环境:
操作系统: AIX 5.3.8
集群软件: CRS 10.2.0.1
数据库: Oracle 10.2.0.1
错误现象:
AIX 系统权限错误,普通用户不能进行网络通讯(如rlogin、rsh、rcp、ping)
1、故障现象
[u@h W]$rlogin aix208
rcmd2: socket: Permission denied
[root@aix208 /]#su - oracle
[YOU HAVE NEW MAIL]
[u@h W]$ping aix208
ping: socket: Permission denied
2、查看命令权限
[root@aix208 /]#which rcp
/usr/bin/rcp
[root@aix208 /]#ls -l /usr/sbin/ping
-rwxr-xr-x 1 root system 32566 Jan 5 2008 /usr/sbin/ping
[root@aix208 /]#ls -l /usr/bin/rsh
-r-sr-xr-x 2 root system 26244 Jan 5 2008 /usr/bin/rsh
[root@aix208 /]#ls -l /usr/bin/rlogin
-rwxr-xr-x 1 root bin 29502 Jan 5 2008 /usr/bin/rlogin
[root@aix208 /]#ls -l /usr/bin/rcp
-rwxr-xr-x 1 root system 44798 Feb 11 2008 /usr/bin/rcp
[root@aix208 /]#ls -l /usr/sbin/ping
-rwxr-xr-x 1 root system 32566 Jan 5 2008 /usr/sbin/ping
3、修改命令权限,问题解决
[root@aix208 /]#chmod 4555 /usr/bin/rlogin
[root@aix208 /]#chmod 4555 /usr/bin/rcp
[root@aix208 /]#chmod 4555 /usr/bin/rsh
[root@aix208 /]#chmod 4555 /usr/sbin/ping
4、测试
[root@aix208 /]#su - oracle
[YOU HAVE NEW MAIL]
[u@h W]$ping aix208
PING aix208 (192.168.8.208): 56 data bytes
64 bytes from 192.168.8.208: icmp_seq=0 ttl=255 time=9 ms
64 bytes from 192.168.8.208: icmp_seq=1 ttl=255 time=0 ms
^C
--- aix208 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 0/4/9 ms
[u@h W]$rsh aix208 date
Thu Oct 17 14:46:21 BEIDT 2013
[u@h W]$