|
|
HP Services Software Patches - alpload04_070
|
NOTE: An OpenVMS saveset or PCSI installation file is stored
on the Internet in a self-expanding compressed file.
The name of the compressed file will be kit_name-dcx_vaxexe
for OpenVMS VAX or kit_name-dcx_axpexe for OpenVMS Alpha.
Once the file is copied to your system, it can be expanded
by typing RUN compressed_file. The resultant file will
be the OpenVMS saveset or PCSI installation file which
can be used to install the ECO.
Copyright (c) Digital Equipment Corporation 1996, 1997. All rights reserved.
PRODUCT: OpenVMS Alpha
COMPONENT: CIA.EXE
LOGINOUT.EXE
SECURESHR.EXE
SECURESHRP.EXE
SOURCE: Digital Equipment Corporation
ECO INFORMATION:
ECO Kit Name: ALPLOAD04_070
ECO Kits Superseded by This ECO Kit: ALPLOAD03_070
ALPLOAD02_070
ALPLOAD01_070
ALPLOGI02_070
ALPLOGI01_070
ECO Kit Approximate Size: 1782 Blocks
Kit Applies To: OpenVMS Alpha V7.0
System/Cluster Reboot Necessary: Yes
Installation Rating: 3 - To be installed on all systems running
the listed versions of OpenVMS which
are experiencing the problems described.
NOTE: In order to receive the full fixes listed in this kit,
the following remedial kits also need to be installed:
None.
ECO KIT SUMMARY:
An ECO kit exists for the LOGINOUT and the Security Server on OpenVMS
Alpha V7.0.
Problems addressed in ALPLOAD04_070:
o Incorrect user authorization failures occur during login attempts.
Problems addressed in ALPLOAD03_070:
o The DISUSER flag gets set on a user account when no intrusions
are present.
Problems addressed in ALPLOAD02_070:
o After installing the ALPLOAD01_070 kit on V6.2 systems, logins
were not possible.
Problems addressed in ALPLOAD01_070:
o Some logins are not correctly audited due to a disconnected
terminal checking loop can exiting before audits are
restored.
o Users without WORLD privilege generate many "No WORLD priv"
audits when logging in.
o Proxy behavior is unpredictable. Sometimes they are
inoperative and at other times access is given to an
incorrect place.
o Records in the old intrusion database can not be deleted
because they are ill-formed (i.e., they contain control
characters, nulls, spaces, etc.).
Problems addressed in ALPLOGI02_070:
o Users with an expired password, but with the DISFORCE_PWD_CHANGE
flag set, are getting their password unexpired even though they
do not set a new password.
o Audit information about network sessions from TCP/IP connections
does not contain remote host information.
Problems Addressed in ALPLOGI01_070:
o Intrusion records and audits from DECnet/OSI network
connections have a username padded with characters.
o A user typing meaningless characters, whitespace, or "/" in
response to the USERNAME prompt receives a CLI error and then
successfully logs in. This causes both an intrusion and an
incorrect audit to be generated.
INSTALLATION NOTES:
In order for the corrections in this kit to take effect, the system must
be rebooted. If the system is a member of a VMScluster, the entire
cluster should be rebooted.
Files on this server are as follows:
|
»alpload04_070.README
»alpload04_070.CHKSUM
»alpload04_070.CVRLET_TXT
»alpload04_070.a-dcx_axpexe
|