Patch Name: PHNE_23368 Patch Description: s700_800 10.26 inetd(1m) cumulative patch Creation Date: 01/03/15 Post Date: 01/03/30 Hardware Platforms - OS Releases: s700: 10.26 s800: 10.26 Products: N/A Filesets: InternetSrvcs.INETSVCS-INETD InternetSrvcs.INET-ENG-A-MAN Automatic Reboot?: Yes Status: General Release Critical: No Path Name: /hp-ux_patches/s700_800/10.X/PHNE_23368 Symptoms: PHNE_23368: 1. Porting of 10.20 Patch PHNE_20747 2. Stop, restart and reconfiguration of inetd cannot be done from a non-root user 3. The man pages are not upto date (PHNE_20747:) * JAGad03290 / SR8606134150: inetd is not working properly. * JAGaa27205 / SR5003424598: "swait" option was not documented in "inetd.conf.4" manpage. * JAGaa27237 / SR5003426296: When a user changes the field "wait" to "swait" or vice-versa in the configuration file "/etc/inetd.conf", and runs "inetd -c" to reflect the above change, the same is not getting reflected. * JAGaa27203 / SR5003426304: inetd was logging incorrect source address for the services in "swait" state. (PHNE_16832:) * rcp client error rcmd: connect: Connection timeout (PHNE_15986:) * Bad programming can cause inetd to loop out of control. * inetd hangs and blocks on incoming connections. * Issues with auditing and inetd processes after boot. (PHNE_14087:) * Defect may allow networking to be disabled. Defect Description: PHNE_23368: 1. Porting of 10.20 Patch PHNE_20747 2. Running inetd from command line with options -c, -k ,-l can not be done from non-root user 3. The man pages are not upto date Resolution: 1. Ported 10.20 patch PHNE_20747 2. inetd has been modified, such that the user with "NSO" authorization can execute inetd from command line. 3. The man pages for inetd and inetd.conf have been updated. (PHNE_20747:) * JAGad03290 / SR8606134150: inetd is not working when a service in "swait" state is not working properly and there is only one service spawned by inetd before this service. Resolution: inetd code has been modified to make inetd work properly. * JAGaa27205 / SR5003424598: "swait" option was not documented in "inetd.conf.4" manpage. Resolution: "inetd.conf.4" manpage has been updated to contain this information. * JAGaa27237 / SR5003426296: With the command "inetd -c", inetd was not reconfiguring its database for the field change from "wait" to "swait" and vice versa in the file "/etc/inetd.conf". Resolution: During the reconfiguration of the service table for inetd, now necessary modification has been done to reflect the change. * JAGaa27203 / SR5003426304: For the services in "swait" state, inetd logs the source address of the previous service. If this is the first service spawned by inetd, it logs (0.0.0.0) instead. This is because inetd was logging the source address information without accepting the connection. Resolution: inetd is now logging a different message for the services in "swait" state. (PHNE_16832:) * inetd was not able to listen to more requests during heavy traffic. (PHNE_15986:) * Bad programming can cause inetd to loop out of control. * inetd hangs and blocks on incoming connections. * Issues with auditing and inetd processes after boot. (PHNE_14087:) * Improperly coded routine causes unexpected result in some circumstances. SR: 8606134150 5003424598 5003426296 5003426304 1653278408 5003426312 5003415232 5003414375 5003353433 Patch Files: /usr/sbin/inetd /usr/share/man/man1m.Z/inetd.1m /usr/share/man/man4.Z/inetd.conf.4 /etc/auth/system/files.fcdb/15.net/PHNE_23368.fcdb what(1) Output: /usr/sbin/inetd: 2001/03/09 Hewlett-Packard HP-UX 10.26 TOS [ ic5fp - DAV17 ] 01/02/22 services/INETSVCS/inetd/config.c, hpux, hpu x_10.26, ic5fp Revision 1.4 PATCH_10.26 (PHN E_23368) Copyright (c) 1983 Regents of the University of Cali fornia. 01/02/22 services/INETSVCS/inetd/inetd.c, hpux, hpux _10.26, ic5fp Revision 1.5 PATCH_10.26 (PHNE _23368) 01/02/22 services/INETSVCS/inetd/sec_inetd.c, hpux, hpux_10.26, ic5fp Revision 1.5 PATCH_10.26 ( PHNE_23368) 01/02/22 services/INETSVCS/inetd/internal.c, hpux, h pux_10.26, ic5fp Revision 1.3 PATCH_10.26 (P HNE_23368) 01/02/22 services/INETSVCS/inetd/signal.c, hpux, hpu x_10.26, ic5fp Revision 1.3 PATCH_10.26 (PHN E_23368) UNMODIFIED Revision 1.12.212.2 Fri Mar 9 16:47:35 GMT 2001 /usr/share/man/man1m.Z/inetd.1m: None /usr/share/man/man4.Z/inetd.conf.4: None /etc/auth/system/files.fcdb/15.net/PHNE_23368.fcdb: 01/02/22 etc/auth/system/files.fcdb/15.net/PHNE_2336 8.fcdb, hpux, hpux_10.26, ic5fp Revision 1.1 PATCH_10.26 (PHNE_23368) cksum(1) Output: 578221442 57344 /usr/sbin/inetd 2557005601 9016 /usr/share/man/man1m.Z/inetd.1m 3278499786 5009 /usr/share/man/man4.Z/inetd.conf.4 2686886574 859 /etc/auth/system/files.fcdb/15.net/ PHNE_23368.fcdb Patch Conflicts: None Patch Dependencies: None Hardware Dependencies: None Other Dependencies: None Supersedes: None Equivalent Patches: PHNE_20747: s700: 10.20 s800: 10.20 Patch Package Size: 130 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHNE_23368 5a. For a standalone system, run swinstall to install the patch: swinstall -x autoreboot=true -x match_target=true \ -s /tmp/PHNE_23368.depot By default swinstall will archive the original software in /var/adm/sw/patch/PHNE_23368. If you do not wish to retain a copy of the original software, you can create an empty file named /var/adm/sw/patch/PATCH_NOSAVE. WARNING: If this file exists when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. It is recommended that you move the PHNE_23368.text file to /var/adm/sw/patch for future reference. To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHNE_23368.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: None