Re: [CentOS-es] Resumen de CentOS-es, Vol 59, Envío 4
usa la de joel barrios en alcancelibre.org El 04/11/11 11:00, centos-es-requ...@centos.org escribió: Envíe los mensajes para la lista CentOS-es a centos-es@centos.org Para subscribirse o anular su subscripción a través de la WEB http://lists.centos.org/mailman/listinfo/centos-es O por correo electrónico, enviando un mensaje con el texto help en el asunto (subject) o en el cuerpo a: centos-es-requ...@centos.org Puede contactar con el responsable de la lista escribiendo a: centos-es-ow...@centos.org Si responde a algún contenido de este mensaje, por favor, edite la linea del asunto (subject) para que el texto sea mas especifico que: Re: Contents of CentOS-es digest Además, por favor, incluya en la respuesta sólo aquellas partes del mensaje a las que está respondiendo. Asuntos del día: 1. Apache-Chroot (javier iglesias barban) -- Message: 1 Date: Thu, 3 Nov 2011 15:05:06 -0500 From: javier iglesias barbanjib8...@gmail.com Subject: [CentOS-es] Apache-Chroot To: centos-es@centos.org Message-ID: CAEANK-EnVNQ49L-hroaRTa1_TUauDnGD=apznro9flrdcqh...@mail.gmail.com Content-Type: text/plain; charset=ISO-8859-1 Hola amigos, alguien tiene una guia para poner el apache en una jaula chroot..?? -- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Fin de Resumen de CentOS-es, Vol 59, Envío 4 -- Salu2s O§many Oconnor -- Universidad de Oriente.Cuba: http://www.uo.edu.cu http://www.facebook.com/UO.Cuba http://twitter.com/Univ_Ote_Cuba -- Participe en: *- Conferencia de Quimica. Diciembre 2011. http://www.uo.edu.cu/eventos/ciq/ *- Conferencia Sismos 2012. Mayo 2012. http://eventos.uo.edu.cu/?p=144 -- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS-es] Centos 6, modo text consola
Hola alguno me puede dar una luz he buscado en la red en muchas paginas y siempre encuentro lo mismo pero no me funciona, el cambio de mode text en pantallas consola. Necesito cambiar el modo de ver las pantallas consola, mejor dicho que no me las muestre en alta resolución sino en 80x25, he cambiado el grub como lo dicen en los blog poniendo vga=791, 788, ask, etc pero no consigo que las pantallas tipo consola queden en modo 80x25, alguno de ustedes me puede ayudar, además como cambio que la pantalla grafica quede en alt+f7 como era antes y no en la pantalla uno como es ahora. Feliz dia Raúl Eduardo Arboleda Zapata Ingeniero de Sistemas Unninca Cel +573 tel:300%20620%2066%2013 300 620 66 13 +573 tel:312%20288%2090%2086 312 288 90 86 Medellín, Antioquia Colombia, S.A. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
Vreme: 11/04/2011 03:18 AM, Kévin GASPARD piše: Hi, To begin I'm sorry for my poor English level, that's not my first language. On CentOS 6 I've installed fail2ban 0.8.4 from EPEL repository. I've configured it with this page : http://centoshelp.org/security/fail2ban/ Then I've tried this command : chkconfig --level 23 fail2ban on service fail2ban start but the output says it fallen, nothing more. The status option says is stopped. Also I don't have log for it and no manual page (for the latest, this is normal ?). This is my /etc/fail2ban/jail.conf : http://pastebin.com/j5FhJzKY I'm asking here because I don't find help on Google, #centos and forums. Cordially, Kévin Koshie GASPARD. It is best if you ask on EPEL(/Fedora) since you installed them from there. There is Maintainers name and e-mail if you need more specific help, but the best solution is to file a bug against their bugtracker (Red Hat's?) -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
2011/11/3 Kévin GASPARD kevingasp...@lavabit.com Hi, To begin I'm sorry for my poor English level, that's not my first language. On CentOS 6 I've installed fail2ban 0.8.4 from EPEL repository. I've configured it with this page : http://centoshelp.org/security/fail2ban/ Then I've tried this command : chkconfig --level 23 fail2ban on service fail2ban start but the output says it fallen, nothing more. The status option says is stopped. Also I don't have log for it and no manual page (for the latest, this is normal ?). This is my /etc/fail2ban/jail.conf : http://pastebin.com/j5FhJzKY I'm asking here because I don't find help on Google, #centos and forums. Cordially, Kévin Koshie GASPARD. Config, seems to be fine. Please, can you paste the exact error when you try to start the service? -- Diego - Yo no soy paranoico! (pero que me siguen, me siguen) | http://about.me/diegors/bio Vivo gracias al SL, pero los talibanes, merecen un wipe ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
Le 04/11/2011 10:42, Ljubomir Ljubojevic a écrit : Vreme: 11/04/2011 03:18 AM, Kévin GASPARD piše: Hi, To begin I'm sorry for my poor English level, that's not my first language. On CentOS 6 I've installed fail2ban 0.8.4 from EPEL repository. I've configured it with this page : http://centoshelp.org/security/fail2ban/ Then I've tried this command : chkconfig --level 23 fail2ban on service fail2ban start but the output says it fallen, nothing more. The status option says is stopped. Also I don't have log for it and no manual page (for the latest, this is normal ?). This is my /etc/fail2ban/jail.conf : http://pastebin.com/j5FhJzKY I'm asking here because I don't find help on Google, #centos and forums. Cordially, Kévin Koshie GASPARD. It is best if you ask on EPEL(/Fedora) since you installed them from there. There is Maintainers name and e-mail if you need more specific help, but the best solution is to file a bug against their bugtracker (Red Hat's?) I've an idea, compile fail2ban 0.8.4 to see where is the problem : From EPEL or from fail2ban dev. I will do that this week-end or next monday. Anyway I will see that :). Thank you. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
Le 04/11/2011 11:47, Diego Sanchez a écrit : 2011/11/3 Kévin GASPARDkevingasp...@lavabit.com Hi, To begin I'm sorry for my poor English level, that's not my first language. On CentOS 6 I've installed fail2ban 0.8.4 from EPEL repository. I've configured it with this page : http://centoshelp.org/security/fail2ban/ Then I've tried this command : chkconfig --level 23 fail2ban on service fail2ban start but the output says it fallen, nothing more. The status option says is stopped. Also I don't have log for it and no manual page (for the latest, this is normal ?). This is my /etc/fail2ban/jail.conf : http://pastebin.com/j5FhJzKY I'm asking here because I don't find help on Google, #centos and forums. Cordially, Kévin Koshie GASPARD. Config, seems to be fine. Please, can you paste the exact error when you try to start the service? The output of service fail2ban start in root (that's in french) : Démarrage de fail2ban :[ÉCHOUÉ] Like I said, about the start up it's a fail. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
On 11/04/2011 12:48 PM, Kévin GASPARD wrote: The output of service fail2ban start in root (that's in french) : Démarrage de fail2ban :[ÉCHOUÉ] The docs on the fail2ban website also say how you can start fail2ban manually (at http://www.fail2ban.org/wiki/index.php/MANUAL_0_8#Usage): $ fail2ban-client start Maybe starting it that way gives you more information why it fails. Regards, Patrick ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] packagekit
Packagekit is added to the System-Preferences-startup folder. what command line method do I use to remove that from the startup list? I need to do it automatically not manually. Thanks, Jerry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
Le 04/11/2011 12:54, Patrick Lists a écrit : On 11/04/2011 12:48 PM, Kévin GASPARD wrote: The output of service fail2ban start in root (that's in french) : Démarrage de fail2ban :[ÉCHOUÉ] The docs on the fail2ban website also say how you can start fail2ban manually (at http://www.fail2ban.org/wiki/index.php/MANUAL_0_8#Usage): $ fail2ban-client start Maybe starting it that way gives you more information why it fails. Regards, Patrick ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Hi, [root@turing lighttpd]# fail2ban-client start WARNING 'action' not defined in 'php-url-fopen'. Using default value WARNING 'action' not defined in 'lighttpd-fastcgi'. Using default value ERROR Error in action definition ERROR Errors in jail 'lighttpd-fastcgi'. Skipping... Cordially ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
On 11/04/2011 01:24 PM, Kévin GASPARD wrote: [snip] $ fail2ban-client start Maybe starting it that way gives you more information why it fails. Hi, [root@turing lighttpd]# fail2ban-client start WARNING 'action' not defined in 'php-url-fopen'. Using default value WARNING 'action' not defined in 'lighttpd-fastcgi'. Using default value ERROR Error in action definition ERROR Errors in jail 'lighttpd-fastcgi'. Skipping... It seems you have errors in those 2 configs. Fix those 2 configs. If you don't know how to then check the manual on the fail2ban website. Regards, Patrick ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can't run fail2ban 0.8.4 [CentOS 6]
On 11/4/2011 8:24 AM, Kévin GASPARD wrote: Le 04/11/2011 12:54, Patrick Lists a écrit : On 11/04/2011 12:48 PM, Kévin GASPARD wrote: The output of service fail2ban start in root (that's in french) : Démarrage de fail2ban :[ÉCHOUÉ] The docs on the fail2ban website also say how you can start fail2ban manually (at http://www.fail2ban.org/wiki/index.php/MANUAL_0_8#Usage): $ fail2ban-client start Maybe starting it that way gives you more information why it fails. Regards, Patrick ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Hi, [root@turing lighttpd]# fail2ban-client start WARNING 'action' not defined in 'php-url-fopen'. Using default value WARNING 'action' not defined in 'lighttpd-fastcgi'. Using default value ERROR Error in action definition ERROR Errors in jail 'lighttpd-fastcgi'. Skipping... Cordially Yeah... I was thinking that was the problem. I'm running Fail2Ban and I think I got it from EPEL, on CentOS 6 without problems. Looks like you need to kill off some of your jail confs and then turn them on and tune them one by one. Fail2Ban relies on logging and even certain log levels being run from the services you are checking. I found the default Fail2Ban install worked very well on a default webserver/mailserver install. There were a number of things that I needed to do to turn on other checks. And I have customized even further. For instance, I subscribe to Spamhaus. I use the spamhaus maillog entries to look for repeated attempts to one or more domains and after so many, block the offender at the firewall. Saves a lot of server load and 'seems' to make these folks give up on my systems to some extent. So, turn off most of the event triggers and then turn them back on one at a time. Then edit the rules as needed or set log levels on the service being checked to give the output needed to work with the rule. -- John Hinton 877-777-1407 ext 502 http://www.ew3d.com Comprehensive Online Solutions ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] packagekit
Vreme: 11/04/2011 01:15 PM, Jerry Geis piše: Packagekit is added to the System-Preferences-startup folder. what command line method do I use to remove that from the startup list? I need to do it automatically not manually. Thanks, Jerry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos When you click on it you should have button Remove on the right (Add, Remove, Edit). If you only want to temporary disable it, you can un-check it. -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Knowledge Base Software
Hi there -- I have set up several of that type of server for our department. The software that I have used is the Joomla Content Management Software as the website with the DocMan utility as the 'engine' for the knowledgebase. If you have any questions, please let me know. -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Camron W. Fox Sent: Thursday, November 03, 2011 11:20 PM To: CentOS mailing list Subject: [CentOS] Knowledge Base Software Alle, We recently received a requirement to implement a KB/FAQ solution that must: Web based Be searchable Allow registration of users Keep a history of user queries Allow new queries sent to subject matter experts via email and receive email updates when answers have been posted. Something along the lines of what CAP does using RightNow. Does anyone have any opensource suggestions for this kind of solution? Best Regards, Camron -- Camron W. Fox Hilo Office High Performance Computing Group Fujitsu Management Services of America, Inc. E-mail: cw...@us.fujitsu.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos The information in this e-mail is intended only for the person to whom it is addressed. If you believe this e-mail was sent to you in error and the e-mail contains patient information, please contact the Partners Compliance HelpLine at http://www.partners.org/complianceline . If the e-mail was sent to you in error but does not contain patient information, please contact the sender and properly dispose of the e-mail. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 6 updating policy
I am migrating from debian to RHEL (CentOS) and I am wondering how the CentOS 6 updating system works. Suppose I install CentOS 6.1 now. Suppose in 8 months CentOS 6.2 is released. Now I issue a yum update, so my system will be updated to CentOS 6.2, or I will have an updated 6.1 ? What if I have been issuing yum update very day just to be sure there are no packages with urgent security bugs ? I am having a very updated 6.1 or an almost 6.2 ? Or are they the same thing ? I think that during this time I should be using Continous Release repository, right ? Also, which is the policy regarding new versions of software, kernel and libs ? The bugfixes will be backported or there will be major differences between, let’s say, 6.1 and 6.4 ? I couldn’t find all of these question properly answered in the FAQs Thanks in advance. Regards, David ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
David McGiven wrote: I am migrating from debian to RHEL (CentOS) and I am wondering how the CentOS 6 updating system works. Welcome, then. Suppose I install CentOS 6.1 now. Suppose in 8 months CentOS 6.2 is released. Now I issue a yum update, so my system will be updated to CentOS 6.2, or I will have an updated 6.1 ? 6.2 Yum does subreleases without a hitch (mostly). snip mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] packagekit
When you click on it you should have button Remove on the right (Add, Remove, Edit). If you only want to temporary disable it, you can un-check it. I realize that - I specifically stated I need a command line method to remove it. I need it do be done automatically not manually. Thanks, Jerry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
On 11/4/2011 9:24 AM, David McGiven wrote: I am migrating from debian to RHEL (CentOS) and I am wondering how the CentOS 6 updating system works. Suppose I install CentOS 6.1 now. Suppose in 8 months CentOS 6.2 is released. yum update will pull in the new version and install it and update your release from 6.1 to 6.2. (if there were a 6.1... it might get skipped and 6.0 will update to 6.2) Now I issue a yum update, so my system will be updated to CentOS 6.2, or I will have an updated 6.1 ? It will be 6.2 What if I have been issuing yum update very day just to be sure there are no packages with urgent security bugs ? I am having a very updated 6.1 or an almost 6.2 ? Or are they the same thing ? I think that during this time I should be using Continous Release repository, right ? Yes, CR is optional but to me important. Also, which is the policy regarding new versions of software, kernel and libs ? The bugfixes will be backported or there will be major differences between, let’s say, 6.1 and 6.4 ? Security issues are almost always backported. Almost always on a CentOS major release, anything installed such as website scripts will work throughout the entire 7 year cycle of minor releases. This is the main beauty of CentOS, and also the main drawback. Sometimes clients want something newer... for instance PHP 5.3. It was not available via upstream until the release of 6 and the last minor release of 5 (although that was to me a sad attempt). So, there will be some gripes at times, but since you haven't broken their stuff during the major release cycle... what is better? And, you can always customize a system, but often times reliability will suffer somewhere along the line. I couldn’t find all of these question properly answered in the FAQs Basically it is just really easy and happens during yum update. Minor releases are times when the largest changes are made, but again, rarely do they actually break anything. I think I still have enough fingers on my hands to count the issues over the last 15 or so years when something client side broke in a server environment. Non-upstream repositories... not so much. But in fairness, some of these repositories provide packages that make core changes, like an entirely new conf file and one must go fix these. Upstream seems to operate under never forcing a replacement conf file... In other words, the service will generally continue to operate without admin intervention. John Hinton Thanks in advance. Regards, David ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- John Hinton 877-777-1407 ext 502 http://www.ew3d.com Comprehensive Online Solutions ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
Vreme: 11/04/2011 02:24 PM, David McGiven piše: I am migrating from debian to RHEL (CentOS) and I am wondering how the CentOS 6 updating system works. Welcome. In first part I will explain normal process, without CR repository (which changes things). Suppose I install CentOS 6.1 now. Suppose in 8 months CentOS 6.2 is released. Yum update is continuous process. So far (or at present) only way is that you will be upgraded to latest minor point-release (.1, .2,...). Now I issue a yum update, so my system will be updated to CentOS 6.2, or I will have an updated 6.1 ? In your example, you would have 6.2 when yum update is finished. Sometimes yum upgrade is recommended, but only if you are advised in Release Notes for given point release. What if I have been issuing yum update very day just to be sure there are no packages with urgent security bugs ? I am having a very updated 6.1 or an almost 6.2 ? Or are they the same thing ? I think that during this time I should be using Continous Release repository, right ? There are normal updates against every point release, like updates against 6.0 until 6.1 is released, then updates until 6.2, etc. So just very updated 6.1 in your example. Point releases are mostly used to bring new kernel/hardware support (drivers), new versions of core packages (rarely), or new technologies. Updates between point releases will only (in most cases) contain bugfixes. Also, which is the policy regarding new versions of software, kernel and libs ? The bugfixes will be backported or there will be major differences between, let’s say, 6.1 and 6.4 ? Upstream changes (mostly) versions of packages only if there is compelling reason to do so. Whole point is to have unchanged system that will behave the same as previous point releases. Of course, there are deviations from this policy, but as small and as rare as possible. So short answer is backported bugfixes (even in kernel) and as small changes as possible, unless gains are overwhelming and do not brake anything. -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
Vreme: 11/04/2011 02:24 PM, David McGiven piše: I should be using Continous Release repository, right ? I forgot CR explanation. CR repository is means to update gradually to next point release because building upstream's (RH) packages with binary compatibility became very difficult. So to avoid holding back numerous easy to build packages that enhance and stabilize system, not to mention security fixes, CentOS dev's adopted CR repository. Note that RHEL does not have CR repo, it is specific to it's clones (CentOS, SL). There is discussion in process, to create dual options, 1. with CR repo enabled by default, and 2. Separate frozen poin releases (6.0 with all updates UNTIL 6.1 was released, etc.) -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] packagekit
Vreme: 11/04/2011 02:39 PM, Jerry Geis piše: When you click on it you should have button Remove on the right (Add, Remove, Edit). If you only want to temporary disable it, you can un-check it. I realize that - I specifically stated I need a command line method to remove it. I need it do be done automatically not manually. Sorry, my bad. 30 sec of Google search gave: http://ubuntuforums.org/showthread.php?t=1067101 -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
On Friday 04 November 2011 13:24:32 David McGiven wrote: I am migrating from debian to RHEL (CentOS) and I am wondering how the CentOS 6 updating system works. Suppose I install CentOS 6.1 now. Suppose in 8 months CentOS 6.2 is released. Now I issue a yum update, so my system will be updated to CentOS 6.2, or I will have an updated 6.1 ? It would be updated to 6.2. What if I have been issuing yum update very day just to be sure there are no packages with urgent security bugs ? I am having a very updated 6.1 or an almost 6.2 ? Or are they the same thing? AFAIK, they would be the same thing. I wouldn't know of any major difference between a very updated 6.1 and almost 6.2. But I may be wrong here, I'm not a CentOS developer. :-) I think that during this time I should be using Continous Release repository, right ? This is more complicated. The story above would be the usual way of working, and it indeed is for CentOS 4 and 5. They do not have the CR repository. However, for CentOS 6 there is an additional quirk --- once the upstream (that is, Red Hat) releases a new point release (say, 6.1), it naturally stops providing updates for the previos point release (say, 6.0), expects everyone to just update to 6.1 and receive updates to that from now on. The problem is that for version 6 CentOS devs have a hard time finishing the CentOS rebuild of the new release (6.1), so the CentOS 6 users stay on 6.0, and stop receiving any updates for it, because upstream doesn't provide any anymore. The CR repo is used for those situations --- it provides updates to CentOS 6.0 which were supposed to be updates for CentOS 6.1, if CentOS 6.1 had existed at the time of issuing the update. The bottom line is --- if you use the CR repo, you'll have an up-to-date CentOS 6 system as possible, regardless of the minor version number still being 0. This is *less* updated than the upstream's 6.1 system, because of the mentioned problems with rebuilding certain packages. If you believe these missing updates are so very crucial for your system, go buy Red hat and you'll be provided with those. Otherwise, use the CR repo and wait for the CentOS devs to finish building them. Eventually, when the 6.1 build of CentOS becomes complete, version numbers will be back in sync with what is actually installed on your system (via an ordinary yum update), and your syste will be an up-to-date 6.1, regardless of whether or not you have used the CR repo in the meantime. The CR repository will become empty at that time. So, yes, you probably want to use the CR repository until 6.1 is finished. Maybe there will be a lag for 6.2 release as well, and then there will be the CR repo again for the same reasons. Also, which is the policy regarding new versions of software, kernel and libs ? The bugfixes will be backported or there will be major differences between, let’s say, 6.1 and 6.4 ? AFAIK, most of the software is kept on the single version, but there might be some exceptions. For example the kernel version will be fixed throughout the 6.x releases, and all bugfixes and the rest will be backported. I don't know exactly about the exceptions, but I think I remember that firefox version may be bumped within 6.x releases, or something like that... I couldn’t find all of these question properly answered in the FAQs CentOS follows exactly the release strategy of upstream. You probably want to look up the FAQ of RedHat. :-) HTH, :-) Marko ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] openvpn + bridge utils in CentOS 6
28.09.2011, 04:58, 唐建伟 myh...@gmail.com: Hello, I didn't find what to answer to you mounth ago. But now I also have an installation of centos 6 (at past I used centos 5.7) , and I have the same problems as you. First of all, did you find any solutions? I only found that the problem is in br0 device. I can't guess why but it not recive ARP REPLY packets. tcpdump on all devices (tap0, eth1, br0) give me the same: 20:12:22.012270 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, length 28 20:12:23.027897 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, length 28 20:12:24.027951 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, length 28 //192.158.11.33 is remoute PC ip-address, and 192.168.11.3 is one of my local hosts// and no APR REPLY. Intresting that on other hand I have the same configs files on Centos 5.7. and everything work perfectly. no, i removed the commands you mentioned, but it still doesn't work. Best Regards Tang Jianwei On Tue, Sep 27, 2011 at 6:01 PM, Минтаиров Михаил mikxal...@yandex.ruwrote: I can't remember a reason, but at one moment I stop to use openvpn --mktun --dev [dev name] command. May be it's becouse openvpn create tap0 by it self. So try to comment this lines: for t in $tap; do openvpn --mktun --dev $t done then restart a network, after then start openvpn and after it start bridge script openvpn configure file *port 1194 proto udp dev tap0 ca ca.crt cert VPN_Server.crt key VPN_Server.key # This file should be kept secret dh dh1024.pem server-bridge 192.168.119.1 255.255.255.0 192.168.119.221 192.168.119.225 keepalive 10 120 comp-lzo user nobody group nobody persist-key persist-tun status openvpn-status.log log-append /var/log/openvpn.log verb 3 mute 20 * the script for bring up the bridge *# Define Bridge Interface br=br0 # Define list of TAP interfaces to be bridged, # for example tap=tap0 tap1 tap2. tap=tap0 # Define physical ethernet interface to be bridged # with TAP interface(s) above. eth=eth1 eth_ip=192.168.119.1 eth_netmask=255.255.255.0 eth_broadcast=192.168.119.255 for t in $tap; do openvpn --mktun --dev $t done brctl addbr $br brctl addif $br $eth for t in $tap; do brctl addif $br $t done for t in $tap; do ifconfig $t 0.0.0.0 promisc up done ifconfig $eth 0.0.0.0 promisc up ifconfig $br $eth_ip netmask $eth_netmask broadcast $eth_broadcast* On Tue, Sep 27, 2011 at 5:20 PM, Минтаиров Михаил mikxal...@yandex.ru wrote: Hm... It's very hard to guess without config files. Can you post your server and client openvpn configs... and also can your show a br0 creation commands? 27.09.2011, 12:01, 唐建伟 myh...@gmail.com: Hi no, i don't think so. anyway, i can and only can the vpn server from the remote hosts. Best Regards Tang Jianwei On Tue, Sep 27, 2011 at 3:59 PM, Минтаиров Михаил mikxal...@yandex.ru wrote: So, something stop packets from remote hosts. May be firewall on remote PC...? and can you run tcpdump on same remote host, to check that it's tap0 device. 27.09.2011, 11:06, 唐建伟 myh...@gmail.com: Hi the routing table in the remote hosts are OK. tcpdump -n -i [device name] cannot capture any packages from remote. no mater br0 nor tap0. Best Regards Tang Jianwei On Tue, Sep 27, 2011 at 2:44 PM, Минтаиров Михаил mikxal...@yandex.ru wrote: 27.09.2011, 09:52, 唐建伟 myh...@gmail.com: Hi all, I just intalled openvpn + bridge in CentOS 6, but i get strange problems: the remote PCs cannot get the local PCs' MACs and also, the local PCs cannot get the remote PCs' MACs but when i run brctl showmacs br0 it will list all the MACs and also brctl show will show that all the correct adapters are in br0 SELinux disabled any ideas? First of all you should check routing table of remote hosts. If everything is correct, try to monitor br0, and other devises(ethX) by tcpdump -n -i [device name]. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Tang Jianwei System Administrator ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Tang Jianwei System Administrator ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
On 11/04/11 7:26 AM, Marko Vojinovic wrote: What if I have been issuing yum update very day just to be sure there are no packages with urgent security bugs ? I am having a very updated 6.1 or an almost 6.2 ? Or are they the same thing? AFAIK, they would be the same thing. I wouldn't know of any major difference between a very updated 6.1 and almost 6.2. when you run `yum update` just before 6.2 is released, you'll have a very updated 6.1. when you run it after 6.2 is released, you'll have a 6.2 plus any patches released since 6.2 was rolled up. the 'numbered' releases just represent roll ups of patches that are bundled onto a new set of installation media. 6.1, 6.2, etc represent a snapshot. -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6 updating policy
Greetings, On Fri, Nov 4, 2011 at 10:27 PM, John R Pierce pie...@hogranch.com wrote: On 11/04/11 7:26 AM, Marko Vojinovic wrote: the 'numbered' releases just represent roll ups of patches that are bundled onto a new set of installation media. 6.1, 6.2, etc represent a snapshot. If you are from M$ world, treat them as Service Packs -- Regards, Rajagopal ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] coordinated NIS and LDAP servers
Hello listmates, We are currently running NIS for authentication but would like to migrate to LDAP. Thing is, though, that some of the machines that authenticate via NIS are so old I'd rather not even touch them. Hence the question - is there a good way to have an NIS server for user authentication that is a mirror image of an LDAP server, with a proviso that an update introduced there is replicated in the LDAP server's databases? Thanks. Boris. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] coordinated NIS and LDAP servers
Hence the question - is there a good way to have an NIS server for user authentication that is a mirror image of an LDAP server, with a proviso that an update introduced there is replicated in the LDAP server's databases? I don't know of any syncing mechanisms between an existing NIS environment and an existing LDAP environment, but if you are willing to migrate to something new that provides both, you might try FreeIPA. http://freeipa.org/page/NIS_Compatibility -- Jonathan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Odd ethernet interface
Hello, I have a CentOS 6 VM on a CentOS 6 host. This VM has two ethernet interfaces, eth0 and eth1. It was working nice. All of a sudden eth1 stopped working as expected. Kernel started to give the message below: kernel: udev: renamed network interface eth2 to eth2-eth1 There is no any eth2 or eth2-eth1 in /etc/sysconfig/network-scripts/. I really don't know where it is coming from. config -a: eth0 Link encap:Ethernet HWaddr 52:54:00:E0:5A:C5 inet addr:10.0.0.32 Bcast:10.255.255.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:8293 errors:0 dropped:0 overruns:0 frame:0 TX packets:6440 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:831687 (812.1 KiB) TX bytes:6358220 (6.0 MiB) eth1 Link encap:Ethernet HWaddr 52:54:00:B5:B6:D1 inet addr:192.168.2.2 Bcast:192.168.2.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:20 errors:0 dropped:0 overruns:0 frame:0 TX packets:11 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:934 (934.0 b) TX bytes:462 (462.0 b) eth2-eth1 Link encap:Ethernet HWaddr 52:54:00:B5:B6:D1 BROADCAST MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b) loLink encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:37 errors:0 dropped:0 overruns:0 frame:0 TX packets:37 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:3642 (3.5 KiB) TX bytes:3642 (3.5 KiB) And below is /etc/udev/rules.d/70-persistent-net.rules: # net device () (custom name provided by external tool) SUBSYSTEM==net, ACTION==add, DRIVERS==?*, ATTR{address}==52:54:00:e0:5a:c5, ATTR{type}==1, KERNEL==eth*, NAME=eth0 # net device () SUBSYSTEM==net, ACTION==add, DRIVERS==?*, ATTR{address}==52:54:00:b5:b6:d1, ATTR{type}==1, KERNEL==eth*, NAME=eth1 Here is the relevant excerpt from the xml on the host: interface type='bridge' mac address='52:54:00:e0:5a:c5'/ source bridge='br0'/ model type='virtio'/ address type='pci' domain='0x' bus='0x00' slot='0x03' function='0x0'/ /interface interface type='bridge' mac address='52:54:00:b5:b6:d1'/ source bridge='br1'/ model type='virtio'/ address type='pci' domain='0x' bus='0x00' slot='0x07' function='0x0'/ /interface I really don't understand what is really going on. I would appreciate any help hint. All the best. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd ethernet interface
Vreme: 11/05/2011 01:10 AM, Mufit Eribol piše: Hello, I have a CentOS 6 VM on a CentOS 6 host. This VM has two ethernet interfaces, eth0 and eth1. It was working nice. All of a sudden eth1 stopped working as expected. Kernel started to give the message below: kernel: udev: renamed network interface eth2 to eth2-eth1 There is no any eth2 or eth2-eth1 in /etc/sysconfig/network-scripts/. I really don't know where it is coming from. Your eth1 is being automaticaly renamed to eth2-eth1 for some reason. Have you changed anything in config(s) connected to eth1? Are name and device name in ifcfg-ethX consistent? Have you reshufled your configs and left loose end somewhere? Do you maybe have NetworkManager still active? -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe Google is the Mother, Google is the Father, and traceroute is your trusty Spiderman... StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd ethernet interface
On 11/04/11 5:32 PM, Ljubomir Ljubojevic wrote: Do you maybe have NetworkManager still active? is there any documentation on how to work with NetworkManager in shell-only mode? the RHEL manuals I looked at all seemed to assume you're running a GUI console, which I never do on my servers. -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] coordinated NIS and LDAP servers
On Fri, Nov 4, 2011 at 6:55 PM, Jonathan Nilsson jnils...@uci.edu wrote: Hence the question - is there a good way to have an NIS server for user authentication that is a mirror image of an LDAP server, with a proviso that an update introduced there is replicated in the LDAP server's databases? I don't know of any syncing mechanisms between an existing NIS environment and an existing LDAP environment, but if you are willing to migrate to something new that provides both, you might try FreeIPA. http://freeipa.org/page/NIS_Compatibility -- Jonathan Jonathan, Thank you very much, this sounds like an excellent idea! Boris. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd ethernet interface
On Fri, 04 Nov 2011 17:42:03 -0700 John R Pierce pie...@hogranch.com wrote: is there any documentation on how to work with NetworkManager in shell-only mode? the RHEL manuals I looked at all seemed to assume you're running a GUI console, which I never do on my servers. I'd recommend the same treatment for network manager as we used for sendmail all those years back: # yum -y remove NetworkManager And then configure your network the old, verified, stable and trusted way, by editing the ifcfg files. The whole idea of having something running on a *server* that can change your networks settings for whatever reason is horribly wrong. To answer your question, there exist something called nm-cli, but I found it to be not of much use. -- Jure Pečar http://jure.pecar.org http://f5j.eu ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd ethernet interface
On 11/04/11 6:29 PM, Jure Pečar wrote: I'd recommend the same treatment for network manager as we used for sendmail all those years back: # yum -y remove NetworkManager And then configure your network the old, verified, stable and trusted way, by editing the ifcfg files. The whole idea of having something running on a *server* that can change your networks settings for whatever reason is horribly wrong. great. how do I do dhcp (client) without NetworkManager ? Most all my lab servers are configured via DHCP reservations. and where IS the docs on what-all goes in ifcfg-eth0 or whatever now days? again, the RHEL6 manuals seem to skip over these details. -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd ethernet interface
John R Pierce wrote: On 11/04/11 6:29 PM, Jure Pečar wrote: I'd recommend the same treatment for network manager as we used for sendmail all those years back: # yum -y remove NetworkManager And then configure your network the old, verified, stable and trusted way, by editing the ifcfg files. The whole idea of having something running on a *server* that can change your networks settings for whatever reason is horribly wrong. great. how do I do dhcp (client) without NetworkManager ? Most all my lab servers are configured via DHCP reservations. and where IS the docs on what-all goes in ifcfg-eth0 or whatever now days? again, the RHEL6 manuals seem to skip over these details. BOOTPROTO=dhcp it's documented same as in previous versions in /usr/share/doc/initscripts-*/sysconfig.txt ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos