home clear 64x64
en blue 200x116 de orange 200x116 info letter User
suche 36x36
Latest versionsfixlist
11.1.0.7 FixList
10.5.0.9 FixList
10.1.0.6 FixList
9.8.0.5 FixList
9.7.0.11 FixList
9.5.0.10 FixList
9.1.0.12 FixList
Have problems? - contact us.
Register for free anmeldung-x26
Contact form kontakt-x26

DB2 - Problem description

Problem IC63581 Status: Closed

SECURITY: INCORRECT FILE PERMISSION AND AUTHORIZATION FOR HA SCR IPTSWHEN
INSTALLED VIA V9.5.

product:
DB2 FOR LUW / DB2FORLUW / 950 - DB2
Problem description:
In V9.5 we have introduced the integrated high Availability (HA) 
solution with TSA. This scripts is automatically installed 
inside the /usr/sbin/rsct/sapolicies/db2 directory. However 
the files when installed have incorrect file permissions and 
authorization. 
Here's the list of files installed... 
 $ ls -ltr /usr/sbin/rsct/sapolicies/db2 
    total 112 
    -r-xr-xr-x  1 18597 7777 1312 Aug 27  2007 lockreqprocessed 
    -r-xr-xr-x  1 18597 7777 3617 Aug 27  2007 hadrV95_stop.ksh 
    -r-xr-xr-x  1 18597 7777 3621 Aug 27  2007 hadrV95_start.ksh 
    -r-xr-xr-x  1 18597 7777 2926 Jan 21  2008 
db2V95_monitor.ksh 
    -r-xr-xr-x  1 18597 7777 5377 Feb 14  2008 db2V95_start.ksh 
    -r-xr-xr-x  1 18597 7777 4615 Feb 22  2008 
mountV95_monitor.ksh 
-r-xr-xr-x  1 18597 7777 4535 Oct  3  2008 hadrV95_monitor.ksh 
    -r-xr-xr-x  1 18597 7777 4906 Jan  5  2009 
mountV95_start.ksh 
    -rw-r--r--  1 root  root  199 Sep 11 12:35 spec
Problem Summary:
Users Affected : All 
Problem Descriy : 
Security : Incorrect file permission and authorization for 
HA scripts when installed via 9.5. 
Problem Summary : 
In V9.5 we have introduced the integrated high Availability (HA) 
solution with TSA. This scripts is automatically installed 
inside the /usr/sbin/rsct/sapolicies/db2 directory. However 
the files when installed have incorrect file permissions and 
authorization. 
Here's the list of files installed... 
 $ ls -ltr /usr/sbin/rsct/sapolicies/db2 
    total 112 
    -r-xr-xr-x  1 18597 7777 1312 Aug 27  2007 lockreqprocessed 
    -r-xr-xr-x  1 18597 7777 3617 Aug 27  2007 hadrV95_stop.ksh 
    -r-xr-xr-x  1 18597 7777 3621 Aug 27  2007 hadrV95_start.ksh 
    -r-xr-xr-x  1 18597 7777 2926 Jan 21  2008 
db2V95_monitor.ksh 
    -r-xr-xr-x  1 18597 7777 5377 Feb 14  2008 db2V95_start.ksh 
    -r-xr-xr-x  1 18597 7777 4615 Feb 22  2008 
mountV95_monitor.ksh 
-r-xr-xr-x  1 18597 7777 4535 Oct  3  2008 hadrV95_monitor.ksh 
    -r-xr-xr-x  1 18597 7777 4906 Jan  5  2009 
mountV95_start.ksh 
    -rw-r--r--  1 root  root  199 Sep 11 12:35 spec
Local Fix:
Current fix is to manually change the file authorizations to 
be root/root and file permission should be -r-xr-xr-x.
available fix packs:
DB2 Version 9.5 Fix Pack 5 for Linux, UNIX, and Windows
 DB2 Version 9.5 Fix Pack 6a for Linux, UNIX, and Windows
 DB2 Version 9.5 Fix Pack 7 for Linux, UNIX, and Windows
 DB2 Version 9.5 Fix Pack 8 for Linux, UNIX, and Windows
 DB2 Version 9.5 Fix Pack 9 for Linux, UNIX, and Windows
 DB2 Version 9.5 Fix Pack 10 for Linux, UNIX, and Windows
Solution
Problem was first fixed in V9.5 FP5.
Workaround
Current workaround is to manually change the file authorizations 
to be root/root and file permission should be -r-xr-xr-x.
BUG-Tracking
forerunner  : APAR is sysrouted TO one or more of the following: IC63959 IC77539 
follow-up :
Timestamps
Date  - problem reported    :
Date  - problem closed      :
Date  - last modified       :

06.10.2009
15.12.2009
15.12.2009
Problem solved at the following versions (IBM BugInfos)
9.5.FP5
Problem solved according to the fixlist(s) of the following version(s)
9.5.0.5 FixList