Recent SCO/Linux News


Index
Recent SCO Security Info
Recent SCO TA's
There is a LOT more here: try Searching this site
From: RadleyRobot <RadleyRobot@jpr.com>
Subject: SCO Technical Articles released on 20010407
Date: Sat, 7 Apr 2001 17:32:35 GMT


The following problems are addressed in Technical Articles that appeared
on SCO's web site in the week ending 20010407.

Each problem is preceded by the URL reference to get the relevant article
from the WAIS database at caldera.com.



        http://www.caldera.com/cgi-bin/ssl_reference?104596
        created 07 Jul 1994
        revised 05 Apr 2001
PROBLEM:  I wish to configure MMDF so as to prevent other organizations' mail
          from being routed via my system, for example:

            Z.fu.com       X.bar.com
                ^               ^
                |               |
                v               v
                 "A.internal.com"
                  (Mail Gateway)
                        ^
                        |
                        v
                "B.internal.com",
                "C.internal.com",
                      ...

          I want to allow my systems to both send and receive mail from
          external systems (such as Z.fu.com or X.bar.com), but prevent
          external systems from routing mail to each other via my gateway
          (such as Z.fu.com to X.fu.com via A.internal.com).

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?109982
        created 22 Feb 1999
        revised 04 Apr 2001
PROBLEM:  When I use the network configuration manager (or netcfg) to increase
          pseudo-ttys, the number of regular pseudo-ttys (/dev/pts### devices)
          is always set to 256, the number of SCO pseudo-tty devices
          (/dev/ttyp## and /dev/ptyp## devices) is set to the specified value.

          OR:

          The online documentation for increasing the number of pseudo-terminal
          devices is incomplete.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?111402
        created 07 Sep 2000
        revised 02 Apr 2001
PROBLEM:  What is Support Level Supplement (SLS) ptf7666c, the UnixWare 7.1.1
          TCP/IP, IO and various fixes Supplement?

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?112421
        created 06 Feb 2001
        revised 06 Apr 2001
PROBLEM:  I just received a notice saying my UnixWare 7.x.x Mail Server is
          an open relay and has been listed in the ORBS database at:

              http://www.orbs.org

          ORBS (the Open Relay Behavior-modification System) is a
          database for tracking SMTP servers that have been confirmed
          to permit third-party relay. If I run the Relay test available
          at http://www.abuse.net/relay.html (requires registration) my
          server fails on "Relay Test 8".

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?112681
        created 23 Feb 2001
        revised 05 Apr 2001
PROBLEM:  The version of rtpm shipped with UnixWare 7 Release 7.1.1 is 
          vulnerable to buffer overflows in user input. These overflows 
          could lead to a local system compromise. 

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113061
        created 16 Mar 2001
        revised 03 Apr 2001
PROBLEM:  With previous versions of OpenServer the "routed" daemon would start
          by default.  With OpenServer 5.0.6 this does not happen.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113121
        created 20 Mar 2001
        revised 02 Apr 2001
PROBLEM:  My server has panicked with the following messages:

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113122
        created 20 Mar 2001
        revised 02 Apr 2001
PROBLEM:  Files remain locked after closing on NFS mounted filesystems from
          UnixWare 7.  The following is "example" source that exhibits the
          problem;

#include <stdio.h>
#include <fcntl.h>
#include <sys/stat.h>
#include <errno.h>               /* errno */


int main()

{

   int f, g;
   struct flock fl;
   struct stat info;
   char buf[8];

   f = open("zot", O_RDWR, (S_IREAD | S_IWRITE));
   if (f < 0) {
      printf("first open failed!\n");
      goto abortend;
   }

   /* initialize the lock structure */
   fl.l_type = F_WRLCK;       /* lock mode */
   fl.l_whence = 1;           /* start at current file position */
   fl.l_start = 0;            /* start at current file position */
   fl.l_len = 0;              /* the whole file */

   /* lock the entire file */
   if (fcntl(f, F_SETLK, &fl) < 0) {    /* error? */
      printf("First lock failed!\n");
      if ((errno == EACCES)  ||  (errno == EAGAIN)) { /* already locked? */
         printf("file already locked!\n");
         goto abortend;
      }
   }

   g = open("zot", O_RDONLY, (S_IREAD | S_IWRITE));
   if (g < 0) {
      printf("second open failed!\n");
      goto abortend;
   }

   /* initialize the lock structure */
   fl.l_type = F_RDLCK;       /* lock mode */
   fl.l_whence = 1;           /* start at current file position */
   fl.l_start = 0;            /* start at current file position */
   fl.l_len = 1;              /* one byte */

   /* attempt to lock the bytes without waiting */
   if (fcntl(g, F_SETLK, &fl) < 0) {     /* error? */
      printf("read lock failed!\n");
      if ((errno == EACCES)  ||  (errno == EAGAIN)) { /* already locked? */
         printf("file already locked!\n");
      }
      goto abortend;
   }

   read(g, buf, 1);
   printf("buf = %c\n", buf[0]);
   lseek(g, (long) 0, SEEK_SET);

   /* initialize the lock structure */
   fl.l_type = F_UNLCK;       /* lock mode */
   fl.l_whence = 1;           /* start at current file position */
   fl.l_start = 0;            /* start at current file position */
   fl.l_len = 1;              /* one byte */

   /* attempt to unlock the bytes without waiting */
   if (fcntl(g, F_SETLK, &fl) < 0) {     /* error? */
      printf("read unlock failed!\n");
      goto abortend;
   }


#ifdef workaround
   /* initialize the lock structure */
   fl.l_type = F_UNLCK;       /* lock mode */
   fl.l_whence = 1;           /* start at current file position */
   fl.l_start = 0;            /* start at current file position */
   fl.l_len = 0;              /* whole file */

   /* attempt to unlock the bytes without waiting */
   lseek(f, (long) 0, SEEK_SET);
   if (fcntl(f, F_SETLK, &fl) < 0) {     /* error? */
      printf("read unlock failed!\n");
      goto abortend;
   }
#endif

   close(g);

   close(f);

abortend:

   return (0);

}


====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113141
        created 21 Mar 2001
        revised 02 Apr 2001
PROBLEM:  Running "ap -r" on multiple users sets wrong permissions on
          /etc/passwd and /etc/group.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113142
        created 21 Mar 2001
        revised 02 Apr 2001
PROBLEM:  Disk and swap space usage figures reported by snmp (e.g.
          by the command "getmany localhost public hrStorage") may
          be negative or otherwise incorrect.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113221
        created 28 Mar 2001
        revised 03 Apr 2001
PROBLEM:  "/sbin/emergency_rec -e tape_drive" fails to open /dev/rdsk/p0 on a
          Compaq server with an IDA RAID Controller.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113222
        created 28 Mar 2001
        revised 02 Apr 2001
PROBLEM:  I have installed Tarantella Enterprise 3 on my UnixWare 7.1.1 server
          but I cannot connect to the URL http://<my_server>/tarantella

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113223
        created 28 Mar 2001
        revised 02 Apr 2001
PROBLEM:  "/sbin/emergency_rec -e tape_drive" fails to open /dev/rdsk/p0 on a
          Compaq server with an IDA RAID Controller.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113261
        created 29 Mar 2001
        revised 02 Apr 2001
PROBLEM:  After I install Tarantella Enterprise II any files I had in the /tmp
          directory starting with "inst" are removed.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113281
        created 30 Mar 2001
        revised 03 Apr 2001
PROBLEM:  When an "fsck -d -ofull" is performed on a non-root filesystem,
          the fsck hangs and at the point it runs Phase 5 Checking
          Synchronous Log.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113282
        created 30 Mar 2001
        revised 02 Apr 2001
PROBLEM:  My proxy server has been configured to reject IP Addresses but allows
          DNS Names.

          This prevents my Tarantella Array to provide me a server in the array
          to log into.

====    ====    ====    ====    ====    ====    ====    ====    ====    ====

        http://www.caldera.com/cgi-bin/ssl_reference?113321
        created 03 Apr 2001
        revised 04 Apr 2001
PROBLEM:  I have installed my UnixWare 7 system with a genuine license but when
         I log into the system I get the message:

          NOTICE: Licensed for a limited product evaluation period only.

          If I run the License Manager, it indicates that the status of the
          license is:

          Valid until 10/21/2026


Index








Click here to add your comments



Don't miss responses! Subscribe to Comments by RSS or by Email

Click here to add your comments


If you want a picture to show with your comment, go get a Gravatar


Auto FTP Manager


/News/sconews0345.html copyright All Rights Reserved

Have you tried Searching this site?

Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more. We appreciate comments and article submissions.

Publishing your articles here

Jump to Comments



Many of the products and books I review are things I purchased for my own use. Some were given to me specifically for the purpose of reviewing them. I resell or can earn commissions from the sale of some of these items. Links within these pages may be affiliate links that pay me for referring you to them. That's mostly insignificant amounts of money; whenever it is not I have made my relationship plain. I also may own stock in companies mentioned here. If you have any question, please do feel free to contact me.

Specific links that take you to pages that allow you to purchase the item I reviewed are very likely to pay me a commission. Many of the books I review were given to me by the publishers specifically for the purpose of writing a review. These gifts and referral fees do not affect my opinions; I often give bad reviews anyway.

We use Google third-party advertising companies to serve ads when you visit our website. These companies may use information (not including your name, address, email address, or telephone number) about your visits to this and other websites in order to provide advertisements about goods and services of interest to you. If you would like more information about this practice and to know your choices about not having this information used by these companies, click here.



More:


Unix/Linux Consultants

Skills Tests

Guest Post Here











My Favorites

Change Congress