Red Hat ENTERPRISE 5.3 RELEASE NOTES Guia de Instalação descarregar pdf (Página 20)

tvflash

Net-SNMP Re-Base

Net-SNMP has been re-based to upstream version 5.3.2.2. This update adds Stream Control

Transmission Protocol (SCTP) support (as per RFC 3873, http://www.ietf.org/rfc/rfc3873.txt) and

introduces two new configuration options (to be used in /etc/snm pd.conf):

dontLogT CPWrappersConnects — suppresses logging of connection attempts.

v1trapaddress — enables administrators to set an agent's IP address inside outgoing

SNMP traps.

This update also features several bug fixes from upstream, including:

The snm pd daemon now functions properly on systems with more than 255 network

interfaces. In addition, snm pd also reports an error now when it is configured to listen on

any port higher than 65535.

A race condition that caused the snmpd daemon to leak file descriptors when reading from

/proc is now fixed.

The snm pd daemon now correctly reports hrProcessorLoad object IDs (OID), even on

multi-CPU hardware. Note, however, that it takes approximately one minute from daemon

startup to calculate the value of the OID.

The net-snm p-devel package is now dependent on the lm _sensors-devel package.

OpenSSL Re-Base for FIPS Certificat ion

The openssl packages upgrade the OpenSSL library to a newer upstream version, which is

currently undergoing the Federal Information Processing Standards validation process (FIPS-

140-2). T he FIPS mode is disabled by default, to ensure that the OpenSSL library maintains

feature parity and ABI compatibility with the previous releases of the openssl packages in Red

Hat Enterprise Linux 5.

This update also applies the following upstream fixes:

By default, zlib compression is used for SSL and T LS connections. On IBM System z

architectures with Central Processor Assist for Cryptographic Function (CPACF),

compression became the main part of the CPU load, and total performance was determined

by the speed of the compression (not the speed of the encryption). When compression is

disabled, the total performance is much higher. In these updated packages, zlib

compression for SSL and T LS connections can be disabled with the

OPENSSL_NO_DEFAULT_ZLIB environment variable. For T LS connections over a slow

network, it is better to leave compression on, so that the amount of data to be transferred is

lower.

When using the openssl command with the s_client and s_server options, the default

CA certificates file (/etc/pki/tls/certs/ca-bundle.crt), was not read. T his resulted

in certificates failing verification. In order for certificates to pass verification, the -CAfile

/etc/pki/tls/certs/ca-bundle.crt option had to be used. In these updated

packages, the default CA certificates file is read, and no longer needs to be specified with

the -CAfile option.

yum Re-Base

yum has been re-based to upstream version 3.2.18. T his update improves the speed at which

3. Feature Updates

1 2 ... 15 16 17 18 19 20 21 22 23 24 25 ... 208 209

Comentários a estes Manuais

Sem comentários

Red Hat ENTERPRISE 5.3 RELEASE NOTES Guia de Instalação Página 20

Comentários a estes Manuais

Manuais e produtos relacionados com Telefones Red Hat ENTERPRISE 5.3 RELEASE NOTES