Red Hat LINUX VIRTUAL SERVER 4.6 - ADMINISTRATION Manuel d'installation Page 84
- Page / 296
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
64 z/VM and Linux on IBM System z: The Virtualization Cookbook for Red Hat Enterprise Linux 6.0
...
==> q signal shutdown
System default shutdown signal timeout: 300 seconds
This output shows that your changes have taken effect.
4.9 Addressing z/VM security issues
This section briefly discusses the following security issues.
z/VM security products
High-level z/VM security
Linux user ID privilege classes
z/VM user ID and minidisk passwords
4.9.1 VM security products
You might want to use a z/VM security product such as IBM RACF® or CA VM:Secure. They
allow you to address more security issues such as password aging and the auditing of users’
access attempts.
4.9.2 High-level z/VM security
The paper z/VM Security and Integrity discusses the isolation and integrity of virtual servers
under z/VM. It is on the web at:
http://www.vm.ibm.com/library/zvmsecint.pdf
4.9.3 Linux user ID privilege classes
Another security issue is the privilege class that Linux user IDs are assigned. Running Linux
Guests with less than CP Class G Privilege, REDP-3870 addresses this issue.
4.9.4 z/VM user ID and minidisk passwords
All passwords in a vanilla z/VM system are the same as the user ID. This is a large security
hole. The
minimum you should do is to address this issue.
There are two types of passwords in the USER DIRECT file:
User IDs The password required to log on with
Minidisks Separate passwords for read access, write access, and multi-write access
Both types of passwords should be modified. This can be done using the CHPW610 XEDIT
macro described in the next section.
- Enterprise Linux 6.0 1
- February 2011 3
- First Edition (February 2011) 4
- Contents 5
- Contents v 7
- Contents vii 9
- Trademarks 12
- Chapters and appendixes 13
- Conventions 14
- The team who wrote this book 15
- Special thanks 15
- Comments welcome 16
- Preface xv 17
- Summary of changes 19
- 1.1 What is virtualization 23
- 1.4 Infrastructure design 24
- Planning 27
- 2.1 Bill of materials 28
- 2.2 z/VM conventions 29
- Real address 30
- LPAR identifier 30
- 2.3 Disk planning 31
- 2.4 Memory planning 32
- 2.5 Password planning 32
- 2.6 Planning worksheets 33
- 2.7 Blank worksheets 36
- 2.7.2 z/VM DASD worksheet 37
- Configuring a desktop machine 39
- Figure 3-2 Setting logging 41
- Saving sessions 43
- 3.2 Setting up a VNC client 44
- 3.3 3270 emulators 45
- Figure 4-3 Recovery menu 51
- Running INSTDVD 57
- Figure 4-11 Load window 58
- 4.2 Configuring TCP/IP 61
- 4.6 Adding paging volumes 70
- Using the CPFORMAT EXEC 72
- 4.6.4 Testing the changes 76
- 4.8.2 Testing the changes 83
- 4.9.1 VM security products 84
- clipping the volumes 90
- Servicing z/VM 93
- Chapter 5. Servicing z/VM 75 95
- Chapter 5. Servicing z/VM 77 97
- Chapter 5. Servicing z/VM 79 99
- S9338801 in this example): 100
- Chapter 5. Servicing z/VM 81 101
- Chapter 5. Servicing z/VM 85 105
- Chapter 5. Servicing z/VM 87 107
- 5.4 Applying a PTF 108
- Chapter 5. Servicing z/VM 89 109
- Chapter 5. Servicing z/VM 91 111
- Chapter 5. Servicing z/VM 93 113
- Chapter 5. Servicing z/VM 95 115
- Configuring an NFS/FTP server 117
- 6.4 Enabling the NFS server 120
- 7.1 Installing the cloner 126
- Figure 7-2 NFS setup panel 135
- 7.2 Configuring the cloner 147
- 7.2.8 Configuring SSH keys 153
- 7.2.12 Rebooting the system 155
- 7.2.13 Verifying the changes 155
- Figure 8-4 166
- 8.2.7 Configuring SSH keys 172
- 8.2.10 Rebooting the system 173
- 8.2.11 Verifying the changes 173
- Detaching the source disks 180
- 9.4.3 Using the clone script 185
- 9.6 Reviewing system status 193
- 11.1.2 Testing Apache 202
- 11.1.3 Turning on a firewall 203
- 11.1.6 Apache resources 205
- 11.2.3 Adding an LDAP user 207
- 11.3.4 Adding a Samba user 212
- 11.3.6 Testing your changes 213
- 11.3.7 Configuring printing 215
- 11.4.1 Additional resources 217
- Servicing Linux with Red Hat 219
- Miscellaneous tasks 223
- 13.1 Adding DASD 224
- 13.2 Adding a logical volume 226
- Volume Group - homevg 227
- 13.4 Adding SCSI/FCP disks 233
- 4014402600000000. Change the 235
- 13.5 Rescuing a Linux system 239
- 13.9 The X Window System 251
- Using PuTTY 254
- Using embedded SSH 256
- INIDICATE LOAD 260
- INDICATE QUEUES EXP 261
- Getting help 262
- Determining who is logged on 262
- Determining storage or memory 263
- Determining processors 263
- 14.2.3 Configuring PERFSVM 266
- Using a web browser interface 270
- Using a 3270 interface 272
- 14.3 Monitoring Linux 274
- References 277
- Cheat sheets 278
- A vi cheat sheet 279
- Additional material 281
- Related publications 283
- Online resources 284
- Help from IBM 285
- Hat Enterprise Linux 6.0 293
- Back cover 296
Produits connexes et manuels pour Logiciel de gestion du système Red Hat LINUX VIRTUAL SERVER 4.6 - ADMINISTRATION
Logiciel de gestion du système Red Hat NETSCAPE ENTREPRISE SERVER 6.0 - ADMINISTRATOR Spécifications
(240 pages)
(240 pages)
Logiciel de gestion du système Red Hat ENTERPRISE LINUX 5 - VIRTUAL SERVER ADMINISTRATION Spécifications
(214 pages)
(214 pages)
Logiciel de gestion du système Red Hat NETSCAPE CONSOLE 6.0 - MANAGING SERVERS Spécifications
(286 pages)
(286 pages)
Logiciel de gestion du système Red Hat LINUX 7.2 - OFFICIAL LINUX CUSTOMIZATION GUIDE Guide d'installation
(282 pages)
(282 pages)
Logiciel de gestion du système Red Hat NETSCAPE MANAGEMENT SYSTEM 4.5 Manuel d'utilisateur
(286 pages)
(286 pages)
© 2020, manymanuals.fr. Tous droits réservés | 0.040 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels