|
SunOS Localization Checklist
CU SunOS4.1.X Localization Checklist
MACHINENAME: generic
UnixOps support type (check all that apply):
[ ] TAPE backups
[ ] OS support
[ ] NET support
[ ] FULL support (includes first 3 and user support)
[ ] No support - one time localization only
To use this checklist:
Place your initials inside each brace after the task is completed.
Place NA (Not Applicable) if the task doesn't apply here.
A CAPITALIZED word in front of brackets indicates on optional
or OS specific task. Blanks in front of brackets indicate "mandatory".
This checklist is not necessarily meant to be done in order.
VERIFY EVERYTHING. GET SOMEONE ELSE TO DO IT IF YOU CAN'T!!!
The following constitutes localization:
[ ] All parts have arrived, final location known,
wiring asked to make any necessary connections.
[ ] has a valid CU-Boulder Internet address and all host
attributes are in addhost database.
[ ] This host has a name tag plastered on it and all its
peripherals including the device spec filename.
[ ] Install vanilla OS
[ ] Move this file to hostname:/Localization and continue
to update it there
[ ] Ethernet interfaces set up (with ifconfig). e.g.:
ifconfig xxx.xxx.xxx.xxx netmask 255.255.255.0 ...
^^^^^^^^^^^ ^
net # |
|
host #
... broadcast xxx.xxx.xxx.255 -trailers up
^^^^^^^^^^^
net #
[ ] Has custom kernel with desired options/devices. has
support for /dev/nit removed from kernel, unless system
will be serving xterms via rarpd.
[ ] Hostname explicitly set in /etc/hostname.* (typically .le0)
[ ] has 0 length /etc/hosts.equiv
[ ] /tmp and any scratch partitions are mod 1777.
If /var is a separate partition, /tmp should be a link
to /var/tmp.
or If its a sun running 4.1.2 or better then put /tmp
as anonymous memory - tmpfs (DO NOT LINK /var/tmp to /tmp).
[ ] chmod /etc/utmp 664
[ ] chmod /dev/openprom 400
[ ] created /core by soft-linking to /dev/null with the
command "ln -s /dev/null /core"
[ ] has /usr/local/etc/rdistd installed and in root's path
and is set up to be rdistd to by it server.
or if machine is only on net support, install grabfiles.
Make sure that "telnet machinename grabfiles" causes
grabfiles to run.
[ ] remove system version of rdist
rm /usr/ucb/rdist
[ ] resolves queries to sanctioned nameserver
[ ] localized syslog.conf - copied from localized system of
same OS and class config.
[ ] if standalone or server, add to pingem list on boulder.
[ ] this host has valid routing:
if a gateway, install gated binary and /etc/gated.conf
run "gated -t /var/adm/gated.log"
otherwise, run "routed -q"
[ ] install latest version of sendmail
[ ] has valid CU-Boulder sendmail.cf from boulder anonftp
pub/generic.cf. Verify the mail system works completely
by sending test messages to/from users that live on this
host. Start sendmail with /usr/lib/sendmail -bd -q1h.
[ ] /etc/aliases and /usr/lib/aliases are linked together
and /etc/aliases.db and /usr/lib/aliases.db are linked also
[ ] /etc/termcap file from boulder anonftp
[ ] root owns /.rhosts (mode 600) and it contains *only*
the machine(s) it gets its files from.
[ ] has valid tech.alias, trouble.alias, admin.alias, and
wiring.alias in /usr/local/adm/unixops
[ ] link /usr/local/adm/logs to /var/adm/logs
[ ] has diary file as /usr/local/adm/logs/diary mode 4644 and
is owned by "nobody."
[ ] /usr/ucb/quota is replaced with link to /bin/true unless
quotas will be used.
[ ] has valid printcap, spooldirs, access to printers.
[ ] create /var/spool/lpd/printer_name and all directories
that appear after "sd=" in the printcap.
should have owner.group daemon.daemon and mode 775.
(chown daemon.daemon directoryname)
[ ] create all log files (files that appear after "lf="
in the printcap). should have owner.group daemon.daemon,
and mode 664.
[ ] we have a concrete vendor service agreement on this host.
[ ] If UnixOps supported, this host has a UnixOps agreement
[ ] this host has blessing to mount NFS partitions
[ ] political/technical OK to join Club uniqUID
[ ] if in Club uniqUID, install passport and have it
run as a cron job once a month.
[ ] blessed mounts are setup with AMD/Automounter or
in /etc/fstab with soft,bg,grpid
Create mount points, mount
[ ] install/localize clients if server
[ ] All vendor specific relevant security fixes patched.
Check refuge:/usr/local/adm/unixops/doc/LocalSoftwareDoc/
/cert.security.fixes for current list of patches to install.
[ ] kernel-level parameters set correctly. These include
things like bootmode and bootpath on a Dec,
watchdog_reboot and boot_path on a Sun, etc. On a
Sun, these can be set with the command "eeprom".
NET/FULL[ ] root password is what it should be
[ ] _IF_ DISK IS LARGE ENOUGH to handle pre-formatted
man pages, make directories /usr/man/cat{1,2,3,4,5,6,7,8,l}
Be sure they are mode 2777.
Do a "catman [sections]" to created often-used man pages.
[ ] Do a "catman -w" to build whatis database
SUN [ ] Config NIS (master, slave, client) if running NIS or NIS+
SUN [ ] nispasswd installed on sun's running NIS.
SUN [ ] resolver code installed
install /etc/resolv.conf pointing to cujo first
[ ] If UnixOps supported, update the /usr/local/adm/unixops/
system.list file - make sure any changes in OS are
reflected.
TAPE [ ] Machine has operator login with correct operator password.
TAPE [ ] Machine has group operator (and the user operator is in
group operator)
TAPE [ ] AMANDA utilities `senddump' and `sendsize' are installed
in /usr/local/amanda/libexec
TAPE [ ] AMANDA services added to /etc/services:
amsendsize 10069/udp
amsenddump 10070/tcp
TAPE [ ] AMANDA services added to /etc/inetd.conf (send a HUP
to inetd after changing this file):
amsendsize dgram udp wait operator \
/usr/local/amanda/libexec/sendsize sendsize
amsenddump stream tcp nowait operator \
/usr/local/amanda/libexec/senddump senddump
TAPE [ ] AMANDA master host is in ~operator/.rhosts, and
~operator/.rhosts is mode 600, owned by operator
TAPE [ ] all raw disk devices are mode 640, group operator
TAPE [ ] /etc/dumpdates is mode 664, group operator
TAPE [ ] Operators have been mailed the following information:
* Output from a "df"
* Which partitions are to be dumped
TAPE [ ] If a machine is a server complete the above for all
diskful Clients as well.
TAPE [ ] Operations manager has an account on the machine with
sudo (and knows about it).
TAPE [ ] /usr/spool/restore is mod 750, owned by operator.
[ ] Optional jobs to be run out of cron:
spacegripe, passport, ntpdate, passchk
Mandatory Software Packages:
Verify packages. Get someone else to verify them if you don't know how.
[ ] sudo. setup blessed sudoers. NEW sudo if its a full service
client make it log to boulder.
UNIQUID [ ] durm or adduser - server end (adduserd)
be sure to configure /usr/local/lib/adduser.conf.
[ ] culine
[ ] less
UNIQUID [ ] mailhome (if a uniquid machine)
[ ] sreensaver installed and setup in /etc/rc.local
(wiped & bounce_icon, or screenblank)
[ ] ntpdate
(do a "make ntpdate/ntpdate" from xntpd source)
This should be installed in cron as "ntpdate -s 128.138.240.1"
This should also be in rc.local "ntpdate -b -s 128.138.240.1"
[ ] new talk (procedure and binaries are located via anonymous
ftp from boulder)
[ ] tcsh (add to /etc/shells)
[ ] top
Free Optional Software Packages:
Ask customer before installing any of these. Mail the customer to ask
them what they would like to have installed.
Initial, or put REJ (rejected by customer).
[ ] da/411
[ ] file transfer protocols
kermit, xmodem, and zmodem (usually 'sz')
[ ] mkmake
[ ] perl
[ ] rrn (usenet news)
[ ] rtar
[ ] scrub
[ ] shar
[ ] spacegripe
[ ] tac
[ ] tout
[ ] transcript (psroff, enscript, etc.) (requires ditroff)
don't forget the culogo font for transcript
[ ] ditroff
[ ] webster (server "webster")
Extra-Cost Optional software packages.
If customer has a full-service agreement with unixops, install any/all
of these at no extra charge.
If customer has only net support, this is a one-time localization, or
this is time and materials work, let them know about the charges
marked beside the packages. be sure to inform billing about
which packages you installed.
$ ?? [ ] Unbundled compilers - install in /usr/local/lang if 4.1.x,
License files go in
/usr/local/lang/SunTech_License/license.dat for consistency.
check with Paul Buster for pricing and getting licensed.
$ 50 [ ] emacs (gnu version: most recent)
$ 50 [ ] RAND MH
$ 100 [ ] TeX / detex / latex /culogo font for tex
$ 100 [ ] X11R5 (mount from X NFS server if blessed)
$ 100 [ ] GNU distribution
When done:
[ ] Level 0
[ ] Mail checklist to boss and diary@hostname
[ ] Notify UnixOps Assistant Admin to recharge.
|
|
