HP-UX 11i Version 2 Release Notes (October 2003)

ManualsBrandsHP ManualsSoftwareHP-UX 11i v2 Foundation OE LTU

247

248

249

250

251

252

253

254

255

256

Other Functionality

Common Desktop Environment (CDE)

Chapter 11

251

• Itanium-based CDE shared libraries are not available to customers who want to port

their applications to Itanium. This means that applications that directly or

indirectly link against libDtSvc, libDtTerm, libDtWidget, libtt, libcsa,

libDtPrint, libDtHelp, and libDtMrm will not be able to compile and link on

Itanium-based platforms.

• Escape sequences used for reporting the window title and the window icon's title

features are disabled in the libDtTerm widget. So, dtterm and any application

which uses libDtTerm will no longer be able to use this reporting feature.

• Itanium-based Audio shared libraries libAlib, libAlibkt, and libAt are not

available.

• Itanium-based Image libraries libil and libilefs are not available.

• The supported method to achieve these functionalities on HP-UX 11i v2 is to compile

the application on a PA system and then use the Aries PA emulation facilities on

HP-UX 11i v2.

• The Digital Video libraries (libyuv2.* and libvlVideo.*) and Digital Video server

(vlServer) are not available. (See also the following “Obsolescence” section.)

• On configuring a user machine with Bastille's maximum security options, the

following impact can be seen in the CDE Desktop environment:

— Remote hosts will not be able to execute any CDE actions on the Bastille

configured machine.

— cmsd service will not be available.

— Exchange of messages between CDE applications will be forbidden.

• The following describes the system services that CDE uses. Some of these may be

disabled by users or by the Bastille lockdown utility:

1. If the user wishes to use the features described herein, they should not use the

default high-security settings but either select a security level that does not

lockdown the items CDE requires (as described in Table 11-1), create a custom

level that does not include those lockdown steps, or take the actions described in

Table 11-1. See the Bastille information in Managing Systems and Workgroups,

part number 5187-2216, available at http://www.docs.hp.com.

Table 11-1 Impacts on CDE System Services

Service Impact if Disabled To Re-enable Service

dtspcd

The user will not be able

to execute CDE remote

actions from a

non-Bastille machine to a

Bastille enabled machine.

1. a.Uncomment the entry for /usr/dt/bin/dtspcd in

/etc/inetd.conf

b.Reread the newly modified /etc/inetd.conf by

executing /usr/sbin/inetd -c.

2. Change the value of

SecureInetd.deactivate_dttools to N in the file

/etc/opt/sec_mgmt/bastille/config.