Re: [CentOS] Off Topic bash question
On Thu, 2020-07-23 at 10:49 -0400, Jerry Geis wrote: > Sorry - I see it now "remove the cat". > > Thanks "All" for the suggestions. I wasnt aware of the method to > avoid the > cut command. > Here's a few "historical" observations on this thread. 1) Your original script looks like you were trying to write to the syntax of the old Bourne ( sometimes called "boring" ) shell. In the olden days of Unix in the 20th century, that was the ONE shell you could reliably expect to be present on the target machine. 2) You are now using Bash ( Bourne-Again SHell ) which is obviously an evolutionary development and is much more capable. It has SO much more capabilities that ( as others have pointed out ) it can do many things with internal functions that used to require other tools ( "cat", "expr", others ) to accomplish. 3) You write scripts in a similar fashion to the way I do it. Plenty of whoopsies and typos along the way to debug. Since I'm now an old geezer from the prehistoric times of Unix, I still stick to the old thumb rule "The man page is your friend" that some people seem to be forgetting these days. Just my $0.02 (US) worth. > Jerry > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com "God, root, what is difference ?" Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] HP vs. Brother Printers: Use with Centos/Fedora
On Sat, 2020-06-27 at 18:17 -0400, Jay Hart wrote: > We currently have a Brother MFC-5490CN. Printer firmware is dated > June 1010. (yeah, 10 years old). Few years ago the brother software > wouldn't work for printing under Fedora. No problem, can print under > Windows 10. Then it stopped scanning. Could still print...under > Windows. > > Now, to fix the scanning features working I installed updated drivers > under Windows, now it scans like champ, but won't print, at all. > > Time to go!!! I'd say that 10 years is a decent run for a printer, depending on usage. If you want to stick with Brother, check out the Staples Web site and look at the refurb page. I've gotten some good deals there. > > Hence my question... > > Jay > > > > > Our office has had a Brother MFC-8510DN for at least five years - > > no issues. As has been said below, you do have to download and > > install > > the driver but the process hasn't been problematic. Having said > > that, I haven't pushed the limit on it's capabilities, just done > > rather > > plain printing. > > > > > > From: CentOS on behalf of Ron Loftin > elof...@twcny.rr.com> > > Sent: Saturday, June 27, 2020 5:02 PM > > To: centos@centos.org > > Subject: [EXTERNAL] Re: [CentOS] HP vs. Brother Printers: Use with > > Centos/Fedora > > > > CAUTION: This email originated from outside of the organization. Do > > not click links or open attachments unless you recognize the sender > > and know the content is safe. > > > > > > > > Harriscomputer > > > > Leroy Tennison > > Network Information/Cyber Security Specialist > > E: le...@datavoiceint.com > > > > > > [cid:Data-Voice-International-LOGO_aa3d1c6e-5cfb-451f-ba2c- > > af8059e69609.PNG] > > > > > > 2220 Bush Dr > > McKinney, Texas > > 75070 > > www.datavoiceint.com<http://www..com>; > > > > > > This message has been sent on behalf of a company that is part of > > the Harris Operating Group of Constellation Software Inc. > > > > If you prefer not to be contacted by Harris Operating Group please > > notify us<http://subscribe.harriscomputer.com/>. > > > > > > > > This message is intended exclusively for the individual or entity > > to which it is addressed. This communication may contain > > information > > that is proprietary, privileged or confidential or otherwise > > legally exempt from disclosure. If you are not the named addressee, > > you are > > not authorized to read, print, retain, copy or disseminate this > > message or any part of it. If you have received this message in > > error, > > please notify the sender immediately by e-mail and delete all > > copies of the message. > > > > > > > > > > > > On Sat, 2020-06-27 at 15:44 -0600, Frank Cox wrote: > > > > > > On Sat, 27 Jun 2020 17:33:39 -0400 > > > Jay Hart wrote: > > > > > > > > > > > > > > > If you had to rate which printer brand works better with Linux > > > > (Fedora and > > > > Centos), what would it be? > > > Any Brother printer that I've ever had the misfortune to have to > > > deal > > > with either didn't work at all or if could be made to work, it > > > didn't > > > work for long. > > > > > > If it's a Brother, run away as fast as you can. They're the > > > cheapest > > > crappiest thing you can possibly imagine. > > > > > > My wife makes quilts and says the same thing about Brother sewing > > > machines. > > > > > I can't speak to the sewing machines, but I have to say that I've > > had > > very good luck with Brother printers. However, we have to be > > honest > > and acknowledge that I'm talking about LASER printers, not the > > $%^&* > > inkjet silliness. > > > > In my DEFINITELY not-so-humble opinion, the "run away as fast as > > you > > can" advice applies to ALL inkjets that are intended for home use. > > > > The only real differences I'm aware of between Brother and HP LASER > > printers are price, and the fact that the HP drivers are usually > > included in the distribution by default, and you have to download > > and > > install the Brother drivers. I'm sitting next to a Brother MFC L- > > 2750DW that is a year or so old, and it does everything I need it > > to. > > > > As
Re: [CentOS] HP vs. Brother Printers: Use with Centos/Fedora
On Sat, 2020-06-27 at 15:44 -0600, Frank Cox wrote: > On Sat, 27 Jun 2020 17:33:39 -0400 > Jay Hart wrote: > > > > > If you had to rate which printer brand works better with Linux > > (Fedora and > > Centos), what would it be? > Any Brother printer that I've ever had the misfortune to have to deal > with either didn't work at all or if could be made to work, it didn't > work for long. > > If it's a Brother, run away as fast as you can. They're the cheapest > crappiest thing you can possibly imagine. > > My wife makes quilts and says the same thing about Brother sewing > machines. > I can't speak to the sewing machines, but I have to say that I've had very good luck with Brother printers. However, we have to be honest and acknowledge that I'm talking about LASER printers, not the $%^&* inkjet silliness. In my DEFINITELY not-so-humble opinion, the "run away as fast as you can" advice applies to ALL inkjets that are intended for home use. The only real differences I'm aware of between Brother and HP LASER printers are price, and the fact that the HP drivers are usually included in the distribution by default, and you have to download and install the Brother drivers. I'm sitting next to a Brother MFC L- 2750DW that is a year or so old, and it does everything I need it to. As always, YMMV. -- Ron Loftin relof...@twcny.rr.com "God, root, what is difference ?" Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to dump/restore a CentOS 7 system
On Wed, 2019-09-25 at 11:46 -0500, Valeri Galtsev wrote: > > On 2019-09-25 11:31, Xinhuan Zheng wrote: > > > > Hello All, > > > > I guess it is very common for administrative purpose, to dump and > > restore a CentOS 7 system. > Though I can not answer OP's question, I have question of my own. > > Is this really routine (often) task for Linux sysadmins? I used > something like that to replicate cluster nodes in the past, but > kickstart would be routine task for me. dump/restore sounds like > routine > from MS Windows world (I hear they "re-image" system if something > goes > wrong ;-) > > Am I wrong? Do we in Linux world do this routinely? > You are not wrong. However, I will point out first that dump and restore are utilities that have been around the Unix/Linux world for a very long time, rather than something from the M$ world. The issue of how to restore/copy a system installation is open to discussion these days. I have recently been in a situation where duplicating identical machines is done conveniently with dump and restore. I have also been in situations where installing or reinstalling a system of slightly different configuration is easily accomplished via kickstart. It mostly depends on the situation to be addressed at the moment, and the tools available. For instance, to perform a one-time installation when you do not have kickstart set up on your network is a significant amount of work, and may not be worth the effort of kickstart set-up. This is one of the benefits of decades of development. More tools are available to handle the installation requirements. > Valeri > > > > > I usually use dump/restore commands. However, I’m having trouble to > > handle installing bootloader and creating initramfs for C7 system. > > Does anyone know a good document source that details those > > procedure? > > Thank you, > > > > Xinhuan Zheng > > ___________ > > CentOS mailing list > > CentOS@centos.org > > https://lists.centos.org/mailman/listinfo/centos > > -- Ron Loftin relof...@twcny.rr.com "God, root, what is difference ?" Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] persistent generic device for tape changer
I've taken you as far as I can go. Now you will have to experiment a
bit for your use case. I should point out that at least in my system,
the link with the serial number in it shows up even with the line
commented in the rules file.
As always, YMMV.
On Thu, 2019-02-07 at 22:29 +0100, Helmut Drodofsky wrote:
> Hello Ron,
>
> sounds good. I have 2 tape changer. I persume, udev creates the same
> link for both.
>
> Can I modify
> SYMLINK+="changer-$env{ID_SERIAL}"
>
> The serial should be unique.
>
> Viele Grüße
> Helmut Drodofsky
>
> Internet XS Service GmbH
> Heßbrühlstraße 15
> 70565 Stuttgart
>
> Geschäftsführung
> Helmut Drodofsky
> HRB 21091 Stuttgart
> USt.ID: DE190582774
> Fon: 0711 781941 0
> Fax: 0711 781941 79
> Mail: i...@internet-xs.de
> www.internet-xs.de
> Am 07.02.2019 um 16:17 schrieb Ron Loftin:
> >
> > On Thu, 2019-02-07 at 10:56 +0100, Helmut Drodofsky wrote:
> > >
> > > Hello,
> > >
> > > mtx and therefor amanda use generic device /dev/sg for tape
> > > changer.
> > >
> > > These devices change on reboot.
> > >
> > > How to make them persistent?
> > >
> > > /dev/sch0 and /dev/sch1 seem to be persistent.
> > >
> > > /dev/tape/by-id/ shows links from WWID to generic device
> > >
> > > An UDEV rule could help? I have not found any example.
> > I had a similar issue when I moved to Mint 18 with the tape device.
> > This works with kernel 4.10 and later. Copy /lib/udev/rules.d/60-
> > persistent-storage-tape.rules to /etc/udev/rules.d and make a
> > change as
> > shown:
> >
> > diff -n /lib/udev/rules.d/60-persistent-storage-tape.rules
> > /etc/udev/rules.d/60-persistent-storage-tape.rules
> > d9 1
> > a9 2
> > SYMLINK+="changer"
> > # SYMLINK+="tape/by-id/scsi-$env{ID_SERIAL}"
> >
> > This created /dev/changer as a link to the /dev/sg device that
> > will
> > be consistent every time the system is booted.
> >
> > >
> > >
> ___
> CentOS mailing list
> CentOS@centos.org
> https://lists.centos.org/mailman/listinfo/centos
--
Ron Loftin relof...@twcny.rr.com
"God, root, what is difference ?" Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] persistent generic device for tape changer
On Thu, 2019-02-07 at 10:56 +0100, Helmut Drodofsky wrote:
> Hello,
>
> mtx and therefor amanda use generic device /dev/sg for tape
> changer.
>
> These devices change on reboot.
>
> How to make them persistent?
>
> /dev/sch0 and /dev/sch1 seem to be persistent.
>
> /dev/tape/by-id/ shows links from WWID to generic device
>
> An UDEV rule could help? I have not found any example.
I had a similar issue when I moved to Mint 18 with the tape device.
This works with kernel 4.10 and later. Copy /lib/udev/rules.d/60-
persistent-storage-tape.rules to /etc/udev/rules.d and make a change as
shown:
diff -n /lib/udev/rules.d/60-persistent-storage-tape.rules
/etc/udev/rules.d/60-persistent-storage-tape.rules
d9 1
a9 2
SYMLINK+="changer"
# SYMLINK+="tape/by-id/scsi-$env{ID_SERIAL}"
This created /dev/changer as a link to the /dev/sg device that will
be consistent every time the system is booted.
>
>
--
Ron Loftin relof...@twcny.rr.com
"God, root, what is difference ?" Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] named Update Problem
Here are the relevant lines from my /etc/named.conf file on CentOS 5.
directory "/var/named";
zone "43.168.192.in-addr.arpa" {
type master;
file "data/192.168.43";
};
This will create/modify file "/var/named/data/192.168.43" and works with
no issues after an upgrade.
On Tue, 2015-09-08 at 15:40 +0200, Günther J. Niederwimmer wrote:
> Hello,
>
> Am Montag, 7. September 2015, 09:10:03 schrieb Ron Loftin:
> > Try reconfiguring your setup so that the DNSSEC files live
> > in /var/named/data instead of /var/named. That directory should be
> > owned by named:named already, and it stays that way after updates, at
> > least in CentOS 5.
>
> can you please tell me the "Variable" to set the tmp-xx Files?
>
> I can't find the correct way :-(.
>
> > On Mon, 2015-09-07 at 14:31 +0200, Günther J. Niederwimmer wrote:
> > > Hello,
> > >
> > > I have enabled for a Domain DNSSEC and it working correct, after I change
> > > the rights for /var/named to root:named 0770
> > >
> > > but after a update it is always change back to root:named 0750
> > >
> > > after this, DNSSEC don't work any more?
> > >
> > > named have no right to write his secure files.
> > >
> > > Is there a way to fix this
> > >
> > > Thanks,
>
--
Ron Loftin relof...@twcny.rr.com
"God, root, what is difference ?" Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] named Update Problem
Try reconfiguring your setup so that the DNSSEC files live in /var/named/data instead of /var/named. That directory should be owned by named:named already, and it stays that way after updates, at least in CentOS 5. On Mon, 2015-09-07 at 14:31 +0200, Günther J. Niederwimmer wrote: > Hello, > > I have enabled for a Domain DNSSEC and it working correct, after I change the > rights for /var/named to root:named 0770 > > but after a update it is always change back to root:named 0750 > > after this, DNSSEC don't work any more? > > named have no right to write his secure files. > > Is there a way to fix this > > Thanks, -- Ron Loftin relof...@twcny.rr.com "God, root, what is difference ?" Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommended way of handling iptables firewall in CentOS?
On Mon, 2014-10-13 at 12:30 +0200, Niki Kovacs wrote: Le 13/10/2014 11:11, Reindl Harald a écrit : just write a bash script which resets and configures iptables with the iptables command and at the end of the script call /sbin/service iptables save which writes the current rules to /etc/sysconfig/iptables and so at boot the rules get loaded atomically Thanks very much! I followed your advice, and here's a first version of a firewall script for a LAN server: https://github.com/kikinovak/centos/blob/master/6.x/firewall/firewall-lan.sh Cheers, Niki Of course, if you are interested in something that will help you to organize your rules, there is always Shorewall ( Shoreline Firewall ) which I have used for years and found very effective and time-saving. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Disappearing directory
I'd suggest looking into the config for automount.
On Fri, 2014-01-03 at 22:48 +, Ken Smith wrote:
Dennis Jacobfeuerborn wrote:
On 03.01.2014 15:37, Leon Fauster wrote:
Am 03.01.2014 um 15:04 schrieb Ken Smithk...@kensnet.org:
Leon Fauster wrote:
Am 03.01.2014 um 08:57 schrieb Mauricio Tavaresraubvo...@gmail.com:
On Thu, Jan 2, 2014 at 10:19 PM, Leon Fauster
leonfaus...@googlemail.com wrote:
{snip}
thats why i suggest to try it in backup. Thats not a solution, it is more
a heuristic way to get close to the problem (after evaluating the
results).
I tried it in /media. Same result. Its as if umount is doing a rm -rf
please try /backup, /test or /random or something that is not /mnt or
/media.
The latter dirs are common to be under control by some processes.
Also try to use /bin/umount instead of just umount. That way you prevent
a potential alias for umount from running instead of the actual command.
Regards,
Dennis
OK result. I created /TEST and mounted and umounted successfully with
both /bin/umount and plain umount
Interesting, as suspected something is messing with things in /mnt and
/media
Ken
--
Ron Loftin relof...@twcny.rr.com
God, root, what is difference ? Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] postfix as default MTA
On Tue, 2013-07-09 at 21:29 -0600, Devin Reade wrote: I noticed when CentOS 6 came out that RHEL had moved to postfix vice sendmail as the default MTA. I had never heard the rationale given, it always sat on the back burner, but I was reminded of the question the other day when I was dealing with a related topic. I don't want to get into a pissing contest about how one MTA is obviously better than the other, nor why others think that I should prefer one over the other, but I *would* like to know what rational (if any) RedHat gave on the move. My google-fu hasn't been successful in finding it and I didn't see anything in the CentOS archives on the topic. Does anyone remember the reasoning, if given? In particular, I'm wondering if it was due to integration with any other specific subsystem or software product. I can't speak directly to RedHat's reasoning, but I can say that I find Postfix MUCH easier to deal with than Sendmail. After 20+ years in Unix/Linux system admin, I still find Sendmail arcane and confusing, while Postfix configuration details are much more comprehensible to the ordinary mortal mind. When I needed a filtering front-end to a rather old and outdated mail server, I was able to make it happen with Postfix in less than a day, starting from scratch. Of course, what really matters is that you choose a solution that meets your specific needs. From what I've read over the past several years, it really boils down to personal preference rather than any great difference in functionality. Devin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] yum configuration
On Fri, 2013-03-29 at 15:22 +0200, Andreas K. wrote: On 29-03-2013 14:59, Stephen Harris wrote: On Fri, Mar 29, 2013 at 02:54:58PM +0200, Andreas K. wrote: baseurl=ftp://yum.xx.xx.xx.xx/pub/linux/centos/$releasever/os/$basearch/ Is there a way to force a 6.3 machine to remain at 6.3 until a human being decides that is is time to do so? Change releasever to 6.3 for base and updates and any other repo that might refer to it. thanks for replying. I was hoping ot a more dynamic approach though since the number of affected machines is in excess of 150. If you're dealing with that number of machines you may wish to consider setting up your own internal repo. Then you can sync your repo to the mirrors on your schedule, move to a later version on your schedule, and so on. For example simply changing the $releasever to 6.3 and then to 6.4 and then to 6.5 every time a new version come along is not practical. Looking into the 'man yum.conf' I find that $releasever This will be replaced with the value of the version of the package listed in distroverpkg. This defaults to the version of ‘redhat-release’ package. distroverpkg The package used by yum to determine the version of the distribution. This can be any installed package. Default is ‘redhat-release’. You can see what provides this manually by using: yum whatprovides redhat-release. Doing [root@cs6979 yum.repos.d]# yum whatprovides redhat-release . centos-release-6-4.el6.centos.10.x86_64 : CentOS release file Repo: CS-base Matched from: Other : redhat-release centos-release-6-3.el6.centos.9.x86_64 : CentOS release file Repo: installed Matched from: Other : Provides-match: redhat-release So the installed package is version 6.3. Am I overlooking/misinterpreting something? Andreas ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to re-enable Adobe Flash in Firefox
On Sat, 2013-02-23 at 14:29 -0500, David McGuffey wrote: Mozilla seems to have disabled Adobe Flash in a recent update. I have one 6.3 Desktop load that I need flash. when directed to the Adobe site and download the latest version, yum tells me I have the latest version for x86_64 already installed. I must keep the wife happy with Facebook and YouTube--and if the wife isn't happy, no one in the house is happy. How do I re-enable flash? I have found that the install script in the rpm from Rpmforge is lacking. It looks for the link for the plugin in several places, but at least in 32-bit CentOS 5 it uses the wrong ones. Look for where the plugin lives ( probably something like /usr/lib/flash-plugin or maybe /usr/lib64/flash-plugin ) and read the setup script. It's a fairly simple shell script that will create a symlink for the plugin somewhere that Firefox can find it. In my case the setup script fails because it looks for the Firefox installation in the wrong places. You should have a directory such as /usr/lib/mozilla/plugins or probably /usr/lib64/mozilla/plugins and that is where Firefox ( and some other browsers ) will look. Create a symlink in that directory as root pointing to your flash plugin and restart Firefox. That's what works for me. DaveM ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS search in anaconda
On Fri, 2013-02-15 at 16:43 +, Tom Brown wrote: Hi Does anyone know if its possible to set a search domain within anaconda to use during kickstart? I'd rather not have to set a FQDN for a certain service as its location specific that is dependent on SSL and therefore the certs. I cant see anything in the docs listed but i thought i'd ask Actually, my kickstarts run with the DNS info provided by my DNCP server. The only thing that I've had to do is copy the created /etc/resolv.conf file into the newly-built tree so that it's available to the system for running post scripts. cheers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS search in anaconda
On Fri, 2013-02-15 at 17:04 +, Tom Brown wrote:
Actually, my kickstarts run with the DNS info provided by my DNCP
server. The only thing that I've had to do is copy the
created /etc/resolv.conf file into the newly-built tree so that it's
available to the system for running post scripts.
thanks for the reply - these are statically assigned kickstarts and DHCP is
not involved - you can pass a DNS server to use as dns=1.2.3.4 but there
appears to be no search=foo.com etc
AFAIK
The real question is how you identify the site-specific information in
kickstart. Whatever key you use to do that should also be able to
select a domain name or whatever other particular info needed, and then
you can implement that in a pre script. Maybe something like:
echo search ${sitedomainname}.org /etc/resolv.conf
where $sitedomainname is the specific domain name for each site.
--
Ron Loftin relof...@twcny.rr.com
God, root, what is difference ? Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] clock sync/drift
On Tue, 2013-01-22 at 21:16 -0600, Matt Garman wrote: Hi, We have a little over 100 servers, almost all running CentOS 5.7. Virtually all are Dell servers, generally a mix of 1950s, R610s, and R410s. We use NTP and/or PTP to sync their clocks. One phenomenon we've noticed is that (1) on reboot, the clocks are all greatly out of sync, and (2) if the PTP or NTP process is stopped, the clocks start drifting very quickly. If it was isolated to one or two servers, I'd dismiss the issue. I also had this problem under CentOS 4. I suspect something is mis-configured, because I can't imagine the hardware clock on ALL these servers is *that* bad. Well -- in my experience ( 15+ years with RH variants of Linux, and ~25 with various Unix flavors ) they CAN be that bad -- especially with some of the economy chipsets used with the Intel architecture. It gets worse when you have a CMOS battery that's getting old and weak. The clock may default back to its initial value, or it might just run slow. Some folks might consider this a brute force approach, but I keep it simple and just reset the hardware clock once a week via cron. I prefer to do it in the wee hours, shortly before the weekly cron jobs run on Sunday morning. Put something like this in root's crontab. 3 3 * * 0 /sbin/hwclock --systohc For the gory details, refer to the man page for hwclock and it will tell all. Anyone else dealt with anything similar? Thanks! Matt ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to configure sendmail
On Mon, 2012-12-03 at 02:22 +, Phil Dobbin wrote: On 12/03/2012 01:54 AM, John R Pierce wrote: On 12/2/2012 5:47 PM, Les Mikesell wrote: If you don't like things that use traditional unix tools for the purposes they were designed, why are you interested in using linux at all? From a user perspective making a few changes to sendmail.mc and restarting the sendmail service is quite easy. I once knew my way around the 'rules' in the .cf file. thats truly some evil arcane magic in there. Whilst bowing in due deference to people who've been using *nix/Linux since it required a piece of string, two tin cans coven in order to achieve results, I was under the impression that nowadays, unless you actually need some functionality that sendmail has nothing else possesses, the received wisdom for novices when setting up all things mail was using postfix in its place. All documentation I've ever read regarding postfix starts with declaration that postfix is a replacement for sendmail, it's widely recommended as a replacement having used postfix after attempting to use sendmail, I can see why (I too have Eric Allman's big book also have read anecdotes written by Brian Kernighan on its origins very interesting enlightening they are too). But surely, the effort required to be competent enough to use it properly far outweighs the benefits just for the casual user. +1 - and really a lot more. Having lived in the Unix/Linux environment for 20 years I will definitely state that for someone new to the mail server environment the learning curve for Postfix is a lot less than it is for Sendmail. When I needed to set up a mail filter/server I was pointed to Postfix by another Unix guy and that was probably the best thing that happened to me for that area. I had what I needed in less than a day, and refinements and tuning done a couple of days later. If you're just starting in the mail server area, it's tough to beat Postfix for ease of configuration. Cheers, Phil... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] vi defaults in 6.x
On Fri, 2012-08-17 at 11:02 -0500, Les Mikesell wrote: On Fri, Aug 17, 2012 at 10:35 AM, John Doe jd...@yahoo.com wrote: When I use copy/paste text into a window running vi, if there is a single line starting with '#', in the pasted content, it adds a # to all subsequent lines and indents each an additional level. Is there some way to eliminate this bizarre behavior, preferably globally and permanently so I don't have to repeat some change for every machine/user where I might log in? If you do not want to change the defaults, you could temporarily call vim without the initializations: vim -u NONE ... That's the effect I want, since I log into a lot of different machines and paste stuff into scripts. But, it doesn't seem to work. With 'vim -u NONE /tmp/test.pl' it still does the auto-comment stuff. Works for me at least to avoid crazy double auto-indent... And it turns off syntax highlighting too. But I have no auto-comment in either modes... That's interesting - I don't think I've ever changed any defaults. I'm using the text mode version in a gnome-terminal window in case that makes a difference. Of course, if you don't care for vim, you can always use the old, simple version by using the command /bin/vi instead of vim and that should do away with most of the enhancements. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Strange issue with system time being off
On Thu, 2012-08-09 at 15:35 -0700, Scott Silva wrote: on 8/9/2012 12:33 PM Russell Jones spake the following: Hi all, I am having an issue with some older CentOS 5.3 servers. Every time the server boots, it gives the error Cannot access the hardware clock by any known method, and then promptly sets the time 5 hours behind the hardware clock, down to the second. After the system is up. hwclock works fine. hwclock --debug does not show any error at all. The hardware clock is configured in local time. /etc/sysconfig/clock is set to UTC=false and ZONE=America/Chicago. /etc/localtime is a copy of Chicago's zone file. /etc/adjtime is configured with LOCAL as the third row. I am at a loss as to what is causing this. Any assistance is appreciated! Thanks! Since you say servers do you have one that you can bring more current then 5.3 to see if there was a kernel patch or something that fixed this? Between 5.3 and Current (5.8) anything could have happened. What is in /etc/sysconfig/clock ? cat /etc/sysconfig/clock ZONE=America/New_York UTC=false ARC=false -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] postfix and spam, I am impressed
On Mon, 2012-03-12 at 23:15 +0100, Patrick Lists wrote: On 12-03-12 22:12, Bob Hoffman wrote: [snip] Not sure if this setup is perfect, but it is working quite well. Yes, the mail takes a few seconds longer and there is probably more I could do, but this ROCKS!!! Totally agree. I'm definitely not a postfix expert but below I have listed some rules I have in my config. smtpd_delay_reject = yes smtpd_helo_required = yes I also have: disable_vrfy_command = yes strict_rfc821_envelopes = yes smtpd_client_restrictions = permit_mynetworks,permit In smtpd_client_restrictions I have: smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unknown_reverse_client_hostname, check_client_access pcre:/etc/postfix/dynamic_ip_client_block, reject_rbl_client bl.spameatingmonkey.net, reject_rhsbl_sender uribl.spameatingmonkey.net, reject_rhsbl_client uribl.spameatingmonkey.net, reject_rhsbl_sender urired.spameatingmonkey.net, reject_rhsbl_client urired.spameatingmonkey.net, reject_rbl_client zen.spamhaus.org The dynamic IP client list is quite effective. You can get the file: wget -v http://www.hardwarefreak.com/fqrdns.pcre smtpd_helo_restrictions = permit_mynetworks, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname, permit smtpd_sender_restrictions = permit_mynetworks, reject_non_fqdn_sender, reject_unknown_sender_domain, permit In smtpd_sender_restrictions I also use reject_rhsbl_sender fresh15.spameatingmonkey.net smtpd_recipient_restrictions = reject_non_fqdn_recipient, reject_unknown_recipient_domain, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_rbl_client zen.spamhaus.org, reject_rbl_client truncate.gbudb.net, reject_rbl_client dnsbl.njabl.org reject_rbl_client cbl.abuseat.org reject_rbl_client bl.spamcop.net, reject_rbl_client dnsbl.sorbs.net, sleep 1, permit smtpd_data_restrictions = permit_mynetworks, reject_multi_recipient_bounce, permit Not sure if these rules are correct. I only have smtpd_data_restrictions = reject_unauth_pipelining On my CentOS 5 box I don't user permit at all. Regards, Patrick ___ I'm going to chuck in my 2 cents worth here, as I've been using Postfix as a first-line filter for some years now. All of the above suggestions are very useful. The only point that I haven't seen in this thread is that mail server/filter configs are extremely user-dependent. I started out with some of the more restrictive options discussed here, but I had to relax a few of them for the client involved. It seems that they were doing business with some folks ( both customers and suppliers ) who were using poorly-configured mail servers, and some of the options given above can cause legitimate traffic from such poorly-configured servers to be rejected. In short, like you should do for any application, do the appropriate research so that you UNDERSTAND what the recommended options are doing for you ( or TO you ) and tailor your selection(s) to meet YOUR specific needs. In the case of using Postfix to filter mail to reduce the inbound spam to an old, feature-poor mail server, it took some research and some experimenting with different recommendations to achieve the solution that met the needs of a particular user community. Like I said, this is just my $0.02 (US) worth. Enjoy. ;^ -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Intel wireless firmware
This may not be the best place to ask, but Google hasn't given me any useful information. I have an older laptop that is using the Intel 2200 wireless interface. I installed CentOS 5 on it some time ago and everything is fine. When I was reviewing my kickstart setups I found that the ipw2200 firmware package is no longer available in RPMForge. The CentOS site's how-to page for this interface still refers to RPMForge, so that now seems out of date. What happened to the Intel firmware packages on RPMForge and where else should I be looking for them ? I tried ELRepo and didn't see them there. Suggestions and pointers are welcome, and thanks in advance. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Intel wireless firmware
On Sat, 2011-10-29 at 20:17 +0200, Ljubomir Ljubojevic wrote: Vreme: 10/29/2011 07:41 PM, Ron Loftin piše: This may not be the best place to ask, but Google hasn't given me any useful information. I have an older laptop that is using the Intel 2200 wireless interface. I installed CentOS 5 on it some time ago and everything is fine. When I was reviewing my kickstart setups I found that the ipw2200 firmware package is no longer available in RPMForge. The CentOS site's how-to page for this interface still refers to RPMForge, so that now seems out of date. What happened to the Intel firmware packages on RPMForge and where else should I be looking for them ? I tried ELRepo and didn't see them there. Suggestions and pointers are welcome, and thanks in advance. ipw2200-firmware is part of base system now, at least I have that package installed by anaconda. I see it in my local mirrors for CentOS 6, but I'm still running CentOS 5 on this laptop and other boxes. I would like to be able to re-install the same version if something bad happens, and right now it looks like I can't do it. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Intel wireless firmware
On Sat, 2011-10-29 at 23:12 +0100, Ned Slider wrote: On 29/10/11 23:04, Ned Slider wrote: On 29/10/11 18:41, Ron Loftin wrote: This may not be the best place to ask, but Google hasn't given me any useful information. I have an older laptop that is using the Intel 2200 wireless interface. I installed CentOS 5 on it some time ago and everything is fine. When I was reviewing my kickstart setups I found that the ipw2200 firmware package is no longer available in RPMForge. The CentOS site's how-to page for this interface still refers to RPMForge, so that now seems out of date. What happened to the Intel firmware packages on RPMForge and where else should I be looking for them ? I tried ELRepo and didn't see them there. They are not currently in elrepo because no one has ever requested them, they were in rpmforge, and they are now old/legacy and unmaintained. I didn't realise they were no longer available from rpmforge. File an RFE and I'll get them added for you. Suggestions and pointers are welcome, and thanks in advance. I'm not sure why they're not showing up on rpmforge as the package is still showing in their git tree: https://github.com/repoforge/rpms/tree/master/specs/ipw2200-firmware Maybe you should ask / file an issue with repoforge. I don't see a way to file an issue on the repoforge Web site. I just filed an RFE with ELRepo to ask for this. Thanks for the advice. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DHCPD troubleshooting..? help!
On Sat, 2011-01-01 at 03:31 +0200, Roland RoLaNd wrote:
Hello,
i've setup dhcp as such:
yum install dhcp
vim /etc/dhcpd.config
#
# DHCP Server Configuration file.
# see /usr/share/doc/dhcp*/dhcpd.conf.sample
#ddns-update-style interim;
ddns-update-style interim;
ddns-rev-domainname in-addr.arpa;
ignore client-updates;
subnet 192.168.75.0 netmask 255.255.255.0 {
option routers 192.168.75.25; #Default Gateway
option subnet-mask 255.255.255.0;
option domain-name home.local;
option domain-name-servers 8.8.8.8;
#option netbios-name-servers 192.168.0.2; #WINS Server
range dynamic-bootp 192.168.75.26 192.168.75.100; #DHCP Range to assign
default-lease-time 43200;
max-lease-time 86400;
}
more /etc/sysconfig/dhcpd
# Command line options here
DHCPDARGS=eth0
tail -f /var/log/messages:
Jan 1 01:25:58 dnalor dhcpd: DHCPREQUEST for 192.168.25.100 (192.168.25.25)
from 00:23:4b:cc:6c:b7 (oli) via eth0
Jan 1 01:25:58 dnalor dhcpd: DHCPACK on 192.168.25.100 to 00:23:4b:cc:6c:b7
(oli) via eth0
Jan 1 01:26:16 dnalor dhcpd: Unable to add forward map from oli.home.local
to 192.168.25.100: timed out
any help?
PS: i dont have named installed as i use the ISP's dns, may that be the cause?
Thanks for your advice in advance and happy new year
Try:
ddns-update-style none;
--
Ron Loftin relof...@twcny.rr.com
God, root, what is difference ? Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntfs
On Sun, 2010-12-05 at 23:52 +0530, Ritika Garg wrote: CentOS 5.5 is installed in the system. I installed the package kmod-ntfs-2.1.27-3.el5.elrepo.x86_64.rpm I mounted Seagate external hard disk. I am able to copy contents from the hard disk to the system but not from the system to the hard disk. Yes. If you go to this page on the ElRepo site: http://elrepo.org/tiki/kmod-ntfs and check the limitations you will see that this is the expected behavior. If you want full write capabilities with NTFS I suggest that you remove kmod-ntfs and instead use the fuse-ntfs-3g package from RPMForge. That relies on DKMS ( which works well enough for me ) and has full read-write capabilities. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntfs
On Sun, 2010-12-05 at 13:40 -0500, Nico Kadel-Garcia wrote: On Sun, Dec 5, 2010 at 1:22 PM, Ritika Garg ritikagar...@gmail.com wrote: CentOS 5.5 is installed in the system. I installed the package kmod-ntfs-2.1.27-3.el5.elrepo.x86_64.rpm I mounted Seagate external hard disk. I am able to copy contents from the hard disk to the system but not from the system to the hard disk. Do you also need the centosplus kernel, which has the NTFS features enabled in the linux kernel .config file at compilation time? Not for fuse-ntfs-3g. If you install the RPMForge repo, yum will do the rest, and it all plays very nicely with the CentOS standard kernels. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh-agent fails to hold values
On Sun, 2010-11-28 at 16:35 -0500, bluethundr wrote: Hello list I am attempting to manage my key logins with ssh-agent. However EVERY time I try to ssh I have to go through the same exact routing and it's getting a little old... [bluethu...@lcent01:~]#ssh sum3 Enter passphrase for key '/home/bluethundr/.ssh/id_rsa': [bluethu...@lcent01:~]#exec ssh-agent bash [bluethu...@lcent01:~]#ssh-add Enter passphrase for /home/bluethundr/.ssh/id_rsa: Identity added: /home/bluethundr/.ssh/id_rsa (/home/bluethundr/.ssh/id_rsa) [bluethu...@lcent01:~]#ssh sum3 Last login: Sun Nov 28 14:32:34 2010 from localhost.localdomain # # SUMMITNJHOME.COM# # TITLE: LCENT03 BOX# # LOCATION:SUMMIT BASEMENT# # # # [bluethu...@lcent03:~]# Does anyone have any suggestions to make ssh-agent hold these values a bit more persistently? I'm not sure if this will help, but I use the keychain package from RPMForge, and it takes most of the pain out of dealing with SSH keys. thanks!! -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh-agent fails to hold values
On Sun, 2010-11-28 at 17:16 -0500, bluethundr wrote: That DID it!!! thanks and I agree.. god? root? what's the difference!! :) Actually, there IS a difference. God doesn't have to log in. ;^ On Sun, Nov 28, 2010 at 4:41 PM, Ron Loftin relof...@twcny.rr.com wrote: On Sun, 2010-11-28 at 16:35 -0500, bluethundr wrote: Hello list I am attempting to manage my key logins with ssh-agent. However EVERY time I try to ssh I have to go through the same exact routing and it's getting a little old... [bluethu...@lcent01:~]#ssh sum3 Enter passphrase for key '/home/bluethundr/.ssh/id_rsa': [bluethu...@lcent01:~]#exec ssh-agent bash [bluethu...@lcent01:~]#ssh-add Enter passphrase for /home/bluethundr/.ssh/id_rsa: Identity added: /home/bluethundr/.ssh/id_rsa (/home/bluethundr/.ssh/id_rsa) [bluethu...@lcent01:~]#ssh sum3 Last login: Sun Nov 28 14:32:34 2010 from localhost.localdomain # # SUMMITNJHOME.COM# # TITLE: LCENT03 BOX# # LOCATION:SUMMIT BASEMENT# # # # [bluethu...@lcent03:~]# Does anyone have any suggestions to make ssh-agent hold these values a bit more persistently? I'm not sure if this will help, but I use the keychain package from RPMForge, and it takes most of the pain out of dealing with SSH keys. thanks!! -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't login after installing Centos 5.5
On Sun, 2010-10-03 at 16:37 -0400, Phil Schaffner wrote: Peter Crighton wrote on 10/03/2010 08:19 AM: ... It's the config for the video card - it was set to 24 bit depth. Changing to 8 allows it to boot (it's a Matrox Millenium card). I'm not overly bothered by the low colour depth (it's going to be a NAS server for file backup) but is this a common fault with the Matrox Millenium card? I's a very old card - just not up to high color depth at high resolution. It's not so much the fault of the card as it is the fact that the driver is old and unmaintained. Phil ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Announce list digest ??
On Mon, 2010-08-02 at 21:16 +0200, Ralph Angenendt wrote: Am 30.07.10 16:03, schrieb Ron Loftin: It seems that the past month or so the CentOS Announce list digest has no longer been sent out to the general CentOS list ( this list ) although the CentOS Web site still says that this list is subscribed to the Announce list in digest form. That should still be the case. We have a size limit on this list though, and as all the updates we had lately were in reality several updates per day, it could be that the announce digest ran into that limit. I should have gotten a bounce though, cannot remember those. Let's watch this space when the next updates come through. I think we now have our case in point. There were several updates published yesterday on the announce list, but I have not seen the digest come through today. In the past, this would normally happen at noon, US/Eastern time. Ralph ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Announce list digest ??
It seems that the past month or so the CentOS Announce list digest has no longer been sent out to the general CentOS list ( this list ) although the CentOS Web site still says that this list is subscribed to the Announce list in digest form. I've been checking, and the announce message does not seem to be getting caught in any spam filter that I use. Is this broken, or am I missing something here ? -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] boot process glitch due to missing 2nd disk
On Tue, 2010-07-20 at 15:31 -0400, m.r...@5-cent.us wrote: Robert Heller wrote: At Tue, 20 Jul 2010 08:56:16 -1000 CentOS mailing list centos@centos.org wrote: I just installed centos on a Dell that used to have 2 internal disks, but I removed one just before the install. Now when I boot it, it stops and outputs a message complaining about the missing disk and I have to hit F1 to get it to continue booting. Is there some bios setting that is causing this? Obviously, I'd like it snip Dell servers seem to be wonky about this sort of thing (older ones would not boot without a keyboard installed, even if they were esentually 'headless'). I am not sure how to deal with this. It seems to be a Dell-specific BIOS hack of some sort (and a *dumb* one at that). This is not a Dell-specific BIOS hack. Dear child, ask your folks about PCs. I think it was only this decade that PCs would actually boot *without* a keyboard. EVERY PC EVER MADE before would not. Sorry, but I have to respectfully disagree with that statement. I have been using old ( some folks might say antique ) desktop machines as firewalls/fileservers for a handful of friends for the better part of 10 years now. This goes back to old Dell GXi boxes ( Pentium 166 ) and homebuilt AMD K-6 systems. In ALL cases, I was able to configure the BIOS settings such that the system would boot without a keyboard connected. AFAIR all of those systems had a single setting to avoid a halt of the boot process because of a missing keyboard, and we're talking about BIOS versions back to around 1997. mark tease me about my age, and I'll beat you with my cane! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Announce list digest ??
I have just noticed that the main CentOS list ( this list ) is no longer receiving the digest from the CentOS-Announce list. This appears to have stopped about a month ago. Did I miss a notification that this practice would be discontinued, or has something broken? I admit it took me a month to notice that it's been missing, but I did like to see the update notifications in digest form here. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upgrade
On Fri, 2010-06-18 at 15:17 -0400, Rob Kampen wrote: m.r...@5-cent.us wrote: Whit Blauvelt wrote: On Fri, Jun 18, 2010 at 02:29:32PM -0400, m.r...@5-cent.us wrote: And as others have said, /home, and maybe /opt, should *always* be other drives, or at least other partitions Kind of makes you wonder why RH's default install is to shove everything but boot into one partition these days, doesn't it? In trying to make everything immune from the most clueless users - who might (horrors) make a partition too small - RH defaults to something other than time-honored old-school best practices. Yeah, I never accept the defaults. But I'm not Very, dare I say it?, Windows-ish. On the other hand, for an enterprise O/S, I would sorta-kinda assume that /home was being NFS-mounted. Just about everywhere I've worked, it is. snip Not trying to hijack but this last comment has provoked a question. hijack If you have multiple CentOS machines that you regularly log onto and use, and these share a common /home/username (via NFS or other SAN mechanism) how do the various . files manage to work - aren't there potential conflicts? I have two CentOS 5.5 workstations with dual monitors (different sizes though) and another machine with only a single display - wouldn't this cause issues? Unfortunately I do not have enough experience to know what all these various . files contain - if they're only personal preferences and totally unrelated to the hardware then well and good - can someone confirm before I migrate my /home onto my main server and NFS mount it. TIA I have multiple machine that share /home via NFS. Some have dual displays and some don't. The normal behavior for me is that the single-head boxes just ignore the configuration for the second display. Otherwise they all run the same. Note that these are all CentOS 5 machines that get updates applied pretty much all at the same time. As always, YMMV. ; /hijack mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to install ip6tables?
On Tue, 2010-06-01 at 23:04 +0200, Rudi Ahlers wrote: Hi all, I'm sorry if this is a quick dumb one, but how does one install ip6tables? Are you sure it's not already installed ?? It installs by default on my systems. Running yum install ip6tables doesn't return anything, even with the rpmforge repository enabled: r...@mercury:[~]$ yum install -y ip6tables Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * addons: mirrors.netdna.com * base: pubmirrors.reflected.net * extras: mirror.vcu.edu * rpmforge: fr2.rpmfind.net * updates: ftp.lug.udel.edu Excluding Packages in global exclude list Finished Setting up Install Process No package ip6tables available. Nothing to do Doing a google search for how to install ip6tables, ironically, returns results on how to disable it. I have disabled it previously, but now want to re-enabled it as I want to play around with IPV6 iptables. Any pointers will be appreciated. -- Kind Regards Rudi Ahlers SoftDux Website: http://www.SoftDux.com Technical Blog: http://Blog.SoftDux.com Office: 087 805 9573 Cell: 082 554 7532 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] trying to rebuild an old nvidia driver
On Thu, 2010-05-20 at 16:34 -0400, m.r...@5-cent.us wrote: mark wrote: Akemi wrote: On Wed, May 19, 2010 at 2:05 PM, m.r...@5-cent.us wrote: Let me start by saying that no, I can't get a new card for my user. No problem with that. So, I've got the 96 nvidia driver. I've rebuilt it several times before, and Nvidia's installer's always worked fine. Actually, I have the 73 on my system, and just updated to 5.5, and no problem. I suggest you give the ELRepo package a try: http://elrepo.org/tiki/kmod-nvidia-96xx Thanks! I'll try that tomorrow. *sigh* Well, I did that, and then went through a song-and-dance uninstalling the stuff the nvidia installer had put in, and uninstalling this so that would succeed, and then *really* getting rid of the stuff it wouldn't, and then using yum again. And it still got trash. My user's sure he had not turned it off, that he just came in one morning and it had lost it, and I have every reason to believe him (he *does* know what he's doing). So, at this point, we've given up - his machine wasn't on a UPS, and given the power in this building, there's a high probability of a surge, and something on the card got fried - so he's got another machine, and we're probably going to call this one dead. Thanks, though, for the el repo link. I've got to remember that one. Yes, the ELrepo does some good work. I'm quite happy with the nvidia drivers since they survive kernel updates with minimal fuss. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] trying to rebuild an old nvidia driver
On Thu, 2010-05-20 at 13:44 -0700, Akemi Yagi wrote: On Thu, May 20, 2010 at 1:39 PM, Ron Loftin relof...@twcny.rr.com wrote: On Thu, 2010-05-20 at 16:34 -0400, m.r...@5-cent.us wrote: mark wrote: Akemi wrote: So, at this point, we've given up - his machine wasn't on a UPS, and given the power in this building, there's a high probability of a surge, and something on the card got fried - so he's got another machine, and we're probably going to call this one dead. Sorry to hear that the problem was more serious than initially thought. Thanks, though, for the el repo link. I've got to remember that one. Yes, the ELrepo does some good work. I'm quite happy with the nvidia drivers since they survive kernel updates with minimal fuss. s/some good/excellent/ s/minimal/no/ Couldn't resist ... :-P The only reason I didn't say that myself is that my experience with ELrepo is pretty much limited to the nvidia driver. I don't have any other need for drivers outside of what CentOS provides, and I don't want to scare away the users by being overly enthusiastic. 8^ Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL 6 Beta available for public download
On Sat, 2010-05-15 at 15:36 -0700, Akemi Yagi wrote: On Sat, May 15, 2010 at 3:24 PM, Mike Fedyk mfe...@mikefedyk.com wrote: In fact centos already makes i586 kernels for centos5. I wouldn't be surprised if they did the same for centos6. Well, CentOS provides i586 kernels for CentOS-4 but not -5. This is an interesting point. Is it possible that the CentOS team might provide a non-PAE kernel alternative, similar to the way they did the i586 kernel for CentOS 4? It seems like this would be useful to those like me who use primarily recycled ( older ) hardware. What would be the proper way to request such a thing? Akemi -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Installing Firestarter
On Tue, 2010-05-11 at 16:15 +0530, Vijay Shanker Dubey wrote: Hi, I am planning to use firestarter to manage the incoming and outgoing network connections. Please give me some valuable read abouts and tips about this package. - Will it be a good choice for network management? What are the other options? I used Firestarter for a while a few years ago. After less than a year I migrated to the Shoreline Firewall ( Shorewall ) for a couple of reasons. First is that Firestarter is limited in what it will allow you to do with your firewall configuration. Shorewall is much more powerful and flexible. Second, the last time I looked, Firestarter was not being actively maintained. As I recall, the latest version of Firestarter is about 3 years old, and the mailing list and forums show very little traffic. By comparison, Shorewall is much more active -- both in maintenance/enhancement and the mailing list. This is just my opinion, and as always, YMMV. If i choose to install Firestarter : - Have you installed and used Firestarter in CentO 5.5? If yes,Please share the process of installation. Regards, Vijay Shanker Dubey ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables
On Fri, 2010-04-23 at 18:16 -0400, Alan McKay wrote: Have a look at shorewall (google it) for the best thing I've ever seen for managing a Linux firewall I agree about Shorewall. I've been using it for several years, and it does take a lot of the pain out of managing iptables. That being said, I will add my voice to the others on this list that point out that the OP's mods to /etc/sysconfig/iptables are very dangerous, and indicate a lack of understanding of how iptables and network security actually operate. Some study of basic principles and best practices is essential to managing a firewall configuration, regardless of the tool that is used. My $0.02 (US) worth for today. 2010/4/23 cahit Eyigünlü cahit.eyigu...@gmail.com: how could i add / remove iptable rules on cet os 5.4 final for tcp / udp base on ports -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh-agent
On Tue, 2010-04-06 at 09:57 -0400, m.r...@5-cent.us wrote: Yesterday or Friday, don't remember, I happened to be looking at my processes on my machine, and discovered I had a number of ssh-agents running (all mine), from different days. I killed all but the current day's. Now, I log out every single night. I checked the next day, and sure enough, the one I started the previous day was still running, and I could not only use ssh-add, and it worked. I didn't think of it this morning until just now, but tomorrow I'll log back in, and see if I even need to use ssh-add. If this is the case, I am not happy. This is, to me, a security hole, and *not* what I expected, nor what the man page seems to lead me to believe. Bug? mark I think that you may want some additional documentation on the use of ssh and ssh-agent. Try this link ( read all three parts of the article ) and re-evaluate your conclusions. http://www-106.ibm.com/developerworks/library/l-keyc.html I have been using the keychain utility referenced in this series for several years now, and I'm pretty happy with it. As always, YMMV. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh-agent
On Tue, 2010-04-06 at 10:51 -0400, m.r...@5-cent.us wrote: Ron wrote: On Tue, 2010-04-06 at 09:57 -0400, m.r...@5-cent.us wrote: Yesterday or Friday, don't remember, I happened to be looking at my processes on my machine, and discovered I had a number of ssh-agents running (all mine), from different days. I killed all but the current day's. Now, I log out every single night. I checked the next day, and sure enough, the one I started the previous day was still running, and I could not only use ssh-add, and it worked. I didn't think of it this morning until just now, but tomorrow I'll log back in, and see if I even need to use ssh-add. If this is the case, I am not happy. This is, to me, a security hole, and *not* what I expected, nor what the man page seems to lead me to believe. Bug? I think that you may want some additional documentation on the use of ssh and ssh-agent. Try this link ( read all three parts of the article ) and re-evaluate your conclusions. http://www-106.ibm.com/developerworks/library/l-keyc.html I have been using the keychain utility referenced in this series for several years now, and I'm pretty happy with it. As always, YMMV. Let's try again, since, having skimmed your link, it seems to me that you don't understand my problem. What I was doing: log onto my machine (system run level 5, I log out, NOT just lock the screen, every single night; therefore, there should be no processes running owned by me), and in a terminal window, do ssh-agent ssh-add .ssh/private key and enter my passphrase. Then I'd go through the day merrily on my way. Now, I find that when I log out, ssh-agent IS NOT STOPPED, even though I am logged all the way out. When I log out, unless I background something, everything running as me should go away. Everything. What I will try tomorrow, or maybe, if I get real enthused, later today, is to see if, after logging all the way out, then logging back in, whether ssh-agent has retained the ssh key that I added in the last session. If so, I *will* call this an important security hole, since in the unlikely event that someone manages to crack into my account (I lock the screen, per division rules, when I walk out of the office, so they can't just sit down at my desk), they could get to every other machine without so much as a by-your-leave, with no passwords. Now is this clearer? Yeah, I get it. What you're missing, and as others have pointed out, AND as discussed in the link I sent you, is that ssh-agent is DESIGNED to be persistent by default. You are correct in your assertion that if someone gained access to your machine while ssh-agent is active, they would have the same access to remote systems as you do when you're sitting at the console. That's life on the Internet today. Now, how well this meets your particular requirements is for you to decide. You are not REQUIRED to use ssh-agent, and there is considerable flexibility in how it can be configured and used. The ins and outs of those config options have to be evaluated in the context of your particular security environment. My conclusion regarding ssh-agent and the behavior that you find disturbing gets the old programmer's lament: It's NOT a bug, it's a feature! and for a change, this statement is correct. I encourage you to take the time to (re)read the link I sent you, slowly and carefully. That's what I had to do when I first found it, and when returning to it later on for enhancement of my ssh usage. I believe that it is DEFINITELY worth the effort. mark -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Intrusion Detection
On Thu, 2010-03-04 at 16:02 -0600, Dan Burkland wrote: Hello all, I have been exploring the various intrusion detection systems available for the Linux platform and was wondering what ones you all would recommend? I have used AIDE before and while it is extremely easy to setup, it does not support the ability to send alerts as files are changed (allows one to be aware of an intrusion almost immediately). I don't remember my exact thought process, but I've been using afick from RPMforge for a few years now. It does have a GUI available, though I don't use it myself. Thank you, Dan Burkland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Slightly OT: check creation of a group
On Mon, 2010-03-01 at 17:03 +0100, Niki Kovacs wrote: Hi, I'm currently writing an install script for an application, and my already limited Bash skills are a bit rusty. I want to check if a group exists, and if it doesn't, then create it. Only thing I found is: if [ grep medintux /etc/group ]; then continue else groupadd medintux fi Apparently I can't seem to negate the test, e. g. something like if !(grep medintux /etc/group) Any suggestions for the correct syntax here ? Try this: grep -q medintux /etc/group || groupadd medintux Thanks, Niki ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] is yum a complete substitute of rpm?
On Sat, 2010-02-13 at 10:00 -0600, Jim Green wrote: Dear Centos community, I am new to centos/redhat and I would like to know on a centos system, can I use yum alone to do all package management? I don't want to learn two systems and confuse myself, I understand yum is much better than rpm if is the case? I expect that you will get a bunch of replies on this. The short form is that yum lives on TOP of RPM. It is not a replacement for RPM. Yum does most of the thinking for you as far as dependency management. It is much more user-friendly, and is the preferred mechanism for software installation and maintenance because it does the dependency resolution for you, and saves much in the way of headaches, elevated stress, confusion, and RSI from excessive keyboard use. All that being said, there are times when you do want to use RPM by itself, without Yum. If you stay with CentOS and/or RedHat long enough, you will run across this situation now and then. Thank you! Jim ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] APC Smart-ups status codes (slightly OT)
On Fri, 2010-01-29 at 16:53 -0500, m.r...@5-cent.us wrote: We got replacement battery kits for some of our APC UPS' (Smart-UPS, rackmount). I put them into one tray (it's for an RBC 43, which takes 8, and weighs a ton), and put it in, and let it charge. Idiot change battery led stays on. So I hit the test button, it discharges very rapidly (a good number of servers on this), and the led stays on. For some reason, apcupsd's USB test fails, with an HIDDEV i/o error. So I got rid of the weird APC usb cable, and put in one of their serial cables, and run the smart test (the USB does more), and get results showing everything's fine. But the idiot light's still on. So, looking at all the values that the apcsmart choice can give me, the first thing is UPS status. I've been googling for a while, and can't find a single reference to it. Anyone have a link to somewhere that will give me the status codes (and their meaning)? The only thing that comes to mind is to check out NUT ( Network UPS Tools ) at http://www.networkupstools.org and see if their source code can answer your questions. I've been using NUT for some time with APC units and had no issues when changing batteries, but I have a vague memory of some models being fussy about noticing the new battery. Google should be able to find those discussions for you. Thanks in advance. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables default configuration
On Tue, 2010-01-19 at 14:32 -0600, Carlos Santana wrote: On Tue, Jan 19, 2010 at 1:31 PM, Kai Schaetzl mailli...@conactive.com wrote: Carlos Santana wrote on Tue, 19 Jan 2010 08:51:19 -0600: 'But it's harder to maintain as a script of your own.'. You are also using script, right? The as is ambiguous in this case ;-) Read: But it's (adding on the fly, no script) harder to maintain as if you use a script of your own. Kai Thanks for clarifying... :) - CS. If you're concerned about maintaining a script for your iptables configuration, consider the Shoreline firewall ( www.shorewall.net ) to manage your firewall. The things I like about Shorewall is that it uses human-readable config files, AND it generates iptables chains that are much more comprehensible than the other stuff that I've seen. Naturally, this is just my $0.02 (US) worth. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Serial port fun: CentOS 4.8 (32-bit) vs. CentOS 5.4 (64-bit)
On Fri, 2010-01-08 at 16:54 -0500, Robert Heller wrote: I am in the process of migrating from running CentOS 4.8 (32-bit) to CentOS 5.4 (64-bit) on my AMD Sempron(tm) Processor LE-1300 system (it is running CentOS 4.8 32-bit because the disk images are from a previous PIII system), and things are 'interesting' WRT how the Lava Computer mfg Inc Quattro-PCI card is being handled. lspci (on CentOS 4.8 32-bit) yields: 01:0a.0 Serial controller: Lava Computer mfg Inc Quattro-PCI A 01:0a.1 Serial controller: Lava Computer mfg Inc Quattro-PCI B On the 32-bit system (2.6.9-89.0.18.EL.plus.c4 [i686]) dmesg says: Serial: 8250/16550 driver $Revision: 1.90 $ 8 ports, IRQ sharing enabled ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A ttyS1 at I/O 0x2f8 (irq = 3) is a 16550A ACPI: PCI Interrupt :01:0a.0[A] - GSI 16 (level, low) - IRQ 233 ttyS4 at I/O 0xd080 (irq = 233) is a 16550A ttyS5 at I/O 0xd000 (irq = 233) is a 16550A ACPI: PCI Interrupt :01:0a.1[A] - GSI 16 (level, low) - IRQ 233 ttyS6 at I/O 0xcc00 (irq = 233) is a 16550A ttyS7 at I/O 0xc880 (irq = 233) is a 16550A With the 64-bit kernel (2.6.18-164.el5 [x86_64]) I get: Serial: 8250/16550 driver $Revision: 1.90 $ 4 ports, IRQ sharing enabled serial8250: ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A serial8250: ttyS1 at I/O 0x2f8 (irq = 3) is a 16550A 00:0a: ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A ACPI: PCI Interrupt Link [LNKC] enabled at IRQ 19 ACPI: PCI Interrupt :01:0a.0[A] - Link [LNKC] - GSI 19 (level, low) - IRQ 177 :01:0a.0: ttyS2 at I/O 0xd080 (irq = 177) is a 16550A :01:0a.0: ttyS3 at I/O 0xd000 (irq = 177) is a 16550A ACPI: PCI Interrupt :01:0a.1[A] - Link [LNKC] - GSI 19 (level, low) - IRQ 177 Couldn't register serial port :01:0a.1: -28 OK, instead of skipping ttyS2 and ttyS3 (normally old-school on-board COM3 and COM4) and allocating ttyS4 through ttyS7 for the Quattro, it is assigning ttyS2 and ttyS3 to the first pair, and then barfing (-28?) on the second pair. I looked at the config files and found: The 4.8 kernel has: # # Serial drivers # CONFIG_SERIAL_8250=y CONFIG_SERIAL_8250_CONSOLE=y CONFIG_SERIAL_8250_PCI=y CONFIG_SERIAL_8250_PNP=y CONFIG_SERIAL_8250_CS=m CONFIG_SERIAL_8250_NR_UARTS=32 CONFIG_SERIAL_8250_RUNTIME_UARTS=4 CONFIG_SERIAL_8250_EXTENDED=y CONFIG_SERIAL_8250_MANY_PORTS=y CONFIG_SERIAL_8250_SHARE_IRQ=y CONFIG_SERIAL_8250_DETECT_IRQ=y CONFIG_SERIAL_8250_RSA=y and the 5.4 kernel has: # # Serial drivers # CONFIG_SERIAL_8250=y CONFIG_SERIAL_8250_CONSOLE=y CONFIG_SERIAL_8250_CS=m # CONFIG_SERIAL_8250_ACPI is not set CONFIG_SERIAL_8250_NR_UARTS=4 CONFIG_SERIAL_8250_EXTENDED=y # CONFIG_SERIAL_8250_MANY_PORTS is not set CONFIG_SERIAL_8250_SHARE_IRQ=y CONFIG_SERIAL_8250_DETECT_IRQ=y CONFIG_SERIAL_8250_MULTIPORT=y CONFIG_SERIAL_8250_RSA=y Is what I am seeing a result of CONFIG_SERIAL_8250_ACPI and/or CONFIG_SERIAL_8250_MANY_PORTS not being set? Would upgrading to the CentOSPlus kernel help? I don't think you need the plus kernel. I did a similar dance when migrating to CentOS 5 on a box with a NetMOS serial card. My research led me to the boot-time kernel arguments related to the 8250 serial driver. Note that this has to be done as arguments to the kernel, in grub, because the 8250 driver is NOT built as a module, but is included in the basic kernel. After some banging around, I wound up with the argument 8250.nr_uarts=8 appended to the end of the kernel line in grub, and that made things work. This is sort of documented in /usr/share/doc/kernel-doc-2.6.18/Documentation/kernel-parameters.txt. You do have to understand how the kernel params work, but after you get that straight, the rest follows. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Firewall for virtual machines
On Fri, 2009-12-11 at 13:50 -0800, MHR wrote: I realize I'm not getting a lot of questions answered here lately, and I'm going to presume that this is for legitimate reasons (i.e., people don't know or are too busy to think about it), not because they seem stupid (if they do, please tell me, on the list or privately). I run Windows as a VMWare guest on top of my CentOS host, and I generally have not used a firewall on the guest. This is partly because I only run it rarely, and it seems like a waste when it's running on a host that has its own, pretty effective firewall, but today I began to wonder - would it be a bad idea (or a complete waste) to use a firewall, like ZoneAlarm, on my Windows guest OS? Opinions welcome. Disclaimer: This is just my own opinion, on a good day maybe worth $0.02 (US). I'd say that my circumstances are pretty similar to yours in that I run the Windoze VM occasionally for non-critical uses ( most of the time ). My network is protected by a separate CentOS 5 box with Shorewall as a front-end for iptables, and I feel as secure as anyone has a right to while still having an active Internet connection. ; So far, my practice has been to just run with the Windoze firewall enabled, and I do that mostly to keep the rest of that miserable excuse for an OS from whining about no detectable firewall in place, rather than in any expectation that it will actually prevent something bad from happening. I also have Windoze 2000 VMs with no firewall, and as far as I know nothing bad has slid onto my network. The bottom line is that in a VM protected by a real firewall, I see no particular need for another waste of system resources on an OS that wastes too much already. ; Thanks. mhr ___ -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS DHCP Server
On Tue, 2009-12-08 at 16:03 -0500, Kemp, Larry wrote: CentOS Community, I need help with a CentOS DHCP server. I have a simple 32bit CentOS 5.3 server running on an Intel chip server in a lab environment with two NIC's. Interfaces: eth0 - Is connected to the Internet using a static public IP address. eth1 - Is connected to a private 10.1.1.0/24 LAN with no other access to the web. Runs DHCP to the internal client systems. Is the default gateway for all LAN traffic to the Internet. Runs iptables as the firewall between the LAN and the Internet. On eth1 DHCP was running with no problems for some time. This lab system sat for months untouched and then we revisited this product/project only to find that DHCP would not start. It gave us this following error: Failed to start dhcpd : Internet Systems Consortium DHCP Server V3.1.3 Copyright 2004-2009 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/ Wrote 0 leases to leases file. Listening on LPF/eth1/00:50:ba:c0:43:c7/10.1.1/24 Sending on LPF/eth1/00:50:ba:c0:43:c7/10.1.1/24 Can't bind to dhcp address: Address already in use Please make sure there is no other dhcp server running and that there's no entry for dhcp or bootp in /etc/inetd.conf. Also make sure you are not running HP JetAdmin software, which includes a bootp server. There is no other DHCP server on this LAN or on the public /30 that eth0 connects to (not that eth0 would impact my internal LAN). I'm just guessing here, but I think that this message is telling you that something else is bound to that interface on port 67 ( DHCP server port ) which occasionally can happen by chance. Try lsof like this ( as root, of course ): lsof -i -Pn | grep :67 This should show you what has grabbed port 67 and it may be something you can stop and restart to get a different ( random ) port assignment. Like I said, this is just a guess. I saw there were ofcourse many systems updates for CentOS and thought that a might resolve. It did not. I then downloaded many versions of ISC's DHCP and compile and tried each of them from source code. This problems still exists. I have tried even the very simplest of dhcp.conf files and DHCP will still not start. Have I found a bug in the ISC DHCP code? Unlikely. I hope that one of you has run into this before and can help me out. Thanks greatly in advance. Respectfully, Larry Kemp Network Engineer U.S. Metropolitan Telecom, LLC Bonita Springs FL USA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] port forwarding using iptables
On Wed, 2009-11-25 at 13:57 -0500, Boris Epstein wrote: Hi listmates, Happy Thanksgiving! Does anybody know if there is a convenient utility to configure iptables on a CentOS 5.4 or 5.3 machine to do port forwarding? And if not, where and how does one put the requisite commands? For what it's worth, I use the Shoreline firewall package ( www.shorewall.net ) for that purpose. It takes a bit to get used to the syntax and idiosyncrazies of it, but it does just about anything you need/want with an iptables-based firewall. Thanks. Boris. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommend Mail Server
On Mon, 2009-11-23 at 10:45 -0500, Susan Day wrote: Hi; I don't want sendmail. What's a good secure email server that I can yum? I really only need smtp right now, but who knows what the future will bring? As others have already suggested, consider Postfix. I'm putting in my $0.02(US) so I can add my experience when I first had a need for a decent MTA. I had used Sendmail in the past, but I didn't want to fight with the arcane syntax of the config files, and at that time the add-on management tools and scripts were not nearly as friendly to a beginner. When Postfix was suggested to me, I started reading the docs on their Web site, and discovered that the learning curve is nowhere near as steep as it is with Sendmail. So far, Postfix has done everything I have needed, and with a LOT less pain. As always, YMMV. TIA, Suzie ___ -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] On-Boot Scripts
On Sat, 2009-11-14 at 12:38 -0600, John R. Dennison wrote: On Sat, Nov 14, 2009 at 09:18:31AM -0400, Victor Subervi wrote: Man, Scott, you've hit it on the head! Gotta be honest. My name isn't Victor Subervi. I've changed names on these lists so many times just to escape all the *#*%)+_ people throw at me, and I'll be changing names again after this post. What you all gonna do about it? Grow up! Treat people as you would like to be treated. Bye! Wow Simply wow. So, let me get this straight, please correct me if I'm wrong. You are entirely too lazy to do a single iota of work or exert even the smallest amount of effort on your own part to do a bare minimum of research, but instead run to the list expecting those of us that *can* assist you (please note the use of *can*, no one on any CentOS list is obligated to help you or anyone else) to effectively do your job for you? Because you're lazy and have an entitlement issue where you feel you are owed something? You blame your outright laziness on not having done anything of this nature in years? And when called on your lack of effort, laziness and entitlement issues you get pissy and spew such inanities as What you all gonna do about it?? Have I got this right? It's rare that I flame on lists, and really I do apologize to the rest of you, but Victor whateverMyNameIsLOL can you please do us all a favor and find another occupation? It's pretty evident you aren't cut out for anything remotely related to the various IT fields. How about something that takes no effort, motivation, drive, skill or knowledge? How about Q-Tip Tester? Or perhaps #2 Pencil Examiner? Anything not in a field that is likely to cross paths with myself or others here in the future would be ideal. In other words, how about you just go away and stay away and don't let the door hit you on the backside on the way out. John Sorry, but I just can't stand it anymore. John, I believe that you have summed up well enough the image that the person posting on this list as Victor stated as his position. What you are not saying is how obvious it is that he knows VERY little about Linux and/or Unix in any form. The questions he has been posting make it obvious that he is painfully lacking in practical experience in any OS that is subject to discussion on this list. As such, I have resorted to just deleting without any consideration any message from him, and most of those in threads I recognize as started by him. Again, I'm sorry for the rant, but I got to the point where I had to blow off some steam on this silly issue. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pan news reader
On Sat, 2009-11-14 at 03:38 +, MIKE - EMAIL IGNORED wrote: Does anyone know if the pan news reader works on CentOS 5.4? I am considering installing version 0.132 that I downloaded from pan.rebelbase.com . I'm using 0.133 from rpmforge. Seems to work fine. Thanks for your advice. Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.4 with Rage
On Mon, 2009-11-09 at 14:44 -0500, Steve Campbell wrote: nate wrote: Steve Campbell wrote: I'm trying to install a newly downloaded Centos 5.4 on an older Dell PowerEdge 300. Unfortunately, it came with one of those ATI Rage 2.0 video cards. The install screens show fine, and the initial screen does fine, but once it starts the firstboot section, where I'm supposed to select the firewall and such, I get two thirds of the top of the screen and a repeat of the top third on the bottom. Hence I don't get the bottom third where all of the selection buttons are. Anybody have a clue how to get around this? You mean R300 ? Try installing using a serial console. nate nate, thanks but... R300? Don't have or know what a serial monitor is also. I found a link to something on google that sort of suggests it's a problem with the xorg.conf file and the monitor, not the video adapter. I'll see if I can't get it resolved and report back. If your only problem is that you can't get to buttons on the bottom of the screen, try alt-left-mouse-button to drag the window around on the screen to see the parts that are hidden. steve ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NTFS and elrepo
On Sun, 2009-11-01 at 14:49 -0800, Akemi Yagi wrote: On Sat, Oct 31, 2009 at 8:14 PM, Ron Loftin relof...@twcny.rr.com wrote: I have here a box which I dual-boot between CentOS 5.4 and an older version of that other OS that I'm using to check out the ELrepo version of kmod-ntfs. After installing as per the directions on the ELrepo site, I can mount an NTFS filesystem, and when I type mount with no options the output tells me that the target filesystem is mounted read-write. However, when I try to create a file on that filesystem as root, I get a Permission denied error, which leads me to think that I'm missing something here. So far, Google has not been very helpful here, so if anyone can shine some light on this, it would be welcome. but I'm trying to evaluate the kmod-ntfs package from ELrepo.org. There seems to be something I'm not understanding about this approach, or I'm not finding the correct documentation for it. Could you show us the output returned by: uname -mr ls -l `find /lib/modules -name ntfs.ko` ls -l `find /lib/modules -name fuse.ko` uname -mr 2.6.18-164.2.1.el5 i686 ls -l `find /lib/modules -name ntfs.ko` lrwxrwxrwx 1 root root 46 Oct 31 19:45 /lib/modules/2.6.18-164.2.1.el5/weak-updates/ntfs/ntfs.ko - /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko lrwxrwxrwx 1 root root 46 Oct 31 19:45 /lib/modules/2.6.18-92.1.13.el5/weak-updates/ntfs/ntfs.ko - /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko ls -l `find /lib/modules -name fuse.ko` -rwxr--r-- 1 root root 57464 Sep 30 15:26 /lib/modules/2.6.18-164.2.1.el5/kernel/fs/fuse/fuse.ko Be careful of the line wrapping, and thanks for the help. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NTFS and elrepo
On Sun, 2009-11-01 at 15:20 -0800, Akemi Yagi wrote: On Sun, Nov 1, 2009 at 3:09 PM, Ron Loftin relof...@twcny.rr.com wrote: On Sun, 2009-11-01 at 14:49 -0800, Akemi Yagi wrote: Could you show us the output returned by: uname -mr ls -l `find /lib/modules -name ntfs.ko` ls -l `find /lib/modules -name fuse.ko` uname -mr 2.6.18-164.2.1.el5 i686 ls -l `find /lib/modules -name ntfs.ko` lrwxrwxrwx 1 root root 46 Oct 31 19:45 /lib/modules/2.6.18-164.2.1.el5/weak-updates/ntfs/ntfs.ko - /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko lrwxrwxrwx 1 root root 46 Oct 31 19:45 /lib/modules/2.6.18-92.1.13.el5/weak-updates/ntfs/ntfs.ko - /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko Something is wrong here. You are missing /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko that the symlinks are pointing to. Are those symlinks red-blinking? It's there. I must have missed it with my cut-and-paste before. ( Side note: I can't stand all that color-coding with the ls command, so I disable it. That's just my prejudice from growing up with UNIX in the '80s and '90s on REAL monochrome terminals. ;) ls -l /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko -rw-r--r-- 1 root root 235684 Oct 9 13:00 /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko ls -l `find /lib/modules -name fuse.ko` -rwxr--r-- 1 root root 57464 Sep 30 15:26 /lib/modules/2.6.18-164.2.1.el5/kernel/fs/fuse/fuse.ko This one is as expected. Just fine. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NTFS and elrepo
On Sun, 2009-11-01 at 16:41 -0800, Akemi Yagi wrote: On Sun, Nov 1, 2009 at 3:42 PM, Ron Loftin relof...@twcny.rr.com wrote: On Sun, 2009-11-01 at 15:20 -0800, Akemi Yagi wrote: Something is wrong here. You are missing /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko that the symlinks are pointing to. Are those symlinks red-blinking? It's there. I must have missed it with my cut-and-paste before. ( Side note: I can't stand all that color-coding with the ls command, so I disable it. That's just my prejudice from growing up with UNIX in the '80s and '90s on REAL monochrome terminals. ;) I fully understand (similar generation?!). ls -l /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko -rw-r--r-- 1 root root 235684 Oct 9 13:00 /lib/modules/2.6.18-128.el5/extra/ntfs/ntfs.ko Alright. Then as far as installation of the modules are concerned, there does not seem to be a problem. So, just for a confirmation, 'modprobe ntfs' and 'modprobe fuse' run without any errors and lsmod shows both modules loaded? Seems to work. Both modprobe commands run with no error, and lsmod shows this: lsmod | egrep 'fuse|ntfs' fuse 49237 0 ntfs 196760 0 If ntfs-3g is working for you, I would expect the ntfs module from kmod-ntfs works, too. That's what I thought. However, when I mount a partition created with Windoze 2000, I can read files and directories, but not create or modify anything. Here's the actual scenario ( all commands performed as root): # dmesg | tail FS-Cache: Loaded [drm] Initialized drm 1.0.1 20051102 ACPI: PCI Interrupt Link [LNKA] enabled at IRQ 9 PCI: setting IRQ 9 as level-triggered ACPI: PCI Interrupt :00:01.0[A] - Link [LNKA] - GSI 9 (level, low) - IRQ 9 [drm] Initialized i810 1.4.0 20030605 on minor 0 [drm] Using v1.4 init. NTFS driver 2.1.27 [Flags: R/W MODULE]. fuse init (API version 7.10) NTFS volume version 3.0. # fdisk -l /dev/hda Disk /dev/hda: 8700 MB, 8700346368 bytes 255 heads, 63 sectors/track, 1057 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/hda1 * 1 522 4192933+ 7 HPFS/NTFS /dev/hda2 5231056 4289355f W95 Ext'd (LBA) /dev/hda5 523 783 20964517 HPFS/NTFS /dev/hda6 7841056 2192841b W95 FAT32 # mount /dev/hda5 /mnt ( no error returned ) # mount /dev/hdb1 on / type ext3 (rw,nodev) proc on /proc type proc (rw) sysfs on /sys type sysfs (rw) devpts on /dev/pts type devpts (rw,gid=5,mode=620) tmpfs on /dev/shm type tmpfs (rw) /dev/hdb3 on /var type ext3 (rw,nosuid,nodev) /dev/hdb2 on /tmp type ext3 (rw,nosuid,nodev) none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw) sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw) /dev/hda5 on /mnt type ntfs (rw) Note the last line claims that hda5 is mounted with type ntfs and rw. # /bin/ls -la /mnt total 1048592 drwx-- 1 root root 4096 Oct 31 22:47 . drwxr-xr-x 26 root root 4096 Nov 1 19:05 .. -rw--- 1 root root 1073741824 Oct 31 22:43 pagefile.sys drwx-- 1 root root 0 Feb 2 2006 RECYCLER drwx-- 1 root root 0 Oct 31 21:31 spool drwx-- 1 root root 0 Jan 24 2006 System Volume Information drwx-- 1 root root 4096 Oct 31 22:50 tmp # touch /mnt/testfile touch: cannot touch `/mnt/testfile': Permission denied # touch /mnt/tmp/testfile touch: cannot touch `/mnt/tmp/testfile': Permission denied So, what am I missing, and where should I look ? However, they are not the same. The latter was built from the ntfs code in CentOS 5.3 (which was originally broken). I believe it worked after a patch was applied and this was tested by CentOS QA members. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NTFS and elrepo
On Sun, 2009-11-01 at 17:38 -0800, Akemi Yagi wrote: On Sun, Nov 1, 2009 at 5:05 PM, Ron Loftin relof...@twcny.rr.com wrote: If ntfs-3g is working for you, I would expect the ntfs module from kmod-ntfs works, too. That's what I thought. However, when I mount a partition created with Windoze 2000, I can read files and directories, but not create or modify anything. Here's the actual scenario ( all commands performed as root): (big snip) So, what am I missing, and where should I look ? Looks like you are doing everything just fine. Perhaps, we should move this conversation to the ELRepo mailing list because this is now all about kmod-ntfs and not all members of the ELRepo team are reading this mailing list on a regular basis. http://elrepo.org/tiki/MailingLists What do you think? I think that I just signed up for the ELRepo mailing list. I will post my last message there ( unless you think more of the background is useful ) and see what turns up. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] NTFS and elrepo
I have here a box which I dual-boot between CentOS 5.4 and an older version of that other OS that I'm using to check out the ELrepo version of kmod-ntfs. After installing as per the directions on the ELrepo site, I can mount an NTFS filesystem, and when I type mount with no options the output tells me that the target filesystem is mounted read-write. However, when I try to create a file on that filesystem as root, I get a Permission denied error, which leads me to think that I'm missing something here. So far, Google has not been very helpful here, so if anyone can shine some light on this, it would be welcome. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NTFS and elrepo
On Sat, 2009-10-31 at 23:39 -0400, Yves Bellefeuille wrote: On Saturday 31 October 2009 20:12, Ron Loftin wrote: I have here a box which I dual-boot between CentOS 5.4 and an older version of that other OS that I'm using to check out the ELrepo version of kmod-ntfs. After installing as per the directions on the ELrepo site, I can mount an NTFS filesystem, and when I type mount with no options the output tells me that the target filesystem is mounted read-write. However, when I try to create a file on that filesystem as root, I get a Permission denied error, which leads me to think that I'm missing something here. So far, Google has not been very helpful here, so if anyone can shine some light on this, it would be welcome. Try using mount -t ntfs-3g rather than mount -t ntfs. You may have to install fuse-ntfs-3g. I think that you have misunderstood my question. I know how to do it with the packages from RPMforge ( which is where I get fuse-ntfs-3g ) but I'm trying to evaluate the kmod-ntfs package from ELrepo.org. There seems to be something I'm not understanding about this approach, or I'm not finding the correct documentation for it. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mismatch_cnt after 5.3 - 5.4 upgrade
On Sun, 2009-10-25 at 12:33 -0600, Devin Reade wrote: Saturday I did an upgrade from 5.3 (original install) to 5.4. Saturday night, /etc/cron.weekly reported the following: /etc/cron.weekly/99-raid-check: WARNING: mismatch_cnt is not 0 on /dev/md0 I had this happen on a box that I upgraded Friday. I went ahead and tested each partition in the affected mirror with badblocks ( found no errors ) and after multiple resyncs, there was no change. After similar experiences with Google, I did run across a note saying that this went away after a reboot. I broke down and applied the Micro$lop solution ( reboot ) and the error has gone away. Like you, I'm interested in a better understanding of this issue, so if anyone else has more info, I'm all ears. ; md0 holds /boot and resides, mirrored, on sda1 and sdb1. md1 holds an LVM volume containing the remaining filesytems, including swap. The underlying hardware is just a few months hold, has passed the usual memtest stuff, and has been running 5.3 well for a few months. I'm *guessing* that due to the timing, this is related to the upgrade. I have to admit that I forgot myself and instead of doing the glibc updates as recommended, I only did: yum clean all yum update yum rpm -e --nodeps perl-5.8.8-18.el5_3.1.i386 (see today's perl thread) yum update perl.x86_64 yum update shutdown -r now I've taken a backup of /boot dump after the upgrade, but have not yet reenabled normal backups. My hunch is that something in the upgrade process touched sda1 but not sdb1, and that removing sdb1 from the mirror and reattaching it for resync would be sufficient, however I was looking for comments on this from anyone with experience or opinion on the matter. Googling the issue doesn't seem to turn up any recent related results. Also, could the upgrade have touched the bootblock on sda1 but not sdb1 and thus trigger this problem? Devin -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 5.4 docs
On Thu, 2009-10-22 at 00:33 -0500, Ron Blizzard wrote: On Wed, Oct 21, 2009 at 11:33 PM, Ron Loftin relof...@twcny.rr.com wrote: First off, I'm glad that 5.4 is now available, and a big Thank you to the development team for all of their hard work. I have noticed that the docs for 5.4 appear to be accessible on the CentOS Web site, but some of them seem to have some issues. In the Technical Notes, everything after the first page of Chapter 1 gives a 404 error. I've tried to send in a report with the contact form on the Web site, but so far this situation has not changed. I'm probably showing my ignorance, but aren't these documents the same as what you can get from Red Hat? http://www.redhat.com/docs/manuals/enterprise/ Yes, but since the CentOS team puts out the effort to mirror the docs, I'm sure that everyone involved would prefer that things work correctly. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Coincidence ? Well.... maybe
http://www.theregister.co.uk/2009/10/22/win7_launch/ After you read the article, check out the comment about the timing of the CentOS 5.4 release and draw your own conclusions. ; -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] 5.4 docs
First off, I'm glad that 5.4 is now available, and a big Thank you to the development team for all of their hard work. I have noticed that the docs for 5.4 appear to be accessible on the CentOS Web site, but some of them seem to have some issues. In the Technical Notes, everything after the first page of Chapter 1 gives a 404 error. I've tried to send in a report with the contact form on the Web site, but so far this situation has not changed. Hopefully somebody on the team can look into this after a bit of rest and recuperation from their efforts on our behalf. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Confusion about scheduling tasks with crontab
On Sun, 2009-10-18 at 11:28 -0400, Brett Serkez wrote: On Sun, Oct 18, 2009 at 11:11 AM, ne... guhv...@gmail.com wrote: On Sun, Oct 18, 2009 at 16:09, Niki Kovacs cont...@kikinovak.net wrote: I have to setup a scheduled task on a server, and I just read through some crontab docs. Now I'm confused. It's not so much the syntax of the cron job to define (I got that), it's more... how do I get to define it? Use a text editor (vi or the likes) to edit /etc/crontab directly? Or create some empty file in /etc/cron.daily or /etc/cron.hourly or the likes and then edit it using crontab -e ? As root, crontab -e. This is all you need. If the script is to run as root and you aren't overly concerned about the precise time your script runs, only that it runs at these intervals, you can place your script or a soft-link to your script in one of the directories /etc/cron.monthly, /etc/cron.weekly, /etc/cron.daily and /etc/cron.hourly. Any output from your script will be emailed to you, if this is setup. To the best of my knowledge the scripts in these directories are run in alphabetical order, you can control the order if desired by the naming of the script. In this case, crontab -e is not needed, create your script in our favorite editor. Some more detail here: You can use your favorite editor in conjunction with crontab -e just by setting the EDITOR or VISUAL environment variable to specify the editor to be used ( reference man crontab ). Also, while creating links to your scripts in the /etc/cron.[hourly| daily|weekly|monthly] is a valid approach, if you do very much of this your system will become quite busy at 1 minute after each hour, and shortly after 4AM, since that's when all that stuff runs. For more information, you should READ ( and NOT modify ) /etc/crontab, and /usr/bin/run-parts ( the script that actually executes the stuff in /etc/cron.[hourly|daily|weekly|monthly] for you. The alternative here is to edit root's crontab ( crontab -e as root ) to schedule jobs to run at alternative times. Cron and the associated commands such as at and batch are old-school Unix commands. They have a lot of functionality and a lot of flexibility, but you have to dig into them and experiment with them to learn enough to get the full benefits. Since you're just starting in this area, experimenting with non-production tasks and possibly environments is strongly encouraged. Brett ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Update question
I have some customer machines that have not been updated for some time, and are still on CentOS 5.2. While reading the release notes for 5.4, I have not yet seen anything that looks like it needs attention, but are there any known issues or gotchas related to moving directly from 5.2 to 5.4? Comments, pointers, things to look for are all welcome. Thanks muchly. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update question
On Wed, 2009-10-14 at 19:51 +0100, Benjamin Donnachie wrote: 2009/10/14 Ron Loftin relof...@twcny.rr.com: I have some customer machines that have not been updated for some time, and are still on CentOS 5.2. Do you *need* to upgrade? If the machines are running anything critical, I would be tempted to leave them with 5.2. That is a valid question. As these systems are Internet-facing boxes providing firewall/VPN/DNS services, I do need to keep them as current as customer management will allow for bug fixes and security patches. Everything on them is either from the CentOS repos or one of the more reliable 3rd-party repos such as RPMforge, so I'm hoping for a manageable amount of issues here. And yes, I DO test in a non-production environment before I deploy. I have lost my taste for tossing stuff into production without checking it out in advance. I'm a firm believer in the old Reagan-era philosophy of Trust, but verify. ; -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question on 5.4
On Fri, 2009-10-09 at 11:45 -0400, Jim Perrin wrote: On Fri, Oct 9, 2009 at 11:43 AM, Jerry Geis ge...@pagestation.com wrote: Does 5.4 come with an updated openoffice. 5.3 comes with version 2.3 was wondering if 5.4 will have 3.1 Nope. 5.4 won't have openoffice 3.1 That's not a big surprise, just keeping within the stated policies of CentOS. However, I will point out that for those who want OOO 3.1, all they have to do is skip installing the old version that comes with CentOS, and install the RPMs that can be downloaded straight from openoffice.org. The ones for RHEL 5 work very well, and integrate with the Gnome desktop automagically. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS for non-tech user
On Thu, 2009-09-24 at 08:53 -0700, Florin Andrei wrote: Anne Wilson wrote: I'm thinking of giving CentOS to a non-tech user for her new desktop. He needs are small. She has been used to Mozilla for both mail and browsing, so equivalents there are not a problem. She needs grip and lame, for her mp3s - again no problem. Desktop, non-techie - use Ubuntu instead. I'm a big CentOS fan, I joined even the Facebook group (lol), but its place is on the server or, perhaps, on a workstation for a power user (or for things like running scientific apps on the desktop). If you're a PhD running quantum theory equations with Mathematica on your Xeon multicore workstation, I can very well see why you would prefer CentOS, or even Red Hat Enterprise proper. But non-tech persons, they will be much more comfortable with Ubuntu. Much, much more comfortable. It will do more things for them, they may even be able to tinker with it, in a small way. Your support calls will be much reduced. ;-) CentOS (any RHE derivative, basically) is a less good choice for this particular situation. I respectfully disagree with your viewpoint. I have converted several non-techie users to CentOS from the other OS ( sometimes called the Rubbish from Redmond ) with little difficulty. CentOS on the desktop is what I use, therefore I am in a good position to answer their questions ( which have been very few, so far ) where if I put another distro on their machines, I would have to flail around when some minor point about the desktop or menu comes up. This also gives the long support cycle, as others have noted in this thread. This is also of interest, since I equip these folks with recycled or older technology systems, which CentOS supports quite well. For those who may have some need or want that CentOS doesn't support, I keep Linux Mint around. It is a derivative of Ubuntu that has the codecs and stuff like that included, so it has all of Ubuntu's user friendliness with less fuss over non-free components. So far, I haven't had to use it since CentOS has satisfied the modest requirements of my users. This is just my $0.02 ( US ) worth. Heck, I consider myself very knowledgeable (been using Linux since Slackware came on a stack of floppies and I had it dual-boot with a novelty OS called Windows 95; made my own distribution once from scratch; been using Red Hat nearly since the beginning) and I still don't run CentOS on my desktop - I use Ubuntu instead. (actually, as I'm getting more and more involved with higher-end-ish digital photo and digital video processing, I find myself booting Vista a lot more often on my home PC - it's a long story and yes I am aware of all the wonderful Linux video apps) -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS for non-tech user
On Thu, 2009-09-24 at 09:37 -0700, Florin Andrei wrote: Ron Loftin wrote: difficulty. CentOS on the desktop is what I use, therefore I am in a good position to answer their questions ( which have been very few, so far ) where if I put another distro on their machines, I would have to flail around when some minor point about the desktop or menu comes up. That is a fair point. Having to support something you're not familiar with can be difficult. This also gives the long support cycle, as others have noted in this Ubuntu LTS (Long Term Support) is similar to Red Hat in that regard, if that's what you want (but the advantages of a slow-moving distro are less clear for this kind of situation). http://www.ubuntu.com/news/ubuntu-8.04-lts-desktop I forgot to mention something: The end-user support for Ubuntu is phenomenal. With CentOS or Red Hat, you do get info on the mailing lists and wikis, but it's for geeks like you and me. Ubuntu has plenty of information on the Web, including forums and blogs and whatnot, much more accessible to the average Joe/Jane. The difference is gigantic, orders of magnitude really, it was the most striking feature when I started to use Ubuntu (besides the fact that you almost never have to compile anything, ever - any software you can imagine is just an apt-get install away, or rather, click on Synaptic Package Manager, Search, double-click). All true. No way would I argue with that. The low-tech crowd using Ubuntu is huge, they clearly have the largest user base in that segment. And if you're a non-techie you want to stay with the crowd. What I'm saying is, they will be able to figure out more things by themselves on Ubuntu, if they can use a browser. Maybe even become totally independent after a while. We might have a communication problem here, in the image of the low-tech user. My image of the low-tech user is the one who surfs the Web, reads and writes e-mail, and does the odd letter or maybe even a spreadsheet in some office tool, along with maybe some simple games. My experience with this category of user is that when they stumble across something unfamiliar or want some additional function, they pick up the phone and call me. If I'm reading your above two paragraphs correctly, your image of the low-tech user is one who has enough curiosity and motivation to poke at the machine by his/her self to find things out. My personal tendency is to not include people like this in the low-tech category, but to let them slide towards the power user category. This, of course, is another rationale for the Linux/Unix security model versus the sham that is called security under Windoze. When somebody is experimenting with an idea new to them just found on the 'Net, at least it's more difficult for them to trash the entire machine. Anyway, I have been reasonably successful with my approach to moving people onto Linux, and apparently so have you. As every little bit helps, then let's both keep at it. ; -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mount toption: nodev
On Tue, 2009-09-15 at 15:21 -0400, Yungwei Chen wrote: Hi, I am trying to secure my CentOS file systems by introducing nodev to devies defined in /etc/fstab. I learned that nodev prevents users from mounting unauthorized devices. However, I can still mount a cdrom to /tmp/cdrom with the following defined in /etc/fstab. Am I missing something? Thanks. LABEL=/tmp /tmpext3 defaults,nodev 1 2 Yes, I think that you have misinterpreted the nodev option. That means that device files ( normally created under /dev ) in a filesystem mounted with the nodev option are not allowed to access the hardware that they represent. This is used primarily as a protection against malware that tries to get direct access to hardware such as memory or network cards by creating additional device files somewhere else. Since CentOS ( and most other recent distros ) use udev to create the necessary block and character files in the /dev tree ( which is NOT an ext3 filesystem ) there should be no need for the average user to create device files anywhere else in the directory tree. After I understood this, I then modified all of the systems that I take care of to specify nodev as an option for ALL ext3 filesystems. In your case, if you are mounting a CD, you are using the normal block device(s) in /dev ( such as /dev/cdrom or /dev/hdc ) and just specifying the directory to use as the mount point ( /tmp/cdrom ), which is perfectly legal with this option. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Inquiry:Migration from Linux 7.2 to CentOS 5
One piece of information I have not seen in this thread is that the old RHL 7.2 was the basis for RedHat Enterprise Linux 2.1, which had its support ended earlier this year. That being said, I will now add my voice to those pointing out that in today's Internet environment, it is only prudent to get yourself onto some OS that is currently maintained, with patches for bugs and fixes for newly-discovered security issues. My $0.02 ( US ) worth. On Sat, 2009-09-12 at 10:00 -0700, Bart Schaefer wrote: On Sat, Sep 12, 2009 at 12:13 AM, hadi motamedi motamed...@gmail.com wrote: Can you please do me favor and let me know what are the highlights of major benefits of CentOS Release 5 (Final) over the RedHat Linux 7.2 (Enigma) as we are going to migrate to it ? The major benefits of upgrading, as I see it are: (1) Ongoing support and security (2) New software packages and more recent versions of many old ones The major drawbacks are: (1) Support for some older hardware is gone (2) Several packages have been discontinued or replaced with inferior alternatives [*] (3) Any custom software that depends on libc5 is out of luck [* due to stricter licensing constraints] ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sendmail routing
On Wed, 2009-09-02 at 11:38 -0700, Hugh E Cruickshank wrote: From: Christopher Chan Sent: September 1, 2009 23:04 Sorry, last I checked, there is no sender-based routing support in sendmail. You cannot even try to create rulesets to get that. Looks like it is my turn to eat humble pie. You will need to rebuild sendmail.cf after applying this hack. http://www.cs.niu.edu/~rickert/cf/hack/sender_based_routing.m4 While this does look promising I am hesitant to install anything that is either a) possibly version dependent and b) beyond my understanding as to what it is doing. I will have to review this thoroughly before I even consider implementing it. I have not tested it let alone tried on 8.14.x Caveat noted. I cannot believe the file is dated 2004. Ah well, I got rid of sendmail and replaced it with postfix in 2003 while I was still a mail admin. I must bow to the real sendmail bigots. Mail administration is just one of those little jobs that I am responsible for and I just have not had the time to review/learn a new MTA so I muddle on with the devil I know. I'm certainly not going to throw stones at this philosophy, but I will suggest that you reconsider in this case. I'm not really a mail guru, or even that much of a mail admin, but I switched to Postfix about 3 years ago, and I have to say that the learning curve is a LOT less challenging than Sendmail ever was for me. I became productive with Postfix in less than a week, mostly because the documentation is a lot better, as well as the config files are readable by the average computer-literate humanoid. I suggest that you give it some thought. My $0.02 (US) worth. ; Thanks for your suggestion it has definitely given me something to think on and possibly work with. Regards, Hugh -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce ssh attacks
On Thu, 2009-08-20 at 15:14 -0500, Eugene Vilensky wrote: Hello, What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. Along with DenyHosts, consider the SSH server options AllowGroups and AllowUsers to specify the users/groups allowed to connect. My experience is that this will deal with the majority of brute-force attacks, since many of these target known user accounts ( root, daemon, etc. ) as well as common names ( joe, jane, etc. ). If an attempt is made to log in with a user name not specified by the AllowGroups or AllowUsers options, the ssh server will reject it as an invalid user and throw the connection on the floor, which seems to lighten the load for DenyHosts. Refer to man sshd_config for more info. For myself, with a pretty small user population, I just create a group called sshusers ( of course, the name can be whatever you choose ) and put users in that group who need SSH access from outside. As always, YMMV. ; What are some policies/techniques that have worked for this list with minimal hassle? Thanks! -Eugene ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ssh-agent autostarting
On Sun, 2009-08-16 at 23:15 -0400, Dave wrote: Hello, I'm trying to get public key authentication working on a client to server connection so i can drop passwords. I've got the keys in place and confirmed they are working. I'm now trying to set up ssh-agent, I read i can do it manually i was looking for a more automated method for users on login. This is not through a gui. Check into keychain. Read all three articles in the series. http://www-106.ibm.com/developerworks/library/l-keyc.html Thanks. Dave. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] yum update
On Thu, 2009-08-13 at 08:53 -0500, Les Mikesell wrote: Geoff Galitz wrote: Can any one clarify this, is auto updating at all production servers recommended or not? need to know your opinion, how do you manage the update? I've worked on projects where backend configuration files changed in syntax or architecture between releases, which were released as updates... so I know for a fact updates can break a running system. On CentOS? Fedora does that all the time but _not_ having behavior-changing updates in the long life of a major release is most of the point of 'enterprise' distributions. It's probably not perfect - and I wouldn't do auto-updates on production servers either but it should at least be very unusual for a CentOS update to break anything. I agree. However, my experience with CentOS requires me to state that updates modifying config files is rare, but NOT unknown. Precautions such as testing on non-production systems, should be taken, if only to deal with Murphy's Law. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] /etc/init.d/gdm for centos5
On Thu, 2009-08-13 at 16:59 -0700, grace rante wrote: Does anybody know how to restart X in centos 5.3? /etc/init.d/gdm | xdm seems to be missing. Those scripts never existed. GDM runs from an entry in /etc/inittab, not from an rc script. You should have these two lines in /etc/inittab: # Run xdm in runlevel 5 x:5:respawn:/etc/X11/prefdm -nodaemon So if you have a need to restart X, do telinit 3 ; telinit 5 and that will stop and start the gdm process. thanks, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntp time server
On Tue, 2009-07-21 at 18:36 -0400, Andy Harrison wrote: On Tue, Jul 21, 2009 at 6:22 PM, Scott Silvassi...@sgvwater.com wrote: If there are other interfaces available, FreeBSD does well as a timeserver with SOME GPS receivers. But if it is working OK, I would just leave it running unless the hardware is going south. It's not so much that the hardware is currently going south, it's just Sun being Sun. When a box gets this old, they start charging ungodly amounts for support costs. That's what eBay is for. ;^P -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Custom udev rules to override defaults?
On Tue, 2009-07-14 at 17:52 +0100, James Pearson wrote: I'm trying to work out how to set up a custom udev rule to override permissions on serial ports (/dev/ttyS* and /dev/ttyUSB*) on CentOS 5.3 The default rule, in /etc/udev/rules.d/50-udev.rules has the line: KERNEL==tty[A-Z]*,NAME=%k, GROUP=uucp, MODE=0660 and I would like the mode to be 0666 Various docs on web say that you shouldn't change 50-udev.rules, but instead create a new rule file that appears lexically before that rule - so I've created a file that contains the line: KERNEL==tty[A-Z]*,NAME=%k, GROUP=uucp, MODE=0666 called 10-local.rules However, this doesn't work ... the /dev/ttyS* device files get the 'default' owner/group/perms (mode = '0600', uid = '0', gid = '0') If I rename the 10-local.rules to say 99-local.rules, then the device files get the owner/group/perms from 50-udev.rules (mode = '0660', uid = '0', gid = '14') I can get the mode set to 0666 by editing 50-udev.rules, however this seems wrong as you should be able to override the defaults without doing this. Anyone know if this is possible? It seems like it should be. I presume that you have already been reading the rules guide found on your system at /usr/share/doc/udev-095/writing_udev_rules/index.html. I can't add much to that, except to point out that to support various models of UPS on different systems, I have put the following into a file named /etc/udev/rules.d/99-nut-ups.rules and gotten the desired results: # Serial device for UPS monitoring KERNEL==ttyS0,OWNER=nutdev, GROUP=nut, MODE=0660 KERNEL==hiddev0,OWNER=nutdev, GROUP=nut, MODE=0660 As you will note, these lines change the user and group ownership of the target files, but the permissions via the MODE parameter should work the same way. I'm wondering if you might want to try a more selective target for the device in the KERNEL parameter, say ttyS* since you're targeting your serial ports. Thanks James Pearson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for recommendations for blocking hacking attempts
On Thu, 2009-07-09 at 09:56 -0500, Neil Aggarwal wrote: Hello: I have been looking into projects that will automatically restrict hacking attempts on my servers running CentOS 5. I think the two top contenders are: DenyHosts - http://denyhosts.sourceforge.net Fail2ban - http://www.fail2ban.org From what I see, DenyHosts only blocks based on failed SSH attempts whereas Fail2ban blocks failed attempts for other access as well. That is incorrect. Denyhosts has a config option named BLOCK_SERVICE which can be set to ALL. Check out the description included in the sample config file. I have been using Denyhosts for at least 3 years now, and been satisfied enough with it that I have not gone looking for alternatives, so I can't rationally compare it with Fail2ban. I have seen numerous reports on the Web of people being happy with Fail2ban, so I guess it comes down to which one you are comfortable with. The only other observation I have is that most of my machines have very few services exposed to the Internet. Most services on my Internet-facing boxes are either disabled or limited by firewall rules, so the Denyhosts/Fail2ban layer gets less work. I suggest that you critically evaluate the services you choose to make available to the 'Net from a similar viewpoint. Just my $0.02 (US) worth. ; The main benefit I see from DenyHosts is their synchronization service where my servers can proactively block hosts recognized by other users of their service. Does anyone have experience with these tools and have recommendations? Thanks, Neil -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com Will your e-commerce site go offline if you have a DB server failure, fiber cut, flood, fire, or other disaster? If so, ask me about our geographically redudant database system. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for recommendations for blockinghacking attempts
On Thu, 2009-07-09 at 10:44 -0500, Neil Aggarwal wrote: Ron: From what I see, DenyHosts only blocks based on failed SSH attempts That is incorrect. Denyhosts has a config option named BLOCK_SERVICE which can be set to ALL. I think you misunderstood my point. It looks like BLOCK_SERVICE tells what to block once the offender has been identified. What I am talking about is the process of identifying the offender in the first place. It looks like only a failed SSH login attempt will cause someone to be blocked. If they try to attack another service (pop3s for example), DenyHosts will not block them. Does this make sense? Or, am I wrong about it? I stand corrected. Thanks, Neil -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com Will your e-commerce site go offline if you have a DB server failure, fiber cut, flood, fire, or other disaster? If so, ask me about our geographically redudant database system. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
As a really radical suggestion, perhaps you should consider moving this discussion to the rpmforge mail list, since it seems that most of your issues are focused on that repository. You might even find a larger collection of viewpoints there. On Wed, 2009-07-01 at 11:32 -0700, Radu-Cristian FOTESCU wrote: I believe that YOU are the only person on this list who has expressed an interest in audacious (whatever it is does) for CentOS during these several days of rant. I believe that YOU are the only person on this list (whoever you are do) to have suggested popularity as a required raison d'être. Maybe we should make a poll: from the 8,614 RPM files RPMforge are, I am pretty much sure you wouldn't find in a couple of days more than 1 person to express interest in *half* of them. Should half of them be dropped? R-C __ Ask a question on any topic and get answers from real people. Go to Yahoo! Answers and share what you know at http://ca.answers.yahoo.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dag's comment at linuxtag
While I don't want to just add noise to this thread, I think that there might be some miscommunication and/or misunderstanding involved here. I also want to express my appreciation to Dag and the folks who maintain the RPMforge repo, as I find it quite useful. On Mon, 2009-06-29 at 20:34 +0200, Dag Wieers wrote: On Mon, 29 Jun 2009, Radu-Cristian FOTESCU wrote: A quick look at http://distrowatch.com/table.php?distribution=centos shows that a great majority of the packages are not even close to being up-to-date, and that is a good thing for those us of who care more about stability than eyecandy. That can't be other way. For instance, you can't build GIMP 2.4 or 2.6 unless you you upgrade to a newer GTK+, which would impact on a lot of apps. The impression I get from the above exchange is that someone either has not read the CentOS mission statement, or does not understand it in the context of enterprise and stable distribution. This leads to dissatisfaction with their installations, since one of the costs of long-term stability is loss of the capability to upgrade package versions in a piecemeal manner. OTOH, Dag is in a funny position: he's the main maintainer of RPMforge, which has 2 main issues: (1) It's broken, at least partially. Try install audacious for one. (2) It's incompatible with EPEL. Try install MPlayer and VLC with EPEL enabled. These observations, while technically correct, show a lack of familiarity with the long-running differences of opinion between the RPMforge folks and the EPEL crew. Again, in the technical/factual universe, I support Dag's response below, but in the political/emotional world, I hope that this is not indicating a bump up against the limits of his patience with these conflicting viewpoints. (1) I expect now patches from you to make a workable audacious based on our audacious package. Apparently you have the interest and the time to do it ? (2) No, they are not compatible, we know. Share to help with this too ? You first have to convince the Fedora people that they will not introduce new incompatibilities before starting. I'd right merge, but also that is not happening as there is no interest. So what is the solution ? Shall I simply stop doing RPMforge ? Here I will speak for myself, while hoping that there are others who will agree: HELL NO !!! I'm not enough of a programmer to even THINK of replacing the talent you bring to the table, and I suspect that there are relatively few people who DO posses those skills who would also have the dedication you do. I will say it if nobody else will: The distros supported by RPMforge would be poorer without your efforts. Is that the position you prefer to force me into ? Because I certainly did not force you into using the repository. On the lighter side: If you HAD forced anyone to use the repository, I suspect that you would have forced them to read the relevant docs ( HOWTOs, etc. ) FIRST. ; I don't know even why you want to use RPMforge, there must be something that is missing from EPEL ? I am happy to learn what you want to do though, because it is easy to criticize, but it takes time to do some work. (And I hope the solution is not another repository, because we have been there :-)) -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Set hostname via DHCP ?
On Sun, 2009-06-28 at 17:38 +0200, Niki Kovacs wrote:
Hi.
I just setup one of my machines as a DHCP server. I'd like it to handle
the hostnames of clients. Don't know if this is an orthodox thing to do
I really don't know if it's orthodox or not, but I've been doing it
like this for years. ;^
(feel free to add your comments :oD). Here's the server's relevant lines
of dhcpd.conf:
--8---
...
# Envoyer les noms d'hôtes aux clients
use-host-decl-names on;
# Adresses statiques
host babasse {
hardware ethernet 00:0d:61:ae:6b:8f;
fixed-address 192.168.1.249;
}
--8---
This config is just about identical to mine.
Now the question is: how should the configuration look like on the
client side, so the hostname gets effetively fetched from the DHCP
server? During the initial install, I assigned hostnames manually to
every machine.
Unless you have modified the DHCP client config, the machine SHOULD get
the hostname by default. You can verify this by checking the contents
of /var/lib/dhclient/dhclient-eth0.leases to see the data that the
client has gotten from the server.
Since I let my client machines get all this from DHCP during
installation, I'm not completely sure what you need to do to make the
manually-assigned hostname go away. I THINK that if you comment out the
line for the host's IP address in /etc/hosts the system will use the
hostname from DHCP, but I haven't exercised that stuff in years.
Cheers,
Niki Kovacs
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
--
Ron Loftin relof...@twcny.rr.com
God, root, what is difference ? Piter from UserFriendly
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
[CentOS] Dependencies in 5,3
First off, I want to express my appreciation for the dedication of the CentOS developers for providing us with the quality work they always do. This is a question and a request for explanation so that my little mind can understand what's going on. And for those inquiring minds who want to know, I have already filed bug reports. ;^ Over the weekend I went through several boxes here at home and upgraded from 5.2 to 5.3. I was a good boy and read the release notes first, followed the procedures recommended therein, and the upgrades went just fine. I have to say that I was less than ecstatic when I saw my desktop machines install NetworkManager and PPP where they had not been installed before. A bit of poking at the new situation led me to the conclusion that NetworkManager is now a requirement of Evolution, and PPP is a requirement of NetworkManager. Since these are desktop boxes that do not move around, and communicate via my in-house LAN over a single Ethernet interface, I don't see any pressing need for NetworkManager and PPP. I would appreciate it if someone could shed some light on this situation, since the only conclusion that I can draw so far is that this is unnecessary system bloat. As used to happen on the sun-net-manglers list in years past: Thanks in advance. -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Printer recommendations
Since my old Epson C86 has finally managed to clog up the print heads, I'm in the market for a replacement. I'd like to know what the people on this list are using for printers that are currently available, since we are using versions of CUPS and foomatic that are frozen, and any other issues or gotchas that you are aware of. For the replacement printer, I'm considering a color laser printer instead of the inkjets that I've been using, and I'm dithering back and forth over the question of direct-connect or networked printer. Suggestions, warnings, and horror stories are welcome. Thanks in advance. -- Ron Loftin [EMAIL PROTECTED] God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
