SUMMARY 2: Jumbo Patch 3 on DU 4.0D Kills All Logins

From: Paul N. Youngblood <youngbp_at_uahis1.uah.edu>
Date: Thu, 29 Apr 1999 00:06:18 -0500 (CDT)

Hello Managers,

My second error-free install of Patch Kit 3 for Digital UNIX version
4.0D has resulted (yet again) in a broken system. After spending most
of the day on the phone with Compaq software support, I still have no
solution and feel very frustrated. However, I do appreciate the
efforts of the folks on the software support team and want to mention
that they have pledged to continue working with me to resolve this
problem.

If anyone can offer suggestions I will welcome them. Have any
of you experienced this problem? I do have an identical system on
which I've installed this jumbo patch, and it has had no problems at
all. Both systems are AlphaServer 2100 4/200 models with C2 Security
and DU v4.0D. The only significant difference of which I am aware is
that the system that works with the patch was taken to DU v4.0D by
doing a "full-blown" install, while the system that fails with the
patch was updated from v4.0B by doing an update install.

On the problem system, just as before, after the jumbo patch has been
installed (without error), EVERY interactive login is killed
immediately after a successful login to the system. This includes
the user root at the console. (See my original post at end of
this message.) My guess about the OSF-USR issue in lmf being the
problem was wrong (see SUMMARY #1 also below). At the suggestion of
Compaq, I deleted /etc/passwd.dir and /etc/passwd.pag, then ran the
command "/usr/sbin/mkpasswd passwd" to regenerate them. This
made no difference. All the license stuff looked okay to Compaq when
they had me issue various commands like "lmf list | grep OSF" and
"lmf reset". Their most recent suggestion is to run secsetup to move
from ENHANCED to BASE security level, apply the patch kit, then do
secsetup again to return to ENHANCED. I'll give this a try at some
convenient time. Perhaps this will work. I hope to let you know in
a future SUMMARY #3.

At the end of the day, I was forced to completely back out of the
patch kit. So now I'm back to the raw Digital UNIX v4.0D w/C2
Security and no patch kits installed, but at least users can
interactively login and not get kicked off.

Paul Youngblood
youngbp_at_uahis1.uah.edu

----------------------------------------------------------------
-------first summary posting follows----------------------------
----------------------------------------------------------------
SUMMARY 1: Jumbo Patch 3 on DU 4.0D Kills All Logins

     To: Tru64 UNIX Managers <tru64-unix-managers_at_ornl.gov>
     From: "Paul N. Youngblood" <youngbp_at_uahis1.uah.edu>
     Date: Thu, 08 Apr 1999 14:39:15 -0500 (CDT)
 

Hello Managers,

Thanks to the following for very helpful advice:

 Stephen LaBelle <labelles_at_mscd.edu>
 Ryan Ziegler <Zieglerr_at_novachem.com>
 "Lance A. Brown" <brown9_at_niehs.nih.gov>
 "North, Walter" <Wnorth_at_state.mt.us>
 Christophe DIARRA <diarra_at_ipno.in2p3.fr>

This "SUMMARY 1" is only a guess as to the solution.
I'll be posting a "SUMMARY 2" as soon as I get the chance
to make a second attempt at installing jumbo patch kit 3.
That server is heavily used so I have to wait for the right
time. My best GUESS so far is that the problem may be the
result of a licensing glitch with OSF-USR. But only after
I succeed in installing JP3 will I know for sure if this
caused the problem. Let me explain:

After removing the jumbo patch (see my original post below)
which allowed users to stay connected after logging on,
we discovered that only a very limited number (4 or 5) users
could logon to the system, and all subsequent users would get
some message about "maximum number of users already logged on".
Compaq tech support told us this was a known problem and also
how to fix it. The lmf command "lmf list full for OSF-USR"
indicated that we had two entries for OSF-USR. One had
"Number of units: 400" and the other "Number of units: 0".
The one with "0" was our CSLG and meant "unlimited". So to
fix things we deleted the OSF-USR with "400" and reloaded the
license database, which solved the max user problem:
  # lmf list full for OSF-USR
  # lmf delete OSF-USR {auth code}
  # lmf reset

More to come later in "SUMMARY 2".

Paul Youngblood


----------------------------------------------------------------
-------original posting follows---------------------------------
----------------------------------------------------------------
From: "Paul N. Youngblood" <youngbp_at_uahis1.uah.edu>
To: Tru64 UNIX Managers <tru64-unix-managers_at_ornl.gov>
Subject: Jumbo Patch 3 on DU 4.0D Kills All Logins

Hello Managers,

Has anyone seen this one: After upgrading to Tru64 4.0D, adding
jumbo patch kit 3 (the latest), and then booting to multi-user
mode, all successful interactive user logins were immediately
disconnected. And I mean ALL interactive users, no matter where
they came from. Even root at the console would always be
disconnected immediately after successfully logging in.

I'm running a 2100, firmware 5.3, enhanced security. I was
forced to back out of the patch completely (but I remained
on Tru64 v4.0D) in order to "get back to normal." Thanks in
advance for any help.
 
Paul Youngblood
University of Alabama in Huntsville
e-mail: youngbp_at_uahis1.uah.edu
Received on Thu Apr 29 1999 - 05:10:17 NZST

This archive was generated by hypermail 2.4.0 : Wed Nov 08 2023 - 11:53:39 NZDT