[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Change Control
Changes that are to be done next week:
1. Change tcpwrappers configuration
a. physxcd
/etc/hosts.allow
current:
ALL: pscm1.richmond.edu, mfv2.richmond.edu,
gpg2.richmond.edu, 141.166.237.99, 127.0.0.1, localhost,
physxcd.richmond.edu, 141.166.233.70, 141.166.226.90, grv1.richmond.edu,
grv2.richmond.edu, jlabs1.jlabs.org, gpg1.richmond.edu, mfv1.richmond.edu,
psc1.richmond.edu, 141.166.222.217, *.jlab.org, 129.57.
to be:
ALL: 127.0.0.1, pscm1.richmond.edu,
mfv2.richmond.edu, gpg2.richmond.edu, 141.166.237.99, physxcd.richmond.edu,
141.166.233.70, 141.166.226.90, grv1.richmond.edu, grv2.richmond.edu,
gpg1.richmond.edu, mfv1.richmond.edu, psc1.richmond.edu, 141.166.222.217
sshd: jlabs1.jlabs.org, *.jlab.org, 129.57.
# Sasko's laptop
sshd: 141.166.182.90
/etc/hosts.deny
current:
ALL: ALL
sshd: ALL
sshd2: ALL
portmap: ALL
to be:
ALL: ALL
b. gpg1
/ec/hosts.allow
current:
ALL: *.cs.unc.edu, rdu26-45-042.nc.rr.com,
beta.richmond.edu, pscm1.richmond.edu, mfv2.richmond.edu, gpg2.richmond.edu,
141.166.237.99, 127.0.0.1, localhost, physxcd.richmond.edu, 141.166.233.70,
141.166.226.90, grv1.richmond.edu, grv2.richmond.edu, jlabs1.jlabs.org,
gpg1.richmond.edu, mfv1.richmond.edu, psc1.richmond.edu, 141.166.222.217,
*.jlab.org, 129.57.
to be:
ALL: 127.0.0.1, beta.richmond.edu,
pscm1.richmond.edu, mfv2.richmond.edu, gpg2.richmond.edu, 141.166.237.99,
physxcd.richmond.edu, 141.166.233.70, 141.166.226.90, grv1.richmond.edu,
grv2.richmond.edu, gpg1.richmond.edu, mfv1.richmond.edu, psc1.richmond.edu,
141.166.222.217
sshd: *.cs.unc.edu, rdu26-45-042.nc.rr.com,
jlabs1.jlabs.org, *.jlab.org, 129.57.
# Sasko's laptop
sshd: 141.166.182.90
/etc/hosts.deny
Same as /etc/hosts.deny on physxcd
2. Enable NTP daemons on physxcd, gpg1, and pscm1 so they can synchronize
their time with richmond.edu time servers.
3. Users inconsistency:
a. There are users's directories on physxcd:/home i.e. gpg1:/home
for users that do not exist in the password database.
Please verify the validity of these directories (users):
ahearin, aweaver, ecollins, jmcclell, jrobbins, mfetea
b. User aiqbal exist on gpg1, but not on physxcd. Is it the why that
should be?
c. User vineyard has different uid on physxcd and gpg1. This could
affect access permissions.
4. Machine gpg1 have disabled ssh to root account. But this is not the case
with physxcd. Was it left on purpose?
5. This are the updates that need to be applied. There are mostly security
patches that is recommended to be applied.
physxcd:
bind-utils-9.2.1-1.7x.2.i386.rpm
libpng-devel-1.0.14-0.7x.3.i386.rpm
cpp-2.96-112.i386.rpm
libstdc++-2.96-112.i386.rpm
ethereal-0.9.6-0.73.0.i386.rpm
libstdc++-devel-2.96-112.i386.rpm
ethereal-gnome-0.9.6-0.73.0.i386.rpm
losetup-2.11n-12.7.3.i386.rpm
gaim-0.59.1-0.7.3.i386.rpm
mm-1.1.3-8.i386.rpm
gcc-2.96-112.i386.rpm
mm-devel-1.1.3-8.i386.rpm
gcc-c++-2.96-112.i386.rpm
mount-2.11n-12.7.3.i386.rpm
gcc-g77-2.96-112.i386.rpm
nscd-2.2.5-39.i386.rpm
gcc-objc-2.96-112.i386.rpm
nscd-2.2.5-40.i386.rpm
gdb-5.2-2.i386.rpm
nss_ldap-189-4.i386.rpm
glibc-2.2.5-39.i386.rpm
openssh-3.1p1-6.i386.rpm
glibc-2.2.5-40.i386.rpm
openssh-askpass-3.1p1-6.i386.rpm
glibc-common-2.2.5-39.i386.rpm
openssh-askpass-gnome-3.1p1-6.i386.rpm
glibc-common-2.2.5-40.i386.rpm
openssh-clients-3.1p1-6.i386.rpm
glibc-devel-2.2.5-39.i386.rpm
openssh-server-3.1p1-6.i386.rpm
glibc-devel-2.2.5-40.i386.rpm
openssl095a-0.9.5a-18.i386.rpm
glibc-kernheaders-2.4-7.16.i386.rpm
openssl096-0.9.6-13.i386.rpm
kernel-2.4.18-10.i386.rpm
openssl-0.9.6b-28.i386.rpm
kernel-2.4.18-10.i586.rpm
openssl-devel-0.9.6b-28.i386.rpm
kernel-doc-2.4.18-10.i386.rpm
psmisc-20.2-3.73.i386.rpm
kernel-source-2.4.18-10.i386.rpm
scrollkeeper-0.3.4-5.i386.rpm
krb5-devel-1.2.4-2.i386.rpm
tar-1.13.25-4.7.1.i386.rpm
krb5-libs-1.2.4-2.i386.rpm
ucd-snmp-4.2.5-7.73.0.i386.rpm
libpng-1.0.14-0.7x.3.i386.rpm
util-linux-2.11n-12.7.3.i386.rpm
gpg1 (additionally to the above list):
openssl-perl-0.9.6b-28.i386.rpm