Import translated manuals from JM CVS Repository.

[linuxjm/jm.git] / manual / ypserv / draft / man8 / ypserv.8

.\" -*- nroff -*-
.\" $Id: ypserv.8,v 1.4 2004/02/23 18:56:53 ysato Exp $
.\" 
.\" This manual page is a part of ypserv archive. 
.\" README states the following
.\"
.\" See the file COPYING for copying restrictions. It is available under
.\" the GNU General Public License.
.\"
.\" Japanese Version Copyright (c) 1998, 1999 NAKANO Takeo all rights reserved.
.\" Translated Mon 23 Nov 1998 by NAKANO Takeo <nakano@apm.seikei.ac.jp>
.\" Updated Fri 22 Oct 1999 by NAKANO Takeo
.\" Updated Sun 02 Dec 2001 by NAKANO Takeo
.\"
.TH YPSERV 8 "April 1997" "NYS YP Server" "Linux Reference Manual"
.\"O .SH NAME
.\"O ypserv \- NIS server
.SH ̾Á°
ypserv \- NIS ¥µ¡¼¥Ð¡¼
.\"O .SH SYNOPSIS
.SH ½ñ¼°
.B /usr/sbin/ypserv
[
.B \-d
[
.B path
] ]
[
.B \-p port
]
.LP
.\"O .SH DESCRIPTION
.SH ÀâÌÀ
.IX  "ypserv"  ""  "\fLypserv\fP \(em NIS server process"
.LP
.\"O The
.\"O Network Information Service (NIS)
.\"O provides a simple network lookup service
.\"O consisting of databases and processes.  The databases are
.\"O .B gdbm
.\"O files in a directory tree rooted at
.\"O .BR /var/yp .
Network Information Service (NIS) ¤Ï¡¢
¥Ç¡¼¥¿¥Ù¡¼¥¹¤È¤½¤ì¤é¤ò°·¤¦¥×¥í¥»¥¹¤È¤«¤é¤Ê¤ë
¥·¥ó¥×¥ë¤Ê¥Í¥Ã¥È¥ï¡¼¥¯¸¡º÷¥µ¡¼¥Ó¥¹¤Ç¤¢¤ë¡£
¥Ç¡¼¥¿¥Ù¡¼¥¹¤Ï
.B gdbm
·Á¼°¤Î¥Õ¥¡¥¤¥ë¤Ç¡¢
.B /var/yp
°Ê²¼¤Î¥Ç¥£¥ì¥¯¥È¥ê¥Ä¥ê¡¼¤ËÃÖ¤«¤ì¤ë¡£
.LP
.\"O The
.\"O .B ypserv
.\"O daemon is typically activated at system startup.
.B ypserv
¥Ç¡¼¥â¥ó¤Ï¡¢Ä̾亮¥¹¥Æ¥à¤Î¥¹¥¿¡¼¥È¥¢¥Ã¥×¤Î»þ¤Ëµ¯Æ°¤µ¤ì¤ë¡£
.\"O .B ypserv
.\"O runs only on
.\"O .SM NIS
.\"O server machines with a complete
.\"O .SM NIS
.\"O database. On other machines using the
.\"O .SM NIS
.\"O services, you have to run
.\"O .B ypbind
.\"O as client or under Linux you could use the libc with
.\"O .SM NYS
.\"O support.
.B ypserv
¤Ï¡¢´°Á´¤Ê
.SM NIS
¥Ç¡¼¥¿¡¼¥Ù¡¼¥¹¤òÊݴɤ¹¤ë
.SM NIS
¥µ¡¼¥Ð¡¼¥Þ¥·¥ó¤Ç¤Î¤ß¼Â¹Ô¤µ¤ì¤ë¡£
.SM NIS
¥µ¡¼¥Ó¥¹¤òÍøÍѤ¹¤ë¾¤Î¥Þ¥·¥ó¤Ç¤Ï¡¢¥¯¥é¥¤¥¢¥ó¥È¤È¤·¤Æ
.B ypbind
¤òÆ°ºî¤·¤µ¤¨¤¹¤ì¤Ð¤è¤¤¡£¤¢¤ë¤¤¤Ï Linux ¤Ê¤é
.SM NYS
¤Î¥µ¥Ý¡¼¥È¤µ¤ì¤¿ libc ¤òÍѤ¤¤Æ¤â¤è¤¤¡£
.\"O .B ypbind
.\"O must run on every machine which has
.\"O .SM NIS
.\"O client processes;
.\"O .B ypserv
.\"O may or may not be running on the same node,
.\"O but must be running somewhere
.\"O on the network. On startup or when receiving the signal SIGHUP,
.\"O .B ypserv
.\"O parses the file
.\"O .B /etc/ypserv.conf.
.B ypbind
¤Ï
.SM NIS
¥¯¥é¥¤¥¢¥ó¥È¥×¥í¥»¥¹¤ÎÆ°ºî¤¹¤ë¤¹¤Ù¤Æ¤Î¥Þ¥·¥ó¤Çµ¯Æ°¤·¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£
¤½¤ÎºÝ
.B ypserv
¤ÎÆ°ºî¤·¤Æ¤¤¤ë¥Þ¥·¥ó¤Ï¡¢
¥Í¥Ã¥È¥ï¡¼¥¯¤ÎƱ¤¸¥Î¡¼¥É¤Ç¤â¾¤Î¥Î¡¼¥É¤Ç¤â¤«¤Þ¤ï¤Ê¤¤¤¬¡¢
ɬ¤º¥Í¥Ã¥È¥ï¡¼¥¯¤Î¤É¤³¤«¤Ë¸ºß¤·¤Æ¤¤¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£
¥¹¥¿¡¼¥È¥¢¥Ã¥×¤Î»þ¤ä SIGHUP ¥·¥°¥Ê¥ë¤ò¼õ¤±¼è¤Ã¤¿»þ¤Ë¤Ï¡¢
.B ypserv
¤Ï
.B /etc/ypserv.conf
¥Õ¥¡¥¤¥ë¤òÆɤ߹þ¤ß¡¢¤½¤ÎÆâÍƤò²ò¼á¤·¤ÆÍøÍѤ¹¤ë¡£
.LP
.\"O .SH OPTIONS
.SH ¥ª¥×¥·¥ç¥ó
.TP
.B "\-d" "\-\-debug" "[path]"
.\"O Causes the server to run in debugging mode. Normally,
.\"O .B ypserv
.\"O reports only errors (access violations, dbm failures)
.\"O using the syslog(3) facility. In debug mode, the server does not
.\"O background itself and prints extra status messages to stderr for
.\"O each request that it revceives.
.\"O .B path
.\"O is an optionally parameter.
.\"O .B ypserv
.\"O is using this directory instead of /var/yp
¥µ¡¼¥Ð¡¼¤ò¥Ç¥Ð¥Ã¥°¥â¡¼¥É¤Çµ¯Æ°¤¹¤ë¡£
Ä̾ï
.B ypserv
¤Ï
.BR syslog (3)
¤òÄ̤·¤Æ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸ (¥¢¥¯¥»¥¹¸¢¤Î¿¯³²¤ä dbm ¤Î¾ã³²¤Ê¤É) ¤Î¤ß¤ò
Êó¹ð¤¹¤ë¡£¤³¤ì¤ËÂФ·¤Æ¥Ç¥Ð¥Ã¥°¥â¡¼¥É¤Ç¤Ï¡¢
¥µ¡¼¥Ð¡¼¤Ï¥Ð¥Ã¥¯¥°¥é¥¦¥ó¥É¤ØÂÔÈò¤»¤º¡¢
¥¢¥¯¥»¥¹Í×µá¤ò¼õ¤±¤ë¤¿¤Ó¤ËºÙ¤«¤Ê¥¹¥Æ¡¼¥¿¥¹¥á¥Ã¥»¡¼¥¸¤ò
ɸ½à¥¨¥é¡¼½ÐÎϤËɽ¼¨¤¹¤ë¡£
.B path
¤Ï¾Êά²Äǽ¤Ê¥Ñ¥é¥á¡¼¥¿¤Ç¡¢»ØÄꤹ¤ë¤È
.B ypserv
¤Ï¤³¤Î¥Ç¥£¥ì¥¯¥È¥ê¤ò /var/yp ¤ÎÂå¤ï¤ê¤ËÍøÍѤ¹¤ë¡£
.TP
.B "\-p" "\-\-port"  port
.\"O .B ypserv
.\"O will bind itself to this port.
.\"O This makes it possible to have a router filter packets
.\"O to the NIS ports, so that access to the NIS server from
.\"O hosts on the Internet can be restricted.
.B ypserv
¤¬¥Ð¥¤¥ó¥É¤¹¤ë¥Ý¡¼¥ÈÈÖ¹æ¤ò»ØÄꤹ¤ë¡£¤³¤Î¥ª¥×¥·¥ç¥ó¤òÍѤ¤¤ë¤È¡¢
¥ë¡¼¥¿¤Ë NIS ¥Ý¡¼¥È¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò¥Õ¥£¥ë¥¿¥ê¥ó¥°¤µ¤»¡¢
¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¤Î NIS ¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹¤òÀ©¸Â¤Ç¤­¤ë¡£
.TP
.B "\-v" "\-\-version"
.\"O Prints the version number
¥Ð¡¼¥¸¥ç¥óÈÖ¹æ¤òɽ¼¨¤¹¤ë¡£
.\"O .SH SECURITY
.SH ¥»¥­¥å¥ê¥Æ¥£
.\"O In general, any remote user can issue an RPC to
.\"O .B ypserv
.\"O and retrieve the contents of your NIS maps, if he knows your
.\"O domain name. To prevent such unauthorized transactions,
.\"O .B ypserv
.\"O supports a feature called
.\"O .B securenets
.\"O which can be used to restrict access to a given set of hosts.
.\"O At startup or when arriving the SIGHUP Signal,
.\"O .B ypserv
.\"O will attempt to load the securenets information from a file
.\"O called
.\"O .B /var/yp/securenets .
.\"O This file contains entries that consist of a netmask
.\"O and a network pair separated by white spaces.
.\"O Lines starting with ``#'' are considered to be comments.
¤¤¤Ã¤¿¤ó¥É¥á¥¤¥ó¥Í¡¼¥à¤¬¤ï¤«¤Ã¤Æ¤·¤Þ¤¦¤È¡¢¥ê¥â¡¼¥È¥æ¡¼¥¶¡¼¤Ïï¤Ç¤â
.B ypserv
¤Ø¤Î RPC ¤òȯ¹Ô¤·¤Æ¡¢ NIS ¥Þ¥Ã¥×¤ÎÆâÍƤòÆþ¼ê¤Ç¤­¤Æ¤·¤Þ¤¦¡£
¤³¤Î¤è¤¦¤Ê¡¢ËÜÍèµö²Ä¤µ¤ì¤ë¤Ù¤­¤Ç¤Ê¤¤¥È¥é¥ó¥¶¥¯¥·¥ç¥ó¤òËɤ°¤¿¤á¤Ë¡¢
.B ypserv
¤Ç¤Ï
.B securenets
¤È¤¤¤¦µ¡Ç½¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤ª¤ê¡¢»ØÄꤵ¤ì¤¿¥Û¥¹¥È°Ê³°¤«¤é¤Î¥¢¥¯¥»¥¹¤ò
À©¸Â¤Ç¤­¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£µ¯Æ°»þ¤ä SIGHUP ¥·¥°¥Ê¥ë¤ò¼õ¤±¤¿»þ¤Ë¡¢
.B ypserv
¤Ï
.B /var/yp/securenets
¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤«¤é securenets ¾ðÊó¤ò¥í¡¼¥É¤·¤è¤¦¤È»î¤ß¤ë¡£
¤³¤Î¥Õ¥¡¥¤¥ë¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤È¥Í¥Ã¥È¥Þ¥¹¥¯¤ÎÁȤò¡¢¥¹¥Ú¡¼¥¹¤Ç
¶èÀڤ俤â¤Î¤¬»ØÄꤵ¤ì¤Æ¤¤¤ë¡£``#'' ¤Ç»Ï¤Þ¤ë¹Ô¤Ï¥³¥á¥ó¥È¤È
¤ß¤Ê¤µ¤ì¤ë¡£
.TP
.\"O A sample securenets file might look like this:
°Ê²¼¤Ë securenets ¥Õ¥¡¥¤¥ë¤Î´Êñ¤ÊÎã¤ò¼¨¤¹¡£

# allow connections from local host -- necessary
.br
host 127.0.0.1
.br
# same as 255.255.255.255 127.0.0.1
.br
#
.br
# allow connections from any host
.br
# on the 131.234.223.0 network
.br
255.255.255.0   131.234.223.0
.br
# allow connections from any host
.br
# between 131.234.214.0 and 131.234.215.255
.br
255.255.254.0   131.234.214.0
.LP
.\"O If
.\"O .B ypserv
.\"O receives a request from an address that fails to match a rule,
.\"O the request will be ignored and a warning message will be
.\"O logged. If the
.\"O .B /var/yp/securenets
.\"O file does not exist,
.\"O .B ypserv
.\"O will allow connections from any host.
.B ypserv
¤¬¥ë¡¼¥ë¤Ë¥Þ¥Ã¥Á¤·¤Ê¤«¤Ã¤¿¥¢¥É¥ì¥¹¤«¤é¤ÎÍ×µá¤ò¼õ¤±¼è¤ë¤È¡¢
¤½¤ÎÍ×µá¤Ï̵»ë¤µ¤ì¡¢·Ù¹ð¥á¥Ã¥»¡¼¥¸¤¬¥í¥°¤Ëµ­Ï¿¤µ¤ì¤ë¡£
.B /var/yp/securentes
¥Õ¥¡¥¤¥ë¤¬Â¸ºß¤·¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢
.B ypserv
¤Ï¤¹¤Ù¤Æ¤Î¥Û¥¹¥È¤«¤é¤ÎÀܳ¤òµö²Ä¤¹¤ë¡£
.LP
.\"O In the
.\"O .B /etc/ypserv.conf
.\"O you could specify some access rules for special maps and hosts. But
.\"O it is not very secure, it makes the life only a little bit harder
.\"O for a potential hacker. If a mapname doesn't match a rule, ypserv will
.\"O look for the YP_SECURE key in the map. If it exists, ypserv will
.\"O only allow requests on a reserved port.
.B /etc/ypserv.conf
¤Ë¡¢Æüì¤Ê¥Þ¥Ã¥×¤ä¥Û¥¹¥È¤ËÂФ¹¤ë¥¢¥¯¥»¥¹¥ë¡¼¥ë¤ò»ØÄꤹ¤ë¤³¤È¤â¤Ç¤­¤ë¡£
¤·¤«¤·¤³¤ì¤Ïɬ¤º¤·¤â°ÂÁ´¤Ç¤Ï¤Ê¤¯¡¢¥¯¥é¥Ã¥«¡¼¤«¤é¤Î¥¢¥¿¥Ã¥¯¤ò¿¾¯ÌÌÅݤË
¤µ¤»¤ë¤À¤±¤Ë¤¹¤®¤Ê¤¤¡£ mapname ¤¬¥ë¡¼¥ë¤Ë¥Þ¥Ã¥Á¤·¤Ê¤¤¤È¡¢
.B ypserv
¤Ï¤½¤Î¥Þ¥Ã¥×¤Î YPSECURE ¥­¡¼¤ò¸«¤ë¡£¥­¡¼¤¬Â¸ºß¤¹¤ì¤Ð¡¢
.B ypserv
¤ÏÆø¢¥Ý¡¼¥È¤«¤é¤ÎÍ×µá°Ê³°¤òµö²Ä¤·¤Ê¤¤¡£

.\"O For security reasons, ypserv will only accept ypproc_xfr requests for
.\"O updating maps from the same master server as the old one. This means,
.\"O you have to reinstall the slave servers if you change the master server
.\"O for a map.
¥»¥­¥å¥ê¥Æ¥£¾å¤ÎÍýͳ¤«¤é¡¢
.B ypserv
¤Ï¥Þ¥Ã¥×¹¹¿·¤Î¤¿¤á¤ËÍѤ¤¤é¤ì¤ë ypproc_xfr Í×µá¤ò¡¢°ÊÁ°¤ÈƱ¤¸
¥Þ¥¹¥¿¡¼¥µ¡¼¥Ð¡¼¤«¤é¤·¤«¼õ¤±¤Ä¤±¤Ê¤¤¡£¤Ä¤Þ¤ê¡¢¤¢¤ë¥Þ¥Ã¥×¤ËÂФ¹¤ë
¥Þ¥¹¥¿¡¼¥µ¡¼¥Ð¤òÊѹ¹¤¹¤ë¤Ë¤Ï¡¢¥¹¥ì¡¼¥Ö¥µ¡¼¥Ð¡¼¤Ï
ºÆ¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëɬÍפ¬¤¢¤ë¡£
.\"O .SH FILES
.SH ¥Õ¥¡¥¤¥ë
/etc/ypserv.conf
/var/yp/securenets
.\"O .SH "SEE ALSO"
.SH ´ØÏ¢¹àÌÜ
.BR domainname (1),
.BR ypcat (1),
.BR ypmatch (1),
.BR ypserv.conf (5),
.BR netgroup (5),
.BR makedbm (8),
.BR revnetgroup (8),
.BR ypinit (8),
.BR yppoll (8),
.BR yppush (8),
.BR ypset (8),
.BR ypwhich (8),
.BR ypxfr (8),
.BR rpc.ypxfrd (8)
.LP
.\"O The Network Information Service
.\"O (\s-1NIS\s0)
.\"O was formerly known as Sun Yellow Pages
.\"O (\s-1YP\s0).
.\"O The functionality of the two remains the same;
.\"O only the name has changed.
.\"O The name Yellow Pages is a registered trademark in the United Kingdom
.\"O of British Telecommunications plc,
.\"O and may not be used without permission.
Network Information Service
(\s-1NIS\s0)
¤Ï¡¢°ÊÁ°¤Ï Sun Yellow Pages
(\s-1YP\s0).
¤È¸Æ¤Ð¤ì¤Æ¤¤¤¿¡£
¤³¤Îξ¼Ô¤Îµ¡Ç½¤Ï¤Þ¤Ã¤¿¤¯Æ±¤¸¤â¤Î¤Ç¤¢¤ê¡¢Ì¾Á°¤¬°ã¤¦¤À¤±¤Ç¤¢¤ë¡£
Yellow Pages ¤È¤¤¤¦Ì¾Á°¤Ï¡¢±Ñ¹ñ¤Ç
British Telecommunications plc ¤ÎÅÐÏ¿¾¦É¸¤È¤Ê¤Ã¤Æ¤ª¤ê¡¢
µö²Ä¤òÆÀ¤º¤ËÍѤ¤¤ë¤³¤È¤Ï¤Ç¤­¤Ê¤¤¡£
.\"O .SH AUTHOR
.SH Ãø¼Ô
.\"O .B ypserv
.\"O was written by Peter Eriksson <pen@lysator.liu.se>.
.\"O Thorsten Kukuk <kukuk@suse.de> added support for master/slave
.\"O server and is the new Maintainer.
.B ypserv
¤Ï Peter Eriksson <pen@lysator.liu.se> ¤Ë¤è¤Ã¤Æ½ñ¤«¤ì¤¿¡£
Thorsten Kukuk <kukuk@suse.de> ¤¬¥Þ¥¹¥¿¡¼/¥¹¥ì¡¼¥Ö¥µ¡¼¥Ð¤Î
¥µ¥Ý¡¼¥È¤òÄɲä·¡¢¸½ºß¤Î¥á¥ó¥Æ¥Ê¥ó¥¹¤ò¹Ô¤Ã¤Æ¤¤¤ë¡£