Re: [CentOS] CentOS 6.5 equivalents in CentOS 7
On 10/30/2014 8:38 AM, Marko Vojinovic wrote: On Thu, 30 Oct 2014 03:56:58 + Always Learning cen...@u62.u22.net wrote: iptables -A table-name -p tcp --dport 80 -j ACCEPT No reboot needed. 'table-name' can be INPUT or another user defined table name. firewall-cmd with its Windoze-like structure and syntax is definitely unappealing to many normal firewall users. If you compare the syntax of the two equivalent commands, iptables -I INPUT -p tcp --dport 80 -j ACCEPT and firewall-cmd --add-service=http I'd say that the second one appears simpler, more readable, more intuitive, and less sensitive to typos. No reboot is required for either. I fail to see what is so unappealing to a user in the second one. I don't know who is a normal firewall user. Finally, I don't see any Windows-like syntax in the second one (AFAIK, Windows doesn't have any syntax, you need to click your way through menus and checkboxes and stuff to tweak the firewall in Windows). To do this in cmd line on Windows: netsh advfirewall firewall add rule name=httpd dir=in \ localport=80 protocol=tcp enable=yes \ profile=private,domain \ remoteip=192.168.1.1,192.168.2.1 action=allow ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6.5 equivalents in CentOS 7
On 10/30/2014 10:20 AM, Always Learning wrote: On Thu, 2014-10-30 at 10:01 -0400, Toby Bluhm wrote: On 10/30/2014 8:38 AM, Marko Vojinovic wrote: iptables -I INPUT -p tcp --dport 80 -j ACCEPT and firewall-cmd --add-service=http To do this in cmd line on Windows: netsh advfirewall firewall add rule name=httpd dir=in \ localport=80 protocol=tcp enable=yes \ profile=private,domain \ remoteip=192.168.1.1,192.168.2.1 action=allow Ugh. Very unappealing. I am so happy to be on Centos 5 and 6. :-) How does one modify that Windoze rule ? In IPtables, -R 4web 5 -p tcp --dport 888 -s 192.168.2.1/23 -j ACCEPT netsh advfirewall firewall set rule name=sshd \ new remoteip=192.168.1.1/23 Different? - Yes Difficult? - No more than anything else I'm unfamiliar with ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] FW: [Samba] Samba 4.1.7 + CentOS 6.5 - Home's directory mounting in W7 + Roaming of Profils
On 6/5/2014 9:29 AM, Pascal Blétard wrote: Date: Thu, 5 Jun 2014 05:39:47 -0700 From: jd...@yahoo.com I tried it first, but this seems doesn't working for me :/ - Can you send me your whole smb.conf (in particular for sysvol and global shares) - Which OS on client? Win7 ? - What's your distro GNU/Linux? - Is it a for samba dedicated server? If yes, what's your dependances list ? - I haven't the smb-admin group, have you created it? - Which are your compilation's options for samba ? - Which are your options for domain provision ? I don't know why my environment differs of yours I think JD's setup is for samba3. Samba4 is written mainly for Active Directory emulation - much more setup stuff is needed. You should really be reading the samba4 wiki email list. There's been much work done lately to make the docs on the wiki more coherent and usable. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 3TB External USB Drive isn't recognized
On 8/12/2013 9:59 AM, james wrote: We have a 3TB external USB drive that I am trying to attach to some CentOS5 servers. I have tried an older Dell PE1950 and a newer R310 but neither one seems to be able to read the drive. It works no problem on windows servers/workstations and I was able to format with NTFS. I've gone through the same scenario. I believe the USB layer/interface/driver/whatever in C5 is the pinch point. I have SATA attached GPT labeled 3TB disks working just fine in C5. Put the very same disk in a USB enclosure and it's not recognized as 3TB - sees it as some fraction of its true size. I know the same disk/enclosure worked on Win7 I'm pretty sure it worked on C6. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apcupsd, odd behavior
On 2/8/2013 1:23 PM, m.r...@5-cent.us wrote: Craig White wrote: service apcupsd status (or cat /var/log/apcupsd.events) Already posted the latter; the former, hey, neat results, excerpted here: MODEL: Smart-UPS 3000 RM STATUS : SHUTTING DOWN LINEV: 118.0 Volts LOADPCT : 55.9 Percent Load Capacity BCHARGE : 100.0 Percent TIMELEFT : 10.0 Minutes ... TONBATT : 0 seconds CUMONBATT: 27 seconds You can specify in the conf file that shutdown occurs when it hits X minutes of runtime left - MINUTES should be the parameter. You're at 10.0 minutes left if you have it set to something 10.0 or greater, it's probably gonna want to shutdown immediately at any AC power loss. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apcupsd, odd behavior
On 2/8/2013 2:26 PM, m.r...@5-cent.us wrote: Toby Bluhm wrote: On 2/8/2013 1:23 PM, m.r...@5-cent.us wrote: Craig White wrote: service apcupsd status (or cat /var/log/apcupsd.events) Already posted the latter; the former, hey, neat results, excerpted here: MODEL: Smart-UPS 3000 RM STATUS : SHUTTING DOWN LINEV: 118.0 Volts LOADPCT : 55.9 Percent Load Capacity BCHARGE : 100.0 Percent TIMELEFT : 10.0 Minutes ... TONBATT : 0 seconds CUMONBATT: 27 seconds You can specify in the conf file that shutdown occurs when it hits X minutes of runtime left - MINUTES should be the parameter. You're at 10.0 minutes left if you have it set to something 10.0 or greater, it's probably gonna want to shutdown immediately at any AC power loss. I'm afraid you've missed the whole beginning of this thread - I suggest you read it. I know what you were saying; it's the response of apcupsd to a power blip this morning that's the issue: as much as these servers draw, there's no way that the UPS is out of power in 3 seconds. I'm not saying it's out of battery power. I'm saying you may be telling it to shutdown when it has, by it's own calculations, 10 minutes of battery run time left. I believe the default is 3 or 5 in apcupsd.conf. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On 11/5/2011 10:43 PM, Doug Coats wrote: I understand what google docs offers but it comes with the need for an email address that i can not make students have, the inability for me to control who has access to which files, and no way to get teachers access without each student configuring that on their own. My teachers have enough to worry about. They will not use a solution that is more difficult then what we already use. Any solution has to be a clear upgrade with advantages for it to be adopted. Sent from my ASUS Eee Pad Try a search for document management system open source. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] guest vms crash host systems
If you haven't already, check the mainboard power supply for bad capacitors: http://en.wikipedia.org/wiki/Capacitor_plague ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6 Update?
Funny. When no news is given, people don't like it. When news is given, people still don't like it: it's inaccurate. However, people really, really don't like the 100% accurate estimate: When it's ready ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] excel parser (preferably perl)?
On 10/19/2010 11:17 AM, Les Mikesell wrote: On 10/19/2010 9:34 AM, Todd Denniston wrote: I'm getting tired of converting spreadsheets that someone else updates to csv so my perl scripts can push the data into a mysql database. Is there a better way? I haven't had much luck with perl-Spreadsheet-ParseExcel (and find it odd that yum prefers the .32 version from epel over .57 from rpmforge anyway). Is the current CPAN version better? Or the equivalent java tools? Or maybe a scripted OpenOffice conversion would be possible. Needs to deal with both xls and xlsx formats, the odd characters that are confused with quotes even after csv conversion, numbers with $'s and commas embedded, excel's date formatting nonsense, etc. Would it cause more headaches than it would solve, for you to hook the excel folks directly to the mysql db and have their changes take place immediately? Assuming a LAN environment here instead of 'the only connection is email'. That's pretty much impossible in the near term anyway. The bulk of this involves reconciling inventory data maintained by one set of people for financial purposes in a database I don't control with some others used for operational monitoring and management. For example, we need to be able to report the current value of the set of equipment being used for a particular purpose - where servers are being shuffled around for different purposes all the time. I'm using ocsinventory-ng for operational tracking because the agents keep it updated automatically but it only handles computers and by itself doesn't deal with cost or deprecation. New requirements keep popping up as we go and I don't find out about them until someone sends me a spreadsheet with some new fields and a request to add them to the db and populate them so they'll be available in future reports. Could you do the sanity checking you currently do by using some db functions? Maybe, but doing string operations in sql instead of using perl regexps seems a little insane by itself. MySQL Forums :: Microsoft Access :: Connecting MS Office, MS Excel, MS Access to MySQL using ODBC http://forums.mysql.com/read.php?65,148441,148441 * OK, I often come at problems from a different direction. * Yeah, the inconvenient parts could probably be done in vbscript or something on a windows box, pushing the results into the db through odbc, but I thought this would be a common enough problem that cross-platform tools would be available. I am using some java stuff on the reporting side - maybe I should look there for conversion tools too. I experimented a little with this sometime last year - seemed to work okay: http://www.artofsolving.com/opensource/jodconverter ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pdflush kernel thread pops up every 10 seconds or so and video decoding grinds to a halt for 1/2 a second
On 10/19/2010 3:34 PM, Aleksey Tsalolikhin wrote: On Mon, Oct 18, 2010 at 9:08 PM, JohnSjse...@gmail.com wrote: On Mon, 2010-10-18 at 18:25 -0700, Aleksey Tsalolikhin wrote: Hi. A friend of mine was doing real-time video decoding on Fedora Core 13 and he had a performance glitch (1/2 a second freeze) every 5-10 seconds. top showed flush-253:0 process at the moment of the freeze. And what is the Priority of it running at? How many Cores also? He sees this issue at normal priority and at nice -n -19 / -20. He has 6 cores with hyperthreading on 3.8 Ghz, the memory is 1.850 Mhz The system is 980x Intel 6 core He just told me he has two modes for his decoding program, in one mode the system does not write to disk at all, and there are NO GLITCHES doing it this way; another way, it writes lots of little files as it decodes, and the glitch happens actually every 5-20 seconds. Would like to get to the bottom of this so he can decode with temp files and without glitches. Ext3 filesystem? Maybe altering the commit option at mount time would help: http://www.mjmwired.net/kernel/Documentation/filesystems/ext3.txt#49 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to show that a filesystem is ACL-enabled?
On 9/16/2010 10:09 AM, Robert P. J. Day wrote: On Thu, 16 Sep 2010, Miguel Medalha wrote: can someone clarify this? is there a command that shows whether a filesystem is currently acl-enabled? and is the mount man page simply incomplete in that respect? thanks. tune2fs -l /dev/[hda1,sda1] The values between [ ] are an example only. Replace, of course, with your own storage device. Look at Filesystem features and Default mount options. ah, excellent, i can see that default mount options includes acl, and i'm going to guess that that's a kernel config option that's selected on a per-filesystem type basis. thanks. I'm not sure what fs mount options are available through kernel config, but you can set/unset many fs options/features with tune2fs. Check the manpage. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] samba upgrade 3.0 - 3.x error convert passdb.tdb
On 7/22/2010 11:07 AM, camun wrote: Yes! I posted on the samba list and found that there is a patch for version 3.3. However, the patch must be applied in the / source then be compiled. The procedure and did not get the expected result. Do the developers forgot to apply this patch to versions rpms?? 2010/7/22 John Doe jd...@yahoo.com mailto:jd...@yahoo.com From: camun camun.i...@gmail.com mailto:camun.i...@gmail.com after several days of searching, I have not found a definitive answer to the problem samba Migrating from 3.0.x to 3.3.x. (Migrating from 3.0.x to 3.3.x Can Fail to Update passdb.tdb Correctly (bug # 6195) . passdb.tdb break occurs in the file where the new samba starts. Any suggestions or someone going through the same problem? (I'm running samba 3.0.28 with upgrade to 3.5.4 (Sernet repo) Using Sernet rpms means you should be checking with the Sernet folks. I believe the problem may be that Centos samba looks for the tdb files in /var/cache/samba while Sernet looks in /var/lib/samba. Centos has samba 3.3.8 in the samba3x rpms - should be a trivial update. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] best practice: how to setup a central network installation server?
On 2/18/2010 8:49 AM, Les Mikesell wrote: Rudi Ahlers wrote: Hi, I want to setup a central installation server, but haven't done this before, so I want to find out what would be best practices for this? The server I have already runs as a central repo, which is updated from one or our local centos mirrors, and the other CentOS servers (both i386 x64), as well as CentOS VPS's get their updates from this server. But, now I want to allow a client to perform a quick network installation, using either a netbood CD, or preferably with the server's network bootrom. I understand this can be done with bootp, or am I on the wrong track? the server is a general file server and also acts as our in-office internet gateway, and has Webmin installed for convenience sake. I don't know if this is of any use? Generally we would be (re)installing CentOS servers desktops, but I guess it could be useful for other distro's like Fedora Core / Debian / FreeBSD? / etc. What would be a good option to go for, or could someone point me to a good documentation? Doing a google search I found a lot of instructions on how to perform a network installation on the client PC's, but not how to configure the server. Maybe I used the wrong key words? If you want to do disk cloning (any OS, including windows) or PXE boot into a running, look at drbl and clonezilla http://drbl.sourceforge.net/. You can find a yum repository for Centos in the list at http://drbl.sourceforge.net/one4all/. It has a menu configuration that I think can be made to boot into an installer but I've never used it that way since our machines are mostly identical and a lot of them are windows based. +1 This is how I have it setup. Reboot any PC, hit F12, PXE boot a menu of selections: Clonezilla backup/restore, Centos5 install/rescue, DBAN, memtest, systemrescuecd, etc. WARNING - drbl/clonezilla server should probably be tested/installed on a standalone test box as it likes to overwrite several conf's. Also, if you have a mix of 32bit 64bit client hardware, use a 32bit server. Your 32bit machines will work you can still PXE boot into 64bit stuff. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to map ata#.# numbers to /dev/sd numbers?
Stephen Harris wrote:
On my C5 machine (a Dell XPS420) I have a 500Gb disk on the internal SATA
controller.
I also have a SiI3132 dual-port multi-device eSATA card. This is connected
to an external SATA array of disks.
Now occasionally I see something like this in my logs
ata7.01: exception Emask 0x0 SAct 0x0 SErr 0x0 a ction 0x0
ata7.01: irq_stat 0x00060002, device error via D 2H FIS
ata7.01: cmd 25/00:08:47:1c:92/00:00:6c:00:00/e0 tag 0 dma 4096 in
res 51/40:00:4e:1c:92/00:00:6c:00:00/00 Emask 0x9 (media error)
ata7.01: status: { DRDY ERR }
ata7.01: error: { UNC }
ata7.01: configured for UDMA/100
ata7: EH complete
How do I tell what disk this is complaining about? Is there a way
to determine what ata7.01 maps to in terms of /dev/sd# values?
/proc/scsi/scsi doesn't obviously match scsi# numbers to ata# numbers :-(
Try looking in /dev/disk/
--
tkb
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Detect file change
Alan Hoffmeister wrote: Em 26/01/2010 10:38, Wade Hampton escreveu: If you know C, you can write a simple program using inotify(7). For example, you could write a program to continually monitor the directory and pass in the script plus args as a arg. See: http://www.ibm.com/developerworks/linux/library/l-inotify.html I don't know C... I was looking for a bash script... If you want to try inotify, rpmforge has inotify-tools rpm. Sample scripts in the man pages. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Corporate drop box for files
Joseph L. Casale wrote: Dumb question: samba? I should have stated for customers/vendors as well, across the wire:) The webdav approach sounds good, but building doesn't fit the time frame. I'll look at the other reco's. Take a look at knowledgetree - similar to alfresco. http://sourceforge.net/projects/kt-dms/files/ The versions prior to 3.7 have the installer drop everything into /opt. 3.7 has a much more intrusive install - add's a couple repo's, replaces some rpms, weaved more into the system. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] unison versus rsync
Joseph L. Casale wrote: Another feature of rsync modules that can be useful is that each module can specify a user and group thus one can rsync user directories between systems where the user names are the same but uid and gid may differ. I have been looking at this all morning. Is there any way to auth with keys or something unique so I can script this securely? Iiuc, the only auth is done through these rsync user/pass pairs unless you do it with hosts etc. I was also looking at unison/rsync to solve a problem, came across this, has potential for me. http://samba.anu.edu.au/rsync/firewall.html I may have to connect to a Windows box - I'm not excited about that. I've made it work on Windows before - just dislike the inherent extra layer of setup glop one has to go through to do it. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM, usb drives, Active Directory
Scott Ehrlich wrote: I have a client with a handful of USB drives connected to a CentOS box. I am charged with binding the USB drives together into a single LVM for a cheap storage data pool (10 x 1 TB usb drives = 10 TB cheap storage in a single mount point). The next fun piece is how to incorporate that storage space into an existing Active Directory structure to apply AD acls for limited access. I'd rather not use Samba, as that is its own infrastructure and maintains its own credentials database. What are my best options? Why would you use USB disks? Even if you could put up with not-so-stellar speed, the tangle of cables powerpacks would be messy and prone to accidental disconnect. On top of that, using only LVM to glue it all together would really exacerbate the disconnect problem. A single disk failure could bring the entire volume down with no recourse but to restore from backup. That's another thing - is this data valuable? If so, you need to have an idea for backups. Ditch the crazy USB scheme and get better hardware - raid/hotswap. And a 10 drive, 10TB raid5 is also going to be a headache. There's been several recent discussions here about such matters - large volume filesystems, SW raid vs HW raid, raid types, LVM, etc. Look through the archives. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM, usb drives, Active Directory
Scott Ehrlich wrote: I have a client with a handful of USB drives connected to a CentOS box. I am charged with binding the USB drives together into a single LVM for a cheap storage data pool (10 x 1 TB usb drives = 10 TB cheap storage in a single mount point). The next fun piece is how to incorporate that storage space into an existing Active Directory structure to apply AD acls for limited access. I'd rather not use Samba, as that is its own infrastructure and maintains its own credentials database. The answer to your AD question is Samba. It integrates into AD perfectly well. Search the Centos archives. samba.org has extensive info on the subject. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Low End NAS hardware.
Drew wrote: Hey, The recent discussion on NAS/SAN and the Thecus N8800 got me to thinking. Bit of background. I have an old Dual Athlon MP2800+ that I'm using for a home web/file server. It runs fine but between the noise of the various fans and it's location in the living room, I've been asked by my spouse to find a replacement for it that's smaller quieter. Looking at the Thecus, and based on experience with Atom based Mini-ITX systems at work, I was thinking about rolling my own. My questions is, for a small home server that runs apache/php/mysql and Samba, how well do the Mini-ITX boards like the VIA C3/7 Intel Atoms handle this sort of task? I've used VIA systems as MythTV frontends but never as file/web servers. I'd expect they'd do fine for home use but I've never tried. I looked at doing the same thing. I have an old Athlon XP ~ 1800 MHZ at home, made noise, pumped a lot of heat into the closet. Sure, itx would be low power and smaller, but the pieces parts seemed quite pricey to me and what I had worked fine. So I cranked the cpu speed down in the bios to 700 MHZ, lowered the cpu voltage, switched the case fans to run off 5v. Still runs apache, samba, firewall, dhcpd, etc. without a hitch. Never noticed the slowdown in normal activities. Dual processor board? Try removing one cpu to cut down on power. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.4? anyone?
You Centos guys just aren't getting the message are you? We need to know EXACTLY what is going on with the release! None of this soon crap will do. Please post a progress report on packages built, isos transfered, server update progress by region, hours worked, keystrokes typed, bathroom breaks, hours slept, family time taken. Bar charts would be a nice touch. We need to know these things! Our very lives hang upon this release. Strap a wireless webcam to your head for god's sake and broadcast your every move. Verbalized every action. Quit leaving us in the lurch! Thank you -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.4? anyone?
Look, it's not me that wants it. It's . . . it's the servers, OKAY? I think they've got a jones on for 5.4. I walk past the cpu room and hear trashing and growling. I look inside and it's all quiet and normal and all that - but I *know* something is going on in there. They're emanating a serious attitude. I mean I type ls -las or ps ax at an ssh term and I get a pause there, like its saying Maybe I'll show you, maybe I won't! Time for a webcam in the server room. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple way to banish IP addresses ?
Niki Kovacs wrote: Hi, I just set up a web server... and my bandwidth is being eaten by some chinese folks trying to brute-force-ssh their way into the machine. Is there a simple way to banish either single IP addresses or, maybe even better, whole IP classes ? I know it's feasible with iptables, but is there something more easily configurable ? Cheers, Try fail2ban from rpmforge. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple way to banish IP addresses ?
Toby Bluhm wrote: Niki Kovacs wrote: Hi, I just set up a web server... and my bandwidth is being eaten by some chinese folks trying to brute-force-ssh their way into the machine. Is there a simple way to banish either single IP addresses or, maybe even better, whole IP classes ? I know it's feasible with iptables, but is there something more easily configurable ? Cheers, Try fail2ban from rpmforge. Also, if you're using the standard fw that ships with centos, you can stop entire blocks of IPs by manually inserting rules after iptables starts: iptables -I RH-Firewall-1-INPUT 1 -s 1.2.3.4/24 -p tcp --dport 22 -j DROP IP ranges by country: http://www.countryipblocks.net/country-blocks/select-formats/ The IP ranges will change from time to time, so you have to check often. You could script in a download from http://www.countryipblocks.net/continents/ to keep it current. Like someone said, if you have to keep ssh open to the world, changing the port number will dramatically cut down on the attempts. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question on wget
Dave wrote: Hello, I've got an ftp site, not mine, that has content on it that i want to download. It's not anonymous so it requires a log in. The problem is either the ISP has a bandwidth throttle or the admin does, in either case inconsistently as to the point in the file, but i rarely get a complete download. I'm using ncftp. I was wondering if either ncftpget or wget could do like an auto get and keep getting more and more until it has the complete file? If you think throttling down your download may help, wget --limit-rate= . . . . -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba Question
Rajagopal Swaminathan wrote: Greetings, There is a requirement of Samba server with the following specification: There are two groups: Designers, Draftsmen The share folder hierarchy is Project--Final Now the Designers groups should have rw rights for Projects and subfolders The draghtsmen should be able to upload only files (not folders) to Final subfolder. They are not allowed to modify/delete anything anywhere. They will not have any permission in project folder any ideas? You should be able to do that with a inotify script running in the background. Install inotify-tools from rpmforge, manpage has some examples to get you started. Probably need two dirs to work with: files are dumped into upload, processed by inotify, moved to final. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CIFS Issue When Copying Large/Many Files From CentOS To Remote Windows 2003 Server Share
Kemp, Larry wrote: Mucho thanks guys... 1) We have disabled the antivirus for the entire drive (which is a RAID5 diskarray). I will try to have Bacula send it job to this mounted system now and see if CENT OS comes back with any CIFS errors. 2) I did try originally editing the /etc/fstab to mount the remote share as SMB in as many different ways that I could find online. But none seemed to work for me. It seemed to be a little bit different across Linux distros and versions, as well as SMB versions. And in the end, I simply got CIFS to work and had just not yet figured out the exact verbiage for SMB to work in /etc/fstab to mount /mnt/remotewinserver automagically at boot. I did read up on SMB as well to see if I was missing something small. If you have a combination that has worked for you Nate, please do share sir, I would be most gracious on my end...believe me. The remote sharer is a Windows 2003 Server running 2 64bit processors, but the OS was installed as 32bit for whatever reason. 3) Unfortunately Windows claimed the big fat HP Storage server before CENT OS could (sorry for this starting to sound like a Windows whinefest too). Having said that, Win2k3 Server runs the array already backing up all Windows servers using Backup Exec. I am ofcourse trying use CENT OS and Bacula but needed large diskspace. Had we had another array/server I could use CENT OS would have no problem running I am certain. So as a second method I am creating a VM running CENT OS and Bacula on the large S:\drive of the Windows server that has an expandable VMDK drive (VMWare). This way my CENT OS/Bacula VM can grow as big as it needs to and to CENT OS and Bacula the storage device is just natively /storage-array. At least that is one plan anyway. We are also talking about just buying the Symantec Linux client for backups. But the original goal was to use CENT OS for this since our production systems are CENT OS. Okay that's everything I think. Thanks for the help thus far. How about getting getting them to carve out a chunk of the storage server through iscsi for dedicated Centos use. Would bypass most of that Windows share crappola. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS-announce] CentOS 5 i386 - The CentOS-5.3 i386 Live CD is released
Niki Kovacs wrote: Ladislav Bodnar a écrit : Hey, didn't you abandon Linux and switch to Windows not long ago? I remember you making a big deal out of this on your blog. Or did you change your mind again? Was the Windows world that bad? To err is human. Béranger is looking for perfection in an imperfect world... and IMHO he's making quite a good job at spotting the imperfections, even if you don't agree with the conclusions. What's really nice is when some fixing goes along with that spotting. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS-announce] CentOS 5 i386 - The CentOS-5.3 i386 Live CD is released
Fixing of what? Come on now. You started this thread. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba Question
The situation I'm in is that this box is joining to a win2000 PDC using samba+winbind for setting permissions on files and dir with domain users/groups. When I do a ls -l I just see the uid or gid instead of the domainame+_user domainname+group which is causing samba not to know who owns the file. Is winbind added to the appropriate fields in nsswitch.conf? -- Yes Is wbind running? Does any of the wbinfo commands give what you expect? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Preventing hour-long fsck on ext3-filesystem
Bernhard Gschaider wrote: Hi! I'm justing in the process of setting up a new fileserver for our company. I'm installing CentOS 5.3 (64 bit) on it. One of the problems with it is that it has a 3.5TB filesystem for the user data which I formatted during setup as an ext3. Now my experience with our current fileserver is that a 0.5TB ext3 filesystem needs approx half an hour to complete (and kicks in every so and so reboots or every 180days). My estimate is that for the larger filesystem (and the faster machine) the fsck would need well over an hour (being optimistic). I dread the day when I have to reboot the server and wait for 2hours or more just because the system thought it would be a prudent thing to check the filesystem. My question: - is there another stable filesystem (XFS, ReiserFS ...) in the centosplus-kernel where this could be avoided (fsck is faster) and that is as safe as ext3 - Or would it be better to switch off automatic checking with tune2fs Any opinion/experience welcome. I looked around a bit but couldn't find a good answer Bernhard PS: Sorry for the stupid question, but I'm only part-time admin and testing this myself would take weeks, I guess If you use ext3 on LVM, you could every once in a while make a snapshot of the fs do a background fsck on the snapshot. https://www.redhat.com/archives/ext3-users/2008-January/msg00032.html -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Inotify or equivalent
Joseph L. Casale wrote: I installed inotify and incrond to watch a directory and set the job as '/mnt/dir IN_ATTRIB chmod 0660 $@/$#' which worked very well except that as expected, IN_ATTRIB is to broad of a watch class as it caused an enormous amount of contention with the filemonitor and/or db server and the client side app was less than happy. Not to mention top showed it working away like mad... Is there any way to look for permission changes only, or something else that might work? I used the example 2 in the inotifywait manpage as the starting point for my script. Using the close_write, create move events worked well for me. Looked at incrond - seemed overkill/overcomplicated - chose not to use it. But if it's fighting with something else in the background trying to do the same thing - it going to be a circular battle. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Directory and File Perms
Joseph L. Casale wrote: I have a directory shared out via Samba for Quickbooks and seem to have some issues with permissions. The directory being shared is a subdirectory in an ext3 partition being mounted with the acl option. It has been setup as follows: chown root:DOMAIN\AD_Group /mnt/Intuit_Data/ chmod 2770 /mnt/Intuit_Data/ And the Samba share config is has: create mask = 0660 directory mask = 0770 So when a user creates a file from their Windows box through Explorer or any other app, it gets perms as you might expect: -rw-rw 1 Domain+jcasale DOMAIN+AD_Group 0 Apr 29 14:24 test.txt and it can be deleted by anyone. Problem is QB uses gamin and this file monitoring daemon runs as root and all sorts of changes take place as you work with the data, from creating the company file to editing it in QB, it ends up slowly changing to 0400? Here is what I am seeing now: User creates a new company file through QB (this is already fubar'ed): # ll -rw--- 1 Domain+jcasale DOMAIN+AD_Group 7647232 Apr 29 14:37 Company.QBW -rw-r--r-- 1 root DOMAIN+AD_Group 420 Apr 29 14:36 Company.QBW.ND -rw-r--r-- 1 Domain+jcasale DOMAIN+AD_Group 1114112 Apr 29 14:36 Company.QBW.TLG drwx-- 2 root root 16384 Apr 24 09:34 lost+found -rw-rw 1 root DOMAIN+AD_Group 300 Apr 24 10:17 qbdir.dat Now after working with the company in QB, this is what happens: # ll -rw--- 1 Domain+jcasale DOMAIN+AD_Group 7331840 Apr 29 14:37 Company.QBW -rw-r--r-- 1 root DOMAIN+AD_Group 420 Apr 29 14:37 Company.QBW.ND -rw--- 1 Domain+jcasale DOMAIN+AD_Group 1245184 Apr 29 14:37 Company.QBW.TLG drwx-- 2 root root 16384 Apr 24 09:34 lost+found -rw-rw 1 root DOMAIN+AD_Group 300 Apr 24 10:17 qbdir.dat What are my options to control this here? Edit init scripts for that daemon? I don't know what would happen if it doesn't run as root, but maybe as a user that has GID of DOMAIN+AD_Group? I've handled these kind of complex samba rights problems by either using acls or if it's particularly thorny, an inotify script - needs inotify-tools-3.13-1.el5.rf. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] extend raid volume - new drive
dnk wrote: Hi there, I have a system with the following: # fdisk -l Disk /dev/sda: 80.0 GB, 800 bytes 255 heads, 63 sectors/track, 9726 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sda1 * 1 13 104391 83 Linux /dev/sda2 14947175971385 83 Linux /dev/sda394729726 2048287+ 82 Linux swap / Solaris Disk /dev/sdb: 1000.2 GB, 1000204886016 bytes 255 heads, 63 sectors/track, 121601 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sdb1 * 1 121601 976760001 fd Linux raid autodetect Disk /dev/sdd: 1000.2 GB, 1000204886016 bytes 255 heads, 63 sectors/track, 121601 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sdd1 * 1 121601 976760001 fd Linux raid autodetect Disk /dev/md0: 1000.2 GB, 1000202174464 bytes 2 heads, 4 sectors/track, 244189984 cylinders Units = cylinders of 8 * 512 = 4096 bytes Disk /dev/md0 doesn't contain a valid partition table Now I just added a new hard drive (sdc). I was wondering how to go about (if possible) to add this drive to my existing partitions with LVM. Now I never setup this system (Another person had), and if i am reading the above right, it appears as though they did not use LVM for the raid. The system has the OS on a standalone drive, the home folder is on the two raided drives. I was hoping to extend my home folder to take advantage of my new drive. Recommendations? WHat size is the new disk? If it's 1GB, you have many options. If not, there will be trade offs getting it into your system. If 1G, then - add disk to md0 for 3 way mirror. no increase in space, added safety/redundancy, current data kept. - convert to raid5 increase in space, slight reduction in safety/redundancy, current data kept. - convert all to LVM flexible, largest storage, no redundancy, current data kept. - convert to raid0 fast, largest storage, no redundancy, not flexible as LVM, destroys current data. If the third disk in not 1GB, then - convert to any raid available space will be dictated by the smallest device/partition, wastes disk space, same other raid features as above. - convert all to LVM flexible, largest storage, no redundancy, current data kept. - keep md0 as is, add sdc as a separate mount. easy, not flexible storage, reduced safety/redundancy, current data kept. - trade for a 1G disk. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Yum update corrupted something badly - can only get access through SSH terminal or Webmin
Dan Roberts wrote: Ok - something truly bad appears to have happened.Yes, I will concede that cycling the system was a bad thing - but after two hours it should have returned from the update, still I was bad. There are indeed updates that it wants - and I went back to the site to get them, but then things continue to show up as missing. # rpm -Uvh --force rpm-4.4.2-48.el5.i386.rpm error: Failed dependencies: librpm-4.4.so is needed by rpm-4.4.2-48.el5.i386 librpmbuild-4.4.so is needed by rpm-4.4.2-48.el5.i386 librpmdb-4.4.so is needed by rpm-4.4.2-48.el5.i386 librpmio-4.4.so is needed by rpm-4.4.2-48.el5.i386 popt = 1.10.2 is needed by rpm-4.4.2-48.el5.i386 Clearly I have a pretty big hole here. Yes I have been spoiled by yum and rpm. Years ago I use to command line build, make and install everything - but dropped that habit in favor of the ease of yum. Are there are set of core files that seem reasonable to pull and install - You could try using rpm2cpio to get the package files back down on disk. Download all rpms you need to the machine. Probably the 5.2 versions as others have said. Boot rescue media, let it find mount your partitions. run cd /mnt/sysimage rpm2cpio package.rpm package.rpm.cpio cpio -idmv package.rpm.cpio Do that with rpm, rpm-libs, rpm-python, popt, whatever else seems hammered. May not hurt much if you're at your last solution - rebuild. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Yum update corrupted something badly - can only get access through SSH terminal or Webmin
Les Mikesell wrote: Dan Roberts wrote: that aside - I can't run the command you suggest because any yum operation results in the same error message. # yum clean all yum update glibc\* yum update Traceback (most recent call last): File /usr/bin/yum, line 28, in ? import yummain File /usr/share/yum-cli/yummain.py, line 29, in ? import cli File /usr/share/yum-cli/cli.py, line 30, in ? import output File /usr/share/yum-cli/output.py, line 26, in ? from i18n import _ ImportError: No module named i18n I think this is your immediate problem. Do you have a /usr/share/yum-cli/i18n.py file? Run on my four C5.3 systems here yum provides /usr/share/yum-cli/i18n.py rpm -q --whatprovides /usr/share/yum-cli/i18n.py ls -las /usr/share/yum-cli/i18n.py I got zip. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dual-boot with WinXP, CentOS already installed
Toby Bluhm wrote: Kai Schaetzl wrote: Toby Bluhm wrote on Fri, 17 Apr 2009 07:46:14 -0400: I didn't know who you were talking about either. It's good to point out the problem, but maybe next time leave some text clue as to whom you are referring. why? The threading makes it quite clear who I replied to. You're trying to tell someone their threading mechanism is broken by relying on their threading mechanism working? Or is your client broken either? What makes you think mine is broken? I could just have the reader set to threaded mode. Which it is. I thought I screwed that up. I meant to say I *don't* have it set to threaded mode. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dual-boot with WinXP, CentOS already installed
David G. Miller wrote: Sorin Srbu sorin.s...@orgfarm.uu.se wrote: . . . As noted in other replies, Windows not not play well with anything else. Your best bet would be to disable/remove/disconnect the drive I installed Win7 beta on the open partition at the end of my laptop disk and had to dd restore the mbr so I could boot to Centos again. It's amazing that after all these years of multi-booting PCs, MS still arrogantly stomps all over your setup. Idiots. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Getting ready for CentOS 5.4
RobertH wrote: this getting ready for centos 5.4 thread... i am not following it... yet... did we time warp and lose 5.3, being trashcanned and now waiting on 5.4? microsoft didnt buy out the centos faithful did they? ;- I'm tired of waiting for 5.4 and moved on to waiting for Centos 5.5 :-) -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Clonezilla SE with CentOS5
Sorin Srbu wrote: Hi all, I'm looking for a cloning solution for our Windows/Linux/*nix computer park and ran into Clonezilla. Apparantely the DRBL and other documentation mentions CentOS as a suitable base for it. Does anybody on this list use this solution and can say something about it in the running-Clonezilla-with-CentOS-context, be it recommendations, gotchas', warnings or whatever? Works nicely for my only purpose - Windows backup. Installs like an appliance - it will stomp on several config files without warning. Best to try it out on a test box or virtual machine. Had to sort through many small scripts to get it to do what I wanted. Main ones I edited were /opt/drbl/sbin/ocs-functions, /opt/drbl/lang/bash/en_US, /tftpboot/nbi_img/pxelinux.cfg/default. Use only one network, shut off nis master, made it a secondary dhcpd server, NFS mount the image storage point off another box. The logger service /opt/drbl/sbin/ocsmgrd didn't work the way I liked, so I use cobbled something together using nc. Because I changed around some files, I have to be careful with drbl/clonezilla updates. I found it useful to have spare disk/LVM space on the server to restore images to, easier restore of a single file or dir. Needs to be equal/larger than the biggest client disk. I had to move it from an x86_64 to i386 Centos - not all my client cpus could run 64bit. PXE boot other stuff like systemrescue, C5 install/rescue, DBAN, etc. I never posted anything, but Steven Shiau, the maintainer, seems responsive to questions on the mail list. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] nightly rsync has started to throw errors
Ray Leventhal wrote: Hi all, I perform a nightly snapshot of /home to a USB attached drive scheduled via cron. The system is CentOS 5.2 and only gets attached to the internet periodically for updates, otherwise serves as a samba server to about 20 Windows clients. The rsync command being used is: rsync -av --delete /home/ /media/bkup320G/ and has been working well until a few days ago. Starting with a few days ago, my nightly rsync/cron emails included some errors as shown here: rsync: mkstemp /media/bkup320G/cprcvs/c/Projects/WindowApps/DLL/HMRControlDLL/.CMDSettingsDialog.cpp,v.I5QnaM failed: Read-only file system (30) rsync: failed to set times on /media/bkup320G/cprcvs/c/Projects/WindowApps/DLL/PSIControlDLL: Read-only file system (30) Getting any IO errors in the kernel log? Maybe the USB disk is going offline occasionally. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 4 X 500 gb drives - best software raid config for a backup server?
John R Pierce wrote: Ray Van Dolson wrote: Can't Linux LVM do mirroring? I swear I read that it could in the man page. Never have tried it however and you certainly can't set it up from disk druid in anaconda. dunno. the word 'mirror occurs exactly once in the man page for lvm(8) lvconvert -- Convert a logical volume from linear to mirror or snapshot. It's in the lvcreate manpage . . . LVM mirroring seems rather quirky to me - I'd rather use md raid1 sets as phy vols. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] realtime backup
Joost Waversveld wrote: 1. === RAID IS NO BACKUP! RAID is only to survive hardware failure of the hard disk(s) (and only if you don't use RAID0!). Other people are mentioning the Master/Slave setup. This will do if you just need one up to date backup for the coincidence the complete master server fails but not for the occasion someone / something enters the wrong SQL query and deletes the wrong data! Then the slave server will also execute this SQL query and deletes the data also! If you want to have the opportunity to go back in time, then you have to make dumps through mysqldump. 2. === The bigger the data, the slower the backup will be, the longer the tables will be locked, the greater is the change your users will notice it with using the application. For a speedy backup, could put the db on LVM. Then your procedure would be shutdown/freeze db, make lv snapshot, startup/unfreeze db, rsync/backup data, remove snapshot. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Emergency rescue help needed
Rainer Duffner wrote: Sorin Srbu schrieb: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Scott Silva Sent: Tuesday, February 03, 2009 10:45 PM To: centos@centos.org Subject: Re: [CentOS] Emergency rescue help needed I just had a Back-UPS of about 1998 vintage burst into flames about 6 months ago. Luckily, someone was near it and grabbed a fire extinguisher. It was a Saturday, and if this person hadn't been in on overtime, who knows what would have happened. Geez... I have a UPS for my admin-workstation just under the desk on the floor in front of me. Suddenly I feel a bit anxious about that... There's a reason I don't like running anything beyond my ALIX-router 24x7 at home (while I'm away). And it's not the power-bill. IMO, UPSs don't really belong in the living-room. Doesn't really matter if they are old or new. Imagine returning home from work, only to find only the smoldering remainders of what was your house in the morning... Oh, there's lots of bad stuff that can happen to your home . . . http://blog.cleveland.com/metro/2009/01/eastlake_city_and_state.html -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Intel DG33BU motherboard
Paolo Supino wrote: Hi Peter The symlinks aren't broken: the grub.conf file is located in /boot/grub/. /etc/grub/menu.lst points to it and so does /etc/grub.conf ... [r...@server grub]# ls -l /etc/grub.conf /boot/grub/menu.lst /boot/grub/grub.conf -rw--- 1 root root 974 Feb 3 13:59 /boot/grub/grub.conf lrwxrwxrwx 1 root root 11 Dec 15 10:04 /boot/grub/menu.lst - ./grub.conf lrwxrwxrwx 1 root root 22 Dec 15 10:04 /etc/grub.conf - ../boot/grub/grub.conf Typically there's more than one kernel version installed with corresponding lines in grub.conf. Perhaps you're not booting the kernel entry you think you are? Check your default= line. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Emergency rescue help needed
Sorin Srbu wrote: -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John R Pierce Sent: Friday, January 30, 2009 6:49 PM To: CentOS mailing list Subject: Re: [CentOS] Emergency rescue help needed Eaton Powerware used to be Best, they made the very good FerrUps series. Marking words: used to be best? Which is the best now then? I think he meant the brand name Best Power. Eaton owns both the Best Power and Powerware brands. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Emergency rescue help needed
John wrote: . . . http://en.wikipedia.org/wiki/Capacitor_plague. I just fixed a test box that kept getting something like received INT 11 - no one cared and then locks up. Replaced two caps - I yanked them from some old, defunct power supplies. - How did you know they were bad? Could you explain to her what to look for and how to use a Multimeter? You look at them - no meter required. The tops of the electrolytic capacitors should be flat and clean looking - not bulged, puffed or discolored. It's all described very well in the wiki page. Replacing the capacitors does require soldering equipment and soldering skills. Or just replace the whole MB or power supply - whichever is the problem. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Emergency rescue help needed
Anne Wilson wrote: . . . I do have a UPS, and it's fully charged. The system is just spontaneously rebooting or shutting down. http://en.wikipedia.org/wiki/Capacitor_plague. I just fixed a test box that kept getting something like received INT 11 - no one cared and then locks up. Replaced two caps - I yanked them from some old, defunct power supplies. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] More than 2TB RAID...
Peter Kjellstrom wrote: On Wednesday 28 January 2009, Jake wrote: ... I came across this article you may find useful: http://www.unixgods.org/~tilo/linux_larger_2TB.html I should say that I STRONGLY recommend not creating ext3 file systems in the 2TB+ range I consider that FUD. We have many ext3 filesystems 2T and the run ok. Sure we do disable automatic fsck on reboot but we schedule a manual fsck when we get the opportunity. IMHO automatic fsck on reboot after, say, 30 boots is a pure desktop/laptop thing. When you have servers that stay up you'll have to plan for fsck anyway. I saw that the use of LVM was tossed around, don't know if the OP is/plans on using it. If you use ext3 on lvm, you can do a background fsck while the system is up fs mounted: http://markmail.org/message/5ipnsva3xkdyzzfy As Joshua wrote, there is no filesystem more supported and tried on CentOS... Plus it should be a trivial upgrade to ext4 . . . -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Firefox 3.0.4 and Adobe Flash (CentOS 5 (32bit))
Lanny Marcus wrote: . . . We have four (4) Dell Dimension boxes and their support here is *SUPER*, but they use proprietary cases, motherboards and power supplies. Their quote of USD$237 for a new motherboard is probably not something I am going to follow up on. The box is running most of the time, which is puzzling, because it is an intermittent problem. Just a shot in the dark . . . look at the electrolytic can caps on the mainboard. If any of them are puffy - the top is domed, not flat - that could be your problem and an easy fix. I've run into this issue on several different devices. http://en.wikipedia.org/wiki/Capacitor_plague http://badcaps.net -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sendmail Deferred mail - reason unknown
Sean Carolan wrote: I'm a bit baffled by this problem. Maybe there's a sendmail guru out there who can help me out here. We have some end-users who need to receive system-generated mail that originates from a java-based application on our network. The java app sends the mail through our sendmail cluster, which then sends the email on to the end-user over the Internet. The size of the emails can range from a few kb up through around 2Mb in size. I should probably add that each of these emails has an attached file, which accounts for the large size of the emails. Also, sorry if my previous email was sent in HTML format, I think I might have had rich text turned on in Gmail. just a WAG from notta guru . . . Perhaps someone has a greylist filter running your outbound emails look different enough to trigger it every time. They could whitelist you as a fix. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] URGENT: libdvdcss install hosed /var
MHR wrote: . . . It doesn't. It seems, though, that it is GNOME that is painfully slow to start any thing up, and when it is doing so, it hampers everything else to some extent. Slow as in it takes minutes to load programs instead of milliseconds Gnome at one time (RH9 days I think) was painfully slow to start after a hostname change, until it udpated itself in all places - or whatever it was doing. Is your hostname /etc/hosts still intact? If it's been up for a while, I would expect it to resolve itself already. That's how it used to was anyway. Nothing in the log files? top show anything of interest? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pop3 attack
Scott Silva wrote: on 12-10-2008 8:02 AM James Pifer spake the following: On Tue, 2008-12-09 at 16:26 -0500, James Pifer wrote: Thanks to all. For now I've stopped it using iptables. I tried stopping it at my router without success, yet another reason to replace it! I will also report it to [EMAIL PROTECTED] My issues have gotten worse. Apparently over the last few days my ip address has gotten blacklisted. No idea why. Even though I have a commercial class cable modem service, my ip is residential because it comes to my house. But I've been running my mail server for several years and never had an issue. I've tried adding these lines to my sendmailmc and rebuilding it, but then nothing routes, not even local. define(`SMART_HOST',`smtp-server.carolina.rr.com')dnl MASQUERADE_AS(carolina.rr.com)dnl FEATURE(`allmasquerade')dnl FEATURE(`masquerade_envelope')dnl Now I'm using mailertable and that appears to be working. I'm not even sure this message with get to this list. Seems like I haven't received any centos list mail in a while. I have on my other lists though. Any help is appreciated. Thanks, James I think all the masquerade options are causing your problems. Just set the proper smarthost and restore the other options to what they were and then test. Or switch to postfix. I plunked relayhost = smtp-server.roadrunner.com into main.cf away it went. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pop3 attack
Spiro Harvey wrote: why change software just because one configuration line is different? Main point was the RR relay host works. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pop3 attack
Spiro Harvey wrote: It's simpler for non-experts to change the postfix configuration than to change the sendmail configuration. So, why shouldn't he not suggest it? because it's stupid, lazy advice. Will it not work? Will it make someone's brain rot and fall out? Could one switch to postfix and still remain a civil person? Would you be able to imagine the words If you're tired of sendmail . . at the beginning of my first post as perhaps an alternate theory to my intent? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [SOLVED] [CentOS] disk space issues...any help is greatly appreciated
Ray Leventhal wrote: Sorin Srbu wrote: Ray Leventhal scribbled on Wednesday, November 26, 2008 3:50 PM: I have additional HDDs available if growing the partition is in order (would appreciate pointers to that, if applicable), but I'm really stumped as to where the space is being eaten up. Try a yum clean all. That might help. But if it's as you say, not connected to Hi again all, There was a 3.5hr power outage last night which explains it all. Sadly, I've got some investigation to do about why my *supposed* 5hrs of battery backup didn't last long enough to cover, but the mount point was, in fact, unmounted and so rsync did it's job right into the folder as opposed to the ext. drive. You may want to add some logic to your rsync script to check for a properly mounted disk. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] XFS or JFS on CentOS 5?
Jiann-Ming Su wrote: On Thu, Nov 20, 2008 at 3:34 AM, Laurent Wandrebeck [EMAIL PROTECTED] wrote: Outside more up-to-date question, here is my own experience with jfs/xfs. . . . The only thing I don't like about ext3 is the fsck. On relatively small filesystems, it's an annoyance. But on huge filesystem, 500-1000GB, a system may take a long, long time to come back up. If you use ext3 on lvm, you can do a background fsck. http://markmail.org/message/5ipnsva3xkdyzzfy -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] new list proposal
I was interested in seeing what the actual vote results may be, so here's what I've calculated: New list as proposed - 5 Keep as is - 11 Either way - 2 Keep + update charter - 2 New list + new name/charter - 6 Not declared - 3 A few folks posted remarks, but I could not detect a vote - that's the not declared category. A few seemed to flip their vote through out the discussion - so I made a best guess as to their intent. I put myself into the keep as is category. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Seeking advice about auth/home serving
Laurent Wandrebeck wrote: 2008/10/15 Ian Forde [EMAIL PROTECTED]: Without knowing more specifics, you could always try using the /net automount... as in: /net/servername/data It's ugly, and rarely used, but it works for small networks... OK, here are some more details: each /data is between 1 and 8 TB, network is gbps. Generally, we process data locally for efficiency/latency (processing often touches several tens or hundreds of GB) , but sometimes a box can be a bit overloaded, and we want to process data on another server, using nfs mounts. Our datacenter keeps growing, and mounting every /data on every box is becoming ugly. I'm willing to know if there's a cleaner solution. Is there any way you would/could consider a centralized storage solution like netapp or similar? Yes, it could be costly but you *are* currently tossing back and forth up to 160 TB of data on discreet storage. Do you do backups? Do you have 20 server boxes/towers? Or are you using rackmount blade servers? HW raid cards? What size disks? Sorry for all the prying questions - just that your computing situation intrigues me. I'd understand your reluctance to give out this info. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Seeking advice about auth/home serving
Laurent Wandrebeck wrote: . . A centralized storage solution is impossible due to our (awfully) low IT budget. I'm used to that. We need this, this, this and that. Here's a dollar. Only important data is backuped (/home and a couple other things), as we can't afford to save several TB. 3 servers are rack ones, others are towers. A bit of history: when I get employed there, we had 400GB, 1 box per user, 100mbps network, local user accounts...we are now at 30+TB, twice more boxes than users... Everytime we had to work on a new satellite, generally a new box came in and was dedicated to store and process data of this new sat. Everytime, it was a noname box, with classical hardware and a 3ware card (sometimes, I even had to use software raid *sigh*). We're always I rather enjoy using SW raid. close to full capacity, and work in emergency is my daily companion (as I'm the only IT guy, having to do lots of things others than admin) Disks are, depending on the box, from 200GB to 1TB, 4 up to 24 ones. raid is mostly 5, 10 on a couple others (home server, db server) I know the way it was deployed isn't the best, unfortunately, struggling with low time and budget, it was difficult to do it a different way. Kinda what I figured - a conglomeration of stuff. Sounds like a situation I'd find myself in. Actually, I kinda like it. Anyway, how about collapsing your storage down to a few roll-your-own NFS servers? Perhaps the smaller boxes could easily be moved to one server, the heavy hitters left as is the medium boxes folded into 2-3 servers. That said, NFS server performance on generic hardware Linux always seems to be somewhat of an issue. While I'm not a huge fan of Sun, a few OpenSolaris boxes with ZFS could be quite nifty. With the only resources being myself (relatively) inexpensive generic HW, that would be my approach. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Unexpected FTP Activity
Mike -- EMAIL IGNORED wrote: On Fri, 10 Oct 2008 17:03:41 +0200, Ralph Angenendt wrote: [...] Or it's yum-updatesd in action. Ralph [...] It looks like this is it; I shut it down. Is there a reason why you don't want your machine updated? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Installing rsh-server weirdness
Sorin Srbu wrote: Hi all, Currently working with migrating from RHEL3 to CentOS 5.2 x86 on test computer. When I tried to run yum install rsh* in order to install the rsh-server Try yum install rsh\* or yum install rsh* This allows * to be passed on to yum unmolested by the shell. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT Mailing List Spam
MHR wrote: Hello? This is way off topic for the CentOS list. Enough already. The audience groans with dismay. We shuffle off, looking for a Springer inspired Reality Internet Game Show. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: AW: AW: [CentOS] Nightly yum update did an upgrade
Griesbach, Lutz wrote: . . Don't top post, please. With RTFM you are right, I read the man pages and disabled nightly updates. Thank you for your help. Did you leave it so it at least notifies you of available updates? Better than ignoring updates altogether. -tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: DKIM
mouss wrote: . . . I don't like Josh mail, yours is worst. I dunno about that. I mean after a long thread where you try to make sure you are doing the right thing on your end before going upstream to complain, you get to be called childish, ignorant and full of BS. I'd be pissed too. BTW - very informative thread. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: DKIM
Scott Silva wrote: . . . A one stop shop on everything CentOS. I like that approach better. A new list for email only would probably lead to email threads on *both* lists, users being reminded to take the select inappropriate subject discussion to the other list, etc. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] email and MS outlook
Mag Gam wrote: We use Microsoft Outlook heavy at school but our backed is CentOS. I use echo Foo | mail -s subject [EMAIL PROTECTED] a lot. Is it possible to change the priority to High so Outlook will understand it? The priority meaning the email will be sent to the normal email queue but on Outlook it would have the exclamation point. Maybe just a stupid idea . . . If it is just a header thing, as it's been suggested, I would try procmail. Your command would be something like echo Foo | mail -s subject:real_recipient [EMAIL PROTECTED] The procmail script for the highpriority account would add in the necessary header, pull real_recipient out of subject forward it to [EMAIL PROTECTED] -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] i didn't see the 4.7 announcement
Robert wrote: . . . The announcement was received here at 1200 UDT on 9/13. More noticeable, though, was the disappearance of the chorus of complaining about the *volunteer* effort not being fast enough to please them. Perhaps they're so choked up that mere words are inadequate to describe their gratitude. ;-) -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: USB drive fails at sector 0xFFFFFFF
Scott Silva wrote: snip More than likely it is a problem with the Linux reverse engineered support for a Windows proprietary file system. Why back up to NTFS? Originally I was backing up across the LAN to the drive attached to my XP workstation. That would isolate the error if it was caused by the NTFS driver. I would use a linux supported filesystem unless you *need* to be able to look at these dump files from a windows workstation. Could reformat the disk for ext2/3 install ext2ifs on the windows box: http://www.fs-driver.org While I haven't much heavy use or testing, it's worked well for me. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Home NAS device
Joseph L. Casale wrote: I am looking for something that I can hack away like a NSLU2 but that thing only has one disc and worst of all its 100m interface. Anyone know of a device you can load Linux on that has maybe 2 discs like a NAS200 with a gig nic? I need a quiet device to act as a tftp-dhcp/web/dns system. The problem I see with going the all-in-one NAS route is that down the road, there's always some function you'd like to add - but you can't. You've hit the limitations of the box. I thought of just building one from a new Soekris board, or even a mini itx but hope there was something simpler/cheaper. Or even micro-ATX. I saw recently that AMD came out with a clocked-down Athlon. The total package wattage was projected to be lower than Intel's Atom. If I can find that link . . . . . . . . here it is: http://www.tomshardware.com/reviews/Atom-Athlon-Efficient,1997.html -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Home NAS device
Joseph L. Casale wrote: What's involved in building an embedded version of CentOS for a Soekris or similar small mobo? Is that a feat worth considering or is the work involved huge? Centos 5 supports 686 or better. I *think* the geode is a 586 type cpu. Something like Puppy or DSL would probably be better. The hw vendor may say what it can run - hopefully something less generic than just Linux. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
Mag Gam wrote: There are too many mount points. Close to 120. I am fairly certain this volume is not mouted. I did a grep -i lvname /proc/mounts Maybe a daemon is still holding your lv device open? Somewhere, maybe this list, I remember a similar discussion where the culprit was a backup agent holding /dev/ open. The solution was to kill the daemon. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
nate wrote: Mag Gam wrote: I am using RHEL 5.1 with custom kernel. Might be something about your custom kernel that affects lvm operations. It could be you have a version mis-match in lvm components in your system. I have a LV I am trying to remove and its keep complaining its open. I have unmounted the filesystem, lsof shows nothing, fuser shows nothing. I am certain a reboot will fix it, but I don't know why this occurs. Can anyone shed some light on this? Are there some other LVM hacks I can use for this? No snapshots still present for that lv? Not really a hack but you need to deactivate it: lvchange -a n logical volume Verify that it's deactivated with the lvdisplay command Current versions of lvm/lvremove will do that automatically. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
Toby Bluhm wrote: nate wrote: . . . Verify that it's deactivated with the lvdisplay command Current versions of lvm/lvremove will do that automatically. . . . but verifying is still a good idea. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to create whole image
kapil singh wrote: Hello, I am using Cent OS 5.2 . i want to create one master image of whole running OS becoz i have to do same installation many times on different machines. so any one suggest me to how create and run the image of whole OS at the time of installation or , which escape me to install each and every thing many times. i would not like to create image using dd. any suggestions ?? Clonezilla is designed with your intent in mind. I believe it should support lvm sw raid. www.clonezilla.org -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Missing fonts for tightvnc
Robert Moskowitz wrote: You would think installing via yum would handle dependencies, but perhaps fonts are not managed like dependencies. Anyway, I installed tightvnc to test out its IPv6 support. Installed ok (after I erased regular vnc). But when I tried to start it, I got 5 warnings about: Font directory '/usr/X11R6/lib/X11/fonts/misc' not found - ignoring (then the same message for Speedo, Type1, 75dpi, and 100dpi). Then a fatel server error about: could not open default fount 'fixed' So I looked in the repos (curtesy of yumex) and did find a few 75dpi a 100dpi fonts, but there seemed to be a lot of these two. I installed a ocuple of them and tried again. Got the same errors. So how do I fix this one? Perhaps vnc can't talk to the xfs daemon - IPv6 or firewall related? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Missing fonts for tightvnc
Robert Moskowitz wrote: Toby Bluhm wrote: Robert Moskowitz wrote: You would think installing via yum would handle dependencies, but perhaps fonts are not managed like dependencies. Anyway, I installed tightvnc to test out its IPv6 support. Installed ok (after I erased regular vnc). But when I tried to start it, I got 5 warnings about: Font directory '/usr/X11R6/lib/X11/fonts/misc' not found - ignoring (then the same message for Speedo, Type1, 75dpi, and 100dpi). Then a fatel server error about: could not open default fount 'fixed' So I looked in the repos (curtesy of yumex) and did find a few 75dpi a 100dpi fonts, but there seemed to be a lot of these two. I installed a ocuple of them and tried again. Got the same errors. So how do I fix this one? Perhaps vnc can't talk to the xfs daemon - IPv6 or firewall related? Perhaps. What ports does xfs use? Why does it work for vncserver (on IPv4 only of course)? 7100 I think . . . grep xfs /etc/services xfs 7100/tcp# X font server . . yes But I stopped both iptables and ip6tables and the same error messages. And installing OpenOffice did not 'fix' things. Perhaps setting symlinks may be needed. I remember playing games with Matlab to get it to find it's own fonts. I think it went something like: mkdir fontdir cp fonts* fontdir mkfontdir fontdir Add fontdir to /etc/X11/fs/config Like you say, maybe just a link to /usr/share/X11/fonts/misc would do the trick. Perhaps a vnc/X startup script somewhere is hardcoded? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: gcc editor for newbie (Emacs or vim or ?)
Florin Andrei wrote: Frank Cox wrote: On Tue, 12 Aug 2008 10:48:10 -0700 Florin Andrei [EMAIL PROTECTED] wrote: It's an awful editor. I wish I could hire the person who came up with the user interface, only to have the satisfaction of having him/her fired five minutes later. With no severance package. Viewed in the context of the time when it was originally created, it's a work of genius. There's a reason why it became the default text editor on Unix systems. I don't deny that. Interlaced video, at the time it was invented, was a great idea. Now it's a huge harassment for anyone doing video processing. The steam engine was a huge step forward - a few hundred years ago. And look at it now. If interlaced video powered by a steam engine works for me, why should I change? My car is over 10 yrs old runs fine - don't need a new one. My house was built 45 yrs ago I like it - don't need a new one. I was born over 50 yrs ago I don't need . . . well, ok - maybe there's room for improvement. :-) -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: Toby Bluhm wrote: Mufit Eribol wrote: I have a LV on RAID mounted as /mnt/raid. Then /mnt/raid/var is symlinked to /var. I was afraid you were going to say that. Go back to single user mode. mkdir /new_var cd /mnt/raid/var tar cf - . | ( cd /new_var ; tar xvf - ) Make sure both dirs look the same. Change the link to /new_var. Or remove the old link mv /new_var /var. reboot. Toby, Thank you for this nice tip. It worked perfectly. The server is back in the game again. Just for my learning experience, I would appreciate if you clarify one point though. Why are you afraid when you hear /mnt/raid/var symlinked to /var? Because it can complicate a recovery, as you just experienced. Why did you feel a need to have /var setup as you did? Did you expect to fill it up quickly or a need for speed? You also have /tmp separate - do you expect more than usual activity there? Perhaps a better question would be - What is the purpose of this machine? If it's a just a fileserver on a home lan, you don't *need* to make it complicated, although learning is fun :-). Running a very active internet facing box with email, mysql, apache, etc. would probably call for a more complicated setup - which would actually make recovery security easier/better. Here is my fstab: /dev/md2/ ext3defaults 1 1 --- md2 Software RAID1 /dev/md1/boot ext3defaults 1 2 --- md0 Software RAID1 /dev/md0/tmpext3defaults 1 2 --- md1 Software RAID1 tmpfs /dev/shmtmpfs defaults0 0 devpts /dev/ptsdevpts gid=5,mode=620 0 0 sysfs /syssysfs defaults0 0 proc/proc procdefaults0 0 LABEL=SWAP-sda3 swapswapdefaults,pri=1 0 0 LABEL=SWAP-sdb3 swapswapdefaults,pri=1 0 0 /dev/raid_vg0/raid_lv0 /mnt/raid ext3defaults 0 0 --- Hardware RAID10 Before, home and var were under /mnt/raid directory and symlinked to /home and /var. Now, both directories were copied to / (md2 software RAID1) as new_home and new_var and /home and /var symlinks are now pointing to these new directories. /mnt/raid (hardware RAID10) which is the main storage of my server is not being used at the moment. Instead of using links, may as well just mount it where it belongs. I am planning to have 2 logical volumes (for home and var separately) instead of 1. Then, they will be mounted as separate partitions as /home and /var to /dev/raid_vg0/raid_lv0 and /dev/raid_vg0/raid_lv1, respectively. Is it a good approach? Please advise. I'm somewhat simple-minded - I like to keep the system that way :-). I split the partitions into 3 / swap /home either on a single disk or mirrored ( swap mirrored too ) - no lvm. For data storage I use lvm on raid on a separate mount point. Not saying you should do the same - it's just what I do. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Reloading /etc/hosts
Robert Moskowitz wrote: I am doing some testing and am having to make many changes to /etc/hosts Is there a way to reload the /etc/hosts file without doing a service network restart? Takes effect immediately. Do you not get the changes right away? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: Ralph Angenendt wrote: touch /forcefsck and reboot. This will cause all filesystems to be checked with fsck after the reboot. I did it several times. Unfortunately, it couldn't fix the problem. Does it say the fsck is a success or fails? I still get the following errors and the system goes read only after a couple of minutes. EXT3-fs warning (device dm-0): ext3_clear_journal_err: Filesystem error recorded from previous mount: IO failure EXT3-fs warning (device dm-0): ext3_clear_journal_err: Marking fs in need of filesystem check. EXT3-fs warning: mounting fs with errors, running e2fsck is recommended EXT3 FS on dm-0, internal journal EXT3-fs: recovery complete. EXT3-fs: mounted filesystem with ordered data mode. It seem formatting the /mnt/raid is the way to go. However, i have to move /mnt/raid/var to /var first. / is on another hard disk and there is space available. there are lots of programs use var lively. How can I move /mnt/raid/var to /var. Boot the rescue disk. Mount the partitions someplace. Dump /old_var to /new_var. Of course, if the /old_var fs is somewhat trash, /new_var won't be much better. I'd be wary of hardware problems with raid controller, cables, or disks. That IO failure in your logs isn't what you want to see during fs operations. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Toby Bluhm wrote: . . . Boot the rescue disk. Mount the partitions someplace. Dump /old_var to /new_var. Also verify that fstab or symlinks is not going to keep using old_var. Also Also make sure you have enough space for the new_var location. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Your first message says you have the problems on the lv mounted at /mnt/raid. /dev/raid_vg0/raid_lv0 /mnt/raid ext3defaults0 0 then later I am thinking about reformatting this volume, but /var is on that volume as well. If you mean that /var is a separate lv in your raid_vg0 volume group, then just umount /mnt/raid and run your fsck on /dev/raid_vg0/raid_lv0. If you have services that live in or depend on /mnt/raid being mounted, stop all those services first. Or init 1 to single user console. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux httpd portmap
Just to follow up with a summary on this . . .
Followed the email HowTo on the Centos wiki by installing postfix,
dovecot, postgrey, amavisd and setting up SSL/TLS.
Set selinux to permissive, targeted.
Sent many, many emails with attachments, spam, etc. to from the box.
Removed previous selinux entries from audit.log.
The new policy was extracted with
cat new_audit.log|audit2allow -m local
module local 1.0;
require {
type traceroute_port_t;
type amavis_t;
type postfix_spool_t;
type clamd_t;
type amavis_var_lib_t;
type sysctl_kernel_t;
type var_t;
type postfix_smtpd_t;
type initrc_t;
type proc_t;
class unix_stream_socket connectto;
class file { read getattr };
class sock_file write;
class lnk_file { read create unlink getattr };
class udp_socket name_bind;
class dir { read search };
}
#= amavis_t ==
allow amavis_t amavis_var_lib_t:lnk_file { read create unlink getattr };
allow amavis_t traceroute_port_t:udp_socket name_bind;
#= clamd_t ==
allow clamd_t proc_t:file { read getattr };
allow clamd_t sysctl_kernel_t:dir search;
allow clamd_t sysctl_kernel_t:file read;
allow clamd_t var_t:dir read;
allow clamd_t var_t:file { read getattr };
#= postfix_smtpd_t ==
allow postfix_smtpd_t initrc_t:unix_stream_socket connectto;
allow postfix_smtpd_t postfix_spool_t:sock_file write;
Put the policy into effect with
cat new_audit.log|audit2allow -M local
semodule -i local.pp
Ran through all the same email tests.
selinux has not complained - yet.
--
Toby Bluhm
Alltech Medical Systems America, Inc.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: I think I found the culprit albeit I still don't know how to fix. 1. During boot the screen prints the following errors no fstab.sys, mounting internal defaults ... No devices found Setting up Logical Volume Management: /var/lock: mkdir failed: No such file or directory I have a LV on RAID mounted as /mnt/raid. Then /mnt/raid/var is symlinked to /var. I was afraid you were going to say that. Go back to single user mode. mkdir /new_var cd /mnt/raid/var tar cf - . | ( cd /new_var ; tar xvf - ) Make sure both dirs look the same. Change the link to /new_var. Or remove the old link mv /new_var /var. reboot. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Updated bind marked as vulnerable
mbneto wrote: Hi, I have a Centos 4.6 machine that even tough has been updated with the latest bind 9.2.4-28.0.1.el4 is marked as vulnerable by https://www.dns-oarc.net/oarc/services/dnsentropy. I have another machine which also uses that same distro and is not. Do I have to do any other update? Are those boxes directly handling your DNS requests to the internet for you - i.e. their IPs show up in the test results as the DNS Resolvers? If yes, probably your named.conf would need to be looked at in the problem box. More likely, it's your nameserver in your resolv.conf or the nameserver of your nameserver that the test site is talking to. You have to bug whoever runs those boxes about the problem. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Hardware serial number access from (a) command(s)
Scott Silva wrote: on 7-29-2008 11:26 AM MHR spake the following: On Tue, Jul 29, 2008 at 10:32 AM, Scott Silva ssilva-m4n3GYAQT2lWk0Htik3J/[EMAIL PROTECTED] wrote: You must have forgotten to wave the chicken over your head 3 times and said the magic words. You don't want to wave the chicken more than 3 times, as he will be angry enough after the 3. ;-P Did you remember to thaw the chicken? ;^) mhr Its supposed to be dead first? Don't forget organically fed and free range. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Hardware serial number access from (a) command(s)
MHR wrote: On Tue, Jul 29, 2008 at 12:46 PM, Lanny Marcus [EMAIL PROTECTED] wrote: On Tue, Jul 29, 2008 at 2:27 PM, Toby Bluhm [EMAIL PROTECTED] wrote: Scott Silva wrote: on 7-29-2008 11:26 AM MHR spake the following: On Tue, Jul 29, 2008 at 10:32 AM, Scott Silva ssilva-m4n3GYAQT2lWk0Htik3J/[EMAIL PROTECTED] wrote: You must have forgotten to wave the chicken over your head 3 times and said the magic words. You don't want to wave the chicken more than 3 times, as he will be angry enough after the 3. ;-P Did you remember to thaw the chicken? ;^) mhr Its supposed to be dead first? Don't forget organically fed and free range. I was born and raised in California, where Scott and Mark are, but this waving the chicken over my head, when working on a PC, is new to me. :-) It's the latest rage - you have to be here :-) mhr Sheesh! Get with it, man. The scientific research has proven it works better than burning candles and chanting. :-) -- Toby Bluhm ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux httpd portmap
Craig White wrote:
On Fri, 2008-07-25 at 10:36 -0400, Toby Bluhm wrote:
Ian Blackwell wrote:
Craig White wrote:
Suggest that you make sure you are fully updated, then
'touch /.autorelabel' then reboot (reboot at a time you choose because
it may take a long time to relabel every file on your system -
especially if you have a lot of files).
Craig
What Craig implies is that your system won't be available for quite a
long time (relatively), while the relabel takes place. The boot time
with an autorelabel is very long, and you won't have access to the
server until the relabel is completed. So choose your time for the
reboot with that knowledge.
Ian
No problems there - I'm getting my selinux feet wet on a test box. Not
quite ready to risk torching a production machine.
The relabel did take some time after a reboot - portmap httpd started
ok. WHile postgrey, clamd, postfix and amavisd all started, none could
access the libs dirs they needed to process emails.
So I disabled selinux, rebooted, made sure everything worked alright -
which it did. Then enabled permissive mode rebooted it relabeled
itself this time.
After running some things, send/receive email, it still wants to deny:
type=AVC msg=audit(1216990772.410:72): avc: denied { read } for
pid=2037 comm=clamd path=/var/clamav/main.cvd dev=md0 ino=980355
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:var_t:s0 tclass=file
type=AVC msg=audit(1216990777.968:73): avc: denied { read } for
pid=2037 comm=clamd name=meminfo dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216990777.969:74): avc: denied { getattr } for
pid=2037 comm=clamd path=/proc/meminfo dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216991822.928:113): avc: denied { signal } for
pid=2762 comm=postfix-script
scontext=root:system_r:postfix_master_t:s0
tcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm=amavisd name=p002.exe
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm=arj
path=/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0
tclass=lnk_filetcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm=amavisd name=p002.exe
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.372:123): avc: denied { unlink } for
pid=2116 comm=amavisd name=p002.exe dev=md0 ino=1005252
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm=arj
path=/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
SO - is it normal to have to update policies on basic services? Am I
missing an rpm?
those aren't basic services but are packages that are supplied by
postfix is centos, the rest are from rpmforge
repositories other than CentOS/upstream and apparently don't have all of
their files/folder labeled properly.
what do you get from command...
sealert -a /var/log/dmesg
zero alerts
or
sealert -a /var/log/audit/audit.log
lots of stuff from when it wasn't labeled right, so I stripped all
audit.log entries before the last DAEMON_START to a file ran sealert
on it.
found 15 alerts in new_audit_log
Summary:
SELinux is preventing clamd (clamd_t) search to ./kernel
(sysctl_kernel_t).
Detailed Description:
[SELinux is in permissive mode, the operation would have been denied but was
permitted due to permissive mode.]
SELinux denied access requested by clamd. It is not expected that this
access is
required by clamd and this access may signal an intrusion attempt. It is
also
possible that the specific version or configuration of the application is
causing it to require additional access.
Allowing Access:
Sometimes labeling problems can cause SELinux denials. You could try to
restore
the default system file context for ./kernel,
restorecon -v './kernel'
If this does not work, there is currently no automatic way to allow this
access.
Instead, you can generate a local policy module to allow this access -
see FAQ
(http://fedora.redhat.com/docs/selinux-faq-fc5/#id2961385) Or you can
disable
SELinux protection
Re: [CentOS] selinux httpd portmap
Craig White wrote: On Mon, 2008-07-28 at 09:24 -0400, Toby Bluhm wrote: I just want to point out that the issue isn't with postfix but rather amavisd and how/where amavisd connects/communicates with the various parts and pieces. I'm afraid that I can't be too much help here because I use MailScanner and not amavisd but the SELinux mail list could help you work through these things (I'm presuming that amavisd hasn't worked through all of their contexts). Sounds like my situation is not completely unexpected. Thanks for your hints - I'll follow up on them. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Ross S. W. Walker wrote: Eduardo Grosclaude wrote: Hello, My hardware (?) RAID system seems to work but says duplicate PV while booting, I don't think I was reading Could just be that lvm is finding your pv through another path - lvm.conf can be setup to only scan specific devices. There might be a disk from an old RAID1 set in there. I'll second that. I forgot to zero out one of my disks from a test raid setup the when I rebooted for the 5.2 upgrade, lvm refused to start - duplicate uuid - IIRC. 5.1 + updates didn't present the problem, so something was changed in that regard for 5.2. mdadm --examine pv device(s) will tell if there's raid metadata there, --zero-superblock will erase it. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Toby Bluhm wrote: Ross S. W. Walker wrote: Eduardo Grosclaude wrote: Hello, My hardware (?) RAID system seems to work but says Never mind, mdadm don't apply with HW raid. mdadm --examine pv device(s) will tell if there's raid metadata there, --zero-superblock will erase it. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux httpd portmap
MHR wrote: Tony, 1) Please edit your replies to remove unnecessary information. 2) If you need to present this large of an amount of data, please include it in an attachment. Thanks. I was waiting for you :) BTW - my name is Toby. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Eduardo Grosclaude wrote: Ross, Nate, Tony, thanks for your promptly response Toby On Mon, Jul 28, 2008 at 2:51 PM, nate [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Eduardo Grosclaude wrote: snip Oops... system-config-lvm shows under 'Uninitialized entities': /dev/sda - part 1 - part 2 - unpartitioned space /dev/sdb - part 1 - unpartitioned space These shouldn't be appearing as two discs in the first place-- but anaconda said I only had one unit... Anyway, why the asymmetry? Did I screw the RAID volume somehow? Or did I install plain on sda and this RAID never worked as such? :P The machine BIOS correctly describes the RAID volume at start. Doesn't It smell like fake RAID? Should I declare sdb invalid to the firmware program so as to force resync? Thanks again If it were me I was just starting out on a new setup, I'd blow it all away and start from scratch. I hate that nagging feeling something's gonna bite me later down the road. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux httpd portmap
Ralph Angenendt wrote: MHR wrote: Tony, 1) Please edit your replies to remove unnecessary information. 2) If you need to present this large of an amount of data, please include it in an attachment. Maybe that would have broken the list limit ... Not sure of your meaning - by being 53k or being a 53k attachment? 53k * several thousand mails ... I did check my trashbin for Centos messages sorted by size 53k was no where near the worst offenders - not trying to make an excuse, just showing my thought process - seemed like I would be okay. And it was data, not just the same sig repeated 50 times or a big bitmap. Is there a recommended limit on email size posted somewhere? Perhaps the membership join/reminder could have etiquette/rules included? Awaiting my penance . . . . -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux httpd portmap
Ian Blackwell wrote:
Craig White wrote:
Suggest that you make sure you are fully updated, then
'touch /.autorelabel' then reboot (reboot at a time you choose because
it may take a long time to relabel every file on your system -
especially if you have a lot of files).
Craig
What Craig implies is that your system won't be available for quite a
long time (relatively), while the relabel takes place. The boot time
with an autorelabel is very long, and you won't have access to the
server until the relabel is completed. So choose your time for the
reboot with that knowledge.
Ian
No problems there - I'm getting my selinux feet wet on a test box. Not
quite ready to risk torching a production machine.
The relabel did take some time after a reboot - portmap httpd started
ok. WHile postgrey, clamd, postfix and amavisd all started, none could
access the libs dirs they needed to process emails.
So I disabled selinux, rebooted, made sure everything worked alright -
which it did. Then enabled permissive mode rebooted it relabeled
itself this time.
After running some things, send/receive email, it still wants to deny:
type=AVC msg=audit(1216990772.410:72): avc: denied { read } for
pid=2037 comm=clamd path=/var/clamav/main.cvd dev=md0 ino=980355
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:var_t:s0 tclass=file
type=AVC msg=audit(1216990777.968:73): avc: denied { read } for
pid=2037 comm=clamd name=meminfo dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216990777.969:74): avc: denied { getattr } for
pid=2037 comm=clamd path=/proc/meminfo dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216991822.928:113): avc: denied { signal } for
pid=2762 comm=postfix-script
scontext=root:system_r:postfix_master_t:s0
tcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm=amavisd name=p002.exe
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm=arj
path=/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0
tclass=lnk_filetcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm=amavisd name=p002.exe
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.372:123): avc: denied { unlink } for
pid=2116 comm=amavisd name=p002.exe dev=md0 ino=1005252
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm=arj
path=/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
SO - is it normal to have to update policies on basic services? Am I
missing an rpm?
--
Toby Bluhm
Alltech Medical Systems America, Inc.
30825 Aurora Road Suite 100
Solon Ohio 44139
440-424-2240 ext203
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
[CentOS] selinux httpd portmap
Having problems starting httpd portmapper
#service httpd start
/usr/sbin/httpd: error while loading shared libraries: libm.so.6: cannot
open shared object file: No such file or directory
and I traced it to selinux, which I had just turned on for the first time:
# sestatus
SELinux status: enabled
SELinuxfs mount:/selinux
Current mode: enforcing
Mode from config file: enforcing
Policy version: 21
Policy from config file:targeted
I can
#setsebool -P httpd_disable_trans on
and httpd starts - but there's zero enforcing now as I understand it.
Further digging I get to:
# cat /var/log/audit/audit.log | audit2allow -m local
module local 1.0;
require {
type portmap_t;
type httpd_t;
type file_t;
class lnk_file read;
class file { getattr read execute };
}
#= httpd_t ==
allow httpd_t file_t:file { read getattr execute };
allow httpd_t file_t:lnk_file read;
#= portmap_t ==
allow portmap_t file_t:file { read getattr execute };
allow portmap_t file_t:lnk_file read;
Other stuff like postfix, postgrey, amavisd are working fine since
turning selinux on.
Before I make a mess of things with trying to make a new policy,
shouldn't two basic services like portmap httpd already be allowed to
run out of the box by selinux?
If not, am I going down the right path to get it working?
Thanks
--
Toby Bluhm
Alltech Medical Systems America, Inc.
30825 Aurora Road Suite 100
Solon Ohio 44139
440-424-2240 ext203
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SERIOUSLY OT STREAM EDITING IMAGES
Chris Geldenhuis wrote: Hi All, I have been Googling my head off but cannot find a method to stream edit all the images in a directory and to resize them. I have a large number of images of up to 3GB in size that I want to put in albums on a website, but before I do this I need to resize them to a more realistic configuration. I know how to do this manually with the GIMP but it becomes tedious for more than a few images. Running CentOS 5 as virtualised under XEN as a web server. Try ImageMagick - yum info ImageMagick. It has lots of slick tools for image manipulation. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.2 upgrade - urlopen error unknown url type: media
Robert Moskowitz wrote: Robert Moskowitz wrote: Kai Schaetzl wrote: Robert Moskowitz wrote on Thu, 3 Jul 2008 08:46:12 -0400: [Errno 4] IOError: urlopen error unknown url type: media Searching the local folder of this list reveals two older postings from you about this (one from December, one a few days ago). It seems to indicate that your repo is not completely in sync. Either a new sync or clean all got you going last time ;-) The other times a yum clean all did the job. Problems with old metadata, it would seem. This time I did the clean first and still got the error. I ran a rsync and did not get any updates to base. I should also mention that right now, I have a fresh install foranother system running off this repo. Just some guesses here . . . Maybe something's buggered in /etc/yum.repos.d. Try comparing the broken with the working. If the broken still looks right, try making a backup of the broken copy in the working - there may be some overlooked typo or a character that's invisible to the editor program - like dos file ^M. Could also clear out all non Centos specific repos just to reduce the noise. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
