Next Previous Contents

TrinityOS: A Guide to Configuring Your Linux Server for Performance, Security, and Manageability

David A. Ranch dranch at trinnet dot net

May 22, 2005


TrinityOS and its associated archive scripts guide the Linux user in a step-by-step fashion using a common example throughout to configure over 50+ Internet services. The main focus of TrinityOS is to do this in a secure fashion while keeping both performance and manageability in mind. The documents also guide the user in other advanced topics such as aquiring their own Internet domain(s), moving DNS servers, confirming if you've been hacked, fighting SPAM email, and fixing various Linux file system, partition, LILO, and data recovery problems.

1. Copyright Notice

2. Introduction

3. Feature Sets

4. Hardware Configuration

5. Software URL download map and checklist

6. Thoughts on Picking a Linux Distribution

7. Installing a distribution, patching it, and doing a Search/Replace on TrinityOS

8. Initial System security

9. Advanced System Logging and some Cool Tips

10. Advanced firewall rule sets including IP Masquerade for single and multi-NIC setups

11. Initial Preparation for Kernel Patching and Compiling

12. Initial Linux Kernel compiling

13. Compile PPPd

14. Final Linux Kernel compiling and installation

15. Lilo configuration and installation

16. Additional RC script configuration and TCP/IP network optimization

17. Patching, Compiling, and installing IPFWADM

18. Mail aliases for system administration

19. Preparing for reboot and clearing the logs

20. Verifing MASQ module installation

21. Install TCPDUMP

22. PPPd configuration [For both PRIMARY and BACKUP PPP connections]

23. Diald [For Modem users only]

24. DNS: Acquiring and configuring CHROOTed and SPLIT master/slave DNS servers

25. SMTP MAIL: Sendmail configuration w/ domain masquerading & spam filters

26. NTP Time calibration

27. DHCPd SERVER configuration

28. POP3 and IMAP4 e-mail services

29. System Backups: Backing up data to HDs, Tape, and floppies

30. SSH Terminal, FTP, X-windows, and tunnel encryption

31. Software RAID 0 (striping) Hard drives

32. SCSI CD-ROM Changers: Installing and Setup

33. Samba installation and configuration

34. PCMCIA services installation and configuration

35. DHCPcd : Client DHCP for xDSL / Cablemodem users

36. UPS: Complete UPS Backup & Graphing support for APC UPSes

37. Apache WWW Server

38. Tripwire file monitoring [Not finished yet]

39. Backing up the new system Linux to a CD-R

40. NFS (Network File System) File sharing

41. EXT2 File system tuning

42. Dial-in terminal / PPP access via a modem

43. Automated RPM notifiers

44. Nmap port scanner

45. So you think you are being hacked: Confirm it!

46. UNIX and Samba Printing

47. IPSec (SWAN) Virtual Private Network (VPN) [Almost complete]

48. PPTP support as a Linux client or PPTP through a MASQ server

49. IDE HDs performance optimization via hdparm

50. SPAM: Dealing with it and helping others stop it

51. FS Recovery: How to fix LILO and file system problems

52. Gracefully transitioning Internet domains through a IP address or ISP change change

53. Setting up Linux as a good desktop operating system

54. Thoughts about the needs and procedures to Patching your Linux distribution

55. Serial Linux Consoles and Reverse TELNET

56. Common Observations, Q&A, etc

57. ChangeLOG


Next Previous Contents