Re: [CentOS] Centos 8 Mate?
On Wed, Oct 16, 2019 at 12:17:17AM +0200, Ljubomir Ljubojevic wrote: > On 10/16/19 12:07 AM, Fred Smith wrote: > > On Tue, Oct 15, 2019 at 10:11:50PM +0200, Ljubomir Ljubojevic wrote: > >> On 10/15/19 10:08 PM, Ljubomir Ljubojevic wrote: > >>> This is interesting and promising: > >>> > >>> "The official unofficial repository for MATE for EL8.": > >>> https://copr.fedorainfracloud.org/coprs/neonman/MATE/ > >> > >> The previous link is forked repo (I do not know why) and here is > >> original repo: > >> https://copr.fedorainfracloud.org/coprs/stenstorp/MATE/ > > > > Oh good! I'm going to have to try that on my experiemtal C8 VM. > > I have for the moment given up on it because I can barely navigate > > my way through Gnome and it became just too painful. > > > > Thanks! > > > > > > I just rebooted fresh CentOS 8 VM after installing MATE and it is > 1.22.2, everything looks good. Yeah, working great here too! Thanks to the people/person(s) who did all the hard work for us! I did notice while following the procedure that it failed to install pygpgme, but everything seems to be fine without it. Is it needed for something I haven't found yet? Fred -- Fred Smith -- fre...@fcshome.stoneham.ma.us - "For the word of God is living and active. Sharper than any double-edged sword, it penetrates even to dividing soul and spirit, joints and marrow; it judges the thoughts and attitudes of the heart." Hebrews 4:12 (niv) -- ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] BackupPC v4 from epel
Hello Everyone, Has anyone tried to install BackupPC v4 on CentOS 8 from epel? I just did and this happened: [root@resurrect ~]# dnf --enablerepo epel install BackupPC Last metadata expiration check: 0:18:41 ago on Tue 15 Oct 2019 08:03:59 PM EDT. Error: Problem: conflicting requests - nothing provides par2cmdline needed by BackupPC-4.3.1-2.el8.x86_64 - nothing provides perl(Net::FTP::AutoReconnect) needed by BackupPC-4.3.1-2.el8.x86_64 - nothing provides perl(Net::FTP::RetrHandle) needed by BackupPC-4.3.1-2.el8.x86_64 - nothing provides perl(Time::ParseDate) needed by BackupPC-4.3.1-2.el8.x86_64 - nothing provides perl(XML::RSS) needed by BackupPC-4.3.1-2.el8.x86_64 - nothing provides perl-Time-modules needed by BackupPC-4.3.1-2.el8.x86_64 (try to add '--skip-broken' to skip uninstallable packages or '--nobest' to use not only best candidate packages) If that didn't come out too nice, here's a pastebin link: https://pastebin.com/HgjAQmvV I've checked all the disabled repos on my system and none of them have those packages. Is this just a case of the dependencies not being built yet? -- Ranbir ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Attempting to use tproxy on Centos 8 fails with 'No such file or directory'
On 2019-10-15 12:46 p.m., Ljubomir Ljubojevic wrote:
On 10/15/19 9:16 PM, Nathan Coulson wrote:
On 2019-10-15 12:12 p.m., Nathan Coulson wrote:
I was working on a haproxy transparent proxy setup that we had working
on Centos 7 (iptables), but running into issues getting tproxy working
with NFTables on Centos 8.
From https://www.kernel.org/doc/Documentation/networking/tproxy.txt,
It should be a matter of:
# nft add table filter
# nft add chain filter divert "{ type filter hook prerouting priority
-150; }"
# nft add rule filter divert meta l4proto tcp socket transparent 1
meta mark set 1 accept
But when running the 3rd line (add rule), I get
root@kryptonite [/lib/modules/4.18.0-80.11.2.el8_0.x86_64]# nft add
rule filter divert meta l4proto tcp socket transparent 1 meta mark set
1 accept
Error: Could not process rule: No such file or directory
add rule filter divert meta l4proto tcp socket transparent 1 meta mark
set 1 accept
(In attempting to resolve this, I did the following)
modprobe nf_tproxy_ipv4
modprobe nf_tproxy_ipv6
modprobe nf_socket_ipv4
modprobe nf_socket_ipv6
I also noted that:
nft add rule filter divert meta l4proto tcp meta mark set 1 accept
(Removing socket transparent 1)
does not exit with a failure.
Also found https://bugzilla.redhat.com/show_bug.cgi?id=1651813, (which
did make reference to the nftables version 0.9.0 possibly missing
support, I have not tried compiling 0.9.1 yet, but I find it curious
the entire line fails with 'socket transparent 1' making me wonder if
it is a missing module still)
Adding to this: just did a loop through the netfilter modules to see if
something was missing (no change)
for x in $(find /lib/modules/4.18.0-80.11.2.el8_0.x86_64 | grep
netfilter | sed 's/.*netfilter.//' | sed 's/\.ko.*$//' | sort); do
echo ">>$x"
modprobe $x
nft add rule filter divert meta l4proto tcp socket transparent 1 meta
mark set 1 accept
done
How is that solved for Fedora 28 that CentOS 8 is based on?
I can't say,
The ticket itself was obviously the same issue, (I want to say, that
socket/tproxy nft modules were unloaded for the ticket owner), but the
modules in centos 8 are a touch different from what is described in the
ticket (not sure what they are without more research, but I was
suspecting that xt_TPROXY and xt_socket was what I may need, but didn't
help).
It also made reference to nftables needing to be 0.9.1 vs 0.9.0, but I
did note the entire line was shown wrong , and that it does seem to take
'socket transparent 1' as a valid argument to that line (removing
transparent 1, says it expects transparent to follow socket). So don't
know how much that contributes.
(and then transformed into kernel crashes when those nft rules were
added, which is at least currently not part of the issue)
Gut feeling would be a missing module, but I feel like I am missing part
of the puzzle for this.
--
Nathan Coulson
System Administrator for Bravenet Web Services
www.bravenet.com
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 8 Mate?
On 10/16/19 12:07 AM, Fred Smith wrote: > On Tue, Oct 15, 2019 at 10:11:50PM +0200, Ljubomir Ljubojevic wrote: >> On 10/15/19 10:08 PM, Ljubomir Ljubojevic wrote: >>> This is interesting and promising: >>> >>> "The official unofficial repository for MATE for EL8.": >>> https://copr.fedorainfracloud.org/coprs/neonman/MATE/ >> >> The previous link is forked repo (I do not know why) and here is >> original repo: >> https://copr.fedorainfracloud.org/coprs/stenstorp/MATE/ > > Oh good! I'm going to have to try that on my experiemtal C8 VM. > I have for the moment given up on it because I can barely navigate > my way through Gnome and it became just too painful. > > Thanks! > > I just rebooted fresh CentOS 8 VM after installing MATE and it is 1.22.2, everything looks good. -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 8 Mate?
On Tue, Oct 15, 2019 at 10:11:50PM +0200, Ljubomir Ljubojevic wrote: > On 10/15/19 10:08 PM, Ljubomir Ljubojevic wrote: > > This is interesting and promising: > > > > "The official unofficial repository for MATE for EL8.": > > https://copr.fedorainfracloud.org/coprs/neonman/MATE/ > > The previous link is forked repo (I do not know why) and here is > original repo: > https://copr.fedorainfracloud.org/coprs/stenstorp/MATE/ Oh good! I'm going to have to try that on my experiemtal C8 VM. I have for the moment given up on it because I can barely navigate my way through Gnome and it became just too painful. Thanks! -- Fred Smith -- fre...@fcshome.stoneham.ma.us - "Not everyone who says to me, 'Lord, Lord,' will enter the kingdom of heaven, but only he who does the will of my Father who is in heaven." -- Matthew 7:21 (niv) - ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] easy way to stop old ssl's
On Oct 15, 2019, at 12:26 PM, Markus Falb wrote: > > I guess that I would get A rating from ssllabs. None of my CentOS systems have Internet-facing HTTP, much less HTTPS, so I volunteer you to test it and report back. :) > I read you saying that FIPS 140-2 is not good enough. Apart from age, why? It requires that a conforming application speak only protocols that NIST has approved, and even then, you can only get FIPS 140-2 certification by submitting the software to a third-party validation service, which is very expensive and very time consuming. (I’m seeing numbers like 9 months and US $100,000.) After going through all of that, you aren’t allowed to make *any* changes to the covered parts of the software without going through another validation process. Let’s say you’re a software vendor and someone discovers a vulnerability not caught by the FIPS certification process. You’re a good citizen, so you fix it quickly and release that fix promptly. Then you must re-file for a new certification (more $$$) and then wait for the independent testing lab and NIST to take months to re-certify your software. Meanwhile, those insisting on FIPS mode have to use the known-vulnerable version — which probably has a public CVE filed against it, thus cluing potential attackers into the problem — because the new one isn’t FIPS-certified yet. For another example, elliptic curve crypto is currently getting very popular for various reasons, but not all common curve parameters are NIST-certifiable under FIPS 140-2. If you must communicate with an ECC service using non-certified params, you either cannot run your app in FIPS mode or you have to separately get the other end to become FIPS-certified, which means abandoning those params, which might be better than what you can get under FIPS. Again, I invite you to do a web search for people running into trouble trying to get FIPS-mode apps to communicate with non-FIPS-mode apps. It’s not hard to find people running into problems here. Here’s some I found: https://blogs.technet.microsoft.com/secguide/2014/04/07/why-were-not-recommending-fips-mode-anymore/ https://blogs.oracle.com/security/fips-the-crypto-catch-22 https://bugs.chromium.org/p/chromium/issues/detail?id=194867 If giants like Microsoft, Google, and Oracle are having trouble getting and maintaining their FIPS certifications, what hope do us little guys have? If you don’t like responses from big corporations, here’s some clueful developers discussing the problems: https://news.ycombinator.com/item?id=7635321 I don’t have a problem with independent testing and such per se, but when it’s a regulatory gatekeeper to what software *can* be written and used, it’s a problem when it comes to security. If we’ve learned anything about security in these past decades, it’s that fast reaction to vulnerabilities is critical. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 8 Mate?
On 10/15/19 10:08 PM, Ljubomir Ljubojevic wrote: > This is interesting and promising: > > "The official unofficial repository for MATE for EL8.": > https://copr.fedorainfracloud.org/coprs/neonman/MATE/ The previous link is forked repo (I do not know why) and here is original repo: https://copr.fedorainfracloud.org/coprs/stenstorp/MATE/ > > > > On 9/26/19 8:02 AM, Ljubomir Ljubojevic wrote: >> On 9/26/19 2:00 AM, Earl Ramirez wrote: If you want it ... package and build it when building on 8 becomes available via CBS to SIGs. Should be early next week. >>> With the new initiative CentOS and Fedora Stream, wouldn't it be easier >>> collaborate with Fedora SIGs to bring an updated version of Mate to >>> CentOS >> >> I managed to install F28 MATE packages to CentOS 8, so all is needed is >> to recompile those in EPEL. >> >>> and build whatever you want to build. The question is ,, is someone going to do it. >>> >>> I am not an expert here, I am very happy with GNOME but if there is >>> anyone that will like to kick off the alternate desktop count me in. >>> >>> >>> ___ >>> CentOS mailing list >>> CentOS@centos.org >>> https://lists.centos.org/mailman/listinfo/centos >>> >> >> > > -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 8 Mate?
This is interesting and promising: "The official unofficial repository for MATE for EL8.": https://copr.fedorainfracloud.org/coprs/neonman/MATE/ On 9/26/19 8:02 AM, Ljubomir Ljubojevic wrote: > On 9/26/19 2:00 AM, Earl Ramirez wrote: >>> >>> If you want it ... package and build it when building on 8 becomes >>> available via CBS to SIGs. Should be early next week. >> With the new initiative CentOS and Fedora Stream, wouldn't it be easier >> collaborate with Fedora SIGs to bring an updated version of Mate to >> CentOS > > I managed to install F28 MATE packages to CentOS 8, so all is needed is > to recompile those in EPEL. > >> >>> and build whatever you want to build. The question is ,, is someone >>> going to do it. >> >> I am not an expert here, I am very happy with GNOME but if there is >> anyone that will like to kick off the alternate desktop count me in. >> >> >> ___ >> CentOS mailing list >> CentOS@centos.org >> https://lists.centos.org/mailman/listinfo/centos >> > > -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Attempting to use tproxy on Centos 8 fails with 'No such file or directory'
On 10/15/19 9:16 PM, Nathan Coulson wrote:
> On 2019-10-15 12:12 p.m., Nathan Coulson wrote:
>> I was working on a haproxy transparent proxy setup that we had working
>> on Centos 7 (iptables), but running into issues getting tproxy working
>> with NFTables on Centos 8.
>>
>> From https://www.kernel.org/doc/Documentation/networking/tproxy.txt,
>>
>> It should be a matter of:
>>
>> # nft add table filter
>> # nft add chain filter divert "{ type filter hook prerouting priority
>> -150; }"
>> # nft add rule filter divert meta l4proto tcp socket transparent 1
>> meta mark set 1 accept
>>
>> But when running the 3rd line (add rule), I get
>>
>> root@kryptonite [/lib/modules/4.18.0-80.11.2.el8_0.x86_64]# nft add
>> rule filter divert meta l4proto tcp socket transparent 1 meta mark set
>> 1 accept
>> Error: Could not process rule: No such file or directory
>> add rule filter divert meta l4proto tcp socket transparent 1 meta mark
>> set 1 accept
>>
>>
>>
>> (In attempting to resolve this, I did the following)
>>
>> modprobe nf_tproxy_ipv4
>> modprobe nf_tproxy_ipv6
>> modprobe nf_socket_ipv4
>> modprobe nf_socket_ipv6
>>
>> I also noted that:
>> nft add rule filter divert meta l4proto tcp meta mark set 1 accept
>> (Removing socket transparent 1)
>>
>> does not exit with a failure.
>>
>> Also found https://bugzilla.redhat.com/show_bug.cgi?id=1651813, (which
>> did make reference to the nftables version 0.9.0 possibly missing
>> support, I have not tried compiling 0.9.1 yet, but I find it curious
>> the entire line fails with 'socket transparent 1' making me wonder if
>> it is a missing module still)
>>
>>
> Adding to this: just did a loop through the netfilter modules to see if
> something was missing (no change)
>
> for x in $(find /lib/modules/4.18.0-80.11.2.el8_0.x86_64 | grep
> netfilter | sed 's/.*netfilter.//' | sed 's/\.ko.*$//' | sort); do
> echo ">>$x"
> modprobe $x
> nft add rule filter divert meta l4proto tcp socket transparent 1 meta
> mark set 1 accept
> done
>
>
How is that solved for Fedora 28 that CentOS 8 is based on?
--
Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Attempting to use tproxy on Centos 8 fails with 'No such file or directory'
On 2019-10-15 12:12 p.m., Nathan Coulson wrote:
I was working on a haproxy transparent proxy setup that we had working
on Centos 7 (iptables), but running into issues getting tproxy working
with NFTables on Centos 8.
From https://www.kernel.org/doc/Documentation/networking/tproxy.txt,
It should be a matter of:
# nft add table filter
# nft add chain filter divert "{ type filter hook prerouting priority
-150; }"
# nft add rule filter divert meta l4proto tcp socket transparent 1
meta mark set 1 accept
But when running the 3rd line (add rule), I get
root@kryptonite [/lib/modules/4.18.0-80.11.2.el8_0.x86_64]# nft add
rule filter divert meta l4proto tcp socket transparent 1 meta mark set
1 accept
Error: Could not process rule: No such file or directory
add rule filter divert meta l4proto tcp socket transparent 1 meta mark
set 1 accept
(In attempting to resolve this, I did the following)
modprobe nf_tproxy_ipv4
modprobe nf_tproxy_ipv6
modprobe nf_socket_ipv4
modprobe nf_socket_ipv6
I also noted that:
nft add rule filter divert meta l4proto tcp meta mark set 1 accept
(Removing socket transparent 1)
does not exit with a failure.
Also found https://bugzilla.redhat.com/show_bug.cgi?id=1651813, (which
did make reference to the nftables version 0.9.0 possibly missing
support, I have not tried compiling 0.9.1 yet, but I find it curious
the entire line fails with 'socket transparent 1' making me wonder if
it is a missing module still)
Adding to this: just did a loop through the netfilter modules to see if
something was missing (no change)
for x in $(find /lib/modules/4.18.0-80.11.2.el8_0.x86_64 | grep
netfilter | sed 's/.*netfilter.//' | sed 's/\.ko.*$//' | sort); do
echo ">>$x"
modprobe $x
nft add rule filter divert meta l4proto tcp socket transparent 1 meta
mark set 1 accept
done
--
Nathan Coulson
System Administrator for Bravenet Web Services
www.bravenet.com
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
[CentOS] Attempting to use tproxy on Centos 8 fails with 'No such file or directory'
I was working on a haproxy transparent proxy setup that we had working
on Centos 7 (iptables), but running into issues getting tproxy working
with NFTables on Centos 8.
From https://www.kernel.org/doc/Documentation/networking/tproxy.txt,
It should be a matter of:
# nft add table filter
# nft add chain filter divert "{ type filter hook prerouting priority -150; }"
# nft add rule filter divert meta l4proto tcp socket transparent 1 meta mark
set 1 accept
But when running the 3rd line (add rule), I get
root@kryptonite [/lib/modules/4.18.0-80.11.2.el8_0.x86_64]# nft add rule
filter divert meta l4proto tcp socket transparent 1 meta mark set 1 accept
Error: Could not process rule: No such file or directory
add rule filter divert meta l4proto tcp socket transparent 1 meta mark
set 1 accept
(In attempting to resolve this, I did the following)
modprobe nf_tproxy_ipv4
modprobe nf_tproxy_ipv6
modprobe nf_socket_ipv4
modprobe nf_socket_ipv6
I also noted that:
nft add rule filter divert meta l4proto tcp meta mark set 1 accept
(Removing socket transparent 1)
does not exit with a failure.
Also found https://bugzilla.redhat.com/show_bug.cgi?id=1651813, (which
did make reference to the nftables version 0.9.0 possibly missing
support, I have not tried compiling 0.9.1 yet, but I find it curious
the entire line fails with 'socket transparent 1' making me wonder if it
is a missing module still)
--
Nathan Coulson
System Administrator for Bravenet Web Services
www.bravenet.com
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] easy way to stop old ssl's
On 12.10.19 19:33, Warren Young wrote: > On Oct 12, 2019, at 4:06 AM, Markus Falb wrote: >> >> On 11.10.19 22:40, Warren Young wrote: >>> Just ship a new HTTPS configuration to each server. >> >> Instead of configuring every application separataly it would be nice if >> "accepted levels of security" could be set system wide. > > …which implies that there is some authority that defines “accepted level” the > way you’d do it if you could be bothered to think through all of the use > cases, combinations, and implications. > > Who is that central organization? Are you sure their notions match your own? You should have the authority discussion with OP who brought that thing with "accepted" up. On Oct 11, 2019, at 12:12 PM, Jerry Geis wrote: # # is there a script that is available that can be ran to bring # a box up to current "accepted" levels ? My post was about system wide configuration not about authorities. However, take a look at the subject of this thread. Who defines what is old ? What about best practices like disable SSLv3 or TLSv1? Could the authority be the community or some common knowledge? > >> With 8 it seems there is such a thing >> >> https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening >> >> Although I believe that FIPS mode is also available in 7 > > That’s FIPS 140-2, a standard from 2001, which is three TLS standards ago. If I look at the comparison table from the link above FIPS mode does not look that bad. I guess that I would get A rating from ssllabs. > > FIPS 140-3 just barely became effective a few weeks ago, which means it won’t > be considered for inclusion in RHEL until 9, which I don’t expect to appear > until 3-4 years from now, by which time FIPS 140-2 will be around 21 years > old. > > So, we not only have a situation where adopting FIPS 140-2 requires that you > use badly outdated security technologies, it also means you might not be able > to communicate with those that do support modern standards, if they’ve > dropped compatibility with 2001 era tech sometime in the last 18 years. I read you saying that FIPS 140-2 is not good enough. Apart from age, why? -- Kind Regards, Markus Falb ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Hiding a grub menuentry?
Richard wrote: ** CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. ** Date: Tuesday, October 15, 2019 14:52:39 +0100 From: James Pearson Does anyone know if it is possible to 'hide' a grub menuentry with CentOS 7 ? I have a custom menuentry that I don't want to be seen on the grub screen - but it needs to be selectable as the entry to boot via 'grub2-reboot' I've scanned the grub2 documentation - but I can't find anything obvious - so I'm guessing it can't be done - unless someone knows otherwise ? I believe that you can accomplish what you are after by changing the quoted menuentry label in grub.cfg: menuentry 'CentOS Linux (3.10.0-1062.1.2.el7.x86_64) 7 (Core)' ... to just a blank: menuentry ' ' ... for the specific entry. I do this for the windows side of my dual-boot laptop. I boot to windows by scrolling down to the blank line below the centos entries. Looks like this might work - I can use a 'blank' label and also use the '--id' option to allow grub2-reboot to select the required menuentry by its 'id' ... Thanks James Pearson ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Hiding a grub menuentry?
> Date: Tuesday, October 15, 2019 14:52:39 +0100 > From: James Pearson > > Does anyone know if it is possible to 'hide' a grub menuentry with > CentOS 7 ? > > I have a custom menuentry that I don't want to be seen on the grub > screen - but it needs to be selectable as the entry to boot via > 'grub2-reboot' > > I've scanned the grub2 documentation - but I can't find anything > obvious - so I'm guessing it can't be done - unless someone knows > otherwise ? I believe that you can accomplish what you are after by changing the quoted menuentry label in grub.cfg: menuentry 'CentOS Linux (3.10.0-1062.1.2.el7.x86_64) 7 (Core)' ... to just a blank: menuentry ' ' ... for the specific entry. I do this for the windows side of my dual-boot laptop. I boot to windows by scrolling down to the blank line below the centos entries. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mplayer or vlc?
You can also use VLC through flatpak. On Tue, 2019-10-15 at 16:42 +0200, Ljubomir Ljubojevic wrote: > On 10/15/19 4:20 PM, Adrian van Bloois wrote: > > Hi, > > Is there an mplayer or vlc available for CentOS-8? > > There is a VLC 3.x in RPMFusion: https://rpmfusion.org/ > > Nux will not be creating repo for EL8, due to lack of time. > > > > Adrian > > > > > > > > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd issue with 7.7.1908 updated with qemu-kvm-ev
On 10/15/19 10:28 AM, Simon Matter via CentOS wrote: Hi, ... After the update on the host to 7.7.1908, the network stopped running. The host also has a CentOS 7 guest that is still working properly. If I change the 2.1 system to not automatically load the e1000 driver and console in and 'modprobe e1000' manually, it starts working again, for a while. Just as a workaround, did you try to use another network card than the e1000? Yes, I did; the only other option was for the 8139 NIC, which in CentOS 2.1 is the '8139too' driver. And it worked; until I rebooted the guest and the driver was loaded automatically. If either driver is loaded manually, after the 'ifup eth0' has already been executed, it works, at least for a few hours. There are no virtio drivers that I could find for C2.1 (not surprising). I did forget to mention that this is bridged networking, and is working great for the C7 guest that is on the same C7 host. Even when the C2.1 guest's connectivity goes down, the bridge shows as up and not blocking. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mplayer or vlc?
On 10/15/19 4:20 PM, Adrian van Bloois wrote: > Hi, > Is there an mplayer or vlc available for CentOS-8? There is a VLC 3.x in RPMFusion: https://rpmfusion.org/ Nux will not be creating repo for EL8, due to lack of time. > > Adrian > > > -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Odd issue with 7.7.1908 updated with qemu-kvm-ev
Hi, > So, I have a client that has an internal use application that needs an > ancient version of libc5. That's not a typo; libc5. Before the server > that ran it died about a year and a half ago (said server was an AMD > K6-2/450 with a 6GB Western Digital Caviar drive that had been spinning > nearly continuously for almost 20 years!) it was running on Red Hat > Linux 5.2. The last version of CentOS that shipped with a libc5 was > 2.1. So I set them up a KVM guest running CentOS 2.1, mainly because > Red Hat 5.2 wouldn't recognize the network at all, using the e1000 > network driver, and it ran well. > > Now, yes, there are no updates, but no it doesn't matter; it's an > internal use application that has a very small footprint and very low > risk. > > After the update on the host to 7.7.1908, the network stopped running. > The host also has a CentOS 7 guest that is still working properly. If I > change the 2.1 system to not automatically load the e1000 driver and > console in and 'modprobe e1000' manually, it starts working again, for a > while. Just as a workaround, did you try to use another network card than the e1000? Simon ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] mplayer or vlc?
Hi, Is there an mplayer or vlc available for CentOS-8? Adrian -- Adri P. van Bloois "Elegance is not a dispensable luxury but a factor that decides between success and failure." Edsger W. Dijkstra ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Browser doesnt work
I forgot to add that i had to change to desktop profile from network- throughput in order to manage to copy my photo files from my external hard disk to my laptop. If i didnt do that my laptop froze. :-! Had to On Tue, 2019-10-15 at 16:02 +0200, Georgios wrote: > Well kind of. > > for example i had to do the following stuff for my laptop > > > -add epel repository so i can install keepassxc > -manual install eclipse > -enable rpmfusion in order to have > --media support on my browser and > --install totem codecs in order for it to play video files > > With flatpak i think centos is more desktop friendly. > The rest of the apps where installed through flatpak so it was quite > easy. Most of these apps arent on Centos repositories so without > flatpak it would be a bit difficult. > Also with flatpak you can have newer versions of the apps that could > be > a problem. > > Besides that i have to say. > > flatpak itself is really old and it doesn't support my yubikey. > Thats the reason i had to install keepassxc through epel repository > and > not flatpak. > I do hope flatpak gets updated on a future point release. > > > Another problem i currently have is that evolution after suspense > sometimes it seems to brake. It happened 2 times last weeks but i > could > not reproduce. > > > I previous had debian 9 and 10. > If i compare these 2 i have to say. > > Centos 8 had a bit less configuration for laptop compared with debian > 9 > but a bit more compared to debian 10. > > I guess it all depends what you want to do with your laptop. > For basic usage it seems fine. > > Anyway for the time being it seems usable. > But i wouldn't recommend it to someone who use linux for the first > time. > I would suggest ubuntu or something like this. > > > > On Tue, 2019-10-15 at 14:18 +0100, John Hodrien wrote: > > On Tue, 15 Oct 2019, Nicolas Kovacs wrote: > > > > > CentOS is a desktop distribution in the sense that chickens fly > > > and > > > horses > > > swim. Of course you can turn it into a full-blown bells-and- > > > whistles desktop > > > by fine-tuning the configuration and adding lots of third-party > > > stuff. I've > > > done this myself for years, here for example: > > > > > > https://www.microlinux.fr/poste-de-travail-entreprise-centos-7-kde/ > > > > > > On the other hand, CentOS out of the box is a rather frustrating > > > experience > > > on the desktop. > > > > I've always disagreed with this view, however common it appears to > > be. > > > > RHEL is sold as an Enterprise OS for Server, Cloud, Desktop, > > Laptop. CentOS > > surely shouldn't be seen any differently. > > > > What is it that makes CentOS a bad desktop OS? > > > > I can install CentOS 8 on my laptop now, with a perfectly usable > > desktop, and > > 10 years of support. Google Chrome runs just fine, and I can use > > containers > > via singularity on top for anything exotic. > > > > What exactly am I missing out on by not running something else? > > > > jh > > ___ > > CentOS mailing list > > CentOS@centos.org > > https://lists.centos.org/mailman/listinfo/centos > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Browser doesnt work
On 10/15/19 3:18 PM, John Hodrien wrote: > On Tue, 15 Oct 2019, Nicolas Kovacs wrote: > >> CentOS is a desktop distribution in the sense that chickens fly and >> horses swim. Of course you can turn it into a full-blown >> bells-and-whistles desktop by fine-tuning the configuration and adding >> lots of third-party stuff. I've done this myself for years, here for >> example: >> >> https://www.microlinux.fr/poste-de-travail-entreprise-centos-7-kde/ >> >> On the other hand, CentOS out of the box is a rather frustrating >> experience on the desktop. > > I've always disagreed with this view, however common it appears to be. > > RHEL is sold as an Enterprise OS for Server, Cloud, Desktop, Laptop. > CentOS > surely shouldn't be seen any differently. > > What is it that makes CentOS a bad desktop OS? > > I can install CentOS 8 on my laptop now, with a perfectly usable > desktop, and > 10 years of support. Google Chrome runs just fine, and I can use > containers > via singularity on top for anything exotic. > > What exactly am I missing out on by not running something else? > They are talking about a fact that RHEL (and CentOS) do not provide packages that have non-FOSS licenses, like Broadcom drivers, video codecs, flash, etc., and you need 3rd-party repo like Nux-dextop, rpmfusion for those, while almost all other distro's do provide those packages and you only need to select non-FOSS packages from OFFICIALY SUPPORTED repositories. > jh > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > -- Ljubomir Ljubojevic (Love is in the Air) PL Computers Serbia, Europe StarOS, Mikrotik and CentOS/RHEL/Linux consultant ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Odd issue with 7.7.1908 updated with qemu-kvm-ev
So, I have a client that has an internal use application that needs an ancient version of libc5. That's not a typo; libc5. Before the server that ran it died about a year and a half ago (said server was an AMD K6-2/450 with a 6GB Western Digital Caviar drive that had been spinning nearly continuously for almost 20 years!) it was running on Red Hat Linux 5.2. The last version of CentOS that shipped with a libc5 was 2.1. So I set them up a KVM guest running CentOS 2.1, mainly because Red Hat 5.2 wouldn't recognize the network at all, using the e1000 network driver, and it ran well. Now, yes, there are no updates, but no it doesn't matter; it's an internal use application that has a very small footprint and very low risk. After the update on the host to 7.7.1908, the network stopped running. The host also has a CentOS 7 guest that is still working properly. If I change the 2.1 system to not automatically load the e1000 driver and console in and 'modprobe e1000' manually, it starts working again, for a while. Any ideas as to where to start looking? qemu-kvm-ev itself, or libvirt? I'm planning to start out with rollbacks to the previous versions of each to try to find where the issue starts. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Browser doesnt work
Well kind of. for example i had to do the following stuff for my laptop -add epel repository so i can install keepassxc -manual install eclipse -enable rpmfusion in order to have --media support on my browser and --install totem codecs in order for it to play video files With flatpak i think centos is more desktop friendly. The rest of the apps where installed through flatpak so it was quite easy. Most of these apps arent on Centos repositories so without flatpak it would be a bit difficult. Also with flatpak you can have newer versions of the apps that could be a problem. Besides that i have to say. flatpak itself is really old and it doesn't support my yubikey. Thats the reason i had to install keepassxc through epel repository and not flatpak. I do hope flatpak gets updated on a future point release. Another problem i currently have is that evolution after suspense sometimes it seems to brake. It happened 2 times last weeks but i could not reproduce. I previous had debian 9 and 10. If i compare these 2 i have to say. Centos 8 had a bit less configuration for laptop compared with debian 9 but a bit more compared to debian 10. I guess it all depends what you want to do with your laptop. For basic usage it seems fine. Anyway for the time being it seems usable. But i wouldn't recommend it to someone who use linux for the first time. I would suggest ubuntu or something like this. On Tue, 2019-10-15 at 14:18 +0100, John Hodrien wrote: > On Tue, 15 Oct 2019, Nicolas Kovacs wrote: > > > CentOS is a desktop distribution in the sense that chickens fly and > > horses > > swim. Of course you can turn it into a full-blown bells-and- > > whistles desktop > > by fine-tuning the configuration and adding lots of third-party > > stuff. I've > > done this myself for years, here for example: > > > > https://www.microlinux.fr/poste-de-travail-entreprise-centos-7-kde/ > > > > On the other hand, CentOS out of the box is a rather frustrating > > experience > > on the desktop. > > I've always disagreed with this view, however common it appears to > be. > > RHEL is sold as an Enterprise OS for Server, Cloud, Desktop, > Laptop. CentOS > surely shouldn't be seen any differently. > > What is it that makes CentOS a bad desktop OS? > > I can install CentOS 8 on my laptop now, with a perfectly usable > desktop, and > 10 years of support. Google Chrome runs just fine, and I can use > containers > via singularity on top for anything exotic. > > What exactly am I missing out on by not running something else? > > jh > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Hiding a grub menuentry?
Does anyone know if it is possible to 'hide' a grub menuentry with CentOS 7 ? I have a custom menuentry that I don't want to be seen on the grub screen - but it needs to be selectable as the entry to boot via 'grub2-reboot' I've scanned the grub2 documentation - but I can't find anything obvious - so I'm guessing it can't be done - unless someone knows otherwise ? Thanks James Pearson ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Gstreamer1
On 10/14/19 9:06 PM, Jerry Geis wrote:
How do I tell from source rpm's:
1) the build order of gstreamer packages
I replied from my phone yesterday, and it doesn't appear to have gone
through...
The _chronological_ build order is most easily inferred from the RPM tag
%{BUILDTIME}. Usage example:
+++
[lowen@dhcp-pool102 ~]$ rpm -qa --qf "%{BUILDTIME} -- %{NAME}\n" |grep
gstreamer1|sort
1501713160 -- gstreamer1
1501713160 -- gstreamer1-devel
1502039500 -- gstreamer1-plugins-good
1523411572 -- gstreamer1-plugins-bad-free
1523411572 -- gstreamer1-plugins-bad-free-gtk
1523411627 -- gstreamer1-plugins-ugly-free
1540923990 -- gstreamer1-plugins-base
1540923990 -- gstreamer1-plugins-base-devel
[lowen@dhcp-pool102 ~]$
+
It's pretty easy to see which packages were built at the same time, and
the chronological order the others were built in. To query this from a
set of src.rpms just use 'rpm -qp ' with the full package
filename(s) instead of just the package name. I used -qa and a grep
feeding a sort to keep it 'simple,' although I have mixed repositories
represented in that build order. With a set of src.rpms you have better
control of what you're checking in terms of the order of the build.
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Browser doesnt work
On Tue, 15 Oct 2019, Nicolas Kovacs wrote: CentOS is a desktop distribution in the sense that chickens fly and horses swim. Of course you can turn it into a full-blown bells-and-whistles desktop by fine-tuning the configuration and adding lots of third-party stuff. I've done this myself for years, here for example: https://www.microlinux.fr/poste-de-travail-entreprise-centos-7-kde/ On the other hand, CentOS out of the box is a rather frustrating experience on the desktop. I've always disagreed with this view, however common it appears to be. RHEL is sold as an Enterprise OS for Server, Cloud, Desktop, Laptop. CentOS surely shouldn't be seen any differently. What is it that makes CentOS a bad desktop OS? I can install CentOS 8 on my laptop now, with a perfectly usable desktop, and 10 years of support. Google Chrome runs just fine, and I can use containers via singularity on top for anything exotic. What exactly am I missing out on by not running something else? jh ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Browser doesnt work
Le 13/10/2019 à 17:43, Georgios a écrit : Im new on Centos I recently installed Centos 8 and i have the following problem with my browser I cant play media on the browser. CentOS is a desktop distribution in the sense that chickens fly and horses swim. Of course you can turn it into a full-blown bells-and-whistles desktop by fine-tuning the configuration and adding lots of third-party stuff. I've done this myself for years, here for example: https://www.microlinux.fr/poste-de-travail-entreprise-centos-7-kde/ On the other hand, CentOS out of the box is a rather frustrating experience on the desktop. Cheers, Niki -- Microlinux - Solutions informatiques durables 7, place de l'église - 30730 Montpezat Site : https://www.microlinux.fr Mail : i...@microlinux.fr Tél. : 04 66 63 10 32 Mob. : 06 51 80 12 12 ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Gstreamer1
On Mon, Oct 14, 2019 at 09:06:11PM -0400, Jerry Geis wrote: > How do I tell from source rpm's: > 1) the build order of gstreamer packages This isn't specifically defined in the source RPM, but rather, the RPM Spec file lists build dependencies, and you'll have to figure that out. https://git.centos.org/rpms/gstreamer/blob/c7/f/SPECS/gstreamer.spec#_22 and the gstreamer-plugins-base source package has a bunch of dependencies too: https://git.centos.org/rpms/gstreamer-plugins-base/blob/c7/f/SPECS/gstreamer-plugins-base.spec#_19 > 2) the command line args for the ./configure https://git.centos.org/rpms/gstreamer/blob/c7/f/SPECS/gstreamer.spec#_123 Keep in mind that %configure is a macro that has many additional arguments, ones that are standardized across the build environment for CentOS. The additional arguments to %configure are gstreamer-specific. -- Jonathan Billings ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Gstreamer1
In article , Jerry Geis wrote: > How do I tell from source rpm's: > 1) the build order of gstreamer packages > 2) the command line args for the ./configure > > For centos 7. Look in the .spec file, specifically at the %prep, %build, and %install sections. For more than you ever wanted to know, see http://ftp.rpm.org/max-rpm/ particularly chapter 13. Cheers Tony -- Tony Mountifield Work: t...@softins.co.uk - http://www.softins.co.uk Play: t...@mountifield.org - http://tony.mountifield.org ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
