Support Home    Software    Knowledge Base    Downloads    User Forums  
Customer Service | Training | Contact Us
Welcome!
Login
Search Options   products areas display

Which products should be considered?

All Products

ArcCAD
ArcEditor
ArcExplorer
ArcGIS Engine
ArcGIS Explorer
ArcGIS Image Server
ArcGIS Mobile
ArcGIS Server
ArcIMS
ArcInfo Desktop
ArcInfo Workstation
ArcLogistics Route
ArcPad
ArcPad Application Builder
ArcReader
ArcSDE
ArcView
ArcView 3.x
ArcWeb Services APIs
ArcWeb Toolbar for ArcGIS
Atlas GIS
BusinessMap
BusinessMap Pro
GIS Portal Toolkit
Job Tracking for ArcGIS
MapIt
Maplex
MapObjects -- Java
MapObjects -- Windows
MapObjects IMS
MapObjects LT
MapStudio
Military Overlay Editor
NetEngine
PC ARC/INFO & DAK
PLTS
RouteMap
RouteMap IMS
SDE
Tracking Server

    Remember these settings for each visit More info
You are here:

ArcInfo Workstation 8.3 Security Patch on UNIX

save bookmark view bookmarks article feedback

Date Submitted: May 18, 2005
Last Modified: May 18, 2005

Summary:

This Patch addresses possible security vulnerabilities in the ArcStorm and Geoprocessing Server features of ArcInfo Workstation 8.3 on UNIX.

Description:

Introduction

ESRI® announces the ArcInfo Workstation 8.3 Security Patch on UNIX. This Patch addresses possible security vulnerabilities in the ArcStorm and Geoprocessing Server features of ArcInfo Workstation 8.3 on UNIX. It deals specifically with the issues listed below under Issues Addressed with this Patch.

We recommend that all ArcInfo Workstation 8.3 on UNIX customers, who use ArcStorm or the Geoprocessing Server feature, download and install this Patch at their earliest convenience to ensure the highest quality experience when working with ArcInfo Workstation 8.3. ArcInfo users who do not use ArcStorm or the Geoprocessing Server do not need to apply this patch. For those users, however, we strongly recommend that the ownership of the files in $ARCHOME/bin be reviewed and any root-owned executables be switched back to the ownership of the normal ArcInfo install account. If ArcStorm and the Geoprocessing Server are not in use, there should be no root-owned executables in the $ARCHOME/bin directory.

Issues Addressed with this Patch


Files Installed in this Patch

Installing this Patch

This Patch is intended for ArcInfo users who run ArcStorm or the Geoprocessing Server feature. The installation of those features require that selected ArcInfo executables be assigned root ownership. This Patch provides new versions of those root-owned files.

ArcInfo Workstation 8.3 must be installed before you can install this Patch. During installation, you can either save the original 8.3 files or overwrite them. If you choose to save them, make sure you have enough disk space. The disk space requirements, for each platform, are displayed during the installation process.

  1. Make sure you have write access to the ArcInfo Workstation installation location, and that no one is using ArcInfo.


  2. Download the appropriate tar file to a location other than ArcInfoWorkstation installation location:
    3. File Size
    HP ai83-sec-patch-hp.tar
    34 MB
    IBM ai83-sec-patch-ibm.tar
    14 MB
    SGI ai83-sec-patch-sgi.tar
    21 MB
    Solaris ai83-sec-patch-sun.tar
    17 MB
    Tru64 ai83-sec-patch-tru64.tar
    31 MB

  3. Extract the specified tar file by typing:


    4. % tar -xvf ai83-sec-patch-<Platform>.tar

  4. Start the installation by typing:


    5. % ./apply_patch_<Platform>

    This will start the dialog for the menu-driven installation procedure. Default selections are noted in parentheses ( ). To quit the installation procedure, type 'q' at any time.

  5. Under the $ARCHOME/bin directory, become ROOT and change the ownership and permissions of the following ArcStorm executables:


    6. #chown root abservice asbuild asmaster asrecovery asuser asutility lockmgr se wservice
    #chmod 6755 abservice asbuild asmaster asrecovery asuser asutility lockmgr se wservice

How to identify which Patch is installed


Any modified UNIX executables (or libraries) being sent out as part of a Patch will return the unique identification number for that fix when checked with the "what" command for UNIX and the "strings" command for Linux. For example, to display the identification string for this Patch, type:

Patch Updates

Check the Online Support Center periodically for the availability of additional Patches. New information about this Patch will be posted here.

Getting Help

Domestic sites, please contact ESRI Technical Support at 909.793.3774, if you have any difficulty installing this Patch. International sites, please contact your local ESRI software distributor.

Send your comments to: Site Administrator | Terms of Use | PRIVACY | Careers | Copyright © ESRI
Site Map | Site FAQs | Browser Support
This website's graphical display is now viewable only with W3C standards-compliant browsers, but the content is accessible to all browsers and Internet devices. View our supported browser matrix for more information on our website display.