Linux Admin III

tpygE ECHR/ASCHR

1

.

.

:

. :

tbcxuniL / noitartsinimdA_metsyS_dna_gnikrowteN_xuniL_tahdeR_yeliW_nhoJ smaxE.taH.deR.eht.ot.ediuG.no-sdnaH_ASCHR ht6 ,ediuG ydutS noitacifitreC xuniL taH deR ECHR-ASCHR- gnaJ .M . cibarA-xuniLES

. : . ][

. 6 .

. .

moc.liamtoh@abetanaj

4002aebit/#=q?/moc.koobecaf.www//:sptth 72034990010:LET

RHCSA/RHCE Egypt

2

.

(NETWORK)---------------------------------------------------------------------------------------------- (Network configuration) (4-----5) (Network Definition) (5-----6) TCP/IP (6-----7) )8-----7( TCP/IP )10----8( IP )12---10(

(system monitor and security) ---------------------------------------------------------------------------- (system monitor) (13---13) netstat )15---13( nmap )18---15( log )20---18(

(security overview) )22---20( sudo (sudo configuration) (23---24) kerberos (kerberos configuration) (24---25)

SELinux ---------------------------------------------------------------------------------------------------------------------- SELinux (26---27) SELinux (28---32) Security context (label) )31---28( Security policy )32---31( SELinux (32---34) SELinux (34---37) SELinux (37---41)

Fire wall Xinetd TCP wrapper -------------------------------------------------------------------------------------- Fire wall (42---43) Iptables (43---50) NAT (50---51) Connection Tracking (51---52) IP Forwarding (52---53) (53---56) The extended internet super-server (XINETED) )57---56( TCP WRAPPERS )85---75(

PAM (Pluggable Authentication Modules) ---------------------------------------------------------------------------- + (59---61) /etc/pam.d/reboot (61---62) /etc/pam.d/system-auth (62---64) PAM (64---67) User authentication, account information, and password management (67---69)

(File Secure) --------------------------------------------------------------------------------------------------- (70---72) /dev/random & /dev/urandom (72---73) One way hashes ("digital fingerprints") (73---74) symmetric encryption (74---77) Asymmetric encryption (77---90) X509 digital certificates and public key infrastructure (90---92)

remote access ------------------------------------------------------------------------------------------------ SSH (93--101) (93---94) (94---97) Key based authentication (95---96) ONE TIME LOGINS: THE SSH AGENT (96---97)

RHCSA/RHCE Egypt

3

.

SSH (97---99) SSH (99--100) SHH (PORT REMOTE FORWARD) (100-101) VNC (---102--)

(APACHE SERVER) ----------------------------------------------------------------------------------------- (103-106) [HTTPD] (106-112) STANDARD APACHE SECURITY CONFIGURATION (112-116) SPECIALIZED APACHE DIRECTORIES (117-118) VIRTUAL HOST (118-120) CREATE SSL CERTIFICATE (121-125) CGI (125-126) SQUID (PROXEY WEB SERVER CACH) (127-134)

(linux network application) ------------------------------------------------------------------------------- DNS (135-149) DHCP (149-153) SET UP SYSTEM UTILIZATION REPORTS (153-156) CONFIGURE A SYSTEM LOGGING SERVER (156-157) THE NETWORK TIME PROTOCOL SERVICE (NTP) (158-160)

(FILE SHARING SERVICE) ---------------------------------------------------------------------------- NFS (NETWORK FILE SHARING (161-169) VSFTP (169-175) SAMBA (175-191) + [SAMBA SERVICES] (175-184) THE SAMBA WEB ADMINISTRATION TOOL (184-189) SAMBA AS A CLIENT (189-191) Samba TROUBLESHOOTING (---191--)

SMTP --------------------------------------------------------------------------------------------------------- + (192-195) POSTFIX CONFIGURATION (195-199) POSTFIX AUTHENTICATION (200-201) SENDMAIL (201-206) DOVECOT MAILBOX SERVER (206-209)

Miscellaneous ---------------------------------------------------------------------------------------------------------------- ISCSI (210-212) BONDING (212-214) (214-229)

------------------------------------------------------------ / --------------------------------------------------

tpygE ECHR/ASCHR

noitarugifnoc krowteN 4

.

NOITARUGIFNOC KROWTEN

: krowten stsoh/cte/ -1 fnoc.vloser/cte/ -2 krowten/gifnocsys/cte/ -3 Xhte-gfcfi/stpircs-krowten/gifnocsys/cte/ -4

[stsoh/cte/] -1 ).on pi( PI

. stsoh/cte/ miv#]~ tsohlacol@toor[

.)krowten lacol( PI . PI PI

.PI (gnivloser ) pi gnip

452.1.861.291gnip# moc.afatsom.retuorgnip# retuorgnip#

: gnip-2 pamn-1 [etuorecart#moc.oohay.www]( niamod ) etuorecartniamod-3 (niamod) pukoolsnniamod-4

]moc.elgoog.wwwpukoolsn#[ : .tseuqer drawrof stseuqer recnalab daol

.pukoolsn niamodgid-5 /fnoc.vloser/cte-2

fnoc.vloser/cte/miv#]~ tsohlacol@toor[ )revreseman , hcraes , niamod( 3

PI PI SND revres emaN .

f-emantsoh#]~ tsohlacol@toor[ ) niamod moc.abetanaj , =sd( moc.abetanaj.sd tluseR

gnip niamod hcraeS 1enihcam gnip moc.afatsom.1enihcam gnip .moc.afatsom.enihcam niamod

niamod )padl( revres yrotcerid niamoD moc.afatsom niamod moc.afatsom hcraes 2.621.861.219 revreseman

SKROWTEN

tpygE ECHR/ASCHR

.feD krowteN 5

.

. revreseman hcraeS . fnoc.vloser stsoH

.fnoc.vloser stsoh PI iut-krowten-gifnoc-metsys IUG krowten

/krowten/gifnocsys/cte-3 :

sey=gnikrowteN = emantsoH

: emantsoh emanemantsoh# emantsoh -1 krowten/gifnocsys/cte/ -2

eman_wen =emantsoh.lenrek w-ltcsys# /krowten/gifnocsys/cte-gfcfi/stpircs-0hte-4

gifnoc ecafretni gfcfi )naL( 0hte lortnoc noituloser gnisserdda ]n pra[

sserdda cam gninosiop elbat pra 1rev tucten : sserdda cam citats PI tuo kcats s pra

.retuor tucten FED KROWTEN.

PI/PCT PI/PCT

PRA PMCI PI PDU PCT (HSS tenleT ) PI/PCT

.)PTTH ,PTF( )SFN( PI/PCT

: PI/PCT PTF : -1 tenlet : )( -2

. HHS PTMS: liamE -3

)( .

PTF :)SFN( -4 .

. :-5 hsr) . : :-6

( llaC erudecorP etomeR ) CPR (cexer hss xoreX CPR .

(.) CPR nuS reiruoC

tpygE ECHR/ASCHR

PI/PCT 6

.

: -7 .PADL SND SIN .

. tenlet :-8 ) (:-9

.swodniw x . PI/PCT

PI/PCT . PI PCT . .

PI PCT. .PI / PCT DoD

locotorP margataD resU PDU PCT ( )

) (. PCT cotorp egasseM lortnoC tenretnIlo PMCI

. . PMCI .

. strop . PDU PMCI ). , tenleT , PTMS , PIR , PDU , PMCI , SND , PRA(

OSI/ISO ] . [.

reyaL lacisyhP

. (lacisyhp) . (.noitarud tib) (gniwS egatloV langiS)

. (secafretnI) reyaL kniL ataD

)kniL lacisyhP( )semarF( (.CLDH PILS PPP) : .

reyaL krowteN .

(PI) . . (sretuoR) (.gnituoR)

tropsnarT reyaL (reyaL noisseS)

(.wolF ataD) (.gnihctiwS) (PCT)

tpygE ECHR/ASCHR

7

.

(PI/PCT) . (PCT)

(slocotorP gnituoR) .

(.PI) (PGB FPSO) : reyaL noisseS

(ecremmocE) .

(gnicnalaB daoL) .

. (snoisseS) reyaL noitatneserP

(.kcaP-nU & kcaP)

. reyaL noitacilppA

))PTMS dna 3pop( liam dna ,ptf ,tenleT(

.PI/PCT ... )lSO(

)( . nus yelkreB PI/PCT )SPI tiuS locotorP tenretnI(

gnpI 6vPI CFR1101 .SPI .4vPI

NAL ][ (ISO ) 0001 001 01 ) tenrehtEagiG tenrehtEtsaF tenrehtE

( . rebiF citpo detsiwT laixaoC

( jR45 ) detsiwT sretaeper ) ( 001 Tesab 01Tesab

hctiws sbuh ) tnerehtE . sbuh . ( sretuor NAL tenrehtE ecafretnI ataD detubirtsiD rebiF IDDF

IDDF) tnerehtE .(

elbac detsiwT

tpygE ECHR/ASCHR

PI/PCT 8

.

MTA

NAL edoM refsnarT suonorhcnysA .

yaleR emarF / : ( NAW ) 52.X

(esoR moRteN 52.XA ) oidaR tekcaP ( LSDA LSD LSDR)

PI/PCT . ) (.

( X ) Xhte tnerehtE /

IDDF Xiddf PILS Xis ppp Xppp .

PI/PCT

: "tenartni- /

) ( . / .

:)edon(.... DC )( )

/ . ( (:sserddA CAM )sserddA tenrehtE

)drac ecafretni krowten( CIN 2 euqinu CIN ) (

.SSERDDA CAM CIN :) tib(84 ) 84

)lamiced xeh( FF:BA:37:04:88:00 )yranib( 1111 1101 0101 1100 1110 0000 0010 0001 0001 0000 0000

sserdda cam FF:FF:FF:FF:FF:FF 00:00:00:00:00:00 sserddA caM

. sserddA CAM 00:00:00:00:00:00 sserddA CAM FF:FF:FF:FF:FF:FF

( ) ))F-A( )9-0(( lamicedaxeh 6

.

elbac laixaoC

elbac IDFF

tpygE ECHR/ASCHR

PI/PCT 9

.

32:C5:00 ETYBAGIG 32:C5:00

retuor retuor sserddA CAM hctiws

sserddA CAM ( ) .PI locotorp tenretnI

: )emantsoh(

. 9-0 ,Z-A ,z-a 23

'#'. sserddA tenretnI PI

4vPI PI 4v 23^2 yranib tib 23 PI .821^2 tib 821 6vPI

( 1.0.861.291 ) 0-552 .PI ) ( SND PI.

)TROP( [( PDU PCT )]

.12 ptf 32 tenlet .

. 0808 metsyS emaN niamoD SND

. . PI

(.sserddA PI ) PI

. semaN niamoD

gro.aidepikiw SND PI

) . PI ) lim vog ude moc ) (

gro( ude.cou ) ( se.ximer.olurip@muetn ude.cou.www//:ptth)

) CIN-IRS( ) se.ximer ][.

ptoob ,PCHD (. PI )

. PRAR ,PRA

. PI ( NAL 208 EEEI ) .PRAR PRA :

HCTIWS

retuoR

TENRETNI

TNEILC

tpygE ECHR/ASCHR

PI 01

.

(ISO CAM) PRA. ( ) PRAR(. PI)

. PRAR tekcoS : yrarbiL

. stekcoS IPA

) PI/PCT /(.

yrarbiL tekcoS yelekreB IPA .skcosniW

revreS NAL :PI/PCT tneilC

- - 0808 0808

: 0808 tekcoS : tekcoS

.

++ IPA stekcoS

CFM CFM

( TENI TA ) XINU_FA TENI_FA cbil C / ( XINU FA )

( MTA) CVSMTA_FA CVPMTA_FA( 52.X) 52X_FA( llevoN ) XPI_FA .oidar ruetama ESOR_FA MORTEN_FA XA_FA52

yawetag PI

. .

) : 0 : ( 4 23 552 0 ) lacol tsoh lacol) (1.0.0.721 :) 721 (0.0.0.0

0 (kcabpool .(552.552.861.291) tsacdaorb 552 0.0.861.291

:

tpygE ECHR/ASCHR

PI 11

.

)A ssalc( A

1.0.0.1 tsoH.tsoH.tsoH.krowteN ( . 61 621) 452.452.452.621

)B ssalc( B 1.0.1.821 tsoH.tsoH.krowteN.krowteN

( 56 61) 452.452.552.191 .

)C ssalc( C 1.1.1.291 tsoH.krowteN.krowteN.krowteN

(. 61 ) 452.552.552.322 452.552.552.552 1.1.1.432 ( tsoh.ten.ten.ten ) E D

. tsacitlum )

552.552.552.01-0.0.0.01 A (. 0.552.861.291 -0.0.861.291 C 0.0.13.271 -0.0.61.271 B

(. ) tsac daorB ( . ) smargatad

PI PRA PI .

. YRANIB IIIIIIII.IIIIIIII.IIIIIIII.IIIIIIII tib 23 4vPI lamicedaxeH TIB8 . TIB8 . TIB8 . TIB8

.552 0 652 = 2+2+2+2+2+2+2+2 = IIIIIIII tib 8 01234567.01234567.01234567.01234567

=11000000.00001111.11111111.10001111 )yranib( 1+2.61+23+46+821.1+2+4+8+61+23+46+821.1+61+23+46+821

)lamiceD( 3.042.552.142 KSAMTEN

.

. C B A . PI 23 ksamten ksamten

)DNA( ( PI) )23tib( .

0.0.552.552 ksamten 0.0.71.271 B 02 ) (.

.0.02.71.271 0.1.71.271 ( 0.1.71.271) PI 0.1.71.271 enobkcab

(0.552.552.552 )

tpygE ECHR/ASCHR

PI 21

.

etuor

gnituor ) ( PGE locotorP yawetaG lanretxE PIR locotorP noitamrofnI

detag PGB locotorP yawetaG redroB tenbus ssalc

552.552.552.552 00000000.IIIIIIII.IIIIIIII.IIIIIIII C ssalc NI

C ssalc ni ksam tenbus tluafed 0.552.552.552 PI 01

0.1.861.291 C ssalc PI 01 ksam tenbus 2 01 2 71 52= 1+ )tib42 = 552.552.552( 00000001.552.552.552 2 08 52/0.1.861.291 821.552.552.552= ksam tenbuS

PI 9 0.61.861.291

82/0.61.861.291 042.552.552.552 =00001111.552.552.552 ----- 2 9 DIN

. ksam tenbus

(ksam tenbuS ) )DIN( 0.0.861.291------------ 04 PSI

291.552.552.552 62/0.0.861.291 = ksam ten ( tib 23) 62= 6-23 ( 2) 0000011.552.552.552 36 = tsacdaorB

))842(00011111.552.552.552( 92/ = ksam tenbus 2 6 22/0.81.31.551 22=01-23 2 0.81.31.551 B ssalc PI 715

00000000.01 001000.10110000.11011001 0.81.31.551 :sserddA 00000000.00 111111.11111111.11111111 22 = 0.252.552.552 :ksamteN 11111111.11 000000.00000000.00000000 552.3.0.0 :dracdliW >= )B ssalC( 00000000.00 001000.10110000.11011001 22/0.61.31.551 :krowteN 11111111.11 001000.10110000.11011001 552.91.31.551 :tsacdaorB 10000000.00 001000.10110000.11011001 1.61.31.551 :niMtsoH 01111111.11 001000.10110000.11011001 452.91.31.551 :xaMtsoH 2201 :teN/stsoH

ksam tenbus clacpis clacPI-1 ksamtahw-2

tpygE ECHR/ASCHR

])GNIROTINOM METSYS([ 31

.

])GNIROTINOM METSYS([

.

. /

. ]GOL[ -2 -1:

( sl- dnif- fd- ud) -3 pot sp -4

. gid gnip

.( ) .

]PDU[ ]PCT[ .

.

]pamn[ ]tatsten[ / .]selbatpi[

tatsten

. . PI

. . tneilC )noitcennoc(

.revres / ( trop) ( )

tatsten ( ) . )lanimret( tatsten

. ) ( ) ( . TN swodniW

. . :tatsten

. ]tatsten[ . )noitpo( ]tatsten[

]tekcos xinU[ ]tatsten[ .

. ]tekcos XINU[

GNIROTINPM METSYS

YTIRUCES DNA

gnitidua[ () ]

tpygE ECHR/ASCHR


.

tatsten[ ] PCT ]t-[

.PDU ]u-[ ]ssecorp[ ]n-[ ]p-[

. PCT

. ]gnitidua[

. . tatsten

]netsil[ tatsten ]l-[

.

. 08 dptth .]llawerif[

tatsten : ]s-[

. PDU PCT ]s-[ : ]r-[ ]elbat gnituor[

tpygE ECHR/ASCHR


.

: ]e-[ ]i-[

]gifnocfi[ ]ei-tatsten[ ]PAMN[

]tatsten[ .]pamn[ .

. :

. pamn . ]pamn[

. ( ( ) ) pamn "" .

pamn. .

]rennacs trop[

.]pamnllatsnimuy[ : ]pamn[

. PCT . ]pamn[ X.0.861.291 ]42/0.0.861.291pamn[

. ]gnip[ . ]pamN[

:]pamn[ PCT xinU :]tcennoc PCT[-1

: 1.1.861.291Ts-pamn#

pamn 1.1.861.291 12 PTF 12 pamn

redaeH PTF .pamn

gninnacs nepo-flah : ]nacS htlaetS NYS[-2 tekcaP pamn tcennoc PCT PCT

tekcaP NYS

tpygE ECHR/ASCHR


.

(toor ) (KCA-NYS tekcaP) 1.1.861.291Ss-pamn#

-etyb( 0) tekcaP PDU pamn :]tcennoc PDU[-3 PMCI tekcaP

)tekcaP PMCI( : !

1.1.861.291Us-pamn# : ]nacS KCA[-4

KCA NYS NYS KCA tekcaP pamn TSR tekcaP

)deretlif( TSR tekcaP : ,

1.1.861.29108p-As-pamn# . 08 1.1.861.291

tekcaP PI pamn :]nacS locotorP PI[-5 PMCI tekcaP : ,

1.1.861.291Os-pamn# :]nacS noitceteD noisreV[-6

pamn etomer tiolpsateM

: )!sniW srekcaH taH kcalB( 1.1.861.291Vs-pamn#

pamn :]nacS gniP[-7 gnip PMCI tekcaP

tekcaP PMCI KCA TSR gniP PCT pamn

: , 552-1.1.861.291Ps-pamn#

: 522.1.861.291 1.1.861.291 42/1.1.861.291Ps-pamn#

0.552.552.552 :ksamteN C ssalC : revresbeW 08

552-1.1.861.29108p-Ps-pamn# pamn

: ( 08,35,22,12 ) 552-1.1.861.29108,35,22,12p-Ss-pamn#

]v-[ :

552-1.1.861.29108,35,22,12p-v-Ss-pamn# :001 1

1.0.0.721001-1p-Ss-pamn# pamn

:tnirpregniF SO etomeR 1.1.861.291v-O-pamn#

: 1.1.861.291A-Ss-pamn#

: 08

1.1.861.29108p-A-Ss-pamn# pamn

: 1.1.861.291F-Ss-pamn#

tpygE ECHR/ASCHR


.

: pamn 1.1.861.291txt.golNo-Ss-pamn# 1.1.861.291lmx.golXo-Ss-pamn#

!srekcaH taH kcalB

: 1.1.861.291f-Ss-pamn#

tekcaP PI :

1.1.861.291,4.1.861.291,3.1.861.291,2.1.861.291D-Ss-pamn# 4.0.861.291+ 3.0.861.291+ 2.0.861.291: PI

! pamN

pamneZ seliforP

. eliforP .]efpamn[ ]dnetnorf-pamn[

. ]gifnockhc[ ]ecivres[ ecivres ihavA

fnocorez . ihava ihavA . )gnikrowten noitarugifnoc orez(

fnocorez .yrevocsid SND )SNDm(SND tsacitlum . ruojnoB

SND PCHD fnocoreZ .

. ihavA ihavA

. nomead-ihava . . ihava

. . gol

GOL .

.]elif gol[ ]nomead golsys[

]dgolsysr[ ]elif gol[

.]ytireves[ ]ytilicaf[ . ]ytireves[ ]ytilicaf[

tpygE ECHR/ASCHR


.

]ytireves[ ]ytilicaf[ . ]ytilicaF[

]ytireveS[ hctawgol .

:hctawgol . ]thgilhgih[

: hctawgol hctawgolllatsnimuy#

: tnirp--eman_ecivresecivres--hctawgol#

. ]tnirp--[ .

tnirp--eman_elifgolelifgol--hctawgol# ].- golliam eruces egassem[

: ]ridgol--[ tnirp--noitacol_elifgolridgol--hctawgol#

]pot[ ]sp[

. stimiL ssecorP

. .

DIP DIP .DIP .)gnah(

. ]fnoc.stimil/ytiruces/cte/[ :

:]timil ot ohW[ ." *" ( @" )

:]timil fo epyT[ ]drah[ ]tfos[

. ]timil drah[. ]timilu[ ]timil tfos[ :]timil ot tahW[

. .

:]eulav timiL[ . detimilnu .

tpygE ECHR/ASCHR


.

.

MAP ]/d.stimil/ytiruces/cte/[ ]fnoc.stimil/ytiruces/cte/[ . os.stimil_map

. .]a timilu[

: dip xam_dip mumixam DIP yalpsid rof xam_dip/lenrek/sys/corp/tac# fnoc.ltcsys/cte/ >> 3034914=xam_dip.lenrek ohce# ro 3034914=xam_dip.lenrekw-ltcsys#

: .

]pot[ ]sp[

: ]tccasp[

: tratstccaspecivres#

]tccasp/tnuocca/rav/[ : ]as[. . ]elif yranib[

: nur semit fo rebmun gninnur tneps "emit-laer" desu "emit-upc" egasu yromem eroc egareva eman dnammoc

: ]as[ ]yrammus-resu--[

: ]*rehto***[ ]as[: ]a-[

. ]a-[ . : ]c-[ . : ]n-[ . : ]b-[

tpygE ECHR/ASCHR

02

.

: ]ca[

]pd-ca[ : ]mmoctsal[

.

. / .

. )srekcarc kcah kcalb( . (segelivirp gnitalacse)

wolFrevOreiffuB (toor lacoL/toor etomeR) reganaMkrowteN DNIB lruc cnysr ehcapa

. tacteN

.xuniLES / )ASN( .

. )tekcap eht fo repparw( llaw eriF .ytiruces desab tsoh dna resu

.xuniLES )noissimrep( sllawerif

...............srepparW PCT )MAP( seludoM noitacitnehtuA elbaggulP

.

. .

tpygE ECHR/ASCHR

12

.

YTIRUCES XUNIL FO SREYAL EHT

)reyal ytiruces xunil( .

.tsoh noitsab tsoh noitsab

yxorp . . ecivres

.

.yawetaG level-tiucriC level noitacilppA( mroftalP ) tsoh noitsaB . : tsoH noitsaB

.ASA XIP yxorP . SND PTF PTMS tenlet

. toorhc liaj ASN.laminim . : noitsab Atsoh

. noitallatsni revres noitacitnehtua revres elif revres bew .

. .HSS CNV HSS

: tsoh noitsab

. .

. :

)loot etadpU erawtfoS( : ]reweiv-etadpu-kpg[

: ]sferp-kpg[

tpygE ECHR/ASCHR

tiKyciloP ehT 22

.

YTIRUCES CIFICEPS-ECIVRES

. )ecivres( .puorg resukrowten tsoh

: )ytiruces desab puorG& resU ytiruces desab krowteN ytiruces desab tsoH(

ytiruces desab tsoH-1 .PI eman_niamoD )metsys emantsoh(

. ]sreyal[ ]iso rof segelivirp[ ]noitpyrcnE metsyS eliF[ ]xuniles[ ]LCA[ ytiruceS desaB-resU-2

. wolla.norc/cte/

ytiruces desab krowteN-3 yxorp retlifteN llawerif

elosnoc ytiruces-4 .fnoc.ssecca/ytiruces/cte/ ytteruces/cte/ :

.tenleT HSS . elosnoc ssecca : / ASAN

. TIKYCILOP EHT

. evitartsinimdA . )sloot evitartsinimda(

:

. : Dliates tiKyciloP

]llawerif-gifnoc-metsys[ rodneV noitcA

snoitca/1-tiklop/erahs/rsu// htua.llawerif.gifnoc.tcejorparodef.gro ycilop.llawerif.gifnoc.tcejorparodef.gro noitca noitca

elbissop revenehw etad dettimsnart detpyrcnE -1 ytilibarenluv eziminim ot erawtfos seziminiM -2 metsys detarapes ni ecivres krowten tnereffid nuR -3 ssentsuboR metsys evorpmi ot sloot ytiruces erugifnoC -4 egelivirp tsaeL -5

elosnoC tiKyciloP .

sreodus/cte/

tpygE ECHR/ASCHR

odus noitarugifnoC 32

.

ODUS NOITARUGIFNOC

)od resu etutitsbus( oduS (.toor )

odus .)resu rehtona sa( )toor sa( .

. odus : odus

. ]odus[ .odusiv ]*/sreodus/cte/[

sreodus . odus: ]odusiv[ . skcehc ytinas iv

: odusiv sreodus :

DNAMMOC=EMANTSOH RESU (.@ %: ) RESU

. :EMANTSOH sreodus odus .

LLA . . .PI )emantsoh(

. :DNAMMOC ."" (. sdrac dliw )

: sesaila : sesaila resu .1

: )tsil eman resu( remmas ,demmahom ,neeron ,anaj = )eman saila( SNIMDA sailA_resU

PI tsoh tsoh sesaila tsoh .2 :

2ptms ,ptms = REVRESLIAM sailA_tsoH sesaila dnammoc .3

# sreodus :

muy/nib/rsu ,etad2pu/nib/rsu ,mpr/nib = ERAWTFOS sailA_dnmC

:

tpygE ECHR/ASCHR

noitarugifnoc sorebreK 42

.

: sreodus ANAJ .1

: LLA =LLA ANAJ

.2 : sreodus

LLA :DWSSAPON )LLA( =LLA ANAJ )LLA( LLA ANAJ

DWSSAPON )toor( . LLA odus

leehw .3 :

LLA :DWSSAPON )LLA( =LLA leehw% GNIKROWTEN )sailA_dnmC( .4

: GNIKROWTEN neeron GNIKROWTEN =LLA neeron

: .5 ERAWTFOS )LLA( =LLA anaJ LLA lqsym gifnockhc/nibs/ ,lqsym ecivres/nibs/ ABJ% lqsym gifnockhc/nibs/ ,lqsym ecivres/nib/=LLA SBC%

NOITARUGIFNOC SOREBREK

sorebreK )noitacitnehtua eruces( sorebreK

. "revreS/tneilC" / . TIM

. . revreS tneilC yhpargotpyrC sorebrek

.

. X swodniW ,DSB ,xuniL TIM sorebreK .

(etavirp lacirtemmys ) sorebreK

.)smhtirogla( SED , tneilc sorebreK

stekcit: revres noitacitnehtua - : - . noisses - - noisses -

. sorebrek

tpygE ECHR/ASCHR

noitarugifnoc sorebreK 52

.

: (revres noitacitnehtua sorebreK) sCDK: mlaer sorebreK .1

.)noitacitnehtua( / : yeK( CDK)retneC noitubirtsiD .2

.)slaitnederc noitacitnehtua( sorebrek )tekcit( sorebrek ( etomernoitartsinimda) :revres nimdA sorebreK .3

.revreS nimdA sorebreK CDK retsam noitacitnehtua-gifnoc-metsys

. gifnochtua : sorebrek

padl noitacitnehtua-gifnoc-metsys : sorebrek

: gifnochtua

. PADL dsss

tpygE ECHR/ASCHR

xuniles 62

.

XUNILES

(sreyal ytiruces) ytiruceS-)xuniLES( xuniL decnahnE : .)ycnegA ytiruceS lanoitaN .S.U( .

: xuniLES -

. .snoitca stcejbo stcejbus (stxetnoc ) -

resu ecivres ssecorp stcejbuS stekcos - strop secived selif stcejbO

xuniLES (.ycnegA ytiruceS lanoitaN .S.U)

777 ksalF HSAM .

/ .)ET( tnemecrofnE epyT

( ) lortnoC sseccA yrotadnaMCAM ( seludoM ytiruceS xuniL MSL )

.4txe 3txe 2txe xuniLES / 0002 22 21.2.2v

: xuniLES

1. CAD lortnoC sseccA yranoitercsiD . ( )

. resU puorG )ssecorp( /

. :

1( sresu-egelivirP/srotartsinimdA 2( sresu-egelivirp-noN/rotartsinimdA-noN

( ) . )resu toor(

)lortnoC-desaB-eloR( 2. CAM lortnoC sseccA yrotadnaM - )ssecorp(

/ . )strop( )secived( .

PI xunileS

XUNILES

tpygE ECHR/ASCHR

xuniles 72

.

. CAM

)tcejbO( . ycilop )txetnoc ytiruces(

dptth CAD

.

dptth CAM . dptth

:xuniles ycilop CAM -

. :xuniles

/ - .

- ( ycilop ) / - - - - -

: - a si gnihT yrevEeliF

puorG resU : xuniLES

- na si gnihT yrevEtcejbO

tpygE ECHR/ASCHR

XUNILES 82

.

CAM CAD CAD CAM: CAM - /-

. CAM : XUNILES

looT tnemeganaM xuniLES eht dna ,Z- sl ,nochc ,loobestes ,loobesteg XUNILES

)niamoD( )ssecorp( )niamoD( xuniLES xobdnaS sessecorp /

ssecorP eloR eloR . .niamoD /

: xuniLES )LEBAL( txetnoC ytiruceS-. 1

: - ytitnedI resU

- eloR - epyT / niamoD

- ytivitisneS - yrogetaC

yciloP ytiruceS- . 2 TXETNOC YTIRUCES

. txetnoC ytiruceS txetnoC ytiruceS tcejbus tcejbo epyT/niamoD : eloR : ytitnedI_resU

" : " t_tnetnoc_sys_dptth:r_tcejbo:u_resu

ytitnedI resU eloR -

elor . elor xuniLES ytitnedI resU ]us[ elorwen eloR. . )elorwen-slituerocycilopllatsnimuy( elorwen-slituerocycilop elorwen

sresu/sessecorP eloR ssecorp eloR : DIU eloR

u_metsys ( )u_ DIU r_tcejbo )r_( eloR

epyT / niamoD - xobdnas epyt niamod

. xobdnaS . tcejbus xobdnas niamoD

. tcejbo xobdnas epyT t_dptth : )t_( niamod epyt

TXETNOC YTIRUCES / "lebaL" " tcejbuS tcejbO

srttax. srttax etubirttA dednetxE .

:lebaL resU u_resu :resU degelivirp-noN - toor :)toor( resU degelivirP - u_metsys :resU metsyS - u_denifnocnu :resu detcetorpnU -

CABR - lortnoC sseccA desaB-eloR r_resu :resu- r_metsys :ssecorP - r_tcejbo :eliF -

RHCSA/RHCE Egypt

29 Security context

.

Type (Objects (files))/Domain (Subjects (processes/programs/users)) - Privileged/Non-privileged Users: unconfined_t - Processes ex. {httpd: httpd_t ; dhcpd: dhcpd_t}

Label : (chcon , restorecon, fixfiles)

Label

label : /etc/selinux/targeted/contexts/files/

#semanagefcontext-l = #cat/etc/selinux/targeted/context/files/file_contexts

SECURITY CONTEXT labels Subjects Objects .

1- (ls-Z) LABEL

2- (id-Z) secon LABEL

3- (ps-Z) LABEL

) file context) (root:sysadm_r:sysadm_t. (

root:object_r:user_home_t system_u:object_r:httpd_exec_t user_u:object_r:user_home_dir_t user_u:object_r:httpd_sys_content_t system_u:object_r:tmp_t

tpygE ECHR/ASCHR

txetnoc ytiruceS 03

.

txetnoc ytiruces llatsni ridkm -4 yhbos_demmahomt_rid_emoh_resu:r_tcejbo:u_resuZ-ridkm#

dnif -5 't_tnetnoc_*_dptth:*'txetnoc-/emoh/dnif#]~ 10LEHR@toor[

-6 lebaL lebal lebal

.stcejbO slebaL . EPYT :

. 2etadpu 4v LEHR lebal 1( rat gfc.sk-adnocanazg.rat.gfc.sk-adnocanafc-xuniles--rat#

. zg.rat.gfc.sk-adnocanafx-xuniles--rat#

. lebal rttax 2( rats

. H . lebal etubirtta

gfc.sk-adnocanarats.gfc.sk-adnocana=f-c-ratsuxe=H-rttax-rats#

rats.gfc.sk-adnocana=f-x-ratsuxe=H-rttax-rats# lebal 3( cnysr

pcs pc .

lebal pmt/:08.0.0.01gfc-sk-adnocanaXAPHva-cnysr#

rttax X LCA A drah H a .P

)TXETNOC YTIRUCES( LEBAL (. )- slebal

gnilebal nochc -1

tcejbus tcejbo txetnoc / . lebal lebaleR

: niamod/epyt emanelift_eman_epytt-nochc#

: niamod/epyt emanelift_eman_epytt-R-nochc#

t u diu t r elor

egassem rorre f lebal :

: lebal eliFtcerroCtoNeliFtcerroCecnerefer--nochc#

nocerotser -2 lebal lebal / ...

lmth_cilbup/GNIK/emoh/vR-nocerotser# )txetnoc teser( F )ssecorp( p )esobrev( v r/R

tpygE ECHR/ASCHR

ycilop ytiruceS 13

.

eganames -3 . nochc

iug-nohtyp-slituerocycilop nohtyp-slituerocycilop

txetnocf : txetnoc ytiruces

epyt elif f- yifidom m- tsil l- lla eteled D- eteled d- dda a- niamod/epyt rof t- )r_*( elor resu rof , )u_*( emanresu rof desu s-

YCILOP YTIRUCES

ycilop detegrat )yciloP xuniLES(/

. xuniles xuniles selur :yciloP .tcejbus tcejbo ycilop . - -:

: lebaL yciloP : epyT xobdnas - tcejbO= / -

tcejbO lebaL epyt tcejbO - - .t_emoh_resu

.tcejbO // DIU eloR : lebaL yciloP ehcapa :

. niamod xobdnas - tcejbuS= // - tcejbuS lebaL niamod tcejbuS - - -

. t_cexe_dptth niamod t_ dptth dptth / epyt DIU eloR

t_tnetnoc_sys_dptth. epyt t_tnetnoc_sys_dptth t_tnetnoc_resu_dptth / epyt

. / dptth // dptth ycilop ( yciloP detegraT)

.detegraT tahdeR niamoD tcejbO tcejbuS

. yciloP // tcejbO tcejbuS t_denifnocnu . CAD CAM t_denifnocnu niamoD

TCIRTS XUNILES ycilop ycilop

/ycilop/detegrat/xuniles/cte/ ycilop 2.ycilop/ycilop/detegrat/xuniles/cte/4 noisreVyciloP.yciloP yciloP

)srevycilop/xuniles/tac#(

yciloP detegraT yciloP / .

. - t_susagep - t_dptn - t_dcsn - t_cdn - t_deman - t_dlqsym - t_gifnocdl - t_crtini - t_dptth - t_dpchd . t_dnibpy - t_dnibniw - t_dgolsys - t_diuqs - t_dpmns - t_lqsergtsop - t_pamtrop

. t_denifnocnu )xunilesknam#( xuniLES

tpygE ECHR/ASCHR

)naelooB yciloP( 23

.

(NAELOOB YCILOP) 0( " 1 0 ) yciloP

/xuniles/b/snaeloo : . ycilop ycilop

xuniLES " 0 0 " /sloob_gnidnep_timmoc/xuniles( gnidnep . ) xuniLES

:

.PTF emoh snaeloob )P- loobestes( )P- loobestes( . ycilop ycilop loobesteg a- . :

nosridemoh_elbane_dptthP-loobestes# ( ) =1 =0( 1 0)

1sridemoh_elbane_dptthP-loobestes# :

lacol.snaeloob/evitca/seludom/detegrat/xuniles/cte/

ffo no ycilop loobeselggot eganames

: snaeloob iug-slituerocycilop nohtyp-slituerocycilop llatsni y muy#

. ycilop : snaeloob l-naeloobeganames#

: perg naeloob

l m naeloob xuniles-gifnoc-metsys

/snaeloob/xuniles/ naeloob ptf perg | snaeloob/xuniles/ sl XUNILES

:. xuniles. 1 xuniles ycilop. 2

xuniles/gifnocsys/cte/ gifnoc/xuniles/cte/ : xuniLES

tpygE ECHR/ASCHR

xuniLES 33

.

:

ycilop xuniLES LESxuni gnicrofne-1

selbane. seicilop xuniLES .evitca

evissimrep-2 secilop xuniLES

. seiciloP xuniles .evitca delbane delbasid-3

. xuniLES xuniles ycilop

seiciloP detegrat-1

) ( stcejbO tcejbuS yciloP

. ycilop

detegrat-ycilop-xunilesllatsniy-muy# /ycilop/detegrat/xuniles/cte/

ycilop leved-ycilop-xunilesllatsniy-muy#

/leved/xuniles/erahs/rsu/ tcirts-2

. yciloP

ycilop tcirts-ycilop-xunilesllatsniy-muy#

ytiruceS leveL itluM slm-3 seirogetaC seitivitisneS slebaL

ycilop slm-ycilop-xunilesllatsniy-muy#

xuniles : xuniLES

( ) xuniLES -1 xuniles/gifnocsys/cte/ gifnoc/xuniles/cte/

gnicrofne=XUNILES () BURG -2

0 ro 1=xuniles xuniLES )evissimrep(0=gnicrofne )gnicrofne(1=gnicrofne elbane= 1 .elbasid= 0:

1=xuniles /=LEBAL=toor or 5le.1.51.461-81.6.2-zunilmv/toob/ lenrek

tpygE ECHR/ASCHR

)seliF delebaleR( 43

.

( ) ecrofnetes-3 :( xuniLES ) evissimrep gnicrofne

( ) /ecrofne/xuniles -4 ecrofne/xuniles/ > "1" ohce#

-5 xuniles-gifnoc-metsys

pc lebal vm lebal : Z )a pc( a lebal

: lebal stsohstsoh/cte/t_elif:r_tcejbo:u_metsysZ- pc #]~ 10LEHR@toor[

(SELIF DELEBALER)

(metsyselif a lebaleR) . lebal / xuniLES

gnilebaler slebaL xuniLES

lebalerotua -1 : )toober ; lebalerotua./hcuot#( : lebalerotua

( ) selifxif -2

lebal selifxif lebal nochc nochc tcejbO/tcejbuS. lebal ycilop

: lebal tnuom emoh/ semoh/serahs/:99.0.0.01t_emoh_resu:r_tcejbo:u_resu=txetnoco-sfnt-tnuom# mordc/aidem/mordc/ved/t_elbavomer:r_tcejbo:u_metsys=txetnocsfo-tnuom#

EGASSEM RORRE . xuniLES

. gol . gnitiduA xuniLES -

: dtidua xuniLES slained xuniLES sgoL gol.tidua/tidua/gol/rav/ slained xuniLES sgoL segassem/gol/rav/

tpygE ECHR/ASCHR

xuniles 53

.

xuniles CVA - )ehcaC rotceV decnavdA(

. :

68501=dip rof } rttateg { deined :cva :)571:762.1538083721(tidua=gsm CVA=epyt 060959=oni 1adh=ved "lmth_cilbup/GNIK/emoh/"=htap "dptth"=mmoc rid=ssalct 0s:t_emoh_resu:r_tcejbo:toor=txetnoct 0s:t_dptth:r_metsys:toor=txetnocs CVA=epyt -1

cva . )571:762.1538083721(tidua=gsm -2

)tidua=gsm(-1 )762.1538083721@d-etad( )762.1538083721(-2 )571(-3

"dptth"=mmoc -3 dptth )tcejbus(// /

)060959=oni 1adh=ved "lmth_cilbup/GNIK/emoh/"=htap( 0s:t_dptth:r_metsys:toor=txetnocs -4

tcejbus txetnoc ytiruces lebal 0s:t_emoh_resu:r_tcejbo:toor=txetnoct -5

. tcejbo lebal cva dtoohselbuortes

*toohselbuortes llatsni y- muy :

gol.tidua/tidua/gol/rav/a-trelaes# xuniles b-trelaes# di yb trela pu kool l-trelaes#

XUNILES

xuniles-gifnoc-metsys -1 xuniLES

tpygE ECHR/ASCHR

xuniles 63

.

tiduaes -2 . xuniLES slootes

)*slootes llatsni y- muy(

gol.tidua/tidua/gol/rav/troper-tiduaes#

gol.tidua/tidua/gol/rav/lmth.goLxunileso-lmth--troper-tiduaes#

gol.htaPeliFgol/gol/rav/l-tiduaes#

tiduaes lopa -3

sDIS,snaeloob,selor,sepyt ycilop slootes

ycilopkcehc-4

. yciloP hcraeses -5

slebal 12.ycilop/ycilop/detegrat/xuniles/cte/tnetnoc_resu_dptthtahcraeses#

sutatses -6 , )evissimrep, gnicrofne,delbasid( xuniLES

fnoc.sutatses/cte/ . yciloP v-sutatses#

wolla2tidua -7 wolla cva

gol.tidua/tidua/gol/rav/l-wolla2tidua# yhw2tidua -8

cva gol.tidua/tidua/gol/rav/

tpygE ECHR/ASCHR

xuniles 73

.

eganames -11 stcejbO/stcejbuS txetnoc ycilop

l-nigoleganames# l-resueganames#

xuniLES l-tropeganames eludomes -21 .// / eludom ycilop xuniles

pp.dptthi-eganames# egakcap eludom ecalper/llatsni gkp_eludomi- egakcap eludom edargpu gkp_eludomu- eludom elbasid eman_eludomd- eludom elbane eman_eludome- eludom evomer eman_eludomr- eludom tsil l- egakcap eludom esab ecalper/llatsni gkp_eludom_esabb- l-eludomes#

detegrat/xuniles/erahs/rsu xuniles gkp XUNILES

- .

: . evissimrep xuniLES-1 -2 stxetnoc_elif slebal a- lebal b- lebal c- . lmth d- lmth_cilbup -3 . lmth lmth_cilbup lmth_cilbup txetnoC ytiruceS -4 . xuniles -5

: . evissimrep xuniles-1

-2

stxetnoc_elif slebal -a-2

tpygE ECHR/ASCHR

xuniles 83

.

txetnoc ssel daeh daeh txetnoc : txetnoc

lebal -b-2

t_dptth niamod dptth lebal -c-2

. ycilop lebal

. lmth -d-2 lmth/www/rav/ lmth.xedni

.

lmth_cilbup -3

t

tpygE ECHR/ASCHR

xuniles 93

.

fnoc.dptth/fnoc/dptth/cte/miv lmth_cilbup riDresU # elbasid riDresU

:

tratser dptth ecivres . lmth lmth_cilbup -a-3

lmth.xedni 4002aebit lmth_cilbup) ( .

:CAM CAD CAD

.

tnemecrofne xuniLES

:

tpygE ECHR/ASCHR

xuniles 04

.

: stcejbO lebal

! lmth_cilbup txetnoC ytiruceS -4 . xuniles -5

)t_emoh_resu( epyt lmth_cilbup lebal epyt niamod elor ycilop epyt/niamod

.tcejbo . lmth_cilbup lebal ( txetnoc )

(: xuniLES )

- txetnoc ytiruces txetnoc xuniles ptf/

.ptf txetnoc ytiruces ptf/ -1

ptf/rav/ ptf txetnoc -2

t_tnetnoc_cilbup ptf/rav/ txetnoc : )t nochc( ptf/rav/ ptf/ txetnoc -3

gnilebaler nocerotser

tpygE ECHR/ASCHR

xuniles 14

.

nocerotser gnilebaler

lebaleR txetnoc txetnoc eganames txetnoc nocerotser

l-resueganames yfitnedi resu txetnoc

. elor yifitnedi_resu . xuniles

tpygE ECHR/ASCHR

LLAWERIF 24

.

LLAWERIF . :

. . . /

.

( ) .

) ( ) . ( . )retuor(

.

TAN " " noitalsnarT sserddA krowteN

. gnidareuqsam TAN . gnidareuqsam .retuor PI PI yawetag PI

LSDA . gnidareuqsam TAN )medom LSDA( .PI

.

. redaehs [ selbatpi ] : noitinifeD . [ desab-selbatpi] redaeh

.

. ]gniretlif tekcap[ . stekcap

]sserdda noitanitsed[ ]sserdda ecruos[ ]atad fo epyt[ ]sserdda noitanitsed[ stekcap . sredaeh

.stekcap redaeh llawerif . )UTM( tinu noissimsnart mumixam

. tib23 sredaeh stekcap ]stekcap[

DTENIX_llaweriF SREPPARW PCT

tpygE ECHR/ASCHR

SELBATPI 34

.

6vPI 4vPI ]selbat6pi[ [ selbatpi ] 6LEHR retlifteN --------------ecaps lenrek ni ----------------------- llaweriF )retlifteN htiw tca resu nac ot tpircs( selbatpi -------------- ecaps resu ni ----------------------- llaweriF

: tfosorciM >> GMT & ASI ocsiC >> ASA ocsiC >> XIP xuniL >> selbatpI repinuj >> llawerif repinuJ

SELBATPI

: / selbatpi : . TAN

]sniahc[ . ]selbat[ ]selbatpi[ .]selur[

selur sniahc selbaT selbatpI

tpygE ECHR/ASCHR

SELBATPI 44

.

]war[ ]delgnam[ ]TAN[ ]retliF[:

. ]selbatpi[ : ]retliF[ -1

: ]niahc[ 3 . ]selur[ . : ]NIAHC TUPNI[

() . :]NIAHC TUPTUO[ . : ]NIAHC DRAWROF[

tpygE ECHR/ASCHR

selbatpi 54

.

[ :niahc ] 3 TAN :]TAN[ -2 . TAN: ]NIAHC TUPTUO[

) . )gnituor( :]NIAHC GNITUORERP[ PI egakcap redaeh PI noitanitsed(. ()TAN noitanitsed( TAND .

. )gnituor( redaeh : ]NIAHC GNITUORTSOP[ egakcap redaeh PI ecruos(. )

()TAN ecruos( TANS . )pi retuor ro yawetag( PI : : ]elgnaM[ -3

]NIAHC GNITUORERP[ - - - ]NIAHC DRAWROF[ ]NIAHC TUPTUO[ - ]NIAHC TUPNI[ ]NIAHC GNITUORTSOP[

]NIAHC TUPTUO[ - ]NIAHC GNITUORERP[ : ]war[ -4

]retliF[ ]TAN[( )

]TAN[ ]gnidareuqsam PI[ . ]retliF[

.noitidnoc fi selur llawerif SELBATPI

6vPI ]selbat6pi[ ]selbatpi[ ]sniahcpi[ 4vPI ]selbatpi[ emarf tenrehtE ]selbatbe[ PRA ]selbatpra[

: selbatpi

.retlif ]t-[ : ]selbatpi[ noitca >noitcerid noitca<

.niahc fo dne selur [DNEPPA] [-Aniahc] .niahc selur ]TELED[ ]niahcD-[ .niahc selur ]TSIL[ ]L-[

. )selur( nv .]selbatpi[ selur / ]HSULF[ ]niahcF-[ .niahc selur ]TRESNI[ ]niahcI-[ . niahc ]NIAHC WEN DDA[ ]niahcN-[ . niahc ]NIAHC TELED[ ]niahcX-[

SELUR NIAHC ]GNITUORTSOP[ ]GNITUORERP[ ]DRAWROF[ ]TUPTUO[ ]TUPNI[ ]niahC[

. .

tpygE ECHR/ASCHR

selbatpi 64

.

.PI >nrettap tekcap< .]PI ecruos[ PI ]sserdda_pis-[

.]PI noitanitsed[ PI ]sserdda_pid-[ >nrettap tekcap>> PORD TUPNIP-selbatpi#

]selbatpi[ >od ot tahw< ]j[

: .llawerif selur :]TPECCA[ . selur :]TCEJER[

.PMCI . selur :]PORD[ . ]GOL[

]PORD[ ]TCEJER[ ]TPECCA[ ]GOL[ .

tpygE ECHR/ASCHR

selbatpi 74

.

SELBATPI ]elbatt-[ elbat selur ]L-selbatpi#[-1

]L-retlift-selbatpi#[:

DRAWROF/TUPNI :]niahC[ . :]tegraT[ . :]troP[ selur :]tpO[

pi noitanitsed pi ecruos : ]noitanitseD[ ]ecruoS[ selur mun tegrat .

NIAHC F .TUPNI ]TUPNIF-selbatpi#[ -2 .]selur[

: DRAWROF ]DRAWROFF-selbatpi#[

PI ]PORDj-1.0.861.291s-TUPNIA-retlift-selbatpi#[-3 : ]1.0.861.291[

.]pord 1.0.861.291 morf deviecer tekcap fi[

tpygE ECHR/ASCHR

selbatpi 84

.

]TPECCAj-22 tropd--pctp-1.0.861.291s-TUPNIA-retlift-selbatpi#[-4 : PCT 22 ]1.0.861.291[ PI

.HSS .selur 4 3

. SELBATPI ]PORDj-pctp-1.0.861.291!s-TUPNIA-selbatpi#[-5

: ]![ 1.0.861.291

: -7

]TPECCAj-22tropd--pctm-pctp-TUPNII-selbatpi#[ -8 : ]pct m-[ pct pct hss 22

]selbatpi[ : ]evasselbatpiecivres#[

evas-selbatpi# ]selbatpi/gifnocsys/cte/[

.]evasselbatpiecivres[ ]selbatpi/gifnocsys/cte/>evas-selbatpi#[ ]eman_elif

tpygE ECHR/ASCHR

selbatpi 94

.

/ : .redaeh llaw erif .6vPI ]selbat6pi[ ]selbat6pi/gifnocsys/cte/[ : niahc

].ONniahcD- / niahcD-[ ------ ].ONniahcI- / niahcI-[ . ]L-[ ]v-[ ]n-[ . ]L-[ ]srebmun-enil--[ ]1hteo-[ / ]oli-[ ]o-[ ]0htei-[ ecafretni ]i-[

42/0.0.861.291s-0htei-

]selbatpi/gifnocsys/cte/[ ]selbatpi[ : ]![

: ]selbatpi[

]secivres/cte/[ [ .slocotorp/cte/]/

tpygE ECHR/ASCHR

]gnidareuqsaM PI[ TAN 05

.

]h-pmcip-selbatpi#[ pmci :

]GNIDAREUQSAM PI[ TAN

( krowteN gnidareuqsaM) ( noitalsnarT sserddA krowteN "TAN )" )gnidareuqsaM PI(( noitalsnarT sserddA evitaN)

]noitanitsed[ ]ecruos[ PI( retuor) ciffart krowten-( smuskcehc(. )stekcap PI) PI" PDU/PCT" redaeh

. - ]TAN[. PI 4vPI ]TAN[

]retuor[ (.yawetag . ) PI

]TAN[ PI . PI

. PI :

]pi cilbup[ PI PI PI PI ]pi cilbup[

.6vPI . ]PI cilbuP[ ( "troP sserddA krowteN noitalsnarT ) " "TAN ) -1 :]TAN[

TAN eno ot ynam ("TAP" "TPAN" . PI

" ( "cisaB TAN) ) " -2 ))TAN eno-ot-eno(" " )TAN citatS( " )noitcennoc dnabdaorb( . PI. PI( tsoh ZMD ) .

.( (TAN ecruos) ) :

(. )TAN noitanitsed( ) PI .

. ]retuor[ ]yawetag[ ]gnidareuqsam PI[ NAL )(

(.LSD "" )

tpygE ECHR/ASCHR

gnikcart noitcennoC 15

.

:[TAN] . ]PI cilbup[ -1 .]etavirP PI[ PI -2 .]yawetag[ ]retuor[ ]etavirP PI[ PI -3 .]gnidareuqsam TAN[ selbatpi -4 . ]yawetag[/ ]retuor[ ]gnidrawrof PI[ -5 ]PI etavirp[ PI ]yawetag tluafed[ -6

.]yawetag[ / ]retuor[

. NAL . ]PI cilbuP[ PI ]PI etavirp ecruos[ PI

]on trop[ PI[ ]ecruos . .

PI PI . .

: TAN

selpmaxE TAND DNUOBNI 02.0.861.291tsed-ot--TANDj-08tropd--pctp-GNITUORERPA-tant-selbatpi# )noitcerider trop htiw( DNUOBTUO 8213:002.0.861.291tsed-ot--TANDj-08 tropd--pctp-TUPTUOA-tant-selbatpi# selpmaxE TANS EDAREUQSAM EDAREUQSAM j-0hteo-GNITUORTSOPA-tant-selbatpi# TANS 54.3.2.1 ecruos-ot--TANSj-GNITUORTSOPA-tant-selbatpi#

:

EDAREUQSAMj-0nalwo-GNITUORTSOPA-tant-selbatpi# EDAREUQSAMj-0rbivo-GNITUORTSOPA-tant-selbatpi# EDAREUQSAMj-1rbivo-GNITUORTSOPA-tant-selbatpi#

GNIKCART NOITCENNOC

erahsdipar erifaidem erahsdipar erifaidem .

[tneilc] [noitcennoc wen] . ]revres[

tpygE ECHR/ASCHR

)GNITUOR( GNIDRAWROF PI 25

.

.]kcartnnoc[

]kcartnnoc[ erahsdipar .]etats[

: .kcart noitcennoc (): ]WEN[-1 ..TEKCAP YLPER : ]DEHSILBATSE[-2 .PTF rorre PMCI : ]DETALER[-3 .]PORD[ ]DILAVNI[-4 PDU PCT ]gnikcart noitcennoc[ . gnikcart tnemgarfed . ]gnikcart noitcennoc[

.]selbatpi[ :snoitcennoc dehsilbatse timrep ot elur enO TPECCAj-DETALER,DEHSILBATSEetats--etatsm-TUPNI A-selbatpi# :ecivres dettimrep hcae rof eno ;selur ynaM TPECCA j-52 tropd--pctp-WENetats--etatsm-TUPNIA-selbatpi# :dnuobni srehto lla kcolb ot elur eno ,yltsaL PORDj-WENetats--etatsm-TUPNIA-selbatpi#

.]gifnoc-selbatpi/gifnocsys/cte/[ SELUDOM ]gnikcart noitcennoc[ :]SELUDOM[

ptf_kcartnnoc_pi cri_kcartnnoc_pi kcartnnoc_pi ptf_tan_pi )srehto dna( cri_tan_pi

.]llawerif[ ptf gnikcart ]ptf_kcartnnoc_pi[ gifnoc-selbatpi TAN ]stekcap ptf[ noitacifidom ]ptf_tan_pi[

.]seludom[ ]SELUDOM_SELBATPI[ noitcennoc dehsilbatse tcartnnoc_pi kcartnnoc_pi/ten/corp/ snoitcennoc xam kcartnnoc_pi/4vpi/ten/sys/corp/

)GNITUOR( GNIDRAWROF PI .PI .]GNITUOR[ ]GNIDRAWROF PI[

. ]RETUOR[ ]yawetag PI[ . ]RETUOR[

: " ]RETUOR[ . .1 . .2

PI )elbat gnituor( .

sserdda PI " retuor . gnir-nekot tenrehtE reyal knil atad

PI . ]PI noitanitseD[ PI ]RETUOR[ ]yawetag[ . /

. : ]fnoc.ltcsys/cte/[ ]gnidrawrof PI[

tpygE ECHR/ASCHR

looT noitarugifnoC llaweriF taH deR ehT 35

.

. ]gnituor[

.reganaMkrowteN gnisu nehw 6LEHR ni krow TON seod )gnituor( gnidrawroF PI

LOOT NOITARUGIFNOC LLAWERIF TAH DER EHT

metsys-gifnoc-llawerif -1

. edom txet iug . ]selbatpi/gifnocsys/cte/[

.iut-llawerif-gifnoc-metsys edom-txet

tpygE ECHR/ASCHR


.

: ]secafretni detsurT[

. ]ecafretni[ ]ecafretni[

]ecived sseleriw[ .

. 1hte 0hte .0hta 0nalw

]elif ecived[ dda .

: kO .1hte ]ecafretni[

: ]selbatpi[ TPECCAj-0htei-TUPNIA-selbatpi#

tpygE ECHR/ASCHR


.

]TAN[ gnidareuqsaM

. GNIDREUQSAM .selbatpi/gifnocsys/cte/ .

GNIDRAWROF TROP

]gnidrawrof trop[ .GNIDREUQSAM

.

gniP ]retlif pmci[

. ]selur motsuc[

tpygE ECHR/ASCHR

)detenix( revreS-repuS tenretnI dednetxE ehT 65

.

:tikkol -2 (. ) /

. .tikkol-emong

}delbasid | evissimrep | gnicrofne{ =xuniles--tikkol# }tcirts | detegrat{ =epytxuniles--tikkol# llawerif elbane delbane--tikkol# llawerif elbasid delbasid--tikkol#

]pleh-- tikkol[

. . . selbatpi

)DETENIX( REVRES-REPUS TENRETNI DEDNETXE EHT :

. : [/d.dtenix/cte/ ] . dteni ]d.dtenix[

. : ]d.?cr/d.cr/cte/[ .

SFN SIN :CPR ]tsohp-ofnicpr[

]secivres/cte/[ (: )

. CPR ]cpr/cte/[. ]slocotorp/cte/[ .

srebmun_trop_PDU_dna_PCT_fo_tsiL/ikiw/gro.aidepikiw.ne//:ptth

. ]fnoc.dtenix/cte/[ ]dtenix[

[ /d.dtenix/cte/ ] [=elbasid {sey |}on] [fnoc.dtenix/cte/]

. .SoDD SoD

. II nimda /d.?cr

PTF . )0,cexer ,pcr ,hsr( r )nigol ro ypoc( tenlet

dohwr regnif .

. .

ptfs pcs hss HSSnepO .

hss . hsr niglor tenlet hss .

.

: dtenix hss ) ( tenlet spukcab rof ralupop si hcihw - cnysr lortnoc noisrev tnempoleved erawtfos rof ralupop - svc ecivres PTF deruces-sorebreK - ptfssg

tpygE ECHR/ASCHR

srepparW PCT 75

.

d.dtenix sretemarap

SREPPARW PCT

PCT PCT .]srepparw PCT[

. ]dtenix[ ]cimanyd[ ]citats[

.]0.os.parwbil[ srepparw ]wolla.stsoh/cte/[ ]srepparw PCT[

. ]yned.stsoh/cte/[ ]srepparw PCT[ ]sgnirts[

.ssecca_stsoh ]srepparw PCT[ : nibs/ nib/

. dptth ]srepparw PCT[ dhss parwbil perg | >eman ecivres-hcihw< ddl : ]srepparw PCT[

: hcihw

tpygE ECHR/ASCHR

srepparW PCT 85

.

]srepparw PCT[ 0.os.parwbil ]srepparw PCT[ PI .

. ]wolla.stsoh/cte/[ ]srepparw PCT[ .]yned.stsoh/cte/[

: ]snoitpo :[ tsil_tneilc :tsil_nomead

LLA :LLA : tsil_tneilC

]wolla.stsoh/cte/[ ]srepparw PCT[ ecivres tseuqer ]yned.stsoh/cte/[ tsil wolla ecivres

. wolla stsoh stsoh yned yned :

. TPECXE

: NWAPS wolla.stsoh YNED toor gninraw s- liam | "s% ot c% morf tpmetta nigol" ohce nwaps :LLA :dtenlet.ni YNED :LLA :LLA

.6vPI ]srepparw PCT[:

tpygE ECHR/ASCHR

]MAP[ seludoM noitacitnehtuA elbaggulP 95

.

]MAP[ SELUDOM NOITACITNEHTUA ELBAGGULP ]sloot evitartsinimda[ ]MAP[

)noitacitnehtua resu( / . .]MAP[ .

siraloS smetsysorciM NUS 6991 /. . MAP 6.2

[yrarbil seludom] [MAP] . MAP( ) .

[d.map/cte/] [MAP] [/ytiruces/bil/] [/bil/] () ]MAP[ .]mapsoporpa#[ MAP ]/ytiruces/cte/[

[MAP] [nigol margorp] : : ]nigol/d.map/cte/[ .

]lanimret eruces[ ]sresu toor[ . ]ytteruces/cte/[ :selif noitarugifnoc

]d.map/cte/[ ) ( ]MAP[ ]/ytiruces/46bil/[ tib23 ]/ytiruces/bil/[ ]MAP[ . . .tib46 ./txt /lmth ]rebmunnoisrev-map/cod/erahs/rsu/[

: ]elif noitarugifnoc[

. MAP .[ htua tnuocca drowssap noisses] : eludoM-epyt .1

.

]stnemugra[ htap-eludom galf-lortnoc epyt-eludoM

MAP

tpygE ECHR/ASCHR


.

: eludoM-epyt :]htua[ tnemeganam noitacitnehtuA .1

. . drowssap ]ssecca ecivres[ : ]tnuocca[ tnemeganam tnuoccA .2

. / .

. ]noitacitnehtua[ :]drowssap[ tnemeganam drowssaP .3 : . : ]noisses[ tnemeganam noisseS .4

. emoh gnitnuomnu/gnitnuoM . tuogol/nigoL

. gnitcirtsernu/gnitcirtseR : nigol ]d.map/cte/[

.noitacitnehtua : lortnoC-galf .2 : [noitacitnehtua] : galf lortnoC

[noitacitnehtua] [noitacitnehtua] : [deriuqer] ) .

]liaf no neve seunitnoc ;dessap fi sdeecorP[ ( [noitacitnehtua] : [etisiuqer]

]eruliaf no spotS[ ( ) . [nigol] [noitacitnehtua] : [tneiciffus]

]eurt fi noitacifirev rehto on seriuqeR[ () . [noitacitnehtua] MAP : [lanoitpo] ]noitacitnehtua[ ]eruliaf ro sseccus serongI[ . : [edulcni]

]elif rehtona morf sevitcerid epyt-eludom lla sedulcnI[ seludom[

. [eludom ] MAP :eludoM-htap .3 (. ) : stnemugrA .4

: .ecivres edulcni@

tpygE ECHR/ASCHR


.

MAP

MAP noitacilppa elif noitarugifnoc MAP

eludom noitarugifnoc .noitacitnehtua

. noitacilppa MAP : MAP : ]toober/d.map/cte/[

]toober[ ]os.kotoor_map tneiciffus htua[

]toober[ ]eurt[ ]os.kotoor_map[ .

. ]htua[ . ]toober[ . [tneiciffus] galf_lortnoc

. ]os.elosnoc_map deriuqer htua[

]elosnoc[ .

]htua_metsys edulcni htua#[ .[ # ]

]htua-metsys[ ]#[ . ]toober[ ]resu etomer[ . ]htua-metsys[

. ]os.timrep_map deriuqer tnuocca[

]yletomer[ tnuocca ]os.timrep_map[ . toober ]etomer , lacol , toor[

tpygE ECHR/ASCHR


.

:

]nigol[ ]htua-metsys[

.]MAP[ :metsys/d.map/cte/[-]htua

)noitacitnehtua( / )elbairav tnemnorivne( ]os.vne_map[ .)noitacitnehtua( ]deriuqer[ ]galf_lortnoc[ )noitacitnehtua( / ]os.dtnirpf_map[

]tneiciffus[ ]galf_lortnoc[ )redaer tnirpregnif( . )noitacitnehtua(

]os.xinu_map[ ]tneiciffus[ ]galf_lortnoc[ / )noitacitnehtua(

. / ]galf_lortnoc[ ]os.fi_deccus_map[

005 diu ]tsisuqer[ ]os.yned_map[

.

]nigol/d.map/cte/[ ])resu nigolon([

tpygE ECHR/ASCHR


.

:

]htua-metsys[ :

[ / ]ytiruces/bil ]os.xinu_map[ . ]dwssap/cte/[ ]os.resulacol_map[ .

. ( 005 DIU) ]os.fi_deeccus_map[ . ]os.timrep_map[

:drowssap nigol

: drowssap ]htua-metsys[

. )ssap_tsrif_yrt( ) ]drowssap wodahs[ 215AHS

)ssap_tsrif_yrt( ( . MAP ]os.yned_map[. )kohtua_esu(

: ]noisses[ 8 drowssap nigol

]nepo os.xuniles_map[ xuniLES ]esolc os.xuniles_map[ ]DIU[ )os.diunigol_map( . xuniLES

(.os.elosnoc_map) . ]leks/cte/[ ]EMOH[

. .]tik elosnoc[

: ]htua-metsys[

.]nigol/d.map/cte/[ . .]fnoc.stimil/ytiruces/cte/[ )os.stimil_map(

.

tpygE ECHR/ASCHR

46

.

ytiruceS desaB-resU dna MAP ]os.eliftsil_map[ . ]MAP[ . ]dptfsv/d.map/cte/[ ptfsv

.]gniryek[

:

: ]os.eliftsil_map[ MAP

:ridemohkm_map-1

. ridemohkm . )noitacitnehtua lartnec(

. PADL( ) SIN EMOH ridemohkm . EMOH

.noisses . :

:tnuom_map-2 tnuomnu tnuom

tnuom . batsf/cte/ emoh

.( ) .( )

. tnuomnu

tnuom )metsys elif lacol( tnuom )semulov( tnuom

.]SKUL dna tpyrc-md ,ESUF ,SFIC/BMS[ . tnuom_map

. . (. pawsotpyrc ) paws

: )noisses noitacitnehtua(

tpygE ECHR/ASCHR

56

.

]sseccA tcirtseR ot desU seludoM[ ).cte ,PADL ,SIN(

. MAP fi_deeccus_map-3

. . yrotceriD evitcA

. 36901 60001 DIU

dig . ecivres emoh llehs diu resu

.)noisses drowssap tnuocca noitacitnehtua( MAP

0001 diu .

nigolon_map-4 nigolon/cte/ .

.eludom noitacitnehtua .nigolon_map . nigolon/cte/

(.hcuot ) leehw_map-5

diu(. ) leehw us leehw_map . us ()

leehw_map . leehw leehw .

MAP

us MAP

leehw us ssecca_map-6

ssecca_map. fi_deeccus_map ssecca_map fi_deeccus_map

:.

.fnoc.ssecca/ytiruces/cte/ alemap :domortep :+

LLA :LLA :- domortep

.. alemap .yned ssecca +

tpygE ECHR/ASCHR

66

.

- + [:] repparw PCT . PI )emantsoh(

yned_map-7 . yned_map

. yned_map .

: )noitacitnehtua(

. drowssap .noisses noisses

kcaB ot detaleR seludoM-egarotS dnE . MAP xinu_map-8

.MAP . wodahs/cte/ dwssap/cte/

+SIN/SIN 2xinu_map .xinu_map .

drowssap deretne fo hsah ot ti serapmoc dna SSN morf drowssap dehsah steg htua noitaripxe drowssap rof skcehc tnuocca SIN ro selif lacol ot segnahc drowssap seldnah drowssap sgol ot tuogol dna nigol sdrocer noisses

.ssap_tsrif_yrt ssap_tsrif_esu gubed :

tnemeganam drowssap lartneC )stekcit V sorebreK( os.5brk_map )sdnib PADL( os.padl_map )noitacitnehtua BMS dlo( os.htua_bms_map )tfosorciM rof( ddnibniw hguorht BMS( os.dnibniw_map

seludoM htua ytteruces/cte/ ni ton lanimret a morf toor sa ni gniggol fi sliaf os.ytteruces_map elif a ni tsil a tsniaga noitacitnehtua eht fo citsiretcarahc a skcehc os.eliftsil_map deined ro dewolla eb nac stnuocca fo tsil A yciloP drowssaP yrotsih drowssaP tnemugra N=rebmemer htiw os.xinu_map htgnerts drowssaP os.bilkcarc_map os.cqdwssap_map gnirotinom nigol deliaF os.yllat_map seludoM noisses stimil ecruoser secrofne os.stimil_map fnoc.stimil/ytiruces/cte/ sesU sresu elosnoc rof secived lacol no snoissimrep stes os.elosnoc_map llew sa eludom htua na sa desu eb naC txetnoc xuniLES tes spleh os.xuniles_map

tpygE ECHR/ASCHR

tnemeganaM drowssaP dna ,noitamrofnI tnuoccA ,noitacitnehtuA resU 76

.

noitacitnehtuA dna seitilitU noitacitnehtua deen sloot nimda lacoL .cte ,*-gifnoc-metsys ,toober ,us toor sa gninnur fi sessap os.kotoor_map roivaheb ekil-odus rof os.pmatsemit_map seikooc htuax sdrawrof os.htuax_map gnitoohselbuorT MAP sgol metsys eht kcehC segassem/gol/rav/ eruces/gol/rav/

TNEMEGANAM DROWSSAP DNA ,NOITAMROFNI TNUOCCA ,NOITACITNEHTUA RESU noitazirohtuA .sv noitacitnehtuA

. ])ledom_resu([

: ([ledom_resu]) : ])noitacitnehtua([

: ])noitazirohtuA([

]noitacitnehtua resu[ - . ])noitamrofni tnuocca([ -

. dwssap/cte/

.])noitamrofni tnuocca([ ])noitacitnehtua([ dwssap/cte/ ." " : ])noitacitnehtua([ ) (

. . yrotcerid emoh DIG DIU : dwssap/cte/

: ])sdrowssap wodahs([ .]dwssap/cte/[ X ]wodahs/cte/[

tpygE ECHR/ASCHR


.

dwssap elppa " . dwssap

elppa": "])txetnialp([ - ]elppa8f[ ]tlas[ dwssap - ]drowssap detlas[ -

]txetrehpyc[. ]cZaoIl9TBHa[ 11) ( dwssap/cte/ txetrehpyc dwssap - 11 . dwssap/cte/ -

"(.F8 )")"cZaoIl9TBHa"( txetrehpyc

elppa" : " -

. dwssap/cte/ ]tlas[ - . 11 ]drowssap detlas[ txetrehpyc - .. dwssap/cte/ txetrehpyc -

tnemeganaM drowssaP .

txetrehtpyc ])drowssap wodahs([ .

. 5DM .65 SED

.( 65 / ( = ) 7( * ) 8) :IICSA 8 5DM ]drowssap 5DM[

.

drowssap 5dm noitacitnehtua-gifnoc-metsys drowssap wodahs

.wodahs/cte/ txetrehpyc )"$"(. 5DM

."1 " 5DM . "( 1 )" . 8 "TRXbGYBC"

. txetrehpyc" 1uuq9/HL1dgNIdu10CRMTx " . LSSnepO ]lssnepo[

. ]dwssap lssnepo[

tpygE ECHR/ASCHR


.

.]h-[

. ]dwssap lssnepo[ .)elppa( 5DM

: tlas

tpygE ECHR/ASCHR

eroM dna seliF eruceS 07

.

EROM DNA SELIF ERUCES

:])noitpyrcne([ - 0004 ]yhpargotpyrC[

) ( ) . ( .

0691 ]MBI[ .

])SED( dradnatS noitpyrcnE ataD[ . .

]namlleH & effiD[ 0791 ]ytiruces[ . ]yhpargotpyrc yek-cilbup[

]melborp mhtiragol etercsid[ ]ytilibatcartni[ 0791 . .

]erutangis latigid[ ()tseviR ,rimahS ,nameldA ]ASR[

]sregetni emirp[ ]gnirotcaf[ ) (

) . ]lamaG-LE[ 5891 . ]ASR[

]emehcS yeK-cilbuP[ ]erutangis latigid[ .

.]lamaG-LE[ ]ASR[ -: ]noitpyrcne[

]ycavirp[ ) (. .

. . ]noitpyrced[ /

. ])egatnavda([ .

/ . ])egatnavdasid([

. .

.

. PTF POP tenleT: ]noitacitnehtuA txetnialP[ . , BMS SFNPTMS :]egakaeL noitamrofnI[

HSR : ]noitacitnehtuA erucesnI[ . ])noitacitnehtua([

[pmudpct] 1noitats : . 0661 0hte

SELIF ERUCES

tpygE ECHR/ASCHR

eroM dna seliF eruceS 17

.

])resu toor([ !noissemerp dna pihsrenwO

]wodahs/cte/[ ]ksid[ ]sivle[

: ]egap nam perg[

: . : ([noitamrofnI devihcrA])

. : ([noitamrofnI dedracsiD])

: ([elaS rof sevirD hsalF desU])

6002 01 6002 21 ytiruceS no reienhcS - .

. ]txetnialp[ . ])lanimret([

. ]noititrap paws[ .

( semehcS noitpyrcnE )

. (smhtiroglA noitpyrcnE) . -

.

tpygE ECHR/ASCHR

]modnaru/ved/ & modnar/ved/[ 27

.

]MODNARU/VED/ & MODNAR/VED/[ .

) . .

( ]loop[ ])stpurretni([ ]yportne[ . ]loop yportnE[

. .

[modnar/ved/] (edon ecived lautriv) . ]loop yportne[

.]lamicedaxeh[ ]yranib[ ]pmudxeh[

]loop yportne[ . ])stpurretni([ ]modnar/ved/[

]loop yportne[ ]modnaru/ved/[ . . ( ) ]loop yportne[

. ]modnaru/ved/[ . dnar lssnepo dna yrarbil lssnepo ehT

]lssnepo[ . ]lssnepo[ MPR ]lssnepo[ . ]lssnepo[

: ]llehs evitcaretni[ ]lssnepo[

tpygE ECHR/ASCHR

)"stnirpregnif latigid"( sehsah yaw enO 37

.

]lss[ ]lssnepo[ ]nam[ .

.]tuodts[ ]yranib[ 04 . ]lssnepo[ ]46esab-[

. ]46esab-[

. ]yranib[

)"STNIRPREGNIF LATIGID"( SEHSAH YAW ENO

]stnirpregnif latigid[ ]sehsah yaw enO[ ]ngis[ .

)yeK hsaH( .

5dm 1ahs 5dm .5dm

. :

]tnirp regnif[ ]sehsah yaw enO[ . .

tpygE ECHR/ASCHR

noitpyrcnE cirtemmyS 47

.

]tnirp regnif[ ]sehsah yaw enO[ ]tnirp regnif[

. . " ]tnirp regnif[" ]5DM[ ]mus5dm[

: ]tnirp regnif[

:

.

5dm .

5dm

. ]sehsah yaw enO[

: ) ( noitpyrcne cirtemmysA-2 ) ( noitpyrcne cirtemmyS-1

NOITPYRCNE CIRTEMMYS ( noitpyrcnE yeK cirtemmyS )

.

[citxetrehp ] [txetnialp] -: .[esarhpssap] ([yek])

.]esarhpssap[ . ]esarhpssap[

])dradnatS noitpyrcnE ataD( SED[ LSS

.6791

tpygE ECHR/ASCHR


.

]SED[ 1002 ]SED[ ]SED elpirT[

.])dradnatS noitpyrcnE decnavdA( SEA[ .

.

)( )( )( )( )(

. .

.

. )( )(

. . .

[fb] [HSIFWOLB] [lssnepo] : . ]abetanaj[ ]esarhpssap[ ]tpyrcne_cirtemmys/[

: ]46esab-[

) ( ]d-[ ]txetrehpic[

: ]esarhpssap[

. ]esarhpssap[ . ]esarhpssap[ ])noitpyrcnE cirtemmyS([

])noitpyrcnE cirtemmyS([ . .

.])sorebrek([ ( yek noisses )

tpygE ECHR/ASCHR


.

( ) yek noisses ) ( .

]noitpyrcnE cirtemmyS[ ]lssnepo[ ]nam[ ])noitpyrcnE cirtemmyS([ ]LSSnepO[ ])noitpyrcnE cirtemmyS([ . ]cne[

.]pleh lssnepo[

. ]esarhpssap[ ]ssap-[ ]esarhpssap[ . ]esarhpssap[

. .]nidts[ ]esarhpssap[ . ]esarhpssaP[

tpygE ECHR/ASCHR

noitpyrcne )"yek cilbup"( cirtemmysA 77

.

:

]c-[ ]gpg[ :]lssnepo[ ]d-[

]esarhpssap[ . ]gpg.tpyrcne_cirtemmys[

: ]d-[

]tac[ ]gpg.tpyrcne_cirtemmys[ . ]esarhpssap[ ]d-gpg[

: ]o-[

. NOITPYRCNE )"YEK CILBUP"( CIRTEMMYSA

0791 . [(noitpyrcnE cirtemmyS]) 0791 .])noitpyrcnE cirtemmysA([ :

. .

])noitpyrcne yek cirtemmysA([

.

tpygE ECHR/ASCHR


.

(noitpyrcne yek-cilbup) (.yek-etavirp ) (yek-cilbup )

. [noitpyrcne yek cilbup]

. )nameldA dna rimahS ,tseviR( ASR

.

/ .

: ])PGP( ycavirP dooG ytterP[ ..... )namremmiZ lihP(

IPF .... .

])GPG( drauG ycavirP UNG[ ]UNG[ ]PGP[ .]2GPG[ GPG 2 6 LEHR ]GPUNG[

]gpg[ .

:

tpygE ECHR/ASCHR


.

[boB] [ecilA] .[(yek cilbuP]) [G unP ycavirGdrau]

.])sriap yek etavirp/cilbup([ / ]gpg[ ]ecilA[ ]gpg[ ]ecilA[

])yek etavirp dna cilbup([ ]gpg[ .]gniryek[ ]gpung./~[ ])yranib([

]gniryek[ . ]gniryeK[ .

. ]gniryeK[ ]ecilA[

]2gpg[ ]gpg[ ]gpg[ ]yek-neg--gpg[ ])yek etavirp dna cilbup([

: ]drauG ycavirP UNG[ ])htgnel yek dna mhtirogla yek cilbuP([

])ytidilav fo doirep lanoitpo nA([ ])noitamrofni ytitnedi lanoitpO([

])yek terces reh rof "esarhpssap" lanoitpo nA([ ]esarhpssaP[

]ASR dna ASR[ [lamagLE dna ASD] [gpg]

. ]ngis[ .]nruteR/retnE[

tpygE ECHR/ASCHR


.

. :

. ]DI[ .]noitacitnehtua[ ]DIU[ ]gpg[ ]DI resU[

: ]O[

]esarhpssaP[ " " " ]esarhpssap[ . ]esarhpssap[

: ]esarhpssap[ ".

]nruter\retne[ ]esarhpssap[ ]ecilA[ ]YAW ENO SIHT EKAT[ ]KO[ .

]ecilA[ .]yportne[

tpygE ECHR/ASCHR


.

.]gniryek[ ]yek etavirp/cilbup[

: ]syek-terces-tsil--gpg[ ]syek-tsil--gpg[

. ]tropxe--gpg[

]IICSA[ ]drauG ycavirP UNG[ ]a-\romra--[ .]46esaB[ . " IICSA"

]yek-terces-tropxe--gpg[ . ]gpg[ ]gniryek[ ]ecilA[

. ) ( di

]bob[ DI yek terces ]ces[ DI yek cilbup ]bup[

]di_yeksyek-eteled--gpg[ ]di_yeksyek-terces-eteled--gpg[

]di-yek[

tpygE ECHR/ASCHR


.

gpunG :

ten.gpung.syekrevresyek--XXXXXXXXsyek-dnes--gpg$]~ yt1ruceSi@7r43H-3v4rB[ DI-YEK DI-YEK XXXXXXXX

: XXXXXXXXsyek-vcer--gpg$]~ yt1ruceSi@7r43H-3v4rB[

: LIAME/RESUsyek-hcraes--gpg$]~ yt1ruceSi@7r43H-3v4rB[

: LIAME/RESU 7r43H-3v4rBsyek-hcraes--gpg$]~ yt1ruceSi@7r43H-3v4rB[

N retnE 1 . Q

]gpg.gnirbup[ ]gpung./~[ . ]gpg.gnirces[

)noitazinorhcnyS yeK tuohtiw( noitpyrcnE :I slocotorP yeK cilbuP

.drauG ycavirP UNG

tpygE ECHR/ASCHR


.

.]ecila[ ]boB[ . ]ecila[ ]boB[

. ]ecilA[ ]S[ ]ecilA[ ]P[

]P[ ]]M[ P[ ]M[

]M[ ]boB[ ]ecilA[

.

]ecilA[ ]boB[ .]P[ ]boB[ ]P[ ]ecilA[

. ]P[ ]boB[

.]gniryek[ ]ecilA[

]P[ ]boB[ .]M[ ]ecilA[

]txet rehpic[ .)]M[P( ]ecilA[

]S[ ]ecilA[ ]]M[P[ ]txet rehpic[

]ecilA[ .

.)M >-- ]]M[ P[ S(

tpygE ECHR/ASCHR


.

. [ecilA] : ]ecilA[.

. ]ecilA[ ]boB[ ]ecilA[ . . ]ecilA[ ]txetrehpyc[

]boB[ ]stnuocca[ ]ecilA[ ]boB[

. ]ecilA[

: ]boB[ ]ecilA[

.]ecilA[ ]stnuocca/[ ]boB[ DI-YEK DI-YEK ]e-|tpyrcne--gpg[

retnE DI-YEK / retnE DI-YEK

DI_YEK : : ]di_yektneipicer--|DI_yekr-[

stnuoccae-XXXXXXXXr-XXXXXXXXr-gpg$]~ 3cppchd@bob[

tpygE ECHR/ASCHR


.

]csa.[ ]csa.stnuocca[ . ]o-|tuo--[

: ]46esab[ ]txetrehpic[ ]boB[

. ]ecilA[ : ]d-|tpyrced--gpg[ ]ecilA[

: ]o-|tuo--[

serutangiS latigiD :II slocotorP yeK cilbuP( ) .drauG ycavirP UNG

tpygE ECHR/ASCHR


.

. .

. .

. [boB] . [boB] [ecilA]

. ]boB[ ]ecilA[ .]ecilA[ ]boB[

.

]ecilA[ ]M[ ]S & P[

]P[ ]boB[ ]boB[ .]ecilA[

]M[ ]ngis[/ ]ecilA[ ]]M[S[ ]S[

]boB[

]ecilA[ ]P[ ]boB[ . ]ecilA[ ]]M[S[

.)M >-- ]]M[S[P(

. ]ecilA[ ]boB[ . ]boB[ : . ]ecilA[ ]ecilA[ ]boB[ . ]boB[

]erutangis latigid[ ]ecilA[ . . . ]ecilA[

]boB[ . ]stnuocca_wen[ ]ecilA[

.

]s-|ngis--[ : ]ecilA[ ]csa.stnuocca_wen[

tpygE ECHR/ASCHR


.

. ]yfirev--[

]ecilA[ ]boB[ : ]d-|tpyrced--[ ]ecilA[

serutangiS latigiD dehcateD :III slocotorP yeK cilbuP .drauG ycavirP UNG

Documents

Linux Admin III