Patch Name: PHSS_27783 Patch Description: s700_800 10.20 OV NNM6.1 http server fix Creation Date: 02/08/27 Post Date: 02/09/03 Hardware Platforms - OS Releases: s700: 10.20 s800: 10.20 Products: OpenView Network Node Manager 6.1 Filesets: OVPlatform.OVWWW-SRV,B.06.10.00 Automatic Reboot?: No Status: General Release Critical: No Path Name: /hp-ux_patches/s700_800/10.X/PHSS_27783 Symptoms: PHSS_27783: http server process cannot handle bad HTTP request types correctly. Defect Description: PHSS_27783: http server process was not handling the bad requests properly. Resolution: Code has been added for handling the bad requests properly. SR: 8606274132 Patch Files: /opt/OV/httpd/bin/ab /opt/OV/httpd/bin/apachectl /opt/OV/httpd/bin/apxs /opt/OV/httpd/bin/dbmmanage /opt/OV/httpd/bin/htdigest /opt/OV/httpd/bin/htpasswd /opt/OV/httpd/bin/httpd /opt/OV/httpd/bin/logresolve /opt/OV/httpd/bin/rotatelogs what(1) Output: /opt/OV/httpd/bin/ab: None /opt/OV/httpd/bin/apachectl: None /opt/OV/httpd/bin/apxs: None /opt/OV/httpd/bin/dbmmanage: None /opt/OV/httpd/bin/htdigest: None /opt/OV/httpd/bin/htpasswd: None /opt/OV/httpd/bin/httpd: patched for CAN-2002-0392 [CERT VU#944335] /opt/OV/httpd/bin/logresolve: None /opt/OV/httpd/bin/rotatelogs: None cksum(1) Output: 3027199269 24677 /opt/OV/httpd/bin/ab 1446960109 6579 /opt/OV/httpd/bin/apachectl 3998113415 18538 /opt/OV/httpd/bin/apxs 3168729259 6428 /opt/OV/httpd/bin/dbmmanage 1433302304 24671 /opt/OV/httpd/bin/htdigest 232185699 20561 /opt/OV/httpd/bin/htpasswd 1149266263 436633 /opt/OV/httpd/bin/httpd 1178741435 20541 /opt/OV/httpd/bin/logresolve 3748759209 20537 /opt/OV/httpd/bin/rotatelogs Patch Conflicts: None Patch Dependencies: None Hardware Dependencies: None Other Dependencies: None Supersedes: None Equivalent Patches: PHSS_27784: s700: 11.00 s800: 11.00 PSOV_03207: sparcSOL: 2.5 2.6 2.7 2.8 Patch Package Size: 640 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHSS_27783 5a. For a standalone system, run swinstall to install the patch: swinstall -x autoreboot=true -x match_target=true \ -s /tmp/PHSS_27783.depot By default swinstall will archive the original software in /var/adm/sw/patch/PHSS_27783. If you do not wish to retain a copy of the original software, you can create an empty file named /var/adm/sw/patch/PATCH_NOSAVE. WARNING: If this file exists when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. It is recommended that you move the PHSS_27783.text file to /var/adm/sw/patch for future reference. To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHSS_27783.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: ======================================================== BEFORE LOADING THIS PATCH... If there are any ovw sessions running on either the Management Station or on any Management Consoles, these sessions need to be closed. The "ovstop" command should then be executed. WARNING : the patch will not install if any Network Node Manager processes are detected. BACKUP ALL OpenView DIRECTORIES TO TAPE. This pre-caution ensures that if you have problems after installing the patch, you will be able to restore your current state from tape. NOTE : ovstart is NOT executed after the patch is loaded You will need to manually run ovstart. Also, in order to keep a history of the patches installed on your system the post-install script will attempt to copy this .text file to /usr/OV/ReleaseNotes/patches (or /opt/OV/ReleaseNotes/patches). Please make sure this file is in /tmp before installation. ========================================================