[CentOS] pam_tally2 after unlock time

Hi All, I prepared a Centos 6.8 Minimal server, as part of hardening i added PAM rules under system-auth and password-auth to lock the user account for 30 minutes after 3 failed login attempts. system-auth### auth required pam_tally2.so deny=3 unlock_time=1800

Re: [CentOS] Automounting a USB drive

On Sun, Feb 12, 2017 at 10:11 PM, wrote: > If i manually mount it from a terminal, I have read/write access. > Seems a permission issue. su to root after the "auto" mount and take a look. If you can see your file or can write a touch file then your user may not be

Re: [CentOS] Automounting a USB drive

Original Message Subject: Re: [CentOS] Automounting a USB drive From: Fred Smith Date: Sun, February 12, 2017 9:52 pm To: centos@centos.org On Sun, Feb 12, 2017 at 06:19:34PM -0700, tdu...@palmettoshopper.com wrote: > > Hello, > > Been try to

Re: [CentOS] Automounting a USB drive

On Sun, Feb 12, 2017 at 06:19:34PM -0700, tdu...@palmettoshopper.com wrote: > > Hello, > > Been try to use autofs to mount and unmount a usb flashdrive. I've never had to do anything at all to make this work,... I insert the USB device, wait a few seconds, and voila! are you trying this

[CentOS] Automounting a USB drive

Hello, Been try to use autofs to mount and unmount a usb flashdrive. The mount point is /media When the drive is NOT inserted, /media is empty. When Iinsert the drive, I see directories in /media that are on the usb drive but nocontent. So, its kind working. /etc/auto,master: # # Sample

Re: [CentOS-virt] NIC Stability Problems Under Xen 4.4 / CentOS 6 / Linux 3.18

On 11/02/17 06:29, Kevin Stange wrote: On 01/30/2017 06:41 PM, Kevin Stange wrote: On 01/30/2017 06:12 PM, Adi Pircalabu wrote: On 31/01/17 10:49, Kevin Stange wrote: You said 3.x kernels specifically. The kernel on Xen Made Easy now is a 4.4 kernel. Any chance you have tested with that one?

Re: [CentOS] Licence text questions

On Feb 12, 2017, at 2:36 PM, Walter Dnes wrote: > The point of my first post was to ask about licencing. Regardless of > whether I'm sending out a bootable ISO, or a QEMU disk image, or a > tarred up chrootable directory, I'm re-distributing Open Source code > and/or

[CentOS] Problems with latest Firefox update -- can't install new extensions

Since the latest Firefox update to 45.7.0 on my CentOS 6.8 system, I can no longer install add-ons/extensions. Things LOOK like they're working but the extensions don't get stored in my normal area and they don't appear in my Add-Ons menu. Is anyone else having this issue? It has been a while

Re: [CentOS] Centos7 and old Bind bug

On 02/12/2017 10:50 AM, Robert Moskowitz wrote: ? What do I install for this? You don't have to install anything. You'd just temporarily disable "dontaudit" rules by running "semodule -BD". Give named time to log additional "permission denied" errors, and then look for related AVC

Re: [CentOS] Centos7 and old Bind bug

On 02/12/2017 10:56 AM, Robert Moskowitz wrote: It's probably safe to specify some range of higher numbered ports: use-v4-udp-ports { range 10240 65535; }; use-v6-udp-ports { range 10240 65535; }; But that is not the ports that I am seeing in logwatch: Yes, I know. The work-around in

Re: [CentOS] Licence text questions

On Sun, Feb 12, 2017 at 10:43:39AM -0500, Jonathan Billings wrote > The point I was making is to make the old CentOS 6.5 environment as > a chroot. That's exactly my intention. As I said in my original message... >> * or send out a 1.3 gigabyte centos65.tar.xz and give simple >>

Re: [CentOS] Centos7 and old Bind bug

On 02/12/2017 01:40 PM, Gordon Messmer wrote: On 02/11/2017 08:56 PM, Robert Moskowitz wrote: This seems to be bug 1103439 which was 'fixed' for Centos6. What should I do about this? Is there a SELinux policy to apply or should I the avoid upd-ports option in Bind? It looks like that

Re: [CentOS] Centos7 and old Bind bug

On 02/12/2017 01:43 PM, Gordon Messmer wrote: On 02/12/2017 10:40 AM, Gordon Messmer wrote: I'm not seeing those errors logged, either, so maybe your system differs from mine. If I'm misreading, hopefully someone will chime in to clarify. ... Also, it might be useful to get the AVCs on

Re: [CentOS] Centos7 and old Bind bug

On 02/12/2017 10:40 AM, Gordon Messmer wrote: I'm not seeing those errors logged, either, so maybe your system differs from mine. If I'm misreading, hopefully someone will chime in to clarify. ... Also, it might be useful to get the AVCs on your system. The bug entry indicated that you'd

Re: [CentOS] Centos7 and old Bind bug

On 02/11/2017 08:56 PM, Robert Moskowitz wrote: This seems to be bug 1103439 which was 'fixed' for Centos6. What should I do about this? Is there a SELinux policy to apply or should I the avoid upd-ports option in Bind? It looks like that bug was assigned to the selinux-policy component,

Re: [CentOS] Licence text questions

> On Feb 11, 2017, at 10:57 AM, Walter Dnes wrote: > > 2) The builds I'm doing are targetted at distros, like Puppy linux, > which use older libs with backported security fixes. Pale Moon built > in a chroot or mock chroot in CentOS 6.8 and up, let alone any modern >

Re: [CentOS] chcon failed to change context Permission denied

oops ! Thanks ! On 10 February 2017 at 19:06, Alexander Dalloz wrote: > Am 10.02.2017 um 16:59 schrieb Tim Smith: >> >> Hi, >> >> I'm confused, why can root not change context of a directory ? >> >> I've moved a mysql dir from /var/lib to another drive. >> >> But running sudo