[CentOS] cr repository when running your own mirror

Hi, what is the right way to deal with the new cr repository for centos 5 when you are running your own mirror. In particular the following statement I don't fully understand: - Once 5.7 is released, the 5.6/cr/ repositories will be removed ( they will not be available on vault.centos.org )

Re: [CentOS] Routing issue

Sounds like an issue similar to what I experienced when trying to force all outgoing ssh traffic on a NAT'ed network to go through a particular interface. I've forgot the details, but running the following on the firewall helped for f in /proc/sys/net/ipv4/conf/*/rp_filter; do echo 0 $f

Re: [CentOS] CVE-2016-5195 “DirtyCOW”: Critical Linux Kernel Flaw

What is the best approach on centos 6 to mitigate the problem is officially patched? As far as I can tell Centos 6 is vulnerable to attacks using ptrace. There is a mitigation described here https://bugzilla.redhat.com/show_bug.cgi?id=1384344#c13 which doesn't fix the underlying problem, but

Re: [CentOS] CVE-2016-5195 DirtyCOW : Critical Linux Kernel Flaw

On 25-10-2016 15:39, Peter Kjellström wrote: I can confirm that c6 is vulnerable, we're running a patched kernel (local build) using a rhel6 adaptation of the upstream fix. Ask off-list if you want an src.rpm Thanks, the srpm would be very helpful, I'll reply off-list. Cheers, Christian.

[CentOS] Fwd: [CentOS-announce] CESA-2017:3200 Important CentOS 6 kernel Security Update

The redhat errata link leads to a 404 page. Anybody know what this is about? Cheers, Christian. Forwarded Message Subject: [CentOS-announce] CESA-2017:3200 Important CentOS 6 kernel Security Update Date: Wed, 15 Nov 2017 21:38:19 + From: Johnny Hughes

Re: [CentOS] Fwd: [CentOS-announce] CESA-2017:3200 Important CentOS 6 kernel Security Update

Found the answer myself. RHBA should of course have been RHSA so the correct link is https://access.redhat.com/errata/RHSA-2017:3200 Cheers, Christian. On 16-11-2017 09:53, Christian Anthon wrote: The redhat errata link leads to a 404 page. Anybody know what this is about? Cheers

[CentOS] repodata out of sync for centos6-updates

Hi, I wanted to update the bind package on our centos-6 servers, and the package is there for the mirrors I've checked, but the repodata dates back from January 18. May be I'm too fast and the repodata update comes later. If so how long can it take? Cheers, Christian.

Re: [CentOS] CentOS 6 fix sudo CVE-2021-3156

Centos-6 compatible packages are available from the official sudo webpage. It's a later version of sudo and I'm not sure if that will cause problems. I've tried installing it and so-far so-good. https://www.sudo.ws/download.html Cheers, Christian. On 27/01/2021 08.38, Gionatan Danti wrote: