Re: [CentOS] NFS Stale file handle drives me crazy (Centos 6)

[Ted Miller]

On 04/02/2015 09:03 AM, Götz Reinicke - IT Koordinator wrote:

Hi folks,

I have a Centos 6 NFS server, which dirves me crazy.

The directory I try to export cant be accessed by different clients.

I tried a centos 7, centos 6 and a pool of vmware esxi 5.5 systems.

At the client side I get errors like:

mount.nfs: Stale file handle

or Sysinfo set operation VSI_MODULE_NODE_mount failed with the tatus
Unable to query remote mount point's attributes.


On the server I get messages in the log like

svc: 172.17.252.35, port=851: unknown version (0 for prog 13, nfsd)

rpc.mountd[1927]: authenticated mount request from 


A good place to start on an issue like this would be to include your entire
smb.conf file.  Since you tried across three different Centos versions, It 
is likely either the configuration or the clients that are the problem.




The curious thing is, that other directories exported on the same
filesysten can be exported.


Can they be used by the same clients that are trying to use the /home/stuff
directories, or are the clients for the two directories different?



so /home/stuff works /home/students fails. chmode 777 is set,
/etc/exports is double checked. nfs/rpc/etc is up and running. selinux &
firewall for debugging off.

I use xfs on all shared filesystems.

Googling for VMWARE and native NFS suggestions did not help so far :-/

Any hint or suggestion is very very welcome! Regard & thanks . Götz

Ted Miller
Elkhart, IN, USA



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] video problem since 2015-04-01 update

[Jay Warren]

I am getting the same problem as the OP but I am on nvidia. 
 
-Original message-
From:Bill Maltby (C4B) 
Sent:Sat 04-04-2015 12:32 pm
Subject:Re: [CentOS] video problem since 2015-04-01 update
To:centos@centos.org; 
On Sat, 2015-04-04 at 11:24 -0500, Francis Gerund wrote:
> Is there a way in Centos 7 to boot into an alternate video setup?
Check the kernel parameters - ISTR long ago using a paramer to the
kernel added to the grub boot line that had one of my machines go into
VESA mode. ISTR some numbers after "=" that specied which VESA mode to
use to get better resolution (more lines/screen).

> 
> 

Bill

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] The future of centos

[Always Learning]

On Sun, 2015-04-05 at 21:27 +0300, Eero Volotinen wrote:


> If this is a problem, just pick another RHEL clone like Scientific Linux ?

I thought I read on this List the intention of Scientific to base its
future distribution on Red Hat's Centos product.


-- 
Regards,

Paul.
England, EU.  Je suis Charlie.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] The future of centos

[Eero Volotinen]

2015-04-04 4:01 GMT+03:00 Francis Gerund :

> Almost everyone here has probably read this by now. If so, move along,
> nothing new here.  But just in case you haven't, please take the time to
> read this.
>
> Here it is, in their own words:  what Redhat thinks of Centos, and it's
> plans for the future of Centos.
>
> Can you read between the lines?  In this case, it isn't very hard to do,
> IMHO.
>

If this is a problem, just pick another RHEL clone like Scientific Linux ?

--
Eero
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] The future of centos

[Always Learning]

On Sat, 2015-04-04 at 20:12 -0700, John R Pierce wrote:

> On 4/4/2015 8:10 PM, dE wrote:
> >
> > If you guys have that much of a problem with CentOS/RedHat 
> > collaboration, why not just move on things like Debian, arch, Suse etc... 
> 
> they just like to whine.

If the *whole* truth had been told to the public (i.e. "us") at the
first mention of the RH take-over, including the divergence away from RH
versions and the RH dominated management board controlling the now Red
Hat owned Centos product, then significant qualities of our time and
energy could have been more usefully spent on other things.

Reading about C7 problems and systemd, sysctrld etc., I now wish I never
threw away (for recycling) my 1990's purchase of a FreeBSD technical
manual.

Above all, I want stability in a product. Once I have learned increasing
amounts of a product, I am adverse to replacing that knowledge with
tomorrow's new versions especially if - for me - those alleged
"improvements" offer me no beneficial advantage.

I like C5 and C6 and hope the BSDs systems are similar.


-- 
Regards,

Paul.
England, EU.  Je suis Charlie.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Selinux issues with 7.1 update

[Joseph L. Casale]

I am trying to update some local policies for bacula that allow a
series of clients with pre run scripts to su in order to perform some
preparatory work for a backup.

With selinux enforcing, the su is denied obviously execute as
bacula_t tries su_exec_t. You only see this with enforcing enabled?

So creating an initial policy for that (this is not the way to do this)
allows one more avc to appear for execute_no_ as bacula_t tries
su_exec_t again.

The problem is once these are enabled with local policies they seem
to be ignored producing the same avc's.

Why are the initial avc's not generated in permissive allowing a
complete policy to be derived? If they can't appear in permissive
mode, even after playing wackamole with avc's one by one, there
is no resolution as they continue to get denied.

Anyone else seeing similar or know what I am missing? Bacula-fd
runs as root/root.

Thanks,
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Access Problem after update to CentOS 7.1

[Gregory P. Ennis]

On Sun, 2015-04-05 at 16:53 +0200, Andrea Dell'Amico wrote:
> > On 05 Apr 2015, at 14:35, Gregory P. Ennis  wrote:
> > I sure need some help on this one, if any of you have ideas of what to
> > do next I would surely appreciate it.  An additional aspect of this
> > scenario is that when I have used ssh to connect to this mail server via
> > the internal network, I am able to ssh out of the machine to one of the
> > internal networks or remotely to a different network.   If no one else
> > has had this problem with 7.1 then it is obviously something I have
> > done, but right now I am at a loss.
> 
> Assuming that the mail server’s routing table is correct, you will need some 
> tcpdump to understand if the packets from outside reach the server (and then 
> it discards them).
> 
> I would do this:
> 1. Ensure that the mail server still has a valid default gateway and a 
> correct routing table
> 2. start tcpdump on the gateway
> 3. start tcpdump on the mail server
> 4 Try to connect to the mail server from outside.
> 
> > Greg
> 
> Ciao,
> Andrea (just upgraded some servers, no problems)
> 
> --
> Andrea Dell'Amico
> http://adellam.sevenseas.org/
> 
> 
Andrea,

Thank you very much, I have always wanted to learn how to use that tool.
Looks like I have a good opportunity.  Thanks for giving me the
framework as to how to use it.

Greg

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Fail2Ban Centos 7 is there a trick to making it work?

[Andrea Dell'Amico]

> On 30 Mar 2015, at 13:35, John Horne  wrote:
> 
> On Tue, 2015-03-10 at 14:43 +0100, Andrea Dell'Amico wrote:
>> 
>> #= logrotate_t ==
>> allow logrotate_t fail2ban_client_exec_t:file { ioctl read execute
>> execute_no_trans open };
>> 
> Looks like this was already fixed in 'selinux-policy'. See
> https://bugzilla.redhat.com/show_bug.cgi?id=1114821

Thanks.
I didn’t notice that bug, and the changelog didn’t report anything about 
fail2ban.

> John.

Ciao,
andrea
--
Andrea Dell'Amico
http://adellam.sevenseas.org/





signature.asc
Description: Message signed with OpenPGP using GPGMail
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Access Problem after update to CentOS 7.1

[Andrea Dell'Amico]

> On 05 Apr 2015, at 14:35, Gregory P. Ennis  wrote:
> I sure need some help on this one, if any of you have ideas of what to
> do next I would surely appreciate it.  An additional aspect of this
> scenario is that when I have used ssh to connect to this mail server via
> the internal network, I am able to ssh out of the machine to one of the
> internal networks or remotely to a different network.   If no one else
> has had this problem with 7.1 then it is obviously something I have
> done, but right now I am at a loss.

Assuming that the mail server’s routing table is correct, you will need some 
tcpdump to understand if the packets from outside reach the server (and then it 
discards them).

I would do this:
1. Ensure that the mail server still has a valid default gateway and a correct 
routing table
2. start tcpdump on the gateway
3. start tcpdump on the mail server
4 Try to connect to the mail server from outside.

> Greg

Ciao,
Andrea (just upgraded some servers, no problems)

--
Andrea Dell'Amico
http://adellam.sevenseas.org/





signature.asc
Description: Message signed with OpenPGP using GPGMail
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] The future of centos

[Valeri Galtsev]

On Sat, April 4, 2015 10:12 pm, John R Pierce wrote:
> On 4/4/2015 8:10 PM, dE wrote:
>>
>> If you guys have that much of a problem with CentOS/RedHat
>> collaboration, why not just move on things like Debian, arch, Suse
>> etc...
>
> they just like to whine.
>

Some did move to other systems (even away from Linux totally; somehow many
assume choices are Linux only). You will not hear them here anymore. I
recognize them on other systems mail lists often. Some still comment
(lightly), but not because all of them (us I might say) like to whine. No,
just to provide feedback, which is courtesy actually as we gain nothing
(but slaps: "you like to whine!"). Don't get me wrong, significant split
of my systems are and stay CentOS ;-)

Valeri


Valeri Galtsev
Sr System Administrator
Department of Astronomy and Astrophysics
Kavli Institute for Cosmological Physics
University of Chicago
Phone: 773-702-4247

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] perf trace

[Александр Кириллов]

# perf trace
perf: 'trace' is not a perf-command. See 'perf --help'.

Should 'perf trace' work in C6.6 or
this is a bug related to 
https://bugzilla.redhat.com/show_bug.cgi?id=892893?


# rpm -qa perf
perf-2.6.32-504.12.2.el6.x86_64

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Access Problem after update to CentOS 7.1

[Gregory P. Ennis]

On Sat, 2015-04-04 at 16:47 -0500, Gregory P. Ennis wrote:
> Everyone,
> 
> This morning I did a manual yum update on our a mail server to 7.1
> without any incident or problems.  A new kernel was installed, and I
> rebooted after the update.  
> 
> When I rebooted the machine I could not gain ssh access to it from an
> external ip address.  I was able to ssh to this mail server through a
> different machine on the local network.  
> 
> At first I thought the problem was related to the firewall.  I stopped
> firewalld, and fail2ban, and clear all firewall rules without being able
> to gain access.
> 
> I disabled firewalld, and fail2ban.  I enabled iptables and started it
> without a problem, but I could still not gain access.  I removed all
> entries in the host.allow and host.deny files, and this did not make a
> difference either.  
> 
> On one of the various reboots I tried to use the previous kernel before
> today's update, but there was no success.
> 
> I can scan the mail server and reach it without a problem from the
> internal network but I am not able to reach it from outside the local
> network.  I have the mail server behind a Centso 5.11 machine that is
> the gateway router for the internal network, and the mail server is nat
> addressed with it's external ip address to the internal machine.  I have
> had this configuration set up for over 7 years.  I tweaked the Gateway
> router to nat address the mail server's ip address to a different
> machine inside the network and everything worked perfectly like it
> should, and then re-adjusted the gateway router again back to the mail
> server and am not able to gain access from outside the local network.
> 
> "traceroute" does not get to the mail server from outside the local
> network, but works fine inside the local network.
> 
> Bottom line, this does not look like a host.deny, host.allow problem,
> nor does it look like a firewalld or iptables problem.  And it does not
> appear to be a problem with the gateway server.  
> 
> Is there another feature of CentOs 7.1 that I need to evaluate?  Has
> anyone else had this problem after the 7.1 update?
> 
> Thank you for your help
> 
> Greg Ennis
> 
-

I sure need some help on this one, if any of you have ideas of what to
do next I would surely appreciate it.  An additional aspect of this
scenario is that when I have used ssh to connect to this mail server via
the internal network, I am able to ssh out of the machine to one of the
internal networks or remotely to a different network.   If no one else
has had this problem with 7.1 then it is obviously something I have
done, but right now I am at a loss.

Greg

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos