Re: [CentOS] resetting a serial port
the system I am connected to over the serial uart is one of my major servers and I REALLY dislike rebooting it. On 12/13/23 23:21, Fred wrote: have never used usb-to-serial devices, so I'm probably wrong here... wondering if, on the system where you work, have you tried using the reset or tset command? otherwise, though *being a Linux user I hate to suggest this*, but have you tried the "universal-fix-all-problems" technique that Windows users learn early on, i.e., reboot one or both systems? rebooting one of the systems then trying to connect may tell you which system is wedged. maybe. Good luck! Fred On Wed, Dec 13, 2023 at 8:46 PM Robert Moskowitz wrote: I have Centos 7 arm32 running on a Cubieboard and I am logged in as root on its serial uart from another system. On that system I use screen /dev/ttyUSB0 115200 Well it was working well for a couple days, but now only garbage comes across. Something messed up the serial link. pulling the usb cable to the usb/serial adapter does not reset things. I can ssh into the server and see root logged into ttyS0 How do I reset that serial port so that I can work on the system? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] resetting a serial port
How do I kill the shell session on ttyS0? ls did nothing. nor stty sane but I think I saw all those characters echoed back. On 12/14/23 00:04, Jon LaBadie wrote: On Wed, Dec 13, 2023 at 08:45:31PM -0500, Robert Moskowitz wrote: I have Centos 7 arm32 running on a Cubieboard and I am logged in as root on its serial uart from another system. On that system I use screen /dev/ttyUSB0 115200 Well it was working well for a couple days, but now only garbage comes across. Something messed up the serial link. pulling the usb cable to the usb/serial adapter does not reset things. I can ssh into the server and see root logged into ttyS0 How do I reset that serial port so that I can work on the system? thanks Channeling old memories of serial communications :(( Sounds like you are still connected. One way to tell is to pretend things are working even if you only see garbage. For example, if you press several times, do you get the same garbage each time (likely the shell prompt coming back to you). If after an Enter and return garbage you type ls is the garbage different, probably larger, and likely ending with the same garbage as a solo (the prompt) Then try to reset your stty communication settings by carefully typing stty sane Don't try to correct typo's, just hit enter and start again. Should that not work, ssh back in and kill the shell session on ttyS0. Typically the communication settings are returned to a default set by a program called getty which then exec's into the login program. Good luck. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] resetting a serial port
I have Centos 7 arm32 running on a Cubieboard and I am logged in as root on its serial uart from another system. On that system I use screen /dev/ttyUSB0 115200 Well it was working well for a couple days, but now only garbage comes across. Something messed up the serial link. pulling the usb cable to the usb/serial adapter does not reset things. I can ssh into the server and see root logged into ttyS0 How do I reset that serial port so that I can work on the system? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrading system from non-RAID to RAID1
On 1/11/23 02:09, Simon Matter wrote: I plan to upgrade an existing C7 computer which currently has one 256 GB SSD to use mdadmin software RAID1 after adding two 4 TB M2. SSDs, the rest of the system remaining the same. The system also has one additional internal and one external harddisk but these should not be touched. The system will continue to run C7. trimming - I do not see any benefit to breaking up the LVM2/LUKS partition containing /root, /swap and /home into more than one RAID1 partition or am I wrong? If the SSD fails, the entire SSD would fail and break the system, hence I might as well keep it as one single RAID1 partition, or? What I usually do is this: "cut" the large disk into several pieces of equal size and create individual RAID1 arrays. Then add them as LVM PVs to one large VG. The advantage is that with one error on one disk, you wont lose redundancy on the whole RAID mirror but only on a partial segment. You can even lose another segment with an error on the other disk and still have redundancy if the error is in another part. That said, it's a bit more work to setup but has helped me several times in the decades ago. Ah, now I begin to get it. Separate partitions RAIDed. - Is the next step after the RAID1 partitioning above then to do a minimal install of C7 followed by using clonezilla to restoring the LVM2/LUKS partition?? - Any advice on using clonezilla? Or the external partitioning tool? - Finally, since these new SSDs are huge, perhaps I should take the opportunity to increase the space for both /root and /swap? - /root is 50 GB - should I increase it to eg 100 GB? - The system currently has 32 GB of memory but I will likely upgrade it to 64 GB (or even 128 GB), perhaps I should at this time already increase the /swap space to 64 GB/128 GB? I'm also interested here to learn what others are doing in higher memory situations. I have some systems with half a TB memory and never configured more than 16GB of swap. I has usually worked well and when a system started to use swap heavily, there was something really wrong in an application and had to be fixed there. Additionally we've tuned the kernel VM settings so that it didn't want to swap too much. Because swapping was always slow anyway even on fast U.2 NVME SSD storage. Perhaps you have not dealt with Firefox? :) On my Fedora 35 notebook, it slowly gobbles memory and I have to quit it after some number of days and restart. Now I only have 16GB of memory, 16GB physical swap, and 8GB zram swap. Building a F37 system now and see how that works, I doubt there is any improved behavior with Firefox. Regards, Simon ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RAID1 setup
On 1/10/23 20:20, Robert Moskowitz wrote: Official drives should be here Friday, so trying to get reading. On 1/9/23 01:32, Simon Matter wrote: Hi Continuing this thread, and focusing on RAID1. I got an HPE Proliant gen10+ that has hardware RAID support. (can turn it off if I want). What exact model of RAID controller is this? If it's a S100i SR Gen10 then it's not hardware RAID at all. Yes, I found the information: HPE Smart Array Gen10 Controllers Data Sheet. Software RAID · HPE Smart Array S100i SR Gen10 Software RAID Notes: - HPE Smart Array S100i SR Gen10 SW RAID will operate in UEFI mode only. For legacy support an additional controller will be needed - The S100i only supports Windows. For Linux users, HPE offers a solution that uses in-distro open-source software to create a two-disk RAID 1 boot volume. For more information visit: https://downloads.linux.hpe.com/SDR/project/lsrrb/ I have yet to look at this url. This guide seems to answer MOST of my questions. I am planning two groupings of RAID1 (it has 4 bays). There is also an internal USB boot port. So I am really a newbie in working with RAID. From this thread it sounds like I want /boot and /boot/efi on that USBVV boot device. I suggest to use the USB device only to bot the installation medium, not use it for anything used by the OS. Will it work to put / on the first RAID group? What happens if the 1st drive fails and it is replaced with a new blank drive. Will the config in /boot figure this out or does the RAID hardware completely mask the 2 drives and the system runs on the good one while the new one is being replicated? I am trying to grok what you are saying here. is MD0-4 the physical disks or partitions? I see from your response to another poster you ARE talking about RAID on individual partitions. So I can better think about your approach now. thanks All the drives I am getting are 4TB, as that is the smallest Enterprise quality HD I could find! Quite overkill for me, $75 each. I guess the best thing would be to use Linux Software RAID and create a small RAID1 (MD0) device for /boot and another one for /boot/efi (MD1), Here is sounds like MD0 and MD1 are partitions, not physical drives? both in the beginning of disk 0 and 1 (MD2). The remaining space on disk 0 and 1 are created as another MD device. Disk 2 and 3 are also created as one RAID1 (MD3) device. Formatting can be done like this MD0 has filesystem for /boot MD1 has filesystem for /boot/efi MD2 is used as LVM PV MD3 is used as LVM PV Now it really seems like MDn are partitions with MD0-3 on disks 1&2 and MD3 on disks 3&4? All other filesystems like / or /var or /home... will be created on LVM Logical Volumes to give you full flexibility to manage storage. Given using iRedMail which puts all mail store under /var/vmail, /var goes on disks 3&4. /home will be little stuff. iRedMail components put their configs and data (like domain and user sql database) all over the places. Disks 1&2 will be basically empty. Wish I could have found high quality 1TB drives for less... thanks Regards, Simon I also don't see how to build that boot USB stick. I will have the install ISO in the boot USB port and the 4 drives set up with hardware RAID. How are things figure out? I am missing some important piece here. Oh, HP does list Redhat support for this unit. thanks for all help. Bob On 1/6/23 11:45, Chris Adams wrote: Once upon a time, Simon Matter said: Are you sure that's still true? I've done it that way in the past but it seems at least with EL8 you can put /boot/efi on md raid1 with metadata format 1.0. That way the EFI firmware will see it as two independent FAT filesystems. Only thing you have to be sure is that nothing ever writes to these filesystems when Linux is not running, otherwise your /boot/efi md raid will become corrupt. Can someone who has this running confirm that it works? Yes, that's even how RHEL/Fedora set it up currently I believe. But like you say, it only works as long as there's no other OS on the system and the UEFI firmware itself is never used to change anything on the FS. It's not entirely clear that most UEFI firmwares would handle a drive failure correctly either (since it's outside the scope of UEFI), so IIRC there's been some consideration in Fedora of dropping this support. And... I'm not sure if GRUB2 handles RAID 1 /boot fully correctly, for things where it writes to the FS (grubenv updates for "savedefault" for example). But, there's other issues with GRUB2's FS handling anyway, so this case is probably far down the list. I think that having RAID 1 for /boot and/or /boot/efi can be helpful (and I've set it up, definitely not saying "don't do that"), but has to be handled with care and possibly (probably?) would need manual intervention to get
Re: [CentOS] RAID1 setup
Official drives should be here Friday, so trying to get reading. On 1/9/23 01:32, Simon Matter wrote: Hi Continuing this thread, and focusing on RAID1. I got an HPE Proliant gen10+ that has hardware RAID support. (can turn it off if I want). What exact model of RAID controller is this? If it's a S100i SR Gen10 then it's not hardware RAID at all. Yes, I found the information: HPE Smart Array Gen10 Controllers Data Sheet. Software RAID · HPE Smart Array S100i SR Gen10 Software RAID Notes: - HPE Smart Array S100i SR Gen10 SW RAID will operate in UEFI mode only. For legacy support an additional controller will be needed - The S100i only supports Windows. For Linux users, HPE offers a solution that uses in-distro open-source software to create a two-disk RAID 1 boot volume. For more information visit: https://downloads.linux.hpe.com/SDR/project/lsrrb/ I have yet to look at this url. I am planning two groupings of RAID1 (it has 4 bays). There is also an internal USB boot port. So I am really a newbie in working with RAID. From this thread it sounds like I want /boot and /boot/efi on that USBVV boot device. I suggest to use the USB device only to bot the installation medium, not use it for anything used by the OS. Will it work to put / on the first RAID group? What happens if the 1st drive fails and it is replaced with a new blank drive. Will the config in /boot figure this out or does the RAID hardware completely mask the 2 drives and the system runs on the good one while the new one is being replicated? I am trying to grok what you are saying here. is MD0-4 the physical disks or partitions? All the drives I am getting are 4TB, as that is the smallest Enterprise quality HD I could find! Quite overkill for me, $75 each. I guess the best thing would be to use Linux Software RAID and create a small RAID1 (MD0) device for /boot and another one for /boot/efi (MD1), Here is sounds like MD0 and MD1 are partitions, not physical drives? both in the beginning of disk 0 and 1 (MD2). The remaining space on disk 0 and 1 are created as another MD device. Disk 2 and 3 are also created as one RAID1 (MD3) device. Formatting can be done like this MD0 has filesystem for /boot MD1 has filesystem for /boot/efi MD2 is used as LVM PV MD3 is used as LVM PV Now it really seems like MDn are partitions with MD0-3 on disks 1&2 and MD3 on disks 3&4? All other filesystems like / or /var or /home... will be created on LVM Logical Volumes to give you full flexibility to manage storage. Given using iRedMail which puts all mail store under /var/vmail, /var goes on disks 3&4. /home will be little stuff. iRedMail components put their configs and data (like domain and user sql database) all over the places. Disks 1&2 will be basically empty. Wish I could have found high quality 1TB drives for less... thanks Regards, Simon I also don't see how to build that boot USB stick. I will have the install ISO in the boot USB port and the 4 drives set up with hardware RAID. How are things figure out? I am missing some important piece here. Oh, HP does list Redhat support for this unit. thanks for all help. Bob On 1/6/23 11:45, Chris Adams wrote: Once upon a time, Simon Matter said: Are you sure that's still true? I've done it that way in the past but it seems at least with EL8 you can put /boot/efi on md raid1 with metadata format 1.0. That way the EFI firmware will see it as two independent FAT filesystems. Only thing you have to be sure is that nothing ever writes to these filesystems when Linux is not running, otherwise your /boot/efi md raid will become corrupt. Can someone who has this running confirm that it works? Yes, that's even how RHEL/Fedora set it up currently I believe. But like you say, it only works as long as there's no other OS on the system and the UEFI firmware itself is never used to change anything on the FS. It's not entirely clear that most UEFI firmwares would handle a drive failure correctly either (since it's outside the scope of UEFI), so IIRC there's been some consideration in Fedora of dropping this support. And... I'm not sure if GRUB2 handles RAID 1 /boot fully correctly, for things where it writes to the FS (grubenv updates for "savedefault" for example). But, there's other issues with GRUB2's FS handling anyway, so this case is probably far down the list. I think that having RAID 1 for /boot and/or /boot/efi can be helpful (and I've set it up, definitely not saying "don't do that"), but has to be handled with care and possibly (probably?) would need manual intervention to get booting again after a drive failure or replacement. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org
Re: [CentOS] Help with an HP Proliant gen10 plus?
On 1/9/23 01:37, Simon Matter wrote: Just starting and trying to boot off the SPP firmware update ISO image on a USB stick. I made the stick with: # mkfs.vfat /dev/sdb Why create an MS-DOS filesystem on the stick which gets immediately overwritten in the next step? I think the idea is to get that first 4MB set up for booting, as the dd skips that space. # dd bs=4M if=P52581_001_gen10spp-2022.09.01.00-SPP2022090100.2022_0930.1.iso of=/dev/sdb status=progress Is this what HPE says how to create the stick? If yes then you may ask HPE how to get it to work. HP gives no instructions. At least I can't find it on the support pages. I do have a support account. You should just 'know' how to build a bootable device from a 9GB iso image. The usb drive is 16GB and the iso is 9GB. seem to boot from it and go into auto install of firmware then died with starting initrd... warning!!! Unable to mount the file system [cdrom] warning!!! Unable to mount the file system Preboot maintence mode /bin/ash: can't access tty: job control turned off and at # prompt. There is no cdrom on the gen10 plus. Only in internal bootable usb port. That's usually fine because the cdrom can be mounted as loop device. No need for a real cdrom. Yeah. Going to work on it some more today. Plus got a finish a paper for a symposium. I give up on learning tex; I found a word template that can create the right pdf, so pull out all my writing in tex and start over. And I DO use the IETF's xml format for creating Internet Drafts, so I am teachable on this stuff despite my age... I do vaguely recall working with tex for writing back around '78, but that was it. Regards, Simon ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Help with an HP Proliant gen10 plus?
Just starting and trying to boot off the SPP firmware update ISO image on a USB stick. I made the stick with: # mkfs.vfat /dev/sdb # dd bs=4M if=P52581_001_gen10spp-2022.09.01.00-SPP2022090100.2022_0930.1.iso of=/dev/sdb status=progress The usb drive is 16GB and the iso is 9GB. seem to boot from it and go into auto install of firmware then died with starting initrd... warning!!! Unable to mount the file system [cdrom] warning!!! Unable to mount the file system Preboot maintence mode /bin/ash: can't access tty: job control turned off and at # prompt. There is no cdrom on the gen10 plus. Only in internal bootable usb port. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] RAID1 setup
Continuing this thread, and focusing on RAID1. I got an HPE Proliant gen10+ that has hardware RAID support. (can turn it off if I want). I am planning two groupings of RAID1 (it has 4 bays). There is also an internal USB boot port. So I am really a newbie in working with RAID. From this thread it sounds like I want /boot and /boot/efi on that USBVV boot device. Will it work to put / on the first RAID group? What happens if the 1st drive fails and it is replaced with a new blank drive. Will the config in /boot figure this out or does the RAID hardware completely mask the 2 drives and the system runs on the good one while the new one is being replicated? I also don't see how to build that boot USB stick. I will have the install ISO in the boot USB port and the 4 drives set up with hardware RAID. How are things figure out? I am missing some important piece here. Oh, HP does list Redhat support for this unit. thanks for all help. Bob On 1/6/23 11:45, Chris Adams wrote: Once upon a time, Simon Matter said: Are you sure that's still true? I've done it that way in the past but it seems at least with EL8 you can put /boot/efi on md raid1 with metadata format 1.0. That way the EFI firmware will see it as two independent FAT filesystems. Only thing you have to be sure is that nothing ever writes to these filesystems when Linux is not running, otherwise your /boot/efi md raid will become corrupt. Can someone who has this running confirm that it works? Yes, that's even how RHEL/Fedora set it up currently I believe. But like you say, it only works as long as there's no other OS on the system and the UEFI firmware itself is never used to change anything on the FS. It's not entirely clear that most UEFI firmwares would handle a drive failure correctly either (since it's outside the scope of UEFI), so IIRC there's been some consideration in Fedora of dropping this support. And... I'm not sure if GRUB2 handles RAID 1 /boot fully correctly, for things where it writes to the FS (grubenv updates for "savedefault" for example). But, there's other issues with GRUB2's FS handling anyway, so this case is probably far down the list. I think that having RAID 1 for /boot and/or /boot/efi can be helpful (and I've set it up, definitely not saying "don't do that"), but has to be handled with care and possibly (probably?) would need manual intervention to get booting again after a drive failure or replacement. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
Well I just ordered a Proliant gen10+ microserver, as the gen10 of for 1/2 the price was the $0.59 hamburger (we ad it, but you can't order it). I also ordered 4 Seagate 4T terascale drives (seems nothing smaller around). So in some 2 weeks I will have it all together and will see what happens when I do the install. :) Supposedly there is an internal boot usb port in the gen10+ On 1/6/23 09:42, Robert Heller wrote: At Fri, 6 Jan 2023 08:39:22 +0100 CentOS mailing list wrote: Hi I have found a: HPE 873830-S01 ProLiant MicroServer Gen10 for <$300 without drives. If I can believe the seller, it has a AMD Opteron X3216 Dual-core (2 Core) 1.6GHz and 8GB Installed. It has 4 3.5" bays. and 1? "Media" bay? https://www.servertechsupply.com/873830-s01/ this could well be acceptable. Got to find out power draw. Looks like ~40W. Any input on issues of OS install? Do I go with separate OS and data RAID1 sets? I usually do [ 1(+n) RAID1 ]->[ LVM ]->[ XFS ] then you can use LVM to manage different filesystems as required. /boot and/or /boot/efi should be on its own RAID1 with old metadata version but I'm not up to date about how the situation is exactly with EL9. It depends on the version of Grub. Grub V1 needs /boot to be RAID1 with old metadata (metadata at the *end* of the partition, so Grub just sees a plain ext2/3/4 file system to find vmlinuz and initrd). Note: /boot/efi or the grub fs that Grub2 seems to want cannot be RAID, but you should duplicate the partitions across all of the physical disks in the raid set and arange some other way of "mirroring" them (eg rsync or some such -- does not need to be continious, since these file systems don't change continuiously). I believe Grub V2 understands raid and LVM, so having a separate /boot raid set might not be needed. Things like /boot/efi and grub's on fs still need to exist outside of the raid set and will need "manual" mirroring. Simon Also HPE is ClearOS. I ran ClearOS6 for years before going with QNAP turnkey. Perhaps current ClearOS is better, but it does not handle multi-domain email as I need. Or it did not. So I am going to install my own CentOS variant and iRedMail... thanks On 1/5/23 13:08, Jon LaBadie wrote: On Thu, Jan 05, 2023 at 08:18:08AM -0500, Robert Moskowitz wrote: Proliant gen8 does NOT have UEFI. So I think this means I better move up to the gen10... I'm pleased with my Gen 10+ (Plus). Pricer than I thought you want. I like the "no power supply", just an external brick. Quiet. I put in a PCI card to use 2 NVMe sticks, one for system and one for /home. You can also boot from an internal usb port like a thumb drive permanently installed. Carriers for 2.5inch SSD drives work fine so with few fans, no drive motors, could be quite low power. Mine acts as email server, local caching DNS server (dnsmasq) and Amanda backup server. Jon ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
I have found a: HPE 873830-S01 ProLiant MicroServer Gen10 for <$300 without drives. If I can believe the seller, it has a AMD Opteron X3216 Dual-core (2 Core) 1.6GHz and 8GB Installed. It has 4 3.5" bays. and 1? "Media" bay? https://www.servertechsupply.com/873830-s01/ this could well be acceptable. Got to find out power draw. Looks like ~40W. Any input on issues of OS install? Do I go with separate OS and data RAID1 sets? Also HPE is ClearOS. I ran ClearOS6 for years before going with QNAP turnkey. Perhaps current ClearOS is better, but it does not handle multi-domain email as I need. Or it did not. So I am going to install my own CentOS variant and iRedMail... thanks On 1/5/23 13:08, Jon LaBadie wrote: On Thu, Jan 05, 2023 at 08:18:08AM -0500, Robert Moskowitz wrote: Proliant gen8 does NOT have UEFI. So I think this means I better move up to the gen10... I'm pleased with my Gen 10+ (Plus). Pricer than I thought you want. I like the "no power supply", just an external brick. Quiet. I put in a PCI card to use 2 NVMe sticks, one for system and one for /home. You can also boot from an internal usb port like a thumb drive permanently installed. Carriers for 2.5inch SSD drives work fine so with few fans, no drive motors, could be quite low power. Mine acts as email server, local caching DNS server (dnsmasq) and Amanda backup server. Jon ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
Proliant gen8 does NOT have UEFI. So I think this means I better move up to the gen10... On 1/4/23 09:44, Robert Moskowitz wrote: After a lot of hours searching, here is what I am coming to 3.5" 2-bay standard built just does not exist these days. Pretty much everything is at least 4-bay. the HP Proliant gen8 looks like a good deal, and only use 2 bays. Some models have RAID1. 9x9x10 case, not too bad. The 1U setups end up being more as they expect them to be used for big servers. Or I head over to Microcenter tomorrow (have to go anyway for a few items, 8mi away) and see what we can build. They have a few 2-bay boxes. One "enticing" aspect of the gen8 is one pair of drives, 1Gb, for the OS and another pair for the mail. On 1/3/23 17:42, Robert Heller wrote: Just search for a 2-disk 1U x86_64 (Intel or AMD) system that has room for 2 SATA drives (probably a pair 2.5" SSDs). Don't bother to search for RAID. Probably something like these: https://duckduckgo.com/?t=ffsb=1u+server+=shopping=shopping At Tue, 3 Jan 2023 17:22:13 -0500 Robert Moskowitz wrote: And I am just coming up empty on my searches. My search foo has been really off, it seems. On 1/3/23 17:13, Robert Heller wrote: At Tue, 3 Jan 2023 16:55:40 -0500 Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing)    Can be software or hardware All modern Linux kernels include software RAID out-of-the-box. This means any system that supports more than one disk that you can install Linux on (including CentOS) can be set up with Linux software RAID. If you want hot-swap, there are various SATA hot-swap units than can be mounted in a ATX case with front 5" or 3" spaces. A modern ATX motherboard with a AHA SATA controller will support Linux, including hot-swap SATA disks, including SATA connected SSDs. small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
I have a few hardkernels and I was the one that got Centos-arm working on them and booting completely off the HD. Problem comes back to it is ARM. I have their Odroid HC4 for doing RAID, but could not get any Linux but theirs installed. It is sitting on my desk, unused. And as I mentioned, iRedMail does not support ARM. So I am looking for something x64ish. thanks On 1/4/23 13:47, Michael Schumacher wrote: Hi Robert, my old home server needed to much energy (~80VA) permanently, so I went for an https://www.hardkernel.com/shop/odroid-h3-plus/ The manufacturer is located in Korea and has dealers around the world. Put it in one of their cases https://www.hardkernel.com/shop/odroid-h3-case-type-1/ add two drives and you will have a system that consumes less than 20VA under load, less than 15VA idle. My new system is just doing its job, the whole thing will be below 250USD excluding drives. Michael Tuesday, January 3, 2023, 10:55:40 PM, schriebst Du: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing) Can be software or hardware small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
After a lot of hours searching, here is what I am coming to 3.5" 2-bay standard built just does not exist these days. Pretty much everything is at least 4-bay. the HP Proliant gen8 looks like a good deal, and only use 2 bays. Some models have RAID1. 9x9x10 case, not too bad. The 1U setups end up being more as they expect them to be used for big servers. Or I head over to Microcenter tomorrow (have to go anyway for a few items, 8mi away) and see what we can build. They have a few 2-bay boxes. One "enticing" aspect of the gen8 is one pair of drives, 1Gb, for the OS and another pair for the mail. On 1/3/23 17:42, Robert Heller wrote: Just search for a 2-disk 1U x86_64 (Intel or AMD) system that has room for 2 SATA drives (probably a pair 2.5" SSDs). Don't bother to search for RAID. Probably something like these: https://duckduckgo.com/?t=ffsb=1u+server+=shopping=shopping At Tue, 3 Jan 2023 17:22:13 -0500 Robert Moskowitz wrote: And I am just coming up empty on my searches. My search foo has been really off, it seems. On 1/3/23 17:13, Robert Heller wrote: At Tue, 3 Jan 2023 16:55:40 -0500 Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing)    Can be software or hardware All modern Linux kernels include software RAID out-of-the-box. This means any system that supports more than one disk that you can install Linux on (including CentOS) can be set up with Linux software RAID. If you want hot-swap, there are various SATA hot-swap units than can be mounted in a ATX case with front 5" or 3" spaces. A modern ATX motherboard with a AHA SATA controller will support Linux, including hot-swap SATA disks, including SATA connected SSDs. small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
I have reached the age where I don't want to put together my own hardware. Plus iRedMail says no support for ARM. I have LOTs of ARM boards here and have been working with them for over 10 years http://medon.htt-consult.com/images/cubietower-3.JPG But I need stuff that someone else can come along and run if needed. thanks On 1/3/23 21:07, Bill Campbell wrote: On Tue, Jan 03, 2023, Robert Moskowitz wrote: Well what I am finding looks like it will be in the +80W range and I am trying to use less electricity. I would put up with 40W, including drives. You might want to consider a Raspberry Pi 4 with 8GB RAM and a case that will support a couple of 2.5in SSD drives. I'm running one here with postfix, courier-imap, clamav, amavisd, ... Mine is in an Argon One case with single 2TB SSD with a PoE Splitter. It's running the same email software that we run on CentOS and AlmaLinux. Current uptime on out main mail server is 362 days. This case has space for 2 2.5in SSD drives. https://smile.amazon.com/Geekworm-Raspberry-Storage-Expansion-Compatible/dp/B07VXF2HJG Geekworm New NASPi Gemini Dual 2.5'' SATA HDD/SSD NAS Storage Kit with DC 6-18V Wide Voltage Input|Safe Shutdown|Auto Power On|RAID Function for Raspberry Pi 4 Model B(Not Include Raspberry Pi) ++ | Part Price | ++ |RPi4B 8GB $215.00 | |Case 70.00 | |2SSD 300.00 | ++ |Total $585.00 | ++ Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 Mercer Island, WA 98040 There has been no greater threat to life, liberty, and property throughout the ages than government. Even the most violent and brutal private individuals have been able to inflict only a mere fraction of the harm and destruction that have been caused by the use of power by political authorities. -- Richard Ebeling ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
OK I am seeing claims that the Proliant Gen8 is 25 - 40W. More digging. On 1/3/23 17:51, Robert Moskowitz wrote: Well what I am finding looks like it will be in the +80W range and I am trying to use less electricity. I would put up with 40W, including drives. ITX board most likely? And will I end up needing 3 drives or does mirroring the OS partition work. On 1/3/23 17:42, Joshua Kramer wrote: Look at HP Microserver line... it's as close as you're going to get. On Tue, Jan 3, 2023, 5:22 PM Robert Moskowitz wrote: And I am just coming up empty on my searches. My search foo has been really off, it seems. On 1/3/23 17:13, Robert Heller wrote: At Tue, 3 Jan 2023 16:55:40 -0500 Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing)    Can be software or hardware All modern Linux kernels include software RAID out-of-the-box. This means any system that supports more than one disk that you can install Linux on (including CentOS) can be set up with Linux software RAID. If you want hot-swap, there are various SATA hot-swap units than can be mounted in a ATX case with front 5" or 3" spaces. A modern ATX motherboard with a AHA SATA controller will support Linux, including hot-swap SATA disks, including SATA connected SSDs. small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
Well what I am finding looks like it will be in the +80W range and I am trying to use less electricity. I would put up with 40W, including drives. ITX board most likely? And will I end up needing 3 drives or does mirroring the OS partition work. On 1/3/23 17:42, Joshua Kramer wrote: Look at HP Microserver line... it's as close as you're going to get. On Tue, Jan 3, 2023, 5:22 PM Robert Moskowitz wrote: And I am just coming up empty on my searches. My search foo has been really off, it seems. On 1/3/23 17:13, Robert Heller wrote: At Tue, 3 Jan 2023 16:55:40 -0500 Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing)    Can be software or hardware All modern Linux kernels include software RAID out-of-the-box. This means any system that supports more than one disk that you can install Linux on (including CentOS) can be set up with Linux software RAID. If you want hot-swap, there are various SATA hot-swap units than can be mounted in a ATX case with front 5" or 3" spaces. A modern ATX motherboard with a AHA SATA controller will support Linux, including hot-swap SATA disks, including SATA connected SSDs. small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
And I am just coming up empty on my searches. My search foo has been really off, it seems. On 1/3/23 17:13, Robert Heller wrote: At Tue, 3 Jan 2023 16:55:40 -0500 Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing)    Can be software or hardware All modern Linux kernels include software RAID out-of-the-box. This means any system that supports more than one disk that you can install Linux on (including CentOS) can be set up with Linux software RAID. If you want hot-swap, there are various SATA hot-swap units than can be mounted in a ATX case with front 5" or 3" spaces. A modern ATX motherboard with a AHA SATA controller will support Linux, including hot-swap SATA disks, including SATA connected SSDs. small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
It will go into my rack cabinet so I COULD do a 1U format. I would prefer something sitting on a shelf in the rack (next to my QNAP NAS) about the size to handle 2 HD and system board. Enough memory for Centos and the mail server software. Perhaps 2Gb is enough? 4Gb nice to have (anti-virus could eat up memory at times?) Oh, has to be Intel not ARM (iRedMail req) I don't need hot swap. I just did a drive replace on my QNAP and it took ~10min to power down and swap drives. Took 10hr to mirror to the new drive. I DO want it all in the box. No external drives. And I don't want to build my own hardware. I want to buy it, install drives, attach boot ISO, and install away. Low power like 40W or less good. This help? On 1/3/23 17:02, Christopher Wensink wrote: It depends on the structure of the drives. Do you want a dedicated controller card or is an embedded card on the motherboard acceptable? Entry Level Dell Poweredge T150 servers could work, or build your own rig with an SLI MegaRAID or HighPoint RocketRAID dedicated controller card. There are configurations like this in a Rackmount configuration, tower configurations, or Mini Server configurations, it all depends on what kind of space / budget / environment it is going in. Reply back with more details if you want a better answer. Chris On 1/3/2023 3:55 PM, Robert Moskowitz wrote: Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing) Can be software or hardware small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Looking for a RAID1 box
Help? I am looking for a box I can drop Centos or one of the spinoffs that: Has RAID1 internal (not an external USB RAID thing) Can be software or hardware small (4TB/drive fine) and low power I plan to use it ONLY for email server. perhaps iRedMail I have spent a lot of time looking and not finding any such piece of metal. All I find are NAS boxes with their own OS. thanks Bob (frustrated) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] BIND server getting DDOS
I just, maybe, figured out why I have been having problems with my CentOS DNS server with BIND 9.11.4. Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.194.4#11205 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.216.196#64956 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 64.68.114.141#39466 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 209.197.198.45#13280 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 114.29.202.117#41955 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:19 onlo named[6155]: client @0xaa3cad80 62.109.204.22#4406 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:49 onlo named[6155]: client @0xa9420720 64.68.104.9#38518 (.): view external: query (cache) './A/IN' denied Aug 2 15:47:50 onlo named[6155]: client @0xaa882dc8 114.29.202.117#9584 (.): view external: query (cache) './A/IN' denied grep -c denied messages 46038 And that is since Jul 31 3am. Anyone have recommendations on how to stop this? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS server app for Centos8
Ah, but Webmin DOES support DNSSEC. I installed it on a Centos-arm7 that I used in the past for DNS testing, and there is the option for enabling DNSSEC. So there is hope in this direction. Don't see much else in the way of tools. Anyone know of anything besides Webmin? thanks On 2/20/22 21:03, Robert Moskowitz wrote: Webmin wiki does not cover DNSSEC... Humpf. On 2/20/22 20:58, Robert Moskowitz wrote: I have been running my DNS server on a Centos7-arm board for some years and it is past time I get up to date. Particularly get DNSSEC working. So I have plenty of cubieboards for running Centos8-arm, but I want to no longer hand configure. I want some help here; getting up in years and all that. I know there is the Webmin tool, but don't know if it supports dnssec. Looking for that in what docs I have found so far. But is there some other tool for this? I would start to import my zone files and then go from there. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS server app for Centos8
Webmin wiki does not cover DNSSEC... Humpf. On 2/20/22 20:58, Robert Moskowitz wrote: I have been running my DNS server on a Centos7-arm board for some years and it is past time I get up to date. Particularly get DNSSEC working. So I have plenty of cubieboards for running Centos8-arm, but I want to no longer hand configure. I want some help here; getting up in years and all that. I know there is the Webmin tool, but don't know if it supports dnssec. Looking for that in what docs I have found so far. But is there some other tool for this? I would start to import my zone files and then go from there. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] DNS server app for Centos8
I have been running my DNS server on a Centos7-arm board for some years and it is past time I get up to date. Particularly get DNSSEC working. So I have plenty of cubieboards for running Centos8-arm, but I want to no longer hand configure. I want some help here; getting up in years and all that. I know there is the Webmin tool, but don't know if it supports dnssec. Looking for that in what docs I have found so far. But is there some other tool for this? I would start to import my zone files and then go from there. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Jamulus for Centos
Is anyone running their own Jamulus server? I have an x86_64 system running Centos7 that I can try bringing it up for my wife. So I better get it right! I have found rpms for 3.4.7.1 at: https://pkgs.org/download/Jamulus But on SourceForge I am seeing source for ver 3.5.10. In blogs I am seeing that the better client is for at least ver 3.5.1. Are there rpms available for some 3.5 version? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cli Checking disk i/o
after hdparm -S 1 The drive is making a lot less sound. I will monitor it. Also have to see if this is permanent or I have to put it in a startup cron task. Thanks On 11/11/19 3:55 PM, Robert Moskowitz wrote: On 11/11/19 10:46 AM, Leon Fauster via CentOS wrote: Am 11.11.19 um 14:28 schrieb Stephen John Smoogen: On Sun, 10 Nov 2019 at 17:12, Robert Moskowitz wrote: I just built a CentOS7 system on a Zotac NANO PC. I used a 320GB 2.5" HD I had sitting around and installed with Standard Partitions on XFS. The drive is spinning, nonstop. I would check the NANO to see if its firmware has any settings or updates which cover this. Then check if the drive has firmware updates needed. Motherboard and drive firmware fixes have been the things I have found to fix most of the problems for drive 'not powering down' problems. I think the last one I remember on IRC was a drive set came up in a mode saying 'I am in fast access mode' or something and so the motherboard kept it spinning up all the time to make sure it could write quickly. Maybe $ hdparm -S helps? Take a look into $ man hdparm It looks like -S 1 sets standby at 5 sec idle. I kind of doubt this will matter, but I am trying it. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cli Checking disk i/o
On 11/11/19 10:46 AM, Leon Fauster via CentOS wrote: Am 11.11.19 um 14:28 schrieb Stephen John Smoogen: On Sun, 10 Nov 2019 at 17:12, Robert Moskowitz wrote: I just built a CentOS7 system on a Zotac NANO PC. I used a 320GB 2.5" HD I had sitting around and installed with Standard Partitions on XFS. The drive is spinning, nonstop. I would check the NANO to see if its firmware has any settings or updates which cover this. Then check if the drive has firmware updates needed. Motherboard and drive firmware fixes have been the things I have found to fix most of the problems for drive 'not powering down' problems. I think the last one I remember on IRC was a drive set came up in a mode saying 'I am in fast access mode' or something and so the motherboard kept it spinning up all the time to make sure it could write quickly. Maybe $ hdparm -S helps? Take a look into $ man hdparm It looks like -S 1 sets standby at 5 sec idle. I kind of doubt this will matter, but I am trying it. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cli Checking disk i/o
On 11/10/19 8:38 PM, Peter wrote: On 11/11/19 1:37 PM, Robert Moskowitz wrote: OK. That is interesting. I am assuming tps is transfers per sec? I would have to get a stop watch, but it seems to go a bit of time, and then a write. Is there something that would accumulate this and give me a summary over some period of time? Of course it better NOT be doing its own IOs... I like iostat -x 4 which will give a summary every four seconds of accumulated stats, but check the man page for all the options you can use. iotop (yum install iotop) may also be helpful as it shows disk usage per process like top does for CPU and memory. basically no i/o, but the drive is spinning like mad. It could be the hardware as on boot I do get the warning it was never tested upstream... I added noatime to fstab and then a 'mount -a' but no difference in behavior. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cli Checking disk i/o
OK. That is interesting. I am assuming tps is transfers per sec? I would have to get a stop watch, but it seems to go a bit of time, and then a write. Is there something that would accumulate this and give me a summary over some period of time? Of course it better NOT be doing its own IOs... On 11/10/19 6:03 PM, shimi wrote: iostat 1 On Mon, 11 Nov 2019, 00:11 Robert Moskowitz, <mailto:r...@htt-consult.com>> wrote: I just built a CentOS7 system on a Zotac NANO PC. I used a 320GB 2.5" HD I had sitting around and installed with Standard Partitions on XFS. The drive is spinning, nonstop. How can I monitor if there is actually disk i/o to warrant this constant spinning. So noatime for all partitions work with XFS? I did some browsing and the claim is XFS uses realtime which is better? than noatime? Perhaps it is just occasional writes to messages (at least 1 a minute) that determines to keep on spinning. But it is annoying. ___ CentOS mailing list CentOS@centos.org <mailto:CentOS@centos.org> https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] cli Checking disk i/o
I just built a CentOS7 system on a Zotac NANO PC. I used a 320GB 2.5" HD I had sitting around and installed with Standard Partitions on XFS. The drive is spinning, nonstop. How can I monitor if there is actually disk i/o to warrant this constant spinning. So noatime for all partitions work with XFS? I did some browsing and the claim is XFS uses realtime which is better? than noatime? Perhaps it is just occasional writes to messages (at least 1 a minute) that determines to keep on spinning. But it is annoying. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: mostly gone
On 8/23/19 2:29 PM, Valeri Galtsev wrote: On 2019-08-23 07:19, Robert Moskowitz wrote: On 8/20/19 9:33 AM, mark wrote: Hi, folks, Well, it's ten years that I've been on this list, right when I started this job. But, it's time to move on... I'm retiring. (Yeah, that old.) I plan on going one more year to hit 70. Working on a contract that should carry me through with some interesting work. So, though I'll be part time for a few months, and running CentOS at home (in spite of my manager's pushing me to do Ubuntu). This list is *so* much more useful than any of the ones I've seen for Ubuntu, or much else. I guess I made the 'right' decision back when CentOS was spun up. In fact it took me until Fedora 6 (I think 6, as I have some old notes about it) came out to switch my notebook off CentOS to Fedora. I'm very much looking forward to C 8. I really need to look at what the pluses are. One more thing: I know I've been over the top on ethics "I work for a US federal contractor, but not saying more", even though there's folks like Todd, who's military. Anyway, now that I'm out, today, my line (in person) was, "I'm with the federal goverment, and I'm here to help you." Then, after they ask if I'll have to kill them, I can say, no: I've been with the NIH, and so, yes, I really meant it. I am working on a subcontract with US gov agency that the work will as be to help. Talks, though have been dragging on, and the agency wants to issue initial rule making all to soon. I'll show up occasionally, but not like I have been. Looking forward to seeing a more laid back Mark around! So long, and thanks for all the fish. And just before global warming cooks them all (problems with Salmon up in Alaska). Global warming was just a misspelling. It was supposed to be something about worms. Ah, you messed up my hook on cook... Valeri Great to hear about the start of new things for you! Bob ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: mostly gone
On 8/20/19 9:33 AM, mark wrote: Hi, folks, Well, it's ten years that I've been on this list, right when I started this job. But, it's time to move on... I'm retiring. (Yeah, that old.) I plan on going one more year to hit 70. Working on a contract that should carry me through with some interesting work. So, though I'll be part time for a few months, and running CentOS at home (in spite of my manager's pushing me to do Ubuntu). This list is *so* much more useful than any of the ones I've seen for Ubuntu, or much else. I guess I made the 'right' decision back when CentOS was spun up. In fact it took me until Fedora 6 (I think 6, as I have some old notes about it) came out to switch my notebook off CentOS to Fedora. I'm very much looking forward to C 8. I really need to look at what the pluses are. One more thing: I know I've been over the top on ethics "I work for a US federal contractor, but not saying more", even though there's folks like Todd, who's military. Anyway, now that I'm out, today, my line (in person) was, "I'm with the federal goverment, and I'm here to help you." Then, after they ask if I'll have to kill them, I can say, no: I've been with the NIH, and so, yes, I really meant it. I am working on a subcontract with US gov agency that the work will as be to help. Talks, though have been dragging on, and the agency wants to issue initial rule making all to soon. I'll show up occasionally, but not like I have been. Looking forward to seeing a more laid back Mark around! So long, and thanks for all the fish. And just before global warming cooks them all (problems with Salmon up in Alaska). Great to hear about the start of new things for you! Bob ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS Amazon Machine Image?
On 8/20/19 7:13 PM, Jon Pruente wrote: On Tue, Aug 20, 2019 at 4:48 PM Robert Moskowitz wrote: Tru, it is getting me closer. Next step is to figure out how to get this image on an EC2 instance. Or whatever it is suppose to be called. AH, I think I have it. The Centos Image is free, but the infrastructure cost is $0.012/hr which means 1 image per free in the free tier. Additional images come out to $9/mo. So if I have this right, I can play around all I want and learn on a single image, but 2nd image will cost. It's an AMI (Amazon Machine Image). You launch a new EC2 instance and in the setup you can search for and choose the CentOS one. It wasn't in the first search page for me, I had to click further into "AWS Marketplace" to find it. AWS bills per hour (though some newer AWS stuff is moving to per-second). In the free tier you get 750 hours of t2.micro run time for free. A typical month is 744 hours. You can split that up however you want. Run 75 instances for 10 hours each? Sure. Run 750 instances for 1 hour each? Sure. AWS billing can get complex, but be aware that you can be charged for run time of your instance(s), additional storage space, bandwidth overages, etc. There isn't much to worry about if you are being reasonable but TANSTAAFL so read through https://aws.amazon.com/free/ and understand what the limitations are. I am attempting to learn AWS to have that in my 'toolbox'. For Centos work I have my armv7 boxen: http://www.htt-consult.com/arm.html But I wanted to see if I could reasonably work with AWS as an alternative. More to learn. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS Amazon Machine Image?
On 8/20/19 4:51 PM, Tru Huynh wrote: On Tue, Aug 20, 2019 at 02:04:29PM -0400, Robert Moskowitz wrote: I am totally new to AWS. There was a posting here ~ a year ago making claims about setting up a CentOS image on AWS. ... Any pointers greatly appreciated. https://www.centos.org/ -> Get CentOS https://www.centos.org/download/ ... Need a Cloud or Container Image? -> Amazon Web Services https://aws.amazon.com/marketplace/seller-profile?id=16cb8b03-256e-4dde-8f34-1b0f377efe89 Does that help ? Tru, it is getting me closer. Next step is to figure out how to get this image on an EC2 instance. Or whatever it is suppose to be called. AH, I think I have it. The Centos Image is free, but the infrastructure cost is $0.012/hr which means 1 image per free in the free tier. Additional images come out to $9/mo. So if I have this right, I can play around all I want and learn on a single image, but 2nd image will cost. Interesting. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS Amazon Machine Image?
I am totally new to AWS. There was a posting here ~ a year ago making claims about setting up a CentOS image on AWS. I have created a free AWS account and am looking at the available images. None are named CentOS. There is a Redhat Enterprise Linux 8 and Amazon's own Linux and SUSE, Ubuntu, but I don't find CentOS. This is a learning endeavor. I was thinking to first set up a BIND slave for my domain. Then move on to a http image, then work with MariaDB. All to see what I can do with AWS that is familiar to what I do on my own servers. Any pointers greatly appreciated. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 8 Artwork needed
On 3/8/19 5:55 AM, J Martin Rushton via CentOS wrote: On 07/03/2019 20:45, Rich Bowen wrote: To all the artists and designers here, we need your help. With RHEL 8 beta released, we need to start producing artwork for CentOS 8. It's time for the CentOS Artwork SIG, and anyone else that's interested in contributing to this effort, to start working on everything that will be needed for the new release. What we know we need is anaconda artwork, and new desktop backgrounds to replace the current '7' themed stuff. As we dig, we may find more things that need to be updated to the new 8 theme. Additionally, we will need to update some of the assets listed here: https://wiki.centos.org/ArtWork/Identity ... and produce new assets for 8 to be listed here: https://wiki.centos.org/ArtWork/Brand/Logo And, finally, we need someone to step up to lead this effort. While we don't yet know for certain when RHEL 8 will officially release, it's safe to assume that it's soon, and we need your help. I'm no artist, so I won't even attempt to actually create artwork. Having said that, with the current increase in interest in space activity the old Apollo 8 logo might give us some inspiration. See https://en.wikipedia.org/wiki/File:Apollo-8-patch.png for the original. My initial though is for the CentOS logo where the earth is and some sort of future at the Moon end. Perhaps a star? I'm a programmer not a "creative" so I'll allow artistic types to decide. If obscuring the CentOS logo with the lower band of the "8" is unacceptable, then it would be possible to keep the Earth and put the CentOS logo in place of the Moon. Not as strong a message, but still fun. The three astronauts' names cound be replaced with the word "CentOS", a slogan (please not "to infinity and beyond"), or simply blanked. The colour scheme will obviously depend upon corporate diktat. Perhaps avoid a blue background. Supposedly there is solid research now that blues are bad for our eyes... My $0.02 worth. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Mail Server Guides
On 3/1/19 12:53 PM, Ben Archuleta wrote: Hello All, I need to set up a new mail server to replace an aging CentOS 6.3 mail server. I was wondering what were some of the best guides on the web for Postfix (Maildir), Spamassassin, ClamAV, Dovecot? I am close to upgrading my mailserver. My current instructions are at: http://www.htt-consult.com/Centos7-mailserver.html I need to finish: SHA256 or SHA512 instead of MD5 for the password (Just need to finish up the roundcube password change script) dovecotadm backup for the mail and something to backup the mysql Otherwise my testing has been good. Of course adding stuff like DKIM, DANE, etc. would be nice. I am running my mailserver on an Odroid HC1. Nice little system ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Support for Argon2 for password hashing
I found that EPEL has argon2-20161029-2, but the dovecot 2.2.36 in C7 does not use it. If I were to compile dovecot 2.3, it comes with argon2 built in. I don't want to get into the build business, I have other things demanding my time. It would be nice to have argon2, but my server is small, and sha512 is a lot better than md5. On 2/13/19 1:57 PM, Alice Wonder wrote: The version of libsodium in EPEL supports argon2 For php you can build the libsodium extension. Also php 7.2+ builds that extension if you specify it build time using --with-sodium=shared switch. For dovecot you have to build it against sodium which means building your own packages but it works. At least with modern upstream dovecot. On 2/13/19 5:18 AM, Robert Moskowitz wrote: Is there any information on adding support for Argon2? I have been working on my new mailserver and this came up in moving from the default MD5 hash to more 'modern' hashes like SHA256 and SHA512. Then I was pointed to the work behind Argon2, and I see that it is moving through the IRTF cfrg workgroup: draft-irtf-cfrg-argon2-04.txt It is a 'purpose built' hash for passwords, with recommendations that new implementations use it. Of course can't use it if crypt does not support it thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Support for Argon2 for password hashing
Is there any information on adding support for Argon2? I have been working on my new mailserver and this came up in moving from the default MD5 hash to more 'modern' hashes like SHA256 and SHA512. Then I was pointed to the work behind Argon2, and I see that it is moving through the IRTF cfrg workgroup: draft-irtf-cfrg-argon2-04.txt It is a 'purpose built' hash for passwords, with recommendations that new implementations use it. Of course can't use it if crypt does not support it thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] time --verbose not working
On 2/11/19 4:17 PM, Christian, Mark wrote: On Mon, 2019-02-11 at 16:06 -0500, Robert Moskowitz wrote: I can't seem to get the verbose mode of time working. I am trying to Provide the full path for time, you are using the bash built-in time. Try: /usr/bin/time --verbose cmd Worked after yum install time... :) compare the compute cost of sha256-crypt to sha512-crypt: time doveadm pw -s sha256-crypt -p secret real0m0.128s user0m0.081s sys 0m0.040s time doveadm pw -s sha512-crypt -p secret real0m0.162s user0m0.105s sys 0m0.047s But all attempts to add --verbose fail: time --verbose doveadm pw -s sha512-crypt -p secret -bash: --verbose: command not found Googling gives different recommendations, none work for me. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] time --verbose not working
On 2/11/19 4:18 PM, david wrote: At 01:06 PM 2/11/2019, Robert Moskowitz wrote: I can't seem to get the verbose mode of time working. I am trying to compare the compute cost of sha256-crypt to sha512-crypt: time doveadm pw -s sha256-crypt -p secret real   0m0.128s user   0m0.081s sys    0m0.040s time doveadm pw -s sha512-crypt -p secret real   0m0.162s user   0m0.105s sys    0m0.047s But all attempts to add --verbose fail: time --verbose doveadm pw -s sha512-crypt -p secret -bash: --verbose: command not found Googling gives different recommendations, none work for me. To quote from linux.die.net/man/1/time Note: some shells (e.g., <https://linux.die.net/man/1/bash>bash(1)) have a built-in time command that provides less functionality than the command described here. To access the real command, you may need to specify its pathname (something like /usr/bin/time). Could it be you've encountered this? I had to install the real time command to do this. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] time --verbose not working
I can't seem to get the verbose mode of time working. I am trying to compare the compute cost of sha256-crypt to sha512-crypt: time doveadm pw -s sha256-crypt -p secret real 0m0.128s user 0m0.081s sys 0m0.040s time doveadm pw -s sha512-crypt -p secret real 0m0.162s user 0m0.105s sys 0m0.047s But all attempts to add --verbose fail: time --verbose doveadm pw -s sha512-crypt -p secret -bash: --verbose: command not found Googling gives different recommendations, none work for me. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Did I install too much for clamav?
On 2/8/19 2:20 PM, Gordon Messmer wrote: On 2/7/19 1:18 PM, Robert Moskowitz wrote: Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Using primary internal av scanner code for ClamAV-clamd Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Found secondary av scanner ClamAV-clamscan at /usr/bin/clamscan I don't use amavis, but it doesn't seem surprising that it would search the system for supported components and find both clamd and clamscan. It looks like secondary scanners are only used if the primary scanners fail, so this seems like it's working normally. Since I posted this, help on the postfix list resolved the problem. This was a red herring, as they say. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Did I install too much for clamav?
I just checked the status of amavisd: # systemctl -l status amavisd ● amavisd.service - Amavisd-new is an interface between MTA and content checkers. Loaded: loaded (/usr/lib/systemd/system/amavisd.service; enabled; vendor preset: disabled) Active: active (running) since Thu 2019-02-07 08:16:59 EST; 7h ago Docs: http://www.ijs.si/software/amavisd/#doc Process: 5715 ExecStart=/usr/sbin/amavisd -c /etc/amavisd/amavisd.conf (code=exited, status=0/SUCCESS) Main PID: 6327 (/usr/sbin/amavi) CGroup: /system.slice/amavisd.service ├─6327 /usr/sbin/amavisd (master) ├─6336 /usr/sbin/amavisd (virgin child) └─6337 /usr/sbin/amavisd (virgin child) Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Found decoder for .lha at /usr/bin/7z Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Found decoder for .iso at /usr/bin/7z Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Found decoder for .exe at /usr/bin/unarj Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Using primary internal av scanner code for ClamAV-clamd Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Found secondary av scanner ClamAV-clamscan at /usr/bin/clamscan Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Deleting db files __db.002,snmp.db,nanny.db,__db.001,__db.003 in /var/spool/amavisd/db Feb 07 08:16:59 klovia.htt-consult.com amavis[6327]: Creating db in /var/spool/amavisd/db/; BerkeleyDB 0.51, libdb 5.3 Feb 07 08:17:00 klovia.htt-consult.com amavis[6327]: initializing Mail::SpamAssassin (0) Feb 07 08:17:08 klovia.htt-consult.com amavis[6327]: SpamControl: init_pre_fork on SpamAssassin done Feb 07 08:17:08 klovia.htt-consult.com amavis[6327]: extra modules loaded after daemonizing/chrooting: /usr/lib/perl5/vendor_perl/auto/Net/SSLeay/autosplit.ix, /usr/lib/perl5/vendor_perl/auto/Net/SSLeay/randomize.al, /usr/share/perl5/Net/libnet.cfg, IO/Socket/SSL.pm, Mail/SpamAssassin/Plugin/FreeMail.pm, Mail/SpamAssassin/Plugin/SpamCop.pm, Net/Cmd.pm, Net/Config.pm, Net/SMTP.pm, Net/SSLeay.pm Primary and secondary AV scanner? Is this right? I installed: # grep clam /var/log/yum.log* /var/log/yum.log:Feb 06 08:40:06 Installed: clamav-filesystem-0.101.1-1.el7.noarch /var/log/yum.log:Feb 06 08:40:29 Installed: clamav-lib-0.101.1-1.el7.armv7hl /var/log/yum.log:Feb 06 08:40:30 Installed: clamav-update-0.101.1-1.el7.armv7hl /var/log/yum.log:Feb 06 08:40:59 Installed: clamav-devel-0.101.1-1.el7.armv7hl /var/log/yum.log:Feb 06 08:41:01 Installed: clamav-0.101.1-1.el7.armv7hl /var/log/yum.log:Feb 06 08:46:16 Installed: clamd-0.101.1-1.el7.armv7hl /var/log/yum.log:Feb 06 08:46:17 Installed: clamav-server-systemd-0.101.1-1.el7.armv7hl thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Applying changes to route-eth0
On 1/30/19 12:51 PM, mark wrote: Robert Moskowitz wrote: I have a series of static routes in route-eth0 Recently I had to made changes and could not find an effective way to get the old routes out and the new routes in. ifdown-route seems to apply the content of route-eth0 to take down the routes listed and ifup-route brings up routes based on route- So what ends up is that the old routes never go away, just new routes added. ifdown eth0; ifup eth0 works, but is a bit heavy-handed for only changing routes. So how do I clear out the routing table and have it rebuilt based on ifcfg-eth0 and route-eth0 without bouncing the interface completely? Can't you do ip route delete ...? I did some digging and came up with: ip route flush table main; ifup-route eth0 This only works if the only entries in the routing table are for eth0. Which is my case. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Applying changes to route-eth0
I have a series of static routes in route-eth0 Recently I had to made changes and could not find an effective way to get the old routes out and the new routes in. ifdown-route seems to apply the content of route-eth0 to take down the routes listed and ifup-route brings up routes based on route- So what ends up is that the old routes never go away, just new routes added. ifdown eth0; ifup eth0 works, but is a bit heavy-handed for only changing routes. So how do I clear out the routing table and have it rebuilt based on ifcfg-eth0 and route-eth0 without bouncing the interface completely? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How do I remove a kernel
On 1/8/19 6:31 PM, Pete Biggs wrote: On Tue, 2019-01-08 at 17:22 -0500, Robert Moskowitz wrote: I have 4 kernels in /boot, leaving on 20MB which is not enough for the next one. I had installonly_limit= set at 5, as there were some kernel problems. After I got the error that there was not enough room for another kernel, I set installonly_limit= to 3 and did the update with --exclude=kernel* That worked to update everything else, but not remove the oldest kernel. How can I remove the oldest kernel to make room for the new one? yum install yum-utils Already installed. package-cleanup --oldkernels --count=3 replace the count with however many you want to leave on the system. Dependencies Resolved Package Arch Version Repository Size Removing: kernel-core armv7hl 4.14.28-201.el7.centos @instKern/$releasever 89 M Removing for dependencies: kernel-modules armv7hl 4.14.28-201.el7.centos @instKern/$releasever 17 M Transaction Summary Remove 1 Package (+1 Dependent package) That picked up 110MB and now I have enough room for installing the new kernel. Thanks. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How do I remove a kernel
On 1/8/19 6:02 PM, Stephen John Smoogen wrote: On Tue, 8 Jan 2019 at 17:58, Robert Moskowitz wrote: On 1/8/19 5:30 PM, mark wrote: Robert Moskowitz wrote: I have 4 kernels in /boot, leaving on 20MB which is not enough for the next one. I had installonly_limit= set at 5, as there were some kernel problems. After I got the error that there was not enough room for another kernel, I set installonly_limit= to 3 and did the update with --exclude=kernel* That worked to update everything else, but not remove the oldest kernel. How can I remove the oldest kernel to make room for the new one? yum remove kernel-rest-of-kernel-name, for example yum remove kernel-3.10.0-862.2.3.el7.x86_64 # yum remove kernel-4.14.28-201.el7.centos.armv7hl Loaded plugins: fastestmirror Resolving Dependencies --> Running transaction check ---> Package kernel.armv7hl 0:4.14.28-201.el7.centos will be erased --> Finished Dependency Resolution Dependencies Resolved Package Arch Version RepositorySize Removing: kernelarmv7hl4.14.28-201.el7.centos @instKern/$releasever0.0 Transaction Summary Remove 1 Package Installed size: 0 Is this ok [y/N]: Only freed up 12MB. All the other kernel components are still there: what other components? Can you give some details on what you are seeing staying around? That will help (especially since people didn't know from the first email you are on a arm system which may have different items than an x86_64) Oops. My bad for leaving that off, but what about all the kernel* (like 4 rpms?) that normally gets installed? dtb-4.14.28-201.el7.centos.armv7hl initramfs-4.14.28-201.el7.centos.armv7hl.img System.map-4.14.28-201.el7.centos.armv7hl uImage-4.14.28-201.el7.centos.armv7hl uInitrd-4.14.28-201.el7.centos.armv7hl vmlinuz-4.14.28-201.el7.centos.armv7hl The dtb* is a directory. How do I get rid of the whole lot? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How do I remove a kernel
On 1/8/19 5:30 PM, mark wrote: Robert Moskowitz wrote: I have 4 kernels in /boot, leaving on 20MB which is not enough for the next one. I had installonly_limit= set at 5, as there were some kernel problems. After I got the error that there was not enough room for another kernel, I set installonly_limit= to 3 and did the update with --exclude=kernel* That worked to update everything else, but not remove the oldest kernel. How can I remove the oldest kernel to make room for the new one? yum remove kernel-rest-of-kernel-name, for example yum remove kernel-3.10.0-862.2.3.el7.x86_64 # yum remove kernel-4.14.28-201.el7.centos.armv7hl Loaded plugins: fastestmirror Resolving Dependencies --> Running transaction check ---> Package kernel.armv7hl 0:4.14.28-201.el7.centos will be erased --> Finished Dependency Resolution Dependencies Resolved Package Arch Version Repository Size Removing: kernel armv7hl 4.14.28-201.el7.centos @instKern/$releasever 0.0 Transaction Summary Remove 1 Package Installed size: 0 Is this ok [y/N]: Only freed up 12MB. All the other kernel components are still there: How do I get rid of the whole lot? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] How do I remove a kernel
I have 4 kernels in /boot, leaving on 20MB which is not enough for the next one. I had installonly_limit= set at 5, as there were some kernel problems. After I got the error that there was not enough room for another kernel, I set installonly_limit= to 3 and did the update with --exclude=kernel* That worked to update everything else, but not remove the oldest kernel. How can I remove the oldest kernel to make room for the new one? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] You removed Weboob package over political reasons? Whole Internet laughs at you
On 12/24/18 10:42 AM, Alice Wonder wrote: On 12/24/18 7:21 AM, vsnsdua...@memeware.net wrote: Debian is not ruled by the men who actually write the software, but instead women. *snip* Can we please ban the person who sent that disgusting rant to the list? Glad I read your post before trying to read the original... Sad anyone had to read it. Whatever the person complained about. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fedora Server - as an alternative ?
On 12/21/18 10:25 AM, mark wrote: Robert Moskowitz wrote: On 12/20/18 10:33 AM, mark wrote: lejeczek via CentOS wrote: I wonder if any Centosian here have done something different than only contemplated using Fedora Server, actually worked on it in test/production envs. If here are some folks who have done it I want to ask if you deem it to be a viable option to put it on at least portion of servers stack. Anybody? I would not run it as a server. In a server and workstation environment, you do *not* want to have daily multiple updates to software, you want stability, or you're likely to have your users seriously aggravated by you, for breaking their jobs far too frequently. Where do you get that with Fedora server you have to do daily multiple updates? I frequently see my manager's fedora box doing updates, multiple times a week. Yes, updates come out practically every day. So? Microsoft sends out updates to its desktops practically every day also. I turned off auto updates on my Fedora notebook and tend to do them Monday mornings to start the new week 'up to date'. I have NOT turned off auto updates on the Win7 systems here, as otherwise I might just forget as I use them too infrequently myself. Tracer is an interesting tool to see, after an update, what you have to restart. Sometimes just an app or a logout and back in. Sometimes a reboot. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fedora Server - as an alternative ?
On 12/20/18 12:19 PM, lejeczek via CentOS wrote: On 20/12/2018 15:33, mark wrote: lejeczek via CentOS wrote: hi guys I wonder if any Centosian here have done something different than only contemplated using Fedora Server, actually worked on it in test/production envs. If here are some folks who have done it I want to ask if you deem it to be a viable option to put it on at least portion of servers stack. Anybody? I would not run it as a server. In a server and workstation environment, you do *not* want to have daily multiple updates to software, you want stability, or you're likely to have your users seriously aggravated by you, for breaking their jobs far too frequently. Spin up a VM or two, for folks who actually (or think they actually) need newer software and utility stacks, but use something stable as a base. mark "I do see how many update's my manager's fedora box gets..." What I'm really looking forward to - why I thought I'd poke around, thus that question - is RDP in Wayland. When it get's into RHELs I worry be ages and I'd really love to try to introduce Linux desktops to those really dumb and unreformable users. Everything else - frequent updates, etc. These can be as rare as we users want them, another extra bit of time to think of it would not kill me, personally. Why are we beating ourselves up about updates. I have a couple Win7 systems here and updates are constant. My daughter is often caught not being able to do her homework as the system is applying updates on powerup. Or I wake up to my Win7 system running at the login after I had suspended it the prior day, as some non-sleeping task took advantage and did a required reboot overnight. dnf update is now part of the startup and a regular process. Warnings about needing to reboot, are really no different than what Win users deal with. Again, my daughter is often clicking on delay autoreboot for an hour so she can finish her homework (and the other night she got the BSOD for her efforts). Also, we all know, what is in those Fedoras(maybe more so when it comes to "server" variant) is going to end up in our Centoses - why not help by using/testing those, I ask myself. Especially now with 29 which I suspect might be our Centos main new version. So I'm thinking.. I'll start mixing that Fedora Server in. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] VNC question
On 12/19/18 4:36 AM, isdtor wrote: We have run into the infamous black screen problem with tigervnc under CentOS7, which prompted me to look into how vnc is configured here. https://access.redhat.com/solutions/966063 Am I reading this correctly - root needs to set up a systemd vnc service for every user and display individually? Compared to e.g. CentOS before 7, or indeed any other Linux/Unix system where vnc is completely under user control? I have always run an instance of vnc-server for each user. I never gave the user control, just assigned the port number for the user. I have been doing this at least since CentOS4. Now the fun comes in as to what GUI you are using. The install is for Gnome, and if you want any other GUI, you have work in front of you. I have it working for Xfce. I have a separate systemd service file for each user. And I enable them all, just the way I run things. I suppose there are ways you can have the user start his specific systemd service from their ssh shell. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Running a command at startup
Thanks, I will study this... On 12/13/18 2:38 PM, Kenneth Porter wrote: --On Wednesday, December 12, 2018 7:04 PM -0500 Robert Moskowitz wrote: So can someone point me to how to make this into a simple systemd service? I'd first create a utility script (untried code!) like this: /usr/local/sbin/BlueLedFunction.sh #!/bin/sh echo "$1" > /sys/class/leds/blue\:heartbeat/trigger Then I'd create /etc/systemd/system/BlueLedOff.service with appropriate sections to invoke that script with "none" as an argument and to run in your desired runlevel. (Take a look at the examples in /lib/systemd/system.) Then issue this to have it run at startup: systemctl enable BlueLedOff Note that custom unit files go in /etc/systemd/system to avoid having them overwritten by distro updates. You can customize existing unit files by either copying them from /lib/systemd to /etc/systemd or you can override single settings with specially-named subdirectories in /etc/systemd/system. See the unit file documentation for details. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Running a command at startup
On 12/13/18 8:17 AM, Jonathan Billings wrote: On Wed, Dec 12, 2018 at 09:43:56PM -0500, Robert Moskowitz wrote: OK I have had problems in the past with crontab parsing a command. Would I use: @reboot root echo none | tee /sys/class/leds/blue\:heartbeat/trigger ? Or do I have to make a script and run that? Since this is a crontab, you can use normal shell redirection: @reboot root echo none > /sys/class/leds/blue\:heartbeat/trigger in a file in /etc/cron.d/ The 'echo foo | sudo tee' thing is what you do for people who are using sudo to echo output into a file -- so often people think they can do 'sudo echo none > /some/path' and will be surprised it doesn't work. Thanks. This is my first encounter with 'tee'. I guess because I rarely use sudo, and work in su if I need to do root things. I still think it makes sense to create it as a systemd unit. Seems the better, long-term way to go, but right now I don't have time to learn enough about making systemd unit files. Thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Running a command at startup
On 12/12/18 9:17 PM, Richard wrote: Date: Wednesday, December 12, 2018 20:25:48 -0500 From: Robert Moskowitz On 12/12/18 7:11 PM, Leroy Tennison wrote: Does your version of CentOS have the @reboot crontab option? If it does this is probably easier unless you want to learn how to write systemd files. CentOS 7.6. I will have to google @reboot... see: man -S5 crontab -- the "extensions" section. OK I have had problems in the past with crontab parsing a command. Would I use: @reboot root echo none | tee /sys/class/leds/blue\:heartbeat/trigger ? Or do I have to make a script and run that? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Running a command at startup
On 12/12/18 7:11 PM, Leroy Tennison wrote: Does your version of CentOS have the @reboot crontab option? If it does this is probably easier unless you want to learn how to write systemd files. CentOS 7.6. I will have to google @reboot... Leroy Tennison Network Information/Cyber Security Specialist E: le...@datavoiceint.com 2220 Bush Dr McKinney, Texas 75070 www.datavoiceint.com TThis message has been sent on behalf of a company that is part of the Harris Operating Group of Constellation Software Inc. These companies are listed here . If you prefer not to be contacted by Harris Operating Group please notify us . This message is intended exclusively for the individual or entity to which it is addressed. This communication may contain information that is proprietary, privileged or confidential or otherwise legally exempt from disclosure. If you are not the named addressee, you are not authorized to read, print, retain, copy or disseminate this message or any part of it. If you have received this message in error, please notify the sender immediately by e-mail and delete all copies of the message. From: CentOS on behalf of Robert Moskowitz Sent: Wednesday, December 12, 2018 6:04 PM To: CentOS mailing list Subject: [EXTERNAL] [CentOS] Running a command at startup On a support forum, I was told that to turn off my board's blue led run: echo none | sudo tee /sys/class/leds/blue\:heartbeat/trigger Well, this does not survive a system reboot. So I was told: Add the off bit to /etc/rc.local Add it above "exit 0" So of course, CentOS is past using rc.local and recommends: # It is highly advisable to create own systemd services or udev rules # to run scripts during boot instead of using this fi So can someone point me to how to make this into a simple systemd service? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Running a command at startup
On a support forum, I was told that to turn off my board's blue led run: echo none | sudo tee /sys/class/leds/blue\:heartbeat/trigger Well, this does not survive a system reboot. So I was told: Add the off bit to /etc/rc.local Add it above "exit 0" So of course, CentOS is past using rc.local and recommends: # It is highly advisable to create own systemd services or udev rules # to run scripts during boot instead of using this fi So can someone point me to how to make this into a simple systemd service? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upping my game on web work
On 11/21/18 11:29 AM, Valeri Galtsev wrote: On 11/21/18 9:26 AM, mark wrote: Frank Cox wrote: On Wed, 21 Nov 2018 09:02:38 -0500 Robert Moskowitz wrote: What 'simple' web support tools do we have here? Libreoffice can create a html page from a word processor document. I've done that a few times where I do the basic layout with libreoffice and then hand-edit the html to fine tune it. But my web pages aren't usually anything exceptionally fancy. No word processor produces anything but absolute 100% pure crap HTML. Every single line has every possible option, and a few extras. The one HTML editor I ever tried, Quanta, had the lovely habit of, once you hit ?display", when you went back to editing, it has left justified *every* *line*. I hate to suggest it, but something like WordPress might be what you want, if that's not overkill. mark "my web pages proudly built in vi" This is the great advise. Basically, your problem is in asking experts what one can do without willing to gain some expertise. Mark gave nice advise though he himself just edits html (and so do I) when necessary (and my editor is vi as well, even more: real vi on FreeBSD, not vim - that is "vi improved" - that ships with Linuxes). More productive would be searching web for something like "how to create nice webpage without any knowledge" or similar. Note that I didn't use common these days word for searching as I for one am avoiding that particular search service and am using duckduckgo.com (search for answer on the web if it unclear why ;-) Please check out www.htt-consult.com All the content was done in Geany. Handcrafted. Did a lot of research on the various text boxes for the code stuff. Go ahead and look at the source. But this is not for me. I may not be able to put up all the content. I need some stuff that provides some basic presentation and management tools. Someone other than me will be uploading recordings and announcements. My goal is to put together some simple tools for their use. Not mine. Valeri ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upping my game on web work
On 11/21/18 10:26 AM, mark wrote: Frank Cox wrote: On Wed, 21 Nov 2018 09:02:38 -0500 Robert Moskowitz wrote: What 'simple' web support tools do we have here? Libreoffice can create a html page from a word processor document. I've done that a few times where I do the basic layout with libreoffice and then hand-edit the html to fine tune it. But my web pages aren't usually anything exceptionally fancy. No word processor produces anything but absolute 100% pure crap HTML. Every single line has every possible option, and a few extras. The one HTML editor I ever tried, Quanta, had the lovely habit of, once you hit ?display", when you went back to editing, it has left justified *every* *line*. I hate to suggest it, but something like WordPress might be what you want, if that's not overkill. mark "my web pages proudly built in vi" I can make the basic pages, but they need to tools to upload content. Recordings, announcements (in pdf) and the like. So something more than here is how to compose your html and here is SSH to do a scp file transfer I will look at docuwiki and perhaps WordPress (seem to recall it is more than just an html editor). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upping my game on web work
On 11/21/18 9:16 AM, Frank Cox wrote: On Wed, 21 Nov 2018 09:02:38 -0500 Robert Moskowitz wrote: What 'simple' web support tools do we have here? Libreoffice can create a html page from a word processor document. I've done that a few times where I do the basic layout with libreoffice and then hand-edit the html to fine tune it. But my web pages aren't usually anything exceptionally fancy. That might be interesting to try. The one time I tried using Word to create html was a disaster so much crude stuffed into the html and for what? For years I use an xml editor (geany now adays) and code what I want. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Upping my game on web work
Until now, I have been satisfied with hand coding my html for simple, but effective web pages (see http://www.htt-consult.com/). But I want to offer one of our small synagogues some web pages and need a few tools for them to use to compose their pages and upload content. What 'simple' web support tools do we have here? Of course I will be doing this on armhfp,,, ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Future Releases
On 10/18/18 11:06 PM, Barry Brimer wrote: On Thu, 18 Oct 2018, Robert Moskowitz wrote: On 10/18/18 4:14 PM, Johnny Hughes wrote: On 10/18/2018 12:36 PM, Walter H. wrote: On 18.10.2018 00:08, Johnny Hughes wrote: The bottom line .. we don't make the decision whether or not to use systemd or not. We rebuild RHEL source code. will there come a CentOS 6.11 which will be capable of TLS1.3 or HTTP/2? I'm sure there will come a CentOS 8, but when is it probable to be released? We have no idea .. we don't design what is in CentOS. If Red Hat adds those things to RHEL-6 then we will put them in CentOS .. If they don't we won't. And for example, if RH does not backport openSSL 1.1.1, you will not get EDDSA certificate support for TLS 1.3. Now you might not care about this for your servers and just continue to use ECDSA certs. Clients will increasingly encounter EDDSA certs and it will be interesting to see how this is handled in older clients. We have had years to spread support for ECDSA before it started appearing from servers. May not for EDDSA. I am under the impression that TLSv1.3 support appeared in 1.1.1 so I don't believe that you could do any TLS 1.3 with prior versions. https://wiki.openssl.org/index.php/TLS1.3 Yeah, I was kind of hedging my comment that maybe something for 1.3 would be in the earlier version, but yes, all the TLS 1.3 work was focused on openSSL 1.1.1. I was personally focused on EDDSA support. So a number of items have to appear in C6 for it to support TLS 1.3. More slowness in TLS 1.3 availability. Kind of flies in the face of a claim made against my HIP protocol which 'requires kernel level changes' and thus too hard to deploy. TLS is an upper layer protocol and changes easily roll out. Yeah, right. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Future Releases
On 10/18/18 4:14 PM, Johnny Hughes wrote: On 10/18/2018 12:36 PM, Walter H. wrote: On 18.10.2018 00:08, Johnny Hughes wrote: The bottom line .. we don't make the decision whether or not to use systemd or not. We rebuild RHEL source code. will there come a CentOS 6.11 which will be capable of TLS1.3 or HTTP/2? I'm sure there will come a CentOS 8, but when is it probable to be released? We have no idea .. we don't design what is in CentOS. If Red Hat adds those things to RHEL-6 then we will put them in CentOS .. If they don't we won't. And for example, if RH does not backport openSSL 1.1.1, you will not get EDDSA certificate support for TLS 1.3. Now you might not care about this for your servers and just continue to use ECDSA certs. Clients will increasingly encounter EDDSA certs and it will be interesting to see how this is handled in older clients. We have had years to spread support for ECDSA before it started appearing from servers. May not for EDDSA. Self-touting, I have an Internet Draft out on using openSSL command line to build an EDDSA pki. I did the work on Fedora29-beta. I think all the other TLS 1.3 features are in the latest 1.0.n version of openSSL. Of course that is ALSO a backport issue. I have been told that if you set up your client to only accept TLS 1.3 connections, the Secure Internet gets really small really fast... one of the most important things (for me), as I already noticed there will be quite differences between CentOS 6 and CentOS 7, not only systemd or not, also Apache 2.2 and 2.4 and many other; the config files won't be the same, will there be a migrate helper or something like this which does the config conversion to get a CentOS 7 or maybe then CentOS 8 that does exact the same things the old CentOS 6 did? No, there is no automated way to move from CentOS-6 to CentOS-7 .. and we have no idea what will be in CentOS-8 until Red Hat releases RHEL-8. We have no idea what will be in CentOS-6.11 until Red Hat releases RHEL-6.11 .. and we have no idea what will be in the release of CentOS-7 until Red Hat releases RHEL-7.6 .. literally, we take the source code they release .. modify it for Trademarks and Logos .. and release it. Until it is released, we don't have a clue. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Future Releases
On 10/18/18 1:36 PM, Walter H. wrote: On 18.10.2018 00:08, Johnny Hughes wrote: The bottom line .. we don't make the decision whether or not to use systemd or not. We rebuild RHEL source code. will there come a CentOS 6.11 which will be capable of TLS1.3 or HTTP/2? I'm sure there will come a CentOS 8, but when is it probable to be released? You will also need openSSL 1.1.1 for some TLS 1.3 functions. one of the most important things (for me), as I already noticed there will be quite differences between CentOS 6 and CentOS 7, not only systemd or not, also Apache 2.2 and 2.4 and many other; the config files won't be the same, will there be a migrate helper or something like this which does the config conversion to get a CentOS 7 or maybe then CentOS 8 that does exact the same things the old CentOS 6 did? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] What are the differences between systemd and non-systemd Linux distros?
On 10/16/18 1:54 AM, Turritopsis Dohrnii Teo En Ming wrote: Good afternoon from Singapore, What are the differences between systemd and non-systemd Linux distros? Is systemd implemented in all the latest Linux distros? Please advise. Thank you. My advice is to go and read up on the original design goals of systemd. The information is out there. We had this discussion here years ago when we were staring and the impending transition. Read the archives on the angst the change engendered and the adjustment to the new methodology. They say that the Internet never forgets, so you should be able to find the original discussions and make your own judgment call. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Fwd: OpenSSL version 1.1.1 published - needed for TLS 1.3
If anyone here is thinking about supporting TLS 1.3, every indication is that you will need openSSL 1.1.1. Fedora 29 pre-beta is still one 1.1.1-pre9, I hope to see 1.1.1 release soonish. Hopefully Redhat will be backporting support in RHEL7 so we will have it in C7. Part of the challenge is that there is an API change from 1.1.0 to 1.1.1. Got to love it... Further complication is no FIPS support yet in 1.1.1. That is next on the docket for openSSL. Forwarded Message Subject:[openssl-users] OpenSSL version 1.1.1 published Date: Tue, 11 Sep 2018 13:42:31 + From: OpenSSL Reply-To: open...@openssl.org, openssl-us...@openssl.org Organisation: OpenSSL Project To: openssl-proj...@openssl.org, OpenSSL User Support ML , OpenSSL Announce ML -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 OpenSSL version 1.1.1 released === OpenSSL - The Open Source toolkit for SSL/TLS https://www.openssl.org/ The OpenSSL project team is pleased to announce the release of version 1.1.1 of our open source toolkit for SSL/TLS. For details of changes and known issues see the release notes at: https://www.openssl.org/news/openssl-1.1.1-notes.html OpenSSL 1.1.1 is available for download via HTTP and FTP from the following master locations (you can find the various FTP mirrors under https://www.openssl.org/source/mirror.html): * https://www.openssl.org/source/ * ftp://ftp.openssl.org/source/ The distribution file name is: o openssl-1.1.1.tar.gz Size: 8337920 SHA1 checksum: e4559f31dca37ce815e0c7135488b747745a056d SHA256 checksum: 2836875a0f89c03d0fdf483941512613a50cfb421d6fd94b9f41d7279d586a3d The checksums were calculated using the following commands: openssl sha1 openssl-1.1.1.tar.gz openssl sha256 openssl-1.1.1.tar.gz Yours, The OpenSSL Project Team. -BEGIN PGP SIGNATURE- iQEzBAEBCgAdFiEEhlersmDwVrHlGQg52cTSbQ5gRJEFAluXuZ8ACgkQ2cTSbQ5g RJFPFQf9G1LopuN1P3tIUTgps9Z1SS+TuC7OeRPu9TCEqOR0yO8WGyTCfLZnoXZ7 0BqFASYW4VbPCy8LH3glHLBe64NApdoA1HoMmHCvd+TxPQHEvhc0OejSaOGZKY/r 2LGUvEguiyYpjQS4bQmsl8wNl3CrYRGSMqBcbFj+qF/Rrlpa1hpKGnH4ooMxe7Nx /Ro4AjMe46vQL/RU980yFl+JTkhAvSOxw0cltbILPO2MP6Fo4QZqMO8mYRjEnqUZ E/Ixl/dIkSWjPC8pkkRS9FmMQHHYe66S20OK7V2Zl3Zd88FrNI+qeKgEF3ABGknR 6vR0kPkddRl43JktQ4B1QKS+GcwzHw== =fvfm -END PGP SIGNATURE- -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Certificates
On 08/31/2018 05:54 PM, John R. Dennison wrote: On Fri, Aug 31, 2018 at 05:30:53PM -0400, Robert Moskowitz wrote: Letsencrypt is a very important development, but it has (IMHO) a shaking foundation. I would not build a production system around it. But then I have lived in aspects of PKI since '95... I presume you meant "shaky foundation"? Yes. I am not in California (or similar earthquake place!) Good old stable Michigan (we do get mild ones once in a while. :) If so, would you care to elaborate It is designed for getting web servers quickly into TLS and then to a more stable provider. "Make the web safe for all". If your content is short information, your contacts will never notice that you go to a new cert quarterly. Long-term users might also never see this, but I can see web services where a new cert every 90 days will cause a pain point. And for other services like IMAP, SMTP, LDAP (maybe not LDAP) constant changing certs even with a long lived root may get old for your customers. Plan on this to 'get into the pool', but not to live with it for more than a year. Unfortunately, there has never been an effective business model for small customers. We are kind of close with DMARC, but I think it misses the mark. Putting your domain root cert into your DNSSEC signed domain should be all that is needed to establish a rooted trust. I have to speak with some IETF colleagues on this (particularly in DNSSEC and DMARC) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Certificates
On 08/31/2018 01:47 PM, Chuck Campbell wrote: I am getting myself confused, and need someone who fully understands this process to help me out a bot. I would like to obtain an ssl certificate, so I can run my own imap server on a machine in my office. My domain is hosted by networksolutions, but I don't run my imap server there. I am assuming I'll need to pay a CA to generate what I need, but I'm confused about what I need. I am running dovecot at teh moment, but my clients (iphone, windows laptops) say my ssl connection is not trusted. The phone just won't connect. I tried emailing the dovecot.pem file to my phone and installing it, but it just says it is not trusted. This leads me to obtaining a real CA issued certificate. I'm not sure what to do with it, once I get one, and then if I need to subsequently regenerate my dovecot.pem file?? Many large companies run their own CA and install their own root certificate. Often installing a root cert is easier than installing a self-signed independent cert. There is much written about building your own CA and a number of tools for that like openCA. I can't speak for all your devices or apps, but there should be ways In personal promotion, I have been doing my own CA work for ECDSA certs and now for EDDSA certs (and I wonder what commercial CAs are providing them). See my Internet draft: draft-moskowitz-ecdsa-pki And my github for pending updates to this and the new eddsa-pki draft (to be published after openSSL 1.1.1 is released). https://github.com/rgmhtt/draft-moskowitz-ecdsa-pki https://github.com/rgmhtt/draft-moskowitz-eddsa-pki Or go to openCA or look at other CA toolkits available on Centos and Fedora. Letsencrypt is a very important development, but it has (IMHO) a shaking foundation. I would not build a production system around it. But then I have lived in aspects of PKI since '95... ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] TLS 1.3 and openSSL 1.1.1 support
TLS 1.3 RFC has 'shipped': RFC 8446. Don't yet know all that will have to be updated to support it, but I am working on openSSL 1.1.1 beta which is available in the Fedora 29 beta. The openSSL team is looking at one more beta release (I had challenges with ED25519 certs, I will soon have an Internet Draft out on them). So general heads up. TLS 1.3 is claimed to be the cat's meow for security (I see it as a kitchen sink). There will be questions asking for when it will be available (wait until they start thinking about creating EDDSA pkis). Yet another thing for our hard working Centos team. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Okular
On 08/08/2018 10:35 AM, mark wrote: Does anyone know what Magical configuration file determines whether okular give measurements, in the properties of a .pdf, in millimeters, rather than, say, inches or cm or furlongs? mark -- Measurements will always be given in the least convenient units, such as the speed of light in furlongs per fortnight = 1.7998848e+12 Or there abouts. I once in awhile use okular, but never had paid attention to units used. And then on Fedora ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] making my own group repo - Re: Back to Xfce
I tried doing it simpler. installed yum-utils. Ran: yum-groups-manager -n "xfce-desktop" --id=Xfce --save=Xfce.xml --mandatory yum Thunar xfce-utils xfce4-panel xfce4-session xfce4-settings xfconf xfdesktop xfwm4 gdm leafpad openssh-askpass orage polkit-gnome thunar-archive-plugin thunar-volman tumbler xfce4-appfinder xfce4-icon-theme xfce4-power-manager xfce4-session-engines xfce4-terminal xfwm4-theme-nodoka xfwm4-themes pinentry This created xfce false true 1024 xfce-desktop Thunar gdm openssh-askpass orage polkit-gnome thunar-volman tumbler xfce4-appfinder xfce4-panel xfce4-power-manager xfce4-session xfce4-settings xfconf xfdesktop xfwm4 yum /root/myrepo is an empty directory, and ran createrepo -g /root/Xfce.xml /root/myrepo Then: yum group install Xfce Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile Failed to add groups file for repository: myrepo - comps file is empty/damaged Warning: group Xfce does not exist. Maybe run: yum groups mark install (see man yum) Error: No packages in any requested group available to install or update Looks like I need better instructions... On 08/06/2018 05:34 PM, Robert Moskowitz wrote: I tried making my own repo with just the groups in them and I got an error I used: #createrepo -g /root/mygroups.xml /root/myrepo Saving Primary metadata Saving file lists metadata Saving other metadata Generating sqlite DBs Sqlite DBs complete Where /root/mygroup.xml is attached below. Then I made: cat > /etc/yum.repos.d/myrepo.repo << EOF [myrepo] name=My repo for armhfp baseurl=file:///root/myrepo/ enabled=1 gpgcheck=0 EOF when I tried yum group list I got the error: Failed to add groups file for repository: myrepo - comps file is empty/damaged Perhaps my xml is too complex. I made it by deleting most of the Centos and EPEL ones: (Maybe I should cut out all the 'extra' stuff?) all help greatly appreciated. x11 X Window System X Window-stelsel X Window-stelsel የX መስኮት ሲስተም نظام نوافذ X X উইন্ডো চিস্টেম سیستم ویندو X X Window System Система за прозорци Х X উইন্ডো সিস্টেম X উইন্ডো সিস্টেম X sustav prozora Sistema de finestres X X Window System X Window System System Ffenestri X Vinduessystemet X X-Window-System X-Window-System Παραθυρικό σύστημα Χ X Window System Sistema X Window Sistema X Window X Window süsteem X leiho sistema X leiho sistema سیستم پنجرهای X سیستم پنجرهای X X-ikkunointijärjestelmä Système X Window Sistema X Window X વિન્ડો સિસ્ટમ סביבת החלונות X X विंडो सिस्टम X sustav prozora X sustav prozora X Window System grafikus rendszer X պատուհանների համակարգ Systema X Window Sistem X Window Sistema ti X Window X gluggakerfið Sistema X Window Sistema X Window X Window System X Window System X Window ವ್ಯವಸ್ಥೆ X 윈도우 시스템 X Window sistēma X विंडो सिस्टम X графички систем X Window സിസ്റ്റം X विंडो प्रणाली Sistem X Window Sistem X Window X-vindussystemet X सञ्झ्याल प्रणाली X Window systeem X-vindussystemet Tshepedišo ya Lefesetere la X X ୱିଣ୍ଡୋ ତନ୍ତ୍ର X ਵਿੰਡੋ ਸਿਸਟਮ System X Window Sistema de Janelas X Sistema de Janelas X Sistemul de ferestre X Система X Window Система X Window X කවුළු පද්ධතිය X Window systém Okenski sistem X Sistemi X i Dritareve Икс систем прозора X sistem prozora X sistem prozora Fönstersystemet X X விண்டோ அமைப்பு X விண்டோ அமைப்பு X విండో విధానం Системаи X Window ระบบ X Window X Pencere Sistemi Система X Window Система X Window ونڈوز نظام X X Window System X 視窗系統 X 窗口系统 X 視窗系統 X Isistimu Yewindi X Window System Support. X উইন্ডো চিস্টেম সমৰ্থন। X Window সিস্টেম সমর্থন। X Window সিস্টেম সমর্থন। Podpora pro X Window System. Podpora pro X Window System. xml:lang="de">X-Window-System-Unterstützung. xml:lang="de_CH">X-Window-System-Unterstützung. Soporte para sistema X Window. Soporte para sistema X Window. Prise en charge X Window System. X વિન્ડો સિસ્ટમ આધાર. X विंडो तंत्र समर्थन. Supporto pro le systema X Window. Supporto sistema X Window. Supporto sistema X Window. X Window システムのサポート X Window システムのサポート X ವಿಂಡೊ ವ್ಯವಸ್ಥೆಯ ಬೆಂಬಲ. X 윈도우 지원. X വിന്ഡോ സിസ്റ്റം പിന്തുണ. X Window प्रणाली समर्थन. X ୱିଣ୍ଡୋ ତନ୍ତ୍ର ସମର୍ଥନ। X ਵਿੰਡੋ ਸਿਸਟਮ ਸਮਰਥਨ। Obsługa systemu X Window. Поддержка системы X Window. Поддержка системы X Window. Stöd för fönstersystemet X. X விண்டோ கணினி சேவை. X விண்டோ கணினி சேவை. X విండో సిస్టమ్ మద్దతు.
[CentOS] making my own group repo - Re: Back to Xfce
u que furrula bien en máquines pequeñes. یک سبکین محیط دسکتاپ که په خوبی ته ماشینان کنٹین کار کنت. Лека десктоп работна среда, която работи добре на слаби машини. নিম্ন ক্ষমতাসম্পন্ন মেশিনে সহজে সঞ্চালনযোগ্য স্বল্পমাপের ডেস্কটপ পরিবেশ। নিম্ন ক্ষমতাসম্পন্ন মেশিনে সহজে সঞ্চালনযোগ্য স্বল্পমাপের ডেস্কটপ পরিবেশ। Un entorn d'escriptori lleuger que funciona en ordinadors senzills. Odlehčené uživatelské prostředí, které dobře funguje na pomalejších počítačích. Et letvægtsskrivebordsmiljø der virker godt på langsomme computere. Eine schlanke Desktop-Umgebung, die gut auf älteren Systemen funktioniert. Μια ελαφριά επιφάνεια εργασίας που αποδίδει πολύ καλά σε παλαιότερα μηχανήματα. A lightweight desktop environment that works well on low end machines. Un entorno de escritorio liviano que funciona bien en máquinas pequeñas. Väikese ressursivajadusega töölauakeskkond, mis sobib väiksema võimsusega arvutitesse. یک محیط رومیزی سبکوزن که روی دستگاههای ضعیف خوب کار میکند. Kevyt työpöytäympäristö, joka toimii hyvin tehottomillakin koneilla. Un environnement de bureau léger adapté aux machines peu puissantes. હલકું ડેસ્કટોપ પર્યાવરણ કે જે નીચા મશીનો સાથે યોગ્ય રીતે કામ કરે. סביבה שולחנית קלה הפועלת היטב גם על מחשבים שאינם רבי עצמה. हल्का डेस्कटॉप वातावरण जो कि न्यूनांत मशीन पर ठीक काम करता है. Jednostavno okruženje radne površine koje dobro funkcionira na slabijim računalima. Pehelysúlyú asztal környezet, ami gyengébb gépeken is jól használható. Un ambiente de scriptorio legier que functiona ben sur machinas exigue. Lingkungan dekstop yang ringan yang dapat bekerja dengan baik pada mesin yang rendah. Létt skjáborðsumhverfi sem virkar vel á aflminni vélum. Un ambiente desktop performante anche per computer meno potenti. xml:lang="ja">低スペックなマシンでもサクサクと動作する軽量デスクトップ環境です。 ಕೆಳಮಟ್ಟದ ಗಣಕಗಳಲ್ಲಿಯೂ ಕೆಲಸ ಮಾಡಬಲ್ಲಂತಹ ಒಂದು ಹಗುರ ತೂಕದ ಗಣಕತೆರೆ ಪರಿಸರ. 저 사양 컴퓨터에서도 잘 작동하는 경량의 데스크탑 환경입니다. Viegla darbvirsma, kas labi darbojas uz mazjaudīgiem datoriem. हलुक डेस्कटाप वातावरण जे न्यूनांत मशीन पर नीक काज करैत अछि. Едноставна работна околина што работи одлично на поспори машини. ലോ എന്ഡ് മഷീനുകളില് ശരിയായി പ്രവര്ത്തിക്കുന്ന ലൈറ്റ് വെയിറ്റ് ഡസ്ക്ടോപ്പ് എന്വയോണ്മെന്റ്. एक हलके डेस्कटॉप वातावरण जे कमी रचनात्मक प्रणालींवर चांगल्या प्रकारे काम करते. Persekitaran desktop ringan yang berfungsi dengan baik pada mesin berkuasa rendah. Et lettvektig skrivebordsmiljø som fungerer bra på eldre og tregere maskiner. चाँडो अन्त्य हुने मेसिनमा राम्रोसँग कार्य गर्ने हल्का डेस्कटप परिवेश । Een lichtgewicht bureaubladomgeving die zeer geschikt is voor minder krachtige machines. Tikologo ya teseke e bohwefo yeo e šomago gabotse kudu metšheneng ya tlase. ଗୋଟିଏ ହାଲୁକା ଡେସ୍କଟପ ପରିବେଶ ଯାହାକି ନିମ୍ନ ଭାଗ ମେସିନ ମାନଙ୍କରେ ଉତ୍ତମ ରୂପେ କାର୍ଯ୍ଯ କରିଥାଏ। ਇੱਕ ਹਲਕਾ ਡੈਸਕਟਾਪ ਇੰਵਾਇਰਨਮੈਂਟ, ਜੋ ਕਿ ਘੱਟ ਸੰਰਚਨਾ ਵਾਲੀਆਂ ਮਸ਼ੀਨਾਂ ਉੱਤੇ ਕੰਮ ਕਰਦਾ ਹੈ। Lekkie środowisko graficzne, które dobrze działa na słabych komputerach. Um ambiente de trabalho leve que funciona bem em máquinas com recursos modestos. Um ambiente de trabalho leve que funciona bem em máquinas de baixo custo. Un mediu de lucru lejer care funcționează bine pe calculatoare mai slabe. Облегчённая среда рабочего стола, подходящая для слабых машин. Jednoduché pracovné prostredie, ktoré dobre pracuje na pomalších počítačoch. Lahko namizje, ki deluje dobro tudi na skromnih računalnikih. Mjedis dekstop i peshës së lehtë që punon bukur në makina të shkallës së fundit. Лагано радно окружење које ради добро на слабијим машинама. Lagano radno okruženje koje radi dobro na slabijim mašinama. Lagano radno okruženje koje radi dobro na slabijim mašinama. En lättviktig skrivbordsmiljö som fungerar bra på långsammare maskiner. ஒரு lightweight பணிமேடை சூழல் குறைந்த செயல்திறன் கொண்ட கணினிகளில் நன்றாக பணியாற்றுகிறது. తక్కువ బరువున్న డెస్కుటాప్ వాతావరణం అది తక్కువ సమాప్తిగల కంప్యూటర్లలో పనిచేస్తుంది. Муҳити мизи корие, ки ҳам дар компютерҳои суст кор мекунад. xml:lang="th">สภาพแวดล้อมเดสก์ท็อปที่สามารถทำงานได้ดีบนเครื่องรุ่นเก่า Невибагливий до ресурсів робочий стіл, що добре працює на слабких машинах. xml:lang="zh_CN">一个能在低端机器上良好运行的轻便桌面环境。 xml:lang="zh_TW">輕型的桌面環境,適用於低階電腦。 false true Thunar xfce-utils xfce4-panel xfce4-session xfce4-settings xfconf xfdesktop xfwm4 gdm leafpad openssh-askpass orage polkit-gnome thunar-archive-plugin thunar-volman tumbler xfce4-appfinder xfce4-icon-theme xfce4-power-manager xfce4-session-engines xfce4-terminal xfwm4-theme-nodoka xfwm4-themes type="conditional">pinentry-gtk On 08/06/2018 01:39 PM, Robert Moskowitz w
Re: [CentOS] Back to Xfce
On 08/06/2018 11:51 AM, Tony Schreiner wrote: On Mon, Aug 6, 2018 at 11:33 AM Robert Moskowitz wrote: On 08/06/2018 11:11 AM, Tony Schreiner wrote: On Mon, Aug 6, 2018 at 10:55 AM Robert Moskowitz wrote: Nicolas, Thank you! But I am Dyslexic and very mono-linguistic; at least I could read the actual commands, if not all the wonderful comments... On 08/06/2018 10:26 AM, Nicolas Kovacs wrote: Le 06/08/2018 à 16:05, Robert Moskowitz a écrit : But notes that this installs Gnome (which I don't want) and that instead to yum groupinstall “X Window System” But has concerns if this installs all needed followed up with yum groupinstall "Xfce" Thing is on armhfp, I do not have “X Window System” or "Xfce" I can partially answer your question, since I'm running Xfce both on my workstation and my laptop. I switched to Xfce with Fedora 20 and have put up with Gnome on my Centos systems so far. Here's my custom script that installs a full-blow bells-and-whistles Xfce desktop from a minimal CentOS installation, without any unnecessary packages. https://github.com/kikinovak/centos-7-desktop-xfce/blob/master/postinstall.sh Once you've installed the "X Window System" group and you invoke "yum groupinstall Xfce", the group consists of not much more than a dozen explicit core packages (Thunar, xfdesktop, xfce4-panel, etc.) and then - of course - all the dependencies are installed. Give this a spin on an x86_64 machine and then write down this relatively short list. I don't have an x86_64 machine with Centos on it. I would have to play with Qemu VM for centos on this Fedora 28 notebook. All my servers (other than the ClearOS one) are ARM. The armhfp repos (including epel) do not have either the "X Windows System" or "Xfce" (and any sub-groups that calls). So I am asking for the content of those groups. Hopefully the source scripts so I can modify them (as needed) for armhfp. It would seem that there is a source file somewhere in the source tree with the script(s) contents. thanks In the file 5307666922f0cd10058b04791f3f596cfcaab48df6fdd6cf847f349bd455e0bd-comps-Everything.x86_64.xml from the repodata in the Epel 7 repository there is the following for the Xfce group, is this helpful to you? Yes! I can pull out the rpm list and build a file to feed into yum. Can you point out the URL for all the groups? I am also going to need the "X Windows System" group, I believe (and should compare it to the Server GUI group). Thanks The comps file i searched was (for example) http://fedora-epel.mirror.lstn.net/7/x86_64/repodata/5307666922f0cd10058b04791f3f596cfcaab48df6fdd6cf847f349bd455e0bd-comps-Everything.x86_64.xml you can choose any Fedora/Epel mirror But the "X Window System" group is in CentOS base, look for one of those mirrors (for example) http://mirror.atlanticmetro.net/centos/7.5.1804/os/x86_64/repodata/d87379a47bc2060f833000b9cef7f9670195fe197271d37fce5791e669265e8b-c7-x86_64-comps.xml do grep "" your-comps.xml-fil to see all the names then page it and search for "X Window System" in your case Big help here. With this and http://yum.baseurl.org/wiki/YumGroups I should be able to create my own repo with the groups I need, then hand it off to the armhfp maintainers. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Back to Xfce
On 08/06/2018 11:11 AM, Tony Schreiner wrote: On Mon, Aug 6, 2018 at 10:55 AM Robert Moskowitz wrote: Nicolas, Thank you! But I am Dyslexic and very mono-linguistic; at least I could read the actual commands, if not all the wonderful comments... On 08/06/2018 10:26 AM, Nicolas Kovacs wrote: Le 06/08/2018 à 16:05, Robert Moskowitz a écrit : But notes that this installs Gnome (which I don't want) and that instead to yum groupinstall “X Window System” But has concerns if this installs all needed followed up with yum groupinstall "Xfce" Thing is on armhfp, I do not have “X Window System” or "Xfce" I can partially answer your question, since I'm running Xfce both on my workstation and my laptop. I switched to Xfce with Fedora 20 and have put up with Gnome on my Centos systems so far. Here's my custom script that installs a full-blow bells-and-whistles Xfce desktop from a minimal CentOS installation, without any unnecessary packages. https://github.com/kikinovak/centos-7-desktop-xfce/blob/master/postinstall.sh Once you've installed the "X Window System" group and you invoke "yum groupinstall Xfce", the group consists of not much more than a dozen explicit core packages (Thunar, xfdesktop, xfce4-panel, etc.) and then - of course - all the dependencies are installed. Give this a spin on an x86_64 machine and then write down this relatively short list. I don't have an x86_64 machine with Centos on it. I would have to play with Qemu VM for centos on this Fedora 28 notebook. All my servers (other than the ClearOS one) are ARM. The armhfp repos (including epel) do not have either the "X Windows System" or "Xfce" (and any sub-groups that calls). So I am asking for the content of those groups. Hopefully the source scripts so I can modify them (as needed) for armhfp. It would seem that there is a source file somewhere in the source tree with the script(s) contents. thanks In the file 5307666922f0cd10058b04791f3f596cfcaab48df6fdd6cf847f349bd455e0bd-comps-Everything.x86_64.xml from the repodata in the Epel 7 repository there is the following for the Xfce group, is this helpful to you? Yes! I can pull out the rpm list and build a file to feed into yum. Can you point out the URL for all the groups? I am also going to need the "X Windows System" group, I believe (and should compare it to the Server GUI group). Thanks Thunar xfce-utils xfce4-panel xfce4-session xfce4-settings xfconf xfdesktop xfwm4 NetworkManager-gnome gdm leafpad openssh-askpass orage polkit-gnome thunar-archive-plugin thunar-volman tumbler xfce4-appfinder xfce4-icon-theme xfce4-power-manager xfce4-pulseaudio-plugin xfce4-session-engines xfce4-terminal xfwm4-theme-nodoka xfwm4-themes pinentry-gtk ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Back to Xfce
Nicolas, Thank you! But I am Dyslexic and very mono-linguistic; at least I could read the actual commands, if not all the wonderful comments... On 08/06/2018 10:26 AM, Nicolas Kovacs wrote: Le 06/08/2018 à 16:05, Robert Moskowitz a écrit : But notes that this installs Gnome (which I don't want) and that instead to yum groupinstall “X Window System” But has concerns if this installs all needed followed up with yum groupinstall "Xfce" Thing is on armhfp, I do not have “X Window System” or "Xfce" I can partially answer your question, since I'm running Xfce both on my workstation and my laptop. I switched to Xfce with Fedora 20 and have put up with Gnome on my Centos systems so far. Here's my custom script that installs a full-blow bells-and-whistles Xfce desktop from a minimal CentOS installation, without any unnecessary packages. https://github.com/kikinovak/centos-7-desktop-xfce/blob/master/postinstall.sh Once you've installed the "X Window System" group and you invoke "yum groupinstall Xfce", the group consists of not much more than a dozen explicit core packages (Thunar, xfdesktop, xfce4-panel, etc.) and then - of course - all the dependencies are installed. Give this a spin on an x86_64 machine and then write down this relatively short list. I don't have an x86_64 machine with Centos on it. I would have to play with Qemu VM for centos on this Fedora 28 notebook. All my servers (other than the ClearOS one) are ARM. The armhfp repos (including epel) do not have either the "X Windows System" or "Xfce" (and any sub-groups that calls). So I am asking for the content of those groups. Hopefully the source scripts so I can modify them (as needed) for armhfp. It would seem that there is a source file somewhere in the source tree with the script(s) contents. thanks Cheers, Niki ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Back to Xfce
Now that the basic server is up and running. With Gnome via VNC (yuck), it is time to go back and figure out howto install Xfce without an Xfce group script. So I am asking those with X64 Centos for some pointers. Like where are the group scripts so maybe I can modify them for armhfp. I was reading: https://www.rootusers.com/how-to-install-xfce-gui-in-centos-7-linux/ Where the author talks about doing a minimal install then running: yum groupinstall "Server with GUI" But notes that this installs Gnome (which I don't want) and that instead to yum groupinstall “X Window System” But has concerns if this installs all needed followed up with yum groupinstall "Xfce" Thing is on armhfp, I do not have “X Window System” or "Xfce" I have come to understand that groups are scripts that install all the need rpms for the group. But I have not found where these scripts are so hopefully I can see them, figure out how to modify them for the armhfp rpms, and run them. So I am looking for pointers on where these are in tehx64 repos, and how to work with these scripts. thank you for your help.. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync versioning problem
Warren, Just want to say thanks. I have my automated backups going now. Good old cronie. Since I have a cat6 line to my neighbor (as a favor for their net access), I only have to move the backup box to his house and I have off-site backups for $150 outlay (arm SOC and 4 TB drive) and <$50/yr electric (our rate is ~$0.21/KWH). You can't buy cloud storage for that price. On 08/03/2018 12:17 PM, Warren Young wrote: On Aug 3, 2018, at 9:59 AM, Robert Moskowitz wrote: You haven’t needed "-e ssh” since rsync 2.6.0, which made it the default. It was released in 2004. How do I specify -p and -l that I cut out of my example? Add it to ~/.ssh/config: Host nevia.htt-consult.com Port User rmoskowitz You might not think of rsync as paying attention to this file, which is correct, because it doesn’t. But since it is executing ssh under the hood, and ssh *does* pay attention to that file, it takes effect. If you’re creating that file for the first time, be sure to chmod 600 it. Ssh will ignore it if it’s not locked-down. RTFM for details. /var/flexshare/shares x.htt-consult.com:/media/backup/homebase/var/flexshare/shares/ Rsync won’t create multiple levels of directories on the target. It will only create up to one level of missing directories. Try this: $ ssh x.htt-consult.com 'mkdir -p /media/backup/homebase/var/flexshare/shares/' Oh? I have been doing this in one shape or form for a long time. Let me clarify: If only /media/backup exists on the remote machine, I believe you’ll end up with /media/backup/shares with that command. If at least /media/backup/homebase/var/flexshare exists, rsync will always create “shares” under “flexshare" on the remote host. Anything below that level will also be created, regardless of depth. I’m speaking only of the target path given as the last argument to rsync here, not of the source machine’s directories discovered during the sync process. It’s possible this behavior changed since I last looked at it. I ran into this issue many years ago and now ensure that the target path passed to the rsync command exists on the remote host before starting the sync. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync versioning problem
Warren, Thanks! On 08/03/2018 12:17 PM, Warren Young wrote: On Aug 3, 2018, at 9:59 AM, Robert Moskowitz wrote: You haven’t needed "-e ssh” since rsync 2.6.0, which made it the default. It was released in 2004. How do I specify -p and -l that I cut out of my example? Add it to ~/.ssh/config: Host nevia.htt-consult.com Port User rmoskowitz I will look into this and rtfm :) I have been doing this for so long, I never paid attention to the change. The man pages I originally used said to use -e ssh You might not think of rsync as paying attention to this file, which is correct, because it doesn’t. But since it is executing ssh under the hood, and ssh *does* pay attention to that file, it takes effect. If you’re creating that file for the first time, be sure to chmod 600 it. Ssh will ignore it if it’s not locked-down. RTFM for details. And then still ask Dr. Google. Page's father WAS one of my profs at MSU. /var/flexshare/shares x.htt-consult.com:/media/backup/homebase/var/flexshare/shares/ Rsync won’t create multiple levels of directories on the target. It will only create up to one level of missing directories. Try this: $ ssh x.htt-consult.com 'mkdir -p /media/backup/homebase/var/flexshare/shares/' Oh? I have been doing this in one shape or form for a long time. Let me clarify: If only /media/backup exists on the remote machine, I believe you’ll end up with /media/backup/shares with that command. If at least /media/backup/homebase/var/flexshare exists, rsync will always create “shares” under “flexshare" on the remote host. Anything below that level will also be created, regardless of depth. I’m speaking only of the target path given as the last argument to rsync here, not of the source machine’s directories discovered during the sync process. It’s possible this behavior changed since I last looked at it. I ran into this issue many years ago and now ensure that the target path passed to the rsync command exists on the remote host before starting the sync. Always a challenge to get this right and get the right behavior. I use rsync for backing up my data from my notebook to a USB drive. Also when I was active in IEEE 802, at the meetings I could rsync all the documents off the local server. The public server does not support rsync. Plus I rsync all the IETF RFCs and drafts every night. So I have a lot of old habits. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync versioning problem
On 08/03/2018 11:07 AM, Warren Young wrote: On Aug 3, 2018, at 8:57 AM, Robert Moskowitz wrote: I seem to have an rsync versioning problem. Have you ruled out the other causes of that error? For instance: https://askubuntu.com/a/716911 yeah. It is backups, not backup. Oops. And researching this it comes down to a versioning issue. That seems rather unlikely for such an old and stable tool as rsync, and especially for two versions with the same major version number. If you’d said rsync 2 and 3 or we were talking about a tool that still hadn’t hit 1.0 yet, I’d believe the protocol was still in flux, but rsync is 22 years old now. On the other hand, 3.0.6 is nine years old now, so maybe. rsync -ah --stats --delete -e “ssh" You haven’t needed "-e ssh” since rsync 2.6.0, which made it the default. It was released in 2004. How do I specify -p and -l that I cut out of my example? "ssh -pnnn -luserid" /var/flexshare/shares x.htt-consult.com:/media/backup/homebase/var/flexshare/shares/ Rsync won’t create multiple levels of directories on the target. It will only create up to one level of missing directories. Try this: $ ssh x.htt-consult.com 'mkdir -p /media/backup/homebase/var/flexshare/shares/' Oh? I have been doing this in one shape or form for a long time. It is running right now, copying all the sub dirs and creating any new needed with: rsync -ah --stats --delete -e "ssh -p -l user" /var/flexshare/shares/ nevia.htt-consult.com:/media/WD3TB01/backups/homebase/var/flexshare/shares Note the source ending with / That is needed. Without it, it creates a shares directory under the target directory. Then retry the rsync. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] rsync versioning problem
I seem to have an rsync versioning problem. The sender is an old ClearOS6 server with rsynv 3.0.6 The receiver is a brand new Centos7-armv7 server with rsync 3.1.2 I am running rsync over ssh Got the error: rsync error: error in rsync protocol data stream (code 12) at io.c(600) [sender=3.0.6] And researching this it comes down to a versioning issue. But all I have found was to upgrade the 3.0.6 system! That will happen when I migrate to ClearOS7! Is there some option to specify to get this to work? rsync -ah --stats --delete -e "ssh" /var/flexshare/shares x.htt-consult.com:/media/backup/homebase/var/flexshare/shares/ ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to set macaddr with nmcli
Yo, Mark On 08/03/2018 09:34 AM, mark wrote: Robert Moskowitz wrote: I see my problem. I mis-read what nmcli con mod eth0 mac "02:67:15:00:81:0B" does. It sets HWADDR; which interface to link to, not MACADDR, what MAC address you want for your interface. So I have read the nmcli pages and googled a bit. I cannot find a way to set MACADDR. I suppose I can set HWADDR then use sed to change it to MACADDR, but this seems a real hack. Do it in the ifcfg-*, and in /etc/udev/rules.d/*-net.rules. I *think* that's all I've changed. I don't need the udev/rules. C7-armv7 is working just fine with eth0. But I want to script it for my howto using nmcli. I cannot see how to set MACADDR with nmcli. I may have to join their list to ask. Nicely. I have to spoof it on a couple of users' workstations, because they're running 9 yr old software that's productive... and tied to the MAC address *and* to the NIC name, so I have to have a couple of parms on the grub2 command line, because it *has* to be named eth0. Oh, and the maker was sold, and the new company says, "you changed machines? Sure, we'll generate a new license... that'll be $15,000, please. Yeah, what he said. Been there. BTW, I remember setting MAC addresses on 3COM 3C501C boards because the old board died and we had software licensed to specific MAC addresses. So you had to specify your MAC address in the config file. The DEC admin had to do a similar thing if he had to swap out his LAN card (related: read up on why Dr. Comer set ARP timeout to 10min). Then there was that counterfeit 3C503C from Malaysia, all with the same MAC address. Caused havoc on the networks. EVERYONE had to specify their MAC address with those. 3COM did find the plant making these clones and shut them down. But the damage was done to a lot of us. Oh, wow, I don't remember hearing about that. What a freakin' pain! I knew the 3COM engineer that figured it out. The boards were perfect clones. But all with the same MAC address. Packaging was perfect. He put one of the boxes in water until it came apart, got someone to read the newspapers the box was made from. Figured out what city they were from. Then hired investigators to find the plant. They had etched down the chips on a board to make their own masks. Except they did not understand that each board had a unique macaddr burnt in... We (Chrysler) only had about 10 of them (of course for manager's PCs). But I heard that GM had done a big buy from a supplier... ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] How to set macaddr with nmcli
I see my problem. I mis-read what nmcli con mod eth0 mac "02:67:15:00:81:0B" does. It sets HWADDR; which interface to link to, not MACADDR, what MAC address you want for your interface. So I have read the nmcli pages and googled a bit. I cannot find a way to set MACADDR. I suppose I can set HWADDR then use sed to change it to MACADDR, but this seems a real hack. ARM boards do not have assigned MAC addresses. Uboot uses various information to generate a local MAC address. I want finer control of my MAC address for my servers. In the past, I just edited ifcfg-eth0. I am trying now to do it all with nmcli. I thought I had it, but I misread the manual. Any pointers? thanks BTW, I remember setting MAC addresses on 3COM 3C501C boards because the old board died and we had software licensed to specific MAC addresses. So you had to specify your MAC address in the config file. The DEC admin had to do a similar thing if he had to swap out his LAN card (related: read up on why Dr. Comer set ARP timeout to 10min). Then there was that counterfeit 3C503C from Malaysia, all with the same MAC address. Caused havoc on the networks. EVERYONE had to specify their MAC address with those. 3COM did find the plant making these clones and shut them down. But the damage was done to a lot of us. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] How to set macaddr with nmcli
I see my problem. I mis-read what nmcli con mod eth0 mac "02:67:15:00:81:0B" does. It sets HWADDR; which interface to link to, not MACADDR, what MAC address you want for your interface. So I have read the nmcli pages and googled a bit. I cannot find a way to set MACADDR. I suppose I can set HWADDR then use sed to change it to MACADDR, but this seems a real hack. ARM boards do not have assigned MAC addresses. Uboot uses various information to generate a local MAC address. I want finer control of my MAC address for my servers. In the past, I just edited ifcfg-eth0. I am trying now to do it all with nmcli. I thought I had it, but I misread the manual. Any pointers? thanks BTW, I remember setting MAC addresses on 3COM 3C501C boards because the old board died and we had software licensed to specific MAC addresses. So you had to specify your MAC address in the config file. The DEC admin had to do a similar thing if he had to swap out his LAN card (related: read up on why Dr. Comer set ARP timeout to 10min). Then there was that counterfeit 3C503C from Malaysia, all with the same MAC address. Caused havoc on the networks. EVERYONE had to specify their MAC address with those. 3COM did find the plant making these clones and shut them down. But the damage was done to a lot of us. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] SOlved? - Re: ifcfg-link?
Took out the mac= line from ifcfg-eth0 and it is working. May have to put in a 70-persistant rule. Had to do this with an earlier setup. On 08/02/2018 07:18 PM, Robert Moskowitz wrote: This is happening with the Centos7-armv7 image 1804, but I was wondering if it is a broader C7 issue. My image has only 2 ifcfg files: ifcfg-l0 and -link. 'ip a' is listing the ethernet as eth0. ifcfg-link has contains: DEVICE=link BOOTPROTO=dhcp ONBOOT=on I then used nmcli to create my ifcfg-eth0 nmcli con delete eth0 nmcli con add type ethernet con-name eth0 ifname eth0 ip4 192.168.129.11/25 gw4 192.168.129.1 nmcli con mod eth0 ipv4.dns "50.253.254.2 192.168.129.1" nmcli con mod eth0 mac "02:67:15:00:81:0B" I moved the cable to the 192.168.129.1 vlan (which does not have a dhcp server), and nmcli con up eth0 Error: Connection activation failed: No suitable device found for this connection. Oops. ? rebooting did not help. Came up with no address for interface eth0, yet no suitable device. Where would I look to find what may be happening here? I appreciate that this may be specific to armv7 and my Cubieboard2, but then again, it may be something known by other Centos people. Thanks for any help! ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] ifcfg-link?
This is happening with the Centos7-armv7 image 1804, but I was wondering if it is a broader C7 issue. My image has only 2 ifcfg files: ifcfg-l0 and -link. 'ip a' is listing the ethernet as eth0. ifcfg-link has contains: DEVICE=link BOOTPROTO=dhcp ONBOOT=on I then used nmcli to create my ifcfg-eth0 nmcli con delete eth0 nmcli con add type ethernet con-name eth0 ifname eth0 ip4 192.168.129.11/25 gw4 192.168.129.1 nmcli con mod eth0 ipv4.dns "50.253.254.2 192.168.129.1" nmcli con mod eth0 mac "02:67:15:00:81:0B" I moved the cable to the 192.168.129.1 vlan (which does not have a dhcp server), and nmcli con up eth0 Error: Connection activation failed: No suitable device found for this connection. Oops. ? rebooting did not help. Came up with no address for interface eth0, yet no suitable device. Where would I look to find what may be happening here? I appreciate that this may be specific to armv7 and my Cubieboard2, but then again, it may be something known by other Centos people. Thanks for any help! ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 Xfce group
On 08/01/2018 01:41 PM, Phil Perry wrote: On 01/08/18 18:28, Robert Moskowitz wrote: I have learned that the Xfce files are in the EPEL repo and with C7, everything is there for a group install. This is not (currently) the case with the armv7 repos. So I am looking for WHAT is installed for the base Xfce group for starters... thanks Does this help: http://pastebin.centos.org/1251906/raw/ Thanks. It is a starting point. I will spend a bit of time on this tomorrow. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C7 Xfce group
I have learned that the Xfce files are in the EPEL repo and with C7, everything is there for a group install. This is not (currently) the case with the armv7 repos. So I am looking for WHAT is installed for the base Xfce group for starters... thanks On 08/01/2018 09:10 AM, Robert Moskowitz wrote: I am working with Centos-arm which right now only has the gnome and kde desktops. I am spoiled with using Xfce on all my Fedora systems (MUCH longer battery life on my notebook, for example). I like its simplicity. I see from messages here that mainline C7 does have the Xfce desktop. Can someone give me a list of rpms that make up the group, so I can try starting with the minimal image and see if I can build an Xfce desktop? Meanwhile I am going to put in a request for Xfce on the centos-arm list. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Strange vncserver behavior
I got vncserver working per: https://www.tecmint.com/install-and-configure-vnc-server-in-centos-7/ Then I went to set up a second instance, and have that for logging on to root: == cp /lib/systemd/system/vncserver@.service /etc/systemd/system/vncserver@:2.service vi /etc/systemd/system/vncserver@\:2.service replace with root systemctl daemon-reload systemctl start vncserver@:2 == I got the message: Job for vncserver@:2.service failed because a configured resource limit was exceeded. See "systemctl status vncserver@:2.service" and "journalctl -xe" for details. #systemctl -l status vncserver@:2.service ● vncserver@:2.service - Remote desktop service (VNC) Loaded: loaded (/etc/systemd/system/vncserver@:2.service; disabled; vendor preset: disabled) Active: failed (Result: resources) since Wed 2018-08-01 08:45:19 EDT; 1min 8s ago Process: 2267 ExecStart=/usr/sbin/runuser -l root -c /usr/bin/vncserver %i (code=exited, status=0/SUCCESS) Process: 2260 ExecStartPre=/bin/sh -c /usr/bin/vncserver -kill %i > /dev/null 2>&1 || : (code=exited, status=0/SUCCESS) Aug 01 08:45:14 localhost systemd[1]: Starting Remote desktop service (VNC)... Aug 01 08:45:19 localhost systemd[1]: PID file /home/root/.vnc/localhost:2.pid not readable (yet?) after start. Aug 01 08:45:19 localhost systemd[1]: Failed to start Remote desktop service (VNC). Aug 01 08:45:19 localhost systemd[1]: Unit vncserver@:2.service entered failed state. Aug 01 08:45:19 localhost systemd[1]: vncserver@:2.service failed. === And yet, I am able to connect to 5902! It is running. cat /root/.vnc/localhost:2.log shows: Xvnc TigerVNC 1.8.0 - built Apr 11 2018 21:04:25 Copyright (C) 1999-2017 TigerVNC Team and many others (see README.txt) See http://www.tigervnc.org for information on TigerVNC. Underlying X server release 11903000, The X.Org Foundation Wed Aug 1 08:45:16 2018 vncext: VNC extension running! vncext: Listening for VNC connections on all interface(s), port 5902 vncext: created VNC server for screen 0 Wed Aug 1 08:45:23 2018 ComparingUpdateTracker: 0 pixels in / 0 pixels out ComparingUpdateTracker: (1:nan ratio) Wed Aug 1 08:51:01 2018 Connections: accepted: 192.168.160.20::53318 SConnection: Client needs protocol version 3.8 SConnection: Client requests security type VeNCrypt(19) SVeNCrypt: Client requests security type TLSVnc (258) etc. what is going on with systemctl? thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] C7 Xfce group
I am working with Centos-arm which right now only has the gnome and kde desktops. I am spoiled with using Xfce on all my Fedora systems (MUCH longer battery life on my notebook, for example). I like its simplicity. I see from messages here that mainline C7 does have the Xfce desktop. Can someone give me a list of rpms that make up the group, so I can try starting with the minimal image and see if I can build an Xfce desktop? Meanwhile I am going to put in a request for Xfce on the centos-arm list. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple OCSP server ??
Alice, Have you found an OCSP responder? I am writing an Internet Draft for using openssl to set up a simple ECDSA pki: https://datatracker.ietf.org/doc/draft-moskowitz-ecdsa-pki/ It is PAST time that the default for certs is RSA, and rather move on to ECDSA. EdDSA is almost ready to ship! (Dan Bernstein's ECC rather than NIST/NSA, plus they ARE better curves) Version 01 is in the works that adds CRL (done) and OCSP (almost done). I should have this version posted by middle of next week. Right now I use self-signed certs for all my servers, but I plan on creating my own small PKI and running my own OCSP responder. I also would like to find something 'simple'. ECDSA will have better response for DANE. EdDSA will be even better! But it will take the NEXT version of openssl to provide support. Bob On 04/16/2017 12:43 PM, Robert Moskowitz wrote: What about the pki package that comes with Centos? pki-server and pki-ca? On 04/16/2017 11:54 AM, Alice Wonder wrote: Oh I don't know, their github works. However it seems that it isn't able to deal with more than one ocsp signing key. On 04/16/2017 08:40 AM, Robert Moskowitz wrote: On 04/14/2017 10:41 PM, Alice Wonder wrote: https://www.openca.org/ might fit my needs. their Centos repo does not exist, it seems? On 04/14/2017 06:29 PM, Alice Wonder wrote: Hello list, I'm contemplating running my own CA to implement the new proposed ISP for validation of S/MIME certificates via DANE. I already use self-signed for my MX servers (with 3 1 1 dane records on TCP port 25) but I don't want to use self-signed for S/MIME for user specific x.509 certs because A) That's potentially a lot of DNS records B) That requires a hash of the e-mail addresses in DNS Instead, I will be using a wildcard in DNS with an intermediary that signs the user x.509 certificates. Using an intermediary to sign their certificates though means I can't just revoke their certificates by removing the DNS certificate, I'll need to provide an OCSP server for when one of their private keys gets compromised. I found https://access.redhat.com/documentation/en-US/Red_Hat_Certificate_System/8.1/html/Deploy_and_Install_Guide/install-oscp.html but it looks like that is intended for enterprise, more complex than I need. Anyone know of a good simple script for providing OCSP ?? -=- Not relevant to question but just important for me to note, I will *not* be asking people to install my root certificate in their e-mail clients. I think it is a bad practice to get users in the habit of installing root certificates. I think the PKI system has way way way to many root certificates as it is. I want a world where DANE validates most certificates, and only a few root certificates are needed for things like banks where EV certificates are a must. DANE as a way to validate S/MIME I think will be a godsend to e-mail security, I hope clients implement it. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Errors on an SSD drive
On 08/10/2017 10:31 AM, m.r...@5-cent.us wrote: Robert Moskowitz wrote: On 08/09/2017 10:44 PM, mad.scientist.at.la...@tutanota.com wrote: what file system are you using? ssd drives have different characteristics that need to be accomadated (including a relatively slow write process which is obvious as soon as the buffer is full), and never, never put a swap partition on it, the high activity will wear it out rather quickly. might also check cables, often a problem particularly if they are older sata cables being run at a possibly higher than rated speed. When working with a Cubieboard SoC (or most of the other armv7 boards), you tend to have everything hanging out: http://medon.htt-consult.com/~rgm/cubieboard/cubietower-2.JPG I have checked the cables and they are all tight. in any case, reformating it might not be a bad idea, and you can always use the command line program badblocks to exercise and test it. I will have to look into that. Here's a thought: I've not done this, but could you use smartctl to check the drive? Other than the 17K output from smartctl -x, what do you recommend? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Errors on an SSD drive
On 08/09/2017 10:44 PM, mad.scientist.at.la...@tutanota.com wrote: what file system are you using? ssd drives have different characteristics that need to be accomadated (including a relatively slow write process which is obvious as soon as the buffer is full), and never, never put a swap partition on it, the high activity will wear it out rather quickly. might also check cables, often a problem particularly if they are older sata cables being run at a possibly higher than rated speed. When working with a Cubieboard SoC (or most of the other armv7 boards), you tend to have everything hanging out: http://medon.htt-consult.com/~rgm/cubieboard/cubietower-2.JPG I have checked the cables and they are all tight. in any case, reformating it might not be a bad idea, and you can always use the command line program badblocks to exercise and test it. I will have to look into that. keep in mind the drive will invisibly remap any bad sectors if possible. if the reported size of the drive is smaller than it should be the drive has run out of spare blocks and dying blocks are being removed from the storage place with no replacements. -- Securely sent with Tutanota. Claim your encrypted mailbox today! https://tutanota.com 9. Aug 2017 18:44 by elie...@ngtech.co.il: I have yet to see a SSD read\write error which wasn't related to disk issues like a bad sector but the controller might have an issue with the drive. To verify it you will need to burn some read\write IOPS of the drive but if it's under warranty then it's better to verify it now then later. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: > elie...@ngtech.co.il -Original Message- From: CentOS [> mailto:centos-boun...@centos.org> ] On Behalf Of Robert Moskowitz Sent: Wednesday, August 9, 2017 17:03 To: CentOS mailing list <> centos@centos.org> > Subject: [CentOS] Errors on an SSD drive I am building a new system using an Kingston 240GB SSD drive I pulled from my notebook (when I had to upgrade to a 500GB SSD drive). Centos install went fine and ran for a couple days then got errors on the console. Here is an example: [168176.995064] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168177.004050] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168177.011615] blk_update_request: I/O error, dev sda, sector 17066160 [168487.534510] sd 0:0:0:0: [sda] tag#17 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168487.543576] sd 0:0:0:0: [sda] tag#17 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168487.551206] blk_update_request: I/O error, dev sda, sector 17066160 [168787.813941] sd 0:0:0:0: [sda] tag#20 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168787.822951] sd 0:0:0:0: [sda] tag#20 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168787.830544] blk_update_request: I/O error, dev sda, sector 17066160 Eventually, I could not do anything on the system. Not even a 'reboot'. I had to do a cold power cycle to bring things back. Is there anything to do about this or trash the drive and start anew? Thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Errors on an SSD drive
On 08/09/2017 01:48 PM, hw wrote: Robert Moskowitz wrote: I am building a new system using an Kingston 240GB SSD drive I pulled from my notebook (when I had to upgrade to a 500GB SSD drive). Centos install went fine and ran for a couple days then got errors on the console. Here is an example: [168176.995064] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168177.004050] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168177.011615] blk_update_request: I/O error, dev sda, sector 17066160 [168487.534510] sd 0:0:0:0: [sda] tag#17 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168487.543576] sd 0:0:0:0: [sda] tag#17 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168487.551206] blk_update_request: I/O error, dev sda, sector 17066160 [168787.813941] sd 0:0:0:0: [sda] tag#20 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168787.822951] sd 0:0:0:0: [sda] tag#20 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168787.830544] blk_update_request: I/O error, dev sda, sector 17066160 Eventually, I could not do anything on the system. Not even a 'reboot'. I had to do a cold power cycle to bring things back. Is there anything to do about this or trash the drive and start anew? Make sure the cables and power supply are ok. Try the drive in another machine that has a different controller to see if there is an incompatibility between the drive and the controller. You could make a btrfs file system on the whole device: that should say that a trim operation is performed for the whole device. Maybe that helps. This is a Centos7-armv7hl install which is done by dd the provided image onto a drive, so really can't alter the provided file systems much other than to resize them. What I have is: Model: ATA KINGSTON SV300S3 (scsi) Disk /dev/sda: 240GB Sector size (logical/physical): 512B/512B Partition Table: msdos Disk Flags: Number Start End SizeType File system Flags 1 1049kB 1075MB 1074MB primary ext3 2 1075MB 2149MB 1074MB primary linux-swap(v1) 3 2149MB 240GB 238GB primary ext4 If the errors persist, replace the drive. I´d use Intel SSDs because they seam to have the least problems with broken firmwares. Do not use SSDs with hardware RAID controllers unless the SSDs were designed for this application. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Errors on an SSD drive
On 08/09/2017 10:46 AM, Chris Murphy wrote: If it's a bad sector problem, you'd write to sector 17066160 and see if the drive complies or spits back a write error. It looks like a bad sector in that the same LBA is reported each time but I've only ever seen this with both a read error and a UNC error. So I'm not sure it's a bad sector. What is DID_BAD_TARGET? I have no experience on how to force a write to a specific sector and not cause other problems. I suspect that this sector is in the / partition: Disk /dev/sda: 240.1 GB, 240057409536 bytes, 468862128 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 512 bytes I/O size (minimum/optimal): 512 bytes / 512 bytes Disk label type: dos Disk identifier: 0xc89d Device Boot Start End Blocks Id System /dev/sda12048 2099199 1048576 83 Linux /dev/sda2 2099200 4196351 1048576 82 Linux swap / Solaris /dev/sda3 4196352 468862127 232332888 83 Linux But I don't know where it is in relation to the way the drive was formatted in my notebook. I think it would have been in the / partition. And what do you get for smartctl -x About 17KB of output? I don't know how to read what it is saying, but noted in the beginning: Write SCT (Get) XXX Error Recovery Control Command failed: scsi error badly formed scsi parameters Don't know what this means... BTW, the system is a Cubieboard2 armv7 SoC running Centos7-armv7hl. This is the first time I have used an SSD on a Cubie, but I know it is frequently done. I would have to ask on the Cubie forum what others experience with SSDs have been. Chris Murphy On Wed, Aug 9, 2017, 8:03 AM Robert Moskowitz <r...@htt-consult.com> wrote: I am building a new system using an Kingston 240GB SSD drive I pulled from my notebook (when I had to upgrade to a 500GB SSD drive). Centos install went fine and ran for a couple days then got errors on the console. Here is an example: [168176.995064] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168177.004050] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168177.011615] blk_update_request: I/O error, dev sda, sector 17066160 [168487.534510] sd 0:0:0:0: [sda] tag#17 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168487.543576] sd 0:0:0:0: [sda] tag#17 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168487.551206] blk_update_request: I/O error, dev sda, sector 17066160 [168787.813941] sd 0:0:0:0: [sda] tag#20 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168787.822951] sd 0:0:0:0: [sda] tag#20 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168787.830544] blk_update_request: I/O error, dev sda, sector 17066160 Eventually, I could not do anything on the system. Not even a 'reboot'. I had to do a cold power cycle to bring things back. Is there anything to do about this or trash the drive and start anew? Thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Errors on an SSD drive
I am building a new system using an Kingston 240GB SSD drive I pulled from my notebook (when I had to upgrade to a 500GB SSD drive). Centos install went fine and ran for a couple days then got errors on the console. Here is an example: [168176.995064] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168177.004050] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168177.011615] blk_update_request: I/O error, dev sda, sector 17066160 [168487.534510] sd 0:0:0:0: [sda] tag#17 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168487.543576] sd 0:0:0:0: [sda] tag#17 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168487.551206] blk_update_request: I/O error, dev sda, sector 17066160 [168787.813941] sd 0:0:0:0: [sda] tag#20 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168787.822951] sd 0:0:0:0: [sda] tag#20 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168787.830544] blk_update_request: I/O error, dev sda, sector 17066160 Eventually, I could not do anything on the system. Not even a 'reboot'. I had to do a cold power cycle to bring things back. Is there anything to do about this or trash the drive and start anew? Thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Cloud and php
I am looking at cloud software. On Centos7-armv7hl, of course. I was pointed to Nextcloud, but v11 CAN work with php 5.4 in Centos7, but recommends at least 5.5 for security updates and performance (important on arm), but recommends php 7. Nextcloud 12 has a minimum requirement of php 5.6 (according to their install pages). So. What are others doing for: Cloud Php ??? I could always start with Fedora26, but want to stay with Centos if I can. thank you. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Light-weight window manager, recommendations
Oh, I should mention that I have an Asus ee900 running F21 with Xfce. Works great for what I want it for... Bob On 08/07/2017 11:55 AM, Robert Moskowitz wrote: I use Xfce. Got into it on my arm boards with Fedora-arm, and run it on my notebook with Fedora_x64. Thing is that it is not a group for Centos, you have to do the install by apps which I can help with, as I have installed it on a ClearOS7 server. A few things ARE missing and I really need to submit a bug report about that... But Xfce is really good to work with. Bob On 08/04/2017 05:32 PM, m.r...@5-cent.us wrote: So, I've mentioned that I've got an original netbook, circa 2009, and I'm going to put CentOS on it. 32 bit. Not huge disk, old Atom processor, not tons of memory. Any recommendations for a light-weight window manager? Before I went to KDE, I used fvwm2, and all I'm going to do is use it to read webmail and browse, read news, etc, so I don't need a lot. mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Light-weight window manager, recommendations
I use Xfce. Got into it on my arm boards with Fedora-arm, and run it on my notebook with Fedora_x64. Thing is that it is not a group for Centos, you have to do the install by apps which I can help with, as I have installed it on a ClearOS7 server. A few things ARE missing and I really need to submit a bug report about that... But Xfce is really good to work with. Bob On 08/04/2017 05:32 PM, m.r...@5-cent.us wrote: So, I've mentioned that I've got an original netbook, circa 2009, and I'm going to put CentOS on it. 32 bit. Not huge disk, old Atom processor, not tons of memory. Any recommendations for a light-weight window manager? Before I went to KDE, I used fvwm2, and all I'm going to do is use it to read webmail and browse, read news, etc, so I don't need a lot. mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
