Manualshelf

HP-UX Security Containment Extensions B.11.31.03 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i Security Containment Software
123456789
HP 9000 computers
HP Integrity servers
207.1 MB of disk space for HP Integrity servers
125.5 MB of disk space for HP 9000 servers
HP-UX Security Containment Extensions B.11.31.03 has the following software requirements:
HP-UX 11i version 3
No additional patches are required to install HP-UX Security Containment Extensions.
The HP-UX Security Containment Extensions bundle contains all patches needed to run
HP-UX Security Containment Extensions, as follows:
— The HP-UX userdb cumulative patch: PHCO_36480
— The HP-UX passwd cumulative patch: PHCO_36481
— The HP-UX libpam_unix cumulative patch: PHCO_36760
— The HP-UX libpam_hpsec cumulative patch: PHCO_38601
— The HP-UX vm cumulative patch: PHKL_41362
— The HP-UX sysconf(2) cumulative patch: PHKL_41601
— The HP-UX Kernel Support for ONCplus patch:PHKL_41619
— The HP-UX ARPA Transport cumulative patch: PHNE_41714
— The HP-UX STREAMS cumulative patch: PHNE_41716
— The HP-UX Security Containment commands cumulative patch:PHCO_41821
— The HP-UX sec cumulative patch: PHKL_41826
— The HP-UX sec_file_rules cumulative patch: PHKL_41827
— The HP-UX sec_rule_framework cumulative patch: PHKL_41828
— The HP-UX sec_net_rules cumulative patch: PHKL_41829
— The HP-UX libsec cumulative patch: PHCO_41855
— The HP-UX RBAC cumulative patch: PHCO_41859
— The HP-UX STREAMS PTY cumulative patch: PHNE_41874
The HP-UX Security Containment Extensions B.11.31.03 bundle includes additional patches
that are not listed above. These additional patches are not required to run this product, but
they are required to install some of the patches that are required by this product.
HP-UX Security Containment Extensions B.11.31.03 is currently available in English only.
1.4 Known issues fixed
This release fixed the following issues:
The setfilexsec, setrules and vhardlinks commands sometimes return the
following error message in a compartment: Failed to raise necessary privileges.
In HP-UX Security Containment Extensions B.11.31.02 and earlier, when the compartment
has the PRIV_CMPTREAD and PRIV_CMPTWRITE privileges configured in its disallowed
privileges, the setfilexsec, setrules and vhardlinks commands fail to raise these
privileges for users with hpux.security.xsec.*.unrestricted authorization, including
the root user.
The setfilexsec, setrules, and vhardlinks commands have been fixed to ignore this
error for users with the hpux.security.xsec.*.unrestricted authorization (for
example, the root user) when PRIV_CMPTREAD and PRIV_CMPTWRITE are disallowed in
the compartment. These commands now work in such a compartment as if the user has the
hpux.security.xsec.*.restricted authorization.
1.4 Known issues fixed 7