from:"Timothy Selivanow"

Re: [CentOS] syslog-ng

2008-08-29 Thread Timothy Selivanow

On Fri, 2008-08-29 at 11:00 -0700, Aleksey Tsalolikhin wrote:
> On 8/29/08, Mag Gam <[EMAIL PROTECTED]> wrote:
> > Hello,
> >
> > I know centos does not use syslog-ng, but I have installed it at my
> > university. My intention is if a particular string appears in my
> > /var/log/messages I would like to get an email alert.
> 
> Check out SWATCH:   http://swatch.sourceforge.net/

Expanding on that, here is a way that I know works in CentOS 5:

In syslog-ng.conf add the following or similar 'destination':

destination d_swatch { program("/usr/bin/swatch
--config-file=/etc/swatch.conf --script-dir=/var/run/swatch --read-pipe=
\"cat /dev/fd/0\""); };


I got that from http://www.campin.net/syslog-ng/faq.html a long time
ago.


--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Whole disk encryption

2008-08-04 Thread Timothy Selivanow

On Mon, 2008-08-04 at 16:51 +0100, Plant, Dean wrote:
> Has there been any updates to support encrypting the whole disk in 5.2?

There hasn't been any built-in support until Fedora 9, so perhaps at the
earliest it would be 5.3 if at all.  There are however, ways you can
implement it yourself.  The biggest things you have to keep in mind are
that you need to make a change to the mkinitrd script and then generate
a new initrd image to be able to encrypt /, otherwise you could just
modify init.

There are a number of websites that have some docs on how to do it, here
is just one that I've seen in the past:

http://www.tummy.com/Community/Articles/cryptoroot-f8/


--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Using CentOS 5 as server; best way to setup NFSv4?

2008-08-01 Thread Timothy Selivanow

On Fri, 2008-08-01 at 20:04 -0400, Ryan Dunn wrote:

> If I were to use LDAP, what would happen if I tried to use the laptop
> in the absence of the server?  Is a local copy stored, ala how my work
> windows network works?

If you have nscd (Name Services Caching Daemon) enabled, yes.  However,
that will only cache the UID/GID lookups, and not authentication.  If
you are using local authentication, then no problem :)  Also, if you
wanted a file sharing service that would work better with a laptop, look
at Coda instead (at least for home dirs).  Coda has a concept of a
disconnected mode, and caches locally the most used items that are on
the share.

--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Simple IP Question

2008-07-17 Thread Timothy Selivanow

On Thu, 2008-07-17 at 11:39 -0500, Matt wrote:
> So I added this:
> 
> /etc/sysconfig/network-scripts/ifcfg-eth0:0
> DEVICE=eth0
> BOOTPROTO=none
> BROADCAST=69.x.x.199
> HWADDR=00:x:x:x:c6:10
> IPADDR=69.x.x.195
> NETMASK=255.255.255.248
> NETWORK=69.x.x.192
> ONBOOT=yes
> GATEWAY=69.x.x.193
> TYPE=Ethernet
> 
> Now the only IP that works is the second one.  What am I doing wrong?

You want DEVICE=eth0:1 (or what ever your interface alias is)


--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] racoon and ipsec issues

2008-07-17 Thread Timothy Selivanow

On Thu, 2008-07-17 at 00:03 -0700, Bill Campbell wrote:
> I am attempting to create an ipsec tunnel between two CentOS 5.1
> systems, network-to-network with two different 192.168.xxx.0/24
> LAN segments.

As someone who has a similar setup to what you are wanting, it sounds
like either the route, or a problem with the SRCGW/DSTGW.  If your two
networks are 192.168.100.0/24 and 192.168.200.0/24 for sites A and B,
respectively, with public IPs 1.1.1.1 and 2.2.2.2 (respectively, again),
then you will want something like the following:

Site A ifcfg-ipsec0:
TYPE=IPSEC
SRCGW=192.168.100.1
DSTGW=192.168.200.1
SRCNET=192.168.100.0/24
DSTNET=192.168.200.0/24
DST=2.2.2.2

Site B ifcfg-ipsec0:
TYPE=IPSEC
SRCGW=192.168.200.1
DSTGW=192.168.100.1
SRCNET=192.168.200.0/24
DSTNET=192.168.100.0/24
DST=1.1.1.1

You will want to make sure that no NAT'ing is occurring for traffic that
wants to flow from site A to B (and vice-versa).  I also have a static
route set up, as I was having some problems with it automatically
setting when the ipsec "interface" was set up.  For this example, I'm
assuming that both Site A and B have two physical interfaces, eth0 and
eth1, that have the public and private addresses.

Site A interfaces:
eth0: 1.1.1.1
eth1: 192.168.100.1

Site B interfaces:
eth0: 2.2.2.2
eth1: 192.168.200.1

Site A route-eth1:
192.168.200.0/24 via 192.168.100.1

Site B route-eth1:
192.168.100.0/24 via 192.168.200.1

On a closing note, you are correct in observing that there is no longer
an "ipsec0" or similar interface.  I started to explain why...but it got
too long.  If you would like a crash course on kernel IPSec behaviour,
let me know and I'll write up a short one with some further reading
linked.

I hope this helps.

--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Problems installing 5.1 on a Tyan Thunder HEsl with a SCSI controller

2008-06-12 Thread Timothy Selivanow

On Thu, 2008-06-12 at 11:52 -0400, Joshua Baker-LePain wrote:
> On Wed, 11 Jun 2008 at 9:03pm, Timothy Selivanow wrote
> 
> > I'm trying to install 5.1 using the onboard LSI Symbios 53C1010, and I'm
> > running into some trouble.  When the computer first boots, the SCSI BIOS
> > sees the three HDDs, but when I go to install, the installer hangs for a
> > while at inserting the sym53c8xx driver and if I go over to the screen
> > on F4 it shows that it is trying to scan the SCSI bus and is resetting
> > all of the IDs.  Once that is done, it moves on the the actual
> > installer, but does not see any drives.
> 
> Have you tried all the usual SCSI voodoo -- check the cables, check your 
> termination, ensure you used the proper color goat?

Ah! It was the wrong color of goat!

Actually, when I got into work this morning, I tried a number of other
steps like use a card, put the drives/drive cage in another system.  It
came down to updating the BIOS.

When it comes to SCSI (not SAS), I tend to get scared easier than I
should.  Old tech scares me (It's SCSI 160, not really that old...but
still)...it either has auto-magical stuff that I don't know/understand,
or it requires manual incantations, most of which I don't know.

--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Problems installing 5.1 on a Tyan Thunder HEsl with a SCSI controller

2008-06-11 Thread Timothy Selivanow

Hi,

I'm trying to install 5.1 using the onboard LSI Symbios 53C1010, and I'm
running into some trouble.  When the computer first boots, the SCSI BIOS
sees the three HDDs, but when I go to install, the installer hangs for a
while at inserting the sym53c8xx driver and if I go over to the screen
on F4 it shows that it is trying to scan the SCSI bus and is resetting
all of the IDs.  Once that is done, it moves on the the actual
installer, but does not see any drives.

I'm kind of at a loss at the moment.  I feel like there would be a
kernel boot option that I could give the installer, but I don't know
what that would be.  I know the SCSI IDs of the three HDDs (and the
controller), is there a way to say "just use these IDs and move along"?

I'm currently downloading a Fedora 9 CD (I don't have a spare DVDROM) to
see if a newer kernel will help, as going back down to CentOS 5.0 didn't
(I had it at hand).

Thanks for any help!


--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] vsftpd and active mode connections causes FTP session to hang

2008-06-06 Thread Timothy Selivanow

On Thu, 2008-06-05 at 20:04 -0700, John R Pierce wrote:
> Filipe Brandenburger wrote:
> > On Thu, Jun 5, 2008 at 2:05 PM, Timothy Selivanow
> > <[EMAIL PROTECTED]> wrote:
> >   
> >> things like 'put' and 'get', etc.), the connection hangs.  If you wait a
> >> bit it returns with a "425 Failed to establish connection".  I've tried
> >> 
> >
> > Is the FTP client behind NAT? If it is then active FTP won't work,
> > since the client will request the server to connect to the internal
> > IP.
> >   
> 
> 
> its somewhat more complex than that.   many NAT boxes (home routers, 
> etc) recognize FTP on port 21, and monitor the PORT commands, and mangle 
> them automatically.  A linux masquerading server can do this too, with 
> the right ip_masq module.  if the FTP is running on a nonstandard 
> port other than 21, the automagic stuff won't work.   If the FTP 
> /server/ is behind NAT using a port forward, it also gets messy. 
> 
> there's a detailed discussion of these and other salient points here, 
> http://www.ncftp.com/ncftpd/doc/misc/ftp_and_firewalls.htmlit bears 
> reading carefully.

There's no NAT'ing occuring in my tests (all machines, including my
workstation are not using RFC1918 addresses, some of the core routing
infrastructure is, but it's all routable and not NAT'd).  There are
various routers and firewalls between my workstation and the hosts, but
all ACL's and firewall rule sets allow my traffic unimpeded to my
testing hosts and the customer's hosts.

The frustrating thing is, it happens on all of the CentOS 5 machines
I've tested on.


--Tim
  
< Invest in physics -- own a piece of Dirac! >
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] vsftpd and active mode connections causes FTP session to hang

2008-06-05 Thread Timothy Selivanow


On Thu, 2008-06-05 at 14:23 -0400, Ignacio Vazquez-Abrams wrote:
> On Thu, 2008-06-05 at 11:05 -0700, Timothy Selivanow wrote:
> > Any ideas?
> 
> Did you open both ftp and ftp-data ports?

Yes.  On some of the hosts, my workstation is just explicitly allowed
through also (I've also tried turning off iptables, just in case).


--Tim
 __ 
< I wouldn't be so paranoid if you weren't all out to get me!! >
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] vsftpd and active mode connections causes FTP session to hang

2008-06-05 Thread Timothy Selivanow

I've encountered an odd error state that I haven't been able to resolve
yet.  I have a customer that, for what ever reason, wants to use active
mode occasionally for FTP xfers.  What they have noticed, is that after
you switch to active, and issue a command (they do 'ls', I've done other
things like 'put' and 'get', etc.), the connection hangs.  If you wait a
bit it returns with a "425 Failed to establish connection".  I've tried
this on three hosts so far (all CentOS 5) and they all behave the same,
some of which there is effectively no firewall (all traffic is allowed
from my workstation to the host, and no restrictions on exiting
traffic).

All google searches about this behavour thus far have talked about old
versions of vsftpd or using filesystems such as FAT, which don't apply
in all cases.  Any ideas?


--Tim
  
/ bureaucracy, n:\
\ A method for transforming energy into solid waste. /
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

RE: [CentOS] Interface bonding?

2008-04-15 Thread Timothy Selivanow

On Mon, 2008-04-14 at 10:48 -0700, Timothy Selivanow wrote:
> On Sat, 2008-04-12 at 11:06 -0400, Ross S. W. Walker wrote:
> 
> > Can you post the ifcfg files used and the output of /proc/net/bonding/bond0?
> 
> This is for one system.  I have another one that I've been working on
> too, and it too doesn't work with 'port group 2' on the two switch ports
> that it is connected to (haven't tried adding 'spanning-tree portfast'
> to those yet).  I've been focusing on this one first as it is an iSCSI
> target, and the other one is running Xen so it's a bit more complicated
> (DomU can't get out at the moment with the bond, but Dom0 can, still no
> increased throughput...)

I've changed the switch out, unfortunately to something that I know
doesn't support 802.3ad, but I'm still unable to get aggregate link
bandwidth using mode 0, 2, and 6.  I'm using scp to test the bandwidth,
one machine with one interface, one with two bonded, and one with three
bonded.  No matter the combination of who is sending/receiving the
files, no increase in throughput.

Would using a x-over cable on two machines, using two interfaces each,
with 802.3ad (or other mode...) on both hosts work?  My inclination is
that the aggregating protocol needs a shared bus to negotiate, and
putting each channel on it's own bus (x-over cable) would defeat that...

--Tim
 __ 
< Support Bingo, keep Grandma off the streets. >
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

RE: [CentOS] Interface bonding?

2008-04-14 Thread Timothy Selivanow

On Sat, 2008-04-12 at 11:06 -0400, Ross S. W. Walker wrote:

> Can you post the ifcfg files used and the output of /proc/net/bonding/bond0?

This is for one system.  I have another one that I've been working on
too, and it too doesn't work with 'port group 2' on the two switch ports
that it is connected to (haven't tried adding 'spanning-tree portfast'
to those yet).  I've been focusing on this one first as it is an iSCSI
target, and the other one is running Xen so it's a bit more complicated
(DomU can't get out at the moment with the bond, but Dom0 can, still no
increased throughput...)


--Tim
 _ 
/ A political man can have as his aim the realization of freedom, \
| but he has no means to realize it other than through violence.  |
\ -- Jean Paul Sartre /
 - 
  \
   \   \
\ /\
( )
  .( o ).
DEVICE=bond0
IPADDR=69.30.2.20
NETMASK=255.255.255.224
NETWORK=69.30.2.0
BROADCAST=69.30.2.31
ONBOOT=yes
BOOTPROTO=none
USERCTL=no
GATEWAY=69.30.2.1
DEVICE=eth0
HWADDR=00:B0:D0:DF:DB:68
ONBOOT=yes
USERCTL=no
MASTER=bond0
SLAVE=yes

DEVICE=eth1
HWADDR=00:B0:D0:DF:DB:69
ONBOOT=yes
IPADDR=
NETMASK=
USERCTL=no
MASTER=bond0
SLAVE=yes
# Intel Corporation 82557/8/9 [Ethernet Pro 100]
DEVICE=eth2
HWADDR=00:02:B3:36:55:BE
ONBOOT=no
USERCTL=no
MASTER=bond0
SLAVE=yes
alias eth0 e100
alias eth1 e100
alias eth2 e100
alias scsi_hostadapter aic7xxx
alias bond0 bonding
options bond0 miimon=80 mode=4
Ethernet Channel Bonding Driver: v3.1.2 (January 20, 2007)

Bonding Mode: IEEE 802.3ad Dynamic link aggregation
Transmit Hash Policy: layer2 (0)
MII Status: down
MII Polling Interval (ms): 80
Up Delay (ms): 0
Down Delay (ms): 0

802.3ad info
LACP rate: slow
Active Aggregator Info:
Aggregator ID: 1
Number of ports: 1
Actor Key: 9
Partner Key: 1
Partner Mac Address: 00:00:00:00:00:00

Slave Interface: eth0
MII Status: up
Link Failure Count: 0
Permanent HW addr: 00:b0:d0:df:db:68
Aggregator ID: 1

Slave Interface: eth1
MII Status: up
Link Failure Count: 0
Permanent HW addr: 00:b0:d0:df:db:69
Aggregator ID: 2

Slave Interface: eth2
MII Status: up
Link Failure Count: 0
Permanent HW addr: 00:02:b3:36:55:be
Aggregator ID: 3
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

RE: [CentOS] Interface bonding?

2008-04-11 Thread Timothy Selivanow

On Fri, 2008-04-11 at 17:23 -0400, Ross S. W. Walker wrote:

> This should give you what you need when doing 802.3ad LAGs:
> 
> interface FastEthernet0/21
>  port group 1
>  spanning-tree portfast
> !
> interface FastEthernet0/22
>  port group 1
>  spanning-tree portfast
> !

Using this on the switch and mode=4 for bonding results in the machine
not being able to contact anything (happens with just 'port group 1'
too, I tried that a "long" time ago), but there aren't any errors.  So,
it doesn't work, but I couldn't tell you why.  Is there anything else
that needs to be done, perhaps on the host's side?

--Tim
 _ 
/ You know it's going to be a bad day when you want to put on the clothes \
\ you wore home from the party and there aren't any.  /
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Interface bonding?

2008-04-11 Thread Timothy Selivanow


On Fri, 2008-04-11 at 15:14 -0400, John wrote:
> On Fri, 2008-04-11 at 14:08 -0500, Les Mikesell wrote:
> > Timothy Selivanow wrote:
> > > On Fri, 2008-04-11 at 14:26 -0400, John wrote:
> > >> If I paid a couple grand for a core switch i'd be calling Cisco!
> > >>
> > > 
> > > They're not core switches, they're just the catalyst 2900XL which is a
> > > small 24 port switch.  We've got stacks of these sitting unused, so I
> > > doubt they're too expensive/valuable.
> > > 
> > 
> > They were expensive once.  Now they are end-of-life'd and you can't get 
> > a support contract or a new IOS for them.
> > 
> 
> Yea there 8years old and do not support todays technology. All the way
> back to IOS 8..

It's running IOS 12.0(5)WC16, but running that command in enable didn't
work (also tried it in config).  Thanks for all of your suggestions and
help.  It's still pretty frustrating though...


--Tim
  
/ "All Bibles are man-made." \
\ -- Thomas Edison   /
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Interface bonding?

2008-04-11 Thread Timothy Selivanow

On Fri, 2008-04-11 at 14:26 -0400, John wrote:
> If I paid a couple grand for a core switch i'd be calling Cisco!
> 

They're not core switches, they're just the catalyst 2900XL which is a
small 24 port switch.  We've got stacks of these sitting unused, so I
doubt they're too expensive/valuable.

--Tim

< God isn't dead, he just couldn't find a parking place. >

  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Interface bonding?

2008-04-11 Thread Timothy Selivanow

On Fri, 2008-04-11 at 13:43 -0400, Guy Boisvert wrote:

> You may have a look at:
> 
> http://www.cisco.com/warp/public/473/140.pdf
> http://www.cisco.com/en/US/products/hw/switches/ps607/products_configuration_example09186a0080094789.shtml
> 

I've looked at both of these documents already.  In the PDF, on page 3,
it says that the 2900XL does not support LACP nor PAgP (any IOS
version).  In all of the configuration examples that I've seen (none of
them use a 2900XL in the example, or I'm dense which is completely
plausible), none of that specific syntax applies (command unknown,
etc...).  The switch is using an old version of IOS, so I'll look into
an upgrade path, but I'd rather move onto my project than mess with
cisco stuff ;)

--Tim
 _ 
/ The 11 is for people with the pride of a 10 and the pocketbook of an 8. \
\ -- R.B. Greenberg [referring to PDPs?]  /
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Interface bonding?

2008-04-11 Thread Timothy Selivanow

On Thu, 2008-04-10 at 11:24 +0100, Michael Simpson wrote:
> Certainly the 2900 will support 802.3ad or LACP natively.
> 
> i found this which may be of use
> 
> 

So, as it turns out, it's a 2900XL, which does not support 802.3ad or
LACP at all, just a proprietary port channeling for switch interconnect
as far as I can tell.

I suppose that leaves me with just using pure software (for now, I have
an 8 port Intel Pro 100 at home that I'll look at...), but I'm unable to
get the increased throughput using mode=0.  I did notice, however, while
I was on the switch console it kept complaining about the interfaces
flapping and re-learning addresses.  My network guy here at work said
that it was bad and either the switch or the bond(s) is misconfigured
somewhere.  Any hints as to where and or what kinds of things I should
be looking at?

--Tim
 __ 
/ The truth is what is; what should be is a dirty lie. \
\ -- Lenny Bruce   /
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Interface bonding?

2008-04-09 Thread Timothy Selivanow

I'm try to bond a few interfaces together with the hopes of getting
increased throughput, and I'm using a cisco Catalyst 2900 as the switch.
I've tried using mode 0, 5, and 6 with nothing special on the switch,
and mode 4 with some ports "trunked" together (I have a feeling that the
"trunking" that the 2900 does is not 802.3ad, as it disabled the ports
it saw as redundant), yet xfer speeds always cap out at about 10MB/s.

Has any body accomplished bonding with increased throughput as the goal,
with or without (without might be preferable) doing something special on the 
switch (preferably the
afore-mentioned Catalyst 2900, as that is what I have to work with as a
non-sactioned side-project ;)?


--Tim
 ___ 
< When pleasure remains, does it remain a pleasure? >
 --- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

RE: [CentOS] Two Internet connections...

2008-03-26 Thread Timothy Selivanow

On Wed, 2008-03-26 at 16:35 -0400, Ross S. W. Walker wrote:

> If you had 2 Internet firewalls each with their own default route, each
> doing NAT. On each of these firewalls you had a squid process running
> proxying requests and chaining requests from one squid to the other
> depending either on, request content, firewall load or Internet
> availability. Then you would have some resemblence of un-bonded
> load balanced Internet connections.

That would work for pure HTTP traffic, but I would think you'd want more
than that and the kernel routing algo's should be more than sufficient
(in comparison to a crazy squid setup ;)


--Tim
  
< Murphy's Law is recursive.  Washing your car to make it rain doesn't work. >
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Two Internet connections...

2008-03-26 Thread Timothy Selivanow

On Wed, 2008-03-26 at 13:08 -0700, Timothy Selivanow wrote:
> Also, an entire transaction will go over only one of the lines,
> meaning you will only get the throughput of one line at a time.

I forgot to mention that independent applications (therefor many
independent connections) won't use just one connection, i.e. both
connections will be used from the holistic view of a workstation, but a
single transaction (think doing a wget for a single file) will always be
tied to a single line because of the way that TCP/IP works.
Applications that make many connections (think BitTorrent) would
theoretically use both.

--Tim
 __ 
< Freedom of the press is for those who happen to own one. >
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Two Internet connections...

2008-03-26 Thread Timothy Selivanow

On Wed, 2008-03-26 at 13:27 -0600, Frank Cox wrote:
> I do some occasional tech work for a cable TV/Internet service provider.  They
> have now offered me free services, including cable Internet.  I currently 
> have a
> DSL service through the telephone company and, for several reasons including 
> the
> fact that it is really unlimited service with no cap and it comes with 
> newsgroup
> access (neither of which the cable service has), I'm not really prepared to
> give that up.
> 
> However, since I can get a free cable Internet service too I would like to be
> able to put that to use.
> 
> Does anyone have any good ideas for what to do with an extra cable Internet
> service?  Is there, say, a way to somehow "shotgun" two Internet services like
> you used to be able to do with dial-up modems to increase your transmission
> speed?

The only way that you would be able to use them is a semi-load-balancing
formation.  What I mean by "semi" is that all traffic that exits one
interface will always return to that one.  Also, an entire transaction
will go over only one of the lines, meaning you will only get the
throughput of one line at a time.

The only way to "shotgun" (an ISP had to specifically support modem
shotgunning in the olden days, BTW), i.e. do aggregate routing, is if
you had a separate routed sub-net and ran BGP on the router connected to
the two lines (The rest of the internet has to know that you have two
lines and both are available to use, concurrently).  Needless to say,
this can be complicated, and is not considered a "consumer" setup (most
providers will require it to be some sort of business type connection
like, T and OC connections, which can be on the order of thousands a
month, hundreds for a "fractional" T connection).

If the the first is acceptable, there are a number of docs like
 that would
help (I just did a google search for "balance two internet connections
linux", first link) and guides that set up a redundant line also should
help (it is actually what you are doing, but actively using the
"redundant" line also).  I hope that addresses what you are asking
about.

--Tim
 __ 
< I'm definitely not in Omaha! >
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] LVM: how do I change the UUID of a LV?

2008-03-04 Thread Timothy Selivanow

I know how to change the UUID of Physical Volumes and Volume Groups, but
when I try to do the same for a Logical Volume, lvchange complains that
"--uuid" is not an option.  Here is how I've been changing the others
(note that "--uuid" does not appear in the man pages for pvchange and
vgchange for lvm2-2.02.26-3.el5):

pvchange --uuid {pv dev}
vgchange --uuid {vg name}


Any suggestions? I'm pretty much open to any arcane/convoluted
procedure, but I refrain from copying the data to a temp place so I can
re-create the LV as that would add too much work and would kinda defeat
what I'm doing.  Thanks!


--Tim
 _ 
/ Obviously I was either onto something, or on something. \
\  -- Larry Wall on the creation of Perl  /
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

RE: [CentOS] Re: Kernel 2.6.18-53.1.13.el5 fails on network.

2008-02-14 Thread Timothy Selivanow

On Fri, 2008-02-15 at 07:23 +1100, Steven Haigh wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> > Behalf Of Scott Silva
> > Sent: Friday, 15 February 2008 7:15 AM
> > To: centos@centos.org
> > Subject: [CentOS] Re: Kernel 2.6.18-53.1.13.el5 fails on network.
> > 
> > on 2/14/2008 10:38 AM Steven Haigh spake the following:
> > > I have found the issue with this - and now I feel quite dumb.
> > >
> > > In this box, I keep a second HDD (/dev/hdc) which is mirrored nightly
> > from
> > > the primary HDD (/dev/hda).
> > >
> > > This is an exact copy - initially created via dd, then kept up to
> > date via
> > > rsync on a nightly basis. This is so that if the primary HDD fails, I
> > can
> > > change the system to use /dev/hdc and be up and running  after a
> > > reboot/forced power cycle.
> > >
> > > What was happening is that both /dev/hda3 and /dev/hdc3 have the
> > LABEL=/ -
> > > which means it would be a random guess as to which one got mounted.
> > >
> > > After changing the root=LABEL=/ in grub.conf to root=/dev/hda3, all
> > works
> > > perfectly.
> > >
> > > Man I miss the days when we used device names, not labels ;)
> > >
> > > --
> > Why not do a software raid with the drives? That way it is constantly
> > up to date instead of a nightly rsync.
> 
> Software RAID doesn't help when a different admin installs a package that 
> they shouldn't and overwrites critical files (say the glibc libraries) and 
> hoses the entire system. During the many years of using linux, the most 
> downtime has been caused by humans - not hardware failures.
> 
> Having a nightly rsync between drives allows me to restore the system to a 
> snapshot in a simple reboot. I can then restore to within 6 hours from our 
> remote tape backup system. RAID only helps against hardware failure - not 
> human failure.
> 
> --
> Steven Haigh

Yes, you are correct that RAID doesn't help with human failings.
However, LVM[1], backups, and change control management do ;)


1: http://www.linux.org/docs/ldp/howto/LVM-HOWTO/snapshots_backup.html

--Tim
 _ 
/ If you make people think they're thinking, they'll love you; but if you \
\ really make them think they'll hate you./
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Kickstart stops with dialog about which networking device - how to avoid

2008-02-05 Thread Timothy Selivanow


On Tue, 2008-02-05 at 12:51 -0800, Keith Christian wrote:
> Using a kickstart file that stops with a curses dialog "You have multiple
> network devices on this system.  Which one do you want to install through?"
> 
> The machine being configured with PXEboot has two ethernet interfaces.  What's
> missing from the network entries below?  I'd like this install to proceed
> without asking which ethernet interface.
> 
> PXE begins the install with DHCP, so Kickstart should already know which of
> eth0, eth1, etc. to use.
> 
> Here is the ethernet line in the ks.cfg file:
> 
> network --device eth0 --bootproto dhcp
> 
> Any ideas appreciated.
> 
> ===Keith

On the boot line (i.e. where you'd put ks=http://), add DEVICE=ethX
where X=interfaceNumber.  We've also noticed that adding noipv6 speeds
up some network auto-detection stuff too.


--Tim
  
< It isn't easy being a Friday kind of person in a Monday kind of world. >
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] dmcrypt on install with centos 5.1?

2008-02-04 Thread Timothy Selivanow


On Sat, 2008-02-02 at 22:13 -0500, Jim Perrin wrote:
> On Feb 1, 2008 4:39 PM, Andrew Henry <[EMAIL PROTECTED]> wrote:
> > Im new to the list and CentOS and wonder if there is any option to do
> > full disk encryption with dmcrypt and LUKS during the install stage of
> > CentOS 5.1?  I use Debian Etch at the moment and Debian is able to to this.
> >
> > If not possible, are there any good guides that anyone knows about that
> > explain how to dmcrypt everything but /boot on CentOS manually?
> 
> 
> Full disk encryption is not currently possible, but there's a good
> tutorial on the wiki for encrypting parts of the disk.
> 
> See -> http://wiki.centos.org/TipsAndTricks/EncryptedFilesystem

While it's not possible through anaconda, you can do it manually after
you've installed the system.

http://www.msquared.id.au/articles/cryptroot/


--Tim
 __ 
/ An ounce of mother is worth a ton of priest. \
\ -- Spanish proverb   /
 -- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] dmcrypt on install with centos 5.1?

2008-02-01 Thread Timothy Selivanow

On Fri, 2008-02-01 at 22:39 +0100, Andrew Henry wrote:
> Im new to the list and CentOS and wonder if there is any option to do
> full disk encryption with dmcrypt and LUKS during the install stage of
> CentOS 5.1?  I use Debian Etch at the moment and Debian is able to to this.
> 
> If not possible, are there any good guides that anyone knows about that
> explain how to dmcrypt everything but /boot on CentOS manually?
> 
> --andrew

http://www.msquared.id.au/articles/cryptroot/

Hope that helps.


--Tim

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Hot swapping sata drives

2008-01-23 Thread Timothy Selivanow


On Wed, 2008-01-23 at 14:14 -0600, Les Mikesell wrote:
> Jerry Geis wrote:
> > I have a two external USB drives only 1 is connected to centos 5.1 at a 
> > time.
> > the USB drive is SLOW compared to SATA.
> > The external drive suppots both connections USB and SATA.
> > 
> > I bought  a little $5 external SATA connector that goes into the
> > PCI slot area (does not actually take a PCI slot just the backpanel)
> > and just plugs back into one of the available SATA
> > ports on the motherboard.
> > 
> > When I turn off the external drive and put the other drive on
> > the connection and then power on will SATA handle that automatically?
> > Is there a command I need to run to tell it check for new disks?
> > 
> > Is this possible?
> > Will I have to reboot to get the swapped external disk detected.
> 
> This depends on the controller - some don't provide hotplug support. 
> There is some info here http://linuxmafia.com/faq/Hardware/sata.html.

Here's probably the same info and more, in a easier to read format
(feature matrix).  Plus has added bonus of coming from the proverbial
horse's mouth :)

http://linux-ata.org/driver-status.html#matrix


--Tim
 ___ 
/ Isn't it strange that the same people that laugh at gypsy fortune \
\ tellers take economists seriously?/
 --- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] SELinux contexts for krb5

2008-01-22 Thread Timothy Selivanow

I have just migrated my Kerberos setup to a new machine (running inside
Xen) and it is complaining at startup about the file contexts not being
correct, even after running /sbin/fixfiles.  On the previous machine I'm
sure I had set SELinux to permissive and that's why it never complained.

Here are the contexts *after* running /sbin/fixfiles -R krb5-server
restore

# ls -AlZ /var/kerberos/krb5kdc/
-rw---  root root
system_u:object_r:krb5kdc_conf_t .k5.BEAV.VIRTUALXISTENZ.COM
-rw-r--r--  root root system_u:object_r:krb5kdc_conf_t kadm5.acl
-rw---  root root system_u:object_r:krb5kdc_conf_t kadm5.keytab
-rw-r--r--  root root system_u:object_r:krb5kdc_conf_t kdc.conf
-rw---  root root system_u:object_r:krb5kdc_principal_t principal
-rw---  root root system_u:object_r:krb5kdc_principal_t
principal.kadm5
-rw---  root root system_u:object_r:krb5kdc_principal_t
principal.kadm5.lock
-rw---  root root system_u:object_r:krb5kdc_principal_t principal.ok


I suspect the file permissions are slightly off and therefore it's not
correctly detecting the configuration files.  How can I find out what
the owner/group/mode of the file should be?  It seems like this would be
a simple thing, but at the moment it is escaping me...


--Tim
  
< Look!  A ladder!  Maybe it leads to heaven, or a sandwich! >
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] HowTo Recover Lost Data from LVM RAID1 ?

2008-01-18 Thread Timothy Selivanow

On Fri, 2008-01-18 at 15:47 -0500, Alain Reguera Delgado wrote:
> Guys,
> 
> The other day while working on my old workstation it got frozen and
> after reboot I lost almost all data unexpectedly.
> 
> I have a RAID1 configuration with LVM. 2 IDE HDDs.
> 
> md0 .. store /boot (100MB)
> --
> /dev/hda2
> /dev/hdd1
> 
> md1 .. store / (26GB)
> --
> /dev/hda3
> /dev/hdd2
> 
> The only info that still rest in was that, that I restore after the
> fresh install. It seems that the disk were with problems and weren't
> syncing :(. I confessed, I didn't check that at first time but after I
> lost the data and check /var/log/messages I saw that.
> 
> >From /var/log/messages
> ...
> Jan 17 12:22:15 zion kernel: md: raid1 personality registered for level 1
> Jan 17 12:22:15 zion kernel: device-mapper: ioctl: 4.11.0-ioctl
> (2006-09-14) initialised: [EMAIL PROTECTED]
> Jan 17 12:22:15 zion kernel: md: Autodetecting RAID arrays.
> Jan 17 12:22:15 zion kernel: md: invalid raid superblock magic on hda3
> Jan 17 12:22:15 zion kernel: md: hda3 has invalid sb, not importing!
> Jan 17 12:22:15 zion kernel: md: autorun ...
> Jan 17 12:22:15 zion kernel: md: considering hdd2 ...
> Jan 17 12:22:15 zion kernel: md:  adding hdd2 ...
> Jan 17 12:22:15 zion kernel: md: hdd1 has different UUID to hdd2
> Jan 17 12:22:15 zion kernel: md: hda2 has different UUID to hdd2
> Jan 17 12:22:15 zion kernel: md: created md1
> Jan 17 12:22:15 zion kernel: md: bind
> Jan 17 12:22:15 zion kernel: md: running: 
> Jan 17 12:22:15 zion mcstransd: mcstransd starting
> Jan 17 12:22:15 zion kernel: raid1: raid set md1 active with 1 out of 2 
> mirrors
> Jan 17 12:22:15 zion kernel: md: considering hdd1 ...
> Jan 17 12:22:15 zion kernel: md:  adding hdd1 ...
> Jan 17 12:22:15 zion kernel: md:  adding hda2 ...
> Jan 17 12:22:15 zion kernel: md: created md0
> Jan 17 12:22:15 zion kernel: md: bind
> Jan 17 12:22:15 zion kernel: md: bind
> Jan 17 12:22:15 zion kernel: md: running: 
> Jan 17 12:22:15 zion kernel: md: kicking non-fresh hdd1 from array!
> Jan 17 12:22:15 zion kernel: md: unbind
> Jan 17 12:22:15 zion kernel: md: export_rdev(hdd1)
> Jan 17 12:22:15 zion kernel: raid1: raid set md0 active with 1 out of 2 
> mirrors
> Jan 17 12:22:15 zion kernel: md: ... autorun DONE.
> ...
> 
> This computer is old, Celeron 800MHz, 256MB of RAM and IDE disk too.
> 
> I know that I have to suffer the consequences but if you know some way
> to recover some data, I'll appreciate it very much.
> 
> These days I have been reading about: mdamd, and some way to recover
> but no success.
> 
> I tried to boot from rescue mode with CentOS 5 first CD and do an fsck
> to /dev/hda3 and /dev/hdd2. After this something about superblock was
> told to me and that use the command e2fsck -b 8123  (I don't
> remember the number exactly) but no success either.
> 
> Do you have some idea what we can do to recover the data on m1 ?
> 
> Thanks guys,
> 
> Cheers,
> al.

When you booted to rescue mode on the CD, did you let it find your
existing CentOS install and mount it (I can't remember if it will
continue in degraded mode ATM)?  You should also be able to see the data
with just one drive IIRC, you just need to be able to map the LVM
volumes.  Except for the MD meta-data, the bits should be 1-for-1 across
the disks AFAIK.

Check out http://tldp.org/HOWTO/LVM-HOWTO/ for more info about LVM.


--Tim
  
< PEGGY FLEMMING is stealing BASKET BALLS to feed the babies in VERMONT. >
  
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] xen dependencies

2008-01-04 Thread Timothy Selivanow

On Fri, 2007-12-28 at 23:03 -0700, Joseph L. Casale wrote:
> It appears that if I perform an install of CentOS 5.1 without changing 
> *anything* in the options, then do a #yum groupinstall 'Virtualization' I can 
> now get Xen to function in bridged mode (it has network connectivity). In 
> lieu of this, can anyone shed some light on what dependency Xen has that is 
> not installed when you do a completely bare install and execute a #yum 
> install xen? I am hoping to finally end up with a minimum install of CentOS 
> with Xen functioning without a gui or any additional services that won't be 
> needed.
> 
> Thanks!
> jlc

In your "broken" setup, do you have libvirt and/or bridge-utils?


--Tim
 ___ 
/ Wait!  You have not been prepared!\
\ -- Mr. Atoz, "Tomorrow is Yesterday", stardate 3113.2 /
 --- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] libata and PMP (Port Multiplier) support in CentOS

2007-12-27 Thread Timothy Selivanow

I'm looking at buying a NORCO DS-1220 and it comes with a NORCO 4618
PCI-X card (4 port eSATA, with a port multiplier on the card or the
chassis).  I've been trying to pin down whether or not CentOS will see
all 12 drives, and I haven't seen anything that is definitive.  I see
that the kernel module sata_sil24 supports the SiI3124 chip on the NORCO
4618 card, but I haven't found whether or not the default kernel will
support the SiI3726 (PMP) without the libata-tj patch.

I'm just trying to determine the easiest route to go with minimal cost.
I've found another enclosure that uses 4 mini-SAS connectors, but in
addition to the extra $320 for the enclosure, I'd need to buy a $300
card and at least one $120 cable (either SFF-8088 to SFF-8470 or a
straight SFF-8088).  While this is for at home, I would consider this a
"mission critical" device and don't want a flakey setup, which is what I
have now...I've become an expert at recovering from a 2 drive failure in
a 4 drive RAID5 setup using mdadm.

Any ideas, suggestions, or authoritative comments?


--Tim
 

 
< You're definitely on their list.  The question to ask next is what list it 
is. >
 

 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Re: What is equivalent to MS OUTLOOK ?

2007-12-14 Thread Timothy Selivanow

On Fri, 2007-12-14 at 11:53 -0700, Craig White wrote:
> On Fri, 2007-12-14 at 10:40 -0800, Scott Silva wrote:
> > on 12/13/2007 6:43 PM Chris Mauritz spake the following:
> > > Scott Silva wrote:
> > 
> >  > evolution
> > >>>
> > >>> Actually, if you're using Windows XP (32-bit), Evolution does work.  
> > >>> At least according to these folks:
> > >>>
> > >>> http://shellter.sourceforge.net/evolution/
> > >>>
> > >>> Best,
> > >> After trying this, it doesn't work very well.
> > >>
> > >> "These aren't the droids we're looking for. You can go about your 
> > >> business. Move along. Move along."
> > > 
> > > 
> > > I haven't actually tried it myself since I'm satisfied with 
> > > Thunderbird.  What exactly was wrong with it?  I've never used Evolution 
> > > (even on Linux) since it always seemed rather buggy to me.
> > > 
> > I tried a quick install "just to see" and no matter how I tried to connect 
> > to 
> > my imap server, it kept throwing ssl errors, even without trying an 
> > encrypted 
> > connection. In no way could I connect and display messages or folders.
> > Then after uninstall, it left a lot of stuff behind, still running.
> > I think the creator made it just fit their requirements and stopped.
> 
> I've been using Evolution in various versions via CentOS, RHEL and
> Fedora for years, always with an IMAP server and using TLS too. Note
> that this e-mail (like all my e-mails whether from office or home) was
> written with Evolution.
> 
> Never had an issue
> 
> The only feature that it seems to lack is support for namespaces such as
> those offered by cyrus with shared folders.
> 
> Craig

I agree with Craig's sentiment about Evolution + IMAP.  No problems.
Now, Evolution + Exchange Connector, that's a different story.  My mail
box at work is on Exchange, and at the moment that probably isn't going
to change.  I found the Exchange Connector to be too slow in versions
prior to 2.12 (inefficient recursive checking of mail in folders/shared
folders), but that 2.12 had it's own share of Exchange problems
(calendar messages were messed-up, *all* attachments came through as
that stoopid winmail.dat crap).

I've found that when dealing with Exchange and people on non-Windows
(even OSX w/o MS Office), you have two options:

1) Get rid of Exchange.  (IMO, preferable)

   -- or --

2) Enable IMAP, use what-ever client you want, and use OWA (Outlook Web
Access) for your calendaring.  (not perfect, but works)

Now, I've heard of rumours that someone is working on a native MAPI
plug-in for Evolution (Connector uses OWA's RPC-over-HTTP), but no ETA
as of yet.

--Tim
 _ 
< Too many interrupts >
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] hpasm snmp agent -- (Was) Tons of SNMP ?errors? in /var/log/messages

2007-12-12 Thread Timothy Selivanow

On Tue, 2007-12-11 at 17:05 -0800, Timothy Selivanow wrote:
> I'm running up-to-date CentOS 5 w/ Xen.  I'm getting tons (tons = 13787
> just yesterday, presumably because I have a monitoring system poll every
> 5 minutes) of log entries of the following:
> 
> netsnmp_assert index == tmp failed if-mib/data_access/interface.c:467
> _access_interface_entry_save_name()
> 
> and
> 
> netsnmp_assert rc == 0 failed if-mib/ifTable/ifTable_data_access.c:209
> _check_interface_entry_for_updates()
> 
> 
> When I do an SNMPWalk, everything looks ok (now that IPv6 is back on) on
> the host doing the walking, but on the other side it is spewing the
> above messages.  I have not been able to find out anything about these.
> I had IPv6 turned off (by the "alias net-pf-10 off" method), but in
> troubleshooting these messages I turned it back on (because there were
> other snmpd messages complaining about unable to find ipv6 entries).
> 
> Anyone have some knowledge about this?
> 
> 
> --Tim


So...I realized that I had installed the hpasm package from HP in an
effort to get more info about the CCISS controller and temperatures.
Does anybody have any experience in gathering that kind of data from
SNMP with or without the agent from HP?  I have a DL580 G2 if that
matters.


--Tim
 _ 
/ malpractice, n.:\
\ The reason surgeons wear masks. /
 - 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Tons of SNMP ?errors? in /var/log/messages

2007-12-11 Thread Timothy Selivanow

I'm running up-to-date CentOS 5 w/ Xen.  I'm getting tons (tons = 13787
just yesterday, presumably because I have a monitoring system poll every
5 minutes) of log entries of the following:

netsnmp_assert index == tmp failed if-mib/data_access/interface.c:467
_access_interface_entry_save_name()

and

netsnmp_assert rc == 0 failed if-mib/ifTable/ifTable_data_access.c:209
_check_interface_entry_for_updates()


When I do an SNMPWalk, everything looks ok (now that IPv6 is back on) on
the host doing the walking, but on the other side it is spewing the
above messages.  I have not been able to find out anything about these.
I had IPv6 turned off (by the "alias net-pf-10 off" method), but in
troubleshooting these messages I turned it back on (because there were
other snmpd messages complaining about unable to find ipv6 entries).

Anyone have some knowledge about this?


--Tim
 ___ 
/ No one regards what is before his feet; we all gaze at the stars. \
\ -- Quintus Ennius /
 --- 
  \
   \   \
\ /\
( )
  .( o ).

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Re: best source for rpmdevtools RPM in C5

2007-09-20 Thread Timothy Selivanow

On Wed, 2007-09-19 at 16:54 +0100, Karanbir Singh wrote:
> Is it worth talking to the pkg maintainers at Fedora and getting 
> rpmdevtools included in mirror.centos.org along with the mock we already 
> have there ?

I wouldn't mind it.  I already rebuild and include it in my own repo,
having it in CentOS would reduce that much work (not like it's that much
work to begin with...but hey, any way to allow me to be more lazy ;)

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best source for rpmdevtools RPM in C5

2007-09-20 Thread Timothy Selivanow

On Wed, 2007-09-19 at 08:28 -0700, mark pryor wrote:
> hello,
> 
> I'm going to try this question again. The first time I botched it and
> the answers I got were useless.
> 
> I want to use rpmdevtools to help with some packaging chores. There is
> no C5 version that I can find. I've located an SRC RPM in a location
> that is known to be C5 compatible. There are 2 versions of
> rpmdevtools:
> 
> http://download.fedora.redhat.com/pub/fedora/linux/extras/6/SRPMS/rpmdevtools-6.1-0.1.fc6.src.rpm
> http://download.fedora.redhat.com/pub/fedora/linux/extras/6/SRPMS/rpmdevtools-5.3-1.fc6.src.rpm
> 
> naturally I grabbed the highest version (6.1) and rebuilt it for EL5.
> The installation halted, missing a version of rpm-build higher than
> the base version in C5. It seems that rpm-build 4.4.2.1+ comes from
> FC7. This is the first time that I've seen an FC6 repo package that
> depended on something from FC7.

To use the 6.1 version, you need an updated version of rpm ( > 4.4.2 ).
FC6 uses rpm-4.4.2.1, which is a slightly modified version of rpm-4.4.2
from F7 (F7 uses python-2.5, FC6 uses python-2.4).

> rpmdevtools 5.3.1 builds, installs, and works fine on C5. 
> 
> I think I made the right decisions here (balking at trying to install
> a higher version of rpm-build).
> 
> If you need to use rpmdevtools, how would you approach the problem?
> What source repo would you use? Is there an rhel5 SRC RPM? Where is
> it?

You can try looking at EPEL for it.  EPEL is the rebuilding of Fedora
Extras, by the Fedora team.  If you look at
http://download.fedora.redhat.com/pub/epel/5/SRPMS/repoview/rpmdevtools.html , 
you will see that the most recent version is 5.3-1.




-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Server Virtualization

2007-09-17 Thread Timothy Selivanow

On Tue, 2007-09-18 at 11:20 +1200, Clint Dilks wrote:
> Hello,
> 
> I work for a school in a New Zealand university and we are wanting to 
> implement Server Virtualization for both CentOS and Windows systems.  So 
> I thought I would ask here what experience people have had with this and 
> what issues that you all think should be considered?
> 
>  From my own research it seems that VMWare or Xen are really the two 
> major products to be considered, are there any others I should be 
> considering ?
> 
> Is anyone running Linux "Guest" O/S's inside a Windows host ??  And if 
> so can you share your reasons for this?
> 
> Anyway thank you for your time and any experiences / knowledge you are 
> willing to share :)

I use Xen personally and at work I work with VMware.  I don't have any
machines personally that have hardware virtualization extensions in the
processor, so I'm only doing para-virtualization with CentOS 5 as host
and guests.  Documentation seems a little sparse if you want to deviate
from the default configuration too much in Xen.  Other than that I've
been very happy with Xen.

At work we've been playing with VMware Infrastructure 3.  If you are
going to go the VMware route, this is by far the best bang for your
buck.  You are able to manage several VM hosts under one interface, and
if you are running Windows as a guest you can do some pretty neat things
(coming soon for the Linux side).  I've also used the free version,
VMware Server (also called GSX, Infrastructure comes with the version
called ESX) on both Windows and Linux...prefer using Linux though as the
host (much better stability and low-level options if you are into
customizing the environment).

Any more questions, like specifics, please ask.  I've been using Xen and
VMware for several months now.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Virtual Hosting

2007-09-07 Thread Timothy Selivanow

On Mon, 2007-09-03 at 16:07 -0400, William Warren wrote:
> I run selinux in permissive.  Once i figure out how to write policy i'll 
> put it back on active..
> 
> Lanny Marcus wrote:
> > On 01 September 2007, William Warren
> > <[EMAIL PROTECTED]> wrote:
> >> Message: 3
> > 
> > 
> >> you can also go with webmin to configure this stuff..
> > 
> > If you use Webmin, at this time, it is probably not a good idea to use
> > SELinux with it. I have a very recent thread about this and there is a
> > bug on Webmin. The SELinux folks are aware of it. Below is about
> > SELinux.  Lanny
> > 
> >> This explanation and description of the problem are fine.  We probably
> >> need a custom policy for webmin to allow iptables to write to scripts
> >> running as webmin, since catching stderr is important.   There is no
> >> file context that can be set to allow this.  As I recall from the
> >> original bug report, iptables was also trying to communicate with
> >> another open file descriptor.  This one I beleive should be closed on
> >> exec.
> > 
> > ___
> > CentOS mailing list
> > CentOS@centos.org
> > http://lists.centos.org/mailman/listinfo/centos
> > 
> > 
> 

Using audit2allow you should be able to take the SELinux denied messages
and convert them into a policy.  I've done that for syslog-ng in the
past.


-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos] Xen VM vanishes after creation

2007-08-27 Thread Timothy Selivanow

On Tue, 2007-08-28 at 00:15 +0200, Kai Schaetzl wrote:
> Timothy Selivanow wrote on Mon, 27 Aug 2007 14:55:15 -0700:
> 
> > As another poster already said...`man xm`.
> 
> Doesn't help, doesn't tell me how to start a VM that wasn't saved. No, "xm 
> create" does *not* do this.
> 
> Here's a hint: `/usr/sbin/xm
> > create ${config_file}`.  When you shutdown a guest it does leave the
> > list of running domains (i.e. what `xm list` shows you).  The default
> > location for VM configurations is '/etc/xen/'.  If you want them to
> > start at boot, sym-link the conf to '/etc/xen/auto/'.
> 
> And how do I start this VM in a running system? Or is booting it up when 
> xend boots up the only option? If so, then I don't see this mentioned 
> anywhere.
> 
> Kai
> 

I've used `xm create ${config_file}` many, many times.  It'll work :)

$ sudo /usr/sbin/xm list
Name  ID Mem(MiB) VCPUs State
Time(s)
Domain-0   0  485 8 r- 2838940.8
Domain_Services 1  511 1 -b   1962.0
Mail_Services   2  511 1 -b   1989.9
Web_Services3  511 2 -b   4927.6

$ sudo /usr/sbin/xm shutdown Web_Services

$ sudo /usr/sbin/xm list
Name  ID Mem(MiB) VCPUs State
Time(s)
Domain-0   0  485 8 r- 2839060.6
Domain_Services 1  511 1 -b   1962.1
Mail_Services   2  511 1 -b   1989.9

$ sudo /usr/sbin/xm create /etc/xen/Web_Services
Using config file "/etc/xen/Web_Services".
Going to boot CentOS (2.6.18-8.1.8.el5xen)
  kernel: /vmlinuz-2.6.18-8.1.8.el5xen
  initrd: /initrd-2.6.18-8.1.8.el5xen.img
Started domain Web_Services

$ sudo /usr/sbin/xm list
Name  ID Mem(MiB) VCPUs State
Time(s)
Domain-0   0  485 8 r- 2839121.3
Domain_Services 1  511 1 -b   1962.1
Mail_Services   2  511 1 -b   1990.0
Web_Services4  512 2 r-  2.4



-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos] Xen VM vanishes after creation

2007-08-27 Thread Timothy Selivanow

On Mon, 2007-08-27 at 22:18 +0200, Kai Schaetzl wrote:
> R P Herrold wrote on Mon, 27 Aug 2007 15:25:41 -0400 (EDT):
> 
> > holds this answer -- if the path variable is not set, it seems 
> > to look at the CWD, from some of the error cruft I can provoke
> 
> The problem is not the configuration file, the problem is the vm 
> filesystem  file. That is not mentioned anywhere. How do you shutdown or 
> start your VMs?
> I made another test and created a second VM and then *saved* that VM. That 
> saved it in the state it was in and I was able to restore it from that 
> save file. However, when I then shutdown the same VM the save file has 
> completely vanished and only the filesystem file is there as before. 
> There's no way to "revive" it then.
> This can't be it, I must be missing something, although I've read almost 
> all of the Virtualization Guide by now.
> Or is it really intended that the only way to keep a VM is to save it in 
> the middle of operation and restore it?
> 
> Kai
> 

As another poster already said...`man xm`.  Here's a hint: `/usr/sbin/xm
create ${config_file}`.  When you shutdown a guest it does leave the
list of running domains (i.e. what `xm list` shows you).  The default
location for VM configurations is '/etc/xen/'.  If you want them to
start at boot, sym-link the conf to '/etc/xen/auto/'.  

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] flash player on seamonkey 1.0.9 x86_64 centos 4.5

2007-08-23 Thread Timothy Selivanow

On Thu, 2007-08-23 at 19:47 +0200, René Standfest wrote:
> Jerry Geis schrieb am 23.08.2007 19:35:
> 
> > I downoaded flash9 for linux.
> > Installed it:
> > 
> > ls /usr/lib64/mozilla-seamonkey-1.0.9/plugins/
> > flashplayer.xpt  libflashplayer.so  libnullplugin.so
> > 
> > However seamonkey is not doing flash yet.
> > 
> > Does it not work in 64 bit? Did I miss something?
> > Anyone else have flash going on amd64?
> > 
> > I thought you put the files in the above directory and restart.
> > Didn't work for me.
> 
> 
> I have only 32 bit systems, but AFAIK the flashplayer is only 32 bit. So if
> you want to use it you have do install seamonkey.i386.
> 
> Greets
> René

That is correcct, Flash is 32bit only.  Adobe has not gotten around to
making it 64bit compatible yet.  Hopefully it will be soon (less than a
year).

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Right click on desktop

2007-08-22 Thread Timothy Selivanow

On Wed, 2007-08-22 at 18:55 -0400, Jerry Geis wrote:
> How do I customize what I see when I right click on the desktop?
> 
> jerry
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos

nautilus-actions, outside of that programming bonobo objects.
http://developer.gnome.org/doc/whitepapers/nautilus/nautilus-internals.html

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Trying to understand Remote desktops

2007-08-22 Thread Timothy Selivanow

On Wed, 2007-08-22 at 15:31 -0700, Liam Kirsher wrote:
> Well, that's concise.  Thanks.
> 
> Scott Moseman wrote:
> > On 8/22/07, Liam Kirsher <[EMAIL PROTECTED]> wrote:
> >   
> >> It looks like FreeNX only runs on 32-bit, won't run on 64-bit kernel.
> >> Is that correct?  If so, is VNC the next best alternative?
> >>
> >> 
> >
> > # uname -srmpio
> > Linux 2.6.9-55.0.2.EL x86_64 x86_64 x86_64 GNU/Linux
> >
> > # nxserver --status
> > NX> 100 NXSERVER - Version 1.5.0-60 OS (GPL)
> > NX> 110 NX Server is running
> > NX> 999 Bye
> > ___
> > CentOS mailing list
> > CentOS@centos.org
> > http://lists.centos.org/mailman/listinfo/centos
> >
> >
> >   

FreeNX might be 32bit only, but 64bit Red Hat systems are multi-lib.
Both 32bit and 64bit libraries should be installed on your system.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] centos 5.0 setting up an iscsi target

2007-08-09 Thread Timothy Selivanow

On Thu, 2007-08-09 at 16:48 -0400, Blackburn, Marvin wrote:
> Can someone point me to some documentation on how to set up centos 5.0
> as an iscsi target?
> I'm completely new to iscsi so need something basic.

I've used IET (iSCSI Enterprise Target) before in just a quick test.
Compilation was quick and easy, configuration was a breeze.  I had no
working knowledge of iSCSI before I had attempted this.

http://iscsitarget.sourceforge.net/

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] inexpensive / reasonably priced workstation / server development box

2007-08-09 Thread Timothy Selivanow

On Thu, 2007-08-09 at 09:42 -0700, Robert - elists wrote:
> We are testing some simple low bandwidth video and audio broadcasting using
> real server and client softwares.
> 
> So, for quick check and simplicity, we were plunking along TESTING on an
> 3.2GHz XP box and I noticed frames were getting dropped on the broadcast
> just for resizing a window on the screen during the session.
> 
> Talk about totally lame...
> 
> I know this can be a big deal and start conflicting opinions yet I need some
> experienced perspective please?
> 
> Can anyone chime in on what they use or what they would buy if they were
> going to have a workstation box for development that could double as test
> server and have good high speed storage and excellent video and audio etc
> etc
> 
> Im  thinking of a box that does audio and video development, can easily
> handle virtualization, and of course do general work apps plus setting up
> various server processes for testing whether intranet or internet etc etc
> 
> It can be premade like specific dell or hp (please list component choices
> for clarity)
> 
> OR
> 
> A hand built box with specific list of components that 
> 
> Now, I know this has been done in magazines with great expense, and even
> with lower expense, yet I trust the list more than a magazine that wants to
> sell me advertising etc
> 
> Thanks in advance
> 
>  - rh

Wow, that list of things you want to run on it sound like it could be
pretty intensive at times.  Your budget for this will definitely affect
what you can stuff into this new box, but I will go from the stand point
of being reasonable yet you have sufficient funds to acquire anything
you need.  For audio/video dev, you will want SAS drives, striped for
increased throughput, and if you *need* data integrity on that box (i.e.
hard to or impossible to backup or just plain paranoid) you'll want
mirroring.  So that means 4x146GB SAS drives, 146GB as raw video tends
to get big in size and you'll have ~292GB of usable space.  Depending on
how big the video files are that you will be working with, you'll want
2GB-4GB of RAM.  I'd go with a Xeon processor, if only so that you'll
have a higher available L2 Cache (4MB), although some Core 2 Duo chips
do have a fair amount of L2.  What kind of virtualization were you
thinking of doing (VMware, Xen, QEMU, etc.)?

This might be a good place to start tweaking the specs:
http://h71016.www7.hp.com/dstore/MiddleFrame.asp?page=config&ProductLineId=433&FamilyId=2437&BaseId=23358&oi=E9CED&BEID=19701&SBLID=

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clone physical into virtual

2007-08-08 Thread Timothy Selivanow

On Wed, 2007-08-08 at 10:44 -0500, Scott Moseman wrote:
> Is there a formal, or preferred, method for importing a physical
> CentOS machine into a VMware instance?  I know they make
> software to move Windows machines, but I couldn't find one to
> handle our CentOS servers.  I have done something via scp/sftp
> in the past, which *seemed* to work, but if there's a better way
> I'm more than interested in hearing the process.
> 
> Thanks!
> Scott

You can use a free tool called "VMware Converter", available here:
http://www.vmware.com/products/converter/


-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] rpmbuild --rebuild

2007-08-08 Thread Timothy Selivanow

On Wed, 2007-08-08 at 18:21 +0300, jarmo wrote:
> Hi
> Again try to learn, how to make package. Now when I try to make from
> .src.rpm I get:
> 
> [EMAIL PROTECTED] lataa]# rpmbuild --rebuild webmin-1.360-1.src.rpm
> Installing: webmin-1.360-1.src.rpm
> error: Legacy syntax is unsupported: copyright
> error: line 12: Unknown tag: Copyright: Freeware
> 
> What's wrong with rpm? or me, eh? :D
> 
> Also if I try install webmins noarc.rpm I don't get it work properly...
> Is there package for centos 5 somewhere? Webmin is one of the killer-
> progs, what I've used, so would like to use it further more.
> 
> Using here vanilla kernel-2.6.21.1
> rpm-4.4.2-37.el5
> 
> Jarmo

If you install the src.rpm, you can change the line that says
"Copyright: Freeware" to "License: Freeware" or better, what the license
actually is.  I also see that you are building as root, that can do some
interesting things and I've heard of it corrupting dependencies for the
running system.  You should take a look at these links for more info:

http://dag.wieers.com/howto/bits/rpm-build-user.php
http://myy.helia.fi/~karte/linux/doc/rpm-build-as-user.html
http://fedoranews.org/tchung/rpmbuild/


-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Power burn test

2007-08-03 Thread Timothy Selivanow

On Fri, 2007-08-03 at 15:01 -0400, Robert Moskowitz wrote:
> I need a program that will just run everything at max so I can measure 
> the max power used on some systems.  My 'Kill a Watt' meter should show 
> up early next week.
> 
> SO run that CPU at max, using all memory, and keeping the harddrive 
> spinning.
> 
> I can jsut do pings on the lan card for it to stay awake.
> 
> I have searched here and on the net and have come back with nothing.
> 
> 
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos

Are you wanting max power for provisioning purposes?  If so, the max
power on the power supply or chassis will give you absolute max.  80% of
that number is what it is rated for on a continuous basis, 100% is for
max burst.

If you need a more accurate number (as the above is the rated Wattage,
which /will/ be different than actual usage for safety purposes), you
could run multiple of something like this: `dd if=/dev/urandom
of={somefile} bs=1024k count=1024`.  Depending on your processor speed,
that won't keep the disks busy all the time which is why I suggested
multiple running at the same time.  What that will do is pull 1GB worth
of random data (stresses CPU) and writes it as fast as possible to the
disk. Running a few of those in a loop should give you enough time to
see actual power draw.  Shifting bits around in the memory register
probably won't add too much power draw, as it is mostly CPU and chipset
(just CPU if you are using AMD).  The RAM stick is fully powered
regardless.

Hope that helps at least a little.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 4 vs 5 for VMware?

2007-08-03 Thread Timothy Selivanow

On Fri, 2007-08-03 at 10:27 -0700, Ray Van Dolson wrote:
> On Fri, Aug 03, 2007 at 10:24:44AM -0700, Rogelio Bastardo wrote:
> > For stability reasons, I'm running CentOS 4 for VMware (it's the devil I 
> > know).
> > 
> > Are there any compelling reasons to upgrade to CentOS 5 for it?  I'm
> > relatively new to the whole virtualisation scene and perhaps there are
> > some updated packages that might be good for VMware?
> 
> Seems to run fine on CentOS 5 as well.
> 
> CentOS 5 kernel lets you exclude some processes from consideration for
> "death" by the OOM killer which is kinda nice. :)
> 
> Of course there are plenty of other settings in the 4 kernel that help
> keep VMware safe from being accidentally killed.
> 
> Ray
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos

I've run GSX on both 4 and 5, nothing really of note to say other than
that VMWare does not yet "support" GSX on RHEL5 as of version 1.0.3.
Really that only means that there aren't pre-compiled versions of the
kernel modules and you will need to re-run vmware-config.pl each time
the kernel is updated

Also, there is a special kernel that helps out on running VMWare that
changes the default speed of the system timer, reducing the LA on the
host system especially if your guests are mostly idle.  The kernel is
available for both 4 and 5.  Please look at
http://bugs.centos.org/view.php?id=2189 for more info.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Re: Mixing RPMforge and EPEL (Was: EPEL repo)

2007-08-02 Thread Timothy Selivanow

On Thu, 2007-08-02 at 13:26 -0500, Les Mikesell wrote:
> Timothy Selivanow wrote:
> 
> >> The LFHS is the problem here, although putting applications where you 
> >> want them in the filesystem would make Linux as hard to use as the Mac.
> >> Oh wait...
> > 
> > That compromises one of GNU/Linux's biggest strengths, that of shared
> > libraries.  So instead of just upgrading OpenSSL, I now have to upgrade
> > the following that is on one of my servers:
> 
> Unixes have had mechanisms to handle multiple shared library versions 
> probably for as long as shared libraries have existed.

Yes, but like alternatives, there is a default and each time you want to
deviate from the default you must specify.  Even implementing a meta
filesystem to store per-application environment settings is just as much
work in logistics as using wrapper-scripts.  Not that it couldn't be
done, but your are still talking about major changes that are beyond the
scope of just RPM.  You are looking for a quick and easy way (i.e., no
real maintenance on your part) to have multiple libraries and multiple
same programs with auto-magical negotiation that the under-laying
structure doesn't support.

> Are you sure you want _any_ enabled repository to be able to replace your 
> stock ssl libs, though?  So far the discussion has assumed that everyone 
> involved is operating in good faith and all problems are just accidental, 
> but what if...?
> 

"What if" indeed!  That is one reason why I use only /my/ repo on my
servers.  In the past I used Karan's for a few packages, but decided to
just maintain a repo for the few extra packages I need.  For desktop
(F7), I use (currently) only one 3rd party repo (and well-known, so
hopefully not shady in nature) and I am able to see what repo the
updates are coming from in yumex and yum.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Re: Mixing RPMforge and EPEL (Was: EPEL repo)

2007-08-02 Thread Timothy Selivanow

On Thu, 2007-08-02 at 07:47 -0500, Les Mikesell wrote:
> Axel Thimm wrote:
> > On Wed, Aug 01, 2007 at 11:29:25AM -0500, Les Mikesell wrote:
> >> You'll have to remind me why anyone wants different same-named packages 
> >> with differences the end user doesn't understand and can't control to 
> >> exist at all before I can comment on a solution about managing them.
> > 
> > Let's assume no one wants that (I think I don't). Shouldn't you be
> > chasing the repo that just created the duplicates instead of the ones
> > that supported RHEL/CentOS over years now?
> > 
> > And before you rightfully extend the argument - as far as duplicates
> > between RPMForge/Dag, Dries, Karan Extras, CentOS Extras SL contrib
> > and ATrpms are concerned: We're working *together* on eliminating
> > them.
> 
> And yet, conflicts have always kept popping up, and I can't see any 
> provision you make to enable additional repositories to exist without 
> coordinating with your rules.  The issue is that there is only one 
> namespace which is the part that doesn't make sense and can't work 
> without a single authority or a hierarchial structure, and I can't come 
> up with a reason that you should be that authority.
> 
> > We're too old for clone wars, the only kid on the block that
> > wants to play by its own rules is on another list, go patronize it ;)
> 
> The LFHS is the problem here, although putting applications where you 
> want them in the filesystem would make Linux as hard to use as the Mac.
> Oh wait...

That compromises one of GNU/Linux's biggest strengths, that of shared
libraries.  So instead of just upgrading OpenSSL, I now have to upgrade
the following that is on one of my servers:

$ rpm -q --whatrequires libcrypto.so.4
cyrus-sasl-2.1.19-5.EL4
cyrus-sasl-md5-2.1.19-5.EL4
lftp-3.0.6-3
pyOpenSSL-0.6-1.p23
stunnel-4.05-3
wget-1.10.2-0.40E
xmlsec1-openssl-1.2.6-3
libwvstreams-3.75.0-2
ipsec-tools-0.3.3-6.rhel4.1
bind-libs-9.2.4-24.EL4
bind-utils-9.2.4-24.EL4
bacula-client-2.0.3-1
openssl-0.9.7a-43.16
python-2.3.4-14.4
openldap-2.2.13-7.4E
net-snmp-libs-5.1.2-11.EL4.10
postgresql-libs-7.4.17-1.RHEL4.1
net-snmp-5.1.2-11.EL4.10
cups-libs-1.1.22-0.rc1.9.20
curl-7.12.1-11.el4
net-snmp-utils-5.1.2-11.EL4.10
postgresql-server-7.4.17-1.RHEL4.1
OpenIPMI-1.4.14-1.4E.17
ntp-4.2.0.a.20040617-6.el4
openssh-server-3.9p1-8.RHEL4.20
openssh-clients-3.9p1-8.RHEL4.20
pam_ccreds-3-3.rhel4.2
openssh-3.9p1-8.RHEL4.20
postfix-2.2.10-1.1.el4
postgresql-7.4.17-1.RHEL4.1
dhcpv6_client-0.10-17_EL4
cups-1.1.22-0.rc1.9.20
$ rpm -q --whatrequires libssl.so.4
lftp-3.0.6-3
pyOpenSSL-0.6-1.p23
stunnel-4.05-3
wget-1.10.2-0.40E
xmlsec1-openssl-1.2.6-3
libwvstreams-3.75.0-2
ipsec-tools-0.3.3-6.rhel4.1
bacula-client-2.0.3-1
openssl-0.9.7a-43.16
python-2.3.4-14.4
openldap-2.2.13-7.4E
postgresql-libs-7.4.17-1.RHEL4.1
cups-libs-1.1.22-0.rc1.9.20
curl-7.12.1-11.el4
postgresql-server-7.4.17-1.RHEL4.1
postfix-2.2.10-1.1.el4
postgresql-7.4.17-1.RHEL4.1
cups-1.1.22-0.rc1.9.20

That's just awesome.  The logistics of that is just staggering, imagine
that just one maintainer failed to update code/recompile against fixed
OpenSSL.  However, I imagine that there could be a hybrid approach, but
this is definitely /not/ the forum to be radically changing the way
GNU/Linux behaves as a whole.  A good start might be on the kernel devel
list.  HPFS also uses embedded meta info, that would probably be needed
also.  Essentially, you are talking *radical* changes when you start
thinking along the lines of "Mac does this; Windows does that; Foo OS
does some other thing...", some of which might be integrated /over
time/.


-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Re: Mixing RPMforge and EPEL (Was: EPEL repo)

2007-08-01 Thread Timothy Selivanow

On Wed, 2007-08-01 at 18:23 -0500, Les Mikesell wrote:
> Timothy Selivanow wrote:
> >>> Another example is Fedora's alternatives system (which, for example, 
> >>> allows multiple versions of Java to coexist) but again that requires 
> >>> specialized logic.
> >> Question: how many levels of symlinks-pointing-to-symlinks does it take 
> >> to get to the right place?  And having supplied this number of symlinks, 
> >> how can a user choose to execute one version of java while someone else 
> >> prefers the other?  Or how do you run one application under one version 
> >> and another with a different one?
> > 
> > There are several levels, just guessing off the top of my head, some
> > might go through 5 or more.  As far as choosing which one...the system
> > gets one configured, the one that is /usr/bin/java (you can do a
> > `/usr/sbin/alternatives --display java` to see what it is currently).
> > For using all others, you have to explicitly tell it to use a specific
> > java enviro.
> > 
> > For instance, something that you are familiar with:  in tomcat4.conf,
> > you can set JAVA_HOME="/usr/lib/jvm/java",
> 
> Except, of course, that you have no reasonable way to know this location 
> for the package(s) in question.
> 
> > The point is, you need to explicitly setup the environment /each time/,
> > whether at command line or some other setting. 
> 
> Well, sort of.  $HOME conveniently manages to be both unique and correct 
> for different users at the same time and there are well-known ways to 
> manage other personalized variables.

Yes.  That's env magic.

> > Symlinks only provide a
> > default.  Yes, you can do what you have been wanting this entire thread:
> > install things into a different directory tree so that you can have
> > independent version running simultaneously.  The trick is the
> > environment needs to be set up each time in order for it to work.
> 
> And that's not a difficult trick, given an OS where environment settings 
> are always inherited from parent processes but you can change them when 
> needed.

MacOS X is known for an ability similar to that.  It's called static
building.  Otherwise, GNU/Linux does exactly that, inherits the env from
parent unless over ridden.  You can do that by making wrapper-scripts.

> > The big problem with doing it with RPM, is that there is no central
> > authority on who gets to put what where. Having
> > a /usr/local/foo-repository/package1 and
> > a /usr/local/bar-repository/package1 doesn't solve any of the problems
> > that are described.  Having customized directory structures only works
> > on a case-by-case and as-needed basis, as they are not trivial, and
> > there is really no way for a user (not admin) to be able to make those
> > kinds of decisions.
> 
> If they have different names a user can choose which he wants just like 
> any other thing he chooses.  Or if the user only knows how to click, 
> different icons can do everything necessary.

If you strip the rant away, that's pretty much what I was trying to get
at if you include the below paragraph.

> > If you want a program compiled against different
> > libraries, and have a user be able to access both, best way it to have
> > it done in a custom fashion, building the environment using scripts if
> > need be.
> 
> Why?  If there is a way that works in the custom case on one machine, it 
> will work on another machine without duplicating the custom work.

There is a way.  Make a custom RPM, or even an advanced script (ala
gentoo ebuild system).  That isn't the problem, it's the name space.
There is no guarantee that what ever you choose it going to be unique
and therefore not over-written by someone else.  How do you think Red
Hat does the dual arch libs in x86_64?  That was dictated though, and
everyone follows it.

> > That all said, the best way to get repo mixing is probably just
> > plain-old co-operation, and a bit of know-how.
> 
> Perhaps someone who uses several jpackage packages can comment on how 
> things are working out in FC6/7 and Centos5 where some small subset of 
> things that look like jpackage packages have been included in the core 
> repos?  So far I don't see how this is going to work unless the whole 
> mess is included.  To simplify this, I understand how environment 
> variables work and find them very predictable.  I can't predict what two 
> different repositories are going to contain tomorrow and don't ever 
> expect to be able to.  I'd rather trust my luck to the thing I can control.

So far, the reason why it's working is that

Re: [CentOS] Re: Mixing RPMforge and EPEL (Was: EPEL repo)

2007-08-01 Thread Timothy Selivanow

On Wed, 2007-08-01 at 16:02 -0500, Les Mikesell wrote:
> Kenneth Porter wrote:
> > --On Wednesday, August 01, 2007 5:04 PM +0200 Dag Wieers 
> > <[EMAIL PROTECTED]> wrote:
> > 
> >> For the kernel there is a lot of specialized logic to
> >> make it work.
> > 
> > Another example is Fedora's alternatives system (which, for example, 
> > allows multiple versions of Java to coexist) but again that requires 
> > specialized logic.
> 
> Question: how many levels of symlinks-pointing-to-symlinks does it take 
> to get to the right place?  And having supplied this number of symlinks, 
> how can a user choose to execute one version of java while someone else 
> prefers the other?  Or how do you run one application under one version 
> and another with a different one?

There are several levels, just guessing off the top of my head, some
might go through 5 or more.  As far as choosing which one...the system
gets one configured, the one that is /usr/bin/java (you can do a
`/usr/sbin/alternatives --display java` to see what it is currently).
For using all others, you have to explicitly tell it to use a specific
java enviro.

For instance, something that you are familiar with:  in tomcat4.conf,
you can set JAVA_HOME="/usr/lib/jvm/java", and while you are installing
OpenNMS, you do a `$OPENNMS_HOME/bin/runjava -s` which grabs JAVA_HOME
from env, or `$OPENNMS_HOME/bin/runjava -S ` to set it
explicitly and stores it in $OPENNMS_HOME/etc/java.conf.

The point is, you need to explicitly setup the environment /each time/,
whether at command line or some other setting.  Symlinks only provide a
default.  Yes, you can do what you have been wanting this entire thread:
install things into a different directory tree so that you can have
independent version running simultaneously.  The trick is the
environment needs to be set up each time in order for it to work.

The big problem with doing it with RPM, is that there is no central
authority on who gets to put what where. Having
a /usr/local/foo-repository/package1 and
a /usr/local/bar-repository/package1 doesn't solve any of the problems
that are described.  Having customized directory structures only works
on a case-by-case and as-needed basis, as they are not trivial, and
there is really no way for a user (not admin) to be able to make those
kinds of decisions.  If you want a program compiled against different
libraries, and have a user be able to access both, best way it to have
it done in a custom fashion, building the environment using scripts if
need be.

That all said, the best way to get repo mixing is probably just
plain-old co-operation, and a bit of know-how.

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Centos as a desktop, advisable?

2007-07-25 Thread Timothy Selivanow

On Wed, 2007-07-25 at 11:21 -0700, Steven Vishoot wrote:
> hello,
> 
> i am not sure if this is a concern, but if you are
> running x86_64 desktop systems then i would suggest
> putting the 32 bit centos. this will make life a lot
> more pleasant for you when installing firefox and
> other apps. if it is x86 then carry on :)
> 
> my .02 cents 
> 
> 
> Steven

I have not run into any problems using 64bit as my desktop (I run
Firefox as 32bit to get flash to work, but that is the only
"modification").  I do this both at home and at work.  Granted, I use
Fedora 7 on both of them, but there is no reason why you couldn't get
the same functionality using CentOS.  I'm not afraid of compiling or
rebuilding RPMs though.  Between Karanbir's RPM repository
( http://centos.karan.org ) and EPEL
( http://fedoraproject.org/wiki/EPEL ) I imagine that you could have a
fairly complete desktop OS (I just prefer more bleeding-edge
software/features).

-- 
Timothy Selivanow <[EMAIL PROTECTED]>
Linux System Administrator
EasyStreet Online Services, Inc.  http://www.easystreet.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

54 matches

Mail list logo