| :: SunFire4800 :: | ||||
| HOME | ||||
shashank@img4800:~/.vnc> cat xstartup #!/bin/sh xrdb $HOME/.Xresources xsetroot -solid grey xterm -geometry 80x24+10+10 -ls -title "$VNCDESKTOP Desktop" & exec gnome-session &
# /usr/bin/pkg-get -U --> This initializes the package database.
#/usr/bin/pkg-get -U -->Shows you all the packages that are available from the site.
(From site mirrors.xmission.com )
software localrev remoterev
DB_File [Not installed] 1.73
Tk800 [Not installed] 022
a2ps [Not installed] 4.13b
aalib [Not installed] 1.2
--SNIP--
#/usr/bin/pkg-get install a2ps -->Downloads and Installs the a2ps package instantly.
shashank@img4800:~/temp/packages# pkginfo | more
--CUT--
application SMCliconv libiconv
application SMCmake make
system SMEvplr SME platform links
system SMEvplu SME usr/platform links
--CUT--
shashank@img4800:~/temp/packages# pkginfo -l SMCmake
PKGINST: SMCmake
NAME: make
CATEGORY: application
ARCH: sparc
VERSION: 3.80
BASEDIR: /usr/local
VENDOR: Free Software Foundation
PSTAMP: Steve Christensen
INSTDATE: Jun 29 2004 16:20
EMAIL: steve@smc.vnet.net
STATUS: completely installed
FILES: 50 installed pathnames
4 shared pathnames
7 directories
1 executables
4661 blocks used (approx)
#gunzip coreutils-4.5.4-sol8-sparc-local.gz
#pkgadd -d coreutils-4.5.4-sol8-sparc-local
shashank@safire:~> telnet 192.168.0.1 Trying 192.168.0.1... Connected to 192.168.0.1. Escape character is '^]'. System Controller 'uicsc0': Type 0 for Platform Shell Type 1 for domain A console Type 2 for domain B console Type 3 for domain C console Type 4 for domain D console Input:
uicsc0:SC> console -d A
Connected to Domain A
root@img4800 # Press CNTL ]
telnet> send break
Domain Shell for Domain A - img4800
uicsc0:A> break
This will suspend Solaris in domain A.
Do you want to continue? [no] yes
{ok}
# fsck /dev/dsk/c0t0d0s0 --takes some time ---- # mount -o rw /dev/dsk/c0t0d0s0 /a # cd /a/etc
# vi shadow --- remove the root passwd--
# sync
# cd /
# umount /a
--- wait for some time --
# Press CNTL ]
telnet> send break
Domain Shell for Domain A - img4800
uicsc0:A> break
This will suspend Solaris in domain A.
Do you want to continue? [no] yes
{ok}
Missing Security Patches for Solaris8
108835-04 CDE 1.4: dtcm patch
109134-29 SunOS 5.8: WBEM patch
109147-28 SunOS 5.8: linker patch
109326-14 SunOS 5.8: libresolv.so.2 and in.named patch
109896-24 * SunOS 5.8: USB and Audio Framework patch
109951-01 SunOS 5.8: jserver buffer overflow
110416-03 * SunOS 5.8: ATOK12 patch
110820-10 * SunOS 5.8: /platform/SUNW,Sun-Fire-15000/kernel/drv/sparcv9/dman patch
111647-01 * BCP libmle buffer overflow
112390-08 * SunOS 5.8: Supplemental Encryption Kerberos V5: mech_krb5.so.1 patch
113652-03 * SunOS 5.8: Supplemental Kernel Update Patch for 108528-17
114146-01 * SunOS 5.8: Supplemental Kernel Update Patch for 108528-16
Missing Recommended Patches for Solaris8
108576-48 SunOS 5.8: Expert3D IFB Graphics Patch
108835-04 CDE 1.4: dtcm patch
109134-29 SunOS 5.8: WBEM patch
109147-28 SunOS 5.8: linker patch
109326-14 SunOS 5.8: libresolv.so.2 and in.named patch
109951-01 SunOS 5.8: jserver buffer overflow
111095-15 SAN 4.4: fctl/fp/fcp/usoc driver patch
111879-01 SunOS 5.8: Solaris Product Registry patch SUNWwsr
112279-03 SunOS 5.8: pkgrm failed during upgrade from S8 to S9 with DSR
113886-20 OpenGL 1.3: OpenGL Patch for Solaris (32-bit)
113887-20 OpenGL 1.3: OpenGL Patch for Solaris (64-bit)
114152-01 SunOS 5.8: Japanese SunOS 4.x Binary Compatibility(BCP) patch
114251-01 SunOS 5.8: pkgrm failed if upgrade from S8U7 to upper release with DSR
117350-02 SunOS 5.8: kernel patch
For more information see 'Solaris8.PatchReport'
| Service | What does it do | Do we Need it | Status |
| ftp | Provides FTP connections. | No | Disabled. |
| telnet | Provides Telnet Connections | No | Disabled. |
| name | Actually the tnamed server that supports the old Darpa Name Server Protocol. | No | Disabled. |
| shell | "Uses rshd, which has been replaced by ssh" | No | Disabled. |
| login | "uses rlogind, which has been replaced by ssh" | No | Disabled. |
| exec | "uses rexecd, which has been replaced by ssh" | No | Disabled. |
| comsat | "Sends the ""You have Mail"" message to the user when he is working on the console." | No | Disabled. |
| talk | Allows two users to talk to eact other when they are logged in to the server. | No | Disabled. |
| uucp | Supports very old User-to-user communication protocol that is now obsolete | No | Disabled. |
| tftp | Supports the trivial FTP protocol that is only used for network boot (I think) | No | Disabled. |
| finger | "Spits out all users information when ""finger @server_name"" is used from any remote machine." | No | Disabled. |
| systat | "Gives out the status of all processes (ps -ef) running on our server when ""telnet server_name systat"" is executed from a remote machine." | No | Disabled. |
| netstat | "Sends the output of ""netstat -f inet"" to a remote user when ""telnet server_name netstat"" is executed." | No | Disabled. |
| time | An obsolete time service. Don't confuse with (NTP) | No | Disabled. |
| echo | "Echo's back everything. ""telnet server_name echo"" can be used from the remote machine to test this." | No | Disabled. |
| discard | "Discards everything sent by a remote client (e.g. telnet server_name discard""" | No | Disabled. |
| daytime | Returns the time of day to a remote client (e.g. telnet server_name daytime | No | Disabled. |
| chargen | Continuously generates some characters to a remote client (e.g. telnet server_name chargen). This was used in old days for testing. | No | Disabled. |
| Service | What does it do | Do we Need it | Status |
| sadmind | sadmind is the daemon used by Solstice AdminSuite applications to perform distributed system administration operations. | No. We do not use the Solstice Admin Suite | Disabled. |
| rquotad | The rquotad daemon is started from /etc/inetd.conf and provides quota reports to NFS clients. If you're not providing NFS file services you don't need this service. If you're not providing NFS file services with file quotas you don't need this service. And even if you are providing NFS file services with file quotas it's not essential that you also provide this service | "No. We are not providing NFS service. Even if we do , I don't think we will be assigning quotas to any user since we have Tera Bytes of space." | Disabled. |
| rusersd | rpc.rusersd is a server that returns a list of users on the host. | No. We don't want provide any remote client with the list of users on our machine. | Disabled. |
| sprayd | A testing server that records the packets sent by spray. Its obsolete now. To confirm this read the man page for sprayd. | No | Disabled. |
| walld (rwalld) | "Allows a remote client to broadcast message to all logged users on our server. Very similar to wall, except that it is executed remotely." | No | Disabled. |
| rstatd | Gives uptime information to remote clients (e.g. rup server_name) | No | Disabled. |
| rexd | Sun RPC server for remote program execution. SSH can be used for this purpose. | No | Disabled. |
| ttdbserverd | Tool Talk Data Base Server. Run this service on CDE desktops or multi-user systems with X11 client stations | Yes | Enabled |
| ufsd | |||
| kcms_server | Kodak Color Management System | No | Disabled. |
| fs | """The TCP fs service is the X11 font server; it's a service configured in /etc/inetd.conf. If you're not providing fonts to X11 clients then you don't need this service. In any case, a site doesn't need anymore than a very few font servers. There's no need to have a font server on every single Solaris system. Even Solaris stations with fancy glass screens seldom require the font server -- I don't run this service on my work station and it works fine without it. By default the fonts that CDE requires are all on-line files -- try ""xset -q"" to see the fonts you're currently using""" | Need To research more | Enabled |
| cachefsd | """The cachefsd layers local file caching of NFS mounted file partitions -- it's sort of like the auotmounter with more smarts. It will definitely improve NFS performance especially on file sytems that are essentially read-mostly (like the root file system and /usr). However, if you're not using it, it's an opportunity that might be exploited.""" | Need To research more | Enabled |
| ktkt_warnd | Kerberos V5 Warning Message Daemon | "No. Since we do not use Kerberos, we do not need this." | Disabled. |
| printer | Printer protocol adapter. It accepts print jobs from other systems using the protocol developed for BSD Unix. | No. We do not have any printer that is attached to this machine. | Disabled. |
| gssd | gssd is the user mode daemon that operates between the kernel rpc and the Generic Security Service Application Program Interface (GSS-API) to generate and validate GSS-API security tokens. | Need To research more. Popular sites advise to disable it. | Disabled. |
| amiserv | "No Idea, what this is." | Need To research more. Popular sites advise to disable it. | Disabled. |
| ocfserv | ocfserv handles smart card operations on the system. | Need To research more | Enabled |
| dtspcd | CDE Subprocess Control Service. I don't know what this is | Need To research more. Popular sites advise to disable it. | Disabled. |
| rpc.cmsd | "Calendar manager daemon, which allows you to peek at calendars of other users" | No | Disabled. |
| dcs | "The domain configuration server (DCS) is a daemon process that runs on Sun servers that support remote dynamic reconfiguration (DR) clients. It is started by inetd(1M) when the first DR request is received from a client connecting to the network service sun-dr. After the DCS accepts a DR request, it uses the libcfgadm(3LIB) interface to execute the DR operation. After the operation is performed, the results are returned to the client." | I don't know the exact functionality of this. Hence I will leave this enabled. | Enabled |
| dr_daemon | "The dr_daemon is a Remote Procedure Call (RPC) program that provides the interface to the Sun Enterprise 10000 Dynamic Reconfiguration (DR) driver, dr(7D). | ||
| " | I don't know the exact functionality of this. Hence I will leave this enabled. | Enabled | |
| rpc.metad | "No Idea, what this is." | Need To research more | Enabled |
| rpc.metamhd | "No Idea, what this is." | Need To research more | Enabled |
| rashttp2 | "No Idea, what this is." | Need To research more | Enabled |
The file containing the password is "UserList.csv", which is located on
the SVP Local Disk (C:) under directory:
"Program Files\Apache Group\Apache\cgi-bin\Utility\CSV"
When you open the file with notepad, you'll see a line that looks like:
root,xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx,FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF,0
The password is the second field. It is encrypted and 32 characters
in length.
The string below is the encrypted password for the word "root":
b4b8daf4b8ea9d39568719e1e320076f
Change the password field to this value.
root,b4b8daf4b8ea9d39568719e1e320076f,FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF,0
Save the file and restart the Apache web server.
You will then be able to login as
user: root
password: root.
root@img4800:~# format
Searching for disks...done
AVAILABLE DISK SELECTIONS:
0. c0t0d0
/ssm@0,0/pci@18,700000/pci@1/SUNW,isptwo@4/sd@0,0
1. c1t0d0
/ssm@0,0/pci@1c,700000/pci@1/SUNW,isptwo@4/sd@0,0
2. c2t50060E80000000000000761A000000C0d0
/scsi_vhci/ssd@g50060e80000000000000761a000000c0
3. c2t50060E80000000000000761A00000000d0
/scsi_vhci/ssd@g50060e80000000000000761a00000000
4. c2t50060E80000000000000761A00000080d0
/scsi_vhci/ssd@g50060e80000000000000761a00000080
Specify disk (enter its number): 4
selecting c2t50060E80000000000000761A00000080d0
[disk formatted]
FORMAT MENU:
disk - select a disk
type - select (define) a disk type
partition - select (define) a partition table
current - describe the current disk
format - format and analyze the disk
repair - repair a defective sector
label - write label to the disk
analyze - surface analysis
defect - defect list management
backup - search for backup labels
verify - read and display labels
save - save new disk/partition definitions
inquiry - show vendor, product and revision
volname - set 8-character volume name
! - execute , then return
quit
format> type
AVAILABLE DRIVE TYPES:
0. Auto configure
1. Quantum ProDrive 80S
2. Quantum ProDrive 105S
3. CDC Wren IV 94171-344
4. SUN0104
5. SUN0207
6. SUN0327
7. SUN0340
8. SUN0424
9. SUN0535
10. SUN0669
11. SUN1.0G
12. SUN1.05
13. SUN1.3G
14. SUN2.1G
15. SUN2.9G
16. Zip 100
17. Zip 250
18. SUN36G
19. HITACHI-OPEN-V*4-SUN-2110
20. other
Specify disk type (enter its number)[19]: 0
c2t50060E80000000000000761A00000080d0: configured with capacity of 195.31GB
selecting c2t50060E80000000000000761A00000080d0
[disk formatted]
format> partition
PARTITION MENU:
0 - change `0' partition
1 - change `1' partition
2 - change `2' partition
3 - change `3' partition
4 - change `4' partition
5 - change `5' partition
6 - change `6' partition
7 - change `7' partition
select - select a predefined table
modify - modify a predefined partition table
name - name the current table
print - display the current table
label - write partition map and label to the disk
! - execute , then return
quit
partition> print
Current partition table (original):
Total disk cylinders available: 53332 + 2 (reserved cylinders)
Part Tag Flag Cylinders Size Blocks
0 root wm 0 - 34 131.25MB (35/0/0) 268800
1 swap wu 35 - 69 131.25MB (35/0/0) 268800
2 backup wu 0 - 53331 195.31GB (53332/0/0) 409589760
3 unassigned wm 0 0 (0/0/0) 0
4 unassigned wm 0 0 (0/0/0) 0
5 unassigned wm 0 0 (0/0/0) 0
6 usr wm 70 - 53331 195.05GB (53262/0/0) 409052160
7 unassigned wm 0 0 (0/0/0) 0
partition> modify
Select partitioning base:
0. Current partition table (original)
1. All Free Hog
Choose base (enter number) [0]? 1
Part Tag Flag Cylinders Size Blocks
0 root wm 0 0 (0/0/0) 0
1 swap wu 0 0 (0/0/0) 0
2 backup wu 0 - 53331 195.31GB (53332/0/0) 409589760
3 unassigned wm 0 0 (0/0/0) 0
4 unassigned wm 0 0 (0/0/0) 0
5 unassigned wm 0 0 (0/0/0) 0
6 usr wm 0 0 (0/0/0) 0
7 unassigned wm 0 0 (0/0/0) 0
Do you wish to continue creating a new partition
table based on above table[yes]?
Free Hog partition[6]? 0
Enter size of partition '1' [0b, 0c, 0.00mb, 0.00gb]: 0c
Enter size of partition '3' [0b, 0c, 0.00mb, 0.00gb]: 0c
Enter size of partition '4' [0b, 0c, 0.00mb, 0.00gb]: 0c
Enter size of partition '5' [0b, 0c, 0.00mb, 0.00gb]: 0c
Enter size of partition '6' [0b, 0c, 0.00mb, 0.00gb]: 0c
Enter size of partition '7' [0b, 0c, 0.00mb, 0.00gb]: 0c
Part Tag Flag Cylinders Size Blocks
0 root wm 0 - 53331 195.31GB (53332/0/0) 409589760
1 swap wu 0 0 (0/0/0) 0
2 backup wu 0 - 53331 195.31GB (53332/0/0) 409589760
3 unassigned wm 0 0 (0/0/0) 0
4 unassigned wm 0 0 (0/0/0) 0
5 unassigned wm 0 0 (0/0/0) 0
6 usr wm 0 0 (0/0/0) 0
7 unassigned wm 0 0 (0/0/0) 0
Okay to make this the current partition table[yes]?
Enter table name (remember quotes): "200GB - 80"
Ready to label disk, continue? y
partition> print
Current partition table (200GB - 80):
Total disk cylinders available: 53332 + 2 (reserved cylinders)
Part Tag Flag Cylinders Size Blocks
0 root wm 0 - 53331 195.31GB (53332/0/0) 409589760
1 swap wu 0 0 (0/0/0) 0
2 backup wu 0 - 53331 195.31GB (53332/0/0) 409589760
3 unassigned wm 0 0 (0/0/0) 0
4 unassigned wm 0 0 (0/0/0) 0
5 unassigned wm 0 0 (0/0/0) 0
6 usr wm 0 0 (0/0/0) 0
7 unassigned wm 0 0 (0/0/0) 0
partition> quit
format>quit
root@img4800:~# newfs /dev/rdsk/c2t50060E80000000000000761A00000080d0s0
newfs: /dev/rdsk/c2t50060E80000000000000761A00000080d0s0 last mounted as /export/home
newfs: construct a new file system /dev/rdsk/c2t50060E80000000000000761A00000080d0s0: (y/n)? y
/dev/rdsk/c2t50060E80000000000000761A00000080d0s0: 409589760 sectors in 53332 cylinders of 60 tracks, 128 sectors
199995.0MB in 3810 cyl groups (14 c/g, 52.50MB/g, 6400 i/g)
super-block backups (for fsck -F ufs -o b=#) at:
32, 107680, 215328, 322976, 430624, 538272, 645920, 753568, 861216, 968864,
1076512, 1184160, 1291808, 1399456, 1507104, 1614752, 1722400, 1830048,...
.....
root@img4800:~# newfs /dev/dsk/c2t50060E80000000000000761A00000080d0s0 /export/home