RPC services on Solaris

Similar Messages

• Securing RPC services with TCP Wrappers

  Hello All,
  I have two node cluster running solaris 10. Since SVM needs few rpc services like metad,metamedd and metamhd, I dont want to disable them. But at the same time, wants to block them from outside world.
  But readme page of TCP Wrappers (http://www.sunfreeware.com/README.tcpwrappers) says "The wrappers do not work with RPC services over TCP. These services are registered as rpc/tcp in the inetd configuration file". And other internet sources says same. So my question is this valid still?. Or it is possible to filter RPC services using TCP Wrappers.
  When I tested this with following entries in /etc/hosts.allow and /etc/hosts.deny, my two nodes did not give any trouble after couple of reboots. SVM is working fine. So I wonder whether RPC services area really blocked (other than the local host) or not.
  Content of /etc/hosts.deny
  ===========================
  rpcbind: ALL : severity debug
  rpc.metad: ALL : severity debug
  rpc.metamhd: ALL : severity debug
  rpc.metamedd: ALL : severity debug
  rpc.metacld: ALL : severity debug
  Content of /etc/hosts.allow
  =======================================
  rpcbind: KNOWN : severity debug
  rpc.metad: localhost : severity debug
  rpc.metamhd: localhost : severity debug
  rpc.metamedd: localhost : severity debug
  rpc.metacld: localhost : severity debug
  Any hints/information regarding this will be really appreciated.

  Hello Mark,
  Sorry that I missed to thank you in your last post.
  If I get it right, The RPC bind program is used to maintain a table of dynamically allocated ports for RPC-based services.
  From internet, "The file /etc/rpc contains a list of network services. Typically, when a remote machine wants to connect to one of those services on your machine, it first issues a query to the rpcbind program running on your computer. It knows the name of the services it wants to connect with, but doesn't know what port number to use. Your rpcbind will respond with a port number. The remote host will then attempt a connection to the specified port."
  Also, Note that blocking rpcbind doesn't block access to the/etc/rpc services altogether. It does block access for those programs which do an rpcinfo query in order to reach those services. So other possible ways also exist to make remote connection without querying. Here lies the problem. I wanted to secure RPC services completely.
  Coming to metad, it is true that ldd will result nothing related to libwrap*. But inetadm tells different story
  inetadm -l /network/rpc/meta | grep -i wrap
  default tcp_wrappers=TRUE
  So encapsulating with tcpd should work for metad and other RPC services, I believe.
  What is your opinion on this?.

• How to start and stop the BI Services in Solaris 10

  Hello All,
  Can anyone guide me on how to start and stop the BI Services in Solaris 10. In windows there are options set in Start->Programs->Middleware_Home->Start/Stop BI Services.
  Primarily after doing changes to the scheduler configuration, I need to restart the services to get it implemented? If yes how can I do it?
  Any help will be appreciated
  Thank you
  Ash
  Edited by: 902739 on Jan 11, 2012 12:17 PM

  Please help me by showing action plan for stop sap , offline backup and then start sap.
  i am little bit confuse How to start and stop SAP on cluster for offline backup
  Below are the systems name with host name , please explain me in sequence
  Systems name                                   Hostname
  # Hope SAP ERP Prod DB Primary       gsgbbux860
  # Hope SAP ERP Prod DB Standby      gsgbbux861
  # Hope SAP ERP Prod Cluster              gsgbbux862
  # Hope SAP ERP App 1                       gsgbbux864
  # Hope SAP ERP App 2                       gsgbbux865
  Thanks in advance
  Zaheer

• Running java as a daemon service in Solaris 10?

  I am looking for instructions on how to run a java program as a daemon service (e.g. running JBoss as a service) in Solaris 10 X64?
  The java-wrapper from tanuki software seems to support most platforms but not Solaris 10 on Intel 64 bit?
  Any help would be much appreciated
  Thanks in advance
  T.

  It is not that difficult to run a program as a daemon.
  $ nohup my_program my_arguments >my_output 2>my_error &

• XML-RPC Service is not available

  I'm experiencing a problem where CF 8.01 will not start. the log shows the message "The XML-RPC service is not available. This exception is usually caused by service startup failure. Check your server configuration."
  I traced this to a corrupted /lib/neo-xmlrpc.xml file; the structures being generated when I consume a local web service are malformed. If I reinitialize this file to its form as created when CF is installed, CF will start.
  Below is an example of the corrupted structure:
  <wddxPacket version='1.0'><header/><data><array length='3'><struct type='coldfusion.server.ConfigMap'><var name='http:// 123.123.123.2<char code='0d'/><char code='0d'/><char code='0a'/>        /common/verifyUser.cfc?wsdl'><string>http:// 123.123.123.2<char code='0d'/><char code='0d'/><char code='0a'/>        /common/verifyUser.cfc?wsdl</string></var></struct><struct type='coldfusion.server.ConfigMap'><var name='http:// 123.123.123.2<char code='0d'/><char code='0d'/><char code='0a'/>        /common/verifyUser.cfc?wsdl'><string></string></var></struct><struct type='coldfusion.server.ConfigMap'><var name='http:// 123.123.123.2<char code='0d'/><char code='0d'/><char code='0a'/>        /common/verifyUser.cfc?wsdl'><string></string></var></struct></array></data></wddxPacket>
  The corruption is occurring on my developer installation on a windows xp machine. If I execute the same code on my standard server edition running on Windows Server, the structure for the same verifyUser web service looks like this:
  <var name='http://123.123.123.1/common/verifyUser.cfc?wsdl'><string></string></var>
  On both machines I'm running CF version 8,0,1,195765 with updates chf8010003.jar and hf801-1875.jar.
  Has anyone else seen this or have any ideas on how to correct?

  You're right. Here's what was happening:
  My cfinvoke included webservice="http://#APPLICATION.server_ip_address#/common/verifyUser.cfc?wsdl".  I was using the same code to extract the IP address, but different operating systems. So when I populated APPLICATION.server_ip_address without trimming, I was getting extraneous trailing garbage on the XP server version.
  Thanks.

• Cannot assign operations into an RPC Service (x)

  I've been running a flex application for years now, and added a couple lines of code to it and all of a sudden started getting "Cannot assign operations into an RPC Service (x)" and "Cannot assign operations into an RPC Service (y)" out of no where.  I can't figure out whats happening.  I even took out the code I added before it started happening and its STILL happening... what is this? its the first time I've seen it!

  FYI: It appears to be happening when I try to change states: currentState = "XXX"

• Unused service in Solaris 10 and default user in Oracle 10

  Hi,
             Our SAP system (ERP6 EHP4) were installed on Solaris 10 and Oracle 10
             Questions are:
             - Which ports of /etc/services on Solaris 10 can disable without affect with SAP?
             - Which default users in Oracle 10 can lock or disable (or change password)?
             Ps. For Auditing purpose and security hardening in SAP ERP6 EHP4.
  Best regards,
  Choosak B.

  HI,
  For port information use this guide
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4e515a43-0e01-0010-2da1-9bcc452c280b?quicklink=index&overridelayout=true
  Regarding change in password of oracle users you can change all passwords using BRTOOLS.
  Any how SAP only use OS level authntication and SAP<SID> user .
  But still you should not lock any user but change in password is supported for all users.(Use brtools to perform same)
  Adding up:   http://help.sap.com/saphelp_nw04/helpdata/en/4f/c3883989676778e10000000a11402f/content.htm
  Regards,
  Edited by: Gagan Deep Kaushal on May 11, 2010 9:49 PM

• Java.lang.NoClassDefFoundError: javax/xml/rpc/Service

  Hi,
  I have created client stubs for a webservice using axis wsdl2java tool. When I try calling these stubbed methods from JUnit tests, they are working fine but when I try to execute the jar (it is a swing) I get the following exception:
  Exception in thread "main" java.lang.NoClassDefFoundError: javax/xml/rpc/Service
          at java.lang.ClassLoader.defineClass1(Native Method)
          at java.lang.ClassLoader.defineClass(Unknown Source)
          at java.security.SecureClassLoader.defineClass(Unknown Source)
          at java.net.URLClassLoader.defineClass(Unknown Source)
          at java.net.URLClassLoader.access$100(Unknown Source)
          at java.net.URLClassLoader$1.run(Unknown Source)
          at java.security.AccessController.doPrivileged(Native Method)
          at java.net.URLClassLoader.findClass(Unknown Source)
          at java.lang.ClassLoader.loadClass(Unknown Source)
          at sun.misc.Launcher$AppClassLoader.loadClass(Unknown Source)
          at java.lang.ClassLoader.loadClass(Unknown Source)
          at java.lang.ClassLoader.loadClassInternal(Unknown Source)
          at com.Gudds.SeCURE.MainUI.<init>(MainUI.java:76)
          at com.Gudds.SeCURE.Main.Start(Main.java:62)
          at org.owasp.webscarab.WebScarab.main(WebScarab.java:34)I have put the jaxrpc.jar in the classpath and I suppose this jar has the java.xml.rpc.service class but I donot understand why it fails while executing the jar but works fine from the eclipse IDe. Plase help me.
  Regrdas,
  Kundan

  1. Build jar file with MAINFEST.MF and Export of Eclipse , which has content:
  suppose in folder:
  c:\client.jar ( client of web service )
  c:\contrib/lib/ axis apis
  Main-Class: com.MainClassName
  Class-Path: contrib\axis\jaxrpc.jar contrib\axis\activation.jar con
  trib\axis\axis.jar contrib\axis\axis.jar contrib\axis\commons-disco
  very.jar contrib\axis\wsdl4j.jar contrib\axis\saaj.jar contrib\axi
  s\soap.jar contrib\axis\commons-logging.jar contrib\axis\log4j.jar
  contrib\axis\mail.jar
  2. build jar with ant: make sure the their are at least one blank between
  values of Class-Path.
            <jar destfile="../Client/client.jar" >
                 <fileset dir="${build.dir}"/>
            <manifest>
            <attribute name="Built-By" value="${user.name}"/>
                 <attribute name="Main-Class" value="com.MainClass"/>
            <attribute name="Class-Path" value=" contrib\axis\jaxrpc.jar contrib\axis\activation.jar .. "/>
            </manifest>
            </jar>
  3. If you haven't pack you class file in jar, create a bat to set CLASSPATH
  exactly to all jars.
  Hope this helps

• Invoking JAX-RPC service deployed in SunONE7.0 by jdk1.2/1.3 client

  Hi,
  Is it possible to invoke a JAX-RPC service deployed in SunONE7.0 by jdk1.2/1.3 client?. If possible what jars should the client have in order to do this?.
  warm regards,
  Vijay

  I used tha JAX-RPC runtime jars that come with JSWDP and was able to sucessfully run the client on JDK1.3 environment. Is there a solution for JDK1.2 client?

• Trying to invoke Apache SOAP 2.3.1 RPC services

  I have several legacy apache SOAP 2.3.1 RPC services I am trying to invoke using a synchronous BPEL process. The services are invoked (confirmed by tailing the log on the machine hosting the service) , however, the return value is null in all cases.
  I used the snoop utility and I verified a response is indeed being returned, so I am perplexed as to why BPEL is not able to interpret the response.
  Any help/ideas would be appreciated as I would prefer not to have to rewrite these services.
  Thanks,
  RM

  Did you specify the correct message type for your return variable?
  <Invoke_1_Authenticate_OutputVariable>
  <part xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" name="Result">
  null
  </part>
  </Invoke_1_Authenticate_OutputVariable>
  As is returns:
  <ns1:AuthenticateResponse
  xmlns:ns1="http://vitalstream.com/webservices" SOAP-ENV:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
  <return xsi:type="xsd:int">1</return>
  </ns1:AuthenticateResponse>
  Regards,
  Marc

• An install service of Solaris 11.2 on the AI server of Solaris 11.1

  Hi all,
  Is it possible to create an AI install service of Solaris 11.2 on the AI server of Solaris 11.1?
  Thanks

  Hello
  In general is better to have the latest sol11.2 to serve all solaris AI images. But maybe new features like unified archives can not be used in older version,  as they are new on sol11.2, but as you can read in this link much better sol11.2 + SRU to be the AI server as you can serve all
  AI Server Requirements - Installing Oracle® Solaris11.2 Systems
  Regards
  Eze

• Network service in solaris

  Am new to solaris and so I could not find a way to restart network service in solaris. Like in Linux u can use service network restart, similarly how do we restart the network in Solaris. I changed the route of the server and want the change to reflect without a server restart. Please help....I googled and came up with nothing regarding this...
  Edited by: rcmrulzz on Apr 17, 2008 2:52 AM

  I'm guessing that you update /etc/defaultrouter ?
  then, to restart network:
  svcadm restart svc:/milestone/network:default
  To get system to reread network config files:
  svcadm refresh svc:/milestone/network:default
  HTH
  John

• Unable to start workspace service on Solaris

  Hi,
  We are having some issues starting workspace services on solaris evviroment, when we start the workspace using the command "/app/hyperion/common/workspacert/9.5.0.0/bin/startAgent.sh" it starts only workspace agent, i see only the below process running on my server..
  /app/hyperion/common/JRE-64/Sun/1.5.0/bin/java -DSname=wksagent -DCMC_AGENT=true
  Actually there should be another service for workspace as below..
  /app/hyperion/common/JRE-64/Sun/1.5.0/bin/java -DSname=workspace -DAGENT_TASK=0
  My shared services is up and running fine, please direct me how to troubleshoot this issue. there are no log files which i can see what is the issue.
  Aslo note we are starting all the services in a prefered order
  Please let me know if you need further details.
  Thanks

  Set the Number of File Descriptors to unlimited. Under heavy load, WebLogic
  Server may use up all available file descriptors. You can raise the file
  descriptor limit permanently by setting rlim_fd_max and rlim_fd_cur in the
  /etc/system file and rebooting. Set rlim_fd_cur=256 (soft limit),
  rlim_fd_max=1024 (hard limit).
  see http://www.weblogic.com/platforms/sun/index.html
  "Satya Chauhan" <[email protected]> wrote in message
  news:3a679edf$[email protected]..
  I get the following error while starting Weblogic--------d.so.1:/usr/java/bin/sparc/native_threads/java: fatal: /dev/zero: open failed: Too
  many open files (/usr/java/lib/sparc/native_threads/libnet.so)ld.so.1:
  /usr/java/bin/sparc/native_threads/java: fatal: /usr/java/lib/libnet.so:
  open failed: Too many open files
  (/usr/java/lib/libnet.so)***************************************************
  ************************The WebLogic Server did not start up
  properly.Exception raised: java.lang.UnsatisfiedLinkError: no net in shared
  library pathjava.lang.UnsatisfiedLinkError: no net in shared library path
  at java.lang.Throwable.<init>(Compiled Code) at
  java.lang.Error.<init>(Compiled Code) at
  java.lang.LinkageError.<init>(Compiled Code) at
  java.lang.UnsatisfiedLinkError.<init>(Compiled Code) at
  java.lang.Runtime.loadLibrary(Compiled Code) at
  java.lang.System.loadLibrary(Compiled Code) at at at
  weblogic.t3.srvr.T3Srvr.checkAccess(Compiled Code) at
  weblogic.t3.srvr.T3Srvr.main(Compiled Code) at
  weblogic.Server.startServerStatically(Compiled Code) at
  weblogic.Server.main(Compiled Code) at weblogic.Server.main(Compiled
  Code)***********************************************************************

• Stopping RPC Service

  I need to stop the RPC service on a windows 2008 R2 server, I have admin privileges, but options are grayed out. How do I do this?
  Thanks
  Pat

  This one may help.
  http://computerstepbystep.com/remote_procedure_call_(rpc)_service.html
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• RPC service falling when streaming a captured video

  I got this problem under XP.
  When sending an audio/video stream from one to another XP machine :
  The RPC service is going down (event known as 7031). By default, the machine is closing in the minute that follows (depends on system parameters).
  When configured so that the system would restart the service (in this case of failure), I saw that the status of connection was no more available and couldn't disconnect as well.
  Note : sure about my system's installation...
  Thanks for your advices

  Could it be related to the fact that you have to disable the firewall in the advanced options of the IP connection ?