Re: [CentOS] Video corruption bug in stellarium

[Johnny Hughes]

On 02/23/2012 10:36 PM, Mark LaPierre wrote:
> Just installed stellarium-0.10.2-1.el6.rf(i686) last night with the 
> Add/Remove Software tool.  I'm getting video corruption and this message 
> in the terminal:
>
> StelAppGraphicsScene: drawBackground needs a QGLWidget to be set as 
> viewport on the graphics view
>
> A bit of Google work turned up this on the Ubuntu forum:
>
> "The new version of Stellarium 0.10.3 resolves my display problems. It's 
> not yet available in the standard repos but is in Scott Howard's PPA 
> (https://launchpad.net/~showard314/+archive/ppa)."
>
> "Latest update of LL (official repositories) brought 10.3 of Stellarium 
> and the problem is finally gone :D"
>
> "Yup 0.10.3 in the repos, but there's a newer version 0.10.4 which is to 
> be made available by the developer which resolves some bugs."
>
> I'm not sure which CentOS repository the stellarium rpm is in but I do 
> know that it's out of date.  Who's cage should I rattle to get the repo 
> up to speed?
>
> CentOS 6.2
>
> Linux mushroom.patch 2.6.32-220.4.2.el6.i686 #1 SMP Tue Feb 14 00:24:28 
> GMT 2012 i686 i686 i386 GNU/Linux
>

.rf in the name means repoforge, a 3rd pary repo ...

http://repoforge.org/




signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Video corruption bug in stellarium

[Mark LaPierre]

Just installed stellarium-0.10.2-1.el6.rf(i686) last night with the 
Add/Remove Software tool.  I'm getting video corruption and this message 
in the terminal:

StelAppGraphicsScene: drawBackground needs a QGLWidget to be set as 
viewport on the graphics view

A bit of Google work turned up this on the Ubuntu forum:

"The new version of Stellarium 0.10.3 resolves my display problems. It's 
not yet available in the standard repos but is in Scott Howard's PPA 
(https://launchpad.net/~showard314/+archive/ppa)."

"Latest update of LL (official repositories) brought 10.3 of Stellarium 
and the problem is finally gone :D"

"Yup 0.10.3 in the repos, but there's a newer version 0.10.4 which is to 
be made available by the developer which resolves some bugs."

I'm not sure which CentOS repository the stellarium rpm is in but I do 
know that it's out of date.  Who's cage should I rattle to get the repo 
up to speed?

CentOS 6.2

Linux mushroom.patch 2.6.32-220.4.2.el6.i686 #1 SMP Tue Feb 14 00:24:28 
GMT 2012 i686 i686 i386 GNU/Linux

-- 
 _
°v°
   /(_)\
^ ^  Mark LaPierre
Registerd Linux user No #267004
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 7:17 PM, Steve Campbell  wrote:

>
> > > The sendmail cf file was not copied, but most of the parms were
> > > duplicated in the sendmail.mc file and sendmail was rebuilt. No errors.
> > > Auth was never working properly since once I put dovecot on, saslauthd
> > > was scrambled. Unfortunately, I needed the pop and imap server before I
> > > found out auth was failing.
> >
> > If you are changing things, why not use cyrus instead of dovecot?


>
> If you're talking cyrus-sasl, then that's a consideration. If you're talking
> cyrus imap, I'd have to see what provides pop.
>
> I'm starting to see where all of my confusion is coming from.

Cyrus and dovecot are alternative imap/pop servers with incompatible
storage formats and program and configurations.   Cyrus is probably
more efficient with its own layout - dovecot uses more or less normal
mbox or maildirs.   Not sure how the saslauthd's relate - but it
sounds like your sendmail is configured for cyrus-sasl but dovecot
confuses it.

yum search cyrus shows a bunch of components.


--
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 6 - 1 of 2 machines starts and not the other

[fakessh @]

Le vendredi 24 février 2012 à 01:50 +0100, fakessh @ a écrit :
> Le jeudi 23 février 2012 à 18:36 -0600, Les Mikesell a écrit :
> > 2012/2/23 fakessh @ :
> > >>> >
> > >
> > > i execute /sbin/service httpd restart
> > > result
> > > [root@localhost ~]# tail -f /var/log/httpd/error_log
> > > [Fri Feb 24 01:06:33 2012] [error] Connect Failed Access denied for user 
> > > 'rt_user'@'localhost' (using password: YES)\n at 
> > > /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in 
> > > require at (eval 2) line 1.\n
> > > [Fri Feb 24 01:06:33 2012] [error] Can't load Perl file: 
> > > /usr/sbin/webmux.pl for server localhost.localdomain:0, exiting...
> > > [DBI connect('dbname=rt3;host=localhost','rt_user',...) failed: Access 
> > > denied for user 'rt_user'@'localhost' (using password: YES) at 
> > > /usr/share/perl5/DBIx/SearchBuilder/Handle.pm line 106
> > > [Fri Feb 24 01:07:49 2012] [error] Connect Failed Access denied for user 
> > > 'rt_user'@'localhost' (using password: YES)\n at 
> > > /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in 
> > > require at (eval 2) line 1.\n
> > > [Fri Feb 24 01:07:49 2012] [error] Can't load Perl file: 
> > > /usr/sbin/webmux.pl for server localhost.localdomain:0, exiting...
> > >>
> > 
> > So, you have RT installed, but the web portion can't connect to the
> > database.  Is the database running?
> > 
> I prefer to remove this package. I do not even know his name
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos


the problem is finished. I removed the package rt3 and dependances

apache start fine

-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC2626742
 gpg --keyserver pgp.mit.edu --recv-key C2626742

 http://urlshort.eu fakessh @
 http://gplus.to/sshfake
 http://gplus.to/sshswilting
 http://gplus.to/john.swilting
 https://lists.fakessh.eu/mailman/
 This list is moderated by me, but all applications will be accepted
 provided they receive a note of presentation


signature.asc
Description: Ceci est une partie de message	numériquement signée
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

Quoting Les Mikesell :

> On Thu, Feb 23, 2012 at 3:10 PM, Steve Campbell 
> wrote:
> >
> > The sendmail cf file was not copied, but most of the parms were
> > duplicated in the sendmail.mc file and sendmail was rebuilt. No errors.
> > Auth was never working properly since once I put dovecot on, saslauthd
> > was scrambled. Unfortunately, I needed the pop and imap server before I
> > found out auth was failing.
> 
> If you are changing things, why not use cyrus instead of dovecot?
> 
> -- 
>   Les Mikesell> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
If you're talking cyrus-sasl, then that's a consideration. If you're talking
cyrus imap, I'd have to see what provides pop. 

I'm starting to see where all of my confusion is coming from.

steve



-
This mail sent through IMP: http://horde.org/imp/
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 6 - 1 of 2 machines starts and not the other

[fakessh @]

Le jeudi 23 février 2012 à 18:36 -0600, Les Mikesell a écrit :
> 2012/2/23 fakessh @ :
> >>> >
> >
> > i execute /sbin/service httpd restart
> > result
> > [root@localhost ~]# tail -f /var/log/httpd/error_log
> > [Fri Feb 24 01:06:33 2012] [error] Connect Failed Access denied for user 
> > 'rt_user'@'localhost' (using password: YES)\n at 
> > /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require 
> > at (eval 2) line 1.\n
> > [Fri Feb 24 01:06:33 2012] [error] Can't load Perl file: 
> > /usr/sbin/webmux.pl for server localhost.localdomain:0, exiting...
> > [DBI connect('dbname=rt3;host=localhost','rt_user',...) failed: Access 
> > denied for user 'rt_user'@'localhost' (using password: YES) at 
> > /usr/share/perl5/DBIx/SearchBuilder/Handle.pm line 106
> > [Fri Feb 24 01:07:49 2012] [error] Connect Failed Access denied for user 
> > 'rt_user'@'localhost' (using password: YES)\n at 
> > /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require 
> > at (eval 2) line 1.\n
> > [Fri Feb 24 01:07:49 2012] [error] Can't load Perl file: 
> > /usr/sbin/webmux.pl for server localhost.localdomain:0, exiting...
> >>
> 
> So, you have RT installed, but the web portion can't connect to the
> database.  Is the database running?
> 
I prefer to remove this package. I do not even know his name
-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC2626742
 gpg --keyserver pgp.mit.edu --recv-key C2626742

 http://urlshort.eu fakessh @
 http://gplus.to/sshfake
 http://gplus.to/sshswilting
 http://gplus.to/john.swilting
 https://lists.fakessh.eu/mailman/
 This list is moderated by me, but all applications will be accepted
 provided they receive a note of presentation


signature.asc
Description: Ceci est une partie de message	numériquement signée
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Miguel Medalha]

> For a newbie one like me ... which option you would advise me to go for?
> I do not have any special preferences but I do care  for the one that 
> is more stable and provide really more security.

It seems to me that the last line of my previous post already contained 
my answer to your question :-)

"I use Linux servers and a pfsense firewall to protect the network. 
Works like a charm, with amazing stability and reliability."

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 6 - 1 of 2 machines starts and not the other

[Les Mikesell]

2012/2/23 fakessh @ :
>>> >
>
> i execute /sbin/service httpd restart
> result
> [root@localhost ~]# tail -f /var/log/httpd/error_log
> [Fri Feb 24 01:06:33 2012] [error] Connect Failed Access denied for user 
> 'rt_user'@'localhost' (using password: YES)\n at 
> /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require at 
> (eval 2) line 1.\n
> [Fri Feb 24 01:06:33 2012] [error] Can't load Perl file: /usr/sbin/webmux.pl 
> for server localhost.localdomain:0, exiting...
> [DBI connect('dbname=rt3;host=localhost','rt_user',...) failed: Access denied 
> for user 'rt_user'@'localhost' (using password: YES) at 
> /usr/share/perl5/DBIx/SearchBuilder/Handle.pm line 106
> [Fri Feb 24 01:07:49 2012] [error] Connect Failed Access denied for user 
> 'rt_user'@'localhost' (using password: YES)\n at 
> /usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require at 
> (eval 2) line 1.\n
> [Fri Feb 24 01:07:49 2012] [error] Can't load Perl file: /usr/sbin/webmux.pl 
> for server localhost.localdomain:0, exiting...
>>

So, you have RT installed, but the web portion can't connect to the
database.  Is the database running?

-- 
   Les Mikesell
  lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] CentOS 5.8 Critical Samba Update

[Johnny Hughes]

There is a critical update for samba for centos-5.8 ... we are working
on CentOS-5.8 right now and I fully expect it to be released in a week
or less.  For those of you who can not wait for a week, here is the
samba critical update:

http://people.centos.org/hughesjr/c58-samba/x8664/critical/

http://people.centos.org/hughesjr/c58-samba/i386/critical/

These may or may not work without the rest of 5.8 ... for those who do
try them, please provide feedback here in this thread.

Thanks,
Johnny Hughes



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Les Mikesell]

On Thu, Feb 23, 2012 at 5:25 PM, Wuxi Ixuw  wrote:
> Is it advised to install on a virtual machine like vmware or a real
> computer?

Both.  It is quick and easy to test a lot of different variations of
things and emulate network connections under vmware, and relatively
cheap to hold a bunch of images on a big disk or two.  It will make
learning a lot quicker.  But, real hardware has its own quirks.

-- 
  Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

But I will install cent os 6 32 bit on the vps later on.

On 24/02/2012 02:25 AM, Rob Kampen wrote:
> On 02/24/2012 12:25 PM, Wuxi Ixuw wrote:
>> Is it advised to install on a virtual machine like vmware or a real
>> computer?
> If you are going to use CentOS 6 - as a VM host it must be installed on
> a 64 bit architecture!
>> On 24/02/2012 01:22 AM, Lamar Owen wrote:
>>> On Thursday, February 23, 2012 05:35:32 PM Wuxi Ixuw wrote:
 Ok, I've found many versions from it, one for 700 MB and others for a
 DVD, which one I should get?
>>> While I specifically stated the installation media, you should get both the 
>>> DVD1 and DVD2; specifically, assuming a 32-bit system (you mentioned trying 
>>> on a Pentium 4 or Pentium D, so 64-bit may not be an option, and isn't 
>>> really necessary for a 'lab' machine anyway; you do need as much memory as 
>>> you can cram in that old Optiplex, with an absolute minimu of 1GB (and it's 
>>> going to top out less than 4GB anyway)), you need to download, from a 
>>> mirror:
>>> CentOS-6.2-i386-bin-DVD1.iso
>>> CentOS-6.2-i386-bin-DVD2.iso
>>>
>>> While DVD2 is somewhat optional, it won't hurt to have it on hand just in 
>>> case.
>>>
>>> The LiveDVD and LiveCD options boot up to a usable desktop, and you can 
>>> install from them, but if you're wanting the *server* install experience 
>>> you need the others, not the LiveDVD or LiveCD.
>>>
>>> Now, go give it a whirl, make sure you read the documentation on 
>>> installation on the CentOS.org website, and come back in a few days when 
>>> you've played with that installation a while.
>>> ___
>>> CentOS mailing list
>>> CentOS@centos.org
>>> http://lists.centos.org/mailman/listinfo/centos
>> ___
>> CentOS mailing list
>> CentOS@centos.org
>> http://lists.centos.org/mailman/listinfo/centos
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Rob Kampen]

On 02/24/2012 12:25 PM, Wuxi Ixuw wrote:
> Is it advised to install on a virtual machine like vmware or a real
> computer?
If you are going to use CentOS 6 - as a VM host it must be installed on 
a 64 bit architecture!
> On 24/02/2012 01:22 AM, Lamar Owen wrote:
>> On Thursday, February 23, 2012 05:35:32 PM Wuxi Ixuw wrote:
>>> Ok, I've found many versions from it, one for 700 MB and others for a
>>> DVD, which one I should get?
>> While I specifically stated the installation media, you should get both the 
>> DVD1 and DVD2; specifically, assuming a 32-bit system (you mentioned trying 
>> on a Pentium 4 or Pentium D, so 64-bit may not be an option, and isn't 
>> really necessary for a 'lab' machine anyway; you do need as much memory as 
>> you can cram in that old Optiplex, with an absolute minimu of 1GB (and it's 
>> going to top out less than 4GB anyway)), you need to download, from a 
>> mirror:
>> CentOS-6.2-i386-bin-DVD1.iso
>> CentOS-6.2-i386-bin-DVD2.iso
>>
>> While DVD2 is somewhat optional, it won't hurt to have it on hand just in 
>> case.
>>
>> The LiveDVD and LiveCD options boot up to a usable desktop, and you can 
>> install from them, but if you're wanting the *server* install experience you 
>> need the others, not the LiveDVD or LiveCD.
>>
>> Now, go give it a whirl, make sure you read the documentation on 
>> installation on the CentOS.org website, and come back in a few days when 
>> you've played with that installation a while.
>> ___
>> CentOS mailing list
>> CentOS@centos.org
>> http://lists.centos.org/mailman/listinfo/centos
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 6 - 1 of 2 machines starts and not the other

[fakessh @]

Le jeudi 23 février 2012 à 17:52 -0500, m.r...@5-cent.us a écrit :
> fakessh @ wrote:
> > hu guys
> >
> > I regularly read this list I can usually find me in the excellent
> > documentation apache.
> > I'm in front of a very strange problem I possess two desktop machines
> > which works with the Apache server with centos 6
> >
> > 1 of 2 machines starts and not the other.
> >
> > I use the apache config file here that provides standard distribution
> >
> What's in /var/log/httpd/error_log on the machine where it doesn't start?
> And is selinux enforcing?
> 
>mark

selinux is disabled

i execute /sbin/service httpd restart
result
[root@localhost ~]# tail -f /var/log/httpd/error_log
[Fri Feb 24 01:06:33 2012] [error] Connect Failed Access denied for user 
'rt_user'@'localhost' (using password: YES)\n at 
/usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require at 
(eval 2) line 1.\n
[Fri Feb 24 01:06:33 2012] [error] Can't load Perl file: /usr/sbin/webmux.pl 
for server localhost.localdomain:0, exiting...
[DBI connect('dbname=rt3;host=localhost','rt_user',...) failed: Access denied 
for user 'rt_user'@'localhost' (using password: YES) at 
/usr/share/perl5/DBIx/SearchBuilder/Handle.pm line 106
[Fri Feb 24 01:07:49 2012] [error] Connect Failed Access denied for user 
'rt_user'@'localhost' (using password: YES)\n at 
/usr/share/perl5/vendor_perl/RT.pm line 206\nCompilation failed in require at 
(eval 2) line 1.\n
[Fri Feb 24 01:07:49 2012] [error] Can't load Perl file: /usr/sbin/webmux.pl 
for server localhost.localdomain:0, exiting...
> 

-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC2626742
 gpg --keyserver pgp.mit.edu --recv-key C2626742

 http://urlshort.eu fakessh @
 http://gplus.to/sshfake
 http://gplus.to/sshswilting
 http://gplus.to/john.swilting
 https://lists.fakessh.eu/mailman/
 This list is moderated by me, but all applications will be accepted
 provided they receive a note of presentation


signature.asc
Description: Ceci est une partie de message	numériquement signée
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Is it advised to install on a virtual machine like vmware or a real 
computer?

On 24/02/2012 01:22 AM, Lamar Owen wrote:
> On Thursday, February 23, 2012 05:35:32 PM Wuxi Ixuw wrote:
>> Ok, I've found many versions from it, one for 700 MB and others for a
>> DVD, which one I should get?
> While I specifically stated the installation media, you should get both the 
> DVD1 and DVD2; specifically, assuming a 32-bit system (you mentioned trying 
> on a Pentium 4 or Pentium D, so 64-bit may not be an option, and isn't really 
> necessary for a 'lab' machine anyway; you do need as much memory as you can 
> cram in that old Optiplex, with an absolute minimu of 1GB (and it's going to 
> top out less than 4GB anyway)), you need to download, from a mirror:
> CentOS-6.2-i386-bin-DVD1.iso
> CentOS-6.2-i386-bin-DVD2.iso
>
> While DVD2 is somewhat optional, it won't hurt to have it on hand just in 
> case.
>
> The LiveDVD and LiveCD options boot up to a usable desktop, and you can 
> install from them, but if you're wanting the *server* install experience you 
> need the others, not the LiveDVD or LiveCD.
>
> Now, go give it a whirl, make sure you read the documentation on installation 
> on the CentOS.org website, and come back in a few days when you've played 
> with that installation a while.
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Lamar Owen]

On Thursday, February 23, 2012 05:35:32 PM Wuxi Ixuw wrote:
> Ok, I've found many versions from it, one for 700 MB and others for a 
> DVD, which one I should get?

While I specifically stated the installation media, you should get both the 
DVD1 and DVD2; specifically, assuming a 32-bit system (you mentioned trying on 
a Pentium 4 or Pentium D, so 64-bit may not be an option, and isn't really 
necessary for a 'lab' machine anyway; you do need as much memory as you can 
cram in that old Optiplex, with an absolute minimu of 1GB (and it's going to 
top out less than 4GB anyway)), you need to download, from a mirror:
CentOS-6.2-i386-bin-DVD1.iso
CentOS-6.2-i386-bin-DVD2.iso

While DVD2 is somewhat optional, it won't hurt to have it on hand just in case.

The LiveDVD and LiveCD options boot up to a usable desktop, and you can install 
from them, but if you're wanting the *server* install experience you need the 
others, not the LiveDVD or LiveCD.

Now, go give it a whirl, make sure you read the documentation on installation 
on the CentOS.org website, and come back in a few days when you've played with 
that installation a while.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Wuxi Ixuw]

I think your words makes more sense and counting.
For a newbie one like me ... which option you would advise me to go for?
I do not have any special preferences but I do care  for the one that is 
more stable and provide really more security.
Thanks

On 24/02/2012 01:02 AM, Miguel Medalha wrote:
>
> Why does it have to be CentOS? If you want a wonderful router/firewall 
> that you can have up and running in a few minutes, you should look at 
> this:
>
> www.pfsense.org
>
> I quote from their website:
>
> "pfSense is a free, open source customized distribution of FreeBSD 
>  tailored for use as a firewall and router. In 
> addition to being a powerful, flexible firewalling and routing 
> platform, it includes a long list of related features and a package 
> system allowing further expandability without adding bloat and 
> potential security vulnerabilities to the base distribution."
>
>
> If you insist in using Linux instead, you could look at this:
>
> www.ipcop.org
>
> Once again, a distro specialized on the function it performs.
>
> Why have a generic and bloated system that you then have to customize 
> from scratch when such wonderful specialized projects already exist?
>
> I use Linux servers and a pfsense firewall to protect the network. 
> Works like a charm, with amazing stability and reliability.
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Really bad KVM disk performance

[Marcelo Roccasalva]

On Mon, Feb 20, 2012 at 02:26, Bob Puff  wrote:
>
> Hi Gang,
[...]
> On my machine's Centos 5.7 x32 guest install:
> # hdparm -tT /dev/hda
>
> /dev/hda:
>  Timing cached reads:   1864 MB in  2.16 seconds = 863.87 MB/sec
>  Timing buffered disk reads:  358 MB in  3.08 seconds = 116.17 MB/sec

"cached reads" is a measure of linux buffer bandwitdth, not disk
performance!!. It should be several thousands... In a real machine, it
could be a motherboard problem...

--
Marcelo

"¿No será acaso que ésta vida moderna está teniendo más de moderna que de
vida?" (Mafalda)
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Miguel Medalha]

Why does it have to be CentOS? If you want a wonderful router/firewall 
that you can have up and running in a few minutes, you should look at this:

www.pfsense.org

I quote from their website:

"pfSense is a free, open source customized distribution of FreeBSD 
 tailored for use as a firewall and router. In 
addition to being a powerful, flexible firewalling and routing platform, 
it includes a long list of related features and a package system 
allowing further expandability without adding bloat and potential 
security vulnerabilities to the base distribution."


If you insist in using Linux instead, you could look at this:

www.ipcop.org

Once again, a distro specialized on the function it performs.

Why have a generic and bloated system that you then have to customize 
from scratch when such wonderful specialized projects already exist?

I use Linux servers and a pfsense firewall to protect the network. Works 
like a charm, with amazing stability and reliability.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[Ljubomir Ljubojevic]

On 02/23/2012 11:32 PM, m.r...@5-cent.us wrote:
> Ljubomir Ljubojevic wrote:
>> On 02/23/2012 04:08 PM, m.r...@5-cent.us wrote:
>>> fabio.pugna...@tiscali.it wrote:

 I have a problem with CentOS 6.2.

 On December 2011 I installed CentOS 6.1 on a HP ProLiant DL 165 G7
 server.

 Recentely I upgraded to CentOS 6.2 but at reboot the system didn't
 startup. So I removed new kernel kernel-2.6.32-220.4.2.el6 and CentOS
>>>
>>> You say the system didn't come up - how far did it get? How did you
>>> remove the newer kernel?
>>>
>>> Personally, I'm moving as fast as I can to get *rid* of the 220.2
>>> kernel, with its constant, irregular crash dumps with traces that
>>> all start with warn_slowpath.
>>
>> I am unable to run anything later then
>> 2.6.32-220.2.1.el6.centos.plus.x86_64. Booting of 220.4.x just hangs. I
>> had no time to file a bug report, always something more pressing. But
>> will do it soon. 220.2.1 runs without a problem for weeks at the time
>> (always-on desktop).
>
> Out of curiosity, why CentOS plus, and not the std.?
>
>  mark
>

Past experience with 5.x is that additional kernel modules can come in 
handy. Also there were always some optimizations or things that are 
disabled by the upstream.

Regular 220.4.x kernel was first installed, but no dice with it. Then I 
tried 220.4.x centosplus and still no dice.


-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Ljubomir Ljubojevic]

On 02/23/2012 11:31 PM, Wuxi Ixuw wrote:
> Hello
> in one of the emails I sent earlier ; mark (m.r...@5-cent.us) mentioned:
>
>>  install linux on a computer with two ethernet cards.  connect eth0 to
>>  your internet connection, and eth1 to your local network.   configure
>>  iptables firewall rules in the linux system.  or install pfsense on that
>>  same computer.
>
> Please if any one can help with more details and example for the
> configuration that would be awesome.
>
> Thanks
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>

I would use Shorewall instead of regular firewall. And there is Webmin 
module for Shorewall. If you protect Webmin properly (like only 
localhost access) it can help you greatly with simple configuration.

Shorewall even supports "tc", bandwidth shaping.

-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 6 - 1 of 2 machines starts and not the other

[m . roth]

fakessh @ wrote:
> hu guys
>
> I regularly read this list I can usually find me in the excellent
> documentation apache.
> I'm in front of a very strange problem I possess two desktop machines
> which works with the Apache server with centos 6
>
> 1 of 2 machines starts and not the other.
>
> I use the apache config file here that provides standard distribution
>
What's in /var/log/httpd/error_log on the machine where it doesn't start?
And is selinux enforcing?

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Tim Evans]

On 02/23/2012 05:31 PM, Wuxi Ixuw wrote:
> Hello
> in one of the emails I sent earlier ; mark (m.r...@5-cent.us) mentioned:
>
>>  install linux on a computer with two ethernet cards.  connect eth0 to
>>  your internet connection, and eth1 to your local network.   configure
>>  iptables firewall rules in the linux system.  or install pfsense on that
>>  same computer.
>
> Please if any one can help with more details and example for the
> configuration that would be awesome.
>

http://www.frozentux.net/documents/iptables-tutorial/
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] centos 6 - 1 of 2 machines starts and not the other

[fakessh @]

hu guys

I regularly read this list I can usually find me in the excellent
documentation apache. 
I'm in front of a very strange problem I possess two desktop machines
which works with the Apache server with centos 6 

1 of 2 machines starts and not the other. 

I use the apache config file here that provides standard distribution 

any help for me

sincerely

-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC2626742
 gpg --keyserver pgp.mit.edu --recv-key C2626742

 http://urlshort.eu fakessh @
 http://gplus.to/sshfake
 http://gplus.to/sshswilting
 http://gplus.to/john.swilting
 https://lists.fakessh.eu/mailman/
 This list is moderated by me, but all applications will be accepted
 provided they receive a note of presentation



signature.asc
Description: Ceci est une partie de message	numériquement signée
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Ok, I've found many versions from it, one for 700 MB and others for a 
DVD, which one I should get?

On 24/02/2012 12:30 AM, Lamar Owen wrote:
> On Thursday, February 23, 2012 03:58:10 PM Wuxi Ixuw wrote:
>> Ok,
>> I've made up my mind to dive and learn ... so to learn the right way
>> like what professional do ... what shall I do?
> First, try not to top post.
>
> Second, download the CentOS 6.2 installation media and install it on your own 
> hardware, reading through the excellent upstream documentation (linked from 
> the www.centos.org website).  Read through the CentOS wiki HOWTOs and such.  
> And play around with your system, feeling free to reinstall it (or re-clone 
> it, for a VM) at any time.  Live with it to learn it, really.
>
> HowtoForge has some nice articles on setting up servers to do various things; 
> read through a few that use CentOS 6 as the base, and attempt to implement on 
> you testing CentOS server.  Then attempt on your VPS.
>
> Expect to spend quite a bit of time on the process; Rome wasn't built in a 
> day, and neither is admin experience.
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[m . roth]

Ljubomir Ljubojevic wrote:
> On 02/23/2012 04:08 PM, m.r...@5-cent.us wrote:
>> fabio.pugna...@tiscali.it wrote:
>>>
>>> I have a problem with CentOS 6.2.
>>>
>>> On December 2011 I installed CentOS 6.1 on a HP ProLiant DL 165 G7
>>> server.
>>>
>>> Recentely I upgraded to CentOS 6.2 but at reboot the system didn't
>>> startup. So I removed new kernel kernel-2.6.32-220.4.2.el6 and CentOS
>>
>> You say the system didn't come up - how far did it get? How did you
>> remove the newer kernel?
>>
>> Personally, I'm moving as fast as I can to get *rid* of the 220.2
>> kernel, with its constant, irregular crash dumps with traces that
>> all start with warn_slowpath.
>
> I am unable to run anything later then
> 2.6.32-220.2.1.el6.centos.plus.x86_64. Booting of 220.4.x just hangs. I
> had no time to file a bug report, always something more pressing. But
> will do it soon. 220.2.1 runs without a problem for weeks at the time
> (always-on desktop).

Out of curiosity, why CentOS plus, and not the std.?

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] How to setup a computer using CentOS6 as a firewall for the whole network in my place?

[Wuxi Ixuw]

Hello
in one of the emails I sent earlier ; mark (m.r...@5-cent.us) mentioned:

> install linux on a computer with two ethernet cards.  connect eth0 to
> your internet connection, and eth1 to your local network.   configure
> iptables firewall rules in the linux system.  or install pfsense on that
> same computer.

Please if any one can help with more details and example for the 
configuration that would be awesome.

Thanks
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Lamar Owen]

On Thursday, February 23, 2012 03:58:10 PM Wuxi Ixuw wrote:
> Ok,
> I've made up my mind to dive and learn ... so to learn the right way 
> like what professional do ... what shall I do?

First, try not to top post.

Second, download the CentOS 6.2 installation media and install it on your own 
hardware, reading through the excellent upstream documentation (linked from the 
www.centos.org website).  Read through the CentOS wiki HOWTOs and such.  And 
play around with your system, feeling free to reinstall it (or re-clone it, for 
a VM) at any time.  Live with it to learn it, really.

HowtoForge has some nice articles on setting up servers to do various things; 
read through a few that use CentOS 6 as the base, and attempt to implement on 
you testing CentOS server.  Then attempt on your VPS.

Expect to spend quite a bit of time on the process; Rome wasn't built in a day, 
and neither is admin experience.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[Ljubomir Ljubojevic]

On 02/23/2012 04:08 PM, m.r...@5-cent.us wrote:
> fabio.pugna...@tiscali.it wrote:
>>
>> I have a problem with CentOS 6.2.
>>
>> On December 2011 I installed CentOS 6.1 on a HP ProLiant DL 165 G7
>> server.
>>
>> Recentely I upgraded to CentOS 6.2 but at reboot the system didn't
>> startup. So I removed new kernel kernel-2.6.32-220.4.2.el6 and CentOS
>
> You say the system didn't come up - how far did it get? How did you remove
> the newer kernel?
>
> Personally, I'm moving as fast as I can to get *rid* of the 220.2 kernel,
> with its constant, irregular crash dumps with traces that all start with
> warn_slowpath.
>

I am unable to run anything later then 
2.6.32-220.2.1.el6.centos.plus.x86_64. Booting of 220.4.x just hangs. I 
had no time to file a bug report, always something more pressing. But 
will do it soon. 220.2.1 runs without a problem for weeks at the time 
(always-on desktop).


-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I will install it as the only operating system on this machine.


On 24/02/2012 12:08 AM, m.r...@5-cent.us wrote:
> Wuxi Ixuw wrote:
>> what do you mean?
>>
>> On 23/02/2012 11:10 PM, m.r...@5-cent.us wrote:
>>> It will find more hardware errors
> Windows uses hardware sloppily, and not that well. Linux, like all
> versions of Unix, uses much more of the hardware's capabilities. Try
> running Linux on the same hardware as Windows: my fiancee's 14-yr-old son
> is dual booting his T-60 laptop, and *he* sees the difference in speed
> (Linux being that much faster).
>
> mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Les Mikesell]

On Thu, Feb 23, 2012 at 4:08 PM,   wrote:
>
> Windows uses hardware sloppily, and not that well. Linux, like all
> versions of Unix, uses much more of the hardware's capabilities. Try
> running Linux on the same hardware as Windows: my fiancee's 14-yr-old son
> is dual booting his T-60 laptop, and *he* sees the difference in speed
> (Linux being that much faster).
>

That doesn't really make any sense.  Things that use directx on
windows are typically slightly faster than openGL equivalents and
everything else should work at hardware/wire speeds.   A badly
maintained windows box might be more likely to have disk fragmentation
or malware, or it might have an intentionally-installed virus scanner
wasting time.

-- 
   Les Mikesell
  lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

This is a fortune !
Sure you deserve but it i s beyond my ability.
But thanks for offering :)

On 23/02/2012 11:49 PM, John R Pierce wrote:
> On 02/23/12 12:54 PM, Wuxi Ixuw wrote:
>> Really thanks a lot for your reply.
>> Please is it possible if you have a little time to talk in messenger
>> or use team viewer to connect to my computer?
>> Thanks a lot :)
> I wouldn't do that sort of thing for less than US$1000/day.  I'm way to
> busy to be doing your job too.
>
> (you can find much cheaper systems adminstrators, I'm an engineer).
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

Wuxi Ixuw wrote:
> what do you mean?
>
> On 23/02/2012 11:10 PM, m.r...@5-cent.us wrote:
>> It will find more hardware errors

Windows uses hardware sloppily, and not that well. Linux, like all
versions of Unix, uses much more of the hardware's capabilities. Try
running Linux on the same hardware as Windows: my fiancee's 14-yr-old son
is dual booting his T-60 laptop, and *he* sees the difference in speed
(Linux being that much faster).

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 12:54 PM, Wuxi Ixuw wrote:
> Really thanks a lot for your reply.
> Please is it possible if you have a little time to talk in messenger 
> or use team viewer to connect to my computer?
> Thanks a lot :) 

I wouldn't do that sort of thing for less than US$1000/day.  I'm way to 
busy to be doing your job too.

(you can find much cheaper systems adminstrators, I'm an engineer).


-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 3:10 PM, Steve Campbell  wrote:
>
> The sendmail cf file was not copied, but most of the parms were
> duplicated in the sendmail.mc file and sendmail was rebuilt. No errors.
> Auth was never working properly since once I put dovecot on, saslauthd
> was scrambled. Unfortunately, I needed the pop and imap server before I
> found out auth was failing.

If you are changing things, why not use cyrus instead of dovecot?

-- 
  Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Here at local stores we have a used branded computers like Dell optiPlex 
GX 620 ... so I mean something like this ... it is sold for 80 usd.


On 23/02/2012 11:19 PM, John R Pierce wrote:
> On 02/23/12 1:00 PM, Wuxi Ixuw wrote:
>> And do I need a recent computer for the linux one or an old one can do so?
>> I mean something like Pentium 4 or Pentium D may fits?
> for a SOHO firewall, I would want to use something very reliable and low
> power, quiet.   CPU isn't at all important, reliability is.
>
> If I was buying something, I'd probably get a little ITX box like alix
> http://www.pcengines.ch/alix2d2.htm
> or soekris
> http://soekris.com/products/net4501-1.html
>
>and run pfSense on it, using it strictly as a pure firewall not a
> general purpose computer.
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 1:00 PM, Wuxi Ixuw wrote:
> And do I need a recent computer for the linux one or an old one can do so?
> I mean something like Pentium 4 or Pentium D may fits?

for a SOHO firewall, I would want to use something very reliable and low 
power, quiet.   CPU isn't at all important, reliability is.

If I was buying something, I'd probably get a little ITX box like alix
http://www.pcengines.ch/alix2d2.htm
or soekris
http://soekris.com/products/net4501-1.html

  and run pfSense on it, using it strictly as a pure firewall not a 
general purpose computer.


-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Ned Slider]

On 23/02/12 20:46, Craig White wrote:
>
> On Feb 23, 2012, at 11:59 AM, Les Mikesell wrote:
>
>> On Thu, Feb 23, 2012 at 12:42 PM, Craig White  wrote:
>>>
>>> You should be able to indicate to cyrus-saslauthd to use pam 
>>> (/etc/sysconfig/saslauthd) and thus you would need to configure sendmail to 
>>> listen and handle connections on the various ports (587 and perhaps 465 for 
>>> Outlook users) and to use cyrus-saslauthd
>>
>> Pam should be the default setting.  But why would things hang if he
>> stops dovecot?
> 
> I don't ever use dovecot but that seems illogical ...
>

Dovecot also has it's own built in SASL implementation so the OP might 
be using that rather than Cyrus SASL.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

what do you mean?

On 23/02/2012 11:10 PM, m.r...@5-cent.us wrote:
> It will find more hardware errors
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 3:57 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 2:20 PM, Steve Campbell  wrote:
>>> On a 6.x system with dovecot and sendmail,  /etc/pam.d/smtp is a
>>> symlink.  I haven't tracked down the significance.
>> It appears it's just a basic pam file but instead of system-auth, it has
>> password-auth.
> System-auth was normal in 5.x, 6.x should have password-auth in most
> or all of the same places.  And since you mentioned something about
> pam_stack earlier, that might be from 3.x, replaced by proper
> 'include' now.
>
>> Correct again. Apparently, since sendmail is the secondary choice for
>> MTA and dovecot is to work with postfix, nothing about my setup now is
>> standard or default except for dovecot.
> A yum-installed sendmail should be 'standard enough' if you haven't
> done something like dropping a Centos 3.x sendmail.mc on top of the
> new one.
>
>> Looks like I'm going to have to push postfix into service. It means
>> learning where all the options are, just like in dovecot, and modifying
>> any software that depends on the sendmail package, like MailScanner and
>> who knows what else until I hit it.
> There might be a little safety-in-numbers from other people who don't
> know how to configure sendmail, but that's not really a good reason to
> switch.   If sendmail auth works the way you expect before installing
> dovecot, just rpm -q --list dovecot and figure out which piece is
> breaking things.

I never tested sendmail auth after setting things up. All seemed to be 
fine since sendmail reported all the auth stuff I needed when running 
the sendmail command. This was my fault for not testing this part.

The sendmail cf file was not copied, but most of the parms were 
duplicated in the sendmail.mc file and sendmail was rebuilt. No errors. 
Auth was never working properly since once I put dovecot on, saslauthd 
was scrambled. Unfortunately, I needed the pop and imap server before I 
found out auth was failing.

I can't blame any of the software for the problems I've created. But for 
now, I'm going into learn-postfix-crash mode and hope it'll do better 
for me. I can use the second new server to test with before I bring the 
original new server to it's knees.

What a pain, though.

steve
>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

Wuxi Ixuw wrote:
> And do I need a recent computer for the linux one or an old one can do so?
> I mean something like Pentium 4 or Pentium D may fits?
>
> On 23/02/2012 10:58 PM, John R Pierce wrote:
>> On 02/23/12 12:47 PM, Wuxi Ixuw wrote:
>>> Actually I read many times that geek people used to use a Linux
>>> computer
>>> as a firewall for their network but never figured out how they do so.
>> install linux on a computer with two ethernet cards.  connect eth0 to
>> your internet connection, and eth1 to your local network.   configure
>> iptables firewall rules in the linux system.  or install pfsense on that
>> same computer.

That's one of the beauties of Linux: unlike a competing "operating system"
which shall remain nameless (but is headquartered in Redmond, WA), it'll
run on pretty much *anything*. It will find more hardware errors...
because it uses the entire system much more efficiently. But if the
hardware's ok, it'll run for a *long* time. So, yes, anything you've got
should work.

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 3:46 PM, Craig White wrote:
> On Feb 23, 2012, at 11:59 AM, Les Mikesell wrote:
>
>> On Thu, Feb 23, 2012 at 12:42 PM, Craig White  wrote:
>>> You should be able to indicate to cyrus-saslauthd to use pam 
>>> (/etc/sysconfig/saslauthd) and thus you would need to configure sendmail to 
>>> listen and handle connections on the various ports (587 and perhaps 465 for 
>>> Outlook users) and to use cyrus-saslauthd
>> Pam should be the default setting.  But why would things hang if he
>> stops dovecot?
> 
> I don't ever use dovecot but that seems illogical but I think when you start 
> flailing with configurations you tend to make some errors that manifest in 
> strange ways.
>
> Craig
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>
I'm sure I have. I'll probably just erase sendmail, postfix, saslauthd, 
and dovecot and start over by reinstalling.
steve

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

And do I need a recent computer for the linux one or an old one can do so?
I mean something like Pentium 4 or Pentium D may fits?

On 23/02/2012 10:58 PM, John R Pierce wrote:
> On 02/23/12 12:47 PM, Wuxi Ixuw wrote:
>> Actually I read many times that geek people used to use a Linux computer
>> as a firewall for their network but never figured out how they do so.
> install linux on a computer with two ethernet cards.  connect eth0 to
> your internet connection, and eth1 to your local network.   configure
> iptables firewall rules in the linux system.  or install pfsense on that
> same computer.
>
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Ok,
I've made up my mind to dive and learn ... so to learn the right way 
like what professional do ... what shall I do?

On 23/02/2012 10:56 PM, m.r...@5-cent.us wrote:
> Wuxi Ixuw wrote:
>> On 23/02/2012 10:26 PM, John R Pierce wrote:
>>> On 02/23/12 12:16 PM, Wuxi Ixuw wrote:
 I will use Drupal core and mostly no modules.
>>> Drupal has had its share of exploits, too.
>>> http://www.cvedetails.com/vulnerability-list/vendor_id-1367/product_id-2387/Drupal-Drupal.html
>>>
>> What shall I use then?
>> I did goggled a lot for what I should use and found that Drupal is so
>> far the best CMS compared to Joomla or Wordpress.
> You need to get your head around the idea that *NOTHING* is ultimately
> safe. To paraphrase the stupid phrase, "vigilance is the price of liberty
> (of your system from the bad guys)"
>
>  mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 12:47 PM, Wuxi Ixuw wrote:
> Actually I read many times that geek people used to use a Linux computer
> as a firewall for their network but never figured out how they do so.

install linux on a computer with two ethernet cards.  connect eth0 to 
your internet connection, and eth1 to your local network.   configure 
iptables firewall rules in the linux system.  or install pfsense on that 
same computer.



-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 2:20 PM, Steve Campbell  wrote:
>
>> On a 6.x system with dovecot and sendmail,  /etc/pam.d/smtp is a
>> symlink.  I haven't tracked down the significance.
>
> It appears it's just a basic pam file but instead of system-auth, it has
> password-auth.

System-auth was normal in 5.x, 6.x should have password-auth in most
or all of the same places.  And since you mentioned something about
pam_stack earlier, that might be from 3.x, replaced by proper
'include' now.

> Correct again. Apparently, since sendmail is the secondary choice for
> MTA and dovecot is to work with postfix, nothing about my setup now is
> standard or default except for dovecot.

A yum-installed sendmail should be 'standard enough' if you haven't
done something like dropping a Centos 3.x sendmail.mc on top of the
new one.

> Looks like I'm going to have to push postfix into service. It means
> learning where all the options are, just like in dovecot, and modifying
> any software that depends on the sendmail package, like MailScanner and
> who knows what else until I hit it.

There might be a little safety-in-numbers from other people who don't
know how to configure sendmail, but that's not really a good reason to
switch.   If sendmail auth works the way you expect before installing
dovecot, just rpm -q --list dovecot and figure out which piece is
breaking things.

-- 
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

Wuxi Ixuw wrote:
>
> On 23/02/2012 10:26 PM, John R Pierce wrote:
>> On 02/23/12 12:16 PM, Wuxi Ixuw wrote:
>>> I will use Drupal core and mostly no modules.
>> Drupal has had its share of exploits, too.
>> http://www.cvedetails.com/vulnerability-list/vendor_id-1367/product_id-2387/Drupal-Drupal.html
>>
> What shall I use then?
> I did goggled a lot for what I should use and found that Drupal is so
> far the best CMS compared to Joomla or Wordpress.

You need to get your head around the idea that *NOTHING* is ultimately
safe. To paraphrase the stupid phrase, "vigilance is the price of liberty
(of your system from the bad guys)"

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

What shall I use then?
I did goggled a lot for what I should use and found that Drupal is so 
far the best CMS compared to Joomla or Wordpress.

On 23/02/2012 10:26 PM, John R Pierce wrote:
> On 02/23/12 12:16 PM, Wuxi Ixuw wrote:
>> I will use Drupal core and mostly no modules.
> Drupal has had its share of exploits, too.
> http://www.cvedetails.com/vulnerability-list/vendor_id-1367/product_id-2387/Drupal-Drupal.html
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Actually I read many times that geek people used to use a Linux computer 
as a firewall for their network but never figured out how they do so.


On 23/02/2012 09:52 PM, m.r...@5-cent.us wrote:
> John R Pierce wrote:
>> On 02/23/12 11:05 AM, Wuxi Ixuw wrote:
>>> Please suggest a one as I am keep goggling and all result bring books
>>> dealing with linux as a real server and not a vps.
>> you could do worse than starting here...
>> http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/
>>
>> VPS and real hardware work exactly the same once the software is
>> installed.
>>
>> my base level suggestions:
>>
>>* start with a *minimal* install of the latest release (currently 6.2)
>>* create your user account, give both user and root account different
>>  secure passwords
> I was assuming his provider gave him a working system, not virtual bare
> metal.
>
>>* secure the SSH server (no root, key instead of password
>>  authentication, only allow ssh from your home/office networks or a
>>  few secure 'bastion' hosts, etc)
>>* yum update right after install and reboot
> Yup.
>
>>* install *just* the services you need, only from trustworthy yum
>>  repositories
> YES! For about 10 years, I ran an old rh (NOT RHEL) system as a
> firewall/router for my home network. I ran Bastille Linux over it - which
> is *not* a distro, but a set of hardening scripts. Great stuff, and NIST
> recommendations these days refer to it, last time I looked.
>
> After running Bastille, *then* I got paranoid: I never installed X
> (security holes), or *any* compiler, or language I didn't absolutely need
> (no gcc, yes to perl). No nuttin'... and to the best of my knowledge,
> though I did see scans, I never had an intrusion, partly due to firewall
> rules of DROP, and partly because they had nothing to use to run their
> nasties.
>
> If it got installed, and you don't need it, don't only turn it off, yum
> remove. At work, and home, I certainly don't need either bluetooth or
> avahi running, on wired boxen.
>
>>* secure the services you install as appropriate
>>* document your configuration, including what packages you needed to
>>  install
> YES. You do *not* want to be trying to figure out what you'd done, a year
> from now, at 17:00 on a Friday, or 02:00 some morning.
>
>>* script a secure backup of your configuration specific conf and data
>>  files to reliable offsite storage.
> Yup. Or have the full website, and all configuration files for the system,
> on your machine at home or work, so you can just upload the whole thing.
>
>>* plan on regular yum updates, and staying up on security alerts, such
>>  as CERT
> 
> RH, and this offshot I know of, called CentOS, are pretty good at
> announcing security fixes in a timely manner (take a bow, Johnny).
>
>  mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Craig White]

On Feb 23, 2012, at 11:59 AM, Les Mikesell wrote:

> On Thu, Feb 23, 2012 at 12:42 PM, Craig White  wrote:
>> 
>> You should be able to indicate to cyrus-saslauthd to use pam 
>> (/etc/sysconfig/saslauthd) and thus you would need to configure sendmail to 
>> listen and handle connections on the various ports (587 and perhaps 465 for 
>> Outlook users) and to use cyrus-saslauthd
> 
> Pam should be the default setting.  But why would things hang if he
> stops dovecot?

I don't ever use dovecot but that seems illogical but I think when you start 
flailing with configurations you tend to make some errors that manifest in 
strange ways.

Craig
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

thanks a lot for these steps, I will follow them and hope to find all up 
and running.

On 23/02/2012 09:41 PM, John R Pierce wrote:
> On 02/23/12 11:05 AM, Wuxi Ixuw wrote:
>> Please suggest a one as I am keep goggling and all result bring books
>> dealing with linux as a real server and not a vps.
> you could do worse than starting here...
> http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/
>
> VPS and real hardware work exactly the same once the software is installed.
>
> my base level suggestions:
>
>* start with a *minimal* install of the latest release (currently 6.2)
>* create your user account, give both user and root account different
>  secure passwords
>* secure the SSH server (no root, key instead of password
>  authentication, only allow ssh from your home/office networks or a
>  few secure 'bastion' hosts, etc)
>* yum update right after install and reboot
>* install *just* the services you need, only from trustworthy yum
>  repositories
>* secure the services you install as appropriate
>* document your configuration, including what packages you needed to
>  install
>* script a secure backup of your configuration specific conf and data
>  files to reliable offsite storage.
>* plan on regular yum updates, and staying up on security alerts, such
>  as CERT
>
>
> by far the biggest threat to servers are things installed on top of
> them, like web applications...  for instance the very popular WordPress
> has a long and checkered history of security exploits, ranging from
> annoying to root elevation...
> http://www.wordpressexploit.com/
>
> ANY user written web code has to be designed with security in mind, no
> matter how insignificant your little web server is, its valuable to the
> black hats as a proxy for their evil, and the worms and exploit scanners
> will find a wide range of poor design
>
> http://xkcd.com/327/
>
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 12:16 PM, Wuxi Ixuw wrote:
> I will use Drupal core and mostly no modules.

Drupal has had its share of exploits, too.
http://www.cvedetails.com/vulnerability-list/vendor_id-1367/product_id-2387/Drupal-Drupal.html


-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 1:35 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 12:20 PM, Steve Campbell  
> wrote:
>>   Or maybe by the
>>> slightly-weird 'alternatives' system.  Have you followed all of the
>>> symlinks that might be involved?
>> Symlinks? I haven't found any of those yet. All files are real files
> On a 6.x system with dovecot and sendmail,  /etc/pam.d/smtp is a
> symlink.  I haven't tracked down the significance.

It appears it's just a basic pam file but instead of system-auth, it has 
password-auth.
>
>> Meant to say pretty much everyone over on the dovecot list must be using
>> postfix, which has support for dovecot auth. I'd like to make sendmail
>> use cyrus sasl, and I don't really care what auth dovecot uses, but I'm
>> guessing it's inflexible so that it probably will use dovecot auth.
> Whatever you think about sendmail, you can't say it is inflexible.
> And whatever issues you are having are from not understanding the
> configuration.

I don't have a problem with Sendmail, and it's always been flexible 
enough to do what I've needed from it. The configuration issue may be 
the problem, but I've been running it for twenty years or more and until 
now, that's not been the case. I'd say it's more than likely I don't 
understand the dovecot configurations.
>
>> The
>> suggestion to make them the same has been brought up, but all's I want
>> to use is the PAM mechanism.
> That should have been the default.

I agree. But it didn't work.
>
>> turn off dovecot means "service dovecot stop" or
>> "/etc/rc.d/init.d/dovecot stop". saslauthd is still running and so is
>> sendmail. saslauthd is started at boot and I've made sure it really is
>> running using ps.
> That's not a default, is it?  Or for sendmail to use it?  And it is
> probably the one from the cyrus-sasl package.

Correct again. Apparently, since sendmail is the secondary choice for 
MTA and dovecot is to work with postfix, nothing about my setup now is 
standard or default except for dovecot.

Looks like I'm going to have to push postfix into service. It means 
learning where all the options are, just like in dovecot, and modifying 
any software that depends on the sendmail package, like MailScanner and 
who knows what else until I hit it.

Such a shame to have to throw away such a nice program, but I don't 
write it, I just use it.

steve
>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

managed web hosting is really expensive.

On 23/02/2012 09:39 PM, m.r...@5-cent.us wrote:
> Les Mikesell wrote:
>> On Thu, Feb 23, 2012 at 1:08 PM, Wuxi Ixuw  wrote:
>>> I am not using cent os for my daily computing tasks at home or work but
>>> just for the vps hosting website.
>>> you mean to use web control panel back end or you mean another issue?
>> I don't have any idea what a 'web control panel back end is' since
>> that is not a stock centos feature.  CentOS itself packages updates as
> I'd guess he's talking cPanel.
>
>> soon as possible after they are released and on a non VPS system you
>> would use 'yum update' to install them.  And normally you want to do
>> that as soon as possible because when the updates are published, the
>> vulnerabilities that they fix are obvious and often even explained in
>> public.
> Actually, I assume that my hosting provider is regularly updating system
> software. I should probably look, but I think I'm paying for that, as part
> of what they do... which is also very much to their own benefit.
>
>  mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I mean something like ISPConfig , VirtualMin, WebMin, ..etc

On 23/02/2012 09:27 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 1:08 PM, Wuxi Ixuw  wrote:
>> I am not using cent os for my daily computing tasks at home or work but
>> just for the vps hosting website.
>> you mean to use web control panel back end or you mean another issue?
> I don't have any idea what a 'web control panel back end is' since
> that is not a stock centos feature.  CentOS itself packages updates as
> soon as possible after they are released and on a non VPS system you
> would use 'yum update' to install them.  And normally you want to do
> that as soon as possible because when the updates are published, the
> vulnerabilities that they fix are obvious and often even explained in
> public.
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Actually I used to be on a shared hosting and run out of resources many 
times.
I am expecting about 20 k or may be more per day with 400-600 on the 
same time visitors.
This is why I want to go for a VPS.
I did start to learn and keep screwing the whole vps several times.

On 23/02/2012 09:23 PM, Peter Peltonen wrote:
> Hi,
>
> On Thu, Feb 23, 2012 at 9:08 PM, Wuxi Ixuw  wrote:
>> I am not using cent os for my daily computing tasks at home or work but
>> just for the vps hosting website.
> If all you want to do is to host a single website then a VPS is an overkill.
>
> Just a find a hosting service for a "webhotel": this way your ISP
> deals with the security of the server and you don't need to worry
> about any operation system level admin stuff.
>
> It should be a lot cheaper as well.
>
> Best,
> Peter
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I will use Drupal core and mostly no modules.

On 23/02/2012 09:21 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 1:05 PM, Wuxi Ixuw  wrote:
>> Please suggest a one as I am keep goggling and all result bring books
>> dealing with linux as a real server and not a vps.
> The difference is only in how much the hosting system forces you to
> use certain images and versions, which will likely vary with the
> vendor.  Books on security are always out of date anyway.   The system
> security business is very specialized - plan on spending a lot of
> either time or money if you are going to do anything out of the
> ordinary.  But, unless you have something unique and valuable to
> attack, you mostly have to worry about known exploits on the platform
> you use, and the main thing you can do about it is to keep your
> software updated so you get the fixes as soon as they are available.
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I'd like to learn indeed but feel like lost in a very big ocean.
please if you may give any outline that would be awesome or even a title 
for a good book to start with.

On 23/02/2012 09:15 PM, Reindl Harald wrote:
> and where is the difference between a real server and a VPS
> in the context of a webserver ->  hint: there is none!
>
> you have two choices:
>
>   * read many manuals and learn the needed things
>   * to not use VPS at all and switch to a maintained hosting
>
> there is no easy way for " i have no technical knowledge but i
> want to have simple instructions for making a secure root-server"
>
> if you have not the knowledge, not the time to learn
> and not the money to let do people who can simply
> do not such things!
>
> Am 23.02.2012 20:05, schrieb Wuxi Ixuw:
>
> Please suggest a one as I am keep goggling and all result bring books
> dealing with linux as a real server and not a vps.
>
> On 23/02/2012 07:01 PM, Les Mikesell wrote:
>
>> On Thu, Feb 23, 2012 at 7:19 AM, Wuxi Ixuw   wrote:
>>> I am afraid if I get hacked and do not know what should i do to setup
>>> the whole vps the right way.
>> There are many large books on the subject.  If you don't want to spend
>> your life staying ahead of the game:
>>  Use popular software
>> Don't change defaults you don't understand
>> Keep it up to date
>> Use good passwords
>>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

John R Pierce wrote:
> On 02/23/12 11:05 AM, Wuxi Ixuw wrote:
>> Please suggest a one as I am keep goggling and all result bring books
>> dealing with linux as a real server and not a vps.
>
> you could do worse than starting here...
> http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/
>
> VPS and real hardware work exactly the same once the software is
> installed.
>
> my base level suggestions:
>
>   * start with a *minimal* install of the latest release (currently 6.2)
>   * create your user account, give both user and root account different
> secure passwords

I was assuming his provider gave him a working system, not virtual bare
metal.

>   * secure the SSH server (no root, key instead of password
> authentication, only allow ssh from your home/office networks or a
> few secure 'bastion' hosts, etc)
>   * yum update right after install and reboot

Yup.

>   * install *just* the services you need, only from trustworthy yum
> repositories

YES! For about 10 years, I ran an old rh (NOT RHEL) system as a
firewall/router for my home network. I ran Bastille Linux over it - which
is *not* a distro, but a set of hardening scripts. Great stuff, and NIST
recommendations these days refer to it, last time I looked.

After running Bastille, *then* I got paranoid: I never installed X
(security holes), or *any* compiler, or language I didn't absolutely need
(no gcc, yes to perl). No nuttin'... and to the best of my knowledge,
though I did see scans, I never had an intrusion, partly due to firewall
rules of DROP, and partly because they had nothing to use to run their
nasties.

If it got installed, and you don't need it, don't only turn it off, yum
remove. At work, and home, I certainly don't need either bluetooth or
avahi running, on wired boxen.

>   * secure the services you install as appropriate
>   * document your configuration, including what packages you needed to
> install

YES. You do *not* want to be trying to figure out what you'd done, a year
from now, at 17:00 on a Friday, or 02:00 some morning.

>   * script a secure backup of your configuration specific conf and data
> files to reliable offsite storage.

Yup. Or have the full website, and all configuration files for the system,
on your machine at home or work, so you can just upload the whole thing.

>   * plan on regular yum updates, and staying up on security alerts, such
> as CERT

RH, and this offshot I know of, called CentOS, are pretty good at
announcing security fixes in a timely manner (take a bow, Johnny).

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 11:05 AM, Wuxi Ixuw wrote:
> Please suggest a one as I am keep goggling and all result bring books
> dealing with linux as a real server and not a vps.

you could do worse than starting here...
http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/

VPS and real hardware work exactly the same once the software is installed.

my base level suggestions:

  * start with a *minimal* install of the latest release (currently 6.2)
  * create your user account, give both user and root account different
secure passwords
  * secure the SSH server (no root, key instead of password
authentication, only allow ssh from your home/office networks or a
few secure 'bastion' hosts, etc)
  * yum update right after install and reboot
  * install *just* the services you need, only from trustworthy yum
repositories
  * secure the services you install as appropriate
  * document your configuration, including what packages you needed to
install
  * script a secure backup of your configuration specific conf and data
files to reliable offsite storage.
  * plan on regular yum updates, and staying up on security alerts, such
as CERT


by far the biggest threat to servers are things installed on top of 
them, like web applications...  for instance the very popular WordPress 
has a long and checkered history of security exploits, ranging from 
annoying to root elevation...
http://www.wordpressexploit.com/

ANY user written web code has to be designed with security in mind, no 
matter how insignificant your little web server is, its valuable to the 
black hats as a proxy for their evil, and the worms and exploit scanners 
will find a wide range of poor design

http://xkcd.com/327/



-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 1:08 PM, Wuxi Ixuw  wrote:
>> I am not using cent os for my daily computing tasks at home or work but
>> just for the vps hosting website.
>> you mean to use web control panel back end or you mean another issue?
>
> I don't have any idea what a 'web control panel back end is' since
> that is not a stock centos feature.  CentOS itself packages updates as

I'd guess he's talking cPanel.

> soon as possible after they are released and on a non VPS system you
> would use 'yum update' to install them.  And normally you want to do
> that as soon as possible because when the updates are published, the
> vulnerabilities that they fix are obvious and often even explained in
> public.

Actually, I assume that my hosting provider is regularly updating system
software. I should probably look, but I think I'm paying for that, as part
of what they do... which is also very much to their own benefit.

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Les Mikesell]

On Thu, Feb 23, 2012 at 1:08 PM, Wuxi Ixuw  wrote:
> I am not using cent os for my daily computing tasks at home or work but
> just for the vps hosting website.
> you mean to use web control panel back end or you mean another issue?

I don't have any idea what a 'web control panel back end is' since
that is not a stock centos feature.  CentOS itself packages updates as
soon as possible after they are released and on a non VPS system you
would use 'yum update' to install them.  And normally you want to do
that as soon as possible because when the updates are published, the
vulnerabilities that they fix are obvious and often even explained in
public.

-- 
  Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Peter Peltonen]

Hi,

On Thu, Feb 23, 2012 at 9:08 PM, Wuxi Ixuw  wrote:
> I am not using cent os for my daily computing tasks at home or work but
> just for the vps hosting website.

If all you want to do is to host a single website then a VPS is an overkill.

Just a find a hosting service for a "webhotel": this way your ISP
deals with the security of the server and you don't need to worry
about any operation system level admin stuff.

It should be a lot cheaper as well.

Best,
Peter
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[m . roth]

Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 12:50 PM, Tru Huynh  wrote:
>> ...
>>> reboot   system boot  2.6.32-71.el6.x8 Wed Feb 22 22:53 - 17:10
>> always rebooting at 17:10 ?
>>
> Is that when the janitor comes in and plugs his vacuum into the rack
> power  outlet?

I was wondering about something like that. A friend mentioned, on another
list, about how some idiot had plugged, um, don't remember, coffee pot?
microwave? into a power outlet that was orange, and labelled "computer
equipment only". After he had to come in (he's a consultant) and $fix$ the
resulting mess, it may have gotten through to the staff.

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Les Mikesell]

On Thu, Feb 23, 2012 at 1:05 PM, Wuxi Ixuw  wrote:
> Please suggest a one as I am keep goggling and all result bring books
> dealing with linux as a real server and not a vps.

The difference is only in how much the hosting system forces you to
use certain images and versions, which will likely vary with the
vendor.  Books on security are always out of date anyway.   The system
security business is very specialized - plan on spending a lot of
either time or money if you are going to do anything out of the
ordinary.  But, unless you have something unique and valuable to
attack, you mostly have to worry about known exploits on the platform
you use, and the main thing you can do about it is to keep your
software updated so you get the fixes as soon as they are available.

-- 
  Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[Les Mikesell]

On Thu, Feb 23, 2012 at 12:50 PM, Tru Huynh  wrote:
> ...
>> reboot   system boot  2.6.32-71.el6.x8 Wed Feb 22 22:53 - 17:10
> always rebooting at 17:10 ?
>

Is that when the janitor comes in and plugs his vacuum into the rack
power  outlet?

-- 
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I am not using cent os for my daily computing tasks at home or work but 
just for the vps hosting website.
you mean to use web control panel back end or you mean another issue?

On 23/02/2012 07:01 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 7:19 AM, Wuxi Ixuw  wrote:
>> I am afraid if I get hacked and do not know what should i do to setup
>> the whole vps the right way.
> There are many large books on the subject.  If you don't want to spend
> your life staying ahead of the game:
> Use popular software
>Don't change defaults you don't understand
>Keep it up to date
>Use good passwords
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I did and they asked for a 150 usd per hour ... and I do not have that 
money and each time I am asking for a thing I will need to pay again and 
counting.

On 23/02/2012 06:49 PM, m.r...@5-cent.us wrote:
> John R Pierce wrote:
>> On 02/23/12 5:19 AM, Wuxi Ixuw wrote:
>>> I am afraid if I get hacked and do not know what should i do to setup
>>> the whole vps the right way.
>> there is no single 'right way'.  security requires a thorough
>> understanding of all aspects of the system, this is not something that
>> can be dealt with by a 'how to' walkthrough.   hire a systems
>> adminstrator with a background in security.
> Or, since it's a VPS, call your ISP's support line and ask them.
>
>   mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Please suggest a one as I am keep goggling and all result bring books 
dealing with linux as a real server and not a vps.

On 23/02/2012 07:01 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 7:19 AM, Wuxi Ixuw  wrote:
>> I am afraid if I get hacked and do not know what should i do to setup
>> the whole vps the right way.
> There are many large books on the subject.  If you don't want to spend
> your life staying ahead of the game:
> Use popular software
>Don't change defaults you don't understand
>Keep it up to date
>Use good passwords
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 12:42 PM, Craig White  wrote:
>
> You should be able to indicate to cyrus-saslauthd to use pam 
> (/etc/sysconfig/saslauthd) and thus you would need to configure sendmail to 
> listen and handle connections on the various ports (587 and perhaps 465 for 
> Outlook users) and to use cyrus-saslauthd

Pam should be the default setting.  But why would things hang if he
stops dovecot?

-- 
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[Tru Huynh]

On Thu, Feb 23, 2012 at 03:35:43PM +0100, fabio.pugna...@tiscali.it wrote:
> Good Evening,
> 
...
> reboot   system boot  2.6.32-71.el6.x8 Wed Feb 22 22:53 - 17:10
always rebooting at 17:10 ?

Tru
-- 
Tru Huynh (mirrors, CentOS i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B


pgp7aGpDNhksw.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Craig White]

On Feb 23, 2012, at 8:54 AM, Steve Campbell wrote:

> Seems I've found that dovecot is handling the auth for smtp, and it 
> doesn't like sendmail very much since their documentation avoids 
> sendmail like the plague.
> 
> I sure wish Centos/RH had left something for us so that I wouldn't have 
> to learn dovecot, postfix and all the other stuff. The original tests I 
> ran seemed to handle most of the stuff normally but now users are 
> calling and complaining and there's not a lot I can do but forge ahead.
> 
> Not happy but it's my own fault
> 
> Thanks for the help

I've stayed out of this thread because I like many others moved from sendmail 
to postfix many years ago as it is much simpler to deal with external resources 
such as LDAP & SASL authentication and thus had little to offer in terms of 
help without the relatively useless suggestion that you should likewise switch 
from sendmail to postfix. Note that the default SMTP server now on CentOS is 
postfix which I take as yet another sign that a majority of people have moved 
on to postfix too.

That said, it seems certain that sendmail is capable of doing SASL 
authentication (TLS/SSL/Plain) so the choice is yours.

You should be able to indicate to cyrus-saslauthd to use pam 
(/etc/sysconfig/saslauthd) and thus you would need to configure sendmail to 
listen and handle connections on the various ports (587 and perhaps 465 for 
Outlook users) and to use cyrus-saslauthd but to be honest, that's something I 
solved long ago using postfix (and LDAP users too). SASL would normally use 
'PLAIN' authentication but it can be wrapped with TLS or SSL for encryption.

Good luck

Craig
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[Luke S. Crawford]

On Thu, Feb 23, 2012 at 03:35:43PM +0100, fabio.pugna...@tiscali.it wrote:
> now every two days the system automatically reboots as you can see

You want to setup a serial console, and log it.  Usually when the system 
reboots or crashes, it will print something to console indicating what 
is happening.  It can be a great help with hardware problems.

-- 
Luke S. Crawford
http://prgmr.com/xen/ -   Hosting for the technically adept
http://nostarch.com/xen.htm   -   We don't assume you are stupid.  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 12:20 PM, Steve Campbell  wrote:
>
> Or maybe by the
>> slightly-weird 'alternatives' system.  Have you followed all of the
>> symlinks that might be involved?
>
> Symlinks? I haven't found any of those yet. All files are real files

On a 6.x system with dovecot and sendmail,  /etc/pam.d/smtp is a
symlink.  I haven't tracked down the significance.

> Meant to say pretty much everyone over on the dovecot list must be using
> postfix, which has support for dovecot auth. I'd like to make sendmail
> use cyrus sasl, and I don't really care what auth dovecot uses, but I'm
> guessing it's inflexible so that it probably will use dovecot auth.

Whatever you think about sendmail, you can't say it is inflexible.
And whatever issues you are having are from not understanding the
configuration.

>The
> suggestion to make them the same has been brought up, but all's I want
> to use is the PAM mechanism.

That should have been the default.

> turn off dovecot means "service dovecot stop" or
> "/etc/rc.d/init.d/dovecot stop". saslauthd is still running and so is
> sendmail. saslauthd is started at boot and I've made sure it really is
> running using ps.

That's not a default, is it?  Or for sendmail to use it?  And it is
probably the one from the cyrus-sasl package.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 12:44 PM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 11:18 AM, Steve Campbell  
> wrote:
>> Seems that I've gotten myself into a war over on the dovecot forums. Not
>> what I intended to do, but when using sendmail with dovecot, it  appears
>> that dovecot auth takes over what sasl auth used to do.
> You are still not making any sense.  Dovecot doesn't do anything
> directly to sendmail.  If anything like this is happening at all, it
> is in the configurations as shipped by whatever packages you have
> installed, or some local change you have.  Or maybe by the
> slightly-weird 'alternatives' system.  Have you followed all of the
> symlinks that might be involved?

Symlinks? I haven't found any of those yet. All files are real files
>
>> Pretty much over there uses postfix and postfix supports dovecot auth.
>> sendmail doesn't. I don't know how to separate the auth stuff.
> What does that mean.  And what do you want to happen?
Meant to say pretty much everyone over on the dovecot list must be using 
postfix, which has support for dovecot auth. I'd like to make sendmail 
use cyrus sasl, and I don't really care what auth dovecot uses, but I'm 
guessing it's inflexible so that it probably will use dovecot auth. The 
suggestion to make them the same has been brought up, but all's I want 
to use is the PAM mechanism.
>
>> I agree with you concerning the pam files being pretty simple. If I turn
>> off dovecot and try and connect to port 587, I get nothing including no
>> return.
> What does 'turn off dovecot' mean?  And did you note the comment in 
> sendmail.mc:
> ' Please remember that saslauthd needs to be running for AUTH'

turn off dovecot means "service dovecot stop" or 
"/etc/rc.d/init.d/dovecot stop". saslauthd is still running and so is 
sendmail. saslauthd is started at boot and I've made sure it really is 
running using ps.
>
>> If I turn on dovecot, I get dovecot auth failures in my secure
>> logs. Sort of tells me that dovecot is taking over the auth processes
>> from sasl. I could be wrong.
> That would probably be a good thing, since you generally want the same
> people to authenticate the same way for imap and authenticated
> sending.Why not leave that part alone and focus on fixing it?

Believe me, if I knew where to start looking, I would. As far as 
everything I've looked out, both should be using pam, but the auth file 
for dovecot is a little cryptic to me. My fault, I know, but still I'm 
not finding out a lot about it.

This is a great suggestion, and for the time being, I'll concentrate on 
the auth config file for dovecot.

Sorry to all for sounding so buttish. Don't mean to be that way.

Thanks for all the help so far

steve
>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 11:18 AM, Steve Campbell  wrote:
>
> Seems that I've gotten myself into a war over on the dovecot forums. Not
> what I intended to do, but when using sendmail with dovecot, it  appears
> that dovecot auth takes over what sasl auth used to do.

You are still not making any sense.  Dovecot doesn't do anything
directly to sendmail.  If anything like this is happening at all, it
is in the configurations as shipped by whatever packages you have
installed, or some local change you have.  Or maybe by the
slightly-weird 'alternatives' system.  Have you followed all of the
symlinks that might be involved?

> Pretty much over there uses postfix and postfix supports dovecot auth.
> sendmail doesn't. I don't know how to separate the auth stuff.

What does that mean.  And what do you want to happen?

> I agree with you concerning the pam files being pretty simple. If I turn
> off dovecot and try and connect to port 587, I get nothing including no
> return.

What does 'turn off dovecot' mean?  And did you note the comment in sendmail.mc:
' Please remember that saslauthd needs to be running for AUTH'

> If I turn on dovecot, I get dovecot auth failures in my secure
> logs. Sort of tells me that dovecot is taking over the auth processes
> from sasl. I could be wrong.

That would probably be a good thing, since you generally want the same
people to authenticate the same way for imap and authenticated
sending.Why not leave that part alone and focus on fixing it?

-- 
   Les Mikesell
  lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 11:55 AM, Les Mikesell wrote:
> On Thu, Feb 23, 2012 at 10:39 AM,  wrote:
 Seems I've found that dovecot is handling the auth for smtp, and it
 doesn't like sendmail very much since their documentation avoids
 sendmail like the plague.
>> The Dovecot developer is a smart dude. :-)
>>
>>> None of that makes any sense.  Dovecot should have nothing to do with
>>> smtp, so of course it doesn't have anything about sendmail in its
>>> documentation other than adding its local delivery agent which should
>>> be their only interaction and you probably don't even need to use
>>> that.
>> Actually it might. Dovecot can do the sasl auth part. I have not touched
>> sendmail in at least 10 years, so I do not know anything about the current
>> default sendmail config but I know dovecot sasl auth is easier to config
>> for postfix (5 lines in the postfix main.cf IIRC).
>>
>> I suppose it is possible that RH switched sendmail to user dovecot sasl
>> in their default config.
> Sendmail is infinitely configurable, but I don't see any uncommented
> Auth schemes in the stock sendmail.mc and the smtp-sendmail file in
> pam.d just invokes 'system-auth' on 5.x and 'password-auth' on 6.x,
> like most of the other things.  Something else must be going on here.

Seems that I've gotten myself into a war over on the dovecot forums. Not 
what I intended to do, but when using sendmail with dovecot, it  appears 
that dovecot auth takes over what sasl auth used to do.

Pretty much over there uses postfix and postfix supports dovecot auth. 
sendmail doesn't. I don't know how to separate the auth stuff.

I agree with you concerning the pam files being pretty simple. If I turn 
off dovecot and try and connect to port 587, I get nothing including no 
return. If I turn on dovecot, I get dovecot auth failures in my secure 
logs. Sort of tells me that dovecot is taking over the auth processes 
from sasl. I could be wrong.

steve
>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Les Mikesell]

On Thu, Feb 23, 2012 at 7:19 AM, Wuxi Ixuw  wrote:
> I am afraid if I get hacked and do not know what should i do to setup
> the whole vps the right way.

There are many large books on the subject.  If you don't want to spend
your life staying ahead of the game:
   Use popular software
  Don't change defaults you don't understand
  Keep it up to date
  Use good passwords

-- 
  Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 10:39 AM,   wrote:
>>>
>>> Seems I've found that dovecot is handling the auth for smtp, and it
>>> doesn't like sendmail very much since their documentation avoids
>>> sendmail like the plague.
>
> The Dovecot developer is a smart dude. :-)
>
>> None of that makes any sense.  Dovecot should have nothing to do with
>> smtp, so of course it doesn't have anything about sendmail in its
>> documentation other than adding its local delivery agent which should
>> be their only interaction and you probably don't even need to use
>> that.
>
> Actually it might. Dovecot can do the sasl auth part. I have not touched
> sendmail in at least 10 years, so I do not know anything about the current
> default sendmail config but I know dovecot sasl auth is easier to config
> for postfix (5 lines in the postfix main.cf IIRC).
>
> I suppose it is possible that RH switched sendmail to user dovecot sasl
> in their default config.

Sendmail is infinitely configurable, but I don't see any uncommented
Auth schemes in the stock sendmail.mc and the smtp-sendmail file in
pam.d just invokes 'system-auth' on 5.x and 'password-auth' on 6.x,
like most of the other things.  Something else must be going on here.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] ViSpan

[Scott Silva]

on 2/15/2012 9:25 AM Steve Campbell spake the following:
> I was looking for the old Vispan stuff, and it seems to have disappeared
> from the web. Now I realize it was old, but it did provide some details
> that I liked on my old servers. I've got mailscanner-mrtg running, but
> that only provides a view of what mailscanner sees.
>
> Does anyone know of a good replacement for vispan that might give
> complete stats on what the mail server is doing instead of just what
> MailScanner is doing?
>
> thanks
> steve campbell
http://www.while.org.uk/index.php/downloads/cat_view/6-current-software.html


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[m . roth]

John R Pierce wrote:
> On 02/23/12 5:19 AM, Wuxi Ixuw wrote:
>> I am afraid if I get hacked and do not know what should i do to setup
>> the whole vps the right way.
>
> there is no single 'right way'.  security requires a thorough
> understanding of all aspects of the system, this is not something that
> can be dealt with by a 'how to' walkthrough.   hire a systems
> adminstrator with a background in security.

Or, since it's a VPS, call your ISP's support line and ask them.

 mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Ways To Practice Breaking My System?

[Scott Silva]

on 2/21/2012 12:45 AM Alex Walker spake the following:
> Hi All
>
> I've been looking into some ways to break a CentOS system so I can
> perform some simulated disaster recovery and get some hands-on practice
> with rescue mode and other system recovery tools. I'm thinking to start
> off with things like corrupting the password file with random
> characters, breaking grub.conf.
>
> I've been doing some research on the net, but would welcome any input
> from list members. Does anybody have any creative suggestions for ways
> to break the CentOS boot process?
>
> Thanks in advance :)
>
>
> Alex.
You can always turn off the firewall and point it to the internet... Some 
kiddy will break it for you!  ;)



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[John R Pierce]

On 02/23/12 5:19 AM, Wuxi Ixuw wrote:
> I am afraid if I get hacked and do not know what should i do to setup
> the whole vps the right way.

there is no single 'right way'.  security requires a thorough 
understanding of all aspects of the system, this is not something that 
can be dealt with by a 'how to' walkthrough.   hire a systems 
adminstrator with a background in security.



-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[me]

On Thu, 23 Feb 2012, Les Mikesell wrote:

> On Thu, Feb 23, 2012 at 9:54 AM, Steve Campbell  wrote:
>>
>> Seems I've found that dovecot is handling the auth for smtp, and it
>> doesn't like sendmail very much since their documentation avoids
>> sendmail like the plague.

The Dovecot developer is a smart dude. :-)

> None of that makes any sense.  Dovecot should have nothing to do with
> smtp, so of course it doesn't have anything about sendmail in its
> documentation other than adding its local delivery agent which should
> be their only interaction and you probably don't even need to use
> that.

Actually it might. Dovecot can do the sasl auth part. I have not touched
sendmail in at least 10 years, so I do not know anything about the current
default sendmail config but I know dovecot sasl auth is easier to config
for postfix (5 lines in the postfix main.cf IIRC).

I suppose it is possible that RH switched sendmail to user dovecot sasl
in their default config.

HTH,

Regards,

-- 
Tom m...@tdiehl.org Spamtrap address
me...@tdiehl.org
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Les Mikesell]

On Thu, Feb 23, 2012 at 9:54 AM, Steve Campbell  wrote:
>
> Seems I've found that dovecot is handling the auth for smtp, and it
> doesn't like sendmail very much since their documentation avoids
> sendmail like the plague.

None of that makes any sense.  Dovecot should have nothing to do with
smtp, so of course it doesn't have anything about sendmail in its
documentation other than adding its local delivery agent which should
be their only interaction and you probably don't even need to use
that.

-- 
  Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/23/2012 7:36 AM, Steve Campbell wrote:
>
> On 2/22/2012 4:31 PM, Les Mikesell wrote:
>> On Wed, Feb 22, 2012 at 2:36 PM, Steve Campbell   
>> wrote:
>>> I'm having problems with what I think is PAM. Seems that ever since
>>> Centos 5, proftpd has had problems using pam, and with Centos 6.2 64
>>> bit, I had to quit using it altogether with proftpd.
>> Do you mean some specific pam step listed in /etc/pam.d/proftpd fails,
>> or what?  And are you doing anything exotic there or just trying to
>> read the shadow file?  And when reading the shadow file, is SElinux
>> enabled and logging errors?
> No, nothing exotic, just a generic install of Proftpd.
>
> On the Centos 5 boxes, I started getting the following, but it would work:
>
>Deprecated pam_stack module called from service "proftpd"
>pam_succeed_if(proftpd:session): error retrieving information about user 0
>pam_unix(proftpd:session): session closed for user 
>
> I'd found tons of fixes for it, but most would mean just editing the 
> /etc/pam.d/proftpd file or making /etc/pam.d/ftp file the same as proftpd 
> file. Nothing was a clean fix. But logins would still work.
>
> On the Centos 6.2 box, logins wouldn't work at all unless I removed the line 
> requiring pam_shells.so.
>
> Now on to the big problem. In the file /etc/sasl2/Sendmail.conf I've got the 
> line:
>
> pwcheck_method:pam
>
> I've got the certificates all fine in the sendmail.mc/cf file just fine, I've 
> got the port 587 defined and it's showing in netstat, but when I try and 
> create an account to access port 587 to send email through, no matter what 
> method I use (ssh, tls, plain ) I can't get an email to go through this. I'm 
> guessing that since I've got these ever-increasing problems with PAM, maybe 
> there's something I'm overlooking in the Pam config, but I'm not aware of any 
> problems. I just can't seem to get authenticated.
>
> I'm aware that going from Centos 3 to Centos 6.2 is a big jump. Fighting 
> Dovecot for Imap has been the biggest hurdle, and it's just recently that 
> people have started notifying me of some of the problems of being able to 
> relay through our server.
>
> My access file on both old and new are duplicates, so the problem isn't 
> there. The other sendmail files are the same as well (local domains, etc).
>
> There's not a wall hard enough for me to keep banging my head against, it 
> seems, and I'm really not getting any benefit from banging it.
>
> SeLinux is off as well as iptables and ip6tables. The firewalling is done for 
> all servers on the network, not the individual server, and the IP of the new 
> server took over the IP of the old server, so the firewall should still be 
> good for all ports and services.
>
> Proftpd is not the real problem here, but the sendmail problem is causing a 
> few calls.
>
> Thanks for any help and replies
> steve
>
>
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
Seems I've found that dovecot is handling the auth for smtp, and it 
doesn't like sendmail very much since their documentation avoids 
sendmail like the plague.

I sure wish Centos/RH had left something for us so that I wouldn't have 
to learn dovecot, postfix and all the other stuff. The original tests I 
ran seemed to handle most of the stuff normally but now users are 
calling and complaining and there's not a lot I can do but forge ahead.

Not happy but it's my own fault

Thanks for the help

steve
>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] System reboots automatically more or less every two days

[m . roth]

fabio.pugna...@tiscali.it wrote:
>
> I have a problem with CentOS 6.2.
>
> On December 2011 I installed CentOS 6.1 on a HP ProLiant DL 165 G7
> server.
>
> Recentely I upgraded to CentOS 6.2 but at reboot the system didn't
> startup. So I removed new kernel kernel-2.6.32-220.4.2.el6 and CentOS

You say the system didn't come up - how far did it get? How did you remove
the newer kernel?

Personally, I'm moving as fast as I can to get *rid* of the 220.2 kernel,
with its constant, irregular crash dumps with traces that all start with
warn_slowpath.

Is the server on a UPS?
>
> was again able to startup with original kernel-2.6.32-71.el6.x86_64. But
> now every two days the system automatically reboots as you can see
> below:

Looks to me as though its randomly rebooting several times a day. I'd
seriously wonder about hardware or power problems.

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] System reboots automatically more or less every two days

[fabio.pugna...@tiscali.it]

Good Evening,



I have a problem with CentOS 6.2. 

On December 2011 I installed CentOS 6.1 on a HP ProLiant DL 165 G7

server.

Recentely I upgraded to CentOS 6.2 but at reboot the system didn't

startup. So I removed new kernel kernel-2.6.32-220.4.2.el6 and CentOS

was again able to startup with original kernel-2.6.32-71.el6.x86_64. But

now every two days the system automatically reboots as you can see

below:



reboot   system boot  2.6.32-71.el6.x8 Wed Feb 22 22:53 - 17:10

(18:16)

reboot   system boot  2.6.32-71.el6.x8 Wed Feb 22 20:04 - 17:10

(21:06)

reboot   system boot  2.6.32-71.el6.x8 Fri Feb 17 22:55 - 17:10 (5

+18:14)   

reboot   system boot  2.6.32-71.el6.x8 Fri Feb 17 07:05 - 17:10 (6

+10:04)   

reboot   system boot  2.6.32-71.el6.x8 Wed Feb 15 15:02 - 17:10 (8

+02:08)   

reboot   system boot  2.6.32-71.el6.x8 Mon Feb 13 00:33 - 17:10 (10

+16:36)  

reboot   system boot  2.6.32-71.el6.x8 Sun Feb 12 16:08 - 17:10 (11

+01:02)  

reboot   system boot  2.6.32-71.el6.x8 Sun Feb 12 15:00 - 17:10 (11

+02:09)  

reboot   system boot  2.6.32-71.el6.x8 Thu Feb  9 18:06 - 17:10 (13

+23:03)  

reboot   system boot  2.6.32-71.el6.x8 Tue Feb  7 01:22 - 17:10 (16

+15:47)

  



In log file /var/log/messages there are no particular events happened

before system halt down.

Have you some idea of how I can resolve these problems? Do you think

they are correlated?

Thank you for the attention.

Fabio 

E' nata indoona : chiama, videochiama e messaggia Gratis.
Scarica indoona per iPhone, Android e PC 

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Ways To Practice Breaking My System?

[m . roth]

Alex Walker wrote:
>
>> Things like boot process rarely break. Try something like filling up
>> your root or tmp partition. That just seems to be a bit more common
>> as far as problem scenarios go.
>>
> Thanks for the reply. I've recently started working for a large hosting
> company, so there's a reasonable amount of scope for anything that can
> go wrong going wrong at some point, so I wanted to be prepared in
> advance for as many eventualities as possible :)

*sigh* Good luck with the new job.
>
> I've seen root partitions fill up a few times, but in my own experience
> we've always been able to get in and clear out some space before it's
> knocked the server over. I'll look into it a bit further tho.

One trick my manager's shown me, that you can use to keep things going
while dealing with a root filesystem full is to use tune2fs to lower the
f/s reserved space.

 mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Ways To Practice Breaking My System?

[Alex Walker]

> Things like boot process rarely break. Try something like filling up your
> root or tmp partition. That just seems to be a bit more common as far as
> problem scenarios go.
>
Thanks for the reply. I've recently started working for a large hosting 
company, so there's a reasonable amount of scope for anything that can 
go wrong going wrong at some point, so I wanted to be prepared in 
advance for as many eventualities as possible :)

I've seen root partitions fill up a few times, but in my own experience 
we've always been able to get in and clear out some space before it's 
knocked the server over. I'll look into it a bit further tho.

Cheers.


A.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] CentOS 6.2 install problem squid winbind

[Mark Orenstein]

In the install process, I checked squid and winbind.  Squid access to
winbind fails because squid was not added to the wbpriv group.  I suspect
that winbind is being installed after squid.  I manually added squid to
wbpriv in group and gshadow to allow access.

I reported something very similar a couple of years ago on Fedora 14

https://bugzilla.redhat.com/show_bug.cgi?id=584161

-- 
Mark Orenstein
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Centos6: Boot from usb 3.0

[Lamar Owen]

On Wednesday, February 22, 2012 09:52:54 AM Volker Poplawski wrote:
> Hi all,
> 
> I'm booting Centos6 from a usb 3.0 stick.
> 
> This works fine as long as the usb-stick is connected to a usb 2.0 port. 
> Once I plug the the usb-stick into a blue usb 3.0 port centos fails on 
> mounting the root filesystem.
> 
> Any hints on that?

Which version of CentOS?  6.0, 6.1, or 6.2?  Which kernel?

USB3 support isn't as robust as it should be, prior to 6.2, but I've not tried 
booting with USB3.0.

I do know the live DVD will recognize a drive on a USB3.0 port, but I haven't 
tried booting a live CentOS stick there yet Hmmm, perhaps I should, since I 
do have one (but it's not 'installed' to the stick, it's a LiveUSB image, not 
an installation).
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

I am afraid if I get hacked and do not know what should i do to setup 
the whole vps the right way.

On 23/02/2012 02:25 PM, Marc Deop wrote:
> On Thursday 23 February 2012 12:25:12 Wuxi Ixuw wrote:
>> Am I asking stupid questions to get no answers?
>>
> They're not stupid, just way too general.
>
> We could answer something like "apache gives me this error: blablabla"
>
> Regards
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Actually I am looking for a tutorial or a guide to follow as I am really 
newbie to this world.

On 23/02/2012 12:37 PM, Rudi Ahlers wrote:
> On Thu, Feb 23, 2012 at 12:25 PM, Wuxi Ixuw  wrote:
>> Am I asking stupid questions to get no answers?
>>
>> On 23/02/2012 09:42 AM, Wuxi Ixuw wrote:
>>> Hello
>>> I've got an un managed VPS running CentOS6
>>> I'd like to install 2 websites and secure the whole VPS
>>> I've tried tutorials from the how to forge website but things keep
>>> screwing all the time.
>>> Please if any one can help or give a good working tutorials that would
>>> be awesome.
>>> Thanks a lot
>>> WI,
>> ___
>
> It  would help if you're a LOT more specific asto what you've tried
> and what doesn't work.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Pam problems

[Steve Campbell]

On 2/22/2012 4:31 PM, Les Mikesell wrote:
> On Wed, Feb 22, 2012 at 2:36 PM, Steve Campbell  wrote:
>> I'm having problems with what I think is PAM. Seems that ever since
>> Centos 5, proftpd has had problems using pam, and with Centos 6.2 64
>> bit, I had to quit using it altogether with proftpd.
> Do you mean some specific pam step listed in /etc/pam.d/proftpd fails,
> or what?  And are you doing anything exotic there or just trying to
> read the shadow file?  And when reading the shadow file, is SElinux
> enabled and logging errors?

No, nothing exotic, just a generic install of Proftpd.

On the Centos 5 boxes, I started getting the following, but it would work:

  Deprecated pam_stack module called from service "proftpd"
  pam_succeed_if(proftpd:session): error retrieving information about user 0
  pam_unix(proftpd:session): session closed for user 

I'd found tons of fixes for it, but most would mean just editing the 
/etc/pam.d/proftpd file or making /etc/pam.d/ftp file the same as proftpd file. 
Nothing was a clean fix. But logins would still work.

On the Centos 6.2 box, logins wouldn't work at all unless I removed the line 
requiring pam_shells.so.

Now on to the big problem. In the file /etc/sasl2/Sendmail.conf I've got the 
line:

pwcheck_method:pam

I've got the certificates all fine in the sendmail.mc/cf file just fine, I've 
got the port 587 defined and it's showing in netstat, but when I try and create 
an account to access port 587 to send email through, no matter what method I 
use (ssh, tls, plain ) I can't get an email to go through this. I'm guessing 
that since I've got these ever-increasing problems with PAM, maybe there's 
something I'm overlooking in the Pam config, but I'm not aware of any problems. 
I just can't seem to get authenticated.

I'm aware that going from Centos 3 to Centos 6.2 is a big jump. Fighting 
Dovecot for Imap has been the biggest hurdle, and it's just recently that 
people have started notifying me of some of the problems of being able to relay 
through our server.

My access file on both old and new are duplicates, so the problem isn't there. 
The other sendmail files are the same as well (local domains, etc).

There's not a wall hard enough for me to keep banging my head against, it 
seems, and I'm really not getting any benefit from banging it.

SeLinux is off as well as iptables and ip6tables. The firewalling is done for 
all servers on the network, not the individual server, and the IP of the new 
server took over the IP of the old server, so the firewall should still be good 
for all ports and services.

Proftpd is not the real problem here, but the sendmail problem is causing a few 
calls.

Thanks for any help and replies
steve



>

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Marc Deop]

On Thursday 23 February 2012 12:25:12 Wuxi Ixuw wrote:
> Am I asking stupid questions to get no answers?
> 

They're not stupid, just way too general. 

We could answer something like "apache gives me this error: blablabla"

Regards
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Rudi Ahlers]

On Thu, Feb 23, 2012 at 12:25 PM, Wuxi Ixuw  wrote:
> Am I asking stupid questions to get no answers?
>
> On 23/02/2012 09:42 AM, Wuxi Ixuw wrote:
>> Hello
>> I've got an un managed VPS running CentOS6
>> I'd like to install 2 websites and secure the whole VPS
>> I've tried tutorials from the how to forge website but things keep
>> screwing all the time.
>> Please if any one can help or give a good working tutorials that would
>> be awesome.
>> Thanks a lot
>> WI,
> ___


It  would help if you're a LOT more specific asto what you've tried
and what doesn't work.
-- 
Kind Regards
Rudi Ahlers
SoftDux

Website: http://www.SoftDux.com
Technical Blog: http://Blog.SoftDux.com
Office: 087 805 9573
Cell: 082 554 7532
Fax: 086 268 8492
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Please I'd like to install 2 websites on my un managed VPS on CentOS6

[Wuxi Ixuw]

Am I asking stupid questions to get no answers?

On 23/02/2012 09:42 AM, Wuxi Ixuw wrote:
> Hello
> I've got an un managed VPS running CentOS6
> I'd like to install 2 websites and secure the whole VPS
> I've tried tutorials from the how to forge website but things keep 
> screwing all the time.
> Please if any one can help or give a good working tutorials that would 
> be awesome.
> Thanks a lot
> WI,
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Heads up on major Firefox update incoming

[James Hogarth]

As a heads up since this might have a large effect on people

The upstream vendor has rebased form firefox 3.6 onto firefox 10...

This effects both centos5 and centos6.

I'm not sure reading this whether this is the extended update support
version of if they intend to follow Mozilla's new release
processguess we'll find out when firefox 11 gets released...

Here's the details:
http://rhn.redhat.com/errata/RHEA-2012-0327.html

Regards,

James
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos