linux系统安装初始配置命令
sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config
cat /etc/selinux/config
chkconfig postfix off
chkconfig --del postfix
chkconfig --del nfs-rdma
rm -rf /etc/yum.repos.d/*
echo "[rhel6.5]">>/etc/yum.repos.d/ftp.repo
echo "name=rhel6.5">>/etc/yum.repos.d/ftp.repo
echo "baseurl=ftp://134.96.177.250/rhel6.5">>/etc/yum.repos.d/ftp.repo
echo "gpgcheck=0">>/etc/yum.repos.d/ftp.repo
echo "[rhel6rpms]">>/etc/yum.repos.d/rhel6rpms.repo
echo "name=rhel6rpms">>/etc/yum.repos.d/rhel6rpms.repo
echo "baseurl=ftp://134.96.177.250/rhel6rpms">>/etc/yum.repos.d/rhel6rpms.repo
echo "gpgcheck=0">>/etc/yum.repos.d/rhel6rpms.repo
echo "enabled=1">>/etc/yum.repos.d/rhel6rpms.repo
yum install -y lrzsz
yum install -y yum-utils
yum install -y iotop
yum install -y htop
yum install -y sysstat
yum install -y ftp
yum install -y telnet
yum install -y traceroute
yum install -y ntp
yum install -y man
yum install -y openssl-devel
yum install -y lsof
yum install -y ksh
yum install -y tcsh
yum install -y ncompress
yum install -y gdb
yum install -y sos
yum install *gcc*
yum groupinstall "X Window System"
useradd -u 800 -d /itsm itsm
echo itsm123 |passwd --stdin itsm
cp /etc/skel/.* /itsm/
chown -R itsm:itsm /itsm
sed -i 's/1024/65535/g' /etc/security/limits.d/90-nproc.conf
echo "* soft nofile 65535">>/etc/security/limits.conf
echo "* hard nofile 65535">>/etc/security/limits.conf
echo "* soft nproc 65535">>/etc/security/limits.conf
echo "* hard nproc 65535">>/etc/security/limits.conf
cat /etc/security/limits.d/90-nproc.conf
cat /etc/security/limits.conf
ntpdate 134.96.40.141
sed -i '/^server.*/d' /etc/ntp.conf
echo "server 134.96.40.141">>/etc/ntp.conf
sed -i 's/-u/-x -u/g' /etc/sysconfig/ntpd
service ntpd restart
chkconfig ntpd on
cat /etc/sysconfig/ntpd
ntpq -p
ftp 134.96.177.250
>
bin
cd /ftpdata/SA/software/linux/
lcd /home/acc/
get script.tar
get jx_script.tar
get dirtycow.tar
>
quit
cd /home/acc
tar -zxvf bash-4.3.30.tar.gz
cd bash-4.3.30
./configure
make
make install
mv /bin/bash /bin/bash.old
rm -rf /bin/sh
cp /usr/local/bin/bash /bin/
ln -s /bin/bash /bin/sh
ls -lrt /bin
cd /home/acc
tar -xvf ssh.tar
rpm -Uhv openssl-1.0.1e-57.el6.x86_64.rpm openssl-devel-1.0.1e-57.el6.x86_64.rpm
rpm -Uvh openssh-clients-5.3p1-122.el6.x86_64.rpm openssh-server-5.3p1-122.el6.x86_64.rpm openssh-5.3p1-122.el6.x86_64.rpm openssh-askpass-5.3p1-122.el6.x86_64.rpm
service sshd start
service sshd restart
chkconfig sshd on
sshd -V
cd /home/acc
tar -xvf dirtycow.tar
rpm -Uvh dracut-kernel-004-409.el6_8.2.noarch.rpm dracut-004-409.el6_8.2.noarch.rpm kernel-firmware-2.6.32-642.6.2.el6.noarch.rpm
rpm -ivh kernel-2.6.32-642.6.2.el6.x86_64.rpm
cat /boot/grub/grub.conf
cd /home/acc
mkdir /home/acc/script/
tar -xvf script.tar -C /home/acc/script/
chmod 744 /home/acc/script/*
mkdir -p mkdir /home/kaiguo/script/UserAndOpenPort/
mkdir /salog/rout
ine
mkdir /salog/routine/nmonlog
mv /home/acc/script/cpu_mem.sh /home/kaiguo/script/
mv /home/acc/script/Check_Port_User.sh /home/kaiguo/script/UserAndOpenPort/
echo "10,20,30,40,50 * * * * sh /home/acc/script/clear_fs.sh >/home/acc/script/clear_errlog 2>&1" >>/var/spool/cron/root
echo "#SA auto collect system info script" >>/var/spool/cron/root
echo "30 7 15 * * sh /home/acc/script/check.sh >/home/acc/script/clear_errlog 2>&1" >>/var/spool/cron/root
echo "#SA auto collect system user and port info script" >>/var/spool/cron/root
echo "0 1 * * * sh /home/kaiguo/script/UserAndOpenPort/Check_Port_User.sh> /dev/null 2>&1" >>/var/spool/cron/root
echo "#SA auto collect performance-nmon script" >>/var/spool/cron/root
echo "0 0 * * * /home/acc/script/nmon_linux_x86_64 -f -x -m /salog/routine/nmonlog> /dev/null 2>&1 #nmon" >>/var/spool/cron/root
echo "#SA auto collect system performance and system info script" >>/var/spool/cron/root
echo "*/5 * * * * sh /home/acc/script/mon.sh > /dev/null 2>&1" >>/var/spool/cron/root
echo "#SA auto collect cpu script" >>/var/spool/cron/root
echo "0,5,10,15,20,25,30,35,40,45,50,55 * * * * sh /home/kaiguo/script/cpu_mem.sh" >>/var/spool/cron/root
cd /home/acc
tar -xvf jx_script.tar
cd jx_script
sh ftp.sh
touch /etc/sysconfig/iptables
chmod 600 /etc/sysconfig/iptables
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A INPUT -p icmp -j ACCEPT
iptables -A INPUT -s 134.96.111.84/32 -j ACCEPT
iptables -A INPUT -s 134.96.111.85/32 -j ACCEPT
iptables -A INPUT -s 134.96.111.86/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.73/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.74/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.75/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.61/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.62/32 -j ACCEPT
iptables -A INPUT -s 134.96.73.128/25 -j ACCEPT
iptables -A INPUT -s 134.98.105.0/24 -j ACCEPT
iptables -A INPUT -s 134.98.83.0/26 -j ACCEPT
iptables -A INPUT -s 134.98.104.240/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.220/32 -j ACCEPT
iptables -A INPUT -s 134.96.247.221/32 -j ACCEPT
iptables -A INPUT -s 134.96.188.100/32 -j ACCEPT
iptables -A INPUT -s 134.96.177.250/32 -j ACCEPT
iptables -A INPUT -s 172.17.0.0/20 -j ACCEPT
iptables -P INPUT DROP
service iptables save
groupadd -g 1000 dba
groupadd -g 1002 oinstall
groupadd -g 1003 asmadmin
groupadd -g 1004 asmdba
groupadd -g 1005 asmoper
/usr/sbin/useradd -u 1001 -g oinstall -G asmadmin,asmdba,asmoper -d /app/grid grid
/usr/sbin/useradd -u 1000 -g oinstall -G dba,asmdba,wheel -d/app/oracle oracle
相关文档
- 安装规范_系统_Linux_Redhat6x_HA(590)
- linux系统安装规范
- 中标麒麟Linux操作系统安装指南
- 生产上Linux系统的安装规范与标准
- linux安全配置规范(精)
- Linux安全配置标准
- linux服务器安装规范
- 安装Linux系统时的配置注意事项
- 安装规范__Linux_Redhat6.x for HA
- linux系统下图形化安装数据库
- linux操作系统安装步骤
- linux安全配置规范
- 安装规范_系统_Linux_Redhat5x_HA
- Linux安装实施规范
- Linux安全配置规范
- 服务器操作系统安装指南(Linux)v3.3
- Linux安装文档
- 把linux装进U盘里,打造随身系统
- Linux操作系统安全配置规范
- Linux安装实施规范