Re: RSH RPM
Well you could have the Linux check a named cms file at predefined times (cron) for some type of action. The best would be to issue some kind of signal, like ctlr-alt-delete, that triggers a linux driver. That is in the pipeline (more or less ??) I hope. Cordialement / Vriendelijke Groeten / Best Regards / Med Vänliga Hälsningar Tore Agblad Tore Agblad System programmer, Volvo IT certified IT Architect Volvo Information Technology Infrastructure Mainframe Design Development, Linux servers Dept 4352 DA1S SE-405 08, Gothenburg Sweden Telephone: +46-31-3233569 E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ From: Linux on 390 Port [LINUX-390@VM.MARIST.EDU] On Behalf Of David Boyes [dbo...@sinenomine.net] Sent: Monday, September 19, 2011 20:52 To: LINUX-390@VM.MARIST.EDU Subject: Re: RSH RPM Is there something wrong with the rsh-server package on the installation media? (Other than the total lack of security Alan mentioned.) I'm in total agreement with Alan by the way. You really _don't_ want to be using rsh or rlogin or rexec on _any_ system, whether it's all inside the box or not. Really bad idea. Unless you want/need to trigger some action on Linux from CMS and don't have a SSH client, in which case, you don't have much choice. -- db -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RSH RPM
Well, if you have a little knowledge about iptables, you could trigger some action when someone tries to connect to some port. So by telnet to for example port 48113, and have iptables trigger this and start a script that reads from a predefined cms-filename, you have the trigger functionality there. Maybee this is some overkill... :) Cordialement / Vriendelijke Groeten / Best Regards / Med Vänliga Hälsningar Tore Agblad Tore Agblad System programmer, Volvo IT certified IT Architect Volvo Information Technology Infrastructure Mainframe Design Development, Linux servers Dept 4352 DA1S SE-405 08, Gothenburg Sweden Telephone: +46-31-3233569 E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ From: Linux on 390 Port [LINUX-390@VM.MARIST.EDU] On Behalf Of Richard Troth [vmcow...@gmail.com] Sent: Monday, September 19, 2011 21:05 To: LINUX-390@VM.MARIST.EDU Subject: Re: RSH RPM With all respect to Mark and Alan, David is correct. RSH is the only consistent supported means of automation between CMS (or TSO) and Linux. I put a lot of effort into cobbling up other tools to automate Linux-to-CMS, but in-house hacks are held in low esteem where vendor venues are more valued. (RSH is supported by IBM ... and by the distributors. Security be blowed!) I wish I had thought of using RSH in those scenarios, but I was blinded by righteous ideals: it's not secure. -- Rick; On Mon, Sep 19, 2011 at 14:52, David Boyes dbo...@sinenomine.net wrote: Is there something wrong with the rsh-server package on the installation media? (Other than the total lack of security Alan mentioned.) I'm in total agreement with Alan by the way. You really _don't_ want to be using rsh or rlogin or rexec on _any_ system, whether it's all inside the box or not. Really bad idea. Unless you want/need to trigger some action on Linux from CMS and don't have a SSH client, in which case, you don't have much choice. -- db -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RSH RPM
Hello, I used Yast to install rsh rpm and then modified all required configuration file to make it work. Its working now.. Thanks to all for helping me . Thanks Regards Saurabh On Tue, Sep 20, 2011 at 2:51 PM, Agblad Tore tore.agb...@volvo.com wrote: Well, if you have a little knowledge about iptables, you could trigger some action when someone tries to connect to some port. So by telnet to for example port 48113, and have iptables trigger this and start a script that reads from a predefined cms-filename, you have the trigger functionality there. Maybee this is some overkill... :) Cordialement / Vriendelijke Groeten / Best Regards / Med Vänliga Hälsningar Tore Agblad Tore Agblad System programmer, Volvo IT certified IT Architect Volvo Information Technology Infrastructure Mainframe Design Development, Linux servers Dept 4352 DA1S SE-405 08, Gothenburg Sweden Telephone: +46-31-3233569 E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ From: Linux on 390 Port [LINUX-390@VM.MARIST.EDU] On Behalf Of Richard Troth [vmcow...@gmail.com] Sent: Monday, September 19, 2011 21:05 To: LINUX-390@VM.MARIST.EDU Subject: Re: RSH RPM With all respect to Mark and Alan, David is correct. RSH is the only consistent supported means of automation between CMS (or TSO) and Linux. I put a lot of effort into cobbling up other tools to automate Linux-to-CMS, but in-house hacks are held in low esteem where vendor venues are more valued. (RSH is supported by IBM ... and by the distributors. Security be blowed!) I wish I had thought of using RSH in those scenarios, but I was blinded by righteous ideals: it's not secure. -- Rick; On Mon, Sep 19, 2011 at 14:52, David Boyes dbo...@sinenomine.net wrote: Is there something wrong with the rsh-server package on the installation media? (Other than the total lack of security Alan mentioned.) I'm in total agreement with Alan by the way. You really _don't_ want to be using rsh or rlogin or rexec on _any_ system, whether it's all inside the box or not. Really bad idea. Unless you want/need to trigger some action on Linux from CMS and don't have a SSH client, in which case, you don't have much choice. -- db -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- Thanks Regards Saurabh Khandelwal -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Duplicate rpm packages s390 - s390x, can one of them be removed?
We have several Red Hat servers that were set up by our Unix group when we started into the zLinux world. All these servers are running in 64 bit architecture. As I am getting to know they systems better, I did a search on the packages we have installed and found about 71 packages that have both a s390 (32 bit) and s390x (64 bit) versions installed. Is there any reason to have both architectures install for the same package? We just did a basic install of RHEL on one of our test systems, and when I searched that platform, we had no 32 bit packages (great!). Has anyone had similar experience or have any recommendations. I am considering removing all the 32 bit packages from the system, but want to insure that it has no impact on the system. Is there any need for a 64 bit application to have access to it's 32 bit conterpart? James Chaplin Systems Programmer, MVS, zVM zLinux -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: Duplicate rpm packages s390 - s390x, can one of them be removed?
Check the contents of each package. If the package supplies libraries, then DO NOT remove them because other things may depend on them. If the package supplies commands, you may have difficulty removing. (But re-install of preferred arch may suffice.) In the case of libraries, it is normal to have both architectures installed. Desirable even. So ... again ... check what is supplied, and if they are libs, don't sweat it. -- R; Rick Troth Velocity Software http://www.velocitysoftware.com/ On Tue, Sep 20, 2011 at 10:01, CHAPLIN, JAMES (CTR) james.chap...@associates.dhs.gov wrote: We have several Red Hat servers that were set up by our Unix group when we started into the zLinux world. All these servers are running in 64 bit architecture. As I am getting to know they systems better, I did a search on the packages we have installed and found about 71 packages that have both a s390 (32 bit) and s390x (64 bit) versions installed. Is there any reason to have both architectures install for the same package? We just did a basic install of RHEL on one of our test systems, and when I searched that platform, we had no 32 bit packages (great!). Has anyone had similar experience or have any recommendations. I am considering removing all the 32 bit packages from the system, but want to insure that it has no impact on the system. Is there any need for a 64 bit application to have access to it's 32 bit conterpart? James Chaplin Systems Programmer, MVS, zVM zLinux -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
RH NFS Server
I would like to nfs mount a filesystem that resides on a vm/Linux server onto mvs in hopes of maybe backing it up to tape. I have configured both the nfs client and server on mvs. Now I need to configure the nfs server on Linux 5.5, according to the good book I need to configure the /etc/exports file. I am looking for a sample exports file of a similar requirement, anyone care to share? Thanks Matt -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
Nothing special about z in this respect -- here's a good page to view: http://nfs.sourceforge.net/nfs-howto/ar01s03.html#config_server_setup Scott Rohling On Tue, Sep 20, 2011 at 8:56 AM, Dazzo, Matt mda...@pch.com wrote: I would like to nfs mount a filesystem that resides on a vm/Linux server onto mvs in hopes of maybe backing it up to tape. I have configured both the nfs client and server on mvs. Now I need to configure the nfs server on Linux 5.5, according to the good book I need to configure the /etc/exports file. I am looking for a sample exports file of a similar requirement, anyone care to share? Thanks Matt -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
On 9/20/2011 at 10:56 AM, Dazzo, Matt mda...@pch.com wrote: I would like to nfs mount a filesystem that resides on a vm/Linux server onto mvs in hopes of maybe backing it up to tape. I have configured both the nfs client and server on mvs. Now I need to configure the nfs server on Linux 5.5, according to the good book I need to configure the /etc/exports file. I Would that be RHEL 5 Update 5? am looking for a sample exports file of a similar requirement, anyone care to share? /path/to/directory ip.addr.of.mvs(ro,no_root_squash,sync) Mark Post -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: Duplicate rpm packages s390 - s390x, can one of them be removed?
On Tue, 20 Sep 2011, Richard Troth wrote: In the case of libraries, it is normal to have both architectures installed. Desirable even. So ... again ... check what is supplied, and if they are libs, don't sweat it. Not sure about 'Desirable' actually. If a file is not needed, or useful, it has no business clogging up a filesystem and dynamic linker search path (slowing the machine carrying around the non-used parasite) I have removed the non s390x 'multi-lib' packages, under the guidance of rpm, which 'knows' from its use of ldd, and other tools, which are 'safe' to remove, with no ill effects -- Russ herrold -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Value of TMOUT?
I'm wondering if anybody uses the TMOUT environment variable to time out shell users? I have a z/OS background and am used to my interactive TSO session timing out after about 15 minutes of non use. Do UNIX people even care about this? Or do you use some sort of cron to force idle shell users off the system. If you don't force off idle shell users, what about people who just up and leave at the end of the day without logging off? John McKown Systems Engineer IV IT Administrative Services Group HealthMarkets(r) 9151 Boulevard 26 * N. Richland Hills * TX 76010 (817) 255-3225 phone * john.mck...@healthmarkets.com * www.HealthMarkets.com Confidentiality Notice: This e-mail message may contain confidential or proprietary information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. HealthMarkets(r) is the brand name for products underwritten and issued by the insurance subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance Company(r), Mid-West National Life Insurance Company of TennesseeSM and The MEGA Life and Health Insurance Company.SM -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
Yes, RHEL 5.5 -Original Message- From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Mark Post Sent: Tuesday, September 20, 2011 11:43 AM To: LINUX-390@VM.MARIST.EDU Subject: Re: RH NFS Server On 9/20/2011 at 10:56 AM, Dazzo, Matt mda...@pch.com wrote: I would like to nfs mount a filesystem that resides on a vm/Linux server onto mvs in hopes of maybe backing it up to tape. I have configured both the nfs client and server on mvs. Now I need to configure the nfs server on Linux 5.5, according to the good book I need to configure the /etc/exports file. I Would that be RHEL 5 Update 5? am looking for a sample exports file of a similar requirement, anyone care to share? /path/to/directory ip.addr.of.mvs(ro,no_root_squash,sync) Mark Post -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: Duplicate rpm packages s390 - s390x, can one of them be removed?
Good point, Russ, but presumes that legitimate executables will only be under the purview of RPM. That may be the preferred policy, but is not universal. (And questionable if it really agrees with Unix philosophy, but we're drifting into theory ... history ... opinion.) So if a (legitimate) program requiring 32-bit support suddenly appears (outside registration with the Department of Homeland RPMs) what will it do since you have removed the 32-bit libs?? Clean is good. (get rid of unused libraries) Inventory is good. (track it all with RPM ... or something!) I'm only saying that YMMV. -- R; Rick Troth Velocity Software http://www.velocitysoftware.com/ On Tue, Sep 20, 2011 at 12:14, R P Herrold herr...@owlriver.com wrote: On Tue, 20 Sep 2011, Richard Troth wrote: In the case of libraries, it is normal to have both architectures installed. Desirable even. So ... again ... check what is supplied, and if they are libs, don't sweat it. Not sure about 'Desirable' actually. If a file is not needed, or useful, it has no business clogging up a filesystem and dynamic linker search path (slowing the machine carrying around the non-used parasite) I have removed the non s390x 'multi-lib' packages, under the guidance of rpm, which 'knows' from its use of ldd, and other tools, which are 'safe' to remove, with no ill effects -- Russ herrold -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
Richard, are you saying I have update the /etc/hosts so that the NFS server will allow the mount? Currently my mount job looks like this, MOUNT FILESYSTEM(SYS1.OMVS.NFSTEST) TYPE(NFS) + MOUNTPOINT('/u/st1mat/test/') PARM('27.1.39.104:/matt,XLAT(Y)') Where, SYS1.OMVS.NFSTEST - is an empty zfs not currently mounted. MOUNTPOINT('/u/st1mat/test/') - empty dir on mvs uss PARM('27.1.39.104:/matt,XLAT(Y)') - RHEL 5.5 Linux server, /matt is the directory I want to access from uss. Getting this error BPXF028I FILE SYSTEM SYS1.OMVS.NFSTEST WAS 322 NOT MOUNTED. RETURN CODE = 008B, REASON CODE = 6E050001 8B= operation not permitted 6E05=ownership issue -Original Message- From: Richard Troth [mailto:vmcow...@gmail.com] Sent: Tuesday, September 20, 2011 12:10 PM To: Dazzo, Matt Subject: Re: RH NFS Server Here is (most of) my /etc/exports from my main home system ... /export/home*.casita.net(rw,sync,no_root_squash,fsid=9) /export/opt *.casita.net(rw,sync,no_root_squash,fsid=10) /export/media *.casita.net(rw,sync,no_root_squash,fsid=11) The fsid part is optional. (In your case, I recommend leaving it out to simplify things.) The no_root_squash flag means to expose files owned by UID 0. For the filesystems in question (in my case, probably also true for backups like you are doing), it makes things cleaner. (No UID swizzling means less moving parts.) The rw and sync flags go together. You'll probably just want ro. (No need for sync.) NOTICE that I export to *.casita.net. My home domain is casita.net. EVERY client host needs to be recognized by the NFS server. I usually have to add them to /etc/hosts ... and fully qualify them. (Probably don't have to fully qualify if you don't go with wildcards like I did.) In your case, all IP addresses of your MVS system need to be recognized by the NFS server. The NFS server needs to see your MVS box as legit. If you cannot mount the Linux filesystems on MVS, then check /var/log/messages on the Linux side. -- R; Rick Troth Velocity Software http://www.velocitysoftware.com/ On Tue, Sep 20, 2011 at 10:56, Dazzo, Matt mda...@pch.com wrote: I would like to nfs mount a filesystem that resides on a vm/Linux server onto mvs in hopes of maybe backing it up to tape. I have configured both the nfs client and server on mvs. Now I need to configure the nfs server on Linux 5.5, according to the good book I need to configure the /etc/exports file. I am looking for a sample exports file of a similar requirement, anyone care to share? Thanks Matt -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: Value of TMOUT?
We have a value of TMOUT=600 (10 Minutes) in both our Linux and USS environments. We are required to terminate inactive sessions for all of our environments, including CICS and TSO. Kevin George -Original Message- From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of McKown, John Sent: Tuesday, September 20, 2011 1:35 PM To: LINUX-390@VM.MARIST.EDU Subject: Value of TMOUT? I'm wondering if anybody uses the TMOUT environment variable to time out shell users? I have a z/OS background and am used to my interactive TSO session timing out after about 15 minutes of non use. Do UNIX people even care about this? Or do you use some sort of cron to force idle shell users off the system. If you don't force off idle shell users, what about people who just up and leave at the end of the day without logging off? John McKown Systems Engineer IV IT Administrative Services Group HealthMarkets(r) 9151 Boulevard 26 * N. Richland Hills * TX 76010 (817) 255-3225 phone * john.mck...@healthmarkets.com * www.HealthMarkets.com Confidentiality Notice: This e-mail message may contain confidential or proprietary information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. HealthMarkets(r) is the brand name for products underwritten and issued by the insurance subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance Company(r), Mid-West National Life Insurance Company of TennesseeSM and The MEGA Life and Health Insurance Company.SM -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: Value of TMOUT?
I'm wondering if anybody uses the TMOUT environment variable to time out shell users? I have a z/OS background and am used to my interactive TSO session timing out after about 15 minutes of non use. Do UNIX people even care about this? Or do you use some sort of cron to force idle shell users off the system. If you don't force off idle shell users, what about people who just up and leave at the end of the day without logging off? Most of us are not command line based any more but using local or remote GUI tools. There are apps for booting idle people off. TMOUT isn't great because a user in an app won't get zapped. If you are using ssh for your sessions then in sshd_config set ClientAliveInterval 600 ClientAliveCountMax 0 and restart sshd and your world will be happier. Users can still subvert it by leaving a session that is producing output every few minutes (eg a background while (1) { sleep(500): printf( );) but at that point it's moving from dealing with the forgetful to managing problems in your userbase, which is a whole different game. BTW if you get users who get upset about being booted off when they leave their sessions idle, introduce them to screen .. -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
I don't know z/OS well enough to say if FILESYSTEM(SYS1.OMVS.NFSTEST) is required. Does not make sense that you would need a local empty ZFS filesystem. The filesystem of interest is a sub-directory of a remote filesystem. (Or could be the entire remote filesystem.) So at first blush, I would think you have introduced a conflict. What is z/OS supposed to do with the local FS when you're trying to mount a remote FS? 8B= operation not permitted 6E05=ownership issue These errors *look* like the server rejecting you. But I am confused by your use of the local ZFS. The MOUNTPOINT('/u/st1mat/test/') makes perfect sense. The norm is that it be an empty directory. Most Unix systems require only that it exist. (If it has any content, the content is obscured by the NFS filesystem you mount over it.) You said it exists in USS. Good. Ownership of that (empty) directory may come into play. You might need to ask people on the MVS-OE discussion. (But some of them are probably on this list too.) So then ... 27.1.39.104 is the Linux system, yes? And /matt exists and has been listed in your /etc/exports file there, correct? What happens next is that 27.1.39.104 sees connections coming from z/OS. What is that IP address? The Linux NFS server will need to resolve that address to a hostname. That hostname must match what is allowed via /etc/exports. Personally, I find that I often must list these clients in /etc/hosts. (on the Linux NFS server side) There are changes to the Linux NFS server which I haven't kept up with, so there are probably a dozen ways to skin this cat. Say, for example, that MVS is at 27.1.39.101. Call it mymvs. /etc/hosts would include ... 27.1.39.101mymvs and /etc/exports would include ... /mattmymvs(ro) YOU MAY be able to export by address, but most of us will tell you use hostnames. /matt27.1.39.101(ro) -- R; Rick Troth Velocity Software http://www.velocitysoftware.com/ On Tue, Sep 20, 2011 at 15:03, Dazzo, Matt mda...@pch.com wrote: Richard, are you saying I have update the /etc/hosts so that the NFS server will allow the mount? Currently my mount job looks like this, MOUNT FILESYSTEM(SYS1.OMVS.NFSTEST) TYPE(NFS) + MOUNTPOINT('/u/st1mat/test/') PARM('27.1.39.104:/matt,XLAT(Y)') Where, SYS1.OMVS.NFSTEST - is an empty zfs not currently mounted. MOUNTPOINT('/u/st1mat/test/') - empty dir on mvs uss PARM('27.1.39.104:/matt,XLAT(Y)') - RHEL 5.5 Linux server, /matt is the directory I want to access from uss. Getting this error BPXF028I FILE SYSTEM SYS1.OMVS.NFSTEST WAS 322 NOT MOUNTED. RETURN CODE = 008B, REASON CODE = 6E050001 8B= operation not permitted 6E05=ownership issue -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RH NFS Server
I think it, FILESYSTEM(SYS1.OMVS.NFSTEST), needs to be a unique name like FILESYSTEM(NFSMNT01). From the command line; /usr/sbin/mount -tnfs -o'10.1.2.3:/nfsmnt1,vers(3),soft,xlat(Y),cln_ccsid(1047),srv_ccsid(819)' -fNFSMNT01 /nfs/mnt01 Thx - Please consider the environment before printing this email and any attachments. This e-mail and any attachments are intended only for the individual or company to which it is addressed and may contain information which is privileged, confidential and prohibited from disclosure or unauthorized use under applicable law. If you are not the intended recipient of this e-mail, you are hereby notified that any use, dissemination, or copying of this e-mail or the information contained in this e-mail is strictly prohibited by the sender. If you have received this transmission in error, please return the material received to the sender and delete all copies from your system. -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RSH RPM
Well, if you have a little knowledge about iptables, you could trigger some action when someone tries to connect to some port. So by telnet to for example port 48113, and have iptables trigger this and start a script that reads from a predefined cms-filename, you have the trigger functionality there. Maybee this is some overkill... :) Big problem here: no authentication of originator (telnet doesn't do that), no way to set the effective uid of the executor (do you want all your users executing things as root?) and there's no way to return values to the originator. Rsh (for all its warts) at least does these 3 things right. I've offered IBM a chance to discuss including our SSH/SFTP/SCP client into the base VM product. If you think that would be a good idea, contact your IBM rep (don't post it here -- we all know it would be a good idea and the PHBs need to hear it through the official channels). -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: RSH RPM
On Tuesday, 09/20/2011 at 05:09 EDT, David Boyes dbo...@sinenomine.net wrote: Well, if you have a little knowledge about iptables, you could trigger some action when someone tries to connect to some port. So by telnet to for example port 48113, and have iptables trigger this and start a script that reads from a predefined cms-filename, you have the trigger functionality there. Maybee this is some overkill... :) Big problem here: no authentication of originator (telnet doesn't do that), no way to set the effective uid of the executor (do you want all your users executing things as root?) and there's no way to return values to the originator. Rsh (for all its warts) at least does these 3 things right. Amen. In any peer-peer protocol, there are two important attributes: 1. Authentication 2. Privacy Rsh on an internal z/VM virtual network achieves both. Things like Live Guest Relocation introduces an anomaly into the equation, since a what appears as internal one moment may in fact be remote at the next. Of course, protocol security discussions rarely deal with common sense, but with Rules Made To Be Followed Without Exception Because My Grandfather Told Me So. Hence the descent into rsh/rexec madness and the unblinking acceptance of unsecured telnet. Go figure. (I can't believe that in 2011 secure telnet is not de rigueur.) Alan Altmark Senior Managing z/VM and Linux Consultant IBM System Lab Services and Training ibm.com/systems/services/labservices office: 607.429.3323 mobile; 607.321.7556 alan_altm...@us.ibm.com IBM Endicott -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: zfcp disk error
Many thanks for your detail explaination everybody here. At first, I will use 4 sub-channels instead of 80 for every linux, like what Steffen and Ralph recommanded. Then check if the error occur again. At second, I will update MCF version to latest one, like what Raymond recommanded. I will post our progress and result later. Raymond: I had talked with HW guy about collect HW logs. But he is not clear. Could you tell me what kind of logs should collected? -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/
Re: zfcp disk error
Lu, On the SE, there is a file, /console/data/iqyylog.log. I think it is only accessible with the pemode and pedebug user ids. Hopefully the HW guy that mentioned is an IBM support person. Otherwise, I don't think you'll have access. Regards, Ray Higgs System z FCP Firmware Development Bld. 706, B42 2455 South Road Poughkeepsie, NY 12601 (845) 435-8666, T/L 295-8666 rayhi...@us.ibm.com Linux on 390 Port LINUX-390@vm.marist.edu wrote on 09/20/2011 10:55:08 PM: From: Lu GL Gao lu...@cn.ibm.com To: LINUX-390@vm.marist.edu Date: 09/20/2011 11:01 PM Subject: Re: zfcp disk error Sent by: Linux on 390 Port LINUX-390@vm.marist.edu Many thanks for your detail explaination everybody here. At first, I will use 4 sub-channels instead of 80 for every linux, like what Steffen and Ralph recommanded. Then check if the error occur again. At second, I will update MCF version to latest one, like what Raymond recommanded. I will post our progress and result later. Raymond: I had talked with HW guy about collect HW logs. But he is not clear. Could you tell me what kind of logs should collected? -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/ -- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For more information on Linux on System z, visit http://wiki.linuxvm.org/