FSP shell - Power 740

Inside the Flexible Service Processor shell running on an IBM Power machine...

This is actually an IBM Power 740 Model 8205-E6B with the system firmware AL720_066.

As the ASMI command line swallows stderr, it may be useful to use redirect stderr to stdout to be able to see errors.

See some info about a 770 here.

Base system information

uname -a

Linux fsp1 2.6.16.27-0-fsp1 #1 Tue Aug 31 18:46:39 UTC 2010 ppc unknown

hostname

fsp1

cat /proc/cmdline

root=mtd:rootfs_1 rootfstype=jffs2 rw OMNI_UNIX_HOSTNAME=E4:1F:xx:xx:xx:xx ethaddr=E4:1F:xx:xx:xx:xx eth1addr=E4:1F:xx:xx:xx:xx console_enable=yes reset_max=3 console= init=/usr/bin/fspinit CARD_TYP E=P7HV16_NAND256 card_serialnumber=YL10P02630DB card_hardwarelevel=0 mem=190M nvram_data=0xf00000000x00020000 slram=p1ram,0x0C300000,+0x00700000,tmpram,0x0CA00000,+0x00200000,pcscore,0x0BE00000,+0x00500000 log_buf_len=32768

cat /proc/cpuinfo

processor : 0

cpu : 440FSP1 Rev. 3.0

revision : 24.210 (pvr 1142 18d2)

bogomips : 747.52

chip ecid : 0000028c 59611c47 ffff0709 6e60009c

vendor : IBM

machine : FSP-1

cat /proc/meminfo

MemTotal: 173300 kB

MemFree: 6008 kB

Buffers: 48 kB

Cached: 91648 kB

SwapCached: 0 kB

Active: 121344 kB

Inactive: 18932 kB

HighTotal: 0 kB

HighFree: 0 kB

LowTotal: 173300 kB

LowFree: 6008 kB

SwapTotal: 0 kB

SwapFree: 0 kB

Dirty: 0 kB

Writeback: 0 kB

Mapped: 68972 kB

Slab: 19416 kB

CommitLimit: 86648 kB

Committed_AS: 1612508 kB

PageTables: 3196 kB

VmallocTotal: 737272 kB

VmallocUsed: 15316 kB

VmallocChunk: 721396 kB

lsmod | while read module junk; do echo -n "$module "; done; echo

Module ipt_REJECT iptable_filter ip_tables ip6t_REJECT ip6table_filter ip6_tables scratchpad sd_mod usb_storage scsi_mod ohci_hcd usbcore vfat fat xt_tcpudp x_tables ppp_generic slhc tone sctp xfrm_user scomfsi scanfsi jtag iic_fsi iic_boe iic_imd iic_base boe_alert boe_port rch_port ibm_uart 8250_fsi pseudoclk iomux mbxip mbx rtc_fsp1 hostdma edma psi gpio fsi ibm_utils fspenet zofs mtdcram

Filesystem 1k-blocks Used Available Use% Mounted on

mtd:rootfs_1 87064 46732 40332 54% /

none 86648 356 86292 0% /dev

none 1024 16 1008 2% /var

/dev/mtdblock/tmpram 2048 164 1884 8% /tmp

/dev/mtdblock/p1ram 7168 428 6740 6% /opt/p1

/dev/mtdblock/pcscore 5120 180 4940 4% /core

/dev/mtdblock/nvram 47 47 0 100% /opt/p2

mtd:sideless 26964 1624 25340 6% /sideless

mtd:rootfs_0 87064 47048 40016 54% /alt

mount

rootfs on / type rootfs (rw)

mtd:rootfs_1 on / type jffs2 (rw)

proc on /proc type proc (rw)

none on /dev type tmpfs (rw)

none on /sys type sysfs (rw)

none on /var type tmpfs (rw)

devpts on /dev/pts type devpts (rw)

/dev/mtdblock/tmpram on /tmp type jffs2 (rw)

/dev/mtdblock/p1ram on /opt/p1 type jffs2 (rw)

/dev/mtdblock/pcscore on /core type jffs2 (rw)

/dev/mtdblock/nvram on /opt/p2 type zofs (rw,sync)

mtd:sideless on /sideless type jffs2 (rw)

mtd:rootfs_0 on /alt type jffs2 (ro)

Command environment

echo $PATH

/nfs/test/:/nfs/bin:/nfs/sbin:/sbin:/bin:/usr/bin:/usr/sbin:/opt/fips/bin

echo $0

sh

ls -l /bin/sh

lrwxr-xr-x 1 root root 7 Jan 1 1970 /bin/sh -> busybox

ls /bin | xargs echo

addgroup adduser ash bash busybox cat chmod cp date dd delgroup deluser df dmesg echo false free fsh grep gunzip gzip hostname kill klogd ln logger login ls lsmod mkdevs.sh mkdir mknod more mount mv netstat ping ping6 ps pwd rcp renice rm rmdir sed sh sleep stty su sync tar telnet tftim tinylogin touch true umount uname zcat

ls /sbin | xargs echo

SuSEconfig agetty blkid blockdev chkconfig conf.d depmod dhclient dhclient-script-busybox dhclient-script-busybox.tmp dhcp6c flash_eraseall fsptelinit generate-modprobe.conf get_kernel_version getty halt hwclock ifconfig ifdown ifup init.d.README insmod insserv kernelversion klogd logsave lsmod modinfo modprobe mtd_name nameif nologin pivot_root portmap quick_halt quick_poweroff quick_reboot rcportmap reboot rmmod route sgetty sm-notify softdog sysctl syslogd udevstart unix_chkpwd vconfig

ls /usr/bin | xargs echo

ChangeSymlinks [ bunzip2 bzcat checksctp cmp copy_core cut du env expr ffdc_dump filesize find fsp-trace fspinit gperf gunzip gzexe gzip head iicslave iomux-tool killall kwd ldd mkfifo mkinfodir nslookup od old omniNames passwd pddcustomize pfiflash registry reset rpmlocate rrr safe-rm safe-rmdir safety_net seq setsid sftp slogin sort tail test tftp tiny_syslogd tty ubimirror ubivol2pfi uniq uptime watchdog wc which withsctp xargs xor yes zcat zcmp zdiff zegrep zfgrep zforce zgrep zless zmore znew

ls /usr/sbin | xargs echo

Check eflashd in.rexecd in.rlogind in.rshd in.telnetd inetd ip6tables ip6tables-restore ip6tables-save ipsec iptables iptables-restore iptables-save lighttpd map_name pppd pppdump pppstats rcipsec rcnfs rcpowerfail rcrandom rcraw rcsingle rcsshd rcxdm rcxinetd setDefaultJava sfcbd slpd tcpd telnetd udevmonitor xinetd

find /opt/fips/bin | xargs echo

USBCodeUpdate asm attnhandlr attnprimarybackup bdmp_gzip bdmp_pabend bdmp_star bdmp_tar bdmp_util calldialer callexec ccmm ccmmsrv cecserver cimpSfcbd cimpsrv ctrm cupdcmd cupdd disr_rsrl_complete dscvUpdateRedundancy dscvUpdateVSRC dumpsystem ecmd_flash_script ecmd_ppc errlsrv evennotifier evensignal extcfam_reset fipsdump frumevent frumeventGrabAllBus frumnetlink frumscs fspinit fstp_update_fsp_dd_lvl fwdbServer fwhp gard get_reset_error getbits getcfam getgpr getscom getspr gip2hom hcdbutil hdat_prepare_startos hdat_prepareos hdat_startos hdat_timeos hdatstep healthdog healthmon hlthcmd in.nets init_registry iplp ipsec_cli.sh istep ledscommandline mboxexecinvokefunction mboxmainprocess menuGenesis mfg_dma_test ncfgMultSetup netsCommonMsgServer netsDynPwdTool netsPhypDebugger netsSlp netsVTTYServer netsVirtualTTYServer netsetup nmgrcmd nodemanager nvram_init p6_poweroff panlexec panlmain plckIPLRequest plckLock powr_19 powr_fsp_spcn ppin putbits putcfam putgpr putscom putspr rbottool remp_startup rempdaemon restartcecserver rmgrcmd rmgrorb rpm2cupd rsrl_execs rtim rtiminit sbcu scod_determine_val sinkList smgr smgrinit smgrperf smgrxorb snoopd softswitch spif srci start_lnmcd store_reset_error sttr survcmd survserver svpdAllVpd svpdCMPostPgood svpdCheckStatus svpdChkCollVpd svpdClearSlaveState svpdCollectFRUVpd svpdInitState svpdPostPgood svpdRecollectAllVpd svpdResetAllSC svpdSlaveWait svpdSystemVpd svpdUpdateFspSN svpdVerifyFRUVpd svpdVerifyFSPtoAnchor svpdVerifyVPD svpdcmd svpdml2 thermal_monitor tmgt_lock_server tmgt_ttif_cmd tmgt_ttif_server tmgtclient tmgtserver torrentMVPDWorkaround unpkfldimg userconfig utilreg write_disr

env

card_hardwarelevel=0

OMNI_UNIX_HOSTNAME=E4:1F:xx:xx:xx:xx

REMOTE_ADDR=::ffff:10.0.0.1

nvram_data=0xf00000000x00020000

LD_LIBRARY_PATH=/nfs/test:/nfs/lib:/opt/fips/lib:/lib:/usr/lib

HOME=/

DCOM_DUMPXML_FILENAME=/nfs/xmldump

console_enable=yes

ethaddr=E4:1F:xx:xx:xx:xx

fips_nvram_start=0xf0000000

FSP_MENU_HTML_LOCATION=/opt/fips/components/menu

fips_nvram_size=0x000c0000

ENV=/etc/profile

FSPINIT_TRANSBASE=/nfs/test/etc/fspinit:/nfs/etc/fspinit:/etc/fspinit:/usr/etc/fspinit

CARD_TYPE=P7HV16_NAND256

TERM=linux

eth1addr=E4:1F:xx:xx:xx:xx

REG_CONF_PATH=/etc:/opt/fips/components/fstp

CORE_RLIMIT=unlimited,unlimited

APA_PLUGIN_PATH=/opt/fips/lib:/lib:/usr/lib:/usr/local/lib

PATH=/nfs/test/:/nfs/bin:/nfs/sbin:/sbin:/bin:/usr/bin:/usr/sbin:/opt/fips/bin

FIPS_TRACE_PATH=/tmp/

FACADEFILELIST=FileLookupTableP.bxml

reset_max=3

card_serialnumber=YL10xxxxxxxx

SERVICE_PROCEDURE_PATH=/nfs/test/serviceProcedures:/opt/fips/components/ccmm/serviceProcedures

phyp_nvram_start=0xf00c0000

MALLOC_CHECK_=2

ECMD_EXE=/opt/fips/bin/ecmd_ppc

phyp_nvram_size=0x00040000

DCOM_DUMPXML_FILECOUNT=10

PWD=/

mem=190M

FACADEXMLPATH=/opt/fips/components/oscc

PID Uid VmSize Stat Command

1 root 1816 S /usr/bin/fspinit

2 root SW< [ksoftirqd/0]

3 root SW< [events/0]

4 root SW< [khelper]

5 root SW< [kthread]

9 root SW< [kblockd/0]

66 root SW [pdflush]

67 root SW [pdflush]

69 root SW< [aio/0]

68 root SW [kswapd0]

74 root SW< [kseriod]

135 root SW [mtdblockd]

158 root SW [ubi_bgt0d]

203 root SWN [jffs2_gcd_mtd13]

214 root 1192 S < /opt/fips/bin/frumnetlink

589 root 1356 S healthdog

592 root SWN [jffs2_gcd_mtd1]

648 root SWN [jffs2_gcd_mtd0]

650 root SWN [jffs2_gcd_mtd2]

656 root SWN [nvramd]

665 root 576 S /usr/bin/tiny_syslogd -s 32768

671 root SWN [jffs2_gcd_mtd14]

673 root 480 S /sbin/klogd

685 root SW< [fsihp]

698 root SW< [mbx/buddy_clock]

699 root SW< [mbx/poller]

757 root SW< [khubd]

771 65534 460 S portmap

773 root 884 S xinetd

902 root 700 S /bin/sh /etc/sysconfig/network-scripts/network-monito

912 root 712 S /bin/sh /etc/sysconfig/network-scripts/DHCPserver-det

1548 root 720 S /bin/sh

1883 root 3100 S omniNames -nohostname -start -always -logdir /tmp/ -i

1889 root 2684 S rtiminit

1893 root 3204 S healthmon

1895 root 1840 S evennotifier

1907 root 3508 S errlsrv

1914 root 5992 S smgrinit

1933 root 3560 S cupdd

1941 root 1688 S tmgt_lock_server

1943 root 2860 S survserver

1946 root 5580 S fwdbServer

1949 root 5656 S frumscs

1950 root 5792 S svpdml2

1977 root 5048 S panlmain

1983 root 4816 S rmgrorb

2075 root 4084 S netsVTTYServer serial_0

2078 root 1068 S smgrxorb

2079 root 3516 S smgrxorb

2082 root 4088 S netsVTTYServer serial_1

2101 root 5184 S tmgtserver

2109 root 13524 S cecserver

2191 root 5900 S tmgt_ttif_server

2192 root 2192 S callexec -d

2225 root 6376 S powr_19

2229 root 5164 S tmgt_ttif_server

2305 root 2300 S lighttpd -f ./lighttpd.conf

2321 root 3800 S asm

2327 root 4892 S cimpsrv

2336 root 1220 S /usr/sbin/sfcbd -d

2337 root 732 S /usr/sbin/sfcbd -d

2339 root 1576 S /usr/sbin/sfcbd -d

2340 root 1880 S /usr/sbin/sfcbd -d

2342 root 1252 S /usr/sbin/sfcbd -d

2343 root 3600 S /usr/sbin/sfcbd -d

2347 root 1556 S /usr/sbin/sfcbd -d

5083 root 860 S /sbin/dhclient -q -1 -lf /tmp/dhcp/dhclient-eth0.leas

5096 root 704 S /sbin/dhcp6c -l /tmp/dhcp/dhcp6c-eth0.leases eth0

5800 root 1776 S /opt/fips/bin/ncfgMultSetup

20521 root 4436 S attnhandlr

21015 root 6236 S mboxmainprocess

14588 root 9064 S [netsCommonMsgSe]

14613 root 7444 S netsVTTYServer stream

14848 root 428 S sleep 1200

14849 root 4340 S netsSlp

14854 daemon 868 S /usr/sbin/slpd -l /dev/null

17437 root 1696 S /usr/sbin/sfcbd -d

17470 root 2464 S /usr/sbin/sfcbd -d

17479 root 1328 S /usr/sbin/sfcbd -d

17963 root 428 S sleep 40

17978 root 1560 S /opt/fips/components/menu/cgi-bin/cgi

17979 root 3096 S asm

17980 root 612 S sh -c ps

17981 root 672 R ps

Filesystem contents

find /etc

/etc

/etc/ppp

/etc/ppp/peers

/etc/ppp/peers/ppp

/etc/ppp/peers/pptp

/etc/ppp/peers/pppoe

/etc/ppp/peers/pppoe-rp

/etc/ppp/filters

/etc/ppp/options

/etc/ppp/pap-secrets

/etc/ppp/chap-secrets

/etc/raw

/etc/rpc

/etc/mtab

/etc/rc.d

/etc/rc.d/inetd

/etc/sfcb

/etc/sfcb/file.pem

/etc/sfcb/server.pem

/etc/sfcb/client.pem

/etc/sfcb/sfcb.cfg

/etc/udev

/etc/udev/udev.permissions

/etc/udev/udev.conf

/etc/udev/udev.rules

/etc/dhclient.conf

/etc/default

/etc/default/nss

/etc/securetty

/etc/csh.cshrc

/etc/csh.login

/etc/modprobe.conf

/etc/fdprm

/etc/group

/etc/hosts

/etc/pam.d

/etc/pam.d/ppp

/etc/pam.d/rsh

/etc/pam.d/sshd

/etc/pam.d/other

/etc/pam.d/rexec

/etc/pam.d/fipsUserFile

/etc/pam.d/fips_setup

/etc/pam.d/rlogin

/etc/sysconfig

/etc/sysconfig/ssh

/etc/sysconfig/boot

/etc/sysconfig/cron

/etc/sysconfig/mail

/etc/sysconfig/news

/etc/sysconfig/clock

/etc/sysconfig/dhcpd

/etc/sysconfig/proxy

/etc/sysconfig/network-scripts

/etc/sysconfig/network-scripts/ifup

/etc/sysconfig/network-scripts/network-functions

/etc/sysconfig/network-scripts/DHCPserver-detect

/etc/sysconfig/network-scripts/level1_security.sh

/etc/sysconfig/network-scripts/level2_security.sh

/etc/sysconfig/network-scripts/enable_dvs.sh

/etc/sysconfig/network-scripts/network-monitor

/etc/sysconfig/network-scripts/ifdown

/etc/sysconfig/displaymanager

/etc/sysconfig/language

/etc/sysconfig/backup

/etc/sysconfig/kernel

/etc/sysconfig/sysctl

/etc/sysconfig/syslog

/etc/sysconfig/suseconfig

/etc/slp.reg.d

/etc/slp.reg.d/ssh.reg

/etc/insserv.conf

/etc/slp.reg

/etc/slp.spi

/etc/filesystems

/etc/DIR_COLORS

/etc/termcap

/etc/hosts.allow

/etc/fspinit

/etc/fspinit/tf

/etc/fspinit/halt

/etc/fspinit/fspinittab

/etc/fspinit/include

/etc/fspinit/initial

/etc/fspinit/reboot

/etc/permissions.local

/etc/security

/etc/security/group.conf

/etc/security/limits.conf

/etc/security/time.conf

/etc/security/access.conf

/etc/hushlogins

/etc/ttytype

/etc/fsplogo.txt

/etc/.pwd.lock

/etc/ld.so.conf

/etc/rc.d.README

/etc/manifest.txt

/etc/services

/etc/inetd.conf

/etc/inittab

/etc/inputrc

/etc/reg.conf

/etc/ipsec.d

/etc/ipsec.d/crls

/etc/ipsec.d/reqs

/etc/ipsec.d/certs

/etc/ipsec.d/scripts

/etc/ipsec.d/scripts/ipsec_rules.sh

/etc/ipsec.d/acerts

/etc/ipsec.d/aacerts

/etc/ipsec.d/ocspcerts

/etc/ipsec.d/cacerts

/etc/ipsec.d/private

/etc/nsswitch.conf

/etc/tinylogin.links

/etc/xinetd.d

/etc/xinetd.d/echo

/etc/xinetd.d/exec

/etc/xinetd.d/nets

/etc/xinetd.d/rtad

/etc/xinetd.d/time

/etc/xinetd.d/daytime

/etc/xinetd.d/shell

/etc/xinetd.d/servers

/etc/xinetd.d/netsPhyp

/etc/xinetd.d/services

/etc/xinetd.d/daytime-udp

/etc/xinetd.d/time-udp

/etc/xinetd.d/netsstream

/etc/xinetd.d/chargen-udp

/etc/xinetd.d/eflash

/etc/xinetd.d/netsdvs

/etc/xinetd.d/rlogin

/etc/xinetd.d/telnet

/etc/xinetd.d/systat

/etc/xinetd.d/echo-udp

/etc/xinetd.d/chargen

/etc/mailcap

/etc/xinetd.conf

/etc/modprobe.conf.local

/etc/mux_data

/etc/modprobe.d

/etc/rc.status

/etc/init.d

/etc/init.d/ipsec

/etc/passwd

/etc/slp.conf

/etc/shadow

/etc/shells

/etc/profile.d

/etc/profile.d/sh.utf8

/etc/profile.d/alias.ash

/etc/profile.d/alljava.csh

/etc/profile.d/csh.utf8

/etc/profile.d/alljava.sh

/etc/preserve_pdd

/etc/dhclient.conf.tmp

/etc/hosts.deny

/etc/bindresvport.blacklist

/etc/host.conf

/etc/dhcp6c.conf

/etc/protocols

/etc/resolv.conf

/etc/dhcp6c_duid

/etc/profile

/etc/mime.types

find /var

/var

/var/lock

/var/lock/subsys

/var/tmp

/var/lib

/var/lib/modules

/var/lib/modules/2.6.16.27-0-fsp1

/var/lib/dhcpv6

/var/lib/dhcpv6/client6.leases328079065

/var/lib/dhcpv6/client6.leases328079064

/var/lib/dhcpv6/dhcp6c_duid

/var/lib/sshd

/var/lib/nfs

/var/lib/nfs/sm.bak

/var/lib/nfs/sm

/var/lib/dhcp

/var/lib/dhcp/var

/var/lib/dhcp/var/run

/var/lib/dhcp/lib

/var/lib/dhcp/etc

/var/lib/dhcp/dev

/var/lib/dhcp/db

/var/run

/var/run/slpd.pid

/var/run/tiny_syslogd.pid

/var/run/utmp

/var/run/dhcpv6

/var/run/dhcpv6/dhcp6c.pid

/var/shm

/var/log

/var/log/auditlog

/var/log/xinetd.log

find /tmp

[see attachment!]

Init system

ls -l /etc/fspinit/

-rwxr-xr-x 1 root root 12854 Jan 1 1970 fspinittab

-rwxr-xr-x 1 root root 5286 Jan 1 1970 halt

-rwxr-xr-x 1 root root 63136 Jan 1 1970 include

-rwxr-xr-x 1 root root 15861 Jan 1 1970 initial

-rwxr-xr-x 1 root root 1085 Jan 1 1970 reboot

lrwxr-xr-x 1 root root 30 Jan 1 1970 tf -> ../../opt/fips/components/sttr

cat /etc/fspinit/fspinittab

[see attachment!]

cat /etc/fspinit/halt

[see attachment!]

cat /etc/fspinit/include

[see attachment!]

cat /etc/fspinit/initial

[see attachment!]

cat /etc/fspinit/reboot

[see attachment!]

Security, network

cat /etc/passwd

root:cdgwA________:0:0:root:/root:/bin/sh

daemon:x:2:2:daemon:/sbin:/sbin/nologin

general:x:404:405::/home/general:/bin/sh

admin:x:0:406::/home/admin:/bin/sh

celogin:x:499:499::/home/celogin:/bin/sh

HMC:x:0:499::/home/hmc:/bin/sh

dev:x:0:498::/home/dev:/bin/sh

FipS:x:496:497::/home/Fips:/bin/sh

mfg:x:0:495::/home/mfg:/bin/sh

celogin1:x:500:500::/home/celogin1:/bin/sh

celogin2:x:501:501::/home/celogin2:/bin/sh

nobody:x:502:502::/home/nobody:/bin/sh

ifconfig -a

eth0 Link encap:Ethernet HWaddr E4:1F:xx:xx:xx:xx

inet addr:10.0.0.237 Bcast:10.0.0.255 Mask:255.255.255.0

inet6 addr: fe80::e61f:13ff:fe8e:16d8/64 Scope:Link

UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

RX packets:2562593 errors:0 dropped:39 overruns:0 frame:0

TX packets:264292 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:1000

RX bytes:201726072 (192.3 Mb) TX bytes:60923958 (58.1 Mb)

Interrupt:99

eth1 Link encap:Ethernet HWaddr E4:1F:xx:xx:xx:xx

inet addr:169.254.3.147 Bcast:169.254.3.255 Mask:255.255.255.0

UP BROADCAST MULTICAST MTU:1500 Metric:1

RX packets:1682 errors:0 dropped:1007 overruns:0 frame:0

TX packets:62 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:1000

RX bytes:123481 (120.5 Kb) TX bytes:7120 (6.9 Kb)

Interrupt:107

lo Link encap:Local Loopback

inet addr:127.0.0.1 Mask:255.0.0.0

inet6 addr: ::1/128 Scope:Host

UP LOOPBACK RUNNING MTU:16436 Metric:1

RX packets:1043419 errors:0 dropped:0 overruns:0 frame:0

TX packets:1043419 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:0

RX bytes:288531512 (275.1 Mb) TX bytes:288531512 (275.1 Mb)

sit0 Link encap:IPv6-in-IPv4

NOARP MTU:1480 Metric:1

RX packets:0 errors:0 dropped:0 overruns:0 frame:0

TX packets:0 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:0

RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

netstat -an

Active Internet connections (servers and established)

Proto Recv-Q Send-Q Local Address Foreign Address State

tcp 0 0 169.254.3.147:427 0.0.0.0:* LISTEN

tcp 0 0 10.0.0.237:427 0.0.0.0:* LISTEN

tcp 0 0 127.0.0.1:427 0.0.0.0:* LISTEN

tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN

tcp 0 0 127.0.0.1:427 127.0.0.1:2442 ESTABLISHED

tcp 0 0 127.0.0.1:2442 127.0.0.1:427 ESTABLISHED

tcp 0 0 10.0.0.237:30000 10.0.0.1:39179 ESTABLISHED

tcp 0 0 10.0.0.237:30001 10.0.0.1:55592 ESTABLISHED

tcp 0 0 :::40001 :::* LISTEN

tcp 0 0 :::5989 :::* LISTEN

tcp 0 0 :::9000 :::* LISTEN

tcp 0 0 :::41000 :::* LISTEN

tcp 0 0 :::32809 :::* LISTEN

tcp 0 0 :::31337 :::* LISTEN

tcp 0 0 :::40011 :::* LISTEN

tcp 0 0 :::40013 :::* LISTEN

tcp 0 0 :::80 :::* LISTEN

tcp 0 0 :::30000 :::* LISTEN

tcp 0 0 :::40017 :::* LISTEN

tcp 0 0 :::30001 :::* LISTEN

tcp 0 0 :::30002 :::* LISTEN

tcp 0 0 :::23 :::* LISTEN

tcp 0 0 :::30010 :::* LISTEN

tcp 0 0 :::443 :::* LISTEN

tcp 0 0 ::ffff:10.0.0.237:443 ::ffff:10.0.0.1:54352 ESTABLISHED

tcp 0 0 ::1:2275 ::1:9000 TIME_WAIT

tcp 0 0 ::1:2274 ::1:9000 TIME_WAIT

tcp 0 0 ::1:9000 ::1:2279 CLOSE_WAIT

tcp 0 0 ::1:2279 ::1:9000 FIN_WAIT2

tcp 0 0 ::1:2278 ::1:9000 TIME_WAIT

tcp 0 0 ::1:2277 ::1:9000 TIME_WAIT

tcp 0 0 ::1:2276 ::1:9000 TIME_WAIT

udp 0 0 0.0.0.0:427 0.0.0.0:*

udp 0 0 169.254.3.147:427 0.0.0.0:*

udp 0 0 239.255.255.253:427 0.0.0.0:*

udp 0 0 10.0.0.237:427 0.0.0.0:*

udp 0 0 239.255.255.253:427 0.0.0.0:*

udp 0 0 0.0.0.0:30011 0.0.0.0:*

udp 0 0 0.0.0.0:68 0.0.0.0:*

udp 0 0 0.0.0.0:111 0.0.0.0:*

udp 0 0 fe80::e61f:13ff:fe8:546 :::*

Active UNIX domain sockets (servers and established)

Proto RefCnt Flags Type State I-Node Path

unix 2 [ ACC ] STREAM LISTENING 69088 /tmp/even_ZkDr6f_sockFile

unix 2 [ ACC ] STREAM LISTENING 69097 /tmp/even_rGJgW8_sockFile

unix 2 [ ACC ] STREAM LISTENING 69102 /tmp/even_pOsnz1_sockFile

unix 12 [ ] DGRAM 1805 /dev/log

unix 2 [ ACC ] STREAM LISTENING 6906 /tmp/even_HJnL6d_sockFile

unix 2 [ ACC ] STREAM LISTENING 6964 /tmp/cimpsrv.sock

unix 2 [ ACC ] STREAM LISTENING 7198 /tmp/even_7Y8dcP_sockFile

unix 2 [ ACC ] STREAM LISTENING 7341 /tmp/sfcbLocalSocket

unix 2 [ ACC ] STREAM LISTENING 4077 /tmp/forb.socket.fsp.a.omninames

unix 2 [ ACC ] STREAM LISTENING 4080 /tmp/forb.socket.fsp.local.omninames

unix 2 [ ACC ] STREAM LISTENING 4094 /tmp/rtimServersockFile

unix 2 [ ACC ] STREAM LISTENING 4105 /tmp/even.daemon_sockFile

unix 2 [ ACC ] STREAM LISTENING 4117 /tmp/even_BmelSV_sockFile

unix 2 [ ACC ] STREAM LISTENING 4127 /tmp/even_S97x9G_sockFile

unix 2 [ ACC ] STREAM LISTENING 4229 /tmp/errlsockFile

unix 2 [ ACC ] STREAM LISTENING 4234 /tmp/even_BWdRca_sockFile

unix 2 [ ACC ] STREAM LISTENING 4263 /tmp/forb.socket.fsp.a.smgrinit

unix 2 [ ACC ] STREAM LISTENING 4277 /tmp/even_kqd2cN_sockFile

unix 2 [ ACC ] STREAM LISTENING 4346 /tmp/even_aKhZlP_sockFile

unix 2 [ ACC ] STREAM LISTENING 4382 /tmp/cupd/sock

unix 2 [ ACC ] STREAM LISTENING 4435 /tmp/forb.socket.fsp.a.fwdbserver

unix 2 [ ACC ] STREAM LISTENING 4452 /tmp/svpdSocketPathsockFile

unix 2 [ ACC ] STREAM LISTENING 4458 /tmp/svpdCacheServerSocketPathsockFile

unix 2 [ ACC ] STREAM LISTENING 4464 /tmp/even_3RYb48_sockFile

unix 2 [ ACC ] STREAM LISTENING 4388 /tmp/even_8MscYJ_sockFile

unix 2 [ ACC ] STREAM LISTENING 4472 /tmp/survsockFile

unix 2 [ ACC ] STREAM LISTENING 4483 /tmp/forb.socket.fsp.a.frumscs

unix 2 [ ACC ] STREAM LISTENING 4490 /tmp/tmgt_lock_server.daemon_sockFile

unix 2 [ ACC ] STREAM LISTENING 4507 /tmp/even_BTD9jK_sockFile

unix 2 [ ACC ] STREAM LISTENING 4551 /tmp/panlsockFile

unix 2 [ ACC ] STREAM LISTENING 4557 /tmp/even_YT6Jbs_sockFile

unix 2 [ ACC ] STREAM LISTENING 4616 /tmp/forb.socket.fsp.a.rmgrorb

unix 2 [ ACC ] STREAM LISTENING 22621 /tmp/even_pNsfBv_sockFile

unix 2 [ ACC ] STREAM LISTENING 595901 /tmp/netsSocketFile14588

unix 2 [ ACC ] STREAM LISTENING 22789 /tmp/even_ruArgf_sockFile

unix 2 [ ACC ] STREAM LISTENING 595916 /tmp/even_MarXrb_sockFile

unix 2 [ ACC ] STREAM LISTENING 5309 /tmp/netsSocketFile2075

unix 2 [ ACC ] STREAM LISTENING 596081 /tmp/netStream14613SockFile

unix 2 [ ACC ] STREAM LISTENING 5311 /tmp/netStream2075SockFile

unix 2 [ ACC ] STREAM LISTENING 5331 /tmp/netsSocketFile2082

unix 2 [ ACC ] STREAM LISTENING 596087 /tmp/even_ocKY7i_sockFile

unix 2 [ ACC ] STREAM LISTENING 5333 /tmp/netStream2082SockFile

unix 2 [ ACC ] STREAM LISTENING 5353 /tmp/forb.socket.fsp.a.smgrx

unix 2 [ ACC ] STREAM LISTENING 5688 /tmp/even_kZuhip_sockFile

unix 2 [ ACC ] STREAM LISTENING 5695 /tmp/chicsockFile

unix 2 [ ACC ] STREAM LISTENING 66816 /tmp/attnsockFile

unix 2 [ ACC ] STREAM LISTENING 68221 /tmp/mboxmainserversockFile

unix 2 [ ACC ] STREAM LISTENING 5905 /tmp/even_dZaeOq_sockFile

unix 2 [ ACC ] STREAM LISTENING 68227 /tmp/even_VZGAfp_sockFile

unix 2 [ ACC ] STREAM LISTENING 6005 /tmp/ttif_master.daemon_sockFile

unix 2 [ ACC ] STREAM LISTENING 6118 /tmp/ttif.daemon_sockFile

unix 2 [ ACC ] STREAM LISTENING 6122 /tmp/tmgt.daemon_sockFile

unix 2 [ ACC ] STREAM LISTENING 6128 /tmp/even_Y08eWc_sockFile

unix 2 [ ACC ] STREAM LISTENING 6133 /tmp/even_onGUvh_sockFile

unix 2 [ ACC ] STREAM LISTENING 6160 /tmp/tmgt.daemon_es_sockFile

unix 2 [ ACC ] STREAM LISTENING 363 @frumnetlinksocket

unix 2 [ ACC ] STREAM LISTENING 6165 /tmp/even_mVnLeh_sockFile

unix 2 [ ACC ] STREAM LISTENING 6172 /tmp/spifsockFile

unix 2 [ ACC ] STREAM LISTENING 6178 /tmp/powr.daemon_sockFile

unix 2 [ ] DGRAM 596083

unix 3 [ ] STREAM CONNECTED 596077

unix 3 [ ] STREAM CONNECTED 596076

unix 3 [ ] STREAM CONNECTED 596075

unix 3 [ ] STREAM CONNECTED 596074

unix 2 [ ] DGRAM 595912

unix 3 [ ] STREAM CONNECTED 595874

unix 3 [ ] STREAM CONNECTED 595873

unix 3 [ ] STREAM CONNECTED 595872

unix 3 [ ] STREAM CONNECTED 595871

unix 3 [ ] STREAM CONNECTED 595870

unix 3 [ ] STREAM CONNECTED 595869

unix 3 [ ] STREAM CONNECTED 595868

unix 3 [ ] STREAM CONNECTED 595867

unix 3 [ ] STREAM CONNECTED 595866

unix 3 [ ] STREAM CONNECTED 595865

unix 2 [ ] DGRAM 16361

unix 2 [ ] DGRAM 9435

unix 2 [ ] DGRAM 9375

unix 3 [ ] STREAM CONNECTED 7339

unix 3 [ ] STREAM CONNECTED 7338

unix 3 [ ] STREAM CONNECTED 7337

unix 3 [ ] STREAM CONNECTED 7336

unix 3 [ ] STREAM CONNECTED 7335

unix 3 [ ] STREAM CONNECTED 7334

unix 3 [ ] STREAM CONNECTED 7333

unix 3 [ ] STREAM CONNECTED 7332

unix 3 [ ] STREAM CONNECTED 7331

unix 3 [ ] STREAM CONNECTED 7330

unix 3 [ ] STREAM CONNECTED 7329

unix 3 [ ] STREAM CONNECTED 7328

unix 3 [ ] STREAM CONNECTED 7327

unix 3 [ ] STREAM CONNECTED 7326

unix 3 [ ] STREAM CONNECTED 7325

unix 3 [ ] STREAM CONNECTED 7324

unix 3 [ ] STREAM CONNECTED 7323

unix 3 [ ] STREAM CONNECTED 7322

unix 3 [ ] STREAM CONNECTED 7321

unix 3 [ ] STREAM CONNECTED 7320

unix 3 [ ] STREAM CONNECTED 7319

unix 3 [ ] STREAM CONNECTED 7318

unix 3 [ ] STREAM CONNECTED 7317

unix 3 [ ] STREAM CONNECTED 7316

unix 3 [ ] STREAM CONNECTED 7315

unix 3 [ ] STREAM CONNECTED 7314

unix 3 [ ] STREAM CONNECTED 7313

unix 3 [ ] STREAM CONNECTED 7312

unix 3 [ ] STREAM CONNECTED 7311

unix 3 [ ] STREAM CONNECTED 7310

unix 3 [ ] STREAM CONNECTED 7309

unix 3 [ ] STREAM CONNECTED 7308

unix 3 [ ] STREAM CONNECTED 7307

unix 3 [ ] STREAM CONNECTED 7306

unix 3 [ ] STREAM CONNECTED 7305

unix 3 [ ] STREAM CONNECTED 7304

unix 3 [ ] STREAM CONNECTED 7303

unix 3 [ ] STREAM CONNECTED 7302

unix 3 [ ] STREAM CONNECTED 7301

unix 3 [ ] STREAM CONNECTED 7300

unix 3 [ ] STREAM CONNECTED 7299

unix 3 [ ] STREAM CONNECTED 7298

unix 3 [ ] STREAM CONNECTED 7297

unix 3 [ ] STREAM CONNECTED 7296

unix 3 [ ] STREAM CONNECTED 7295

unix 3 [ ] STREAM CONNECTED 7294

unix 3 [ ] STREAM CONNECTED 7293

unix 3 [ ] STREAM CONNECTED 7292

unix 3 [ ] STREAM CONNECTED 7291

unix 3 [ ] STREAM CONNECTED 7290

unix 3 [ ] STREAM CONNECTED 7289

unix 3 [ ] STREAM CONNECTED 7288

unix 3 [ ] STREAM CONNECTED 7287

unix 3 [ ] STREAM CONNECTED 7286

unix 3 [ ] STREAM CONNECTED 7285

unix 3 [ ] STREAM CONNECTED 7284

unix 3 [ ] STREAM CONNECTED 7283

unix 3 [ ] STREAM CONNECTED 7282

unix 3 [ ] STREAM CONNECTED 7281

unix 3 [ ] STREAM CONNECTED 7280

unix 3 [ ] STREAM CONNECTED 7275

unix 3 [ ] STREAM CONNECTED 7274

unix 3 [ ] STREAM CONNECTED 7273

unix 3 [ ] STREAM CONNECTED 7272

unix 3 [ ] STREAM CONNECTED 6957

unix 3 [ ] STREAM CONNECTED 6956

unix 2 [ ] STREAM CONNECTED 6010 /tmp/ttif_master.daemon_sockFile

unix 3 [ ] STREAM CONNECTED 5327

unix 3 [ ] STREAM CONNECTED 5326

unix 3 [ ] STREAM CONNECTED 5325

unix 3 [ ] STREAM CONNECTED 5324

unix 3 [ ] STREAM CONNECTED 5305

unix 3 [ ] STREAM CONNECTED 5304

unix 3 [ ] STREAM CONNECTED 5303

unix 3 [ ] STREAM CONNECTED 5302

unix 3 [ ] STREAM CONNECTED 364 @frumnetlinksocket

unix 3 [ ] STREAM CONNECTED 4501

unix 3 [ ] STREAM CONNECTED 4381

unix 3 [ ] STREAM CONNECTED 4380

unix 2 [ ] DGRAM 4274

unix 2 [ ] DGRAM 4138

unix 2 [ ] DGRAM 2807

unix 2 [ ] DGRAM 1818

unix 2 [ ] DGRAM 1810

/etc/inetd.conf

# inetd.conf This file describes the services that will be available

# through the INETD TCP/IP super server. To re-configure

# the running INETD process, edit this file, then send the

# INETD process a SIGHUP signal.

# Version: @(#)/etc/inetd.conf 3.10 05/27/93

# hacked for hhl-ppc_8xx

# Authors: Original taken from BSD UNIX 4.3/TAHOE.

# Fred N. van Kempen,

# Modified for Debian Linux by Ian A. Murdock

# Modified for RHS Linux by Marc Ewing

...

time stream tcp nowait root internal

time dgram udp wait root internal

...

ftp stream tcp nowait root /bin/ftpd ftpd

telnet stream tcp nowait root /bin/tcpd /bin/telnetd

...

shell stream tcp nowait.200 root /sbin/in.rshd in.rshd -h -l

login stream tcp nowait root /bin/tcpd in.rlogind

exec stream tcp nowait.500 root /bin/in.rexecd in.rexecd

...

# Fips Services

nets stream tcp nowait root /bin/tcpd /opt/fips/bin/in.nets netsCommonMsgServer

netsPHYP stream tcp nowait root /bin/tcpd /opt/fips/bin/in.nets netsPhypDebugger

netsstream stream tcp nowait root /bin/tcpd /opt/fips/bin/in.nets netsVirtualTTYServer stream

netsstreamdvs stream tcp nowait root /bin/tcpd /opt/fips/bin/in.nets netsVirtualTTYServer dvs

rtad stream tcp nowait root /nfs/bin/rtad.exe

appdebug stream tcp nowait root /nfs/bin/GtpServerAppDebugger.exe GtpServerAppDebugger.exe -inetd -nologf

# End of inetd.conf

cat /etc/sysconfig/network-scripts/level1_security.sh

#!/bin/sh

#Accept everything

/usr/sbin/iptables -F INPUT

/usr/sbin/iptables -F OUTPUT

/usr/sbin/iptables -F FORWARD

/usr/sbin/iptables -I INPUT 1 -j ACCEPT

/usr/sbin/iptables -I OUTPUT 1 -j ACCEPT

/usr/sbin/iptables -I FORWARD 1 -j ACCEPT

/usr/sbin/ip6tables -F INPUT

/usr/sbin/ip6tables -F OUTPUT

/usr/sbin/ip6tables -F FORWARD

/usr/sbin/ip6tables -I INPUT 1 -j ACCEPT

/usr/sbin/ip6tables -I OUTPUT 1 -j ACCEPT

/usr/sbin/ip6tables -I FORWARD 1 -j ACCEPT

touch /opt/p0/netsFirewall.dat