Installation & Configuration Guide for Solaris 8



Similar documents
Secure File Transfer Installation. Sender Recipient Attached FIles Pages Date. Development Internal/External None 11 6/23/08

Server & Workstation Installation of Client Profiles for Windows

CA ehealth. Remote Poller Guide. r6.1

Server & Workstation Installation of Client Profiles for Windows (WAN Edition)

RecoveryVault Express Client User Manual

IBM WebSphere Application Server Version 7.0

INSTALLING KAAZING WEBSOCKET GATEWAY - HTML5 EDITION ON AN AMAZON EC2 CLOUD SERVER

1. Product Information

Online Backup Client User Manual Linux

Online Backup Client User Manual

Introduction to Operating Systems

Moxa Device Manager 2.3 User s Manual

Steltronic Focus. Main Desk Internet connection

How to connect your new virtual machine to the Internet

Online Backup Linux Client User Manual

Quick Start Guide. Version R91. English

Moxa Device Manager 2.0 User s Guide

Deploying IBM Lotus Domino on Red Hat Enterprise Linux 5. Version 1.0

McAfee SMC Installation Guide 5.7. Security Management Center

[HOW TO RECOVER AN INFINITI/EVOLUTION MODEM IDX ] 1

Running a Default Vulnerability Scan

Backing Up TestTrack Native Project Databases

Using Network Attached Storage with Linux. by Andy Pepperdine

Chapter 8 How to Configure TCP/IP Printing for Unix

How to Tunnel Remote Desktop using SSH (Cygwin) for Windows XP (SP2)

How To Use 1Bay 1Bay From Awn.Net On A Pc Or Mac Or Ipad (For Pc Or Ipa) With A Network Box (For Mac) With An Ipad Or Ipod (For Ipad) With The

Windows Domain Network Configuration Guide

F-Secure Messaging Security Gateway. Deployment Guide

Using Symantec NetBackup with Symantec Security Information Manager 4.5

Setting Up Scan to SMB on TaskALFA series MFP s.

Installing the Microsoft Network Driver Interface

stub (Private Switch) Solaris 11 Operating Environment In the Solaris 11 Operating Environment, four zones are created namely:

Installing a Symantec Backup Exec Agent on a SnapScale Cluster X2 Node or SnapServer DX1 or DX2. Summary

Please ring the Service Desk on or if you require assistance or encounter problems.

UltraBac Documentation. UBDR Gold. Administrator Guide UBDR Gold v8.0

Network Scanner Tool R3.1. User s Guide Version

Shellshock Security Patch for X86

CommandCenter Secure Gateway

TANDBERG MANAGEMENT SUITE 10.0

Installation Guide for WebSphere Application Server (WAS) and its Fix Packs on AIX V5.3L

Binary Upgrade Procedure

Installing, Uninstalling, and Upgrading Service Monitor

Networking Best Practices Guide. Version 6.5

CycleServer Grid Engine Support Install Guide. version 1.25

WS_FTP Server. User s Guide. Software Version 3.1. Ipswitch, Inc.

Integrating Apache Web Server with Tomcat Application Server

Hands-on MESH Network Exercise Workbook

Installing Virtual Coordinator (VC) in Linux Systems that use RPM (Red Hat, Fedora, CentOS) Document # 15807A1-103 Date: Aug 06, 2012

CommandCenter Secure Gateway

READYNAS INSTANT STORAGE. Quick Installation Guide

Running a Default Vulnerability Scan SAINTcorporation.com

V Series Rapid Deployment Version 7.5

Backup & Disaster Recovery Appliance User Guide

SNMP Manager User s Manual

Acano solution. Virtualized Deployment R1.1 Installation Guide. Acano. February B

Online Backup Client User Manual Mac OS

Online Backup Client User Manual Mac OS

Online Backup Client User Manual

WEBTITAN CLOUD. User Identification Guide BLOCK WEB THREATS BOOST PRODUCTIVITY REDUCE LIABILITIES

CASHNet Secure File Transfer Instructions

INSTALL ZENTYAL SERVER

DocuShare Installation Guide

Web Application Firewall

Online Backup Client User Manual

The BackTrack Successor

Experimental Techniques 8

FreeFlow Accxes Print Server V15.0 August P Xerox FreeFlow Accxes Print Server Drivers and Client Tools Software Installation Guide

Secret Server Installation Windows 8 / 8.1 and Windows Server 2012 / R2

Using iscsi with BackupAssist. User Guide

Procedure to Create and Duplicate Master LiveUSB Stick

Unifying Information Security. Implementing TLS on the CLEARSWIFT SECURE Gateway

Unix Sampler. PEOPLE whoami id who

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

SAMBA SERVER (PDC) Samba is comprised of a suite of RPMs that come on the RHEL/Fedora CDs. The files are named:

Virtual Managment Appliance Setup Guide

F-SECURE MESSAGING SECURITY GATEWAY

NETWORK SETUP GLOSSARY

Acronis Backup & Recovery 11.5 Quick Start Guide

Local Caching Servers (LCS): User Manual

LOCKSS on LINUX. CentOS6 Installation Manual 08/22/2013

If you never used nor intend to use the wired-connection, then please disregard the following info.

XPrint UNIX System Printer Driver Installation SOLARIS 1.X (SUN OS) / SOLARIS 2.X

NETWORK SET UP GUIDE FOR

Tutorial Guide to the IS Unix Service

Musition 4. Installation & Quick Start

Reflection DBR USER GUIDE. Reflection DBR User Guide. 995 Old Eagle School Road Suite 315 Wayne, PA USA

HAHTsite IDE and IP Installation Guide

SuperLumin Nemesis. Administration Guide. February 2011

Installation Instruction STATISTICA Enterprise Small Business

RSA Security Analytics. S4 Broker Setup Guide

Table of Contents. CHAPTER 1 About This Guide CHAPTER 2 Introduction CHAPTER 3 Database Backup and Restoration... 15

RSA Authentication Manager 7.1 Basic Exercises

HADOOP - MULTI NODE CLUSTER

Fasthosts Internet Parallels Plesk 10 Manual

EVault for Data Protection Manager. Course 361 Protecting Linux and UNIX with EVault

HP LeftHand SAN Solutions

How Do I Recover infiniti Remotes and Line Cards?

Canon WFT-E1 (A) Wireless File Transmitter. Network Support Guide

How to install/upgrade the LANDesk virtual Cloud service appliance (CSA)

Virtual Web Appliance Setup Guide

Transcription:

Installation & Configuration Guide for Solaris 8 Document version 1.1.2, 2003-02-27 CWRU Information Technology Services If you have any questions or problems using these instructions, simply contact the ITS Help Desk. (368-HELP, help@cwru.edu) These instructions describe a very simple installation of Solaris 8, including all rudimentary functions like networking and printing. These instructions do not address advanced subjects like setting up a mail server or FTP server on the newly installed system. We would be happy to help you set up those things, but the initial setup described here should be done first. NOTE: These instructions assume that you want to install your system from scratch, and that you ve already moved any important files to some other location. This installation will destroy any existing data on the system. 1. Preparatory work 1.1. Verify that your system is assigned a static IP address 1, and obtain hostname information. 2 1.1.1. Visit https://setup.cwru.edu/ipcheck on the web, and verify that the numeric IP address of your system is explicitly listed (e.g. 129.22.x.y ), rather than being listed as dynamic. If your system isn t listed on this page, then it isn t registered to you. Contact the Help Desk in that case. If your IP address is listed as dynamic, visit https://cnsdb.cwru.edu/ip-routing/requeststatic.html to obtain a static address. 1.1.2. Write down your system s static IP address from the web page in the Configuration Information box below. 1.1.3. Write down your system s hostname from the web page in the Configuration Information box. The hostname you use when configuring your system must match the hostname shown. If you prefer a different hostname, contact the Help Desk. 1ITS generally requires that any computer on CWRUnet that is capable of obtaining its network configuration information dynamically using DHCP be configured to do so. Although it can be done, configuring a Solaris system to use DHCP is problematic. For that reason, we recommend that you do not use DHCP for Solaris 8, but rather obtain a static IP address for your workstation, and configure its network settings manually. That is what these instructions have you do. 2This step can be performed only by the person to whom the system is registered. If the system is not registered, or you don t know whether or to whom it is registered, contact the Help Desk. page 1 of 10

1.2. Gather other relevant network configuration information. 1.2.1. Visit http://cnswww.cwru.edu/net/iprouting/findipsubnet.htm on the web. 1.2.2. Enter your system s IP address, and click the Find IP Subnet Info button. 1.2.3. Write down the values given for IP Subnet Mask and Subnet Gateway below. IP address hostname subnet mask gateway Configuration Information 2. Unplug the network cable from the back of the computer. 3. Boot the system from the installation CD. 3.1. Turn on the system if it is not already running. 3.2. Press STOP-a. The OpenBoot ok prompt appears. 3.3. Insert the Solaris 8 Installation CD. 3.4. Tell the machine to boot from the CD-ROM, using the command ok boot cdrom The system boots to the Web Start installer. 4. Answer the questions the installer asks. Follow this advice: Perform an initial install. Yes, you do want to format /dev/dsk/c0t0d0. Accept the default swap slice size. Yes, the swap slice can start at the beginning of the disk. The installer copies files to the disk; then the machine reboots and the installation wizard is displayed. 5. Step through the first installation wizard. Do not use DHCP. When asked for the hostname, do not qualify it with any domain information. For example, to set up a computer named ʺmycomputerʺ in the Math department, you would simply enter ʺmycomputerʺ, not ʺmycomputer.math.cwru.eduʺ nor ʺmycomputer.cwru.eduʺ. Do not enable IPv6. Use DNS as the name service. page 2 of 10

Use cwru.edu (without quotes) as the domain name. Use ʺ129.22.4.3ʺ and ʺ129.22.4.4ʺ as the DNS servers. (Leave the last box blank.) No additional DNS search domains are needed. (Leave all six boxes blank.) Turn power management off. You have a direct connection to the Internet. Dismiss the error message that says Name Server information is incorrect. (Click Accept. ) (This message appears because the system cannot contact the name servers on the network.) The system plays a sound and displays the installation kiosk. 6. The Installation Kiosk Perform a custom installation. Do not choose to install anything from the Solaris 8 Software 2 of 2 CD. Do not choose to scan for additional products. Include 64-bit support. Choose the entire software group. Do not skip the Solaris 8 Software 2 installation, even though this seems to contradict the advice above. When asked to specify the installation media, pick CD and perform the installation. The installation proceeds, and you reboot at the end. 7. Network configuration. 7.1. Create a file, /etc/resolv.conf, with the content shown below. (vi is a good text editor to use for this.) domain cwru.edu nameserver 129.22.4.3 nameserver 129.22.4.4 7.2. Set the correct permissions for the file. chmod 644 /etc/resolv.conf chown root:other /etc/resolv.conf 7.3. Create a file, /etc/defaultrouter, containing the IP address of your gateway. (See step 1.2.3.) For example, a machine in Crawford building might use 129.22.114.1 example 7.4. Set the correct permissions for the file. chmod 644 /etc/defaultrouter chown root:other /etc/defaultrouter 8. Plug the network cable into the back of the computer, and immediately complete the next step. page 3 of 10

9. Reboot, and immediately complete the next step. init 6 10. Secure the system. Do not omit this step, nor delay in completing it. Your system is especially vulnerable to network attack until this step is complete. 10.1. Download the latest Recommended & Security patch cluster from Sun by FTP. (The steps are abbreviated below.) ftp sunsolve.sun.com (log in as user ftp) ftp> cd /pub/patches ftp> bin ftp> hash ftp> get 8_Recommended.zip ftp> quit 10.2. Extract the zip file s contents. unzip 8_Recommended.zip an 8_Recommended directory will be created. 10.3. Install the patches. cd 8_Recommended./install_cluster 10.4. Delete the installation files if you wish. cd.. rm r 8_Recommended.zip 8_Recommended 10.5. Make a backup copy of /etc/inet/inetd.conf. cp -p /etc/inet/inetd.conf /etc/inet/inetd.conf-orig 10.6. Comment out every line of /etc/inet/inetd.conf that isn t already, except the lines for rstatd, dtspcd and kcms_server. (The file is read-only, but you can still edit it in vi. To override the file permissions, give vi the w! command.) 10.7. Turn off Sendmail by renaming /etc/rc2.d/s88sendmail. mv /etc/rc2.d/s88sendmail /etc/rc2.d/disableds88sendmail 10.8. Reboot. init 6 page 4 of 10

11. Install SSH. 11.1. Download & install Sun patch #112438. (This is similar to step 10.1.) (This patch creates the /dev/random device used by SSH.) 11.1.1. FTP to sunsolve.sun.com, and change to the /pub/patches directory. 11.1.2. Download 112438-01.zip. (Use the get command.) 11.1.3. Extract the zip file s contents. unzip 112438-01.zip a 112438-01 directory will be created. Do not change to this directory. 11.1.4. Install the patch. patchadd d 112438-01 11.1.5. Delete the installation files if you wish. rm r 112438-01.zip 112438-01 11.1.6. Reboot. init 6 11.2. Download & install necessary freeware packages. 11.2.1. FTP to ftp.sunfreeware.com, and change to the pub/freeware/sparc/8 directory. (Again, this is similar to step 10.1.) (If Sunfreeware is too busy, try ftp.ibiblio.org, and change to the pub/packages/solaris/freeware/sparc/8 directory.) 11.2.2. Download the following files. (Use sequential get commands.) gzip-1.3.5-sol8-sparc-local libgcc-3.2.2-sol8-sparc-local.gz tcp_wrappers-7.6-sol8-sparc-local.gz zlib-1.1.4-sol8-sparc-local.gz openssl-0.9.6g-sol8-sparc-local.gz openssh-3.1p1-sol8-sparc-local.gz 11.2.3. Install gzip, the software used to decompress the other files. pkgadd d gzip-1.3.5-sol8-sparc-local 11.2.4. Decompress the other files using gunzip. For example: page 5 of 10

/usr/local/bin/gunzip libgcc-3.2.2-sol8-sparc-local.gz 11.2.5. In the order given above, install the packages you ve just decompressed. For example, the first command will be: pkgadd -d libgcc-3.2.2-sol8-sparc-local 11.2.6. Delete the installation files if you wish. For example: rm gzip-1.3.5-sol8-sparc-local 11.3. Configure SSH. 11.3.1. Set up privilege separation. mkdir /var/empty chown root:sys /var/empty chmod 755 /var/empty groupadd sshd useradd g sshd c "ssh privsep" d /var/empty s /bin/false sshd 11.3.2. Generate the encryption keys for SSH. (There is nothing between the quotes at the end of these commands.) /usr/local/bin/ssh-keygen t rsa1 f /usr/local/etc/ssh_host_key -N "" /usr/local/bin/ssh-keygen t dsa f /usr/local/etc/ssh_host_dsa_key -N "" /usr/local/bin/ssh-keygen t rsa f /usr/local/etc/ssh_host_rsa_key -N "" page 6 of 10

#!/sbin/sh 11.3.3. Create a file, /etc/init.d/sshd, with the content shown below. pid=`pgrep -f /usr/local/sbin/sshd` case "$1" in start) if [ -x /usr/local/sbin/sshd ]; then echo "Starting sshd.. \c" /usr/local/sbin/sshd echo "Done." fi ;; stop) *) esac if [ "$pid"!= "" ]; then echo "Stopping sshd.. \c" /usr/bin/kill $pid echo "Done." fi ;; echo "Usage: $0 { start stop }" exit 1 ;; exit 0 11.3.4. Set the permissions on the file. chown root:sys /etc/init.d/sshd chmod 744 /etc/init.d/sshd 11.3.5. Create links in the rc directories to the file you just created. ln s../init.d/sshd /etc/rc2.d/s97sshd ln s../init.d/sshd /etc/rc1.d/k07sshd ln s../init.d/sshd /etc/rc0.d/k07sshd ls s../init.d/sshd /etc/rcs.d/k07sshd 11.4. Start the SSH daemon. /etc/init.d/sshd start 11.5. Test SSH by ssh ing to another system, and ssh ing back. page 7 of 10

12. Configure TCP Wrappers. 12.1. Create an empty file, /etc/hosts.allow. touch /etc/hosts.allow 12.2. Create a file, /etc/hosts.deny, with the content shown below. ALL: ALL 12.3. Set the correct permissions for these files. chmod 644 /etc/hosts.allow /etc/hosts.deny chown root:other /etc/hosts.allow /etc/hosts.deny 13. Configure Sendmail. 13.1. Modify the /etc/mail/aliases file so that email sent to root will come to you. Right under the initial comments in the file, add a line root: your_email_address@cwru.edu example 13.2. Update the mail alias database. newaliases 13.3. Edit the /etc/mail/local-host-names file, adding your system s fully-qualified hostname. mycomputer.math.cwru.edu example 13.4. Enable the new configuration files installed by patch #110615. cp p main.cf main.cf-orig cp p main.cf.new main.cf cp p subsidiary.cf subsidiary.cf-orig cp p subsidiary.cf.new subsidiary.cf page 8 of 10

14. Configure printing. 3 14.1. Run admintool. 14.2. Choose Browse-> Printers 14.3. Choose Edit-> Add-> Access to Printer 14.4. Provide the requested information. The printer name is probably print. The print server is the hostname of your printer. The description is optional. Set this to be the default printer. 14.5. Choose File-> Exit. 14.6. Print a short text file to test the setup. For example: lp /etc/motd 15. Configure the default shell environment. 15.1. Download and install the Bash shell (bash-2.05-sol8-sparc-local.gz) from Sunfreeware. (This is similar to step 11.2.) 15.2. Create a file, /etc/skel/.bashrc, with the content shown below. (The PATH and MANPATH definitions below are too long to fit on one line, and so have been broken onto multiple lines. When completing this step on your computer, don t break the lines.) PATH=/usr/bin:/usr/ucb:/usr/local/bin:/usr/sbin:/sbin:/usr/dt/bin: /usr/openwin/bin export PATH MANPATH=/usr/share/man:/usr/local/man:/usr/local/ssl/man:/usr/dt/man: /usr/openwin/share/man export MANPATH LD_LIBRARY_PATH=/usr/lib:/usr/local/lib export LD_LIBRARY_PATH 15.3. Create a file, /etc/skel/.bash_profile, with the content shown below. source ~/.bashrc 15.4. Set the permissions on the files. cd /etc/skel chown root:other.bash_profile.bashrc chmod 644.bash_profile.bashrc 15.5. Copy the files into root s home directory. cd /etc/skel cp.bash_profile.bashrc / 3 These instructions assume you are using a network printer such as an HP LaserJet. If not, ask us for help. page 9 of 10

16. Establish time synchronization. 16.1. Set the EDITOR environment variable so that the next command will use vi. EDITOR=vi export EDITOR 16.2. Using the crontab e command, add the following line to root s crontab file. (This will synchronize your system s clock at 7:30 every morning. Choose a different time if you prefer. Remember, no blank lines are permitted in the crontab file.) 30 7 * * * /usr/sbin/ntpdate -s ntp1.cwru.edu 17. Prepare commonly-used manpages. (Optional) catman -M /usr/local/man catman 1 catman -w 18. Set up reports. (Optional) 4 18.1. Using the crontab e command, add the following lines to root s crontab file. (This will email you the system log at 8:00 every morning, and a listing of the last 50 logins at 8:05. Choose different times if you prefer.) 0 8 * * * /usr/bin/mailx s "Report: `uname -n`: messages" root</var/adm/messages 5 8 * * * last n 50 /usr/bin/mailx s "Report: `uname n`: last 50" root 19. Install other useful programs. (Optional) Many people find the following programs very useful. Choose to install any of them that you wish. Xemacs Program Package filename(s) Description Enscript enscript-1.6.1- Prints text, etc. as PostScript. Supports pretty-printing of sol8-sparclocal.gz source code, multi-column printing, landscape orientation, xemacs-21.1.13- sol8-sparclocal.gz also requires: xpm, jpeg, libpng, gdbm etc. Very versatile. Graphical version of the Emacs text editor. Much easier to use than vi. Special support for programming & scripting languages, HTML, etc. Can be used as a development environment. Very versatile. Download, decompress and install the packages you want just as you did in steps 11.2.1 through 11.2.5. 4 These reports are optional, but they make it easy to monitor your system. You can have the reports sent less frequently if you wish. See the crontab manpage for more information. page 10 of 10

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information