Patch Name: PHSS_17210 Patch Description: s700_800 10.X OpenMail B.05.10 Bulletin Board patch Creation Date: 99/01/14 Post Date: 99/01/18 Hardware Platforms - OS Releases: s700: 10.01 10.10 10.20 10.30 s800: 10.01 10.10 10.20 10.30 Products: OpenMail B.05.10 Filesets: OpenMail.OM-CORE,A.B8.03 OpenMail.OM-RC,A.B7.00 OpenMail.OM-LC,A.B7.00 OpenMail.OM-BB,A.B7.00 Automatic Reboot?: No Status: Special Superseded Critical: No Path Name: /hp-ux_patches/s700_800/10.X/PHSS_17210 Symptoms: PHSS_17210: D500411207: The BB ACL changes introduced with GR5/PP4 fixed several bugs in the area of BB ACLs. One of these fixes was to make the code interpret the 'update' capability to mean the same as a combintaion of the 'modify' and 'delete' capabilities. Prior to this, in order to delete a BB item an explicit 'delete' capability was required in order to delete a BB item. After GR5/PP4 either 'delete' OR 'update' capability was required to delete a BB item. This change means that the existing default BB capabilities: OpenMail Administrators config update read see delete modify Local Users none Default update read see delete modify give an ordinary user the ability to delete BB items. The UAL_BB_ACL_DEFAULT general.cfg option can be used to set the Default setting, but the default Default setting should not be one that allows a normal user to remove BB items. 1653287391: OpenMail administrators who read Bulletin Board items using the Outlook client become the creator of those items. D500410910: It is possible to alter the contents of composite items in bulletin boards which have arrived in the bulletin board as a result of synchronisation. Thus, it is possible to alter these items on more than one system at the same time. This could result in unexpected data loss. For example, on system A, a user might add a new document D1 to folder F, on system B, a user might delete a document D2 from folder F. Afer synchronisation, system A will potentially have folder F without either document D1 or D2 on it. Confusingly, on system B, documents D1 and D2 may well be present. One way to ensure that composite item changes are consistent is to restrict these changes to being made to the master item only. 1653265181 BB synchronisation of attachments isn't happening when attachments in a message are added/modified/deleted. 1653268359 Bulletin board subjects can be changed at slave but it does not synchronise. 1653283648 It is desirable to be able to disable the modification of items on a BB. 1653285999 Designates have incorrect access capabilties for items in the Bulletin Board Area. D500413724 non-admin users cannot attach items to bulletin boards which have been created with no specific ACLs. D500413732 If a folder is created by a non-admin user inside the bulletin board area, it cannot be deleted until the user logs in again. Defect Description: PHSS_17210: D500411207: The Default BB ACL setting should have been adjusted when the 'update' equals 'delete' plus 'modify' bug was fixed. 1653287391: This is due to a combination of 2 bugs: 1.) When an unread message is read using Outlook (97 or 98) the client sometimes rewrites some message level props and also the (text) content. This modification causes the reader to become the creator (as per normal OpenMail behaviour). This modification seems to always take place if the user has modify access capabilities for the item. 2.) If the Outlook user is an administrator then that user is given 'modify' access (edit all in OL terms) to all BB items - this is a bug, and the access should match what is allowed for an OM administrator using any other client - he should only have 'modify' access to BB items he either created or attached (edit own in OL terms). The fix for 1. requires a MAPI SP chnage, and the fix for 2. requires a server change. Fixing 2. with cure the problem with the following exception: - if the OL admin user attaches the item to the BB, but is not the creator then he will have modify access caps and when (if) he reads the item then he will become the creator. D500410910: Composite items such as folders or messages are treated as atomic items by the bulletin synchronisation process. This distinction may not be understood by users who may alter items on more than one server at the same time if possible. Thus, changes should be restricted to one location. 1653265181 While recording the changes in BB Changelog, it was marked as BB_LOG_ADD_ITEM always which resulted in the importing server rejecting the item. Similarly, while deleting or modifying attachments, changes were recorded as DELETE_ITEM or ADD_ITEM in the changelog and hense the message itself would get deleted when deleting an attachment from a message and modify always being logged as ADD_ITEM which propagated as a new add. 1653268359 bbs_SyncItem() checks if the CBBAgreementNum is equal to pSync->RefNum to avoid exporting items that are imported. ( looping ) This resulted in modified subjects at slave not getting exported to the master. 1653283648 A tweakable option: UAL_MOD_BB_ITEMS has been created. 1653285999 The BB ACL/permissions changes introduced with 5.20 changes (GR5/PP4) do not take account of any BB item access resistrictions imposed upon designate users. D500413724 The calculation of the default ACL to use when no actual ACL exists was incorrect. D500413732 The access capabilities of the new folder are inheritted from the parent bulletin board and if this does not allow delete access, the folder won't either. SR: D500411207 1653287391 D500410910 1653265181 1653268359 1653283648 1653285999 D500413724 D500413732 Patch Files: /opt/openmail/B.05.10.00/bin/ual.local /opt/openmail/B.05.10.00/bin/ual.netware /opt/openmail/B.05.10.00/bin/ual.remote /opt/openmail/B.05.10.00/bin/omlistbbs /opt/openmail/B.05.10.00/bin/bb.server /opt/openmail/B.05.10.00/lib/libom.sl /opt/openmail/B.05.10.00/bin/omaddbb /opt/openmail/B.05.10.00/bin/omaddbbsa /opt/openmail/B.05.10.00/bin/omdelbb /opt/openmail/B.05.10.00/bin/omdelbbsa /opt/openmail/B.05.10.00/bin/omlistbbsa /opt/openmail/B.05.10.00/bin/ommaintbb /opt/openmail/B.05.10.00/bin/ommodbb /opt/openmail/B.05.10.00/bin/ommodbbsa /opt/openmail/B.05.10.00/bin/omshowbb /opt/openmail/patch/ompatch /opt/openmail/patch/PHSS_17210/omunpatch /opt/openmail/patch/PHSS_17210/ompatch.idx what(1) Output: /opt/openmail/B.05.10.00/bin/ual.local: $Header: ualc_main.c,v 6.21.2.4 98/07/27 15:20:35 ja ckie Exp $ Sccs_Id = %W% ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ $Header: mll_access.c,v 6.5 97/02/17 15:14:41 kevins Exp $ $Header: mll_highl.c,v 6.1 96/03/25 05:49:38 gren Ex p $ Sccs_Id = %W% $Header: cl_format.c,v 6.2.1.1 98/10/05 14:44:15 phi lh Exp $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/ual.netware: $Header: ualn_main.c,v 6.17.1.4 98/07/28 14:16:53 ja ckie Exp $ Sccs_Id = %W% ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ $Header: mll_access.c,v 6.5 97/02/17 15:14:41 kevins Exp $ $Header: mll_highl.c,v 6.1 96/03/25 05:49:38 gren Ex p $ Sccs_Id = %W% $Header: cl_format.c,v 6.2.1.1 98/10/05 14:44:15 phi lh Exp $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/ual.remote: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: ualr_main.c,v 6.19.1.6 98/07/27 15:20:46 ja ckie Exp $ $Header: mll_access.c,v 6.5 97/02/17 15:14:41 kevins Exp $ $Header: mll_highl.c,v 6.1 96/03/25 05:49:38 gren Ex p $ Sccs_Id = %W% $Header: cl_format.c,v 6.2.1.1 98/10/05 14:44:15 phi lh Exp $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omlistbbs: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/bb.server: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: bbs_addbb.c,v 6.7.1.2 98/03/13 12:08:42 anu pak Exp $ Sccs_Id = %W% $Header: bbs_ctacc.c,v 6.6 98/06/03 16:23:07 markd E xp $ Sccs_Id = %W% $Header: bbs_desc.c,v 6.5 98/04/09 15:09:30 krishnah Exp $ Sccs_Id = %W% /opt/openmail/B.05.10.00/lib/libom.sl: $Header: mll_access.c,v 6.5 97/02/17 15:14:41 kevins Exp $ $Header: mll_highl.c,v 6.1 96/03/25 05:49:38 gren Ex p $ Sccs_Id = %W% $Header: cl_format.c,v 6.2.1.1 98/10/05 14:44:15 phi lh Exp $ ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ /opt/openmail/B.05.10.00/bin/omaddbb: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omaddbbsa: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omdelbb: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omdelbbsa: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omlistbbsa: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/ommaintbb: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/ommodbb: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/ommodbbsa: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/B.05.10.00/bin/omshowbb: ------------------------------------ OpenMail GenVer = B.05.10.J1 ------------------------------------ Sccs_Id = %W% $Header: cbb_add.c,v 6.16 98/09/24 05:17:22 anupak E xp $ Sccs_Id = %W% $Header: cbb_del.c,v 6.5 96/05/28 16:11:21 paulw Exp $ Sccs_Id = %W% $Header: cbb_lic.c,v 6.1 97/03/06 18:17:36 kevins Ex p $ Sccs_Id = %W% /opt/openmail/patch/ompatch: $Header: sh_patch.gen,v 6.25 98/12/15 16:53:10 tonyn Exp $ /opt/openmail/patch/PHSS_17210/omunpatch: $Header: sh_unpat.gen,v /opt/openmail/patch/PHSS_17210/ompatch.idx: No what strings cksum(1) Output: 2210313632 2973696 /opt/openmail/B.05.10.00/bin/ual.local 1700279492 2998272 /opt/openmail/B.05.10.00/bin/ual.netware 3372404532 3026944 /opt/openmail/B.05.10.00/bin/ual.remote 1165495176 278528 /opt/openmail/B.05.10.00/bin/omlistbbs 1403186974 303104 /opt/openmail/B.05.10.00/bin/bb.server 3763026243 8368128 /opt/openmail/B.05.10.00/lib/libom.sl 1165495176 278528 /opt/openmail/B.05.10.00/bin/omaddbb 1165495176 278528 /opt/openmail/B.05.10.00/bin/omaddbbsa 1165495176 278528 /opt/openmail/B.05.10.00/bin/omdelbb 1165495176 278528 /opt/openmail/B.05.10.00/bin/omdelbbsa 1165495176 278528 /opt/openmail/B.05.10.00/bin/omlistbbsa 1165495176 278528 /opt/openmail/B.05.10.00/bin/ommaintbb 1165495176 278528 /opt/openmail/B.05.10.00/bin/ommodbb 1165495176 278528 /opt/openmail/B.05.10.00/bin/ommodbbsa 1165495176 278528 /opt/openmail/B.05.10.00/bin/omshowbb 323213204 24907 /opt/openmail/patch/ompatch 1939234487 16794 /opt/openmail/patch/PHSS_17210/omunpatch 15764087 7854 /opt/openmail/patch/PHSS_17210/ompatch.idx Patch Conflicts: None Patch Dependencies: s700: 10.01 10.10 10.20 10.30: PHSS_16992 s800: 10.01 10.10 10.20 10.30: PHSS_16992 Hardware Dependencies: None Other Dependencies: None Supersedes: None Equivalent Patches: None Patch Package Size: 6020 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHSS_17210 5a. For a standalone system, run swinstall to install the patch: swinstall -x autoreboot=true -x match_target=true \ -s /tmp/PHSS_17210.depot 5b. For a homogeneous NFS Diskless cluster run swcluster on the server to install the patch on the server and the clients: swcluster -i -b This will invoke swcluster in the interactive mode and force all clients to be shut down. WARNING: All cluster clients must be shut down prior to the patch installation. Installing the patch while the clients are booted is unsupported and can lead to serious problems. The swcluster command will invoke an swinstall session in which you must specify: alternate root path - default is /export/shared_root/OS_700 source depot path - /tmp/PHSS_17210.depot To complete the installation, select the patch by choosing "Actions -> Match What Target Has" and then "Actions -> Install" from the Menubar. 5c. For a heterogeneous NFS Diskless cluster: - run swinstall on the server as in step 5a to install the patch on the cluster server. - run swcluster on the server as in step 5b to install the patch on the cluster clients. By default swinstall will archive the original software in /var/adm/sw/patch/PHSS_17210. If you do not wish to retain a copy of the original software, you can create an empty file named /var/adm/sw/patch/PATCH_NOSAVE. Warning: If this file exists when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. It is recommended that you move the PHSS_17210.text file to /var/adm/sw/patch for future reference. To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHSS_17210.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: SUBSYSTEM_SHUT 1653283648 Adding UAL_MOD_BB_ITEMS=FALSE to general.cfg disables the ability to modify items on a bulletin board using a UAL. If a user adds an item to a BB, then the ability to modify this item will remain until the Bulletin Board Area is reloaded. If you remove UAL_MOD_BB_ITEMS, users will find that they will still not be able to modify items on a Bulletin Board until they force their client to reconnect to the OpenMail server. ---------------------------------------------------------- This patch will need the following minimum disk space requirements: /opt/openmail/patch : 20 MB /opt/openmail/B.05.10.00 : 20 MB /var/adm/sw : 20 MB (unless PATCH_NOSAVE is specified) ----------------------------------------------------------