Debian 4.0
Sponsored Link

サービスの設定2008/08/23

[1] デフォルトで有効になっている不要サービスは停止しておきます。 以下の場所にあるものがこのサイトと同じようにインストールした場合のサービス一覧です。
debian:~$
ll /etc/init.d

total 256
-rwxr-xr-x 1 root root 1850 2006-01-14 20:12 acpid
-rwxr-xr-x 1 root root 969 2006-01-03 16:15 atd
-rwxr-xr-x 1 root root 5089 2006-09-20 20:33 bootclean
-rwxr-xr-x 1 root root 2146 2006-09-13 06:30 bootlogd
-rwxr-xr-x 1 root root 1915 2006-09-20 20:27 bootmisc.sh
-rwxr-xr-x 1 root root 2930 2006-09-14 17:20 checkfs.sh
-rwxr-xr-x 1 root root 9548 2006-09-23 16:34 checkroot.sh
-rwxr-xr-x 1 root root 6110 2006-09-06 01:15 console-screen.sh
-rwxr-xr-x 1 root root 1761 2006-10-13 03:55 cron
-rwxr-xr-x 1 root root 7104 2007-01-19 02:45 exim4
-rwxr-xr-x 1 root root 5823 2007-02-22 00:13 glibc.sh
-rwxr-xr-x 1 root root 1360 2007-01-14 03:52 halt
-rwxr-xr-x 1 root root 1287 2006-09-13 06:31 hostname.sh
-rwxr-xr-x 1 root root 3886 2007-02-22 02:48 hwclock.sh
-rwxr-xr-x 1 root root 2518 2006-09-16 03:03 ifupdown
-rwxr-xr-x 1 root root 1046 2006-09-16 03:03 ifupdown-clean
-rwxr-xr-x 1 root root 3484 2006-10-16 12:38 keymap.sh
-rwxr-xr-x 1 root root 944 2006-09-13 06:31 killprocs
-rwxr-xr-x 1 root root 1375 2006-05-25 18:38 klogd
-rwxr-xr-x 1 root root 417 2006-08-09 07:38 libdevmapper1.02
-rwxr-xr-x 1 root root 2358 2005-08-02 04:49 lvm
-rwxr-xr-x 1 root root 1054 2006-09-07 06:43 makedev
-rwxr-xr-x 1 root root 1793 2006-11-14 20:12 module-init-tools
-rwxr-xr-x 1 root root 617 2006-01-15 20:04 mountall-bootclean.sh
-rwxr-xr-x 1 root root 1718 2006-09-13 06:30 mountall.sh
-rwxr-xr-x 1 root root 2206 2006-10-04 03:22 mountdevsubfs.sh
-rwxr-xr-x 1 root root 2394 2006-09-25 17:36 mountkernfs.sh
-rwxr-xr-x 1 root root 615 2006-01-15 20:04 mountnfs-bootclean.sh
-rwxr-xr-x 1 root root 2299 2006-11-26 22:35 mountnfs.sh
-rwxr-xr-x 1 root root 3668 2006-11-27 00:13 mtab.sh
-rwxr-xr-x 1 root root 2550 2007-01-07 00:36 networking
-rwxr-xr-x 1 root root 6644 2007-01-25 20:49 nfs-common
-rwxr-xr-x 1 root root 2324 2007-02-26 05:29 openbsd-inetd
-rwxr-xr-x 1 root root 1525 2006-12-22 17:15 portmap
-rwxr-xr-x 1 root root 997 2006-09-13 10:42 procps.sh
-rwxr-xr-x 1 root root 8045 2006-11-28 07:23 rc
-rwxr-xr-x 1 root root 798 2006-09-29 02:25 rc.local
-rwxr-xr-x 1 root root 117 2005-12-03 02:44 rcS
-rw-r--r-- 1 root root 1386 2006-09-13 15:10 README
-rwxr-xr-x 1 root root 655 2006-09-22 23:21 reboot
-rwxr-xr-x 1 root root 994 2006-09-13 06:30 rmnologin
-rwxr-xr-x 1 root root 1376 2006-11-28 07:23 sendsigs
-rwxr-xr-x 1 root root 585 2006-09-13 06:32 single
-rw-r--r-- 1 root root 4187 2006-09-13 06:32 skeleton
-rwxr-xr-x 1 root root 520 2006-09-13 06:26 stop-bootlogd
-rwxr-xr-x 1 root root 730 2006-10-03 02:14 stop-bootlogd-single
-rwxr-xr-x 1 root root 2037 2006-05-25 18:38 sysklogd
-rwxr-xr-x 1 root root 8178 2006-12-19 19:21 udev
-rwxr-xr-x 1 root root 1252 2006-03-28 16:44 udev-mtab
-rwxr-xr-x 1 root root 3175 2006-11-25 18:22 umountfs
-rwxr-xr-x 1 root root 2128 2006-11-27 03:23 umountnfs.sh
-rwxr-xr-x 1 root root 1122 2006-09-30 23:37 umountroot
-rwxr-xr-x 1 root root 1815 2006-09-13 06:30 urandom
[2] ポートをリスンしている不要なサービスを止めます。以下の例では、まず、「portmap」を停止し、 システムの起動時に自動的に立ち上がらないようにしています。
debian:~$
sudo netstat -lnp

Active Internet connections (only servers)
Proto
Recv-Q
Send-Q
Local Address
Foreign Address
State

tcp
0
0
0.0.0.0:53062
0.0.0.0:*
LISTEN

tcp
0
0
0.0.0.0:111
0.0.0.0:*
LISTEN

tcp
0
0
0.0.0.0:113
0.0.0.0:*
LISTEN

tcp
0
0
127.0.0.1:25
0.0.0.0:*
LISTEN

udp
0
0
0.0.0.0:32768
0.0.0.0:*
 

udp
0
0
0.0.0.0:68
0.0.0.0:*
 

udp
0
0
0.0.0.0:746
0.0.0.0:*
 

udp
0
0
0.0.0.0:111
0.0.0.0:*
 

Active UNIX domain sockets (only servers)
Proto
RefCnt
Flags
Type
State
  I-Node
PID/Program name

unix
2
[ ACC ]
STREAM
LISTENING
  8044
2615/acpid


debian:~$
sudo /etc/init.d/portmap stop

Stopping portmap daemon....
debian:~$
sudo update-rc.d -f portmap remove
 
# 自動起動設定削除

  Removing any system startup links for /etc/init.d/portmap ...
    /etc/rc0.d/S32portmap
    /etc/rc1.d/K81portmap
    /etc/rc2.d/S18portmap
    /etc/rc3.d/S18portmap
    /etc/rc4.d/S18portmap
    /etc/rc5.d/S18portmap
    /etc/rc6.d/S32portmap
    /etc/rcS.d/S43portmap

# やっぱり自動起動に入れておく場合は以下のようにする

debian:~$
sudo update-rc.d portmap defaults

  Adding system startup for /etc/init.d/portmap ...
    /etc/rc0.d/K20portmap -> ../init.d/portmap
    /etc/rc1.d/K20portmap -> ../init.d/portmap
    /etc/rc6.d/K20portmap -> ../init.d/portmap
    /etc/rc2.d/S20portmap -> ../init.d/portmap
    /etc/rc3.d/S20portmap -> ../init.d/portmap
    /etc/rc4.d/S20portmap -> ../init.d/portmap
    /etc/rc5.d/S20portmap -> ../init.d/portmap
関連コンテンツ