和平東路2段100號3F-7 apt install fonts-noto-cjk 安裝noto字型以支援中日韓文字 ************************** Phicomm T1 dtb_name=/dtb/meson-gxm-q201.dtb ************************************ 写好U盘后,访问U盘第一分区(卷标名称为BOOT),将机型对应的 dtb 文件拷贝到BOOT分区根目录并重命名为 dtb.img ; 机型选择关键字如下: N1 ---> S905D , p230 , gxl , 2G T1 ---> S912 , q201 , gxm , 2G 好吧, 方便小白, 送佛送到家 kernel 3.14.29 , dtb-3.14.29 目录下: N1 ---> gxl_p230_2g.dtb T1 ---> gxm_q201_2g.dtb kernel 4.16.1 , dtb-4.16.1-amlogics905x 目录下: N1 ---> meson-gxl-s905d-p230.dtb T1 ---> meson-gxm-q201.dtb ③、启动Armbian 刷入官改固件的N1 或 T1关机状态下插入U盘,T1 最好接入USB2.0 hub,方便同时用鼠标键盘; 盒子加电后自动加载U盘上的Armbian; 若盒子加电后仍然直接进入安卓,请在盒子终端模拟器命令行中、或 adb / telnet / ssh 终端命令行中,输入运行 " reboot update " ; 首次启动后,在终端字符界面输入用户名(root)密码(1234),会立即要求更改root密码; 再次输入 1234,然后输入两遍自定义的root新密码; 接下来提示创建常用用户名和密码,用户信息可以不填写,一路回车跳过; 初始化文件系统/硬件信息/修正第二分区大小后,Armbian 重启; 重启后进入Linux桌面或终端提示符(server版),输入常用用户名和密码登录。 ------------------------------------ cat auth.log | grep CN= > user_$(date '+%Y%m%d').log 記錄每天使用者上線時間 ---------------------------------------- ethtool eth0 | grep -i speed ---------------------------------------- -----Laserman上面的firewall----------------------- sudo iptables -A INPUT -s 120.242.213.219 -j DROP sudo iptables -A INPUT -s 120.242.213.219 -j ACCEPT iptables -A INPUT -s 123.123.123.123 -j DROP # 將 123.123.123.123 全部擋掉 iptables -A INPUT -s 92.63.194.0/24 -j DROP 列出所有規則,前面加上行號 iptables -L INPUT -n --line-numbers 要刪除某一行的規則 iptables -D INPUT 1 # 若只有上述那行,那就是 1 iptables -D INPUT 3 # 若有多行,只要刪除第三行 iptables -A INPUT -s 123.123.123.123 -j DROP # 將 123.123.123.123 全部擋掉 列出所有規則,前面加上行號 sudo iptables -L INPUT -n --line-numbers 要刪除某一行的規則 sudo iptables -D INPUT 1 # 若只有上述那行,那就是 1 sudo iptables -D INPUT 3 # 若有多行,只要刪除第三行 --------readme---2020-08-27--------------------- hckao@H96PLUS:~$ cat readme 本機安裝 1. l2tp+ipsec 2.ikev2 3. openvpn 4.apache 5.snmp+snmpd+mib-downloader 6.mrtg 7.ftp 8.......... get noip 2339835994@qq.com/passme Install noip2 from source cd /usr/local/src/ sudo wget http://www.no-ip.com/client/linux/noip-duc-linux.tar.gz sudo tar xf noip-duc-linux.tar.gz cd noip-2.1.9-1/ sudo make sudo make install If you get make not found or missing gcc then you do not have the gcc compiler tools on your machine. At https://help.ubuntu.com/community/InstallingCompilers you can find install instructions if you need help. Configure the Client As root (or with sudo) issue the below command: sudo /usr/local/bin/noip2 -C (dash capital C, this will create the default config file) Create a Systemd service Create the file $sudo nano /etc/systemd/system/noip2.service and paste the following: ---------------------------------------------------------------------------- [Unit] Description=No-IP Dynamic DNS Update Client After=network.target [Service] Type=forking ExecStart=/usr/local/bin/noip2 [Install] WantedBy=multi-user.target ------------------------------------------- Activating systemctl status noip2.service systemctl start noip2.service (start immediately) systemctl enable noip2.service (start on boot) ##Created symlink /etc/systemd/system/multi-user.target.wants/noip2.service -> /etc/systemd/system/noip2.service. 9.... cat auth.log | grep CN= > user_$(date '+%Y%m%d').log 10....vsftpd https://devanswers.co/installing-ftp-server-vsftpd-ubuntu-18-04/ ------更改(設定)檔案夾的歸屬人------ chown -R www-data:www-data /var/www/mrtg sudo chown -R hckao:hckao /var/www/html/vpn ---------------------------------------------------- 2020-08-17 儲存空間紀錄 hckao@H96PLUS:~$ df -h Filesystem Size Used Avail Use% Mounted on udev 972M 0 972M 0% /dev tmpfs 285M 32M 253M 12% /run /dev/mmcblk0p2 14G 1.3G 13G 9% / tmpfs 1.4G 0 1.4G 0% /dev/shm tmpfs 5.0M 4.0K 5.0M 1% /run/lock tmpfs 1.4G 0 1.4G 0% /sys/fs/cgroup tmpfs 1.4G 4.0K 1.4G 1% /tmp /dev/mmcblk0p1 128M 62M 67M 48% /boot /dev/zram0 49M 12M 33M 27% /var/log tmpfs 285M 0 285M 0% /run/user/1000 ----------------------------------- 一些指令 ethtool eth0 | grep -i speed du -h 可知目前此資料夾下所有檔案與資料夾所佔硬碟大小總數 du -s 可知目前此資料夾總共佔用硬碟大小總數,以G為單位 du -sh 可知目前此資料夾總共佔用硬碟大小總數,以G為單位 --------iptables-------------教學 sudo iptables -A INPUT -s 120.242.213.219 -j DROP sudo iptables -A INPUT -s 120.242.213.219 -j ACCEPT iptables -A INPUT -s 123.123.123.123 -j DROP # 將 123.123.123.123 全部擋掉 iptables -A INPUT -s 92.63.194.0/24 -j DROP 列出所有規則,前面加上行號 iptables -L INPUT -n --line-numbers 要刪除某一行的規則 iptables -D INPUT 1 # 若只有上述那行,那就是 1 iptables -D INPUT 3 # 若有多行,只要刪除第三行 iptables -A INPUT -s 123.123.123.123 -j DROP # 將 123.123.123.123 全部擋掉 列出所有規則,前面加上行號 sudo iptables -L INPUT -n --line-numbers 要刪除某一行的規則 sudo iptables -D INPUT 1 # 若只有上述那行,那就是 1 sudo iptables -D INPUT 3 # 若有多行,只要刪除第三行 ---------需要清查的ip--------------- Aug 17 09:35:40 localhost pluto[3398]: "l2tp-psk"[8] 216.218.206.114 #9: responding to Main Mode from unknown peer 216.218.206.114:26432 Aug 17 09:35:40 localhost pluto[3398]: "l2tp-psk"[8] 216.218.206.114 #9: OAKLEY_CAST_CBC is not supported. Attribute OAKLEY_ENCRYPTION_ALGORITHM Aug 17 09:35:40 localhost pluto[3398]: "l2tp-psk"[8] 216.218.206.114 #9: no acceptable Oakley Transform Aug 17 09:35:40 localhost pluto[3398]: "l2tp-psk"[8] 216.218.206.114 #9: sending notification NO_PROPOSAL_CHOSEN to 216.218.206.114:26432 101.251.238.53 iptables -A INPUT -s 92.63.194.0/24 -j DROP ------------------------------------ hckao@H96PLUS:~$ sudo systemctl stop getty@ttyS0 hckao@H96PLUS:~$ sudo systemctl disable getty@ttyS0 以下可以解決 [root @ pix2] /var/log # systemctl stop serial-getty@ttyS0.service [root @ pix2] /var/log # systemctl disable serial-getty@ttyS0.service ------------------------------------ 永遠放在最後面 sudo nano /var/www/html/mrtg/114.34.34.104_3.log sudo nano /var/www/html/mrtg/114.34.34.104_5.log sudo nano /var/www/html/mrtg/114.34.34.104_6.log ---以下是用在syslog 查pptpd的用戶------ Client finished -------------- ethtool eth0 | grep -i speed sudo cat /var/log/auth.log |grep l2tp sudo cat /var/log/auth.log |grep l2tp > l2tp_$(date '+%Y%m%d').log sudo cat /var/log/auth.log |grep xauth-psk > ipsec_$(date '+%Y%m%d').log sudo cat /var/log/auth.log |grep ikev2 > ikev2_$(date '+%Y%m%d').log sudo cat /var/log/auth.log |grep Authentication > user_$(date '+%Y%m%d').log sudo cat /var/log/auth.log |grep peer > peer_$(date '+%Y%m%d').log sudo cat /var/log/auth.log |grep traffic 永遠放在最後面 ------------------------------ http://www.mediafire.com/file/qk46oo9jxx25hoq/rolexexploreriiwhite.clock/file http://www.mediafire.com/file/mlajfemt1gl1bz3/morerolexesbyjt.clk/file https://tw.stock.yahoo.com/q/q?s=2823 https://tw.stock.yahoo.com/q/q?s=2882 https://tw.stock.yahoo.com/q/q?s=2884 https://tw.stock.yahoo.com/q/q?s=2891 https://tw.stock.yahoo.com/q/q?s=2890      **************************************** 現金殖利率公式=(現金股利/除權息前一日股價) 現金殖利率為 2.35%=(610/26000) 除權息參考價公式 = [ 除權除息前一日收盤價-現金股利 ] ÷ [ 1+ (股票股利÷10) ] 除權息參考價為 23.93=[ 26.0-0.61 ]÷[ 1+(0.61÷10) ] 再來我們來換算「配股」價值 1張玉山金配發股票股利0.61元,等於配發61股 配股價值公式=配股 x 除權息參考價 配股價值為1460=61(配股) x 23.93(除權息參考價) 接著我們來計算全部的股利 610+1460=2070(現金股利+配股價值) 後我們來計算「還原殖利率」 還原殖利率公式=(現金股利+配股價值)/除權息前一日股價 還原殖利率為 7.96%=(610+1460) / 26000 br0 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:05 inet addr:192.168.9.1 Bcast:192.168.9.255 Mask:255.255.255.0 UP BROADCAST RUNNING ALLMULTI MULTICAST MTU:1500 Metric:1 RX packets:726769 errors:0 dropped:0 overruns:0 frame:0 TX packets:343059 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:148800774 (141.9 MiB) TX bytes:188530121 (179.7 MiB) eth2 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:05 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:127282937 errors:0 dropped:2 overruns:0 frame:0 TX packets:55318122 errors:0 dropped:5987 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:1258292059 (1.1 GiB) TX bytes:3704061683 (3.4 GiB) Interrupt:3 eth3 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:04 inet addr:192.168.1.113 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:7769272 errors:0 dropped:247695 overruns:0 frame:0 TX packets:9088264 errors:0 dropped:4 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3747337566 (3.4 GiB) TX bytes:1384637712 (1.2 GiB) ra0 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:06 UP BROADCAST RUNNING ALLMULTI MULTICAST MTU:1500 Metric:1 RX packets:3623547 errors:69310 dropped:0 overruns:0 frame:0 TX packets:45731 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:115883369 (110.5 MiB) TX bytes:13544778 (12.9 MiB) Interrupt:24 rai0 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:07 UP BROADCAST RUNNING ALLMULTI MULTICAST MTU:1500 Metric:1 RX packets:3293027 errors:1020637 dropped:0 overruns:0 frame:0 TX packets:7425963 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:238331139 (227.2 MiB) TX bytes:2104846454 (1.9 GiB) Interrupt:4 vlan1 Link encap:Ethernet HWaddr 8C:DE:F9:31:CE:05 UP BROADCAST RUNNING ALLMULTI MULTICAST MTU:1500 Metric:1 RX packets:1907287 errors:0 dropped:0 overruns:0 frame:0 TX packets:4825174 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:521441838 (497.2 MiB) TX bytes:1212150546 (1.1 GiB) ****************** S912安裝 sudo apt-get install php sudo apt-get install php-cgi sudo apt-get install libapache2-mod-php sudo apt-get install php-common php-pear sudo apt-get install php-mbstring sudo apt-get install php-mysql sudo apt-get install php-curl sudo apt-get install php-json sudo apt install php-bz2 sudo apt install php-curl sudo apt install php-gd sudo apt install php-imagick sudo apt install php-intl sudo apt install php-mbstring sudo apt install php-xml sudo apt install php-zip sudo apt-get install owncloud-complete-files owncloud-complete-files ****************** ServerName 6932owncloud.ddns.net ServerAlias s912.ddns.net ServerAdmin webmaster@s912.ddns.net DocumentRoot /var/www/owncloud Options -Indexes +FollowSymLinks AllowOverride All ErrorLog ${APACHE_LOG_DIR}/s912.ddns.net-error.log CustomLog ${APACHE_LOG_DIR}/s912.ddns.net-access.log combined ServerName 6932owncloud.ddns.net ServerAlias s912.ddns.net ServerAdmin webmaster@s912.ddns.net DocumentRoot /var/www/owncloud Options -Indexes +FollowSymLinks AllowOverride All ErrorLog ${APACHE_LOG_DIR}/s912.ddns.net-ssl-error.log CustomLog ${APACHE_LOG_DIR}/s912.ddns.net-ssl-access.log combined SSLEngine on SSLCertificateFile /etc/apache2/ssl/6932owncloud.cer SSLCertificateKeyFile /etc/apache2/ssl/6932owncloud.key SSLCertificateChainFile /etc/apache2/ssl/6932owncloud.ca ******************************************* SSLCertificateFile /etc/apache2/ssl/6932owncloud.cer SSLCertificateKeyFile /etc/apache2/ssl/6932owncloud.key SSLCertificateChainFile /etc/apache2/ssl/6932owncloud.ca * apache2.service - The Apache HTTP Server Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled) Drop-In: /lib/systemd/system/apache2.service.d `-apache2-systemd.conf Active: failed (Result: exit-code) since Sun 2021-03-28 17:50:16 CST; 21s ago Process: 17990 ExecStop=/usr/sbin/apachectl stop (code=exited, status=1/FAILURE) Process: 18014 ExecStart=/usr/sbin/apachectl start (code=exited, status=1/FAILURE) Main PID: 17781 (code=exited, status=0/SUCCESS) Mar 28 17:50:16 cloud systemd[1]: Starting The Apache HTTP Server... Mar 28 17:50:16 cloud apachectl[18014]: AH00526: Syntax error on line 31 of /etc/apache2/sites-enabled/fosslinuxowncloud.com.conf: Mar 28 17:50:16 cloud apachectl[18014]: SSLCertificateFile: file '/etc/apache2/ssl/6932owncloud.cer' does not exist or is empty Mar 28 17:50:16 cloud apachectl[18014]: Action 'start' failed. Mar 28 17:50:16 cloud apachectl[18014]: The Apache error log may have more information. Mar 28 17:50:16 cloud systemd[1]: apache2.service: Control process exited, code=exited status=1 Mar 28 17:50:16 cloud systemd[1]: apache2.service: Failed with result 'exit-code'. Mar 28 17:50:16 cloud systemd[1]: Failed to start The Apache HTTP Server. ------------------------------------------ 后来谷歌了半天找到了一个完美解决办法: 先在ubuntu下更新一下时间,确保时间无误: sudo apt-get install ntpdate sudo ntpdate time.windows.com 然后将时间更新到硬件上: sudo hwclock --localtime --systohc ----------------------------------------