Servidor tcos

Caractersticas
Memoria ram: 4g Procesador: intel core dos duo Disco duro: 160 g Contrasea root: d3$&73k0010 Contraseas de usuarios Desiteg:desisteg Usuario01:usuario01 Usuario02:usuario02 Usuario03.usuario03 Usuario04::usuario04 Usuario20:usuario20

Terminales ligeros tcos

Instalacin 1.-descargar las llaves publicas de la pagina de tcos o en un terminal escribir las siguientes lneas # wget http://www.tcosproject.org/mariodebian-pub.key # apt-key add mariodebian-pub.key (in ubuntu you can use sudo apt-key) 2.- sistemas/administracin/orgenes de software de ah en otro software en nuestro caso como tenemos el ubutu lucid 10.04 agregar lo sig. Ubuntu Lucid 10.04 deb http://www.tcosproject.org/ lucid main #deb-src http://www.tcosproject.org/ lucid main 3.- de ah en un terminal escribir Sudo apt-get install tcos y seguir los pasos que dice la terminal de ahi segur los pasos de esta paguina http://mariodebian.com/post/1/692

Proxy de red squid

Objetivo Pasos Instalar squid3 Abrir u terminal y escribir lo sig: Sudo apt-get install squid3

Editar el archivo squid.conf asiganando permisos a usuarios administradores sin restricciones de paginas,crear listas de acesos a paginas permitidas del grupo pagos y del grupo de ventas darles acesos alos puertos y paginas que ocupa el cliente de mensajera instantnea msn El archivo se encuetra de la siuiente manera Etc/squid3/sqid.conf

archivo squid.conf
http_port 3128 transparent cache_mem 16 MB cache_dir ufs /var/spool/squid3 700 16 256 ie_refresh on offline_mode on ##### REGLAS PARA CREACION DE GRUPOS ##### #acl all src 0.0.0.0/0.0.0.0 acl all src 0.0.0.0/255.255.255.0 acl red_local src 192.168.3.0/24 acl GrupoPagos src 192.168.3.102-192.168.3.150 acl GrupoVentas src 192.168.3.121-192.168.3.130 #acl privilegios url_regex "/etc/squid3/privilegios" acl privilegio src 192.168.3.122 acl diana src 192.168.3.123 acl isis src 192.168.3.101 acl pedro src 192.168.3.130 acl venecia src 192.168.3.117 acl arturo src 192.168.3.124 acl htps port 443 acl taenet port 442 ##### Reglas de aceso para el MSN ##### acl msn_port port 1863 acl msn_port2 port 5223 acl serv_msn dst 200.46.110.0/24 acl serv_msn dst 64.4.13.0/24 acl app_msn req_mime_type -i ^application/x-msn-messenger$ acl msn_messenger url_regex -i gateway.dll acl msn_dom dstdomain loginnet.passport.com acl msn_dom dstdomain messenger.msn.com acl msn_dom dstdomain messenger.msn.ca acl msn_dom dstdomain messenger.msn.net acl msn_dom dstdomain im.sapo.pt acl msn_dom dstdomain webmessenger.msn.com

acl msn_dom dstdomain c.msn.com acl msn_dom dstdomain g.msn.com acl msn_dom dstdomain config.messenger.msn.com acl msn_dom dstdomain login.live.com acl msn_dom dstdomain amsn-project.net acl opera dstdomain opera.com acl admino dstdomain 65.99.205.122/ADM acl admino1 dstdomain 65.99.205.122/PDV acl fop2 dstdomain 192.168.3.130/fop2 #### REGLAS DE SITIOS PERMITIDOS Y DENEGADOS ##### acl permitidos url_regex "/etc/squid3/permitidos" acl PermitidosVentas url_regex "/etc/squid3/permitidosventas" acl denegados url_regex "/etc/squid3/denegados" acl localhost src 127.0.0.1/255.255.255.0 http_access allow privilegio all http_access allow diana all http_access allow isis all http_access allow pedro all http_access allow arturo all http_access allow venecia all #http_access allow venecia msn_port #http_access allow venecia msn_port2 #http_access allow venecia serv_msn #http_access allow venecia app_msn #http_access allow venecia msn_dom #http_access allow venecia msn_messenger #http_access allow venecia admino #http_access allow venecia admino1 #http_access allow isis fop2 http_access allow htps http_access allow taenet ##### CONFIGURACION GRUPO PAGOS ####### http_access allow GrupoPagos permitidos ##### CONFIGURACION GRUPO VENTAS ####### http_access allow GrupoVentas PermitidosVentas http_access allow GrupoVentas msn_port http_access allow GrupoVentas msn_port2 http_access allow GrupoVentas serv_msn http_access allow GrupoVentas app_msn http_access allow GrupoVentas msn_dom http_access allow GrupoVentas msn_messenger http_access allow GrupoVentas opera #http_access allow red_local all

http_access deny denegados http_access deny all #http_access allow all

Listas de permitidos para el area de pagos Etc/squid3/permitidos kayako.com teamviewer.com/es/ 87.230.73.24 opera.com google.com gstatic.com google.com.mx bancaempresarialazteca.com.mx bancomer.com.mx bbvanet.com.mx banamex.com banamex.com.mx santander.com.mx santander-serfin.com scotiabank.com.mx hsbc.com.mx banorte.com siprel.net siprel.mx siprel.com.mx appspot.com googleapis.com #65.99.205.122/PDV #65.99.205.122/ADM taetelcel.com taenet.com.mx k-eex.com.mx movistar.com.mx pagatae.com.mx recargaqui.com.mx siprel.sytes.net # ###fop2 # #192.168.3.130/fop2 Lista de permitidos ventas

Etc/ siprel.net appspot.com googleapis.com google.com siprel.com.mx siprel.sytes.net opera.com telcel.com iusacell.com.mx movistar.com.mx unefon.com.mx pronosticos.gob.mx g.msn.com melatemovil.com cachitomovil.com segujuegos.com hotmail.com login.live.com 63.208.13.126 64.4.12.200 64.4.12.201 65.54.131.249 65.54.194.118 65.54.211.61 207.46.104.20 207.46.110.2 207.46.110.254 207.46.245.222 207.46.245.214 messenger.hotmail.com messenger.msn.com messenger.microsoft.com echo-v1.msgr.hotmail.com echo-v2.msgr.hotmail.com login.passport.net messenger.t1msn.com.mx 65.54.226.246 65.54.226.252 65.54.228.243 65.54.228.254 65.54.229.246 65.54.229.254 65.54.225.244 65.54.225.252 loginnet.passport.com 65.54.225.241

65.54.225.254 65.54.226.247 65.54.226.254 65.54.228.244 65.54.228.253 65.54.229.248 65.54.229.253 login.passport.com 65.54.231.240 65.54.230.240 207.68.173.245 64.202.167.129 63.241.128.250 207.68.173.245 config.messenger.msn.com

Comparticion de carpetas en la red con samba

Instalar samba: Abrir un terminal y escribir lo sig. Sudo apt-get install samba Editar el archivo smb.conf que se ecuetra en la sig direccin etc/samba/smb.conf # # Sample configuration file for the Samba suite for Debian GNU/Linux. # # # This is the main Samba configuration file. You should read the # smb.conf(5) manual page in order to understand the options listed # here. Samba has a huge number of configurable options most of which # are not shown in this example # # Some options that are often worth tuning have been included as # commented-out examples in this file. # - When such options are commented with ";", the proposed setting # differs from the default Samba behaviour # - When commented with "#", the proposed setting is the default # behaviour of Samba but the option is considered important # enough to be mentioned here # # NOTE: Whenever you modify this file you should run the command # "testparm" to check that you have not made any basic syntactic # errors. # A well-established practice is to name the original file # "smb.conf.master" and create the "real" config file with # testparm -s smb.conf.master >smb.conf # This minimizes the size of the really used smb.conf file # which, according to the Samba Team, impacts performance # However, use this with caution if your smb.conf file contains nested # "include" statements. See Debian bug #483187 for a case # where using a master file is not a good idea. #

#======================= Global Settings ======================= [global] workgroup = SIPREL server string = %h server (Samba, Ubuntu) dns proxy = no log file = /var/log/samba/log.%m max log size = 997 syslog = 0 panic action = /usr/share/samba/panic-action %d security = ads obey pam restrictions = yes unix password sync = yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . pam password change = yes map to guest = bad user usershare allow guests = yes username map = /etc/samba/smbusers security = ads [printers] comment = All Printers browseable = no path = /var/spool/samba printable = yes ; guest ok = no ; read only = yes create mask = 0700 # Windows clients look for this share name as a source of downloadable # printer drivers [print$] comment = Printer Drivers path = /var/lib/samba/printers ; browseable = yes ; read only = yes ; guest ok = no # Uncomment to allow remote administration of Windows print drivers. # You may need to replace 'lpadmin' with the name of the group your # admin users are members of. # Please note that you also need to set appropriate Unix permissions # to the drivers directory for these users to have write rights in it ; write list = root, @lpadmin # A sample share for sharing your CD-ROM with others. ;[cdrom] ; comment = Samba server's CD-ROM ; read only = yes ; locking = no

; path = /cdrom ; guest ok = yes # The next two parameters show how to auto-mount a CD-ROM when the # cdrom share is accesed. For this to work /etc/fstab must contain # an entry like this: # # /dev/scd0 /cdrom iso9660 defaults,noauto,ro,user 0 0 # # The CD-ROM gets unmounted automatically after the connection to the # # If you don't want to use auto-mounting/unmounting make sure the CD # is mounted on /cdrom # ; preexec = /bin/mount /cdrom ; postexec = /bin/umount /cdrom [publica] path = /home/publica writeable = yes browseable = yes guest ok = yes [publica] comment =carpeta Publica path = /home/publica/ gest ok = yes public = yes writable = yes [Maritza] path = /home/Maritza browseable = yes guest ok = yes valid users = Maritza write list = Maritza read list = Maritza [Maritza] comment =carpeta Maritza path = /home/Maritza/ gest ok = yes public = yes writable = yes [Isis] path = /home/Isis browseable = yes guest ok = yes

valid users = Isis write list = Isis read list = Isis [Isis] comment =carpeta Isis path = /home/Isis/ gest ok = yes public = yes writable = yes [Rocio] path = /home/Rocio browseable = yes guest ok = yes valid users = Rocio write list = Rocio read list = Rocio [Rocio] comment =carpeta Rocio path = /home/Rocio/ gest ok = yes public = yes writable = yes