Re: [CentOS] sendmail on Centos 7.7

[Always Learning]

On Fri, 2019-11-22 at 12:20 -0800, John Pierce wrote:

> and, of course...
> 
> $ host smtp-relay.gmail.com


but ...

the originator referred to smtp-relay.gmail.com.com (note the double
"com")


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail on Centos 7.7

[Always Learning]

On Fri, 2019-11-22 at 10:55 -0500, Stephen John Smoogen wrote:

> [smooge@smoogen-laptop ~]$ host -t MX smtp-relay.gmail.com.com
> smtp-relay.gmail.com.com mail is handled by 10 mx203.inbound-mx.org.
> smtp-relay.gmail.com.com mail is handled by 10 mx203.inbound-mx.net.

.w smtp-relay.gmail.com.com

smtp-relay.gmail.com.com has address 79.124.78.105
smtp-relay.gmail.com.com has address 79.124.78.101
smtp-relay.gmail.com.com mail is handled by 10 mx203.inbound-mx.net.
smtp-relay.gmail.com.com mail is handled by 10 mx203.inbound-mx.org.


inetnum:79.124.78.0 - 79.124.78.255
descr:  BlueAngelHost Pvt. Ltd
country:BG => Bulgaria

created:2016-02-17T14:40:17Z
last-modified:  2018-07-17T00:58:15Z
source: RIPE

org-name:   BlueAngelHost Pvt. Ltd
org-type:   OTHER
person: David John
address:house 173. street, 4, E-block, ferozpur Road, Lahore,
Pakistan
phone:  +14074597822 => "407 is principally Orlando, Florida."

Looks dodgy !
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Is there an sshguard script for logwatch?

[Always Learning]

On Thu, 2019-11-21 at 13:44 +0100, Adrian van Bloois wrote:

> I wonder if there is a script to analyze logfiles for llogwatch and
> sshguard?
> Anyone knows?

You can take an existing script, for another piece of software reported
by Logwatch, retain the beginning and ending parts, and create your own
version.  The completed script should be placed in /etc to ensure it is
not over-written by software updates.

It can be difficult sorting-out the names of the different scripts and
their directory locations, but I did it despite being unfamiliar with
the programming language - Python ?

I did it in C5 and C6 for Exim some years ago and the result was ideal
for my requirements.

Happy Christmas to everyone.


Paul.
England belongs in the EU
... and no Donald ! England is NOT for sale!



___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 8 network-scripts

[Always Learning]

On Sat, 2019-10-05 at 15:59 -0400, Lamar Owen wrote:
> Frontpanel, 256 words (12-bit words), and paper tape.  But I also never 
> had that straight-8 on the net, either, but, via uucp, I did have the 
> T6K on Usenet.

My second machine was 9 bits = 8 + parity. 10 years later I was working
on 36 bit words = 4 x 9 bit ACSII = 6 x 6 bit BCD.

In my later computer life, the best thing I ever did, 10 years ago, was
to abandon all m$ and move to C 5.3 which was truly a computer
programmer's dream. Liberating and exhilarating.

chunk, chunk, chunk, ding, 110 baud terminals, then along came Terminets
at a faster 300 baud. Think I can still punch a 80 column card using a
hand punch.

Many now take for granted Centos without fully appreciating how powerful
and empowering it is or the tremendous work done by those creating,
maintaining and testing it and others developing extensions and repos.
Life without Centos would be bleak.

Regards,

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 8 network-scripts

[Always Learning]

On Fri, 2019-10-04 at 11:17 -0400, Lamar Owen wrote:

> On 10/4/19 10:40 AM, Valeri Galtsev wrote:
> > Do not make any changes [in the program] unless they are absolutely
> > necessary.

Especially with production programs.

> Take the transition from horse and buggy to automobile for instance. 
> Iron rim tires work just great for the buggy, not so great for the
> automobile; a change had to be made in an old technology (the wheel) to
> meet the needs of the new automobile.

Technically it was never an "upgrade" but a brand new and alternative
system.

> Just remember: the old ways back then was punch card and batch;

With a minimum of 3 tapes; disks had not been invented. Some British
universities had a magnetic drum. 

> I _am_ old-school in thought, but I do consciously make the effort to 
> understand the newer reasoning, rather than be the greybeard that 
> constantly talks about how I did it in the old days.  Heh, in the old 
> days I made it work with K C, 1MB of RAM, and an 8MHz CPU

Luxury. Try running on a 32k single processor computer, started with
booting the card reader which read cards that booted from a tape.

> Today, I'm doing things with containers, virtualization, dynamic load 
> balancing, software-defined infrastructure/IaaS, etc that the old ways 
> simply cannot handle.

No comparison between 50+ years ago with this constantly developing and
fascinating New World. However KISS remains valid. If it works smoothly,
don't mess it up. 

Regards.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: hardware: sanitizing a dead SSD?

[Always Learning]

On Tue, 2018-05-08 at 15:46 -0400, Stephen John Smoogen wrote:

> SSD disks must be shredded as the data has been written over multiple
> sectors many times to 'even the writes'. This allows for even a 'dead'
> disk to be disassembled with 'off-the-shelf' equipment to extract
> items from the dead places. Depending on the data involved, there may
> be different levels of shredding and destruction of shreds required.

Do SSDs have an inbuilt destroy mechanism, like hard disks do ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] [OFF-TOPIC] Reminder to tighten ALL types of security

[Always Learning]

This posting is off-topic because it is not about Centos. Please
refrain from replying to the list as that will generate further off-topic
traffic inevitably irritating subscribers.

On the balance of probabilities, I think everyone will benefit from
reading at least the first 6 pages of a 19 pages English criminal
sentencing statement about a child, in England, successfully breaking
into the home and business computer systems of top USA CIA, FBI and Homeland
Security entities.

It is shocking and disquieting. Security is more than a firewall and
SELINUX - it is procedures too. When the CIA director is easily hacked
and his family pestered, how safe are you and your systems ?

In the Crown Court at Leicester (England)
The Queen versus Kane Gamble
Sentenced at the Central Criminal Court (Old Bailey, London)
20 April 2018
Sentencing remarks of Mr Justice Haddon-Cave

https://www.judiciary.gov.uk/judgments/r-v-kane-gamble-sentencing-remarks-of-mr-justice-haddon-cave/

https://www.judiciary.gov.uk/wp-content/uploads/2018/04/r-v-gamble-sentencing.pdf

P.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Mon, 2018-04-23 at 22:44 +0100, J Martin Rushton wrote:

> You might also want to look at repoview(8).  It will generate a
> searchable website for you.  See
> https://dl.iuscommunity.org/pub/ius/stable/CentOS/7/x86_64/repoview/
> for example

Thank you. I was unaware of repoview's existence. 

The information provided by your illustration, for example:

php56u-pecl-imagick - Provides a wrapper to the ImageMagick library 


prompts me into wondering whether Centos has a searchable database for
people to discover, in this instance, all the ImageMagick packages or
all the PHP 5.6 packages.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Fri, 2018-04-20 at 07:56 +, Jürgen Gotteswinter wrote:

> > Unsure how to remaster two DVDs, total 6GB?, onto a USB stick. I can copy 
> > both DVDs to a directory. To make the directory contents into a single ISO 
> > is, currently, beyond my knowledge but will Google.
> 
> 
> Just drop all rpms into the Packages Dir and you are done
> 
> Oops, sorry i forgot that you should do a "createrepo /path/to/Packages after 
> that (this will re-create the rpm index)

Ah great. Je vous merci. Danke vielmals.

Centos is true liberation from the dull and dreary world of Windoze.
Happiness is an operating system as flexible as free Centos.
Thank you to everyone who makes, and has made, this possible.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Thu, 2018-04-19 at 07:59 -0500, Valeri Galtsev wrote:

> Aha, now I understand what you want. It probably doesn't exist on master
> repository server. You can re-master DVD from two of them or from a copy
> of content of both in some directory on hard drive.

Unsure how to remaster two DVDs, total 6GB?, onto a USB stick. I can
copy both DVDs to a directory. To make the directory contents into a
single ISO is, currently, beyond my knowledge but will Google.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Thu, 2018-04-19 at 18:59 -0400, Stephen John Smoogen wrote:

> On 19 April 2018 at 05:04, Always Learning <cen...@u68.u22.net> wrote:
> > Comfort-ability is not my criteria. The BIOS is supposed to be 4 or 5
> > years old. It won't boot from DVDs, yet it will boot from zip disks and
> > other historic relics (LH120, I think one of the other choices was).

I was shocked when it would not install from a DVD. 

> As with others.. this sounds 15 years old. If it says it is 4 or 5
> years old.. I would be more leery of the hardware than torrents.

Can't explain the "relic" new BIOS received in February 2013.

> Get a cdrom with CD1 data as this installs 99% of my systems I have
> dealt with. [I think out of a couple hundred, that 2 or 3 needed
> anything from the second disk when installing some obscure thing.] The
> second disk is mostly stuff you can install later. If you need more
> than that, you need to mirror the distribution locally and set up a
> pxe/tftpboot system which points to that mirror.

Thank you. I like your idea of doing a DD from DVD1 to a USB stick and
installing from the USB. 

Have a nice day.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.
Exclusively Windoze-free for circa 10 years.
Exclusively Centos with great pleasure and happiness.



___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Thu, 2018-04-19 at 14:22 -0700, Mark Milhollan wrote:

> >>On Wed, April 18, 2018 8:36 pm, Always Learning wrote:

> >>>I have a machine with a BIOS that does not permit DVD installation. It
> >>>accepts everything else including some old superseded media types.

> Doesn't sound 4 to 5 years old, sounds 14 or 15 years old.

I agree. The machine was brought, new, and received on 22 February 2013.
>From memory the BIOS displays "2013".


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Thu, 2018-04-19 at 14:44 -0400, Yves Bellefeuille wrote:

> On Thu, 2018-04-19 at 09:40 +0100, John Hodrien wrote:
> > > Can we also challenge this "torrents are untrustworthy" attitude.

> > Having, successfully so far, resisted/repelled several devious
> > attacks from the Russians, I am keen to maintain a clean, and thus
> > secure, system as possible.

> If you don't trust the sha256 hashes, there's no reason to trust a
> download using https.

Never said I do not trust the hashes !

Have a nice day.

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

On Thu, 2018-04-19 at 09:40 +0100, John Hodrien wrote:

> > On Wed, April 18, 2018 8:36 pm, Always Learning wrote:

> >> I have an aversion to using anything that comes from unknown sources, as
> >> used by Torrent.

> Can we also challenge this "torrents are untrustworthy" attitude.

Having, successfully so far, resisted/repelled several devious attacks
from the Russians, I am keen to maintain a clean, and thus secure,
system as possible.

> You can be given an ISO from a shady character under a railway bridge,

I'd throw it away unused. Do not want the associated risks.

> Also, why not just make your life easy and do a netinstall?

That's a good idea. Never done one of them before. I can put C6 on a CD
and a USB and boot from either.

>  That way you
> don't have to try to do anything you're not comfortable with.

Comfort-ability is not my criteria. The BIOS is supposed to be 4 or 5
years old. It won't boot from DVDs, yet it will boot from zip disks and
other historic relics (LH120, I think one of the other choices was).

Have a nice day.

Thank you.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Down C6 ALL without torrent ?

[Always Learning]

Hi Valeri,

> > Is it possible to download C6 combined parts 1 and 2 not using Torrent ?

> Paul, you can go directly to the mirror server I maintain, it allows
> direct download of DVD images:
> 
> http://bay.uchicago.edu/centos

I looked, but could not find a non-Torrent option for C6 combined parts
1 and 2 ..

Index of /centos/6.9/isos/x86_64
  * Parent Directory
  * 0_README.txt
  * CentOS-6.9-x86_64-LiveDVD.iso
  * CentOS-6.9-x86_64-LiveDVD.torrent
  * CentOS-6.9-x86_64-bin-DVD1.iso
  * CentOS-6.9-x86_64-bin-DVD1to2.torrent
  * CentOS-6.9-x86_64-bin-DVD2.iso
  * CentOS-6.9-x86_64-minimal.iso
  * CentOS-6.9-x86_64-minimal.torrent
  * CentOS-6.9-x86_64-netinstall.iso
  * CentOS-6.9-x86_64-netinstall.torrent
  * README.txt
  * md5sum.txt
  * md5sum.txt.asc
  * sha1sum.txt
  * sha1sum.txt.asc
  * sha256sum.txt
  * sha256sum.txt.asc


I sought: CentOS-6.9-x86_64-bin-DVD1to2.iso

I suppose I could copy DVD1 to a USB stick and then DVD2 to another USB
stick ?

It would be nice to have everything (part 1 and part 2) on the same
bootable USB stick.


Thank you.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] Down C6 ALL without torrent ?

[Always Learning]

Hi,

I have a machine with a BIOS that does not permit DVD installation. It
accepts everything else including some old superseded media types.

Is it possible to download C6 combined parts 1 and 2 not using Torrent ?

I have an aversion to using anything that comes from unknown sources, as
used by Torrent.  

Thank you.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] FOSDEM Dojo update, videos

[Always Learning]

M - Some illumination on the speaker would be advantageous. Perhaps
it would have been better filming/videoing from the right, rather than
the left, side.  

Viewing it on my PC (running Centos of course), Mr Singh's talking is
not always distinct. Different types of mic provide different levels of
clarity. A laval mic (clip-on miniature microphone) with better audio
would probably help.

Am interested to know what camera and mic were used.

When is the next presentation in the London/greater London area ?

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.
Exclusively Centos for more than 10 years.


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C7, systemd, say what?!

[Always Learning]

On Wed, 2017-06-07 at 12:02 -0700, John R Pierce wrote:

> but will you contribute to building the non-systemd packages, and 
> working out how to retrofit old sysV init back into everything via 
> patches, etc ?every RPM that interacts with systemd will need to be 
> 'fixed' to do it the old way, with init.d scripts. repositories like 
> postgres, EPEL, etc won't work, either, as their C7 packaged daemons are 
> all configured to use systemd.

I'll do what I can providing people recognise I'm currently grossly
overloaded with community and family responsibilities and currently am
lucky if I get 6 hours sleep a day. However I'll try.

What is the advantage of patches over a virgin version that can be
subsequently patched ?

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C7, systemd, say what?!

[Always Learning]

On Wed, 2017-06-07 at 11:23 -0500, Johnny Hughes wrote:

> If you want to create a CentOS-7 variant that does not use systemd,
> then start a Special Interest Group and create modified packages
> to use something else instead ..., much like the this group did
> with Debian:
> 
> https://devuan.org/
> 
> In the case of CentOS-7 .. you don't need to create a whole new
> distro, you can just petition the CentOS Project Board to create a
> Special Interest Group to get access to CentOS Project controlled
> resources to build packages (and get them rolled into our mirrors,
> etc.) to use something other than systemd.

Excellent idea. I'll gladly sign any such petition :-)

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: systemd Poll - So Long, and Thanks for All the fish.

[Always Learning]

On Sun, 2017-04-16 at 18:25 +0100, Pete Biggs wrote:


> Yes. And despite what people think, those agencies don't have super
> powers. They have tools to help them, and lots of resources, but
> nothing out of the ordinary.

Untrue. They are in advance of mainstream developments. Spying has
existed for thousands, of years *and* it is their job to discover and
then discretely monitor what is going-on.

It is never one team doing everything but many highly specialist teams
dedicated to particular aspects of intelligence gathering which they do
expertly, and impressively, well.

All countries monitor, by all available means, what is happening in
their own territory and around the world. Just because, for example, the
USA and Russia are not officially loving buddies it never ever prevents
their intelligence agencies covertly sharing intelligence of mutual
interest. It is a incestuous world with an international web of contacts
doing favours and often disregarding their own government's official
political pronouncements.

>  There is nothing that the NSA can do that can't be done by other
>  agencies or even individuals (or enough individuals working together).

Mmmm, you forgot physical access to targets :-) That is one of their
advantages together with links into national infrastructures and
seemingly endless money. They are much more audacious than "normal"
people.

> There is no doubt that every single security agency in the world has a
> team working on discovering exploitable code in all operating systems.
> It's what they do. Any exploit they find that has been reported is
> probably because some other agency has found it as well so they want to
> stop them using it.

Not only software but hardware too. Most hardware has backdoors which
may not be routinely disclosed to purchasers. The question then arises
if the "official" backdoor is the only one. Difficult to detect if the
logic is coded on a chip.

> The only truly secure machine is one that is at the bottom of a mine
> shaft, turned off and dismantled. :-)

Nope, just protected from public networks like the Internet and from
radio transmissions of all types. Faraday-cage types and 'high-security
rooms' don't have to be buried at the bottom of mines; they exist
everywhere.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] humor (was Re: OT: systemd Poll)

[Always Learning]

On Thu, 2017-04-13 at 10:39 -0400, Robert Moskowitz wrote:
> 
> On 04/12/2017 02:08 PM, m.r...@5-cent.us wrote:

> >mark "my web pages proudly built in vi!"

> And mine on medon.htt-consult.com done with Geany.

Gedit works for me - webpages, PHP, init (with Vi) et cetera.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: systemd Poll

[Always Learning]

On Mon, 2017-04-10 at 22:45 +0200, Nicolas Kovacs a écrit:

> On my Slackware servers (no systemd, no funny network interface names),
> I just edit /etc/udev/rules.d/70-persistent-net.rules and switch eth0
> and eth1 (and eth2 etc.) if needed.
> 
> Keep It Simple.

Un bon idea !
Ich auch
Ikki ook :-)


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] OT: systemd Poll

[Always Learning]

On Mon, 2017-04-10 at 15:38 -0400, m.r...@5-cent.us wrote:

> At home, I'm staying on CentOS 6 until it EoLs.

Production and development +1

Then FreeBSD ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] upgrading Mysql 5.0.95

[Always Learning]

On Sun, 2017-03-19 at 10:24 -0400, Mark Weaver wrote:

> Heavens no... I love my CentOS 5 server. I going to try and keep it 
> around as long as possible.

I like and admire C5 too. Httpd applications on C5 also run, without
problems in my experience, on C6.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7, systemd, NetworkMangler, oh, my

[Always Learning]

On Wed, 2017-02-15 at 12:45 -0500, m.r...@5-cent.us wrote:

> Always Learning wrote:
> >
> >> Used a VCR or Cassette Player lately?
> >
> > My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
> > player and tape recorders with broadcast quality handheld recorder
> > DR-100mk3 and an amazingly good Sony PX440.
> 
> But how do you play all your old VCR tapes? As I said, I want to burn them
> to disk, but I still have a working VCR.

I converted all of them to DVDs several years ago.

Like you I still have vinyl disks, 33 rpm and 45 rpm from the lat 1960's
and early 1970's.  Although a classical music fan, some of the old
singles are evocative classics in their own right. I need to convert
them.

Paul.

P.S.
Landlines = better quality than mobiles.
Non-Smart Phones can't get hacked or mics and cameras turned-on
remotely.
Prefer my Canon SX40 and Nikon D7100 to any Smart Phone.
Wifi has guest zones but is usually disabled.




___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7, systemd, NetworkMangler, oh, my

[Always Learning]

On Tue, 2017-02-14 at 20:40 -0800, Alice Wonder wrote:

> Why the bleep can't stuff like this be simple KISS with simple
> key=value 
> configuration files?

Amen. Its incredibly simple to understand and doesn't require a
doctorate in confused thinking !



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7, systemd, NetworkMangler, oh, my

[Always Learning]

> Used a VCR or Cassette Player lately?

My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
player and tape recorders with broadcast quality handheld recorder
DR-100mk3 and an amazingly good Sony PX440.

Still retain the original functionality. C7 doesn't retain all the
original functionality :-)



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7, systemd, NetworkMangler, oh, my

[Always Learning]

On Mon, 2017-02-13 at 16:49 +, James Hogarth wrote:



> On EL6 yes NM should be removed on anything but a wifi system but on
> EL7 unless you fall into a specific edge case as per the network docs:
> 
> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html-single/Networking_Guide/index.html
> 
> you really should be using NM for a variety of reasons.
> 
> Incidentally Mark, this had nothing to do with systemd ... I wish you
> would pick your topics a little more appropriately rather than
> tempting the usual flames.

Mark actually gets his hands dirty running the systems (on C7). He has a
valid point which worries me - Red Hat's gradual imitation of Micro
$oft's aversion to ordinary people understanding and controlling their
systems.

Luckily some of us remain on C6 because we love simplicity and
stability. When C6 expires some will migrate to BSD rather than face
C7's persistent difficulties and confusion.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Buttons too big in Firefox for Linux

[Always Learning]

On Wed, 2017-02-01 at 14:41 +, Gary Stainburn wrote:

> To go down the CSS route means that I'll have to amend every CSS / 
> HTML to fix the problem.

The idea is to use one .css file for entire web sites, or large
divisions of a single web site.

You could see if a Firefox plug-in can help.

Could it be something in "https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Preferred mail client

[Always Learning]

On Sat, 2017-01-28 at 21:06 -0500, Fred Smith wrote:

> I figure that when God invented email, He intended it to be plain text. :)

Amen.

Can't hide a virus, links to dangerous or fake items or coding exploits
in a simple plain text email.

Web-page emails (HTML) was a Micro$oft invention and history remembers
how vulnerable M$ has been.

No wonder I permanently abandoned all M$ 9? years ago.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox Issue

[Always Learning]

Goeiemiddag Leonard,

> On Tue, 2017-01-10 at 12:00 +0000, Always Learning wrote:
> > (4) The 'extra' Apache Virtual Host file contains 
> > 
> > 
> 
> Why do you add dummy.domain.com:80 here as the match is done on the
> ServerName?
> 
> > DocumentRoot /prod/web/domains/dummy/
> > ServerName 1.2.3.4
> > CustomLog 
> > ErrorLog  ...
> > HostnameLookups Off

(5) IP addresses hosting multiple web sites will have a host name. That
host name is unlikely to be the name of one of the hosted web sites. For
example

1.2.3.4
4-3-2-1-static.friendly-ip.com

Thus, if an attempt is made to connect to "a web site" with a domain
name of "4-3-2-1-static.friendly-ip.com", it will not be a genuine
access attempt, by a genuine web user, to a genuine web site.

It is likely an access attempt to a non-hosted web site name on 1.2.3.4
will automatically be redirected by Apache to the 1.2.3.4 virtual
domain. One could say the host name, 4-3-2-1-static.friendly-ip.com, is
not absolutely required in the 1.2.3.4 virtual host file.

Not knowing whether all access attempts to the IP host name will always
be directed to the 1.2.3.4 virtual host file, I included the host name.

(6) Another example is a Virtual Private Server (VPS) hosting multiple
web sites and a mail server (Mail Transfer Agent = MTA) on a single IP
address.

The web sites could be:-

sunshine-in-winter.com
centos-is-wonderful.eu
ilovelinux.uk
ikhouvanmijbuurvrouw.nl
etc.

The mail server (MTA) could be:-

mail3.example.com

When someone attempts to access web site "mail3.example.com", having
that "web site name" in the Apache virtual host file, results in the
request instantly being redirected to 127.0.0.1
One can have several "web site names" in the virtual host file, in
addition to the IP address.

Similarly, if someone attempts to send emails to .@mail3.example.com
the mail server should reject it because that "domain name" is not a
genuine email address domain name for the MTA.


(7)  I developed an Apache error processing system. It consists of
several PHP routines. It does not work for status codes of 400 or 500 (I
do not know why) but it does for 403 and 404.

That system, shared by all hosted web sites, examines the requested web
page name and compares it to two lists, one starting with /... and the
other with keywords in any position. If a match is found, the IP address
is placed in a monthly table (in IPtables) and blocked (sudo command in
a PHP routine). This means after the first conspicuously wrong
(deliberately wrong) attempt to access a non-existent web page, the IP
address is instantly blocked.


I'm a self-taught Linux user who chose Centos years ago. I am glad I
did. I am continually learning new things almost every day.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox Issue

[Always Learning]

On Mon, 2017-01-09 at 11:06 -0600, John R. Dennison wrote:
> On Mon, Jan 09, 2017 at 04:23:05PM +0000, Always Learning wrote:
> > 
> > Agreed. One of my Apache defences is to redirect probes/hacks to
> > 127.0.0.1 :-)
> 
> Would you be willing to share this rewrite rule with the list, please?
> Some may find it useful.  Thank you.

(1) Hosting several web sites on a single IPv4 address.

(2) Create Apache Virtual Hosts for each web site plus one extra.

(3) Assuming the IP address is 1.2.3.4 and that IP address has a host
name of dummy.domain.com *and* no web site is hosted with the name
dummy.domain.com

(4) The 'extra' Apache Virtual Host file contains 


DocumentRoot /prod/web/domains/dummy/
ServerName 1.2.3.4
CustomLog 
ErrorLog  ...
HostnameLookups Off


Header set Access-Control-Allow-Methods "GET" 
Order Deny,Allow
Allow from all

RedirectMatch permanent ^/(.*)$  http://127.0.0.1/





(5) Any attempt to access:-

* using the IP address as a web site host name, or

* the host name of the IP address as a web site host name,

is diverted to 127.0.0.1



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox Issue

[Always Learning]

On Fri, 2017-01-06 at 12:54 -0500, m.r...@5-cent.us wrote:

> James B. Byrne wrote:
> >
> > On Thu, January 5, 2017 17:23, Always Learning wrote:
> >>
> >> Cyber attacks are gradually replacing armed conflicts.
> >
> > Better fight with bits than blood.
> 
> Yes, but... attacks on the friggin' IoT could result in lots of blood. Or,
> less so, what do you mean all the rail lines have been knocked out of
> commission for a week, and we can't get food to the eastern half of the
> country? Or power?

(1) For national infrastructures, a "parallel" Internet-type
communications network, totally isolated from the real Internet.

(2) Governments should educate their country's computer people to
recognise vulnerabilities and how to block them; too many self-declared
"komputar xperts" haven't a clue about robust security.

Query: How did the Reds get into the Democrats computer systems ?
Hope it wasn't a Redhat/Centos system but an 'open Windoze' set-up.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox Issue

[Always Learning]

On Fri, 2017-01-06 at 11:08 -0500, James B. Byrne wrote:

> On Thu, January 5, 2017 17:23, Always Learning wrote:
> >
> >
> > Cyber attacks are gradually replacing armed conflicts.
> >
> 
> Better fight with bits than blood.

Agreed. One of my Apache defences is to redirect probes/hacks to
127.0.0.1 :-)

Another is to use sudo to block their IPs.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox Issue

[Always Learning]

On Wed, 2017-01-04 at 21:33 +, Chris Olson wrote:

> .. A Firefox browser on one system .
> Instead, a site located at the link https://gaibacoupontec.com
> was displayed with a message indicating that there was an urgent
> Firefox update required.

Firefox, like other web browsers, usually displays text in HTML mode.
Seeing a "link" for https://gaibacoupontec.com does not guarantee the
hidden 'A HREF' code is actually for that site.

> Is it possible that a new Firefox flaw has been detected and is
> being exploited for malicious purposes? 

Yes. Alertness and improving security are continuous tasks.

SQL injection attempts, made by suffixing usually very long strings of
SQL coding to valid parameters such as domain.com/info.php?=12345,
has been popular with the Russians for at least the last few years. The
only method of preventing it compromising a site is to test the
acceptable maximum length of the parameter (in this example '12345') and
if exceeded block the IP address in iptables.

Cyber attacks are gradually replacing armed conflicts. 



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Noise Cancellation of Server Noise

[Always Learning]

On Sun, 2016-12-25 at 13:38 -0600, geo.inbox.ignored wrote:


> On 12/25/2016 11:53 AM, Mark Woolfson (Notebook) wrote:
> > If the server decision makers had not gone for a server designed
> > by accountants but a server designed by engineers then you would
> > not have this problem.

> maybe accountants in U.K., not is U.S.A..
> 
> accountants in U.S.A. only 'know' about spreadsheets because
> that is what they are paid for.
> 
> engineering is by engineers because that is what they are paid for.
> 
> neither is going to do something they are not paid for.
> 
> long live the "American Way".

Lack of vision and inspiration always hampers the betterment of our
unique world. Great people, all over our planet, usually do a bit more
than they are paid for. The resulting benefit for others is
incalculable.

Just think of what the Centos founders did, unpaid, and their
hardworking successes achieved - never an eye on the clock and never
restricting their efforts to make something not just work, but work
well.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] Centos 5 Log-in Screen

[Always Learning]

I like Centos 5 so much I would like to use the same screen for log-on's
in Centos 6.

Is this possible?  My desktop is Gnome.

Thank you.

Merry Christmas.

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.3 packages updates options without upgrading.

[Always Learning]

On Tue, 2016-11-08 at 08:27 -0600, Dipal Bhatt wrote:

> .  So, this is for a friend of mine, and I have
> been told that they will not currently consider updating their userland
> from 6.3 to 6.8 but only selected few packages.  The picture seems to be
> that their company runs a lot of apps on 6.3 userland and might have some
> specific dependencies, etc., but more importantly, this environment has
> been running in customers' environment for quite some time esp 1000s of
> customers, so updating system properly is not easily feasible for this
> scenario.

If everyone is running STANDARD CENTOS there should be *no* problems
updating to the latest C 6.8 version.

(1) Save one complete installation.

(2) Install it on a spare machine.

(3) Change /etc/sysconfig/network-scripts/ifcfg-eth0 if necessary.

(4) Do a: yum update

(5) Test the applications

(6) Wait a few weeks and if still no problems, then upgrade the others.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.3 packages updates options without upgrading.

[Always Learning]

On Tue, 2016-11-08 at 00:14 -0600, Dipal Bhatt wrote:

> Thanks very much, understood.  so, it seems, upgrading selected packages is
> probably going to be fine except where the compatibility matters where it
> would break all kinds of things.

Please be realistic and professional. You simply can not run a
professional business computer operating system like Centos with some
packages so old they are probably a major security risk and other
packages up-to-date.

What will your customer or user say when they discover their data has
been hacked or corrupted simply because someone did not want to
incorporate the latest safe versions of packages already installed ?

If your car is recalled to fit a better and safer version of an already
installed component, are you really going to refuse ? 

Your stance is very unwise and misinformed.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

P.S. Good Luck Hillary.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] Centos & USB3

[Always Learning]

I replaced my development machine with 6 cores, 32 GB etc.

I thought it would be simply inserting the existing HDDs and
changing /etc/sysconfig/ifcfg-eth0 but,

* in the UEFI "BIOS" USB2 and USB3 work.

* in C5.11 USB2 works but USB3 does not.

* in C6.5 (my install disk; OS be updated to C6.8) USB2 works but USB3
does not.

On both C5 and C6 lsusb shows an entry for the plugged-in keyboard (USB2
socket) and for the wireless mouse (USB2 socket) but nothing else.

Please does anyone have any ideas how to solve this baffling
time-consuming problem ?

Is is a UEFI (motherboard Asrock 970A-G/3.1) configuration matter or
potentially the absence of a suitable USB3 driver for Centos ?

Thank you.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] An 'orrible question: Outlook 365 under wine on CentOS?

[Always Learning]

On Fri, 2016-09-23 at 15:50 -0400, m.r...@5-cent.us wrote:

> Upper Management has decided on a policy that IMAP is going to go away in
> the near future, and they want everyone on Lookout, sorry, Outlook 365.

Working with these expert and highly knowledgeable folk must be an
incredibly challenge :-(

Obviously brain-washed by Microsoft's marketing team.

Commiserations.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox 45.4.0-1 for CentOS-6 and CentOS-7

[Always Learning]

On Thu, 2016-09-22 at 09:48 -0500, Johnny Hughes wrote:

> The Red Hat engineers disabled the ffmpeg capability of firefox ...

> That said, we (I :D) want a firefox with ffmpeg support available,
> therefore I have created a centosplus version of firefox that has ffmpeg
> enabled starting with version 45.4.0-1, released to the repositories a
> few minutes ago.  You can get it from the CentOS Plus Repository:
> 
>  https://wiki.centos.org/AdditionalResources/Repositories/CentOSPlus

Gosh. Brilliant, excellent.

We (everyone including me) are gratefully for your tremendous and
magnificent technical support; not forgetting all the other members of
the dedicated 'C' team whose efforts make Centos probably the best
'free' version of Linux, certainly for business, and so dependable and
enjoyable to use.

THANK YOU.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Thu, 2016-09-08 at 23:22 +0100, J Martin Rushton wrote:

> Under Fedora23 issuing a yum command gets you a warning, then it
> automatically runs the appropriate dnf command.

Can you tell us the DNF for:-

yum update
yum groupinstall
yum reinstall
yum erase

?

Thanks,



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Thu, 2016-09-08 at 14:12 -0700, Keith Keller wrote:

> On 2016-09-08, John R Pierce <pie...@hogranch.com> wrote:
> > On 9/7/2016 7:02 PM, Keith Keller wrote:

> >>> Staying with excellent C6 until the end.
> >> CentOS 7 is yum based, not dnf.
> >
> > "Always Learning" seems to have a distaste for anything new or different 
> > than what he already knows.
> 
> Don't we all?  I'm not really all that excited about learning systemd,
> for example.  But I'll certainly give it a fair chance before proclaiming
> that they can pry CentOS 6 out of my cold dead hands.

Hopefully my hands will be warm and (probably) FreeBSD will be my next
major leaning experience when C6 fades away  unless C8 surprises
everyone.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Wed, 2016-09-07 at 19:59 -0700, John R Pierce wrote:

> >> Staying with excellent C6 until the end.


> "Always Learning" seems to have a distaste for anything new or different 
> than what he already knows.


My mind is never ever automatically closed to new 'things'.

I continually embrace new and existing aspects of a range of topics
including law, Linux including Centos, and journalism.

Once something works well, and is customised to be highly efficient and
productive, I am adverse to re-learning an alternative method of
effectively doing the same task. Time wasted on the 'new' method is time
unavailable for the existing workload. 

Perceptions based on incomplete knowledge (idle speculation?) may be
inaccurate.

An abundance of free idle time will obviously assist those wishing to
learn contentious Fedora and C7 "improvements".

Have a very nice day.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Wed, 2016-09-07 at 16:43 -0700, John R Pierce wrote:

> DNF is a fork of yum that involves a nearly total rewrite.   yum 
> development continues.

Wonderful news from Santa Cruz, USA :-)


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Wed, 2016-09-07 at 23:40 +, Joseph L. Casale wrote:

> > I think it should be called YUM.

> https://fedoraproject.org/wiki/Features/DNF#Naming

> DNF stands for Dandified yum. Since DNF is a tech preview
> in Fedora 18 the Python module names can not be 'yum.*' as
> that would clash with yum itself.

In any single version of Centos there is only one YUM. Having multiple
and incompatible versions of Yum in the same software release is
bonkers. Forget Dandies and be simply pragmatic. Everyone knows Yum but
DNF (something to do with DNS ?) or Dandies or another load of weird
ideas from Fedora people desperate to emulate M$ ?

DNF = Dandified yum ?  and not a single 'Y' in the name.

Nein danke.
Nee takk.
Alstublieft niet voor mij,


Staying with excellent C6 until the end.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] DNF update

[Always Learning]

On Tue, 2016-09-06 at 18:03 -0700, John R Pierce wrote:


> DNF is a replacement for Yum that will probably be in a future RHEL 
> release, but is not used by any RHEL/CentOS yet.

I think it should be called YUM. Nothing wrong with having a new version
of Yum, especially when we have a new version of Centos with many
strange differences (if not alien concepts) called C7.

Keep it simple, besides Yum is a nice and very familiar name which we
all trust and appreciate.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] more than one IP address on network device?

[Always Learning]

On Mon, 2016-09-05 at 15:15 +0200, Yamaban wrote:

> "ip addr show"  and
> "ip route show"
> 
> should give the needed info, at least with Centos 7.x

Works on C5 and C6 too.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] .htaccess file

[Always Learning]

Hi,

> My home system on a DSL line is getting worn out by bad behavior robots. 
> 
> Awhile back, I created a .htaccess file that block countries by IP blocks.
> Its 2MB in size.

Do you control your home server ?  If so, then .htaccess is the wrong
solution, because you need to incorporate blockages in your IP Tables
firewall and then use your Apache configuration file to restrict any
remaining unwanted visitors.

.htaccess (its possible in Apache to rename it) is inefficient and
suitable as a second-rate solution when you are using a hosted service
and lack full control of the server. VPSs are cheap and a better
alternative to hosted mail and web.

On my servers (C5 and C6) in IP Tables, I have three sets of blockages:

* permanent for all ports
* only for web (port 80)
* only for emails (port 25)

In web and emails there is a permanent table plus a monthly one (one for
every month). Perpetual pests go in the permanent tables and irritants
in the monthly table - otherwise the banned IPs entries would get too
large. 

A compromised computer trying to send me junk mail or trying to wrongly
access a web page or attempting to break-in to SQL (instantly identified
and IP instantly blocked because I impose string size limits for
the ?key=) has its IP added to the monthly list and remains there
until one month after the last access from that IP address.

I am unwilling to be a passive victim of junk mail and web hackers. 

All home-made solutions but effective and robust. Centos made all this
possible (sincere thanks to the C-Team; they are all 'A*' rated).



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] [Centos] rant

[Always Learning]

On Wed, 2016-08-24 at 10:56 -0500, Valeri Galtsev wrote:

> On Wed, August 24, 2016 10:46 am, m.r...@5-cent.us wrote:

> > 
> > "Smaller" government, Cut taxes (for the rich). Make people pay for what
> > they're already paying taxes to support
> > 
> >
> > Had you gone to noaa.gov, and clicked on climate, it appears that they
> > want to now charge you $3/yr for the service.

> 
> It would be good to have someone sue US government for that. According to
> US law, everything paid for by taxpayer's money should be freely
> accessible by everybody (including non-US entities). Compare, e.g., with
> GPS.
> 



No good ranting. Someone has to pay for Donald Trump's wall 
with a Trump Tower at every mile.




-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox crashing

[Always Learning]

On Fri, 2016-08-12 at 08:10 -0400, ken wrote:

> This morning, the Firefox (45.3.0) installed (upgrade) just a few days 
> ago has crashed already a half dozen times.  Anyone else having the same 
> problem?

Some days FF on C5.11 crashes multiple times. Other days never. Nothing
else on Centos crashes only FF.

Think some FF versions have been crash-free.

Its a pain and will move to C6.8.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7 kickstart question

[Always Learning]

On Fri, 2016-08-05 at 09:11 -0400, Jonathan Billings wrote:

> On Fri, Aug 05, 2016 at 01:55:07PM +0100, Always Learning wrote:
> > On Thu, 2016-08-04 at 22:21 -0400, Jonathan Billings wrote:
> > 
> > > Is it a BIOS boot, or are you using the UEFI firmware for booting?
> > > Either way, you might need a small boot partition (not /boot) at the
> > > beginning of the disk.
> > 
> > /boot/efi formatted FAT16, circa 150 MB
> 
> Even if you're using BIOS boot, if you've got a GPT-formatted disk,
> you'll need a 'biosboot' partition as well.
> 
> part biosboot --fstype=biosboot --size=1
> 
> (It's not necessary if you're using MBR, but it isn't clear if that's
> the case here.)

Thanks for that interesting tip. My GPT disks on C6 don't have it and
they boot normally.

It seems biosboot is indispensable when booting GPT partitioned disks on
older hardware that lacks EFI capability.

https://www.redhat.com/archives/kickstart-list/2012-August/msg5.html

It seems the advantage of having a biosboot partition, at the start of
the disk, is the disk will successfully boot-up on EFI and on older
non-EFI BIOS-only systems.

One learns something new almost every day :-)

Thank you.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 7 kickstart question

[Always Learning]

On Thu, 2016-08-04 at 22:21 -0400, Jonathan Billings wrote:

> Is it a BIOS boot, or are you using the UEFI firmware for booting?
> Either way, you might need a small boot partition (not /boot) at the
> beginning of the disk.

/boot/efi formatted FAT16, circa 150 MB


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] curl build system is broken and so is mock

[Always Learning]

On Thu, 2016-08-04 at 09:46 -0400, James B. Byrne wrote:
> On Wed, August 3, 2016 22:53, Alice Wonder wrote:
> >
> > I didn't realize ldd was recursive. I may have known that at one
> > point (been using linux since MK Linux DR3 and building RPMs since
> > 1999), but have a head injury results in memory problems with
> > pieces of knowledge I don't frequently use.
> 
> Most of us have that problem; head injuries or not.

+1

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] php55w-fpm on CentOS 7: settings location

[Always Learning]

On Wed, 2016-08-03 at 13:55 -0400, Jason Welsh wrote:

> What I do is create a  php.php file on the root of my fileserver with 
> the following
> 
> 

I use a text command: php -i



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [CentOS-announce] Announcing release of MariaDB 10.1 on CentOS Linux 6 x86_64 SCL

[Always Learning]

On Wed, 2016-07-20 at 14:22 -0500, Johnny Hughes wrote:

> On 07/20/2016 01:48 PM, Always Learning wrote:
> > 
> > On Tue, 2016-07-19 at 10:41 +0200, Honza Horak wrote:
> > 
> >> QuickStart
> >> --
> >> You can get started in three easy steps:
> >>   $ sudo yum install centos-release-scl
> >>   $ sudo yum install rh-mariadb101
> >>   $ scl enable rh-mariadb101 bash
> > 
> > 
> > yum install centos-release-scl
> > 
> > No package centos-release-scl available.
> > 
> > 
> > How does one get started with SCL ?
> > 
> > 

> Do you have the centos extras repository disabled?

Strange. No-one touched the C6 servers since my posting.

Now all give

   Package 10:centos-release-scl-7-3.el6.centos.noarch already installed
and latest version

Baffled but happy the problem is resolved. Motto - if it doesn't work,
have a cup of tea then try again :-)

Johnny, thank you very much for your prompt and expert suggestion.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [CentOS-announce] Announcing release of MariaDB 10.1 on CentOS Linux 6 x86_64 SCL

[Always Learning]

On Tue, 2016-07-19 at 10:41 +0200, Honza Horak wrote:

> QuickStart
> --
> You can get started in three easy steps:
>   $ sudo yum install centos-release-scl
>   $ sudo yum install rh-mariadb101
>   $ scl enable rh-mariadb101 bash


yum install centos-release-scl

No package centos-release-scl available.


How does one get started with SCL ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] ?barracuda? listing in logwatch session 123 of user root.

[Always Learning]

On Tue, 2016-07-19 at 23:06 -0400, Jon LaBadie wrote:

> My nightly logwatch report had a never before seen
> section last night, "barracuda spam firewall".

Is this a C7 issue, as opposed to C5 or C6 matter ?

Was the section empty or populated with entries ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] how to update glib-2.28.8 to glib-2.40.0 or newer version

[Always Learning]

On Fri, 2016-07-01 at 13:54 +0800, qw wrote:

> I'm trying to build gstreamer sdk on centos 6.7.

The latest version of Centos 6, is 6.8
You may wish to update your 6.7 by typing:-

yum update




-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [CENTOS ]IPTABLES - How Secure & Best Practice

[Always Learning]

On Fri, 2016-07-01 at 07:16 +0100, Ned Slider wrote:

> -A Forward -p all -i LAN-NIC -o INET-NIC -j ACCEPT

If one requires all protocols, surely '-p all' is not required because
it is the default ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [CENTOS ]IPTABLES - How Secure & Best Practice

[Always Learning]

On Wed, 2016-06-29 at 10:49 -0700, Gordon Messmer wrote:

> On 06/29/2016 03:00 AM, Leon Vergottini wrote:
> > #!/bin/bash
> >
> > #  RESET CURRENT RULE BASE
> > iptables -F
> > service iptables save

> Why would you save the existing rule set?  This script throws it away 
> later, when it runs save again.

He flushes all the tables, then saves an empty iptables configuration. 
Later he adds to that empty iptables configuration.

Long-winded, but nothing wrong. Don't forget he is a learner (leerling)
No person is perfect when starting to learn a new system.

Only by experimenting will one learn.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.
UK banned residents voting when they have lived in the UK for 51 years.


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Redirecting port 8080 to port 80 - how to add in /etc/sysconfig/iptables file?

[Always Learning]

On Tue, 2016-06-21 at 15:46 +0100, Always Learning wrote:

> On Tue, 2016-06-21 at 16:24 +0200, Alexander Farber wrote:
> 
> > *nat
> > :INPUT ACCEPT
> > :OUTPUT ACCEPT
> > :PREROUTING ACCEPT
> > :POSTROUTING ACCEPT
> > -A PREROUTING -p tcp --dst 144.76.184.154 --dport 8080 -j REDIRECT
> > --to-port 80
> 
> http://www.karlrupp.net/en/computer/nat_tutorial
> 
> # IMPORTANT: Activate IP-forwarding in the kernel!
> 
># Disabled by default!
>$> echo "1" > /proc/sys/net/ipv4/ip_forward
> 
> ~~~
> 
> Is that a solution ?

and this ?


# TCP packets from 192.168.1.2, port 12345 to 12356
# to 123.123.123.123, Port 22
# (a backslash indicates contination at the next line)

iptables -t nat -A POSTROUTING -p tcp -s 192.168.1.2 \
 --sport 12345:12356 -d 123.123.123.123 --dport 22 [...]


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Redirecting port 8080 to port 80 - how to add in /etc/sysconfig/iptables file?

[Always Learning]

On Tue, 2016-06-21 at 16:24 +0200, Alexander Farber wrote:

> *nat
> :INPUT ACCEPT
> :OUTPUT ACCEPT
> :PREROUTING ACCEPT
> :POSTROUTING ACCEPT
> -A PREROUTING -p tcp --dst 144.76.184.154 --dport 8080 -j REDIRECT
> --to-port 80

http://www.karlrupp.net/en/computer/nat_tutorial

# IMPORTANT: Activate IP-forwarding in the kernel!

   # Disabled by default!
   $> echo "1" > /proc/sys/net/ipv4/ip_forward

~~~

Is that a solution ?



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] https and self signed

[Always Learning]

On Mon, 2016-06-20 at 10:47 -0400, James B. Byrne wrote:



> But hey, what is my time worth in comparison to the security those
> certificates provided?  SECURITY that was trivially evaded in the end.
>  Exactly what mindless person or committee of bike-shedders decided
> that software should be distributed so that copies of it expire?  What
> security issue was addressed by this decision? What benefit to the
> public was achieved?

+1.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] https and self signed

[Always Learning]

On Sat, 2016-06-18 at 19:49 -0500, Valeri Galtsev wrote:

> Which browser do you use? I still am in a process of finding replacement
> for Firefox (the closest is midori, it doesn't fully fill the bill for me
> though).

There is a Mozilla folk called Palemoon by some Europeans (Sweeds, I
think)  http://palemoon.org

I have not tried it.  Finding a suitable browser is difficult. I hate
the spying and privacy-breaching tactics of once-impressive free
browsers.

To use Firefox with all the spyware/privacy-breaching disabled takes
time and effort then the administration of Asus routers does not work
because of something bad in their Java scripts which, despite the
allegation of being Linux based, has Wondoze type .asp web pages.

Just want an easy life where everything works smoothly.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] https and self signed

[Always Learning]

On Sat, 2016-06-18 at 15:39 -0700, Gordon Messmer wrote:

> I'm not interested in turning this in to a discussion on epistemology.  
> This is based on the experience (the evidence) of some of the world's 
> foremost experts in the field (Akamai, Cisco, EFF, Mozilla, etc).

The same Mozilla Foundation that got USD 50 million from Google some
years ago and the same Mozilla Foundation that automatically sends URLs
to Google (the world's biggest spying operation) - questionable safety
credentials that security conscious administrators might not implicitly
trust.

I support a DNS record solution for certificate authenticity.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] problem i didn't seeing list file new on centos

[Always Learning]

On Sat, 2016-06-18 at 11:39 +0430, alireza baghery wrote:
> hi
> i have two server *CentOS 6.5* and
> *CentOS 5.9 *

You may wish to update your Centos to the latest versions:-

Centos 5.11
Centos 6.8



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] https and self signed

[Always Learning]

On Sat, 2016-06-18 at 08:20 -0500, Valeri Galtsev wrote:

> On Sat, June 18, 2016 7:52 am, Always Learning wrote:

> >
> > Your connection is not secure
> >
> > The owner of harte-lyne.ca has configured their website improperly. To
> > protect your information from being stolen, Firefox has not connected to
> > this website.

> You too huh?

No !

I get the similar 'Firefox version dependent' message when a new machine
logs-on to a secure web site, on a non-standard port with Internet
access restricted to designated individual IPs.

Instead of paying money for a "proper" certificate to access sensitive
restricted applications on the Internet, I make the certificates - that
is the beauty of being non-Wondoze and using Centos. ;-)


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] https and self signed

[Always Learning]

On Fri, 2016-06-17 at 15:56 +0100, Michael H wrote:

> On 17/06/16 15:46, James B. Byrne wrote:

> > 
> > We operate a private CA for our domain and have since 2005.  We
> > maintain a public CRL strictly in accordance with our CPS and have our
> > own OID assigned.  Our CPS and CRL together with our active, expired
> > and revoked certificate inventory is available online at
> > ca.harte-lyne.ca.  Our CPS states that we will only issue certificates
> > for our own domain and furthermore we only issue them for equipment
> > and personnel under our direct control.


> https://harte-lyne.ca/
> 
> net::ERR_CERT_AUTHORITY_INVALID

Your connection is not secure

The owner of harte-lyne.ca has configured their website improperly. To
protect your information from being stolen, Firefox has not connected to
this website.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] scp via another server

[Always Learning]

On Sun, 2016-06-12 at 20:43 +0200, H wrote:

> There seems to be something broken when using scp between two remote
> locations. Some posts on the 'net suggest using 'scp -3' to do an
> intermediate copy to the workstation between the two remote servers
> but that option does not seem to have been implemented yet on scp for
> Centos 6.7.

The current version of C6 is now C6.8 :-)



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] remote backup

[Always Learning]

On Thu, 2016-06-09 at 17:17 -0400, m.r...@5-cent.us wrote:

> Besides, if it's that big a business, management *really* needs to spring
> for a hot spare complete system, to deal with hardware outages, and there
> should be mirrored d/bs, and *those* could be taken down, copied, and then
> brought back online and all the transactions that had been done while it
> was down updated to the backup.

But how many directors and 'management' of IT know anything about
practical IT or understand the concept of effective, reliable and
essential resilience despite claiming to be 'computer professionals' ?

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] FYI: http

[Always Learning]

On Thu, 2016-06-02 at 16:25 -0500, Valeri Galtsev wrote:

> what you put into location bar, instead of jut going directly to that
> location? Helps filling search providers databases, especially if they
> fed
> you unexpiring cookie. But not all of search engines do that crap,
> duckduckgo doesn't as far as I know.

Yesterday part of England's wired Internet network broke down circa
03:15 GMT.

When I tried, in Firefox, to access local web sites hosted on the server
I was working on, Firefox could not find the domains. Instead I got a
circular revolving display indicating Firefox was trying to connect to
the site.

All those local domains had non-internet names (e.g. no .com / tld etc.)
and have IP addresses (10.22.22.124) in /etc/hosts

When the Internet is working, I never had a problem. So perhaps you are
correct, Firefox is sending local domain names and everything typed into
Firefox's URL slot to Google for people monitoring purposes ;-)

How can one disable this latest privacy abusing tactic ?



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [exim] Exim not always logging Message-ID

[Always Learning]

Embarrassing apologies - Sorry wrong list.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [exim] Exim not always logging Message-ID

[Always Learning]

On Thu, 2016-06-02 at 13:27 +0100, Mike Brudenell wrote:

> My point is that a busy sysadmin shouldn't have to rely on intimate
> knowledge of Exim's internal behaviour and oddities when trying
> tracing a message from the logs.

Some of us, well at least 1, have written a simple PHP programme, run on
Apache, which instantly searches the current log and the archived logs
for anything in the logs.

Tracing items in Exim could not be quicker or easier - all done from the
comfort of a web page with no terminal CLI or GREP insight.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.8 and libGL failures

[Always Learning]

On Tue, 2016-05-31 at 14:41 -0500, Johnny Hughes wrote:

> https://pgp.mit.edu/pks/lookup?op=get=0x4CA90C826AC163B3
> 
> (my public key)

Thanks.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.8 and libGL failures

[Always Learning]

On Tue, 2016-05-31 at 15:04 +0100, isdtor wrote:

> (Btw., Johnny, your signatures haven't verified in months. Don't know if the 
> list server is the problem or our corp mail server).

On mine I get "Signature exists, but need public key"


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6.8 YUM reference to Red Hat

[Always Learning]

On Mon, 2016-05-30 at 09:02 -0500, Johnny Hughes wrote:

> > The Red Hat reference in yum I am working on for a future update.
> > 
> > The /SCL is old and has been replaced by the SIG version of
> > software collections:
> > 
> > yum remove centos-release-SCL
> > 
> > yum install centos-release-scl centos-release-scl-rh
> > 
> 
> Actually, looking at the repos, you only NEED *centos-release-scl-rh*
> (that is the actual replacement for what we were building) .. but
> *centos-release-scl* has other items you might also find helpful.

Thank you very much Johnny. I always deeply appreciate your considerable
efforts. How can we clone you ;-)


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] C6.8 YUM reference to Red Hat

[Always Learning]

Doing a yum update on C6.8 .


:  yum update
Loaded plugins: fastestmirror, priorities, protectbase
Setting up Update Process
Loading mirror speeds from cached hostfile
 * base: centos.datente.com
 * epel: mirrors.n-ix.net
 * extras: mirror.softaculous.com
 * updates: centos.datente.com
base| 3.7 kB 00:00 
base/primary_db | 4.7 MB 00:00 
cr  | 3.3 kB 00:00 
cr/primary_db   | 1.2 kB 00:00 
epel| 4.3 kB 00:00 
epel/primary_db | 5.8 MB 00:00 
extras  | 3.4 kB 00:00 
extras/primary_db   |  36 kB 00:00 
mariadb | 2.9 kB 00:00 
http://mirror.centos.org/centos/6/SCL/x86_64/repodata/repomd.xml: [Errno
14] PYCURL ERROR 22 - "The requested URL returned error: 404 Not Found"
Trying other mirror.
To address this issue please refer to the below knowledge base article 

https://access.redhat.com/articles/1320623

If above article doesn't help to resolve this issue please open a ticket
with Red Hat Support.

~

The Red Hat explanation is blocked. All one can read is

" This issue generally occurs if client system is able to commun...
Subscriber exclusive content"

QUESTIONS

(1)  Should the Red Hat link be replaced by a Centos one ?

(2)  Why am I seeing a 'SCL' URL when I have not subscribed to Software
Collections ?

(3)  I did not get the error when updating other C6 installations around
Europe, probably because they used different sources, so is the error
caused by a faulty mirror file ?


Despite the error, I successfully installed

 acpid  x86_64   1.0.10-3.el6  base 37 k
 centos-release x86_64   6-8.el6.centos.12.3   base 21 k
 findutils  x86_64   1:4.4.2-9.el6 base447 k
 logwatch   noarch   7.3.6-54.el6  base303 k
 pango  x86_64   1.28.1-11.el6 base351 k
 passwd x86_64   0.77-7.el6base 89 k
 wget   x86_64   1.12-8.el6base484 k


Comments and advice welcome and appreciated, as always.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.8 Apache-2.2.15-53 re-write question

[Always Learning]

On Sun, 2016-05-29 at 17:33 +0100, Always Learning wrote:

> RedirectMatch 301 ^(.*)$  http://new.domain.com/$1

should be:-

RedirectMatch 301 ^/(.*)$  http://new.domain.com/$1

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6.8 Apache-2.2.15-53 re-write question

[Always Learning]

On Sat, 2016-05-28 at 13:03 -0600, Paul R. Ganci wrote:

..

How about

RewriteEngine on
RewriteCond %{REQUEST_URI} !^/test/ [NC]
RewriteCond %{REQUEST_URI} !^/my-folder/[NC]
RewriteRule ^(.*)$ http://www.newdomain.com/$1  [R=301,L]

or

RedirectMatch 301 ^/test/(.*)$/test2/$1
RedirectMatch 301 ^/my-folder/(.*)$   /my-folder2/$1
RedirectMatch 301 ^(.*)$  http://new.domain.com/$1

or

RedirectMatch 301 ^/usual-directories-names-prefix/(.*)$
http://new.domain.com/new-directory-names-prefix$1

For many years the practise of using the 'www' prefix has been
depreciated by using just the domain name but also having a DNS A record
for the www for those that love the 'www' prefix.

Having a directory names prefix helps enormously when maintaining
multiple web sites.

Many web sites have a confused illogical jumble of directory names, and
many of those are far too long. Good planing before going live will
subsequently save lots of time and effort. Keep the public directory
structure plain, simple and logical. One never ever needs URL's
exceeding 80 characters.

Avoid things like this

http://www/domain.com/public-communications/press-and-public/press-releases/press-release-12345-man-hits-dog-in-childrens-park.html

and

http://www.dailymail.co.uk/news/article-3615099/Outrage-directed-parents-Harambe-gorilla-s-senseless-death-four-year-old-son-fell-enclosure-led-zoo-officials-fatally-shoot-animal.html

If anyone has to type-in one of your URLs they will definitely
appreciate short URLs where there is less chance of making spelling
mistakes.


 
-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] what multimedia framework does Centos use

[Always Learning]

On Sun, 2016-05-29 at 12:11 +0800, qw wrote:

> There are many popular types of multimedia framework, such as gstreamer
>  and directshow. I want to make transcoding program in centos 6.7 which
>  is installed in a server. ffmpeg is used as the core of transcoding
>  program. And I should choose one multimedia framework to do software
>  development. Which framework is best suitable for transcoding
>  application in centos 6.7?

Current version of Centos 6 is C6.8

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] dnf replacing yum?

[Always Learning]

On Wed, 2016-05-25 at 22:32 +0100, Timothy Murphy wrote:

> Also, yum had associations which it was sad to lose.

Perhaps the Fedora ("We love consulting all affected users") replacement
could be named MUD.

Now we await the System-D controlling interface ;-)




-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] google cloud compute with PEM file

[Always Learning]

On Tue, 2016-05-17 at 20:12 -0400, Jonathan Billings wrote:

> On May 17, 2016, at 7:56 PM, Always Learning <cen...@u68.u22.net> wrote:
> > (1)  I would change the port from 22 to something more difficult to
> > guess, perhaps 49026 (for example) and then block port 22 in the
> > firewall.
> 
> If you’re going to change the port, change it to something <1024.  You don’t 
> want to have sshd running on a port that a non-root user can bind to.

But if, as I suggested, the enquirer restricts access to that port to
his own IP, access attempts from other IPs will fail. Ports > 1024 can
be accessed by authorised non-root users using the authorised
originating IP whilst preventing access from all other IPs.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] google cloud compute with PEM file

[Always Learning]

On Tue, 2016-05-17 at 14:34 -0600, Dustin Kempter wrote:

> Connecting to 104.197.158.61 [104.197.158.61] port 22.

(1)  I would change the port from 22 to something more difficult to
guess, perhaps 49026 (for example) and then block port 22 in the
firewall.

(2)  Allow to port 49026 (for example) traffic from your IP and block
traffic from all other IPs.


Do not forget there are people out there desperate to get into your
computer system, so make it more difficult for them.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6: Gparted "the kernel failed to re-read partition table"

[Always Learning]

On Sat, 2016-05-14 at 07:03 -0400, Scott Robbins wrote:

> Firstly, if at all possible, you're better off doing it with disks
> unmounted, booting from a gparted live CD.  
> 
> Secondly, if that's not practical, that message is common when using, say
> fdisk. Sometimes, running partprobe afterwards will reflect the new
> partition scheme, other times, you may just have to reboot.


On C6, kernel 2.6.32-573.26.1.el6.x86_64, GParted did not succeed using

GParted 0.19.1
Libparted 2.1

On C5, kernel 2.6.18-410.el5, Gparted succeeds with some HDDs, but not
others, using

GParted 0.4.8
Libparted 1.8.1

Using a 'rescue' disk, Parted Magic 2013_02_28, I ran Gparted version
0.14.1
Libparted 3.1
on a Linux kernel of 3.7-9-pmagic. It created the partitions and
formatted them without problems.

Never had a gui partition creation problem when installing from C 6.5
minimum install disk

Have I found a bug in C6 ?



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6: Gparted "the kernel failed to re-read partition table"

[Always Learning]

On Fri, 2016-05-13 at 23:17 -0453, William A. Mahaffey III wrote:

> Is the disk or 1 of its partitions mounted ? If so, can it be
> unmounted 

Hi William, its the only HDD on that machine. All the partitions are
mounted. The error message refers to the HDD, not to any of the mounted
partitions.

> > WARNING: the kernel failed to re-read the partition table
> > on /dev/sda (Device or resource busy).

Thanks.

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] C6: Gparted "the kernel failed to re-read partition table"

[Always Learning]

On C6 (latest) I wanted to add an extra partition, number 14, to a 1TB
GPT disk.

It failed repeatedly. The error message is:-

~~~

GParted 0.19.1

Libparted 2.1

Create Primary Partition #1 (ext4, 33.00 MiB) on /dev/sda  00:00:01   
( ERROR )
calibrate New Partition #1  00:00:00( SUCCESS ) 
path: /dev/sda-1
start: 613591359
end: 1953525134
size: 1339933776
(638.93 GiB)
create empty partition  00:00:01( ERROR )
libparted
messages( INFO )


WARNING: the kernel failed to re-read the partition table on /dev/sda
(Device or resource busy). As a result, it may not reflect all of your
changes until after reboot.

WARNING: the kernel failed to re-read the partition table on /dev/sda
(Device or resource busy). As a result, it may not reflect all of your
changes until after reboot.

~~~

Does C6's version of Gparted work with GPT disks ?

Thanks.





-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Firefox 45.1.0 stability

[Always Learning]

On Fri, 2016-05-06 at 16:44 -0400, m.r...@5-cent.us wrote:

> Nux! wrote:
> > Guys if you are using my repo on CentOS 6 then the new Firefox might not
> > like the old ffmpeg I ship.

> Nope.
> 
> Yes, I'm on CentOS 6, but as this is a US federal organization (civil
> sector), I did ask, and was told no repos Over There. Security issues

Romania has been a EU member State since 1 January 2007. 



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5.11 FF ESR 45.1.0 Cookies Button not functioning

[Always Learning]

On Mon, 2016-05-02 at 19:36 +0200, Yamaban wrote:

> Most of the dialogs have been rewritten from XUL to HTML5.
> 
> The dialog shown is build by opening a blank html page and
> then inserting the code (html+css+js) to show the dialog.
> 
> Thus 'about:blank' (internal called as moz-safe-about:blank)
> is needed to be allowed in Adblock and Noscript.
> 
> Does that fill the 'blanks' in the knowledge?

Yes it does. Thank you for your explanation.


Mfg,



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union auch mit BRD :-)

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6 Firefox 45.1 segmentation faults

[Always Learning]

On Mon, 2016-05-02 at 13:13 -0700, Robert Arkiletian wrote:

> I think this site is always failing. It has an embedded video.
> 
> http://www.sportsnet.ca/basketball/nba/free-association-podcast-much-toronto-raptors-fear-miami-heats-dwayne-wade-hassan-whiteside-joe-johnson/

on C5.11 using FF 45.1.0 =
No video has been loaded
Error Code: PLAYER_ERR_NO_SRC


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C6 Firefox 45.1 segmentation faults

[Always Learning]

On Mon, 2016-05-02 at 20:44 +0100, Nux! wrote:
> This consistently crashes it, for testing:
> http://dl.nux.ro/video/Organshiftpregnancy.mp4



On C5.11 with FF 45.1.0 patched, using M-Player plug-in  = no problem.

It appears to be a low resolution ultra-sound picture of a baby in the
womb.  Same effects when viewed with Xine.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5.11 FF ESR 45.1.0 Cookies Button not functioning

[Always Learning]

On Mon, 2016-05-02 at 16:53 +0100, Always Learning wrote:
> firefox-45.1.0-1.1.el5.centos
> 
> 
> Clicking:-
>   Edit
>   Preferences
>   Privacy
>   Show Cookies
> 
> no longer works. It always did function before the upgrade to FF 45.

SOLVED.

Adblock Plus blocked the 'moz-safe-about:blank' frame.

Do not understand why 'moz-safe-about:blank' frame needs activating to
see the Cookies.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] C5.11 FF ESR 45.1.0 Cookies Button not functioning

[Always Learning]

firefox-45.1.0-1.1.el5.centos


Clicking:-
Edit
Preferences
Privacy
Show Cookies

no longer works. It always did function before the upgrade to FF 45.




-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] E-mail advice sought

[Always Learning]

On Sun, 2016-05-01 at 10:57 +0200, Leon Fauster wrote:

> blacklisting is not a good practice, use the suggested whitelist ...


I disagree from practical experience. My Exim mail servers (MTAs)
refused connections from 'amateur' mail senders such as:-

*dynamic.163data.com.cn

*airtelbroadband.in
*adsl.alicedsl.de
*dynamic.se.alltele.net
*alshamil.net.ae
*adsl.anteldata.net.uy
*aphie.info
*pools.arcor-ip.net
*static.arcor-ip.net
*as9105.com
*as13285.net
*as43234.net

et cetera

and from professional spammers

*compute.amazonaws.com
*isp.att.net
*bmsend.com
*chtah.com
*chtah.net
*descene.org
*dmdelivery.com
*dnsinspect.com
*edmspread.com
*emsmtp.com
*emsmtp.us
*everydayedeals.com

et cetera

My philosophy is not to be a willing victim of spam and other unwanted
time-wasting junk. It is only when concerned citizens like Alice (in)
Wonder(land) critically re-examine the status quo, and the justification
for it, that things may improve.


Mankind never advances when there is no questioning of established
practises.


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5: The Firefox ESR 45.1.0 Nighmare

[Always Learning]

On Fri, 2016-04-29 at 07:22 -0500, Johnny Hughes wrote:


> Therefore, I have made a new temporary version available here, for
> people who would opt to get the new version and not wait:
> 
> http://people.centos.org/hughesjr/firefox-45.1.0-1.1.el5.centos/

Wonderful, marvellous and I'm delightfully (and gratefully) happy again.
Brilliant.

Thank you Johnny.



-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5: The Firefox ESR 45.1.0 Nighmare

[Always Learning]

On Fri, 2016-04-29 at 11:21 +0100, James Hogarth wrote:

> Given: RHEL5 goes end of life on 2017-03-31, which is 47 weeks, 6 days, 13
> hours, 40 minutes, and 50 seconds from now
> 
> and that even now the updates are limited to critical (ie remote code
> execution) pretty much might I suggest now is a good time to be thinking
> about that future of that system and if not move to C7 at least move to C6?
> 
> I can't even imagine the pain of using C5 as a desktop in today's world ...


I am conservative with somethings but adventurous with others.

C5's Gnome desktop is stable and satisfies all my needs because it is
reliable and always works well; FF45 being the exception.

C6 is set-up on a faster, quieter development machine with double the
RAM and USB3. When my last C5 production server moves to C6, then I'll
have to say a gratefully metaphorical farewell to my dependable C5
development machine "its been really great knowing you".

Stability and reliability are essential for basic computer work. C7 has
yet to convince me it is worth the considerable investment in time and
energy relearning how to operate and use it. That is why Valerie's BSD
philosophy appears attractive (the manual from 1998 remains largely
unread). I'll stay with C6 for as long as possible.

Please don't demean something (i.e. C5 and its desktop) which has been a
wonderful and enjoyable experience.






-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5: The Firefox ESR 45.1.0 Nighmare

[Always Learning]

On Fri, 2016-04-29 at 03:05 +, Richard wrote:

> This explains the extension signing, and timeline, a bit:
> 
>   
> 
> Note that the unsigned override that you used is going away with FF47.

Thanks for the link.  I like the idea of a so-called non-FF branded
version (USA english only) which does not re-enforce the Mozilla
Approval requirement.

" How will the unbranded versions of Firefox work? 

" They will work just like Firefox, with two differences:
 they will have a setting to disable mandatory signature checks,
 and they will not have the Firefox name and logo (instead using
  a
generic name and logo). They will be available in the en-US
 locale only. "

Perhaps that might form a suitable replacement for ESR versions ?


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5: The Firefox ESR 45.1.0 Nighmare

[Always Learning]

On Fri, 2016-04-29 at 03:05 +, Richard wrote:

> The issue for ESR people is that they didn't get eased into it the
> way standard FF users did - over the course of three releases. FF40
> was released in october of last year, so by now hopefully extension
> developers have gotten their code signed.

It was an unexpected major shock.

The problem remains add-ons just won't install after being downloaded.
Perhaps one should revert to FF 38, re-install add-ons and then upgrade
to FF 45 - then start playing about to get those add-ons to be
re-accepted.

Not exactly my chosen method of making a product "user friendly".


-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] C5: The Firefox ESR 45.1.0 Nighmare

[Always Learning]

On Thu, 2016-04-28 at 22:27 -0400, Jonathan Billings wrote:
> On Fri, Apr 29, 2016 at 02:23:32AM +0100, Always Learning wrote:
> > Centos replaced well-running customise Firefox with version ESR 45.1.0
> 
> Errr... you mean Red Hat released a security update (see
> https://rhn.redhat.com/errata/RHSA-2016-0695.html), and CentOS
> rebuilt and released it.
> 
> What, exactly, would you like the CentOS maintainers to do
> differently?  Are you volunteering your time to help?

I would really like to help but I lack the time with many many demands
on time I don't have.  

Centos might form a special interests group specifically for the
existing Firefox ESR browser. Another poster recently stated Mozilla was
dropping ESR versions which is likely to jeopardise browser stability. 

Ultimately it would be nice for a Firefox folk removing privacy
breeches, phoning home, allowing web sites to secretly store data
(despite options turned-off) and removal of lots of crap unnecessary for
the vast majority of Enterprise users. It could eliminate the constant
changes - often apparently just to amuse Firefox developers - which
users seem to hate.

When using the yum GUI update notification service, no reasons for
updates are visible.

No good issuing a security improvement when, as Johnny replied in
another posting,

" With respect to CentOS-5, it seems this patch was not
 migrated to the 45.0.1 install:

https://bugzilla.redhat.com/attachment.cgi?id=1025187

from this bugzilla:

https://bugzilla.redhat.com/show_bug.cgi?id=1221368 "

essential parts were omitted. Perhaps Up-Stream were pre-occupied with
another fundamental change to the product we know and love ? (well, not
C7 yet)

I use Firefox extensively for a multitude of tasks.





-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.

___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos