Hi,
Need some help about this as it's gotten me really concerned.
I'm probably reading too much into this but for about two weeks now my daily
log has increased by almost 10 times.
After running through a couple of days of logs with a script, it seems that
I'm getting flooded on SMTP from this
On Wed, Aug 6, 2008 at 3:06 PM, Bent Terp [EMAIL PROTECTED] wrote:
On Wed, Aug 6, 2008 at 8:29 AM, Noob Centos Admin
[EMAIL PROTECTED] wrote:
Since I followed some of the rules about SSH and used a non-standard port
for SSH and disable SSHD listening on the default port 22, I've no way
Hi,
On Wed, Aug 6, 2008 at 3:07 PM, Robert - elists [EMAIL PROTECTED]wrote:
If server is not compromised, just edit the smtp configs to deny acceptance
from that ip block
The EXIM configurations are even more nightmarish than iptables, which at
least made some sort of sense. I've been
Hi,
If you use
su
only, you assume root privileges without the root environment.
Rather do
su -
which gives you the full root environment, including path.
The same holds for other users, i..e
su - joe
switches the user to the user joe with full environment.
Thanks a million for that!
Thanks Steward and Robert for those suggestions, they make plenty of sense!.
About the two SSH terminal, if I activate a wrong firewall change that
blocks the SSH port, would it not also terminate the existing terminals
since new packets going in would be rejected, or does it not affect already
On Thu, Aug 7, 2008 at 1:54 AM, Sorin Srbu [EMAIL PROTECTED] wrote:
Seen this?
http://www.askbjoernhansen.com/2007/09/18/safely_change_firewall_rules_remotely.html
Unfortunately, only after you pointed it out :(
But thankfully whoever wrote APF apparently knows this, hence it does insert
an
On Thu, Aug 7, 2008 at 11:53 PM, Ray Leventhal [EMAIL PROTECTED] wrote:
My US$0.02 on this.I'm a fan of apf as a front-end to iptables...but it
takes some reading to understand the switches and the entire RAB (reactive
address blocking) configuration options. Sadly, RAB is poorly
I got a WD 1TB My Book with eSATA/USB/Firewire400 connectivity to backup
data on a client Centos 5.1 machine.
USB 2.0 works fine out of the box but is rather slow, Nautilus predicts
about 1+ hour to fully backup just one day's worth of data or about 100GB.
So I was hoping Firewire would be
On Wed, Aug 13, 2008 at 4:50 PM, Laurence Alexander Hurst
[EMAIL PROTECTED] wrote:
2 things jump out:
1. As has already been pointed out that is not a Centos Plus kernel.
Did you reboot after installing the new kernel? (You have to reboot for a
kernel update in order to be running the
On Wed, Aug 13, 2008 at 5:16 PM, Rainer Duffner [EMAIL PROTECTED]wrote:
There's a reason someone came up with this eSATA stuff...
Unfortunately the machine has no more spare SATA connectors. Installing an
eSATA card and such, would probably be yet another learning experience on a
machine the
The kernel update was successful and dmesg returns the following
ieee1394: The root node is not cycle master capable; selecting a new root
node and resetting...
ieee1394: Error parsing configrom for node 0-00:1023
ieee1394: Node changed: 0-00:1023 - 0-01:1023
ieee1394: Node added:
On Fri, Aug 15, 2008 at 8:56 AM, Filipe Brandenburger
[EMAIL PROTECTED]wrote:
On Wed, Aug 13, 2008 at 18:43, Bill Campbell [EMAIL PROTECTED] wrote:
My experience with Firewire has not been all that good. I figured that
since Apple had been using it for years, and it is an IEEE standard,
I got itchy fingers over the weekend and decided to fix what wasn't
broken and upgraded one of the older servers from Centos 5.2 to Centos
5.3. Following the recommended process of updating glibc and such
before the rest, it appeared to work perfectly and rebooted without
problem.
However, MRTG
Hi,
Perhaps the OIDs changed for the interfaces you are monitoring.
Have you tried re-running cfgmaker to regenerate mrtg.cfg? It should
pick up the correct OIDs again.
Yes I did, however the default MRTG configuration appears to contain
almost nothing. Consulting with others. it seems to be
Hi,
Did the update overwrite your snmpd.conf file? The 'view' on the default one
may not permit access to the things mrtg needs to see. Try changing it to .1
to
expose everything.
It might have done so. To be honest I have no idea since I've never
touched the SNMP configuration before
Thanks guys for all the suggestions. None of it changed the situation
but I'm beginning to think that it might have to do with SNMP not
accepting word names in MRTG, or more specifically some kind of
language encoding issue.
This is because of the following reasons
1. It's been pointed that out
Hi,
I don't see any similar problem on machines upgraded to Centos5.3 that
are monitored with (and running) OpenNMS, so I'd guess that since you
didn't change your snmpd.conf settings it is MRTG-specific.
I think it's my server, quite possibly I screwed up something during
the initial setup
Hi,
well, i note there's a few versions of rrdtool in the various
repositories. the stock CentOS 5 version 9from upstream) is 1.2.30,
while rpmforge has 1.3.7, also a seperate rrdutils package (I have no
idea whats in it)
*sigh* The stuff of nightmares, I did have 1.3.7 installed after
Hi,
java. I don't remember seeing this problem when installing from the opennms
yum
repository, though.
I didn't expect it either, honestly. In most cases, updates/installs
does go relatively painlessly if I don't mess up following
instructions/guides. In this case, I guess I just tripped
Hi,
A possible work-around is to use a VPN like openvpn to give you what
look like normal routes to remote locations even with private addressing.
Given the amount of trouble I've had just getting monitoring to work,
I don't think I'm even going to try fiddling with openVPN.
Besides which,
On Fri, Jul 17, 2009 at 12:07 AM, James B. Byrnebyrn...@harte-lyne.ca wrote:
I have snmpd and mrtg running and reporting against my Cisco router.
What I want to do is to configure snmp so that I can monitor
network traffic across the host's own eth0 NIC. Is this even
possible for a generic
On Thu, Feb 19, 2009 at 4:22 AM, Ray Van Dolson ra...@bludgeon.org wrote:
The other side of the coin (as I think you mentioned) is that many are
not comfortable having LVM handle the mirroring. Are its mirroring
abilities as mature or fast as md? It's certainly not documented as
well at the
On Sat, Feb 21, 2009 at 6:04 PM, John R Pierce pie...@hogranch.com wrote:
Kay Diederichs wrote:
hdparm -tT tests one type of disk access, other tools test other
aspects. I gave the hdparm numbers because everyone can reproduce them.
For RAID0 with two disks you do see - using e.g. hdparm -
On Sat, Feb 21, 2009 at 11:42 PM, Chan Chung Hang Christopher
christopher.c...@bradbury.edu.hk wrote:
Would running two CP command to copy 2 different set of files to two
different targets suffice as a basic two thread test?
So long as you generate disk access through a file system and
On Sun, Feb 22, 2009 at 7:05 PM, Ian Forde i...@duckland.org wrote:
RAID in software, whether RAID1 or RAID5/6, always has manual steps
involved in recovery. If one is using standardized hardware, such as HP
DL-x80 hardware or Dell x950 boxes, HW RAID obviates the need for a
recovery
Everytime I have to setup samba to handle Windows users, sometime
inadvertently goes wrong or doesn't work the way I expected, or takes
forever to setup, especially when there are many users and various policies.
So far, the easiest, sureest and quickest method appears to be install
WindowsXP into
On Tue, Feb 24, 2009 at 3:12 AM, Craig White craigwh...@azapple.com wrote:
probably not the answer you want to hear but...
swat is supposed to be the tool for simple administration.
I was afraid of that. By the time I gave up and completed the task manually,
I was thinking maybe it might be
On Tue, Feb 24, 2009 at 3:23 AM, Ned Slider n...@unixmail.co.uk wrote:
The samba configuration tool (system-config-samba) is finally fixed in
5.3 (due out soon) and will now correctly show added samba users :-)
Honestly, I'm so glad to see this! Although I won't likely benefit from it
until
On Tue, Feb 24, 2009 at 5:52 AM, Les Mikesell lesmikes...@gmail.com wrote:
Is there a windows domain or AD in this picture somewhere?
Not at all for all the usual Windows network migrations I've been
setting up. Typically small offices with less than 20 people so they
simply used workgroups
On Tue, Feb 24, 2009 at 6:26 AM, Ned Slider n...@unixmail.co.uk wrote:
It is documented on the bug tracker and forums so is a well known
issue and is fixed in system-config-samba-1.2.41-3.el5. You could
always grab the upstream src.rpm now and build it yourself.
Thanks for the information,
On Thu, Feb 26, 2009 at 9:41 AM, Agile Aspect agile.asp...@gmail.com wrote:
I'm new to Xen and I'm not familiar with the jargon.
I'll second John's suggestion to go with VMWare Server. Being also
pretty new and noob to all these, my first attempt at running WinXP
and Win2003 Server in VMWare
I'm seriously befuddled by Samba now.
I followed the good advice given and got the previous server set up nicely.
I did the same thing on another one and it refuses to work.
1. useradd some users
2. gpasswd -a them to a staff group nd smbpasswd -a them
3. chmod g+s the staff directory
4. tested
On Sun, Mar 1, 2009 at 2:21 AM, Les Mikesell lesmikes...@gmail.com wrote:
But, if you want to do it the hard way, you probably have an
Unfortunately I do want to do it the hard way. While the SME server
would make things really easy, the lesson I learnt in the past with
easy thing is that, once
On Thu, Mar 5, 2009 at 3:09 AM, Chuck Campbell campb...@accelinc.com wrote:
Do I need to start over with a clean install again, and how do I avoid this
problem the next time I try to run updates after the install?
Just my noob opinion, that if there's no practical and definitive
benefit from
On Fri, Mar 6, 2009 at 3:57 AM, Scott Silva ssi...@sgvwater.com wrote:
Learn to use a file editor and edit the configs yourself. That is the only way
to have the best control.
That's generally how I try to do things, except sometimes hand
written doesn't work the way I expect it to. Then I'd
Spinning off from the other thread about SELinux, I just tried to
re-enable SELinux on my personal server hosting just email and forum
for a small local community.
Average load for this Intel Core 2 Duo box with 2GB of ram (usually
with some 1GB free) was generally below 0.4 for the last 24hrs,
On Fri, Mar 6, 2009 at 12:11 PM, Craig White craigwh...@azapple.com wrote:
did you 'relabel' the entire filesystem? - that's pretty much necessary
if you've been running the system without having SELinux running, at
least in permissive mode.
SELinux had been running in permissive. I did not
I was back onsite and trying it again, in vain. Copied the conf from
another site's working setup and dumped directly, recreated with the
same names and all. No go.
So again removed and install samba again, made a blank conf file, fire
up SWAT and did the most basic config.
Even chmod 777 the
On Thu, Mar 19, 2009 at 10:22 PM, John Hinton webmas...@ew3d.com wrote:
ATX, just
powers down the computer, leaving the PS in a lowered power state, but
apparently this can draw up to 60% of the working power needed.
60% would be a gross exaggeration, off the top of my head, an OFF
ATX PSU
On Thu, Mar 19, 2009 at 7:13 PM, James Bensley jwbens...@gmail.com wrote:
Shadies and Mentlemen;
I am trying to be green and put our backup servers to sleep during the
day and have them wake on LAN and fire back up at night for our
nightly backups as sleep is a sort of low power usage mode.
On Mon, Mar 23, 2009 at 11:49 PM, Ray Van Dolson ra...@bludgeon.org wrote:
There maybe needs to be a community leizon of some sort to help
leverage these types of offers for help. Many of us are willing to
help, but certainly don't have the necessary time cycles to do so as
effectively as
2009/3/27 Spiro Harvey sp...@knossos.net.nz:
required? How do you figure anything is *required* of volunteers?
Show me your support contract.
If you're worried that CentOS is late or is stopping you from
fulfilling your own contractual obligations, perhaps you should stop
being a tight-arse
On Sun, Mar 29, 2009 at 3:13 AM, William L. Maltby
centos4b...@triad.rr.com wrote:
As a step to reducing the pressure and dissatisfaction of Are We
There Yet? (When will xxx be released?), a simple publication of a
projected time line will help. It should be updated as needed. It should
On Sat, Mar 28, 2009 at 9:58 PM, Robert Heller hel...@deepsoft.com wrote:
At Fri, 27 Mar 2009 23:48:04 -0300 CentOS mailing list centos@centos.org
wrote:
Yes, the root file system has to be outside of the LVM -- the initrd
does not start LVM, so LVM volumes are not available for mounting at
Hi,
last time I saw something like that, it was a bunch of chinese 'bots'
hammering on my public services like ssh.
another admin had turned
pop3 on too, this created a very heavy load yet they didn't show up in
top (bunches of pop3 and ssh processes showed up in ps -auxww,
however, plug
Hi,
Try blocking the IPs on the router and see if that helps.
Unfortunately the server's in a DC so the router is not under our control.
You can also run iostat and look at the disk usage which also
generates load.
I did try iostat and its iowait% did coincide with top's report, which
is
Hi,
since initially it seems like the high load may be due to I/O wait
Maybe this will help you to identify the IO loading process:
http://dag.wieers.com/blog/red-hat-backported-io-accounting-to-rhel5
Thanks for the suggestion, I did install dstat earlier while trying to
figure things out
Hi,
You should also try out atop instead of just using top. The major
advantage is that it gives you more information about the disk and
network utilization.
Thanks for the tip, I tried it and if the red lines are any
indication, it seems that atop thinks my disks (md raid 1) are the
Hi,
Dstat could at least tell you if your problem is CPU or I/O.
This was the result of running the following command which I obtained
from reading up about two weeks ago when I started trying to
investigate the abnormal server behaviour.
dstat -c --top-cpu -d --top-bio --top-latency
usr sys
Hi,
Yes, these figures indicate that you are fairly close to being cpu bound.
What kind of filtering are you doing? If you have any connection
tracking/state related rules set, you will need to be using a fair
amount of cpu.
Initially, when the load start going up, I had thought the APF
Hi,
I do not know about now but I had to unload the modules in question.
Just clearing the rules was not enough to ensure that the netfilter
connection tracking modules were not using any cpu at all.
Thanks for pointing this out. Being a noob admin as my pseudonym
states, I'd assumed stopping
/10, Noob Centos Admin centos.ad...@gmail.com wrote:
Hi,
I do not know about now but I had to unload the modules in question.
Just clearing the rules was not enough to ensure that the netfilter
connection tracking modules were not using any cpu at all.
Thanks for pointing this out. Being
it.
Now that I've purged the queue of those bounced messages and other
housekeeping for that user, server load has finally gone back to the
expected sub 1.0 levels so I can finally go and enjoy my holiday :)
On 1/1/10, Noob Centos Admin centos.ad...@gmail.com wrote:
I initiated services shutdown
Hi,
- A: one is with 80 GB SSD (and 12 GB memory)
http://www.ovh.co.uk/products/eg_ssd.xml
- B: the other with 750 GB SATA2 (and 8 GB memory).
http://www.ovh.co.uk/products/eg_best_of.xml
The Intel SSD are fast but have a history of firmware problems. So I
wouldn't suggest using them on a
I'm trying to optimize some database app running on a CentOS server
and wanted to confirm some things about the disk/file caching
mechanism.
From what I've read, Linux has a Virtual Filesystem layer that sits
between the physical file system and everything else. So no matter
what FS is used,
Hi,
If you want a fast database forget about file system caching,
use Direct I/O and put your memory to better use - application
level caching.
The web application is written in PHP and runs off MySQL and/or
Postgresql. So I don't think I can access the raw disk data directly,
nor do I think
Hi,
20 feilds or columns is really nothing. BUT That's dependant on the type
of data being inserted.
20 was an arbitary number :)
Ok so break the one table down create 2 or more, then you will have
Joins clustered indexes thus slowing you down more possibly. That
is greatly dependant on
Hi,
Split the TEXT/BLOB data out of the primary table into tables of their
own indexed to the primary table by it's key column.
This is part of what I was planning to do, there are a lot of stuff I
am planning to split out into their own tables with reference key. The
problem is I'm unsure
Hi,
I believe the OP said he was running postgresql.
Quoted from OPs previous mail hes not sure lol
The web application is written in PHP and runs off MySQL and/or
Postgresql.
Ah, well #1 on his list then is to figure out what he is running!
LOL, I know it sounds quite noobish,
MySQL's acquisition was one of the factor, the client wants to keep
everything on the opensource side as far as possible.
On the technical side, all tables are using the InnoDB engine because
myISAM doesn't support either. Also previously during development, it
was discovered that on some
Hi,
On 1/27/10, Ross Walker rswwal...@gmail.com wrote:
But if your doing mysql on top of LVM your basically doing the same,
cause LVM (other then current kernels) doesn't support barriers.
Still if you have a battery backed write-caching controller that
negates the fsync risk, LVM or not,
Hi, I had been experiencing a problem on our dedicated server running Centos
5, and unable to successfully track down the problem.
Since about 6 days ago, I noticed a spike in load/CPU utilization which went
from a typical 0.2x-0.3x to 3.x. At the same time, average traffic also went
up and so
On Sat, Mar 29, 2008 at 6:37 PM, Johnny Hughes [EMAIL PROTECTED] wrote:
Well .. top says you have 4 processes running ... if that is consistent
(4 processes always in a run state) then you should be able to determine
the running processes with the command:
ps -ef r
(I think)
I would
63 matches
Mail list logo