Re: [CentOS] IUS not pulling latest PHP packages
On 26/05/2023 12:50, Kaushal Shriyan wrote: Hello Kaushal, Hi, I am running CentOS Linux release 7.9.2009 (Core) and have enabled both epel and ius repository - ius-release-2-1.el7.ius.noarch - epel-release-7-14.noarch IUS not pulling the latest PHP packages. I have ran yum clean metadata and yum clean all commands but no luck. The latest version is *7.4.33* PHP 7.4 has reached end-of-life, and IUS is no longer publishing any packages for it. Here's their announcement: https://github.com/iusrepo/announce/issues/39 If you really want to update to 7.4.33, you can do that from the IUS archive. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] failed: Could not start storage pool: cannot open directory: ... No such file or directory
On 14/01/2023 13:38, Kaushal Shriyan wrote: Kaushal, You keep asking questions here, but I haven't seen you thank anyone so far. All the people trying to help you here do this in their own time, and don't get paid for it. You would do well to show some gratitude. Coming to your issue. You want to work with Linux, but you're not even prepared to do some basic reading of the manual pages, as suggested by several people. The problem you have described below is caused by your misusage of the virt-install command. You could have easily come across the solution by doing a simple Google search of the error message. There are several places where this question has been answered. There's nothing wrong in asking for help. But if you expect others to do your work for you, then you're asking for too much. If you're lucky, some kind souls might even go that far and spoon-feed you the answer, but I certainly would not. -- Anand Hi, I am encountering an ERROR: Couldn't find hvm kernel for Ubuntu tree. # cat installubuntu.sh virt-install \ --name fiservreactitestui \ --virt-type kvm \ --hvm \ --ram 8096 \ --disk path=/linuxkvmguestosdisk/fiservreactitestui.img,size=20 \ --vcpus 2 \ --os-variant ubuntu20.04 \ --network bridge=br0 \ --graphics none \ --console pty,target_type=serial \ --location /var/lib/libvirt/isos/ubuntu-20.04.4-live-server-amd64.iso \ --extra-args 'console=ttyS0,115200n8 serial' [root@dac-inhousebaseserver1 ~]# ./installubuntu.sh ** (process:23128): WARNING **: 18:06:57.479: Entity http://linux-kvm.org/qemu-kvm/1.2.0 should be in file platform/ linux-kvm.org/qemu-kvm-1.2.0.xml not tests/data/positive/platform/ linux-kvm.org/qemu-kvm-1.2.0.xml ** (process:23128): WARNING **: 18:06:57.507: Entity http://x.org/x11-keyboard should be in file datamap/x.org/x11-keyboard.xml not tests/data/positive/datamap/x.org/x11-keyboard.xml ** (process:23128): WARNING **: 18:06:57.530: Entity http://fedoraproject.org/fedora/rawhide should be in file os/ fedoraproject.org/fedora-rawhide.xml not tests/data/negative/os/ fedoraproject.org/fedora-rawhide.xml ** (process:23128): WARNING **: 18:06:57.546: Entity http://ibm.com/ps2/keyboard should be in file device/ ibm.com/ps2-keyboard.xml not tests/data/positive/device/ ibm.com/ps2-keyboard.xml ** (process:23128): WARNING **: 18:06:57.561: Entity http://fedoraproject.org/silverblue/kickstart/desktop should be in file install-script/fedoraproject.org/silverblue-kickstart-desktop.xml not tests/data/positive/install-script/ fedoraproject.org/silverblue-kickstart-desktop.xml ** (process:23128): WARNING **: 18:06:57.598: Entity http://fedoraproject.org/fedora/rawhide should be in file os/ fedoraproject.org/fedora-rawhide.xml not tests/data/positive/os/ fedoraproject.org/fedora-rawhide.xml Starting install... Retrieving file .treeinfo... |0 B 00:00:00 Retrieving file content... |0 B 00:00:00 Retrieving file info... | 68 B 00:00:00 ERRORCouldn't find hvm kernel for Ubuntu tree. Domain installation does not appear to have been successful. If it was, you can restart your domain by running: virsh --connect qemu:///system start fiservreactitestui otherwise, please restart your installation. # Any clue and I look forward to hearing from you. Thanks in advance. Best Regards, Kaushal ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] failed: Could not start storage pool: cannot open directory: ... No such file or directory
On 13/01/2023 18:50, Kaushal Shriyan wrote: Hi Kaushal, virt-install --name demoreactui --ram 8096 --disk path=/linuxkvmguestosdisk/demoreactui.img,size=20 --vcpus 2 --os-variant ubuntu20.04 --network bridge=br0 --graphics none --console pty,target_type=serial --location /var/lib/libvirt/isos/ubuntu-20.04.4-live-server-amd64.iso,kernel=casper/vmlinuz,initrd=casper/initrd --extra-args 'console=ttyS0,115200n8 serial' ERRORError validating install location: Validating install media '/var/lib/libvirt/isos/ubuntu-20.04.4-live-server-amd64.iso,kernel=casper/vmlinuz,initrd=casper/initrd' failed: Could not start storage pool: cannot open directory '/var/lib/libvirt/isos/ubuntu-20.04.4-live-server-amd64.iso,kernel=casper/vmlinuz,initrd=casper': No such file or directory Any clue and I look forward to hearing from you. Thanks in advance. The --location option takes a path to an ISO image. You have extra stuff after the ISO path. -- Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Installing multiple rpm binary files using yum or dnf package manager.
On 27/12/2022 14:52, Kaushal Shriyan wrote: Hi Kaushal, I am running CentOS Linux release 7.9.2009 (Core) and have a few rpms inside a specific folder. I know it is possible using rpm command to install multiple rpm binary files using the below command. #cd rpmbinaries #rpm -ivh *.rpm Is there a way to install them using dnf or yum package manager? Yes, it's possible. Please read the manual pages of yum and dnf, and look for the "localinstall" sub-command. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Fedora EPEL vs Oracle EPEL
Hi folks, Are there any Oracle Linux users here? What are you doing with EPEL? Do you use Fedora EPEL, or Oracle EPEL? What are your reasons for using one or the other? I am aware that these two repos are quite similar, but not identical. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] building ngx_cache_purge module on CentOS Linux release 7.9.2009 (Core).
On 07/05/2022 16:04, Kaushal Shriyan wrote: Hi Kaushal, # rpm -qil nginx-mod-devel-1.20.1-9.el7.x86_64 | grep nginx.h /usr/src/nginx-1.20.1-9.el7/src/core/nginx.h # ll /usr/src/nginx-1.20.1-9.el7/src/core/nginx.h -rw-r--r-- 1 root root 476 May 25 2021 /usr/src/nginx-1.20.1-9.el7/src/core/nginx.h # ls CHANGES config LICENSE ngx_cache_purge_module.c README.md t TODO.md # ls -l total 76 -rw-r--r-- 1 501 wheel 1980 Dec 23 2014 CHANGES -rw-r--r-- 1 501 wheel 516 Dec 23 2014 config -rw-r--r-- 1 501 wheel 1424 Dec 23 2014 LICENSE -rw-r--r-- 1 501 wheel 51501 Dec 23 2014 ngx_cache_purge_module.c -rw-r--r-- 1 501 wheel 5090 Dec 23 2014 README.md drwxr-xr-x 2 501 wheel80 May 7 02:22 t -rw-r--r-- 1 501 wheel 281 Dec 23 2014 TODO.md # # gcc -o ngx_cache_purge_module ngx_cache_purge_module.c ngx_cache_purge_module.c:30:19: fatal error: nginx.h: No such file or directory #include ^ compilation terminated. # It is unable to locate the header file. Please correct me if I am missing something. Thanks in advance. Yes, you're missing basic knowledge on how to compile C programs. Look at the man page of "gcc" and figure out how to use the "-I" flag. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] building ngx_cache_purge module on CentOS Linux release 7.9.2009 (Core).
On 07/05/2022 15:01, Kaushal Shriyan wrote: Hi Kaushal, #gcc -o ngx_cache_purge_module ngx_cache_purge_module.c ngx_cache_purge_module.c:30:19: fatal error: nginx.h: No such file or directory #include ^ compilation terminated. # yum search nginx-devel Try "yum search nginx" instead and examine its output. You'll find your answer. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS Linux Notifications for any changes in files or folders
On 26/04/2022 21:05, Kaushal Shriyan wrote: Hi Kaushal, Thanks for sharing the link https://www.unixmen.com/how-to-monitor-filesystem-events-with-incron/. However I am receiving multiple emails (more than 1 email) while accessing the /var/www/html/prodsys.cert file. Am i missing something as per the below incrontab -l output /var/www/html/prodsys.cert IN_ALL_EVENTSprintf "Subject: Prod You've asked incron to inform you of all events, so presumably, your "access" triggers multiple filesystem events. You need to be more selective about which events you want to be notified about. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache APISIX on CentOS Linux release 7.9.2009 (Core)
On 14/04/2022 20:03, Kaushal Shriyan wrote: Kaushal, [root@]#journalctl -u apisix.service Apr 14 23:29:42 apacheapisixapigateway apisix[1798]: /usr/local/openresty/luajit/bin/luajit ./apisix/cli/apisix.lua start Apr 14 23:29:42 apacheapisixapigateway apisix[1798]: etcd cluster version 3.3.0 is less than the required version 3.4.0, please upgrade your etcd cluster If you can spam us with all that logging, you can also read what the problem is. It's right there, in very clear language. Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] email address
On 07/12/2021 14:46, Wells, Roger K. [US-US] via CentOS wrote: Hi Roger, How to change email address for this list? current: roger.k.we...@leidos.com change to: roger.k.we...@alum.mit.edu At the end of every message to the list, is a link to the mailman setup of this list. Start by following the instructions there. I've tried several times but so far nothing has worked. You've not said *what* you've tried, and folks can't read your mind, so they can't help identify your mistake. In the future, please help yourself and save others time by providing more details. PS. Your subject line of "email address" is also rather terse. A better subject would be "change email address of subscription to centos list". Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Install OpenSSL 1.1.1 on CentOS Linux release 7.9.2009 (Core).
On 09/11/2021 18:30, Kaushal Shriyan wrote: Kaushal, #cd Python-3.10.0 #*./configure LDFLAGS="-L/usr/lib64/openssl11"* You really are making no effort to understand how to compile packages on Linux. Steve told you that you might need to use LDFLAGS, but it is not the only option you have to set when calling configure. You also need to tell configure where the header files are. Instead of examining the output of "configure --help" or using google, you're just asking to be spoon-fed all the solutions. Try to help yourself by doing some google searching and reading. Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Find out which process consumed Network bandwidth
On 06/09/2021 19:35, Kaushal Shriyan wrote: Hi Kaushal, > I am running CentOS Linux release 7.9.2009 (Core). Is there a way to find > out which process consumed network bandwidth during a specific time period? > > For example, the Nginx process consumed how much network traffic on Sept > 01, 2021. As far as I know, such accounting isn't done in a standard CentOS system, so there's no way to determine such information about a past event. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Application migration
On 01/09/2021 11:24, Mark Woolfson wrote: Hi Mark, > Please can you give me an idea of the migration complexity of moving the > applications from 6.4/6.6 to 7.4 or any variant of 7. This is a very vague question. It's like asking "I have an old car. Can you please tell me if I can drive it on the new motorway?" Folk can't really help you this way. You need to provide more specific information, such as what language these apps are written in. Are they written in C which is compiled? Has it been statically compiled, or dynamically? What libraries does it link against? Perhaps the application is in Java, Python, Perl or Ruby. Then it's easier, but again, there may be some gotchas. Do you have the source code of the applications? If you do, then it's easier to make them work in case modifications are needed. If you don't have the source, then things become trickier. If the applications won't run under CentOS 7, and you can't modify them, then you might want to consider running them in CentOS 6 containers on a CentOS 7 or 8 host. But give details, man! Without details, it's all guesswork. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Git 2.23 or later
On 23/08/2021 20:00, H wrote: Hi H, > The latest version of git for C7 is 1.8.3 and in SCL it's 2.18 > although the repository claims 2.9 is also available. I am looking to > upgrade to 2.23 since i need the --no-overlay option. Is anyone running > this version (or later)? If so, from which repository? Get it from the IUS repository: https://ius.io/ Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Minimising a CentOS installation
On 21/08/2021 01:34, Warren Young wrote: > Our post-install removal command here is: > > dnf -y remove cockpit* pcp* These aren't present in a minimal CentOS 8 installation. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Minimising a CentOS installation
Hi folks, After doing a minimal CentOS 8.4 installation, I found the following packages to be useful for a simple server, so I removed them: cronie-anacron (replaced with cronie-noanacron) alsa-firmware ivtv-firmware iwl*-firmware sssd-common (along with all packages that depended on it) What other things do folk usually remove to make their installation smaller? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Check network activity per process.
On 03/06/2021 03:44, Kaushal Shriyan wrote: Hi Kaushal, The atoptool web page clearly explains how atop, netatopd and the netatop kernel module interact. Have you even read the web page? Please read it first, and then ask a more specific question. Don't leave all the research work to other people. Regards, Anand > I am referring to https://www.atoptool.nl/netatop.php and installed > https://www.atoptool.nl/downloadnetatop.php kernel module netatop on CentOS > Linux release 7.9.2009 (Core). How do I check Network activity per > process? For example network activity for the Nginx webserver process. > > #systemctl status netatop > ● netatop.service - Netatop kernel module >Loaded: loaded (/usr/lib/systemd/system/netatop.service; enabled; vendor > preset: disabled) >Active: active (exited) since Thu 2021-06-03 06:58:36 IST; 10min ago > Docs: man:netatop(4) > Main PID: 29083 (code=exited, status=0/SUCCESS) >CGroup: /system.slice/netatop.service >└─29086 /usr/sbin/netatopd > > Jun 03 06:58:36 marketplacedisruptionsuitevapt systemd[1]: Starting Netatop > kernel module... > Jun 03 06:58:36 marketplacedisruptionsuitevapt systemd[1]: Started Netatop > kernel module. > Jun 03 06:58:36 marketplacedisruptionsuitevapt netatopd[29086]: version 3.1 > actived > > Please guide. Thanks in advance. > > Best Regards, > > Kaushal ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ansible dnf with stream
On 25/12/2020 11:30, Łukasz Posadowski wrote: Hi Lukasz, > The task in question is: > > - name: Install basic packages on RedHat-like systems. > dnf: > name: > - bash-completion > - htop > - mc > - vim > - mtr > - tree > - net-tools > state: latest > enablerepo: epel-modular, epel > when: ansible_os_family == 'RedHat' I haven't tested, but my instinct points at the "enablerepo" line. You've written "epel-modular, epel" with a space. YAML preserves the space, and passes it to dnf, and perhaps it's causing a problem. Can you try it without the space? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off Topic bash question
On 23/07/2020 16:37, Jerry Geis wrote: Thanks, when I change it do the following I get a syntax error #!/bin/bash # while read LINE do echo $LINE done < cat list.txt You don't use "cat" here; it's not needed at all. You write: done < list.txt This tells the shell to redirect the stdin of the while loop from the file "list.txt". People in the unix world have made a mess of code everywhere by superfluously using "cat". In the old usenet days, anyone who posted shell code with unnecessary use of cat used to be awarded a prize (and it was not something to be proud of, but to be embarrassed about). "cat" is short for "concatenate", and for that purpose, it is perfect. When you want to take two or more sources of data, and combine them, then cat is the perfect tool, eg: cat file1 file2 file3 > combined-file But for most other tasks, if you're using "cat", then you're almost certainly misusing it. For example, people who do: cat file | grep something This makes the shell fork and run cat, and then the shell has to setup a pipe to pass the data to grep. Too much overhead. They don't know that they can just do: grep something file and let the grep command read the file itself. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off Topic bash question
On 23/07/2020 15:46, Jerry Geis wrote: Hi Jerry, You can do even better: index=0 total=0 names=() ip=() IFS=, while read -r NODENAME IP do names[$index]="$NODENAME" ip[$((index++))]="$IP" ((total++)) done < list.txt In this example, you set the input field separator (IFS) to the comma, so that the shell does the word splitting for you, and then allow the "read" call to assign to both variables in a single call. Now you don't need any "cut" calls. In fact, this example avoids forks completely, by just using native features of bash. For small inputs, it doesn't matter, but if you were processing a large file, and your script was forking for each call to "cut" and creating a new process, you would incur a horrible amount of overhead for no reason. Regards, Anand I have a simple script: #!/bin/bash # index=0 total=0 names=() ip=() while read -r LINE do NODENAME=` echo $LINE | cut -f 1 -d ','` IP=` echo $LINE | cut -f 2 -d ','` names[index]="$NODENAME" ip[index]="$IP" index=`expr index+1` total=`expr total+1` done <<< $(cat list.txt) simple file: more list.txt name1,ip1 name2,ip2 name3,ip3 output when running: sh -x ./test_bash.sh + index=0 + total=0 + names=() + ip=() ++ cat list.txt + read -r LINE ++ echo name1,ip1 name2,ip2 name3,ip3 ++ cut -f 1 -d , + NODENAME=name1 ++ echo name1,ip1 name2,ip2 name3,ip3 ++ cut -f 2 -d , + IP='ip1 name2' + names[index]=name1 + ip[index]='ip1 name2' ++ expr index+1 + index=index+1 ++ expr total+1 + total=total+1 + read -r LINE + echo name1 name1 Question is why is it not reading one line at a time ? All I get is the first one. I'm just trying to build the array of the items in the file and then list them at this point. Thanks Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off Topic bash question
On 23/07/2020 15:46, Jerry Geis wrote: Hi Jerry, See below, inline, for some comments. I have a simple script: #!/bin/bash # index=0 total=0 names=() ip=() while read -r LINE do NODENAME=` echo $LINE | cut -f 1 -d ','` NODENAME=$(cut -d, -f1 <<< $LINE) Notes: use $( instead of backticks. There's no need to quote the comma. Write less and write concisely. IP=` echo $LINE | cut -f 2 -d ','` IP=$(cut -d, -f2 <<< $LINE) names[index]="$NODENAME" ip[index]="$IP" ip[$((index++))]="$IP" This allows you to use the variable index, and then increment it by one for the next cycle of the loop. index=`expr index+1` Not needed because of the post-increment (++) above. total=`expr total+1` ((total++)) done <<< $(cat list.txt) done < list.txt The "<<<" operator does all manner of expansion of the input and supplies it as a single line. That not what you want. Just redirect stdin from the file instead. simple file: more list.txt name1,ip1 name2,ip2 name3,ip3 output when running: sh -x ./test_bash.sh + index=0 + total=0 + names=() + ip=() ++ cat list.txt + read -r LINE ++ echo name1,ip1 name2,ip2 name3,ip3 This is happening because of the <<< operator. ++ cut -f 1 -d , + NODENAME=name1 ++ echo name1,ip1 name2,ip2 name3,ip3 ++ cut -f 2 -d , + IP='ip1 name2' + names[index]=name1 + ip[index]='ip1 name2' ++ expr index+1 + index=index+1 ++ expr total+1 + total=total+1 + read -r LINE + echo name1 name1 Question is why is it not reading one line at a time ? All I get is the first one. I'm just trying to build the array of the items in the file and then list them at this point. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Unable to find the used space
Hi Sachchidanand, On Unix-like operating systems, if a process has a file open, and you delete the file, it will not be removed from disk immediately. That will only happen when the process closes the file descriptor, or exits. People new to Unix-like operating systems often don't know this. So you may have one or more such files on your / partition. Install a utility called "lsof", run "lsof -n" as root, and grep the output for the word "deleted", and examine those files, and see which processes are holding them open. Then either restart those processes, or reboot the server. Regards, Anand Buddhdev On 29/06/2020 11:51, Sachchidanand Upadhyay via CentOS wrote: Hi, While checking with df -h, it's showing the used space is 94% on root (/). If checked with du -sh, it's not showing the used space. # df -h Filesystem Size Used Avail Use% Mounted on devtmpfs 7.8G 0 7.8G 0% /dev tmpfs 7.8G 0 7.8G 0% /dev/shm tmpfs 7.8G 857M 7.0G 11% /run tmpfs 7.8G 0 7.8G 0% /sys/fs/cgroup /dev/mapper/centos-root 50G 47G 3.4G 94% / /dev/mapper/centos-home 241G 47G 195G 20% /var/log /dev/sda1 1014M 189M 826M 19% /boot tmpfs 1.6G 0 1.6G 0% /run/user/0 tmpfs 1.6G 0 1.6G 0% /run/user/1002 # du -sh /* 0 /bin 156M /boot 0 /dev 33M /etc 388K /home 0 /lib 0 /lib64 0 /media 0 /mnt 0 /opt du: cannot access ‘/proc/21489/task/21489/fd/4’: No such file or directory du: cannot access ‘/proc/21489/task/21489/fdinfo/4’: No such file or directory du: cannot access ‘/proc/21489/fd/4’: No such file or directory du: cannot access ‘/proc/21489/fdinfo/4’: No such file or directory 0 /proc 6.1M /root 857M /run 0 /sbin 0 /srv 0 /sys 0 /tmp 2.8G /usr 62G /var # du -sh /var/* 0 /var/adm 89M /var/cache 0 /var/crash 8.0K /var/db 0 /var/empty 0 /var/games 0 /var/gopher 0 /var/kerberos 16G /var/lib 0 /var/local 0 /var/lock 47G /var/log 0 /var/mail 0 /var/nis 0 /var/opt 0 /var/preserve 0 /var/run 98M /var/spool 0 /var/tmp 499M /var/www 0 /var/yp How can i find this hidden space? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for ideas about how to create a constant data stream
On 30/05/2020 12:32, h...@gc-24.de wrote: Hi hw, I'm looking for a good way to create a constant data stream that will occupy a bandwidth of about 2--5Mbit/sec between two remote hosts over the internet. I have full access to the hosts involved. My first attempt to use scp to copy data from /dev/null on host A to /dev/null on host B, but scp says '/dev/null: not a regular file'. If something like that would work, I would be able to limit the bandwidth of this transfer in the router(s) involved so that it won't occupy all the bandwidth. You can't read from /dev/null. You get nothing from it. You're better off using /dev/random, for example. That will give you a continuous stream of random bytes. However, that's not the focus of this. You want a sustain a stream of packets between two hosts. You're better off using UDP for this. And a good tool for generating such packets would be "iperf". It can measure bandwidth between two nodes more accurately. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Chrony
On 08/05/2020 13:46, Jerry Geis wrote: Hi Jerry, I just happened to notice this morning in /var/log/messages: chronyd[1299]: Selected source 207.244.103.95 host 207.244.103.95 95.103.244.207.in-addr.arpa domain name pointer dns-e.wdc-us.hosts.301-moved.de. Just curious why my machine in Indiana (USA) is asking for time in Germany. Wouldn't it use something closer ? Lesson #1: do NOT take PTR records at face value. They can be wrong. Lesson #2: in this case, look again. The company may be German, but the host chrony selected appears to be in the USA (wdc-us). If you look up this IP address in RIPE NCC RIPEStat service, you'll see that it also geolocates to USA: https://stat.ripe.net/207.244.103.95 Geolocation isn't perfect either, but the combination of "wdc-us", the Geolocation data, the fact that this IP address block was allocated by ARIN, and that your chrony selected it, all point to the fact the NTP server is in fact, close to you. Regards, Anand Buddhdev ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Netfilter fails to filter traffic from a netblock?
On 19/04/2020 15:30, Jeffrey Walton wrote: > Ugh, thanks. I did not realize the changes were only temporary. > > What is the recommended way to permanently add a ban rule? On CentOS 7, the default firewall is "firewalld", and you can configure it with "firewall-cmd". You can use it to add temporary or permanent rules. You can read the man page of that to learn how to view, add, modify or delete rules. Personally though, I find firewalld to be cumbersome, so I remove it completely, and installed instead "iptables-services". yum erase firewalld yum install iptables-services Then, after adding your iptables rule(s), run: iptables-save > /etc/sysconfig/iptables ip6tables-save > /etc/sysconfig/ip6tables They'll be applied at boot. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Netfilter fails to filter traffic from a netblock?
On 19/04/2020 14:58, Jeffrey Walton wrote: Hi Jeffrey, > The offending host is 59.64.129.175. To err on the side of caution we > attempted to block the entire netblock. According to whois data, > that's 59.64.128.0-59.64.159.255. > > iptables -A INPUT -s 59.64.128.0/19 -p TCP -j DROP > > After reboot cpu usage is still high and access_log still shows > useless requests from the host: Did you actually arrange for your iptables rule to be reinstated at boot? If you just configure a rule as above, but don't save it, it will disappear ar reboot. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] From network-scripts to NetworkManager on a router : questions
On 18/02/2020 16:37, Nicolas Kovacs wrote: > I can't do that anymore, because /etc/resolv.conf gets squashed by > NetworkManager. If I don't fill in DNS information for the interfaces, > then all I get is an empty "#Generated by NetworkManager" line. Oh yes. Are you still sure you want to use NetworkManager? It's a pain! > On the other hand, using nmtui, the only place where I can actually fill > in DNS information is in the interface-specific dialogs. > > After googling around for this problem, it looks like I'm not the only > one scratching my head. > > Any suggestions ? Yes. Do this: # cat >/etc/NetworkManager/conf.d/dns.conf
Re: [CentOS] From network-scripts to NetworkManager on a router : questions
On 18/02/2020 12:00, Nicolas Kovacs wrote: Hi Nicolas, > I'm using NetworkManager TUI (nmtui) to configure my connections. I'm > defining two profiles WAN (enp1s0) and LAN (enp2s0). With NetworkManager > I have to configure gateway and DNS information on a per-interface basis. > > 1. Which interface should have the gateway information ? The WAN interface. > 2. In a similar manner, which interface should have the DNS server > information ? Neither. The DNS configuration should not normally be bound to a specific interface, so don't configure it with any interface. If you do, and that interface goes down, your DNS config also disappears. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NetworkManager on servers
On 09/02/2020 23:55, Nicolas Kovacs wrote: Hi Nicolas, [snip] > Maybe there's a reason to make NetworkManager more or less mandatory > from now on, but I don't see it. So I thought I'd rather ask on this list. Like you, I read about NetworkManager becoming the default tool for CentOS 8. So I sat down with a colleague to figure out how we could use NetworkManager, and convert our existing network configs (on CentOS 6 and 7) to work with NetworkManager. I'm sad to report that we ran into at least 3 issues (listed below). We found solutions to the first two, but the last one was a show-stopper, and we came to the conclusion that for servers, NetworkManager is still overkill, and for us, actually unusable. So even on CentOS 8, we will keep using the legacy scripts. 1. When NetworkManager activates interfaces, it does not wait for IPv6 DAD to complete. This makes systemd reach the "network-online" target before IPv6 is fully initialised, and some daemons fail to start. We eventually found a work-around, but not before I'd lost some of my hair. 2. NetworkManager doesn't know how to activate dummy interfaces from ifcfg-dummy* files. You have to create dummy interfaces directly in NetworkManager. This is not a problem on CentOS 8, but on CentOS 7, there is a subtle issue with loading the dummy module that makes things fail at boot. We again found the solution, but it's annoying that none of it was documented. 3. Some of our servers run full routing daemons (BIRD), and have multiple route tables. On these, when we start NetworkManager, it attempts to read the entire route tables into memory using the netlink API. This makes it log lots of errors. Then, NetworkManager's RAM usage goes up and up, going to over 3 GB!! Finally, it barfs and dies. And then systemd starts it again, and it goes and does the same. We have NOT been able to find any solution to this stupidity of NetworkManager. And so we have made the choice to abandon it, and remain with legacy network scripts. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 8 creates /boot with ext4
I just installed CentOS 8 in a VirtualBox VM, to explore it. Immediately, I noticed something strange. I insatlled it using a kickstart file, whose partitioning section is this: zerombr clearpart --all --initlabel reqpart --add-boot part pv.01 --ondisk=/dev/sda --size=1 --grow volgroup vg01 pv.01 logvol / --name=lv_root --vgname=vg01 --size=1 --grow bootloader --driveorder=sda On CentOS 7, this resulted in an XFS-formatted /boot filesystem. In CentOS 8, this created an EXT4-formatted /boot filesystem. I looked through RHEL 8's release notes and other documentation, but could not find any place that mentions this change. Does anyone know if this is deliberate, or a bug of some kind? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7.6.1810 UEFI/Shim issue .. feedback wanted !
Hi Fabian, I was affected by this. After an update, one Dell R710 server that I maintain, failed to boot. The error I saw was the same as someone else who also posted here. I didn't know how to fix it, and needed the server to be running, so I just reinstalled it, and switched to biosboot while at it. Fortunately, this was a backup server, so the impact was low. It has a production counterpart, but I don't dare update it, and I cannot risk it failing to boot after an update. Regards, Anand On 06/12/2018 10:44, Fabian Arrotin wrote: > > We got some reports from people unable to reboot their nodes after > updating to 7.6.1810, and basically to newer shim (v15). > It seems to affect only nodes in UEFI mode, but without SecureBoot. > > We wrote that in the ReleaseNotes, including a link to the bug report : > https://bugs.centos.org/view.php?id=15522 > > We have now a workaround in that bug report, and also a new interim > build (not signed by Microsoft yet) but we need feedback , as the only > node on which I could test this myself is my old 2008 iMac computer .. :-( > > Once we'll have enough positive (but also negative) feedback about this > new build, we'll be able to send to Microsoft for signing and so > consider that bug closed. Worth also noticing that if we can have that > ready in the updates, we'll be able to spin a monthly iso that will then > work on such uefi nodes too. > > Kind Regards, > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CONFIG_RTC_SYSTOHC not set for CentOS kernels
On 15/11/2018 18:09, Phil Perry wrote: Hi Phil, >> Does anyone know why this option is not enabled for CentOS kernels? > > Because it is not enabled on RHEL kernels. Heh, okay, that's an easy explanation. I'll try to open a bug report in RedHat's bugzilla, and see if they give me any attention. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CONFIG_RTC_SYSTOHC not set for CentOS kernels
Hi folks, RHEL 7 documentation says that if either ntp or chrony is running on a system, then it will enable the kernel feature to sync system time to the hardware clock every 11 minutes. This needs the CONFIG_RTC_SYSTOHC option to be set. However, it looks like this option is not set for CentOS kernels: # fgrep CONFIG_RTC_SYSTOHC /boot/config-3.10.0-862.14.4.el7.x86_64 # CONFIG_RTC_SYSTOHC is not set This explains why on some of our servers, the hardware clock is out of sync with the system time. Does anyone know why this option is not enabled for CentOS kernels? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL 7.6 released
On 31/10/2018 06:47, Turritopsis Dohrnii Teo En Ming wrote: > I am eagerly waiting to download CentOS 7.6 as well. I am still > seeing CentOS 7.5 on CentOS download mirrors in my region, Singapore. It'll take some time for CentOS to rebuild all the packages, probably 4-6 weeks. You'll have to be a bit more patient :) Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Issue with latest update of CentOS6
Earlier today, at 16:00 UTC, a new key was used to sign the root zone DNSKEY RRset. It's a major event in the DNS world, that you appear to have missed completely: https://www.icann.org/resources/pages/ksk-rollover You'll probably need to load the new trust anchor into your validating resolvers. Regards, Anand On 11/10/2018 22:07, Walter H. wrote: > Hello, > > after I did update all my CentOS6 boxes - VMs and router; two of them > (one VM and the router) are my local DNS resolvers; > and I'm using the DNSSECTLSAvalidator plugin from nic.cz: > https://www.dnssec-validator.cz/ > > before the update this plugin worked using my resolvers, after the > update I get: > "Failure - bogus DNSSEC reply, DNSSEC validation not possible with > current settings" > of course, when telling using a custom resolver (the one of nic.cz) it > works, but before mine worked, too ... > > Thanks, > Walter > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Need help with Linux networking interfaces and NIC bonding
On 04/10/2018 07:44, Sean Son wrote: Hi Sean, [snip] > 1) Whenever I ping any of the devices on our network, from this server, the > traffic goes out from the management port. I do not want the traffic to go > out of the management port. I want it to go out through the active port of > the NIC bond. How do I configure the networking so that all primary > network traffic flows to and from the NIC bonded interfaces? I only want > the management port to be used for SSH purposes and well, management of the > server. When the server *originates* traffic, it will use the main routing table, and that's why traffic goes out of em1. There's no rule telling the server that when the traffic is initiated by the server, it must consult a different routing table, t1. One way to ensure that all the monitoring traffic goes through bond0, is to configure every service with an explicit source address. However, some services allow this, and some don't, so this quickly becomes cumbersome. What you probably want to do is to invert your rules and routes, so that the bond0 interface is in the main table, and you put your management interface, em1, into another table (t1). Then, when you ssh into the server, it will use em1, but all other traffic will use bond0 by default. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple bash question
On 28/09/2018 15:39, Jerry Geis wrote: > I am calling a bash script and passing in somestring that includes a "$" > > myscript "$plusmore" > > I want to assign in the myscript the $1 arg to something like > MYTEXT="$1" > > when I do that I dont get what I'm expecting. if I do > MYTEXT='$1' > I still dont get what I'm expecting. > > On the first assignment of MYTEXT I do not want the "$" to be treated as a > shell variable. I cannot find out how to do that. > > I do not have the option of escaping the call to myscipt "\$plusmore". I > cannot do that. > > What am I missing. You MUST escape the $ in plusmore. If you don't, the calling shell will try to expand it, and replace it with whatever is in that variable. If it's not defined, you'll get an empty string. All this happens *before* myscript is even called. I'll add that escaping the $ can be done in other ways. Instead of a backslash, you can also do: myscript '$plusmore' Single quotes prevent variable expansion. However, if you are simply unable to quote $plusmore in some way, then you're stuck. Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bash question
On 06/07/2018 15:18, Jerry Geis wrote: > MSG="file 2" > MSG="csv \"$MSG\"" > echo $MSG > /opt/libreoffice5.4/program/soffice.bin --headless --convert-to $MSG This is a really convoluted way of doing things, and you'd have to be a super expert in quoting to get this right. Instead, why don't you just have 2 variables, and pass them both, eg: MSG=csv FILENAME="my file with spaces" /path/to/soffice.bin --headless --convert-to "$MSG" "$FILENAME" Remember to quote both variables, so that if they have any spaces, the spaces are not accidentally seen as parameter separators, and instead get passed to the soffice.bin program. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] upgrade 7.4 --> 7.5: dbus broken
On 05/07/2018 14:18, Jonathan Billings wrote: > The /var/run symlink to /run is part of the 'filesystem' package, and > has existed as a symlink since 7.0.1406 was released: > > $ rpmls -l > http://vault.centos.org/7.0.1406/os/x86_64/Packages/filesystem-3.2-18.el7.x86_64.rpm > |grep /var/run > lrwxrwxrwx root root /var/run I've never seen "rpmls". Is it an actual command, or your personal alias? I would have done: rpm -qlvp http://vault.centos.org/7.0.1406/os/x86_64/Packages/filesystem-3.2-18.el7.x86_64.rpm |grep /var/run Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kernel-lt from ELRepo vs. GRUB: define default boot kernel
On 16/05/2018 12:10, Nicolas Kovacs wrote: Bonjour Nicolas! > So right now I have two kernels on my machine, the 4.4.129 and the > 4.4.131. How do I configure GRUB so that on the next reboot, it defaults > to the 4.4.131 kernel? I knew how to do this with LILO under Slackware, > but GRUB is a very different beast. The easiest way is to use the "grubby" tool to set your default kernel. Look at the man page of grubby for details. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] /var/run/... being deleted :((
On 13/10/2017 18:45, Lamar Owen wrote: Hi Lamar, [snip] I do appreciate your humour :) > Anyway, a form of pseudo-persistence that meets the OP's needs is > already supported directly by systemd-tmpfiles, which is a part of the > core systemd package and non-optional, so your vehement disagreement is > moot, sorry. The round hole already has a square-peg adapter, at least > in CentOS 7. Packagers just need to select the proper 'adapter' for > systemd-tmpfiles; the adaptation is not (and should not be, in my > opinion) automatic. systemd-tmpfiles is not a hack, nor is it an adaptor. It's a core part of systemd, and is meant to be used as has been described many times in this thread. What I am very much against are the various suggestions to save /var/run on shutdown and restore it, or other pseudo packages to do similar stuff. None of that is needed. systemd-tmpfiles is the correct and only way to create files and directories in /var/run (and any other place) as needed. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] /var/run/... being deleted :((
On 13/10/2017 16:02, Michael Hennebry wrote: Hi Michael, > I see at least two possible intermediate results: > The RHEL 7 folks do something, perhaps make a package, > to make pseudo-persistence super easy to get. > The RHEL 7 folks do something, perhaps make a package, > to allow users to fix this particular problem, e.g. > by adding pseudo-persisitence for a file used by a package. I disagree vehemently. Please STOP giving any advice or making any suggestions along the lines of persisting /var/run. It *is* meant to be volatile. Anyone who is packaging an application for CentOS 7 must realise this, and package their application accordingly. NO OTHER SOLUTION is acceptable. Folks, please stop giving bad advice or suggesting horrible hacks. Stop trying to force a square peg into a round hole. Cheers, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to prevent files and directories from being deleted?
On 09/10/2017 13:54, hw wrote: Mark, > It is quite obvious that Centos causes issues because it is not > following the FHS. Stop right there. CentOS *is* following the FHS. Can you please stop this whiny complaint against CentOS, and just accept that the packages you're using are not properly packaged for CentOS 7? Then, if you still wish to use them, then apply fixes as I have suggested, and also file bug reports. You entire basis, by claiming that CentOS is not following the FHS, is wrong. Now stop propagating it. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to prevent files and directories from being deleted?
On 09/10/2017 12:38, hw wrote: >> 4. Finally, if you as a sysadmin are using a package from a repo that >> isn't CentOS or EPEL, and this package is not following the CentOS >> packaging protocol for data in /run, then it is YOUR own responsibility >> to fix the package, or create your own tmpfiles.d snippet to create the >> required directories. > > Lighttpd is from epel. Then it's a big bug, and you should immediately file a bug report for it, so that the packager can fix it. Packages in CentOS as well as EPEL aren't perfect, and sometimes need to be fixed. We can help by filing bug reports. > I´m not whining, and it´s not my fault that someone came up with the > extremely stupid idea to use a ramdisk for /var/run. It´s also not my > fault that lighttpd appears not to be packaged the way it would need to > be, and the same goes for the mariadb packages provided for Centos by > the mariadb people. CentOS 7 was released in August 2015, which is over 2 years ago. Any package that hasn't adapted to CentOS 7's temporary /var/run by now is badly broken. I would either avoid using it, or file a bug report for it (and use my own tmpfiles.d file in the meantime). Or, you can download the SRPM of the package, introduce a tmpfiles.d snippet and rebuild the package yourself. You have many choices to make it work properly. > Perhaps you should complain to whomever made this change for not waiting > until all packages have been modified and to the package managers who > didn´t modify them before actually deploying it, for not to mention the > stupidity of the idea, rather than accusing me of whining. I shouldn't, because I'm not using the package in question. I *have* used other packages from EPEL, where I've seen this problem, and I've filed bug reports for them, repackaged them myself, or used my own custom tmpfiles.d file to work around the package's deficiency. Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to prevent files and directories from being deleted?
On 05/10/2017 11:32, hw wrote: >> That directory isn't temporary. The files almost always are, but not >> the directories. As I said, whatever it is you're doing, it's wrong. >> I wouldn't continue to keep a setup like that as it's not standard >> practice to keep data in /var/run that isn't temporary. > > Well, what am I supposed to do? The socket (or what it was) needs to be > put somewhere, and IIRC, it wasn´t my choice to put it there but is a > default. With mariadb, there are some defaults you can´t reasonably > change because other software expects files where they usually are. And > I don´t want to change that, I just want mariadb and lighttpd and other > things to start on reboots rather than being broken because someone > decided that files/directories they require are to be deleted on reboots > before they can start. I can't believe people are still asking this question after being given appropriate advice. So let me repeat it, and don't ask again unless you've read this properly: 1. /var/run is a symlink to /run, which is a tmpfs mounted in RAM. 2. At reboot, /run vanishes, and EVERYTHING that was in it, vanishes with it. 3. For this reason, systemd ships with a utility called systemd-tmpfiles, which is run early in the boot process, to create any appropriate files and directories in /run. Packages that require directories to be present in /run (for keeping PID files or sockets), should ship with the appropriate tmpfiles.d snippets to have these directories created for them on boot. 4. Finally, if you as a sysadmin are using a package from a repo that isn't CentOS or EPEL, and this package is not following the CentOS packaging protocol for data in /run, then it is YOUR own responsibility to fix the package, or create your own tmpfiles.d snippet to create the required directories. 5. Learn about systemd-tmpfiles by reading the man pages of "systemd-tmpfiles" and "tmpfiles.d". This is as clear as crystal. If, despite this instruction, you cannot, or do not want to work with CentOS as it was intended, then stop whining about things here. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to prevent files and directories from being deleted?
On 04/10/2017 10:58, Gary Stainburn wrote: > On Wednesday 04 October 2017 09:53:59 Gary Stainburn wrote: >> I saw reference to system-tmpfs in Paul's post so I had a quick look. YUM >> doesn't seem to know about it, but I'm sure Google will help. > > Sorry, meant systemd-tmpfiles On a CentOS 7 system, do: man systemd-tmpfiles man tmpfiles.d Those 2 manpages together explain everything you need to know about creating temporary files and directories in /run at boot time. If you search google, you'll probably end up at online versions of those same man pages. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to prevent files and directories from being deleted?
On 04/10/2017 10:23, Gary Stainburn wrote: Hi Gary, > Mark, Many Non-Centos originated packages create directories in /var/run as > part of the install, and expect them to still exist after a reboot. Those packages have been built poorly. > They then fail when starting the service because they're trying to create a > PID / Lock file in a directory that no longer exists. This problem has been > around ever since /var/run was moved to tmpfs. Yes, and those packages should know how to work with CentOS 7. > Unfortunately, sometimes we have to use packages other than the official > Centos ones, usually as in this case because we need newer versions. Sure, that can be. > There is a solution that saves /var/run to disk at shutdown and restores it > at > bootup but I can't remember what it is. There's no need to do that (and it's also messy). Instead, if a package needs a directory to exist in /var/run, then create your own config for systemd-tmpfiles, and drop it into /etc/systemd/tmpfiles.d. Work with CentOS 7, instead of fighting with it. Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] BIND 9.9 RRL
On 10/08/2017 21:00, Mark Haney wrote: > I can't seem to find anything clear on this, but is the C7 version of > BIND 9.9 built with Request Rate Limiting? Run "named -V" and it will output the features it was compiled with. See if RRL is in there. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] yum install does not downgrade
On 01/06/2017 22:29, Tate Belden wrote: > Use the 'downgrade' option. Thanks Tate. I know the "downgrade" option well. I wouldn't have posted my question if it were that simple. As I said previously, we use ansible, and its "yum" module invokes: yum install package-version-release I expect yum to honour this, and downgrade a package if necessary, but it's not doing that. Given the lack of opinions here, I'll file a bugzilla report and see what the maintainers say. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] yum install does not downgrade
We're using ansible to configure our CentOS 6 servers, and we have a task to install a specific version of a package: - name: install thrift2 yum: name=ripencc-thrift2-{{ version }} In this ansible task, the "version" variable is set by the operator. When we want to upgrade, it works. But today we had to downgrade, and noticed that ansible wasn't downgrading it. So we tried by hand (the installed version was 1.0.8): # yum install ripencc-thrift2-1.0.3 I don't have the output handy, because a colleague was working on it, but basically, yum said something like "package already installed" and refused to downgrade it, even though the package is in our repository. I have a strong sense that yum _used to_ downgrade packages if asked to install an older version, but perhaps I am misremembering. Nevertheless, I want to ask: is this a bug in yum? If asked to install a specific version, should it not upgrade OR downgrade as needed? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Hint for nslookup wanted ...
On 11/10/16 15:23, Richard Mann wrote: > Did your google break? > > For just IPv6 > nslookup -type= www.example.com > > For all records > nslookup -type=any www.example.com This is bad advice, because in DNS, ANY != ALL If you query with qtype=any, and you ask a caching resolver, then it will return to you all the records that are in its cache at that time, which may or may not include the records you want. In order to definitively get the A as well as the records, one needs to ask for them specifically: nslookup -type= www.example.com nslookup -type=A www.example.com This makes a cache explicitly look up those types of records if it doesn't already have them. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Loaded: not-found (Reason: No such file or directory)
On 29/08/16 13:07, Kaushal Shriyan wrote: Hi Kaushal, > I am seeing the below issue. > > [user~]# systemctl list-unit-files | grep nrpe > [user~]# service nrpe status > Redirecting to /bin/systemctl status nrpe.service > ● nrpe.service > * Loaded: not-found (Reason: No such file or directory)* >Active: inactive (dead) > [user~]# rpm -qa | grep nrpe > nrpe-3.0-1.x86_64 > nrpe-plugin-3.0-1.x86_64 It may be that the nrpe.service unit file was deleted by someone. Can you check if it exists in the expected location (/usr/lib/systemd/system)? You can also verify if your packages are properly installed, by doing: rpm -V nrpe If that shows some files missing (such as the systemd unit file), then you're best of reinstalling nrpe with: yum reinstall nrpe Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] BIND (named) as secondary and .jnl files
On 28/08/16 19:42, Walter H. wrote: Hi Walter, > I have two running BINDs in my LAN, one on my router box and one as VM; > both are caching DNS servers, and a few zones are on both, on the box as > master and on the VM as slave, > but how can I cleanup/flush the growing .jnl files; By default, BIND places no limit on journal files, so they keep growing. To limit their size, add this to the "options" section of the configuration: max-journal-size 10m; You will probably need to flush the zones, stop BIND, remove the large journals, and then start BIND again. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] tcpdump loses lots of packets
On 14/08/16 12:20, Anand Buddhdev wrote: Hi folks, I've discovered something. See below: > The packet rate is also not that high. From the sending side, this is > what I have: > > # tcpreplay -i qtx:p1p1 5min.pcap If I send packets without qtx, like this: tcpreplay -i p1p1 5min.pcap then tcpdump on the receiving box has no problem, and keeps up happily with the queries, and receives all of them into the pcap file. It seems like the qtx module is somehow interfering with the packet capture, but I don't know how or why yet. Anyway, for low packet rates, such as 20,000 q/s, qtx isn't necessary, so I will not use it when I want to do packet captures. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] tcpdump loses lots of packets
Hi folks, I've got a Dell R320 running CentOS 7, and a 10G NIC. I'm running a DNS server on it, for testing. As part of my testing, I'm attempting to capture all the DNS queries arriving on the server, using tcpdump. However, tcpdump's performance is abysmal, and it loses lots of the packets. Here's the output when I stop the capture: # tcpdump -nn -i p1p1 -w /dev/shm/queries.pcap -B 65536 dst host 193.0.14.129 tcpdump: listening on p1p1, link-type EN10MB (Ethernet), capture size 65535 bytes ^C4096558 packets captured 6882162 packets received by filter 2785604 packets dropped by kernel The number 6882162 is exactly the number of DNS queries I am sending from another server (the source). The filter is seeing them. However, not all of them make it into the pcap file. First I was writing to the disk, and thought it might be a bottleneck, so I tried to write to /dev/shm. You'll see I've also increased the buffer size with -B, but none of this helps. The packet rate is also not that high. From the sending side, this is what I have: # tcpreplay -i qtx:p1p1 5min.pcap Actual: 6882162 packets (62054 bytes) sent in 317.08 seconds. Rated: 1951900.0 Bps, 15.61 Mbps, 21648.97 pps Flows: 4254416 flows, 13382.96 fps, 6882162 flow packets, 0 non-flow This is a very modest rate. Any ideas why tcpdump loses so many packets? And how to make it do better? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] pam_sss fails to close cache files
Dear folks, After updating some of our servers to CentOS 6.8, we've noticed that the ones using pam_sss.so for authentication, appear to be suffering from a leak of sorts. On these systems, the /var partition is running out of disk space, and we eventually noticed that it's because of deleted, but still open files like these: httpd 1081apache8r REG 253,26406312 6199 /var/lib/sss/mc/group (deleted) sshd 1609 root3r REG 253,28406312 431 /var/lib/sss/mc/passwd (deleted) mysqld 2018 mysql4r REG 253,2 10406312 436 /var/lib/sss/mc/initgroups (deleted) Each time any process uses pam in some way, it's opening these cache files in /var/lib/sss/mc, but not closing them, and they're accumulating. The reason they're accumulating is that the initgroups, group and password file are frequently refreshed (by sssd), and so each open() call to them looks at a new file. We traced the sshd process, and noticed this: open("/var/lib/sss/mc/passwd", O_RDONLY|O_CLOEXEC) = 3 But there is no matching "close(3)" call anywhere (all other files opened have a matching close() system call). Has anyone else seen this issue, and does anyone know a quick solution to this? Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] RPM perl requirements woes
Dear CentOS hive mind, I'm trying to package up a perl module into an RPM for easy deployment. I want it to be as self-contained as possible (to avoid version issues with perl modules in base or EPEL). So in my spec file, I'm doing: curl -L http://cpanmin.us | perl - App::cpanminus -L %{buildroot}/opt/zonemaster Zonemaster This way, cpanminus is installed first, and then it goes on to install the module and all its dependencies. In the %files section, if I do: /opt/zonemaster the RPM is also neatly packaged up. However, trying to install this on another system causes errors: # yum install zonemaster-engine-1.0.13-1.el7.gii.x86_64.rpm ... ... elided ... ... Error: Package: zonemaster-engine-1.0.13-1.el7.gii.x86_64 (/zonemaster-engine-1.0.13-1.el7.gii.x86_64) Requires: perl(JSON::backportPP) Error: Package: zonemaster-engine-1.0.13-1.el7.gii.x86_64 (/zonemaster-engine-1.0.13-1.el7.gii.x86_64) Requires: perl(namespace::clean::_Util) Error: Package: zonemaster-engine-1.0.13-1.el7.gii.x86_64 (/zonemaster-engine-1.0.13-1.el7.gii.x86_64) Requires: perl(Moose::Conflicts) Now, JSON::backportPP and Moose::Conflicts are part of JSON and Moose, respectively. However, those specific modules hide themselves from /usr/lib/rpm/perl.prov, by doing this: package # hide from PAUSE Moose::Conflicts; and package # This is JSON::backportPP JSON::PP; This is annoying. Does anyone have any idea on how to fix this? Can I get away with manually adding: Provides: JSON::backportPP Moose::Conflicts to the spec file? It looks like an ugly hack to me. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] 7.2 installer says "/dev/root does not exist"
Hi folks, I have an existing CentOS 7.2 system, that I want to re-install. I copied /vmlinuz and /initrd.img into /boot, place my kickstart file into /boot, and created a grub2 menu entry for this, as follows: menuentry "Install CentOS 7" { insmod gzio insmod part_gpt insmod xfs set root=(hd0,2) linux /vmlinuz console=tty0 console=ttyS1,115200 inst.ks=hd:/dev/sda2/ks.cfg initrd /initrd.img } When I reboot and select this, the kernel boots, unpacks the initrd, and then exits with the warning "/dev/root" does not exist. What am I doing wrong? I thought this would be enough to get the installer to run and re-install the system from my kickstart file. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Discarding empty lines in rsyslog
On 29/02/16 15:59, Anand Buddhdev wrote: > This works. However, the program sometimes produces blank lines its > output, and they get logged by rsyslog as well. I want to make rsyslog > ignore empty lines. I am trying the following, but it doesn't work: > > if $programname == 'progname' and $msg != '\n' then /var/log/prog.log > > Does anyone know how to get this to work in rsyslog? This is rsyslog 5 > on CentOS 6. Well, no-one replied to it, but I eventually figured it out myself. Rsyslog converts an empty line (containing just a newline) into a message of one space, so the correct incantation is: if $programname == 'progname' and $msg != ' ' then /var/log/prog.log Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Discarding empty lines in rsyslog
Dear CentOS folk, I've been try to solve one issue with rsyslog on CentOS 6, but can't figure it out. I've searched through rsyslog documentation, and used Google but not found anything that matches my issue. I'm sending output of a program to rsyslog using "logger -t progname". I've got the following config snippet in /etc/rsyslog.d: $FileCreateMode 0644 if $programname == 'progname' then /var/log/prog.log & ~ This works. However, the program sometimes produces blank lines its output, and they get logged by rsyslog as well. I want to make rsyslog ignore empty lines. I am trying the following, but it doesn't work: if $programname == 'progname' and $msg != '\n' then /var/log/prog.log Does anyone know how to get this to work in rsyslog? This is rsyslog 5 on CentOS 6. Regards, Anand ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 7.2: Problem with upgrade and pdns
Hello Kai, I believe the PowerDNS package in EPEL 7 is currently broken. The PowerDNS twitter feed had this a few days ago: https://twitter.com/powerdns/status/692660687403925504 Please wait until after the weekend for updated packages. Regards, Anand On 30/01/16 14:12, Kai Bojens wrote: > Hello everybody, > I just wanted to upgrade my system and stepped over the following error: > > --> Finished Dependency Resolution > Error: Package: pdns-3.4.7-1.el7.x86_64 (@epel) >Requires: libmbedtls.so.9()(64bit) >Removing: mbedtls-1.3.14-1.el7.x86_64 (@epel) >libmbedtls.so.9()(64bit) >Updated By: mbedtls-2.2.1-1.el7.x86_64 (epel) > ~libmbedtls.so.10()(64bit) > Error: Package: pdns-tools-3.4.7-1.el7.x86_64 (@epel) >Requires: libmbedtls.so.9()(64bit) >Removing: mbedtls-1.3.14-1.el7.x86_64 (@epel) >libmbedtls.so.9()(64bit) >Updated By: mbedtls-2.2.1-1.el7.x86_64 (epel) > ~libmbedtls.so.10()(64bit) > You could try using --skip-broken to work around the problem > You could try running: rpm -Va --nofiles --nodigest > > Am I the only one with this problem? Any suggestions before I try the > proposed solutions? > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Old and new package version numbers during RPM update
On 28/06/15 03:06, Joseph L. Casale wrote: Hi Joseph, Well normal convention would be if you replace then the old one gets appended with .rpmsave, if you are not replacing then the new one gets appended with .rpmnew. I'm also aware of this, but it's not what I need :) On the other hand, check this out: https://www.redhat.com/promo/summit/2010/presentations/summit/opensource-for-it-leaders/thurs/pwaterma-2-rpm/RPM-ifying-System-Configurations.pdf This is a very interesting presentation. I had no idea about trigger scripts. I'm going to play around with them, and see if they can help me solve my case. Thank you for the link! Regards, Anand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Old and new package version numbers during RPM update
On 28/06/15 17:50, John R Pierce wrote: On 6/27/2015 5:38 PM, Anand Buddhdev wrote: Thanks Joseph. I am aware of this option, but it would be only a last resort, because checking the format of the config file is error-prone. why doesn't the config file have the version in it ? not having that makes your whole system error prone. Perhaps I wasn't clear. Version 1 of the package uses a config file that looks like this: system { setting1 value1; setting2 value2; } interfaces { iface1; iface2; } Version 2 of the package has switched to a YAML-based syntax, so the config file needs to look like this: system: setting1: value1 setting2: value2 So, I need to be able to program the RPM so that when upgrading from 1.x to 2.x, it triggers the conversion utility that converts from v1 to v2 format. Anand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Old and new package version numbers during RPM update
On 29/06/15 01:07, Kahlil Hodgson wrote: On 29 June 2015 at 07:37, John R Pierce pie...@hogranch.com wrote: so a regex looking for system: vs system { should nicely delineate these. I dunno, I might even put that into the conversion utility and have it just quit if the file is already in the new format, and always run it. +1 for the idempotent approach. IMHO much more robust. Also consider what will happen if someone does a 'yum downgrade' on the package or a dependency -- you might want to allow the conversion to go both ways or at least complain appropriately. Yep. I've already considered this approach, but I avoid regexes as much as possible. They're great for some work, but they can inadvertently match too much or fail (for example if the system keyword and the opening brace are on different lines). You see where I'm going? But, this is a digression... I also prefer an idempotent approach, and I'm already talking to the authors of this specific package (knot dns), about making their knot1to2 utility idempotent, so that it's always safe to run it. However, one problem is that nothing can handle downgrades. The v2 config format is a superset of the v1 format, and while not impossible, it's very hard to go back. There is no reverse knot2to1 utility. I'd like to thank everyone for the various suggestions. I'm going to place with them and see which one works out best. Finally, as an aside, I'd like to mention that upgrading my own systems is easy, because I have control over them. My motivation for asking this question was for making an EPEL package that can work for most people without breaking their installations (especially if they have unattended yum updates, like with yum-cron). Anand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Old and new package version numbers during RPM update
On 28/06/15 02:17, Joseph L. Casale wrote: Your script within the rpm should have the logic. Clearly if you know how to update it, you know how to identify if it needs updating. Thanks Joseph. I am aware of this option, but it would be only a last resort, because checking the format of the config file is error-prone. I would prefer RPM to tell me the old and new version numbers, so my question still stands. Regards, Anand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Old and new package version numbers during RPM update
Hi CentOS folk, In an RPM post-install script, is it possible to know the previous version number, and the new version number of a package if it's an update? I need to know this, because for a certain package, if updating from version 1.x to 2.x, I need to run a program to convert the config file of the package from version 1.x format to version 2.x format. I've looked at SPEC file documentation, but haven't found anything relevant. Regards, Anand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Static linking against glibc
I'm building an RPM of a DNS server called NSD on CentOS 4.4. I'm going to be using it for some heavy-duty DNS traffic, so I want to minimise its dependencies on external libraries. I have therefore attempted to link it statically. The package does build, and even runs fine. However, during the build process, gcc emits warnings like these: nsd.o(.text+0xfba): In function `main': : warning: Using 'getpwnam' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking My understanding of this is because glibc uses dlopen to load other shared objects at runtime. I therefore need a Requires: line in the RPM which requires glibc-2.3.4-2.36, or whatever version I used to build nsd. Now, what I want to ask is: if the version of glibc is upgraded to say 2.3.4-2.48, what happens? What do the numbers after the version number mean (2.48) and what effect will that have on packages which are statically linked against glibc? Another question which has occured to me is this: NSD also uses other libraries, such as openssl. Is there any way to know if any of the openssl libraries use dlopen to load in other shared objects? If they do, then it introduces dependencies that I may not be aware of, and doing static linking wouldn't be as beneficial as I first thought it would be. Comments from experienced developers will be most appreciated. -- Anand Buddhdev ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos