### 0.显示当前Debian版本号
root@debian8:~# cat /etc/debian_version
8.2
### 1.开机不自动进入图形环境
# 查看默认图形显示管理器配置文件
root@debian8:~# cat /etc/X11/default-display-manager
/usr/sbin/gdm3
# 注释文件原有内容,增加一行内容为false
root@debian8:~# cat /etc/X11/default-display-manager
#/usr/sbin/gdm3
false
### 2.显示网络监听端口对应的进程
root@debian8:~# netstat -lnp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 634/rpcbind
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 667/sshd
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 1028/cupsd
tcp 0 0 0.0.0.0:49368 0.0.0.0:* LISTEN 643/rpc.statd
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1017/exim4
tcp6 0 0 :::111 :::* LISTEN 634/rpcbind
tcp6 0 0 :::22 :::* LISTEN 667/sshd
tcp6 0 0 ::1:631 :::* LISTEN 1028/cupsd
tcp6 0 0 ::1:25 :::* LISTEN 1017/exim4
tcp6 0 0 :::36859 :::* LISTEN 643/rpc.statd
udp 0 0 0.0.0.0:631 0.0.0.0:* 1029/cups-browsed
udp 0 0 0.0.0.0:809 0.0.0.0:* 634/rpcbind
udp 0 0 127.0.0.1:819 0.0.0.0:* 643/rpc.statd
udp 0 0 0.0.0.0:5353 0.0.0.0:* 680/avahi-daemon: r
udp 0 0 0.0.0.0:52831 0.0.0.0:* 643/rpc.statd
udp 0 0 0.0.0.0:1900 0.0.0.0:* 760/minissdpd
udp 0 0 0.0.0.0:55280 0.0.0.0:* 680/avahi-daemon: r
udp 0 0 0.0.0.0:111 0.0.0.0:* 634/rpcbind
udp6 0 0 :::49876 :::* 680/avahi-daemon: r
udp6 0 0 :::809 :::* 634/rpcbind
udp6 0 0 :::5353 :::* 680/avahi-daemon: r
udp6 0 0 :::36833 :::* 643/rpc.statd
udp6 0 0 :::111 :::* 634/rpcbind
Active UNIX domain sockets (only servers)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 16933 1289/systemd /run/user/1000/systemd/private
unix 2 [ ACC ] STREAM LISTENING 13613 708/gpm /dev/gpmctl
unix 2 [ ACC ] STREAM LISTENING 13628 760/minissdpd /var/run/minissdpd.sock
unix 2 [ ACC ] STREAM LISTENING 11607 634/rpcbind /run/rpcbind.sock
unix 2 [ ACC ] STREAM LISTENING 15456 665/NetworkManager /var/run/NetworkManager/private-dhcp
unix 2 [ ACC ] STREAM LISTENING 8302 1/init /run/systemd/private
unix 2 [ ACC ] STREAM LISTENING 8324 1/init /run/lvm/lvmetad.socket
unix 2 [ ACC ] SEQPACKET LISTENING 8327 1/init /run/udev/control
unix 2 [ ACC ] STREAM LISTENING 8330 1/init /run/systemd/journal/stdout
unix 2 [ ACC ] STREAM LISTENING 12939 1/init /var/run/avahi-daemon/socket
unix 2 [ ACC ] STREAM LISTENING 12942 1/init /var/run/dbus/system_bus_socket
unix 2 [ ACC ] STREAM LISTENING 12945 1/init /var/run/cups/cups.sock
unix 2 [ ACC ] STREAM LISTENING 12948 1/init /run/acpid.socket
unix 2 [ ACC ] STREAM LISTENING 15317 665/NetworkManager /var/run/NetworkManager/private
### 3.显示当前语言和字符编码
root@debian8:~# echo $LANG $LANGUAGE
zh_CN.UTF-8 zh_CN:zh
### 4.openssh-server服务器过程
### 5.Samba服务器安装过程
# 安装samba软件包
root@debian8:~# apt-get install samba -y
# 显示网络监听状态
root@debian8:~# netstat -anp | grep -E 'smbd|nmbd'
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 2803/smbd
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 2803/smbd
tcp6 0 0 :::445 :::* LISTEN 2803/smbd
tcp6 0 0 :::139 :::* LISTEN 2803/smbd
udp 0 0 0.0.0.0:137 0.0.0.0:* 2867/nmbd
udp 0 0 0.0.0.0:138 0.0.0.0:* 2867/nmbd
# samba配置文件默认为/etc/samba/smb.conf
# 过滤掉空行、注释,只显示有效的配置文件内容
root@debian8:~# cat /etc/samba/smb.conf | grep -v ^# | grep -v ^\; | grep -v ^$
[global]
workgroup = WORKGROUP
dns proxy = no
log file = /var/log/samba/log.%m
max log size = 1000
syslog = 0
panic action = /usr/share/samba/panic-action %d
server role = standalone server
passdb backend = tdbsam
obey pam restrictions = yes
unix password sync = yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
pam password change = yes
map to guest = bad user
usershare allow guests = yes
[homes]
comment = Home Directories
browseable = no
read only = yes
create mask = 0700
directory mask = 0700
valid users = %S
[printers]
comment = All Printers
browseable = no
path = /var/spool/samba
printable = yes
guest ok = no
read only = yes
create mask = 0700
[print$]
comment = Printer Drivers
path = /var/lib/samba/printers
browseable = yes
read only = yes
guest ok = no
# 只以使用testparm命令检查配置文件有无语法错误
root@debian8:~# testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[homes]"
Processing section "[printers]"
Processing section "[print$]"
Loaded services file OK.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions
[global]
server role = standalone server
map to guest = Bad User
obey pam restrictions = Yes
pam password change = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
dns proxy = No
usershare allow guests = Yes
panic action = /usr/share/samba/panic-action %d
idmap config * : backend = tdb
[homes]
comment = Home Directories
valid users = %S
create mask = 0700
directory mask = 0700
browseable = No
[printers]
comment = All Printers
path = /var/spool/samba
create mask = 0700
printable = Yes
print ok = Yes
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/printers
# 备份原始配置文件
root@debian8:~# cp /etc/samba/smb.conf /etc/samba/smb.conf.org
# 配置文件中比较重要的参数有:
# read only = no 是否只读
#
#
#
#
# 原有系统用户情况
root@debian8:~# tail /etc/group
utempter:x:119:
bluetooth:x:120:gaoqiang
colord:x:121:
geoclue:x:122:
rtkit:x:123:
saned:x:124:
Debian-gdm:x:125:
lightdm:x:126:
gaoqiang:x:1000:
sambashare:x:127:
root@debian8:~# tail /etc/passwd
festival:x:112:29::/home/festival:/bin/false
speech-dispatcher:x:113:29:Speech Dispatcher,,,:/var/run/speech-dispatcher:/bin/sh
rtkit:x:114:123:RealtimeKit,,,:/proc:/bin/false
saned:x:115:124::/var/lib/saned:/bin/false
usbmux:x:116:46:usbmux daemon,,,:/var/lib/usbmux:/bin/false
kdm:x:117:65534::/var/lib/kdm:/bin/false
Debian-gdm:x:118:125:Gnome Display Manager:/var/lib/gdm3:/bin/false
lightdm:x:119:126:Light Display Manager:/var/lib/lightdm:/bin/false
gaoqiang:x:1000:1000:Gao Qiang,,,:/home/gaoqiang:/bin/bash
sshd:x:120:65534::/var/run/sshd:/usr/sbin/nologin
root@debian8:~# tail /etc/shadow
festival:*:16773:0:99999:7:::
speech-dispatcher:!:16773:0:99999:7:::
rtkit:*:16773:0:99999:7:::
saned:*:16773:0:99999:7:::
usbmux:*:16773:0:99999:7:::
kdm:*:16773:0:99999:7:::
Debian-gdm:*:16773:0:99999:7:::
lightdm:*:16773:0:99999:7:::
gaoqiang:$6$zXkv6iox$U/JNXbe16Vyr.nhVZoM6ZkZVq8vJwU7MfrKu/9NeoMLj2hSSZWE3qD7z9d2tOiGYS8eWIYdlcY5XIe4vSoyU1.:16773:0:99999:7:::
sshd:*:16776:0:99999:7:::
# 增加用户和用户组,这里为了安全不允许Samba用户登录操作系统
root@debian8:~# groupadd sambauser -g 5000
root@debian8:~# useradd smbuser1 -u 5001 -g 5000 -d /home/smbuser1 -s /usr/sbin/nologin
# 建立目录,并设置访问权限
root@debian8:~# ls /home
gaoqiang lost+found
root@debian8:~# mkdir /home/smbuser1
root@debian8:~# ls -al /home/
total 32
drwxr-xr-x 5 root root 4096 Dec 9 13:36 .
drwxr-xr-x 22 root root 4096 Dec 4 08:10 ..
drwxr-xr-x 19 gaoqiang gaoqiang 4096 Dec 9 11:02 gaoqiang
drwx------ 2 root root 16384 Dec 4 08:06 lost+found
drwxr-xr-x 2 root root 4096 Dec 9 13:36 smbuser1
root@debian8:~# chown -R smbuser1:sambauser /home/smbuser1
root@debian8:~# ls -al /home/
total 32
drwxr-xr-x 5 root root 4096 Dec 9 13:36 .
drwxr-xr-x 22 root root 4096 Dec 4 08:10 ..
drwxr-xr-x 19 gaoqiang gaoqiang 4096 Dec 9 11:02 gaoqiang
drwx------ 2 root root 16384 Dec 4 08:06 lost+found
drwxr-xr-x 2 smbuser1 sambauser 4096 Dec 9 13:36 smbuser1
# 为Samba用户和普通操作系统用户建立密码
root@debian8:~# smbpasswd -a smbuser1
New SMB password:
Retype new SMB password:
Added user smbuser1.
root@debian8:~# smbpasswd -a gaoqiang
New SMB password:
Retype new SMB password:
Added user gaoqiang.
# Windows客户端使用
C:\Users\Administrator>NET USE Z: \\10.10.170.91\smbuser1
密码在 \\10.10.170.91\smbuser1 无效。
为 '10.10.170.91' 输入用户名: smbuser1
输入 10.10.170.91 的密码:
命令成功完成。
C:\Users\Administrator>NET USE
会记录新的网络连接。
状态 本地 远程 网络
-------------------------------------------------------------------------------
OK Z: \\10.10.170.91\smbuser1 Microsoft Windows Network
命令成功完成。
C:\Users\Administrator>MD Z:\1
拒绝访问。
C:\Users\Administrator>NET USE Z: /DELETE
Z: 已经删除。
C:\Users\Administrator>NET USE
会记录新的网络连接。
列表是空的。
C:\Users\Administrator>NET USE Z: \\10.10.170.91\gaoqiang
密码在 \\10.10.170.91\gaoqiang 无效。
为 '10.10.170.91' 输入用户名: gaoqiang
输入 10.10.170.91 的密码:
命令成功完成。
C:\Users\Administrator>NET USE
会记录新的网络连接。
状态 本地 远程 网络
-------------------------------------------------------------------------------
OK Z: \\10.10.170.91\gaoqiang Microsoft Windows Network
命令成功完成。
C:\Users\Administrator>NET USE Z: /DELETE
Z: 已经删除。
C:\Users\Administrator>NET USE
会记录新的网络连接。
列表是空的。
### 6.PPPoE相关内容
# 现有PPPoE用户名、密码设置在配置文件/etc/ppp/chap-secrets中
### 7.VNC Server安装和配置
#
root@debian8:~# cat /root/.vnc/passwd
▒▒▒I▒▒d▒
root@debian8:~# cat /root/.vnc/xstartup
#!/bin/sh
# Uncomment the following two lines for normal desktop:
# unset SESSION_MANAGER
# exec /etc/X11/xinit/xinitrc
[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup
[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources
xsetroot -solid grey
vncconfig -iconic &
x-terminal-emulator -geometry 80x24+10+10 -ls -title "$VNCDESKTOP Desktop" &
x-window-manager &
# 启动服务
root@debian8:~# vncserver
New 'debian8:1 (root)' desktop is debian8:1
Starting applications specified in /root/.vnc/xstartup
Log file is /root/.vnc/debian8:1.log
# 检查VNC服务状态
root@debian8:~# ps -axjf | grep vnc | grep -v 'grep vnc'
1 1330 1323 1290 pts/0 1353 S 0 0:00 Xvnc4 :1 -desktop debian8:1 (root) -auth /root/.Xauthority -geometry 1024x768 -depth 16 -rfbwait 30000 -rfbauth /root/.vnc/passwd -rfbport 5901 -pn -fp /usr/X11R6/lib/X11/fonts/Type1/,/usr/X11R6/lib/X11/fonts/Speedo/,/usr/X11R6/lib/X11/fonts/misc/,/usr/X11R6/lib/X11/fonts/75dpi/,/usr/X11R6/lib/X11/fonts/100dpi/,/usr/share/fonts/X11/misc/,/usr/share/fonts/X11/Type1/,/usr/share/fonts/X11/75dpi/,/usr/share/fonts/X11/100dpi/ -co /etc/X11/rgb
1 1336 1323 1290 pts/0 1353 S 0 0:00 vncconfig -iconic
root@debian8:~# netstat -anp | grep vnc
tcp 0 0 0.0.0.0:6001 0.0.0.0:* LISTEN 1330/Xvnc4
tcp6 0 0 :::5901 :::* LISTEN 1330/Xvnc4
### 8.deb软件包管理相关内容
# 查找相关软件包
apt-cache search vnc
# 显示软件包信息
apt-cache show vnc4server
# 显示软件包内文件列表和安装位置
dpkg -L vnc4server
### 没写完,内容还在增加中……
###Last Modified Date: 2015-12-10
以上操作在Debian 8.2环境测试成功。