book

Linux for IBM eServer zSeries and S/390: Distributions

by Michael MacIsaac, Ronald Annuss, Wolfgang Engel, Chris Gombola, Timothy Nunes, Mark Post, Don Stubbs, Egon Terwedow, Craig Vernon

September 2001

Intermediate to advanced

580 pages

12h 30m

English

IBM Redbooks

Read now

Unlock full access

Preface
The team that wrote this redbook
Special notice
IBM trademarks
Comments welcome
Part 1: Linux overview
Chapter 1: Overview
A brief history
Systems used for this redbook
ProcessorDASDLinux distributions
Chapter 2: Planning for Linux
Planning hardware
Integrated Facility for Linux (IFL)Planning DASD
Planning for tape devices
Planning networking (1/2)Physical networkingVirtual networkingLinux OSA cards and drivers

Planning networking (2/2)
IBM 2216CTCTCP/IP calculationsMaximum Transmission Unit (MTU) sizes
Planning for Linux distribution and software
Planning file systems
Roadmap
Chapter 3: Preparation
Prepare the VM guest for Linux
The VM user directoryProcessing the VM user directoryEditing the PROFILE EXEC and XEDIT PROFILEGetting the installation files for VM
Booting the installation kernel from the VM reader
Prepare the LPAR for Linux
Swap space size and type
Booting the installation kernel in an LPAR (1/4)
Using the ICKDSF bootstrapBooting from HMC CD-ROM or FTP server
Booting the installation kernel in an LPAR (2/4)
Booting the installation kernel in an LPAR (3/4)
Booting from tape
Booting the installation kernel in an LPAR (4/4)
Part 2: Strategic Linux distributions
Chapter 4: Overview of SuSE Linux
Getting the SuSE distribution
Via SuSE salesVia FTP site
Documentation included with the SuSE distribution
Software components of the distribution
How does SuSE Linux differ
Chapter 5: Installing SuSE Linux
General installation considerations
Boot file processingDASD considerationsInstallation options and DASD requirements
Installing SuSE under VM (1/5)
SuSE under VM checklistInstalling SuSE Linux under VMTransferring installation system files to your VM guest
Installing SuSE under VM (2/5)
Logging in via telnet and completing the install via YaST
Installing SuSE under VM (3/5)
Installing SuSE under VM (4/5)
Installing SuSE under VM (5/5)
SuSE installation in an LPAR
Installing SuSE under VIF
Assessing the SuSE installation experience
Chapter 6: Customizing and using SuSE Linux
Using YaST
Samba installation (1/2)
Install from an RPMSamba configurationSamba password encryption
Samba installation (2/2)
Using SWATSamba documentation
Apache Web server
Apache configurationPassword-protecting a directory
Enabling CGI scripts
e-mail
Setting up LVM with YaST
Graphical interface
Chapter 7: Overview of Turbolinux
History
Getting the Turbolinux distributionDownloading the CD-ROM imagesPurchasing the distribution
Available documentation
Notable characteristics of TurbolinuxStandardized customization and usage
Chapter 8: Installing Turbolinux
Turbolinux installation worksheet
Planning DASD with Turbolinux
Installation of Turbolinux under VMVM checklistDownload boot files to VMInitial IPL of Linux
Installation of Turbolinux in an LPAR
Turbolinux under LPAR checklistIPL of Turbolinux
Installation of Turbolinux under VIF
The turbo.ins filedasdfmt
Master Linux
Other VIF-related issuesBuilding the target system (1/2)Running the Turbolinux installation script
Building the target system (2/2)
The Version 6.5 “beta”
The Version 6.5 installationThe Turbolinux V6.5 distribution
Chapter 9: Customizing and using Turbolinux
Customizing Turbolinux
Secure shell (SSH)FTP serverWeb serverSambaNFS serverThe domain name serverXDM
Administration
Webmin
Chapter 10: Overview of Red Hat Linux
Obtaining the Red Hat distribution
Documentation available
How Red Hat Linux differs
Chapter 11: Installing Red Hat Linux
Before you install
Preparing for installation
Installation of Red Hat under VM
Red Hat under VM checklist
Installation of Red Hat in an LPAR
Red Hat in an LPAR checklist
Comments on LPAR installationInstallation of Red Hat under VIF
Red Hat under VIF checklist
Comments on VIF installationCommon installation steps (1/2)
Common installation steps (2/2)
Problems we encountered
Chapter 12: Customizing and using Red Hat Linux
Creating multiple IPL volumes
Installing linuxconf
Adding a non-root user
Managing the network
Configuring Apache
Managing the FTP Server
Managing Samba
Enabling SWAT
Mail server
Enabling xdm
Installing KDE
Installing GNOME
Miscellaneous
Installing maintenance on Red Hat
Part 3: Other distributions
Chapter 13: The Marist File System
History and overview of the Marist File System
Getting the Marist File SystemDocumentationHow the Marist File System differs
Installing the Marist File System
Installing the Marist File System under VM (1/2)
Marist File System under VM checklist
Installing the Marist File System under VM (2/2)
Customization
Installing SSHCreating multiple IPL volumesAdding a non-root userUsing ApacheFTP serverxdmNetwork
Misc
Problems we encountered
Chapter 14: Caiman Linux for zSeries
Learning more about Caiman
What’s specific about Caiman LinuxSystem requirementsInstallation worksheet - Caiman
Caiman disk requirements
Installation (1/3)Preparing the first IPL of the install systemInitial IPL and network setup
Installation (2/3)
Installation of the base systemBooting the base system from DASD and adding packages
Installation (3/3)
System configuration and administration (1/3)
File system layoutNetwork setupManaging DASDManaging users
System configuration and administration (2/3)
Configure mailUsing ApacheUsing FTPUsing SambaSoftware package management
System configuration and administration (3/3)
Chapter 15: Think Blue 64 Linux for zSeries
What’s specific about Think Blue
System requirementsInstallation worksheet
Think Blue disk requirements
Installation (1/2)Preparing the first IPL of the install systemInitial IPL and network setupInstallation with tbsetup
Installation (2/2)
System configuration and administration (1/4)
File system layoutConfigure services/daemonsLinuxconfNetwork setup
System configuration and administration (2/4)
Managing DASDManaging usersConfiguring the mail server
System configuration and administration (3/4)
Using ApacheUsing FTPUsing SambaRPMTape supportLinux 2.4 kernel specific enhancements
System configuration and administration (4/4)
Part 4: Other topics
Chapter 16: VIF
Overview of VIF
Planning for VIF
VIF networking options
VIF partitions and paging space
Installation of VIF with TurbolinuxInstallation of VIF with Red HatInstallation of VIF with SuSE LinuxPrepare an FTP server with the VIF install file and Linux
Format a clean S/390 DASD
Load VIF tape onto DASDIPL the DASD and answer VIF questions
Begin master Linux installation from HMC
Telnet to master Linux and finish installation
Reset master Linux boot partition and reboot
Using VIF (1/3)
Writing a simple v scriptApplying service to VIFChanging the Linux distributionAllocating image and paging spaceInstalling a template Linux image
Using VIF (2/3)
Customizing the template Linux imageCloning the template Linux imageScripts to clone Linux images
Using VIF (3/3)
Shutting down VIF
Chapter 17: Logical Volume Manager
Problem support for LVM
LVM basics
Sample LVM session
Using the pvcreate and vgscan commandsUsing the vgcreate commandUsing the lvcreate commandUsing the lvremove commandUsing the lvextend commandresize2fs
Creating a 20 GB logical volume
Striping
Using pvmove to migrate PEs to other PVs
Chapter 18: High Availability using clusters
What is a Linux cluster
HA workload balancing Linux cluster for S/390
Linux virtual server architectures
Virtual server via network address translationVirtual server via IP tunnelingVirtual server via direct routing
Scheduling algorithms
High availability testingThe Linux virtual server patch and test
Testing LVS under z/VM using tunneling
The mon tool and test
The IP takeover tool and test
Other tests needed and requirements
Using journaled file systemsUsing IBM JFS
Chapter 19: Debugging and problem diagnosis
Linux diagnostic tools (1/4)
objdump
Linux diagnostic tools (2/4)
strace
Linux diagnostic tools (3/4)
ulimitgdbuptime, top commands
Linux diagnostic tools (4/4)
System.mapksymoopsLog filesdmesg
Standalone dump
VM diagnostic tools
HMC diagnostic facilities
Debugging for developers
strace
gdbSupportSupport LineGetting supportProblem descriptionDiagnostic dataData collectionSearching
Chapter 20: LDAP
What is LDAP
How does LDAP work
Using OpenLDAPCentralized user account managementSetting up the OpenLDAP server
Migrating data to the LDAP database
Setting up the PAM-LDAP modulePossible deployment scenarios
Other considerations
SecurityReferralsReplication
Chapter 21: System management tools
Common Linux tools (1/2)
The /proc file systemThe ps commandThe top commandThe vmstat commandThe df commandThe du commandThe netstat commandQuotas
Common Linux tools (2/2)
Administration tools (1/2)
YaSTLinuxconfWebmin
Administration tools (2/2)
AdminUX
Remote network management tools (1/6)snmp toolsScotty/Tkined
Remote network management tools (2/6)
Big Brother
Remote network management tools (3/6)
Remote network management tools (4/6)
Remstats
Remote network management tools (5/6)
Other remote network management tools
Remote network management tools (6/6)
Chapter 22: Overview of security on Linux
Security basics (1/6)
Disable unneeded servicesUse Secure Shell for remote access
Security basics (2/6)
Security basics (3/6)
Use shadow password utilitiesUse the Pluggable Authentication Module (PAM)
Security basics (4/6)
Security basics (5/6)
Monitor security news and alertsUse hardening toolsIntegrate VM and z/VM security
Security basics (6/6)
Chapter 23: Backup and restore
Linux image backup and restore under VM
Backing up a Linux guest using DDR
Tape support under Linux for zSeries and S/390 (1/2)
Download kernel source, kernel patch, and lcs moduleExtract kernel source and patchApply the patchRecompile kernelCopy the new kernel filesReplace the System.mapExtract the new LCS driverEnable the new LCS driverUpdate boot record and reboot to new kernel
Tape support under Linux for zSeries and S/390 (2/2)
Recovering from a bad compileCreate tape devices
Load the tape driver
Test the tape driverDisaster backup and restore (1/2)Complete file system-based backup and restoreComplete file system backup and restore via Linux utilitiesComplete file system backup and restore via TSM Client
Disaster backup and restore (2/2)
Incremental backup and restore (1/2)
Incremental file system-based backup and restoreIncremental file system backup and restore via Linux utilitiesIncremental file system backup and restore via TSM Client
Incremental backup and restore (2/2)
Chapter 24: DB2
DB2 UDB overview
Downloading DB2 UDB for Linux on S/390
Installing DB2 UDB on Linux
Verifying the UDB DB2 installation
Chapter 25: WebSphere Application Server
Downloading the evaluation version of WebSphere
Installing WebSphere
Upgrading WebSphere to Fixpack Level 3.5.4
Starting the Web server
Starting the WebSphere Application Server
Test the WebSphere Application Server
Setting up the WebSphere Samples Gallery (1/3)
Configuring the database
Setting up the WebSphere Samples Gallery (2/3)
Configuring Enterprise Java Beans
Setting up the WebSphere Samples Gallery (3/3)
Chapter 26: Conclusion
Observations
Appendix A: Commands and other references
Command syntax
VIF commands
Query commandsHYPervisor commandsIMAGE commands
PARTition commands:
Run levels
Appendix B: Parameter file values
Condev - 3215 line mode terminal
Syntax
Example
ctc - CTC/ESCONSyntaxExamples
dasd or dasd_mod - DASD
Syntax
Examples
lcs - LAN channel station (OSA cards)SyntaxExamples
mdisk - VM/CMS minidisks
Syntax
Example
netiucv - IUCV communicationsSyntax
Example
rootSyntaxExamples
xpram
SyntaxExamples
Appendix C: Customizing Linux checklist
Appendix D: 64-bit Linux
Building your first kernel
Building a file system from scratch
Relevant linux-390 appends
Appendix E: ICKDSF bootstrap job (1/2)
Appendix E: ICKDSF bootstrap job (2/2)
Related publications
IBM RedbooksOther resources
Referenced Web sites
How to get IBM Redbooks
IBM Redbooks collections
Special notices
Index (1/3)
Index (2/3)
Index (3/3)
Back cover

Content preview from Linux for IBM eServer zSeries and S/390: Distributions

436 Linux for IBM ^ zSeries and S/390: Distributions

22.1 Security basics

The security basics can be summarized as follows:

򐂰 Disable unneeded services

򐂰 Use Secure Shell for remote access

򐂰 Use shadow password utilities

򐂰 Use the Pluggable Authentication Module (PAM)

򐂰 Monitor security news and alerts

򐂰 Use hardening tools

򐂰 Integrate z/VM security

In the following sections, we describe these points in more detail.

22.1.1 Disable unneeded services

Many network requests are handled by either the Internet Daemon (inetd), or the

Extended Internet Daemon (xinetd). The Red Hat system uses xinetd as its

default Internet daemon. All other distributions use in ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Linux on IBM eServer zSeries and S/390: Best Security Practices

Publisher Resources

ISBN: 0738423513Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Linux for IBM eServer zSeries and S/390: Distributions

by Michael MacIsaac, Ronald Annuss, Wolfgang Engel, Chris Gombola, Timothy Nunes, Mark Post, Don Stubbs, Egon Terwedow, Craig Vernon

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

More than 5,000 organizations count on O’Reilly

Julian F.

Addison B.

Amir M.

Mark W.

You might also like

Linux on IBM eServer zSeries and S/390: Best Security Practices

The Virtualization Cookbook for IBM z Systems Volume 2: Red Hat Enterprise Linux 7.1 Servers

z/OS Diagnostic Data Collection and Analysis

Heterogeneous Computing with OpenCL 2.0

Publisher Resources