[CentOS] LUX repo
Hi List, does anyone use the lux repo. I needed perl-Mail-POP3Client-2.19-5.el7.noarch.rpm except for el8, it was in epel for el7 only place I found it was at repo.iotti.biz/CentOS/8/noarch/perl-Mail-POP3Client-2.19-1.el8.lux.noarch.rpm Thanks, Steve Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] log4j cve
On 12/14/21 8:07 AM, Steve Meier wrote: Hello Steve, Am 2021-12-14 13:42, schrieb Steve Clark via CentOS: Hi List, I see on CentOS 7 it has log4j-1.2.17... Is ok 2 use. I know the CVE was against 2.0 fwd but not knowing if something was backported to 1.2 ? Thanks, Steve log4j Version 1.2 is definitely *NOT* OK to use. The Apache website https://logging.apache.org/log4j/1.2/ says: "On August 5, 2015 the Logging Services Project Management Committee announced that Log4j 1.x had reached end of life." There is already an unpatched CVE from 2019 for log4j 1.2. It's really time to upgrade. Kind regards, Steve This is the standard version that comes with CentOS 7 and is the latest available as of a yum update just now. log4j-1.2.17-16.el7_4.noarch -- Stephen Clark NetWolves Managed Services, LLC. Sr. Applications Architect Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] log4j cve
Hi List, I see on CentOS 7 it has log4j-1.2.17... Is ok 2 use. I know the CVE was against 2.0 fwd but not knowing if something was backported to 1.2 ? Thanks, Steve -- Stephen Clark NetWolves Managed Services, LLC. Sr. Applications Architect Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 8
On 4/9/21 11:31 AM, Johnny Hughes wrote: On 4/9/21 5:18 AM, Steve Clark via CentOS wrote: On 4/8/21 3:50 PM, Tony Schreiner wrote: On Thu, Apr 8, 2021 at 2:33 PM Nicolas Kovacs <mailto:i...@microlinux.fr><mailto:i...@microlinux.fr><mailto:i...@microlinux.fr> wrote: Le 08/04/2021 à 18:58, Steve Clark via CentOS a écrit : How do I allow root log in on GDM. tl;dr: you don't. Log in as a non-root user, and when you do need root, either open up a terminal and use 'su -' or (even better) setup your user by making your user a member of the wheel group and then use sudo. Logging in to a GUI as root is *BAD* practice. Cheers, Niki That said - you can do it, by clicking on "Not listed?" and typing root into the user field. Yes I have done that and it immediately comes back to the login screen, I know I am typing the correct passwd, because if I botch the passwd I get a message to that effect. I would not recommend ever using the GUI as the root user .. it creates keys and items that are very dangerous. (gnome key rings, etc) You should be able to 'su -' , then use visudo to create a sudo account for your user. You can even NOPASSWD your user for using sudo (you may or may not want to do that .. if someone gains access to your local account, they could then sudo with no passwd). But, i have never, ever logged in as root on a GUI account directly on a machine that I cared about or was keeping live .. just advise, do with it what you will. ___ CentOS mailing list CentOS@centos.org<mailto:CentOS@centos.org> https://lists.centos.org/mailman/listinfo/centos Turns out that as the intial user I was put into the wheel group so I am able to login and run firewall-config which what this was about. -- Stephen Clark NetWolves Managed Services, LLC. Sr. Applications Architect Phone: 813-579-3200 Fax: 813-882-0209 Email: steve.cl...@netwolves.com<mailto:steve.cl...@netwolves.com> http://www.netwolves.com Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 8
On 4/8/21 3:50 PM, Tony Schreiner wrote: On Thu, Apr 8, 2021 at 2:33 PM Nicolas Kovacs <mailto:i...@microlinux.fr> wrote: Le 08/04/2021 à 18:58, Steve Clark via CentOS a écrit : How do I allow root log in on GDM. tl;dr: you don't. Log in as a non-root user, and when you do need root, either open up a terminal and use 'su -' or (even better) setup your user by making your user a member of the wheel group and then use sudo. Logging in to a GUI as root is *BAD* practice. Cheers, Niki That said - you can do it, by clicking on "Not listed?" and typing root into the user field. Yes I have done that and it immediately comes back to the login screen, I know I am typing the correct passwd, because if I botch the passwd I get a message to that effect. ___ CentOS mailing list CentOS@centos.org<mailto:CentOS@centos.org> https://lists.centos.org/mailman/listinfo/centos -- Stephen Clark NetWolves Managed Services, LLC. Sr. Applications Architect Phone: 813-579-3200 Fax: 813-882-0209 Email: steve.cl...@netwolves.com<mailto:steve.cl...@netwolves.com> http://www.netwolves.com Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 8
Hello, How do I allow root log in on GDM. The only people that have access are admins - so I am not worried about someone screwing things up. Thanks, -- Stephen Clark Email Confidentiality Notice: The information contained in this transmission may contain privileged and confidential and/or protected health information (PHI) and may be subject to protection under the law, including the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA). This transmission is intended for the sole use of the individual or entity to whom it is addressed. If you are not the intended recipient, you are notified that any use, dissemination, distribution, printing or copying of this transmission is strictly prohibited and may subject you to criminal or civil penalties. If you have received this transmission in error, please contact the sender immediately and delete this email and any attachments from any computer. Vaso Corporation and its subsidiary companies are not responsible for data leaks that result from email messages received that contain privileged and confidential and/or protected health information (PHI). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos