All-
I've run into a bit of a problem tonight while installing some patches for
Digital Unix 3.2c on my AlphaStation 200 (it's the guinea pig before we put
any of these patches on a general purpose system). I've installed a number
of patches (mostly security related) and one of them has caused the Common
Desktop Environment to quit working for normal users (but one can still log
in as root).
Here's the relevant information:
OS: 3.2c
Patches installed tonight:
OSF 350X-001
OSF 350X-002
OSF 350-015
OSF 350-048
OSF 350-064
OSF 350-070
OSF 350-061
OSF 350-018
OSF 350X-004
OSF 350X-005
OSF 350-004
Error message: When a normal (non-root) user tries to log in via dtlogin
to the Common Desktop Environment, he/she receives the error message:
"Sorry. Maximum number of users already logged in."
That message is listed at the bottom of the man page for `dtlogin', but no
reason is given for what causes that message (I'm assuming it could only
be licensing issues or pseudo-terminal problems that would cause it).
Normal users can log in just fine via telnet/rlogin or if xdm is used instead
of the CDE. Also, root can log in via dtlogin, so it would seem to be
a permissions problem.
I have read the summary regarding `telnet-all ports full' sent to this list
by "William H. Magill" <magill_at_isc.upenn.edu>, but the problem isn't that
I'm out of pseudo-terminals (though I believe the problem *is* that I'm
having problems accessing them via dtlogin) because I can access the machine
via all means except the CDE. Also, using 'sysconfig -q pts' I see ntpys=255,
which has always been plenty for my personal workstation before.
Of the patches listed above, only
OSF 350X-001
OSF 350X-002
OSF 350-015
OSF 350-048
OSF 350-064
OSF 350-061
are security related, and I'm fairly sure that the problem was created by
patch OSF350-048, which corrects a security problem in the /dev directory
(I'm not certain how much I should divulge, though the patch information
can be had by anyone, as far as I know) by remaking some device files.
I have tried remaking the old (insecure) device files, but the problem
persists. /var/dt/Xerrors and $HOME/.dt/errorlog contain nothing enlightening,
and running /usr/dt/bin/dtlogin with `-debug' enabled only indicates that I
am in the `ERROR' state after leaving the `CHALLENGE' (passwd prompt) state.
I have stopped and restarted the Common Desktop Environment, and I've rebooted
several times.
I will be in touch with Digital's CSC in the morning, but I thought I would
tap the collective experience of the list to see if anyone else has run into
(and hopefully over) the problem I'm experiencing. As I said, I have tried
remaking the device files using the pre-patch version of `MAKEDEV', but that
does not correct the problem, so it appears that it may not be possible to
`back out' the patch.
I will summarize to the list.
Thanks,
Tim
--
Tim Mooney mooney_at_toons.cc.ndsu.NoDak.edu
Information Technology Services (701) 231-1076 (Voice)
Room 242-J6, IACC Bldg. (701) 231-8541 (FAX)
North Dakota State University, Fargo, ND 58105
Received on Wed Dec 13 1995 - 08:27:45 NZDT