussessionwallsessionwallsessionwallwindowsntwindowsntLinuxISSLinuxAntiSnifferSSHServerTelnetrloginSSHSSHFTPSSHLinuxLinuxWindowsNTtLinuxLinuxLinux1.rootlinux2.anyuser/usr/sbin/useraddanyuser3.anyuser/usr/sbin/passwdChangingpasswordforuseranyuserNewUNIXpasswordRetypeUNIXpassword4.anyuser5.linux/bin/cat/etc/passwdroot:x:0:0:root:/bin/bashbin:x:1:1:bin:/bindaemon:x:2:2:daemon:/sbin:mail:x:8:12:mail:/var/spool/mailnamed:x25:25:BindUser:/var/named:dnscache:x:410:405:dnscacheuser:/var/djbdns:/bin/truexfs:x:414:414:XFontServer:/etc/S11/fs:/bin/falsepostfix:x:415:416:postfix:/var/spool/postrix:mtsql:x:416:417MySQLserver:/var/lib/mysql:/bin/bashtest:x:501:501:condor:/home/condor:/bin/bashanyuser:x:502:506:zhengya:/home/julia:/bin/bash6.root7./bin/chmodo-r/etc/chmodLinux,.8.anyuser,/etc/9.Everyone,10.root,:hostpasswd(current)UNIXpassword:NewUNIXpassword:RetypenewUNIXpassword:Passwd:allauthenticationtokensupdatedsuccessfully:Apache::Apache:1.rootlinux2.web:host#rpm-qagrepapachehost#apache-1.3.9-43.Apache:host#psauxgrephttpd4.host#cd/5.acltest:mkdiracltest6.acltest,index.html:cdacltesttouchindex.html7.viindex.html:htmlheadtitleCreateanACL/title/headbodyThisisasecretpage/body/html8./etc/httpd/conf/:cd/etc/httpd/conf/9.access.conf,():Directory/acltestAllowOverrideAll/Directory10.,visrm.conf11.,Alias/acltest/acltest/12.httprestartApache/etc/rc.d/init.d/httpdrestart13.lynxWeblynx192.168.1.x/acltest/14.cd/acltest/acltest15.touch.htaccesshtaccess16..htaccess(),:AuthUserFile/apachepasswd/.htpasswdAuthGroupFile/dev/null/AUthNameAllowLocalAccessrequirevalid-user17.,Apache:mkdir/apachepasswd18.Apachewebuser1,/apachepasswd/.htpasswdhtpasswd-c/apachepasswd/.htpasswdwebuser1Newpassword:Re-typenewpassword:19.lynx/acltest/index.html,,Apache,,Apache;,PGPPGPPGPkeysPGPkeysKeyGenerationWinzradNext(sx@linux-online.com)xDiffle-Hellman/DSSNext2048NextpassphrasepassphrasepassphrasePGPNextSendmykeytotherootservernowNextFinishPGPkeysKeyProperties12SubkeysPGPkeysExportExportKeytoFile\\Teacher\sharestudentx(x)MicrosoftOutlookExpress(OutlookExpress)OutlookExpress--sx(x)--sx@linux-online.com,POP3/SMTP--192.168.0.14()\\Teacher\sharePGPkeysKeysImportSelectFileContainingOpenSelectkey(s)ImportSignAllowsignaturebeexportedKeyPropertiesUntrustedTrustedinvalidOutlookExpresshelloworldPGPencryptionCurrentWindowEncrypt,PGPencryptionencryptfromclipboardpassphraseDecryptPGPMessageWindowsNotepadpgpstudentx(x)Thisfileisencrypted.PGPPGPtoolsEncrypt/SignSelectFile(s)pgpstudentx.txtPGPKeySelectionDialogpassphrase.pgppassphrasepgpPGPLOG,EmailHASHmd5sumrootlinuxmd5testcd/mkdirmd5testmd5testcdmd5testmyfiletouchmyfilevimyfileHasanyonealteredthecontentsofthisfile?md5sumhash[root@md5test]#md5summyfilemd5summyfile.md5[root@md5test]md5summyfilemyfile.md5myfilemd5sumhashcatmyfile.md5catmyfile.md5910md5sum/etc/passwd/passwd.md5/etc/passwdhashpasswd.md5:catpasswd.md5hashtestLinux#useraddhashtestLinux#passwdhashtestChangingpasswordforuserhashtestNesUNIXpassword:RetypenewUNIXpassword:passwd:allauthenticationtokensupdatedsuccessfullymd5sum-cpasswd.md5,-chash,:PGPVPN::VPN,PGP:1.IP2.PGPPGPnet3.AddHostWizard,Next4.,Next5.Enforcesecurecommunications,Next6.Next7.IP,Next8.Usepublic-keycryptographicsecurityonly,Next9.Automatically,Next10.SelectKey...11.,OK12.Next13.Passphrase,14.UserManager,ciw,UserMustChangePasswordatNextLogon,1234.15.PGPnet,Add16.,IP17.PGPnet,Hosts,?18.FTP,ciw;,19.SA20.:Linuxgnupg::gnupgLinus:1.Linuxgnupg,RedHatlinux7.0;Linuxrpm-qagrepgnupggnupg-1.0.4-11,2.gnupg,Linus/usr/bin/gpg-gen-keygpg(GnuPG)1.0.4;Copyright(C)2000FreeSoftwareFoundation,Inc.ThisprogramcomessithABSOLUTELYNOWARRANTY.Thisisfreesoftware,andyouarewelcometoredistributeitundercertainconditions.SeethefileCOPYINGfordetails.gpg:Warning:usinginsecurememory!gpg:/home/zhuxg/.gnupg/secring.gpg:keyringcreatedgpg:/home/zhuxg/.gnupg/pubring.gpg:kdyringcreatedPleaseselectwhatkindofkeyyouwang:(1)DSAandE1Gamal(default)(2)DSA(Signonly)(4)E1Gamal(signandencrypt)Yourselection?3.1(DSAandELGamal)DSAkeypairsillhave1024bits.AbouttogenerateanewELG-Ekeypair.minimumkeysizeis768bitsdefaultkeysizeis1024bitshighestsuggestedkeysizeis2048bitsWhatKeysizedoyouwant?(1024)4.2048()Pleasespecifyhowlongthekeyshouldbevalid.0=keydoesnotexpiren=keyexpiresinndaysnw=keyexpiresinnweeksnm=keyexpiresinnmonthsny=keyexpiresinnyearsKeyisvalidfor?(0)5.0(0);y6.rdalname,emailpassphrase7.passphrase,:ciwcertified;,,.gnupg8.Linuxgpg-list-secret-keysLinuxgpg-list-keys9.gpg,Linusgpg-exportmachine2.ascasc,10.Linuxgpg-importmachine2.ascgpg-list-keys11.Linuxgpg-sign-keymachine2:machine2realnamepgp-list-sigs12.;Linuxeachothisis