Patch Name:  PHNE_3886

Patch Description: s700 9.09 Trusted Networking patch #1

This patch contains fixes for:
        Xnsoi
        Network Tracing and Logging
        M6d
        Unix Domain Socket
        Automount
        RCP

1) Correct privilege handling of rcp so that a "consumer" process
        that has writeupclearance or writeupsyshi can overwrite an
        existing file at a higher sensitivity level.

2) m6d marked the network as up, even when there is no LAN
        device enabled.  Automount happens to be the first command
        that attempts to send a broadcast message, and system hangs
        if the machine has a dead network.  M6d is modified to
        fix this problem

3) System panic when using the linger option to close sockets.
        The fix is in the libuipc.a kernel libraries.

4) XNSOI calling libm6.a using m6puthostent() function call to
            update /etc/hosts ends up changing the mode bit of the /etc/hosts
            from 644 to 640.  We want to maintain the original /etc/hosts
            mode bits instead.

5) netnfsrc was invoked as a primordial process, which invokes ypserv
          with allownetaccess enabled. As a result, when automount attempts
          to contact ypserv, ypserv responds as a tcb server and automount
          is not authorized to receive the response. The fix is to start
          ypserv with the appropriate privileges in /etc/netnfsrc.

6) The netfmt option of -N, which  enables "nice" formatting where
          Ethernet/IEEE802.3, IP, ICMP, TCP, UDP and ARP packets are displayed
          symbolically, does not work. Any reference to this option in the
          netfmt command line will result in an error message about linking.

7) In M6 source directory del_src/files.snet, the /tcb/bin/Xnsoi
      entry contains execsugid which should be execsuid priv.

Path Name:  /hp-ux_patches/s700/9.X/PHNE_3886

Effective Date:  940307

Repost: 95/04/04
        The customize script was modified to insure the patch
        is not loaded on 9.09+.

OS Release:  9.09

Reboot Required:  Yes

Patch Files:  
    Xnsoi
    files
    files.snet
    libm6.a
    m6d
    netfmt
    netnfsrc
    ntl_reader
    rcp
    uipc_socket.o

SR#:  None


"what" string/timestamp:  
    Xnsoi:
        Xnsoi A.09.09 03-03-94 tnparse.c 3.4.1.1 12:43:23 7/24/92
        SecureWare
    files:
    files.snet:
    libm6.a:
        tnparse.c 3.4.1.1 12:43:23 7/24/92 SecureWare
    m6d:
        tnparse.c 3.4.1.1 12:43:23 7/24/92 SecureWare
    netfmt:
        NETTRACELOG:  Version:  A.09.00 $Date:  92/07/27 11:58:40 $
    netnfsrc:
        netnfsrc:  $Revision:  1.51.109.9 $ $Date:  92/08/18 13:48:27 $
    ntl_reader:
        NETTRACELOG:  Version:  A.09.00 $Date:  92/07/27 11:58:40 $
    rcp:
         Copyright (c) 1983 The Regents of the University of California.
        rcp.c 5.20 (Berkeley) 5/23/89 $Header:  rcp.c,v 804.17 94/01/12
        15:57:01 vern Exp $ m6apps.c 3.4.1.10 16:25:41 1/29/93
        SecureWare priv.c 804.1 (sendmail_sec.c,v) 91/01/16 tnparse.c
        3.4.1.1 12:43:23 7/24/92 SecureWare
    uipc_socket.o:

"sum" output:  
    18766 1512 Xnsoi
    19536 12 files
    58438 9 files.snet
    16628 279 libm6.a
    26906 1352 m6d
    60654 520 netfmt
    1721 24 netnfsrc
    57664 88 ntl_reader
    53165 176 rcp
    35132 38 uipc_socket.o

Dependencies:  None

Supersedes:  None

Patch Package Size:  2070 Kbytes

Installation Instructions:  

     Please review all instructions and the Hewlett-Packard
     SupportLine User Guide or your Hewlett-Packard support terms
     and conditions for precautions, scope of license,
     restrictions, and, limitation of liability and warranties,
     before installing this patch.

     Note: Please back up your system before you patch.

---------------------------------------------------------------------------
After getting the patch onto your machine, unshar the patch (sh PHNE_3886).

To install this patch do the following:
1) Run /etc/update (Note: you must be logged in as root to update
   a system).
2) Once in the update "Main Menu" move the highlighted line to "Change
   Source or Destination ->" and press "Return" or "Select Item".
3) Make sure the highlighted item in the "Change Source or Destination"
   window is "From Tape Device to Local System ...", then press "Return" or
   "Select Item".
4) You should now be in the "From Tape Device to Local System" window.
   Change the "Source:  /dev/rmt/0m" to "Source: /tmp/PHNE_3886.updt"
   (this assumes that you are in the /tmp directory where PHNE_3886.updt
   has been placed).  Note: You must enter the complete path name.
5) Press "Done".
6) From here on follow the standard directions for update.

The customized script that update runs will move the original software
to /system/PHNE_3886/orig.  HP recommends keeping this software there in
order to recover from any potential problems.  It is also recommended that
you move the PHNE_3886.text file to /system/PHNE_3886 to be retained for
future reference.

If you wish to put this patch on a magnetic tape and update from the tape
drive, dd a copy of the patch to the tape drive.  As an example the
following will create a copy of the patch that update can read:
dd if=PHNE_3886.updt of=/dev/rmt/0m bs=2048