New Messages

I liked the Starfire Administration article in the November 2000 Solaris Supplement with the exception of one thing (there always is that "one thing" isn't there?).

"The feature on the Starfire, which is the most important departure from the rest of the enterprise line, is the ability to change the capacity of a running system without interrupting any services. The practical applications for this feature are almost endless, and it is limited only by I/O configuration."

The same capabilities do exist within the DR software on the Enterprise line. This is described in several documents available via http://docs.sun.com/ but most notably in the Sun Enterprise 6x00, 5x00, 4x00, and 3x00 Systems Dynamic Reconfiguration User's Guide. This is available for Solaris 2.6 5/98 up to Solaris 2.8.

Maybe I'm nitpicking but I'd just wanted to clear things up.

Thanks,
Greg Spiegelberg <gspiegel@rocs.com>
UNIX Systems Engineer

Hello, I read the article you submitted in Sys Admin journal and want to use the scripts to harden my Solaris installations. I downloaded the scripts from the sysadminmag.com ftp server, but the November supplement download file only includes the text script files (teerl1.txt and teerl2.txt). The phase1_files and phase2_files data directories were not included in the tar file. I tried to locate them elsewhere in the sysadminmag.com download area but could not. Are the data directories supposed to be included in the download, and if not is anything you would consider important left out? If I need to create the data directories what should be in them?

Hi John,

I'm glad you found the article useful. I decided against including the data directories in the end, 1) because of their size, and 2) because I'm not sure if all the free software that I use permits others to redistribute it in binary form only. Hmm, maybe I should've mentioned that in the article... The directories contain a few programs and scripts, like the ssh and TCP Wrapper programs and libraries.

Here's an ls -l of the phase1_files:

 rich@mars1293# ls -l
 total 98
 drwxr-xr-x 2 rich staff 512 Oct 18 1999 .
 drwxr-xr-x 9 rich staff 512 Oct 24 21:11 ..
 -rw------- 1 rich staff 0 Sep 6 1999 .addressbook
 -rw------- 1 rich staff 2285 Sep 6 1999 .addressbook.lu
 -rw------- 1 rich staff 328 Aug 26 1999 .alias
 -rw------- 1 rich staff 58 Aug 26 1999 .exrc
 -rw------- 1 rich staff 24800 Oct 18 1999 .history
 -rw------- 1 rich staff 305 Apr 25 2000 .kshrc
 -rw------- 1 rich staff 12599 Oct 13 1999 .pinerc
 -rw------- 1 rich staff 0 Aug 26 1999 .pnewsexpert
 -rw------- 1 rich staff 110 Aug 26 1999 .profile
 -rw------- 1 rich staff 448 Oct 18 1999 INDEX
 -rw------- 1 rich staff 261 Oct 18 1999 README

And here's an ls -l of phase2_files:

 rich@mars1295# ls -l
 total 8566
 drwxr-xr-x 2 rich staff 512 Apr 17 2000 .
 drwxr-xr-x 9 rich staff 512 Oct 24 21:11 ..
 -rw------- 1 rich staff 1067 Apr 14 2000 INDEX
 -rw------- 1 rich staff 261 Oct 19 1999 README
 -rwxr-xr-x 1 rich staff 678680 Nov 18 1999 dig
 -rwxr-xr-x 1 rich staff 110640 Oct 19 1999 gunzip
 -rwxr-xr-x 1 rich staff 651744 Nov 18 1999 host
 -rw-r--r-- 1 rich staff 48 Nov 9 1999 hosts.allow
 -rw-r--r-- 1 rich staff 92 Nov 18 1999 hosts.deny
 -rw-r--r-- 1 rich staff 71760 Oct 19 1999 libwrap.a
 -rwxr-xr-x 1 rich staff 79164 Nov 18 1999 ndc
 -r--r--r-- 1 rich staff 379 Apr 17 2000 noshell
 -rwxr-xr-x 1 rich staff 699488 Nov 18 1999 nslookup
 -rw-r--r-- 1 rich staff 74 Nov 18 1999 resolv.conf
 -rwxr-xr-x 1 rich staff 41592 Oct 19 1999 scp
 -rws--x--x 1 rich staff 530880 Oct 19 1999 ssh
 -rwxr-xr-x 1 rich staff 295352 Oct 19 1999 ssh-agent
 -rwxr-xr-x 1 rich staff 278944 Oct 19 1999 ssh-keygen
 -rwx------ 1 rich staff 570496 Oct 19 1999 sshd
 -rw-r--r-- 1 rich staff 558 Nov 14 1999 sshd.conf
 -rwxr-xr-x 1 rich staff 43272 Oct 19 1999 tcpd
 -rwxr-xr-x 1 rich staff 39372 Oct 19 1999 tcpdchk
 -rwxr-xr-x 1 rich staff 50484 Oct 19 1999 tcpdmatch
 -rwx--s--x 1 rich staff 95140 Oct 19 1999 top
 -rwxr-xr-x 1 rich staff 34652 Oct 19 1999 try-from
 

Note the binaries are only usable on SPARC processors (the scripts can be used on SPARC or x86). The INDEX file in each directory contains the file info (owner, group, path, & permissions) for each file that gets copied.

Hope this helps, and thanks again for reading my article.

Rich Teer