OpenVMS VAXLOAD04_070 VAX V7.0 LOGINOUT/Security Server ECO Summary
NOTE: An OpenVMS saveset or PCSI installation file is stored
on the Internet in a self-expanding compressed file.
The name of the compressed file will be kit_name-dcx_vaxexe
for OpenVMS VAX or kit_name-dcx_axpexe for OpenVMS Alpha.
Once the file is copied to your system, it can be expanded
by typing RUN compressed_file. The resultant file will
be the OpenVMS saveset or PCSI installation file which
can be used to install the ECO.
Copyright (c) Digital Equipment Corporation 1996, 1997. All rights reserved.
PRODUCT: OpenVMS VAX
COMPONENT: Security
CIA.EXE
LOGINOUT.EXE
SECURESHR.EXE
SECURESHRP.EXE
SECURITY_SERVER.EXE
SOURCE: Digital Equipment Corporation
ECO INFORMATION:
ECO Kit Name: VAXLOAD04_070
ECO Kits Superseded by This ECO Kit: VAXLOAD03_070
VAXLOAD02_070 (For OpenVMS
VAX V7.0 *ONLY*)
VAXLOAD01_070
VAXLOAD01_062
VAXLOAD01_061
VAXLOGI02_070
VAXLOGI01_070
ECO Kit Approximate Size: 720 Blocks
Kit Applies To: OpenVMS VAX V7.0
System/Cluster Reboot Necessary: No
Installation Rating: 3 - To be installed on all systems running
the listed versions of OpenVMS which
are experiencing the problems described.
NOTE: In order to receive the full fixes listed in this kit,
the following remedial kits also need to be installed:
None.
ECO KIT SUMMARY:
An ECO kit exists for various security components on OpenVMS VAX
V7.0.
Problems Addressed in the VAXLOAD04_070 ECO Kit:
o Incorrect user authorization failures occur during login attempts.
Problems Addressed in the VAXLOAD03_070 ECO Kit:
o The DISUSER flag gets set on a user account when no intrusions
are present.
Problems Addressed in the VAXLOAD02_070 ECO Kit:
o After installation of the VAXLOAD01_070 kit on V7.0 systems,
the system will hang during reboot.
Problems Addressed in the VAXLOAD01_070 ECO Kit:
o Proxy behavior is unpredictable. Sometimes they are
inoperative and at other times access is given to an
incorrect place.
o Users without WORLD privilege generate many "No WORLD priv"
audits when logging in.
o Records in the old intrusion database can not be deleted
because they are ill-formed (i.e., they contain control
characters, nulls, spaces, etc.).
o Some logins are not correctly audited.
Problems Addressed in the VAXLOGI02_070 ECO Kit:
o Audit information about network sessions from TCP/IP
connections does not contain remote host information.
o An expired password may become useable again even if the
DISFORCE_PWD_CHANGE flag is set and the password is not
changed.
Problems Addressed in the VAXLOGI01_070 ECO Kit:
o Problem with LGI callouts.
o Intrusion records and audits from DECnet/OSI network
connections have a username padded with characters.
o If a user who types meaningless characters, whitespace or
the "/" in response to the USERNAME prompt receives a CLI
error and then successfully logs in, the user will have an
intrusion record and an incorrect audit will be generated.
INSTALLATION NOTES:
The system does not need to be rebooted after this kit is installed.
However, if you have other nodes in your OpenVMS VMScluster, they
should be rebooted or you should install this kit on each system
in order to make use of the new image(s).
This patch can be found at any of these sites:
Colorado Site
Georgia Site
Files on this server are as follows:
vaxload04_070.README
vaxload04_070.CHKSUM
vaxload04_070.CVRLET_TXT
vaxload04_070.a-dcx_vaxexe
|
