Dear Managers,
I received responses from:
Peter Bivesand <PetBi_at_UNIT.LiU.SE>
John Wiebe <jwiebe_at_ptc.com>
Dave Parker <djp_at_unx.dec.com>
Peter Stern <peter_at_wiscpa.weizmann.ac.il>
QUERY
-----
1) Last night one of my users was unable to log into a
workstation on my DU LAN. I cleaned up her password problem but now
that workstation indicates that "Terminal is disabled - see System
Administrator" whenever ANYONE (including root) attempts to login from
the console (telnet logins, both root and ordinary users, are
unaffected so I can get in). Does anyone know how I clear this
condition? I assume there is a file somewhere that needs editing, but
I don't know what it is.
RESPONSE
--------
None were received. Digital Software Support recommended
copying the following files in /etc/auth/system (C2 security on):
.new..devassign --> devassign
.new..ttys --> ttys
This worked on one station that locked up (for different
reasons) after I sent the original query to this list, but not on the
station that I referred to in my query. The original station required
a reboot followed by a login to the account of the user who had the
password problem (this one took some head scratching!).
QUERY
-----
2) Yesterday someone from an IP address I do not recognize
attempted at least 7 times to reach one of my stations via FTP. I do
not allow anonymous FTP (this was reconfirmed by actual test), so a
user has to log into a regular account. The accounting logs seem to
indicate that the login failed (fortunately the load is currently very
light and I could check that there were no user commands issued in the
relevant time frame). During normal or peak loads this kind of
checking would be out of the question. Is there any way I can find
out what account an FTP user logins into or attempts to login to?
Unlike telnet and console logins, FTP doesn't seem to use auth.log or
lastlog. I use tcp wrappers, which indicated the FTP attempts, but
they don't provide the information I need.
RESPONSE
--------
OK, so I'm stupid. I had read man ftp but forgotten man ftpd,
as Peter Bivesand very gently pointed out. In /etc/inetd.conf, invoke
ftpd with the -l flag (and reset inetd).
QUERY
-----
3) I recently attempted to installed the DU port of Sun's Java
Development Kit (found on gatekeeper.dec.com). To run, it requires
the shared library libsys5.so, which I don't have. I assume this is
because I haven't installed a relevant software subset, but I have no
clue as which subset it is. Does anyone know?
RESPONSE
--------
Several respondents told me that OSFSVID2350 is the correct
subset.
Incidentally, I inadvertently gave the wrong location for the
DU port of Java. It can be found (as per a previous posting to this
list) at
ftp://ftp.digital.com/pub/DEC/jdk-v101-du.tar.gz . Sorry for
the mixup!
Thanks to all!
Larry
============================================================================
Larry Griffith Dept. of Computer & Info Science
larry_at_garfield.wsc.mass.edu Westfield State College
(413) 572-5294 Westfield, MA 01086 USA
PGP public key available at:
http://garfield.wsc.mass.edu/dcis/griffith.html
============================================================================
Received on Wed Jun 19 1996 - 18:59:26 NZST