Manualshelf

HP Tru64 UNIX and TruCluster Server Version 5.1.B-4 Patch Summary and Release Notes (13156)

ManualsBrandsHP ManualsSoftwareTru64 UNIX 5.0
21222324252627282930
Blind connection reset attacks can be triggered by an attacker sending forged ICMP
"Destination Unreachable, host unreachable" packets or ICMP "Destination Unreachable,
port unreachable" packets.
Blind throughput-reduction attacks can be caused by an attacker sending a forged ICMP
type 4 (Source Quench) packet.
Path MTU Discovery (RFC 1191) describes a technique for dynamically discovering the MTU
(maximum transmission unit) of an arbitrary internet path. This protocol uses ICMP packets
from the router to discover the MTU for a TCP connection path. An attacker can reduce the
throughput of a TCP connection by sending forged ICMP packets (or their IPv6 counterpart) to
the discovering host, causing an incorrect Path MTU setting.
1.17 caa_relocate Command Improved
The caa_relocate -s source_member command now allows the relocation of a specific
resource from the source_member.
The command caa_relocate -s source_member resource_name will relocate the
application resource resource_name only if it is running on the source_member. Otherwise
it will return an error message.
See the revised caa_relocate(8) reference page delivered in this kit for more information.
1.18 collect Utility Improved in Several Ways
The collect utility has been enhanced to support a new -c option, which when specified
instructs collect to gather local and remote I/O access statistics for disk and tape devices as
seen by the Device Request Dispatcher (DRD) cluster subsystem in a TruCluster Server
environment.
The collect utility has also been modified to enable it to support long device names.
The collect(8) reference page has been revised to reflect these changes.
1.19 Environment Variable Improves btcreate Kernel Build
This kit provides the means to allow the btcreate command to build the kernel with all options.
Currently, if the kernel built with the current system configuration exceeds the firmware limit,
btcreate will remove all options except DVDFS and CDFS. If the newly built kernel with CDFS
and DVDFS also fails, btcreate then builds a kernel with mandatory options alone.
To build a kernel with all options, run btcreate by setting the following environment variable:
BTCREATE_MODE=VER-1-1
See the revised btcreate(8) reference page delivered in this kit for more information.
1.20 New Variable Aids Performance of AdvFS Administration Commands
A new rc.config variable, ADVFSD, lets you control the boot time invocation of the advfsd
daemon. This daemon is not necessary unless you are running the AdvFS graphical interface
dtadvfs. Disabling advfsd from starting results in a better performance of AdvFS administration
commands. See “Stopping Daemons May Speed Adminstration Performance for more
information about this problem.
The following list provides information on using the ADVFSD variable to disable and enable the
advfsd daemon on different types of systems:
Run the following command to disable the advfsd daemon at boot time on a stand-alone
system:
1.17 caa_relocate Command Improved 21