AIX常见问题解决.docx
- 文档编号:18166929
- 上传时间:2023-08-13
- 格式:DOCX
- 页数:114
- 大小:85.33KB
AIX常见问题解决.docx
《AIX常见问题解决.docx》由会员分享,可在线阅读,更多相关《AIX常见问题解决.docx(114页珍藏版)》请在冰点文库上搜索。
AIX常见问题解决
如何平稳地停止AIX系统运行?
环境 产品:
RS/6000
软件:
AIX
问题 如何平稳地停止AIX系统运行?
解答您可以使用shutdown或是reboot指令来将服务及系统离线.
shutdown指令有许多参数来控制如何停止系统.依照预设值,它会警告使用者1分钟,接着终止运行中的处理程序,同步化档案系统,并且停止CPU的动作.您可以用-r参数来使系统关机后立即开机,或是下reboot指令.
#shutdown-m+5系统五分钟后关闭至单一使用者模式
#shutdown-r关机后重新开机
#shutdownnow立即关机
#shutdown-k放弃关机
如何解决AIX上不能增加新用户,错误讯息3004-687
环境 产品:
RS/6000
软件版本:
Aix3.2,4.x
问题 AIX上不能增加新用户,错误讯息3004-687
解答本文供了排除以下错误的建议:
-增加新用户出错
-错误信息3004-687表明用户不存在
--------------------------------------------------------------------------------
排错建议:
1.检查root文件系统是否已满?
2.检查:
-/etc/passwd文件中是否有空行
-/etc/passwd文件中是否部分行语法不正确
-nobody使用者是否遗失或其group为-2.该行应该如下:
nobody:
!
:
4294967294:
4294967294:
:
/:
3.如果以上均正确,检查/etc/security目录中的以下档案的权限许可:
档案权限
------------------------
.ids-rw-------
environ-rw-r-----
limits-rw-r-----
passwd-rw-------
user-rw-r-----
4.以下的命令对除错也很有帮助(查MAN来获得详细的帮助)
usrck-tALL
pwdck-tALL
grpck-tALL
5.在mkuser.default文件中的umask属性是八进位,但不要有前置0,所以:
umask=77正确,转成八进位077.
umask=077错误,转成八进位制063.
6.如果以上都正确,关机并重开进入维护模式,对root和user档案系统做fsck。
在KornShell中要如何设定prompt才会显示出目前所在的目录?
环境 产品:
RS/6000
软件:
AIX
问题 在KornShell中要如何设定prompt才会显示出目前所在的目录?
解答本文所述方法针对KornShell
把下面这行加入你的.profile中:
PS1='$PWD$'
如果你只想显示最後一个部分,可以用
PS1='${PWD##*/}$'
对于JESMSG,在SDSF进入该JESMSG显示屏幕,进行类似于上述2中的操作即可.
/var/adm/wtmp档案太大怎么办
环境 产品:
RS/6000
软件:
AIX
问题 /var/adm/wtmp文件保存所有用户登录的讯息,随著时间会增长到很大,/var/adm/wtmp档案太大时怎么办?
解答/var/adm/wtmp档案太大时,有时需要清理或编辑整理。
要清理它,执行cp/dev/null/var/adm/wtmp.
要编辑整理部分清理,用fwtmp命令先将文件wtmp变成ASCII格式的档案dummy.file:
/usr/sbin/acct/fwtmpdummy.file,
编辑之後用
/usr/sbin/acct/fwtmp-ic
再将ASCII文件转变成二进位文件.
JESMSG显示屏幕,进行类似于上述2中的操作即可.
2001/06AIX安全防范有关的补丁(APAR)
环境 AIXV4.3
问题 2001/06AIX安全防范有关的补丁(APAR)
解答以下列出了AIX当前(2001/06)的安全防范有关的补丁(APAR)。
如果想下载所有这些补丁,可通过在网站上指定以下的一个APAR包号来获得:
AIX4.3:
IY19897(updated6/2001)
========================================================
AIX4.3APARs
IX72045CDELOGINGIVESINVALIDUSERNAMEMESSAGEBEFOREPWENTERED
IX72553SECURITY:
VULNERABILITYINI/OSIGNALHANDLING
IX73077SECURITY:
FTPBOUNCEVULNERABILITY
IX73214SECURITY:
TELNETDENIALOFSERVICEATTACK
IX73438SECURITY:
VULNERABILITYINDTAPPGATHER
IX73586SECURITYHOLEINFTP,TFTP,UTFTP
IX73836/ETC/HOSTS.EQUIVISALLOWINGWRONGUSERSTOLOGIN
IX73951SECURITY:
ROUTEDSHOULDIGNORETRACEPACKETS
IX73961PCNFSDDAEMONUPDATESWTMPFILEINCORRECTLY
IX74296PROGRAMSUSINGLEXGENERATEDSOURCECOREDUMP
IX74599SECURITY:
VULNERABILITYINDIGEST
IX74793SECURITYHOLEINTN3270
IX74802CSHCOREDUMPSWHENENVVARIABLEISLONGERTHAN2K
IX75275SECURITY:
LOGSYMPTOMFOLLOWSSYMLINKS
IX75554SECURITY:
TIMEXCREATESINSECURETEMPORARYFILES
IX75564ETHERNETDRIVERPASSESPACKETSTOOSMALLCAUSINGCRASH
IX75566SECURITY:
NON-ROOTUSERSCANCREATEANDBINDTOAF_NDDSOCKETS
IX75761BADFILEHANDLECANCRASHLOCKDAEMON
IX75840SECURITY:
DEAD.LETTERCREATEDWITHGROUPPRINTQ
IX75864SECURITY:
/BIN/MANCREATESINSECURETEMPORARYFILES
IX76015NFSV2DOESHANDLE65535ASAUID
IX76039SECURITY:
DPID2COREDUMPSINWORLDWRITABLEDIRECTORY
IX76040SECURITY:
SNMPDLOGFILEFOLLOWSSYMLINKS
IX76049SECURITY:
CDETRASHINFOFILECREATEDWORLD-WRITABLE
IX76960BIND:
CERTADVISORYCA-98.05
IX76962BIND:
CERTADVISORYCA-98.05
IX77338SECURITY:
SORTCREATESINSECURETEMPORARYFILES
IX77508CDEMAILER(DTMAIL)ALLOWSAUSERTOREADAMAILBOXWHICHTHE
IX77592SECURITY:
PORTMAPCREATESINSECURETEMPORARYFILES
IX78071IFCONFIG.ATHAVEAWRONGFILEPERMISSIONS
IX78202SECURITY:
BUFFEROVERFLOWSINXTERMANDAIXTERM.
IX78248SECURITY:
VULNERABILITYINGROUPSHUTDOWN
IX78349SECURITY:
BADPERMISSIONSON/ETC/SECURITY/LOGIN.CFG
IX78564SECURITY:
LONGFONTNAMESCANOVERFLOWBUFFERSINFONTSERVER
IX78612SECURITY:
BUFFEROVERFLOWSINXAWANDXMU.
IX78646SECURITY:
RC.NET.SERIALCREATESINSECURETEMPORARYFILES
IX78719NFSV2DOESNOTHANDLE65535ASAUID
IX78732SECURITY:
FILESIN/VAR/DTARECREATEDINSECURELYBYCDELOGIN
IX79136SECURITY:
INSECURETEMPORARYFILESINDIAGSUPSCRIPTS
IX79139SECURITY:
ACLPUT/ACLEDITCREATEINSECURETEMPORARYFILES
IX79679"RCPSECURITYPROBLEM"
IX79681SECURITY:
INSECURETEMPORARYFILESINCMDMISCSCRIPTS
IX79682SECURITY:
INSECURETEMPORARYFILESINCMDSCCSSCRIPTS
IX79683SECURITY:
INSECURETEMPORARYFILESINCMDTZSCRIPTS
IX79700SECURITY:
INSECURETEMPORARYFILESINCMDNLSSCRIPTS
IX79701SECURITY:
INSECURETEMPORARYFILESINCMDTEXTSCRIPTS
IX79857SECURITYHOLE
IX79909NSLOOKUPCOREDUMPSWITHLONGSTRINGS
IX79979SECURITY:
VULNERABILITYINGROUPSHUTDOWN
IX80036SECURITY:
CRONCREATESINSECURELOCKFILE
IX80387SECURITY:
INSECURECREATIONOFLPDLOCKFILE
IX80391SECURITY:
INSECURETEMPORARYFILESINCMDSNAPSCRIPTS
IX80447SECURITY:
BUFFEROVERFLOWSINIMAPD
IX80470SECURITY:
PTRACE()PROBLEMWITHSET-GIDPROGRAMS
IX80510SECURITY:
DON'TINHERITCLOSEDSTDIN,STDOUT,STDERRDESCRIPTORS
IX80543SECURITY:
LIBNSLBUFFEROVERRUNS
IX80548SECURITY:
RASSCRIPTSSHOULDN'TFOLLOWSYMLINKS
IX80549SECURITY:
/BIN/MORECREATESINSECURETEMPORARYFILES
IX80762SECURITY:
/BIN/VICREATESINSECURETEMPORARYFILES
IX80792SECURITY:
BUFFEROVERFLOWSINIMAPD
IX81058SECURITY:
INSECURETEMPORARYFILESINCMDBSYSSCRIPTS
IX81077SECURITY:
TTYLOCK()ALLOWSCREATIONOFWORLD-READABLEFILES
IX81078SECURITY:
INSECURETEMPORARYFILESINCMDFILESSCRIPTS
IX81442SECURITY:
VULNERABILITYINRPC.TTDBSERVERD
IX81507SECURITY:
MOREVULNERABILITIESINPCNFSD
IX81999POSTCOMMANDSHOULDNOTBESUID
IX82002FORCEREXECDUSERPRIVILEDGES
IX83752SECURITY:
VULNERABILITYINAUTOFS
IX84493SECURITY:
VULNERABILITYINSETGIDEXECUTABLES
IX84642SECURITY:
VULNERABILITYININFOEXPLORERDAEMON(INFOD)
IX85233SECURITY:
MAILBOXGETSCORRUPTED
IX85556SECURITY:
BUFFEROVERFLOWINFTPCLIENT
IX85600BOOTP:
CERTADVISORY
IX86845SVCAUTH_UNIXCRASHONNEGATIVENUMBER
IX87016REMBAKFAILSWHENINVOKEDWITHVERYLONGUSERNAME/HOSTNAME
IX87669NULLMBUFCANCRASHSYSTEMINNFSCODE
IX87727STOPUNCOMMENTINGRPCDAEMONSIN/ETC/INETD.CONFAFTERNFS
IX88021ADDFINGERTIMEOUT
IX88263SECURITY:
SNAPMAYLEAKSENSITIVEINFORMATION
IX88633SECURITY:
INSECURETEMPORARYFILESIN/SBIN/RC.BOOT
IX89182LICENSESERVERHANGS
IX89415SECURITY:
XAUTHISBROKENIN4.3.X
IX89419SECURITY:
BUFFEROVERFLOWINDTSPCD
IX89687SECURITY:
NFSSCRIPTSCREATEINSECURETEMPORARYFILES
IY00892INSECURETEMPORARYFILESINBOS.PERFPACKAGINGSCRIPT
IY01439SECURITY:
INSECURETEMPORARYFILESIN/ETC/RC.POWERFAIL
IY02120SECURITY:
BUFFEROVERFLOWINNSLOOKUP
IY02397SECURITY:
NON-ROOTUSERSCANUSEPTRACETOCRASHTHESYSTEM
IY02944SECURITY:
BUFFEROVERFLOWIN"DTACTION-U"
IY03849SECURITY:
VULNERABILITYINTTSESSION
IY04477SECURITYBUFFEROVERFLOWSINFTPD
IY04865SECURITY:
NON-ROOTUSERSCHANGESYSINFOVIASNMPD
IY05249SECURITY:
BUFFEROVERFLOWSINSNMPD
IY05772SECURITY:
POSSIBLEBUFFEROVERFLOWINAIXTERMTITLEHANDLING
IY05851NAMED8:
SECURITYVULNERABILITIESINBIND
IY06059GENFILTCANNOTFILTERPORTNUMBERS>32767
IY06367SECURITY:
VULNERABILITYINDTPRINTINFO
IY06589BUGINGET_SEQNUM
IY06694SECURITY:
ANOTHERBUFFEROVERFLOWINDTSPCD
IY06697SECURITY:
RPC.MOUNTDALLOWSFILENAMEDISCOVERYAGAIN
IY06814CRASHINFLTR_IN_CHK()M_COPYDATA()
IY06817XDMHASTROUBLEWITHLONGPASSWORDS
IY07265CHSECALLOWSNON-ADMINUSRTOCHANGEADMINUSERATTRIBUTES
IY07425INCERTAINCASES,LIBQBROUTINECANCAUSECOREDUMP
IY07831SECURITY:
BUFFEROVERFLOWINSETCLOCK
IY07832SECURITY:
ANOTHERBUFFEROVERFLOWINPORTMIR
IY08128SECURITY:
VULNERABILITYINMKATMPVC
IY08143SECURITY:
BUFFEROVERFLOWSINENQCOMMAND
IY08606SECURITY:
BUFFEROVERFLOWIN_XAIXREADRDB
IY08812SECURITY:
BUFFEROVERFLOWINSETSENV
IY09514SECURITY:
VULNERABILITYINFRCACTRL
IY09941SECURITY:
LOCALUSERSCANGAINWRITEACCESSTOSOMEFILES
IY10250DHCPSD:
SECURITY:
D-O-SATTACKVULNERABILITY
IY10805MKATMISASHELLSCRIPTANDSHOULDN'TBESETUID
IY11067XSERVERFREEZESDUETODOS
IY11224SECURITY:
BUFFEROVERFLOWINXTERM
IY11233SECURITY:
NCSCMDSLINKEDWITHINSECURELINKERARGUMENT
IY11450SECURITY:
BUFFEROVERRUNINMITKERBEROSLIBRARIES
IY12147NON-ROOTUSERSCANISSUETHENETSTAT-ZFLAG
IY12251SECURITY:
POSSIBLEVULNERABILITIESINERRPT
IY12638SECURITY:
BUFFEROVERFLOWINPRINTCMDS
IY13753SECURITY:
FORMATSTRINGVULNERABILITYINLOCALESUBSYSTEM
IY13780SECURITY:
BUFFEROVERFLOWINLIBNTP
IY13781SECURITY:
FORMATSTRINGVULNERABILITYINFTPCLIENT
IY13783FORMATSTRINGVULNERABILITIESINGETTY'SERRORLOGGINGFUNCS
IY14512DNSCERTADVISORYFORSRV&ZXFRBUGS
IY14537BUFFEROVERFLOWINBELLMAIL
IY15146SYSLOGD:
BUFFEROVERFLOWANDIMPROPERCONTROLCHARACTERESCAPES
IY16182SECURITY:
BUFFEROVERFLOWINBIND8
IY16214BUFFEROVERFLOWANDFORMATSTRINGVULNERABILITIESINBIND4.X
IY16271SECURITY:
INFOLEAKINNUMEROUSVERSIONSOFNAMED4ANDNAMED8
IY17048SECURITY:
POSSIBLEBUFFEROVERFLOWVULNERABILITYINCRONTAB
IY17932SECURITY:
IMAPDBUFFEROVERFLOW
=========================================================
当运行mksysb时,系统报错:
“rootvgislocked”(根卷组被锁定)
环境 AIXV4
问题 用户在试图运行mksysb时,得到一个错误信息:
“rootvgislocked”(根卷组被
锁定),导致不能进行备份。
解答要解开rootvg,键入以下命令:
#chvg-urootvg
如何在DocumentationSearchService中删除文档?
环境 AIXV4
问题 当把一个应用安装到服务器时,如果一个文档和它的索引被自动注册到系统中,你必须用uninstall的方式把它删除。
如果只是删掉注册的文档或它的索引,它会在searchservice中保持注册,这将会在查询过程中产生错误信息,因为searchservice将试图查询已丢失的索引。
另外,如果你想删除系统管理员手工注册的文档,你必须先从searchservice中删除其注册状态。
如何在DocumentationSearchService中删除文档呢?
解答可以用以下的方式:
如:
这个例子中使用cmds01en作为索引的例子。
以root登录;
键入:
/usr/IMNSearch/cli/imndomap/var/docsearch/indexes-dcmds01en
键入:
cp/var/docs
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- AIX 常见问题 解决