Server Configuration
From The scripts.mit.edu Wiki
(Difference between revisions)
m (→Raw File Listing) |
m |
||
(4 intermediate revisions not shown) | |||
Line 1: | Line 1: | ||
- | This is a list of the unique or modified files on a scripts server. | + | This is a list of the unique or modified files on a RedHat scripts server. |
Does not include: | Does not include: | ||
* files in: | * files in: | ||
+ | ** /boot | ||
** /root | ** /root | ||
** /usr/src/redhat | ** /usr/src/redhat | ||
* inferences made by RPM DB comparison | * inferences made by RPM DB comparison | ||
+ | * selinux policy and configuration | ||
* ruby & gems | * ruby & gems | ||
* perl modules | * perl modules | ||
* grub configuration | * grub configuration | ||
- | * NIC configuration | + | * NIC configuration (/etc/sysconfig/network-scripts) |
* other hardware configuration | * other hardware configuration | ||
- | =Modified | + | =Modified or Orphaned Files= |
+ | |||
+ | ==Pending== | ||
+ | <pre> | ||
+ | /etc/krb5.keytab | ||
+ | /etc/localtime | ||
+ | /etc/named.conf | ||
+ | /etc/pki/tls/certs/ca.pem | ||
+ | /etc/pki/tls/certs/cert-new.pem | ||
+ | /etc/pki/tls/certs/cert.pem | ||
+ | /etc/pki/tls/certs/scripts-cert.pem | ||
+ | /etc/pki/tls/private/key.pem | ||
+ | /etc/pki/tls/private/scripts-cert.pem | ||
+ | /etc/rndc.conf | ||
+ | /etc/rndc.key | ||
+ | /etc/sysconfig/lm_sensors | ||
+ | /etc/zephyr/default.subscriptions | ||
+ | /home/afsagent/crontab | ||
+ | /home/afsagent/krb5.keytab | ||
+ | /usr/vice/etc/cacheinfo | ||
+ | /usr/vice/etc/CellServDB | ||
+ | </pre> | ||
+ | |||
+ | ==Packaged== | ||
+ | */etc/aliases | ||
+ | */etc/auto.master | ||
+ | */etc/hesiod.conf | ||
+ | */etc/hosts | ||
+ | */etc/httpd/conf/httpd.conf | ||
+ | */etc/issue.net | ||
+ | */etc/krb5.conf | ||
+ | */etc/krb.conf | ||
+ | */etc/krb.realms | ||
+ | */etc/nagios/nrpe.cfg | ||
+ | */etc/ntp.conf | ||
+ | */etc/php.ini | ||
+ | */etc/postfix/main.cf | ||
+ | */etc/printcap | ||
+ | */etc/rc.d/rc.local | ||
+ | */etc/resolv.conf | ||
+ | */etc/security/limits.conf | ||
+ | */etc/snmp/snmpd.conf | ||
+ | */etc/ssh/sshd_config | ||
+ | */etc/sysconfig/iptables | ||
+ | */etc/sysconfig/network | ||
+ | */etc/sysconfig/openafs | ||
+ | */etc/sysctl.conf | ||
+ | */usr/vice/etc/CellAlias | ||
+ | */usr/vice/etc/SuidCells | ||
+ | */usr/vice/etc/ThisCell | ||
+ | |||
+ | ==Remaining== | ||
+ | <pre> | ||
+ | /lib64/libcrypto.so.4 | ||
+ | /lib64/libssl.so.4 | ||
+ | /usr/bin/gem | ||
+ | /usr/bin/gemlock | ||
+ | /usr/bin/gem_mirror | ||
+ | /usr/bin/gemri | ||
+ | /usr/bin/gem_server | ||
+ | /usr/bin/gemwhich | ||
+ | /usr/bin/imgsize | ||
+ | /usr/bin/java | ||
+ | /usr/bin/jifty | ||
+ | /usr/bin/lp | ||
+ | /usr/bin/lpq | ||
+ | /usr/bin/lpr | ||
+ | /usr/bin/lprm | ||
+ | /usr/bin/lpstat | ||
+ | /usr/bin/mailq | ||
+ | /usr/bin/mason.pl | ||
+ | /usr/bin/newaliases | ||
+ | /usr/bin/perl.prov | ||
+ | /usr/bin/perl.req | ||
+ | /usr/bin/rails | ||
+ | /usr/bin/rake | ||
+ | /usr/bin/rmail | ||
+ | /usr/bin/rmiregistry | ||
+ | /usr/bin/showtable | ||
+ | /usr/bin/update_rubygems | ||
+ | /usr/bin/weblint | ||
+ | /usr/include/com_err.h | ||
+ | /usr/lib64/php/modules/sqlite.so | ||
+ | /usr/local/bin/cronload | ||
+ | /usr/local/bin/logview | ||
+ | /usr/local/bin/logview.pl | ||
+ | /usr/local/etc/sql-mit-edu.cfg.php | ||
+ | /usr/local/lib/mit-scheme | ||
+ | /usr/sbin/getseuser | ||
+ | /usr/sbin/lpc | ||
+ | /usr/sbin/sendmail | ||
+ | /usr/sbin/suexec | ||
+ | /usr/share/zephyr | ||
+ | /var/empty/sshd/etc/localtime | ||
+ | /var/empty/sshd/usr | ||
+ | /var/empty/sshd/usr/share | ||
+ | /var/empty/sshd/usr/share/zoneinfo | ||
+ | /var/empty/sshd/usr/share/zoneinfo/America | ||
+ | /var/empty/sshd/usr/share/zoneinfo/America/New_York | ||
+ | /var/named/chroot | ||
+ | /var/named/chroot/dev | ||
+ | /var/named/chroot/dev/null | ||
+ | /var/named/chroot/dev/random | ||
+ | /var/named/chroot/dev/zero | ||
+ | /var/named/chroot/etc | ||
+ | /var/named/chroot/etc/localtime | ||
+ | /var/named/chroot/var | ||
+ | /var/named/chroot/var/named | ||
+ | /var/named/chroot/var/named/data | ||
+ | /var/named/chroot/var/named/slaves | ||
+ | /var/named/chroot/var/run | ||
+ | /var/named/chroot/var/run/named | ||
+ | /var/named/data | ||
+ | /var/named/localdomain.zone | ||
+ | /var/named/localhost.zone | ||
+ | /var/named/named.broadcast | ||
+ | /var/named/named.ca | ||
+ | /var/named/named.ip6.local | ||
+ | /var/named/named.local | ||
+ | /var/named/named.zero | ||
+ | /var/named/slaves | ||
+ | /var/net-snmp/snmpd.conf | ||
+ | </pre> | ||
+ | |||
+ | ==Original List== | ||
<pre> | <pre> | ||
/etc/aliases | /etc/aliases | ||
Line 48: | Line 174: | ||
/etc/rndc.key | /etc/rndc.key | ||
/etc/security/limits.conf | /etc/security/limits.conf | ||
- | |||
/etc/shadow | /etc/shadow | ||
/etc/snmp/snmpd.conf | /etc/snmp/snmpd.conf |
Latest revision as of 19:27, 29 November 2006
This is a list of the unique or modified files on a RedHat scripts server.
Does not include:
- files in:
- /boot
- /root
- /usr/src/redhat
- inferences made by RPM DB comparison
- selinux policy and configuration
- ruby & gems
- perl modules
- grub configuration
- NIC configuration (/etc/sysconfig/network-scripts)
- other hardware configuration
Contents |
Modified or Orphaned Files
Pending
/etc/krb5.keytab /etc/localtime /etc/named.conf /etc/pki/tls/certs/ca.pem /etc/pki/tls/certs/cert-new.pem /etc/pki/tls/certs/cert.pem /etc/pki/tls/certs/scripts-cert.pem /etc/pki/tls/private/key.pem /etc/pki/tls/private/scripts-cert.pem /etc/rndc.conf /etc/rndc.key /etc/sysconfig/lm_sensors /etc/zephyr/default.subscriptions /home/afsagent/crontab /home/afsagent/krb5.keytab /usr/vice/etc/cacheinfo /usr/vice/etc/CellServDB
Packaged
- /etc/aliases
- /etc/auto.master
- /etc/hesiod.conf
- /etc/hosts
- /etc/httpd/conf/httpd.conf
- /etc/issue.net
- /etc/krb5.conf
- /etc/krb.conf
- /etc/krb.realms
- /etc/nagios/nrpe.cfg
- /etc/ntp.conf
- /etc/php.ini
- /etc/postfix/main.cf
- /etc/printcap
- /etc/rc.d/rc.local
- /etc/resolv.conf
- /etc/security/limits.conf
- /etc/snmp/snmpd.conf
- /etc/ssh/sshd_config
- /etc/sysconfig/iptables
- /etc/sysconfig/network
- /etc/sysconfig/openafs
- /etc/sysctl.conf
- /usr/vice/etc/CellAlias
- /usr/vice/etc/SuidCells
- /usr/vice/etc/ThisCell
Remaining
/lib64/libcrypto.so.4 /lib64/libssl.so.4 /usr/bin/gem /usr/bin/gemlock /usr/bin/gem_mirror /usr/bin/gemri /usr/bin/gem_server /usr/bin/gemwhich /usr/bin/imgsize /usr/bin/java /usr/bin/jifty /usr/bin/lp /usr/bin/lpq /usr/bin/lpr /usr/bin/lprm /usr/bin/lpstat /usr/bin/mailq /usr/bin/mason.pl /usr/bin/newaliases /usr/bin/perl.prov /usr/bin/perl.req /usr/bin/rails /usr/bin/rake /usr/bin/rmail /usr/bin/rmiregistry /usr/bin/showtable /usr/bin/update_rubygems /usr/bin/weblint /usr/include/com_err.h /usr/lib64/php/modules/sqlite.so /usr/local/bin/cronload /usr/local/bin/logview /usr/local/bin/logview.pl /usr/local/etc/sql-mit-edu.cfg.php /usr/local/lib/mit-scheme /usr/sbin/getseuser /usr/sbin/lpc /usr/sbin/sendmail /usr/sbin/suexec /usr/share/zephyr /var/empty/sshd/etc/localtime /var/empty/sshd/usr /var/empty/sshd/usr/share /var/empty/sshd/usr/share/zoneinfo /var/empty/sshd/usr/share/zoneinfo/America /var/empty/sshd/usr/share/zoneinfo/America/New_York /var/named/chroot /var/named/chroot/dev /var/named/chroot/dev/null /var/named/chroot/dev/random /var/named/chroot/dev/zero /var/named/chroot/etc /var/named/chroot/etc/localtime /var/named/chroot/var /var/named/chroot/var/named /var/named/chroot/var/named/data /var/named/chroot/var/named/slaves /var/named/chroot/var/run /var/named/chroot/var/run/named /var/named/data /var/named/localdomain.zone /var/named/localhost.zone /var/named/named.broadcast /var/named/named.ca /var/named/named.ip6.local /var/named/named.local /var/named/named.zero /var/named/slaves /var/net-snmp/snmpd.conf
Original List
/etc/aliases /etc/auto.master /etc/group /etc/gshadow /etc/hesiod.conf /etc/hosts /etc/httpd/conf/httpd.conf /etc/httpd/conf/magic /etc/issue.net /etc/krb5.conf /etc/krb5.keytab /etc/krb.conf /etc/krb.realms /etc/localtime /etc/nagios/nrpe.cfg /etc/named.conf /etc/ntp.conf /etc/pam.d/su /etc/pam.d/sudo /etc/passwd /etc/php.ini /etc/pki/tls/certs/ca.pem /etc/pki/tls/certs/cert-new.pem /etc/pki/tls/certs/cert.pem /etc/pki/tls/certs/scripts-cert.pem /etc/pki/tls/private/key.pem /etc/pki/tls/private/scripts-cert.pem /etc/postfix/main.cf /etc/printcap /etc/rc.d/rc.local /etc/resolv.conf /etc/rndc.conf /etc/rndc.key /etc/security/limits.conf /etc/shadow /etc/snmp/snmpd.conf /etc/ssh/sshd_config /etc/sudoers /etc/sysconfig/clock /etc/sysconfig/iptables-config /etc/sysconfig/lm_sensors /etc/sysconfig/network /etc/sysconfig/openafs /etc/sysctl.conf /etc/sysctl.conf /etc/syslog.conf /etc/X11/xorg.conf /etc/zephyr/default.subscriptions /home/afsagent /home/afsagent/crontab /home/afsagent/id /home/afsagent/.k5login /home/afsagent/krb5.conf /home/afsagent/krb5.keytab /home/afsagent/krb.conf /home/afsagent/renew /home/afsagent/setup_user /home/afsagent/.ssh/authorized_keys2 /home/logview /home/suagent /lib64/libcrypto.so.4 /lib64/libssl.so.4 /mit /root/.k5login /root/.ssh/authorized_keys2 /usr/bin/gem /usr/bin/gemlock /usr/bin/gem_mirror /usr/bin/gemri /usr/bin/gem_server /usr/bin/gemwhich /usr/bin/imgsize /usr/bin/java /usr/bin/jifty /usr/bin/lp /usr/bin/lpq /usr/bin/lpr /usr/bin/lprm /usr/bin/lpstat /usr/bin/mailq /usr/bin/mason.pl /usr/bin/newaliases /usr/bin/perl.prov /usr/bin/perl.req /usr/bin/rails /usr/bin/rake /usr/bin/rmail /usr/bin/rmiregistry /usr/bin/showtable /usr/bin/update_rubygems /usr/bin/weblint /usr/include/com_err.h /usr/lib64/php/modules/sqlite.so /usr/local/bin/admof /usr/local/bin/bash /usr/local/bin/cronload /usr/local/bin/logview /usr/local/bin/logview.pl /usr/local/bin/runas /usr/local/bin/setup_user /usr/local/bin/signup /usr/local/bin/sql-signup /usr/local/bin/subash /usr/local/bin/sucheck /usr/local/bin/sulocker /usr/local/etc/bashrc /usr/local/etc/sql-mit-edu.cfg.php /usr/local/lib/mit-scheme /usr/local/src/admof.c /usr/local/src/bash /usr/local/src/compile /usr/local/src/logview.c /usr/local/src/runas.c /usr/local/src/setup.c /usr/local/src/signup.c /usr/local/src/sql-signup.c /usr/local/src/subash /usr/local/src/sucheck /usr/local/src/sulocker.c /usr/local/staticsys /usr/local/staticsys/static /usr/local/staticsys/static.c /usr/sbin/getseuser /usr/sbin/lpc /usr/sbin/sendmail /usr/sbin/suexec /usr/share/zephyr /usr/vice/etc/cacheinfo /usr/vice/etc/CellAlias /usr/vice/etc/CellServDB /usr/vice/etc/SuidCells /usr/vice/etc/ThisCell /var/empty/sshd/etc/localtime /var/empty/sshd/usr /var/empty/sshd/usr/share /var/empty/sshd/usr/share/zoneinfo /var/empty/sshd/usr/share/zoneinfo/America /var/empty/sshd/usr/share/zoneinfo/America/New_York /var/named/chroot /var/named/chroot/dev /var/named/chroot/dev/null /var/named/chroot/dev/random /var/named/chroot/dev/zero /var/named/chroot/etc /var/named/chroot/etc/localtime /var/named/chroot/var /var/named/chroot/var/named /var/named/chroot/var/named/data /var/named/chroot/var/named/slaves /var/named/chroot/var/run /var/named/chroot/var/run/named /var/named/data /var/named/localdomain.zone /var/named/localhost.zone /var/named/named.broadcast /var/named/named.ca /var/named/named.ip6.local /var/named/named.local /var/named/named.zero /var/named/slaves /var/net-snmp/snmpd.conf
Special File Modes
root
- 600
- /etc/krb5.keytab
- /etc/pki/tls/private/*
- /etc/rndc.conf
- /etc/rndc.key
- /etc/ssh/sshd_config
- /home/afsagent/.k5login
- /home/afsagent/.authorized_keys2
- /root/.k5login
- /root/.authorized_keys2
- /usr/local/etc/sql-mit-edu.conf
- /usr/local/src/*.c
- 640
- /var/named/local*
- /var/named/named.*
- 711
- /usr/local/staticsys/static
- 4510
- /usr/bin/suexec
- 4711
- /usr/local/bin/sql-signup
afsagent
- 700
- /home/afsagent
- 755
- /home/afsagent/renew
signup
- 711
- /usr/local/bin/signup
suagent
- 700
- /usr/local/bin/sucheck
- 755
- /home/suagent
- 4711
- /usr/local/bin/admof
- /usr/local/bin/runas
- /usr/local/bin/sulocker
logview
- 700
- /home/logview
- 755
- /usr/local/bin/logview.pl
- 2711
- /usr/local/bin/logview
Special Users
Local
apache:x:48:48:Apache:/var/www:/sbin/nologin afsagent:x:101:101::/home/afsagent:/bin/bash signup:x:93:93::/afs/athena.mit.edu/contrib/scripts/signup:/bin/bash suagent:x:500:500::/home/suagent:/bin/bash logview:x:501:501::/home/logview:/bin/bash
Athena Cell
scripts:x:537644531:537644531::/afs/athena.mit.edu/contrib/scripts:/usr/local/bin/bash sql:x:537704221:537704221::/afs/athena.mit.edu/contrib/sql:/usr/local/bin/bash
SIPB Cell
cluedumps:x:536886165:536886165::/afs/sipb.mit.edu/project/cluedumps:/usr/local/bin/bash linerva:x:536886130:536886130::/afs/sipb.mit.edu/project/linerva:/usr/local/bin/bash mycroft:x:536875265:536875265::/afs/sipb.mit.edu/user/mycroft:/usr/local/bin/bash periodic-postings:x:536873708:536873708::/afs/sipb.mit.edu/project/periodic-postings:/usr/local/bin/bash repl:x:536886186:536886186::/afs/sipb.mit.edu/project/repl:/usr/local/bin/bash sipb-svn:x:536886162:536886162::/afs/sipb.mit.edu/project/sipb-svn:/usr/local/bin/bash tor:x:536886174:536886174::/afs/sipb.mit.edu/project/tor:/bin/bash