[CentOS-announce] CESA-2007:0662 Moderate CentOS 4 ia64 httpd - security update
CentOS Errata and Security Advisory 2007:0662 https://rhn.redhat.com/errata/RHSA-2007-0662.html The following updated files have been uploaded and are currently syncing to the mirrors: ia64: updates/ia64/RPMS/httpd-2.0.52-32.3.ent.centos4.ia64.rpm updates/ia64/RPMS/httpd-devel-2.0.52-32.3.ent.centos4.ia64.rpm updates/ia64/RPMS/httpd-manual-2.0.52-32.3.ent.centos4.ia64.rpm updates/ia64/RPMS/httpd-suexec-2.0.52-32.3.ent.centos4.ia64.rpm updates/ia64/RPMS/mod_ssl-2.0.52-32.3.ent.centos4.ia64.rpm -- Pasi Pirhonen - [EMAIL PROTECTED] - http://pasi.pirhonen.eu/ Top-postings silently ignored signature.asc Description: Digital signature ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CESA-2007:0662 Moderate CentOS 4 s390(x) httpd - security update
CentOS Errata and Security Advisory 2007:0662 https://rhn.redhat.com/errata/RHSA-2007-0662.html The following updated files have been uploaded and are currently syncing to the mirrors: s390: updates/s390/RPMS/httpd-2.0.52-32.3.ent.centos4.s390.rpm updates/s390/RPMS/httpd-devel-2.0.52-32.3.ent.centos4.s390.rpm updates/s390/RPMS/httpd-manual-2.0.52-32.3.ent.centos4.s390.rpm updates/s390/RPMS/httpd-suexec-2.0.52-32.3.ent.centos4.s390.rpm updates/s390/RPMS/mod_ssl-2.0.52-32.3.ent.centos4.s390.rpm s390x: updates/s390x/RPMS/httpd-2.0.52-32.3.ent.centos4.s390x.rpm updates/s390x/RPMS/httpd-devel-2.0.52-32.3.ent.centos4.s390x.rpm updates/s390x/RPMS/httpd-manual-2.0.52-32.3.ent.centos4.s390x.rpm updates/s390x/RPMS/httpd-suexec-2.0.52-32.3.ent.centos4.s390x.rpm updates/s390x/RPMS/mod_ssl-2.0.52-32.3.ent.centos4.s390x.rpm -- Pasi Pirhonen - [EMAIL PROTECTED] - http://pasi.pirhonen.eu/ Top-postings silently ignored signature.asc Description: Digital signature ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
Re: [CentOS-es] Aplicacion cifrado de archivos
alguien conoce alguna aplicacion GPL para cifrado de archivos con samba actualmente hay una empresa que española que ofrece este servicio se llama zitralia.com No entiendo que quieres decir; explícalo mejor. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS] Tired of temp induced shutdowns
Steven Haigh wrote: On 15/07/2007, at 5:14 PM, John R Pierce wrote: Robert Moskowitz wrote: My notebook has a habit of getting hot, and Centos just shuts down. Just did it again: Jul 15 01:35:12 nc4010 kernel: ACPI: Critical trip point Jul 15 01:35:12 nc4010 kernel: Critical temperature reached (113 C), shutting down. Jul 15 01:35:12 nc4010 kernel: Critical temperature reached (55 C), shutting down. Jul 15 01:35:13 nc4010 shutdown[9847]: shutting down for system halt Jul 15 01:35:13 nc4010 gconfd (rgm-2904): Received signal 15, shutting down cleanly Jul 15 01:35:13 nc4010 gconfd (rgm-2904): Exiting thats WAY hotter than your system should be getting. I'd open it up and make sure the CPU heatsink isn't full of cathair or something. make sure the airvents aren't blocked when you're using it, too, and that the fan is working. I would also check that you have CPU freq scaling on (the cpuspeed daemon) - as your system should NEVER get this hot. What/where is the CPU freq scaling and the cpuspeed deamon? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
SOLVED: Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate config not found
Message: 23 Date: Fri, 13 Jul 2007 22:11:59 -0400 From: Dan Halbert [EMAIL PROTECTED] Subject: Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate config not found Message-ID: [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: I am frustrated. This is a dual boot box, Win XP (Spanish) and CentOS 4.4. The phone company man came today and installed ADSL to the WinXP snip Dan wrote: If you have a router, then the ADSL connection you have is handled by the router, and is invisible to you, on the LAN side of the snip Thank you! I was busy and gone most of the day yesterday and didn't touch the box after about 7 A.M. Early this morning, I came in here and in two (2) minutes, the box was online in Linux. :-) The problem was that I'd seen in System Tools Internet Configuration Wizard (internet-druid) and I set up an xDSL connection ppp0, which was not necessary, as you wrote, because the ADSL Router the phone company man brought does the log in. After I deleted the ppp0, I set up eth0 again, to get my IP from the ISP via DHCP and I put in the 2 IP numbers for their DNS servers, restarted the Network and I am online! :-) I knew this was something extremely simple, but it was Friday the 13th and to use Johnny's phrase, I had a cubic butt load of frustration. :-) This will hopefully make it easier for me to get Devil-Linux configured, for my Firewall/Router box. Walt Reed: I get the Mailing List Digest, which will come in about 90 minutes, but I looked at the archives this morning and I also saw your post, which is much appreciated. I am going to try to use Devil-Linux and if I can't get that working, I will use IPCop, for my Firewall/Router. Thanks to both of you for replying to me and to everyone who participates in this great mailing list! Lanny ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Postfix Question
On Sat, 14 Jul 2007 23:15:51 +0200 Alexander Dalloz [EMAIL PROTECTED] took out a #2 pencil and scribbled: [EMAIL PROTECTED] schrieb: I've googled around and although I get a lot of hits about postfix smarthost authentication with ssl, I can not find out how to actually accomplish the task. I've read through smatterings of postings from Neophasis and the like searching for just the syntax and what file (I assume it's main.cf) I should be using; however, any smtpd_ lines I have tried result in postfix hanging and refusing to deliver mail. smtpd_* is the wrong configuration option. It applies to Postfix acting as server, while you want to configure Postfix being the client. So you have to read through man 5 postconf for smtp_ (smtp_tls_*) options. That confirms my stupidity. By making the attempt it was revealed I was heading down the wrong path. Thanks! The server I'm running postfix on is CentOS 4 (fully updated). Postfix version is 2.2.10-1.1.el4 (from rpm -qa). I have not had sufficient downtime to upgrade to CentOS 5. Should I do that? Sincerely For what a howto when you can read the manpage for postconf? Even each smarthost can be configured with different musts, so there can't be a globally valid setup guide. Alexander Because I'm stupid and it didn't click with me upon my first attempt at getting it to work after reading other mailing lists about what I was trying to accomplish. What you're saying makes perfect sense to me though. Long time no type. Happy to hear from you again! -- Alex White [EMAIL PROTECTED] Life is a prison, death is a release ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos on a Flash drive and Micro drive
Robert Moskowitz wrote: I am considering putting together a 'micro server' that I can easily travel with. I am seriously considering the decTOP, as at $99 (plus the cost of a 256MB SIMM) is amazingly priced. But I want to run on batteries, so trash a real hard drive. I have a couple of IDE to Compact flash adapters that support 2 flash cards. So I was considering a 4Gb (or even 2Gb) cheap real fash card for the OS and a 4 or 8 Gb micro drive (I have a 4Gb sitting in a drawer gathering dust got to figure out how to fix its paritions that I messed up). So I was thinking to put the more static parts of the OS on the flash card and the not static parts on the micro drive. Obviously the Swap partition, /home, and /var/log go onto the micro drive. What else? /tmp? Are /dev and /proc real things on disk or only pointers to the various devices? And then how do I put all these directory trees on the micro drive. I currently use a LVM partition for my /home on my notebook, but this is a lot more. Do I do Symbolic links? Or what. Are there any howtos? I have not found anything to help me so far. Probably got at least a week to figure this out. Obviously I don't have the system right now. And monday it is off to San Fran for the IEEE 802 meeting... (and the following week IETF in Chicago, family gets really upset when I have these 'back-to-back' conferences). The major issue with that box is processor power and usb speed (it is not USB 2). I do not have an alternative that can be used in that way, and so it may be OK so long as you know what you are getting. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Wireless newtworking in CentOS 5
Andrew Allen wrote: Installed CentOS 5 on my Dell Inspiron 1501 laptop, hoping that it will be easier to set up wireless networking than it was in CentOS 4.4. But still so difficult to get it working, mainly because there doesn't appear to be a driver pre-installed for this wireless card ((Dell wireless 1390 Mini PCI network card 802.11b/g). Do I still have to use ipw2200 and what is this anyway? I really don't understand why it is so difficult to get wireless networking in CentOS 5 when it works like a dream in Windows XP (I have a dual boot system, but I'd much rather use linux!). UMMM ... that would be because the people who made the card made it to work on Windows ... they did not make it to work on Linux. They don't provide technical specs or free software drivers so some poor smuck sets in a room and reverse engineers a driver for it. Obviously a reverse engineered driver is not the same as a hardware driver programed by the manufacturer. I've tried modprobe ipw2200 and all the rest of it with no success - what am I doing wrong please? Red Hat has ipw2200 and ipw2100 drivers that are not free and have no SOURCE ... but if you are a paying client you can to get them. Those drivers and firmware are not free or re-distributable by CentOS. If running your wireless on Linux is important to you, complain to the laptop manufacturer so that they will put in devices that support linux properly out of the box. Thanks, Johnny Hughes signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] disabling SELinux on CentOS: a good idea?
Peter Farrow wrote: Rogelio Bastardo wrote: I was banging my head against the wall trying to figure out why my Nagios install wasn't working on CentOS 4.5 (I'm used to Debian), and so I disabled SELinux and everything magically started working. Is this a good long term idea? Or is there a better way of doing things? -- This message has been scanned for viruses and dangerous content by the *Enhancion* http://www.enhancion.net/ system scanner, and is believed to be clean. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Hi There, If your machine is purely a server and has no local accounts for ordinary users, you can implement an effective sercurity policy using appropriate partitioning, fstab entries, wrapper and firewall configuration without the baggage of SElinux. Save yourself the headache and turn it off! Well ... I totally disagree ... but we have had this conversation before :D SELinux is a tool that, when used correctly, can prevent many attempts to do things via vulnerabilities. Learning to use it correctly is the real answer. However, you can be secure with it turned off too ... it is just another layer. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] disabling SELinux on CentOS: a good idea?
On 7/15/07, Johnny Hughes [EMAIL PROTECTED] wrote: Learning to use it correctly is the real answer. That's on my list of things to. I'm the meantime setroubleshoot helps me get by. -- Drew Einhorn ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: SOLVED: Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate config not found
Message: 26 Date: Sun, 15 Jul 2007 07:59:09 -0400 From: Dan Halbert [EMAIL PROTECTED] Subject: Re: SOLVED: Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate config not found Message-ID: [EMAIL PROTECTED] Great! By the way, you should not even need to specify the DNS servers. In the DHCP info your router gives your machine, it will probably list itself as the DNS server. (DHCP does not return just an IP address but also a bunch of other info such as subnet mask and DNS servers.) Yes. When I checked the network configuration for eth0, the 2 IP addresses for their DNS servers that I'd entered, had been changed, to 192.168.1.1, the IP of the ADSL Router. The router just forwards DNS requests it gets on to the real DNS servers (it found out those when it itself connected to the ISP).. So don't specify the DNS servers yourself and then you won't have to do anything if the ISP's DNS serves change. That works. I will change that in the other boxes (also dual boot), after I have the Firewall/Router box up and running. When I did ifconfig -ait came back with inet addr 192.168.1.10 Bcast 192.168.1.255 and Mask 255.255.255.0 When I did nslookup 192.168.1.10it came back with server 192.168.1.1 Address 192.168.1.1#53 and ** Server can't find 10.1.168.192.in.addr.arpa NXDOMAIN I downloaded the lastest versions of Devil-Linux and IPCop this morning. I think I will try IPCop first, because it can be headless and has a lot of documentation and other features I like. Devil-Linux does not require a hard drive, which I believe would be better for security. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate
Message: 10 Date: Sat, 14 Jul 2007 11:44:52 -0400 From: Walt Reed [EMAIL PROTECTED] Subject: Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate Message-ID: [EMAIL PROTECTED] snip Some pain-in-the-ass ISP's force you to do PPPoE instead of DHCP. Some give you a DSL modem that does NAT and the PPPoE stuff for you, some don't. If you have one that doesn't, a cheap Linksys router can do the NAT and PPPoE for you if you don't fee comfortable doing it in Linux. Walt in our former home, we had Cable Modem access for 3+ years and I used a Linksys Router/Switch there. We live in South America, so I'd need to have one shipped from the states. I think I can get it going, with IPCop or Devil-Linux. on a 1.5/384 DSL connection. Our new connection is 256. After using dial up for 3 1/4 years, that's fast. :-) It's a lot slower than when we had Cable Modem service, but a huge improvement! I wanted WiMAX access, which is available in the city of Cali, but it's not available in our town and who knows when if ever it will be available. I downloaded the latest versions of Devil-Linux and IPCop this morning. They both have things I like. Devil-Linux does not require a hard drive and runs off a CD-ROM and a write protected floppy, which for security, I think is better. IPCop has much more documentation, can run headless and has some other things I like. I think I will try IPCop first. Thanks much for your input! Lanny ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Newbie ADSL configuration, ppp0 can't activate
On Sun, 2007-07-15 at 12:44 -0500, Lanny Marcus wrote: Message: 10 Date: Sat, 14 Jul 2007 11:44:52 -0400 From: Walt Reed [EMAIL PROTECTED] snip If you have one that doesn't, a cheap Linksys router can do the NAT and PPPoE for you if you don't fee comfortable doing it in Linux. Walt in our former home, we had Cable Modem access for 3+ years and I used a Linksys Router/Switch there. We live in South America, so I'd need to have one shipped from the states. I think I can get it going, with IPCop or Devil-Linux. snip I downloaded the latest versions of Devil-Linux and IPCop this morning. They both have things I like. Devil-Linux does not require a hard drive and runs off a CD-ROM and a write protected floppy, which for security, I think is better. IPCop has much more documentation, can run headless and has some other things I like. I think I will try IPCop first. I've been using IPCop several years now on a cable setup in the boonies (few users, low sharing of bandwidth, great throughput). Since version 4.10, I've not one complaint about it. On an old Aptiva real 486DX/66MHz with ISA cards, appx. 400KB/sec. A 100MHz AMD x586 (486DX equiv on a 386 main board, appx, 470-500MB/sec using the same ISA cards. My current Pentium 200MHz with PCI RTL 81390-based el cheapo NICs has seen as high as 700KB/sec from really good sites on downloads. Biggest boon, IMO: LFS based. Source is available and you can tweak, modify, contribute as you desire. No experience (lack of need/desire) with Devil-Linux. Good luck on your new setup. Thanks much for your input! Lanny snip sig stuff -- Bill ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Gnome Terminal and xterm problems
Matt Shields wrote: It shouldn't be dns because the session is already established and it now IP based. I don't believe ssh tries to keep resolving the IP again and again. No session doesn't come back ever. It just hangs permanently. -matt We were seeing something similar to this a while back, SSH sessions to or from outside our network were dropping after some period of no activity (which may not be your problem). Eventually we found that the Cisco PIX on our perimeter was set to kill idle sessions sessions after a certain period. We were able to resolve this by editing /etc/ssh/sshd_config and setting the ClientAliveInterval to a non-zero value. In our case we set it to 240, which caused a ClientAlive request packet to be sent every 4 minutes over the encrypted channel as the idle threshold on the PIX was set to 5 minutes. This resolved our issues, perhaps it might help with yours. Just a thought! -- Jay Leafey - Memphis, TN [EMAIL PROTECTED] smime.p7s Description: S/MIME Cryptographic Signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos