Tabela de conteúdo |
Hardware: AMD FX(tm)-4300 Quad-Core Processor MemTotal: 7680048 kB Manufacturer: Gigabyte Technology Co., Ltd. Product Name: GA-78LMT-S2 OS Debian 7.4 Endereçamento DHCP
Configuração dos Discos 02 x 1TiB --> RAID1 Mirror vis Sistema Operacional
Particionamento Sist. Arq. Tam Usad Dispon. Uso% Montado em /dev/mapper/vg00-raiz 19G 314M 18G 2% / /dev/mapper/vg00-boot 276M 28M 233M 11% /boot /dev/mapper/vg00-dados00 802G 197M 761G 1% /dados00 /dev/mapper/vg00-home 19G 172M 18G 1% /home /dev/mapper/vg00-tmp 19G 172M 18G 1% /tmp /dev/mapper/vg00-usr 19G 729M 17G 5% /usr /dev/mapper/vg00-var 28G 422M 26G 2% /var
root@server:/# hostname -f server.local.local
Aplicativos instalados: aptitude -y install rsync nmap htop iftop snmp snmpd tcpdump vim rdiff-backup ntpdate samba
SNMP --> comunity nucleo
SMB.CONF:
[global]
workgroup = NUCLEO
comment = Nucleo Catarinense de Decoracao
netbios name = arquivos
map to guest = Bad User
username map = /etc/samba/smbusers
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
log file = /var/log/samba/%U.log
load printers = No
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$
domain logons = No
domain master = No
passdb backend = smbpasswd
update encrypted = Yes
null passwords = Yes
encrypt passwords = Yes
smb passwd file = /etc/samba/smbpasswd
deadtime = 15
dns proxy = no
keepalive = 20
max log size = 0
debug level = 2
wins support = Yes
;IMPRESSORAS
;printing = cups
;printcap name = cups
;printcap cache time = 750
;cups options = raw
;LIXEIRA COM CONTROLE DE VERSÃO
vfs objects = /usr/lib/samba/vfs/recycle.so /usr/lib/samba/vfs/full_audit.so
recycle:facility = LOCAL1
recycle:priority = NOTICE
recycle:maxsize = 0
recycle:repository = /var/spool/samba/lixeira/%U
recycle:directory_mode = 0777
recycle:subdir_mode = 0777
recycle:keeptree = Yes
recycle:touch = True
recycle:exclude = *.tmp, *.temp, *.log, *.ldb, *.o, *.obj, ~*.*, *.bak
recycle:exclude_dir = tmp, temp, cache
recycle:versions = Yes
;AUDITORIA
full_audit:facility = LOCAL5
full_audit:priority = NOTICE
full_audit:prefix = %u|U%|%I|%S
full_audit:success = rename rmdir unlink write
full_audit:failure = none
##### COMPARTILHAMENTOS
[NUCLEO]
path = /dados00/arqOLD/NUCLEO
admin users = root
;valid users = @admin
read only = No
;write list = @admin
force user = root
force group = admin
public = yes
;veto files = /*.mp3/*.wmv/*.wma/*.ogg/*.exe/
****************SAMBA COM AUDITORIA e LIXEIRA
<pre>
===Usuarios do Sistema===
<pre>
Usuarios do sistema:
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/bin/sh
man:x:6:12:man:/var/cache/man:/bin/sh
lp:x:7:7:lp:/var/spool/lpd:/bin/sh
mail:x:8:8:mail:/var/mail:/bin/sh
news:x:9:9:news:/var/spool/news:/bin/sh
uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh
proxy:x:13:13:proxy:/bin:/bin/sh
www-data:x:33:33:www-data:/var/www:/bin/sh
backup:x:34:34:backup:/var/backups:/bin/sh
list:x:38:38:Mailing List Manager:/var/list:/bin/sh
irc:x:39:39:ircd:/var/run/ircd:/bin/sh
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh
nobody:x:65534:65534:nobody:/nonexistent:/bin/sh
libuuid:x:100:101::/var/lib/libuuid:/bin/sh
Debian-exim:x:101:103::/var/spool/exim4:/bin/false
statd:x:102:65534::/var/lib/nfs:/bin/false
sshd:x:103:65534::/var/run/sshd:/usr/sbin/nologin
usuario:x:1000:1000:usuario,,,:/home/usuario:/bin/bash
messagebus:x:104:107::/var/run/dbus:/bin/false
snmp:x:105:108::/var/lib/snmp:/bin/false
user1:x:1001:1003::/home/user1:/bin/sh
Grupos do sistema: root@server:/# cat /etc/group root:x:0: daemon:x:1: bin:x:2: sys:x:3: adm:x:4: tty:x:5: disk:x:6: lp:x:7: mail:x:8: news:x:9: uucp:x:10: man:x:12: proxy:x:13: kmem:x:15: dialout:x:20: fax:x:21: voice:x:22: cdrom:x:24:usuario floppy:x:25:usuario tape:x:26: sudo:x:27: audio:x:29:usuario dip:x:30:usuario www-data:x:33: backup:x:34: operator:x:37: list:x:38: irc:x:39: src:x:40: gnats:x:41: shadow:x:42: utmp:x:43: video:x:44:usuario sasl:x:45: plugdev:x:46:usuario staff:x:50: games:x:60: users:x:100: nogroup:x:65534: libuuid:x:101: crontab:x:102: Debian-exim:x:103: mlocate:x:104: ssh:x:105: usuario:x:1000: sambashare:x:106: messagebus:x:107: snmp:x:108: admin:x:1001: vendas:x:1002: user1:x:1003:
Usuarios do SAMBA: root@server:/# cat /etc/samba/smbpasswd user1:1001:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:00B2C85DDFBD8CC81602D6FC7340EB0B:[U ]:LCT-531B214C:
nucleo-catarinense-de-coracao.ddns.net:2222
usuario | usuario
root | root
ip 192.168.1.5
Cron
#Backup 0 20 * * 1-5 root /home/lupa/scripts/backup/bkp_diario.sh 0 20 * * 6 root /home/lupa/scripts/backup/bkp_semanal.sh
# /home/lupa/scripts/backup/bkp_diario.sh
rsync -a --delete /dados00 /backup/diario/ rsync -av --delete /etc /home/lupa/scripts /backup/diario/
# /home/lupa/scripts/backup/bkp_semanal.sh
rsync -a --delete /dados00 /backup/semanal/ rsync -av --delete /etc /home/lupa/scripts /backup/semanal/