  Domain Mini-HOWTO v0.6

  ũ neufeld@physics.utoronto.ca
  <mailto:neufeld@physics.utoronto.ca>

  2000 1 9
  : hjchj@nownrui.net <mailto:hjchj@nownrui.net>

     ڽ  Ʈ ϱ⸦   밳
  ؾ߸ ϴ ϵ鿡     ִ. װ Ʈ 񽺿
      Ѵ.
  ______________________________________________________________________

  

  1.  .....
     1.1    å  .
     1.2 ۱

  2. ϱ
  3. Ʈ  ȹϱ
  4. ϸ鼭
     4.1 ͳ ڸ ϱ
     4.2 ϵ ġ غ
     4.3  ׽Ʈ
     4.4  IP ϱ

  5.  
  6.   ü ϱ
     6.1 1 DNS 
     6.2 E-Mail
     6.3 Ʈ ȣ
     6.4 FTP Ʈ ȣ
     6.5 Ŷ ͸

  7.  
     7.1  ַ ¾
        7.1.1 缳 Ʈ 󿡼  ϴ DNS, ISP
        7.1.2 DNS ַ ʿ 缳 Ʈ󿡼  
        7.1.3  ο  1 DNS   
        7.1.4 ISP  ȣ Ǵ  Ʈ
        7.1.5  ű  DNS غ
     7.2 E-Mail ȣ    DNS
     7.3 E-Mail 
        7.3.1 "sendmail"  ع
        7.3.2 ٸ  α׷ ̿ 
     7.4 Ȩ  
     7.5 FTP 
     7.6 Ŷ ͸ 

  8.  ο  
     8.1 ȭ 
     8.2 SSH1 
     8.3 X 
     8.4 ũ  

  9. (ؾ  ʿ伺   κ.  Ƽ. ^^* ˼.)
  10.  ؼ

  ______________________________________________________________________

  1.   .....

  1.1.     å  .

  ̰  ʰ     ִ.   ڼ 
  ͵    ִٴ Ͱ, ߿    𸥴ٴ
   ̸  ΰڴ.     θ ̿  ִ 
  ϱ   ߰ ̳  , Ȥ ª ̶
     ֱ ٶ.

  1.2.  ۱

  Copyright (c) by Christopher Neufeld.   
  www.linuxdoc.org/COPYRIGHT.html
  <http://www.linuxdoc.org/COPYRIGHT.html> LPD ̼ .

  2.  ϱ

  ̰  IP  ̸ پ ִ   Ǿ
  ִ  ӽ̳ Ȥ   ȯ  ִ ȯ濡
    Ʈ  ϴ  ȳ̴.   
  IP ϰų θ Ʈ Ǵ ǻͿ ׸  
   ̴. ׷ ׷ ڵ  `` IP ϱ'' ǿ
    ⺻   Ҵ.

   IPּҷ  ǻ͵    ϴ    ¾ 
  Ե  Ǵ ǻ ü ͳݿ ϴ  
    ȴ. ó   ȹ  ϴ  Ŀ Ͼ
   ̴   ̶    ̴.

    κ ϴ   Ǵ Ʈ ⺻
  ȿ  ̴. ̷ ͵ ܺ  Ȥ   
  ݿ ϱ  ̴. װ Ϻ  å ϴ
   ƴ , Ϲ ڷκ ظ ̴  ϴ.

    1 Ÿ  ̱    ӵ
  ̴ ̾   ұԸ Ʈ ǻ Ȥ ܺη
  ͸   Ű ϰų Ȥ WWW, FTP Ʈ
  Ϸ ϴ ǻͷ  ִ.     ڽ
   Ʈ Ϸ ϸ鼭 ӵ   Ϸ ϴ
  쿡    ̴.

      ο ϵ  ϴ  
  ̴.  example.com    ̴. ̸   example.com 
   ϰ ڸ, ϵ IPּҸ ڿ θ ,
  ϴ  ƴ϶ ͸  ΰڴ.

    ȿ ִ κ  ٸ    ִ ͵̴.
   ο   ־ ⺻  ͵鸸 ̾Ƴ
  Ͽ. ̰ Ư 쿡     Ƿ
  Ƹ  Ѱ ̻ ٸ   ؾ  
  𸣰ڴ.

     OS  Բ ϴ 쿡 ؼ ٷ ִ. 
   ڸ  ũ     ϴ
  ũž ȯ濡  Ʈ̷μ   츦 ٷ
  ̴.

  3.  Ʈ  ȹϱ

   ٸ  Ʈ   ְ,.  
  ϰ ִ  ũž ӽŵ  ְ  ŽĿ̵
  ݿ ڸϰ  Ϲ   ǻ͵ ȿ
   IP  ִ  ̴.ȿ  IP  ִ
  ǻ͵    `` ȣƮ'' Ī Ͽ Ÿ
  ̴.  Ϲ    ̴.

         +--------------+
         |              |               +---------------+
         | ISP-supplied |---------------| FTP server    |
         | router       |        |      +---------------+
         |              |        |
         +--------------+        |      +---------------+
                                 |------| WWW server #1 |
                                 |      +---------------+
                                 |
                                 |      +---------------+
                                 |------| WWW server #2 |
                                 |      +---------------+
                                 |
                                 ~
                                 ~
                                 |
                                 |      +---------------+
                                 |------| Private       |
                                        | Network       |
                                        | Gateway       |
                                        +---------------+
                                               |
                                               |
                                               |
                                               |
              +------------+                   |      +-------------------+
              | Desktop #1 |-------------------|------| Private server #1 |
              +------------+                   |      +-------------------+
                                               |
                     .      -------------------|--------        .
                     .                         |                .
                     .      -------------------|--------        .
                                               |
              +------------+                   |      +-------------------+
              | Desktop #N |-------------------|------| Private server #N |
              +------------+                          +-------------------+

    ʹ ISP (ͳ  ), FTP , WWW ,
  ׸ ``  Ʈ Ʈ''  Ҹ ǻͿ
  ܺη  IP ȣ ޹޴´. ׸ ũž̳ 缳 
  IP RFC 1918 www.ietf.org/rfc/rfc1918.txt
  <http://www.ietf.org/rfc/rfc1918.txt>  ޵ȴ.   缳
  Ʈ( ǻ͵ 缳 Ʈ Ʒ Ǵ) ϱ
    IP ȣ  ϴ ȣƮ Ʒ ִ ٸ 
  ǻ͵  ʴ   Ǿ Ѵ. ׷  Ǿ
  ִ ̳  Ʈ 쿡 ׸ Ǵ 浹
  Ű  ̴. Ʈ պ  ׷  迭 ϸ
   ̴. RFC   192.168.0.*  Ͽ 192.168.255.*
     C Ŭ Ʈ̳ Ȥ 172.16.*.*  172.31.*.*
   B Ŭ Ʈ, ƴϸ 10.*.*.* A Ŭ ּҸ Ҵϴ
   ִ.    κ  ⸦  C Ŭ
  缳 Ʈ  ̴. ׸ ͳ ڰ  IP ȣ 
  ϳ IP ȣ 10.1.1.9 Ʈ Ʈ̿  ͵ Եȴ.
  (     ȿ IP ƴ   ϴ ȣ
  ̸  д.)  10.1.1.10 IP   FTP 
  ϴ betty.example.com ؼ ٷ ̴.

   ǻͿ ʿ ܺ IP ȣ  ޸϶.  
  ǻ͸ ܺ ٸ ǻͿ Ǵ ϳ IPּҰ ʿ
  ̴.  ̿   Ϳ  ־ų ο Ǵ
  IP ȣ  ʴ´.   ͳ ڿԼ
   迡 οϱ     IPȣ  
   ̴.  , ISPκ 8 IP ޹  繫
  Ʈ  ǻ  3 4   Ʈ̿
   ̾ IP ּ   Ҵ̾ Ʈ ڽſ
  ߰  ۿ .( Ų ʱ..... ̷......  T.T)

   Ʈ   ̿   ƴϴ. ׷ װ Ư
  츦  κ  մ ̶   ִ. ̷
   ä    .

  ? Ȯ ϴ.     带   Ȯ ȹ
  ̶  ͳ ڷκ  IP  ´ٴ 
  ǻ ̽  缳   ص  ̴.

  ?  Ʈ . ο ũ̼  Ʈ 
  ͳ ڿ Ŀ´̼  ߰ϱ⸦    .
  ʿ ϵ(ssh ftpd DNS  ǵ ̴  ϰ
  ȴ.)    DNS(  ) Լ  谡
  ʿ  ʹ ٸ  ǰڴ.  DNS  IP
  ȣ ȣƮ ̸  ȴ.

  ֿ ȿ Ͽ. 缳 Ʈ Ʈ̴  Ʈ  
  ũž  ǥ  νϴ ſ ü 缳 Ʈ
  Ͽ Ŷ ͸ϰų α ݿ   ǽ  ִ.
  ̰ η  Ŷ  ͸ ƴ   Ŷ
  شǴ ̴.    ũž ͳ̶ Ҹ
  ܺθ  ͸    ̴.

  ? ̵ ̼  ٸ ߿ ̴.  Ʈ  IP
  ּҵ  ϴ     ͵̴. 
  缳 Ʈ   ʰ ü Ʈ ο IP
  ּҰ   ִ.   迡  ȣƮ
   Ǿ  ̴.

  ͳ  .  缳 Ʈ  ǻ͵ FTP,
  telnet, WWW ׸ ణ ָ  ä  ŽĿ̵
  Ͱ ô ٸ 񽺵 ̿  ִ.  ڵ ׵
  ǻͰ ܺ  ʴ IP ȣ   ϸ鼭
  ̴.

  ̷      ε ɼ ִ ͵
   .

   񽺴  Ʈ  ǻͿ ﰢ ̿   
   𸥴. ܺ ȣƮ  NTP  ġ Ŀ ŽĿ̵
  Ģ  ʴ 񽺸   ߰ Ѵ.  .shost
   ܺ κ  ư Ȥ Ұϰ ,
  ο   ϰ Ѵ.

  Ʈ ϵ     . 缳 Ʈ Ʈ 
  2 Ʈ ī, ܺη  Ʈ 缳 Ʈ  ּ
  2 , ġ ʿ ϰ ȴ.

  ?缳 Ʈ  ǻͰ  ܺ ǻ͵   ǰ ϴ
      ƴϴ. ܺ ǻ͵    ó
  Ͼ   Ʈ Ʈ̸  ܺ ȣƮ ῡ
   α׸  ̴. ̰  Ŷ  ϸ
  ȭ    , װ Ȼ  
    Ѵ. ̿    ǿ  ϰڴ.

    Ʈ  ־ ׷  ϰ  Ȳ
   ϰ ܺη ̴ Ʈ     ̴.  
     Ʈ   ̻   
  ̴.   ſ  ´ Ʈ ϱ ߴٸ,
   ٸ κп     ߰ ϵ 
  ̴.

  Ư ̽,   ܺη   ƿ ʿ䰡
  ٸ, ISP ö̵ ʹ  缳 Ʈ Ʈ̿ ִ
  ܺ ̽ (꺸  )ٷ Ҽӵ   ̴.

  4.  ϸ鼭

  4.1.  ͳ ڸ ϱ

     ִ  ̶  ̴. ſ 񽺸
    ִ ü ߿  񽺵 ϴ üμ 
     ϶.  DSL    ̷ ʰ
       ̳ ǹ Ȥ ȯ 
     ִ.  輱   ּҿ  ޵ 
  ϶. DSL ӵ ġ Ÿ ݺѴ. ׸ 
  ǻͿ   뿪,   , ׸ Ŵ
   ǻ͸ ϴ ϵ      ϶.
  ׸  󸶳  IPּҸ  ǻ͵鿡 Ҵ 
   ˾ ξ  ̴.  ڿԼ  IP ּҾ߸
    ǻͿ   ִ ּҶ  ϵ ϶.
   Ʈ  ٸ  Ǵ ӵ, ܺη Ǵ 
  뿪 ϵ ϶.  ڰ ܺη  뿪 
  ִٸ, Һڴ   ϰ  ̴.

  ڵ ߿     ,     
    õϴ ü ϵ ϶. 뿪 ū 
  ˾ƺ ϰ, ο ΰ  ISP   ӵ
  ڷĿ´̼  Ȥ    Ȯ ̶ 
  ISP   Ͽ  ϰ   traceroute  
    ʼ̴. ̰  ο ־ 󸶳  긦 
  Ǵ,     ش. 100 200
  и(õ 1 ) ̻  ð  ߱ ư 
  ̴. traceroute   ο Ʈ ȯ濡 
   ο α  ð ľϰ   ִ.

  4.2.  ϵ ġ غ

   ο    ڿ   ߴٸ
  ġ   ϵ ϶.  񽺸 ϱ 
  񽺸 ϴ ISP ȭ  Ͽ 񽺸 ûϰ 
  Ʈ ġ     ڸ θ  ִ.
  ׷ Ͽ  Ͼ 䱸  ˸  ְ Ǵ ̴.

  ISP ڰ   Ʈ ĶͿ IPȣ, ݸũ,
  εĳƮ Ʈ , DNS  ּ, ׸ 
  ǻ͵ Ͽ Ѱ 輱  ϵ ϶.  ( ڸ,
  ڷ   :straight- through ̶ Ȥ :crossover RJ45
  輱̶ ϴ .....)

  ׽Ʈ  ǻ͸ غϰ, Ʈ  ġ  ó ξ.
  ϴٸ,  ڰ ϱ  IP ȣ ݸũ
  ϰ  輱 ߾  ġ ׽Ʈ    ֵ
  .

  4.3.   ׽Ʈ

  ׽Ʈ ǻ͸ ISP  ϵ ϶.   ISP  Ʈ
  ping ؾ Ѵٴ Ϳ .  ׷ ʴٸ  ߸ 
   traceroute    ̴.  traceroute 
    ϳ  ʾҴٸ װ  ׽Ʈ ǻ
  Ʈ  (default route, interface address, NIC drivers, DNS, etc.)
   ߸Ǿٴ  Ÿ. ϳ   δٸ װ
   Ͱ ISP    ʾ ǹ ̴.
  ϴ   ʾ   θ  
  ־ٸ   밳       ܺ ISP 
  ̴.

  4.4.   IP ϱ

   IP  ߰ ٸ ȣƮ 񽺿 ȣ  ſ
   Ѵ. װ DSL ̿   Ȥ ̺  
  10ȸ   ¸Դ  ȴ.    ׷ 
  Ұϰų Ȥ   ׷    ʴ´ٸ,
    IP      ̴.  Ϲ
  ٷ ׷ ͵  ϳ  ִ.  ̳ ϸ  缳
  Ʈ Ʈ ӽ ܺο 񽺰   ׷ 
  ̶ ̴.

   ù °,  װ  Ȯؾ߸ Ѵ.  ȸ
      ܺο   ִ   
  ϰ ִ. װ η  http Ȥ FTP Ʈ Ŷ ͸
  ǽϱ ̴.    ٿũ, ũ ӵ 
  DSL̳ ̺ 𵩿  ٴ ͵ ݰ  ̴. ũ
  ӵ FTP   ޷ȴ.

    IP   ̶, ׸  ⸦ ٶٸ,
    IP ȣϴ DynIP www.dynip.com/
  <http://www.dynip.com/>, DynHOST www.dynhost.com/
  <http://www.dynhost.com/>, Ȥ TZO www.tzo.com/
  <http://www.tzo.com/> ϰ  ̴. ̿  ͵ 
  ǻͿ  α׷μ ۵Ͽ ȸ  ϰ Ѵ.
     IPȣ   DNS ̺ ο μ
  Ʈ ȴ.  ׵  ̸  ̸   
  ִ.   ``example.dynip.com'' ̶
  ``example.dynhost.com''  Ȥ    1 DNS
  籹 ûϿ ޹  ִ. 밳 μ Ż.

  Domain Host Serviceswww.dhs.org/ <http://www.dhs.org/>   
  ȣ 񽺿 ̴. װ͵ Ӱ ̸  Ʈ
  ϱ    ƺ ʴ  ã ̴.

     IP ϱ  ׷ ü  ϳ  ϰ
  ȴٸ, װ   ü ϴ   
  ϳ ۿ ̴.  Ʈ Ȥ FTP Ʈ ϱ 
  ȣ   ƴϾٸ,  IP񽺸 ޱ   ū
  ϵ ƴϴ.     ü 1 DNS  ϰ
   ̴.   ܺο  缳 Ʈ  
  亯 ϴ ̸    ̴. ٸ  ,
  E-mail      񽺿   ۿ 
  ̴.     ȸ ǵ  ޴ ̴.

   :  ܺο  IP    ȣ
    ϱ⸦  ʴ´ٸ, ܺ    IP
   ǻͿ ``drop box'' ϰ   IP ȣƮ װ
  IP      email   Ͽ
  Ͽ   ִ.    ǻͿ ϱ⸦
      IP ּҸ drop box  ٷ  IPּҷ
  slogin  Ͽ ﰢ   ִ. ̰ ᱹ  IP ȣ
  ü   ϱ  ڵ ⺻ ǽϴ 
     ִٰ  ȴ.

  5.   

    ܺο ڽ      Ȥ
  FTP e-mail    ֱ⸦ ٶٸ,   ֻ
    ͺ̽   ̸ ؾ߸  ̴.

    ̸ Կ ־   Ѵ. Ϲ ܾ
  Ȥ  κ Ϲ ĿƼϿ Ͽ ̰, 
   Ű  ٸ 湮ڸ ϰ ϴ Ӿ   
  ̴.  ̸ ĺ 26ڿ(ǼƮ ϰ) (̳
     .) ׸ 10 ڵ鸸   ִ. 
  ̸ з   ּ 26 ̵ ϴ. ̹ ϴ
  ȸ Ʈ̵ ũ  ˷ ͵ Ͽ    
   ϶.  ߸      
  ̶,   Uniform Domain Name Dispute Resolution
  Policy www.icann.org/udrp/udrp-policy-24oct99.htm
  <http://www.icann.org/udrp/udrp-policy-24oct99.htm> ̿϶
  ̴.

    ̹ ``.com'', ``.net'', and ``.org''   ֻ
    ߴ.   ϱ  ̸  
   װ ̹ ϵǾ ˾   .
  www.icann.org/registrars/accredited-list.html
  <http://www.icann.org/registrars/accredited-list.html>.

  ``.ca'', ``.de'', ``.uk''   õ ֻ 
  Ϸ,   ֻ  ͺ̽ ϴ 
   Ȯ϶.  www.iana.org/cctld.html
  <http://www.iana.org/cctld.html>.

  ü  ù° ι° ߿ IP    
   ް, Ƿ ȹ(ٸ  ڴ  
   ٲٱ⸦ ٶ  ̴.) ϰ,  
  ϰ  ̴.  Ͽ  Ƿ ȹ ϴ 
  ϰ ٸ, ׵鿡  ׵  ȿ  
  ϱ  ڹ  񽺸 ̿   ˰ ϶.

  6.    ü ϱ

    񽺸 ϴ ISP ׵    񽺸
  Ѵ. ̰   ٸ ,  Ϲ ũž Ȥ
    ý۵ ȣð Ҿ 񽺸 μ  ǳ
  񽺸 Ѵ. ̿  񽺵   ڿ  
  ̰, ׷   ϵ ȣ ϰ Ѵ.
  ׷Ƿ   ڽſ  ´ 񽺸 ؾ߸ Ѵ.  ̷
  񽺵 밳  Ѵ.:

  ?  ο  1 DNS ѿ ؼ ``1 DNS
  ''  .

  ?   ؼ ``E-Mail''κ .

  ? Ȩ ø  ȣϴ  ؼ ``Ʈ
  ȣ''  .

  ? FTP Ʈ   ȣ ȹ̶ ``FTP Ʈ
  ȣ'' .

  ? Ŷ ͸    ``Ŷ ͸'' .

  ̰͵  ׿   ־ ⺻ ̼ 
  ΰ  ̴.  ISP ̵  ϳ ̻ 񽺸  
    񽺸 ̿ϴ ٸ  츦  ׷ Ȯ
  ϰ  ̴. ׷Ƿ   ϰų   ʿ
   ̴.  ð  ̷ 񽺸 ̿ϴ  ־
       ̴.  ȭ  Ѵٸ 
  ϰų Ȥ Ű ͵  ִ  ̿ϴ ISP
    Ѵ.  ̰ Ȼ ̽ ϴ ̴.
  ISP ڿ    ξ  Ȥ Ÿ ȴ. ISP
   e-mail Ȩ   Կ ȣϸ鼭 ϳ
  ̻   ̹ ѼսŰ     
  ϳ ̻ (ũĿ ....)     ͸
  ϰ ȣϴ   ׷ Ȼ ̽  ̴.

  6.1.  1 DNS 

  ܺ ο  example.com Ϸ   ɵ
  ͳݿ      IP  踦  ã
   õ  Ʈ ư ȴ. ̿  
  ڼ     Ѿ ̴.  κ ϰ 
  û fred.example.com ƿ  ,   ̽
   IPּҰ example.com Ͽ 1 DNS Ǿ ִ
  Ѵ.   IP ּҴ fred.example.com  ϰ ȴ.

  ̰  ο  1 Ȥ 2 DNS  ̴.
    ̽ Ǿ ִ ̸ IP ּҴ Ʈ ַ
  www.networksolutions.com/ <http://www.networksolutions.com/> 
   ѿ  ȴ.

     ISP  ȣõ 1 DNS  Ѵٸ,
  ̰͵ ISP ϴ 2   ̴.  ϴ 
    Ʈ ο ܺη Ǵ ǻ͸ ߰  ִ.
   ISP Ͽ ο ǻͿ ׿   ̽ ߰
   䱸  ִ.

    ο  1 DNS     
   ٸ ǻ͸ ̿ ̴.    ͳ
   ̿Ѵٴ ̴. ׷    ISP  ϴ
    ̴.   Ʈ ܺη  ǻ͸
  ߰ϱ⸦ Ѵٸ,    ̽ Ʈ ؾ ϰ,
  ణ ð  ۰Ʈ  ٷ  ̴. ̿ 
  ϵ   ISP ġ ʰ barney.example.com ߰ϱ
   ̴.

   DNS ȣƮ ̿ δ   ̶   ִ. ֳ
  ϸ, Ű ISP ϴ ܼ ̺     1
   DNS  · .    ϱ
   ̿  ڴ  DNS 񽺸 ̿ϰ ؾ Ѵ.
   Granite Canyonwww.granitecanyon.com/
  <http://www.granitecanyon.com/>  񽺷 ̰ ǰ
  ϴ.

  Ȥ   ο  1 DNS  
    ǵ ʿ  `` ַ ¾''
   ϶.   缳 Ʈ  ַ 
  ϰ  ̴. װ  1 DNS  ISP  
  ̴.

  6.2.  E-Mail

    ISP Ͽ  ׵ ſ   ִ 
    ּҸ ־ ̴.    쿡 ̷
  񽺸  ̿ϵ   ִ.    ͼ
  ISP   ǿ뷮  ģٰų,  ڵ
  ڽ  POP3 Ŭ̾Ʈ ̿Ͽ ISP  Ͽ
  о߸ Ѵٴ ϴ 츦 Ѵ. Ͽ   ڽ
    ּҸ       ִ. ٽ
  ؼ  2      ְ, 
  ϴ      ִٴ ̴.

    ̿ϱ  ISP ̿Ѵٸ ϶!:

  װ ̳ Ȥ Ͻ  ̵  ٸ ҿ  б
   ϴ    ̴.    ȣϱ 
    ִ.

   ISP   ǹǷ  ڵ ־  
  ų  ִ.

    ڿ   Ǹ,  ø⸦  
   ؾ  쵵 ִ.

  ο  ּҸ ʿ  , ISP 湮ؾ Ѵ.

     ϰڴٸ  ϶:

     ڵ ǰ  ISP ƿ  
  Ͽ    ũ     ִ.

    ּҸ   ų ų ص   
  ̴.

    Ʈ  Ŭ̾Ʈ ؾ ϰ, ϸ
   ּҸ ϴ   ڽŵ鿡 ƿ ϵ 
   ֵ ؾ Ѵ.

  ϳ      ȣƮϴ , 
   ּҸ ISP     ̴. ܺ Ʈ 
     ʿ  ڽ ISP   Ǵ
      ּҸ    ִ. ٸ  缳
  Ʈ   ּҸ    ִ. ̿   ణ
     ξ 뼺 ִ ̱⵵ ϴ.

       ּҸ  Ѵٸ, ``E-Mail
  ''   б ٶ.

        ּұ ʿ ʴٸ ``E-
  Mail     DNS'' ߿ ּ ϱ
  ٶ.

  6.3.  Ʈ ȣ

   ̿ϴ ISP ڽŵ    ҴϿ ſ
   ̴.    ̿Ͽ  Ȥ  ܺη
  Ǿ ִ Ʈ  ǻ͸ ̿Ͽ  ̴.

   ISP    ̶  ϶:

    ־ 뷮 ʰ ʴ´ٸ  ũ 
   ʾƵ ȴ. ̰     ƴ϶  Ʈ
  湮 α׸    Ѵ.

    ܺη  뿪  ǻͿ  
     Ŭ ̴. ̿       ִ.

  CGI ũƮ Ÿ    Ʈ ʿ α׷
  ġϴ   Ͽ Ѵ.  Ʈ   
  뿪  ڽ Ʈ ġ 캸  ̴.

   ڽ   ̿ϱ ߴٸ ϶:

   ȣ ӽſ     ؾ  ̴.  ٷ
   ø̼      ִ.

  ¼ ΰ , ٽ  ſ ī ȣ  ּ 
  Ż    𸥴.

     ƹ ISP ִ  ٴ  ̴.

   ISP    ־   ϵ ϰ
  ִٴ  Ȥ ׿  ͵鿡 ؼ ׸ Ű澲  ƴϴ.
     Ʈ 󿡼   ʿ Ѵٸ,
  ̰ ߿  ȴ. ׸ ϰ ڸ, ̿  Ǵ
   Ͽ   ٴ Ƿִ Ʈ   δ
   ٰ .

           
  ٸ ͳ Ͽ   ʿϴٰ Ǵ.  ̿ 
   缳 Ʈ Ʈ 񽺿ʹ ٸٴ  Ȼ 
    ε ϰڴ.

  6.4.  FTP Ʈ ȣ

  ⺻ FTP ȣð WWW ȣ FTP CGI ũƮ  
   ʿ  ʴ ٴ  ϰ   ̴.
  ٷ ftpd  Ȳ ƹ ͼ ڷḦ ø  ִ ε
  丮 ʹ  ̸ 丮 ϴ Ͱ   
  ذ ̷   ߿   ̴.  ISP ε带
  ϴ  ̰ FTP   ȿ ־  µ
  δٸ,   񽺸 ϴ   ̶ .

        ̸  FTP ȣ ϱ
  Ѵٸ, ֱ  FTP  ϵ ϰ ׿   
  ϶. Ѱ ,  ̿  񽺸 ϴ  缳 Ʈ
  ȿ Ͱ ٸٴ   ΰ ʹ. ȿ ϶.

  wu-ftpd   Ϲ  ɼ  ε ϰڴ.:

  ? --disable-upload - ͸ ε 񽺸 ʿ   .

  ? --enable-anononly -  ڵ ǻ   ̵ 
  scp ϴ°  .

  ? --enable-paranoid -   Ư  ̰ ǽɽ
  ϴ   Ѵ.

  6.5.  Ŷ ͸

   ISP   Ȥ ܺο ڵ Ͽ ׵
  Ʈ ۵Ǵ Ŷ ͸Ѵ. ̺  Ʈ Ȥ 
   Ʈ  98 Ȥ 95 ũ   ׵
  ϵ̺꿡 ִ  ܺ Ʈ  Գ Ǵ
  ó Ȳ ޱ⵵ Ѵ.  ̿  ̽鿡 ذå̶
  ڵ鿡 ׷   ϴ ̰  ڵ
  ϵ ϴ  ͸Ͽ    ذϰ ִ.

  Ŷ ͸  ڽ ؼ ϴ   ̶   ִ.
  װ  缳 Ʈ Ʈ ǻͿ ۵ϴ Ŀο
  ϰ     Ͼ   ȿ ó ϰ 
  ش.    ȭ ȿ ¾  
  ʿϴٴ   ̴.  ׸ װ ǽð 󿡼 
    ̴.

   Ŷ ͸  ο ϱ Ͽٸ, ``Ŷ
  ͸ ''      ϶.

  7.   

  7.1.   ַ ¾

    Ʈ  ǻͰ ̸ε Ÿ  ֱ⸦
  ٶ ̴. ׸ ܺ   ip ּҸ ġ   ٴ
  ̸ ϱ⸦ ٶ ̴.  ׸ ϱ   
  ̴.

  7.1.1.  缳 Ʈ 󿡼  ϴ DNS, ISP

  [  :   缳 Ʈ Ű ʴ  ؾ
  Ѵٸ ``ISP  ȣ Ǵ  Ʈ''  ϶.]

      ο  1 DNS  ϰ
  ȴ.    缳 Ʈ ǻͰ ٸ ǻͿ talk 
  ϱ⸦   DNS  ̿ϰ ִ.   ISP 
  ܺη Ű⸦ ϴ ǻ͵ IPּ  ˷ ־ Ѵ.
    betty.example.com ̶ ǻ͸  FTP μ ܺο
  Ű⸦ Ѵٸ, ISP www.example.com ftp.example.com
  betty.example.com ϵ   CNAME  ۼ  
  û϶.

   缳 Ʈ Ʈ ӽ  DNS  ϶. ̰
  Ȼ ̸   DNS    ذμ
  ׷̵带 ϰ Ѵ.

    缳 Ʈ Ʈ dns.example.com 踦 DNS
   ϰ ̰ 192.168.2.1 IP  fred.example.com 
  ˸ƽ  ϰڴ. Ȳ  ణ  ʿϴ.   
  HOWTO ׷  ٷ  ƴ϶ Ѵ.

   BIND  Ŭ ͳ   ֱ  ٿε ޾
   Ѵ. װ BIND  Ʈwww.isc.org/products/BIND/
  <http://www.isc.org/products/BIND/> ã   ִ. 
    ؾ Ѵ.   /etc/named.conf  
  Ͽ.

  ______________________________________________________________________

     options {
                 directory "/var/named";
                 listen-on { 192.168.1.1 };
         };

         zone "." {
                 type hint;
                 file "root.hints";
         };

         zone "0.0.127.in-addr.arpa" {
                 type master;
                 file "pz/127.0.0";
         };

         zone "1.168.192.in-addr.arpa" {
                 type master;
                 file "pz/1.168.192";
         };

         zone "example.com" {
                 type master;
                 notify no;
                 file "pz/example.com";
         };
  ______________________________________________________________________

  츮 example.com   ߴٴ  ϶. ̰
  츮 ISP     ϰ ִٴ Ͱ .
  ̰  ¾ ϴ     ʴ´. 缳 Ʈ
    ǻ͵ dns.example.com  ַμ Ѵ.
  ׵ ISP     ε鿡 Ͽ ŷڵ
  ϴ  ISP    ʿ䰡  ̴. ׷
  ISP    缳 Ʈ  ǻ͵  IPȣ
  ؼ ƴ ٰ .  ڸ ISP   ƴ°
   ܺη Ǿ ִ ǻ IP ȣ ̴. dns.example.com
  Ʒ ִ 缳 Ʈ   ƴ϶.

  /var/named ؿ   ϶.

  root.hints  BIND  ϴ ̴. Ȥ DNS HOWTO
  metalab.unc.edu/pub/Linux/docs/HOWTO/DNS-HOWTO
  <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/DNS-HOWTO> ȿ
  roo.hints  °Ϳ  ڼ  ִ.

  ______________________________________________________________________
    H.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.63.2.53
    C.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.33.4.12
    G.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.112.36.4
    F.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.5.5.241
    B.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.9.0.107
    J.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.41.0.10
    K.ROOT-SERVERS.NET.     6d15h26m24s IN A  193.0.14.129
    L.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.32.64.12
    M.ROOT-SERVERS.NET.     6d15h26m24s IN A  202.12.27.33
    I.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.36.148.17
    E.ROOT-SERVERS.NET.     6d15h26m24s IN A  192.203.230.10
    D.ROOT-SERVERS.NET.     6d15h26m24s IN A  128.8.10.90
    A.ROOT-SERVERS.NET.     6d15h26m24s IN A  198.41.0.4
  ______________________________________________________________________

  pz/127.0.0   .:

  ______________________________________________________________________
         $TTL 86400

         @               IN      SOA     example.com. root.example.com. (
                                         1       ; Serial
                                         8H      ; Refresh
                                         2H      ; Retry
                                         1W      ; Expire
                                         1D)     ; Minimum TTL
                                 NS      dns.example.com.
         1                       PTR     localhost.
  ______________________________________________________________________

  pz/1.168.192   :

  ______________________________________________________________________
         $TTL 86400

         @       IN      SOA             dns.example.com. root.dns.example.com. (
                                         1       ; Serial
                                         8H      ; Refresh 8 hours
                                         2H      ; Retry   2 hours
                                         1W      ; Expire  1 week
                                         1D      ; Minimum 1 day
                                 )
                         NS      dns.example.com.

         1               PTR     fred.example.com.
                         PTR     dns.example.com.
                         PTR     mail.example.com.
         2               PTR     barney.example.com.
         3               PTR     wilma.example.com.
  ______________________________________________________________________

  ׸  缳 Ʈ  ǻͿ ϴ PTR ڵ
  ִ.   fred.example.com IP ּҴ 192.168.1.1̰ ̰
  dns.example.com mail.example.com ˸ƽ ȴ. 192.168.1.2 IP
  ּҸ   barney.example.com̰ ٸ ͵鵵 ̴.

  pz/example.com   .:

  ______________________________________________________________________
         $TTL 86400

         @               IN      SOA     example.com. root.dns.example.com. (
                                         1       ; Serial
                                         8H      ; Refresh 8 hours
                                         2H      ; Retry   2 hours
                                         1W      ; Expire  1 week
                                         1D      ; Minimum 1 day
                                 )
                                 NS              dns.example.com.
                 IN              A               192.168.1.1
                 IN              MX          10  mail.example.com.
                 IN              MX          20  <ISP mail machine IP>.

         localhost               A           127.0.0.1
         fred                    A           192.168.1.1
                                 A           10.1.1.9
         dns                     CNAME       fred
         mail                    CNAME       fred
         barney                  A           192.168.1.2
         wilma                   A           192.168.1.3
         betty                   A           10.1.1.10
         www                     CNAME       betty
         ftp                     CNAME       betty
  ______________________________________________________________________

  츮 缳 Ʈ ǻ͵ ܺη  IP鿡  
   ߴٴ  ϶. ̰  ISP   
  缳 Ʈ ǻͿ    ̴. ̰ ٽ ؼ
  缳 Ʈ betty.example.com ܺη  fred  IP
    ִٴ  ǹѴ.

  /etc/named.conf  ٿ ؼ ɼ  ϶.:

         listen-on { 192.168.1.2 };

  ̰    ܺο DNS ǿ ϴ° ϴ
  ̴.(ܺο  Ǵ ISP   ذ 
  ̴.)

  7.1.2.  DNS ַ ʿ 缳 Ʈ󿡼  

  [ :   缳 Ʈ   ̶, ``ISP
  ȣ Ǵ  Ʈ''  ϶.]  ̿  
    缳 Ʈ ŭ ۰ ׸ ÷ ٲ  
  ϴ ̴.  DNS   ̽  
  ؾ ϴ° ̴. ׸  ǻͿ  ַ 
   ٶ.  缳 Ʈ   ǻ͵ 
  Ʈ Ʈ̰ Ǵ ׵ ȣƮ  DNS νϴ°
   ̴. 缳 Ʈ ־  ַǿ ־ ȣƮ
  ̺ Ǿ߸ Ѵ.  ̰ 缳 Ʈ 
   ǻ /etc/hosts  ȿ  ǻ IP ּҿ ̸
  ϵǾ ־ Ѵٴ ̴.  ο ǻ͸ ߰  ְ
  ̸̳ IP ּҸ ڴ ٲ  ִ    ǻͿ
   Ʈ ȴ.

   ǿ ܺη  IPȣ ǻ  ݵ ISP
  . ׸  ˸ƽ(www ftp ) 󿡼 CNAME 
  ISP ϴ Ư  ̿ϰ ȴ.

  7.1.3.   ο  1 DNS   

   ܺη  Ʈ  ׸ 缳 Ʈ  
  ַ   ִ Ȳ̶   ʿ䰡  ̴. 
     ǻ͸ ̿Ͽ      ذϰ ʹٸ
  װ   ذ  ִ.  ǿ 缳 Ʈ
  Ʈ ӽ ο ܺ  û ó  ִ 
  ϰڴ.

     ִ  BIND 8.2.2  ִ Ȳ ϳ 
  û ϴ Ȳ  ٸ   û 亯 ϰ 
   . 츮  ַ  Ʈ IP ȣ 
   ʾұ   ܺ û, ׸ ؾ߸ ϴ
   û̶  ٸ   䱸  óϱ⸦ Ѵ.
  ̰ BIND ̷  ``view'' Ű带  ߰  ְ
   ̴. ׷   ٸ     
    ذϰ  ̴.

  ù °, ``缳 Ʈ 󿡼  ϴ DNS, ISP ''  
  Ͽ 缳 Ʈ  ϶. ̰  Ʈ 
  ַ ϰ Ѵ.

  ,  ܺη Ǿ ִ   DNS ϶.
  ù °,  ͳ ڿ  IP 븮 óϰ ϶.
   ǥ DNS CŬ ݿ ȯ  
   ʴ , Ǵ DNS Ŭ̾Ʈ Ҹ  ϵ Ű,
  RFC2317 並 . www.ietf.org/rfc/rfc2317.txt
  <http://www.ietf.org/rfc/rfc2317.txt>  ڰ 
  IPϿ     ִٸ,  ׵鿡 ׵ 
  -RFC ׵    ְ Ǵ Ϳ   ϴµ
     ʾҴ.-  䱸  ؾ Ѵ. 
  ڰ ſ ӹ  ϰ  
  8.1.1.10.in-addr.arpa.  ΰڴ. ڴ CNAME  
     ̴.

    8.1.1.10.in-addr.arpa.     2H IN CNAME 8.8.1.1.10.in-addr.arpa.
    9.1.1.10.in-addr.arpa.     2H IN CNAME 9.8.1.1.10.in-addr.arpa.
    10.1.1.10.in-addr.arpa.    2H IN CNAME 10.8.1.1.10.in-addr.arpa.
    etc.

  1.1.10.in-addr.arpa   ̿  Ͽ ̴. ̿ 
   ؼ  ǿ ŷе ̴.

    ڰ ſ  DNS    ִٸ ׵
      ϰ ġϴ    
  ϴ IP   DNS  ̺  CNAME  
  ̴.   ׵ ſ ׷    ʴ´ٸ,
  ׵鿡   ߿ ܺη    ߰ϰų,
  ų, ̸ ٲٴ   ûؾ Ѵ.   DNS ̺
   ܺη Ǿ ִ DNS  ÿ Ͼ ʴ´ٸ, 
  񽺵 ָ ų ̰, ׷  ͵ ߸ ó ϰ
   ̴.

    缳 Ʈ Ʈ̸ ܺ 䱸 Ȳ ϵ
   ǻ ι° ̸ ¾ؾ Ѵ.   Ʈ 
  ܺη Ǿ ִ ǻ͵ ܺ û ޾ óϴ 缳 Ʈ
  Ʈ ̿   ȣƮ IPּҸ 䱸Ѵ.

  ,  ܺ û   /etc/named.ext.conf  ° 
   ϶. 츮    Ÿ.:

  ______________________________________________________________________
         options {
                 directory "/var/named";
                 listen-on { 10.1.1.9; };
         };

         zone "." {
                 type hint;
                 file "root.hints";
         };

         zone "0.0.127.in-addr.arpa" {
                 type master;
                 file "pz/127.0.0";
         };

         zone "8.1.1.10.in-addr.arpa" {
                 type master;
                 file "ext/8.1.1.10";
         };

         zone "example.com" {
                 type master;
                 notify no;
                 file "ext/example.com";
         };
  ______________________________________________________________________

  /var/named ؿ ִ  root.hints  pz/127.0.0  Ǵ 
  Ѵ. ext/8.1.1.10   .:

  ______________________________________________________________________
         $TTL 86400

         @       IN      SOA             fred.example.com. root.fred.example.com. (
                                         1               ; Serial
                                         10800           ; Refresh       3 hours
                                         3600            ; Retry         1 hour
                                         3600000         ; Expire        1000 hours
                                         86400 )         ; Minimum       24 hours
                         NS      dns.example.com.
         9       IN      PTR     fred.example.com.
                         PTR     dns.example.com.
                         PTR     mail.example.com.
         10      IN      PTR     betty.example.com.
                         PTR     www.example.com.
                         PTR     ftp.example.com.
  ______________________________________________________________________

  ext/example.com    ̴.:

  ______________________________________________________________________

         $TTL 86400

         @               IN      SOA     example.com. root.fred.example.com. (
                                         10021   ; Serial
                                         8H      ; Refresh 8 hours
                                         2H      ; Retry   2 hours
                                         1W      ; Expire  1 week
                                         1D      ; Minimum 1 day
                                 )
                                 NS              fred.example.com.
                 IN              A               209.217.100.58
                 IN              MX          10  mail.example.com.
                 IN              MX          20  <ISP Mail Machine>.

         localhost               A           127.0.0.1
         fred                    A           10.1.1.9
         betty                   A           10.1.1.10
         dns                     CNAME       fred
         mail                    CNAME       fred
         www                     CNAME       betty
         ftp                     CNAME       betty
  ______________________________________________________________________

  缳 Ʈ Ʈ ̿ 2  ⵿Ѷ.  
  Ʈ  õ ũƮ ߰϶.

         /usr/sbin/named -u dnsuser -g dnsgroup /etc/named.conf
         /usr/sbin/named -u dnsuser -g dnsgroup /etc/named.ext.conf

     Ư   ``dnsuser'' װ ҼӵǾ ִ
  Ư  ׷ ``dnsgroup'' ߴٰ Ѵ.   ,
  ܺ ڰ     װ  , ڴ
   ѵǴ  Ư   ã  ̴. /var/named
  丮   ϵ ``dnsuser''  Ϲ  
   ־  Ǵ°̴.

  缳 Ʈ  ǻʹ dns.example.com (츮  192.168.1.1
  ּҸ )  Ӹַ .  ܺη 
  ǻʹ ܺ ̽ Ʈ Ʈ (츮  10.1.1.9
  .) Ȥ ISP DNS    ִ.

  7.1.4.  ISP  ȣ Ǵ  Ʈ

      ȣƮ Ʒ ִ  Ʈ Ų.
    ǻ  Ҵ  ISP ǻ ̸ IP
  ϵǾ ִ ϴ IPּҸ   ̴. ISP ſ
  ּ   ̻ IPּҸ  ξ ̴.   ڽ
  /etc/resolv.conf  ַ   ̷ Ѵ.:

  ______________________________________________________________________
         search example.com
         nameserver <DNS host 1>
         nameserver <DNS host 2>
  ______________________________________________________________________

    ִ ǻʹ Ʈ     
  ִ.

  7.1.5.   ű  DNS غ

     ο IP ű⸦ Ѵٸ   
  غ μ     ִ.

   IPȣ DNSlookup  ٸ ܺ Ǵ  IP
  ű⸦ ϰ, űڸ  ϱ⸦ Ұ̴. 
  Ʈ  IPȣ ĳÿ ϰ  ̹Ƿ  û
     IPȣ   ִ. ̿   ֱٿ
   Ʈ 湮   ȸϰ ϴ  ȴ.
  ο 湮,  ĳð Ǿ   鿡Դ ̿ 
     ʴ´.  ϰ ǵ ϴ  
  ֻ   Ϸ翡   ۿ   ʴ ٴ
  Ϳٰ  DNS ֻ   ÿ ŵǰ ϱ
   ð ߴ    ƴ϶  ִ.

  ű ۾ ־   ̶   Ʈ ϴ
     ع ̴. Ȥ  ̴ κи̶. 
  IPȣ ٲ  ޵ǰ ׸  ٸ ο IPȣ
  ȴ.  ̰    ̴.

    ο ISP Ͽ(Ȥ IP ȣ ο  ̿ϰ
   ISP ״ ̿   ִ.) ó ؾ ϴ 
  1  2 DNS ϴ ̴. ̷ ۾ IP ű Ϸ 
   ִ  . ׵鿡 ڵ      TTL
    ֹ϶. (5̸    ̴.  : ٵ TTL
    𸣰ڳ׿......     , ! ^^;;;)
  DNS   TTL 86400  , ׷ϱ Ϸ ϴ 
   Ѵ.   ̰ͺ TTL  ⸦ Ѵٸ 
     ٸ ͵  ű  ̾ Ǵ. ñ
  ̰  ̴.      TTL
  Nð Ǿ ִٸ, Nð    ű ۾ ϵ
  ϶.:

     ο  1 2 DNS Ʈ 
  ̽ ̷  Ѵ.  ۾ ϱ ּ Ϸ  
  ̽  װ ð ˷ Ѵ.

  ο 1 DNS    TTL  Ʈ  IP
     ־ Ѵ.

    Nð ȿ ۾  ƴٰ ϴ  
   TTL ӽѼ  ȴ.

  ,   ű غ  Ǿ.  ǻ͸ ο IPּҷ
  ϶.  ISP DNS ڵ尡 ׿ Բ ŵȴ. 5 ȿ
  ( ű   ª TTL)  ο Ʈ
  ̷.   DNS   ,  Ѵٸ 
   ִ  ڽ  ű   ׷ ؼ ۿ TTL
   ũ Ҿ  ̴.

  7.2.  E-Mail ȣ    DNS

    `` ַ ¾''  MX ڵ Ʈ
  ``mail.example.com'' ǻ͸  Ͽ ϴ.  
  ȣμ 켱  MX ڵ    Ʈ ޴´.
  ޼  ٸ MX ڵ  ޾  Ѵ. ̷
    1  ޴ ǻͰ    ޽
      ð  ϵ Ų.  
  ־  fred.example.com ̶, mail.example.com
  ٸ ޴ ο  E-Mail ϴ ǻ͸ .
     ȣ ISP   Ѵٸ,  MX
  ڵ带 ISP ǻͷ   ִ.  ISP  
   MX ڵ带  ϵ ȿ    ִ.

  7.3.  E-Mail 

     Ͽ E-MAIL  Ͽ  ȣ 
  ̶,  缳 Ʈ 󿡼  ޾ Ʈ  ǻ
  󿡼   ְ ϱ  Ư  Ͽ Ѵ.
    ̴ ޽ ȣƮ ƴ ǻͿ α ϴ 
   ڿ  ޵  ä ȣƮ  
  𸥴.  ,  Ǵ  ܺ  ̴
  ǻ(װ͵ Ƹ  IP ڽ ũž ǻͿ ϱ⸦
  ϴ PHB ɽŰ  װ Ϸ翡    ping
       ̴.)  ۵   
   semdmail   缳 Ʈ  Ǿ
  Ѵ.  ٸ  ڵ鸵   ع ׽Ʈ ϱ⸦
  ϴ  ִٸ  ÷ϰڴ.

  7.3.1.  "sendmail"  ع

  ϳ ȣƮ   ٸ  ǻͿ а ϴ 
     Ǯ 丮  Ʈ 󿡼 а Ⱑ
  Ӱ ϴ ̴. 缳 ƮǰƮ ǻʹ 缳 Ʈ
  ü   ޴ ۾  ̴. ׸ Ʈ 
  Ǯ ̺꿡      ְ ٸ Ŭ̾Ʈ
  Ʈ  ʴ ̻ 緮 ׷    ̴.
   Ϲ  ö̶° ̶  ǵ  ʴ 
  Ƿ  缳 Ʈ Ʈ ӽ ޾Ƶ̴  Ǯ
  Ǿ ִ Ʈ ̺꿡   ϴ ̴. ̰ Ʈ
   ڽſ  ϵ     ̰ Ư
  ߿  ƴϴ.  Ǯ ̺ NFS   缳 Ʈ
  Ʈ ǻ  丮μ ϰų Ȥ   
  丮μ ؾ Ѵ.   Ǯ ̺갡 缳 Ʈ
  Ʈ ǻ  Ѵٸ  ǻͿ  Ʈ  ߻
    .  ̰ ٸ  ġѴٸ,  ,
  Ʈ ǻͳ, Ȥ Ʈ  Ѱ ʾ ٿ 
  ϶.

  缳 Ʈ   ӽſ ,  Ǯ ȣƮ POP
  ġϰų Ȥ ٸ̿Ͽ  Ǯ    ִ. 
  ӽ     ޴ Ͱ ǵ  Ϳ 
  Ǿ Ѵ.   joeuser@example.com   
  ּҴ  Ӱ, barney.example.com  ǻ ̸ ƴ
     ȣƮ  Ǿ ִ ̴. ܺη 
  SMTP ȣƮ ο ּҸ ݼ۹  ִ ּҷ ۼϿ
   ̴.

    缳 Ʈ  ϰ  ּҸ
  ۼϱ   ؾ Ѵ.  ֱ  ҽ
  sendmail.org  Ʈ www.sendmail.org/
  <http://www.sendmail.org/>   ִ.   ̳ʸ 
  ʹٸ  ҽ ִ° cf/domain 丮 ް, 
   example.com.m4  ο  ϶.:

  ______________________________________________________________________
    divert(-1)
    #
    # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
    # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
    # Copyright (c) 1988, 1993
    #       The Regents of the University of California.  All rights reserved.
    #
    # By using this file, you agree to the terms and conditions set
    # forth in the LICENSE file which can be found at the top level of
    # the sendmail distribution.
    #
    #

    #
    #  The following is a generic domain file.  You should be able to
    #  use it anywhere.  If you want to customize it, copy it to a file
    #  named with your domain and make the edits; then, copy the appropriate
    #  .mc files and change `DOMAIN(generic)' to reference your updated domain
    #  files.
    #
    divert(0)
    define(`confFORWARD_PATH', `$z/.forward.$w+$h:$z/.forward+$h:$z/.forward.$w:$z/.forward')dnl
    FEATURE(redirect)dnl
    MASQUERADE_AS(example.com)dnl
    FEATURE(masquerade_envelope)dnl
  ______________________________________________________________________

  ̰ ``example.com''  Ѵ.   
  ȣƮ ǰ(缳 Ʈ Ʈ ӽ) 缳 Ʈ  ٸ
   ӽŵ Ǿ ִ  sendmail.cf  ؾ Ѵ.

      ҽ Ʈ  cf/cf, example.master.m4
  μ ϶.:

  ______________________________________________________________________
    divert(-1)
    #
    # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
    # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
    # Copyright (c) 1988, 1993
    #       The Regents of the University of California.  All rights reserved.
    #
    # By using this file, you agree to the terms and conditions set
    # forth in the LICENSE file which can be found at the top level of
    # the sendmail distribution.
    #
    #

    #
    #  This is the prototype file for a configuration that supports nothing
    #  but basic SMTP connections via TCP.
    #
    #  You MUST change the `OSTYPE' macro to specify the operating system
    #  on which this will run; this will set the location of various
    #  support files for your operating system environment.  You MAY
    #  create a domain file in ../domain and reference it by adding a
    #  `DOMAIN' macro after the `OSTYPE' macro.  I recommend that you
    #  first copy this to another file name so that new sendmail releases
    #  will not trash your changes.
    #

    divert(0)dnl
    OSTYPE(linux)dnl
    DOMAIN(example.com)dnl
    FEATURE(nouucp)
    FEATURE(relay_entire_domain)
    FEATURE(`virtusertable', `hash /etc/sendmail/virtusertable')dnl
    FEATURE(`genericstable', `hash /etc/sendmail/genericstable')dnl
    define(`confPRIVACY_FLAGS', ``noexpn,novrfy'')dnl
    MAILER(local)
    MAILER(smtp)
    Cw fred.example.com
    Cw example.com
  ______________________________________________________________________

    츮 ``expn''  ``vrfy''   Ұϰ ؾ
  Ѵ.  ڴ ``expn'' ̿Ͽ ٸ  (
  ܾ  ʴ±.....) װ ܺ    
    ``staff'', ``allstaff'', ``office''  ̸   ֱ
  ̴.  ״ װ    н带  
    ̴.  ( տ α ȭ     - 
    `` ο  ''  ܺ ڿ
  α Ʈ  ʴ°Ϳ  ϸ ϰڴ.)

    ؾ ϴ   example.slave.m4 ӵ
  ǻ͸  sendmail.cf  .

  ______________________________________________________________________
    divert(-1)
    #
    # Copyright (c) 1998 Sendmail, Inc.  All rights reserved.
    # Copyright (c) 1983 Eric P. Allman.  All rights reserved.
    # Copyright (c) 1988, 1993
    #       The Regents of the University of California.  All rights reserved.
    #
    # By using this file, you agree to the terms and conditions set
    # forth in the LICENSE file which can be found at the top level of
    # the sendmail distribution.
    #
    #

    #
    #  This the prototype for a "null client" -- that is, a client that
    #  does nothing except forward all mail to a mail hub.  IT IS NOT
    #  USABLE AS IS!!!
    #
    #  To use this, you MUST use the nullclient feature with the name of
    #  the mail hub as its argument.  You MUST also define an `OSTYPE' to
    #  define the location of the queue directories and the like.
    #  In addition, you MAY select the nocanonify feature.  This causes
    #  addresses to be sent unqualified via the SMTP connection; normally
    #  they are qualified with the masquerade name, which defaults to the
    #  name of the hub machine.
    #  Other than these, it should never contain any other lines.
    #

    divert(0)dnl

    OSTYPE(linux)
    FEATURE(nullclient, fred.$m)
    Cm example.com
  ______________________________________________________________________

      ̿Ͽ sendmail.cf  ؾ Ѵ.:

         make example.master.cf example.slave.cf

  ׸  ϵ   ǻ͸ sendmail.cf  ̸
   ־ Ѵ.

  κ sendmail   /etc/sendmail ؿ  .
  sendmail Ͽ virtusertable.db genericstable.db 2 ٸ
   ϴ    ̴. ̿  Ư ϵ
  ̿Ͽ, ׵     ִ. ù° virtusertable.src
    .:

  ______________________________________________________________________
         John.Public@example.com                 jpublic
         Jane.Doe@example.com                    jdoe@somemachine.somedomain
         abuse@example.com                       root
         Pointyhaired.Boss@example.com           #phb#@hotmail.com
  ______________________________________________________________________

  ̰ ο    ּ ̴.
  John.Public@example.com     jpublic̶ 
   Ѱ ִ  ǹѴ. Jane.Doe@example.com 
   ٸ   jdoe@somemachine.somedomain Ѱ ̰
  ܺ ε  Ǻ   ǹѴ.
  abuse@example.com  ϵ   root
  . ٸ  genericstable.src 캸.:

  ______________________________________________________________________
         jpublic                                 John.Public@example.com
         janedoe                                 Jane.Doe@example.com
         whgiii                                  Pointyhaired.Boss@example.com
  ______________________________________________________________________

    Ʈ   ܺη   ִ Ϸ ̸
  ٲٴ Ѵ. ̰  ߽   ּҸ ο
  Ǵ    ̸  jdoe@somemachine.somedomain
   ٲٴ ۾ Ѵ. ,  Makefile
  /etc/sendmail/ ȿ .:

  ______________________________________________________________________
         all : genericstable.db virtusertable.db

         virtusertable.db : virtusertable.src
                 makemap hash virtusertable < virtusertable.src

         genericstable.db : genericstable.src
                 makemap hash genericstable < genericstable.src
  ______________________________________________________________________

  make ⵿ sendmail   ְ ϴ ؽ  ϶.
  ׸   ٲ Ŀ  ٽ make    sendmail
  ؾ Ѵٴ  ϶.

  7.3.2.  ٸ  α׷ ̿ 

  δ sendmail ϰ ִ.   ڽ ⸦
  ϴ    ֱ ٶ. ٽ ؼ  MTAs 
   Postfix, Exim, Ȥ smail    ڼ  ߿
  ϰڴٴ ̴.    ׷ α׷   ٸ
     þ  ִ  ٰ Ѵ.

  7.4.  Ȩ  

      Ʈ   缳 Ʈ
  ܺο ̴   ¾ϰ ȴ.    缳 Ʈ
   ٸ ǻǸҽμ Ǵ ͺ̽ ϴ 
  ʿ ϴٸ,  Ȳ Ʈ  Ȼ    Ȳ̴.
  ׷ Ȳ      ̴.

       WWW HOWTO ġ  ã 
   .   metalab.unc.edu/pub/Linux/docs/HOWTO/WWW-HOWTO
  <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/WWW-HOWTO>  ã 
  ִ. (׷ 츮 󿡼 KLDP ã  ǰ?)

  7.5.  FTP 

  ٽ    ,  FTP  ܺη  ǻͿ߸
  , 缳 Ʈ Ʈ  ǻͿ   ̴. 
  FTP  Ű ۿ  ¾   ϴ. 
   ˷ Ȼ  ϱ  ֽ  ٿε
  ޾ ġϵ ϶.   FTP ͸   ε带
    ̶  Ϻ ɼ  Ѵٴ  .
   ε  FTP α FTP ȣƮ  ʰ ϰ
   ʿ ϴ ڸ scp,   Ʈ Ǿ 
  ׵ FTP ȣƮ  ־߸ ϴ     
    õѴ.  ̰ ڿ     ̰
  Ÿ ̳ 鿡   `` ο  ''
  ϶.

  7.6.  Ŷ ͸ 

  ``ȭ ''κп ڼ  ִ.

  8.   ο  

     ο      ̴.
   κ ٷ 鿡 ִ.    ʹ
  ǰ, ̽  ʹ ưԸ Ǿ ִٸ 
   ο ŸϿ ڽ ȯ  ̴. ׷ ¸ 
   ȭ   ȿ ־  ϶ ̴.
  ׸   Ʈ  ͼ Ʈ  
     ⸦ ϵ־.  ̶  ߿
  ̴.   ʹ Ͽ,  ׵ ܺη 
   ȭ  Ʈ ͳ ܼϰ   ۿ  
  ˰ ִ. ̰  α ϴ  ٴ . Ȥ 
  ׷ ϵ   ִ.  ϰ  .

     Ʈ ܺηκ  ϰų, Ȥ 
  Ǫ ϴ   зѴ.  չ 
      ư  ۾ Ѵ. ׸ ü
     Ѿ ̴.

   ǿ Ϸ ǹ `` ִ '' ϱ 
  ̴.  ISP  ڴ װ  ,  
  ִ  ɼ ũǷ,  н带 ڿԼ 
  Ѵ.    ڰ  н(ڰ
  н带 ؾ   ޿.)  ý ũĿ ˷
    .      ȿ ־ Ͱ
    ִ   Ͽ ؾ Ѵ. װ, 
  , Ȥ 缳 Ʈ  IP ̿Ͽ ٸ Ʈ Ŷ
  μ    ߴ    ϴ  ִ.

  8.1.  ȭ 

    ipchains  ŽĿ̵ , , 
  ͸ .  IPCHAINS-HOWTO   д  . ׶
  ̰ Ʈ metalab.unc.edu/pub/Linux/docs/HOWTO/IPCHAINS-HOWTO
  <ftp://metalab.unc.edu/pub/Linux/docs/HOWTO/IPCHAINS-HOWTO> ߰
   е .  HOWTO ŽĿ̵ ϴ Ŀ
  Ϻ,  ipchains   ױ ٷ ִ. 
  ܺ IP   ǻ͵ ȭμ  ִ.

  缳 Ʈ Ʈ ӽ ϰ  ŸƮ ũƮ
  üũ϶.:

  1. ܺ ̴ ī尡 νĵȴ

  2. ipchains  ȭ ۵ȴ.

  3.  ۵ȴ.

  4. Ʈ   ⵿ȴ.

     ,     ýۿ, ȭ  rc.inet1
     rc.inet2 ̿ ̷. 幰   ȭ  ۾
      Ͼٸ,  ޼  ̴ Ʈ  
     ⵿ϱ  ܺη  ̴ ȸ  ϶.

  ipchains  ȭ Ϲ    ϴ
   ̽ Ŷ    Ȥ ܺ Ȥ
  ο ȭ   ̴. ̷  Ŷ ȭ
   ȭȴ.   , ̷ ۾ ȭ ø̼
  ȭ ȣƮ  ִ     ź
   ٿ  Ʈ  ȴ. ҿϰԵ ̷ ͵
  ȭ  ǹ̾  ȴ. ipchains Բ ̷
   ȭ ũƮ  ϵ   Ŷ ҽ
   캸  ذ  ִ.  ̰ /sbin/firewall.sh
  ũƮ ̴.:

  ______________________________________________________________________
    #! /bin/sh
    #
    # New firewalling script using IP chains. Creates a filtering router
    # with network masquerading.
    #

    # define a few variables

    IPCHAINS=/sbin/ipchains

    LOCALNET="192.168.1.0/24"   # the private network
    ETHINSIDE="192.168.1.1"             # fred.example.com's private IP #
    ETHOUTSIDE="10.1.1.9"               # fred.example.com's public IP #
    LOOPBACK="127.0.0.1/8"
    ANYWHERE="0/0"
    OUTSIDEIF=eth1                  # fred.example.com's private interface

    FORWARD_PROCENTRY=/proc/sys/net/ipv4/ip_forward

    #
    # These two commands will return error codes if the rules
    # already exist (which happens if you run the firewall
    # script more than once). We put the commands before "set -e"
    # so that the script doesn't abort in that case.

    $IPCHAINS -N outside
    $IPCHAINS -N portmap

    set -e                  # Abort immediately on error setting
                            # up the rules.

    #
    # Turn off forwarding and clear the tables

    echo "0" > ${FORWARD_PROCENTRY}

    $IPCHAINS -F forward
    $IPCHAINS -F input
    $IPCHAINS -F output
    $IPCHAINS -F outside
    $IPCHAINS -F portmap

    #
    # Masquerade packets from within our local network destined for the
    # outside world. Don't masquerade packets which are local to local

    $IPCHAINS -A forward -s $LOCALNET -d $LOCALNET -j ACCEPT
    $IPCHAINS -A forward -s $ETHOUTSIDE -d $ANYWHERE -j ACCEPT
    $IPCHAINS -A forward -s $LOCALNET -d $ANYWHERE -j MASQ

    #
    # Set the priority flags. Minimum delay connections for www, telnet,
    # ftp, and ssh (outgoing packets only).

    $IPCHAINS -A output -p tcp -d $ANYWHERE www -t 0x01 0x10
    $IPCHAINS -A output -p tcp -d $ANYWHERE telnet -t 0x01 0x10
    $IPCHAINS -A output -p tcp -d $ANYWHERE ftp -t 0x01 0x10
    $IPCHAINS -A output -p tcp -d $ANYWHERE ssh -t 0x01 0x10

    #
    # Anything from our local class C is to be accepted, as are
    # packets from the loopback and fred's external IP.
    $IPCHAINS -A input -s $LOCALNET -j ACCEPT
    $IPCHAINS -A input -s $LOOPBACK -j ACCEPT
    $IPCHAINS -A input -s $ETHOUTSIDE -j ACCEPT

    # We'll create a set of rules for packets coming from the big, bad
    # outside world, and then bind all external interfaces to it. This
    # rule will be called "outside"
    #
    # We also create a "portmap" chain. The sockets used by daemons
    # registered with the RPC portmapper are not fixed, and so it is
    # a bit difficult to set up filter rules for them. The portmap
    # chain is configured in a separate script.

    #
    # Send packets from any outside interface to the "outside"
    # rules chain. This includes the $OUTSIDEIF interface and any
    # ppp interfaces we create for dialout (or dialin).

    $IPCHAINS -A input -i ${OUTSIDEIF} -j outside
    $IPCHAINS -A input -i ppp+ -j outside

    ##################################################
    #
    #  Set up the "outside" rules chain              #
    #
    ##################################################

    #
    # Nobody from the outside should claim to be coming from our localnet
    # or loopback

    $IPCHAINS -A outside -s $LOCALNET -j DENY
    $IPCHAINS -A outside -s $LOOPBACK -j DENY

    #
    # No packets routed to our local net should come in from outside
    # because the outside isn't supposed to know about our private
    #  IP numbers.

    $IPCHAINS -A outside -d $LOCALNET -j DENY

    #
    # Block incoming connections on the X port. Block 6000 to 6010.

    $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 6000:6010 -j DENY

    #
    # Block NFS ports 111 and 2049

    $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 111 -j DENY
    $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 2049 -j DENY
    $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 111 -j DENY
    $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 2049 -j DENY

    #
    # Block XDM packets from outside, port 177 UDP

    $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 177 -j DENY

    #
    # Block the YP/NIS port 653
    $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 653 -j DENY

    #
    # Don't bother logging accesses on TCP port 80, the www port.

    $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 80 -j DENY

    #
    # Accept FTP data and control connections.

    $IPCHAINS -A outside -p TCP -s $ANYWHERE 20:21 -d $ANYWHERE 1024: -j ACCEPT

    #
    # Accept ssh packets

    $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE ssh -j ACCEPT

    #
    # Accept DNS packets from outside

    $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 53 -j ACCEPT
    $IPCHAINS -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 53 -j ACCEPT

    #
    # Accept SMTP from the world

    $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 25 -j ACCEPT

    #
    # Accept NTP packets

    $IPCHAINS -A outside -p UDP -s $ANYWHERE -d $ANYWHERE 123 -j ACCEPT

    #
    # Accept no tap ident packets, we don't use them

    $IPCHAINS -A outside -p TCP -s $ANYWHERE -d $ANYWHERE 113 -j DENY

    #
    # Turn off and log all other packets incoming, TCP or UDP, on privileged ports

    $IPCHAINS -l -A outside -p TCP -s $ANYWHERE -d $ANYWHERE :1023 -y -j DENY
    $IPCHAINS -l -A outside -p UDP -s $ANYWHERE -d $ANYWHERE :1023 -j DENY

    #
    # Check against the portmapper ruleset

    $IPCHAINS -A outside -j portmap

    ##############################################
    #
    #    End of "outside" rules chain            #
    #
    ##############################################

    #
    # Block outgoing rwho packets

    $IPCHAINS -A output -p UDP -i $OUTSIDEIF -s $ANYWHERE 513 -d $ANYWHERE -j DENY

    #
    # Prevent netbios packets from leaving

    $IPCHAINS -A output -p UDP -i $OUTSIDEIF -s $ANYWHERE 137 -d $ANYWHERE -j DENY
    #
    # Turn on forwarding

    echo "1" > ${FORWARD_PROCENTRY}
  ______________________________________________________________________

  ȭ ܺο  Ŷ ϴ  ƴ϶  
  Ʈ  rwho netbios  Ʈ   Ŷ鵵
  Ѵ.

  ̸  ξ ϴµ Ʈ Ģ ణ ٸ. װ
  Ʈ ڽ ϵ Ʈ    Ʈ  ִ
  ϱ ̴. Ư   Ǵ Ʈ  RPC 
   ٲ  ٲ  ְų Ȥ ׵ ⵿  ȯ 
  ٲ  ִ. ̿   ũƮ /sbin/firewall.portmap.sh 
  Ʈ   Ģ  ִ.

  ______________________________________________________________________
         #! /bin/sh
         #
         ANYWHERE=0/0

         IPCHAINS=/sbin/ipchains

         $IPCHAINS -F portmap

         # Rules for preventing access to portmapped services by people on the outside
         #
         /usr/bin/rpcinfo -p | tail +2 | \
                 { while read program vers proto port remainder
                   do
                         prot=`echo $proto | tr "a-z" "A-Z"`
                         $IPCHAINS -l -A portmap -p $prot -s $ANYWHERE -d $ANYWHERE $port -j DENY || exit 1
                   done
                 }
  ______________________________________________________________________

  츮  Ʈ  Ŷ ƿ   ʿ䰡
   Ʈ ü  ܺο ƿ ͸ ȮѴ.

  ȭ  α״ kern.info Բ ϴ klogd Ͽ ǽɽ
  ͵ Ͽ . ̰ Ϲ  õ ġ ڽó
   ɴ.

  , 츮 ̷ ͵  ˰ Ǿ.츮 ý ۵Ǵ 
      Ȯϴ  . ׷Ƿ 츮 츮
       ʿ䰡 ִ.:

  ______________________________________________________________________
    #! /bin/sh
    #
    # Get the network started, securely
    #
    #
    /etc/rc.d/rc.inet1              # Configure the network interfaces
                                    # and set up routing.
    /sbin/firewall.sh || { echo "Firewall configuration failed"
                           /sbin/ifconfig eth1 down }

    /sbin/ipchains -I outside 1 -j DENY     # Deny all incoming packets

    /etc/rc.d/rc.inet2              # Start the network daemons

    sleep 5                         # Let them stabilize

    # Secure the portmapped services
    /sbin/firewall.portmap.sh || { echo "Portmap firewall configuration failed"
                                   /sbin/ifconfig eth1 down }

    /sbin/ipchains -D outside 1       # Allow incoming packets
  ______________________________________________________________________

  eth1  ܺη  IP Ҵް ִٰ .  ipchains
  Ģ  Ͽٸ,  ޽  ̴. ``ܺ'' ü
  ȭ 񽺴 Ʈ 񽺰 ⵿Ǳ    
  Ģ̹Ƿ Ʈ   ⵿Ǳ   Ŷ ź
  ̴.  Ʈ 񽺰 ȭ  ϸ, ܺ ü
  νϴ ̴.

  8.2.  SSH1 

      OpenSSH   ϴ Ư¡  ϳ
   ʴ´. ׷ OpenSSH  Ȱ ǰ Ƿ,
  ̰  ٲ  ִ κ̴.  ִ ٷο Ư¡
   scp, ssh, slogin  rcp, rsh, rlogin  ̸ ٲپ,
  rcp, rsh, rlogin   α׷ ssh Ŭ̾Ʈ α׷
  ٲ, sshd ۵ ̴    ϴ   ̴.
  rsh ϸ  ϴ  ssh Ŭ̾Ʈ α׷ Ͽ
  ڵ    ذ  ִ ̴.  ̵
  ũƮ, rdist   sshd ۵ϴ  Ʈ 
   ۾   ִ. ׷ ʹ ȣȭǾ  ̰
   Ȯ Ǵ ̴.

   Ʈwww.ssh.org/ <http://www.ssh.org/> ssh1 ϰ, װ
  Ͽ ȣȭ  r-α׷(rsh, rlogin, rcp )
  ü϶. ,    ϵ /usr/lib/rsh  ְ, ssh
  Ű   ϶.:

          ./configure --with-rsh=/usr/lib/rsh/rsh --program-transform-name='s/^s/r/' --prefix=/usr

      ġϰ Ѵ. 缳 Ʈ Ʈ̿
  sshd    Ʈ  ̴.:

         ListenAddress 192.168.1.1       # fred's internal IP
         IgnoreRhosts no
         X11Forwarding yes
         X11DisplayOffset 10
         RhostsAuthentication no
         RhostsRSAAuthentication yes
         RSAAuthentication yes
         PasswordAuthentication yes

   /etc/sshd_config  ȿ ٸ Ʈ ؾ߸ ϰ 
  ̴.  ׷  ʵ带 ٲ ʵ .    ȿ
     Ʈ  ִٸ,  Ʈ   
  /etc/sshd_config.ext  ܺ Ʈ   ־. 
  Ͽ    ʵ Ͽ. :``ListenAddress'' 缳
  Ʈ IP ܺη   ִ ̸ üϴ ̴. 
  10.1.1.9 fred.example.com ٲٴ  ְڴ. ׸ ``Passwor
  dAuthentication'' ``no'' ض.   Ʈ ⵿ϴ
  ũƮ, sshd 2 ϵ ϶.  

         /usr/sbin/sshd

   , ٽ  

         /usr/sbin/sshd -f /etc/sshd_config.ext

   ̴.

  ̰ 2 sshd  ⵿Ų. ϳ  ̽ α
   н带 üũ ٸ  ܺ ̽ RSAŰ
   α ϱ  ϰ Ѵ.

  , η  telnet  񽺸 inetd  Ͽ
   Ѵ.  κ ȭ   ǿ ̺ ܺο
       ִ. ׷ ̰  ־ 
  ̴.  ۾      𸥴ٴ ̴.

  , Ȥ  ۿ α ϴ  RSA Ű ʿϴ.
  ׵  ؾ   ˰ , ׵ telnetd 
  ȭ  Ʈ δ Ͱ  ٸ  ׷  Ͽ
  ڽ  Ҹϰ ; ʴ´.

  RSA Ű     ̷.:

         ssh-keygen -b 1024 -f new_rsa_key

   н κ Ʈ  ̴. ̰  Ǿ 
   ̴.  new_rsa_key ϰ, н  ˰ ִ 
     RSA   ϱ   ʿ   ִ
  ̴.  н      н̰ų Ϲ
     ̾ Ѵ.  new_rsa_key ÷ ũ, ž
     н  Ͽ  αϴ  
  Ư RSA Ű 㰡Ѵ.

  Ư RSAŰ     㰡 ̷ , 
  ܼ  缳 Ʈ Ʈ( ǻʹ α  
   ̴.) ڸ  $HOME/.ssh/ 丮 Ͽ
  $home/.ssh/authorized_keys   ssh-keygen  Ͽ 
  new_rsa_key.pub   ִ ̴. sshd Ŵ  ŷϴ
  IP, Ȥ ȣƮ ̸    α û̳ Ȥ ܺο
  ,   ŷڰ   쿡  ߰
    ִ ٸ ɼ Ű鿡  μ  ִ
  ``AUTHORIZED_KEYS FILE FORMAT''     ִ. (
  ڸ, RSA Ű ٸ , Ȥ  Ϸ  ϴ
   .)

  RSA Ű ī   켱     
  Ҵ.    ڰ ѵ    н  ˾
   ȴٸ, ״ ΰ   Ǿ Ȼ  ų
  ɼ   ȿ  ִ ̴. , α 
  ssh-agent  ҷ.     Ǵ ȸ
  ž Ǽ xdm Ǿ ڿ X   Ѿ
  ȴٸ, /var/X11R6/lib/xdm/Xsession_0   õ  ҷ
    ϸ   ٲٵ ϶.:

         exec "$startup"

    ̷ ٲ.:

         exec ssh-agent "$startup"

   xdm ,  Ͽ  3 ٲ. ڰ
  ž α , ״   Էؾ߸ ϴ ̴.

         ssh-add new_rsa_key

  α Ʈ  н  Է ޾Ƽ, ڰ  X
   ž   , 缳 Ʈ    н
      ֱ ؼ ؾ  ̴.

  sshd   缳 Ʈ  ǻͿ ܺ ȣƮ Ͽ
  ۵ϰ ִ. 缳 Ʈ   ƴ ǻͿ Ͽ
  ListenAddress Ʈ /etc/sshd_config ȿ ``0.0.0.0''  
   ִ.     ȣƮ Ű   ִ:

         ssh-keygen -b 1024 -f /etc/ssh_host_key -N ""

  make-ssh-known-hosts ϰ /etc/ssh_known_hosts  ȿ 缳 
   Ʈ  ǻ͸ зϴ ̴.

  ȣȭ  r-񽺵 ڳ ܺο   
  ϰ Ѵ. ڳ       ̰ Ʈ 23
   ٸ ڳ ǵ麸  ̴ϱ.  缳 Ʈ 󿡼
  н带 ̿  Ͽ ܺηκ  ϰ ܺ
  ȣƮ  RSAŰ α׿   ִ.

  ̰ 缳 Ʈ ȣƮ  /etc/hosts.equiv  
  ϵǾ  Ͽ ڵ鿡  ̴. sshd  װ͵鿡
    rlogin rsh ǻ͵  н峪 н  
  ϰ Ѵ.  ӿ ־, ǻ͵ ȣƮ  RSA Ű
  Ͽ  ϼ ؾ߸ ϴ ̴.

  ڰ ܺ Ʈ IP  ǻͿ 缳 Ʈ 
  ǻͷ α ϱ⸦   ٸ  Ÿ. 
  /etc/hosts.equiv Ȥ $HOME/.shosts н    ̿
    ȴ. װ ڰ   IP-̰ ŽĿ̵ 
  ϼ, ȭ   ȣƮ Ű ġ  ̴. -
     Ա ̴.  ̿   ع ִ.  
   /etc/hosts.equiv  $HOME/.shosts ޼ҵ带   
  ε,   ڵ 缳 Ʈ α׸ ܾ߸  ̴.
  ׸  α״ ⸦ õ ܺ ǻͿ  ̴. ٸ
   RSA Ű  ̿ϴ ̴.  װ  IP ȣƮ
  ̸ lookup õϴ ǿ  ۵Ѵ.

  8.3.  X 

    Ⱥٴ  ߱ϱ    
  Ž   ִ. ̰     ϰ Ѵ.

         xhost +

    X ʱȭ ϴ ̴. ̷ 㰡  X 
     ְ ȴ. ܺ   ڰ 
  Ʈ  ȸ   Ϳ   ڱ ӴϿ
  繫  ִٰ ϰ    ٲپ   ְ
  ȴٴ ̴. ̷ ܺ  ͸ ϰ  ũ
     Ѱ   ִ ̴.    ܼҸ,
  ̰  ٸ Ʈ αημ н带 ѱ  Ȥ
  ΰ   ȭ鿡  ϴ Ȳ ϸ   
  Ȳ̶°    ̴. xhost  ڽ 
    ȭ   絵ϴ  Ұ Ѱ踦
   ְ,    ̴.

  xauth  .   xdm   ִٸ  Ƹ
  ̹ xauth  ϰ  ̵ xhost   ִ.
  ׸ Ƹ  ǻ ̿ X μ ϰ 
  ̴.  ٽ ڸ, ̰  ڵ xhost   ̻
   ʰ ϱ , Ȱ  Բ ڴ ̴.

  ``SSH1 '' ǿ ``X11 ''  ⺻  Ͽ sshd
  ¾   xhost ũк ϱ  ̴. 
   ͹̳ο     rlogin  ǻͿ
   ݽ xv, Ȥ ٸ ϴ ͵ $DISPLAY 
  ϰų    ʰ   ִ. ssh α
  ڿ   ϰ,   X Ŷ 
  ȣȭ ׵ Ʈ   ӵȴ.

    sshd X11   ̿  ٸ, 
  xauth   X  ϱ⸦ ϴ ٸ ǻ͵鿡
   å   ִ. ڸ  Ȥ Ư ׵  
  ִ  ũƮ Ǿ ִ  ִ. ``jpublic''
  ǻͻ󿡼 ``barney''  X  ϱ  õ
    ִ.:

         /usr/X11/bin/xauth extract - $DISPLAY | rsh -l jpublic barney /usr/X11/bin/xauth merge -

   xhost  ǻ Ʈ  Ȥ ޴ ̴.
   װ  α׷  ȴٸ  ּ װ ȿ
   ̶    ִ ̴. ̰ xauth  Ʈ
  ϴ xhost  ǵ   ũƮ ۼϴ 
  ϴ.

  rsh ssh α׷ ȣȭ  ʾ , xauth Ű ܼ
  ؽƮμ  ̶  . װ Լ 
      ִ. ׷Ƿ  ȣȭ   ssh
   ʾҴٸ    ؼ  Ǵ ̴. Դٰ
   Ȩ 丮 NFS  ܺο Ǿ ִٸ, xauth Ű 
   NFS Ŷ  ä   ִٴ  ϰ ssh 
  ýۿ ⵿Ѿ Ѵٴ  .

  8.4.  ũ  

      װ   а     ְ
  Ѵٸ  ̴. ׷ ɽϰ      
   Ϲ 鿡  ణ Ǵ ￩ Ѵ. AUTH_DES 
    NFS ϴ   ³ ٸ. NFS Ŭ̾Ʈ
    ŷ   ϴ ̴. װ  н
   ̵ Ŭ̾Ʈ   ڽ Ͽ  
  ִٴ ̴.  쿡 н     Ϻϰ
  ϰ NFS    uid ̵ ϰ Ѵ.  NFS
   ڽ  нó  ﰢ   Ͽ ؾ
  Ѵ.      Ǵ ǻͿ ؼ   ̴. 
    Ǯ 丮 Ȥ  ٸ 丮  
  ڽ ̿Ǳ⵵ ϴ ǻͿ ϱ⸦ Ѵٸ ׶
  ``security=USER'' 忡   Ǵ (samba) ̿ϱ
  ٶ.  Ʈ  ǻ͸ ϴ  ٴ ġ
  ͸ ̿ϴ ͵ ణ 峭 Ƿ   ִ ǻ͸
  ϴ  ϴ    ̴. · Ʈũ 
  Ǵ  ũ  ϴ    ̶ ͸
  ϶.

  ׷  Ʈ  ũ  ö ϰ ?
  κ Ȯ  ̽ ȴ.     
  å  ΰ    繫ǿ    Ҵٰ
  . ״  װ   ġ ִ° ϰ
  װ  ġ ִ ̶ ΰ  ο κп  å
  ɾ װ  ̴.     ĳ̳ å  ӿ
   ־ٸ װ и   ̾ ̴.  ܼ
  Ʈ    쿬     ʴ Ϳ
  ִ ص  ƴϴ.

  9.  (ؾ  ʿ伺   κ.  Ƽ. ^^* ˼.)

  This document was written as internal documentation for the DYNACAN
  project, as part of the project's continuing development under the
  control of the Ministry of Human Resources Development Canada.

  This document has benefited considerably from the suggestions of

  ? Rod Smith ( rodsmith@rodsbooks.com <mailto:rodsmith@rodsbooks.com>),
  who suggested I provide details on registering a domain name and on
  setting up with a dynamic IP, and pointed me at the various dynamic IP
  hosting services and at Granite Canyon.

  ? Greg Leblanc ( gleblanc@my-deja.com <mailto:gleblanc@my-deja.com>)
  for useful suggestions on improving the clarity of the document.

  ? Sami Yousif ( syousif@iname.com <mailto:syousif@iname.com>), who
  told me about www.dhs.org.

  ? Marc-Andr?Dumas ( m_a_dumas@hotmail.com
  <mailto:m_a_dumas@hotmail.com>), who suggested the section on moving
  your domain to a new IP number.

  10.   ؼ

     ޵Ǿ  ܾ ڵ鿡  ̴.

     CGI ũƮ
        CGI A Common Gateway Interface Script ̴. ̰ 
          ϴ   ִ α׷̴. 
        ܼ  ׷    ִٸ, 
         ϰų    ̳ϰ  ִ CGI
        ũƮ   ̴. ̷    Խ̳
        ǵ , Ȥ  īƮ(ٱ )    ̴.

     DHCP
        Dynamic Host Configuration Protocol . RFC 1531 ǵǾ
        ִ IP ȣ ݸũ, Ʈ   ߾  óϿ
        ̷  ǻ  TCP/IP Ʈ  ǥ .
        ڷμ ̿  ǻ  ϴ  Ʈ ߰
           ó 鿡  .

     DNS
        Domain Name Service . IP ȣ  ̸ ȯϴ
         ǥ ȴ. ߾  ̽ ̿Ѵ.

     DSL
        Digital Subscriber Line .  Ʈ  Կ ȭ
         Ϲ  ѱ  Ѵ.

      IP
        ̸ֱ  ٸ IP ȣ  ϰ ִ. ѹ 
        ȣ  ȴٴ   .  IP 
        Ʈ ϱ  ȭ ɾ     ٸ ȣ
        οȴ. Ȥ DHCP 絵  ֱ ٲ  
        ִ. Ϲ telnet ̳ ssh  Ϲ 񽺵 
         ̷   IP ٲ  񽺵 ʴ´.

     DNS  
        IPȣ   ȯϴ ``DNS''  

     FTP
          . ͳ 󿡼  ǻͿ ٸ ǻͷ
           ⺻ .

     ftpd
        ȣƮ ``FTP'' 񽺸 ϴ .  Ŭ̾Ʈ
        û ޾Ƶδ.

        Internet Service Provider ``ISP''  .

        IP  ``IP ȣ'' κ .

     IP ȣ
        Ȯ Ʈ ``Ҵ ּ''  Ѵ. ipv4 Ҹ
        ּ  ǥ   ڴ 4 8Ʈ  ̷
        Ϲ Ǵ  ϵȴ. ͳݿ  ǻͰ
        IP ȣ    Ŷ  ȴ.

     ISP
        ͳ  .  Ʈ   ϴ ȸ縦
        ´ ̴. (ϵ,  ȣ, IP ȣ  
        ϴ .)

     ŽĿ̵
        ϳ ǻͿ ٸ ǻͷ  Ŷ ͸ ϴ 
         ߽ Ǵ ǻ  ϴ . ߽ Ǵ
        ǻʹ   ǻͷ  ȸ  . ϳ
        IPȣ Ʈ  ǻͰ Ͽ ŽĿ̵ ȣƮ
        Ͽ ܺη   ִ.

     named
          . ̰ ``DNS''  亯ϰ BIND Ű
        κ Ѵ.

        Network Time Protocol ``NTP''  .

     NTP
        Network Time Protocol.  ǻ ð踦  ǥؽ÷
        Ѵ. ð ``Ȯ '' ð  ϰ ִ.

        OS ۷ ý .  ü Ѵ.  ,
        BeOS , BeOS, HP-UX .....

     PHB
        Գ Ӹ 
        www.unitedmedia.com/comics/dilbert/about/html/boss.html
        <http://www.unitedmedia.com/comics/dilbert/about/html/boss.html>.
        Ʈ  ڵ ִ â̴.

     Provider
        ``ISP''  .

     DNS  
        ``DNS''   ̸  IP    Ѵ.

     Router
        IP ּҿ Ͽ Ŷ   ̴ ϵ 
        ῡ  ISP ̿ Ű Ǵ Ư ϵ
        ̽ Ѵ.

     ssh
        The secure shell . rlogin, telnet, ftp, Ȥ ٸ 񽺸
          ȣȭ . Ǫ   ܺ ̳ Ȥ
        Ŷ  Ѵ.

     Ǿ ִ  IP
        ``IP ּ''   Ӵǰų Ȥ Ǿ ִ ̴.
          ּҿ   ȭ ʴ ̻  ּҴ 
          ̿  ִ ̰, ͳ   ٸ
        ǻ͵  ȣ    ̴. ׷  츦
        `` IP'' Ѵ.

