Jump to page titleUNITED STATES
hp.com home products and services support and drivers solutions how to buy
» contact hp


more options
 
hp.com home
End of Jump to page title
HP Services Software Patches
Jump to content


» software & drivers
» ask Compaq
» reference library
» forums & communities
» support tools
» warranty information
» contact support
» parts
» give us feedback

patches by topic
» DOS
» OpenVMS
» Security
» Tru64 Unix
» Ultrix 32
» Windows
» Windows NT

associated links
» what's new
» contract access
» browse patch tree
» search patch tree
» join mailing list

connection tools
» nameserver lookup
» traceroute
» ping


Find Support Information and Customer Communities for Presario.
Content starts here
HP Services Software Patches - alpload04_070
 
NOTE:  An OpenVMS saveset or PCSI installation file is stored
       on the Internet in a self-expanding compressed file.
       The name of the compressed file will be kit_name-dcx_vaxexe
       for OpenVMS VAX or kit_name-dcx_axpexe for OpenVMS Alpha.
 
       Once the file is copied to your system, it can be expanded
       by typing RUN compressed_file.  The resultant file will
       be the OpenVMS saveset or PCSI installation file which
       can be used to install the ECO.
 
Copyright (c) Digital Equipment Corporation 1996, 1997.  All rights reserved.

PRODUCT:    OpenVMS Alpha

COMPONENT:  CIA.EXE
            LOGINOUT.EXE
            SECURESHR.EXE
            SECURESHRP.EXE

SOURCE:     Digital Equipment Corporation

ECO INFORMATION:

     ECO Kit Name:  ALPLOAD04_070
     ECO Kits Superseded by This ECO Kit:  ALPLOAD03_070
                                           ALPLOAD02_070
                                           ALPLOAD01_070
                                           ALPLOGI02_070
                                           ALPLOGI01_070
     ECO Kit Approximate Size:  1782 Blocks
     Kit Applies To:  OpenVMS Alpha V7.0
     System/Cluster Reboot Necessary:  Yes

     Installation Rating:  3 - To be installed on all systems running
                               the listed versions of OpenVMS which
                               are experiencing the problems described.

     NOTE:  In order to receive the full fixes listed in this kit,
            the following remedial kits also need to be installed:

                 None. 


ECO KIT SUMMARY:

An ECO kit exists for the LOGINOUT and the Security Server on OpenVMS 
Alpha V7.0.  

Problems addressed in ALPLOAD04_070:

  o  Incorrect user authorization failures occur during login attempts.


Problems addressed in ALPLOAD03_070:

  o  The DISUSER flag gets set on a user account when no intrusions 
     are present.


Problems addressed in ALPLOAD02_070:  
 
  o  After installing the ALPLOAD01_070 kit on V6.2 systems, logins
     were not possible.


Problems addressed in ALPLOAD01_070:

  o  Some logins are not correctly audited due to a disconnected 
     terminal checking loop can exiting before audits are 
     restored.

  o  Users without WORLD privilege generate many "No WORLD priv"
     audits when logging in.

  o  Proxy behavior is unpredictable.  Sometimes they are                     
     inoperative and at other times access is given to an                     
     incorrect place.                                                         
                                                                              
  o  Records in the old intrusion database can not be deleted                 
     because they are ill-formed (i.e., they contain control                  
     characters, nulls, spaces, etc.).                                        
                                                                              

Problems addressed in ALPLOGI02_070:  

  o  Users with an expired password, but with the DISFORCE_PWD_CHANGE         
     flag set, are getting their password unexpired even though they          
     do not set a new password.                                               
                                                                              
  o  Audit information about network sessions from TCP/IP connections         
     does not contain remote host information.                                


Problems Addressed in ALPLOGI01_070:  
                                                                              
  o  Intrusion records and audits from DECnet/OSI network                     
     connections have a username padded with  characters.                
                                                                              
  o  A user typing meaningless characters, whitespace, or "/" in              
     response to the USERNAME prompt receives a CLI error and then            
     successfully logs in.  This causes both an intrusion and an              
     incorrect audit to be generated.                                         


INSTALLATION NOTES:

In order for the corrections in this kit to take effect, the system must
be rebooted.  If the system is a member of a VMScluster, the entire
cluster should be rebooted.
Files on this server are as follows:
»alpload04_070.README
»alpload04_070.CHKSUM
»alpload04_070.CVRLET_TXT
»alpload04_070.a-dcx_axpexe
privacy statement using this site means you accept its terms