aixtoolbox-list — General discussion list for aixtoolbox

[tbox-l] Requesting version update to GNU Screen.

[Barry W. <ba...@sc...>]

Running GNU Screen 3.9.10-2 on AIX 7200-01-02-1717 prevents new login
sessions.

If I update AIX 7.2 TL1 SP1 to SP2 and execute Screen as root. No new
logins to the server can occur (SSH or Console) until the screen session is
terminated.

Console session will eventually time out with this message:

INIT: failed write of utmp entry

Updated to screen-4.5.0-1 from Perzl website fixes the issue.

Regards,

Barry Williams

[tbox-l] rpm -Uhv ezinstall/ppc/base/* fails

[Glenn R. <gle...@rs...>]

I have just run the getbase.sh script to download the base packages.

When i run rpm -Uhv ezinstall/ppc/base/* I receive:

error: failed dependencies:
        bash   is needed by info-4.6-1
        db <= 4.8.24 is needed by rpm-4.9.1.3-3
        file-libs <= 5.12 is needed by rpm-4.9.1.3-3
        nss <= 3.14.3 is needed by rpm-4.9.1.3-3
        nspr <= 4.9.5 is needed by rpm-4.9.1.3-3
        readline <= 6.2 is needed by rpm-4.9.1.3-3
        lua <= 5.1.5 is needed by rpm-4.9.1.3-3
        /bin/bash is needed by rpm-4.9.1.3-3
        libdb.so is needed by rpm-4.9.1.3-3
        liblua.a(liblua-5.1.so) is needed by rpm-4.9.1.3-3
        libmagic.a(libmagic.so.1) is needed by rpm-4.9.1.3-3
        rpm = 3.0.5 is needed by rpm-build-3.0.5-52
        /bin/bash2 is needed by rpm-build-3.0.5-52
        libdb.so is needed by rpm-devel-4.9.1.3-3



How can I resolve these failed dependencies?


Glenn




Glenn Robinson

Power Systems Virtualisation Specialist
RSI Consulting Limited
Tel: + 44 7930 946274
Email: Gle...@rs...

Re: [tbox-l] CVE-2015-7547 (glibc) impact to Linux Toolkit for AIX?

[Garbos E. <eg...@pc...>]

Alan, thanks for the thoughts.

To clarify, IBM has asserted that glibc is not installed with AIX. I haven't loaded it independently, either. I'm not asking about code compiled on my systems that leverage glibc, I'm pretty confident there isn't any.

However, I'm unsure what the provenance of the "Linux Toolkit for AIX" components is. As I understand it these are essentially ports of things from the Linux/opensource community compiled for AIX, but as such I don't know under what conditions they were built. Could they have been built leveraging bits of glibc that were statically linked into the resulting binaries so that glibc itself doesn't need to be present on my systems? That seems plausible to me. If that is the case, then this vulnerability may be a concern. If not, and as you say the expectation is that glibc be present if the components need it, then I should be fine because I do not have glibc installed.

Side note: The whole Support situation here is really too bad, because the few Toolkit components I do care about here are really critical components used, I believe, by a majority of AIX SysAdmins... IBM really ought to pony up and provide better support for these. I'm thinking of the example of CIFS_FS... this is (more or less) an IBM developed and supported knock off of Samba. It works well, and I can get support for this as part of the base OS... or likewise, IHS is just Apache bundled with IBM extensions, but again they provide support for this... why can't the same be done for utilities like SUDO and OpenSSH? Anyway, that's not a problem for us to solve here, I'm just venting.

Thanks,
Eric R. Garbos
Senior UNIX Systems Administrator
eg...@pc...
www.pcconnection.com

Re: [tbox-l] CVE-2015-7547 (glibc) impact to Linux Toolkit for AIX?

[Alan R. <Al...@un...>]

Hi Eric,

Unless what you're leveraging is purely /bin/sh /bin/ksh compatible
shell scripts, there almost has to be a copy of glibc installed (or
statically linked) somewhere.

This vulnerability is related to libresolv (DNS lookups). If I read the
vulnerability description correctly, the only way to do this is for you to:

  * Do a DNS lookup (name resolution)
  * Have that DNS lookup go to a server that has a specially crafted DNS
    response designed to exercise the vulnerability. This could be an
    authoritative server with this bad data, or a caching server which
    has been hacked to supply this vulnerability.

These lookup cases should still be safe:

  * Lookups that resolve to /etc/hosts (if hosts is searched before DNS)
  * Lookups that don't resolve to DNS for some other reason (NIS, etc)
  * Lookups that resolve to a trusted, and un-hacked authoritative DNS
    server which goes through only trusted-unhacked caching servers -
    like ones you own and haven't been hacked.

Where there is definitely potential danger:

  * DNS requests to arbitrary DNS names on the Internet
  * DNS requests to trusted sites that go through untrusted caching DNS
    servers

Hope that helps!

    -- Alan Robertson
       Al...@As...



On 02/26/2016 07:30 AM, Garbos Eric wrote:
> Hello,
> Unfortunately IBM is passing the buck on this completely from a support perspective, so I'm hoping some of you fine folks can respond on this subject.
>
> Security vulnerability CVE-2015-7547 was recently announced based on some findings by RedHat and Google. This is a vulnerability, as I understand it, in name resolution code in the glibc library. Comments I've seen suggest that many softwares including SSH tools, SUDO, curl, etc could potentially be vulnerable if built with the affected library. From and AIX perspective, glibc is not normally included with the base OS (and in my case, isn't installed anywhere), but we do leverage some pieces from the Linux Toolkit for AIX which I fear might be affected.
>
> Can anyone confirm or deny this concern? And if so, are updated versions in the works to address this vulnerability?
>
> Just trying to do my due diligence and allay the concerns raised by our Security team.
>
> Thanks!
>
> Eric R. Garbos
> Senior UNIX Systems Administrator
> eg...@pc...
> www.pcconnection.com
>
> ------------------------------------------------------------------------------
> Site24x7 APM Insight: Get Deep Visibility into Application Performance
> APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
> Monitor end-to-end web transactions and take corrective actions now
> Troubleshoot faster and improve end-user experience. Signup Now!
> http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
> _______________________________________________
> aixtoolbox-list mailing list
> aix...@li...
> https://lists.sourceforge.net/lists/listinfo/aixtoolbox-list


-- 

Alan Robertson / CTO
Al...@As... <mailto:Al...@As...>/ +1
303.947.7999

Assimilation Systems Limited
http://AssimilationSystems.com

Twitter <https://twitter.com/ossalanr> Linkedin
<https://www.linkedin.com/in/alanr> skype
<https://htmlsig.com/skype?username=alanr_unix.sh>

[tbox-l] CVE-2015-7547 (glibc) impact to Linux Toolkit for AIX?

[Garbos E. <eg...@pc...>]

Hello,
Unfortunately IBM is passing the buck on this completely from a support perspective, so I'm hoping some of you fine folks can respond on this subject.

Security vulnerability CVE-2015-7547 was recently announced based on some findings by RedHat and Google. This is a vulnerability, as I understand it, in name resolution code in the glibc library. Comments I've seen suggest that many softwares including SSH tools, SUDO, curl, etc could potentially be vulnerable if built with the affected library. From and AIX perspective, glibc is not normally included with the base OS (and in my case, isn't installed anywhere), but we do leverage some pieces from the Linux Toolkit for AIX which I fear might be affected.

Can anyone confirm or deny this concern? And if so, are updated versions in the works to address this vulnerability?

Just trying to do my due diligence and allay the concerns raised by our Security team.

Thanks!

Eric R. Garbos
Senior UNIX Systems Administrator
eg...@pc...
www.pcconnection.com

[tbox-l] RPM broken: rpm-4.9.1.3-3.aix6.1.ppc.rpm

[A. M. <gou...@gm...>]

In installed rpm-4.9.1.3-3.aix6.1.ppc.rpm from the toolbox.

I'm getting the following error after trying to run RPM:

$rpm -ivh
ftp://public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/sudo/sudo-1.6.9p23-2noldap.aix5.3.ppc.rpm
exec(): 0509-036 Cannot load program /usr/opt/freeware/bin/rpm because of
the following errors:
        0509-130 Symbol resolution failed for /opt/freeware/lib/librpm.so
because:
        0509-136   Symbol poptSaveInt (number 246) is not exported from
                   dependent module /opt/freeware/lib/libpopt.so.
        0509-136   Symbol poptSaveLong (number 247) is not exported from
                   dependent module /opt/freeware/lib/libpopt.so.
        0509-026 System error: Error 0
        0509-192 Examine .loader section symbols with the
                 'dump -Tv' command.

$dump -Tv /opt/freeware/bin/rpm

/opt/freeware/bin/rpm:

                        ***Loader Section***

                        ***Loader Symbol Table Information***
[Index]      Value      Scn     IMEX Sclass   Type           IMPid Name

[0]     0x200016cc    .data              RW SECdef        [noIMid] __rtinit
[1]     0x00000000    undef      IMP     RW EXTref   libc.a(shr.o) errno
[2]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) close
[3]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) pipe
[4]     0x00000000    undef      IMP     RW EXTref   libc.a(shr.o) _iob
[5]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) exit
[6]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) fprintf
[7]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) fclose
[8]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) signal
[9]     0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) waitpid
[10]    0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) execl
[11]    0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) fork
[12]    0x00000000    undef      IMP     DS EXTref   libc.a(shr.o) dup2
[13]    0x00000000    undef      IMP     DS EXTref   libc.a(shr.o)
__mod_init
[14]    0x00000000    undef      IMP     BS EXTref   libc.a(shr.o) __crt0v
[15]    0x00000000    undef      IMP     BS EXTref   libc.a(shr.o)
__malloc_user_defined_name
[16]    0x00000000    undef      IMP     DS EXTref libpthread.a(shr_xpg5.o)
__pth_init
[17]    0x00000000    undef      IMP     BS EXTref libpthread.a(shr_xpg5.o)
__pthread
[18]    0x00000000    undef      IMP     RW EXTref       librpm.so rpmEVR
[19]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmcliAllPoptTable
[20]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmcliPipeOutput
[21]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmcliRootDir
[22]    0x00000000    undef      IMP     RW EXTref       librpm.so rpmIArgs
[23]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmInstallPoptTable
[24]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmQVSourcePoptTable
[25]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmQueryPoptTable
[26]    0x00000000    undef      IMP     RW EXTref       librpm.so
rpmVerifyPoptTable
[27]    0x00000000    undef      IMP     DS EXTref       librpm.so rpmtsFree
[28]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmcliFini
[29]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmcliInit
[30]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmcliQuery
[31]    0x00000000    undef      IMP     DS EXTref       librpm.so rpmErase
[32]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmInstall
[33]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmtsCreate
[34]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmtsSetRootDir
[35]    0x00000000    undef      IMP     DS EXTref       librpm.so
rpmcliVerify
[36]    0x00000000    undef      IMP     BS EXTref       librpm.so
rpmQVKArgs
[37]    0x00000000    undef      IMP     RW EXTref      libpopt.so
poptHelpOptions
[38]    0x00000000    undef      IMP     RW EXTref      libpopt.so
poptAliasOptions
[39]    0x00000000    undef      IMP     DS EXTref      libpopt.so
poptPeekArg
[40]    0x00000000    undef      IMP     DS EXTref      libpopt.so
poptGetArgs
[41]    0x00000000    undef      IMP     DS EXTref      libpopt.so
poptPrintHelp
[42]    0x00000000    undef      IMP     DS EXTref      libpopt.so
poptPrintUsage
[43]    0x00000000    undef      IMP     DS EXTref libintl.a(libintl.so.1)
dgettext
[44]    0x00000000    undef      IMP     DS EXTref     librpmio.so rrealloc
[45]    0x00000000    undef      IMP     DS EXTref     librpmio.so rfree
[46]    0x00000000    undef      IMP     DS EXTref     librpmio.so rmalloc
[47]    0x00000000    undef      IMP     DS EXTref     librpmio.so
rpmExpandNumeric
[48]    0x00000000    undef      IMP     DS EXTref     librpmio.so
rpmlogSetMask
[49]    0x00000000    undef      IMP     DS EXTref librtl.a(shr.o) __rtld
[50]    0x200016dc    .data    ENTpt     DS SECdef        [noIMid] __start
[51]    0x200017ec     .bss      EXP     RW    BSS        [noIMid]
program_name

...
How do I fix this?

Great many thanks!!!

Mark

[tbox-l] popt location

[Scott C. <sce...@sp...>]

Hi there,

I was wondering if someone had misfiled the RPM popt-1.7-2.aix5.1.ppc.rpm since I see that its URL is

ftp://ftp.software.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/rpm/popt-1.7-2.aix5.1.ppc.rpm

Whereas based on the pattern for all the other RPMS, I would expect it to be located at

ftp://ftp.software.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/popt/popt-1.7-2.aix5.1.ppc.rpm

Or am I misunderstanding your directory structure?

--Scott

Re: [tbox-l] EXTERNAL: Help to build a patched bash RPM

[Clark, B. L <bri...@lm...>]

IBM has released an update for the rpm version of bash.

Check out:
here is the link that describes the fix from IBM...
http://www-01.ibm.com/support/docview.wss?uid=isg3T1021272


Brian L. Clark
Project Manager, CAD/CAM Systems,  DIMS/ECRS, CSAS II
Lockheed Martin - Aero IT
86 South Cobb Drive
Dept. 50184, Zone 0448
Marietta, GA 30063
Office:(770)793-1643
Cell:(678)644-0887
Fax: (770)793-1923

"The dictionary is the only place where SUCCESS comes before WORK" - Anonymous

-----Original Message-----
From: Jason Voorhees [mailto:jvo...@gm...] 
Sent: Thursday, September 25, 2014 5:45 PM
To: aix...@li...
Subject: EXTERNAL: [tbox-l] Help to build a patched bash RPM

Hello guys:

I'm interested on having a patched bash version. I originally had bash RPM from:

http://www-03.ibm.com/systems/power/software/aix/linux/toolbox/date.html

But as this RPM version is vulnerable, I tried these 2 options:

- Get the tarball for bash 4.2 from https://ftp.gnu.org/gnu/bash/
- Get a SRC RPM for bash 4.2 from http://www.perzl.org/aix/index.php?n=Main.Bash

I also downloaded the patch for bash (048, released yesterday) and tried to build from SPEC file:

$ rpm -bb --clean SPECS/bash.spec

But I had several issues with RPM building mostly related to paths, or bison issue (when using Perlz bash package). As I'm not a developer nor I have experience with these kind of procedures, I'd like to know if I can get help for this build process in this mailing list.

Or maybe you can share any news about how when patched bash will be released.

Thanks in advance for your time.

Bye


P.D.: I finally was able to patch and build bash manually in a Power 8 box, but then I had some issues with libiconv.so not being found in other LPARs (Power 5), so I finally gave up.

------------------------------------------------------------------------------
Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
_______________________________________________
aixtoolbox-list mailing list
aix...@li...
https://lists.sourceforge.net/lists/listinfo/aixtoolbox-list

[tbox-l] Help to build a patched bash RPM

[Jason V. <jvo...@gm...>]

Hello guys:

I'm interested on having a patched bash version. I originally had bash RPM from:

http://www-03.ibm.com/systems/power/software/aix/linux/toolbox/date.html

But as this RPM version is vulnerable, I tried these 2 options:

- Get the tarball for bash 4.2 from https://ftp.gnu.org/gnu/bash/
- Get a SRC RPM for bash 4.2 from http://www.perzl.org/aix/index.php?n=Main.Bash

I also downloaded the patch for bash (048, released yesterday) and
tried to build from SPEC file:

$ rpm -bb --clean SPECS/bash.spec

But I had several issues with RPM building mostly related to paths, or
bison issue (when using Perlz bash package). As I'm not a developer
nor I have experience with these kind of procedures, I'd like to know
if I can get help for this build process in this mailing list.

Or maybe you can share any news about how when patched bash will be released.

Thanks in advance for your time.

Bye


P.D.: I finally was able to patch and build bash manually in a Power 8
box, but then I had some issues with libiconv.so not being found in
other LPARs (Power 5), so I finally gave up.

[tbox-l] CVE-2014-6271

[Ron B. <Ron...@mt...>]

Is a new build of bash available to address CVE-2014-6271?

Thanks,

Ron
The information contained in this E-mail message is intended 
for the personal and confidential use of the designated 
recipient(s) named above. This message and all communication 
contained herein is privileged and confidential. If the reader 
of this message is not the intended recipient or an agent 
responsible for delivering it to the intended recipient, you 
are hereby notified that you have received this E-mail message 
in error, and that any review, dissemination, distribution or 
copying of this message is strictly prohibited. If you have 
received this message in error, please notify MTD PRODUCTS INC 
immediately by calling (330) 225-2600. 

Re: [tbox-l] aixtoolbox-list Digest, Vol 33, Issue 1

[Alexander K. <AK...@de...>]

Hi!

I don't know how often there are updates for the linuxtoolbox packackages.

But it might be worth a try to have a look at http://www.perzl.org  or at 
http://www.bullfreeware.com/ .

On both sites you'll find quite actual versions of the different packages.

Mit freundlichen Grüßen / Kind regards

Alexander Karner

Program Manager Health Check
Senior IT Specialist
Global Technology Services
B141


Phone:
+49-6131-84-6078
 IBM Deutschland

Mobile:
+49-151-122 57 304
 Hechtsheimer Str. 2
E-Mail:
ak...@de...
 55131 Mainz


 Germany


IBM Deutschland GmbH / Vorsitzender des Aufsichtsrats: Martin Jetter
Geschäftsführung: Martina Koederitz (Vorsitzende), Reinhard Reschke,Dieter 
Scholz, Gregor Pillen, Joachim Heel, Christian Noll
Sitz der Gesellschaft: Ehningen / Registergericht: Amtsgericht Stuttgart, 
HRB 14562 / WEEE-Reg.-Nr. DE 99369940 




From:   aix...@li...
To:     aix...@li..., 
Date:   20.06.2013 14:03
Subject:        aixtoolbox-list Digest, Vol 33, Issue 1



Send aixtoolbox-list mailing list submissions to
                 aix...@li...

To subscribe or unsubscribe via the World Wide Web, visit
                 
https://lists.sourceforge.net/lists/listinfo/aixtoolbox-list
or, via email, send a message with subject or body 'help' to
                 aix...@li...

You can reach the person managing the list at
                 aix...@li...

When replying, please edit your Subject line so it is more specific
than "Re: Contents of aixtoolbox-list digest..."


Today's Topics:

   1. freetype2 & libpng updates (Jeff Schwartz)


----------------------------------------------------------------------

Message: 1
Date: Wed, 19 Jun 2013 08:55:51 -0400
From: Jeff Schwartz <jef...@gm...>
Subject: [tbox-l] freetype2 & libpng updates
To: aix...@li...
Message-ID:
 <CAG...@ma...>
Content-Type: text/plain; charset="iso-8859-1"

Is anyone aware of plans to update the freetype2 & libpng RPMs or at least
how one would contribute to doing so? These are currently pre-reqs to
installing Firefox on AIX and they appear to contain a rash of security
vulnerabilities as per the National Vulnerability Database.

Thanks,

Jeff
-------------- next part --------------
An HTML attachment was scrubbed...

------------------------------

------------------------------------------------------------------------------
This SF.net email is sponsored by Windows:

Build for Windows Store.

http://p.sf.net/sfu/windows-dev2dev

------------------------------

_______________________________________________
aixtoolbox-list mailing list
aix...@li...
https://lists.sourceforge.net/lists/listinfo/aixtoolbox-list


End of aixtoolbox-list Digest, Vol 33, Issue 1
**********************************************

[tbox-l] freetype2 & libpng updates

[Jeff S. <jef...@gm...>]

Is anyone aware of plans to update the freetype2 & libpng RPMs or at least
how one would contribute to doing so? These are currently pre-reqs to
installing Firefox on AIX and they appear to contain a rash of security
vulnerabilities as per the National Vulnerability Database.

Thanks,

Jeff

[tbox-l] AUTO: Eun-Suk Kim/Korea/IBM is out of the office. (returning 2013-03-08)

[Eun-Suk K. <es...@kr...>]

I am out of the office until 2013-03-08.

E-maill access is very limited.
If you're urgent, please contact me by cell-phone.

Thank you.


Note: This is an automated response to your message  "aixtoolbox-list
Digest, Vol 32, Issue 1" sent on 21/02/2013 21:03:28.

This is the only notification you will receive while this person is away.

[tbox-l] (no subject)

[Vineet O. <vin...@hc...>]

Vin...@hc...


::DISCLAIMER::
----------------------------------------------------------------------------------------------------------------------------------------------------

The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only.
E-mail transmission is not guaranteed to be secure or error-free as information could be intercepted, corrupted,
lost, destroyed, arrive late or incomplete, or may contain viruses in transmission. The e mail and its contents
(with or without referred errors) shall therefore not attach any liability on the originator or HCL or its affiliates.
Views or opinions, if any, presented in this email are solely those of the author and may not necessarily reflect the
views or opinions of HCL or its affiliates. Any form of reproduction, dissemination, copying, disclosure, modification,
distribution and / or publication of this message without the prior written consent of authorized representative of
HCL is strictly prohibited. If you have received this email in error please delete it and notify the sender immediately.
Before opening any email and/or attachments, please check them for viruses and other defects.

----------------------------------------------------------------------------------------------------------------------------------------------------

[tbox-l] AUTO: Stephen Gibbons/New Zealand/IBM is out of the office (returning 11/06/2012)

[Stephen G. <gib...@nz...>]

I am out of the office until 11/06/2012.

If your problem is urgent please contact Patrick Haugh 09 359 2686 (email
ph...@nz...)


Note: This is an automated response to your message  "aixtoolbox-list
Digest, Vol 31, Issue 1" sent on 10/6/12 0:02:13.

This is the only notification you will receive while this person is away.

[tbox-l] AUTO: Frank Bartucca is out of the office (returning 06/11/2012)

[Frank B. <bar...@us...>]

I am out of the office until 06/11/2012.

.


Note: This is an automated response to your message  "aixtoolbox-list
Digest, Vol 31, Issue 1" sent on 06/09/2012 6:02:13.

This is the only notification you will receive while this person is away.

[tbox-l] Suse Openbuildservice ( OBS ) supporting AIX

[Hans-Joachim E. <Han...@eu...>]

@all - Its for a few email lists OT but all of them have an AIX user community.

Suse Openbuildservice ( OBS ) supporting AIX
Its currently not true but we would like to see the OpenSuse Buildservice* supporting AIX as well. I do not want to discuss the need of a factory style software build versus the craftsman approach.
Everyone knows the pain to create and maintain a similar software stack on AIX which has the same software (With the same version ) as for example on SLES 11 or RH 6.1

The OBS allow us to build and distribute the same software on SLES , REDHAT or AIX and on at least 3 different hardware platforms in a factory style approach. Who knows - maybe SPARC or ARM will be included in the future. 

So think about if you could benefit - as an AIX user - from an enhanced OBS. 

In case you are interested please write to Christian Degen from Suse [cn...@su...] directly since he is coordinating any interests.

Note:
We will implement the OBS in the near future inhouse. We are thinking about that in the midterm HW and SW companies must show their ability to provide an Opensource factory style build service (sw) for their products. In case the vendor is not able to do so their product might not be considered anymore. 

* From http://en.opensuse.org/Build_Service
The Open Build Service (OBS) is an open and complete distribution development platform. It provides the infrastructure to easily create and release open source software for openSUSE and other Linux distributions on different hardware architectures.

With kind regards
Hajo Ehlers

--
 Hans-Joachim Ehlers
 UNIX Systems Engineer
 EUMETSAT
 Eumetsat-Allee 1
 64295, Darmstadt, Germany
 Tel : +49 6151 807-7307
 mailto:han...@eu...
 http://www.eumetsat.int

[tbox-l] Eun-Suk Kim/Korea/IBM is out of the office.

[Eun-Suk K. <es...@kr...>]

I will be out of the office starting  2011-05-23 and will not return until
2011-05-30.

[tbox-l] AUTO: Frank Bartucca is out of the office (returning 05/31/2011)

[Frank B. <bar...@us...>]

I am out of the office until 05/31/2011.




Note: This is an automated response to your message  "aixtoolbox-list
Digest, Vol 30, Issue 1" sent on 5/27/11 7:49:11.

This is the only notification you will receive while this person is away.

[tbox-l] sudo with krb5 compilation error

[Andre A. G. <and...@nl...>]

Hi,

I'm trying to compile sudo with krb5 support.

The environment is as follows:
AIX 5.3 TL11SP04
NAS (krb5) 1.5.0.2
IBM xlC 10.1.0.0
sudo-1.8.1p2 (source code)

These are the options that I use to configure:

# ./configure --prefix=/opt/freeware --sbindir=/opt/freeware/sbin 
--mandir=/opt/freeware/man --with-logging=syslog --with-logfac=auth 
--without-pam --with-env-editor --with-ignore-dot --with-tty-tickets 
--with-ldap=/opt/freeware --with-ldap-conf-file=/etc/openldap/ldap.conf 
--with-ldap-secret-file=/etc/openldap/ldap.secret --with-noexec

And the make gives the following error as it cannot find libs k5crypto and 
com_err.

# make
        for d in compat common zlib plugins/sudoers src include doc 
plugins/sample plugins/sample_group;  do (cd $d && exec make all) && 
continue;  exit $?;  done
Target "all" is up to date.
Target "all" is up to date.
Target "all" is up to date.
        /bin/sh ../../libtool --tag=disable-static --mode=link cc 
-qlanglvl=extc89   -Wl,-bI:./aixcrypt.exp -L/opt/freeware/lib  -o 
sudoers.la sudo_auth.lo kerb5.lo getspwuid.lo passwd.lo boottime.lo 
check.lo env.lo goodpath.lo  group_plugin.lo find_path.lo interfaces.lo 
logging.lo  parse.lo set_perms.lo sudoers.lo sudo_nss.lo iolog.lo  
iolog_path.lo  ldap.lo plugin_error.lo libsudoers.la -lkrb5 -lk5crypto 
-lcom_err  -lldap -llber   ../../common/libcommon.la 
../../compat/libreplace.la   ../../zlib/libz.la -module -export-symbols 
./sudoers.sym -avoid-version -rpath /opt/freeware/libexec
libtool: link: cc -qlanglvl=extc89 -Wl,-bM:SRE -o .libs/sudoers.so  
.libs/sudo_auth.o .libs/kerb5.o .libs/getspwuid.o .libs/passwd.o 
.libs/boottime.o .libs/check.o .libs/env.o .libs/goodpath.o 
.libs/group_plugin.o .libs/find_path.o .libs/interfaces.o .libs/logging.o 
.libs/parse.o .libs/set_perms.o .libs/sudoers.o .libs/sudo_nss.o 
.libs/iolog.o .libs/iolog_path.o .libs/ldap.o .libs/plugin_error.o   
./.libs/libsudoers.a ../../common/.libs/libcommon.a 
../../compat/.libs/libreplace.a ../../zlib/.libs/libz.a  
-Wl,-blibpath:/opt/freeware/lib:/usr/vac/lib:/usr/lib:/lib 
-L/opt/freeware/lib -lkrb5 -lk5crypto -lcom_err -lldap 
-L/opt/freeware/src/packages/BUILD/openldap-2.0.21/libraries -lssl 
-lcrypto -ls -llber -lc -Wl,-bnoentry  -qlanglvl=extc89 
-Wl,-bI:./aixcrypt.exp   -Wl,-bE:./sudoers.sym -Wl,-berok
ld: 0706-006 Cannot find or open library file: -l k5crypto
        ld:open(): No such file or directory
ld: 0706-006 Cannot find or open library file: -l com_err
        ld:open(): No such file or directory
make: 1254-004 The error code from the last command is 255.
 
 
Stop.
make: 1254-004 The error code from the last command is 2.
 
 
Stop.

I was told by IBM support that IBM's kerberos (NAS) have these libs 
statically linked into the binaries.
How are we then supposed to compile opensource with kerberos support?

Can anyone give me a hand on this?

Regards,

Andre Guimaraes




















 


Tenzij hierboven anders aangegeven: / Unless stated otherwise above:
IBM Nederland B.V.
Gevestigd te Amsterdam
Inschrijving Handelsregister Amsterdam Nr. 33054214

[tbox-l] Help

[<gir...@gm...>]

Hello Team,

I am trying to download the gzip RPM utility from this link
http://www-03.ibm.com/systems/power/software/aix/linux/toolbox/ezinstall.html
but
I am unable to download.

Can you tell me how do I download this RPM file for gzip installation?

Thanks in advance
Giri

[tbox-l] Sudo Security Issues

[John P J. <jpj...@us...>]

Is it possible to replace the sudo rpm in the toolbox?  The current
version, 1.6.9p15, has the following issues:

CVE-2010-1646
CVE-2010-1163
CVE 2010-0426
CVE 2009-0034

Thanks,

John

[tbox-l] emacs 21.3-1 crashes on startup on AIX 5300-08-03-0831

[<the...@no...>]

  I obtained emacs 21.3-1 from the IBM AIX Toolbox for Linux web page, tryng 
to run it on AIX 5300-08-03-0831
 
# emacs
Illegal instruction (core dumped)

I also downloaded emacs 22.1 from gnu.org and compiled it, same result.

This was working for years, and still works on several other AIX 5300-08 
systems.  Any help would be appreciated.

Re: [tbox-l] RPM xpm-3.4k-8.aix6.1.ppc.rpm seems to empty?

[U.Schmidt <U.S...@fz...>]

Hello,

thanks a lot for the information. I have to learn more about these rpm
options.

Regards
Ulrike

Markus Alt wrote:

>On Fri Aug 13 2010 16:08:19 GMT+0200 (CET), U.Schmidt wrote:
>
>
>>>Could it be that the package is emty? I downloaded it from the toolbox and
>>>the CD we got with AIX 6.1. Both package files have only 2822 bytes.
>>>
>>>
>
>Your assumption is correct:
>
>altmark@pdw7: ~ (41) $ rpm -qil xpm
>Name        : xpm                          Relocations: /opt/freeware
>Version     : 3.4k                              Vendor: (none)
>Release     : 8                             Build Date: Thu Oct 30
>21:14:47 2008
>Install date: Thu Sep 10 10:08:47 2009      Build Host:
>linaix.austin.ibm.com
>Group       : System Environment/Libraries   Source RPM: xpm-3.4k-8.src.rpm
>Size        : 0                                License: IBM_ILA
>URL         : http://www-sop.inria.fr/koala/lehors/xpm.html
>Summary     : A pixmap library for the X Window System.
>Description :
>The xpm package contains the XPM pixmap library for the X Window
>System.  The XPM library allows applications to display color,
>pixmapped images, and is used by many popular X programs.
>
>Note that this package is only a placeholder to satisfy RPM requisites.
>Starting in AIX 6.1, libXpm is provided by X11.base.lib.
>(contains no files)
>
>Regards,
>Markus
>
>
>
>------------------------------------------------------------------------
>
>------------------------------------------------------------------------------
>This SF.net email is sponsored by
>
>Make an app they can't live without
>Enter the BlackBerry Developer Challenge
>http://p.sf.net/sfu/RIM-dev2dev
>
>------------------------------------------------------------------------
>
>_______________________________________________
>aixtoolbox-list mailing list
>aix...@li...
>https://lists.sourceforge.net/lists/listinfo/aixtoolbox-list
>
>

--
Mit freundlichen Gruessen / Best regards
Ulrike Schmidt

--------------------------------------------------------------------------------------------------------
Ulrike Schmidt
Juelich Supercomputing Centre
Institute for Advanced Simulation

Phone:    +49 2461 61-6577
Fax:      +49 2461 61-6656
E-Mail:   U.S...@fz...
Internet: http://www.fz-juelich.de/jsc/



------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------
Forschungszentrum Juelich GmbH
52425 Juelich
Sitz der Gesellschaft: Juelich
Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498
Vorsitzender des Aufsichtsrats: MinDirig Dr. Karl Eugen Huthmacher
Geschaeftsfuehrung: Prof. Dr. Achim Bachem (Vorsitzender),
Dr. Ulrich Krafft (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt,
Prof. Dr. Sebastian M. Schmidt
------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------

Re: [tbox-l] RPM xpm-3.4k-8.aix6.1.ppc.rpm seems to empty?

[Markus A. <al...@de...>]

On Fri Aug 13 2010 16:08:19 GMT+0200 (CET), U.Schmidt wrote:
>>Could it be that the package is emty? I downloaded it from the toolbox and
>>the CD we got with AIX 6.1. Both package files have only 2822 bytes.

Your assumption is correct:

altmark@pdw7: ~ (41) $ rpm -qil xpm
Name        : xpm                          Relocations: /opt/freeware
Version     : 3.4k                              Vendor: (none)
Release     : 8                             Build Date: Thu Oct 30
21:14:47 2008
Install date: Thu Sep 10 10:08:47 2009      Build Host:
linaix.austin.ibm.com
Group       : System Environment/Libraries   Source RPM: xpm-3.4k-8.src.rpm
Size        : 0                                License: IBM_ILA
URL         : http://www-sop.inria.fr/koala/lehors/xpm.html
Summary     : A pixmap library for the X Window System.
Description :
The xpm package contains the XPM pixmap library for the X Window
System.  The XPM library allows applications to display color,
pixmapped images, and is used by many popular X programs.

Note that this package is only a placeholder to satisfy RPM requisites.
Starting in AIX 6.1, libXpm is provided by X11.base.lib.
(contains no files)

Regards,
Markus

-- 
Markus Alt
IBM Lab Boeblingen, Germany
al...@de...