[CentOS] zoneminder-1.24.4-3.el6.x86_64.rpm
For all interested, I have rebuilt the src rpm for zoneminder-1.24.4, fedora 15. Its up and running on CentOS 6.0. Gonna have to d/l some files. Most of mine came from rpm.pbone.net The link is: http://palmettoshopper.com/zoneminder/zonminder-1.24-3.el6.x86_64.rpm Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.1 Update request
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Timo Neuvonen Sent: Sunday, September 18, 2011 8:27 AM To: centos@centos.org Subject: Re: [CentOS] 6.1 Update request Just ordered a Lenovo TS130. I think there are some issues with the Intel graphics with 6.0 and I saw where they are resolved in 6.1. Hopefully 6.1 can be released soon. If not, I can install Scientific Linux temporarily. Fingers crossed!! Or, just grab the intel xorg driver rpm from SL, and libdrm, and one other package, the nouveau rpm. It doesn't make sense to go all the way over to SL if you plan on coming straight back. I simply installed CentOS 6.0, downloaded kernel from SL6.1 repo, and installed it. Basically this is what was needed to make Intel graphics work, I think there were 1-2 other rpms I needed to upgrade too to fix dependencies, but this was easy to notice during the kernel install. This way the system automatically will roll back to pure CentOS when newer CentOS 6.1 rpms will be available. Thanks!! Installed the SL kernel and firmware packages. WOW!! That made a huge difference. Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] This doesn't make sense
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Karanbir Singh Sent: Saturday, September 17, 2011 5:34 AM To: CentOS mailing list Subject: Re: [CentOS] This doesn't make sense Hi, On 09/17/2011 02:52 AM, Thomas Dukes wrote: It won't boot CentOS 6.0 64 bit, Scientific Linux 64 bit 6.1, but will boot 32 bit CentOS 6.0. Can you expand a bit on the 'wont boot', actually expand quite a lot. Run the installer in debug mode and turn off all rhgb, quiet etc and see what point and how far the system gets. I get the 'Welcome' screen, I make the selection to install or upgrade, get to 'Loading vmlinuz..', then it hangs. Maybe the DVDs are bad. Can a 32 bit machine create a 64 bit install disc? Also, some manufacturers have been known to turn off 64 bit ( lm ) support in BIOS when the device is sold with a 32bit Windows. Make sure that its not the case. I looked through the BIOS but didn't see anything about 64 bit Finally, you mentioned 5.7 but didnt say what your test results there were. Does the 5.7/x86_64 installer boot for you ? if not, how far does it get ? is that about the same point as the 6.0 installer ? I'm running 5.7 32 bit on 32 bit machines. Thanks, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] This doesn't make sense
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Karanbir Singh Sent: Saturday, September 17, 2011 1:35 PM To: CentOS mailing list Subject: Re: [CentOS] This doesn't make sense On 09/17/2011 12:25 PM, Thomas Dukes wrote: I get the 'Welcome' screen, I make the selection to install or upgrade, get to 'Loading vmlinuz..', then it hangs. Edit that line, add 'debug' and 'text' to the boot line, see how far it gets. Try to list the last 25 odd lines of the boot messages before you assume its hanging. Also, can you quantify what you consider 'hanging'. Was it stuck for 1 min, 15 min, 30 min. If the kernel does not report something along the lines of 'this machine does not support long mode', its highly probable that the cpu/bios are fine. Maybe the DVDs are bad. Can a 32 bit machine create a 64 bit install disc? yes, 32bit host should be able to burn x86_64 media just fine. did you sha sum check the isos files before trying to do the burn ? That would be a good indicator about bad or incomplete data. Finally, you mentioned 5.7 but didnt say what your test results there were. Does the 5.7/x86_64 installer boot for you ? if not, how far does it get ? is that about the same point as the 6.0 installer ? I'm running 5.7 32 bit on 32 bit machines. Well, since we are hoping to help you with the ts130, it would only really be relevant if you were to try the 5.7/x86_64 installer on this machine. If nothing else, as a data point to compare and test the 64bit'ness of this machine. As a second data point, you could grab the c6/x86_64/livecd and see how you get along with booting that. - KB SUCCESS!! Finally!! Not sure if the DVD drive in my 5.7 machine is bad or what, but I have a trash can full of 'coasters'. Thank goodness I had some DVD+RWs!! Doing updates now. Unbelievable how fast this machine is (well, as compared to the CIRCA 2003 Netvistas I'm using). Did an install in under 15 mins. Never did see options for partitioning. I do miss the old startup where you can see if services start or fail. Thanks, everyone, for all the help!! I'm sure I'll have more questions later as 6.0 is much different than previous versions. :-) Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Thank you!!
Just wanted to thank everyone for helping me get my new machine up and running. I thought I had bought a boat anchor. Not sure what's up with my DVD drive on my 5.7 machine but I will be phasing/retiring it out over the next few days. Again thanks for your help and most of all your patience. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] This doesn't make sense
Just got my Lenovo TS130 with a Xeon E3-1225 Processor, 4GB RAM, blah, blah, blah.. It won't boot CentOS 6.0 64 bit, Scientific Linux 64 bit 6.1, but will boot 32 bit CentOS 6.0. Any ideas? Otherwise, its going back to Amazon Monday and I'm done. Will keep my 5.7 Centos boxes until they rot! TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Upgrade from 5.6 = 5.7
SUCCESS!! Everything working, even the 'roll your own' apps!! Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade from 5.6 = 5.7
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Wednesday, September 14, 2011 7:07 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade from 5.6 = 5.7 On Wed, 2011-09-14 at 19:05 -0400, Thomas Dukes wrote: SUCCESS!! Everything working, even the 'roll your own' apps!! What did you expect ? Its not Windoze ;-) You know, 'Always Learning' is the perfect username! I'm 56 yrs. old and I learn something everyday on this list. Been doing the Linux thing since the mid-90's. I had a two phone line, Wildcat BBS connected the internet pulling newsgroups, running Frontdoor, etc. I can say without a doubt everything CentOS/RHEL is doing is just UFR (probably can't say that on the list)!! If we could just get a Linux based Quickbooks, I'd never run a windoze system again!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.1 Update request
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Karanbir Singh Sent: Wednesday, September 14, 2011 7:32 PM To: CentOS mailing list Subject: Re: [CentOS] 6.1 Update request On 09/14/2011 10:30 PM, Digimer wrote: Hi devs, If/when someone has a few minutes, could someone post an update on 6.1 on http://qaweb.dev.centos.org/qa/blog ?. I suspect the devs have been busy with the just-released 5.7 version. :) unless someone else gets to it before me, I will get together a plan and post it up there ( but not today and perhaps not tomorrow either ). Step-1, get the major security stuff into 6.0/cr/. - KB Just ordered a Lenovo TS130. I think there are some issues with the Intel graphics with 6.0 and I saw where they are resolved in 6.1. Hopefully 6.1 can be released soon. If not, I can install Scientific Linux temporarily. Fingers crossed!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade from 5.6 = 5.7
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Wednesday, September 14, 2011 8:44 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade from 5.6 = 5.7 On Wed, 2011-09-14 at 20:12 -0400, Thomas Dukes wrote: You know, 'Always Learning' is the perfect username! I'm 56 yrs. old and I learn something everyday on this list. Been doing the Linux thing since the mid-90's. Blush, blush, I'm older.Been on Linux, properly, since 1 June 2010 and absolutely love it. Its so adult compared to Windoze. I had a two phone line, Wildcat BBS connected the internet pulling newsgroups, running Frontdoor, etc. I can say without a doubt everything CentOS/RHEL is doing is just UFR (probably can't say that on the list)!! If we could just get a Linux based Quickbooks, I'd never run a windoze system again!! One day, if I have time, I want to programme a complete commercial accounts systems using HTML, PHP and MySQL. Its a piece of cake to do well (meaning easily) but a little time consuming. The only difficulty I can think of is printing things locally. I love the challenge. I'm a hacker from way back. While this sort of stuff isn't humorous now days and since I've 'grown up', I understand why. Still, I love it!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade from 5.6 = 5.7
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Wednesday, September 14, 2011 9:40 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade from 5.6 = 5.7 On Wed, 2011-09-14 at 18:08 -0700, John R Pierce wrote: an accounting system thats in plain HTML would be incredibly clunky to use. you really want to do this in ajax/jquery or whatever so its more interactive No thank you. HTML, CSS, PHP and MySQL are my chosen tools for my systems. I have written 20+ complete systems using these and found them to be fast and very effective. Everyone who has seen my HTML, CSS, PHP, MySQL systems has been favourably impressed (me too!). MySQL is a fast database system. Never ever used a SQL join or view, just well designed databases with carefully planned tables - that is the art of good programming. Ajax/Jquery is someone else's parametrised programming language. It adds complexity and overhead to what is fundamentally a very basic task. Ajax etc. seem to appeal to people who are not good (or natural) programmers. Ajax etc. is like programming with boxing gloves on and taking several weeks to do it. If they want to use it, let them. also, I'd suggest using postgresql for better data integrity, and anything-but-php (Python?) for better webside security. I have been using MySQL on Linux for about 4 years and never had a problem. What security issues has PHP ? I, like you have been using mysql/php for ecommerce since 2003. Never had and issue except RHEL/CentOS is about a release behind everyone else. Stability is one thing, holding back is another when Fedora is 3 or 4 release ahead. Again, not CentOS's fault. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Vitualization and Partitioning
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of ken Sent: Monday, September 12, 2011 12:36 AM To: CentOS mailing list Subject: Re: [CentOS] Vitualization and Partitioning On 09/11/2011 11:10 PM Emmanuel Noobadmin wrote: Hi, When I do the install, do I or should I setup a separate partition for guest That would be better from a performance point of view OS's? From the redhat docs, it looks like the guest OS's reside at /var/lib/libvirt/images/. This should be using files as disk files, which I did and found it to be a problem when there is heavy I/O. I like LVM (for the reasons you cite). Would you (anyone?) say it's best to have one LV per guest or one LV for all guests? tnx. I'm new to this but I would think you would want a separate LV for each guest. Seems I read somewhere, that you need one core per guest as well. That's why I'm opting for the Xeon processor rather than the iCore(x). Four cores v. two. More options. Can't believe this thread hasn't stirred more response. Maybe we all are in the learning phase. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Vitualization and Partitioning
Hello, OK, getting ready to order a new machine and had some questions about 6.0. It will have a single 500GB HD. When I do the install, do I or should I setup a separate partition for guest OS's? From the redhat docs, it looks like the guest OS's reside at /var/lib/libvirt/images/. I may combine my windoze XP on the CentOS machine so would I need to create a partition and format that at installation? If I decide to wait and go with Windoze 7 can I still create the partition later? I would like a partition scheme that allows for easier upgrades or installs without losing data. Thanks, I'm more confused now that when I started reading about this stuf.. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Networking question
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of David G. Miller Sent: Thursday, September 08, 2011 9:47 AM To: centos@centos.org Subject: Re: [CentOS] Networking question tdukes@... writes: Lots deleted After checking with Verizon on their mobile Hotspot plans, it isn't feasible. However, I can do it through my unlimited data plan for my iPhone. 3G is faster than the Road Runner service I have. If I use the IPhone, I can use a USB connection. My centos machine acts as my firewall/gateway on my wired network so the question now is, if I use the USB connection to my centos machine will that bypass the firewall? Thanks That mainly depends on how the USB data connection to your iPhone shows up on the Linux box. If the iPhone shows up as a network connection (i.e., it's a peer and you have networking over USB) then you just need to make sure that data on that connection still goes through IPtables. If the iPhone just shows up as a mass storage device, you'll first have to figure out how to get it to show up as a peer. I'm interested in whether you can make this work since I will need a similar capability (smart phone acting as Internet gateway) in the near future. Hi Dave, If this works out I will post it. If I can find a router or switch with a USB connection, I think it would work. I would like to keep the local network wired. Probably can make it work if eth0 is wireless. I was wrong in the previous post about the u/d rate. What I was seeing was the transfer from my iphone to my laptop. Sorry. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 6.0
Hello, Can anyone pls tell me if a ThinkServer TS130 with a E3-1225 Xeon processor is compatible with CentOS 6.0? I would like to upgrade from 5.6 but my hardware will not allow me to do so. I do not wish to buy something that is incompatible as I already have that now. The TS130 is replacing the TS200v which is RHEL 6.x certified. The TS130 has an Intel mobo and uses the C206 chipset. I do not know the model number for the mobo itself. I have spent the last 45 minutes on the phone with Lenovo and talked with 'Peggy' seven different times before being disconnected. TIA, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6.0
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Sunday, August 28, 2011 12:31 PM To: CentOS mailing list Subject: Re: [CentOS] CentOS 6.0 On Sun, 2011-08-28 at 12:29 -0400, Thomas Dukes wrote: Can anyone pls tell me if a ThinkServer TS130 with a E3-1225 Xeon processor is compatible with CentOS 6.0? I would like to upgrade from 5.6 but my hardware will not allow me to do so. Intel Quad-core 3.10 GHz L2 Cache 1 MB L3 Cache 6 MB 64-bit Processing * Turbo Boost Technology * Virtualization Technology * Trusted Execution Technology * Extended Memory 64 Technology Platform: PC Seems OK, what specific problems are you having ? Sorry, I meant the hardware I have now is preventing me from upgrading to 6.0 I just want to make sure CentOS 6.0 would have the necessary drivers for the on board video, ethernet, etc., for the TS130 before I make the purchase. I just don't want to be in the same boat as I'm in now. I have bought a PC in eight years so I just want to make sure its going to run 6.0. Thanks, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6.0
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Devin Reade Sent: Sunday, August 28, 2011 1:46 PM To: CentOS mailing list Subject: Re: [CentOS] CentOS 6.0 It looks like the TS130 is a scaled down version of the TS430. The RedHat hardware certification catalog shows the TS430 as certified for 5.6 and 6, so it looks promising. It looks like HP also has certified hardware on RHEL with the C206 chipset. Caveat Emptor of course. I have no direct or conclusive information on the TS130. Devin Not like I'm spending my life savings or anything, but that's what I was thinking as well. Still, I would like to make sure CentOS 6.x will install. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6.0
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Timo Neuvonen Sent: Sunday, August 28, 2011 2:08 PM To: centos@centos.org Subject: Re: [CentOS] CentOS 6.0 Can anyone pls tell me if a ThinkServer TS130 with a E3-1225 Xeon processor is compatible with CentOS 6.0? I would like to upgrade from 5.6 but my hardware will not allow me to do so. Intel Quad-core 3.10 GHz L2 Cache 1 MB L3 Cache 6 MB 64-bit Processing * Turbo Boost Technology * Virtualization Technology * Trusted Execution Technology * Extended Memory 64 Technology Platform: PC Seems OK, what specific problems are you having ? Sorry, I meant the hardware I have now is preventing me from upgrading to 6.0 I just want to make sure CentOS 6.0 would have the necessary drivers for the on board video, ethernet, etc., for the TS130 before I make the purchase. Not absolutely sure about this, but I think E3-series is very close to 2nd generation i3/i5/i7. A while ago I installed CentOS 6.0 to Acer 7550 laptop that uses integrated Intel HD Graphics of i5 CPU. All I got with 6.0 kernels was vesa 1024x768 resolution. I found out 6.1 shoud fix this. Since CentOS 6.1 wasn't out then, I installed kernel from Scientific Linux 6.1 (another RHEL clone) and theafter I got very nice graphics -and high-resolution console also in runlevel 3 to my CentOS 6 laptop. So, I would say 6.0 doesn't support Intel graphics of that CPU, but 6.1 should do it. Don't know about network etc, but at least it fixes the graphics -I guess that server uses integrated graphics since they've chosen a CPU that has it. TiN, Graphics are the least concern as this will be a server not a workstation. My eyesight can't much see more than 800x600 anyway. But, thanks for your response, its much appreciated! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
Well!! This has been an adventure. I really appreciate all the help!! Found this on tigerdirect: http://www.tigerdirect.com/applications/SearchTools/item-details.asp?EdpNo=4 01989sku=B69-1317 Again, any advice, comments, etc., regarding any incompatibilites would be welcomed!! TIA, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] OT: Hardware upgrade help
I would like to upgrade my system to a 64 bit machine. I'd like to find a bare bones platform to build on. I'm not looking to spend a lot of money on this as it is a home system. I looked on the CentOS sponsor page but only saw hosting services. I haven't kept up with hardware in years so I'm dumber than dirt on what's out there. I would prefer a desktop so I can stack it. Don't think I need to do the Xeon as that would be overkill for a home user. This would be replacing my 'server' so I need PCI slots for an additional NIC and a 32 bit video capture card used for zoneminder. Not sure what PCI express is or if my cards would work in those slots. Yep, I'm running 8 yrs old machines, IBM NetVistas. :-( Any help or referal to a sponsor would be greatly appreciated. TIA, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Thomas Dukes Sent: Tuesday, August 23, 2011 8:18 PM To: centos@centos.org Subject: [CentOS] OT: Hardware upgrade help I would like to upgrade my system to a 64 bit machine. I'd like to find a bare bones platform to build on. I'm not looking to spend a lot of money on this as it is a home system. I looked on the CentOS sponsor page but only saw hosting services. I haven't kept up with hardware in years so I'm dumber than dirt on what's out there. I would prefer a desktop so I can stack it. Don't think I need to do the Xeon as that would be overkill for a home user. This would be replacing my 'server' so I need PCI slots for an additional NIC and a 32 bit video capture card used for zoneminder. Not sure what PCI express is or if my cards would work in those slots. Yep, I'm running 8 yrs old machines, IBM NetVistas. :-( Any help or referal to a sponsor would be greatly appreciated. TIA, Eddie PS If any of youu have any 2 or 3 yr old machines for sale, let me know as well. Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John R Pierce Sent: Tuesday, August 23, 2011 8:26 PM To: centos@centos.org Subject: Re: [CentOS] OT: Hardware upgrade help On 08/23/11 5:17 PM, Thomas Dukes wrote: I would like to upgrade my system to a 64 bit machine. I'd like to find a bare bones platform to build on. I'm not looking to spend a lot of money on this as it is a home system. I looked on the CentOS sponsor page but only saw hosting services. I haven't kept up with hardware in years so I'm dumber than dirt on what's out there. I would prefer a desktop so I can stack it. Don't think I need to do the Xeon as that would be overkill for a home user. any Intel Core 2 or newer, or AMD Opteron processor from about 3-4 years ago or newer would suit you just fine. the newest ones have 4+ cores. What determines if it's a 64 bit machine? Dual core? This would be replacing my 'server' so I need PCI slots for an additional NIC and a 32 bit video capture card used for zoneminder. Not sure what PCI express is or if my cards would work in those slots. Yep, I'm running 8 yrs old machines, IBM NetVistas. :-( parallel 32bit PCI is becoming obsolete, although many motherboards have both PCI-E and legacy PCI slots... PCI-Express is not physically or electrically compatible. ISA is totally history, you won't find an ISA slot on anything made in the past few years. Most newer NICs are PCI-Express anyways. I do wish more desktop motherboards had 2 ethernet ports, and more servers had 4 standard. Any suggestions on a mainboard with that can accommodate my needs? Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Tuesday, August 23, 2011 8:39 PM To: CentOS mailing list Subject: Re: [CentOS] OT: Hardware upgrade help I suggest: mini-tower / half-tower AMD 4 core processor with virtualization facility (AMD are cheaper than Intel in Europe) (if buying Intel get the virtualization facility) Strange, just installed virtualbox this past weekend. I prefer Intel processor as well as Intell for the mainboard. Although I did have an AMD DX-40 386 and it was solid. OK, I'm telling my age. 8 GB RAM Was wanting at least 4GB would settle for 2. motherboard with PCI Express and 1 or 2 older pci slots 4 SATA (and 2 PATA (ISA) for any old drives*) USB 2 or even USB 3 Ethernet controller sound chips DVD writer 500 GB SATA HDD HDD caddy for easy removal of the HDD * Some ASRock motherboard have it The cheapest source is likely to be found on-line by Googling or looking at a major web buying site. I tried that and I'm blown away. The machines I have now have been rock solid and I bought them used. They are like me, old. Good luck. -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Always Learning Sent: Tuesday, August 23, 2011 9:04 PM To: CentOS mailing list Subject: Re: [CentOS] OT: Hardware upgrade help On Tue, 2011-08-23 at 20:57 -0400, Thomas Dukes wrote: The machines I have now have been rock solid and I bought them used. They are like me, old. Just because something is old, one shouldn't automatically thrown it away :-) Exactly! These NetVistas have been rock solid and have a lot of life let in them but it seems the operating systems are passing them by. You need to do a little on-line reading about USB (the effective replacement for Centronics (parallel) ports and RS232/RS423 serial ports. Also about the PCI replacement called PCI-Express. The older ISA (now called PATA = Parallel ATA) has been replaced by SATA (Serial ATA). SATA has 3 speeds. Most new disks are either SATA 2 or SATA 3 speed. Modern motherboards have on-board networking (Ethernet) and sound chips which replace the plug-in cards. These NetVistas have on board networking, sound and graphics. They served me well. If I was a gamer, they wouldn't cut it. It is an exciting world out there, even if a little confusing with all the non-stop modern technology and new names to learn. Why get second hand when new can be brought for little money, if you hunt-down a bargain. That is what I always do. Well, that's what I'm trying to find out but things have evolved so much since the last time I made an upgrade. I remember in the old days people wouldn't upgrade the OS. I'd bet there are still folks running apache 1.x. Centos 6.1 should be out soon so you can have a fresh start. Thanks again for your help! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John R Pierce Sent: Tuesday, August 23, 2011 9:14 PM To: centos@centos.org Subject: Re: [CentOS] OT: Hardware upgrade help On 08/23/11 5:57 PM, Thomas Dukes wrote: 8 GB RAM Was wanting at least 4GB would settle for 2. on the upper grades of the current Intel CPUs (for instance, the CoreI7 I saw the i7's but I'm getting confused about dual core. Is the i7 thing a new speed instead of Mghz? 4 and 6 core processors), there are three memory channels, and right now the best bang per buck is 4GB DIMMs, so you get 3 x 4GB == 12GB in one of those systems. most of the better motherboards for these CPUs have 6 dimm slots, so its easy to add a 2nd 12GB for 24GB total. if you're even thinking of virtualization, you want lots of RAM :) Well, I was interested in virtualization because I might be able to run Windoze and CentOS on the same machine at the same time and eliminating one machine. Not sure that would be smart but then, that's new to me as well. I need Windoze to run Quicken Home Business. Never been interested in WINE. the low end budget version processors often have features disabled, such as the VTx thing that lets you run 64bit virtual machines, so its useful to study the specs closely.oh, and don't trust the specs on store websites, check with the chip and board makers to verify. Exactly!! I've been on this list for a while and I have never been given ill advice. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Yves Bellefeuille Sent: Tuesday, August 23, 2011 9:25 PM To: CentOS mailing list Subject: Re: [CentOS] OT: Hardware upgrade help On Tuesday 23 August 2011 20:17, Thomas Dukes wrote: I haven't kept up with hardware in years so I'm dumber than dirt on what's out there. I would prefer a desktop so I can stack it. Don't think I need to do the Xeon as that would be overkill for a home user. I suggest looking at the system guides at Tech Report, even though they don't deal with servers specifically: http://techreport.com/articles.x/21462 Ars Technica also has system guides, but less frequently, and they're not as useful, im my opinion: http://arstechnica.com/gadgets/guides/2011/03/ars-system-guide -march-2011-edition.ars These guides do assume that you'll be doing a fair amount of Windows gaming, so you may want to spend less on a graphics card than they suggest. Yves Thanks!! I will check them out tomorrow as its getting late here. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Hardware upgrade help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John R Pierce Sent: Tuesday, August 23, 2011 10:00 PM To: centos@centos.org Subject: Re: [CentOS] OT: Hardware upgrade help On 08/23/11 6:40 PM, Thomas Dukes wrote: I saw the i7's but I'm getting confused about dual core. Is the i7 thing a new speed instead of Mghz? the Core I series comes in a series of different processor subfamilies, I3, I5, I7... and individual members of each of these has different specs. and they bridge 2 complete chip micr-architectures and to make it even MORE complex, there's Nehalem Core I3/5/7 and Sandy Bridge Core I3/5/7. here, easier than explaining it all, its kinda confusing how many models there are. http://en.wikipedia.org/wiki/Intel_Core#Nehalem_microarchitect ure_based http://en.wikipedia.org/wiki/Intel_Core#Sandy_Bridge_microarch itecture_based For instance, the Core I7 920-960 family were Nehalem microarchitecture based 2.67 to 3.33 GHz 4-core 8MB cache CPUs. The I7 970-990 are 6 core 3.2-3.5Ghz 12MB cache Nehalem (and obscenely expensive). The I7-2600 is the new Sandy Bridge guts, this time with 3.4GHz, 6 cores nehalem and sandy bridge CPUs require different motherboards. The I5 and I3 are smaller/slower versions of the above. For instance, a Core I3-2100 is a Sandy Bridge 3.1Ghz 2-core confused yet? OK, tell me again what we talikng about?? :-) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ffmpeg
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Keith Roberts Sent: Thursday, August 11, 2011 1:36 AM To: CentOS mailing list Subject: Re: [CentOS] ffmpeg On Wed, 10 Aug 2011, tdu...@sc.rr.com wrote: *snip* I use ffmpeg with Zoneminder. If you go to their website, there some links to download the latest version with svn. I never could find a rpm that worked. I was looking at that recently. Is there a suitable Centos 5.6 386 RPM for Zoneminder, or do I have to compile it from the source code? Regards, Keith I am running version 1.24.2 and had to roll my own b/c I couldn't find a rpm at the time. It did take a lot of trial and error to get it working. I still have all the files. If any of them would contain what I used for configure and make, I'd can send them to you. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrading from CentOS 5.6 to 6.0
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Eero Volotinen Sent: Monday, July 25, 2011 1:52 AM To: CentOS mailing list Subject: Re: [CentOS] Upgrading from CentOS 5.6 to 6.0 I'll be moving to Ubunto. They have a 3 year window for support on a distribution unlike CentOS/RHEL. They seem to be more user friendly for a home networking environment. RHEL is supported for 10 years on each major release. Huh?? From: http://mirrors.kernel.org/centos/3/readme.txt CentOS Errata and Security Advisory CESA-2010:0817 End Of Life security update for CentOS 3: https://rhn.redhat.com/errata/RHSA-2010-0817.html As per the upstream vendors errata support policy, updates for CentOS-3 has ended on October 31th 2010. It is recommended that any system still running CentOS 3 should be upgraded to a more recent version of CentOS before this date to ensure continued security and bug fix support. see also http://wiki.centos.org/HowTos/EOLC3 Thank you to everyone who helped make this project possible. Tru ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrading from CentOS 5.6 to 6.0
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Lanny Marcus Sent: Sunday, July 24, 2011 8:51 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrading from CentOS 5.6 to 6.0 On Sat, Jul 23, 2011 at 5:41 PM, Thomas Dukes tdu...@sc.rr.com wrote: Just ran the installation DVD but there is no option to 'upgrade'. Looked at the RHEL docs, http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Inst allati on_Guide/ch-guimode-x86.html#id4594292 referenced off the CentOS Release notes but the CentOS installation doesn't offer the 'upgrade'. I use to be able to upgrade by doing a 'yum update'. That doesn't work either. Guess I'm stuck with 5.6 as I an not about to install a new version and have to rebuild all non-rpm packages from scratch. This is worse than Microsoft!! @Thomas: I'm a newbie home user, with CentOS on our Desktops, and Red Hat Linux, before that. I do not believe you understand the philosophy behind CentOS (an Enterprise OS) or RHEL (the upstream distro). This is a distro with a *LONG* life, and without the latest and greatest, for security and stability reasons. It has always been recommended to do a Clean Install when moving from one major version (ie: 5.x) to a newer version (ie: 6.x) and then to Restore your data, from your backup. If you do it in some other fashion, there are apt to be problems, which will probably not be supported on this list. If you break it, you will fix it. There is a lot of information available, on CentOS.org in the Wiki. HowTos, FAQs, etc. If you look there, you will find many things explained clearly. Also, if you search the archives of the mailing list, you will find a ton of information, from a large group of highly knowledgeable users. People who work with CentOS in the Enterprise, all day, every day. Installing non RPM software on an RPM Distro like CentOS is frowned upon. That is the worst way to do it. There are 3rd party Yum repositories, with lots of things that have been packaged for CentOS and you can install them with Yum, once you have the Repository data ready for yum. You probably won't need to rebuild many packages, if any, if you use the 3rd party repositories. GL I have never had a problem upgrading a CentOS release since I started with 3.x. Seems now, I can't even upgrade from 5.6 to 5.7. I have never had to do a complete re-install since moving from Slackware 1.x to Redhat 2.x except once when I had a hard drive failure. I'll be moving to Ubunto. They have a 3 year window for support on a distribution unlike CentOS/RHEL. They seem to be more user friendly for a home networking environment. The software package I use which takes hours of trial and error to compile and install is as simple apt-get install under Ubunto. There are no rpms for zoneminder 1.24.x. The compliation of ffmpeg/zoneminder seems to be an issue with CentOS with the outdated php/mysql and other various libs. I can see the direction RHEL is taking and its more and more like Microsoft. The enduser is having to be more and more dependent on the provider. CentOS has its hands tied. I thank all for the help I have recievied over the years, its just not beneficial to stay this current direction. TE Dukes ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Upgrading from CentOS 5.6 to 6.0
Help! Just ran the installation DVD but there is no option to 'upgrade'. Looked at the RHEL docs, http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Installati on_Guide/ch-guimode-x86.html#id4594292 referenced off the CentOS Release notes but the CentOS installation doesn't offer the 'upgrade'. I use to be able to upgrade by doing a 'yum update'. That doesn't work either. Guess I'm stuck with 5.6 as I an not about to install a new version and have to rebuild all non-rpm packages from scratch. This is worse than Microsoft!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrading from CentOS 5.6 to 6.0
_ From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Giovanni Tirloni Sent: Saturday, July 23, 2011 6:54 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrading from CentOS 5.6 to 6.0 On Sat, Jul 23, 2011 at 7:41 PM, Thomas Dukes tdu...@sc.rr.com wrote: Help! Just ran the installation DVD but there is no option to 'upgrade'. Looked at the RHEL docs, http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Installati http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Installat i%0Aon_Guide/ch-guimode-x86.html#id4594292 on_Guide/ch-guimode-x86.html#id4594292 referenced off the CentOS Release notes but the CentOS installation doesn't offer the 'upgrade'. I use to be able to upgrade by doing a 'yum update'. That doesn't work either. Guess I'm stuck with 5.6 as I an not about to install a new version and have to rebuild all non-rpm packages from scratch. This is worse than Microsoft!! Red Hat does not support upgrades between major versions (doesn't necessarily mean it's not possible) http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Installati on_Guide/ch-upgrade-x86.html http://linsec.ca/blog/2011/02/23/my-adventure-upgrading-rhel5-to-rhel6/ Since when?? I started with slackware 1.0 on a pentinum 1 system from VaResearch back in the mid 90's, change to Redat 2.0, then Fedora, then to Whitebox, then CentOS.. Never had a problem upgrading on an rpm based system. Microsoft Windows and Red Hat Linux have a very different release strategies and version numbers. You can read more about the support lifecycle here: https://access.redhat.com/support/policy/updates/errata/ -- Giovanni Tirloni ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrading from CentOS 5.6 to 6.0
When I say non-rpm, I mean source packages I compiled such as zoneminder. -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of R P Herrold Sent: Saturday, July 23, 2011 7:36 PM To: CentOS mailing list Subject: [CentOS] Upgrading from CentOS 5.6 to 6.0 On Sat, 23 Jul 2011, Thomas Dukes wrote: I use to be able to upgrade by doing a 'yum update'. That doesn't work either. A low skill user was never able to go from 2.1 to 3, nor 3 to 4, nor 4 to 5, and an a minimally skilled will not be able to go from 5 to 6. This is the policy of the upstream, and a sensible one, because of invasive changes each major release represents. Functionally, each major is a new product. That said, the CentOS wiki has an UNSUPPORTED method for media based 'upgradeany' transitions of the type you mention. It IS UNSUPPORTED, because it can break systems. For that reason, I specifically added warnings to that article, to take and test backups before trying that path Guess I'm stuck with 5.6 as I an not about to install a new version and have to rebuild all non-rpm packages from scratch. This is worse than Microsoft!! Much worse -- you could not steal binaries and license keys from CentOS because we give them away for free CentOS ships no non-RPM packaged packages -- look to whoever put those packages on your box without using the packaging system if you feel the need to blame someone -- Russ herrold ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] security cameras
Check bluecherry.net I've have for Topica cameras running for over three years. No problems and good people to deal with. Eddie -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Nico Kadel-Garcia Sent: Wednesday, February 23, 2011 7:50 AM To: CentOS mailing list Subject: Re: [CentOS] security cameras On Tue, Feb 22, 2011 at 9:31 PM, Always Learning cen...@g7.u22.net wrote: On Tue, 2011-02-22 at 18:04 -0800, John R Pierce wrote: TCP/IP cameras would work with any OS, most just FTP or whatever the pictures to a webserver you provide, or they run their own server and you can wget the pics off them. Â but I've never seen any IP cameras I'd call really cheap. Â Panasonic makes a nice line of them, some even have remote pan/zoom via a http interface. Try Ebay especially the Chinese, including Hong Kong, suppliers. For example compared to the English prices the Chinese prices are much cheaper. However one has to wait 2 to 3 weeks for postal delivery. Delivery to the USA is usually quicker than to England. The Chinese preferred payment currency is USD. Been there, done that. You're often much better off with known brands, like Logitech, for simple webcams on your existing server. I've used this effectively for rack security in a datacenter: as long as you're not polling the webcams constantly, they're not too bad of a bandwidth pig, either. They've been around long enough to be stable and workable in Linux, as well. If you want a full-blown remote TCP monitoring system, look at Axis. They're historically very Linux compatible, they have all the features you might want, and while they're not cheap they have all the features you might need. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] OT: Ecommerce hosting
Would appreciate some suggestions for ecommerce hosting. Been using, cough, cough, godaddy, for about 5 or 6 yrs but in the last year or so, they really suck. Did the hosting myself for a while prior to going with godaddy but I don't have time to babysit. Seems godaddy would rather spend millions advertising during the Super Bowl than put that money to good use. TIA!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Zoneminder
I have zoneminder 1.24.4 running under 5.5. The docs/support sucks. There is one comment you need to add to ./configure to get it to compile. It took me months to figure it out and find it on the zoneminder website. The best version was 1.23.3 but the current ffmpeg doesn't work with it. When I find it again, I'll post it. If you think it may be in my configure script somewhere, let me know and I'll post it. -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Joseph L. Casale Sent: Tuesday, September 21, 2010 8:02 PM To: 'centos@centos.org' Subject: [CentOS] Zoneminder I have a few dvr's that I am contemplating converting to Zoneminder (don't know any other app) and would prefer to use CentOS over fedora obviously but the only rpm I see exists for Fedora. I don't want the hassle of manually compiling this, as we have our own config mgmt. Anyone using this rpm (srpm recompiled) in CentOS or know of a solution that exists? Thanks! jlc ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
_ From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of cliff here Sent: Monday, July 05, 2010 10:56 PM To: CentOS mailing list Subject: Re: [CentOS] DNS or firewall problem yea that needs to be a 1 Thanks, I'll give that a try. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Chan Chung Hang Christopher Sent: Tuesday, July 06, 2010 9:28 AM To: centos@centos.org Subject: Re: [CentOS] DNS or firewall problem Are you running a proxy for http? It would be rather surprising that internal machines can access the Internet without forwarding turned on otherwise. When you say internal machines cannot access your server, are they connecting to it via the local interface's ip or the Internet ip? Are the services bound to the local interface? I did notice today there is a squid.conf file in my /etc/httpd/conf.d directory. It appears it is configure for the local domain only. I renamed it and restarted apache but that didn't work. The server has two nics, one for internet and one for the local network, connected to a switch. eth0 is connected to the uplink port. Please pastebin the output of the following: Run as root: 'cat /etc/sysconfig/iptables' # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -p 50 -j ACCEPT -A RH-Firewall-1-INPUT -p 51 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT -A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 137 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 138 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT 'netstat -ntlp' Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp0 0 0.0.0.0:2 0.0.0.0:* LISTEN 3580/perl tcp0 0 127.0.0.1:2208 0.0.0.0:* LISTEN 2960/hpiod tcp0 0 0.0.0.0:33060.0.0.0:* LISTEN 3138/mysqld tcp0 0 127.0.0.1:3310 0.0.0.0:* LISTEN 3049/clamd tcp0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2667/portmap tcp0 0 0.0.0.0:60000.0.0.0:* LISTEN 3958/X tcp0 0 0.0.0.0:1 0.0.0.0:* LISTEN 3588/perl tcp0 0 192.168.1.101:530.0.0.0:* LISTEN 2639/named tcp0 0 127.0.0.1:530.0.0.0:* LISTEN 2639/named tcp0 0 127.0.0.1:631 0.0.0.0:* LISTEN 2980/cupsd tcp0 0 0.0.0.0:25 0.0.0.0:* LISTEN 3218/sendmail: acce tcp0 0 127.0.0.1:953 0.0.0.0:* LISTEN 2639/named tcp0 0 0.0.0.0:766 0.0.0.0:* LISTEN 2704/rpc.statd tcp0 0 0.0.0.0:35510.0.0.0:* LISTEN 3032/apcupsd tcp0 0 127.0.0.1:2207 0.0.0.0:* LISTEN 2965/python tcp0 0 :::80 :::* LISTEN 5464/httpd tcp0 0 :::6000 :::* LISTEN 3958/X tcp0 0 ::1:953 :::* LISTEN 2639/named tcp0 0 :::443 :::* LISTEN 5464/httpd Not sure what all this means. Hope someone can. Thanks!! Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Christopher Chan Sent: Tuesday, July 06, 2010 9:13 PM To: centos@centos.org Subject: Re: [CentOS] DNS or firewall problem # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. ugh...fwbuilder crap...oh well. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -p 50 -j ACCEPT -A RH-Firewall-1-INPUT -p 51 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT -A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT Seriously? Them two are redundant since you already accept everything on lo. I didn't do that. :-) -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 137 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 138 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT Hmm...you do not appear to have a blanket accept for your internal interface. What services are supposed to be open to the internal lan? Really just intersted in web, ftp and maybe samba 'netstat -ntlp' Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp0 0 0.0.0.0:2 0.0.0.0:* LISTEN 3580/perl tcp0 0 127.0.0.1:2208 0.0.0.0:* LISTEN 2960/hpiod tcp0 0 0.0.0.0:33060.0.0.0:* LISTEN 3138/mysqld tcp0 0 127.0.0.1:3310 0.0.0.0:* LISTEN 3049/clamd tcp0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2667/portmap tcp0 0 0.0.0.0:60000.0.0.0:* LISTEN 3958/X tcp0 0 0.0.0.0:1 0.0.0.0:* LISTEN 3588/perl tcp0 0 192.168.1.101:530.0.0.0:* LISTEN 2639/named tcp0 0 127.0.0.1:530.0.0.0:* LISTEN 2639/named tcp0 0 127.0.0.1:631 0.0.0.0:* LISTEN 2980/cupsd tcp0 0 0.0.0.0:25 0.0.0.0:* LISTEN 3218/sendmail: acce tcp0 0 127.0.0.1:953 0.0.0.0:* LISTEN 2639/named tcp0 0 0.0.0.0:766 0.0.0.0:* LISTEN 2704/rpc.statd tcp0 0 0.0.0.0:35510.0.0.0:* LISTEN 3032/apcupsd tcp0 0 127.0.0.1:2207 0.0.0.0:* LISTEN 2965/python tcp0 0 :::80 :::* LISTEN 5464/httpd tcp0 0 :::6000 :::* LISTEN 3958/X tcp0 0 ::1:953 :::* LISTEN 2639/named tcp0 0 :::443 :::* LISTEN 5464/httpd Not sure what all this means. Hope someone can. You should be able to connect to the web service from the internal lan using the internal ip and also to the smtp service. But I guess your web service is probably apache doing proxy work unless you have a different meaning to 'internal boxes can access the internet'... What services were internal boxes supposed to be able to access again? webmin? mysql? dns? Not really relying on my server for dns for the local machines, just for local services, ftp, webmin, local web. I'm not on a commercial account with my isp so 'external' mail is not an issue. I have most services turned off but can activate them , remotely, from webmin if I need ssh or ftp. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Christopher Chan Sent: Tuesday, July 06, 2010 10:31 PM To: centos@centos.org Subject: Re: [CentOS] DNS or firewall problem Hmm...you do not appear to have a blanket accept for your internal interface. What services are supposed to be open to the internal lan? Really just intersted in web, ftp and maybe samba Well, the rules do accept connections for them three so no problem here. Not really relying on my server for dns for the local machines, just for local services, ftp, webmin, local web. I'm not on a commercial account with my isp so 'external' mail is not an issue. ftp is not running, webmin is blocked. You should be able to connect to apache. samba is not running either. ftp is turned off. Samba, I thought was running but haven't tried to set it up as I was more interested in just accessing web services, locally. I have most services turned off but can activate them , remotely, from webmin if I need ssh or ftp. Well, I guess you first need to allow connections to webmin (from INSIDE - even if you are absolutely certain no one can guess your password) unless you are only going to do it from the desktop on the box. No rules for ssh so you will need to add them if you do enable ssh. I can ssh in remotely but don't have a need for it locally. I can access webmin remotely but not from a local machine. I see no need for my server to use additional resources for the x window environment. I don't use webmin that much except when I need to turn a service on or off remotely or want to upload a file to the server without having to turn of ftp. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] DNS or firewall problem
Been working this for over a month now and I'm stumped. Everything was working until the 'crash'. Backup was no good so I did a fresh install of centos 5.5. Trying to get things back like they were but its been a really long time since I had to set things up from scratch, Redhat 2.0. My centos server acts as a gateway/firewall/router for my home network. Internal machines can access the internet. The server can access the internet. I can access my server/services from outside the local network but internal machines cannot. Any ideas/suggestions? Thanks, --Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Cliff Sent: Monday, July 05, 2010 8:05 PM To: CentOS mailing list Subject: Re: [CentOS] DNS or firewall problem Do u have ipv4 forwarding on in your /etc/syscttl Sent from my iPhone Uhhh, in /etc/sysctl.conf, net.ipv4.conf.ip_forward = 0 ?? change to = 1 ?? --Eddie On Jul 5, 2010, at 7:00 PM, Thomas Dukes tdu...@sc.rr.com wrote: Been working this for over a month now and I'm stumped. Everything was working until the 'crash'. Backup was no good so I did a fresh install of centos 5.5. Trying to get things back like they were but its been a really long time since I had to set things up from scratch, Redhat 2.0. My centos server acts as a gateway/firewall/router for my home network. Internal machines can access the internet. The server can access the internet. I can access my server/services from outside the local network but internal machines cannot. Any ideas/suggestions? Thanks, --Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Christopher Chan Sent: Monday, July 05, 2010 8:42 PM To: centos@centos.org Subject: Re: [CentOS] DNS or firewall problem On Tuesday, July 06, 2010 08:12 AM, Thomas Dukes wrote: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Cliff Sent: Monday, July 05, 2010 8:05 PM To: CentOS mailing list Subject: Re: [CentOS] DNS or firewall problem Do u have ipv4 forwarding on in your /etc/syscttl Sent from my iPhone Uhhh, in /etc/sysctl.conf, net.ipv4.conf.ip_forward = 0 ?? change to = 1 ?? Are you running a proxy for http? It would be rather surprising that internal machines can access the Internet without forwarding turned on otherwise. When you say internal machines cannot access your server, are they connecting to it via the local interface's ip or the Internet ip? Are the services bound to the local interface? I did notice today there is a squid.conf file in my /etc/httpd/conf.d directory. It appears it is configure for the local domain only. I renamed it and restarted apache but that didn't work. The server has two nics, one for internet and one for the local network, connected to a switch. eth0 is connected to the uplink port. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS or firewall problem
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Timothy Murphy Sent: Monday, July 05, 2010 10:11 PM To: centos@centos.org Subject: Re: [CentOS] DNS or firewall problem Thomas Dukes wrote: Do u have ipv4 forwarding on in your /etc/syscttl Uhhh, in /etc/sysctl.conf, net.ipv4.conf.ip_forward = 0 ?? change to = 1 ?? I have more or less the same setup as you, and I have net.ipv4.conf.ip_forward = 0 in /etc/sysctl like you, but I have no problem accessing my server from my laptop. I am running shorewall, and it would be easy to set this up to have the effect you describe. I have the line loc $FW ACCEPT in /etc/shorewall/policy . The default is loc$FW REJECT info which would have the effect you describe. Nb I don't really understand iptables, but I find shorewall does most of the thinking for me. I use the iptables firewall rules in the linux ip masquerade howto. Been using it for years without a hitch. http://www.tldp.org/HOWTO/html_single/IP-Masquerade-HOWTO/#RC.FIREWALL-IPTAB LES-STRONGER I looked at shorewall some time ago but like you, I was confused with iptables. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Resolv.conf being overwritten
I am trying to add 127.0.0.1 to my resolv.conf. I added it through the system-config-network but if I reboot, its gone. I do not have the caching nameserver package installed. My ISP's nameservers are there. It must have something to do with DHCP. Also, in the network config GUI, should I select the IPv6 option for either or both network cards? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Resolv.conf being overwritten
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Hans-Ulrich Flueck Sent: Thursday, May 20, 2010 7:43 PM To: 'CentOS mailing list' Subject: Re: [CentOS] Resolv.conf being overwritten Hello TIA If you do not have a local/LAN DNS server neither a caching DNS configuration on your machine, I can't see a reason to add localhost to the list of your DNS servers... The idea behind DHCP is to distribute gateway, dns, ntp and other servers to the clients, beside the IP addresses. It's the way it works to have the /etc/resolv.conf overwritten on machine reboot and DHCP refresh. You might setup your own local DNS server and distribute this one as the first in the list of DNS servers by your active DHCP server. Or you might work with /etc/hosts in order to define a few important/static machines inside the LAN. I'd suggest not activating IPV6, but configuring IPV4 correctly first. Ueli -Ursprüngliche Nachricht- Von: centos-boun...@centos.org [mailto:centos-boun...@centos.org] Im Auftrag von Thomas Dukes Gesendet: Freitag, 21. Mai 2010 01:02 An: CentOS Betreff: [CentOS] Resolv.conf being overwritten I am trying to add 127.0.0.1 to my resolv.conf. I added it through the system-config-network but if I reboot, its gone. I do not have the caching nameserver package installed. My ISP's nameservers are there. It must have something to do with DHCP. Also, in the network config GUI, should I select the IPv6 option for either or both network cards? TIA I had this all setup on an upgraded 5.5 system. An app crashed and I tried a restore from a backup and hosed the system. I can even get my old files off the backup to the new system. Its been a really long time since I had to set this stuff up. Everything had been working fine for 6+ years. Working on DNS but this stuff is getting deep for an old guy. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Networking setup/help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Kanwar Ranbir Sandhu Sent: Wednesday, May 19, 2010 2:17 PM To: centos@centos.org Subject: Re: [CentOS] Networking setup/help On Wed, 2010-05-19 at 09:31 -0500, Les Mikesell wrote: If you are starting from scratch and don't know your way around the linux system, why not use one of the 'appliance' style distributions like ClearOS (fairly new) or SMEserver (older but still works)? These are based on CentOS code but have a simple web interface for configuration and will probably set up the firewalling/NAT better than you would do by yourself. ClearOS looks awesome. Have you tried it? Regards, Ranbir No, I haven't even heard of it. :-( I've been with CentOS for a long time. Ran RedHat for a longtime, since around 2.0, the went to Fedora, got tired of stuff not working, so I switched to CentOS. I'm not an IT guy. I have a website that I use it for testing, etc. This is only about the 3rd 'clean' install I've done since about 1997. I had 5.5 installed as an upgrade until I mucked up an app and tried to restore it from backup and hosed everything. Now I'm trying to play catch up. I now have my local network able to connect to the internet. Don't have DNS setup yet or sendmail. I'm a little afraid to try to restore those files from my backup as that's what got me in trouble. I will say, everything is running a lot faster so maybe this wasn't so bad after all. Thanks, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Networking setup/help
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Les Mikesell Sent: Wednesday, May 19, 2010 9:29 PM To: CentOS mailing list Subject: Re: [CentOS] Networking setup/help Kanwar Ranbir Sandhu wrote: On Wed, 2010-05-19 at 09:31 -0500, Les Mikesell wrote: If you are starting from scratch and don't know your way around the linux system, why not use one of the 'appliance' style distributions like ClearOS (fairly new) or SMEserver (older but still works)? These are based on CentOS code but have a simple web interface for configuration and will probably set up the firewalling/NAT better than you would do by yourself. ClearOS looks awesome. Have you tried it? I don't have a real use for it right now but I have one running under vmware to test and migrated some big imap mailboxes over from an old smeserver. It seems to be very well done with a very responsive web interface for management. I like CentOS. While it might not be for the average Joe (me), the folks here are really helpful and knowlegeable. Did a really short stint with 'White Box' until that kinda fizzled. I have no reason to leave CentOS. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] 5.5 install
Just installed from scratch 5.5 Weird, eth0 is now eth1 and eth1 is eth0. Don't even know how I'm sending this message as the the CentOS machine can't connect to the internet and this windoze box uses the Centos box as a gateway. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] attack
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Manu Verhaegen Sent: Thursday, December 24, 2009 7:04 AM To: CentOS mailing list Subject: Re: [CentOS] attack at the moment everiting is solved i have block the IP adress but i d'ont have found the script So you are the attacker. Happened to me a couple weeks ago. Check your tmp directory and subdirectory for std, udp.pl. Also check /etc/passwd and /etc/shadow for unusual users. Should be at the very bottom of those files. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT] Urgent request
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Sorin Srbu Sent: Friday, December 18, 2009 3:22 AM To: 'CentOS mailing list' Subject: Re: [CentOS] [OT] Urgent request -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Thomas Dukes Sent: Friday, December 18, 2009 12:53 AM To: 'CentOS mailing list' Subject: Re: [CentOS] [OT] Urgent request We have backups but its only database files. C-Systems got us good, but its our fault for relying on a 12 year old server. Their newer sytems run on fedora 9 and we may have to bite the bullet for a new server. Maybe we can patch this one up till spring. Fedora?? You're joking, right? This is this a production server? That's pretty much what I told c-systems on the phone! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT] Urgent request
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Warren Young Sent: Thursday, December 17, 2009 6:18 PM To: CentOS mailing list Subject: Re: [CentOS] [OT] Urgent request On 12/17/2009 3:59 PM, John R. Dennison wrote: On Thu, Dec 17, 2009 at 02:37:52PM -0800, John R Pierce wrote: what I meant was, without working video, how does he know what the error is? POST beep codes I would think. Yes, he confirmed that in a later message. Right, by the beep codes, it indicates video memory is the problem. I think we found a stick of this memory. Hopefully, it will be compatable. We have backups but its only database files. C-Systems got us good, but its our fault for relying on a 12 year old server. Their newer sytems run on fedora 9 and we may have to bite the bullet for a new server. Maybe we can patch this one up till spring. Thanks for everyone's help and suggestions!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mod_security
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Jim Perrin Sent: Monday, December 14, 2009 11:13 PM To: CentOS mailing list Subject: Re: [CentOS] mod_security On Mon, Dec 14, 2009 at 9:02 PM, Thomas Dukes tdu...@sc.rr.com wrote: I installed mod_security yesterday. Â Unbelievable the amount of crap it will stop in 24 hrs. Picked up the rpm at http://rpm.pbone.net Please be careful when doing this. It's very common (using irc support as a basis for evaluation) to have users grabbing any old rpm they come across from here and installing it. Make sure it's an rpm that's actually built for RHEL/CentOS of the appropriate version. There are a number of support requests for folks who have slapped in a fedora, mandrake, or aging redhat package only to find things are now broken. Exactly why I was advocating it be in the CentOS distribution. The rpm I used was mod_security-2.5.9-1.el5.i386.rpm. There was one lacking dependency, lua-5.1.4-1.el5.i386.rpm. So yes, do not install any rpm package that is not of the appropriate version. Be there, done that, bought the tee-shirt! This should be made part of the CentOS extra, contribs or whatever!! mod_security is in the highly public EPEL 3rd party repository, as well as directly from the mod_security website, and several other 3rd party repos, jason litka, etc... While it might be nice to bring it closer to the distro, it's not exactly lacking in distribution. -- During times of universal deceit, telling the truth becomes a revolutionary act. George Orwell ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Eero Volotinen Sent: Monday, December 14, 2009 3:27 AM To: CentOS mailing list; Sorin Srbu Cc: 'CentOS mailing list' Subject: Re: [CentOS] Deleting contents of /tmp on shutdown Quoting Sorin Srbu sorin.s...@orgfarm.uu.se: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Geerd-Dietger Hoffmann Sent: Saturday, December 12, 2009 11:22 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sat, Dec 12, 2009 at 10:05 PM, Thomas Dukes tdu...@sc.rr.com wrote: I have the /tmp in memory, which effectively deletes everything on reboot. Maybe another solution? How do you achieve that? -- /Sorin using tmpfs? http://kevin.vanzonneveld.net/techblog/article/create_turbocha rged_storage_using_tmpfs/ One thing that's not clear in the two links that have been posted about doing this is, do you add the line or replace the the line already present in /etc/fstab? /dev/VolGroup00/LogVol00 / ext3defaults1 1 LABEL=/boot /boot ext3defaults1 2 none/dev/ptsdevpts gid=5,mode=620 0 0 none/dev/shmtmpfs defaults0 0 -- none/proc procdefaults0 0 none/syssysfs defaults0 0 /dev/VolGroup00/LogVol01 swapswapdefaults0 0 Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] mod_security
I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs. Picked up the rpm at http://rpm.pbone.net This should be made part of the CentOS extra, contribs or whatever!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mod_security
_ From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Ceg Ryan Sent: Monday, December 14, 2009 9:49 PM To: CentOS mailing list Subject: Re: [CentOS] mod_security It may have a lot of false positives indeed. You need to make a lot of customization. I've had to make two tweaks for my stuff to run, but I'm not running a 'commercial' or 'ecommerce' site from home. I do use it for testing of my ecommerce site which is hosted and also for a video surveillance system. Really don't know why a hacker would be interested in my home system except for attacking other sites which I discovered this weekend. On Tue, Dec 15, 2009 at 10:02 AM, Thomas Dukes tdu...@sc.rr.com wrote: I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs. Picked up the rpm at http://rpm.pbone.net This should be made part of the CentOS extra, contribs or whatever!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Geerd-Dietger Hoffmann Sent: Saturday, December 12, 2009 10:18 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sun, Dec 13, 2009 at 3:10 AM, Thomas Dukes tdu...@sc.rr.com wrote: Today, I found upd.pl in my tmp directory. Â The date was oct 09. Â I also found my /etc/passwd and /etc/shadow had been changed with a user of 0Profile added. Â I deleted the old files and restored those from backup. Â I ran my chkrootkit and installed mod_security. SSH is not running so I don't know how this happened. Perhaps your system is not as simple as you think it is. Â ;-/ --keith Thanks, Keith! Guess I'd better brush up on my vi commands in case I have to boot from a rescue disk. :-) All you need is [Esc]q! :) Just guessing here, but to do this, I need to add: tmpfs /tmp tmpfs size=100M,mode=0755 0 0 To my /etc/fstb and cross my fingers? I would make it a little bigger as 100M depending on how much memory you have. And the mode should be the same as /tmp would normally be = mode=777 :) I have 1GB of RAM. What would be a good size? If you have been hacked, like it seams you have, you should first find out how the guy got in. Do you have a webserver running? Firewall enabled? Then just to be safe I would always reinstall as you never know what he might have done. The udp.pl file was owned by apache. Not sure that would matter. I have no cluse as to how it got there. The date on the file was oct 09 and those logs have already been rotated out. Then you can modify the tmp in fstab Cheers Didi Running a full backup now. When complete, I will make the changes to fstab. Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Keith Keller Sent: Saturday, December 12, 2009 4:50 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sat, Dec 12, 2009 at 02:33:33PM -0500, Thomas Dukes wrote: I use to have a line of code in /etc/init.d/syslog (I think this was the file) to delete the contents of my /tmp directory on shutdown. In /etc/init.d/syslog? That seems like a bad place to put it, even if it does check (as I assume it must have) the current runlevel, and only deletes in runlevels [016] or [06]; if it gets killed too early, you could delete a file from /tmp that is needed to cleanly kill off a subsequent process. /etc/init.d/halt calls /sbin/halt.local, which might be a good place, except that it's already umounted nonessential filesystems by then, so if you have /tmp on a different fs putting it there won't work. (You could mount it from halt.local, clean it, then umount it, but that seems extremely kludgy.) You could write your own simple script and link it in /etc/rc[06].d/ to run after S00killall but before S01halt or S01reboot. (It is not clear to me whether enough processes are killed off that cleaning /tmp is safe here; might be worth testing in a noncritical environment first.) --keith As I said, I think that was were the code was added. Just not really sure. I remember the files were deleted on shutdown/reboot. Been reading and have seen it may be better to delete the tmp directory files on boot before any services start. What do you think? Thanks, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Geerd-Dietger Hoffmann Sent: Saturday, December 12, 2009 5:22 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sat, Dec 12, 2009 at 10:05 PM, Thomas Dukes tdu...@sc.rr.com wrote: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Keith Keller Sent: Saturday, December 12, 2009 4:50 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sat, Dec 12, 2009 at 02:33:33PM -0500, Thomas Dukes wrote: I use to have a line of code in /etc/init.d/syslog (I think this was the file) to delete the contents of my /tmp directory on shutdown. In /etc/init.d/syslog? Â That seems like a bad place to put it, even if it does check (as I assume it must have) the current runlevel, and only deletes in runlevels [016] or [06]; if it gets killed too early, you could delete a file from /tmp that is needed to cleanly kill off a subsequent process. /etc/init.d/halt calls /sbin/halt.local, which might be a good place, except that it's already umounted nonessential filesystems by then, so if you have /tmp on a different fs putting it there won't work. Â (You could mount it from halt.local, clean it, then umount it, but that seems extremely kludgy.) Â You could write your own simple script and link it in /etc/rc[06].d/ to run after S00killall but before S01halt or S01reboot. (It is not clear to me whether enough processes are killed off that cleaning /tmp is safe here; might be worth testing in a noncritical environment first.) --keith As I said, I think that was were the code was added. Â Just not really sure. I remember the files were deleted on shutdown/reboot. Been reading and have seen it may be better to delete the tmp directory files on boot before any services start. Â What do you think? I have the /tmp in memory, which effectively deletes everything on reboot. Maybe another solution? Cheers Didi Hi Didi, I read that was an option also. How would I move my /tmp to RAM? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Larry Brower Sent: Saturday, December 12, 2009 6:47 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Thomas Dukes wrote: snip I have the /tmp in memory, which effectively deletes everything on reboot. Maybe another solution? Cheers Didi Hi Didi, I read that was an option also. How would I move my /tmp to RAM? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos +1 for tmpfs :) Heres an example: http://www.howtoforge.com/storing-files-directories-in-memory- with-tmpfs Thanks for the link. It's a little over my head though. I run a simple system that requires very little involvement on my part. Today, I found upd.pl in my tmp directory. The date was oct 09. I also found my /etc/passwd and /etc/shadow had been changed with a user of 0Profile added. I deleted the old files and restored those from backup. I ran my chkrootkit and installed mod_security. SSH is not running so I don't know how this happened. I'm running CentOS 5.4 and everyone should check their system!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Deleting contents of /tmp on shutdown
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Keith Keller Sent: Saturday, December 12, 2009 9:19 PM To: CentOS mailing list Subject: Re: [CentOS] Deleting contents of /tmp on shutdown On Sat, Dec 12, 2009 at 07:35:51PM -0500, Thomas Dukes wrote: Thanks for the link. It's a little over my head though. No it isn't. The main thing you need is mount -t tmpfs -o size=100M,mode=0755 tmpfs /var/www/www.example.com/cache You would adjust size to be the size of the vmdisk you want, and adjust /var/www... to be /tmp. If you want this on boot, put the appropriate entry into /etc/fstab: tmpfs /var/www/www.example.com/cache tmpfs size=100M,mode=0755 0 0 (same adjustments here) Today, I found upd.pl in my tmp directory. The date was oct 09. I also found my /etc/passwd and /etc/shadow had been changed with a user of 0Profile added. I deleted the old files and restored those from backup. I ran my chkrootkit and installed mod_security. SSH is not running so I don't know how this happened. Perhaps your system is not as simple as you think it is. ;-/ --keith Thanks, Keith! Guess I'd better brush up on my vi commands in case I have to boot from a rescue disk. :-) Just guessing here, but to do this, I need to add: tmpfs /tmp tmpfs size=100M,mode=0755 0 0 To my /etc/fstb and cross my fingers? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ffmpeg and zoneminder install problems
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of luc...@lastdot.org Sent: Friday, July 03, 2009 3:44 PM To: CentOS mailing list Subject: Re: [CentOS] ffmpeg and zoneminder install problems On Fri, Jul 3, 2009 at 7:23 PM, Gregory P. Ennispo...@pomec.net wrote: CentOs zoneminder users, I have been trying to install zoneminder on Centos 5.3 (2.6.18-128.1.16.el5xen) and have hit a brick wall with ffmpeg which zoneminder has as a dependancy. There were no rpm's in centos or rpmforge so I have followed the instructions on the zoneminder website for a CentOs install. ffmpeg is in rpmforge, look more carefully. rpm -Uhv http://apt.sw.be/redhat/el5/en/i386/rpmforge/RPMS/rpmforge-rel ease-0.3.6-1.el5.rf.i386.rpm yum install ffmpeg rpm -qi ffmpeg: Name: ffmpeg Version : 0.4.9 Vendor: Dag Apt Repository, http://dag.wieers.com/apt/ I have posted a note on the zoneminder list, but have not been able to get any takers to assist me. Â I am not a C programer so I have a lack of understanding as to how to proceed. I have followed the steps outlined on zoneminder site as to how to install on Centos 5.3 http://www.zoneminder.com/wiki/index.php/CentOS The sequence step I have not been able to pass beyond with these instructions is the following : svn checkout -r 11879 svn://svn.mplayerhq.hu/ffmpeg/trunk ffmpeg cd ffmpeg/ ./configure make When I execute the make command I get the following that results in an Error message. I noticed that some of you have been able to use zoneminder on Centos 5.3, Can you help me get zoneminder installed. Thank you much, Greg Ennis P.S. Â here is the output of make Hello, I've been running zonemider for a about 6 months. I installed 1.23.3 but have not been able to get 1.24.1 to work properly. Do not use the rpm version of ffmpeg. If you have already installed it, uninstall it. Been there, done that! I followed this guide with no problems: http://www.zoneminder.com/wiki/index.php/CentOS Also, when you do the svn thing, do it in steps. That may help as well. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ffmpeg and zoneminder install problems
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Gregory P. Ennis Sent: Friday, July 03, 2009 2:24 PM To: CentOS mailing list Subject: [CentOS] ffmpeg and zoneminder install problems CentOs zoneminder users, I have been trying to install zoneminder on Centos 5.3 (2.6.18-128.1.16.el5xen) and have hit a brick wall with ffmpeg which zoneminder has as a dependancy. There were no rpm's in centos or rpmforge so I have followed the instructions on the zoneminder website for a CentOs install. I have posted a note on the zoneminder list, but have not been able to get any takers to assist me. I am not a C programer so I have a lack of understanding as to how to proceed. I have followed the steps outlined on zoneminder site as to how to install on Centos 5.3 http://www.zoneminder.com/wiki/index.php/CentOS The sequence step I have not been able to pass beyond with these instructions is the following : svn checkout -r 11879 svn://svn.mplayerhq.hu/ffmpeg/trunk ffmpeg cd ffmpeg/ ./configure make When I execute the make command I get the following that results in an Error message. I noticed that some of you have been able to use zoneminder on Centos 5.3, Can you help me get zoneminder installed. Thank you much, Greg Ennis P.S. here is the output of make Sorry, I see you are following the guide. What version of zoneminder are you trying to install? 1.23.3 will work with ffmpeg 11879, but I had to use a more current version to get 1.24.1 to complie. I'm using version 17697. Its just what was available the day I re-installed 1.23.3 after I have problems with 1.24.1. Do a search for my posts tdukes on the forum. I posted some steps I used so I could go back to them if needed. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ffmpeg and zoneminder install problems
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Thomas Dukes Sent: Friday, July 03, 2009 5:55 PM To: 'CentOS mailing list' Subject: Re: [CentOS] ffmpeg and zoneminder install problems -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Gregory P. Ennis Sent: Friday, July 03, 2009 2:24 PM To: CentOS mailing list Subject: [CentOS] ffmpeg and zoneminder install problems CentOs zoneminder users, I have been trying to install zoneminder on Centos 5.3 (2.6.18-128.1.16.el5xen) and have hit a brick wall with ffmpeg which zoneminder has as a dependancy. There were no rpm's in centos or rpmforge so I have followed the instructions on the zoneminder website for a CentOs install. I have posted a note on the zoneminder list, but have not been able to get any takers to assist me. I am not a C programer so I have a lack of understanding as to how to proceed. I have followed the steps outlined on zoneminder site as to how to install on Centos 5.3 http://www.zoneminder.com/wiki/index.php/CentOS The sequence step I have not been able to pass beyond with these instructions is the following : svn checkout -r 11879 svn://svn.mplayerhq.hu/ffmpeg/trunk ffmpeg cd ffmpeg/ ./configure make When I execute the make command I get the following that results in an Error message. I noticed that some of you have been able to use zoneminder on Centos 5.3, Can you help me get zoneminder installed. Thank you much, Greg Ennis P.S. here is the output of make Sorry, I see you are following the guide. What version of zoneminder are you trying to install? 1.23.3 will work with ffmpeg 11879, but I had to use a more current version to get 1.24.1 to complie. I'm using version 17697. Its just what was available the day I re-installed 1.23.3 after I have problems with 1.24.1. Do a search for my posts tdukes on the forum. I posted some steps I used so I could go back to them if needed. Eddie PS, I used the following configure parameters: --enable-shared --enable-swscale --enable-gpl --enable-pthreads ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ffmpeg and zoneminder install problems
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Gregory P. Ennis Sent: Friday, July 03, 2009 6:14 PM To: CentOS mailing list Subject: Re: [CentOS] ffmpeg and zoneminder install problems On Fri, 2009-07-03 at 17:58 -0400, Thomas Dukes wrote: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Thomas Dukes Sent: Friday, July 03, 2009 5:55 PM To: 'CentOS mailing list' Subject: Re: [CentOS] ffmpeg and zoneminder install problems -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Gregory P. Ennis Sent: Friday, July 03, 2009 2:24 PM To: CentOS mailing list Subject: [CentOS] ffmpeg and zoneminder install problems CentOs zoneminder users, I have been trying to install zoneminder on Centos 5.3 (2.6.18-128.1.16.el5xen) and have hit a brick wall with ffmpeg which zoneminder has as a dependancy. There were no rpm's in centos or rpmforge so I have followed the instructions on the zoneminder website for a CentOs install. I have posted a note on the zoneminder list, but have not been able to get any takers to assist me. I am not a C programer so I have a lack of understanding as to how to proceed. I have followed the steps outlined on zoneminder site as to how to install on Centos 5.3 http://www.zoneminder.com/wiki/index.php/CentOS The sequence step I have not been able to pass beyond with these instructions is the following : svn checkout -r 11879 svn://svn.mplayerhq.hu/ffmpeg/trunk ffmpeg cd ffmpeg/ ./configure make When I execute the make command I get the following that results in an Error message. I noticed that some of you have been able to use zoneminder on Centos 5.3, Can you help me get zoneminder installed. Thank you much, Greg Ennis P.S. here is the output of make Sorry, I see you are following the guide. What version of zoneminder are you trying to install? 1.23.3 will work with ffmpeg 11879, but I had to use a more current version to get 1.24.1 to complie. I'm using version 17697. Its just what was available the day I re-installed 1.23.3 after I have problems with 1.24.1. Do a search for my posts tdukes on the forum. I posted some steps I used so I could go back to them if needed. Eddie PS, I used the following configure parameters: --enable-shared --enable-swscale --enable-gpl --enable-pthreads Eddie, Hey ... Thanks for the heads up. I will back out the rpm instal of ffmpeg, and check out your notes. Wish I could launch into it now, but my wife has an outing planned so I will have to wait until tonight or tomorrow to pursue your thread. Again, thank you very much Greg No problem, HTH. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] X Windows has quit working
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Eduardo Grosclaude Sent: Monday, May 18, 2009 11:08 AM To: CentOS mailing list Subject: Re: [CentOS] X Windows has quit working On Sun, May 17, 2009 at 12:40 PM, Thomas Dukes tdu...@sc.rr.com wrote: Hello, Not sure when it stopped working as I don't use it often. Â Maybe since the upgrade from 5.2 to 5.3. Â Can't say for sure as it's been a while since tried to start X. The errors I receive when startin X are: (EE) I810(0): unknown reason for exception (EE) I810(0): cannot continue (EE) I810(0): VBE initialization failed (EE) Screen(s) found but none have a usable configuration Fatal server error: No screens found I have tried 'system-configure-display' but it fails as well. Have you tried 'system-configure-display --reconfig'? Just tried, no good. ...and the thing is called 'X Window', please... :D Sorry! ;-) -- Eduardo Grosclaude Universidad Nacional del Comahue Neuquen, Argentina ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] X Windows has quit working
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of A. Kirillov Sent: Monday, May 18, 2009 11:38 AM To: CentOS mailing list Subject: Re: [CentOS] X Windows has quit working Not sure when it stopped working as I don't use it often. Maybe since the upgrade from 5.2 to 5.3. Can't say for sure as it's been a while since tried to start X. The errors I receive when startin X are: (EE) I810(0): unknown reason for exception (EE) I810(0): cannot continue (EE) I810(0): VBE initialization failed (EE) Screen(s) found but none have a usable configuration Fatal server error: No screens found If you're on x86_64 try intel driver instead of i810. See section 9.3. x86_64 Architectures of upstream release notes. HTH No, this is IBM Netvista. Thanks! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] X Windows has quit working
Hello, Not sure when it stopped working as I don't use it often. Maybe since the upgrade from 5.2 to 5.3. Can't say for sure as it's been a while since tried to start X. The errors I receive when startin X are: (EE) I810(0): unknown reason for exception (EE) I810(0): cannot continue (EE) I810(0): VBE initialization failed (EE) Screen(s) found but none have a usable configuration Fatal server error: No screens found The /var/log/Xorg.0.log: X Window System Version 7.1.1 Release Date: 12 May 2006 X Protocol Version 11, Revision 0, Release 7.1.1 Build Operating System: Linux 2.6.18-53.1.14.el5PAE i686 Red Hat, Inc. Current Operating System: Linux palmettodomains.com 2.6.18-128.1.10.el5 #1 SMP Thu May 7 10:39:21 EDT 2009 i686 Build Date: 21 January 2009 Build ID: xorg-x11-server 1.1.1-48.52.el5 Before reporting problems, check http://wiki.x.org to make sure that you have the latest version. Module Loader present Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. (==) Log file: /var/log/Xorg.0.log, Time: Sun May 17 11:29:00 2009 (==) Using config file: /etc/X11/xorg.conf (==) ServerLayout single head configuration (**) |--Screen Screen0 (0) (**) | |--Monitor Monitor0 (**) | |--Device Videocard0 (**) |--Input Device Mouse0 (**) |--Input Device Keyboard0 (**) FontPath set to: unix/:7100 (**) RgbPath set to /usr/share/X11/rgb (==) ModulePath set to /usr/lib/xorg/modules (WW) Open ACPI failed (/var/run/acpid.socket) (No such file or directory) (II) No APM support in BIOS or kernel (II) Module ABI versions: X.Org ANSI C Emulation: 0.3 X.Org Video Driver: 1.0 X.Org XInput driver : 0.6 X.Org Server Extension : 0.3 X.Org Font Renderer : 0.5 (II) Loader running on linux (II) LoadModule: bitmap (II) Loading /usr/lib/xorg/modules/fonts/libbitmap.so (II) Module bitmap: vendor=X.Org Foundation compiled for 7.1.1, module version = 1.0.0 Module class: X.Org Font Renderer ABI class: X.Org Font Renderer, version 0.5 (II) Loading font Bitmap (II) LoadModule: pcidata (II) Loading /usr/lib/xorg/modules/libpcidata.so (II) Module pcidata: vendor=X.Org Foundation compiled for 7.1.1, module version = 1.0.0 ABI class: X.Org Video Driver, version 1.0 (--) using VT number 7 (II) PCI: PCI scan (all values are in hex) (II) PCI: 00:00:0: chip 8086,2560 card , rev 01 class 06,00,00 hdr 00 (II) PCI: 00:02:0: chip 8086,2562 card 1014,0267 rev 01 class 03,00,00 hdr 00 (II) PCI: 00:1d:0: chip 8086,24c2 card 1014,0267 rev 01 class 0c,03,00 hdr 80 (II) PCI: 00:1d:1: chip 8086,24c4 card 1014,0267 rev 01 class 0c,03,00 hdr 00 (II) PCI: 00:1d:2: chip 8086,24c7 card 1014,0267 rev 01 class 0c,03,00 hdr 00 (II) PCI: 00:1d:7: chip 8086,24cd card 1014,0267 rev 01 class 0c,03,20 hdr 00 (II) PCI: 00:1e:0: chip 8086,244e card , rev 81 class 06,04,00 hdr 01 (II) PCI: 00:1f:0: chip 8086,24c0 card , rev 01 class 06,01,00 hdr 80 (II) PCI: 00:1f:1: chip 8086,24cb card 1014,0267 rev 01 class 01,01,8a hdr 00 (II) PCI: 00:1f:3: chip 8086,24c3 card 1014,0267 rev 01 class 0c,05,00 hdr 00 (II) PCI: 00:1f:5: chip 8086,24c5 card 1014,0267 rev 01 class 04,01,00 hdr 00 (II) PCI: 02:08:0: chip 8086,1039 card 1014,0267 rev 81 class 02,00,00 hdr 00 (II) PCI: 02:0a:0: chip 1317,0985 card 1317,0574 rev 11 class 02,00,00 hdr 00 (II) PCI: 02:0c:0: chip 3388,0021 card , rev 11 class 06,04,00 hdr 01 (II) PCI: 03:08:0: chip 109e,036e card aa00,1460 rev 11 class 04,00,00 hdr 80 (II) PCI: 03:08:1: chip 109e,0878 card aa00,1460 rev 11 class 04,80,00 hdr 80 (II) PCI: 03:09:0: chip 109e,036e card aa01,1461 rev 11 class 04,00,00 hdr 80 (II) PCI: 03:09:1: chip 109e,0878 card aa01,1461 rev 11 class 04,80,00 hdr 80 (II) PCI: 03:0a:0: chip 109e,036e card aa02,1462 rev 11 class 04,00,00 hdr 80 (II) PCI: 03:0a:1: chip 109e,0878 card aa02,1462 rev 11 class 04,80,00 hdr 80 (II) PCI: 03:0b:0: chip 109e,036e card aa03,1463 rev 11 class 04,00,00 hdr 80 (II) PCI: 03:0b:1: chip 109e,0878 card aa03,1463 rev 11 class 04,80,00 hdr 80 (II) PCI: End of PCI scan (II) Intel Bridge workaround enabled (II) Host-to-PCI bridge: (II) Bus 0: bridge is at (0:0:0), (0,0,3), BCTRL: 0x0008 (VGA_EN is set) (II) Bus 0 I/O range: [0] -1 0 0x - 0x (0x1) IX[B] (II) Bus 0 non-prefetchable memory range: [0] -1 0 0x - 0x (0x0) MX[B] (II) Bus 0 prefetchable memory range: [0] -1 0 0x - 0x (0x0) MX[B] (II) Subtractive PCI-to-PCI bridge: (II) Bus 2: bridge is at (0:30:0), (0,2,3), BCTRL: 0x0404 (VGA_EN is cleared) (II) Bus 2 I/O range: [0] -1 0 0x2000 - 0x20ff (0x100) IX[B] [1] -1 0 0x2400 - 0x24ff (0x100) IX[B] [2] -1 0 0x2800 - 0x28ff (0x100) IX[B] [3] -1 0
Re: [CentOS] [OT] Godaddy hell...
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Jason Pyeron Sent: Thursday, April 02, 2009 4:55 PM To: 'CentOS mailing list' Subject: [CentOS] [OT] Godaddy hell... Can I get some recommendations: We are looking for a hosting provider (other than godaddy) with 1: SLA 2: SSH access 3: subversion/rsync or the ability to install binaries / compile source. Would like them to include http/https and email. Any suggestions? -Jason I have used godaddy for hosting my e-commerce site for years. You probably need to go with one of their shared servers or dedicated servers. You won't get what you need in a hosting plan. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Ned Slider Sent: Tuesday, March 31, 2009 10:34 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade Thomas Dukes wrote: Hello, Just did yum update. There were numerous packages to be updated. I get this is the newest release of Centos. The update bombed stating I need nss-3.12.2.0-2.el5. I did a rpm -q nss and nss-3.12.2.0-4.el5 is install in Cento 5.2. What's up with that? TIA You didn't wait for the official release announcement ;) Good one!! :-) Wasn't trying to upgrade to the newest release. I run a 'yum update' daily. I only have Centos repos installed so I don't know how I have a version of nss newer in 5.2 than 5.3. As someone suggested in a later reply, I'll wait a day or two and try again. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Tony Molloy Sent: Wednesday, April 01, 2009 3:00 AM To: CentOS mailing list Subject: Re: [CentOS] Upgrade On Wednesday 01 April 2009 03:34:03 Ned Slider wrote: Thomas Dukes wrote: Hello, Just did yum update. There were numerous packages to be updated. I get this is the newest release of Centos. The update bombed stating I need nss-3.12.2.0-2.el5. I did a rpm -q nss and nss-3.12.2.0-4.el5 is install in Cento 5.2. What's up with that? TIA You didn't wait for the official release announcement ;) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos The version of nss you have installed is from the epel repo not base CentOS so it is conflicting with something from the 5.3 release. Remove the old version of nss, do the update and reinstall nss if required. I had a similar problem with one of the NetworkManager rpms from the epel repo. Regards, Tony Ouch, bet this is going to be a nightmare! No telling what else might be dependent on nss. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Michael A. Peters Sent: Wednesday, April 01, 2009 7:31 AM To: CentOS mailing list Subject: Re: [CentOS] Upgrade Thomas Dukes wrote: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Ned Slider Sent: Tuesday, March 31, 2009 10:34 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade Thomas Dukes wrote: Hello, Just did yum update. There were numerous packages to be updated. I get this is the newest release of Centos. The update bombed stating I need nss-3.12.2.0-2.el5. I did a rpm -q nss and nss-3.12.2.0-4.el5 is install in Cento 5.2. What's up with that? TIA You didn't wait for the official release announcement ;) Good one!! :-) Wasn't trying to upgrade to the newest release. I run a 'yum update' daily. I only have Centos repos installed so I don't know how I have a version of nss newer in 5.2 than 5.3. Try the following: rpm -q --queryformat \ '%{NAME}-%{VERSION}-%{RELEASE}.%{ARCH} Vendor: %{vendor}\n' nss I get the following: nss-3.12.2.0-4.el5.centos.x86_64 Vendor: CentOS nss-3.12.2.0-4.el5.centos.i386 Vendor: CentOS I have the same: nss-3.12.2.0-4.el5.centos.i386 Vendor: CentOS That looks like what you have. So the question then is what requires the 2.el5 release? That's strange because the version is the same, it is nitpicking over the release. Unless there is an epoch involved, it seems some package somewhere might have a release specific requirement, which is suppose to be a nono. Try yum --exclude=nss update and see if it tells you what package is bombing out on the upgrade. The error I got when I ran 'yum update' was: Error: Missing Dependency: nss = 3.12.2.0-2-el5.centos is needed by package nss-devel Maybe all the packages (nss) weren't available on the mirror at the time I ran the update. I see where nss-devel is 'set to be updated' but I don't see nss in the list. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
OK, here's a new one. Changed all references in repo file to baseurl from mirror, ran yum clean all. Now I get: ERROR with rpm_check_debug vs depsolve: Package pyzor needs python-abi = 2.3, this is not available. Of course, I ran yum install python-abi with no luck. Something is broken. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Michael A. Peters Sent: Wednesday, April 01, 2009 9:31 PM To: CentOS mailing list Subject: Re: [CentOS] Upgrade Thomas Dukes wrote: OK, here's a new one. Changed all references in repo file to baseurl from mirror, ran yum clean all. Now I get: ERROR with rpm_check_debug vs depsolve: Package pyzor needs python-abi = 2.3, this is not available. Of course, I ran yum install python-abi with no luck. Something is broken. The python in 5.3 is 2.4 pyzor is not in CentOS or EPEL. Either the repo you got it from needs to update for python 2.4 or you need to try to get ahold of the source rpm, remove the package, yum update, and then rebuild the src.rpm against python 2.4 rpm -e pyzor should remove it. Thanks, I think that did it. I also have to remove some perl modules mailscanner installed that caused conflicts. Guess I'll know by morning. Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fail2Ban
-Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John Hinton Sent: Sunday, March 01, 2009 9:05 PM To: CentOS mailing list Subject: Re: [CentOS] Fail2Ban Agile Aspect wrote: John Hinton wrote: Agile Aspect wrote: Devraj Mukherjee wrote: Hi all, I am trying to get fail2ban going on my server and its log message reports the following error 2009-02-16 17:42:05,339 ERROR: 'iptables -L INPUT | grep -q fail2ban-SSH' returned 256 2009-02-16 17:42:05,354 ERROR: 'iptables -D INPUT -p tcp --dport ssh -j fail2ban-SSH Is this because of the way the RedHat tool sets up the firewall? Thanks for any responses. First, have you installed iptables, shorewall, and tcp-wrappers installed? Second, have you tried the failed grep expression, i.e., have you tried iptables -L INPUT | grep -q fail2ban-SSH As to why this would fail, you need to ask on the fail2ban mailing list since evidently this appears to be part of the installation. The iptables can be setup by anyone - RedHat simply provides a default set of rules. Actually, it is a rather OS dependent package and the rules for CentOS are difficult to write. That really doesn't belong on the fail2ban list either. Please post the iptable rule which you is believe is OS dependent. You don't need shorewall, just the standard CentOS firewall works fine. It depends upon what the OP installed. The fail2ban web page recommends shorewall be installed - so there's a chance the OP installed it. First, I installed the RPM from dag. Some of it was set to go out of the box. Seems like I didn't need to do anything for SSH rules to work besides turning it on. Seems like VSFTP was pretty close. Dovecot was a write I think I might have done... or a major rewrite. Also, as there are differences between CentOS 3, 4 and 5... I'd also need to know which version you're running. This really is a great tool. It is not easy to create rules. I was actually thinking that a CentOS fail2ban wiki or something might be nice. If it were divided into separate versions, we could share rules there. It took me about 3 or 4 hours to write and test just one. But again, I'm really slow at RegEx. I keep seeing more attacks on just about every service available. Dovecot logins being the latest. VSFTP gets hit pretty hard... SSH gets pounded. But, using this also as a spam filter is also another good use. On one of my servers with moderate email traffic, it is banning about 150 IP address per hour based just on multiple Spamhaus rejects. That's a lot of load reduction right there. Now, if I could start pulling out stuff from SpamAssassin rejects... that could drop our loads by a huge amount. Over time, it might even reduce the number of attempts... if they do any purging of old email addresses. John Hinton I tried to install the rpm from Dag a while back but it complained about having Shorewall installed. I have an older version of fail2ban installed and cannot upgrade due to this. I use denyhosts also. I use firestarter to admin my rules. Could I edit the requirement for shorewall out of the spec file in the src rpm to get it to work? Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] OT: Looking for a timer/counter script
Hello, Was hoping someone could help me find a script for a website that increments at a specified rate over a specified period of time, something similar to the US National Debt site. I searched hotscripts but not really sure what this type script would be called. TIA PS I looked at the code for the national debt script but I can't make head or tails of it. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade from 4.7 to 5.2 problem with udev and ssl
Have got things finally straigtened out with this upgrade however, there is one little thing. On boot up or shutdown, as everything is starting or shutting down, my monitor blanks momentarily. Three or four things may have started or stopped before the monitor comes back. Is this a new feature? Its kind of annoying. TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Upgrade from 4.7 to 5.2 problem with udev and ssl
Hello, Got cocky and decided to upgrade from from 4.7 to 5.2. Have a couple problems I can't figure out. The first is I cannot access webmin securely. I had to use httpd.conf.rpmnew to even get apache to start. Got it running but now I seem to have no secure connection to webmin. Next, I have never seen this before but I don't appear to have problems that I have found. Upon startup, I get the following: Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:7' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:8' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:9' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:10' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:11' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:12' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:13' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:14' Dec 28 22:17:57 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:15' Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:16' Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:17' Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:18' Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:58 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:19' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:20' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:21' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:22' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:23' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:24' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:25' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:26' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:27' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:28' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:29' Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid BUS operation Dec 28 22:17:59 palmettodomains udevd[428]: add_to_rules: invalid rule '/etc/udev/rules.d/10-wacom.rules:30' Dec 28 22:17:59 palmettodomains udevd[428]:
RE: [CentOS] Neighbour table overflow
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert Moskowitz Sent: Friday, November 28, 2008 12:20 PM To: CentOS mailing list Subject: Re: [CentOS] Neighbour table overflow [EMAIL PROTECTED] wrote: Robert Moskowitz [EMAIL PROTECTED] wrote: Thomas Dukes wrote: *From:* [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] *On Behalf Of *chloe K *Sent:* Thursday, November 27, 2008 9:10 PM *To:* CentOS mailing list *Subject:* Re: [CentOS] Neighbour table overflow what is your netmask? eth0 = 255.255.240.0 Why do you have such a large subnet? There are a number of potential performance problems with such a setup. I typically only see this in large, bridged wireless campuses. Little justification for it in a wired network. (I do have lots of networking experience and knowledge, having consulted with a number of large deployments). Even with a large subnet, you should not be arping everywhere. Either two things are happening: Your system is recording every ARP request it sees ('Who has IP x.x.x.x') to avoid arping later. Bad behaviour (IMNSHO), given your network. Your system is ARPing for every IP address in the subnet to learn all of its neighbors. WHy would it do that? Unless you have some snooping software running on your system. Hi Robert, I did not set this value. Something did but not me. I am on a roadrunner connection with a dynamic ip. What do you suggest I change it to? You might not have much control over it if you are using DHCP. route -n Here's the output from route -n: Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 192.168.1.0 0.0.0.0 255.255.255.0 U 0 00 eth1 65.188.0.0 0.0.0.0 255.255.240.0 U 0 00 eth0 169.254.0.0 0.0.0.0 255.255.0.0 U 0 00 eth1 0.0.0.0 65.188.0.1 0.0.0.0 UG0 00 eth0 will supply you with your router address. Once you now that and your assigned IP address (and lease) you can use ifconfig to change your netmask so that your router and you are in the same subnet. What is the address also of your nameserver (/etc/resolv.conf) and mail server? If these are also within that hugh subnet, your netmask has to keep them 'local'. My nameservers are: 24.25.5.149 and 24.25.5.150 Mailservers: 75.180.132.77 and 75.180.132.33 Roadrunner hmm. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Neighbour table overflow
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert Moskowitz Sent: Friday, November 28, 2008 12:28 PM To: CentOS mailing list Subject: Re: [CentOS] Neighbour table overflow [EMAIL PROTECTED] wrote: Robert Moskowitz [EMAIL PROTECTED] wrote: Thomas Dukes wrote: *From:* [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] *On Behalf Of *chloe K *Sent:* Thursday, November 27, 2008 9:10 PM *To:* CentOS mailing list *Subject:* Re: [CentOS] Neighbour table overflow what is your netmask? eth0 = 255.255.240.0 Why do you have such a large subnet? There are a number of potential performance problems with such a setup. I typically only see this in large, bridged wireless campuses. Little justification for it in a wired network. (I do have lots of networking experience and knowledge, having consulted with a number of large deployments). Even with a large subnet, you should not be arping everywhere. Either two things are happening: Your system is recording every ARP request it sees ('Who has IP x.x.x.x') to avoid arping later. Bad behaviour (IMNSHO), given your network. Your system is ARPing for every IP address in the subnet to learn all of its neighbors. WHy would it do that? Unless you have some snooping software running on your system. Hi Robert, I did not set this value. Something did but not me. I am on a roadrunner connection with a dynamic ip. What do you suggest I change it to? If you restart your network services (Does RR use PPPoE?) you should then have an empty ARP table. How long does it take to overflow? Can you run TCPDUMP and see if you are sending out the ARPs or your system is just building its table based on heard ARP requests? It takes aout 5 -10 minutes before I see the messages. I don't know you meant by the last question. I ran TCPDUMP and page after page after page of stuff is scrolling. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Neighbour table overflow
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John R Pierce Sent: Friday, November 28, 2008 5:14 PM To: CentOS mailing list Subject: Re: [CentOS] Neighbour table overflow chloe K wrote: you have the network /20 so that you got this neigbour overlfow you should subnet it no, no, NO. his eth1 connection is from his ISP. He /has/ to use the supplied netmask, he can't reconfigure their network segment. now, why is ARP table is overflowing is another issue entirely. Thomas, can you try this? Do arp -an | grep 65.188.0.1 Hi John, The output from arp -an | grep 65.188.0.1 is: ? (65.188.0.1) at 00:1B:54:CB:7A::05 and pick out the MAC address of your gateway router, this will look something like... ? (65.188.0.1) at 00:17:CB:4F:97:81 [ether] on eth1 So, the MAC address above is 00:17:CB:4F:97:81 ... yours definitely will be different now, # tcpdump -i eth1 -n ip host 65.188.xxx.xxx and not ether host 00:17:CB:4F:97:81 (replacing that with your gateway router's MAC address as determined from that ARP command, and xxx.xxx with your eth1 IP address as shown in `ifconfig eth1`) this will catch all traffic between you and another IP on your ISP local segment thats NOT talking to the gateway router paste 50 lines or so of the output of this here and maybe we can figure out whats going on. OK, I think you lost me on that last part. I ran tcpdump -i eth1 -n ip host 65.188.0.1 and got: Tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth1, link-type EN10MB (Ethernet), capture size 96 bytes 0 packets captred 0 packets received by filter 0 packets dropped by kernel Thanks!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Neighbour table overflow
Just started getting this. I tried the following by adding it to my etc/sysctl.conf: net.ipv4.neigh.default.gc_thresh1 = 4096 net.ipv4.neigh.default.gc_thresh2 = 8192 net.ipv4.neigh.default.gc_thresh3 = 8192 net.ipv4.neigh.default.base_reachable_time = 86400 net.ipv4.neigh.default.gc_stale_time = 86400 That pretty much locked things up. Then I tried another googled solution: echo 256 /proc/sys/net/ipv4/neigh/default/gc_thresh1 echo 512 /proc/sys/net/ipv4/neigh/default/gc_thresh2 echo 1024 /proc/sys/net/ipv4/neigh/default/gc_thresh3 And adding it also to etc/sysctl.conf: net.ipv4.neigh.default.gc_thresh1 = 256 net.ipv4.neigh.default.gc_thresh2 = 512 net.ipv4.neigh.default.gc_thresh3 = 1024 Still not working. Any ideas? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Neighbour table overflow
_ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of chloe K Sent: Thursday, November 27, 2008 9:10 PM To: CentOS mailing list Subject: Re: [CentOS] Neighbour table overflow what is your netmask? eth0 = 255.255.240.0 eth1 = 255.255.255.0 lo = 255.0.0.0 These don't look right except for eth1. I have made no changes to these in about 4 years. Thanks Thomas Dukes [EMAIL PROTECTED] wrote: Just started getting this. I tried the following by adding it to my etc/sysctl.conf: net.ipv4.neigh.default.gc_thresh1 = 4096 net.ipv4.neigh.default.gc_thresh2 = 8192 net.ipv4.neigh.default.gc_thresh3 = 8192 net.ipv4.neigh.default.base_reachable_time = 86400 net.ipv4.neigh.default.gc_stale_time = 86400 That pretty much locked things up. Then I tried another googled solution: echo 256 /proc/sys/net/ipv4/neigh/default/gc_thresh1 echo 512 /proc/sys/net/ipv4/neigh/default/gc_thresh2 echo 1024 /proc/sys/net/ipv4/neigh/default/gc_thresh3 And adding it also to etc/sysctl.conf: net.ipv4.neigh.default.gc_thresh1 = 256 net.ipv4.neigh.default.gc_thresh2 = 512 net.ipv4.neigh.default.gc_thresh3 = 1024 Still not working. Any ideas? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos _ http://us.i1.yimg.com/us.yimg.com/i/ca/iotg_search.jpg http://ca.toolbar.yahoo.com/ Yahoo! Canada Toolbar : Search from anywhere on the web and bookmark your favourite sites. Download it now! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Kernel/harware question
Hello, I have an IBM Netvista and since kernel 2.6.9-34.0.2, I have not been able to upgrade to the latest kernel. If I do, in about 8 hours, the system becomes sluggish almost unresponsive. Currently I am running 4.6 but with the kernel mentioned above. I think I may have figured out the problem. It seems when I reboot with the new kernel, kudzu runs and wants to configure a different driver for this card, Intel Pro/100. If it does, it will cause the problem I mentioned. If I don't let it update the driver, it seems to be fine. So my question is how can I force it to use the driver from kernel 2.6.9-34.0.2? Is it something I need to add to grub.conf?? If so, what? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Kernel/harware question
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of nate Sent: Wednesday, June 18, 2008 7:17 PM To: centos@centos.org Subject: Re: [CentOS] Kernel/harware question Thomas Dukes wrote: So my question is how can I force it to use the driver from kernel 2.6.9-34.0.2? Is it something I need to add to grub.conf?? If so, what? You could disable kudzu if the driver config you have is what you want. I always disable kudzu on my systems after they are installed as my hardware changes are very rare, I can't remember the last time I used kudzu on a server. chkconfig --level 2345 kudzu off /etc/init.d/kudzu stop for me this happens automatically during kickstart. nate Thanks, Nate, didn't think of that. Still, kind of curious why the newer kernels want to configure a different driver. Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Kernel/harware question
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of nate Sent: Wednesday, June 18, 2008 8:04 PM To: CentOS mailing list Subject: RE: [CentOS] Kernel/harware question Thomas Dukes wrote: Still, kind of curious why the newer kernels want to configure a different driver. What is the driver it uses on the working kernel vs the non working one? I'd expect it to use the e100 driver, but maybe there is a newer driver with a different name. Long ago there was the eepro100(?) driver, before Intel started releasing their own drivers, I'm not sure if that driver is even present anymore in the 2.6.x kernels(I used it in the 2.2.x days and maybe 2.0 I don't recall) The driver config is usually in /etc/modprobe.conf worst case run lsmod under each config to try to find the differences in what driver is loading. Nate The working driver name is Intel Corporation 82801DB PRO/100 VE (LOM) Ethernet Controller. Can't remember what the newer, non-working driver name was. Just re-booted after disabling kuduzu. Will know by morning if this was the fix. Thanks, Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Zoneminder
Hello, Does any one have current rpms for Zoneminder-1.23.3? I can't get the source to compile on 4.6. I've looked, googled, etc., but can't find if anyone has made one. Anyone interested in making one? Dag?? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Apache Authorization Access Control - location ofhtpasswd in Centos 5.1?
_ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Pam Astor Sent: Sunday, April 06, 2008 9:57 AM To: CentOS mailing list Subject: RE: [CentOS] Apache Authorization Access Control - location ofhtpasswd in Centos 5.1? I tried creating a password file by executing htpasswd -c /passwd/passwords famsite but apparently htpasswd is not in my path, I'm getting the cannot create file /passwd/passwords famsite error. Anyone know where the default location of htpasswd is on a centos 5.1 install? Or how to generate a password file on a centos 5.1 install? There's a utility called 'which' you can use to discover the location of certain apps you want to learn about. Thanks! Ok I ran /usr/bin/htpasswd -c /passwd/passwords famsite as root, and still got the cannot create file error. Does the /passwd directory exist? It does now. It did not when I first ran the command, however I just created the directory /passwd/passwords and re ran the command as root, and still no luck. I think you only need to create the directory /passwd, then use 'touch' to create the file, passwords _ Pack up or back up-use SkyDrive to transfer files or keep extra copies. Learn how. hthttp://www.windowslive.com/skydrive/overview.html?ocid=TXT_TAGLM_WL_Refre sh_skydrive_packup_042008 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Apache Authorization Access Control - locationofhtpasswd in Centos 5.1?
_ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Pam Astor Sent: Sunday, April 06, 2008 10:23 AM To: CentOS mailing list Subject: RE: [CentOS] Apache Authorization Access Control - locationofhtpasswd in Centos 5.1? I tried creating a password file by executing htpasswd -c /passwd/passwords famsite but apparently htpasswd is not in my path, I'm getting the cannot create file /passwd/passwords famsite error. Anyone know where the default location of htpasswd is on a centos 5.1 install? Or how to generate a password file on a centos 5.1 install? There's a utility called 'which' you can use to discover the location of certain apps you want to learn about. Thanks! Ok I ran /usr/bin/htpasswd -c /passwd/passwords famsite as root, and still got the cannot create file error. Does the /passwd directory exist? It does now. It did not when I first ran the command, however I just created the directory /passwd/passwords and re ran the command as root, and still no luck. I think you only need to create the directory /passwd, then use 'touch' to create the file, passwords Thanks Thomas, Not familiar with the touch command, can you point me to info on it, or show the command syntax? Not sure if htpasswd creates the password file. If not, the as root, run: touch passwords ,in the /passwd directory. It will be an empty file, but the 'htpasswd -c' should create this for you. I think you have a permissions problem so if you create the passwrds file with touch, you probably won't be able to add the password to it using htpasswd either. Where are you creating these directories? In the past when I used this, my passwd directory was /var/www/passwd/ _ Use video conversation to talk face-to-face with Windows Live Messenger. Get started! http://www.windowslive.com/messenger/connect_your_way.html?ocid=TXT_TAGLM_W L_Refresh_messenger_video_042008 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Apache Authorization Access Control - location ofhtpasswd in Centos 5.1?
_ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Pam Astor Sent: Sunday, April 06, 2008 9:59 PM To: CentOS mailing list Subject: RE: [CentOS] Apache Authorization Access Control - location ofhtpasswd in Centos 5.1? I tried creating a password file by executing htpasswd -c /passwd/passwords famsite but apparently htpasswd is not in my path, I'm getting the cannot create file /passwd/passwords famsite error. That rather sounds like the path /passwd/passwords does not exist or is not writable. Well, I just tried chomd 777 passwords and still the same problem. Can you show us what the result of the ls -l /passwd/passwords command is? Thanks for asking there, actually the problem has been solved, I deleted the passwords dir and chmoded 777 the passwd dir and the unsername and password were created by htpasswd. chmod to 777 is never a good thing. I believe the file needs to be owned by root with group ownership to apache at 640. There are also requirements on the .htaccess file as well. At one time, and it may still be, there was an example in one of the /etc/httpd directories using mysql to do the authentication rather than apache. It might be a little more secure but not by much if you're not using SSL. _ Pack up or back up-use SkyDrive to transfer files or keep extra copies. Learn how. hthttp://www.windowslive.com/skydrive/overview.html?ocid=TXT_TAGLM_WL_Refre sh_skydrive_packup_042008 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] resolv.conf question
Hello, I have a centos 4.6 system acting as a router for my local network. I obtain my eth0 IP address automatically via DHCP from my ISP, sc.rr.com. If I add 127.0.0.1 to resolv.conf, it won't save it. I tried adding this to my dhclient.conf lease { option domain-name-servers 127.0.0.1; } The above is the only entry in the file. Don't know it caused it but my system locked up 3 times since adding this. Deleted the file and its fine. Any help would be appreciated. --Eddie ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] resolv.conf question
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John R Pierce Sent: Friday, February 08, 2008 9:53 PM To: CentOS mailing list Subject: Re: [CentOS] resolv.conf question Thomas Dukes wrote: Hello, I have a centos 4.6 system acting as a router for my local network. I obtain my eth0 IP address automatically via DHCP from my ISP, sc.rr.com. If I add 127.0.0.1 to resolv.conf, it won't save it. I tried adding this to my dhclient.conf your ISP is supplying its DNS server settings via DHCP, this is whats getting copied to /etc/resolv.conf for use by applications running on your router. lease { option domain-name-servers 127.0.0.1; } I don't think thats correct. assuming you're running your own DNS server on this 'router', try... interface eth0 { send dhcp-client-identifier 1:xx:xx:xx:xx:xx:xx; prepend domain-name-servers 127.0.0.1; } you need to change xx:xx:xx:xx... to your MAC address. Thanks for the help!! I guessing that's the MAC address for eth0? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] IPTables GUIs
I think there's one for shorewall and firestarter. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Miskell, Craig Sent: Sunday, February 03, 2008 8:43 PM To: CentOS mailing list Subject: [CentOS] IPTables GUIs Hi, This is semi-OT, but is Centos-related. I'm looking for an IPTables GUI to help us with our expanding network configuration. I know there's plenty out there, but most of them seem to manage the firewall on the computer on which they run, or only handle one firewall at a time. I need one that can easily manage multiple firewalls from some sort of central location/repository, i.e. sharing definitions of services, hosts etc. I've googled and hunted, and FWBuilder seems reasonably good from what I've seen so far. Are there any other packages out there? Are there any recommendations (to look at or to avoid)? Thanks, Craig Miskell, Technical Support, AgResearch Invermay 03 489-9279 There are no problems that cannot be solved by the judicious use of high explosives -- British Commando quote, circa WWII. === Attention: The information contained in this message and/or attachments from AgResearch Limited is intended only for the persons or entities to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipients is prohibited by AgResearch Limited. If you have received this message in error, please notify the sender immediately. === ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] system hibernating?
Hi Phil, Hope youi had better luck than I did. Already had the latest bios installed. I disabled the APM and added pci=noacpi to the end of the kernel line in grub.conf. Got up this morning and it was the same. Let me know how it turned out for you. Thanks, Thomas PS Merry Christmas!!! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Phil Savoie Sent: Monday, December 24, 2007 3:17 PM To: centos@centos.org Subject: Re: [CentOS] system hibernating? Hi Thomas, I may have a solution which I found on an Ubuntu list. Seems that my BIOS needed upgrading as it wasn't the latest. This is what the ubuntu list indicated as to what the underlying problem was. I just upgraded my bios just now and will see what happens, i.e., if it slows down again. For your info, please start here: http://ubuntuforums.org/showthread.php?t=346168 Then go here for the bios update; I used the cdrom image... http://www-307.ibm.com/pc/support/site.wss/document.do?sitestyle=lenovolndo cid=MIGR-42952 Regards, Phil On December 24, 2007, Thomas Dukes wrote: I have a netvista and have not been able to upgrade my kernel since 2.9.9-34.0.2. I wouldn't call it hibernating, just after a long period of idle time (overnight), it runs really slw. Would really love it figure this one out. TIA -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Phil Savoie Sent: Monday, December 24, 2007 12:22 PM To: centos@centos.org Subject: Re: [CentOS] system hibernating? Hi Jeff, This wouldn't be an IBM netvista wouldn't it? I have the same behaviour on my machines as well. Phil On December 24, 2007, Jeffrey Ross wrote: I'm in the process of setting up a new system and I have found that the system is hibernating when its sitting idle for a long period of time. How do I stop this? TIA, Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] system hibernating?
I have a netvista and have not been able to upgrade my kernel since 2.9.9-34.0.2. I wouldn't call it hibernating, just after a long period of idle time (overnight), it runs really slw. Would really love it figure this one out. TIA -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Phil Savoie Sent: Monday, December 24, 2007 12:22 PM To: centos@centos.org Subject: Re: [CentOS] system hibernating? Hi Jeff, This wouldn't be an IBM netvista wouldn't it? I have the same behaviour on my machines as well. Phil On December 24, 2007, Jeffrey Ross wrote: I'm in the process of setting up a new system and I have found that the system is hibernating when its sitting idle for a long period of time. How do I stop this? TIA, Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Problem with yum after upgrading from 4.5 to 5.0
Hello, Have pretty much figured out I can't use plugins since upgrading. If I use yum update --noplugins to get the updates for 5.0, I get: Warning: rpmts_HdrFromFdno: Header V# DSA signature: NOKEY, key ID e8562897 Public key for samba-common-3.0.23c-2.el5.2.0.2.i386.rpm is not installed I looked back through the archives and think I may need a rpmforge-release key but have not been able to find it. Is this right? Anyone have a link for it? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos