Looking for Intruders with Lsof QUICK CHECK

Total Page:16

File Type:pdf, Size:1020Kb

Looking for Intruders with Lsof QUICK CHECK lsof COVER STORY Looking for intruders with lsof QUICK CHECK Track down and expose intruders with the versatile admin tool lsof. BY CASPAR CLEMENS MIERAU as your server been cracked? obtaining information that would other- has gotten comfortable. If you are seri- Are your processes running wise require a whole collection of admin ous about using lsof for intrusion detec- Hwild? If you suspect an intru- utilities. tion, leave out the make install step after sion, you’ll need accurate information As the adage goes, “everything is a compiling and manually move the bi- on what’s happening with the system. file” in Unix. Almost all activities on a nary to a write-protected medium such Open file handles are a useful source Unix-like system bear some relation to as a CD ROM. Of course, if a sophisti- for this information. lsof [1] scans the an open file. Unix-style systems use reg- cated attacker has directly modified the depths of the filesystem for these files ular files, special block files, executables, kernel (through a kernel rootkit, for ex- and then returns comprehensive and libraries, directo- detailed output. ries, internal data To be fully prepared for an attack, streams (Unix Do- you’ll need an Intrusion Detection Sys- main Sockets), tem (IDS) like Snort, Tripwire or Aide to and network con- check the filesystem and data streams nections. lsof is for suspicious patterns. However, if you able to centrally don’t have the time or resources for a collect and syn- full-blown intrusion response, Linux has thesize all this a number of standard command line information into programs capable of discovering tell-tale meaningful clues traces on a system. The usual suspects about the nature for server diagnosis are ps, netstat, top, of an attack. fuser, and other friendly helpers. Like any utility, lsof is a single tool that provides a lsof is subject to summary of similar system information. manipulation Figure 1: The promising glsof tool gives GUI fans easy access to filter You can use lsof as a single source for once the attacker settings. WWW.LINUX - MAGAZINE.COM ISSUE 77 APRIL 2007 29 COVER STORY lsof ample) the output of lsof will be unreli- You can manipulate the output for pro- able even if the tool itself is untouched. cessing with other tools using lsof -F. However, as you’ll learn in this article, Special formatting helps the downstream many attackers try tricks that aren’t tools parse the individual fields (see the especially sophisticated and are easily manpage section Output for other pro- exposed with a tool like lsof. grams for details). lsof is no substitute for a full-featured IDS, but if you are too late for that or if Flood of Information you aren’t interested in implementing Calling lsof without setting parameters or managing a more comprehensive returns too much information to provide system, you can still use lsof to look a useful overview – the flood of informa- for footprints. tion would scare off many users. How- Figure 2: The Jlsof filter dialog tells you the ever, command line parameters can help correct lsof parameters. Although this might Investigations lsof concentrate on the data you need. If confuse GUI-only users, it does make it eas- Table 1 lists a number of examples for you combine multiple parameters, lsof ier for users to move to the command line. investigating a system. If you enable assumes a logical OR operation by de- lsof’s security option, only root will re- fault; however, you can specify -a for an ceive detailed output for these com- AND operation (last line in Table 1). However, this method is as drastic as it mands. In secure mode, lsof will only Identifying processes that are prevent- is effective. show users the details that directly affect ing users from unmounting a storage them, however, even in insecure mode, medium is a typical task for lsof. Calling Expectations lsof gives users without root privileges lsof with the -t directoryname option The commands listed in Table 1 are fine fewer details, as you need root privileges returns a list of numeric process IDs for discovering important facts about a to access the details in /proc. accessing the CD-ROM: system before or after an attack. To de- lsof uses a tabular format to output fend yourself against invaders, you need the information filtered as specified by $ umount /dev/cdrom to be familiar with the normal status, the parameter list, including the follow- umount: /cdrom: device is busy and to be aware of where suspicious ing columns by default: $ kill -9 `lsof -t /dev/cdrom` entries are likely to appear. • Process name: COMMAND $ umount /dev/cdrom The following example uses a tradi- • Process ID: PID $ eject tional LAMP system (Linux, Apache, • Name of system user account under which the process is running: USER Finding and Building lsof • File descriptor: FD Lsof supports a number of Unix deriva- obtained from an insecure source), con- • File type: TYPE tives, and it is probably part of your basic figure the source code, and compile it. • Device: DEVICE Linux system, or at least it should reside During the configuration phase, you are • Size: SIZE in the standard repository. To install on prompted to make a few decisions. The • Connection: NODE Debian, for example, you just need to HASSECURITY and HASNOSOCKSECU- • Full name: NAME issue a apt-get install lsof command. RITY options are important. If you would The lean package has no dependencies, only like the root user to be able to use Listing 1: Compiling lsof apart from the mandatory Libc 6. lsof to list open files and sockets for all This said, there are two reasons for users, you need to answer [y] and [n]. 01 wget ftp://lsof.itap.purdue. avoiding the prebuilt binary: system The inconsistent terminology does tend edu/pub/tools/unix/lsof/lsof. compatibility and security. As lsof’s de- to be confusing. tar.bz2 veloper Vic Abel points out in the FAQ On completing the build, ./lsof -v tells 02 tar xjf lsof.tar.bz2 [2], you can only guarantee a full feature you the options it was compiled with. set and optimum stability, if you build The Only root can list all files message 03 cd lsof_4.77 the current lsof version on the target ma- means that normal users will be unable 04 wget ftp://lsof.itap.purdue. chine, since lsof digs deep into the sys- to misuse the program to list system- edu/pub/Victor_A_Abell.gpg tem architecture and kernel. It is always critical information. (Restricting access 05 gpg --import Victor_A_Abell. better to obtain tools you will be using to lsof is a rather cosmetic security solu- gpg for preventive or forensic analysis from tion, since much of the information avail- a safe source and not to mix them with able through lsof can also be obtained 06 gpg --verify lsof_4.77_src. standard system tools to avoid the dan- with tools such as ps and netstat, al- tar.sig lsof_4.77_src.tar ger of manipulation by rootkits. though the process may not be quite as 07 tar xf lsof_4.77_src.tar The lsof sources are easily compiled, convenient. The prebuilt versions in vari- ous distributions handle security differ- 08 cd lsof_4.77_src so you might as well build a version that matches your system. The commands ently. Debian grants non-administrative 09 ./Configure linux in Listing 1 grab the sources of the net- users unrestricted use of lsof, whereas 10 make -s work; use GnuPG to check the signature Red Hat Enterprise applies restrictions. 11 ./lsof -v (note that the key in our example was 30 ISSUE 77 APRIL 2007 WWW.LINUX - MAGAZINE.COM lsof COVER STORY be able to open investigates the suspicious processes for log files. In con- details of network connections, libraries trast to this, data that have been loaded, open files, and communications many other things. are handled by As malevolent hackers tend to use unprivileged pro- their own FTP, IRC, telnet, or SSH serv- cesses. Thus, a ers, initial analysis should include web server offers searching for open ports. The lsof -a -i -u a guessable con- www-data | grep LISTEN command lists figuration of users, all the IP sockets (-i), which sockets the executable files, Apache user has opened, (-u www-data), and open ports. and which are listening for connections For example, (this explains grep LISTEN). Figure 3: The Java-based JLsof tool converts lsof output to a simple www-data runs Everything apart from 80 (HTTP) and table. /usr/sbin/apache2 443 (HTTPS) is suspicious. Although a on Debian. call to netstat will give you similar MySQL, PHP). The administrator notices results, lsof can help you perform more an enormous increase in network load What’s Running Where? detailed analysis without needing to that doesn’t reflect the number of page In this context, we need a call to lsof -a switch to another tool. hits. The administrator suspects that an -d txt -u www-data to list processes that attacker has injected a trojan that copies execute the file /usr/sbin/apache2 as the The Real World files over the wire, launches distributed www-data user account. The -a option Apache and PHP exploits are fairly com- network attacks or sends spam mail. In gives us a logical AND, -d txt lists exe- mon. Listings 2a and 2b show two ex- a LAMP environment, the PHP system cuted files only, and -u www-data re- cerpts from the lsof logs on compro- interface is one of the major targets, as stricts the output to just one user.
Recommended publications
  • Bid Check Report * * * Time: 14:04
    DOT_RGGB01 WASHINGTON STATE DEPARTMENT OF TRANSPORTATION DATE: 05/28/2013 * * * BID CHECK REPORT * * * TIME: 14:04 PS &E JOB NO : 11W101 REVISION NO : BIDS OPENED ON : Jun 26 2013 CONTRACT NO : 008498 REGION NO : 9 AWARDED ON : Jul 1 2013 VERSION NO : 2 WORK ORDER# : XL4078 ------- LOW BIDDER ------- ------- 2ND BIDDER ------- ------- 3RD BIDDER ------- HWY : SR 104 TITLE : SR104 ORION MARINE CONTRACTORS, INC. BLACKWATER MARINE, LLC QUIGG BROS., INC. KINGSTON TML SLIPS 1112 E ALEXANDER AVE 12019 76TH PLACE NE 819 W STATE ST DOLPHIN PRESERVATION - PHASE 4 98520-5934 11W101 PROJECT : NH-2013(079) TACOMA WA 984214102 KIRKLAND WA 980342437 ABERDEEN WA 985200281 COUNTY(S) : KITSAP CONTRACTOR NUMBER : 100767 CONTRACTOR NUMBER : 100874 CONTRACTOR NUMBER : 680000 ENGR'S. EST. ITEM ITEM DESCRIPTION UNIT PRICE PER UNIT/ PRICE PER UNIT/ % DIFF./ PRICE PER UNIT/ % DIFF./ PRICE PER UNIT/ % DIFF./ NO. EST. QUANTITY MEAS TOTAL AMOUNT TOTAL AMOUNT AMT.DIFF. TOTAL AMOUNT AMT.DIFF. TOTAL AMOUNT AMT.DIFF. PREPARATION 1 MOBILIZATION L.S. -25.20 % -25.48 % 40.00 % 25,000.00 18,700.00 -6,300.00 18,630.00 -6,370.00 35,000.00 10,000.00 2 REMOVAL OF STRUCTURE AND OBSTRUCTION L.S. -56.10 % -65.08 % -56.71 % 115,500.00 50,700.00 -64,800.00 40,338.00 -75,162.00 50,000.00 -65,500.00 3 DISPOSAL OF CREOSOTED MATERIAL L.S. -21.05 % -8.99 % -15.79 % 47,500.00 37,500.00 -10,000.00 43,228.35 -4,271.65 40,000.00 -7,500.00 STRUCTURE 4 STRUCTURAL LOW ALLOY STEEL - DOLPHINS L.S.
    [Show full text]
  • Humidity Definitions
    ROTRONIC TECHNICAL NOTE Humidity Definitions 1 Relative humidity Table of Contents Relative humidity is the ratio of two pressures: %RH = 100 x p/ps where p is 1 Relative humidity the actual partial pressure of the water vapor present in the ambient and ps 2 Dew point / Frost the saturation pressure of water at the temperature of the ambient. point temperature Relative humidity sensors are usually calibrated at normal room temper - 3 Wet bulb ature (above freezing). Consequently, it generally accepted that this type of sensor indicates relative humidity with respect to water at all temperatures temperature (including below freezing). 4 Vapor concentration Ice produces a lower vapor pressure than liquid water. Therefore, when 5 Specific humidity ice is present, saturation occurs at a relative humidity of less than 100 %. 6 Enthalpy For instance, a humidity reading of 75 %RH at a temperature of -30°C corre - 7 Mixing ratio sponds to saturation above ice. by weight 2 Dew point / Frost point temperature The dew point temperature of moist air at the temperature T, pressure P b and mixing ratio r is the temperature to which air must be cooled in order to be saturated with respect to water (liquid). The frost point temperature of moist air at temperature T, pressure P b and mixing ratio r is the temperature to which air must be cooled in order to be saturated with respect to ice. Magnus Formula for dew point (over water): Td = (243.12 x ln (pw/611.2)) / (17.62 - ln (pw/611.2)) Frost point (over ice): Tf = (272.62 x ln (pi/611.2)) / (22.46 -
    [Show full text]
  • Chapter 19 RECOVERING DIGITAL EVIDENCE from LINUX SYSTEMS
    Chapter 19 RECOVERING DIGITAL EVIDENCE FROM LINUX SYSTEMS Philip Craiger Abstract As Linux-kernel-based operating systems proliferate there will be an in­ evitable increase in Linux systems that law enforcement agents must process in criminal investigations. The skills and expertise required to recover evidence from Microsoft-Windows-based systems do not neces­ sarily translate to Linux systems. This paper discusses digital forensic procedures for recovering evidence from Linux systems. In particular, it presents methods for identifying and recovering deleted files from disk and volatile memory, identifying notable and Trojan files, finding hidden files, and finding files with renamed extensions. All the procedures are accomplished using Linux command line utilities and require no special or commercial tools. Keywords: Digital evidence, Linux system forensics !• Introduction Linux systems will be increasingly encountered at crime scenes as Linux increases in popularity, particularly as the OS of choice for servers. The skills and expertise required to recover evidence from a Microsoft- Windows-based system, however, do not necessarily translate to the same tasks on a Linux system. For instance, the Microsoft NTFS, FAT, and Linux EXT2/3 file systems work differently enough that under­ standing one tells httle about how the other functions. In this paper we demonstrate digital forensics procedures for Linux systems using Linux command line utilities. The ability to gather evidence from a running system is particularly important as evidence in RAM may be lost if a forensics first responder does not prioritize the collection of live evidence. The forensic procedures discussed include methods for identifying and recovering deleted files from RAM and magnetic media, identifying no- 234 ADVANCES IN DIGITAL FORENSICS tables files and Trojans, and finding hidden files and renamed files (files with renamed extensions.
    [Show full text]
  • System Planner
    System Planner ACE3600 RTU ab 6802979C45-D Draft 2 Copyright © 2009 Motorola All Rights Reserved March 2009 DISCLAIMER NOTE The information within this document has been carefully checked and is believed to be entirely reliable. However, no responsibility is assumed for any inaccuracies. Furthermore Motorola reserves the right to make changes to any product herein to improve reliability, function, or design. Motorola does not assume any liability arising out of the application or use of any product, recommendation, or circuit described herein; neither does it convey any license under its patent or right of others. All information resident in this document is considered copyrighted. COMPUTER SOFTWARE COPYRIGHTS The Motorola products described in this Product Planner include copyrighted Motorola software stored in semiconductor memories and other media. Laws in the United States and foreign countries preserve for Motorola certain exclusive rights for copyrighted computer programs, including the exclusive right to copy or reproduce in any form the copyrighted computer program. Accordingly, any copyrighted Motorola computer programs contained in Motorola products described in this Product Planner may not be copied or reproduced in any manner without written permission from Motorola, Inc. Furthermore, the purchase of Motorola products shall not be deemed to grant either directly or by implication, estoppel, or otherwise, any license under the copyright, patents, or patent applications of Motorola, except for the normal non-exclusive, royalty free license to use that arises by operation in law of the sale of a product. TRADEMARKS MOTOROLA and the Stylized M Logo are registered in the U.S. Patent and Trademark Office.
    [Show full text]
  • PS TEXT EDIT Reference Manual Is Designed to Give You a Complete Is About Overview of TEDIT
    Information Management Technology Library PS TEXT EDIT™ Reference Manual Abstract This manual describes PS TEXT EDIT, a multi-screen block mode text editor. It provides a complete overview of the product and instructions for using each command. Part Number 058059 Tandem Computers Incorporated Document History Edition Part Number Product Version OS Version Date First Edition 82550 A00 TEDIT B20 GUARDIAN 90 B20 October 1985 (Preliminary) Second Edition 82550 B00 TEDIT B30 GUARDIAN 90 B30 April 1986 Update 1 82242 TEDIT C00 GUARDIAN 90 C00 November 1987 Third Edition 058059 TEDIT C00 GUARDIAN 90 C00 July 1991 Note The second edition of this manual was reformatted in July 1991; no changes were made to the manual’s content at that time. New editions incorporate any updates issued since the previous edition. Copyright All rights reserved. No part of this document may be reproduced in any form, including photocopying or translation to another language, without the prior written consent of Tandem Computers Incorporated. Copyright 1991 Tandem Computers Incorporated. Contents What This Book Is About xvii Who Should Use This Book xvii How to Use This Book xvii Where to Go for More Information xix What’s New in This Update xx Section 1 Introduction to TEDIT What Is PS TEXT EDIT? 1-1 TEDIT Features 1-1 TEDIT Commands 1-2 Using TEDIT Commands 1-3 Terminals and TEDIT 1-3 Starting TEDIT 1-4 Section 2 TEDIT Topics Overview 2-1 Understanding Syntax 2-2 Note About the Examples in This Book 2-3 BALANCED-EXPRESSION 2-5 CHARACTER 2-9 058059 Tandem Computers
    [Show full text]
  • Unix / Linux Processes Management
    UUNNIIXX // LLIINNUUXX -- PPRROOCCEESSSSEESS MMAANNAAGGEEMMEENNTT http://www.tutorialspoint.com/unix/unix-processes.htm Copyright © tutorialspoint.com Advertisements In this chapter, we will discuss in detail about process management in Unix. When you execute a program on your Unix system, the system creates a special environment for that program. This environment contains everything needed for the system to run the program as if no other program were running on the system. Whenever you issue a command in Unix, it creates, or starts, a new process. When you tried out the ls command to list the directory contents, you started a process. A process, in simple terms, is an instance of a running program. The operating system tracks processes through a five-digit ID number known as the pid or the process ID. Each process in the system has a unique pid. Pids eventually repeat because all the possible numbers are used up and the next pid rolls or starts over. At any point of time, no two processes with the same pid exist in the system because it is the pid that Unix uses to track each process. Starting a Process When you start a process (run a command), there are two ways you can run it − Foreground Processes Background Processes Foreground Processes By default, every process that you start runs in the foreground. It gets its input from the keyboard and sends its output to the screen. You can see this happen with the ls command. If you wish to list all the files in your current directory, you can use the following command − $ls ch*.doc This would display all the files, the names of which start with ch and end with .doc − ch01-1.doc ch010.doc ch02.doc ch03-2.doc ch04-1.doc ch040.doc ch05.doc ch06-2.doc ch01-2.doc ch02-1.doc The process runs in the foreground, the output is directed to my screen, and if the ls command wants any input (which it does not), it waits for it from the keyboard.
    [Show full text]
  • Conditioning Flyer
    Winter Sports Condi�oning: Girls’ and Boys‘ Basketball, Wrestling, and Sideline Cheer can start condi�oning on October 19th. Exact dates and �mes will be sent out later. The first two weeks will be outdoors with no equipment. Fall Sports Condi�oning: Football, Golf, Cross Country, Volleyball, and Compe��on Cheer can start condi�oning on November 16th. Exact dates and �mes will be sent out later. The first two weeks will be outdoors with no equipment. Must Complete Before Condi�oning: • Must have a physical and the VHSL physical form completed on or a�er May 1st 2020 • Must have complete the Acknowledgement of the Concussion materials • Must have completed the Acknowledgement of Par�cipa�on in the Covid-19 parent mi�ga�on form h�ps://whs.iwcs.k12.va.us/ - this is the link to the WHS web page where the forms can be found. Winter Parent Mee�ng Dates and Zoom Links: • Sideline Cheer - October 12th at 6pm h�ps://us02web.zoom.us/j/89574054101?pwd=djJyMFZSeU9QeFpjdGd6VFB4NkZoQT09 • Wrestling - October 13th at 6pm h�ps://us02web.zoom.us/j/87806116997?pwd=c0RKa1I1NFU1T2ZZbWNUVVZqaG9rdz09 • Girls’ and Boys’ Basketball - October 14th at 6pm h�ps://us02web.zoom.us/j/86956809676?pwd=UWkycEJ2K0pBbW0zNk5tWmE0bkpuUT09 Fall Parent Mee�ng Dates and Zoom Links: • Football - November 9th at 6:00pm h�ps://us02web.zoom.us/j/81813330973?pwd=b0I3REJ0WUZtTUs4Z0o3RDNtNzd3dz09 • Cross Country and Golf - November 10th at 6:00pm h�ps://us02web.zoom.us/j/86072144126?pwd=U0FUb0M2a3dBaENIaDVRYmVBNW1KUT09 • Volleyball - November 12th at 6:00pm h�ps://us02web.zoom.us/j/82413556218?pwd=ZjdZdzZhODNVMHlVSk5kSk5CcjBwQT09 • Compe��on Cheer - November 12th at 7:30pm h�ps://us02web.zoom.us/j/81803664890?pwd=dWVDaHNZS0JTdXdWNlNrZkJoVi92UT09 The parent and student athlete must attend the zoom meeting or watch the recorded zoom session prior to attending conditioning.
    [Show full text]
  • Respiratory Therapy Pocket Reference
    Pulmonary Physiology Volume Control Pressure Control Pressure Support Respiratory Therapy “AC” Assist Control; AC-VC, ~CMV (controlled mandatory Measure of static lung compliance. If in AC-VC, perform a.k.a. a.k.a. AC-PC; Assist Control Pressure Control; ~CMV-PC a.k.a PS (~BiPAP). Spontaneous: Pressure-present inspiratory pause (when there is no flow, there is no effect ventilation = all modes with RR and fixed Ti) PPlateau of Resistance; Pplat@Palv); or set Pause Time ~0.5s; RR, Pinsp, PEEP, FiO2, Flow Trigger, rise time, I:E (set Pocket Reference RR, Vt, PEEP, FiO2, Flow Trigger, Flow pattern, I:E (either Settings Pinsp, PEEP, FiO2, Flow Trigger, Rise time Target: < 30, Optimal: ~ 25 Settings directly or by inspiratory time Ti) Settings directly or via peak flow, Ti settings) Decreasing Ramp (potentially more physiologic) PIP: Total inspiratory work by vent; Reflects resistance & - Decreasing Ramp (potentially more physiologic) Card design by Respiratory care providers from: Square wave/constant vs Decreasing Ramp (potentially Flow Determined by: 1) PS level, 2) R, Rise Time (­ rise time ® PPeak inspiratory compliance; Normal ~20 cmH20 (@8cc/kg and adult ETT); - Peak Flow determined by 1) Pinsp level, 2) R, 3)Ti (shorter Flow more physiologic) ¯ peak flow and 3.) pt effort Resp failure 30-40 (low VT use); Concern if >40. Flow = more flow), 4) pressure rise time (¯ Rise Time ® ­ Peak v 0.9 Flow), 5) pt effort (­ effort ® ­ peak flow) Pplat-PEEP: tidal stress (lung injury & mortality risk). Target Determined by set RR, Vt, & Flow Pattern (i.e. for any set I:E Determined by patient effort & flow termination (“Esens” – PDriving peak flow, Square (¯ Ti) & Ramp (­ Ti); Normal Ti: 1-1.5s; see below “Breath Termination”) < 15 cmH2O.
    [Show full text]
  • Green Creative 97837 LED T8 Tube Ballast Compatibility
    Titanium Series T8 13W 4FT. DIR, 10.5W 4FT. DIR, 8W 3FT. DIR, 8W 2FT. DIR For models: 13T8/4F/xxx/DIR, 10.5T8/4F/xxx/DIR, 8T8/3F/xxx/DIR, 8T8/2F/xxx/DIR Where xxx means 824-965 which indicates CRI and color temperature Electronic Ballast Compatibility Compatibility (Ballasts are compatible with 120V & 277V Series Model Type unless otherwise noted) 1 2 3 4 lamp lamps lamps lamps Philips - Advance ICN-1P32-N IS OK - Philips - Advance ICN-2P32-N IS OK - Philips - Advance ICN-3P32-N IS OK - Philips - Advance ICN-4P32-N IS OK Philips - Advance IOPA-1P32-N IS OK - Philips - Advance IOP-2P32-LW-N IS OK - Philips - Advance IOP-3P32-N IS OK - Philips - Advance IOPA-4P32-N IS OK Philips - Advance IOPA-1P32-LW-N IS OK - Philips - Advance IOPA-2P32-LW-N IS OK - Philips - Advance IOP-4P32-LW-N IS OK Philips - Advance IOPA-4P32-SC IS 277V only Philips - Advance IOP-3P32-HL-N IS OK - Philips - Advance ICN-4P32-SC IS OK Philips - Advance ICN-132-MC IS OK - Philips - Advance VEZ-132-SC PS OK - Philips - Advance IZT-132-SC PS OK - Philips - Advance IZT-2PSP32-SC PS OK - Philips - Advance REZ-132-SC PS OK - Philips - Advance VEZ-2S32-SC PS - OK - Philips - Advance REZ-2P32-SC PS - OK - Philips - Advance REL-2P32-SC IS X Philips - Advance REL-2P32-RH-TP IS X GE - Ultramax GE132MAXP-N/ULTRA IS OK - GE - Ultramax GE232MAX-L/ULTRA IS OK - GE - Ultramax GE232MAX-N/ULTRA IS OK - GE - Ultramax GE232MAX-H/ULTRA IS OK - GE - Ultramax GE232MAXP-H/ULTRA IS OK - GE - Ultramax GE232MAXP-N/ULTRA IS OK - GE - Ultramax GE332MAX-N/ULTRA IS OK - GE - Ultramax GE332MAX-H/ULTRA
    [Show full text]
  • NI PS-15 Power Supply User Manual And
    Power Supply NI PS-15 Power Supply User Manual NI PS-15 Power Supply User Manual June 2011 372911B-01 Worldwide Technical Support and Product Information ni.com Worldwide Offices Visit ni.com/niglobal to access the branch office Web sites, which provide up-to-date contact information, support phone numbers, email addresses, and current events. National Instruments Corporate Headquarters 11500 North Mopac Expressway Austin, Texas 78759-3504 USA Tel: 512 683 0100 For further support information, refer to the Technical Support and Professional Services appendix. To comment on National Instruments documentation, refer to the National Instruments Web site at ni.com/info and enter the Info Code feedback. © 2009–2011 National Instruments Corporation. All rights reserved. Important Information Warranty The NI PS-15 is warranted against defects in materials and workmanship for a period of one year from the date of shipment, as evidenced by receipts or other documentation. National Instruments will, at its option, repair or replace equipment that proves to be defective during the warranty period. This warranty includes parts and labor. The media on which you receive National Instruments software are warranted not to fail to execute programming instructions, due to defects in materials and workmanship, for a period of 90 days from date of shipment, as evidenced by receipts or other documentation. National Instruments will, at its option, repair or replace software media that do not execute programming instructions if National Instruments receives notice of such defects during the warranty period. National Instruments does not warrant that the operation of the software shall be uninterrupted or error free.
    [Show full text]
  • System Analysis and Tuning Guide System Analysis and Tuning Guide SUSE Linux Enterprise Server 15 SP1
    SUSE Linux Enterprise Server 15 SP1 System Analysis and Tuning Guide System Analysis and Tuning Guide SUSE Linux Enterprise Server 15 SP1 An administrator's guide for problem detection, resolution and optimization. Find how to inspect and optimize your system by means of monitoring tools and how to eciently manage resources. Also contains an overview of common problems and solutions and of additional help and documentation resources. Publication Date: September 24, 2021 SUSE LLC 1800 South Novell Place Provo, UT 84606 USA https://documentation.suse.com Copyright © 2006– 2021 SUSE LLC and contributors. All rights reserved. Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or (at your option) version 1.3; with the Invariant Section being this copyright notice and license. A copy of the license version 1.2 is included in the section entitled “GNU Free Documentation License”. For SUSE trademarks, see https://www.suse.com/company/legal/ . All other third-party trademarks are the property of their respective owners. Trademark symbols (®, ™ etc.) denote trademarks of SUSE and its aliates. Asterisks (*) denote third-party trademarks. All information found in this book has been compiled with utmost attention to detail. However, this does not guarantee complete accuracy. Neither SUSE LLC, its aliates, the authors nor the translators shall be held liable for possible errors or the consequences thereof. Contents About This Guide xii 1 Available Documentation xiii
    [Show full text]
  • What Is a Port
    What is a port The Ports Collection is essentially a set of Makefiles, patches, and description files placed in /usr/ports. The port includes instructions on how to build source code, but does not include the actual source code. You can get the source code from a CD-ROM or from the Internet. Source code is distributed in whatever manner the software author desires. Frequently this is a tarred and gzipped file, but it might be compressed with some other tool or even uncompressed. The program source code, whatever form it comes in, is called a ``distfile'' A port skeleton is a minimal set of files that tell your FreeBSD system how to cleanly compile and install a program. Each port skeleton includes: ●A Makefile. The Makefile contains various statements that specify how the application should be compiled and where it should be installed on your system. A distinfo file. This file contains information about the files that must be downloaded to build the port and their checksums, to verify that files have not been corrupted during the download using md5 A files directory. This directory contains patches to make the program compile and install on your FreeBSD system. Patches are basically small files that specify changes to particular files. They are in plain text format, and basically say ``Remove line 10'' or ``Change line 26 to this ...''. Patches are also known as ``diffs'' because they are generated by the diff program. This directory may also contain other files used to build the port. A pkg-descr file. This is a more detailed, often multiple-line, description of the program.
    [Show full text]