[CentOS-virt] virtual sprawl - managing password changes
We are using the free VMware Server on CentOS 4. Almost all of our VMs are CentOS 4 as well. We have 7 VMware hosts with about 40 total virtual machines. It's been a very successful architecture for us. I'm wondering how the rest of the community is managing updates of root (and other local account) passwords in a virtual sprawl environment (or a physical environment with lots of hosts). I have read about things like expect, puttycs, centralize with kerberos, etc. But I'm not looking for options here, I want to hear actual experiences! What has worked for you, what hasn't worked? Or do you feel that the chance for failure is to great and the results too catastrophic? Thanks, -- Jeff ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] rsync - set owner and group?
On Fri, May 9, 2008 at 9:46 AM, Sean Carolan [EMAIL PROTECTED] wrote: Do your user and group names on both your source and destination systems have matching numeric values? No. The source system is a Windows machine running cygwin-rsyncd. Linux/UNIX systems carry the numeric values and look up the text values in /etc/passwd and /etc/group for display. If you are seeing numeric values, that would imply there are no matching entries in those files. Yea, i figured as much. I was hoping that rsync could manually change the ownership, or that perhaps there was some acl setting that could be used to say All files that get created in this directory will always have the same owner and group. If you adjust your numeric values for the owner and group to match on source and destination systems, your systems will match up. No can do. As mentioned above, the source system is a 'doze box. What rsync options are you using? rsync has options to preserve owner and group, if you exclude those options, then won't the files assume the user and group of the user account on the destination machine? I haven't tested this, but it looks good on paper. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Irritant
On Wed, May 7, 2008 at 1:28 PM, Sam Drinkard [EMAIL PROTECTED] wrote: Hi again, I've got a nagging irritant with either putty or the man pages, or perhaps my setup. If I use putty to log into my server and request any man page, it returns the page, but really important stuff like keywords are blank. Is this perhaps caused by the wrong terminal setting in putty or is there something with Centos man pages that cause this to happen? I use putty almost exclusively to connect to CentOS and I have no problems. If keywords are blank, I would first check that the Default Bold Foreground is not set to the same value as Default Bold Background in the 'Colours' settings. Also check the character set on the 'Translation' settings. I use UTF-8. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Boot disk changes from /dev/sda during install to /dev/sdb on first boot
On Thu, May 1, 2008 at 12:51 AM, Joseph L. Casale
[EMAIL PROTECTED] wrote:
It's been suggested (in the Dell Linux mailing list) that it is
related to the virtual CD device of the DRAC.
As far as I know, it is. I recall something about it emulating a
usb drive so it could be hot plugged with a new disc if you will.
But why would it change after install? Is it perhaps a difference in
drivers that are
available in the installer vs. the live kernel?
How did you install out of curiosity?
DRAC Virtual CD (full CentOS disk 1 of 4) in one instance, Virtual CD
with http install in another.
How can I find out what /dev/sda is? Any way to force the drive order
from the CentOS side? No relevant options that I have found in BIOS or
RAID setup.
What info do you get when you cat some of the /sys/block/sd{a b}/ files
after its booted?
removable = 1, size = 0 among others.
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
--
Jeff
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
[CentOS] Boot disk changes from /dev/sda during install to /dev/sdb on first boot
CentOS 4.6 x86_64, Dell PE2950 with DRAC5, onboard SAS RAID 1, 2 arrays. After booting installed system, /dev/sda exists but does not appear to be a hard disk. fdisk -l displays nothing for sda. CentOS is on /dev/sdb and the second RAID 1 array is now /dev/sdc. It's been suggested (in the Dell Linux mailing list) that it is related to the virtual CD device of the DRAC. But why would it change after install? Is it perhaps a difference in drivers that are available in the installer vs. the live kernel? How can I find out what /dev/sda is? Any way to force the drive order from the CentOS side? No relevant options that I have found in BIOS or RAID setup. bash-3.00# ls -l /dev/sd* brw-rw 1 root disk 8, 0 Apr 29 05:15 /dev/sda brw-rw 1 root disk 8, 16 Apr 29 05:15 /dev/sdb brw-rw 1 root disk 8, 17 Apr 29 05:15 /dev/sdb1 brw-rw 1 root disk 8, 18 Apr 29 05:15 /dev/sdb2 brw-rw 1 root disk 8, 19 Apr 29 05:15 /dev/sdb3 brw-rw 1 root disk 8, 32 Apr 29 05:15 /dev/sdc /dev/cdrom points at /dev/hda mount /dev/sda /mnt yeilds 'No medium found' When virtual CD media is connected via DRAC, it is found at /dev/cdrom1 which links to /dev/scd0 -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sendmail and cups gets installed although not chosen in kickstart file
On Mon, Apr 28, 2008 at 3:25 PM, Kai Schaetzl [EMAIL PROTECTED] wrote: I setup a kickstart file that contains only @core and several packages explicitely listed. postfix is listed, sendmail is not. And there's no package where I would think it needs cups. Nevertheless, after the install I now have postfix *and* sendmail on the machine and sendmail even being enabled. And cups is installed. How can I find out what forced them (and probably many other unwanted packages) on the installation? I thought maybe rpm -q --whatrequires sendmail would tell me, but it doesn't. Nothing requires it. Same for cups. So, why did it get installed? assumption I would guess that sendmail is included in @core or something else is that depends on a mail package. Just because you include postfix later, you can't count on things included in @core that depend on a mail program to know that postfix will eventually be there. I believe sendmail is the default mail package when it comes to resolving dependencies, unless postfix is already installed. /assumption I have a work-in-progress kickstart config that attempts a more minimal install than can be done from CD. The key is --nobase. But then many essential things must be explicitly installed. This gets me postfix and no sendmail. YMMV. %packages --nobase bind-utils coreutils crontabs dhclient e2fsprogs file grub mailx man openssh-clients openssh-server postfix rootfiles rpm vim-minimal vixie-cron wget yum -kernel-smp -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bash script to logout user from console
On Thu, Apr 24, 2008 at 11:48 PM, Joseph L. Casale [EMAIL PROTECTED] wrote: I am stumped to figure out how to logout a user after they run a script interactively when logged into the console. I see how to do it if in x, but this server does not have x installed. There are 2 possible interpretations to your post. 1. You want the last action of the script being run by the user on the console to log out the user. In this case make the last command of the shell script kill -HUP `pgrep -s 0 -o` This kills the login shell. 2. The user neglects to log out and you as root wish to force a logoff without having to go to the console. The console session will have a parent process that shows as login -- username in a ps -ef output. Kill that process. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] dying hd on live legacy system...
On Fri, Apr 25, 2008 at 10:38 AM, Jason Pyeron [EMAIL PROTECTED] wrote: We have an old 3.x server whose hd is dying (kernel: hda: dma_timer_expiry: dma status == 0x61) and accessing certain files just crashes the system with a reboot. We have moved as many files to a nfs server as we could so simply. The system has been heavily modified (all using rpms) from baseline. What is the most practical method to replace the hard drive? Install another drive (same size or larger), boot from CD in rescue mode and use the dd utility to copy the old drive image to the new disk (example: dd if=/dev/hda of=/dev/hdb). However, the failing hardware could make this problematic. Then remove the dying disk and install the new disk on the cable where the old disk was so that the new disk is now /dev/hda. If you are lucky enough to succeed consider mirroring with Linux software RAID or at least make a full backup. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] dying hd on live legacy system...
On Fri, Apr 25, 2008 at 12:46 PM, Dan Halbert [EMAIL PROTECTED] wrote: What is the most practical method to replace the hard drive? Install another drive (same size or larger), boot from CD in rescue mode and use the dd utility to copy the old drive image to the new disk (example: dd if=/dev/hda of=/dev/hdb). However, the failing hardware could make this problematic. Then remove the dying disk and install the new disk on the cable where the old disk was so that the new disk is now /dev/hda. Tried this, I should have been more clear above. When I access certain sectors the machine reboots. Just to confirm: you mean the machine reboots even when this disk is not a system disk? Suppose you mount it readonly (maybe it's doing atime updates unsuccessfully?)? Why mount it at all? Booting from CentOS CD in rescue mode gives you the option of not mounting the existing CentOS installation. dd does not need mounted file systems. With the exception of possible IDE conroller issues, booting from CD and not mounting is as good as putting the disk in another machine. If it's a peculiarity of the controller, you could try putting it in as a data disk in another machine with a different kind of disk controller. You could even put it in a Windows box and use one the various free utilities to look at the Linux filesystem - perhaps that would not exercise whatever issue is causing the reboots. If you've gotten the vital data off and any customizations out of /etc, the crontabs, etc., then if possible, maybe you could just do an rpm -q -a to get the current package list, and then diff that against the list you get on a fresh install to figure out what you need to add. Dan -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simulate RJ 45 Port
On Fri, Apr 18, 2008 at 12:18 AM, gopinath [EMAIL PROTECTED] wrote: how to simulate a RJ 45 port to act as serial port any option in Centos 5.1. Please help me out on this. Are you perhaps looking for a serial over ethernet device such as the ones made by Moxa (www.moxa.com)? I'm sure there are other makers of such devices, but this is what I've used. We buy up old versions of DE-303, Nport 5610, etc. on ebay for about $100 each. Moxa provides linux drivers that work great in CentOS. So, CentOS sees a /dev/ttyr00 port and you plug your serial device into the Moxa and you're good to go. A great solution for virtualization because you are not using a hardware serial port on your server. The only trick is getting the right pin-out between your serial device and the Moxa (which uses RJ-45 jacks), but Moxa has decent documentation. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] redirecting outside connections to https on apache
On Mon, Apr 14, 2008 at 12:33 PM, Barry Brimer [EMAIL PROTECTED] wrote: Quoting ankush grover [EMAIL PROTECTED]: Hi friends, There are about 15 applications hosted on different in our infrastructure mostly running on apache/iis/tomcat. We have a frontend apache server running on Centos 4.4 64bit which make these applications accessible to outside world. For the applications which are running on tomcat we are running jkmount to make these applications available without mentioning tomcat ports. For apache/iis applications we are using ProxyPass. The issue we are facing is that we are not able to make these applications accessible through https automatically means if the user is not from within the LAN then the http link should automatically redirected to https. We already have GoDaddy stamped ssl certificate on this apache frontend server but we are struggling for rules for outside world. What is the best way to make these applications accessible to outside world through https connections only that is if somebody use http://xx.xx.com/xx to use the application it should be redirected to https we don't have the requirement for https connections from within the LAN but definitely for outside connections. JkMount /team/* team JkMount /team team Then we have rules for this in the workers.properties file ProxyPass /public http://my.testing.com/public ProxyPassReverse /public https://my.testing.com/public You can force to ssl by using something like this with mod_rewrite RewriteRule ^(.*)$ https://www.domain.com/$1 [R,L] Details on how to select your condition for this statement is available at: http://askapache.info/trunk/mod/mod_rewrite.html#rewritecond To clarify, the proxy pass configuration is irrelevant. The https rewrite rule is applied to the outside facing web server for whatever URL patterns you wish to secure. You don't need to do anything to the back-end web server. Here's a useful example on the rewrite: http://tinyurl.com/6l7erl -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mod_auth_ldap Apache2 on CentOS 5 and require group
On Thu, Apr 10, 2008 at 1:35 PM, David Hláčik [EMAIL PROTECTED] wrote: Hi , i am facing a strange problem. I have centos , i wan to access svn trought apache using mod auth ldap. This is what i have configured AuthLDAPBindDN cn=svn,ou=Operators,o=Organization AuthLDAPBindPassword Pass1 AuthLDAPURL ldap://ldap/ou=Users,o=Organization?uid; AuthLDAPGroupAttribute member AuthLDAPGroupAttributeIsDN on Require group cn=tester2,ou=Groups,o=Organization What is strange? According to doc it will accept only users which DN is in group cn=teste2,ou=Groups,o=Organization. How come, for me it will accept every one user from LDAP? Your config looks correct, if it is in the correct context element in your .conf file. Is it within a Location element that references your svn repository path? Please show more of your config. Are you sure Apache is querying the LDAP server? Are you prompted for a login. Are you denied if a bad password or username is given? -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync question
On Mon, Apr 7, 2008 at 12:07 PM, Ray Leventhal [EMAIL PROTECTED] wrote: Hi folks, I've been trying to wrap my head around this for a bit, done my googling and archive searching but I still can't seem to 'get' it. Here goes: I've a spare drive in my CentOS5.1 box, which (for testing now) I mount manually under /mnt/backup I want to backup the /home tree to that box nightly via rsync (cronjob), so I tried this: rsync -avrogz /home/ /mnt/backup/ All goes well, but it seems that rsync is copying the files and compressing them into an archiveboth the file structure and the archive exist. Is there a flag I'm missing, or is there a better, more efficient way to get this accomplished? rsync does not create archives. Are you sure that the archive does not exist in the source directory? Is it just being rsynced along with everything else? Perhaps it is left over from previous backup strategies. Have you opened up the archive to look at dates and timestamps? -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how do i have a clone centos server
On Fri, Mar 28, 2008 at 9:22 AM, Mail Administrator [EMAIL PROTECTED] wrote: snip now i would like to have another server like mirroring this server .. so incase there is any problem with this server the other server is always online and the problem server could be fixed without our users gettin affected apprecite if anybody can help giving some clues or is there any software avaliable. also is the hardware in both servers have to be identical or it can be different That is indeed, the holy grail of server administration and is not easily achieved. For DNS, you can define a master/slave server setup and have both online at the same time. I'm not sure what MailScanner needs as far as real-time data storage. Perhaps it can just be set up in parallel and either machine could filter messages. Mail message storage is your primary problem, as the data constantly changes. The simplest way might be to house your mail store on a third server and mount it with NFS. Then if your primary goes down, simply boot up the secondary, mount the live data files and away you go with only a momentary service interruption. One problem with this setup is that whenever some configuration detail changes, you must change it on another machine. And you need to be concerned with the redundancy of the file server. There is also the issue of user accounts for mail. Are they local to the mail server or do they reference an external directory server? You could rsync the mail files between servers to have a near-real-time copy, but any resulting inconsistencies could be a problem for your mail software. The only safe way to rsync a mail server is to do it while the mail services are stopped. You could stop the mail server, take a file system snapshot, then restart the mail server which would only take a few seconds. Then rsync from the snapshot to the backup and delete the snapshot when done. More advanced options are clustering and drbd but those are toys I've never played with. However, as search terms on Google, they will get you started in the right direction. But they are probably overkill. Judging by your machine specs, I'm guessing this is a pretty small scale operation. Your best bet might simply be to do nightly backups and have spare hardware at the ready. The most likely point of failure is the hard disk, so get another one and set up raid 1. Other than that, your hardware will probably run for years without issue. We all want 100% uptime, but you have to weigh the cost against the actual need. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Migrate Outlook Express mail to Thunderbird?
On Tue, Mar 11, 2008 at 7:22 AM, Niki Kovacs [EMAIL PROTECTED] wrote: A friend's laptop just quit working under Windows XP, so I 1) booted a Knoppix Live CD 2) configured the thing for my LAN 3) scp'ed recursively Documents\ and\ Settings/, 4) wiped the hard disk clean and 5) installed CentOS 5.1. No dual-boot, no prisoners, just 100% GNU/Linux :oD I managed to find the contents of the Outlook Express Mailboxes in some obscure subdirectory. It's a series of files in .dbx format. Is there any hope to convert these so I can import them into Thunderbird? Taking a different approach than others... Load them back into Outlook Express on a Windows box. Open a gmail account and enable it for IMAP access. Configure Outlook Express for gmail/IMAP and copy the messages to gmail folders. Configure T-Bird on CentOS for gmail/IMAP and copy from gmail to Local Folders. Hopefully you don't have several Gigs of messages. If you already have an IMAP enabled mail account somewhere else, you could use that too. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] disable SELinux
On Tue, Mar 11, 2008 at 1:25 PM, Hiep Nguyen [EMAIL PROTECTED] wrote: hi all, i asked this topic couple days ago, but i have problem again. for some reasons, iptables was turned on again. is there any way to disable iptables completely? this is what i did last time: #service iptables stop chkconfig iptables off ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync
On Fri, Mar 7, 2008 at 12:40 PM, Craig White [EMAIL PROTECTED] wrote: I've gone over and over the man page and I don't get it and it's obviously a simple task I want to rsync a directory but only the pdf files... rsync -ncauv --include=*.pdf $WORKING $WEB_SERVER # sync's everything, I want to exclude stuff rsync -ncauv --filter='+ *.pdf' --filter='+ *.odt *.ott *.eps' \ $WORKING $WEB_SERVER # sync's everything...does not seem to exclude anything rsync -ncauv --filter='. /root/scripts/qm_manual_filter' \ $WORKING $WEB_SERVER # cat qm_manual_filter - * + *pdf excludes everything I am using -n for dry-run I definitely need recursive but -a option handles that Suggestions? Include/exclude is a pain in the you know what. Very finicky. Perhaps try **/*.pdf as the include patterns are directory sensitive. I don't think a simple *.pdf will apply recursively. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] VMWare error: Use of uninitialized value in string eq
On Tue, Mar 4, 2008 at 2:41 PM, Rudi Ahlers [EMAIL PROTECTED] wrote: Hi all I hope anyone can help me with this. I'm trying to get vmware to play along nicely on CentOS 5.1 x64, but I get errors when I try and start a vmx image, or list them. This the the error: [EMAIL PROTECTED] vmware-mui-distrib]# vmware-cmd -l Use of uninitialized value in string eq at /usr/lib64/perl5/site_perl/5.8.8/x86_64-linux-thread-multi/VMware/VmPerl.pm line 114. Indeed I have seen this. It happens when you run VMware on a 64 bit Linux platform. I have commented out (with a #) both lines 114 and 115 in VmPerl.pm with no ill effects. I tried to figure out the cause, but I am not perl guy, so I gave up and went for the easy fix. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] domain name display issue in linux pc
On Thu, Feb 14, 2008 at 6:50 AM, [EMAIL PROTECTED] wrote: Right now, I am facing a different issue. I have to set up DNS server using BIND on Centos 4.3. When I type the hostname on Centos, it shows: sipserver.vodcalocal.com But the cli prompt has [EMAIL PROTECTED] ~ meaning only the sipserver part of the hostname is displayed. why is this so? What is the actual hostname then? I see in the What shows in your shell prompt does not necessarily indicate a networking problem. Is there a networking problem? Personally, I like having the short hostname in my prompt. domainname command is for NIS/YP, you want dnsdomainname. I don't see any problems with your configuration files. Whether to use or not use the FDQN in those files is not well defined. If hostname -s and hostname -f return the short and FDQN names respectively, then you should be good to go. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OFF Topic: mysql installation problem
On Thu, Feb 14, 2008 at 6:59 PM, Michael A. Peters [EMAIL PROTECTED] wrote: Ed Morrison wrote: This is interesting: Locate shows this: [EMAIL PROTECTED] ~]# locate mysql | less snip But listing the directories will not show the same files: [EMAIL PROTECTED] ~]# ls -al /var/lib/mysql/mysql total 8 drwx-- 2 mysql mysql 4096 Feb 14 11:44 . drwxr-xr-x 4 mysql mysql 4096 Dec 24 13:13 .. [EMAIL PROTECTED] ~]# ls -al /var/lib/mysql/ total 20 drwxr-xr-x 4 mysql mysql 4096 Dec 24 13:13 . drwxr-xr-x 27 root root 4096 Feb 14 11:44 .. drwx-- 2 mysql mysql 4096 Feb 14 11:44 mysql drwx-- 2 mysql mysql 4096 Feb 14 11:44 test reboot and force fsck touch /forcefsck shutdown -r now The only time I have ever experienced files not being where they are suppose to be after a fresh install of a package is when the hard drive was going south. Uhh... locate is not exactly real time. Depends on updatedb which is daily by cron if at all. Though it will warn if the database is over 8 days old... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache2::Request on CentOS 5
On Feb 10, 2008 12:24 AM, Mag Gam [EMAIL PROTECTED] wrote: Hi, Running mod_perl, and trying to get Apache2::Request installed. I can't seem to find an RPM for it. Has anyone got this working on CentOS 5? I am not a perl expert, but since nobody else is commenting... Check out the cpan command. It's an interactive program that you can use to manage perl add-ons. Not all perl stuff is available via RPM and since perl is pretty well self-contained, you can't get into to much trouble by pulling things in from other sources. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Java not seeing timezone/tomcat displaying times in GMT
On Feb 8, 2008 6:18 PM, Isaac Gonzalez [EMAIL PROTECTED] wrote: I'm setting export CATALINA_OPTS= Duser.timezone=America/Los_Angeles in my init.d script that starts up the tomcat(haven't set it in $CATALINA_HOME/bin/setenv.sh)...but will try that as well i wrote a simple java function that print the date, and when I call java foo, it prints the correct date format. I haven't tried the jsp page, but will also try that...seems as if tomcat is ignoring everything I set. This is definitely a Tomcat issue. You should take it to a Tomcat list. I can tell you what I found though: I ran Tomcat in a debugger to locate the code that generates the directory listing text. In the Tomcat 5.5.23 source code in class org.apache.naming.resources.ResourceAttribute, the timezone for the date formatter is hard coded as GMT. Nice, huh? Maybe there's a way to manipulate that, but I don't know it. The Tomcat developers probably don't care much about it because Tomcat is seldom used to serve static content. But at least you can stop letting the time zone configuration drive you crazy... -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Java not seeing timezone/tomcat displaying times in GMT
On Feb 7, 2008 9:12 PM, Isaac Gonzalez [EMAIL PROTECTED] wrote: Any ideas how to force tomcat to display directory listing in local time zone format of my cent box instead of GMT. I tried all suggestions here: http://marvinlee.wordpress.com/2008/02/01/java-timezone-setting-in-cento s-for-asiakuala_lumpur/ except I use PST8PDT for the timezonei believe I'm using this as my timezone as this is what appears in /etc/localtime file. When using date command it displays in correct format from bash prompt. I don't know exactly what PST8PDT is, but Java prefers the full names for time zones like US/Central or US/Pacific Have you tried something like -Duser.timezone=US/Pacific on the java command line that launches tomcat. You can add that to JAVA_OPTS in $CATALINA_HOME/bin/setenv.sh Is your tzdata package in CentOS up to date? Then again, I haven't done much with directory listings in Tomcat, so there may be a different issue at work here. Can you create a simple JSP page that writes java.util.TimeZone.getDefault().toString() and see what you get? -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] system smtp server question
On Feb 6, 2008 12:03 PM, nate [EMAIL PROTECTED] wrote: Joseph L. Casale wrote: Currently I have postfix setup with maps so that root on server A has mail sent from [EMAIL PROTECTED]mailto:[EMAIL PROTECTED] and that is relayed to my production box. It just seems like it is an additional service to manage on so many hosts? I'm not aware of any other method, and as for managing, it's typically set it and forget it. Forward all mail to a central server, no other configuration needed on the local systems. my postfix config for this purpose is 8 lines, and could probably be cut down even further, haven't tried though snip Same here, I don't like having mail daemons running on 30+ virtual machines, but I do it anyway, with postfix similar to Nate. I'm obsessive-compulsive when it comes to minimizing the footprint of a virtual machine, but I've given up on this one. An advantage to having outbound mail handled by a local daemon is the queuing of failures. When your mail server or network is temporarily down, you don't want to lose messages. Think of your typical fat-client mail program like Thunderbird. If it can't reach the outbound server, you're done, message failed. With postfix handling the transfer of messages, it queues it up and delivers it as soon as possible with no intervention. Any attempt at getting mail off a Linux box without a local daemon is ultimately going to be much messier and higher maintenance than running a local MTA. My $0.02, Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 32 bit applications on 64 bit machine
On Feb 5, 2008 10:16 AM, Scott Ehrlich [EMAIL PROTECTED] wrote: On Tue, 5 Feb 2008, Rozsa Sandor wrote: Hi people, I have a 64 bit Centos machine. My problem is that I can't run 32 bit applications on that. I can compile with the 32 bit option my sources, but when I'm trying to run them I obtain the following error message: -bash: ./a.out: cannot execute binary file And the file a.out returns the following: a.out: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), for GNU/Linux 2.6.9, dynamically linked (uses shared libs), for GNU/Linux 2.6.9, not stripped Any suggestions what I have to install or any links. A shot in the dark, but have you tried installing the compat libraries? Maybe something as simple as yum install compat* A more targeted approach: run ldd a.out and see what 32-bit libraries your 32-bit binary is expecting to have available. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 32 bit applications on 64 bit machine
A more targeted approach: run ldd a.out and see what 32-bit libraries your 32-bit binary is expecting to have available. I should have also said that you need to install the 32-bit versions of libraries separately. The base CentOS install may have some 32-bit libs installed, but if you need to install more you will have to specify the i386 version to yum. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with authenticating against Active Directory.
On Feb 1, 2008 9:38 AM, Michael Semcheski [EMAIL PROTECTED] wrote: So is it possible to use nss_ldap with MS-AD if the Services for Unix are not installed? Or do you still have to resort to /etc/password monkey business? (I'm all for eliminating the monkey business, but I don't think my AD is going to get SFU. You can use nss_ldap with 2003R2 DC when the additional software component (built-in to R2, see my other post) is installed. You can not use nss_ldap with pre-R2 DC without SFU. SFU modifies the AD schema to create new fields for UNIX attributes, most important of which is a password field compatible with UNIX crypt. In the case of R2, your schema will be modified in a similar fashion. WARNING: If you have multiple DCs, R2 and SFU are not compatible out of the box. They use different AD schema modifications. We had to track down hotfixes and DLLs to get our mixed environment working. It was not fun, but we eventually got it all squared away. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with authenticating against Active Directory.
On Feb 1, 2008 9:38 AM, [EMAIL PROTECTED] wrote: On Thu, 31 Jan 2008 20:29:07 -0600 Jeff Larsen [EMAIL PROTECTED] wrote: Don't use Samba. Microsoft Services For UNIX or 2003R2 support UNIX attributes in Active Directory. It adds a new tab in the user account properties where you can specify login shell, home directory, uid, gid. 1. I have the same problem, but the admin does not want to install Microsoft Services For UNIX. That's unfortunate. It's really quite non-invasive 2. You mention 2003R2, does something needs to installed, deployed? I don't see the Unix attributes. - Add/Remove Programs - - Add/Remove Windows Components - - - Active Directory Services - - - - Identity Management for UNIX ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with authenticating against Active Directory.
On Feb 1, 2008 10:20 AM, [EMAIL PROTECTED] wrote: On Fri, 1 Feb 2008 09:49:47 -0600 Jeff Larsen [EMAIL PROTECTED] wrote: 1. I have the same problem, but the admin does not want to install Microsoft Services For UNIX. That's unfortunate. It's really quite non-invasive The admin does not want to do any change to deal with only 1 user [me] 2. You mention 2003R2, does something needs to installed, deployed? I don't see the Unix attributes. - Add/Remove Programs - - Add/Remove Windows Components - - - Active Directory Services - - - - Identity Management for UNIX The admin does not want to do any change to deal with only 1 user [me], so there is no other way than XP within vmware? I'm not sure what problem you are trying to solve with that. Samba might be an option for you if your domain admin will let you join a linux machine to the domain. But I am not a Samba expert, so you'll have to seek advice from someone else. My advocating for nss_ldap is for the purpose of full-scale single sign-on. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with authenticating against Active Directory.
On Jan 31, 2008 2:51 PM, Milton Calnek [EMAIL PROTECTED] wrote: Hello all, I'm trying to authenticate shell login's against an MS-ADS. I don't have admin access to the ADS, but I can talk to the admins. I have gotten as far as getting authentication working, but the uid's depend on the order of login. ie: the first guy to login gets 1, the next gets 10001, etc. The problem I have with this is that I want to share the home directories via nfs, which means everyone has to have the same id. Don't use Samba. Microsoft Services For UNIX or 2003R2 support UNIX attributes in Active Directory. It adds a new tab in the user account properties where you can specify login shell, home directory, uid, gid. On the CentOS side use nss_ldap. This is a true single sign-on configuration with no /etc/passwd monkey business. We use it for database application auth and limited shell access. It just works, failures are rare. Configuration details are left as an exercise for the OP as I have had a long day and a couple glasses of wine -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cron on certain days?
On Jan 28, 2008 1:26 PM, Scott Ehrlich [EMAIL PROTECTED] wrote: Is it possible for me to schedule cron to say run script A on the first Friday of the month, script B on the second Friday of the month, script C, etc.? There is always the lowly 'at' command. Setup and maintenance would be a pain as you would not easily be able to create a configuration that would run in perpetuity. But perhaps you could write a script to generate each months 'at' schedule and run that with cron. If you control the scripts that are being run, perhaps you could run them on a regular schedule and program them with the logic needed to decide whether or not they should do anything. -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Do you need to reboot after adding an entry to fstab?
On Jan 17, 2008 2:11 PM, MHR [EMAIL PROTECTED] wrote: On Jan 17, 2008 11:34 AM, Robert Moskowitz [EMAIL PROTECTED] wrote: man mount.davfs provides an entry in fstab for -t davfs. Does simply adding this into fstab complete the task, or is a reboot needed? (or some service restarted). IIRC, as long as you have the proper fs module loaded, all you need to do is mount the file system. Maybe goes without saying, but 'mount -a' would be recommended as that reads from fstab to perform the mount. We don't want any surprises on our next boot do we? -- Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] 4.6 update overwrote my /usr/lib/python2.3/site.py file
We had some custom additions to our site.py file for a third party application. 'yum update' to 4.6 overwrote the file with no backup or warning. Not hard to repair, but it did have me worried there for a few minutes when the application failed to start. Is this a python issue, an upstream issue or a CentOS issue? Can something be done about it going forward? Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 4.6 update overwrote my /usr/lib/python2.3/site.py file
On Dec 21, 2007 10:29 AM, Ignacio Vazquez-Abrams [EMAIL PROTECTED] wrote: On Fri, 2007-12-21 at 09:53 -0600, Jeff Larsen wrote: We had some custom additions to our site.py file for a third party application. 'yum update' to 4.6 overwrote the file with no backup or warning. Not hard to repair, but it did have me worried there for a few minutes when the application failed to start. Is this a python issue, an upstream issue or a CentOS issue? Can something be done about it going forward? Upstream. Although an application requiring changes to site.py seems suspect to me. Yes, I won't argue about it being suspect. It's not exactly a mainstream application. But it needs a specific version of zope. Is there a more appropriate alternative to adding 'sys.path.append()' in site.py to enable python to find zope? I know nothing of python, I'm just following vendor instructions (famous last words!). Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 4.6 update overwrote my /usr/lib/python2.3/site.py file
Jeff Larsen wrote: We had some custom additions to our site.py file for a third party application. 'yum update' to 4.6 overwrote the file with no backup or warning. Not hard to repair, but it did have me worried there for a few minutes when the application failed to start. Is this a python issue, an upstream issue or a CentOS issue? Can something be done about it going forward? Only files that are designed to be modified (like config files in /etc/ normally) are protected from updates. The system does not look for other files as being updated and save them. If that file is one that SHOULD be modified by customers, then filing a bug upstream can get them to mark it as a config(no-replace) file ... but I doubt this file is one that they will change. Being new to python, I didn't know enough to ignore the vendor's advice. I now have it properly configured with a file /usr/lib/python2.3/site-packages/zope.pth. I also shot off an email to the vendor on the right way to do it. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Logging into Windows 2003 Active Directory
On Dec 18, 2007 1:45 PM, Joseph L. Casale [EMAIL PROTECTED] wrote: I have been searching the net for directions on rhel and centos 5(1) to log in to a windows domain and have found many examples, all different and none work for me. You don't say exactly what you are trying to accomplish, but I'll chime in with the solution we use. If you simply need to have your CentOS boxes be aware of AD users and authenticate against AD passwords, take a look at nss_ldap. There are lots of instructions available on the net, even some good documents from Microsoft. You can even restrict access based on OU or Group membership. If you have a Server 2003 R2 domain, the MS side is ready to go. Otherwise you will need Services For Unix 3.5 on your DCs. I find it to be a much cleaner solution than joining Linux boxes to the domain with Samba if that is not required. Better yet, if I only need authentication for services that have built-in support for LDAP such as cyrus-imapd/saslauthd or httpd, I'll use that service's built-in LDAP authentication against AD and keep the Linux side as a 'black-box'. The learning curve can be a challenge, but once you get it figured out, it's pretty slick. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Getting email from cron when script is run manually
We have some third party software running on a CentOS 4.5 virtual machine. The software is delivered as compiled python and I wrote an init script for it myself (/etc/init.d/gk). Because the software lacks the usual robustness of CentOS services, I have a bash script (/etc/cron.daily/gk-restart) which simply calls /etc/init.d/gk restart. So, as expected, root gets an email every day when cron runs the script. Here's the puzzling part: If I need to manually restart the service, I will use the command /etc/init.d/gk restart. But then I get the very same email message from the cron daemon as if the daily cron job had been run automatically. The email is timestamped for the time at which I manually restarted the service. How on earth is the manual restart being monitored by the cron daemon? The init script is full featured and maintains pid and lock files in /var/run and /var/lock/subsys respectively. Is that the connection? Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Getting email from cron when script is run manually
Could a previous cronjob be hanging, waiting for the initscript to finish? I bet the daemon doesn't die as expected sometimes. Aha! looking at 'ps aux' we have: crond /bin/bash /usr/bin/run-parts /etc/cron.daily awk -v progname=/etc/cron.daily/gk-restart ... lots more junk All at 4:02 AM which is when cron.daily is processed. The awk process is from the run-parts script. So even though my init script works perfectly from the command line, it seems to be somehow incompatible with run-parts. I guess that's something to go on. Looks like I'll need to disect run-parts to see what's happening. Thanks, Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Getting email from cron when script is run manually
Could a previous cronjob be hanging, waiting for the initscript to finish? I bet the daemon doesn't die as expected sometimes. Aha! looking at 'ps aux' we have: crond /bin/bash /usr/bin/run-parts /etc/cron.daily awk -v progname=/etc/cron.daily/gk-restart ... lots more junk All at 4:02 AM which is when cron.daily is processed. The awk process is from the run-parts script. So even though my init script works perfectly from the command line, it seems to be somehow incompatible with run-parts. I guess that's something to go on. Looks like I'll need to disect run-parts to see what's happening. I doubt it has anything to do with run-parts; it just doesn't do much. The problem was a failure to redirect stderr in my home-grown init script. I was sending stdout to /dev/null, but not stderr. Both run-parts, and cron in general try to grab both stderr and stdout and pipe anything they get to email. But since my script wasn't closing stderr, cron was hanging on and waiting for input. Adding 21 to the end of the python command fixed it. Dumb mistake on my part. But in my defense, interpreted languages make for lousy daemons. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] yum update for 5.0 == 5.1
On Dec 5, 2007 5:24 AM, fred smith [EMAIL PROTECTED] wrote: But I don't remember getting a huge bolus of updates, which is what I would have expected to constitute a 5.0==5.1 transition. For a minimal install, there were surprisingly few new packages for 5.0 = 5.1. Looking at my /var/log/yum.log, I only had 90 packages updated or installed.Total installed packages now is 277. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Local repository via createrepo assumes apache?
It seems that I need to run apache on the repository server. But I can basically run with defaults? You can use any web server supported by the operating system that hosts the files. As long as the web server software has read access to the files. Believe it or not, my local CentOS repository is hosted on Windows/IIS. All the howtos I have found address [base] and [update] but not others like [add-on] should those be set up as well? It's up to you. If you think you'll need the packages that are in the additional repositories, go for it. But I wouldn't bother. You can still configure clients to use your local mirror for base/update and public mirrors for anything else they might need. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] install via http
On Nov 26, 2007 11:50 AM, James A. Peltier [EMAIL PROTECTED] wrote: Scott Ehrlich wrote: Maybe I missed the install option, but I didn't know this was possible! I thought the install could only occur from CD or DVD media? Scott Far from it, you can install from CD, DVD, NFS, FTP and HTTP. Google for kickstart install media to see. just pass the parameters linux --url=http://location/to/install/from and you're off and running :) Not only that, but you can make a nice small (10Mb) iso image that you can use to boot from. Great for mounting virtual media in a Dell DRAC to launch a network install. Here's the docs on how to do it: http://www.centos.org/docs/5/html/Installation_Guide-en-US/ch02s04.html See section 2.4.2. Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SNMP and MIB
On 10/19/07, Centos [EMAIL PROTECTED] wrote: has any one is using Dell OpenManage on Centos ? We use Dell OpenManage on Centos 4.5. First you have to trick the OpenManage software (and installer) into thinking you have RHEL. For v4 you add Nahant to the end of line of text in /etc/redhat-release. Nahant is the code name for RHEL4 and Dell software looks for it to know what type of system you are running. Then you need to add a few lines to your snmpd.conf: rwcommunity comunityname monitor ip address view all included .1 smuxpeer .1.3.6.1.4.1.674.10892.1 Where communityname is a name of your choosing and monitor ip address is the IP address of the machine that will be querying SNMP. Make sure to use the same community name in your Dell Server Assistant discovery configuration. It's all in the documentation (except for the Nahant trick). Good luck, Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5 - Xen and Vmware Server
On 10/16/07, Johnny Hughes [EMAIL PROTECTED] wrote: Bruno Sousa wrote: Well, I have installed CentOS with XEN support, but the vmware doesn't work at all. When i push the start button in the vmware, after some minutes, it gives me na error, telling that vmware process died. The host is a dual quad-core 2.6GHZ with 8GB ram, and i would like to get into XEN, but i need to have vmware as well. There is not any way (that I know of) to run VMWare and a Xen host on the same machine. To run a Xen host, you need the Xen kernel, and VMWare does not run on that kenrel. I can verify that it does not work. You will probably need another machine. This is way out there, but I've read in the VMTN forums that it is possible to run the xen dom0 in a VMware virtual machine. Never tried it myself, so I won't make any promises. Performance in xen domU would stink, but I can't imagine you would be doing this for any other reason than development and testing... Jeff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
