Tips de postinstalación de AIX

Tips de postinstalación de AIX:

0. Instalar OpenSSH: http://www.openssh.com/

 

# lslpp -l |grep ssh

  openssh.base.client     6.0.0.6101  COMMITTED  Open Secure Shell Commands

  openssh.base.server     6.0.0.6101  COMMITTED  Open Secure Shell Server

  openssh.license         6.0.0.6101  COMMITTED  Open Secure Shell License

  openssh.man.en_US       6.0.0.6101  COMMITTED  Open Secure Shell

  openssh.msg.EN_US       6.0.0.6101  COMMITTED  Open Secure Shell Messages -

  openssh.msg.en_US       6.0.0.6101  COMMITTED  Open Secure Shell Messages -

  openssh.base.client     6.0.0.6101  COMMITTED  Open Secure Shell Commands

  openssh.base.server     6.0.0.6101  COMMITTED  Open Secure Shell Server

1. User Profile

#vi /etc/enviroment

PATH=/usr/bin:/etc:/usr/sbin:/usr/ucb:/usr/bin/X11:/sbin:/usr/java5/jre/bin:/usr/java5/bin

TZ=America/Montevideo

LANG=C

LOCPATH=/usr/lib/nls/loc

NLSPATH=/usr/lib/nls/msg/%L/%N:/usr/lib/nls/msg/%L/%N.cat

LC__FASTMSG=true

# ODM routines use ODMDIR to determine which objects to operate on

# the default is /etc/objrepos - this is where the device objects

# reside, which are required for hardware configuration

ODMDIR=/etc/objrepos

WSM_DOC_DIR="/usr/websm/http/com.ibm.websm.http.server_1.0.0"

WSM_CGI_DIR=

WSM_WS_CMD="startsrc -s http4websm"

#vi /etc/profile

# System wide profile.  All variables set here may be overridden by

# a user's personal .profile file in their $HOME directory.  However,

# all commands here will be executed at login regardless.

trap "" 1 2 3

readonly LOGNAME

# Automatic logout, include in export line if uncommented

# TMOUT=120

# The MAILMSG will be printed by the shell every MAILCHECK seconds

# (default 600) if there is mail in the MAIL system mailbox.

MAIL=/usr/spool/mail/$LOGNAME

MAILMSG="[YOU HAVE NEW MAIL]"

# If termdef command returns terminal type (i.e. a non NULL value),

# set TERM to the returned value, else set TERM to default lft.

TERM_DEFAULT=lft

TERM=`termdef`

TERM=${TERM:-$TERM_DEFAULT}

# If LC_MESSAGES is set to "C@lft" and TERM is not set to "lft",

# unset LC_MESSAGES.

if [ "$LC_MESSAGES" = "C@lft" -a "$TERM" != "lft" ]

then

        unset LC_MESSAGES

fi

stty erase ^?

set -o vi

if test ! "$RANDOM" = "$RANDOM"

then

        _____U=`uname -n`

        export PS1='($LOGNAME@$_____U) $PWD> '

fi

export LOGNAME MAIL MAILMSG TERM

trap 1 2 3

2. Password para root

#passwd root

3. Acceso ssh para root

#grep -i PermitRootLogin /etc/ssh/sshd_config

#PermitRootLogin yes

#vi /etc/ssh/sshd_config

PermitRootLogin no

4. root user otros accesos

#smitty user

Change / Show Characteristics of a User

root

User can LOGIN REMOTELY(rsh,tn,rlogin)?             false

5. Agregar un usuario para ingresar al sistema: User & Groups admin

# mkgroup

# mkuser