Tips de postinstalación de AIX
Tips de postinstalación de AIX:
0. Instalar OpenSSH: http://www.openssh.com/
# lslpp -l |grep ssh
openssh.base.client 6.0.0.6101 COMMITTED Open Secure Shell Commands
openssh.base.server 6.0.0.6101 COMMITTED Open Secure Shell Server
openssh.license 6.0.0.6101 COMMITTED Open Secure Shell License
openssh.man.en_US 6.0.0.6101 COMMITTED Open Secure Shell
openssh.msg.EN_US 6.0.0.6101 COMMITTED Open Secure Shell Messages -
openssh.msg.en_US 6.0.0.6101 COMMITTED Open Secure Shell Messages -
openssh.base.client 6.0.0.6101 COMMITTED Open Secure Shell Commands
openssh.base.server 6.0.0.6101 COMMITTED Open Secure Shell Server
1. User Profile
#vi /etc/enviroment
PATH=/usr/bin:/etc:/usr/sbin:/usr/ucb:/usr/bin/X11:/sbin:/usr/java5/jre/bin:/usr/java5/bin
TZ=America/Montevideo
LANG=C
LOCPATH=/usr/lib/nls/loc
NLSPATH=/usr/lib/nls/msg/%L/%N:/usr/lib/nls/msg/%L/%N.cat
LC__FASTMSG=true
# ODM routines use ODMDIR to determine which objects to operate on
# the default is /etc/objrepos - this is where the device objects
# reside, which are required for hardware configuration
ODMDIR=/etc/objrepos
WSM_DOC_DIR="/usr/websm/http/com.ibm.websm.http.server_1.0.0"
WSM_CGI_DIR=
WSM_WS_CMD="startsrc -s http4websm"
#vi /etc/profile
# System wide profile. All variables set here may be overridden by
# a user's personal .profile file in their $HOME directory. However,
# all commands here will be executed at login regardless.
trap "" 1 2 3
readonly LOGNAME
# Automatic logout, include in export line if uncommented
# TMOUT=120
# The MAILMSG will be printed by the shell every MAILCHECK seconds
# (default 600) if there is mail in the MAIL system mailbox.
MAIL=/usr/spool/mail/$LOGNAME
MAILMSG="[YOU HAVE NEW MAIL]"
# If termdef command returns terminal type (i.e. a non NULL value),
# set TERM to the returned value, else set TERM to default lft.
TERM_DEFAULT=lft
TERM=`termdef`
TERM=${TERM:-$TERM_DEFAULT}
# If LC_MESSAGES is set to "C@lft" and TERM is not set to "lft",
# unset LC_MESSAGES.
if [ "$LC_MESSAGES" = "C@lft" -a "$TERM" != "lft" ]
then
unset LC_MESSAGES
fi
stty erase ^?
set -o vi
if test ! "$RANDOM" = "$RANDOM"
then
_____U=`uname -n`
export PS1='($LOGNAME@$_____U) $PWD> '
fi
export LOGNAME MAIL MAILMSG TERM
trap 1 2 3
2. Password para root
#passwd root
3. Acceso ssh para root
#grep -i PermitRootLogin /etc/ssh/sshd_config
#PermitRootLogin yes
#vi /etc/ssh/sshd_config
PermitRootLogin no
4. root user otros accesos
#smitty user
Change / Show Characteristics of a User
root
User can LOGIN REMOTELY(rsh,tn,rlogin)? false
5. Agregar un usuario para ingresar al sistema: User & Groups admin
# mkgroup
# mkuser