Patch Management User Guide for HP-UX 11.x Systems (5900-3011, April 2013)
Table Of Contents
- Patch Management User Guide for HP-UX 11.x Systems
- Contents
- 1 HP-UX patches and patch management
- 2 Quick start guide for patching HP-UX systems
- 3 HP-UX patch overview
- 4 Patch management overview
- Patch management life cycle
- HP service contracts
- Patch management and software change management strategies
- Establishing a software change management strategy
- Recommendations for software change management
- Consideration of HP patch rating
- Patch management and software depots
- Proactive patching strategy
- Reactive patching strategy
- Advanced topic: security patching strategy
- Advanced topic: scanning for security patches
- Testing the patches to be installed
- 5 What are standard HP-UX patch bundles?
- 6 Using the HP Support Center
- Obtaining an HPSC user account
- Useful pages on the HPSC
- Find individual patches
- Advanced topic: checking for special installation instructions
- Advanced topic: checking for all patch dependencies
- Standard patch bundles
- Custom patch bundles - run a patch assessment
- Support information digests
- Ask your peers in the forums
- Search knowledge base
- 7 Using software depots for patch management
- Common software distributor commands for patching
- Depot types
- Using depots
- Viewing depots
- Creating and adding to a directory depot
- Registering and unregistering directory depots
- Verifying directory depots
- Removing software from a directory depot
- Removing a directory depot
- Installing patches from a depot
- Custom patch bundles
- 8 Using HP-UX Software Assistant for patch management
- 9 Using Dynamic Root Disk for patch management
- 10 The Patch Assessment Tool
- 11 Support and other resources
- A Patch usage models
- Glossary
- Index
HP-UX Software
Assistant
A tool that consolidates and simplifies patch management and security bulletin management on
HP-UX systems. The SWA tool is the HP-recommended utility to use to maintain currency with
HP-published security bulletins and recommended patch levels for HP-UX 11i software. SWA has
been released for HP-UX 11i systems. SWA can perform a number of checks including published
security issues, installed patches with warnings, and missing patches with critical fixes. Once an
analysis has been performed, you can use SWA to download any recommended patches or
patch bundles and create a depot ready for installation.
Ignite-UX An application that facilitates installing and configuring HP-UX systems. Ignite-UX provides a
toolset used on HP-UX for doing cold installs and system recovery. It uses SD for doing
package-based installs, and can also use golden images for supplying software.
installed product A product that has been installed on a host so that its files can be used by end users. Contrasts
with a product residing in a depot on a host's file system. Sometimes referred to as an available
product.
Installed Products
Database
Describes the products that are installed on any given host (or within an alternate root). Installed
product information is created by the swinstall command, and managed by the swmodify
command. The contents of an IPD reside in a directory structure with a single common root.
IPD See Installed Products Database.
IUX See Ignite-UX.
object The pieces of software that SD-UX packages, distributes, installs, and manages. There are three
classes of objects: software (installed on target roots or available in depots), containers (depot,
roots, alternate roots), and jobs.
patch Software designed to update specific bundles, products, subproducts, filesets, or files on a system.
By definition, patch software is packaged with the is_patch attribute set to true.
patch bundle Is a collection of patches that have been grouped into a single software object (bundle) to meet
a specific need.
See also bundle.
patch category Patches have categories, or category tags, associated with them to simplify the process of
determining the general purpose of a specific patch.
patch rollback The process of removing a patch from the system and restoring the system to the prepatched state.
patch warning Is a notification that a patch causes or exposes adverse behavior. Patch warnings provide specific
information about this incorrect behavior, as well as other important details and recommendations.
prerequisite A dependency in which one fileset requires another fileset to be installed or configured before
the first fileset can be installed or configured. For example, fileset A might require that fileset B
is installed before fileset A can be installed. Therefore, fileset B is a prerequisite for fileset A.
See also dependency, corequisite.
product directory The root directory of a product object, in which most of its files are contained. You can change
(relocate) the default product directory when you install a locatable product.
rollback See patch rollback.
SD See Software Distributor.
SD-UX HP-UX software management commands. These commands are referred to as SD-UX (Software
Distributor-HP-UX).
See also Software Distributor.
serial depot See tape depot.
software depot An SD format structure that contains one or more software products that can be installed on other
systems or copied to other depots.
Software
Distributor
The native toolset used on HP-UX for managing software packages.
software object The objects packaged, distributed, installed, or managed by SD. A software object can be a file,
fileset, bundle, or product. Most operations are performed on filesets.
subproduct A subset or partitioning of a software product. A subproduct is an optional component of a
product and contains one or more filesets.
superseded The state in which a patch is applied but is then replaced by a superseding patch.
110 Glossary