Re: [CentOS] boot issue with latest kernel

[Keith Keller]

On 2019-03-20, Young, Gregory  wrote:
>
> Is this a VM running on top of Hyper-V by chance?

It is not; as I mentioned in my original post, it's bare metal.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] boot issue with latest kernel

[Keith Keller]

Hi all,

Has anyone seen this issue before?  This afternoon, I tried updating a
bare metal CentOS 6 box, and got some odd error messages on the console
during booting kernel 2.6.32-754.11.1.  (These aren't exact, I forgot
to try to get a photo of the console.)

sd 0:0:4:0 timed out resetting card
3w-sas timed out resetting card

Then the boot would simply hang, with no obvious disk activity on the
drives and no other messages on the console.  Reverting back to an
earlier kernel (2.6.32-431.17.1) was perfectly fine.  (Obviously this
is quite old hardware, but until today had never had problems.)

I noticed in the CentOS 6.10 changelog that 3w-sas has been deprecated,
but that it should still be supported.  And even if 3w-sas had been
removed, I don't think that wouldn't explain timeouts on sd.

I have done a bunch of searches on the CentOS forums and on the web, but
didn't find anything specific to this issue with various combinations of
the error message keywords.  If you have any pointers for me I would
greatly appreciate it!

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] elasticsearch connection refused

[Keith Keller]

On 2019-02-19, Pete Biggs  wrote:
> On Tue, 2019-02-19 at 14:26 +, Pete Biggs wrote:
>> 
>> It's not a web server port - elasticsearch is a database.
>
> Sorry, that was a bit abrupt - yes, it sort of looks like a web server.

It's a bit of both.  It is queryable like a database, but it answers
requests using HTTP methods.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please Recommend Affordable and Reliable Cloud Storage for 50 TB of Data

[Keith Keller]

On 2019-02-15, Warren Young  wrote:
> On Feb 15, 2019, at 1:14 AM, Turritopsis Dohrnii Teo En Ming 
>  wrote:
>> 
 Could you recommend affordable and reliable cloud storage for 50 TB of 
 data?
>>> 
>> My budget is around USD$50 per year.
>
> You’re *dreaming*.

Or trolling.  This user has a history of multiposting troll content (and
indeed, he multiposted this to the Ubuntu mailing list too).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Help finishing off Centos 7 RAID install

[Keith Keller]

On 2019-01-09, Gordon Messmer  wrote:
> On 1/9/19 2:30 AM, Gary Stainburn wrote:
>
>> 2) is putting SWAP in a RAID a good idea? Will it help, will it cause
>> problems?
>
> The only "drawback" that I'm aware of is that RAID consistency checks 
> become meaningless, because it's common for swap writes to be canceled 
> before complete, in which case one disk will have the page written but 
> the other won't.  This is by design, and considered the optimal 
> operation.  However, consistency checks don't exclude blocks used for 
> swap, and they'll typically show mismatched blocks.

If the swap is RAID1 on its own partitions (e.g., sda5/sdb5), then
CHECK_DEVS in /etc/sysconfig/raid-check can be configured to check
only specific devices.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Red Hat is Planning To Deprecate KDE on RHEL By 2024

[Keith Keller]

On 2018-11-02, Robert Heller  wrote:
>
> I one of the few (?) people who use "none of the above" (meaning all of the 
> "modern" desktop managers).  I use fvwm in MWM mode and have a Tcl/Tk coded 
> "menu manager" program.

Ah, one of these subthreads.  ;-)

I use fluxbox on my main linux desktop.  Very few people recognize it.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Red Hat is Planning To Deprecate KDE on RHEL By 2024

[Keith Keller]

On 2018-11-03, Robert Arkiletian  wrote:
>
> To me "not supported" means the KDE packages (and all dependency libs)
> will not be in the official repos. So have fun trying to build all
> that yourself. Most likely there will be a third party unofficial repo
> that will have those KDE packages.

Or perhaps a CentOS SIG for them if there's enough community
contributors.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] inquiry about limitation of file system

[Keith Keller]

On 2018-11-03, Jonathan Billings  wrote:
>
> Now, filesystem limits aside, software that try to read those directories 
> with huge numbers of files are going to have performance issues. I/O 
> operations, memory limitations and time are going to be bottlenecks to web 
> operations. 

Just to be pedantic, it's only what Jonathan suggested that would be a
performance problem.  Typically, a web server doesn't need to read the
directory in order to retrieve a file and send it back to a client, so
that wouldn't necessarily be a performance issue.  But having too many
files in one directory would impact other operations that might be
important, like backups, finding files, or most other bulk file
operations, which would also have an effect on other processes like the
web server.  (And if the web server is generating directory listings on
the fly that would be a huge performance problem.)

And as others have mentioned, this issue isn't filesystem-specific.
There are ways to work around some of these issues, but in general it's
better to avoid them in the first place.

The typical ways of working around this issue are storing the files in a
hashed directory tree, and storing the files as blobs in a database.
There are lots of tools to help either job.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] PostgreSQL port accessible even though it should be blocked by firewall

[Keith Keller]

On 2018-10-29, Frank Thommen  wrote:
>
> PostgreSQL is running in a docker container:
>
> $ docker ps
> CONTAINER IDIMAGE COMMAND 
>CREATED STATUS  PORTSNAMES
> 6f11fc41d2f0postgres  "docker-entrypoint..."   4 
> days ago  Up 4 days   0.0.0.0:5432->5432/tcp   postgres
> $
>
> The various docker interfaces and virtual bridges are not assigned to 
> any specific zone.
>
> Why is port 5432/tcp open?

It may be Docker manipulating the iptables rules.  If you don't want it
open at all, remove the port argument from the docker run command line
(or moral equivalent) and recreate the container (make sure you have
saved your data first, either with a volume mount or by dumping first).

If you need something more complex, here's some docs on how Docker
interacts with iptables, and how you can insert rules into its chains:

https://docs.docker.com/network/iptables/

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] What are the differences between systemd and non-systemd Linux distros?

[Keith Keller]

On 2018-10-16, John R. Dennison  wrote:
> On Tue, Oct 16, 2018 at 05:54:29AM +, Turritopsis Dohrnii Teo En Ming w=
> rote:
>
> Troll bait removed.
>
> Congrats, folks.  You fell for it.
>
> This was also troll-posted to fedora-users within seconds of this post.

It was also troll-posted to ubuntu-users, this is certainly not the first
time this user has done so, and AFAICT he has never responded to people
asking questions about his initial posts.  Can a list moderator please
remove this user and block him from returning (or, perhaps, leave him
subscribed but disable posting)?  He's pretty clearly a troll.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Change password and add user on RO filesystem

[Keith Keller]

Hello Marcin,

On 2018-09-04, Marcin Trendota  wrote:
>
> I'm trying to create system with RO root filesystem, so i'm using
> /etc/sysconfig/readonly-root along wih /etc/rwtab and /etc/statetab.
>
> Apart of numerous problems with services running on RO filesystem (which
> i'm constantly resolving adding entries to /etc/statetab) one thing
> popped up. I'm unable to add user or change his password. Error is
> 'cannot lock /etc/passwd; try again later.'.
>
> After research it turns up (at least on Fedora, but i assume same on
> CentOS) some files being created in /etc. For example /etc/shadow.,
> and some others with PID in name. Obviously it's impossible on RO
> filesystem...
>
> Is there any workaround (apart of remounting whole filesystem RW)?

Have you looked at this article?

https://warewolf.github.io/blog/2013/10/12/setting-up-a-read-only-rootfs-fedora-box/

Unfortunately it doesn't really provide a local workaround, but if you
have something like LDAP available already that might be a way to go.

If not (and assuming you've added /etc/passwd and friends to
/etc/statetab*), one very crude option might be to manipulate the files
by hand.  For /etc/passwd and /etc/group (if necessary) this is easy,
since it's just a plain text file with human-readable text.  For
/etc/shadow this is slightly more complicated, since you need to
generate the password hash.  For that you can use mkpasswd:

https://www.aychedee.com/2012/03/14/etc_shadow-password-hash-formats/

Obviously doing this makes adding a user a nonatomic operation, so you
need to take care manipulating passwd and shadow in this way.  (I don't
know if mkpasswd is available from a yum repo, but the included python
should be there.)

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-25, Meikel  wrote:
>> [...] People want their phone to
>> remind them of their appointments [...]
>
> It's a generalization. Not valid for all people.
>
> Maybe SOME people want their phone to remind them of their appointsments.

And if some of those people are in your organization then you probably
need to support them.  You can't just tell them to suck it up just
because you want to use Zimbra (for example) instead of Google.  (If on
the other hand your bosses require you to host your data instead of
using Google then you may get away with telling them to suck it up.)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-21, Michael Schumacher  wrote:
> folks, didn't anybody check the name of this guy?
>
> Turritopsis Dohrnii Teo En Ming 
> drops a bomb with provocative questions every now and then and NEVER
> ever responds to his own bullshit. He is just a troll!

This is why I asked him why he multiposted to different lists: I saw the
same allegation in the Ubuntu group.  (Multiposting itself is one minor
sign of trolling.)

FWIW he did respond to a small handful of messages in this thread.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-22, Valeri Galtsev  wrote:
>
> And on top of all: MS Windows is the only systems I know of whose vendor
> tells you, it is not safe to run without 3rd party software (antivirus).

AFAIK (my son runs Windows, to my shame) Windows now comes bundled with
antivirus software.  I have no idea if it actually works or not.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-20, Nicolas Kovacs  wrote:
> Le 20/07/2018 à 07:44, Keith Keller a écrit :
>> A public SMTP server is not the easiest thing to configure, period. 
>> It is the quintessential rope on which many admins hang themselves.
>
> It's not rocket science either, but you have to be willing to read (a
> lot) and experiment (a lot).

You also need to be willing to stay on top of your outgoing mail to make
sure your network isn't sending spam, and you need to monitor the
various blacklists to make sure your SMTP servers are not ending up on
them.  It's not like (for example) an IMAP server, which once you have
working is mostly maintenance-free.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-19, Nicolas Kovacs  wrote:
> I'd say mail
> servers are not the easiest thing to configure under Linux.

A public SMTP server is not the easiest thing to configure, period.
It is the quintessential rope on which many admins hang themselves.


--keith
-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-19, Mark Rousell  wrote:
>
> Well said. I feel that too many people today have forgotten (or, more
> likely, never learned) these lessons from history. People give away
> their personal and supposedly private information too easily and, I feel
> certain, will come to regret it (some already have come to regret it).

While I agree with the above, it doesn't really address Johnny's
question, which is which open source calendaring projects can compete
with Google calendar for users' ease of use?  If I give my users Zimbra,
and they hate it, then what?  For simple email use, there are plenty of
clients which can talk IMAP/SMTP to a linux server, but the options for
calendaring (and ''groupware'' in general) are much sparser.

It's a hard question, and each organization needs to weigh their privacy
concerns against their users' requirements.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers?

[Keith Keller]

On 2018-07-18, Turritopsis Dohrnii Teo En Ming 
 wrote:
>
> I am torn between deploying Microsoft Exchange 2016 and Linux-based
> SMTP servers like sendmail, postfix, qmail and exim.

Why are you multiposting this question to multiple mailing lists?

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] wildcard certificate

[Keith Keller via CentOS]

On 2018-06-16, Gordon Messmer via CentOS  wrote:
>
> https://community.letsencrypt.org/t/acme-v2-and-wildcard-certificate-support-is-live/55579
>
> Wildcard support is new, but it's available!  :)

Cool!  I had read about wildcard support being planned a few months ago
but totally forgot about it.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] wildcard certificate

[Keith Keller via CentOS]

On 2018-06-15, Jerry Geis  wrote:
> Hi all - I am trying to figure out how to add a wild card certificate given
> to me for a CentOS installation.

You've already got the cert so it's not totally relevant, but in the
future you can consider using Let's Encrypt.  They won't distribute
wildcard certs but unless you have lots of subdomains you can simply
request a cert for every domain you need.

LE has packages for CentOS which can plug in to Apache automatically, so
configuration is quite straightforward.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Passwords in plain text

[Keith Keller via CentOS]

On 2018-06-15, Dave Stevens  wrote:
>
> see here:
> https://investorplace.com/2016/09/gmail-down-outage-googl-goog-stock/

Wasn't this almost two years ago?

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS Kernel Support

[Keith Keller via CentOS]

On 2018-06-16, Johnny Hughes via CentOS  wrote:
>
> You agreed to an EULA that says you will not distribute things that you
> get from that paid subscription.  You can do it, and be in violation of
> the terms of your subscription.

Is this enforceable with the GPLv2?  IIRC someone who distributes GPLv2
source code is not permitted to restrict other people's ability to
redistribute.  It could be an interesting legal test (that I don't think
CentOS should test :) )

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Passwords in plain text

[Keith Keller]

On 2018-06-15, rj coleman  wrote:
> Am I the only one who just received this email from this group?  Which came 
> with my password in the email in plain text?

This is a standard feature of GNU Mailman.  You can disable the monthly
password reminder in your user preferences (which is the same place you
can change your password, if you are concerned that it was sniffed
during the SMTP exchange).

The Mailman signup page warns you that the password will be emailed:

"You may enter a privacy password below. This provides only mild
security, but should prevent others from messing with your subscription.
Do not use a valuable password as it will occasionally be emailed back
to you in cleartext."

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS Kernel Support

[Keith Keller]

On 2018-06-14, Valeri Galtsev  wrote:
>
> It turns out you are absolutely right. You only have provide modified 
> source to users to whom you distribute derived work. Found it here:
>
>   https://www.gnu.org/licenses/gpl-faq.en.html#GPLRequireSourcePostedPublic

Not totally relevant to this thread, but relevant to repeating: since
the code is still GPLv2, if RedHat shares its code with me, I can still
redistribute freely, even though RedHat is not necessarily
redistributing to the general public.  RedHat can not prevent me from
redistribution even though I obtained the code under a paid support
contract.  (At that point RH has zero obligation to anybody who
downloads from me, of course.)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C7, encryption, and clevis

[Keith Keller]

On 2018-06-08, Valeri Galtsev  wrote:
>
> Frank, I 100% agree with you. The only case with spoofed MAC address and 
> license that may have chance to stand in court will be if all below are 
> true:
>
> 1. the company issued perpetual license.
> 2. the company does not exist

Based on what's written below, it seems like the company does in fact
still exist, and that therefore the organization trying to spoof MACs
may be violating their license.  I hope the company which sells the
program doesn't read this mailing list.

>> It's apparently a very good molecular modeling program, and to be real, my
>> users tell me that the company that bought the original company wants, and
>> I'm not making this up, $15k US to generate a license for a new
>> workstation. And there's two? three? workstations that run it.
>> 
>> And this is a US gov't agency (civilian secrot). Budget? We don' need no
>> steenkeen budgets, the Magic Hand of the Market will produce all the
>> results we need.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] git public web frontends

[Keith Keller]

On 2018-06-06, Alice Wonder  wrote:
> I'll be putting those in /srv/git and using a different username than 
> the account for my private git repositories.
>
> But... can anyone recommend a web front end?

Another recommendation for Gitlab.  For maximum flexibility you can just
run it out of a Docker container with appropriate volume mounts for
persistent data.

--keith

-- 
kkel...@wombat.san-francisco.ca.us
(try just my userid to email me)
AOLSFAQ=http://www.therockgarden.ca/aolsfaq.txt


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Semi-OT: install python package in userspace

[Keith Keller]

On 2018-04-10, Richard Grainger  wrote:
> If you can use python3 rather than python2, it looks like the
> dependencies in the standard repos are new enough.

SCL might be an option for providing a more recent python.  I'm not sure
if scikit is in SCL too, but I'm pretty sure numpy is, and scikit can be
installed into a smaller virtualenv.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] XScreenSaver

[Keith Keller]

On 2018-04-08, Nicolas Kovacs <i...@microlinux.fr> wrote:
> Le 09/04/2018 à 00:33, Keith Keller a écrit :
>> I think you can use the --no-splash switch.
>> 
>> https://www.jwz.org/xscreensaver/man1.html
>> 
>> There's probably also a config setting in .xscreensaver.
>
> No, there's no configuration setting. And no way to turn it off.

Not even --no-splash?  That option shows up right on JWZ's site.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] XScreenSaver

[Keith Keller]

On 2018-04-08, Nicolas Kovacs  wrote:
>
> As far as I can tell, there would be several solutions to this problem.
>
> 1. Ask the EPEL maintainers to keep the application up-to-date.
>
> 2. Patch the darn thing so I don't get the annoying popup.
>
> 3. Maintain my own up-to-date version of XScreenSaver in my private repo.

I think you can use the --no-splash switch.

https://www.jwz.org/xscreensaver/man1.html

There's probably also a config setting in .xscreensaver.

But it was probably worth seeking a patch just to get that classic
response.  ;-)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How insecure is NIS ? Possible alternatives ?

[Keith Keller]

On 2018-03-26, Leon Fauster  wrote:
>
> Quite time ago we had a stripped setup here working only with Openldap and 
> PAM modules. LDAP with replication for redundancy, centralized communication 
> with local CA and over TLS. It worked very well. The successor of such setup 
> is SSSD for EL7 but the above should be still a feasible solution.

Likely an even longer time ago, I did an even more stripped down version
of this, where I just set up an OpenLDAP server, used their tools to
import from our existing NIS to it, and ran it unencrypted (all the
hosts were either on the same switch or over VPN so having no encryption
on the network channel was less of a concern).  It was fairly
straightforward, and I imagine that nowadays, setting up TLS for slapd
and clients is probably fairly straightforward too.

I wonder how much support there is for NIS any more in recent distros.
Is it possible CentOS 7 doesn't support NIS, or does but is buggy?

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] broadcom and centos 7

[Keith Keller]

On 2017-12-19, Gary Stainburn <g...@ringways.co.uk> wrote:
> On Tuesday 19 December 2017 03:56:20 Keith Keller wrote:
>> On 2017-12-19, Keith Keller <kkel...@wombat.san-francisco.ca.us> wrote:
>> > https://elrepo.org/tiki/wl-kmod
>>
>> I decided to give this a go, and so far so good.  I did need to rebuild
>> the rpm after updating the kernel version from the previous one to the
>> current one, but from the page above it sounds like that's reasonably
>> expected.
>
> Keith,  have alook at the thread I started a few weeks back. It has the 
> sothat 
> worked for me.

Thanks Gary!  I should have seen that (and there was another thread
about Broadcom on the list too).  Fortunately this laptop doesn't have
Secure Boot (it's a MBP from 2010) so that didn't bite me.

I do seem to have an issue that when waking on suspend the wifi won't
come back up.  But I haven't done enough troubleshooting to provide any
helpful debugging information, and I may not care anyway (the "laptop"
is basically my desktop system).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] broadcom and centos 7

[Keith Keller]

On 2017-12-19, Keith Keller <kkel...@wombat.san-francisco.ca.us> wrote:
>
> https://elrepo.org/tiki/wl-kmod

I decided to give this a go, and so far so good.  I did need to rebuild
the rpm after updating the kernel version from the previous one to the
current one, but from the page above it sounds like that's reasonably
expected.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] broadcom and centos 7

[Keith Keller]

Hi all,

A year or two ago, I installed CentOS 7.0 (or 7.1) on an old MacBook
Pro, and compiled the Broadcom drivers as documented here:

https://wiki.centos.org/HowTos/Laptops/Wireless/Broadcom

After not using it for a while, I recently resurrected it, and updated
to 7.4.  Unfortunately that page has not been updated in a while, so
only documents compiling for 7.3.  When I try the patch, it fails on one
of the hunks (I don't have the exact error, I can grab it later if
important).

Has anyone had success with this on CentOS 7.4, either with this
compile, or the one documented by ELRepo (which I haven't tried yet)?

https://elrepo.org/tiki/wl-kmod

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] how to install pyserial on centos 6?

[Keith Keller]

On 2017-11-06, Michael Hennebry  wrote:
>
> python2-ivi-0.14.9-3.el6.noarch : %{sum}
> Repo: epel
> Matched from:
> Filename: /usr/lib/python2.6/site-packages/ivi/interface/pyserial.pyo
> Filename: /usr/lib/python2.6/site-packages/ivi/interface/pyserial.pyc
> Filename: /usr/lib/python2.6/site-packages/ivi/interface/pyserial.py

Based on the Python IVI readme 
(http://alexforencich.com/wiki/en/python-ivi/readme), 
it looks like this library is able to use the actual PySerial library
but doesn't provide it.  You may need to install that using pip if it's
not available in EPEL.  The ivi RPM may not provide pyserial because it's
not a required library.

You may also just want to search EPEL for serial.py, which is the
ultimate name of the PySerial library on disk.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] low end file server with h/w RAID - recommendations

[Keith Keller]

On 2017-11-04, Valeri Galtsev  wrote:
>
> On Sat, November 4, 2017 4:32 am, hw wrote:
>
>> If the cli is poor, the gui may seem much better

Indeed.  Before the storcli tool came out, the only CLI tool for the LSI
cards was MegaCli, and it was atrocious.  In that case I can imagine the
GUI being preferable (even though the GUI isn't very good either).

Even the storcli tool isn't very good (as I've mentioned).  I can
completely understand someone preferring MSM (the daemon which provides
the backend for the GUI tool) over storcli.

> I do not. As web interface 3ware has is provided by the daemon, in which
> you can configure all automated actions you need, and that daemon will do
> it according to your schedule (but rather the controller itself does most
> of them as configured through web interface). Those who used 3ware cards
> do know it and do use that nice feature.

I never used the 3dm2 web GUI.  I thought it was stupid and greatly
preferred tw_cli.  You can set at least scheduled verifies through
tw_cli. (I don't know if you could use the 3dm2 GUI to schedule other
tasks.)  I only use 3dm2 to send out email alerts.  I tried using MSM to
send out email alerts but I got way way too many alerts for trivial
events, so I ended up disabling it.

> This does not change my perception that _I_ with my mentality have less
> chance to screw up and obliterate RAID array when I need, say, to start
> rebuild if _I_ use GUI web interface, as opposed to command line interface
> (cli). Even if it is just me, I stay convinced to keep doing it this way
> which is safer for the data of my users that live on RAID I am dealing
> with.

This is probably the most important consideration.  Keeping our data
safe is more important than a CLI vs GUI religious war.  :)

Recently I had to use the LSI BIOS' GUI to configure arrays.  Let me tell
you, that was really no fun at all.  It was still point and click but
the GUI was so clunky that it was very difficult to tell what I was
doing.  And the help was useless, so I had to go to my laptop to do
research on some of the options that the controller was asking about.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] low end file server with h/w RAID - recommendations

[Keith Keller]

On 2017-11-02, Valeri Galtsev <galt...@kicp.uchicago.edu> wrote:
>
> On Thu, November 2, 2017 4:43 pm, Keith Keller wrote:
>>
>> There are Nagios plugins that can check the status of LSI controllers,
>> arrays, and drives.  The plugin is nice even if you don't use Nagios;
>> it'd be pretty easy to write a short shell wrapper that sent email if
>> the plugin status wasn't OK.
>
> Thanks, Keith, you just solved one of my problems (and I do use nagios, so
> life is even better ;-)

Fabulous!  Glad I could help.  :)

I think the one I'm using is by Thomas Krenn:

https://github.com/thomas-krenn/check_lsi_raid

It's pretty thorough.  It's a little too sensitive sometimes; for
example, it will alert critical for a drive that's rebuilding (e.g. if
you replaced a failing drive recently).  But it covers everything I know
of, including physical devices, logical volumes, and BBUs.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] low end file server with h/w RAID - recommendations

[Keith Keller]

On 2017-11-02, Valeri Galtsev  wrote:
>
> If you have not Dell server hardware my choice of [hardware] RAID cards
> would be:
>
> Areca
> LSI (or whoever owns that line these days - Intel was the last one, I
> recollect)
>
> With LSI beware that they have really nasty command line client, and do
> not have raid watch daemon with web interface like late 3ware had (alas,
> 3ware after they were bought out several times by competitors were drawn
> down out of existence).

I believe Broadcom now owns LSI.  LSI killed the 3ware line soon after
they bought it, so the MegaRAID line is it from them now.

Seconded on the horrific LSI command line tools.  Actually they have two
tools, MegaCli and storcli.  They're both horrible, storcli slightly
less so.  OTOH once you get your arrays configured you can forget about
storcli (at least until a drive fails).

There are Nagios plugins that can check the status of LSI controllers,
arrays, and drives.  The plugin is nice even if you don't use Nagios;
it'd be pretty easy to write a short shell wrapper that sent email if
the plugin status wasn't OK.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [Slightly OT] Use CentOS to create a bootable Mac OS X DVD from dmg file?

[Keith Keller]

On 2017-09-23, Nicolas Kovacs  wrote:
>
> Anyone here with experience on installing CentOS on a MacBook Pro? This
> model is from 2009. As far as I know (correct me if I'm wrong), Apple
> hardware always uses EFI.
>
> What can I expect? Flawless installation or countless hours of suffering
> due to completely unexpected problems?

I put CentOS 7 onto a MBP.  I'm not sure what vintage it is but probably
similar to yours.  IIRC the install was relatively straightforward,
including wireless and X11, two factors that were a huge PITA for me in
the past on Apple laptops.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Flush memory on a server?

[Keith Keller]

On 2017-09-09, Nicolas Kovacs  wrote:
>
> So, in other words, there's no need to worry if a little swap is used
> when the system's been running non-stop for a couple months?

As long as your system isn't thrashing swap it's totally fine.  From
what you've written it doesn't sound like you're thrashing.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] installer with centosplus kernel?

[Keith Keller]

On 2017-06-23, Johnny Hughes <joh...@centos.org> wrote:
> On 06/22/2017 04:36 PM, Keith Keller wrote:
>> Is there any way to get a CentOS 7 ISO with the centosplus kernel?
>
> If you are physically near the machine, just plugging in and mounting a
> thumb drive with the said RPMs copied to it and doing:
>
> yum install
>/kernel-plus-3.10.0-514.21.2.el7.centos.plus.x86_64.rpm

Just for the record, I was able to attempt this today.  The only two
minor problems I had was that yum complained about being unable to reach
the network (since the kernel didn't have the forcedeth driver that make
sense) and rpm complaining about slightly old packages for dracut,
linux-firmware, xfsprogs, and one more I don't remember (my install DVD
was a little old).  Using rpm --nodeps -i worked fine, after a reboot my
ancient box was on the network, and I was able to yum update from there.

Thanks for your help on this!

--keith

-- 
kkel...@wombat.san-francisco.ca.us

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] installer with centosplus kernel?

[Keith Keller]

Hi Johnny, Akemi,

On 2017-06-23, Johnny Hughes  wrote:
>
> If you are physically near the machine, just plugging in and mounting a
> thumb drive with the said RPMs copied to it and doing:
>
> yum install
>/kernel-plus-3.10.0-514.21.2.el7.centos.plus.x86_64.rpm
>
> Should work

This sounds fairly easy; I'll try it next time I'm nearby (I only
get to our data center every few weeks).  There's a filesystem I'm not
erasing for this install, so I can put the rpm there before I start
putting C7 on it.

For a server of this ''vintage'' trying to roll my own driver disk (or
even asking someone else to) might be more work than I'm willing to put
in.

Thanks for the suggestions!

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] installer with centosplus kernel?

[Keith Keller]

Hi all,

Is there any way to get a CentOS 7 ISO with the centosplus kernel?  I
have some very old hardware I'd like to keep going if easy, but it has
old NVidia network cards that need the forcedeth driver.  Apparently
this driver is now in the centosplus kernel, but if I use the default
ISO I won't be able to get on the network to get the centosplus kernel.
(Of course I can get the kernel to the machine in other ways, but over
the network is by far the most convenient.)

See https://bugs.centos.org/view.php?id=7359 for more details.  I've
done other web searches but found nothing more specific than this link.

Thanks!

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: systemd Poll

[Keith Keller]

On 2017-04-11, Gordon Messmer  wrote:
>
> You also don't have the flexibility to replace the kernel.  Or glibc.

But you do, don't you?  It'll take you months to replace them, or years
to rewrite, but you *can* do it.  That is the freedom that open source
software provides that proprietary OSes do not; it does not come with
the additional promise to provide exactly the software you specify.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: systemd Poll

[Keith Keller]

On 2017-04-10, Valeri Galtsev  wrote:
>
> The same here. Could repeat that word for word. I fled what I could to
> FreeBSD, but in that process systemd was just the last drop that confirmed
> that my earlier decision to abandon Linux to the extent I can was right.
> Whatever has to stay Linux sucks ... more time for any problem than it
> used to.

FWIW this is a distro issue, not a Linux issue.  Slackware still has not
switched to systemd IIRC.  I would imagine there are other distros that
haven't switched (yet).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Need help

[Keith Keller]

On 2017-03-20, Styma, Robert (Nokia - US)  wrote:
> I am also using CentOS, but to get a bug fixed, you have to go upstream to 
> RedHat.   I think John Pierce is right, I had to change my run level to get 
> the alternate consoles to work.  I still have the machine at run level 3 
> hoping that a bug fix lets me go back to run level 5.   Other machines work 
> fine, just the 2 with the MACH64 video on the motherboard will no longer run 
> X.

In previous versions of CentOS, runlevel 5 put a virtual console on
console 7, so ctrl-alt-F7 to switch to that console might work if changing
the default runlevel is not feasible.  Note that if X is trying to do
something and not letting go of the virtual console, then you need ctrl
in addition to alt-FN because X will intercept a plain alt-FN.  (I
usually set my servers to runlevel 3 by default, so I haven't tried this
on CentOS in a while.  My Ubuntu laptop does put a console on F7 even in
runlevel 5.)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] qmail package for CentOS 7

[Keith Keller]

On 2017-03-15, rai...@ultra-secure.de  wrote:
>
> Qmail is a very special beast...

It's definitely a beast.  I usually suggest postfix, which gives many of
the benefits that qmail gives (separate processes for separate tasks)
without the blatant drawbacks (djb's suggestion to use daemontools, his
refusal to accept patches).

FWIW, at least qmail worked well enough without daemontools.  Getting
djbdns to work without it was hellish (and it had a nonstandard zone
file syntax).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] qmail package for CentOS 7

[Keith Keller]

On 2017-03-14, rai...@ultra-secure.de  wrote:
>
> You could try Matt Simerson's Toaster:
>
> https://github.com/msimerson/Mail-Toaster-6
>
> It does a lot more than just qmail and replaced as much of qmail as 
> possible...

But is it for Linux?  The Wiki says:

"each component is thinly provisioned in a FreeBSD jail."

If it uses something as low level as a FreeBSD jail it might be
difficult to get working in linux.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] RAID questions

[Keith Keller]

On 2017-02-17, John R Pierce <pie...@hogranch.com> wrote:
> On 2/16/2017 9:18 PM, Keith Keller wrote:
>>> Only some systems support that sort of restriping, and its a dangerous
>>> activity (if the power fails or system crashes midway through the
>>> restriping operation, its probably not restartable, you quite likely
>>> will lose the whole volume)
>> Doesn't mdraid support changing RAID levels?  I think it will even do it
>> reasonably safely (though still better not to have a power failure!).  I
>> have a vague memory of adding a drive to a RAID5 and converting it to a
>> RAID6 but I could be misremembering.
>
> any such operation requires the entire raid to be re-slivered, stripe by 
> stripe, as ALL the data moves around. on a large raid made from 
> multi-terabyte drives, this would take DAYS.

Yes, it would take a long time, but the man page for mdadm implies that
it's reasonably safe (sorry for long lines):

   Changing the number of active devices in a RAID5 or RAID6 is much more 
effort.  Every  block  in
   the  array will need to be read and written back to a new location.  
From 2.6.17, the Linux Ker-
   nel is able to increase the number of devices in a RAID5 safely, 
including restarting an  inter-
   rupted  "reshape".   From 2.6.31, the Linux Kernel is able to increase 
or decrease the number of
   devices in a RAID5 or RAID6.
[...]
   When  relocating  the first few stripes on a RAID5 or RAID6, it is not 
possible to keep the data
   on disk completely consistent and crash-proof.  To provide the required 
safety,  mdadm  disables
   writes  to  the  array while this "critical section" is reshaped, and 
takes a backup of the data
   that is in that section.  For grows, this backup may be stored in any  
spare  devices  that  the
   array  has,  however  it  can also be stored in a separate file 
specified with the --backup-file
   option, and is required to be specified for shrinks, RAID level changes 
and layout changes.   If
   this option is used, and the system does crash during the critical 
period, the same file must be
   passed to --assemble to restore the backup and reassemble the array.  
When shrinking rather than
   growing the array, the reshape is done from the end towards the 
beginning, so the "critical sec-
   tion" is at the end of the reshape.

(Thanks to Gordon for the pointer to the GROW section of the mdam man page.)

It's been a long time since I did this, but I seem to remember resizing
an md array of ~10 2TB drives in a RAID5 by adding one drive and reshaping
to RAID6, and it took 2-3 days.

The old 3ware controllers claimed to be able to support this sort of reshaping,
but I only tried once and it failed.  I don't know if LSI or Areca
supports it.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] RAID questions

[Keith Keller]

On 2017-02-15, John R Pierce  wrote:
> On 2/14/2017 4:48 PM, tdu...@palmettoshopper.com wrote:
>
>> 3 - Can additional drive(s) be added later with a changein RAID level
>> without current data loss?
>
> Only some systems support that sort of restriping, and its a dangerous 
> activity (if the power fails or system crashes midway through the 
> restriping operation, its probably not restartable, you quite likely 
> will lose the whole volume)

Doesn't mdraid support changing RAID levels?  I think it will even do it
reasonably safely (though still better not to have a power failure!).  I
have a vague memory of adding a drive to a RAID5 and converting it to a
RAID6 but I could be misremembering.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] raid 10 not in consistent state?

[Keith Keller]

On 2017-02-03, lejeczek  wrote:
> hi everyone
> I've just configured a simple raid10 on a Dell system, but 
> one thing is puzzling to me.
> I'm seeing this below and I wonder why? There: Consist = No
> ...
> /c0/v1 :
>==
>
> ---
> DG/VD TYPE   State Access Consist Cache Cac sCC  Size Name
> ---
> 3/1   RAID10 Optl  RW No  RWBC  R   OFF 18.188 TB
> ---

This looks like an LSI controller, so you might ask them for help.  Or
if you have a support contract you can ask Dell.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [Fwd: The CentOS list]

[Keith Keller]

On 2017-01-30, Valeri Galtsev  wrote:
>
> Mark has problem sending mail to centos@centos.org list

Isn't there an email address for the list admins?

https://lists.centos.org/mailman/listinfo/centos

centos-ow...@centos.org

It's a bit unproductive to trouble list members about list problems.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7 and Areca ARC-1883I SAS controller: JBOD or not to JBOD?

[Keith Keller]

On 2017-01-20, Valeri Galtsev  wrote:
>
> Hm, not certain what process you describe. Most of my controllers are
> 3ware and LSI, I just pull failed drive (and I know phailed physical drive
> number), put good in its place and rebuild stars right away.

I know for sure that LSI's storcli utility supports an identify
operation, which (if the hardware all cooperates) causes the drive's
light to blink.  I'm fairly sure I've used this feature on 3ware
controllers as well.  I use this even when I'm sure of the failed drive
number and am the only sysadmin for these systems, because I don't even
trust my own memory.  :)

This is one reason I prefer RAID6 over RAID5: if you have one failed
drive in your array, and you pull the wrong one, your RAID5 is now gone,
but your RAID6 is still functional.  The odds are with you in a RAID10
but you could get unlucky.  (Not that you want to rebuild two drives at
the same time but it's still better than losing the array.)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] cron job failures with a perl script containing Astro::Time

[Keith Keller]

On 2017-01-02, Gregory P. Ennis  wrote:
>
> The error message I get in the logs is :
>
> Can't locate Astro/Time.pm in @INC (@INC contains:
> /usr/local/lib64/perl5 /usr/local/share/perl5
> /usr/lib64/perl5/vendor_perl /usr/share/perl5/vendor_perl
> /usr/lib64/perl5 /usr/share/perl5 .) at /usr/local/bin/s.bkup.degw3.prl
> line 12.
> BEGIN failed--compilation aborted at /usr/local/bin/s.bkup.degw3.prl
> line 12.

[snip]

> The script works find from the command line, but will not work at all
> in a cron job.

This almost always points to something in the environment.

Where did Astro::Time actually get installed?  Check the above paths to
see if it is actually there, or whether cpan put it somewhere else.  If
it put Astro::Time elsewhere, you will need to add a PERL5LIB export to
your crontab file (or better, make a bash wrapper, point cron to that,
and put the PERL5LIB variable there).

If you put it in crontab, you should get the current value from your
shell, and put that into crontab (verify it looks reasonable first).

echo $PERL5LIB
# or
env |grep PERL5LIB

If you don't have PERL5LIB set, you can take the paths you currently
have defined (see your path list above) and add the path to Astro::Time
to that.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Centos OS Crash Recovery, Inquiry.

[Keith Keller]

On 2016-11-03, Christopher G. Halnin  wrote:
>
> Does it have an automatic backup system?

Not out of the box.  If the drive is not usable in its current state,
and you do not have backups, you may need to bring it to a professional
drive recovery shop.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [SOLVED] Re: Backup Suggestion on C7

[Keith Keller]

On 2016-10-12, Alice Wonder  wrote:
> I'm sure some people will tell me I'm doing it wrong but I always just 
> use rsync for backups, automated in cron.

You're doing it wrong.  ;-)

You're not really doing it ''wrong'', it just depends on what your needs
are.  One drawback to using just rsync is, if a user deletes a file,
then needs it back after the rsync was run again, the file may no longer
be in your backups (similar if the user modified it and needs the original
pre-mod file back).  If you're okay with that, then rsync is fine for
your needs.

rsnapshot uses rsync with hard links to be able to efficiently keep
snapshots (not point-in-time snapshots, just whatever was present when
rsync sync'd each file) on a periodic basis.  bacula is a more
sophisticated method for doing this efficiently across multiple hosts.
LVM snapshots allow for a real point-in-time snapshot (which can then be
backed up with your favorite tool).

> I may be doing it wrong but it always works.

It always works until it doesn't.  This is unfortunately all too true
when it comes to backups.  It's easier to inspect backups on disk than
when they used to be done to tape, but it's still good to verify them
outside of your normal backup routine periodically.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] mount.nfs: an incorrect mount option was specified

[Keith Keller]

On 2016-10-03, Jon LaBadie  wrote:
> IIRC, for mount.nfs, the "r" option is read only while the "w"
> option is read+write.  They may be mutually exclusive.

I don't believe this is accurate.  ro and rw are mutually exclusive, but
there is no "w" option.  (Which doesn't help the OP, unfortunately, but
at least he knows.)

For the OP, you should check the system logs on both the client and the
server.  There may be clues as to what the real error is; sometimes
mount.nfs reports a misleading error when the actual problem is
somewhere else.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Using keepass on Centos 6

[Keith Keller]

On 2016-09-21, Valeri Galtsev <galt...@kicp.uchicago.edu> wrote:
>
> On Wed, September 21, 2016 4:30 pm, Keith Keller wrote:
>> On 2016-09-21, Gordon Messmer <gordon.mess...@gmail.com> wrote:
>>> On 09/21/2016 11:30 AM, H wrote:
>>>
>>> https://www.passwordstore.org/
>>
>> This looks very cool, but is there a version for Android?  One of the
>> reasons I picked KeePass is that I could use a copy of the same password
>> file with clients on linux, OS X, or Android.  (And if I had an iOS
>> device KeePass works there too.)
>
> I use KeepassX. That one has versions for pretty much all open source
> systems (Linux, *BSD) and for variety of others widely used systems:
> MacOS, Android, iOS, MS Windows (just listed the ones I know of). Thanks
> to that I can open the same encrypted password store on pretty much all
> devices and systems I use.

I was pretty dumb in asking this question: right at the top of the web
page, it says that third parties have made Android and iOS apps.  Sorry
about that!

> However, no, I don't consider it reasonable for
> myself to use it from inside web browser, hence I would recommend
> reconsider this part in favor of universal tool.

While pass does have a Firefox plugin, I don't think I'd use it, but I
can imagine someone else might.  It sounds like this is different from
keeping your key store in The Cloud (TM), but I didn't read the plugin
page carefully.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Using keepass on Centos 6

[Keith Keller]

On 2016-09-21, Gordon Messmer  wrote:
> On 09/21/2016 11:30 AM, H wrote:
>> You are right, I'll look at it again. Let me ask, what other password 
>> managers are people using, if any?
>
>
> I use keepass, but I know people who like:
>
> https://www.passwordstore.org/

This looks very cool, but is there a version for Android?  One of the
reasons I picked KeePass is that I could use a copy of the same password
file with clients on linux, OS X, or Android.  (And if I had an iOS
device KeePass works there too.)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] IPMI ??

[Keith Keller]

On 2016-09-18, Alice Wonder  wrote:
>
> But for now via VGA cable it is all working.
>
> Once I'm back home and this server is set up where it goes, I'll try 
> playing with non-browser IPMI tools and see what it is all about.

Now that you have a console, you can use the *ipmi tools to assign an IP
address to the IPMI interface yourself, then use the Supermicro Java GUI
to get to it from anywhere on the same network.  It's a great feature to
have even if it's not your preferred method to get to the console,
because at least it's a backup method (and might be handy for helping
you test your video card).

Make sure you do not allow the IPMI's IP to be accessible on a public
network.  Either keep the IP on a private network (better), keep the IP
firewalled to only certain IPs, or change the admin password from the
default.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] IPMI ??

[Keith Keller]

On 2016-09-18, Boris Epstein  wrote:
> Is there a little setup display right on the box? Just asking because I
> have seen that on some boxes.

You mean for configuring the IPMI interface?  I've never seen that but
it sounds very cool.  Do you have specific references for systems which
you've seen that on?

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] IPMI ??

[Keith Keller]

On 2016-09-17, Alice Wonder  wrote:
>
> Okay if it requires DHCP this might be out, I'm currently out of town 
> watching my brothers (various disabilities) while parents are on much 
> needed vacation. Don't have easy physical access to the router, would 
> have to take out stuff in front of it. Was hoping crossover ethernet 
> would work.

It probably would, but you still need some way to assign an IP address
to the IPMI interface (it probably doesn't have one out of the box).
But from your laptop you can run a DHCP server which would then assign
an IP to the IPMI interface.

The IPMI might self-assign if it can't find a DHCP server, but in my
memory (which might be faulty) it doesn't do this.

If for some reason Java doesn't work from your browser, Supermicro also
distributes a Java GUI tool for interacting with Supermicro IPMI
interfaces.  It also supports a subnet scanner, so you don't need to
know the IP that gets assigned.  Look for IPMIview here:

http://www.supermicro.com/products/nfo/IPMI.cfm

It's not a great tool but it works well enough for console access.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Keith Keller]

On 2016-09-08, John R Pierce <pie...@hogranch.com> wrote:
> On 9/7/2016 7:02 PM, Keith Keller wrote:
>>> Staying with excellent C6 until the end.
>> CentOS 7 is yum based, not dnf.
>
> "Always Learning" seems to have a distaste for anything new or different 
> than what he already knows.

Don't we all?  I'm not really all that excited about learning systemd,
for example.  But I'll certainly give it a fair chance before proclaiming
that they can pry CentOS 6 out of my cold dead hands.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Keith Keller]

On 2016-09-08, Always Learning  wrote:
>
> In any single version of Centos there is only one YUM. Having multiple
> and incompatible versions of Yum in the same software release is
> bonkers.

Fedora is the place to try out bonkers stuff.  If RedHat is satisfied
with dnf then they will include it and not yum in RHELN.  Maybe they
will make yum an alias to dnf, who knows.  But whatever they do it's
much less likely to be bonkers.

> Everyone knows Yum but DNF (something to do with DNS ?)

Who knew yum before Yellow Dog Linux?

> Nein danke.
> Nee takk.
> Alstublieft niet voor mij,
>
> Staying with excellent C6 until the end.

CentOS 7 is yum based, not dnf.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] .htaccess file

[Keith Keller]

On 2016-08-30, TE Dukes  wrote:
>
>> You and another poster mentioned fail2ban; if you can get that configured
> to
>> watch and protect both sshd and httpd that will help both problems quite a
>> bit.
>
> I have all the jails setup for the services I'm running. Not sure its
> working. Not getting any emails.

Check your logs.  fail2ban probably keeps a log of what it's doing, and
you can also check the appropriate fail2ban targets (either iptables,
/etc/hosts.deny, the Apache config file) to see if they are being
populated.  You certainly should see something; if you don't it's a
likely misconfiguration.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] .htaccess file

[Keith Keller]

On 2016-08-29, TE Dukes  wrote:
>> 
>> Can you be more specific about the "load" you're trying to mitigate?  Is it
>> really the load on your home system, or is it that attackers are using your
>> bandwidth, or a combination?
> 
> [Thomas E Dukes] 
> I saw that as well but it was a little vague on how to do that.

There are two easy (though not quantitative) tests you can do.

First, look at the load on the server.  If httpd is using a lot of CPU
and putting your load over 1, your main issue is probably the load being
generated by .htaccess reads.

If you have another system on your home network, try a speed test.  If
it performs crappy you probably have a problem with attackers eating
your bandwidth.

You and another poster mentioned fail2ban; if you can get that
configured to watch and protect both sshd and httpd that will help both
problems quite a bit.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] .htaccess file

[Keith Keller]

On 2016-08-28, TE Dukes  wrote:
> I setup an ipset but quickly ran out of room in the set. I guess I'll have
> to setup multiple sets.

I'm not familiar with ipsets, but from a quick Google search it seems
like you can increase the size of an ipset (or make a new larger one and
migrate your IPs to the new one).  Multiple sets looks like it'd work as
well.

> Right now, I'm just trying to take some load off my
> home server from badbots but I am getting hit on other services as well.

Another possibility for you to look at is sshguard.  It can protect
against brute force ssh attacks (using iptables rules, which is how I
use it) but IIRC it can also protect against http attacks (I've never
used it that way, so I don't know how difficult this is).

Can you be more specific about the "load" you're trying to mitigate?  Is
it really the load on your home system, or is it that attackers are
using your bandwidth, or a combination?

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] .htaccess file

[Keith Keller]

On 2016-08-28, TE Dukes  wrote:
>
> I'm just not following or understanding. The .htaccess file works but on a
> slow DSL, I don't want the hits.

What exactly is slow when you receive requests from remote clients that
you don't want?  Are you actually seeing problems when clients make
requests and Apache has to read in your 2MB .htaccess on every request?
And if so, you might also consider moving your blocking even higher, to
iptables rules, so that Apache never even has to deal with them.

> I added the following to my httpd.conf:
>
>
> AddType text/htdocs ".txt"
>

> And copied my .htaccess to /var/www/htdocs as htaccess.txt

Where did you get the idea that this is how to do global Apache
configuration?  This won't actually do anything useful.

> In the example from the apache website, I don't get the: AddType
> text/example ".exm" Where did they come up .exm? 

They made it up as an example, to demonstrate how directives work in
.htaccess files versus global Apache config files.  It's not meant to
demonstrate how to add blocking rules to the global config.

Here's the main point of that page:

"Any directive that you can include in a .htaccess file is better set in
a Directory block, as it will have the same effect with better
performance."

So, to achieve what I think you're hoping, take all the IPs you're
denying in your .htaccess file, put them into a relevant Directory block
in a config file under /etc/httpd, reload Apache, and move your 
.htaccess file out of the way.  Then httpd will no longer have to read in
.htaccess for every HTTP request.

Or, alternatively, block those IPs using iptables instead.  However,
clients will still be able to make those requests, and that will still
use bandwidth on your DSL.  The only way to eliminate that altogether is
to block those requests on the other side of your link.  That's
something you'd have to work out with your ISP, but I don't think it's
common for ISPs to put up blocking rules solely for this purpose, or to
allow home users to configure such blocks themselves.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Securing RPC

[Keith Keller]

On 2016-07-01, Leon Vergottini  wrote:
>
> Unfortunately, I cannot disable NFS which lies at the root of this
> problem.  In addition, I am struggling to find a proper tutorial of moving
> NFS from udp over to tcp.

I think the best thing to do is to set up VPN links between your NFS
server and the clients.  This way you never have to expose RPC to the
public network at all, and your NFS traffic will be secure against
packet sniffers.  I've used OpenVPN for this exact purpose, but I
suspect that it's been causing some problems, so I'm considering trying
out tinc vpn.

You could also do IPsec but IIRC that's a bit more complex to configure.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] remote backup

[Keith Keller]

On 2016-06-09, Gordon Messmer  wrote:
> On 06/09/2016 08:18 AM, Alessandro Baggi wrote:
>> How I can perform this check? 
>
>
> Run rsync with the -c argument.

Will this be very slow if Alessandro has a large number of files?  OTOH
if he really needs to ensure integrity there likely isn't a better
option.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] remote backup

[Keith Keller]

On 2016-06-04, Alessandro Baggi  wrote:
> i've need to backup a partition of ~200GB with a local connection of 8/2 
> mbps.
>
> Tool like bacula, amanda can't help me due to low bandwidth in local server.
>
> I'm thinking rsync will be a good choice.

If you want pseudo-snapshots (not real point-in-time snapshots) you can
use rsnapshot or backuppc, both of which use rsync under the hood.  You
get the advantages of rsync along with having an archive of previous
backups.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6 spontaneous reboots

[Keith Keller]

Hi Bill,

On 2016-05-30, Bill Gee  wrote:
>
> By luck I saw the beginning of a reboot on the server console.  Normally I 
> have 
> other systems up on the KVM switch.  It appears to have dumped core.  I don't 
> know where to look for the core dump files.  They are not in /root.

One place you might check is under /var/lib.  I think there may be a
/var/lib/crash directory which contains core dumps.

> I ran MemTest 86+.  No memory errors were found.

Another option is to try Advanced Cluster Breakin, which runs other
tests besides memory.

http://www.advancedclustering.com/products/software/breakin/

I've had it find problems that memtest hasn't (and vice-versa).

> Lm_sensors shows the processor running between 45 and 50C.

If the system supports IPMI, check those sensors and logs, there may be
something useful there.  If you don't have IPMI, there may still be
something in the BIOS logs (how you get to those varies wildly, you may
need to boot into the BIOS to do it).

I hope that helps!

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] google cloud compute with PEM file

[Keith Keller]

On 2016-05-17, Always Learning  wrote:
>
> (1)  I would change the port from 22 to something more difficult to
> guess, perhaps 49026 (for example) and then block port 22 in the
> firewall.
>
> (2)  Allow to port 49026 (for example) traffic from your IP and block
> traffic from all other IPs.
>
> Do not forget there are people out there desperate to get into your
> computer system, so make it more difficult for them.

If you've blocked access to the sshd port for all but whitelisted IPs,
there's little point in moving sshd to a nonstandard port.  If you want
defense in depth, use the cloud firewall, the host firewall, and
something like sshguard, and just leave sshd on port 22.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6: Gparted "the kernel failed to re-read partition table"

[Keith Keller]

On 2016-05-14, Scott Robbins  wrote:
>
> Secondly, if that's not practical, that message is common when using, say
> fdisk. Sometimes, running partprobe afterwards will reflect the new
> partition scheme, other times, you may just have to reboot.

I always assumed that it was impossible to have the kernel re-read the
partition table of a drive with mounted filesystems.  But apparently it
isn't.  Here's some possibly interesting detail on what partprobe does.

https://unix.stackexchange.com/questions/4061/how-does-partprobe-work

It's possible fdisk doesn't do this.  I don't know enough about parted,
but it's also possible it lets partprobe do it instead of doing it
itself.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: hardware: MegaCli and initializing a RAID

[Keith Keller]

On 2016-05-06, Valeri Galtsev  wrote:
>
> Agree. But I would say the same about all command line interface utilities
> for all RAID brands I ever used. LSI likely is the worst.

The old Adaptec AAC/AFA syntax was also awful, I'd say just as bad as
LSI.  (I have suspected that LSI copied most of the AAC UI.)  3ware was
bad but not nearly as bad as the other two.  (Though as you pointed out
in another post, the 3ware line is basically dead.  My vendor said the
same thing.)

> I really-really prefer GUI like 3ware web interface.

I hated 3ware's web interface.  :)

I think I've seen posted here before that some folks like the Areca
controllers.  What's their CLI/GUI like?

I think the worst part about these interfaces is that there really is
no (at least that I've found) programming API to access them.  If there
were, we could write Python/Perl/Java/whatever code to interact with the
controller, instead of having to parse stdout of MegaCli64.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] SOT: Best strategy for automatize a flow that need user interaction

[Keith Keller]

On 2016-01-29, reynie...@gmail.com  wrote:
> I am working in a Dockerfile but there is a "secure" MariaDB server script
> I need to run which is interactive and I don't know how to deal with this.

Honestly, I think your best long-term strategy for getting help with
Docker is a Docker list.  Personally I have no major problems with OT
questions, but if you ask your question someplace where everyone uses
(and maybe even develops) your software you're much more likely to get
a more complete and correct answer.  On this list you're hoping that
there's enough of a subset of users to answer your questions, and of
that subset who knows how many of them really know what they're doing.

If the software you were asking about were some strange obscure program
that few people use any more, I could see asking everywhere you could on
the off-chance that someone knows about it.  But for something so
popular like Docker there's no reason to go away from their discussion
forums.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Write content to file from Dockerfile and/or any other method

[Keith Keller]

On 2016-01-29, reynie...@gmail.com  wrote:
> I am building a Dockerfile and I am setting up MariaDB repos as follow:

This question is probably way offtopic for a CentOS mailing list.

> # Setup MariaDB repos
> RUN touch /etc/yum.repos.d/MariaDB.repo
>
> What's the right way to do this? The one below?
>
> echo "[mariadb]" >> "/etc/yum.repos.d/MariaDB.repo"
> echo "name = MariaDB" >> "/etc/yum.repos.d/MariaDB.repo"
> echo "baseurl = http://yum.mariadb.org/5.5/centos6-amd64; >>
> "/etc/yum.repos.d/MariaDB.repo"
> echo "gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB; >>
> "/etc/yum.repos.d/MariaDB.repo"
> echo "gpgcheck=1" >> "/etc/yum.repos.d/MariaDB.repo"

You probably want to do a COPY.  The Docker docs cover Dockerfile syntax
in detail:

https://docs.docker.com/engine/reference/builder/#copy

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Centos 3.8 Server Questions, SeaMonkey Mozilla and Java

[Keith Keller]

On 2016-01-08, H  wrote:
> That was not helpful - I explained that I had to run this version.

That was probably partly Peter's point: you are very unlikely to get any
helpful responses if you are running 3.8, and you are therefore likely
on your own.  That's probably not the response you were hoping for but
it may be the best response you're going to get.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] SSD drives for the OS - 1 or 2?

[Keith Keller]

On 2016-01-05, Rob Kampen  wrote:
> - does just a single SSD drive offer the same reliability or is there 
> advantage in deploying two in a Raid 1 config?

All else being equal, a RAID1 will be more reliable than a single drive,
whether it's magnetic or SSD.

> Also, what form factor / interface is best for the SSD OS boot device on 
> a server M/B? Anything I should be looking for?

If you're going for a RAID, you may as well also go for hot-swap drive
bays, so that you can change a failed drive without downing the system.
At that point you may as well ask your vendor what they suggest.  The
SSDs I have in a RAID1 configuration are 2.5" drives.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Extending a CentOS disk without reboot

[Keith Keller]

On 2015-12-21, Sander Kuusemets  wrote:
> And while dmesg reported that it recognized the partition change, LVM 
> did still not see it. So eventually, I was still forced to reboot, after 
> which everything (pvresize, lvresize, resize2fs) worked fine. Environment:
>
>   * A VMWare virtual machine
>   * CentOS 6.7 (Final)
>
> Is there any other way I'm missing? Is this caused by the fact that I 
> was trying to resize a partition that is under the root file system? If 
> so, then is it really impossible to do it live?

As far as I know (and perhaps my knowledge is dated) it is not possible
to resize a partition on the boot device without a reboot.  I'm not sure
exactly what you mean by "partition under the root filesystem", but I'm
guessing you mean that you may have been trying to resize /.  If that's
the case, then you may be able to do this only if /boot is on a
different device.

If you were resizing / because it filled, what exactly filled up?  If
it was someplace like /tmp or /var, you may want to consider migrating
those to separate filesystems, probably under LVM, so that you have a
better chance of this succeeding.  If you can have your VMWare admin
attach a second device where you can put these filesysems even better,
that's sure to work without requiring a reboot.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Rsync and differential Backups

[Keith Keller]

On 2015-11-10, Valeri Galtsev  wrote:
>
> I'm fully with you on -o inode64, but I would think it is not inode number
> that becomes large with extensive use of hard links, but the space used by
> directory data, thus requiring to relocate these once they exceed some
> size so ultimately some of them will be pushed beyond 1 TB border
> (depending on how the filesystem is used). Someone, correct me if I'm
> wrong.

Does this answer the question you're asking?  I think so but I'm not
sure.

http://www.xfs.org/index.php/XFS_FAQ#Q:_What_is_the_inode64_mount_option_for.3F

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Rsync and differential Backups

[Keith Keller]

On 2015-11-09, John R Pierce  wrote:
>
> XFS handles this fine.  I have a backuppc storage pool with backups of 
> 27 servers going back a year...  now, I just have 30 days of 
> incrementals, and 12 months of fulls,

I'm sure you know this already, but for those who may not, be sure to
mount your XFS filesystem with the inode64 option.  Otherwise XFS will
try to save all of its inodes in the first 1TB of space, and with so
many inodes needed, you may run out more quickly than you anticipate.
Then you'll have "no space left on device" errors when df reports plenty
of space (at least till you do df -i; actually I'm not 100% sure df -i
will show it).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Disaster recovery recommendations

[Keith Keller]

On 2015-10-31, Valeri Galtsev  wrote:
>
> 2. Hardware RAIDs (and probably software RAIDs - someone chime in, I'm
> staying away from software RAIDs) have the ability to schedule "verify"
> task.

Linux mdraid can do verifies.  Recent versions of CentOS should have a
cron job that does this.  Check out /usr/sbin/raid-check.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] PHP version not enough for developers

[Keith Keller]

On 2015-10-24, Johnny Hughes  wrote:
>
> For the sake of everyone's sanity .. if you (any user, not mark
> specifically) don't want to use systemd, then please don't use CentOS-7.

For example, you could help out with Devuan, which aims to remove
systemd from Debian, or you can switch to Slackware, one of the few
major distros not to even include systemd (so far).

Johnny, thank you for your efforts in trying to keep the mailing list
on-topic.  :)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] linux on a PPC (mac mini)

[Keith Keller]

On 2015-09-15, Leon Fauster  wrote:
>> On 2015-09-15, wwp  wrote:
>>> 
>>> Searching the web, I see very few possibilities to install a recent (I
>>> need gnome2) GNU/Linux distro on such hardware. I gave Linux MintPPC 11
>>> (http://www.mintppc.org/content/list-macs) a try, but the netinstall
>>> iso simply fails in installing a boot loader that conserves the
>>> original OS/X partition even after many tries and workarounds.
>
> this also helps to boot 
>
> http://www.rodsbooks.com/refind/

rEFInd will work on EFI-based Macs, but not on old PPC Macs, which are
based on OpenFirmware (so grub won't work either).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] linux on a PPC (mac mini)

[Keith Keller]

On 2015-09-15, wwp  wrote:
>
> Searching the web, I see very few possibilities to install a recent (I
> need gnome2) GNU/Linux distro on such hardware. I gave Linux MintPPC 11
> (http://www.mintppc.org/content/list-macs) a try, but the netinstall
> iso simply fails in installing a boot loader that conserves the
> original OS/X partition even after many tries and workarounds.

You might try Ubuntu or Debian.  Keep in mind that Macs present their
own challenge beyond just a different architecture; they had a funky
implementation of Open Firmware that was a major PITA to configure
properly.  The Mac OF bootloader, yaboot, is pretty much abandonware at
this point as well.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 7 on older macbook pro

[Keith Keller]

On 2015-09-14, Johnny Hughes  wrote:
>
> I think xfce is part of EPEL .. I use MATE from EPEL and there is also
> Cinnamon there.

I believe you're right about xfce.  I'm so out of it I hadn't even heard
of MATE or Cinnamon.  :)  They seem more like DEs, what are folks using
as straight window managers?

I showed my son, who's only really used OS X, focus follows mouse and
autoraise.  He was not as impressed as I was hoping.  ;-)

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] centos 7 on older macbook pro

[Keith Keller]

Hi all,

I recently got a brand new MacBook Pro, replacing one that is over 5.5
years old.  I'm trying to think of something to do with the old laptop,
and one idea I had was to put CentOS on it.  After some initial
struggles, I finally found this page, which tells how to tell the
installer to find hfsplus-utils:

https://bugs.centos.org/view.php?id=7327

Then I got to the point of configuring wifi, and of course being a MBP,
it has a proprietary Broadcom interface.  I followed the instructions on
the wiki (https://wiki.centos.org/HowTos/Laptops/Wireless/Broadcom), but
had some trouble with it coming back up after a sleep.  That plus some
other issues (it ran hot just running a browser, for example) are making
me question whether this is a good idea.

Does anyone else run a CentOS (not necessarily 7) on Apple hardware,
particularly laptops (and not in a VM)?  If so, any pointers on making
life easier?  TBH I don't really know exactly what I want to use it for
yet, so suggestions there would be helpful too.

--keith



-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 7 on older macbook pro

[Keith Keller]

On 2015-09-14, Hal Wigoda wrote:
> Use Oracles VM VirtualBox.

Well, I explicitly don't want to do that, since it uses even more
resources than OS X by itself.  Having linux run on the bare metal
without OS X should be much more efficient.

> On Sun, Sep 13, 2015 at 9:33 PM, Keith Keller wrote:
>> Then I got to the point of configuring wifi, and of course being a MBP,
>> it has a proprietary Broadcom interface.  I followed the instructions on
>> the wiki (https://wiki.centos.org/HowTos/Laptops/Wireless/Broadcom), but
>> had some trouble with it coming back up after a sleep.  That plus some
>> other issues (it ran hot just running a browser, for example) are making
>> me question whether this is a good idea.

As sometimes happens, I wrote too soon.  I think the wifi issue may have
been a misconfiguration on my part, and so far Firefox has been fine.
It could have been a transient issue that I unintentionally resolved.

I was really surprised to see that streaming video and audio worked
without having to do anything.  And even KDE has not been too much of a
dog so far, though I'm still thinking to install something like fluxbox
or blackbox.  I actually haven't had a linux desktop in a long time so
I'm very much out of practice.

So far, after the first hiccups, CentOS 7 has been much faster on the
old MBP than OS X is.  I'm optimistic that I can find a use for it, even
if it's just having a laptop I can use if my family wants the new MBP.

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] setting up solr/tomcat gives 404 page

[Keith Keller]

On 2015-09-09, Tim Dunphy  wrote:
> Hey all,
>
>  I tried following a few guides and I'm struggling with trying to setup
> apache solr 4.10 under apache tomcat 7.0.64 along with the drupal config
> necessary to get that this working with drupal.
>
> The latest guide I followed was this one which seemed like it might work:
>
> http://duntuk.com/how-install-apache-solr-46-apache-tomcat-7-use-drupal

Since few of these pieces of software actually come with CentOS, you're
much more likely to get help from a forum specifically dedicated to it.
I believe Solr has mailing lists available (as well as web-based forums).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Oracle java RPM

[Keith Keller]

On 2015-09-04, Kanwar Ranbir Sandhu  wrote:
>
> Years ago the recommended way to install Sun's java was to install from
> the tar.gz file because the RPM they supplied did some bad things
> (clobbered other files or something...can't remember the details). Is
> this still the case with Oracle's java RPM, or is it now safe to
> install?

I've been using the Oracle RPMs.  From what I can tell they restrict
their writes to /usr/java (plus making symlinks in /usr/bin).

--keith


-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] fsck mdraid root partition

[Keith Keller]

Apologies for the late reply; I only just saw this message today.

On 2015-08-17, Bowie Bailey bowie_bai...@buc.com wrote:
 It shows as /dev/md/2, while it is called /dev/md2 if I boot into the OS.

It's possible that one is a symlink to the other.  IIRC the /dev/md2
naming style is somewhat deprecated.  If you can boot off of the current
/, you can check for sure.

 mdadm --assemble --scan /dev/md/2

 I assume it will assemble it.  Is it going to cause and problems 
 assembling it under a different name in order to run the fsck?

If it assembles, then it shouldn't cause any problems once you reboot.
Running fsck against the /dev/md/2 device should be fine.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] xfs question

[Keith Keller]

On 2015-08-05, James A. Peltier jpelt...@sfu.ca wrote:

 This is not at all our findings on large file systems or filesystems with 
 large numbers of inodes.  We in fact on many occasions ran into such 
 problems.  To the OP, if you're 64-bit everywhere there's no problems so 
 enjoy the benefits of XFS ;)

I too have seen this issue, in both NFS configurations (exporting the
root or exporting subdirectories using fsid).  We only have one 32bit
NFS client left, so I simply tell people not to use it (the work it does
is mostly on local filesystems).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] New controller card issues

[Keith Keller]

On 2015-05-28, Valeri Galtsev galt...@kicp.uchicago.edu wrote:

 I do use both LSI and 3ware.

Both are now owned by Avago.  (Not sure when that happened, last I
looked LSI was its own company.)

 For me big advantage of 3ware is transparent
 interface. By which I mean web interface. There is command line interface
 for both and 3ware command line interface may be less confusing for me.

I find the 3ware CLI a little clunky but easy to understand.  I find the
LSI CLIs (both MegaCLI and storcli) incredibly confusing, and the GUI
interface is not intuitive (and I think doesn't expose all the
information about the controller; the Nagios LSI plugin found errors
that I could find no trace of in the GUI).

 Sorry for long comment. I did feel 3ware deserves more respect than one
 might draw from this thread otherwise.

Agreed; I'll share some of my experiences in another post.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] New controller card issues

[Keith Keller]

On 2015-05-28, Valeri Galtsev galt...@kicp.uchicago.edu wrote:

 Now, seriously: of more than a couple of dozens of cards I used during
 last about 13 years not a single one died on me.

I have had a couple dozen hardware RAID controllers over the years.  I
have not had the success you've had, but I've had very few hard
failures.  I have had one data loss event, where a bad BBU was causing
problems with an old controller (of course I had backups, as should
everyone).  I've had two other controllers just die, but replacing it
was easy, and the new controller recognized the arrays immediately.
This includes moving two different disk arrays from two different 9650s
to two different 9750s, so whoever wrote that arrays are not compatible
across different models is at least partly incorrect.

I do also have an LSI controller, which has been fine, but it's only one
controller so it's not enough data points to draw any conclusions.  I also
have an md RAID array (on a very old 3ware controller which doesn't
support RAID6), and it's also been fine.  It hasn't suffered through any
major catastrophes, though I do think it's had one or two fatal kernel
panics, and once or twice had a hard reset done.  It's still fine even
with a small number of really crappy green drives still in the array
(I learned that lesson the hard way--don't use green drives with a hardware
RAID controller!).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Backup PC or other solution

[Keith Keller]

On 2015-05-06, Valeri Galtsev galt...@kicp.uchicago.edu wrote:

 This sounds like Apple borrowed your idea for their time machine (I bet
 you are doing it for much-much linger than Apple time machine exists)!

rsnapshot has been using rsync with hard links for ages.

http://rsnapshot.org/

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] filesystem corruption?

[Keith Keller]

On 2015-04-07, Valeri Galtsev galt...@kicp.uchicago.edu wrote:

 before even running fsck or badblocks (BTW, badblocks has
 non-destructive mode) - too late to mention now. You may need this image
 for future forensics.

e2fsck -c will run badblocks in read-only mode, so it may not be too
late.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] xfs fsck error metadata corruption

[Keith Keller]

On 2015-03-23, Stephen Drotar step...@artifex360.com wrote:

 Can CENTOS be used with ext3 or ext4 partitioning?

Yes (as someone else said, they're filesystem types, not partition
types), but if there is a hardware issue, as John noted, ext3 or ext4
won't solve the problem.  xfs is usually fairly solid, so it is very
unlikely that the filesystem type is a problem.

You should probably run memtest86+ for at least 24 hours to see if
that's an issue.  If that doesn't find anything, you should probably
investigate your storage system (as John also mentioned, hard drives and
drive controller would both be suspects).

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] xfs fsck error metadata corruption

[Keith Keller]

On 2015-03-23, Chris Murphy li...@colorremedies.com wrote:

 For future reference -L is a big hammer. If you use it without
 explicitly attempting a read-write mount (which a read only mount at
 boot time will not do because it's an ro mount by default)

...for the root filesystem, anyway.  For nonroot filesystems it should
use whatever flags are set in fstab.  (Granted many boxes likely have /
as the only on-disk fs.)

--keith



-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Centos 7.0 and mismatched swap file

[Keith Keller]

On 2015-02-15, Gregory P. Ennis po...@pomec.net wrote:

 I am putting together a new mail server for our firm using a SuperMicro
 with Centos 7.0.  When performed the install of the os, I put 16 gigs of
 memory in the wrong slots on the mother board which caused the
 SuperMicro to recognize 8 gigs instead of 16 gigs.  When I installed
 Centos 7.0, this error made the swap file 8070 megs instead of what I
 would have expected to be a over 16000 megs.

You lucked out, honestly.  You really don't want 8GB of swap on your
system.  What will most likely happen is that you'll have a process that
starts running away eating memory, and it'll try to use all of that swap
before the kernel's OOM killer can kick in.  You will not enjoy
thrashing 8GB of swap for probably hours.

Really what you should do is drastically reduce the amount of swap you
have allocated, and reclaim most of that 8GB of swap space for storage
filesystems.  In my experience, a few hundred MB of swap is more than
sufficient to be able to swap out seldom-used memory while not taking
too long to OOM.  If you really find a need for more swap later, you can
allocate a swap file; it's slightly less efficient than a swap
partition, but compared to real memory the difference will be
negligible.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Another Fedora decision

[Keith Keller]

On 2015-02-10, Always Learning cen...@u64.u22.net wrote:

 My decisions are based on what I know. Those decisions can be called
 informed decisions.

Calling them informed decisions doesn't automatically make them
informed decisions.

--keith

-- 
kkel...@wombat.san-francisco.ca.us


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos