  Domain Mini-HOWTO v0.6

  ũ <neufeld@physics.utoronto.ca>
  2000 1 9

  : <hjchj@nownrui.net>

     ڽ  Ʈ ϱ⸦   밳 
  ؾ߸ ϴ ϵ鿡     ִ. װ Ʈ 񽺿 
      Ѵ.
  ______________________________________________________________________

   

  1.  ..... 

     1.1    å  .
     1.2 ۱ 

  2. ϱ 

  3. Ʈ  ȹϱ 

  4. ϸ鼭

     4.1 ͳ ڸ ϱ 
     4.2 ϵ ġ غ
     4.3  ׽Ʈ 
     4.4  IP ϱ 

  5.   

  6.   ü ϱ 

     6.1 1 DNS 
     6.2 E-Mail
     6.3 Ʈ ȣ 
     6.4 FTP Ʈ ȣ
     6.5 Ŷ ͸

  7.  

     7.1  ַ ¾
        7.1.1 缳 Ʈ 󿡼  ϴ DNS, ISP 
        7.1.2.DNS ַ ʿ 缳 Ʈ󿡼   
        7.1.3  ο  1 DNS   
        7.1.4 ISP  ȣ Ǵ  Ʈ
        7.1.5  ű  DNS غ
     7.2 E-Mail ȣ    DNS
     7.3 E-Mail 
        7.3.1 sendmail  ع
        7.3.2 ٸ  α׷ ̿ 
     7.4 Ȩ  
     7.5 FTP 
     7.6 Ŷ ͸ 

  8.  ο  

     8.1 ȭ 
     8.2 SSH1 
     8.3 X 
     8.4 ũ  

  9. 

  10.  ؼ



  ______________________________________________________________________

  1.   .....

  1.1.     å  .

  ̰  ʰ     ִ.   ڼ  ͵
     ִٴ Ͱ, ߿    𸥴ٴ  ̸
   ΰڴ.     θ ̿  ִ  ϱ 
   ߰ ̳  , Ȥ ª ̶   
   ֱ ٶ. 


  1.2.  ۱ 

  Copyright (c) by Christopher Neufeld.    
  <http://www.linuxdoc.org/COPYRIGHT.html> LPD ̼ .



  2.  ϱ

  ̰  IP  ̸ پ ִ   Ǿ 
  ִ  ӽ̳ Ȥ   ȯ  ִ ȯ濡
    Ʈ  ϴ  ȳ̴.   
  IP ϰų θ Ʈ Ǵ ǻͿ ׸  
    ̴. ׷ ׷ ڵ  `` IP ϱ''
  ǿ   ⺻   Ҵ.


   IPּҷ  ǻ͵    ϴ    ¾
   Ե  Ǵ ǻ ü ͳݿ ϴ   
    ȴ. ó   ȹ  ϴ  Ŀ Ͼ 
   ̴   ̶    ̴.


    κ ϴ   Ǵ Ʈ ⺻ ȿ
   ̴. ̷ ͵ ܺ  Ȥ    ݿ
  ϱ  ̴. װ Ϻ  å ϴ  ƴ
  , Ϲ ڷκ ظ ̴  ϴ.


    1 Ÿ  ̱    ӵ ̴
  ̾   ұԸ Ʈ ǻ Ȥ ܺη ͸ 
    Ű ϰų Ȥ WWW, FTP Ʈ Ϸ ϴ 
  ǻͷ  ִ.     ڽ  Ʈ 
  Ϸ ϸ鼭 ӵ   Ϸ ϴ 쿡  
   ̴. 


      ο ϵ  ϴ   ̴.
  example.com    ̴. ̸   example.com   ϰ
  ڸ, ϵ IPּҸ ڿ θ , ϴ 
  ƴ϶ ͸  ΰڴ. 


    ȿ ִ κ  ٸ    ִ ͵̴.
   ο   ־ ⺻  ͵鸸 ̾Ƴ
  Ͽ. ̰ Ư 쿡     Ƿ
  Ƹ  Ѱ ̻ ٸ   ؾ   𸣰ڴ. 


     OS  Բ ϴ 쿡 ؼ ٷ ִ. 
   ڸ  ũ     ϴ
  ũž ȯ濡  Ʈ̷μ   츦 ٷ
  ̴.






  3.  Ʈ  ȹϱ

   ٸ  Ʈ   ְ,.   ϰ 
  ִ  ũž ӽŵ  ְ  ŽĿ̵ ݿ 
  ڸϰ  Ϲ   ǻ͵ ȿ  IP 
   ִ  ̴.ȿ  IP  ִ ǻ͵  
   `` ȣƮ'' Ī Ͽ Ÿ ̴.  
  Ϲ    ̴.



       +--------------+
       |              |               +---------------+
       | ISP-supplied |---------------| FTP server    |
       | router       |        |      +---------------+
       |              |        |
       +--------------+        |      +---------------+
                               |------| WWW server #1 |
                               |      +---------------+
                               |
                               |      +---------------+
                               |------| WWW server #2 |
                               |      +---------------+
                               |
                               ~
                               ~
                               |
                               |      +---------------+
                               |------| Private       |
                                      | Network       |
                                      | Gateway       |
                                      +---------------+
                                             |
                                             |
                                             |
                                             |
            +------------+                   |      +-------------------+
            | Desktop #1 |-------------------|------| Private server #1 |
            +------------+                   |      +-------------------+
                                             |
                   .      -------------------|--------        .
                   .                         |                .
                   .      -------------------|--------        .
                                             |
            +------------+                   |      +-------------------+
            | Desktop #N |-------------------|------| Private server #N |
            +------------+                          +-------------------+





    ʹ ISP (ͳ  ), FTP , WWW , 
  ׸ ``  Ʈ Ʈ''  Ҹ ǻͿ
  ܺη  IP ȣ ޹޴´. ׸ ũž̳ 缳  
  IP RFC 1918 <http://www.ietf.org/rfc/rfc1918.txt>  ޵ȴ.
   缳 Ʈ( ǻ͵ 缳 Ʈ Ʒ Ǵ) 
  ϱ   IP ȣ  ϴ ȣƮ Ʒ ִ 
  ٸ  ǻ͵  ʴ   Ǿ Ѵ. ׷  
  Ǿ ִ ̳  Ʈ 쿡 ׸ Ǵ 
  浹 Ű  ̴. Ʈ պ  ׷  迭
  ϸ  ̴. RFC   192.168.0.*  Ͽ  
  192.168.255.*    C Ŭ Ʈ̳ Ȥ 172.16.*.* 
  172.31.*.*  B Ŭ Ʈ, ƴϸ 10.*.*.* A Ŭ ּҸ
  Ҵϴ  ִ.    κ  ⸦  
  C Ŭ 缳 Ʈ  ̴. ׸ ͳ ڰ  
  IP ȣ  ϳ IP ȣ 10.1.1.9 Ʈ Ʈ̿  ͵
  Եȴ. (     ȿ IP ƴ   ϴ
  ȣ ̸  д.)  10.1.1.10 IP   FTP
   ϴ betty.example.com ؼ ٷ ̴. 


   ǻͿ ʿ ܺ IP ȣ  ޸϶.   
  ǻ͸ ܺ ٸ ǻͿ Ǵ ϳ IPּҰ ʿ ̴. 
  ̿   Ϳ  ־ų ο Ǵ IP ȣ
   ʴ´.   ͳ ڿԼ  迡 οϱ
      IPȣ    ̴.  ,
  ISPκ 8 IP ޹  繫 Ʈ  ǻ  
  3 4   Ʈ̿  ̾ IP ּ 
   Ҵ̾ Ʈ ڽſ ߰  ۿ .( Ų
  ʱ..... ̷......  T.T)


   Ʈ   ̿   ƴϴ. ׷ װ Ư 
  츦  κ  մ ̶   ִ. ̷
   ä    .

    Ȯ ϴ.     带   Ȯ ȹ
     ̶  ͳ ڷκ  IP  ´ٴ 
     ǻ ̽  缳   ص  ̴.

     Ʈ . ο ũ̼  Ʈ 
     ͳ ڿ Ŀ´̼  ߰ϱ⸦    .
     ʿ ϵ(ssh ftpd DNS  ǵ ̴  
     ϰ ȴ.)    DNS(  ) Լ  
     谡 ʿ  ʹ ٸ  ǰڴ.  DNS  
     IP ȣ ȣƮ ̸  ȴ. 

     ֿ ȿ Ͽ. 缳 Ʈ Ʈ̴  Ʈ  
      ũž  ǥ  νϴ ſ ü 缳 
     Ʈ Ͽ Ŷ ͸ϰų α ݿ   ǽ 
      ִ. ̰ η  Ŷ  ͸ ƴ  
     Ŷ شǴ ̴.    ũž ͳ̶
     Ҹ ܺθ  ͸    ̴. 

    ̵ ̼  ٸ ߿ ̴.  Ʈ  IP
     ּҵ  ϴ     ͵̴. 
     缳 Ʈ   ʰ ü Ʈ ο IP 
     ּҰ   ִ.   迡  ȣƮ 
      Ǿ  ̴.

     ͳ  .  缳 Ʈ  ǻ͵ 
     FTP, telnet, WWW ׸ ణ ָ  ä  
     ŽĿ̵ Ͱ ô ٸ 񽺵 ̿  ִ.
     ڵ ׵ ǻͰ ܺ  ʴ IP ȣ 
      ϸ鼭 ̴.


  ̷      ε ɼ ִ ͵ 
   .


      񽺴  Ʈ  ǻͿ ﰢ ̿  
       𸥴. ܺ ȣƮ  NTP  ġ Ŀ ŽĿ̵
     Ģ  ʴ 񽺸   ߰ Ѵ.  
     .shost  ܺ κ  ư Ȥ Ұϰ 
     , ο   ϰ Ѵ.

     Ʈ ϵ     . 缳 Ʈ Ʈ
      2 Ʈ ī, ܺη  Ʈ 缳 Ʈ 
     ּ 2 , ġ ʿ ϰ ȴ.

     
    缳 Ʈ  ǻͰ  ܺ ǻ͵   ǰ ϴ
         ƴϴ. ܺ ǻ͵    ó Ͼ
       Ʈ Ʈ̸  ܺ ȣƮ ῡ  α׸
      ̴. ̰  Ŷ  ϸ ȭ
        , װ Ȼ    
     Ѵ. ̿    ǿ  ϰڴ. 


    Ʈ  ־ ׷  ϰ  Ȳ
   ϰ ܺη ̴ Ʈ     ̴.  
     Ʈ   ̻   
  ̴.   ſ  ´ Ʈ ϱ ߴٸ, 
   ٸ κп     ߰ ϵ  ̴.


  Ư ̽,   ܺη   ƿ ʿ䰡 ٸ,
  ISP ö̵ ʹ  缳 Ʈ Ʈ̿ ִ ܺ 
  ̽ (꺸  )ٷ Ҽӵ   ̴.



  4. ϸ鼭 


  4.1.  ͳ ڸ ϱ 

     ִ  ̶  ̴. ſ 񽺸 
    ִ ü ߿  񽺵 ϴ üμ  
     ϶.  DSL    ̷ ʰ
       ̳ ǹ Ȥ ȯ  
     ִ.  輱   ּҿ  ޵ 
  ϶. DSL ӵ ġ Ÿ ݺѴ. ׸  
  ǻͿ   뿪,   , ׸ Ŵ  
  ǻ͸ ϴ ϵ      ϶. ׸
   󸶳  IPּҸ  ǻ͵鿡 Ҵ   
  ˾ ξ  ̴.  ڿԼ  IP ּҾ߸  
   ǻͿ   ִ ּҶ  ϵ ϶. 
  Ʈ  ٸ  Ǵ ӵ, ܺη Ǵ  뿪
  ϵ ϶.  ڰ ܺη  뿪  ִٸ, 
  Һڴ   ϰ  ̴. 


  ڵ ߿     ,     
    õϴ ü ϵ ϶. 뿪 ū 
  ˾ƺ ϰ, ο ΰ  ISP   ӵ
  ڷĿ´̼  Ȥ    Ȯ ̶ 
   ISP   Ͽ  ϰ   traceroute
      ʼ̴. ̰  ο ־ 󸶳  긦 
   Ǵ,     ش. 100 200
  и(õ 1 ) ̻  ð  ߱ ư 
   ̴. traceroute   ο Ʈ ȯ濡 
   ο α  ð ľϰ   ִ. 



  4.2.  ϵ ġ غ 

   ο    ڿ   ߴٸ
  ġ   ϵ ϶.  񽺸 ϱ  
  񽺸 ϴ ISP ȭ  Ͽ 񽺸 ûϰ  
  Ʈ ġ     ڸ θ  ִ. ׷
  Ͽ  Ͼ 䱸  ˸  ְ Ǵ ̴. 


  ISP ڰ   Ʈ ĶͿ IPȣ, ݸũ, εĳƮ 
  Ʈ , DNS  ּ, ׸  ǻ͵ Ͽ
  Ѱ 輱  ϵ ϶.  ( ڸ,  ڷ  
  :straight- through ̶ Ȥ :crossover RJ45 輱̶ ϴ 
  .....)


  ׽Ʈ  ǻ͸ غϰ, Ʈ  ġ  ó ξ. 
  ϴٸ,  ڰ ϱ  IP ȣ ݸũ ϰ 
   輱 ߾  ġ ׽Ʈ    ֵ . 



  4.3.   ׽Ʈ

  ׽Ʈ ǻ͸ ISP  ϵ ϶.   ISP  Ʈ 
  ping ؾ Ѵٴ Ϳ .  ׷ ʴٸ  ߸   
  traceroute    ̴.  traceroute   
  ϳ  ʾҴٸ װ  ׽Ʈ ǻ Ʈ 
  (default route, interface address, NIC drivers, DNS, etc.)  ߸Ǿٴ
   Ÿ. ϳ   δٸ װ  Ͱ ISP
     ʾ ǹ ̴. ϴ  
  ʾ   θ   ־ٸ   밳   
     ܺ ISP  ̴.


  4.4.   IP ϱ

   IP  ߰ ٸ ȣƮ 񽺿 ȣ  ſ
   Ѵ. װ DSL ̿   Ȥ ̺  
  10ȸ   ¸Դ  ȴ.    ׷ 
   Ұϰų Ȥ   ׷    
  ʴ´ٸ,   IP      ̴.  
  Ϲ ٷ ׷ ͵  ϳ  ִ.  ̳ ϸ 
   缳 Ʈ Ʈ ӽ ܺο 񽺰   
  ׷  ̶ ̴. 


   ù °,  װ  Ȯؾ߸ Ѵ.  ȸ 
      ܺο   ִ   
  ϰ ִ. װ η  http Ȥ FTP Ʈ Ŷ ͸
  ǽϱ ̴.    ٿũ, ũ ӵ  
  DSL̳ ̺ 𵩿  ٴ ͵ ݰ  ̴. ũ 
  ӵ FTP   ޷ȴ. 


    IP   ̶, ׸  ⸦ ٶٸ,
    IP ȣϴ DynIP <http://www.dynip.com/>, DynHOST
  <http://www.dynhost.com/>, Ȥ TZO <http://www.tzo.com/> ϰ
   ̴. ̿  ͵  ǻͿ  α׷μ ۵Ͽ
  ȸ  ϰ Ѵ.    IPȣ  
  DNS ̺ ο μ Ʈ ȴ.  ׵  ̸
   ̸    ִ.   ``example.dynip.com'' ̶
  ``example.dynhost.com''  Ȥ    1 DNS
  籹 ûϿ ޹  ִ. 밳 μ Ż.


  Domain Host Services<http://www.dhs.org/>    ȣ 񽺿
  ̴. װ͵ Ӱ ̸  Ʈ ϱ 
    ƺ ʴ  ã ̴.


     IP ϱ  ׷ ü  ϳ  ϰ
  ȴٸ, װ   ü ϴ    ϳ
  ۿ ̴.  Ʈ Ȥ FTP Ʈ ϱ  ȣ
    ƴϾٸ,  IP񽺸 ޱ   ū ϵ ƴϴ. 
     ü 1 DNS  ϰ  ̴. 
   ܺο  缳 Ʈ   亯 ϴ ̸
     ̴. ٸ  , E-mail   
    񽺿   ۿ  ̴.     ȸ
  ǵ  ޴ ̴.


   :  ܺο  IP    ȣ 
   ϱ⸦  ʴ´ٸ, ܺ    IP  
  ǻͿ ``drop box'' ϰ   IP ȣƮ װ IP 
       email   Ͽ Ͽ
    ִ.    ǻͿ ϱ⸦   
    IP ּҸ drop box  ٷ  IPּҷ slogin
   Ͽ ﰢ   ִ. ̰ ᱹ  IP ȣ ü 
    ϱ  ڵ ⺻ ǽϴ   
   ִٰ  ȴ.  



  5.   

    ܺο ڽ      Ȥ FTP 
  e-mail    ֱ⸦ ٶٸ,   ֻ  
  ͺ̽   ̸ ؾ߸  ̴.


    ̸ Կ ־   Ѵ. Ϲ ܾ
  Ȥ  κ Ϲ ĿƼϿ Ͽ ̰,  
   Ű  ٸ 湮ڸ ϰ ϴ Ӿ   
  ̴.  ̸ ĺ 26ڿ(ǼƮ ϰ) (̳
     .) ׸ 10 ڵ鸸   ִ.  
  ̸ з   ּ 26 ̵ ϴ. ̹ ϴ 
  ȸ Ʈ̵ ũ  ˷ ͵ Ͽ    
   ϶.  ߸       
  ̶,   Uniform Domain Name Dispute Resolution Policy
  <http://www.icann.org/udrp/udrp-policy-24oct99.htm> ̿϶ ̴. 


    ̹ ``.com'', ``.net'', and ``.org''   ֻ
    ߴ.   ϱ  ̸  
   װ ̹ ϵǾ ˾   .
  <http://www.icann.org/registrars/accredited-list.html>.


  ``.ca'', ``.de'', ``.uk''   õ ֻ  Ϸ, 
    ֻ  ͺ̽ ϴ   Ȯ϶.
  <http://www.iana.org/cctld.html>.


  ü  ù° ι° ߿ IP     
  ް, Ƿ ȹ(ٸ  ڴ    ٲٱ⸦ 
  ٶ  ̴.) ϰ,   ϰ  ̴. 
  Ͽ  Ƿ ȹ ϴ  ϰ ٸ, ׵鿡 
  ׵  ȿ   ϱ  ڹ  񽺸
  ̿   ˰ ϶.



  6.    ü ϱ

    񽺸 ϴ ISP ׵    񽺸 
  Ѵ. ̰   ٸ ,  Ϲ ũž Ȥ
    ý۵ ȣð Ҿ 񽺸 μ  ǳ
  񽺸 Ѵ. ̿  񽺵   ڿ   
  ̰, ׷   ϵ ȣ ϰ Ѵ. 
  ׷Ƿ   ڽſ  ´ 񽺸 ؾ߸ Ѵ.
  ̷ 񽺵 밳  Ѵ.:

     ο  1 DNS ѿ ؼ ``1 DNS ''
      .

      ؼ ``E-Mail''κ .

    Ȩ ø  ȣϴ  ؼ ``Ʈ ȣ''
      .

    FTP Ʈ   ȣ ȹ̶ ``FTP Ʈ ȣ''
     .

    Ŷ ͸    ``Ŷ ͸'' .

  ̰͵  ׿   ־ ⺻ ̼ 
  ΰ  ̴.  ISP ̵  ϳ ̻ 񽺸   
    񽺸 ̿ϴ ٸ  츦  ׷ Ȯ
  ϰ  ̴. ׷Ƿ   ϰų   ʿ 
  ̴.  ð  ̷ 񽺸 ̿ϴ  ־  
     ̴.  ȭ  Ѵٸ  ϰų Ȥ
  Ű ͵  ִ  ̿ϴ ISP   Ѵ.
  ̰ Ȼ ̽ ϴ ̴. ISP ڿ    
  ξ  Ȥ Ÿ ȴ. ISP  e-mail Ȩ  
  Կ ȣϸ鼭 ϳ ̻   ̹ ѼսŰ 
      ϳ ̻ (ũĿ ....) 
     ͸ ϰ ȣϴ   ׷ Ȼ ̽  ̴.



  6.1.  1 DNS 

  ܺ ο  example.com Ϸ   ɵ ͳݿ
       IP  踦  ã 
  õ  Ʈ ư ȴ. ̿   ڼ 
     Ѿ ̴.  κ ϰ  û 
  fred.example.com ƿ  ,   ̽  
  IPּҰ example.com Ͽ 1 DNS Ǿ ִ Ѵ.
   IP ּҴ fred.example.com  ϰ ȴ.


  ̰  ο  1 Ȥ 2 DNS  ̴.
    ̽ Ǿ ִ ̸ IP ּҴ Ʈ ַ
  <http://www.networksolutions.com/>   ѿ  ȴ.


     ISP  ȣõ 1 DNS  Ѵٸ, 
  ̰͵ ISP ϴ 2   ̴.  ϴ 
    Ʈ ο ܺη Ǵ ǻ͸ ߰  ִ.
   ISP Ͽ ο ǻͿ ׿   ̽ 
  ߰  䱸  ִ.


    ο  1 DNS      
   ٸ ǻ͸ ̿ ̴.    ͳ
   ̿Ѵٴ ̴. ׷    ISP  ϴ
    ̴.   Ʈ ܺη  ǻ͸ 
  ߰ϱ⸦ Ѵٸ,    ̽ Ʈ ؾ ϰ, 
  ణ ð  ۰Ʈ  ٷ  ̴. ̿  
  ϵ   ISP ġ ʰ barney.example.com ߰ϱ
   ̴.


   DNS ȣƮ ̿ δ   ̶   ִ. ֳ
  ϸ, Ű ISP ϴ ܼ ̺     1
   DNS  · .    ϱ 
  ̿  ڴ  DNS 񽺸 ̿ϰ ؾ Ѵ.  
  Granite Canyon<http://www.granitecanyon.com/>  񽺷 ̰
  ǰ ϴ.


  Ȥ   ο  1 DNS   
   ǵ ʿ  `` ַ ¾''  ϶. 
   缳 Ʈ  ַ  ϰ  ̴. װ 
   1 DNS  ISP   ̴.



  6.2.  E-Mail

    ISP Ͽ  ׵ ſ   ִ  
   ּҸ ־ ̴.    쿡 ̷ 񽺸
   ̿ϵ   ִ.    ͼ ISP
    ǿ뷮  ģٰų,  ڵ ڽ 
  POP3 Ŭ̾Ʈ ̿Ͽ ISP  Ͽ о߸ Ѵٴ ϴ
  츦 Ѵ. Ͽ   ڽ   ּҸ  
       ִ. ٽ ؼ  2 
      ְ,  ϴ      ִٴ
  ̴.


    ̿ϱ  ISP ̿Ѵٸ ϶!:

     װ ̳ Ȥ Ͻ  ̵  ٸ ҿ 
     б  ϴ    ̴.    ȣϱ
        ִ.

      ISP   ǹǷ  ڵ ־ 
      ų  ִ.

       ڿ   Ǹ,  ø⸦  
      ؾ  쵵 ִ.

     ο  ּҸ ʿ  , ISP 湮ؾ Ѵ.


     ϰڴٸ  ϶:

        ڵ ǰ  ISP ƿ 
      Ͽ    ũ     ִ.

       ּҸ   ų ų ص  
      ̴.

       Ʈ  Ŭ̾Ʈ ؾ ϰ, ϸ
      ּҸ ϴ   ڽŵ鿡 ƿ ϵ 
       ֵ ؾ Ѵ.


  ϳ      ȣƮϴ , 
   ּҸ ISP     ̴. ܺ Ʈ 
     ʿ  ڽ ISP   Ǵ
      ּҸ    ִ. ٸ  缳
  Ʈ   ּҸ    ִ. ̿   ణ
     ξ 뼺 ִ ̱⵵ ϴ.


       ּҸ  Ѵٸ, ``E-Mail ''
    б ٶ.


        ּұ ʿ ʴٸ 
  ``E-Mail     DNS'' ߿ ּ ϱ ٶ.



  6.3.  Ʈ ȣ

   ̿ϴ ISP ڽŵ    ҴϿ ſ 
  ̴.    ̿Ͽ  Ȥ  ܺη Ǿ ִ
  Ʈ  ǻ͸ ̿Ͽ  ̴.


   ISP    ̶  ϶:

       ־ 뷮 ʰ ʴ´ٸ  ũ 
      ʾƵ ȴ. ̰     ƴ϶  Ʈ
     湮 α׸    Ѵ.

       ܺη  뿪  ǻͿ  
        Ŭ ̴. ̿       ִ.

     CGI ũƮ Ÿ    Ʈ ʿ α׷
     ġϴ   Ͽ Ѵ.  Ʈ   
     뿪  ڽ Ʈ ġ 캸  ̴.


   ڽ   ̿ϱ ߴٸ ϶:

      ȣ ӽſ     ؾ  ̴.  
     ٷ  ø̼      ִ.

     ¼ ΰ , ٽ  ſ ī ȣ  ּ 
     Ż    𸥴.

        ƹ ISP ִ  ٴ  ̴.


   ISP    ־   ϵ ϰ ִٴ
   Ȥ ׿  ͵鿡 ؼ ׸ Ű澲  ƴϴ.  
   Ʈ 󿡼   ʿ Ѵٸ, ̰ ߿ 
  ȴ. ׸ ϰ ڸ, ̿  Ǵ  Ͽ  
  ٴ Ƿִ Ʈ   δ  ٰ . 


            ٸ
  ͳ Ͽ   ʿϴٰ Ǵ.  ̿   缳
  Ʈ Ʈ 񽺿ʹ ٸٴ  Ȼ   
  ε ϰڴ.



  6.4.  FTP Ʈ ȣ 

  ⺻ FTP ȣð WWW ȣ FTP CGI ũƮ   
  ʿ  ʴ ٴ  ϰ   ̴. ٷ ftpd
   Ȳ ƹ ͼ ڷḦ ø  ִ ε 丮 ʹ  
  ̸ 丮 ϴ Ͱ    ذ ̷ 
   ߿   ̴.  ISP ε带 ϴ  ̰
  FTP   ȿ ־  µ δٸ,   񽺸 
  ϴ   ̶ .


        ̸  FTP ȣ ϱ 
  Ѵٸ, ֱ  FTP  ϵ ϰ ׿   
  ϶. Ѱ ,  ̿  񽺸 ϴ  缳 Ʈ
  ȿ Ͱ ٸٴ   ΰ ʹ. ȿ ϶.


  wu-ftpd   Ϲ  ɼ  ε ϰڴ.:

    --disable-upload - ͸ ε 񽺸 ʿ   .

    --enable-anononly -  ڵ ǻ   ̵ 
      scp ϴ°  . 

    --enable-paranoid -   Ư  ̰ ǽɽ 
     ϴ   Ѵ.





  6.5.  Ŷ ͸

   ISP   Ȥ ܺο ڵ Ͽ ׵ Ʈ
  ۵Ǵ Ŷ ͸Ѵ. ̺  Ʈ Ȥ   Ʈ
   98 Ȥ 95 ũ   ׵ ϵ̺꿡 ִ  
  ܺ Ʈ  Գ Ǵ ó Ȳ ޱ⵵ Ѵ. 
  ̿  ̽鿡 ذå̶ ڵ鿡 ׷   ϴ
  ̰  ڵ ϵ ϴ  ͸Ͽ  
   ذϰ ִ.


  Ŷ ͸  ڽ ؼ ϴ   ̶   ִ. װ
   缳 Ʈ Ʈ ǻͿ ۵ϴ Ŀο ϰ 
     Ͼ   ȿ ó ϰ  ش.  
   ȭ ȿ ¾   ʿϴٴ   ̴.
  ׸ װ ǽð 󿡼    ̴. 


   Ŷ ͸  ο ϱ Ͽٸ, ``Ŷ ͸
  ''      ϶.




  7.   

  7.1.   ַ ¾

    Ʈ  ǻͰ ̸ε Ÿ  ֱ⸦
  ٶ ̴. ׸ ܺ   ip ּҸ ġ   ٴ
  ̸ ϱ⸦ ٶ ̴.  ׸ ϱ    ̴.


  7.1.1.  缳 Ʈ 󿡼  ϴ DNS, ISP 

  [  :   缳 Ʈ Ű ʴ  ؾ Ѵٸ
   ``ISP  ȣ Ǵ  Ʈ''  ϶.]

      ο  1 DNS  ϰ ȴ. 
    缳 Ʈ ǻͰ ٸ ǻͿ talk  ϱ⸦ 
    DNS  ̿ϰ ִ.   ISP  ܺη 
  Ű⸦ ϴ ǻ͵ IPּ  ˷ ־ Ѵ.  
   betty.example.com ̶ ǻ͸  FTP μ ܺο
  Ű⸦ Ѵٸ, ISP www.example.com ftp.example.com 
  betty.example.com ϵ   CNAME  ۼ   
  û϶. 

   缳 Ʈ Ʈ ӽ  DNS  ϶. ̰
  Ȼ ̸   DNS    ذμ ׷̵带 
  ϰ Ѵ. 

    缳 Ʈ Ʈ dns.example.com 踦 
  DNS  ϰ ̰ 192.168.2.1 IP  fred.example.com
   ˸ƽ  ϰڴ. Ȳ  ణ  ʿϴ. 
    HOWTO ׷  ٷ  ƴ϶ Ѵ. 

   BIND  Ŭ ͳ   ֱ  ٿε ޾
   Ѵ. װ BIND  Ʈ<http://www.isc.org/products/BIND/> ã
    ִ.    ؾ Ѵ.   /etc/named.conf
    Ͽ.


       ______________________________________________________________________
       options {
               directory "/var/named";
               listen-on { 192.168.1.1 };
       };

       zone "." {
               type hint;
               file "root.hints";
       };

       zone "0.0.127.in-addr.arpa" {
               type master;
               file "pz/127.0.0";
       };


       zone "1.168.192.in-addr.arpa" {
               type master;
               file "pz/1.168.192";
       };

       zone "example.com" {
               type master;
               notify no;
               file "pz/example.com";
       };
       ______________________________________________________________________

  츮 example.com   ߴٴ  ϶. ̰ 
  츮 ISP     ϰ ִٴ Ͱ . ̰
   ¾ ϴ     ʴ´. 缳 Ʈ  
   ǻ͵ dns.example.com  ַμ Ѵ. ׵
  ISP     ε鿡 Ͽ ŷڵ ϴ  
  ISP    ʿ䰡  ̴. ׷ ISP  
   缳 Ʈ  ǻ͵  IPȣ ؼ ƴ ٰ
  .  ڸ ISP   ƴ°  ܺη Ǿ
  ִ ǻ IP ȣ ̴. dns.example.com Ʒ ִ 缳
  Ʈ   ƴ϶. 

  /var/named ؿ   ϶.

  root.hints  BIND  ϴ ̴. Ȥ DNS HOWTO
  <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/DNS-HOWTO> 
  ȿ roo.hints  °Ϳ  ڼ  ִ.

  ______________________________________________________________________
  H.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.63.2.53
  C.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.33.4.12
  G.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.112.36.4
  F.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.5.5.241
  B.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.9.0.107
  J.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.41.0.10
  K.ROOT-SERVERS.NET.     6d15h26m24s IN A  193.0.14.129
  L.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.32.64.12
  M.ROOT-SERVERS.NET.     6d15h26m24s IN A  202.12.27.33
  I.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.36.148.17
  E.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.203.230.10
  D.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.8.10.90
  A.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.41.0.4
  ______________________________________________________________________


  pz/127.0.0   .:


       ______________________________________________________________________
       $TTL 86400

       @               IN      SOA     example.com. root.example.com. (
                                       1       ; Serial
                                       8H      ; Refresh
                                       2H      ; Retry
                                       1W      ; Expire
                                       1D)     ; Minimum TTL
                               NS      dns.example.com.
       1                       PTR     localhost.
       ______________________________________________________________________





  pz/1.168.192   :


       ______________________________________________________________________
       $TTL 86400

       @       IN      SOA             dns.example.com. root.dns.example.com. (
                                       1       ; Serial
                                       8H      ; Refresh 8 hours
                                       2H      ; Retry   2 hours
                                       1W      ; Expire  1 week
                                       1D      ; Minimum 1 day
                               )
                       NS      dns.example.com.

       1               PTR     fred.example.com.
                       PTR     dns.example.com.
                       PTR     mail.example.com.
       2               PTR     barney.example.com.
       3               PTR     wilma.example.com.
       ______________________________________________________________________


  ׸  缳 Ʈ  ǻͿ ϴ PTR ڵ
  ִ.   fred.example.com IP ּҴ 192.168.1.1̰ ̰ 
  dns.example.com mail.example.com ˸ƽ ȴ. 192.168.1.2
  IP ּҸ   barney.example.com̰ ٸ ͵鵵 ̴. 

  pz/example.com   .:

       ______________________________________________________________________
       $TTL 86400

       @               IN      SOA     example.com. root.dns.example.com. (
                                       1       ; Serial
                                       8H      ; Refresh 8 hours
                                       2H      ; Retry   2 hours
                                       1W      ; Expire  1 week
                                       1D      ; Minimum 1 day
                               )
                               NS              dns.example.com.
               IN              A               192.168.1.1
               IN              MX          10  mail.example.com.
               IN              MX          20  <ISP mail machine IP>.


       localhost               A           127.0.0.1
       fred                    A           192.168.1.1
                               A           10.1.1.9
       dns                     CNAME       fred
       mail                    CNAME       fred
       barney                  A           192.168.1.2
       wilma                   A           192.168.1.3
       betty                   A           10.1.1.10
       www                     CNAME       betty
       ftp                     CNAME       betty
       ______________________________________________________________________

  츮 缳 Ʈ ǻ͵ ܺη  IP鿡  
   ߴٴ  ϶. ̰  ISP   
  缳 Ʈ ǻͿ    ̴. ̰ ٽ ؼ 
  缳 Ʈ betty.example.com ܺη  fred  IP 
    ִٴ  ǹѴ.

  /etc/named.conf  ٿ ؼ ɼ  ϶.:

       listen-on { 192.168.1.2 };


  ̰    ܺο DNS ǿ ϴ° ϴ
  ̴.(ܺο  Ǵ ISP   ذ  ̴.)


  7.1.2.  DNS ַ ʿ 缳 Ʈ󿡼   

  [ :   缳 Ʈ   ̶, ``ISP 
    ȣ Ǵ  Ʈ''  ϶.]
  ̿     缳 Ʈ ŭ ۰ ׸ 
  ÷ ٲ   ϴ ̴.  DNS   
  ̽   ؾ ϴ° ̴. ׸ 
  ǻͿ  ַ   ٶ.  缳 Ʈ 
    ǻ͵  Ʈ Ʈ̰ Ǵ ׵ ȣƮ 
   DNS νϴ°  ̴. 缳 Ʈ ־
   ַǿ ־ ȣƮ ̺ Ǿ߸ Ѵ. 
  ̰ 缳 Ʈ   ǻ /etc/hosts  ȿ 
  ǻ IP ּҿ ̸ ϵǾ ־ Ѵٴ ̴.  
  ο ǻ͸ ߰  ְ ̸̳ IP ּҸ ڴ ٲ  
  ִ    ǻͿ  Ʈ ȴ. 

   ǿ ܺη  IPȣ ǻ  ݵ ISP
  . ׸  ˸ƽ(www ftp ) 󿡼 CNAME 
   ISP ϴ Ư  ̿ϰ ȴ.


  7.1.3.   ο  1 DNS    

   ܺη  Ʈ  ׸ 缳 Ʈ   
  ַ   ִ Ȳ̶   ʿ䰡  ̴.  
     ǻ͸ ̿Ͽ      ذϰ ʹٸ װ 
    ذ  ִ.  ǿ 缳 Ʈ Ʈ
  ӽ ο ܺ  û ó  ִ  ϰڴ.

     ִ  BIND 8.2.2  ִ Ȳ ϳ 
  û ϴ Ȳ  ٸ   û 亯 ϰ 
   . 츮  ַ  Ʈ IP ȣ  
   ʾұ   ܺ û, ׸ ؾ߸ ϴ
   û̶  ٸ   䱸  óϱ⸦ Ѵ. 
  ̰ BIND ̷  ``view'' Ű带  ߰  ְ
   ̴. ׷   ٸ     
    ذϰ  ̴.

  ù °, ``缳 Ʈ 󿡼  ϴ DNS, ISP '' 
   Ͽ 缳 Ʈ  ϶. ̰  Ʈ
   ַ ϰ Ѵ.

  ,  ܺη Ǿ ִ   DNS ϶. 
  ù °,  ͳ ڿ  IP 븮 óϰ ϶. 
   ǥ DNS CŬ ݿ ȯ  
   ʴ , Ǵ DNS Ŭ̾Ʈ Ҹ  ϵ Ű,
  RFC2317 並 . <http://www.ietf.org/rfc/rfc2317.txt>
   ڰ  IPϿ     ִٸ,  
  ׵鿡 ׵  -RFC ׵    ְ Ǵ Ϳ
    ϴµ    ʾҴ.-  䱸
   ؾ Ѵ.  ڰ ſ ӹ  ϰ
    8.1.1.10.in-addr.arpa.  ΰڴ. ڴ CNAME 
       ̴. 

  8.1.1.10.in-addr.arpa.     2H IN CNAME 8.8.1.1.10.in-addr.arpa.
  9.1.1.10.in-addr.arpa.     2H IN CNAME 9.8.1.1.10.in-addr.arpa.
  10.1.1.10.in-addr.arpa.    2H IN CNAME 10.8.1.1.10.in-addr.arpa.
  etc.

  1.1.10.in-addr.arpa   ̿  Ͽ ̴. ̿ 
   ؼ  ǿ ŷе ̴. 

    ڰ ſ  DNS    ִٸ ׵
      ϰ ġϴ    
  ϴ IP   DNS  ̺  CNAME   ̴.
   ׵ ſ ׷    ʴ´ٸ, ׵鿡 
   ߿ ܺη    ߰ϰų, ų, ̸
  ٲٴ   ûؾ Ѵ.   DNS ̺  ܺη Ǿ
  ִ DNS  ÿ Ͼ ʴ´ٸ,  񽺵 ָ ų
  ̰, ׷  ͵ ߸ ó ϰ  ̴.

    缳 Ʈ Ʈ̸ ܺ 䱸 Ȳ ϵ
   ǻ ι° ̸ ¾ؾ Ѵ.   Ʈ 
  ܺη Ǿ ִ ǻ͵ ܺ û ޾ óϴ 缳 Ʈ
  Ʈ ̿   ȣƮ IPּҸ 䱸Ѵ.

  ,  ܺ û   /etc/named.ext.conf  ° 
   ϶. 츮    Ÿ.:

       ______________________________________________________________________
       options {
               directory "/var/named";
               listen-on { 10.1.1.9; };
       };

       zone "." {
               type hint;
               file "root.hints";
       };

       zone "0.0.127.in-addr.arpa" {
               type master;
               file "pz/127.0.0";
       };


       zone "8.1.1.10.in-addr.arpa" {
               type master;
               file "ext/8.1.1.10";
       };

       zone "example.com" {
               type master;
               notify no;
               file "ext/example.com";
       };
       ______________________________________________________________________

  /var/named ؿ ִ  root.hints  pz/127.0.0  Ǵ 
  Ѵ. ext/8.1.1.10   .:


       ______________________________________________________________________
       $TTL 86400

       @       IN      SOA             fred.example.com. root.fred.example.com. (
                                       1               ; Serial
                                       10800           ; Refresh       3 hours
                                       3600            ; Retry         1 hour
                                       3600000         ; Expire        1000 hours
                                       86400 )         ; Minimum       24 hours
                       NS      dns.example.com.
       9       IN      PTR     fred.example.com.
                       PTR     dns.example.com.
                       PTR     mail.example.com.
       10      IN      PTR     betty.example.com.
                       PTR     www.example.com.
                       PTR     ftp.example.com.
       ______________________________________________________________________


  ext/example.com    ̴.:

       ______________________________________________________________________

       $TTL 86400

       @               IN      SOA     example.com. root.fred.example.com. (
                                       10021   ; Serial
                                       8H      ; Refresh 8 hours
                                       2H      ; Retry   2 hours
                                       1W      ; Expire  1 week
                                       1D      ; Minimum 1 day
                               )
                               NS              fred.example.com.
               IN              A               209.217.100.58
               IN              MX          10  mail.example.com.
               IN              MX          20  <ISP Mail Machine>.


       localhost               A           127.0.0.1
       fred                    A           10.1.1.9
       betty                   A           10.1.1.10
       dns                     CNAME       fred
       mail                    CNAME       fred
       www                     CNAME       betty
       ftp                     CNAME       betty
       ______________________________________________________________________


  缳 Ʈ Ʈ ̿ 2  ⵿Ѷ.  
  Ʈ  õ ũƮ ߰϶.

       /usr/sbin/named -u dnsuser -g dnsgroup /etc/named.conf
       /usr/sbin/named -u dnsuser -g dnsgroup /etc/named.ext.conf

     Ư   ``dnsuser'' װ ҼӵǾ ִ
  Ư  ׷ ``dnsgroup'' ߴٰ Ѵ.   ,
  ܺ ڰ     װ  , ڴ 
   ѵǴ  Ư   ã  ̴. /var/named
  丮   ϵ ``dnsuser''  Ϲ  
   ־  Ǵ°̴.

  缳 Ʈ  ǻʹ dns.example.com (츮 
  192.168.1.1 ּҸ )  Ӹַ .  
  ܺη  ǻʹ ܺ ̽ Ʈ Ʈ
  (츮  10.1.1.9 .) Ȥ ISP DNS    ִ.

  7.1.4.  ISP  ȣ Ǵ  Ʈ

      ȣƮ Ʒ ִ  Ʈ Ų.
    ǻ  Ҵ  ISP ǻ ̸ IP 
  ϵǾ ִ ϴ IPּҸ   ̴. ISP ſ
  ּ   ̻ IPּҸ  ξ ̴.   ڽ
  /etc/resolv.conf  ַ   ̷ Ѵ.:

       ______________________________________________________________________
       search example.com
       nameserver <DNS host 1>
       nameserver <DNS host 2>
       ______________________________________________________________________


    ִ ǻʹ Ʈ      ִ.



  7.1.5.   ű  DNS غ

     ο IP ű⸦ Ѵٸ    
  غ μ     ִ.

   IPȣ DNSlookup  ٸ ܺ Ǵ  IP
  ű⸦ ϰ, űڸ  ϱ⸦ Ұ̴.  Ʈ
   IPȣ ĳÿ ϰ  ̹Ƿ  û  
    IPȣ   ִ. ̿   ֱٿ 
  Ʈ 湮   ȸϰ ϴ  ȴ. ο
  湮,  ĳð Ǿ   鿡Դ ̿   
   ʴ´.  ϰ ǵ ϴ   ֻ 
   Ϸ翡   ۿ   ʴ ٴ Ϳٰ  DNS
  ֻ   ÿ ŵǰ ϱ  ð ߴ  
   ƴ϶  ִ.

  ű ۾ ־   ̶   Ʈ ϴ 
    ع ̴. Ȥ  ̴ κи̶.  IPȣ
  ٲ  ޵ǰ ׸  ٸ ο IPȣ ȴ.
  ̰    ̴.

    ο ISP Ͽ(Ȥ IP ȣ ο  ̿ϰ 
   ISP ״ ̿   ִ.) ó ؾ ϴ 
  1  2 DNS ϴ ̴. ̷ ۾ IP ű Ϸ 
   ִ  . ׵鿡 ڵ      TTL 
    ֹ϶. (5̸    ̴.  : ٵ TTL
    𸣰ڳ׿......     , ! ^^;;;) 
  DNS   TTL 86400  , ׷ϱ Ϸ ϴ  
   Ѵ.   ̰ͺ TTL  ⸦ Ѵٸ 
     ٸ ͵  ű  ̾ Ǵ. ñ 
  ̰  ̴.      TTL Nð
  Ǿ ִٸ, Nð    ű ۾ ϵ ϶.:

        ο  1 2 DNS Ʈ  
     ̽ ̷  Ѵ.  ۾ ϱ ּ Ϸ  
     ̽  װ ð ˷ Ѵ.

     ο 1 DNS    TTL  Ʈ  IP
        ־ Ѵ.

       Nð ȿ ۾  ƴٰ ϴ   
      TTL ӽѼ  ȴ. 

  ,   ű غ  Ǿ.  ǻ͸ ο IPּҷ 
  ϶.  ISP DNS ڵ尡 ׿ Բ ŵȴ. 5 ȿ
  ( ű   ª TTL)  ο Ʈ ̷.
   DNS   ,  Ѵٸ   ִ  
  ڽ  ű   ׷ ؼ ۿ TTL  ũ 
  Ҿ  ̴.


  7.2.  E-Mail ȣ    DNS

    `` ַ ¾''  MX ڵ Ʈ 
  ``mail.example.com'' ǻ͸  Ͽ ϴ.   ȣμ 
  켱  MX ڵ    Ʈ ޴´. ޼ 
  ٸ MX ڵ  ޾  Ѵ. ̷   1
   ޴ ǻͰ    ޽     ð
   ϵ Ų.   ־  fred.example.com
  ̶, mail.example.com ٸ ޴ ο  E-Mail 
  ϴ ǻ͸ .    ȣ ISP  
  Ѵٸ,  MX ڵ带 ISP ǻͷ   ִ.  
  ISP    MX ڵ带  ϵ ȿ 
     ִ.


  7.3.  E-Mail 

     Ͽ E-MAIL  Ͽ  ȣ  ̶, 
   缳 Ʈ 󿡼  ޾ Ʈ  ǻ 󿡼 
    ְ ϱ  Ư  Ͽ Ѵ.   ̴
  ޽ ȣƮ ƴ ǻͿ α ϴ   ڿ
   ޵  ä ȣƮ   𸥴.  ,
   Ǵ  ܺ  ̴ ǻ(װ͵ Ƹ  IP
  ڽ ũž ǻͿ ϱ⸦ ϴ PHB ɽŰ  װ
  Ϸ翡    ping      ̴.)
  ۵     semdmail   缳
  Ʈ  Ǿ Ѵ.  ٸ  ڵ鸵   ع
  ׽Ʈ ϱ⸦ ϴ  ִٸ  ÷ϰڴ.


  7.3.1. "sendmail"  ع

  ϳ ȣƮ   ٸ  ǻͿ а ϴ 
     Ǯ 丮  Ʈ 󿡼 а Ⱑ
  Ӱ ϴ ̴. 缳 ƮǰƮ ǻʹ 缳 Ʈ
  ü   ޴ ۾  ̴. ׸ Ʈ 
   Ǯ ̺꿡      ְ ٸ Ŭ̾Ʈ 
  Ʈ  ʴ ̻ 緮 ׷    ̴. 
   Ϲ  ö̶° ̶  ǵ  ʴ 
  Ƿ  缳 Ʈ Ʈ ӽ ޾Ƶ̴  Ǯ
  Ǿ ִ Ʈ ̺꿡   ϴ ̴. ̰ Ʈ 
   ڽſ  ϵ     ̰ Ư 
  ߿  ƴϴ.  Ǯ ̺ NFS   缳 Ʈ
  Ʈ ǻ  丮μ ϰų Ȥ     
  丮μ ؾ Ѵ.   Ǯ ̺갡 缳 Ʈ
  Ʈ ǻ  Ѵٸ  ǻͿ  Ʈ  ߻
    .  ̰ ٸ  ġѴٸ,  , Ʈ
  ǻͳ, Ȥ Ʈ  Ѱ ʾ ٿ  ϶.

  缳 Ʈ   ӽſ ,  Ǯ ȣƮ POP
  ġϰų Ȥ ٸ̿Ͽ  Ǯ    ִ.  ӽ 
      ޴ Ͱ ǵ  Ϳ  Ǿ
  Ѵ.   joeuser@example.com    ּҴ  Ӱ,
  barney.example.com  ǻ ̸ ƴ    ȣƮ
   Ǿ ִ ̴. ܺη  SMTP ȣƮ ο ּҸ
  ݼ۹  ִ ּҷ ۼϿ  ̴.

    缳 Ʈ  ϰ  ּҸ ۼϱ
    ؾ Ѵ.  ֱ  ҽ sendmail.org
   Ʈ <http://www.sendmail.org/>   ִ.   
  ̳ʸ  ʹٸ  ҽ ִ° cf/domain 丮 
  ް,   example.com.m4  ο  ϶.:

  ______________________________________________________________________
  divert(-1)
  #
  # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
  # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
  # Copyright (c) 1988, 1993
  #       The Regents of the University of California.  All rights reserved.
  #
  # By using this file, you agree to the terms and conditions set
  # forth in the LICENSE file which can be found at the top level of
  # the sendmail distribution.
  #
  #

  #
  #  The following is a generic domain file.  You should be able to
  #  use it anywhere.  If you want to customize it, copy it to a file
  #  named with your domain and make the edits; then, copy the appropriate
  #  .mc files and change `DOMAIN(generic)' to reference your updated domain
  #  files.
  #
  divert(0)
  define(`confFORWARD_PATH', `$z/.forward.$w+$h:$z/.forward+$h:$z/.forward.$w:$z/.forward')dnl
  FEATURE(redirect)dnl
  MASQUERADE_AS(example.com)dnl
  FEATURE(masquerade_envelope)dnl
  ______________________________________________________________________

  ̰ ``example.com''  Ѵ.    ȣƮ
  ǰ(缳 Ʈ Ʈ ӽ) 缳 Ʈ  ٸ 
  ӽŵ Ǿ ִ  sendmail.cf  ؾ Ѵ. 

      ҽ Ʈ  cf/cf, example.master.m4
  μ ϶.:

  ______________________________________________________________________
  divert(-1)
  #
  # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
  # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
  # Copyright (c) 1988, 1993
  #       The Regents of the University of California.  All rights reserved.
  #
  # By using this file, you agree to the terms and conditions set
  # forth in the LICENSE file which can be found at the top level of
  # the sendmail distribution.
  #
  #

  #
  #  This is the prototype file for a configuration that supports nothing
  #  but basic SMTP connections via TCP.
  #
  #  You MUST change the `OSTYPE' macro to specify the operating system
  #  on which this will run; this will set the location of various
  #  support files for your operating system environment.  You MAY
  #  create a domain file in ../domain and reference it by adding a
  #  `DOMAIN' macro after the `OSTYPE' macro.  I recommend that you
  #  first copy this to another file name so that new sendmail releases
  #  will not trash your changes.
  #

  divert(0)dnl
  OSTYPE(linux)dnl
  DOMAIN(example.com)dnl
  FEATURE(nouucp)
  FEATURE(relay_entire_domain)
  FEATURE(`virtusertable', `hash /etc/sendmail/virtusertable')dnl
  FEATURE(`genericstable', `hash /etc/sendmail/genericstable')dnl
  define(`confPRIVACY_FLAGS', ``noexpn,novrfy'')dnl
  MAILER(local)
  MAILER(smtp)
  Cw fred.example.com
  Cw example.com
  ______________________________________________________________________

    츮 ``expn''  ``vrfy''   Ұϰ ؾ Ѵ.
  ڴ ``expn'' ̿Ͽ ٸ  ( ܾ 
  ʴ±.....) װ ܺ      
  ``staff'', ``allstaff'', ``office''  ̸   ֱ ̴.
  ״ װ    н带     ̴.
  ( տ α ȭ     -    ``
  ο  ''  ܺ ڿ α Ʈ 
  ʴ°Ϳ  ϸ ϰڴ.)

    ؾ ϴ   example.slave.m4 ӵ
  ǻ͸  sendmail.cf  .

  ______________________________________________________________________
  divert(-1)
  #
  # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
  # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
  # Copyright (c) 1988, 1993
  #       The Regents of the University of California.  All rights reserved.
  #
  # By using this file, you agree to the terms and conditions set
  # forth in the LICENSE file which can be found at the top level of
  # the sendmail distribution.
  #
  #

  #
  #  This the prototype for a "null client" -- that is, a client that
  #  does nothing except forward all mail to a mail hub.  IT IS NOT
  #  USABLE AS IS!!!
  #
  #  To use this, you MUST use the nullclient feature with the name of
  #  the mail hub as its argument.  You MUST also define an `OSTYPE' to
  #  define the location of the queue directories and the like.
  #  In addition, you MAY select the nocanonify feature.  This causes
  #  addresses to be sent unqualified via the SMTP connection; normally
  #  they are qualified with the masquerade name, which defaults to the
  #  name of the hub machine.
  #  Other than these, it should never contain any other lines.
  #

  divert(0)dnl

  OSTYPE(linux)
  FEATURE(nullclient, fred.$m)
  Cm example.com
  ______________________________________________________________________

      ̿Ͽ sendmail.cf  ؾ Ѵ.:

       make example.master.cf example.slave.cf

  ׸  ϵ   ǻ͸ sendmail.cf  ̸ 
   ־ Ѵ.

  κ sendmail   /etc/sendmail ؿ  . 
  sendmail Ͽ virtusertable.db genericstable.db 2 ٸ 
   ϴ    ̴. ̿  Ư ϵ
  ̿Ͽ, ׵     ִ. ù° virtusertable.src
    .: 
       ______________________________________________________________________
       John.Public@example.com                 jpublic
       Jane.Doe@example.com                    jdoe@somemachine.somedomain
       abuse@example.com                       root
       Pointyhaired.Boss@example.com           #phb#@hotmail.com
       ______________________________________________________________________

  ̰ ο    ּ ̴. John.Public@example.com
      jpublic̶   Ѱ ִ 
  ǹѴ. Jane.Doe@example.com   ٸ   
  jdoe@somemachine.somedomain Ѱ ̰ ܺ ε  
  Ǻ   ǹѴ. abuse@example.com  ϵ
    root . ٸ  genericstable.src
  캸.:

       ______________________________________________________________________
       jpublic                                 John.Public@example.com
       janedoe                                 Jane.Doe@example.com
       whgiii                                  Pointyhaired.Boss@example.com
       ______________________________________________________________________


    Ʈ   ܺη   ִ Ϸ ̸ ٲٴ
  Ѵ. ̰  ߽   ּҸ ο Ǵ 
    ̸  jdoe@somemachine.somedomain  ٲٴ ۾
  Ѵ. ,  Makefile /etc/sendmail/ ȿ .:

       ______________________________________________________________________
       all : genericstable.db virtusertable.db

       virtusertable.db : virtusertable.src
               makemap hash virtusertable < virtusertable.src

       genericstable.db : genericstable.src
               makemap hash genericstable < genericstable.src
       ______________________________________________________________________

  make ⵿ sendmail   ְ ϴ ؽ  ϶. ׸
    ٲ Ŀ  ٽ make    sendmail ؾ
  Ѵٴ  ϶.


  7.3.2.  ٸ  α׷ ̿ 

  δ sendmail ϰ ִ.   ڽ ⸦ ϴ
     ֱ ٶ. ٽ ؼ  MTAs   Postfix,
  Exim, Ȥ smail    ڼ  ߿ ϰڴٴ ̴.
    ׷ α׷   ٸ    þ 
  ִ  ٰ Ѵ.


  7.4. Ȩ   

      Ʈ   缳 Ʈ 
  ܺο ̴   ¾ϰ ȴ.    缳 Ʈ
   ٸ ǻǸҽμ Ǵ ͺ̽ ϴ  ʿ
  ϴٸ,  Ȳ Ʈ  Ȼ    Ȳ̴. ׷
  Ȳ      ̴.

       WWW HOWTO ġ  ã 
   .   <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/WWW-HOWTO>
   ã  ִ. (׷ 츮 󿡼 KLDP ã  ǰ?) 


  7.5.  FTP 

  ٽ    ,  FTP  ܺη  ǻͿ߸ 
  , 缳 Ʈ Ʈ  ǻͿ   ̴. 
  FTP  Ű ۿ  ¾   ϴ. 
   ˷ Ȼ  ϱ  ֽ  ٿε ޾
  ġϵ ϶.   FTP ͸   ε带  
   ̶  Ϻ ɼ  Ѵٴ  .  
  ε  FTP α FTP ȣƮ  ʰ ϰ  
  ʿ ϴ ڸ scp,   Ʈ Ǿ  ׵ FTP
  ȣƮ  ־߸ ϴ        õѴ.  
  ̰ ڿ     ̰ Ÿ ̳ 鿡 
   `` ο  '' ϶.


  7.6.  Ŷ ͸  

  ``ȭ ''κп ڼ  ִ.


  8.   ο   

     ο      ̴. 
   κ ٷ 鿡 ִ.    ʹ ǰ, 
  ̽  ʹ ưԸ Ǿ ִٸ   ο
  ŸϿ ڽ ȯ  ̴. ׷ ¸   ȭ 
   ȿ ־  ϶ ̴. ׸  
  Ʈ  ͼ Ʈ      ⸦
  ϵ־.  ̶  ߿ ̴.   ʹ
  Ͽ,  ׵ ܺη   ȭ  Ʈ ͳ
  ܼϰ   ۿ   ˰ ִ. ̰  α ϴ
   ٴ . Ȥ  ׷ ϵ   ִ.  ϰ
   .

     Ʈ ܺηκ  ϰų, Ȥ  Ǫ
  ϴ   зѴ.  չ    
   ư  ۾ Ѵ. ׸ ü    Ѿ
  ̴.

   ǿ Ϸ ǹ `` ִ '' ϱ 
  ̴.  ISP  ڴ װ  ,   ִ
   ɼ ũǷ,  н带 ڿԼ  Ѵ. 
    ڰ  н(ڰ н带 ؾ
    ޿.)  ý ũĿ ˷   .   
      ȿ ־ Ͱ   ִ  
  Ͽ ؾ Ѵ. װ,  , Ȥ 缳 Ʈ
   IP ̿Ͽ ٸ Ʈ Ŷ μ    ߴ
     ϴ  ִ.

  8.1.  ȭ  

    ipchains  ŽĿ̵ , ,  ͸
  .  IPCHAINS-HOWTO   д  . ׶ ̰ Ʈ
  <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/IPCHAINS-HOWTO>
  ߰  е .  HOWTO ŽĿ̵ ϴ Ŀ 
  Ϻ,  ipchains   ױ ٷ ִ. 
  ܺ IP   ǻ͵ ȭμ  ִ.

  缳 Ʈ Ʈ ӽ ϰ  ŸƮ ũƮ 
  üũ϶.:

  1. ܺ ̴ ī尡 νĵȴ

  2. ipchains  ȭ ۵ȴ.

  3.  ۵ȴ.

  4. Ʈ   ⵿ȴ.

  ,     ýۿ, ȭ  rc.inet1 
  rc.inet2 ̿ ̷. 幰   ȭ  ۾ 
  Ͼٸ,  ޼  ̴ Ʈ   ⵿ϱ 
  ܺη  ̴ ȸ  ϶.

  ipchains  ȭ Ϲ    ϴ 
   ̽ Ŷ    Ȥ ܺ Ȥ ο
  ȭ   ̴. ̷  Ŷ ȭ  ȭȴ.
   , ̷ ۾ ȭ ø̼ ȭ ȣƮ  
  ִ     ź  ٿ  Ʈ
   ȴ. ҿϰԵ ̷ ͵ ȭ  ǹ̾
   ȴ. ipchains Բ ̷  ȭ ũƮ  
  ϵ   Ŷ ҽ  캸  ذ  ִ.
  ̰ /sbin/firewall.sh ũƮ ̴.:

  ______________________________________________________________________
  #! /bin/sh
  #
  # New firewalling script using IP chains. Creates a filtering router
  # with network masquerading.
  #

  # define a few variables

  IPCHAINS=/sbin/ipchains

  LOCALNET="192.168.1.0/24"   # the private network
  ETHINSIDE="192.168.1.1"             # fred.example.com's private IP #
  ETHOUTSIDE="10.1.1.9"               # fred.example.com's public IP #
  LOOPBACK="127.0.0.1/8"
  ANYWHERE="0/0"
  OUTSIDEIF=eth1                  # fred.example.com's private interface

  FORWARD_PROCENTRY=/proc/sys/net/ipv4/ip_forward

  #
  # These two commands will return error codes if the rules
  # already exist (which happens if you run the firewall
  # script more than once). We put the commands before "set -e"
  # so that the script doesn't abort in that case.

  $IPCHAINS -N outside
  $IPCHAINS -N portmap

  set -e                  # Abort immediately on error setting
                          # up the rules.


  #
  # Turn off forwarding and clear the tables

  echo "0" > ${FORWARD_PROCENTRY}

  $IPCHAINS -F forward
  $IPCHAINS -F input
  $IPCHAINS -F output
  $IPCHAINS -F outside
  $IPCHAINS -F portmap


  #
  # Masquerade packets from within our local network destined for the
  # outside world. Don't masquerade packets which are local to local

  $IPCHAINS -A forward -s $LOCALNET -d $LOCALNET -j ACCEPT
  $IPCHAINS -A forward -s $ETHOUTSIDE -d $ANYWHERE -j ACCEPT
  $IPCHAINS -A forward -s $LOCALNET -d $ANYWHERE -j MASQ

  #
  # Set the priority flags. Minimum delay connections for www, telnet,
  # ftp, and ssh (outgoing packets only).

  $IPCHAINS -A output -p tcp -d $ANYWHERE www -t 0x01 0x10
  $IPCHAINS -A output -p tcp -d $ANYWHERE telnet -t 0x01 0x10
  $IPCHAINS -A output -p tcp -d $ANYWHERE ftp -t 0x01 0x10
  $IPCHAINS -A output -p tcp -d $ANYWHERE ssh -t 0x01 0x10


  #
  # Anything from our local class C is to be accepted, as are
  # packets from the loopback and fred's external IP.
  $IPCHAINS -A input -s $LOCALNET -j ACCEPT
  $IPCHAINS -A input -s $LOOPBACK -j ACCEPT
  $IPCHAINS -A input -s $ETHOUTSIDE -j ACCEPT



  # We'll create a set of rules for packets coming from the big, bad
  # outside world, and then bind all external interfaces to it. This
  # rule will be called "outside"
  #
  # We also create a "portmap" chain. The sockets used by daemons
  # registered with the RPC portmapper are not fixed, and so it is
  # a bit difficult to set up filter rules for them. The portmap
  # chain is configured in a separate script.


  #
  # Send packets from any outside interface to the "outside"
  # rules chain. This includes the $OUTSIDEIF interface and any
  # ppp interfaces we create for dialout (or dialin).

  $IPCHAINS -A input -i ${OUTSIDEIF} -j outside
  $IPCHAINS -A input -i ppp+ -j outside


  ##################################################
  #
  #  Set up the "outside" rules chain              #
  #
  ##################################################

  #
  # Nobody from the outside should claim to be coming from our localnet
  # or loopback

  $IPCHAINS -A outside -s $LOCALNET -j DENY
  $IPCHAINS -A outside -s $LOOPBACK -j DENY

  #
  # No packets routed to our local net should come in from outside
  # because the outside isn't supposed to know about our private
  #  IP numbers.

  $IPCHAINS -A outside -d $LOCALNET -j DENY

  #
  # Block incoming connections on the X port. Block 6000 to 6010.

  $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 6000:6010 -j DENY

  #
  # Block NFS ports 111 and 2049

  $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 111 -j DENY
  $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 2049 -j DENY
  $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 111 -j DENY
  $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 2049 -j DENY

  #
  # Block XDM packets from outside, port 177 UDP

  $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 177 -j DENY


  #
  # Block the YP/NIS port 653
  $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 653 -j DENY

  #
  # Don't bother logging accesses on TCP port 80, the www port.

  $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 80 -j DENY

  #
  # Accept FTP data and control connections.

  $IPCHAINS -A outside -p TCP -s $ANYWHERE 20:21 -d $ANYWHERE 1024: -j ACCEPT

  #
  # Accept ssh packets

  $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE ssh -j ACCEPT

  #
  # Accept DNS packets from outside

  $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 53 -j ACCEPT
  $IPCHAINS -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 53 -j ACCEPT

  #
  # Accept SMTP from the world

  $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 25 -j ACCEPT

  #
  # Accept NTP packets

  $IPCHAINS -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 123 -j ACCEPT

  #
  # Accept no tap ident packets, we don't use them

  $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 113 -j DENY

  #
  # Turn off and log all other packets incoming, TCP or UDP, on privileged ports

  $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE :1023 -y -j DENY
  $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE :1023 -j DENY

  #
  # Check against the portmapper ruleset

  $IPCHAINS -A outside -j portmap


  ##############################################
  #
  #    End of "outside" rules chain            #
  #
  ##############################################


  #
  # Block outgoing rwho packets

  $IPCHAINS -A output -p UDP -i $OUTSIDEIF -s $ANYWHERE 513 -d $ANYWHERE -j DENY

  #
  # Prevent netbios packets from leaving

  $IPCHAINS -A output -p UDP -i $OUTSIDEIF -s $ANYWHERE 137 -d $ANYWHERE -j DENY
  #
  # Turn on forwarding

  echo "1" > ${FORWARD_PROCENTRY}
  ______________________________________________________________________


  ȭ ܺο  Ŷ ϴ  ƴ϶   
  Ʈ  rwho netbios  Ʈ   Ŷ鵵 
  Ѵ.

  ̸  ξ ϴµ Ʈ Ģ ణ ٸ. װ 
  Ʈ ڽ ϵ Ʈ    Ʈ  ִ
  ϱ ̴. Ư   Ǵ Ʈ  RPC 
   ٲ  ٲ  ְų Ȥ ׵ ⵿  ȯ  
  ٲ  ִ. ̿   ũƮ /sbin/firewall.portmap.sh
   Ʈ   Ģ  ִ.

       ______________________________________________________________________
       #! /bin/sh
       #
       ANYWHERE=0/0

       IPCHAINS=/sbin/ipchains

       $IPCHAINS -F portmap

       # Rules for preventing access to portmapped services by people on the outside
       #
       /usr/bin/rpcinfo -p | tail +2 | \
               { while read program vers proto port remainder
                 do
                       prot=`echo $proto | tr "a-z" "A-Z"`
                       $IPCHAINS -l -A portmap -p $prot -s $ANYWHERE -d $ANYWHERE $port -j DENY || exit 1
                 done
               }
       ______________________________________________________________________

  츮  Ʈ  Ŷ ƿ   ʿ䰡 
  Ʈ ü  ܺο ƿ ͸ ȮѴ.

  ȭ  α״ kern.info Բ ϴ klogd Ͽ ǽɽ ͵ 
  Ͽ . ̰ Ϲ  õ ġ ڽó  ɴ. 

  , 츮 ̷ ͵  ˰ Ǿ.츮 ý ۵Ǵ  
      Ȯϴ  . ׷Ƿ 츮 츮
       ʿ䰡 ִ.:

  ______________________________________________________________________
  #! /bin/sh
  #
  # Get the network started, securely
  #
  #
  /etc/rc.d/rc.inet1              # Configure the network interfaces
                                  # and set up routing.
  /sbin/firewall.sh || { echo "Firewall configuration failed"
                         /sbin/ifconfig eth1 down }

  /sbin/ipchains -I outside 1 -j DENY     # Deny all incoming packets

  /etc/rc.d/rc.inet2              # Start the network daemons

  sleep 5                         # Let them stabilize

  # Secure the portmapped services
  /sbin/firewall.portmap.sh || { echo "Portmap firewall configuration failed"
                                 /sbin/ifconfig eth1 down }

  /sbin/ipchains -D outside 1       # Allow incoming packets
  ______________________________________________________________________

  eth1  ܺη  IP Ҵް ִٰ .  ipchains
  Ģ  Ͽٸ,  ޽  ̴. ``ܺ'' ü
  ȭ 񽺴 Ʈ 񽺰 ⵿Ǳ     
  Ģ̹Ƿ Ʈ   ⵿Ǳ   Ŷ ź ̴.
  Ʈ 񽺰 ȭ  ϸ, ܺ ü νϴ ̴.


  8.2.  SSH1 

      OpenSSH   ϴ Ư¡  ϳ 
   ʴ´. ׷ OpenSSH  Ȱ ǰ Ƿ, ̰
   ٲ  ִ κ̴.  ִ ٷο Ư¡  scp, ssh,
  slogin  rcp, rsh, rlogin  ̸ ٲپ, rcp, rsh, rlogin 
   α׷ ssh Ŭ̾Ʈ α׷ ٲ, sshd ۵ ̴
     ϴ   ̴. rsh ϸ  ϴ  
  ssh Ŭ̾Ʈ α׷ Ͽ ڵ    ذ
   ִ ̴.  ̵ ũƮ, rdist   sshd ۵ϴ
   Ʈ   ۾   ִ. ׷ ʹ 
  ȣȭǾ  ̰  Ȯ Ǵ ̴.  

   Ʈ<http://www.ssh.org/> ssh1 ϰ, װ Ͽ
  ȣȭ  r-α׷(rsh, rlogin, rcp ) ü϶. ,
     ϵ /usr/lib/rsh  ְ, ssh Ű 
   ϶.:


        ./configure --with-rsh=/usr/lib/rsh/rsh --program-transform-name='s/^s/r/' --prefix=/usr


      ġϰ Ѵ. 缳 Ʈ Ʈ̿ 
  sshd    Ʈ  ̴.:

       ListenAddress 192.168.1.1       # fred's internal IP
       IgnoreRhosts no
       X11Forwarding yes
       X11DisplayOffset 10
       RhostsAuthentication no
       RhostsRSAAuthentication yes
       RSAAuthentication yes
       PasswordAuthentication yes

   /etc/sshd_config  ȿ ٸ Ʈ ؾ߸ ϰ  ̴. 
  ׷  ʵ带 ٲ ʵ .    ȿ  
   Ʈ  ִٸ,  Ʈ    /etc/sshd_config.ext
   ܺ Ʈ   ־.  Ͽ    ʵ 
  Ͽ. :``ListenAddress'' 缳 Ʈ IP ܺη  
  ִ ̸ üϴ ̴.  10.1.1.9 fred.example.com
  ٲٴ  ְڴ. ׸ ``PasswordAuthentication'' ``no'' ض. 
   Ʈ ⵿ϴ ũƮ, sshd 2 ϵ ϶.  

       /usr/sbin/sshd

   , ٽ   

       /usr/sbin/sshd -f /etc/sshd_config.ext

   ̴. 

  ̰ 2 sshd  ⵿Ų. ϳ  ̽ α 
  н带 üũ ٸ  ܺ ̽ RSAŰ  α
  ϱ  ϰ Ѵ.

  , η  telnet  񽺸 inetd  Ͽ 
  Ѵ.  κ ȭ   ǿ ̺ ܺο   
    ִ. ׷ ̰  ־  ̴.  ۾
       𸥴ٴ ̴.

  , Ȥ  ۿ α ϴ  RSA Ű ʿϴ.
  ׵  ؾ   ˰ , ׵ telnetd  ȭ
   Ʈ δ Ͱ  ٸ  ׷  Ͽ ڽ 
  Ҹϰ ; ʴ´.   

  RSA Ű     ̷.:

       ssh-keygen -b 1024 -f new_rsa_key

   н κ Ʈ  ̴. ̰  Ǿ
    ̴.  new_rsa_key ϰ, н  ˰ ִ 
     RSA   ϱ   ʿ   ִ ̴.
  н      н̰ų Ϲ   
  ̾ Ѵ.  new_rsa_key ÷ ũ, ž   
  н  Ͽ  αϴ   Ư RSA Ű 
  㰡Ѵ. 

  Ư RSAŰ     㰡 ̷ , 
   ܼ  缳 Ʈ Ʈ( ǻʹ α  
   ̴.) ڸ  $HOME/.ssh/ 丮 Ͽ 
  $home/.ssh/authorized_keys   ssh-keygen  Ͽ  
  new_rsa_key.pub   ִ ̴. sshd Ŵ  ŷϴ IP,
  Ȥ ȣƮ ̸    α û̳ Ȥ ܺο ,
    ŷڰ   쿡  ߰   ִ
  ٸ ɼ Ű鿡  μ  ִ ``AUTHORIZED_KEYS FILE FORMAT''
      ִ. ( ڸ, RSA Ű ٸ , Ȥ
   Ϸ  ϴ  .)

  RSA Ű ī   켱      Ҵ.
    ڰ ѵ    н  ˾  ȴٸ, 
  ״ ΰ   Ǿ Ȼ  ų ɼ 
   ȿ  ִ ̴. , α  ssh-agent  
  ҷ.     Ǵ ȸ ž Ǽ xdm
  Ǿ ڿ X   Ѿ ȴٸ, 
  /var/X11R6/lib/xdm/Xsession_0   õ  ҷ   
  ϸ   ٲٵ ϶.:

       exec "$startup"

    ̷ ٲ.:

       exec ssh-agent "$startup"

   xdm ,  Ͽ  3 ٲ. ڰ ž
  α , ״   Էؾ߸ ϴ ̴.

       ssh-add new_rsa_key

  α Ʈ  н  Է ޾Ƽ, ڰ  X
   ž   , 缳 Ʈ    н 
     ֱ ؼ ؾ  ̴.

  sshd   缳 Ʈ  ǻͿ ܺ ȣƮ Ͽ 
  ۵ϰ ִ. 缳 Ʈ   ƴ ǻͿ Ͽ ListenAddress
  Ʈ /etc/sshd_config ȿ ``0.0.0.0''    ִ. 
     ȣƮ Ű   ִ:

       ssh-keygen -b 1024 -f /etc/ssh_host_key -N ""

  make-ssh-known-hosts ϰ /etc/ssh_known_hosts  ȿ 缳  
   Ʈ  ǻ͸ зϴ ̴. 

  ȣȭ  r-񽺵 ڳ ܺο    ϰ
  Ѵ. ڳ       ̰ Ʈ 23  ٸ 
  ڳ ǵ麸  ̴ϱ.  缳 Ʈ 󿡼 н带 ̿ 
   Ͽ ܺηκ  ϰ ܺ ȣƮ 
  RSAŰ α׿   ִ.

  ̰ 缳 Ʈ ȣƮ  /etc/hosts.equiv   
  ϵǾ  Ͽ ڵ鿡  ̴. sshd  װ͵鿡 
   rlogin rsh ǻ͵  н峪 н   ϰ
  Ѵ.  ӿ ־, ǻ͵ ȣƮ  RSA Ű Ͽ 
  ϼ ؾ߸ ϴ ̴. 

  ڰ ܺ Ʈ IP  ǻͿ 缳 Ʈ  ǻͷ
  α ϱ⸦   ٸ  Ÿ.  /etc/hosts.equiv Ȥ 
  $HOME/.shosts н    ̿   ȴ. װ ڰ
    IP-̰ ŽĿ̵  ϼ, ȭ  
  ȣƮ Ű ġ  ̴. -    Ա ̴. 
  ̿   ع ִ.    /etc/hosts.equiv  
  $HOME/.shosts ޼ҵ带    ε,   ڵ 
  缳 Ʈ α׸ ܾ߸  ̴. ׸  α״ ⸦ õ
  ܺ ǻͿ  ̴. ٸ  RSA Ű  ̿ϴ ̴. 
  װ  IP ȣƮ ̸ lookup õϴ ǿ 
   ۵Ѵ. 


  8.3.  X 

    Ⱥٴ  ߱ϱ     
  Ž   ִ. ̰     ϰ Ѵ. 

       xhost +

    X ʱȭ ϴ ̴. ̷ 㰡  X 
     ְ ȴ. ܺ   ڰ  Ʈ
   ȸ   Ϳ   ڱ ӴϿ 繫
   ִٰ ϰ    ٲپ   ְ ȴٴ
  ̴. ̷ ܺ  ͸ ϰ  ũ  
   Ѱ   ִ ̴.    ܼҸ, ̰  
  ٸ Ʈ αημ н带 ѱ  Ȥ ΰ   
  ȭ鿡  ϴ Ȳ ϸ    Ȳ̶°  
    ̴. xhost  ڽ    ȭ
    絵ϴ  Ұ Ѱ踦  ְ,   
  ̴.   

  xauth  .   xdm   ִٸ  Ƹ ̹
  xauth  ϰ  ̵ xhost   ִ. ׸ 
  Ƹ  ǻ ̿ X μ ϰ  ̴. 
  ٽ ڸ, ̰  ڵ xhost   ̻  
  ʰ ϱ , Ȱ  Բ ڴ ̴.

  ``SSH1 '' ǿ ``X11 ''  ⺻  Ͽ sshd ¾
    xhost ũк ϱ  ̴.   ͹̳ο
      rlogin  ǻͿ  ݽ xv,
  Ȥ ٸ ϴ ͵ $DISPLAY  ϰų    ʰ
    ִ. ssh α ڿ   ϰ, 
   X Ŷ  ȣȭ ׵ Ʈ   ӵȴ. 

    sshd X11   ̿  ٸ,  xauth
    X  ϱ⸦ ϴ ٸ ǻ͵鿡  å
    ִ. ڸ  Ȥ Ư ׵   ִ  ũƮ
  Ǿ ִ  ִ. ``jpublic'' ǻͻ󿡼 ``barney''  X  ϱ  õ   ִ.: 

       /usr/X11/bin/xauth extract - $DISPLAY | rsh -l jpublic barney /usr/X11/bin/xauth merge -

   xhost  ǻ Ʈ  Ȥ ޴ ̴.  
  װ  α׷  ȴٸ  ּ װ ȿ 
  ̶    ִ ̴. ̰ xauth  Ʈ ϴ
  xhost  ǵ   ũƮ ۼϴ  ϴ.  

  rsh ssh α׷ ȣȭ  ʾ , xauth Ű ܼ ؽƮμ
   ̶  . װ Լ     
   ִ. ׷Ƿ  ȣȭ   ssh  ʾҴٸ  
    ؼ  Ǵ ̴. Դٰ  Ȩ 丮 NFS 
  ܺο Ǿ ִٸ, xauth Ű   NFS Ŷ  ä   
  ִٴ  ϰ ssh  ýۿ ⵿Ѿ Ѵٴ  .



  8.4.  ũ   

      װ   а     ְ 
  Ѵٸ  ̴. ׷ ɽϰ       
   Ϲ 鿡  ణ Ǵ ￩ Ѵ. AUTH_DES 
    NFS ϴ   ³ ٸ. NFS Ŭ̾Ʈ
    ŷ   ϴ ̴. װ  н
   ̵ Ŭ̾Ʈ   ڽ Ͽ   ִٴ 
  ̴.  쿡 н     Ϻϰ ϰ 
  NFS    uid ̵ ϰ Ѵ.  NFS  ڽ
   нó  ﰢ   Ͽ ؾ Ѵ.   
     Ǵ ǻͿ ؼ   ̴.   
  Ǯ 丮 Ȥ  ٸ 丮   ڽ ̿Ǳ⵵
  ϴ ǻͿ ϱ⸦ Ѵٸ ׶ ``security=USER'' 忡 
    Ǵ (samba) ̿ϱ ٶ.  Ʈ
   ǻ͸ ϴ  ٴ ġ ͸ ̿ϴ ͵ 
  ణ 峭 Ƿ   ִ ǻ͸ ϴ  
  ϴ    ̴. · Ʈũ  Ǵ 
  ũ  ϴ    ̶ ͸ ϶. 

  ׷  Ʈ  ũ  ö ϰ ? 
  κ Ȯ  ̽ ȴ.     
  å  ΰ    繫ǿ    Ҵٰ 
  . ״  װ   ġ ִ° ϰ 
  װ  ġ ִ ̶ ΰ  ο κп  å 
  ɾ װ  ̴.     ĳ̳ å  ӿ
   ־ٸ װ и   ̾ ̴.  ܼ
  Ʈ    쿬     ʴ
  Ϳ ִ ص  ƴϴ.


  9.  (ؾ  ʿ伺   κ.  Ƽ. ^^* ˼.)

  This document was written as internal documentation for the DYNACAN
  project, as part of the project's continuing development under the
  control of the Ministry of Human Resources Development Canada.


  This document has benefited considerably from the suggestions of

    Rod Smith (rodsmith@rodsbooks.com <mailto:rodsmith@rodsbooks.com>),
     who suggested I provide details on registering a domain name and on
     setting up with a dynamic IP, and pointed me at the various dynamic
     IP hosting services and at Granite Canyon.

    Greg Leblanc (gleblanc@my-deja.com <gleblanc@my-deja.com>) for
     useful suggestions on improving the clarity of the document.

    Sami Yousif (syousif@iname.com <mailto:syousif@iname.com>), who
     told me about www.dhs.org.

    Marc-Andr Dumas (m_a_dumas@hotmail.com
     <mailto:m_a_dumas@hotmail.com>), who suggested the section on
     moving your domain to a new IP number.



  10.  ؼ 

     ޵Ǿ  ܾ ڵ鿡  ̴.


     CGI ũƮ
        CGI A Common Gateway Interface Script ̴. ̰ 
          ϴ   ִ α׷̴. 
        ܼ  ׷    ִٸ,  
         ϰų    ̳ϰ  ִ CGI ũƮ
          ̴. ̷    Խ̳ ǵ , Ȥ
	 īƮ(ٱ )    ̴.

     DHCP
        Dynamic Host Configuration Protocol . RFC 1531 ǵǾ ִ
	IP ȣ ݸũ, Ʈ   ߾  óϿ ̷
	 ǻ  TCP/IP Ʈ  ǥ . ڷμ
	̿  ǻ  ϴ  Ʈ ߰   
	 ó 鿡  .


     DNS
        Domain Name Service . IP ȣ  ̸ ȯϴ
	 ǥ ȴ. ߾  ̽ ̿Ѵ.

     DSL
        Digital Subscriber Line .  Ʈ  Կ ȭ 
	 Ϲ  ѱ  Ѵ.

      IP 
	̸ֱ  ٸ IP ȣ  ϰ ִ. ѹ 
	ȣ  ȴٴ   .  IP  
	Ʈ ϱ  ȭ ɾ     ٸ
	ȣ οȴ. Ȥ DHCP 絵  ֱ ٲ 
	 ִ. Ϲ telnet ̳ ssh  Ϲ 񽺵
	  ̷   IP ٲ  񽺵 
	ʴ´.

     DNS   
        IPȣ   ȯϴ ``DNS''  

     FTP
          . ͳ 󿡼  ǻͿ ٸ ǻͷ 
	   ⺻ .

     ftpd
        ȣƮ ``FTP'' 񽺸 ϴ .  Ŭ̾Ʈ
	û ޾Ƶδ.

     Internet Service Provider ``ISP''  .

     IP  ``IP ȣ'' κ .

     IP ȣ
        Ȯ Ʈ ``Ҵ ּ''  Ѵ. ipv4 Ҹ 
	ּ  ǥ   ڴ 4 8Ʈ  ̷
	Ϲ Ǵ  ϵȴ. ͳݿ  ǻͰ
	IP ȣ    Ŷ  ȴ.  

     ISP
	ͳ  .  Ʈ   ϴ ȸ縦
	´ ̴. (ϵ,  ȣ, IP ȣ  
	ϴ .)

     ŽĿ̵ 
	ϳ ǻͿ ٸ ǻͷ  Ŷ ͸ ϴ 
	  ߽ Ǵ ǻ  ϴ . ߽ Ǵ
	ǻʹ   ǻͷ  ȸ  . ϳ IPȣ 
	Ʈ  ǻͰ Ͽ ŽĿ̵ ȣƮ Ͽ ܺη 
	  ִ. 

     named
          . ̰ ``DNS''  亯ϰ BIND Ű 
        κ Ѵ.

     Network Time Protocol
        ``NTP''  .

     NTP
        Network Time Protocol.  ǻ ð踦  ǥؽ÷ 
	Ѵ. ð ``Ȯ '' ð  ϰ ִ.

     OS ۷ ý .  ü Ѵ.  , BeOS
     , BeOS, HP-UX .....

     PHB
        Գ Ӹ 
        <http://www.unitedmedia.com/comics/dilbert/about/html/boss.html>.
        Ʈ  ڵ ִ â̴.

     Provider
        ``ISP''  .

     DNS  
        ``DNS''   ̸  IP    Ѵ.

     Router
        IP ּҿ Ͽ Ŷ   ̴ ϵ 
	ῡ  ISP ̿ Ű Ǵ Ư ϵ
	̽ Ѵ.

     ssh
        The secure shell . rlogin, telnet, ftp, Ȥ ٸ 񽺸
	  ȣȭ . Ǫ   ܺ ̳ Ȥ
	Ŷ  Ѵ.

     Ǿ ִ  IP 
        ``IP ּ''   Ӵǰų Ȥ Ǿ ִ ̴.
	  ּҿ   ȭ ʴ ̻  ּҴ 
	  ̿  ִ ̰, ͳ   ٸ ǻ͵ 
	 ȣ    ̴. ׷  츦 ``
	IP'' Ѵ.


