Re: [CentOS] CentOS-7-x86_64-dvd-2009.iso is too big for DVD blanks
Hi, you can also burn it to a DL (dual layer) DVD (like the Centos 8 image). regards, Michel On 2021-03-15 02:13, Robert G. (Doc) Savage via CentOS wrote: I need help from someone experienced with the CentOS bug tracking system. I gotta say it is one of the most complicated and imposing front ends I've ever seen. Could anyone familiar with it please file a bug on my behalf? Particulars: "CentOS 7.9.2009 DVD iso image too large" ISO image: CentOS-7-x86_64-DVD-2009.iso 4.7GB raw CD image Wed Nov 4 05:37:25 2020 Burners: Both K3B and Brasero Media: Both DVD-R and DVD+R single-layer disks iso image: 4,712,300,544 bytes User Anthony F McInerney advises Wikipedia says DVD-R capacity: 4,707,319,808 bytes (max) I have tried burning this same iso image on two different machines: a CentOS 7.9 server and a Fedora 33 laptop. Same failure on both. We need to ask the developers to make a re-spin that's about 5MB smaller. And before someone suggests it, the 2010-vintage server I'm trying to install CentOS on does not support booting from a thumb drive, so that option is not available. Thanks, --Doc Savage Fairview Heights, IL ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Network Diagnostics
On Tue, 2020-01-07 at 13:21 +, Chris Olson via CentOS wrote: > > One of our personnel at another office suggested using > Wireshark to check out the network when the printer is > having difficulty. Wireshark was apparently not on this > system so we installed it using yum install. The tail > end of the apparently successful installation process > is shown below. Unfortunately, we cannot seem to find > Wireshark on the system. > > Is it possible that Wireshark was not actually installed > or do we just not know how to locate and use it? > > Is this printer networking issue a known problem and is > Wireshark the right tool to diagnose the problem? > > Thanks. > > > Installed: > wireshark.x86_64 0:1.10.14- > 16.el7 > > Dependency Installed: > libsmi.x86_64 0:0.4.8- > 13.el7 > > > Complete! > [user@computer ~]$ > [user@computer ~]$ which wireshark > /usr/bin/which: no wireshark in > (/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/sbin:/bin:/sbin:/home/u > ser/.local/bin:/home/user/bin) > [user@computer ~]$ > the package wireshark does not contain the 'wireshark' binary, you should use 'tshark' on the commandline. The 'wireshark' binary is in the wireshark-gnome package and requires a graphical interface. tshark takes most of the same parameters as wireshark (if not all) Regards, Michel -- De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. Het Universitair Medisch Centrum Utrecht is een publiekrechtelijke rechtspersoon in de zin van de W.H.W. (Wet Hoger Onderwijs en Wetenschappelijk Onderzoek) en staat geregistreerd bij de Kamer van Koophandel voor Midden-Nederland onder nr. 30244197. Denk s.v.p aan het milieu voor u deze e-mail afdrukt. -- This message may contain confidential information and is intended exclusively for the addressee. If you receive this message unintentionally, please do not use the contents but notify the sender immediately by return e-mail. University Medical Center Utrecht is a legal person by public law and is registered at the Chamber of Commerce for Midden-Nederland under no. 30244197. Please consider the environment before printing this e-mail. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Nasty Fail2Ban update for Centos 7
On Tue, 2019-12-31 at 10:19 +0100, Nicolas Kovacs wrote: > Le 31/12/2019 à 03:14, Allan a écrit : > > Then gotta dig into Koji, to find the old version, download it, > > and downgrade to that - and pew, everything is back to normal. > > > > The old one seems to be version 0.9.7 and the new one is 0.10.4 > > > > I haven't had time to look into Fail2Bans info about these 2 > > version, > > but since there is a major version change - is it really possible > > to > > just upgrade these ? > > > > Sure, I would love to have a working 0.10.4 for my Centos 7 - but > > it > > shouldn't destroy my existing system - or it should at least warn > > me > > about that - or what to fix. > > I have automatic updates with yum-cron on all my production servers. > Fail2ban > has been recently upgraded to 0.10.4 and still works perfectly. We also had it updated and fail2ban worked perfectly except it did not ban anymore on the sshd jail. This was caused by the /etc/fail2ban/filter.d/sshd.conf file which should have been replaced with a new one from the rpm (there was a sshd.conf.rpmnew file). Below the error we found in /var/log/fail2ban.log : 2019-12-09 10:02:15,294 fail2ban.filtersystemd [13628]: INFO[sshd] Added journal match for: '_SYSTEMD_UNIT=sshd.service + _COMM=sshd' 2019-12-09 10:02:15,295 fail2ban.filter [13628]: ERROR No failure-id group in 'normal' 2019-12-09 10:02:15,295 fail2ban.transmitter[13628]: WARNING Command ['set', 'sshd', 'addfailregex', 'normal'] has failed. Received RegexException("No failure-id group in 'normal'",) 2019-12-09 10:02:15,295 fail2ban[13628]: ERROR NOK: ("No failure-id group in 'normal'",) Regards, Michel -- De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. Het Universitair Medisch Centrum Utrecht is een publiekrechtelijke rechtspersoon in de zin van de W.H.W. (Wet Hoger Onderwijs en Wetenschappelijk Onderzoek) en staat geregistreerd bij de Kamer van Koophandel voor Midden-Nederland onder nr. 30244197. Denk s.v.p aan het milieu voor u deze e-mail afdrukt. -- This message may contain confidential information and is intended exclusively for the addressee. If you receive this message unintentionally, please do not use the contents but notify the sender immediately by return e-mail. University Medical Center Utrecht is a legal person by public law and is registered at the Chamber of Commerce for Midden-Nederland under no. 30244197. Please consider the environment before printing this e-mail. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rescue - UEFI revert to BIOS boot - how?
Hi, I had the same sort of issue. My workstation with a Asrock motherboard suddenly decided to reset UEFI to defaults which caused my Fedora installation not to boot. I could boot with a Live USB stick and use efibootmgr to set the UEFI boot for Fedora but next time I powered on my machine the same issue happened (I remove AC power from my workstation when it is not in use). Turned out to be a flat battery for the BIOS (coin cell). I replaced the coin cell and set the UEFI boot with the Live USB stick and all was well. The efibootmgr command was something like : efibootmgr -c --part 2 --loader /EFI/Fedora/grubx64.efi --label Fedora Please check the manpage of efibootmgr, the process of how to setup the UEFI boot is described very well. Regards, Michel On 2018-11-21 05:00, Steven Tardy wrote: On Tue, Nov 20, 2018 at 7:40 AM lejeczek via CentOS wrote: hi guys I have a box on which UEFI boot has gone haywire and instead of boot it power the box down, that is before even going to grub2. (displays some error message) I if change to BIOS boot then I can start Centos' rescue - my question is: how can I rescue, re-build grub so it would boot from tradition BIOS? If the OS was installed with UEFI enabled I would go back to UEFI mode. Then re-add your OS boot configuration within the BIOS setup screen. Most motherboard manufacturers detail this process on their website where you browse the disk to select somefilename.efi and give it a label “CentOS”. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Corosync init-script broken on CentOS6
Hi, Did you configure corosync ? Normally corosync starts pacemaker, which in turn starts the heartbeat deamons. But you have to configure the latter using for example a pcmk file with configuration in /etc/corosync/conf.d/ (from the top of my head). I normally use : http://www.clusterlabs.org/doc/en-US/Pacemaker/1.1/html/Clusters_from_Scratch/ Regards, Michel On Wed, 2011-11-23 at 12:16 -0500, Hal Martin wrote: Hello all, I am trying to create a corosync/pacemaker cluster using CentOS 6.0. However, I'm having a great deal of difficulty doing so. Corosync has a valid configuration file and an authkey has been generated. When I run /etc/init.d/corosync I see that only corosync is started. From experience working with corosync/pacemaker before, I know that this is not enough to have a functioning cluster. For some reason the base install (with or without updates) is not starting corosync dependencies. I've even tried using corosync/pacemaker for the EPEL 6 repo, and still the init-script will not start corosync dependencies. Expected: corosync /usr/lib64/heartbeat/stonithd /usr/lib64/heartbeat/cib /usr/lib64/heartbeat/lrmd /usr/lib64/heartbeat/attrd /usr/lib64/heartbeat/pengine Observed: corosync My install options are: %packages @base @core @ha @nfs-file-server @network-file-system-client @resilient-storage @server-platform @server-policy @storage-client-multipath @system-admin-tools pax oddjob sgpio pacemaker dlm-pcmk screen lsscsi -rgmanager %end The logs from the server aren't terribly helpful either: Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2515 for process stonith-ng Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2516 for process cib Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2517 for process lrmd Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2518 for process attrd Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2519 for process pengine Nov 23 12:13:45 cheapo4 corosync[2509]: [pcmk ] info: spawn_child: Forked child 2520 for process crmd Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: Pacemaker Cluster Manager 1.1.2 Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync extended virtual synchrony service Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync configuration service Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync cluster closed process group service v1.01 Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync cluster config database access v1.01 Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync profile loading service Nov 23 12:13:45 cheapo4 corosync[2509]: [SERV ] Service engine loaded: corosync cluster quorum service v0.1 Nov 23 12:13:45 cheapo4 corosync[2509]: [MAIN ] Compatibility mode set to whitetank. Using V1 and V2 of the synchronization engine. Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] ERROR: pcmk_wait_dispatch: Child process lrmd exited (pid=2517, rc=100) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] notice: pcmk_wait_dispatch: Child process lrmd no longer wishes to be respawned Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] info: update_member: Node cheapo4.jrz.cbn now has process list: 00111302 (1118978) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] ERROR: pcmk_wait_dispatch: Child process cib exited (pid=2516, rc=100) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] notice: pcmk_wait_dispatch: Child process cib no longer wishes to be respawned Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] info: update_member: Node cheapo4.jrz.cbn now has process list: 00111202 (1118722) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] ERROR: pcmk_wait_dispatch: Child process crmd exited (pid=2520, rc=100) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] notice: pcmk_wait_dispatch: Child process crmd no longer wishes to be respawned Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] info: update_member: Node cheapo4.jrz.cbn now has process list: 00111002 (1118210) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] ERROR: pcmk_wait_dispatch: Child process attrd exited (pid=2518, rc=100) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] notice: pcmk_wait_dispatch: Child process attrd no longer wishes to be respawned Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] info: update_member: Node cheapo4.jrz.cbn now has process list: 00110002 (1114114) Nov 23 12:13:46 cheapo4 corosync[2509]: [pcmk ] ERROR: pcmk_wait_dispatch: Child process pengine exited
Re: [CentOS] Web Site centos.org is down
On Wed, 2011-08-17 at 19:41 +0100, Always Learning wrote: On Wed, 2011-08-17 at 19:32 +0100, Ken Smith wrote: Fine here on Claranet South London UK I'm trying from one of their London data centres, without success Fine from here (Netherlands) traceroute to www.centos.org (72.232.194.162), 30 hops max, 60 byte packets 1 ap.grote.net (192.168.100.4) 0.239 ms 0.249 ms 0.283 ms 2 lo1.dr6.d12.xs4all.net (194.109.5.213) 22.873 ms 26.838 ms 26.873 ms 3 1416.ae3.xr4.1d12.xs4all.net (194.109.7.137) 22.742 ms 22.741 ms 22.736 ms 4 asd-dc2-ias-ur10.nl.kpn.net (194.151.244.74) 26.692 ms 26.724 ms 26.691 ms 5 asd2-rou-1022.nl.eurorings.net (195.190.227.221) 26.699 ms 26.691 ms 30.444 ms 6 nyk-s1-rou-1001.US.eurorings.net (134.222.226.170) 118.541 ms 117.590 ms 117.575 ms 7 nyk-s1-rou-1021.US.eurorings.net (134.222.226.2) 113.604 ms 135.192 ms 135.168 ms 8 ahbn-s1-rou-1041.US.eurorings.net (134.222.228.10) 143.115 ms 143.108 ms 107.208 ms 9 ahbn-s1-rou-1001.US.eurorings.net (134.222.226.57) 107.201 ms ahbn-s1-rou-1001.US.eurorings.net (134.222.226.53) 111.149 ms ahbn-s1-rou-1001.US.eurorings.net (134.222.226.57) 111.142 ms 10 xe-7-1-0.edge1.Washington4.Level3.net (4.53.112.53) 111.150 ms 111.186 ms 111.160 ms 11 vlan70.csw2.Washington1.Level3.net (4.69.149.126) 115.034 ms vlan80.csw3.Washington1.Level3.net (4.69.149.190) 131.070 ms 131.042 ms 12 ae-91-91.ebr1.Washington1.Level3.net (4.69.134.141) 134.965 ms 134.937 ms ae-61-61.ebr1.Washington1.Level3.net (4.69.134.129) 107.262 ms 13 ae-2-2.ebr3.Atlanta2.Level3.net (4.69.132.85) 151.180 ms 147.212 ms 151.137 ms 14 ae-7-7.ebr3.Dallas1.Level3.net (4.69.134.21) 139.089 ms 143.037 ms 143.045 ms 15 ae-73-73.csw2.Dallas1.Level3.net (4.69.151.145) 150.940 ms ae-63-63.csw1.Dallas1.Level3.net (4.69.151.133) 147.025 ms ae-83-83.csw3.Dallas1.Level3.net (4.69.151.157) 146.992 ms 16 ae-22-70.car2.Dallas1.Level3.net (4.69.145.68) 146.894 ms ae-32-80.car2.Dallas1.Level3.net (4.69.145.132) 146.952 ms ae-22-70.car2.Dallas1.Level3.net (4.69.145.68) 143.067 ms 17 DATABANK-HO.car2.Dallas1.Level3.net (4.71.170.2) 142.983 ms 142.993 ms 142.981 ms 18 * * * 19 www.centos.org (72.232.194.162) 154.979 ms !X 154.962 ms !X 154.926 ms !X Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Why is iptables configured to accept packets on ports 50 and 51?
Hi, On Tue, 2011-05-17 at 11:13 -0700, Aleksey Tsalolikhin wrote: [root@hwdltsaloli ~]# cat /etc/sysconfig/iptables # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -p 50 -j ACCEPT -A RH-Firewall-1-INPUT -p 51 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT [root@hwdltsaloli ~]# lsof -i:50 [root@hwdltsaloli ~]# lsof -i:51 [root@hwdltsaloli ~]# /etc/services says: re-mail-ck 50/tcp # Remote Mail Checking Protocol re-mail-ck 50/udp # Remote Mail Checking Protocol la-maint51/tcp # la-maint51/udp # IMP Logical Address Maintenance Google turns up RMCP is a simple lightweight DP protocol for checking if you have mail on a server A quick Google search failed to turn up what is IMP Logical Address Maintenance The -p you are referring to is NOT a port, but a protocol (number), 50 and 51 stand for IPSEC protocols (AH and ESP). [michel@deltaflyer ~]$ cat /etc/protocols | grep 51 ah 51 AH # Authentication Header ipv6-auth 51 IPv6-Auth # Authentication Header for IPv6 (not in official list) [michel@deltaflyer ~]$ cat /etc/protocols | grep 50 esp 50 ESP # Encap Security Payload ipv6-crypt 50 IPv6-Crypt # Encryption Header for IPv6 (not in official list) Please read 'man iptables' :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Server offline :-( please help to repair software RAID
Hi, what is the output of 'cat /proc/mdstat' ? A healthy raid should look something like below : [root@janeway ~]# cat /proc/mdstat Personalities : [raid1] md2 : active raid1 sdb1[0] sda1[1] 256896 blocks [2/2] [UU] md0 : active raid1 sdd1[0] sdc1[1] 1465135936 blocks [2/2] [UU] md3 : active raid1 sdb3[1] sda3[0] 730218432 blocks [2/2] [UU] I have 3 RAID1 arrays (over 4 disks) On Thu, 2011-04-28 at 21:10 +0200, Alexander Farber wrote: Additional info (how many RAID arrays do I have??): # mdadm -D /dev/md3 /dev/md3: Version : 00.90 Creation Time : Sat Mar 19 22:53:25 2011 Raid Level : raid1 Array Size : 185151360 (176.57 GiB 189.59 GB) Used Dev Size : 185151360 (176.57 GiB 189.59 GB) Raid Devices : 2 Total Devices : 2 Preferred Minor : 3 Persistence : Superblock is persistent Update Time : Thu Apr 28 21:09:12 2011 State : clean, resyncing Active Devices : 2 Working Devices : 2 Failed Devices : 0 Spare Devices : 0 Rebuild Status : 38% complete UUID : 1b3668a3:4b6c5593:3d186b3c:53958f34 Events : 0.15 Number Major Minor RaidDevice State 0 860 active sync /dev/sda6 1 8 221 active sync /dev/sdb6 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Server offline :-( please help to repair software RAID
Hi, On Thu, 2011-04-28 at 21:26 +0200, Alexander Farber wrote: Hello, I didn't touch anything, just booted the hoster's rescue image. Cool :) # cat /proc/mdstat Personalities : [linear] [raid0] [raid1] md0 : active raid1 sda1[0] sdb1[1] 1023936 blocks [2/2] [UU] md1 : active raid1 sda3[0] sdb3[1] 20479936 blocks [2/2] [UU] resync=DELAYED md2 : active raid1 sda5[0] sdb5[1] 277728192 blocks [2/2] [UU] md3 : active raid1 sda6[0] sdb6[1] 185151360 blocks [2/2] [UU] [=...] resync = 85.3% (158109056/185151360) finish=5.3min speed=83532K/sec Let md3 rebuild, wait for md1 to rebuild (check regularly with cat /proc/mdstat) and reboot your machine without the rescue, it should come up again. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Server offline :-( please help to repair software RAID
On Thu, 2011-04-28 at 21:52 +0200, Alexander Farber wrote: On the 2nd try it has booted and seems to work. Did it give an error on the first try and if so, which one ? You should check /var/log/messages for i/o errors and check your disks with smartctl I have had my raid1 arrays rebuild sometime without a (for me known) reason. Even had a defective networkcard kernel panic the machine for two hours and the raids were still working afterwards ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 5.6 update experience - EXCELLENT!
Just updated 98 packages on this ole hardware raid 10 box - 5.6 final is running just fine. No problems. THANKS. Topping that; 175 packages dropped in on my test-machine at work. 8-) Feels like I'm getting spoiled with updates like this that just work. ;*) So far, so good. Great work CentOS-team/devs! Thanks from Uppsala/Sweden! Yesterday I updated my 10 Xen/KVM VM's at home and the three VPS'es I have. No issues whatsoever :) !!! GREAT WORK CentOS team ! The update was worth the wait :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can anyone suggest a SCSI 3 card in either PCI-X or PCI-E x 4 for a Dell Poweredge 2900?
On Thu, 2011-04-07 at 10:45 -0700, John R Pierce wrote: On 04/07/11 10:23 AM, Kevin Thorpe wrote: The only PCI-X card I have is an old ICP Vortex RAID controller and the Dell hangs with that installed (BIOS is disabled). It's only for a tape drive so performance isn't really an issue. parallel scsi is becoming somewhat archaic, and probably getting harder to find, but I've always liked the LSI Logic scsi cards. for PCI-X, that would be a LSI-U320, and for PCI-E X4, a LSU20320IE (both those have internal and external and external connectors on the same U320 SCSI channel) a few more choices here, http://www.lsi.com/storage_home/products_home/host_bus_adapters/scsi_hbas/index.html (some have dual channels, others have different connectors) What about a PERC4 from Dell (LSI Megaraid , PCI-X). You should be able to find them for a reasonable price on Ebay (70 euro). I used to have a few lying around ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can anyone suggest a SCSI 3 card in either PCI-X or PCI-E x 4 for a Dell Poweredge 2900?
On Thu, 2011-04-07 at 18:55 +0100, Kevin Thorpe wrote: On Thu, Apr 7, 2011 at 6:49 PM, Michel van Deventer mic...@van.deventer.cx wrote: On Thu, 2011-04-07 at 10:45 -0700, John R Pierce wrote: On 04/07/11 10:23 AM, Kevin Thorpe wrote: The only PCI-X card I have is an old ICP Vortex RAID controller and the Dell hangs with that installed (BIOS is disabled). It's only for a tape drive so performance isn't really an issue. parallel scsi is becoming somewhat archaic, and probably getting harder to find, but I've always liked the LSI Logic scsi cards. for PCI-X, that would be a LSI-U320, and for PCI-E X4, a LSU20320IE (both those have internal and external and external connectors on the same U320 SCSI channel) a few more choices here, http://www.lsi.com/storage_home/products_home/host_bus_adapters/scsi_hbas/index.html (some have dual channels, others have different connectors) What about a PERC4 from Dell (LSI Megaraid , PCI-X). You should be able to find them for a reasonable price on Ebay (70 euro). I used to have a few lying around ;) It already has a PERC6 (I think) but that's fully occupied with the RAID. Am I asking for trouble having both installed? No that should not be a problem. The PERC4 is fully supported under Centos btw ;) Regards, Michel p.s. I have a PERC4 available if you nee one, please contact me offlist, we can work something out. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can anyone suggest a SCSI 3 card in either PCI-X or PCI-E x 4 for a Dell Poweredge 2900?
On Thu, 2011-04-07 at 12:17 -0700, John R Pierce wrote: On 04/07/11 10:49 AM, Michel van Deventer wrote: What about a PERC4 from Dell (LSI Megaraid , PCI-X). You should be able to find them for a reasonable price on Ebay (70 euro). I used to have a few lying around ;) raid controllers are problematic for tape devices. many don't support plain passthrough SCSI Well, I did use one of these controllers for a tape drive actually :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Run from usb
You could try to be more specific ?? What do you want to run from USB ? And from what device ? On Sat, 2011-04-02 at 13:49 +0200, mattias wrote: Are it possible? With full root access? And gnome etc ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Run from usb
A quick Google search on 'centos from usbstick' returned the following link (among others) : https://projects.centos.org/trac/livecd/wiki/ImageFlash Regards, Michel On Sat, 2011-04-02 at 14:53 +0200, Kai Schaetzl wrote: Mattias wrote on Sat, 2 Apr 2011 14:19:17 +0200: I will run centos from usb like you can with e.g ubuntu A usb pendrive And what is the problem? This information is all available on the net. Kai ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSH Automatic Log-on Failure - Centos 5.5
Hi, On Thu, 2011-01-27 at 20:30 +0100, Michel van Deventer wrote: Lots from China, Russia and some South American countries. Sometimes even from my own country ! (Netherlands). Attempts from Holland always, in my experience, come from Leaseweb IPs but complaining to them produces no results. The most recent one came from a company in Amsterdam which stopped 5 minutes after I mailed the abuse address :) P.S. 'Een brug te ver' I saw in Deventer when it was first released. Een mooi stad met een leuke binnenstad. I hope it is still the same. I wouldn't know, my last name is 'van Deventer' but I have been only twice to Deventer in my life ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSH Automatic Log-on Failure - Centos 5.5
Security through obscurity doesn't work. It certainly helps defeat most potential intruders but not the most determined. IPtables does help too. We also run fail2ban at work. Very nice, installs (along with shorewall), and creates a temporary blacklist, blocking an IP that's tried five, I think, times to break in. All configurable, btw. Here too and from my own systems those 'scriptkiddies' are exposed to the world using http://twitter.com/fail2ban :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSH Automatic Log-on Failure - Centos 5.5
Hi, On Thu, 2011-01-27 at 10:57 -0500, m.r...@5-cent.us wrote: Here too and from my own systems those 'scriptkiddies' are exposed to the world using http://twitter.com/fail2ban :) So, where's most of your hits from? The most I see is China, followed by Brazil, then Korea (not sure which), then, a lot lower, Russia, Italy, and various others. Lots from China, Russia and some South American countries. Sometimes even from my own country ! (Netherlands). Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] tar-ing subdirectories separately
Hi, I want to backup a directory using tar, but want separate tarballs for each subdirectory. For example: # ls dir1 subdir1 subdir2 subdir3 Will it possible to do it using only tar command? Or will I need another separate piece of logic/control? I thought of writing a shell script with three tar commands for each subdirectory, but that's not elegant way of doing it. Also, it may not scale as number of subdirectories change. Any other solutions or tips for doing this will be really helpful. You can try something like : find /dir1 -type d -print -maxdepth 0 | while read DIR ; do tar cfv $DIR.tar $DIR/; done not tested, just off the top of my head and it's late, so if it breaks, you can keep and be happy with all the pieces ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to convert 7 cd iso images into one dvd image?
Hi, On Sat, 2011-01-15 at 12:37 +, Keith Roberts wrote: So, is there a technique or an open source tool that will create a dvd iso given the cd iso images? I've seen the DVD ISO files on select mirrors. it can be difficult to reliably transfer a 4GB file over http/ftp I've only had one DVD iso dowload corrupted over http. I use a fast mirror and d/l overnight with a wget bash script, run by cron. I have downloaded hundreds of DVD iso images with wget and curl during the past years. I had maybe one or two that were corrupted in one way or another, mostly because of improperly configured (windows) webservers. 4Gb with HTTP is no problem nowadays, FTP isn't either. If you have doubts about HTTP/FTP you can always use the Bittorrent way to download (also with commandline tools like btdownloadcurses or similar). It doesn't really matter when you download them although in some cases it can make a difference in speed to download overnight but with most tools you can also specify a maximum bandwith to use. To be sure an image is ok you can always check the image with the md5/sha1 checksum which is normally found in the same directory as the image on the HTTP/FTP server. kind regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Routing issue between 2 LANs
Hi, The Fedora box (1. network): [j...@idi ~]$ ping 192.168.236.80 PING 192.168.236.80 (192.168.236.80) 56(84) bytes of data. 64 bytes from 192.168.236.80: icmp_req=1 ttl=64 time=1.61 ms 64 bytes from 192.168.236.80: icmp_req=2 ttl=64 time=0.684 ms [j...@idi ~]$ ifconfig eth0 | grep -i 'inet addr' inet addr:192.168.1.3 Bcast:192.168.1.255 Mask:255.255.255.0 This doesn't make much sense without a route. Can you try a traceroute to the fedora box address from the 192.168.236.80 box to see how/why it gets there? Sure, here it is: From fresh reboot of the Fedora14 box: [j...@idi ~]$ su - Contraseña: [r...@idi ~]# route add -net 192.168.236.0 netmask 255.255.255.0 gw 192.168.1.100 dev eth0 [r...@idi ~]# logout [j...@idi ~]$ traceroute 192.168.236.80 traceroute to 192.168.236.80 (192.168.236.80), 30 hops max, 60 byte packets 1 puente (192.168.1.100) 0.286 ms 0.260 ms 0.239 ms 2 192.168.236.80 (192.168.236.80) 0.963 ms !X 0.949 ms !X 0.930 ms !X We know why it works this direction. [j...@idi ~]$ ping 192.168.236.80 PING 192.168.236.80 (192.168.236.80) 56(84) bytes of data. 64 bytes from 192.168.236.80: icmp_req=1 ttl=64 time=0.668 ms 64 bytes from 192.168.236.80: icmp_req=2 ttl=64 time=0.599 ms 64 bytes from 192.168.236.80: icmp_req=3 ttl=64 time=0.566 ms ^C --- 192.168.236.80 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 2000ms rtt min/avg/max/mdev = 0.566/0.611/0.668/0.042 ms [j...@idi ~]$ ssh 192.168.236.80 j...@192.168.236.80's password: Last login: Sun Dec 19 20:44:44 2010 from 192.168.1.3 [j...@control ~]$ I wanted the reverse path. Traceroute from the 192.168.236.80 box back to the fedora address. It doesn't make sense that it can return packets without a route going through the Centos box. Yes it does make sense, if the machine in the 192.168.236.0/24 has the centos box in the middle (the one with two LAN cards) as a default route, then you wouldn't need a seperate route. Packets would come back. Can you give the network settings for 192.168.236.80 ? Can you tell us more about the network setup ? routers in both networks ? Maybe a quick drawing should make things more clear. If you cannot set a route on the various devices it might help to use proxy-arp. regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] IPV4 is nearly depleted, are you ready for IPV6?
Hi, On Sun, 2010-12-05 at 13:50 +0200, Rudi Ahlers wrote: Seeing as IPV4 is near it's end of life (http://www.internetnews.com/infra/article.php/3915471/IPv4+Nearing+Final+Days.htm), I'm curios as who know whether everyone is ready for the changeover to IPV6? Is anyone using it in production already, and what are your experiences with it? I have a dualstack (IPV4/IPV6) ADSL connection at home and all my machines are IPV6 connected, some in combination with IPV4, but I have a few IPV6 only machines. My mail and some websites are adressable with IPV6. Is this really production ? Well, sort of :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SMS Gateway
Hi, On Thu, 2010-11-18 at 10:07 +0100, Jakub Jedelsky wrote: Hi list-people! Is there anybody who has expiriences with sms gateway on Centos? Our customer has a Siemens modem (connected via serial port) and finds any tool for sending and receving sms. I found something like gammu and smstools but I'm not sure with it.. Have you any tips? I use smstools on CentOS and RHEL with Siemens SMS modems, Nokia GSM (7110), Siemens GSM (M35) and GPRS modems. Works like a charm and very easy to use. You can use scripts to act on incoming SMS too. You can send SMS from the command line or by putting a file with the right content in the outgoing directory of the daemon. regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] what are these gstreamer codecs
i have problem with localhost in my mandriva server i use proxy Could you PLEASE use the mandriva maillist ?? This is a CENTOS maillist. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Hi, On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: other ideas? Maybe a crash course in troubleshooting using the rescue CD ? I don't know exactly which subjects are covered in your course ? Can you be more precise ? :) regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
(another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? As FTP is a clear-text protocol, I would surely advise against leaving it on :) I only run a vsftpd server on one of my machines for the customers comfort, but that will change in the near future ! I can easily image scenarios where unencrypted traffic with usernames/passwords is disallowed. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] slightly OT: dban
Hi, On 27/08/2010 15:19, m.r...@5-cent.us wrote: I'm trying to nuke a Dell Optiplex GX620. I've got a perfectly good dban 1.0.4 that I've used a bunch of times... but on this machine, it says starting, then dies, saying dban has finished with non-fatal errors. Check the log for more information It never gets to the interactive menu. Now that I've disabled the non-existant floppy drive, at least it does say to save the log file again, press enter I usually use dban but if it's not handy use a liveCD (me usually Ubuntu) and use dd: Assuming the drive to kill is /dev/sda: dd if=/dev/random of=/dev/sda Do it a few times for good measure. At work we have a policy of physically destroying drives which grates a little at times. I use shred from a rescue CD (Centos/RHEL/Fedora/Ubuntu). shred -vz -n3 /dev/sda clears the disk nicely (takes some tim though :) ) regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Ethernet Quad
On 08/12/2010 06:06 AM, Rudi Ahlers wrote: On Thu, Aug 12, 2010 at 3:01 PM, Jerry Franzjfr...@freerun.com wrote: On 08/12/2010 05:56 AM, Daniel Bruno wrote: Someone can indicate some Ethernet device Quad 10/100 to use with CentOS 5.x I don't know about 10/100. For 10/100/1000 I use Intel quad port boards. They work fine. Sorry to hijack this thread, but it could be relevant. As matter of interest, do these cards offer lower throughput than 4x single 1GB cards? If you should use them in a PCI slot yes, not if you use them in a PCI-X or PCI-e slot (although you could saturate a PCI-e x1 with 4 gbit ports I think). Depends mostly on if you are using PCI/PCI-X vs PCI-express. At high bit rates you can saturate the old PCI bus. A single gigabit port can pretty much saturate a 32-bit PCI bus at 33MHz. PCI-express can go a lot faster. The Intel Quad cards don't fit (and don't then) in a single PCI slot. The Intel Dual Gbit cards do and you can saturate a PCI slot with it quite easy :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] need help: about remove space
Hi, On Fri, 2010-04-30 at 07:46 -0700, adrian kok wrote: Hi all I have big file as below and would like to know how many line eg: wc -l file but can't figure out how to know If I type wc -l file, I only get the 1023 but it includes the space When I use cat file | tr -d \r \n. it gives me adrian alice.. I need it as fileB and then wc -l fileB. If those lines between the names are empty lines you might try : cat bigfile | egrep -v '^$' | wc -l or if you want the names into a second file : cat bigfile | egrep -v '^$' fileB Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Using Wireshark on CentOS without UI
Hi, Yesterday i had installed wireshark on my centos box which does not have the GUI , It is actually a hardened box. I installed the tool using the following command: yum install wireshark After installation i dont know how to proceed further in capturing the packets. I basically want to capture packets and copy them onto my windows box. On the windows box i can use the Wireshark UI to open the pcap file to view its contents. Wireshark in cli mode is called tshark. With 'tshark -i eth0 -w outfile' captures all traffic on eth0 to outfile. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL 6 Beta available for public download
Hi The /rhel/ directory in the link on the redhat pages (ftp://ftp.redhat.com/pub/redhat/rhel/beta/6/) turns out to be a /.rhel/ directory, hope they will fix it soon.. until then a script is monitoring the ftp server ;) Also the release notes give a 404. regards, Michel http://press.redhat.com/2010/04/21/red-hat-enterprise-linux-6-beta-available-today-for-public-download/ ...says it all. Have phun! Timo Hmmm. I get a 505. B.J. CentOS 5.4, Linux 2.6.18-164.15.1.el5 x86_64 07:55:04 up 1 day, 22:25, 1 user, load average: 0.09, 0.14, 0.16 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL 6 Beta available for public download
And now it works :) happy downloading ;) Hi The /rhel/ directory in the link on the redhat pages (ftp://ftp.redhat.com/pub/redhat/rhel/beta/6/) turns out to be a /.rhel/ directory, hope they will fix it soon.. until then a script is monitoring the ftp server ;) Also the release notes give a 404. regards, Michel http://press.redhat.com/2010/04/21/red-hat-enterprise-linux-6-beta-available-today-for-public-download/ ...says it all. Have phun! Timo Hmmm. I get a 505. B.J. CentOS 5.4, Linux 2.6.18-164.15.1.el5 x86_64 07:55:04 up 1 day, 22:25, 1 user, load average: 0.09, 0.14, 0.16 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] release
Hi, On Sun, 2010-03-21 at 19:30 +0100, mattias wrote: [r...@vps ~]# rpm -qi centos-release Name: centos-release Relocations: (not relocatable) Version : 5 Vendor: CentOS Release : 4.el5.centos.1Build Date: tor 1 okt 2009 14.28.40 Install Date: sön 21 mar 2010 14.20.07Build Host: builder16.centos.org Group : System Environment/Base Source RPM: centos-release-5-4.el5.c entos.1.src.rpm Size: 35485License: GPL Signature : DSA/SHA1, tor 1 okt 2009 14.41.26, Key ID a8a447dce8562897 Summary : CentOS release file Description : CentOS release files [r...@vps ~]# So it's Centos 5.4, a cat /etc/redhat-release should confirm it ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Motherboards for HPC applications
Hi, 5400 series CPU). I have an Asus board that runs Linux and Opensolaris just fine, but will not allow any version of Windows to install. I want one of those :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to open a tcp port?
Hi, Greetings, On Wed, Mar 3, 2010 at 6:20 PM, Rajagopal Swaminathan raju.rajs...@gmail.com wrote: Greetings, On Wed, Mar 3, 2010 at 6:10 PM, hadi motamedi motamed...@gmail.com wrote: is telnetd installed? # yum install telnet-server telnet is the telnet deamon running on machine #1? chkconfig telnet on or from: http://www.cyberciti.biz/faq/how-do-i-turn-on-telnet-service-on-for-a-linuxfreebsd-system/ [quote] The configuration file for telnet is /etc/xinetd.d/telnet. To enable telnet server you need to open this file and make sure disable = no read as disable = yes. [unquote] service xinetd restart or /etc/init.d/xinetd restart Why are you telling him to install a telnetd ?? He's trying to connect to a port using telnet (client) to see if a server is listening on it. I doubt by the way if a missing package is the issue. Please check first if there is a server listening on tcp 4965 netstat -ltpn | grep 4965 the output should show you which application is listening on tcp/4965 if there no output, there's nothing listening and you should fix your application first (maybe it's not started ?). If there's something listening on tcp/4965 you can try to use telnet localhost 4965 to see if you can connect or use telnet ip.nu.mb.er 4965 if the application is only listening on a single ip. use iptables -L -vnx | grep 4965 to see if theres a firewall rule blocking it (or accepting) if you have the firewall active (do you?) Please let us knwo the outcome of these commands Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Temperature sensor
Hi, On Fri, 2010-02-26 at 17:18 +0100, Dominik Zyla wrote: On Fri, Feb 26, 2010 at 08:13:56AM -0800, Benjamin Franz wrote: Bowie Bailey wrote: Does anyone know of a cheap temperature sensor that will work with Linux? I don't need a fancy monitoring appliance, I just want a simple sensor that I can connect to one of my monitoring servers to let me know if the server room is getting hot There is a good chance that lm-sensors supports your servers with no additional hardware needed. To configure lm-sensors, run 'sensors-detect' as root. If your cpu/motherboard is supported you will be able to read system temps directly either using SNMP or by scraping 'sensors' output. But it'll not give information about temperature in server room. I use 1-wire devices with CentOS. See http://owfs.org/ If you google a bit there are many suppliers who sell complete kits for serial and USB (I use USB) connections for a fair price. Maybe it's a bit overkill for 1 sensor, but its easy to connect many sensors to a machine (I have about 20 :) ). You can make it really cheap if you have some soldering skills ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Temperature sensor
On Fri, 2010-02-26 at 18:34 +0200, Eero Volotinen wrote: You can make it really cheap if you have some soldering skills ;) what is solution for people without soldering skills? ;) Learn it or find someone who can OR if all else fails, buy complete products :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] one server handled sendmail added two more servers messes things up
Hi, All three machines have the same FQDN. something like A.mydomain.com, B.mydomain.com, C.mydomain.com No, they don't have the same fqdn, the fqdn includes the hostname. The IP numbers are X.Y.Z.170, .171 and .172 All three machines have MX records. they all have the same domain name. There's your error, the new one shouldn't have mx records for the domain if they are not designed to accept mail for that domain. It is a big deal to request changes from the provider so I was hoping there was a way to just tell the two new machines that incoming email to them just send on over to the the first machine. Is there a way to do that - or am I going about this the wrong way? There is a way but maybe there's a quicker (and dirtier) way. Just reconfigure sendmail on the two new machines to *not* listen on the public ip on the smtp port. Otherwise block port tcp/25 with iptables (iptables -I INPUT -j REJECT -p tcp --dport 25) But you should really get your DNS fixed. regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHCE
On Tue, 2009-12-29 at 12:06 -0600, Dan Burkland wrote: I realize this is a CentOS mailing list but because it is based directly on RHEL, I would assume there are a few individuals who frequent the list that have passed the RHCE exam. I plan on taking the exam this March and was wondering if there are any tips you RHCEs out there could provide that may help me. Well, there's at least one RHCE (and RHCA) on this list :) But we (and you when you take the exam) are not allowed to talk about it. If you haven't booked it yet, try to get the 'rapid track' course with exam, it takes you through the whole system and gets you up to speed on a lot of subjects you might not be using everyday (I do not know what you are doing for a job, but I can imagine that you don't use every aspect of RHEL (or CentOS) on a daily basis). If you are VERY experienced you can try to take the exam without preparation, it is performance based as Red Hat calls it. See http://www.redhat.com/certification/rhce/ for more information and some prep questions. Regards, Michel (RHCE #804006422520400) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rhn_register
On Sat, 2009-12-26 at 07:38 -0800, Drew wrote: Is this available on CentOS systems? If so, what advantage does running it provide? As far as I know, that package is used to register your server with RedHat as part of the RedHat Network subscription system to get their updates. On a CentOS box it's pretty much pointless. Unless you're using Spacewalk, the open source version op RHN, in which case, it's very useful :) I have all (ahum 10) my machines connected to a virtual server running spacewalk. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cron job? or something else? help..
Hi, On Mon, 2009-12-14 at 08:51 +0100, Michel van Deventer wrote: Hi, On Mon, 2009-12-14 at 09:46 +0200, Roland Roland wrote: Hello, i have a certain issue at hand that i'm trying to solve. there's a certain command that i need to execute 10 minutes after boot. how can i set that? im not very expert with cron jobs but can it be done that way? i know that cronjob works on specified time but how can i set it to run with '10 min after startup as a condition ? There's no such option in cron. But the easiest way to do this is to put it in /etc/rc.d/rc.local like this : sleep 600 command this waits 600 seconds and (if succesfully) executes your command And (of course) slows down bootup :) Better put the sleep 600 in your script and start the script detached from /etc/rc.d/rc.local (with an ) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cron job? or something else? help..
Hi, On Mon, 2009-12-14 at 09:46 +0200, Roland Roland wrote: Hello, i have a certain issue at hand that i'm trying to solve. there's a certain command that i need to execute 10 minutes after boot. how can i set that? im not very expert with cron jobs but can it be done that way? i know that cronjob works on specified time but how can i set it to run with '10 min after startup as a condition ? There's no such option in cron. But the easiest way to do this is to put it in /etc/rc.d/rc.local like this : sleep 600 command this waits 600 seconds and (if succesfully) executes your command Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] bsd mkfile command in centos - a wish
Hi, On Mon, 2009-10-05 at 11:14 -0700, aurfal...@gmail.com wrote: Hi Les, Yes, I do run dd to create Xen image files but was hoping to use a more elegant solution. Looks like I'll continue with dd but if any one else has some secrets, please share. qemu-img create -f fmt imagefile [size] is more elegant :) Kind Regards, Michel van Deventer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sshd options - centos 5.3
Hi, On Tue, 2009-09-22 at 11:01 -0700, Karl Kobata wrote: I have installed cento 5.3. I enabled the ssh deamon. I have found that 2 options that I normally use does respond as I expect. Has anyone else had similar problems with the following options in sshd_config: - Port – if I set the port to anything other than 22 (default), using ssh –p n...@servername, does not work. Yet if I leave keep the default, then ssh n...@servername allows me to login. Did you check your iptables rules ? port is closed by default. I use a sshd with port 443, so it should work. - PasswordAuthentication no – if I set this option to “no” (default is “yes”), and my ssh key is either missing or in error, I will be prompted for user system login password. If this is set to “no”, it should not allow me to login if I have not ssh key specified or in error. Has anyone else run into this problem. Erhm.. I remember it does ask for a password but just doesn't let you in. But I can me mistaken :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sshd options - centos 5.3
Hi, On Tue, 2009-09-22 at 11:01 -0700, Karl Kobata wrote: I have installed cento 5.3. I enabled the ssh deamon. I have found that 2 options that I normally use does respond as I expect. Has anyone else had similar problems with the following options in sshd_config: - Port – if I set the port to anything other than 22 (default), using ssh –p name at servername, does not work. Yet if I leave keep the default, then ssh name at servername allows me to login. Did you check your iptables rules ? port is closed by default. I use a sshd with port 443, so it should work. Was this the only change you made to change the port? Yes the only change to change the port in the SSHD. Did you also makes changes in iptables? Of course : iptables -I RH-Firewall-1-INPUT -j ACCEPT -p tcp --dport and after that to make it persistent : service iptables save for more options : man iptables (which you should read before playing with firewalls). - PasswordAuthentication no – if I set this option to “no” (default is “yes”), and my ssh key is either missing or in error, I will be prompted for user system login password. If this is set to “no”, it should not allow me to login if I have not ssh key specified or in error. Has anyone else run into this problem. Erhm.. I remember it does ask for a password but just doesn't let you in. But I can me mistaken :) It does ask you for a password, and if you entered your user system password, It will log you in. I am surprised that this failure exists. I think its not a failure ;) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple resource manager?
Hi, have a look at Torque (http://www.clusterresources.com/products/torque-resource-manager.php) It might be a bit overkill, but it might also suit your needs :) Regards, Michel On Mon, 2009-07-27 at 15:22 -0300, Eduardo Grosclaude wrote: I need to serialize computing job requests for two different multicore machines, and in some near future, for a cluster. I have worked with SGE but it requires NFS and other administrative steps, plus it seems a bit overkill for my needs. I guess some simpler queue managing engine may have been developed, possibly over SSH. Any pointers? TIA. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] company exchange server exim best practices.
Hi, my solution to this kind of problem is the following : Set up a relay mailserver (in my case Postfix) which accepts mail (and has the MX record for the domain) for the domain but has no mailboxes. Postfix takes care of spamblocking (dnsbl and spamfilter ). In Postfix I use a transport table to relay the mail to the Exchange/Whatever mailserver, that can also be on a nonstandard port (in my case port 2525). Delivering to a dyndns host is really easy, Dyndns uses a short ttl for the hostname (something like 3 minutes ?). I set up a nameserver record which let a 'fixed' name (like mail.domain.nl) point to the dyndns name using CNAME. mail.domain.nl. IN CNAME mailhost.dyndns.org Sending the mail to the dyndns hostname directly without the nameserver trick is also possible. Using a non-standard port is to bypass SMTP limits from the provider and to make (almost) sure your mail doesn't get delivered to a mailserver of someone else ;) Regards, Michel On Fri, 2009-04-03 at 09:40 +0200, Rudi Ahlers wrote: Hi all, I hope this isn't too OT, but since I use a CentOS5.2 + Exim mail server (which is hosted in one of our data centres) I don't think it should be. On of our clients use an MS Exchange 2003 SBS server, with exchange for their internal email. We provide them with a domain, ADSL (which uses dynamic DNS) and POP3 email. They don't have an spam filter program on the exchange server itself due to costs, so I have setup each user on the Exim server, which runs ASSPX for anti-virus / spam filter / etc. Then I setup the SBS 2003 server to pull the email via POP3, but this doesn't seem to work too well, cause the exchange server doesn't always download the POP3 email, and then the users often sit without email until I go there to manually download the mail again. I have tried changing the MX record to point to their DynDNS address, and it works well, but then they get a lot of spam. And the cost of a server-side spam solution is just too expensive, and they also pay for the bandwidth uses when spam comes in. So, I moved their MX record back to the Linux server. But now I sit with the problem of the POP3 connector failing from time to time. So, I would like to know, is there a way to push (not forward) mail from the Linux server, after it has arrived and spam been blocked, to another domain, but with the same email address? i.e. the domain in question is attorneys.co.za and I've setup attorneys.dyndns.net as the dynamic domain, but the exchange serves email for attorneys.co.za Forwarding email doesn't work, since there's no such user as b...@attorneys.dyndns.net, but rather b...@attorneys.co.za. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pop3 attack
Hi, RR charges you an extra $50/mo for static ip! I don't have many other choices for a decent high speed connection. DSL is too slow in my area. We have some ISP's here in the Netherlands which have spam relayed through their mailservers, which gives the same problem, blacklisted smarthosts of big ISPs. One way to get around it is to get yourself a VPS (virtual private server) for a small amount ($20/month?) and set up your own 'smarthost' (maybe together with some friends/coworkers?). You can then even use a non-standard port to relay your mail through it and even encrypt if you wish. I have my smarthost set up at such a server because my laptop goes around different networks and isps and I don't want to change my configuration every time :) regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] CentOS on Dell Poweredge 2850
Hi, On Wed, 2008-09-17 at 10:26 +0200, [EMAIL PROTECTED] wrote: Ian Forde scribbled on Tuesday, September 16, 2008 8:35 PM: Our department's planning to buy a refurbished Dell Poweredge 2850 running dual-xeons and with a rather big raid array (8x 146GB). *My* plan is to install CentOS on this machine and I'd like to hear with you guys if there are any gotchas' doing this. My main concern is the ability of CentOS to recognise the raid-controller of the Dell and run a raid5-array as well as drivers for the onboard NICs. Any feedback on this is appreciated. I don't forsee any problems. I'm running CentOS 5.2 on a 2950 III and omreport installs fine without any problems. I can see the RAID array and monitor via the Nagios omreport plugins (search nagios-exchange for them). Onboard NICs shouldn't be a problem either... Thx. A former unix-admin at the dept thinks it might be a little on the old side hardware-wise, this particular server is about four years old. I'm split... This particular Poweredge modell is certified for RHEL 2 and 3. If I'd try to install RHEL5 on it, would bad things happen, or is it just a support issue? Seeing how CentOS 5.2 is equivalent to RHEL5, I don't see *what* could happen though... Kernel panics?? I'm running RHEL5 and CentOS 5 on many PE 2850's. As long as you use the Dell PERC4 or PERC5 controllers all will work well. Onboard NICs work fine too. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] problem with slave dns servers
Hi, what is the TTL of your DNS records ? After TTL expires, the slaves don't respond to queries either, because the records aren't valid anymore. If your primary is down longer than the TTL of your DNS records you could reconfigure one of the slaves as a new primary or maybe consider making more than 1 primary. On Thu, 2008-08-28 at 09:01 +0200, Romeo Ninov wrote: Have you describe all the slave servers in you domain configuration (in registrant)? Mark Quitoriano wrote / napísal(a): Hi, I have 4 bind9 dns installed on centos 4. My primary dns server went down and all of my domains doesn't resolve even if the 3 slave dns is up and running. Im not sure where to configure this is it in my domain registration or in bind? -- Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] data rate on NIC card
On Tue, 2008-08-26 at 11:20 +0530, Gopinath Achari wrote: hi how to check the data rate on the nic card in centos i.e, at what speed the data is transmitted and received on ethernet interface in terms of kbps or bps any command is available in centos 5.1 You can use ethtool to check for negotiated networkspeeds. If you want to check for current speeds of network connections, I usually use iptraf. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos on intel D945GCLF board
Hi, I use the same board for my backupserver. I just added a gigabit Intel card to the board (on the pci bus) and all went well. No more issues with realtek hardware. On Tue, 2008-08-19 at 07:20 -0700, ABBAS KHAN wrote: Is this the kernel module used for the LAN card driver? r8169 On Tue, Aug 19, 2008 at 7:11 AM, Janez Košmrlj [EMAIL PROTECTED] wrote: I tried kernel-2.6.18-92.1.10.el5.x86_64. I know of the driver on the Intel page, but I would like a system that works out of the box. So I can update it any time, since this system will be a router and it will be connected to the internet 24/7. http://mirror.centos.org/centos/5.2/updates/x86_64/RPMS/kernel-2.6.18-92.1.10.el5.x86_64.rpm ABBAS KHAN wrote: Here is the driver, provided for Intel for the board. http://downloadcenter.intel.com/Detail_Desc.aspx?ProductID=2916DwnldID=16242lang=eng http://downloadcenter.intel.com/Detail_Desc.aspx?ProductID=2916DwnldID=16242lang=eng You can compile it and give it a try as a last resort, if everything else fails. Could you please tell the version of kernal you're using? A simple search showed that this LAN card has a lot of issues with kernal. Thanks. On Tue, Aug 19, 2008 at 6:38 AM, Janez Košmrlj [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: I know that disabling the LAN in BIOS works. The problem is that I need the on-board card, since I am trying to build a home router and I need 2 LAN cards for that. And the board has only one PCI slot. ABBAS KHAN wrote: I've Intel DG31PR with almost same Realtek chipset. Disabling / enabling on board LAN from the BIOS works flawlessly. You can make sure if the board is certified at hardware.redhat.com http://hardware.redhat.com http://hardware.redhat.com. I guess to test kernal you can use CentOS Live CD and the dmesg tool as well. Good luck! On Tue, Aug 19, 2008 at 6:22 AM, Janez Košmrlj [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Hi, I am trying to install centos on the intel D945GCLF board. It's a mini-ITX board with the atom processor and it uses the Realtek RTL8102EL LAN chipset. When I disable the on-board LAN card it installs and runs OK, but when I enable it, I get kernel panic at boot. The board runs perfectlj with Fedora 9 (with the latest kernel) or with Ubuntu server. My question is: is there some way to run centos on this board (test kernel, i can try for example)? ___ CentOS mailing list CentOS@centos.org mailto:CentOS@centos.org mailto:CentOS@centos.org mailto:CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org mailto:CentOS@centos.org
Re: [CentOS] I'm Stuck
Hi, On Wed, 2008-08-06 at 11:36 -0500, Bob Smither wrote: Dear List, I have an older Sony Vaio that I would like to install CentOS on. The unit has a USB CD that can _not_ be used as a boot device (the Sony one could, but mine is an aftermarket CD and can't be used to boot). It does have a floppy drive that it can boot from. The only network install method for CentOS that I can find uses a CD, not a floppy. Is there anyway to get CentOS on this machine? Can you boot from USB stick? You then could use the Live CD, converted to USB or use another bootable linux on it. As long as you have a bootable partition where you can put a vmlinuz, initrd.img and grub, you're in business. regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] command line configuration of DSL access
Hi, On Fri, 2008-07-11 at 12:13 +0200, Gergely Buday wrote: Hi there, how can I configure a DSL access using the command line? The Red Hat Certified Engineer Linux Study Guide does not describe this and I could not find any description on the internet. Maybe you can provide us with some more information, as like which provider are you using in which country, what kind of hardware are you using to connect to DSL (router/pci card?), which version of CentOS are you using and maybe other info that might be of use ? kind regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] EPIA-M board for Centos
On Tue, 2008-07-01 at 15:27 +0100, Karanbir Singh wrote: Robert Moskowitz wrote: Is there any problems using this board? I have a dead board in a Book-PC (board size 10.5x6) so am looking for a new board. if you are going to use centos-5 make sure you get a cpu that works with it :D ( there is no i586 support in centos-5 ) My backupserver is an EPIA-M1, runs CentOS 5 perfectly. I thought all Via Epia's 1Ghz and up speak i686 :) But you might want to Google to be sure. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] INIT 5 and system is gone
Hi, On Mon, 2008-06-30 at 10:33 -0400, Robert Moskowitz wrote: I had been running a system on Centos 5.1 at INIT 3. I did the upgrade to Centos 5.2 with the aid of the powernowk8 patch. Previously I would VNC into the unit when I needed to do admin stuff with a GUI. Well I noticed that I was NOT getting GNOME via VNC since the upgrade (worked before just fine with 5.1). So I tried an INIT 5 from the command line (always worked before), but the system seemed to hang. Video was off. I rebooted, went to INITTAB and changed init to 5 and rebooted. Probably a tragic mistake. Now on boot, right after UDEV gets an OK, the screen goes blank and the drive stops turning. I tried booting with the 5.1 kernel, and same behaviour with the system blanking out and all load activity stopping after UDEV loads. So I am quite stuck at this point. Is there an option that I can edit into the kernel command at boot time to init in 3? And then what do I try? Reboot your system, when you see the grub menu, press a key. Select the kernel you wish to boot and press 'e', select the kernel line, press 'e' again and add '3' at the end of the line (or '1' if you wish to boot in single user mode). Then press enter and 'b' to boot. Your system should now boot up in level 3. You can log in as root at the login prompt. If that even doesn't work, the reboot in single user mode. For the rest, we first need logfiles, /var/log/messages /var/log/boot.log and maybe /var/log/Xorg.0.log Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 5.2 blues
Hi, On Wed, 2008-06-25 at 12:29 +0200, [EMAIL PROTECTED] wrote: Hi all, Am I the only one to have had a totally trouble-free upgrade to 5.2?? I get the feeling that most everybody seems to have *some* problems... I upgraded 4 machines (all virtual) without any problems from 5.1 to 5.2, tonight I'll upgrade the host machine but I do not expect any problems. I'm only cautious to upgrade my old webserver which is a dual PIII and is located about 100km from my home ;) I wouldn't like a kernel panic there. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] 5.2 blues
On Wed, 2008-06-25 at 13:30 +0200, [EMAIL PROTECTED] wrote: Andreas Micklei scribbled on Wednesday, June 25, 2008 12:37 PM: Thank you CentOS team for the good work! I second that! Me too !! And another donation on its way to CentOS ! :) Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] exam
Hi, is it possible to prepare for a certified (big North American Linux vendor) engineer exam with a CentOS install ? I assume the Linux vendor you mean is Red Hat, then yes, you can. I have heard that the test contains questions on specific GUIs, are they included in the CentOS distribution? I am an RHCA and I did all my preparations for exams with CentOS (except for the RH423, it uses Red Hat Directory server). CentOS and Red Hat are more than alike enough for the exams (and the courses by the way :) ). Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] booting usb stick
Hi, On Mon, 2008-06-16 at 10:38 -0400, Jerry Geis wrote: Hi all, I have been trying to get a usb stick 8G to boot centos. I am as far a it boots and hangs at Switching to new root. I take the same USB stick and put it another PC and it boots fine. What might I look for as to why the machine hangs at switching to new root? Of course the machines are different. The one that does not boot is an ebox 2300sx and the one that does boot is an amd 4800+ with all disks unplugged except the USB stick. I am so close. Looks like the ebox 2300sx has a Vortex86sx chip, which is i486 compatible, not i686 like a default CentOS install/live. You might have to compile a new kernel for i486 architecture or use a different distro which is directly i486 compatible. Regards, Michel p.s. getting this to work on a 2300sx might be a challenge :) But CentOS doesn't support the i486. So you're on your own ;) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: booting usb stick
Hi, On Mon, 2008-06-16 at 13:08 -0400, Jerry Geis wrote: Hi, On Mon, 2008-06-16 at 10:38 -0400, Jerry Geis wrote: Hi all, I have been trying to get a usb stick 8G to boot centos. I am as far a it boots and hangs at Switching to new root. I take the same USB stick and put it another PC and it boots fine. What might I look for as to why the machine hangs at switching to new root? Of course the machines are different. The one that does not boot is an ebox 2300sx and the one that does boot is an amd 4800+ with all disks unplugged except the USB stick. I am so close. Looks like the ebox 2300sx has a Vortex86sx chip, which is i486 compatible, not i686 like a default CentOS install/live. You might have to compile a new kernel for i486 architecture or use a different distro which is directly i486 compatible. Regards, Michel p.s. getting this to work on a 2300sx might be a challenge :) But CentOS doesn't support the i486. So you're on your own ;) I found a howto for the 2300sx, I have used their config for kernel 2.6.18, applied their patch. This is all good. I boot now and I get all the way to Switching to new root and then it just stops. It gets past Red Hat nash starting 4.2.1.13 What might it looking for here that it is stopping? You libraries are probably still compiled for i686, you will have to recompile them too. So it would be more of a challenge to get things working. I remember trying to get a CentOS distro running on a Via EPIA board (533 or 800MHz) but that failed for the same reasons. Installing Debian worked for me then :) What might be something I can try? Recompile your libraries for i386 or i486. But then you might run into other binaries that are compiled for i686. As said before, CentOS doesn't support i586 and lower. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: really dumb question about APC UPS
Hi, On Sun, 2008-06-08 at 01:45 -0700, Jamie Lists wrote: We have about 4 servers connected to an APC UPS. The UPS only has one UPS connection. So my question is, in a power outage how do i get all my servers to safely shutdown? Do i run a USB hub? Do i write a script on the one machine connected to turn off all the other machines? I'm confused. If you use the apcupsd software you can create a network (UPS) server and clients which will automatically shutdown on a signal from the server. But make sure you connect your network switch to the ups as well ;) You then only have to connect 1 machine to the ups which will act as a server for the other three. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Compact Flash..
Hi, On Sun, 2008-06-08 at 16:38 -0500, Ryan Nichols wrote: Ok.. Im curious.. Can I install CentOS on a compact flash card, then have the MySQL on another drive? to have the compact flash like read only for the OS to boot from, then do the swap, mysql,etc from the other drive? How hard would this be to do? Yes, you can (of course). My backupserver boots from CF (only kernel +initrd) and then continues from harddrive. I do not have a howto here but if you search google, you'll probably find a lot of them. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba AD valid users issue
Hi, On Fri, 2008-06-06 at 17:26 -0400, [EMAIL PROTECTED] wrote: I have setup a new server centos 5.1 server as a storage server with over 7TB of storage. The server has been integrated into a large Active Directory network there are 5 primary AD servers and a large number of local AD server at each location (over 20). There are also over 15 trusted domains hundreds of groups and thousands of users. It has been quite a challenge to integrate the Linux server with Samba into this incitement. I am now at a point where I can change user and group ownership of filed and folders at AD users and connect to the server with a windows client. There are also issues with Samba not starting on bootup (yes the service is set to start at level 3 – system starts non GUI). And it seems to take quite a while for system to recognize domain users on startup. The [TEST] share works with out issue. The [TEST-ENG] share is not working no matter what I do. The issue that I am having is that most of the groups have a [EMAIL PROTECTED] at the beginning. Ie: @DIV-Engineering This conflicts with the Samba “valid users = “ directive in the smb.conf. I have been able to change the group ownership to [EMAIL PROTECTED] in the file-system without any issues. Is there any way to do this? [global] workgroup = XXX realm = XXX server string = Samba Server Version %v security = ADS auth methods = guest, sam, winbind obey pam restrictions = Yes password server = nycbcc01.xxx.ad.xxx.net # winbind separator = \\ # passdb backend = tdbsam wins server = 192.20.76.98 ldap ssl = no winbind use default domain = yes idmap uid = 1-10 idmap gid = 1-10 winbind enum users = Yes preferred master = no encrypt passwords = yes template homedir = /home/samba/%D/%U cups options = raw [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /var/spool/samba printable = Yes browseable = No [TEST] path = /home/samba/shares/TEST valid users = @XXX\Domain Users force group = XXX\domain users read only = No create mask = 0774 force create mode = 0775 directory mask = 0775 force directory mode = 0770 force directory security mode = 0770 [TEST-ENG] path = /home/samba/shares/TEST valid users = @[EMAIL PROTECTED] force group = [EMAIL PROTECTED] read only = No create mask = 0774 force create mode = 0775 directory mask = 0775 force directory mode = 0770 force directory security mode = 0770 Having a quick glance at the config I remember I had a sort of same issue, set your winbind seperator character to something like '#' and do the same in the valid users and groups and it should give you more working stuff ;) The \ character is a line break which tells samba to continue reading the config on the next line including spaces and linebreaks... regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sendmail and spam
Hi, On Thu, 2008-06-05 at 00:23 -0500, Les Mikesell wrote: Alain Terriault wrote: What is todays most effective combination to filter spam ? On my old Redhat 3 system I used Sendmail and Spamassasin .. it was good, but with the current setup we are getting way to much spam. Looking around I found new players, well some I did not know then and they are very interesting.. MailScanner .. http://www.mailscanner.info/ Sagator .. http://www.salstar.sk/sagator/ Smf .. http://smfs.sourceforge.net/index.html dspam .. http://dspam.nuclearelephant.com/index.shtml I am tempted to go with smfs because it is familiar .. but, mailscanner seems popular Another good choice is MimeDefang (http://www.mimedefang.org/). There are rpms of it and clamav in the rpmforge repo. I use a combination of Postfix with rbl, spamassassin, clamav and amavisd. It filters about 95-98% of my spam. I also have a spamcop account to report the spam that gets through. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] xinetd question
Hi Jerry, On Tue, 2008-04-29 at 08:32 -0400, Jerry Geis wrote: I am using centos 5.1 x86_64 I am wanting to restart xinetd when I do service xinetd restart it says xinetd unrecognized service when I do /etc/init.d/xinetd restart I get no such file or directory. How does one restart xinetd? On a CentOS 5.1 system, xinetd is not installed by default and thus not startable. You should first install xinetd using 'yum -y install xinetd'. Then you can restart xinetd. Where do you need it for ? Regards, Michel van Deventer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSl Certificate problem
Hi Tom, the location of SSL certificates changed from C4 to C5, certificates are located in /etc/pki/tls on C5. Apache is also a newer version on C5 (2.2 , 2.0 in C4). You should check your configs manually and change them accordingly. I can help you if you post your C4 config. Regards, Michel van Deventer On Fri, 2008-03-28 at 18:37 -0400, Tom Diehl wrote: Hi, I have a c4 server that I am trying to migrate an ssl site over to a new C5 machine with all of the updates. The certificate is an equifax cert and works as advertised on the C4 server. When I move it over to the C5 machine I get error in firefox that says error code -12227 which http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html says is an SSL_ERROR_HANDSHAKE_FAILURE_ALERT. In addition it says that this means that SSL peer was unable to negotiate an acceptable set of security parameters. If I try to open the site in IE, it prompts for a client certificate. This fails because I am not using client certs. In the apache config for ssl.conf I have SSLVerifyClient none. I have also tried setting it to optional with the same results. In the past moving these sites to a different machine was as simple as copying the certs and the config files over to the new machine, reloading httpd and everyting just worked. Is there something different about ssl on C5? Does anyone know a good way to troubleshoot this. Google and the docs are not helping. What am I missing? Regards, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how do I run something on a newly installed server, on it's 1st boot only?
Hi, you can use the %post part of the kickstart for that, then your script will run after installation is complete but before the reboot. If you need to run it after the first reboot, I'd put it in /etc/rc.d/rc.local and let it remove itself after running succesfully. And of course copy the script to the server using the %post part of kickstart ;) Regards, Michel On Sat, 2008-03-29 at 09:11 +0200, Rudi Ahlers wrote: Hi all I'm busy with a kickstart file to automate server installations, and I need to run a bash script right after the server has been installed for the first time. But the script only needs to run once, and it needs to run automatically. How do I do that? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Allocaation resource error (DELL Optiplex 755)...
Hi, I had EXACTLY the same problem, running Fedora 8 (64-bit) on a Optiplex 755 with 4Gb and a 8600GT. You should update you DELL bios to rev A07 (released about a month ago) then it works. There's a know bug in bios A04 and lower. Regards, Michel van Deventer On Fri, 29 Feb 2008 20:05:47 +1100, John.Giovannis wrote Hi all, (My first time in seeking assistance via the CentOS mailing list ... Not sure if I should be submitting this as a possible kernel bug). I've successfully installed Cent OS 5.1 (kernel: 2.6.18-53.1.13.el5) on an Optiplex 755 (EM64T). However I'm not able to get a NVIDIA Gigabyte 8600GT (PCI-e) card to work with the system despite successfully installing the latest NVIDIA drivers (NVIDIA-Linux-x86_64-169.07-pkg2.run). I've tested the same configuration in Windows with no difficulties. I suspect the kernel is not able to allocate the appropriate hardware resources possibly resulting in the card failing to fire up properly: Some diagnostics: A snippet of the Xorg log file: # more /var/log/Xorg.0.log | grep -E 'WW|EE' (WW) warning, (EE) error, (NI) not implemented, (??) unknown. (WW) INVALID MEM ALLOCATION b: 0x13a00 e: 0x13aff correcting (EE) Cannot find a replacement memory range (WW) INVALID MEM ALLOCATION b: 0x13800 e: 0x139ff correcting (WW) INVALID IO ALLOCATION b: 0x13800dc80 e: 0x13800dcff correcting (EE) end of block range 0x begin 0x13800 (EE) Cannot find a replacement memory range (EE) NVIDIA(0): The NVIDIA GPU at PCI:1:0:0 is not supported by the 169.09 (EE) NVIDIA(0): NVIDIA driver. (EE) NVIDIA(0): Failed to initialize the NVIDIA graphics device! (EE) Screen(s) found, but none have a usable configuration. # dmesg | grep Cannot PCI: Cannot allocate resource region 8 of bridge :00:01.0 PCI: Cannot allocate resource region 8 of bridge :00:1c.0 PCI: Cannot allocate resource region 1 of device :00:03.3 PCI: Cannot allocate resource region 0 of device :00:19.0 PCI: Cannot allocate resource region 1 of device :00:19.0 PCI: Cannot allocate resource region 0 of device :00:1a.7 PCI: Cannot allocate resource region 0 of device :00:1b.0 PCI: Cannot allocate resource region 0 of device :00:1f.3 PCI: Cannot allocate resource region 0 of device :01:00.0 PCI: Cannot allocate resource region 3 of device :01:00.0 # lsmod | grep nvidia nvidia 8885796 0 i2c_core 56129 3 i2c_ec,nvidia,i2c_i801 # lspci -v | grep -E '00:01.0|00:1c.0|00:03.3|00:19.0|00:1a.7|00:1b.0|00:1f.3|01:00.0' 00:01.0 PCI bridge: Intel Corporation 82Q35 Express PCI Express Root Port (rev 02) (prog-if 00 [Normal decode]) 00:03.3 Serial controller: Intel Corporation 82Q35 Express Serial KT Controller (rev 02) (prog-if 02 [16550]) 00:19.0 Ethernet controller: Intel Corporation 82566DM-2 Gigabit Network Connection (rev 02) 00:1a.7 USB Controller: Intel Corporation 82801I (ICH9 Family) USB2 EHCI Controller #2 (rev 02) (prog-if 20 [EHCI]) 00:1b.0 Audio device: Intel Corporation 82801I (ICH9 Family) HD Audio Controller (rev 02) 00:1c.0 PCI bridge: Intel Corporation 82801I (ICH9 Family) PCI Express Port 1 (rev 02) (prog-if 00 [Normal decode]) 00:1f.3 SMBus: Intel Corporation 82801I (ICH9 Family) SMBus Controller (rev 02) 01:00.0 VGA compatible controller: nVidia Corporation GeForce 8600 GT (rev a1) (prog-if 00 [VGA]) Is it likely that I need to try an older kernel or attempt to patch the current one ? Any suggestions are appreciated, John ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos BEGIN-ANTISPAM-VOTING-LINKS -- Teach CanIt if this mail (ID 974878) is spam: Spam:http://neelix.grote.net/canit/b.php?c=si=974878m=084624e9d43b Not spam:http://neelix.grote.net/canit/b.php?c=ni=974878m=084624e9d43b Forget vote: http://neelix.grote.net/canit/b.php?c=fi=974878m=084624e9d43b -- END-ANTISPAM-VOTING-LINKS -- Het.Grote.Net WebMail, powered by OpenWebMail -- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Using tcpdump to sniff telnet password
Hi, you should set the snaplen (length of packets to be captured) to 0 (max packetsize) like : tcpdump tcp port 23 -s 0 -w test.txt Otherwise you won't get the full packets. And you can use wireshark to read the dumpfile and easily find the password(s). Michel On Wed, 2008-02-06 at 15:57 +0700, Fajar Priyanto wrote: Hi all, As long as I can remember reading various articles/docs, they all say that telnet is not secure because all traffic is in clear text. Well, out of boredom, I try to sniff username and password from a telnet session. The command I use: tcpdump tcp port 23 -vvv -w test.txt Then I read the result: strings test.txt |`D |fD |fD 38400,38400 Red Hat Enterprise Linux ESD Ologin: D 5eE LsE _tE Password: F [aG |hG jaH Last login: Wed Feb 6 15:53:3H ]0;[EMAIL PROTECTED]:~ GV{ But it succeeds with FTP. strings test.txt .9@ 4.:@ 220 (vsFTPd 2.0.1) 4.;@ @.@ USER test4 331 Please specify the passwor 4.=@ B.@ PASS secret 230 Login successful. 4.?@ :.@@ SYST 215 UNIX Type: L8 4.A@ Did I miss something? How do we capture telnet password using tcpdump? Thank you. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cannot rewrite shadow password file
On Fri, 1 Feb 2008 16:52:21 +0100, Ralph Angenendt wrote Samuel Rochas wrote: Dear Ralph, Sorry... - /etc/shadow Okay, so that's not it, either. What#347; the output of : getenforce ls -Z /etc/shadow might be an SELinux issue If so, you can do a restorecon /etc/shadow Regards, Michel Ralph BEGIN-ANTISPAM-VOTING-LINKS -- Teach CanIt if this mail (ID 965044) is spam: Spam:http://neelix.grote.net/canit/b.php?c=si=965044m=45aa7f2f5521 Not spam:http://neelix.grote.net/canit/b.php?c=ni=965044m=45aa7f2f5521 Forget vote: http://neelix.grote.net/canit/b.php?c=fi=965044m=45aa7f2f5521 -- END-ANTISPAM-VOTING-LINKS -- Het.Grote.Net WebMail, powered by OpenWebMail -- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] cannot rewrite shadow password file
On Fri, 2008-02-01 at 17:29 +0100, Samuel Rochas wrote: Dear Michel, What#347; the output of : getenforce Enforcing ls -Z /etc/shadow -r root root system_u:object_r:shadow_t /etc/shadow After running those commands, I can run passwd without errors (passwd: all authentication tokens updated successfully), but the password won't be changed. might be an SELinux issue If so, you can do a restorecon /etc/shadow Did it, still can't update the password. To completely rule out SELinux.. Do setenforce 0 try to change password Please make sure that ALL fields are accounted for in the shadow file and there are no line breaks! As a final solution you can try to remove the password of root completely (in runlevel 1), reboot, login as root and change the password again. Regards, Michel van Deventer Regards Samuel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos BEGIN-ANTISPAM-VOTING-LINKS -- Teach CanIt if this mail (ID 965063) is spam: Spam:http://neelix.grote.net/canit/b.php?c=si=965063m=b276cefc88be Not spam:http://neelix.grote.net/canit/b.php?c=ni=965063m=b276cefc88be Forget vote: http://neelix.grote.net/canit/b.php?c=fi=965063m=b276cefc88be -- END-ANTISPAM-VOTING-LINKS ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CENTOS and INTEL S775 C2D E6750 2.66G 1333 RTL
At 06:29 27-9-2007, Art Edwards wrote: I am building a Centos machine for a specific piece of third party software. Can I assume that the IA64 verson of CENTOS 4.5 will run on this CPU? No, you cannot run IA64 on a Core2Duo, you need the AMD64 or x86_64 version. Are there any differences in basic libraries between 4.0 and 4.5? Yes of course, it is wise to install the latest version, otherwise some hardware may not be recognized by the kernel. Regards, Michel Art Edwards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos