Et al ...
I've detailed proposed solutions for later patches (i.e. 110934-24) which
I've found to work, and also referenced known solutions for previous
patches. Please let me know if this works for you and also correct me
where I'm wrong
Problem
Executing the UnixInstallScript fails with CPshrd-54 permission/access
errors (even with installation directory: chown -R root:root *). The
reason is due to modifications on the program pkgadd done by patch
110934-20 and later ) for Solaris 8 (later patches execute request scripts
as "noaccess". Patch 110934-20 (pkgadd) executes request scripts as
"noaccess", previous packaging patch used to run scripts as "nobody"
I've found the following solution works with later patches i.e. 110934-24.
i.e. Make the following temporary modifications to the "noaccess" entry
and restore original entry after the installation of VPN-1/FireWall-1 NG
with AI
1) vi /etc/passwd
2) noaccess:x:0:1:No Access User:/:
3) Complete the installation of VPN-1/FireWall-1 NG with AI
4) vi /etc/passwd
5) noaccess:x:60002:60002:No Access User:/:
Regarding older patches i.e. 110934-20, the following solution is a
workaround, however, this solution does not seem to work for newer patches
to pkgadd
https://secureknowledge.checkpoint.com/SecureKnowledge/login.do?OriginalAction=solution&id=sk30333
1) Remove patch 110934-20 by running the command:
2) patchrm 110934-20
3) Reboot the machine
4) Complete the installation of VPN-1/FireWall-1 NG with AI
5) Reboot the machine
6) Reinstall patch 110934-20 by running the command:
7) patchadd 110934-20
8) Reboot the machine
Regards
Andrew
----------------------------------------------------------------------------------------
This is a PRIVATE message. If you are not the intended recipient, please
delete without copying and kindly advise us by e-mail of the mistake in
delivery. NOTE: Regardless of content, this e-mail shall not operate to
bind CSC to any order or other contract unless pursuant to explicit
written agreement or government initiative expressly permitting the use of
e-mail for such purpose.
----------------------------------------------------------------------------------------
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
