Visitors: 15543375
ROOTVG.net Portal
OpenSSH release Notes (since 6.0)
User Rating: / 0
AIX - Tools for AIX
Written by Michael Felt   

A lot has changed since OpenSSH-6.0 was released. Why worry about OpenSSH-6.0? Because that is the basis for the core functions and options provided by the current AIX openssh.base. As I understand the IBM packaging - the current, better would be to say latest - is based on OpenSSH-6.0 and includes patches to 'repair' CVE issues.

FYI: The current OpenSSH release is OpenSSH-7.5. (I am still using OpenSSH-7.4: a) lazy; b) turns out there is a rather specific requirement for OpenSSH-7.5)

OpenSSH is released in two versions: regular (for OpenBSD) and "portable" (for the rest of us). The portable release is recognized by adding p1 (sometimes p2) after the release name, e.g., OpenSSH-6.0p1 or OpenSSH-7.5p1.

The table shows name, release date and a "few word summary". The release name links to the release document.

Last Updated ( Wednesday, 03 May 2017 )
Read more...
 
SUDO for AIX - and NOEXEC
User Rating: / 1
AIX - Tools for AIX
Written by Michael Felt   

I am not a big user of sudo, but I frequently visit customers who are. One issue came up re: why they also installed the program "less" rather than use the AIX default "more".

The issue here is the escape in "more" to open a file with /usr/bin/vi - and then do a shell escape as an elevated user. TA-ta-TA-dah become root with an open shell.

So, my question was - why use "less"? How does this help with NOEXEC?

Last Updated ( Tuesday, 21 March 2017 )
Read more...
 
Can RPM and INSTALLP work side-by-side?
User Rating: / 1
AIX - AIX: Security
Written by Michael Felt   

INSTALLP and RPM - can they co-exist?

Historically - common practice would seem indicate the answer is yes. However, I would say history has proven they cannot for short or long term.

Found my examples!

Visiting a customer this week - I rediscovered examples of why I starting "rolling my own", i.e., downloading, configuring and installing OSS independently.

At this customer the command rpm -qa returns a list of about 20 rpm packages installed. Most of these have never been updated since being installed between 2010 and 2012.

Note: RPM packages are not part of the standard TL-SP updates - the exception being the occaisional update to the fileset rpm.rte

Last Updated ( Monday, 06 February 2017 )
Read more...
 
<< Start < Prev 1 2 3 4 5 Next > End >>

Results 7 - 9 of 14

Legacy PDFs

AIX 5.2
AIX 5.1