IRIX Base Documentation 2002 November

home *** CD-ROM | disk | FTP | other *** search

/ IRIX Base Documentation 2002 November / SGI IRIX Base Documentation 2002 November.iso / usr / relnotes / trix / ch2.z / ch2

Wrap

Text File | 2002-10-08 | 14.9 KB | 393 lines

- 1 - 2. _I_n_s_t_a_l_l_a_t_i_o_n__I_n_f_o_r_m_a_t_i_o_n Trusted IRIX 6.5.14 MUST be installed from the miniroot. As of 6.5.11, Trusted IRIX/CMW 6.5.X no longer contains overlays of IRIX 6.5.X packages, the Trusted IRIX/CMW extensions are incorporated into the IRIX 6.5.X packages. Therefore, to install or upgrade to Trusted IRIX/CMW 6.5.14 requires IRIX 6.5, Trusted IRIX/CMW 6.5 trix_eoe packages, IRIX 6.5.14 overlays and the Trusted IRIX/CMW 6.5.14 trix_eoe packages. The eoe.sw.acl and eoe.sw.audit packages from IRIX 6.5.14 must be installed, as well as NFS and nfs.sw.acl_nfs. This chapter lists supplemental information to the _I_R_I_X _A_d_m_i_n: _S_o_f_t_w_a_r_e _I_n_s_t_a_l_l_a_t_i_o_n _a_n_d _L_i_c_e_n_s_i_n_g _G_u_i_d_e. The information listed here is product-specific; use it with the installation guide to install this product. Trusted IRIX/CMW must be configured properly for correct operation. Please see the _T_r_u_s_t_e_d _I_R_I_X/_C_M_W _S_e_c_u_r_i_t_y _A_d_m_i_n_i_s_t_r_a_t_o_r'_s _G_u_i_d_e (Document Number 007-3299-005) for more information. 2.1 _T_r_i_x__S_u_b_s_y_s_t_e_m_s Following is a description of the Trix subsystems: _t_r_i_x__e_o_e._s_w._c_i_p_s_o Software that implements the Trusted Systems Interoperability Group (TSIG) Common Internet Protocol Security Option (CIPSO) protocol. _t_r_i_x__e_o_e._s_w._m_a_c Support for Mandatory Access Control (MAC) to meet the United States National Security Agency's Trusted Computer Systems Evaluation Criteria (TCSEC, or Orange Book) "B" Level requirements. _t_r_i_x__e_o_e._s_w._t_s_i_x Software that implements the Trusted Systems Interoperability Group (TSIG) TSIX session management protocol. _t_r_i_x__e_o_e._t_r_i_x__b_o_o_k_s._T_C_M_W__A_G Trusted IRIX/CMW Admin Guide - 2 - _t_r_i_x__e_o_e._t_r_i_x__b_o_o_k_s._T_C_M_W__U_G Trusted IRIX/CMW User Guide _t_r_i_x__e_o_e._m_a_n._t_r_i_x__e_o_e__r_n Release notes (this document). 2.2 _T_r_i_x__S_u_b_s_y_s_t_e_m__D_i_s_k__U_s_e This section lists the Trix option subsystems and their sizes. Those subsystems marked ``default'' are selected for installation in the distribution software. If you are installing Trix software for the first time, these subsystems are installed if you use the ``go'' menu item from _i_n_s_t. To select a different set of subsystems for installation, use _i_n_s_t's ``install,'' ``remove,'' ``keep,'' and ``step'' commands to customize the selection list. Then, use the ``go'' menu item to install the selected subsystems. Note: The listed subsystem sizes are approximate. Refer to the _I_R_I_S _S_o_f_t_w_a_r_e _I_n_s_t_a_l_l_a_t_i_o_n _G_u_i_d_e for information on finding exact sizes. Subsystem Name Subsystem Size (512-byte blocks) _t_r_i_x__e_o_e._s_w._c_i_p_s_o (default) 80 _t_r_i_x__e_o_e._s_w._m_a_c (default) 304 _t_r_i_x__e_o_e._s_w._t_s_i_x (default) 324 _t_r_i_x__e_o_e._m_a_n._t_r_i_x__e_o_e__r_n (default) 36 Mandatory access control labels applied to the file system during installation will use additional disk space. 2.3 _I_n_s_t_a_l_l_a_t_i_o_n__M_e_t_h_o_d This section lists the installation method for the Trix subsystems. Refer to the _I_R_I_S _S_o_f_t_w_a_r_e _I_n_s_t_a_l_l_a_t_i_o_n _G_u_i_d_e for complete installation instructions. Subsystem Name Method of Installation _t_r_i_x__e_o_e._s_w._c_i_p_s_o miniroot _t_r_i_x__e_o_e._s_w._m_a_c miniroot _t_r_i_x__e_o_e._s_w._t_s_i_x miniroot _t_r_i_x__e_o_e._m_a_n._t_r_i_x__e_o_e__r_n miniroot or IRIX Trusted IRIX/CMW must be installed from the miniroot. - 3 - As of 6.5.11, the Trusted IRIX/CMW images no longer overlay any IRIX subsystems. Therefore, Trusted IRIX/CMW 6.5.14 no longer includes additional overlays of 4Dwm, destop_base, desktop_eoe and print, but still includes trix_eoe images. The installation of Trusted IRIX/CMW 6.5.14 still requires that IRIX 6.5 and Trusted IRIX/CMW 6.5 are installed before installing IRIX 6.5.X and Trusted IRIX/CMW 6.5.X. 2.4 _P_r_e_r_e_q_u_i_s_i_t_e_s Your workstation must be running at least release IRIX 6.5 to use Trix 6.5. The packages _e_o_e._s_w._a_c_l and _e_o_e._s_w._a_u_d_i_t must be installed from IRIX 6.5. The _e_o_e._s_w._r_c_s package should be installed so that system databases can be placed under version control. NFS must be installed from IRIX 6.5, including the _n_f_s._s_w._a_c_l__n_f_s subsystem. The _t_r_i_x__e_o_e._s_w._m_a_c subsystem is a prerequisite for running the _t_r_i_x__e_o_e._s_w._c_i_p_s_o subsystem. The _t_r_i_x__e_o_e._s_w._c_i_p_s_o subsystem is a prerequisite for running the _t_r_i_x__e_o_e._s_w._t_s_i_x subsystem. 2.5 _C_o_m_p_a_t_i_b_i_l_i_t_y__f_o_r__D_i_s_k_l_e_s_s__S_y_s_t_e_m_s A server must be running IRIX 6.5 (or higher) to support IRIX 6.5 clients running Trusted IRIX/CMW. 2.6 _I_n_s_t_a_l_l_a_t_i_o_n__S_t_e_p_s The following steps are recommended for installing Trix: 1) Open IRIX 6.5 Foundation, NFS, Trusted IRIX/CMW 6.5, IRIX 6.5.14 and Trusted IRIX/CMW 6.5.14 CDs IIIInnnnsssstttt>>>> ooooppppeeeennnn ............ 2) Ensure the following subsystems are marked for installation: IIIInnnnsssstttt>>>> iiiinnnnssssttttaaaallllllll eeeeooooeeee....sssswwww....aaaauuuuddddiiiitttt IIIInnnnsssstttt>>>> iiiinnnnssssttttaaaallllllll eeeeooooeeee....sssswwww....aaaaccccllll IIIInnnnsssstttt>>>> iiiinnnnssssttttaaaallllllll eeeeooooeeee....sssswwww....rrrrccccssss IIIInnnnsssstttt>>>> iiiinnnnssssttttaaaallllllll nnnnffffssss....sssswwww....aaaaccccllll____nnnnffffssss IIIInnnnsssstttt>>>> iiiinnnnssssttttaaaallllllll ttttrrrriiiixxxx____eeeeooooeeee - 4 - 3) Install these images IIIInnnnsssstttt>>>> ggggoooo 4) Edit certain files IIIInnnnsssstttt>>>> sssshhhhrrrrooooooootttt - update host name and IP address %%%% vvvviiii ////eeeettttcccc////hhhhoooossssttttssss - update host name %%%% vvvviiii ////eeeettttcccc////ssssyyyyssss____iiiidddd - update remote host configuration %%%% vvvviiii ////eeeettttcccc////rrrrhhhhoooosssstttt....ccccoooonnnnffff %%%% eeeexxxxiiiitttt 5) Update other config files IIIInnnnsssstttt>>>> aaaaddddmmmmiiiinnnn ccccoooonnnnffffiiiigggg cccchhhhaaaannnnggggeeeedddd IIIInnnnsssstttt>>>> sssshhhhrrrrooooooootttt %%%% vvvviiii ............ 6) Quit inst IIIInnnnsssstttt>>>> qqqquuuuiiiitttt 7) At the "reboot?" prompt, get a "(sh)ell" %%%% rrrrmmmm ////rrrrooooooootttt////vvvvaaaarrrr////iiiinnnnsssstttt////....rrrrqqqqssssffffiiiilllleeeessss....**** %%%% cccchhhhrrrrooooooootttt ////rrrrooooooootttt ////ssssbbbbiiiinnnn////aaaattttttttrrrriiiinnnniiiitttt ----mmmmaaaacccc====ddddbbbblllloooowwww ----ttttyyyyppppeeee====ffff ////uuuunnnniiiixxxx ////vvvvaaaarrrr////iiiinnnnsssstttt////....rrrrqqqqssssffffiiiilllleeeessss ////vvvvaaaarrrr////iiiinnnnsssstttt////....sssswwwwmmmmggggrrrrrrrrcccc ////vvvvaaaarrrr////iiiinnnnsssstttt////hhhhiiiisssstttt 8) If /usr is a separate partition to /, label the /usr mount point %%%% uuuummmmoooouuuunnnntttt ////rrrrooooooootttt////uuuussssrrrr %%%% cccchhhhrrrrooooooootttt ////rrrrooooooootttt ////ssssbbbbiiiinnnn////aaaattttttttrrrriiiinnnniiiitttt ----ttttyyyyppppeeee====dddd ----mmmmaaaacccc====ddddbbbblllloooowwww ////uuuussssrrrr %%%% mmmmoooouuuunnnntttt ////ddddeeeevvvv////ddddsssskkkk////ddddkkkkssssXXXXddddYYYYssssZZZZ ////rrrrooooooootttt////uuuussssrrrr 9) Continue with reboot %%%% eeeexxxxiiiitttt Review and updated any other config files that have been updated or suggested (or run _v_e_r_s_i_o_n_s _c_h_a_n_g_e_d once the machine has restarted): - 5 - IIIInnnnsssstttt >>>> aaaaddddmmmmiiiinnnn ccccoooonnnnffffiiiigggg cccchhhhaaaannnnggggeeeedddd Quit Inst. IIIInnnnsssstttt>>>> qqqquuuuiiiitttt Do not reboot immediately but request a (sh)ell instead %%%% rrrrmmmm ////rrrrooooooootttt////vvvvaaaarrrr////iiiinnnnsssstttt////....rrrrqqqqssssffffiiiilllleeeessss....**** %%%% cccchhhhrrrrooooooootttt ////rrrrooooooootttt ////ssssbbbbiiiinnnn////aaaattttttttrrrriiiinnnniiiitttt ----mmmmaaaacccc====ddddbbbblllloooowwww ----ttttyyyyppppeeee====ffff ////uuuunnnniiiixxxx ////vvvvaaaarrrr////iiiinnnnsssstttt////....rrrrqqqqssssffffiiiilllleeeessss ////vvvvaaaarrrr////iiiinnnnsssstttt////....sssswwwwmmmmggggrrrrrrrrcccc ////vvvvaaaarrrr////iiiinnnnsssstttt////hhhhiiiisssstttt If /usr is a separate partition to /, label /usr mount point %%%% uuuummmmoooouuuunnnntttt ////uuuussssrrrr %%%% ////ssssbbbbiiiinnnn////aaaattttttttrrrriiiinnnniiiitttt ----ttttyyyyppppeeee====dddd ----mmmmaaaacccc====ddddbbbblllloooowwww ////uuuussssrrrr %%%% mmmmoooouuuunnnntttt ////ddddeeeevvvv////ddddsssskkkk////ddddkkkkssssXXXXddddYYYYssssZZZZ ////uuuussssrrrr Exit the shell and reboot %%%% eeeexxxxiiiitttt 2.7 _C_o_n_f_i_g_u_r_a_t_i_o_n__F_i_l_e_s This section lists installed files that can be edited to contain site-specific changes. Please see the _T_r_u_s_t_e_d _I_r_i_x/_C_M_W _S_e_c_u_r_i_t_y _A_d_m_i_n_i_s_t_r_a_t_i_o_n _G_u_i_d_e for details. The following files must be changed to identify your machine: /_e_t_c/_h_o_s_t_s Update the host's name and IP address. /_e_t_c/_s_y_s__i_d Update the host's name. /_e_t_c/_r_h_o_s_t._c_o_n_f Site-specific options for security attributes of this host and other hosts that may communicate with this host. 2.8 _O_t_h_e_r__I_n_s_t_a_l_l_a_t_i_o_n__I_n_f_o_r_m_a_t_i_o_n The Trusted Irix/CMW environment differs significantly from standard IRIX. The user is encouraged to become familiar with all provided information including the insight books (_T_r_u_s_t_e_d _I_R_I_X/_C_M_W _S_e_c_u_r_i_t_y _A_d_m_i_n_i_s_t_r_a_t_o_r'_s _G_u_i_d_e and _T_r_u_s_t_e_d _I_R_I_X/_C_M_W _S_e_c_u_r_i_t_y _F_e_a_t_u_r_e_s _U_s_e_r'_s _G_u_i_d_e) prior to installing - 6 - this product. It is not possible to revert back to IRIX 6.5.X once Trusted IRIX 6.5.X is installed on a system.