> How did I miss your announcement for RC4 ???
>
> Does everybody else know that RC4 was released on 7Nov ???
Um...because I think I forgot to make one.
<clears throat...begins fanfare>
Announcing the availability of Dachstein-CD release candidate 4 (rc4)
This version is getting very close to finished...enough so that I am now
running it on four production routers. The biggest change is the addition
of openssh.
There have also been substantial changes to the POSIXness cut command, which
severly broken. Looking over the original code, I don't know how it ever
worked, but it is fixed now. Anyone wanting to see an example of advanced
sed scripting should take a look at the new command...the cut command is
translated directly into a single sed script. Also, range specifications
(ie cut -f 3-8), multiple field specifications (ie cut -f -3,5,7-9,11-) and
the byte/char modes are now supported.
The POSIXness mail script also got fixed, and in the process, I learned how
to open multiple file descriptors for reading using shell script (adding to
the multi-threaded and inter-process comunation already implemented).
KNOWN BUGS:
There is a problem with the snmpBlock procedure in ipfilter.conf...I can't
remember how many times I've had to fix this, but the fix never seems to
'stick', and gets lost when I build new version of /etc. The next release
WILL have the fix, in the mean-time, you can manually change:
if [ "$SNMP_BLOCK" != "YES" -o "$SNMP_BLOCK" != "Yes" \
-o "$SNMP_BLOCK" != "yes" ] ; then
to:
if [ "$SNMP_BLOCK" != "YES" -a "$SNMP_BLOCK" != "Yes" \
-a "$SNMP_BLOCK" != "yes" ] ; then
note -o (or) switched to -a (and)
I will also upgrade the openssh package to Jacques' latest 2.9.9p2 version
on the next release.
Migrating from LRP-CD:
-----------------
Migrating from LRP-CD is fairly straight-forward, but there are a few things
to note. I followed the following general procedure:
- COPY YOUR CONFIGURATION DISK AND WORK WITH THE COPY
- Boot LRP-CD on a convinent test machine with the copy of your config disk
- Change the lrpkg.cfg file on your floppy to reflect changes for Dachstein:
ipsec now requires mawk and ifconfig
sshd-1 -> sshd and ssh-1 -> ssh...both require libz
ramdisk -> ramlog
update package is no longer needed
you might want to load some of the new packages, like bash (required
lrdline2 and lncurses), vim, and rsync
- Rename etc.lrp on the config floppy to etcx.lrp so it will not be loaded.
Rename (or delete) modules.lrp.
- Reboot the system with Dachstein-CD and your modified config floppy
- Load sshkey and run makekeys to generate host keys for sshd
- If desired, migrate your existing ssh host key to the new system:
mount -t msdos /dev/fd0 /mnt
cd /tmp
zcat /mnt/sshd-1.lrp | tar -xv
cp /tmp/etc/ssh/ssh_host_key* /etc/ssh
umount /mnt
- Backup sshd
- Edit /etc/modules as requierd, and backup modules
- Migrate your existing network configuration to the new system...I do this
by hand. First, extract your previous etc.lrp to /tmp using the method
above.
- With your old etc extracted to /tmp, copy any files you manually
created/modified (like localtime, ipchains.input, hosts.allow/hosts.deny,
hostname, hosts, nsswitch.conf, &c).
- Manually merge your network.conf settings to the new network.conf file.
This will allow you to keep the updated inline comments for network.conf,
which you may need at some point in the future. Remember you can access two
virtual consoles using <alt><F1> and <alt><F2>
- Manually make the change to /etc/ipfilter.conf listed above...it will be
backed up with /etc on the floppy.
- Backup etc, reboot, and verify your configuration matches that of your
online system. Especially check the firewall rules.
- When your new system looks properly configured, put the Dachstein-CD and
new config floppy in your production system, reboot, and verify everything
works correctly...
----------
Changes from Dachstein-CD rc3 to Dachstein-CD rc4:
----------
root version changed to 4.0.3
Updated POSIXness cut
Changed ssh packages to openssh packages (V2.9p2) from Jacques Nilo
etc.lrp updated to 'unified' version for use on both cd & floppy
fixed bug when using IP Aliases on external net
/etc/init.d/hostname.sh modified for busybox hostname (-F not --file)
added banner back to auto-generated hostname file
removed weblet entry from /etc/crontab (weblet now includes a log rotation
script in /etc/cron.daily)
removed unnecessary auth backup files (group-, gshadow-, passwd-, shadow-)
IP set to eth1_IPADDR in auto-generated hosts file
Weblet updated
Busybox hostname fixed to act more like net-tools hostname
POSIXness.mail updated
blank line properly inserted between headers and message body
logging added
----------
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
