Re: [CentOS] where is glib-devl x86-64?
On Tue, Mar 21, 2023, Fred wrote: >that's what I thought at first, but there is no gimp-devel either >installed, or available. I have gimp installed on AlmaLinux 9 here which has RPMs: gimp-libs-2.99.8-3.el9.x86_64 gimp-2.99.8-3.el9.x86_64. I would look at the generated configure file and config.log to see what it's really looking for. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 PO Box 820 Fax:(206) 232-9186 Mercer Island, WA 98040-0820 Those who are too smart to engage in politics are punished by being governed by those who are dumber. -- Plato ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a RAID1 box
On Tue, Jan 03, 2023, Robert Moskowitz wrote: >Well what I am finding looks like it will be in the +80W range and I am >trying to use less electricity. I would put up with 40W, including drives. You might want to consider a Raspberry Pi 4 with 8GB RAM and a case that will support a couple of 2.5in SSD drives. I'm running one here with postfix, courier-imap, clamav, amavisd, ... Mine is in an Argon One case with single 2TB SSD with a PoE Splitter. It's running the same email software that we run on CentOS and AlmaLinux. Current uptime on out main mail server is 362 days. This case has space for 2 2.5in SSD drives. https://smile.amazon.com/Geekworm-Raspberry-Storage-Expansion-Compatible/dp/B07VXF2HJG Geekworm New NASPi Gemini Dual 2.5'' SATA HDD/SSD NAS Storage Kit with DC 6-18V Wide Voltage Input|Safe Shutdown|Auto Power On|RAID Function for Raspberry Pi 4 Model B(Not Include Raspberry Pi) ++ | Part Price | ++ |RPi4B 8GB $215.00 | |Case 70.00 | |2SSD 300.00 | ++ |Total $585.00 | ++ Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 Mercer Island, WA 98040 There has been no greater threat to life, liberty, and property throughout the ages than government. Even the most violent and brutal private individuals have been able to inflict only a mere fraction of the harm and destruction that have been caused by the use of power by political authorities. -- Richard Ebeling ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Raspberry Pi 4 and C++ 17
On Mon, Apr 25, 2022, Will wrote:
>On 4/25/2022 4:09 PM, Bill Campbell wrote:
>> On Mon, Apr 25, 2022, Will wrote:
>> > Hi,
>> >
>> > I have a program I want to run on a Raspberry PI 4 that was written on an
>> > x86_64 architecture. So I downloaded the Raspberry PI image of CentOS 7
>> > and
>> > now I'm on armv7hl. Unfortunately, there doesn't appear to be any devtools
>> > for arm at all. Is there an easy(ish) way to get c++ 17 this architecture?
>> What program do you want to run on the Pi 4?
>>
>> Bill
>It's something I wrote myself a few years ago that extensively uses
>std::filesystem.
Will,
Have you tried building on the current 64 bit Raspberry PI Linux?
My most recent install is running on an 8GB Pi 4+ in an Argon One M.2
case with 1TB SSD drive in a headless configuration. I've built
over 300 packages from sources for amavisd through zlib on the Pi.
These are all packages I've been using for decades going back to
Caldera Linux and most recently CentOS.
I've had to install quite a few development packages using apt-get
on the Pi. I could provide a complete list of installed packages
that could be used to quickly use apt-get install to pull in the
packages needed.
# dpkg-query -f '${binary:Package}\n' -W | sort > packages_list.txt
# comm -13 packages_list.txt mypackagelist > newpackages
# apt-get update
# apt-get install `cat newpackages`
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www2.celestial.com/ 6641 E. Mercer Way
Mobile: (206) 947-5591 PO Box 820
Fax:(206) 232-9186 Mercer Island, WA 98040-0820
...if it weren't for the the denial of common sense, most of our
public intellectuals would have nothing to do -- Tom Woods, Meltdown
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Raspberry Pi 4 and C++ 17
On Mon, Apr 25, 2022, Will wrote: >Hi, > >I have a program I want to run on a Raspberry PI 4 that was written on an >x86_64 architecture. So I downloaded the Raspberry PI image of CentOS 7 and >now I'm on armv7hl. Unfortunately, there doesn't appear to be any devtools >for arm at all. Is there an easy(ish) way to get c++ 17 this architecture? What program do you want to run on the Pi 4? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 PO Box 820 Fax:(206) 232-9186 Mercer Island, WA 98040-0820 Instead of giving money to found colleges to promote learning, why don't they pass a constitutional amendment prohibiting anybody from learning anything? If it works as good as the Prohibition one did, why, in five years we would have the smartest race of people on earth. -- The Best of Will Rogers ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 8 on Macbook
On Thu, Jan 30, 2020, david wrote: >Folks > >I am trying to install Centos 8.1 on a MacBook Pro. I have a bootable USB >stick with centos-8.1-boot (which I think is the equivalent of a netinstall), >and it boots. However, when I select the storage option, and choose to make >more space on the SSD, go through the confirming dialogs, the installer >complains that it was unable to save the information to the disk. A similar >attempt using Centos-7 netinstall successfully rewrites the SSD. This >failure also occurs when I boot the Centos-8.1-dvd. > >Is there something else I should be doing? I would try this using VMWare Fusion. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 PO Box 820 Fax:(206) 232-9186 Mercer Island, WA 98040-0820 A society of sheep must in time beget a government of wolves. -- Bertrand de Jouvenel ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] tabs ignored in here document
On Fri, May 05, 2017, Robert Moskowitz wrote: >I thought this worked. Many web pages tell you it works. But bash is >ignoring tabs in my here docs. Worst, where there are two tabs, it is >functioning as a command expand in bash, where all files in the current >directory are listed to complete the command. > I suspect that the shell is attempting to expand the '*' character. You need to escape the delimiter with a backslash to keep the shell from expanding: cat <<\EOF > 00-init.conf ... ... EOF >cat <00-init.conf || exit 1 >ServerAdmin $admin_email >ServerName $your_host_tld > > >Options Indexes FollowSymLinks >AllowOverride None >Require all granted > > > >SSLEngine On >SSLCertificateFile /etc/pki/tls/certs/$your_host_tld.crt >SSLCertificateKeyFile /etc/pki/tls/private/$your_host_tld.key > >Options Indexes FollowSymLinks >AllowOverride None >Require all granted > > >EOF > >thanks > >___ >CentOS mailing list >CentOS@centos.org >https://lists.centos.org/mailman/listinfo/centos > -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The ultimate result of shielding men from the effects of folly is to fill the world with fools. -- Herbert Spencer (1891) ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Replacing Venerable NAS
We're using Synology boxes with good results so far. They're built on Linux with ssh access and good support for things like rsync. They have options to backup to remote servers including Amazon too. On Wed, Nov 18, 2015, Tim Evans wrote: > I have an original-label Infrant (now NetGear) ReadyNAS storage > appliance that's been running for 8+ years. Except for replacing its > power supply, it has not skipped a beat in all this time. > > I use it primarily as a backup device (via NFS) for a couple of Linux > machines, (via SMB) for a couple of Windows PC's, and (via ftp) for web > sites at my hosting provider. > > SMART+ reporting shows ~75K hours operation, with zero sectors > reallocated, on each of the four disks. > > I'm thinking I should be looking for a replacement, even with all this > good info/luck. > > Would like to hear recommendations here. Besides the ReadyNAS, I have > worked with a Thecus NAS (don't recall model). What are the features I > should look at? > > Thanks. > -- > Tim Evans |5 Chestnut Court > 443-394-3864 |Owings Mills, MD 21117 > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If you think health care is expensive now, wait until you see what it coses when it's free -- P.J. O'Rourke ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Extracting Subject Lines from IMAP Mailbox
On Mon, Feb 16, 2015, Nux! wrote:
http://sourceforge.net/projects/imaputils/files/ ?
I guess you'll at least need to download and parse the email headers.
I do this sort of thing with Python and its 'imaplib'
Something like this will return a list of all unseen messages in
the security folder where Subject contains 'Sec-Blocked'.
import imaplib
conn = imaplib.IMAP4('example.com')
c, d = conn.login('username', 'password')
c, n = conn.select('INBOX.security')
c, s = conn.uid('search', None, '(UNSEEN HEADER SUBJECT Sec-Blocked)')
msgnumbers = s[0].split()
unseenUIDs = set(msgnumbers) # using set for later manipulations
for uid in sorted(unseenUIDs)
# do something for each uid
# done
HTH
Lucian
--
Sent from the Delta quadrant using Borg technology!
Nux!
www.nux.ro
- Original Message -
From: Tim Evans tkev...@tkevans.com
To: CentOS mailing list centos@centos.org
Sent: Monday, 16 February, 2015 18:50:31
Subject: [CentOS] OT: Extracting Subject Lines from IMAP Mailbox
Looking for a command-line way to extract only the Subject lines from my
mailbox on my ISP's IMAP server, without actually downloading/modifying
the contents of the mailbox. Sort of the remote equivalent of locally
doing:
$ grep ^Subject /var/spool/mail/mymailbox subjectlistfile
Thanks.
--
Tim Evans| 5 Chestnut Court
UNIX System Admin Consulting | Owings Mills, MD 21117
http://www.tkevans.com/ | 443-394-3864
tkev...@tkevans.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
--
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
Voice: (206) 236-1676 Mercer Island, WA 98040-0820
Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792
politics, as a practice, whatever its professions, has always
been the systematic organization of hatreds. -- Henry Adams
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] C5 : Deleting un-deletable files ?
On Sun, Sep 14, 2014, Always Learning wrote: Thank you to Steven and to Valeri for an excellent idea. The fsck cured the problem. The problem files were removed by fsck during its recovery/rectification. The first thing you should do when you find files or directories is use 'lsattr' to check the attributes. In particular look for the 'i' attribute which marks the entry as immutable. A favorite trick of crackers is to put their own versions of commands such as /bin/ps, /bin/ls, /usr/bin/find, etc. to hide their activity. You can use the 'chattr' command to change the attributes with something like 'chattr -i /bin/ps' to remove immutable attribute. If there are multiple attributes shown by the 'lsattr' command, simply add them like 'chattr -iAs /bin/ps'. It also takes the -R option to run recursively through a directory. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The government is like a baby's alimentary canal, with a happy appetite at one end and no responsibility at the other. -- Ronald Reagan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT] OSX-10.9.3 cd ~'/ problem with spaces'
On Tue, Jun 03, 2014, James B. Byrne wrote: Apologies for this OT post. I need some help debugging a bash script. It just happens to be provided by Apple Inc. In a terminal session under OSX-10.9.3 I want do do this: cd ~/'Library/Application Support' Works for me on my OS X 10.8.5 Macbook Pro, xterm under xQuartz and under the Terminal.app. Which is a simple enough request. However, OSX returns: cd /users/byrnejb/Library/Application: No such file or directory. The space evidently acts as a delimiter to cd even though the path is quoted. However this: ls -l ~/'Library/Application Support' Perhaps you have 'cd' as an alias or a function which loses the quotes when passing to the real cd? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 For every subtle and complicated question, there is a perfectly simple and straightforward answer, which is wrong. -- H. L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mbox files - can they be compacted?
On Sun, Apr 13, 2014, Russell Miller wrote: On Apr 13, 2014, at 10:25 PM, Keith Keller kkel...@wombat.san-francisco.ca.us wrote: In the context of the OP, when mutt tries to deal with a message (e.g., deleting, moving to a folder), it can be boatloads faster, since handling the message works on a small file which contains just that message. Deleting a message from an mbox mailbox, for example, requires rewriting the entire changed mbox file to disk (minus the deleted message). Deleting a message from a Maildir mailbox is just removing one file from a directory. HOWEVER. When a directory grows too large, the OS can take a long time to seek through the directory, which can cause its own set of problems. And this makes cleaning out a maildir directory selectively a real pain. Maildir really could do with a hashing mechanism. We have been using Maildir with courier-imap for decades, and haven't had an issue with this. My security folder typically has 25,000+ messages for the last 7 days messages, and accessing either with IMAP or directly with mutt isn't a problem. I have written various scripts over the years to convert from various mail storage formats ranging from SCO's horrible ctrl-a delimited through the U.W. IMAP, and ones that query other IMAP servers to convert their folder structures to local Maildir. Maildir is generally very easy to handle with standard *nix command line tools. We have moved mail servers for some regional ISPs by rsync'ing with tens of thousands of email customers by rsync'ing from the old server to the new one to get the bulk of the mail across before cutting over to the new machine. Then we shut the old server down, change the DNS to point to the new one, and finally do a new rsync --delete to update the new machine. There's a period where some deleted messages may reappear on the client's email before the rsync is complete, but all new messages appear immediately. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Never blame a legislative body for not doing something. When they do nothing, that don't hurt anybody. When they do something is when they become dangerous. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] sendmail delay in presenting banner
On Sun, Mar 23, 2014, John R Pierce wrote: On 3/23/2014 11:49 AM, Gregory P. Ennis wrote: nslookup NAME.DOMAIN.com 127.0.0.1 I appropriately get 10.0.0.187 So far I am stumped on this problem, if any of you have suggestions I would appreciate your help in your DNS server, create a reverse zone for 10.0.0.0/8, like, 10.in-addr.arpa, even if it doesn't have any records other than NS and SOA. Another thing that can cause long delays is to use obsolete RBLs. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 ...I'm not one of those who think Bill Gates is the devil. I simply suspect that if Microsoft ever met up with the devil, it wouldn't need an interpreter. -- Nick Petreley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Does anyone use tcp wrappers (hosts.allow/hosts.deny) anymore?
On Fri, Mar 21, 2014, m.r...@5-cent.us wrote: Larry Martell wrote: On Fri, Mar 21, 2014 at 8:33 AM, James B. Byrne byrn...@harte-lyne.ca wrote: ... Yes. For example look how MicroSoft has improved Windows since XPsp3.;-^) I wouldn't know. I don't use it. I've been programming professionally since 1975 and I've managed to never use Windows. 1980. and I've had to. But I worked long and hard to get into *Nix, and with one 1.25 year excursion otherwise, have managed to stay here. 1966, and I have never used anything Microsoft willingly other than their Natural keyboard and wireless mice :-). So I *do* object to my toolset being cut down or mangled when it's unnecessary. tcp.wrappers, no big deal. Non-plain text configuration files, or crap that invokes crap that invokes crap to do what was formerly done by one program that read one simple configuration file, not so much Remember when SuSE's yast maintained a central configuration file, and would overwrite manually changed Linux configuration files if one changed something in the GUI? So many experienced admins complained that they finally went back to honoring the manual changes. Then there's the infamous Windows Registry Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 I consider trial by jury as the only anchor ever yet imagined by man, by which a government can be held to the principles of its constitution. -- Thomas Jefferson in a letter to Thomas Paine, 1789. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Does anyone use tcp wrappers (hosts.allow/hosts.deny) anymore?
On Thu, Mar 20, 2014, Keith Keller wrote: On 2014-03-21, Fernando Cassia fcas...@gmail.com wrote: Interesting double negative. Implies that once the technical barriers are removed, then it's OK to remove old features for change's sake. ;) If, as Matthew says, the codebase hasn't been maintained since 2001, then we should have concerns about unfound security issues, as well as concerns that, if others find security problems, nobody is responsible for fixing them. If tcpwrappers had a current maintainer this wouldn't be an issue. There's certainly at least one technical reason to prefer other options like iptables over tcpwrappers. I've had instances where an attacker made dozens of ssh probes per second; tcpwrappers was able to reject these, but sshd was so overwhelmed that it was unable to exchange host keys with legitimate clients. iptables would have blocked these attacks more effectively, letting sshd handle the legitimate client sessions properly. My solution to this is to have swatch watching the tcp_wrappers ssh, imap, and pop3 logs and blocking with iptables any IP address that has more than N (5 by default) failed connection attempts in a minute or that is listed in our blacklist DNSRBL. A postgresql database is used on each machine with a history of IPs blocked which is used to automatically expire blocks and to add them if a system is rebooted. We maintain a couple of DNSRBLs for whitelisting and blacklisting IP addresses and net blocks that are largely fed by the reports generated. The /etc/hosts.allow files on all the systems we monitor use these DNSRBLs on critical services (e.g. sshd) to ALLOW/DENY access. The net result of this has been that it's rare when a particular IP gets more than a few failed attempts before being blocked the first time, and one or two if it's in our blacklist DNSRBL whether it's on the first machine attacked or any of the other machines we monitor. FWIW, the the majority of the attacks seem to be password guessing attempts using IMAP, not ssh. The successful cracks on Linux machines I've seen were done via weak user accounts on ISPs that were then accessed via php to the user's writeable public html directory. As somebody already pointed out, no one tool is sufficient to limit access. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It takes no great insight or intelligence to see that the health of a centralized economy built around dense concentrations of economic power and a close business alliance with government can't tolerate any considerable degree of intellectual schooling. John Taylor Gatto http://www.lewrockwell.com/gatto/gatto-uhae-8.html ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Does anyone use tcp wrappers (hosts.allow/hosts.deny) anymore?
On Thu, Mar 20, 2014, Fernando Cassia wrote: On Thu, Mar 20, 2014 at 4:48 PM, Matthew Miller mat...@mattdm.org wrote: Does anyone use tcp wrappers (hosts.allow/hosts.deny) anymore? And, would you care strongly if it went away (or would you just migrate to something else)? Please don't remove it. Why this sudden idea in software circles that stuff that works properly needs to be removed for no reason whatsoever other than it's old and we think nobody uses it. How do you know?. IF IT AIN'T BROKEN, DON'T FIX IT. You might have heard of it. This has been a problem with various open source projects for decades, not so much removing something, but more often changing options and behaviours that break existing uses. It wouldn't matter to me if it were dropped from CentOS or the upstream as we build our own, hacked to allow use of RBLs. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 I ask, sir, what is the militia? It is the whole people. To disarm the people is the best and most effectual way to enslave them.-- George Mason ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SOHO colour laser printer recommendations
On Tue, Dec 03, 2013, Ned Slider wrote: Hi List, I'd really appreciate some recommendations for colour laser printers for use with CentOS. It's for light home use with CentOS 5 and CentOS 6 systems. Must have: 1. Colour. Quality not that important as mainly for kids school project type of stuff. 2. Ethernet connectivity - want something I can plug into the network 3. Cheap running costs - don't want to be spending a fortune on toner 4. Linux support I have very little experience with printing on Linux. I'm assuming I want a laser with Postscript and/or PCL emulation, and Linux driver support (still not sure exactly what I should be looking for here). Top of my very short list at present is: Brother HL-4140CN at £167 http://www.amazon.co.uk/Brother-HL4140CN-Network-Colour-Printer/dp/B0047753F4/ref=sr_1_1?ie=UTF8qid=1386105929sr=8-1keywords=brother+hl-4140cn I'd appreciate any other recommendations people might have. First off I would stay away from HP printers. As others have said, they used to make quality products (I have an HP 4M+ that's been going since November 1995), but the current ones aren't very good. I bought a new CP2025DN which worked nicely until my wife managed to break something in the duplexer while loading paper, and HP wouldn't sell the parts to the shop to repair it. The 4 toner cartridges also cost over $100USD each. I replaced the HP with a Ricoh Aficio SP C242sf. This wasn't cheap, but toner costs are about 1/3 that of the HP when buying the ones with 6,000 page capacity. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Politicians - card carrying members of the burglars union - like you to remember, they can reach in your pocket with impunity. -- Ted Roberts ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off-Topic: Low Power Hardware
On Fri, Jan 11, 2013, SilverTip257 wrote: Hello, I'm slightly off-topic here, but it is somewhat CentOS related! I'm in search of some hardware that consumes a low amount of power for use as a test-bed for Linux, various coding projects, and LAN services. 1) Low power consumption (10-15W ... maybe 30W at most) 2) Must run Linux without too much fuss (CentOS or otherwise) 3) Must have two NICs (fast ethernet or better) 4) Memory - 1GB or better 5) Can be configurable either via serial or VGA. 6) Accepts a normal hard drive, not CF -- drive capacity is my concern. 7) spare PCI slot is a _plus_ (extra NICs or whatever else) 8) I'd like to keep the physical footprint to a minimum (size of a 1U switch or so?) I don't know about the power details, but we have used a fair number of small desktop boxes (mini-ATX I think) with Atom processors which are small, quiet, and low power. Typically they need a low-profile NIC. We have run various versions of CentOS back through 4 without problems. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If guns are outlawed, only the government will have guns. Only the police, the secret police, the military, the hired servants of our rulers. Only the government -- and a few outlaws. I intend to be among the outlaws. EDWARD ABBEY (1927-1989) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] web mail and Squirrelmail
On Mon, Dec 24, 2012, Les Mikesell wrote: On Mon, Dec 24, 2012 at 12:02 PM, Tilman Schmidt t.schm...@phoenixsoftware.de wrote: Am 24.12.2012 00:03, schrieb Kanwar Ranbir Sandhu: I switched to Roundcube early on it's life and haven't looked back. The newest release sure is purrrty!! It's worlds better than Squirrelmail. Interesting. Last time I looked, Roundcube had issues with big (1GB) mailboxes. How does it fare these days in this respect? Isn't that more related to the performance of the imap server behind it? Last time I did any comparison squirrelmail was a lot faster than the horde/imp package against the same courier-imap server. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Reality is that which, when you stop believing in it, doesn't go away. -- Philip K. Dick ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS-virt] Why is SCSI disabled in kvm on CentOS 5.8?
Looking at the SRPM kvm-83-249.el5.centos.5, and the SRPM for qemu-kvm-0.12.1.2-2.209.el6.src.rpm on CentOS 6.2, I see many patches to remove SCSI support. The 5.2 kvm.spec file disables scsi in the configure run. Why has this been disabled? Many old OS's don't grok SATA, but have had SCSI support for years. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It does not require a majority to prevail, but rather an irate, tireless minority keen to set brush fires in people's minds. -- Samuel Adams ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-virt] centos 5.8 libvirt disk options
I am attempting to use libvirtd/kvm on CentOS 5.latest to migrate a SCO OpenServer 5.0.6a VM from the old VMware server. I have converted the multiple vmdk disk files to a single file, then used qemu-img convert to create files for libvirtd, both qcow2 and raw formats. After many attempts to get this working I'm up against what appears to be a brick wall. + The VMware VMs are using straight 'ide' HD emulation which has been working well for several years. + The 'ide' on libvirtd appears to map to SATA which isn't supported by OSR5. I've tried doing a fresh install from CDROM, but the installation fails to find the hard disk. I might be able to find the appropriate BTLD for this, but that won't help migrating existing VMs. + When I tried using 'scsi' libvirtd says this isn't supported. This would be my preferred emulation as we have used SCSI drives since the early days of Xenix on Tandy hardware. + The final problem if these are solved is that SCO is funny about its drive geometry, and the current versions of libvirtd and qemu don't appear to support the geometry allowing one to specify heads, cylinders, etc. Am I going to have to resort to using VMware workstation for this? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Good decisions should be rewarded and bad decisions should be punished. The market does just that with its profits and losses. ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] ClamAV Problem
On Mon, Sep 17, 2012, Shiv. Nath wrote: On 9/17/12 11:45 AM, jiten jha wrote: Dear Friends, I have postfix mail server When I try to install amavisd-new, clamAV, SpamAssassin follow this link http://wiki.centos.org/HowTos/Amavisd;. I have done all the configuration after that when I restart clamav So It is giving my this error message Stopping Clam AntiVirus Daemon:[FAILED] Starting Clam AntiVirus Daemon: LibClamAV Error: cl_cvdhead: Can't read CVD header in /var/clamav/daily.cld LibClamAV Error: cli_loaddbdir(): error parsing header of /var/clamav/daily.cld ERROR: Malformed database ... This is not critical error, it simply means that database of clamav that contains definition information has corrupted. there are more than one way to fix it. 1.) yum remove clam clamav-db* followed by yum install clamav-db 2.) find move the following files to temp location run freshclam. daily.cvd main.cld, mirrors.dat One should run 'freshclam' periodically to update the clamav database. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 With Congress, every time they make a joke it's a law; and every time they make a law it's a joke. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] KVM Setup for Win7 Pro on CentOS 5.x
On Sat, Aug 18, 2012, Mihamina Rakotomandimby wrote: On 08/16/2012 12:34 AM, Bill Campbell wrote: Can somebody point me to a HowTO or other documentation describing the tools available under the CentOS 5 KVM package to create and manage a Windows 7 Pro VM? All my VM experience to date has been the old free VMware Server. Just for information, there is a centos-virt ML. Thanks for that hint. I subscribed a couple of days ago, but so far haven't seen any traffic. A google search of the archives did turn up some interesting posts. I have things working now after cleaning up some of the cruft left around after my original attempts to follow the docs. standard input:17: warning [p 1, 1.7i]: can't break line 1. Create a bridge, 'br0' following the writeup on this page (and several others): https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/5/html-single/Virtualization/index.html#sect-Virtualization-Network_Configuration-Bridged_networking_with_libvirt This link also has some interesting hints. http://itscblog.tamu.edu/startup-guide-for-kvm-on-centos-6/ 2. Delete the routed network definition I had made prior to creating the bridge. Things didn't work properly with the old definition even though it was point to my private interface, 'eth1'. I also deleted the 'default' NAT interface as we will never use that. 3. Check for other software that references the new bridge, changing the old 'eth1' interface to 'br0'. Samba shares were not appearing until I updated 'interfaces' in the 'smb.conf' file. This may have been caused when I turned sharing on in the Win7 VM which I didn't need. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If there's anything a public servant hates to do it's something for the public. -- K. Hubbard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] KVM Setup for Win7 Pro on CentOS 5.x
On Thu, Aug 16, 2012, Theo Band wrote: On 08/16/2012 06:36 PM, Bill Campbell wrote: ... + Set up network bridging on the private LAN so that the Windows system is accessible via OpenVPN connections from the outside world and by users on the LAN to run a client/server accounting application. I have done KVM VLANs but I am not sure if it can be done from the virt-manager. Experiment and see how far you can go. I will be digging into this later today. So far I've found the file /var/lib/libvirt/network/default.xml and see a vibr0 interface defined. The documentation I found yesterday described setting up briding, but hopefully virt-manager has a nicer way to do it. This I find the most difficult part. I have done it a couple of time and made myself a HOWTO. You need to fill in some IP figures of course. I assume a fixed IP address, but DHCP should work as well. The setup creates a bridge and adds and existing interface (ifcfg-ethx) to that bridge. After that you can use the bridge for the VMs: I got things installed yesterday, adding a routed network section using virt-manager linked to the private interface, eth1. I left the default NAT interface as-is. After rebooting the machine, two bridge devices, virbr0 and virbr1 appear in 'ifconfig' output with the appropriate IP addresses (192.168.122.1 and 192.168.100.1 respectively). The 'route -n' command shows reasonable routes for the VMs. I am thoroughly confused by the documentation I've found so far, much of which seems to be out of date. When the Windows VM is active with the network virbr1 defined with virt-manager and all other things default, a 'vmnet0' device appears in 'ifconfig' output. I can ping the IPs on the private lan (192.168.101.0/24 in this case), but cannot get to the outside world, nor can hosts on the LAN ping the VM's assigned IP address 192.168.100.114. If I shut down the VM, manually run 'brctl addif virbr1 eth1', then start the VM things change: + The IP address assigned to the VM is in the 192.168.101.0/24 block instead of 192.168.100.0/24 defined in virt-manager. + I can ping the outside world from the VM. + I can ping other hosts in 192.168.101.0/24, but *NOT* the Linux boxes IP address. + I cannot ping anything in 192.168.101.0/24 from the command line on the Linux host (logged in with ssh on the public interface). + The command 'brctl show' displays vmnet0 and eth1 vir virbr1. I'm more than a bit confused at this point. My main goal is to get LAN and OpenVPN access to the Windows VM. I really don't care about Internet access from the Windows VM, although Microsoft really wants it to get updates and such. KVM === yum install kvm virt-manager qemu bridge-utils #create bridge for virt-machine cat /etc/sysconfig/network-scripts/ifcfg-br0 _END_ DEVICE=br0 TYPE=Bridge IPADDR=192.168.48.X NETMASK=255.255.255.0 GATEWAY=192.168.48.1 BOOTPROTO=none ONBOOT=yes DELAY=0 NOZEROCONF=true NM_CONTROLLED=no _END_ Edit /etc/sysconfig/network-scripts/ifcfg-ethx : ONBOOT=yes BRIDGE=br0 NM_CONTROLLED=no service network restart ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Lord, the money we do spend on Government and it's not one bit better than the government we got for one third the money twenty years ago. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] KVM Setup for Win7 Pro on CentOS 5.x
On Thu, Aug 16, 2012, Arun Khan wrote: On Thu, Aug 16, 2012 at 3:04 AM, Bill Campbell cen...@celestial.com wrote: Can somebody point me to a HowTO or other documentation describing the tools available under the CentOS 5 KVM package to create and manage a Windows 7 Pro VM? All my VM experience to date has been the old free VMware Server. Assuming you have hardware acceleration and 64 bit version installed, look for the virt-manager package. Thanks. I found that after doing some poking around. I'll be in my normal 'learn by destroying' mode this afternoon (apologies to Jeff Lieberman of learnbydestroying.com :-). The interface is very similar to virtual box. I've never used that, only VMware so far. I need to: + Create the VM instance allowing for about 50GB total disk space which will be either a single image partitioned into two Windows 'Drives' for the OS and applications/data, or two images. The default location for the hard disk image file is under /var/lib path.This can be changed to point to a different location if you are planning many such large installation. An alternate method could be to define a file or a LVM and then tell virt-manager the location of this file/LVM volume. Thanks for that info. It looks like everything is under /var/lib/libvrt. I assume that I can replace /var/lib/libvirt/images with a symlink to another file system with adequate space. Would it be safe to symlink the entire /var/lib/libvrt directory to another file system? I just tried 'lsof /var/lib/libvirt' on the system with no VMs and the libvrtd service running, and it doesn't show anything using it at idle. + Install Windows 7 from an OEM System Builder Pack, either using the CD/DVD drive on the Linux server or from an image created with 'dd' from the Win7 media. Any x86 OS can be installed. Choose a NIC like Realtek or Intel Pro, drivers for which should be recognizable by the Windows installer. + Set up network bridging on the private LAN so that the Windows system is accessible via OpenVPN connections from the outside world and by users on the LAN to run a client/server accounting application. I have done KVM VLANs but I am not sure if it can be done from the virt-manager. Experiment and see how far you can go. I will be digging into this later today. So far I've found the file /var/lib/libvirt/network/default.xml and see a vibr0 interface defined. The documentation I found yesterday described setting up briding, but hopefully virt-manager has a nicer way to do it. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Our Foreign dealings are an Open Book, generally a Check Book. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] KVM Setup for Win7 Pro on CentOS 5.x
Can somebody point me to a HowTO or other documentation describing the tools available under the CentOS 5 KVM package to create and manage a Windows 7 Pro VM? All my VM experience to date has been the old free VMware Server. I need to: + Create the VM instance allowing for about 50GB total disk space which will be either a single image partitioned into two Windows 'Drives' for the OS and applications/data, or two images. + Install Windows 7 from an OEM System Builder Pack, either using the CD/DVD drive on the Linux server or from an image created with 'dd' from the Win7 media. + Set up network bridging on the private LAN so that the Windows system is accessible via OpenVPN connections from the outside world and by users on the LAN to run a client/server accounting application. Thanks Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The demands of the majority are always greater than taxation alone can provide and thats where the FED comes in. The value of the dollar has depreciated 97% since the creation of the FED. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] SCO OpenServer under KVM?
Does anybody here have experience running SCO OpenServer 5.0.6a or earlier under KVM? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Under democracy one party always devotes its chief energies to trying to prove that the other party is unfit to rule and both commonly succeed, and are right. -- H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Allow users on Console?
How does one allow non-root users to use X11 console logins, CentOS 5 with gnome? I've looked through the startup scripts, but haven't been able to figure out where this goes. Thanks. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Windows is a computer virus with a user interface!! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Can anyone talk infrastructure with me?
On Thu, Jan 26, 2012, Raymond Lillard wrote: On 01/26/2012 03:43 PM, Gordon Messmer wrote: On 01/26/2012 09:09 AM, Jason T. Slack-Moehrle wrote: They advertise the starting Business T at 1.5Mbps per second They advertise the ADSL2+ 2 lines at up to 40Mbps per second. Am I mis-understanding that the cost for a T seems high, but a better option for me than getting their ADSL2+ service? I mean, is the T faster over all given it is all my traffic and I am not sharing? Can you explain a bit so I can develop a better understanding of how they advertise speeds, etc? Yes, the cost for a T1 will seem very high. It is antiquated telco tech. T1s are generally very reliable, but very very slow. Slow is relative. Our T1 is infinitly faster than a cable or DSL circuit when the power is out, which happens quite frequently here. Every time the Comcast/Xfinity folks come around trying to sell their services I note that when we had a week-long outage about 14 months ago, our generator kept the computers going, and USWorst's T1 never faltered. Comcast was down for that week, and another after the power came back up. Yes they are indeed slow and reliable. That said, on the rare occasion they do go out, they get repaired quickly. This may not not be true in you case, but usually T1 lines are tariffed with guaranteed uptimes if you ask the right questions and read the fine print. We are a bit more the 20,000 feet from the local CO, and have had a couple of occassions in the last 13 years where they have replaced the entire circuit when having problems with repeaters and such. For a while there were incidents where a telco tech buggered our T1 while trying to grab pairs in a terminal block for voice lines. I have had clients on DSL be down for a few days while the telco got a round tuit. Same here, even in commercial areas of Seattle where one would expect the infrastructure to be solid. There are two reasons T1 is more expensive. T1 requires 2 copper pairs in the cable. Those 2 pairs not available for voice traffic. The other reason is the uptime requirements. DSL, while faster, does not preclude using the pair for voice traffic, uses a single copper pair and has no uptime commitments. You can also share voice and data over a single T1. We have a couple of voice lines on our T1 which are split out with an Adtran channel bank that our provider supplies. I like this as it replaced the old Linux box we had with a (expensive) Sangoma card connecting to the T1. Another option which someone else mentioned is direct ethernet connections. We have a client in an industrial area of South Seattle that got that recently, and has been quite happy with it. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Those who profess to favor freedom, and yet depreciate agitation, are men who want rain without thunder and lightning. They want the ocean without the roar of its many waters. -- Frederick Douglass ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] (OT): Horde initial SQL setup
I haven't been able to find anything useful on the horde sites, and I haven't found anything useful with 'yum search'. I am trying to set up horde webmail using the PEAR install on a new CentOS 5 system intending to migrate existing horde-3.x sites to horde-4.x. The PEAR installation procedure asked for the database type, db name, and password. I had not created the mysql database before running the installation thinking that this would be done as part of the installation (silly me :-). I know little or nothing about the internals of PEAR as I generally avoid PHP if at all possible so I don't know what's necessary to nuke the entire installation and start from scratch other than to restore the VMware VM from the snapshot I made before starting this project. In the past I have done this manually from the various tarballs available from horde.org, and these had the appropriate SQL scripts to initialize mysql and postgresql back ends. The PEAR installation doesn't seem to have these, nor do the sources obtained with 'git'. They do have upgrade scripts to update from various earlier version of horde which could work for existing installations, but would require more work with new installs. I tried finding appropriate SRPMs so I could look at their SPEC files to see how others have done this, but haven't been able to find ones for horde-4.x. The options seem to be: + Get SQL scripts to create the necessary databases. + Find the appropriate SPRMs for the horde components to see how they take care of this in their %post installation processing. + Uninstall the existing stuff using pear, and start from scratch after first creating the appropriate database. + Give up and continue to use the older versions of horde components which do work. Suggestions, pointers to documentation, ??? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 We have a two party system and what a party they are giving themselves. Since 1960 government spending has grown 8 times as fast as the GNP. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (OT): Horde initial SQL setup
On Wed, Jan 25, 2012, Craig White wrote: On Jan 25, 2012, at 11:53 AM, Bill Campbell wrote: I haven't been able to find anything useful on the horde sites, and I haven't found anything useful with 'yum search'. ... The options seem to be: + Get SQL scripts to create the necessary databases. + Find the appropriate SPRMs for the horde components to see how they take care of this in their %post installation processing. + Uninstall the existing stuff using pear, and start from scratch after first creating the appropriate database. + Give up and continue to use the older versions of horde components which do work. Suggestions, pointers to documentation, ??? you're going to have to make up your mind which you want to use, MySQL or PostgreSQL While I much prefer PostgreSQL, I have been using MySQL with horde as it looks like that's where there support is best. After that decision is made, you would simply create the databases using the client tools of either or if you are unfamiliar/uncomfortable using command line to create user/database/privileges for the database of choice, you probably just want to use something like webmin (can do either postgres or mysql), MySQL_Query_Browser (mysql) or PgAdmin3 (postgres) I've been doing *nix systems since 1982 with Radio Shack Xenix so I'm fine with the CLI tools. I've also done a fair amount of DB work in python and perl using their DBI modules. What I haven't been able to find are the sql script files to do the initial database creation that were present in older versions of horde, imp, kronolith, turba, etc. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Gold is money and nothing else -- JP Morgan, testifying to the Pujo Committee, 1913. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (OT): Horde initial SQL setup
On Wed, Jan 25, 2012, Craig White wrote: On Jan 25, 2012, at 3:45 PM, Bill Campbell wrote: ... What I haven't been able to find are the sql script files to do the initial database creation that were present in older versions of horde, imp, kronolith, turba, etc. Don't quote me on this - you can probably get a better definitive answer from the horde mail list but I think the actual scripts are located in your PEAR directory (perhaps under Horde/Test) Of course you need to get into mysql and create a user for horde, create a database for horde and grant permissions to the horde user for the horde database and obviously configure that in horde/config/conf.php (which should be possible with the web configuration tool. That got me there. After digging around in the $prefix/bin/webmail-install script and grep'ing my way through the Horde directories, I figured out that I could rerun webmail-install script after creating the mysql database, user, and password, and all the appropriate tables were created. Now I need to look at the schema to see what's necessary in migrating an older horde/imp installation to this. Thanks again. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 We seem to be moving steadily in the direction of a society where no one is responsible for what he himself did but we are all responsible for what somebody else did, either in the present or in the past. -- Thomas Sowell ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help to install horde
On Wed, Dec 07, 2011, John R Pierce wrote: On 12/07/11 1:58 PM, m.r...@5-cent.us wrote: ssh -X yourserver firefox -no-remote *Then* http://127.0.0.1/horde, orhttp://localhost/horde, whatever. if that doesn't work, `yum install xauth`, then log out and log in again with ssh -X ... This may work better, ssh -Y. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It would be a great improvement if the government respected individuals rights as much as they respect the rights of the caribous. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] redhat vs centos
On Wed, Nov 02, 2011, Lamar Owen wrote: On Tuesday, November 01, 2011 01:46:57 AM Bob Hoffman wrote: Personally I am thinking of staying away from all red hat clones due to redhat's actions for my own security. The only thing on the horizon I see is ubuntu server as best supported and up to date. There are really two good enterprise-grade alternatives, in my opinion, one free and one not: 1.) SuSE Linux Enterprise Server (SLES); We were using that about 5 years ago, and paid Novell a fair amount of money in their Partner program. Novell's support was slim to non-existent leading to our move to CentOS. Given the recent sale to Attachmate and such, I wouldn't invest any time or money in SLES. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 In general, the art of government consists of taking as much money as possible from one party of the citizens to give to the other. -- Voltaire (1764) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Archive mail format?
On Wed, Nov 02, 2011, Les Mikesell wrote: ... Thanks - I think most of what I'd want to keep is still accessible via imap. What I'm wondering is if there is a general consensus about the file format for long term storage that would be most likely to permit direct search and access from some future mail reader, possibly on some other OS. I suppose I could make a VM image that I could fire up as an imap server again, but that seems kind of cumbersome. I would store in Maildir format as it's simple, supported by several IMAP servers (e.g. courier-imap and dovecot), and it's very easy to use standard *nix tools to search and/or manipulate messages. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 We believe...that a mugger will kill you in the half-second it takes to draw from the holster, but won't harm you while you dial the police on your cell phone, talk to the dispatcher and wait half an hour for officers to arrive. -- Gun-Control Net-work Credo ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] External Dial-up Modem
On Mon, Sep 26, 2011, Graham Johnston wrote: I am having an issue with Centos 6 and an external USRobotics modem. We use the modem as part of a last resort SMS paging system. Across multiple Dell servers, different models, I can't not get the modem to respond to simple AT commands while using Minicom. At the same time if I connect the server to a console port on a switch I can successfully access the switches serial console. So I know the serial port itself is working. The modem still works fine if connected to a Centos 5 server. Any thoughts? Which device are you using for the serial connection. It should be /dev/ttyS0 or similar to provide the correct modem control signals. The modem probably won't respond unless the DTR (Data Terminal Ready) line is up. It's been quite a while since I had to look at the modems on our system that runs HylaFAX and dialup connections, Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The only freedom which deserves the name, is that of pursuing our own good in our own way, so long as we do not attempt to deprive others of theirs, or impede their efforts to obtain it. -- John Stuart Mill, 1859 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] dealing with spoofing
On Thu, Sep 01, 2011, Always Learning wrote: On Thu, 2011-09-01 at 12:43 -0700, Scott Silva wrote: I get TONS of spam with legitimate DKIM signatures... How is that possible ? The spam comes from Yahoo! or perhaps Google groups? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Good luck to all you optimists out there who think Microsoft can deliver 35 million lines of quality code on which you can operate your business. -- John C. Dvorak ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] dealing with spoofing
On Wed, Aug 31, 2011, m.r...@5-cent.us wrote: Here's a thought I just thunk, folks: some scum, apparently in eastern Europe, has harvested my email, and is using it in the Reply-To: in its spamming efforts. Now, I realize that some mails go out from noreply, but other than that, is there a good reason why a mailserver would not be configured to send delivery failure to *both* Reply-To and From? This type of forging is generally referred to as a Joe Job, and may be a conscious effort to impair the reputation of the forged sender or domain or perhaps an attempt to flood the mailboxes of antispammers (e.g. mail forged like ab...@antispam.example.com). Sending spam complaints to these addresses or to their ISPs is generally a waste of time and effort as the forged sender has nothing to do with the message as any cursory examination of the Received: headers in the message will confirm. The spam complaints are in themselves a type of abuse, and are referred to as Blowback. Sometimes these complaints are the result of ignorance when they are manual complaints, or incompetence (e.g. early Barracuda e-mail appliances that did this by default). Configuring an MTA to bounce to the Reply-To: header is probably worse than useless as it could well flood poorly configured mailing lists with garbage when spam gets through the lists spam filters, then the complaints go back to the mailing list. Probably the best thing to do with this kind of delivery failure message which come in is to ignore them unless you feel like Don Quixote and like tilting at windmills. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Howto create a VPN connection on desktop (CentOS 6)
On Tue, Jul 12, 2011, Mark Weaver wrote: I'd like to be able to create VPN connections on my laptop to connect to client locations and I was wondering if someone could point me in the right direction for this information. I've checked on the wiki, but didn't find anything. We use OpenVPN for pretty much everything other than iPhone and iPad which don't grok OpenVPN. OpenVPN works quite nicely with Linux, Windows, and OS X. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Any time a man has to pay for something he does not want because of the initiating of force by the government, he is, to that degree, a slave. -- R.C. Hoiles http://mises.org/daily/4840 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] USB-Parallel cable compatibility
I have an installation where we're replacing a rather old Linux box with a new one that has no parallel ports. The old box has two parallel ports going to Okidata printers. The IOGEAR GUC1284B USB to Parallel Adapter cable looks like it might be a simple solution to this, but I would like to know that it works before getting a couple. Comments? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 the incurable idiots may conceivably constitute an absolute majority of the population. -- H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT] ups advice
On Thu, Apr 14, 2011, Brunner, Brian T. wrote: centos-boun...@centos.org wrote: On Thu, Apr 14, 2011 at 5:06 PM, admin lewis adminle...@gmail.com wrote: Hi I have a Dell PowerEdge T310 *tower* server.. I have to buy an ups by apc... anyone could help me giving an hint ? a simple smart ups 1000 could be enough ? UPS and Power Supplies are not all the same. If the UPS has a stepped voltage output (not smooth sine wave like the local public grid has) in large enough steps to mess up the power supply, you wind up with no UPS in effect. We have been using APC UPSs for decades now, and the only major problem I've seen is batteries swelling in some of the rack-mount chassis making them difficult to impossible to remove. By difficult I mean taking the cover off the UPS to get to the batteries. By impossible, taking the cover off reveals that the construction is such that the batteries won't come out the top. We lose power fairly frequently here, and need the UPSs to keep things going long enough to get generator backup started. I have found that the APC UPSs really don't like cheap generators. We had a week long power outage after the 2001 Clinton Inaugural windstorm, and I got an inexpensive generator from Sears which didn't work at all with APC equipment. We're now using Honda generators which are very quiet, and have kept things going for over a week at a time. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Find out just what people will submit to, and you have found out the exact amount of injustice and wrong which will be imposed upon them; and these will continue until they are resisted with either words or blows, or both. The limits of tyrants are prescribed by the endurance of those whom they oppress. -- Frederick Douglass. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SQL*Plus output as PDF [Linux]
On Wed, Apr 13, 2011, m.r...@5-cent.us wrote: Sven Aluoor wrote: Hi folks I generate with SQL*Plus a CSV file. How to convert this to PDF? Or more generally: how to get SQL*Plus output to PDF on Linux? I generally go from CSV files to PDF using a python scripts to generate input for groff, then use groff to create the PDF files. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 To disarm the people is the most effectual way to enslave them. -- George Mason ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] script question
On Thu, Mar 31, 2011, Jerry Geis wrote: I can do simply search and replace with sed. However, I want to setup httpd.conf from a script that changes the default / which is presently: While this can be done with sed, it's generally a lot easier to do with python or perl, particularly when dealing with multi-line replacement patterns. It was this type of job that led me to perl in the late 1980s as perl was a lot easier to understand than advanced sed features, and there was only one regular expression syntax to remember. Currently I use python for most things, but don't want to start a scripting language wars thread here. There's a very useful script 'replace' in the Kernighan and Pike book The Unix Programming Environment which uses sed for in-place replacements as an example of exception handling (MySQL has a similar 'replace' script but with different arguments which tells me that their developers hadn't done much basic *nix study as this book, while old, is still excellent). The best book I've ever read on sed is Unix Text Processing by Dougherty and O'Reilly which covers many *nix utilities. Directory / Options FollowSymLinks AllowOverride None /Directory and change it to the following: Directory / Order Deny,Allow Deny from all AllowOverride None /Directory How do you do that with scripts? Basically substitute everything between the two Directory tags. Thanks, Jerry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It's just got so that 90 percent of the people in this country don't give a damn. Politics ain't worrying this country one tenth as much as parking space. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: grep regex pointer appreciated
On Mon, Mar 07, 2011, Robert Grasso wrote: Hello, On my opinion, grep is not powerful enough in order to achieve what you want. It would be preferable to use at least some (old but powerful) tools such sed, awk, or even better : perl. Actually, what you need is a tool providing a capture buffer (this is perl jargon - back references in sed jargon) in which you can get the string you want to extract, rather than trying to build up a positive matching regex, as the string boundaries seem to be easy enough to describe with regexs. One can use pcregrep which is grep that groks perl regular expressions. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If the government can take a man's money without his consent, there is no limit to the additional tyranny it may practise upon him; for, with his money, it can hire soldiers to stand over him, keep him in subjection, plunder him at discretion, and kill him if he resists. Lysander Spooner, 1852 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] iptables question.
We use a home-brew system similar to fail2ban to block traffic from IP addresses which appear to be doing Nasty Things(tm). The main thing our system does that fail2ban doesn't is to use a central DNSRBL we maintain allowing it to immedatiately ban listed IP addresses the first time they make an attempt to connection without waiting for them to hit a sufficient number of times to bring up the block. This system sends e-mail messages to our security alias whenever a blocking even occurs, either from tcp_wrappers or swatch log watcher. My problem is that occassionally an IP addresses doesn't appear to be blocked as we continue to see the e-mail messages after the blocks are in place. Most frequently these occur from courier-imap failed login attempts, less frequently from sshd. To start, iptables is initialized by setting up a named rule set, say on eth0: # these two set up the rule set. iptables -N csblocks iptables -A csblocks -j RETURN # now add it to input, check csblocks on all new connections. iptables -i eth0 -m state --state NEW -j csblocks #Insert block IP address 1.2.3.4 as first rule in the set. iptables -I csblocks 1 -s 1.2.3.4 -j DROP # now add a rule to prevent IP forwarding on gateway machines. iptables -A FORWARD -s 1.2.3.4 -j DROP # for good measure, null route the IP route add -host 1.2.3.4 reject With all that incoming attempts still seem to get by for a few IP addresses, but certainly not all. Can anybody point out what I'm doing wrong, or why this may happen? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 An almost hysterical antagonism toward the gold standard is one issue which unites statists of all persuasions. They seem to sense that gold and economic freedom are inseparable. -- Alan Greenspan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables question.
On Mon, Feb 21, 2011, Stephen Harris wrote: On Mon, Feb 21, 2011 at 03:32:40PM -0800, Bill Campbell wrote: My problem is that occassionally an IP addresses doesn't appear to be blocked as we continue to see the e-mail messages after the blocks are in place. Most frequently these occur from courier-imap failed login attempts, less frequently from sshd. To start, iptables is initialized by setting up a named rule set, say on eth0: # these two set up the rule set. iptables -N csblocks iptables -A csblocks -j RETURN # now add it to input, check csblocks on all new connections. iptables -i eth0 -m state --state NEW -j csblocks With all that incoming attempts still seem to get by for a few IP addresses, but certainly not all. Can anybody point out what I'm doing wrong, or why this may happen? Connections that are already established may be blocked but traffic will continue to flow because you're only blocking on NEW traffic. eg connection made login fail login fail login fail BLOCK HAPPENS - perhaps it's the 5th set of connections and it's just tripped the threshold login fail login fail login fail too many failed attempts, disconnected by server daemon new connection blocked You'll see 3 login failures after the block occured because the connection was still open. That makes sense, and was one of the first things I thought of. On the other hand lsof -n -i doesn't show any open connections to the IP address, and I would think that the forwarding and null route would prevent that. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Historically, inflation is a classic game of legal plunder, more effective than taxes since the legalized theft is concealed. -- T. Hunt Tooley http://mises.org/story/3292 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] x25 line xterm
On Fri, Feb 04, 2011, Hal Davison wrote: Noted that xterm by default uses 24 lines per window. I have reviewed /etc/termcap looking for a specific entry for xterm that I can edit to change the ln#24 to ln#25 for our application. When I used RedHat there was an editable option to change the number of displayable lines as is done in putty. At the command line: 'xterm -geometry 80x25'. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 ...it does not require a majority to prevail, but rather an irate, tireless minority keen to set brush fires in people's minds... -- Samuel Adams ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Set font and size in xterm
On Fri, Jan 07, 2011, James B. Byrne wrote: I have a situation where gnome console does not handle vt102 escape sequences properly and therefor need to employ xterm instead. When I run xterm from a gnome terminal window I am presented with an extremely small terminal window employing an almost unreadably small font. I have attempted to set the font size using xrdb and a custom .Xresources file. I can change the colour scheme. I can create a scrollbar. I can move the scrollbar to either the right or left window margin. What I cannot do is to change the font size. An easier way to handle this is to create a $HOME/XTerm file which will be used each time an xterm is started. I'm including mine which sets a large font and several other options I like. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The tyrant who impoverishes the citizens is obliged to make war in order to keep his subjects occupied and impose on them the permanent need of a chief. -- Aristotle ! !! !! SAMPLE .Xdefaults / app-defaults RESOURCE SPECIFICATIONS FOR XTERM !! ! ! ! !! !! set default tty mode. !! ! !XTerm*ttyModes: intr ^? erase ^H kill ^U ! ! ! !! !! modify mouse functionality so that Shift Btn1Down has the same !! functionality as Btn2Down. !! !! The CtrlBtn2Down xterm window menu CANNOT be popped up using !! Shift CtrlBtn1Down !! ! !*VT100*translations: #override\ ! Shift Btn1Down: insert-selection(PRIMARY, CUT_BUFFER0) \n\ ! Button1 Btn3Down: insert-selection(PRIMARY, CUT_BUFFER0) ! !*VT100*Scrollbar*translations: #override\ ! Shift Btn1Down: StartScroll(Continuous) MoveThumb() NotifyThumb() \n\ ! Shift Btn1Motion: MoveThumb() NotifyThumb() \n\ ! Button1 Btn3Down: StartScroll(Continuous) MoveThumb() NotifyThumb() \n\ ! Button1 Btn3Motion: MoveThumb() NotifyThumb() ! ! ! !! !! menu resources !! ! !*SimpleMenu*BackingStore: NotUseful !*SimpleMenu*menuLabel.font: -adobe-helvetica-bold-r-normal--*-120-*-*-*-*-iso*-* !*SimpleMenu*menuLabel.vertSpace: 100 !*SimpleMenu*HorizontalMargins: 16 !*SimpleMenu*Sme.height:16 ! !*SimpleMenu*Cursor: left_ptr !*mainMenu.Label: Main Options !*mainMenu*securekbd*Label: Secure Keyboard !*mainMenu*allowsends*Label: Allow SendEvents !*mainMenu*logging*Label: Log to File !*mainMenu*redraw*Label: Redraw Window !*mainMenu*suspend*Label: Send STOP Signal !*mainMenu*continue*Label: Send CONT Signal !*mainMenu*interrupt*Label: Send INT Signal !*mainMenu*hangup*Label: Send HUP Signal !*mainMenu*terminate*Label: Send TERM Signal !*mainMenu*kill*Label: Send KILL Signal !*mainMenu*quit*Label: Quit ! !*vtMenu.Label: VT Options !*vtMenu*scrollbar*Label: Enable Scrollbar !*vtMenu*jumpscroll*Label: Enable Jump Scroll !*vtMenu*reversevideo*Label: Enable Reverse Video !*vtMenu*autowrap*Label: Enable Auto Wraparound !*vtMenu*reversewrap*Label: Enable Reverse Wraparound !*vtMenu*autolinefeed*Label: Enable Auto Linefeed !*vtMenu*appcursor*Label: Enable Application Cursor Keys !*vtMenu*appkeypad*Label: Enable Application Keypad !*vtMenu*scrollkey*Label: Scroll to Bottom on Key Press !*vtMenu*scrollttyoutput*Label: Scroll to Bottom on Tty Output !*vtMenu*allow132*Label: Allow 80/132 Column Switching !*vtMenu*cursesemul*Label: Enable Curses Emulation !*vtMenu*visualbell*Label: Enable Visual Bell !*vtMenu*marginbell*Label: Enable Margin Bell !*vtMenu*altscreen*Label: Show Alternate Screen !*vtMenu*softreset*Label: Do Soft Reset !*vtMenu*hardreset*Label: Do Full Reset !*vtMenu*tekshow*Label: Show Tek Window !*vtMenu*tekmode*Label: Switch to Tek Mode !*vtMenu*vthide*Label: Hide VT Window ! !*fontMenu.Label: VT Fonts !*fontMenu*fontdefault*Label: Default !*fontMenu*font1*Label: 6x10 !*VT100*font1: 6x10 !*fontMenu*font2*Label: 6x12 !*VT100*font2: 6x12 !*fontMenu*font3*Label: 9x15 !*VT100*font3: 9x15 !*fontMenu*font4*Label: 10x20 !*VT100*font4: 10x20 !*fontMenu*fontescape*Label:Escape Sequence !*fontMenu*fontsel*Label: Selection !!fontescape and fontsel overridden by application ! !*tekMenu.Label: Tek Options !*tekMenu*tektextlarge*Label: Large Characters !*tekMenu*tektext2*Label: #2 Size Characters !*tekMenu*tektext3*Label: #3 Size Characters !*tekMenu*tektextsmall*Label: Small Characters !*tekMenu*tekpage*Label: PAGE !*tekMenu*tekreset*Label: RESET !*tekMenu*tekcopy*Label: COPY !*tekMenu*vtshow*Label: Show VT Window !*tekMenu*vtmode*Label: Switch to VT Mode !*tekMenu*tekhide*Label: Hide Tek Window ! *tek4014*fontLarge: 10x20 *tek4014*font2: 9x15 *tek4014*font3: 6x13 *tek4014*fontSmall: 6x10 XTerm*font: 10x20 XTerm*pointerShape: arrow XTerm*termName: xterm XTerm*blink:true XTerm*loginShell: true XTerm*scrollBar
Re: [CentOS] What commands are available in recovery mode?
On Wed, Dec 29, 2010, Mark wrote: I have a CentOS VM that I messed up and it now can't find /home (because it's gone), so it comes up in recovery mode. Would a manual fsck help fix this? What can I do in recovery mode? It won't let me modify any files, which makes it hard to fix the fstab, so ...??? This command will remount the root file system read-write so you can edit things. mount -n -oremount,rw / When you're done this will remount read-only. mount -n -oremount,ro / Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Democracy extends the sphere of individual freedom, Democracy attaches all possible value to each man, while socialism makes each man a mere agent, a mere number. Democracy and socialism have nothing in common but one word: equality. But notice the difference: while democracy seeks equality in liberty, socialism seeks equality in restraint and servitude. Alexis de Tocqueville == 1848 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] logrotate.d - reload vs restart
On Mon, Dec 27, 2010, Frank Cox wrote:
Looking at some of the stuff in /etc/logrotate.d, I see entries like this in
some of the configuration files:
postrotate
/sbin/service privoxy reload 2 /dev/null || true
From the commandline, that doesn't work:
# /sbin/service privoxy reload 2 /dev/null || true
Usage: /etc/init.d/privoxy {start|stop|restart}
Changing reload to restart does work:
]# /sbin/service privoxy restart 2 /dev/null || true
Stopping Privoxy, OK.
Starting Privoxy, OK.
I find reload in the httpd logrotate file as well:
postrotate
/sbin/service httpd reload /dev/null 2/dev/null || true
What am I failing to understand?
The reload command usually does a ``kill -HUP'' on the running
process to get it to reload its configuration files whild restart
will kill the running process and restart it which, of course,
causes it to read the configuration. The reload command should
cause the running process to close and reopen log files.
Unfortunately, not all programs properly handle the HUP command,
either not reading the configuration, not properly handling log
files, or both. Thus the restart should always work while reload
may not depending on the application.
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
Voice: (206) 236-1676 Mercer Island, WA 98040-0820
Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792
Each individual of the society has a right to be protected in the
enjoyment of his life, liberty, and property no part of the property
of any individual can, with justice, be taken from him, or applied to
public uses, without his own consent -- John Adams
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] logrotate.d - reload vs restart
On Mon, Dec 27, 2010, Frank Cox wrote: On Mon, 27 Dec 2010 16:31:29 -0500 Nico Kadel-Garcia wrote: */sbin/service* is working fine. It's just a shell script that finds and passes arguments to the init scripts in /etc/rc.d/init.d/. (/etc/init.d is a symlink to /etc/rc.d/init.d: don't be confused by that.) If the init script supports reload, then service will successfully pass the argument to it. If it doesn't support reload, such as the privoxy script in this case does not, then you'll need to use start, stop, or restart. Ah... gotcha! I've learned something today There are many options to logrotate that control this, and things like creating a new log file before reloading or restarting the service (e.g. at least some syslogd programs will not work unless their output log file(s) exist when they start. The GNU shtool also provides log rotate functions which can be used in cron jobs and such. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 When the customer has beaten upon you long enough, give him what he asks for, instead of what he needs. This is very strong medicine, and is normally only required once. -- The Consultant's Curse: ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] VPN for iPad
On Sun, Dec 19, 2010, Eero Volotinen wrote: 2010/12/19 Ed Warner edwarne...@yahoo.com: What is the best VPN solution for both PC and iPad? I was told that OpenVPN won't work for iPad. I think that it works on jailbroken ipad. anyway, ipad supports pptp directly? That's what we use with iPad and iPod Touches. I would prefer to use OpenVPN if it ever becomes available for the iP[ao]ds. I have never been able to get IPSec and OpenVPN to play together on the same Linux server. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It is better to die on your feet than to live on your knees! -- Emiliano Zapata. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] /bin/env
On Fri, Dec 10, 2010, James B. Byrne wrote: Please forgive my ignorance but I need a explanation of how to accomplish the following since I cannot figure it out from the documents. I have a Ruby script with a shebang line that looks like this: #!/usr/bin/env ruby On one particular host I have two Ruby interpreters installed; one the CentOS base version 1.8.6 in /usr/bin/ruby the other version 1.8.7 in /usr/local/bin/ruby. In my shell the which command finds /usr/local/bin/ruby. In a cron job the /usr/bin/ruby is used by the /bin/env invocation. My question is: How does one configure /bin/env to return the /usr/local/bin/ruby version? or does that question even make sense? The /bin/env command uses the $PATH environment variable to find the argument. If you want to invoke a specific version of ruby, change the PATH variable or replace this with: #!/usr/local/bin/ruby Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 A paranoid is a man who knows a little of what's going on. -- William S. Burroughs ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Novell sale news?
On Wed, Nov 24, 2010, Toralf Lund wrote: Karanbir Singh wrote: On 11/24/2010 10:32 AM, Toralf Lund wrote: That's going back to the character-mode days. I meant the GUI version. I used an X11 version on some Unix variant a long time ago - possibly IRIX, but it may have been the DEC one (or both.) This was several years Thats good, but how is that even remotely related to his list ? It's *remotely* related in that it means someone, somewhere must have source code that would probably compile more or less directly under CentOS, for the (currently unsupported) software in question. I find lists where there's fairly open discussion of topics more useful than those that deal with very narrow topics. It's amazing how many times I learn something useful that I never would have seen on a restricted list (e.g. I learned about the Mac RSS reader NetNewsWire on a local Linux group list). If a topic is uninteresting, ctrl-d with mutt on the thread nukes it quickly. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Anyone who thinks Microsoft never does anything truly innovative isn't paying attention to the part of the company that pushes the state of its art: Microsoft's legal department. --Ed Foster, InfoWorld Gripe Line columnist ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] New list ?
On Wed, Nov 24, 2010, Karanbir Singh wrote: On 11/24/2010 05:04 PM, Hakan Koseoglu wrote: My personal opinion is that it's not a big deal. As with other mailing lists, stuff I'm not interested in I simply ignore. Are you saying that having focus and topic specific lists are not something you agree with ? Because thats what it sounds like! I would agree with that. The Apple mailing lists are a great example, they have a metric tonne of mailing lists, each on a specific topic, but none of general interest where one can ask an off-the-wall question without getting flamed. One of my favorite Linux related lists is the one that started as a Caldera users mailing list, and is still going today. There's a pretty strong sense of community on that list with participants all over the place in terms of Linux usage and geography. Off topic items have ranged from who makes the hottest chili to the draught in Australia and how people deal with it. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 I believe that banking institutions are more dangerous to our liberties than standing armies. If the American people ever allow private banks to control the issue of their currency, first by inflation, then by deflation, the banks and corporations that will grow up around the banks will deprive the people of all property until their children wake up homeless on the continent their fathers conquered. -- Thomas Jefferson 1802 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimal VPN
On Wed, Nov 24, 2010, n...@li.nux.ro wrote: tony.chamberl...@lemko.com writes: I am looking for the optimal VPN. Well it doens't have to be that elaborate. Just the best VPN. We currently have some customers using PPTP, some using openvpn, some using Cisco Any Connect and there are a few others. So my question is, if you have control of both ends (client and server) what is the best VPN to use? There are not too many requirements, but a big one is The VPN must return the same IP address to the same user each time That is there must be a specific IP address assigned to a user/password combination. pptp does not really do this but I wrote sort of a backend (or maybe frontend? ;-) ) to change the IP address assigned based on a login and password. It is extra stuff I would prefer not to do though. OpenVPN can do that (see their commercial solution as well). We use OpenVPN for most things, and pptp (poptop) for connections where the OpenVPN client's aren't available (e.g. iPad, iPhone, iPod Touch). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 In free governments the rulers are the servants, and the people their superiors sovereigns. -- Benjamin Franklin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimal VPN
On Wed, Nov 24, 2010, John Hodrien wrote: On Wed, 24 Nov 2010, Bill Campbell wrote: We use OpenVPN for most things, and pptp (poptop) for connections where the OpenVPN client's aren't available (e.g. iPad, iPhone, iPod Touch). Is there anything to make you choose pptp over IPSec? There are a number of issues with PPTP that'd make me push it down my list of ideal VPNs. Yup. I've never been able to get IPSec and OpenVPN working together on a Linux box. Perhaps it's brain-fade on my part, but I have spent quite a bit of time trying. I have read that the original arguments about kindergarten cryptography from Microsoft in PPTP are not as valid as they once were, and we're not running it from Windows clients in any case, they're all using OpenVPN clients. The only place I'm currently running PPTP is from my iPad with iSSH to connect to our network. Any other connections I might need to make from the iPad are done with another ssh connections that originates from our LAN, not direct from the iPad. Other connections via the PPTP VPN are encrypted IMAP/SMTP connections to servers on the private side of our network. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Microsoft IIS has more holes than a wheel of Swiss Cheese after a shotgun blast -- John Dvorak ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Word Perfect [Was: Novell sale news?]
On Tue, Nov 23, 2010, Adam Tauno Williams wrote: On Mon, 2010-11-22 at 22:09 -0600, Les Mikesell wrote: On 11/22/10 9:57 PM, John R. Dennison wrote: On Mon, Nov 22, 2010 at 09:29:12PM -0500, Michael Semcheski wrote: Windows only, unfortunately. When did they stop publishing *nix versions? I worked extensively with that monstrosity 15-16 years ago on SCO / MWC Coherent. I don't think they ever did a real native *nix verson - they had a slightly custom version of wine wrapped around the windows code. And there was some strange Microsoft involvement in the Corel company too - probably why you haven't heard much from them. I'm pretty sure they did have such a version; WP was the first 'real' word processor available for LINUX. I ran it on a LINUX host and a dozen or so NCD X-terminals. It worked, but I can't imagine anyone having been a fan. It was slow, clunky, and just ugly. WordPerfect was available for SCO Xenix decades ago. I wrote a conversion program to convert Radio Shack Scripsit files to WP 4.3 which was pretty much the Lingua Franca of WP files in the late 1980s and early '90s (amazingly I sold a copy of this within the last 6 months to a police department that had been using Scripsit continuously). And as for reveal codes... OOo has a mode that displays non-printable characters. Beyond that I just don't see the point. OOo's document collaboration and versioning tools are far and away better than what I recall from WP. WP users *LOVED* reveal codes as it allows people to see exactly what's going on under the hood, and even fix some things when the files get out of whack. I answered the phone one time, and the opening from the caller was ``I want Reveal Codes''. I have never used word processing programs for much of anything serious, using vim and groff or docbook xml for most things. Back when I was managing Radio Shack Computer Centers, I got pretty good with Scripsit, mostly so I could sell and answer people's questions (and was a whiz with VisiCalc and MultiPlan :-). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Good men can muddle through a bad constitution, but bad men can wreck the best of them. -- Aristotle ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] xServes are dead ;-( / SAN Question
On Thu, Nov 11, 2010, Nicolas Ross wrote: On another note, on the same subject (xServes being disontinued), one feature we use heavily on our os-x server is the ability to load / unload periodic jobs with launchd. With it we're able to schedule jobs let's say every 5 minutes, and so on. One could say I could do something like */5 * * * * /path to job in crontab. True, but the big advendage of launchd in that matter, is that it's 5 minutes between jobs. So if the job takes 6 minutes, we will never have 2 time the same job running at the same time. We even have a job that is scheduled to run every 60 seconds, but can take 2 hours to complete. Is there any scheduler under linux that approch this ? There are various ways of handling this type of problem. One consideration is whether it's OK for a job to start if the previous job has not completed. This is application specific, and I don't know of any scheduler that does this (enlighten me if there is :-). I have seen cases of daily processing that do things like update the ``locate'' database which may well not complete within 24 hours on large file systems. Without checking for completion of the previous day's run, this can end up creating problems. For shell scripting, we often use the ``shlock'' program which I got originally from the ``inn'' news software. There's a perl module LockFile::Simple that handles this for perl, and I've hacked a python implementation of that module. These all write the pid of the controlling process to a lockfile which can be read to test for stale jobs if the original job didn't properly remove its lock file. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Power is evil in itself, regardless of who exercises it...Every dictator plans to rear, feed and train his fellow men as the breeder does his cattle. -- Ludwig von Mises ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Pptp vpn server
On Wed, Nov 03, 2010, Ray Van Dolson wrote: On Wed, Nov 03, 2010 at 10:52:34AM -0400, Adam Tauno Williams wrote: On Wed, 2010-11-03 at 07:34 -0700, cpol...@surewest.net wrote: Mattias wrote: Yes but there is no good webmin module for openvpn? Not to pour water on your tool, but Google for webmin exploit. This software appears regularly on security lists I read, but not in a good way. +1 I'd never put webmin on any of my hosts. But fwbuilder is looking into supporting VPN configuration; that will be a huge step forward. http://www.fwbuilder.org/ FYI, for PPTP on Linux you want to look at poptop. I have no idea if it's manageable by Webmin or not. I have used poptop a bit, mostly because there is no OpenVPN client for that works with the iPad. As for webmin, we do have clients using it, but only restricted to the internal LAN, and specified hosts on that LAN as I have found some rather evil bugs (e.g. removing /home when doing user maintenance after accepting /home as a user's home directory). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Fix reason firmly in her seat and call to her tribunal every fact, every opinion. Question with boldness even the existence of a God; because, if there is one, he must more approve of the homage of reason, than that of blindfolded fear. --Thomas Jefferson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] excel parser (preferably perl)?
On Mon, Oct 18, 2010, Les Mikesell wrote: I'm getting tired of converting spreadsheets that someone else updates to csv so my perl scripts can push the data into a mysql database. Is there a better way? I haven't had much luck with perl-Spreadsheet-ParseExcel (and find it odd that yum prefers the .32 version from epel over .57 from rpmforge anyway). Is the current CPAN version better? Or the equivalent java tools? Or maybe a scripted OpenOffice conversion would be possible. Needs to deal with both xls and xlsx formats, the odd characters that are confused with quotes even after csv conversion, numbers with $'s and commas embedded, excel's date formatting nonsense, etc. I don't do much perl these days, having switched to python for most of my stuff. There is at least one python package for this: http://pypi.python.org/pypi/xlrd A google search on ``python excel reader'' came up with quite a few hits. Of course there are easy python dbi interfaces to mysql, postgresql, and other SQL databases as well. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It is practically impossible to teach good programming style to students that have had prior exposure to BASIC: as potential programmers they are mentally mutilated beyond hope of regeneration. -- Dijkstra ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] using Linux as a front-end controller for a SAN?
On Tue, Oct 12, 2010, Rudi Ahlers wrote: Hi all, I hope someone can shed some light on this for me. Has anyone tried, or have experience with, setting up a Linux server to manage a few NAS devices and thus make them all visible to the clients as one large SAN? I don't know about Linux solutions for this, but I did see what appeared to be an interesting solution for this at a WMware meeting recently. Falconstor Software virtualizes SAN storage in much the same way VMware virtualizes servers. My guess is it isn't cheap, but reinventing wheels can be expensive too. http://www.falconstor.com/ Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Democracy is the theory that the common people know what they want and deserve to get it good and hard. == H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: linux desktop market share more than 1%
On Sat, Oct 09, 2010, Marko Vojinovic wrote: ... I don't believe that profit is the reason why Adobe and others don't offer a Linux version of their products. I would rather say it is incompetence to maintain the code that is portable across OS's. And that says something about the quality of their products and skill level of their programmers, IMNSHO. I think Linux community is actually better off not using any of that crap software, if possible (I wonder why flash player comes to my mind right now...). I really came to doubt the competence of Adobe's programmers when I tried installing Photoshop Elements on a Mac, but it wouldn't even try to install because I OS X installed on a case-sensitive file system. When I see this, it leads me to believe that they can't even bother for consistency in file/directory names, much less more important things. If their software had been designed and implemented in a way one would expect from a high-class professional commercial company, they would certainly have next to zero problems porting it to Linux and gaining additional market (no matter how slightly bigger, it's bigger nevertheless, and every buck counts). The fact they don't do it shows that they find it hard to maintain their code for a Linux platform. And that is a consequence of bad design and/or implementation of their software, not lack of market. See above. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Virtually everything is under federal control nowadays except the federal budget. -- Herman E. Talmadge, 1975 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: linux desktop market share more than 1%
On Fri, Oct 08, 2010, Les Mikesell wrote: On 10/8/10 5:55 PM, Warren Young wrote: ... Y'all may recall a different example: Word Perfect was also once offered on Linux for about a year, then pulled. OpenOffice wasn't even around at the time, so you can't blame competition. Corel had a near open field to play in, and still couldn't make a buck. Did you ever try that product? Even free it wouldn't have been a win against Word on Windows - which was getting bundled on most new PCs at the time anyway. Au contraire, In September 1997 when we installed our first Linux system in a mission-critical position, it was in a law office as a file and print server for a bunch of Windows machines. The office manager was bitching mightily that their productivity dropped by about 50% when they were forced to use MS-Word instead of WordPerfect. These were very good legal secretaries who hated having to reach for a mouse to do anything, and loved the ``Reveal Codes'' ability in WordPerfect. I had to laugh one day when I got a phone call where the caller's first words were ``I want Reveal Codes''. I do have one Linux system where I'm the resident Linux Geek where the user is a late '60s psychologist with few computer skills who loves it. When her Windows for Workgroups machine needed to be replaced, I offered to install Linux on a new machine with StarOffice (long before OpenOffice.org was around), etc. I told here that we could install Windows on the machine if she didn't like it. This was in mid-2001, and she's been happily using Linux since. She is very active politically, handling large numbers of Microsoft Office files through several election cycles without problems. The main software she uses now are OpenOffice.org, Thunderbird, and Firefox. On the other hand, when she wanted to do things with digital photos from here camera, she constantly had problems dealing with file transfers using a USB flash card reader, mostly properly unmounting and/or finding the proper data (she has a Psy.D. so is hardly a dummy). I suggested she get a Macbook when she needed a laptop, and I get far fewer calls for assistance on this than on the Linux box, and will probably replace the Linux system with an iMac when the Linux hardware goes south. In this case, she comes to me when there's an issue with the Linux system, and doesn't try to install software, and pretty much leaves things alone on the desktop. I rarely get calls for assistance on this system, far fewer than her Windows-Using friends and associates who are constantly dealing with malware (a fact that she frequently relishes as she tells them how she doesn't have these problems with her Linux system :-). That said, this woman is a friend of my wife's and gets my Geek services for free. I have tried to get my wife to use a Linux desktop to no avail, and had to give her a Mac Mini for her birthday to wean her away from her Windows system. I told her this was a present that was as much for me as for her, and she wouldn't have to listen to me curse every time I had to deal with her old Windows box (now I only curse when Microsoft Office 2008 for Mac hangs :-). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Virtually everything is under federal control nowadays except the federal budget. -- Herman E. Talmadge, 1975 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: linux desktop market share more than 1%
On Thu, Oct 07, 2010, m.r...@5-cent.us wrote: Benjamin Franz wrote: ... '98. But it's starting to have a visible presence, thanks to Vista. mark both hands on the gun, point at foot, fire! On the other hand, when I've attended events for developers such as a Plone bootcamp and Python day at the University of Washington, at least 75% of the laptops were Macbook [Pros]. I have gone from OpenDesktop on SCO in the early '90s to Linux from 1996 or so to OS X shortly after it came out. The vast majority of my development is on Linux servers, but OS X Just Works(tm), and I don't have to be constantly fiddling to get tools working. The vast majority of desktop users simply want to do things without having to worry about it. We are using some Linux desktops today at clients where their only use is e-mail, web browsing, and running a database application in a terminal, but this is the exception rather than the rule. The clients here not doing general purpose desktop stuff so don't have to worry about putting the pieces together to do their jobs. I would compare this to my experience with cars. Even though I built and raced formula cars for 13 years and have had a variety of stree cars ranging from hot rod Fords in the '50s, a Morgan Plus 4, and an Aston Martin DB-2 Drop Head Coupe, I drive a Subaru Legacy Wagon because it always works and goes pretty much anywhere. While I *CAN* deal with cars at a very low level (or could before they became controlled by on-board computer networks), I don't want to for every day use. Linux on the desktop is great for people who like to get under the hood and tweak (or who have a tame Linux Geek to do it for them), but not so much for people who just want to drive it. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The difference between science and the fuzzy subjects is that science requires reasoning while those other subjects merely require scholarship. -- Robert Heinlein ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplex networkprinter for Linux
On Thu, Oct 07, 2010, James Szinger wrote: On Thu, Oct 7, 2010 at 8:19 AM, Boris Epstein borepst...@gmail.com wrote: On Thu, Oct 7, 2010 at 9:39 AM, James Szinger jszin...@gmail.com wrote: Recently at work, I had to set up a new HP, and had a hard time finding a Linux PPD, and our sysadmin had no more success. I ended up grabbing the OSX PPD and removing the Mac specific parts. What was the new HP you were having trouble setting up at work, if you happen to remember? It's an HP LJ P4515, and it works well now that it is setup. To find the Linux driver, I went from the printer's web page to the HP support site to the HPLIP site. The first time, my browser crashed. The second time, I didn't see anything obvious to download. Then I gave up and hacked the Mac PPD. Now, in hindsight, I see that hplip-3.10.6.tar.gz has a suitable PPD. I found the process much more difficult than it should be. I have been very disappointed in HP's support for older hardware (for some loose definition of older). After a hard drive crash required reinstalling the HP drivers for an old ScanJet, the drivers were no longer available from HP. I replaced that scanner with a new ScanJet 5590 early in 2009, but couldn't use it on my new Macbook Pro with Snow Leopard until the 2nd quarter of 2010 as HP didn't have drivers for it until then (their web site said they would be available in September when I first started looking in August). That said, we generally use single-function HP network printers that support PCL5 and PostScript as these Just Work(tm) without anything fancy. My main printer here is an HP 4M Plus with duplex that I bought new in November 1995. It just keeps on printing, although I did spend about $200 last year to have it serviced and new rollers installed. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Government is the great fiction, through which everbody endeavors to live at the expense of everybody else. -- Frederic Bastiat ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [Slightly OT] Open Source Development + Tools - Book/Resource?
On Mon, Sep 27, 2010, Tim Nelson wrote: Greetings all- My apologies for the slightly OT post. My primary production platform *IS* CentOS 5.x with a minor scattering of 4.x machines behind firewalls here and there... I find that I'm being placed more and more into a 'quasi-developer' role which strays some from my normal system/network admin duties. Specifically, having to work with the deep internals of make, autoconf, libtool, cross platform compilation, non-standard libs, etc. My head spins some days trying to work through some of these types of issues. I'm hoping someone knows of a good resource or book that explains the general 'open source' or '*NIX' method of application development, compilation, and dependency/library handling. Specifically, how to take source, and turn it into a ./configure, make, make install type release and everything that is involved in doing so. My first recommendation is always Kernighan and Pike's ``Unix Programming Environment'', ancient but still excellent. Another is ``GNU Autoconf, Automake, and Libtool'' by Vaughan, Elliston, Tromey, and Taylor. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Microsoft is to computers what Phillip Morris is to lungs. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Transferring system to new drive
On Tue, Sep 14, 2010, Timothy Murphy wrote: Is there a document with instructions for this? I've had smartd warnings that a hard disk in my server is sick, so I am installing a new drive (in addition to the old). I was thinking of copying the old root partition with sudo cp -a -P /* /mnt/hd (after mounting the prospective new root partition). Then I'd have to modify the new /etc/fstab . Is that a sensible approach? IHMO, the most sensible approach is to do a fresh install on a new HD. After the install is complete, install and mount the old HD read-only to allow you to copy things over. I just went through this process about 10 days ago when a fan went Tango Uniform on our mail e-mail/file server which had been up 1,390 days before the crash. The old system had two partitions, one for ``/'', the other on ``/home'' making it easy to copy the old ``/home'' to the new one using any of a number of tools. I prefer ``cd /oldhome; find . | cpio -pdum /home'' as it takes care of everything (of course it's important to add the appropriate users and groups before doing this). Using ``rsync'' would also work, but given that the initial copy is not likely to have anything to update, I prefer ``cpio''. Things get a bit more complicated when the old and new systems are different distributions as user/group ids may differ. In my recent case, the old machine was running SuSE Linux Enterprise 10 while the new one is CentOS 5.current. This required a bit of ``chown -R username: ~username'' work after the ``/home'' copy to get things the way CentOS prefers. In this case transferring user accounts was complicated a bit as SuSE used different encryption in the ``/etc/shadow'' file so simply copying the relevant part of the files was not sufficient, but the passwords had to be reset so CentOS recognized them. In our case, we didn't have to worry about things that were installed under /usr/bin as we use the OpenPKG portable package management system for pretty much everything including vendor systems like openssh and postfix, and they are installed under the ``/home'' file system. Installing non-distribution software under /usr/local with that either in its own file system or symlinked to a non-root file system avoids having to sort out what belongs to the distribution, and what has been added from other sources. With most open source software this simply requires using a simple option when building ``./configure --prefix=/usr/local ...'' This was standard practice with open source software long before Linux came around, and is probably my main gripe with Linux standards (the other is changing APIs without considering how the change breaks installed systems). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Just because you do not take an interest in politics doesn't mean politics won't take an interest in you. -- Pericles ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] irq 58 nobody cared.
I built a new server about 10 days ago running CentOS 5.latest, and it's been presenting a message shortly after booting: irq 58: nobody cared (try booting with the irqpoll option) Call Trace: IRQ [800bb712] __report_bad_irq+0x30/0x7d [800bb945] note_interrupt+0x1e6/0x227 [800bae41] __do_IRQ+0xbd/0x103 [8006ca11] do_IRQ+0xe7/0xf5 [800a297e] hrtimer_wakeup+0x1d/0x22 [8005d615] ret_from_intr+0x0/0xa [8001240b] __do_softirq+0x51/0x133 [8005e2fc] call_softirq+0x1c/0x28 [8006cb8e] do_softirq+0x2c/0x85 [8006b346] default_idle+0x0/0x50 [8005dc8e] apic_timer_interrupt+0x66/0x6c EOI [8006b36f] default_idle+0x29/0x50 [8004923a] cpu_idle+0x95/0xb8 [8007796f] start_secondary+0x498/0x4a7 handlers: [801f74cf] (usb_hcd_irq+0x0/0x55) Disabling IRQ #58 Looking at /proc/irq/58, it apepars to be USB related: /proc/irq/58/ehci_hcd:usb2 /proc/irq/58/smp_affinity cat /proc/irq/58/smp_affinity cat /proc/irq/58/smp_affinity ,,,,,,,0002 This is an Asus M4N75TD main board with 4GB non-ECC RAM, and AMD Phenom(tm) II X4 925 Processor. It has an ancient ATI Rage PCI graphics board, booting into init 3 as it's basically headless. I am definately not a hardware guy (hence the name of my company:-). Does anybody have any suggestions as to what may be causing this? This machine also powered off spontaneously yesterday evening after 10 days of uptime (the previous system in this 4U chassis was running SuSE Linux Enterprise 10, and died of a chipset fan failure after 1,390 days uptime :-). All major components are new, including the power supply. The only old component other than the 4U California PC chassis is the original HD with its partitions mounted read-only to get the original data. Any suggestions? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 An almost hysterical antagonism toward the gold standard is one issue which unites statists of all persuasions. They seem to sense that gold and economic freedom are inseparable. -- Alan Greenspan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Interpreting logwatch
On Thu, Sep 09, 2010, Natxo Asenjo wrote: On Wed, Sep 8, 2010 at 6:17 PM, Bill Campbell cen...@celestial.com wrote: I think it's a mistake to discount any attacks involving php as the vast majority of the systems I have had to clean up after cracks have been compromised through php vulnerabilities, usually in conjunction with weak user level passwords. IHMO, admin tools like phpMyAdmin, webmin, and usermin should be carefully restricted, preferably only accessible via a private LAN, not from the public internet. Use a VPN to access from the public internet if necessary. We don't install usermin in most cases as I have seen it used to exploit security bugs on old SuSE systems that permit root access. Last time I checked, webmin and usermin were written in Perl ;-), no php there. True enough (although very ugly perl without adequate paramter checkind in come cases :-) should have said different topic. If you're running a web app with a known vulnerability and it's available from the internet, then you're in trouble, that's for sure. Even if it doesn't have known vulnrabilities, running admin applications that may have root capabilities without guarding against unauthorized access is a recipe for trouble. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Good men can muddle through a bad constitution, but bad men can wreck the best of them. -- Aristotle ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Interpreting logwatch
On Wed, Sep 08, 2010, Timothy Murphy wrote: Giles Coochey wrote: The likelihood is that someone ran a vulnerability scanner against all your available services, logwatch found evidence of that vulnerability scan, and you should check whether any other vulnerabilities were scanned for and perhaps found... To do that you should manually check your log files or use a better tool. Such as ... While fail2ban and swatch are good tools, apache mod_security is probably better for dealing with this type of thing as it is designed to minimize attacks on web services. I think it's a mistake to discount any attacks involving php as the vast majority of the systems I have had to clean up after cracks have been compromised through php vulnerabilities, usually in conjunction with weak user level passwords. IHMO, admin tools like phpMyAdmin, webmin, and usermin should be carefully restricted, preferably only accessible via a private LAN, not from the public internet. Use a VPN to access from the public internet if necessary. We don't install usermin in most cases as I have seen it used to exploit security bugs on old SuSE systems that permit root access. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 all bureaucracies will bear close watching, and none more so than that which comes into power in a wave of popular enthusiasm, and with the avowed purpose of saving the country from ruin. -- H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Moving users from Debian-based distro to CentOS
On Mon, Aug 09, 2010, Keith Roberts wrote:
On Mon, 9 Aug 2010, Gary Greene wrote:
To: CentOS list centos@centos.org
From: Gary Greene ggre...@minervanetworks.com
Subject: Re: [CentOS] Moving users from Debian-based distro to CentOS
On 8/8/10 10:59 PM, John R Pierce pie...@hogranch.com wrote:
On 08/08/10 10:47 PM, Dotan Cohen wrote:
I have a Debian machine with four users that I plan on migrating to
CentOS. As per Debian habits the UIDs start with 1000.
Is it enough to reuse the Debian /etc/shadow and /etc/passwd files
over? Or will I need to configure some other things? I had considered
just creating four new users starting from UID 500 then chown -R -ing
the user's home directories, but I find that invasive and possibly
error prone (maybe there are files that are not owned by them).
what about using the `find` command, and piggy-back
the chown command on that?
`pinfo find`
I find that it's fairly easy to migrate users from the old system
to the new by creating rsync modules for each user pointing to
the user's $HOME directory, then using rsync to copy everything
to the user's directory to the new system.
This does not require having the uid/gid the same on the two
systems, only that the user and group names be consistent. Here
are a couple of sample rsyncd.conf entries for this:
[bill_upd]
uid = bill
gid = csys
read only = false
path = /home/bill
comment = /home/bill
use chroot = yes
# only allow internal network
hosts allow = 192.168.253.0/24
hosts deny = *
list = no
[john_upd]
uid = john
gid = users
read only = false
path = /home/john
comment = /home/john
use chroot = yes
# only allow internal network
hosts allow = 192.168.253.0/24
hosts deny = *
list = no
Then a fairly simple loop on the source machine can copy/sync
each user's data from the old machine to the new one:
#!/bin/bash
for user in bill john; do
rsync -varP ~$user/ dstmachine::${user}_upd/
done
The rsync command takes care of the user/group mappings, and is
very efficient. One can make an initial run to get the bulk of
each user's files to the new machine, then do a final rsync just
before the cut-over adding ``--delete'' to the rsync command to
get rid of any files deleted from the old machine since the
initial run.
We have used this to migrate ISP mail servers with thousands of
user's $HOME directories containing Maildir mail stores with
minimal down time. In this case, we created all the user
accounts on the new machine so their $HOME directories existed,
then did the rsync copies after switching the DNS for the mail
servers to point to the new machine. There was a fairly short
period in which users would see only new mail that arrived until
their Maildir folders had been completely copied. On a machine
with about 8,000 e-mail users, and gigabytes of data, it took a
bit more than an hour to rsync all the user's accounts.
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
Voice: (206) 236-1676 Mercer Island, WA 98040-0820
Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792
I do not feel obliged to believe that the same God who has endowed us
with sense, reason, and intellect has intended us to forego their use.
-- Galileo Galilei
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Programming Need
On Thu, Aug 05, 2010, Joseph L. Casale wrote: Hey guys, Where is a good place people here have used with luck to find devs interested in work? The Seattle Unix Group has a moderated mailing list for members interested in jobs, contract work, etc. Send a message to the list at slug-j...@seaslug.org, preferably plain-text so it doesn't get caught in people's spam filters. I am the list moderator, and approve things as soon as I see them. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 You need only reflect that one of the best ways to get yourself a reputation as a dangerous citizen these days is to go about repeating the very phrases which our founding fathers used in the struggle for independence. -- Charles A. Beard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OpenLDAP authentication, account expired when it's not.
On Mon, Jul 26, 2010, Scott Robbins wrote: On Mon, Jul 26, 2010 at 03:44:48PM -0700, Bill Campbell wrote: I am trying to set up LDAP authentication for CentOS workstations, but can't get it to authenticate properly. Authentication fails saying the account has expired when I know for certain that it has not (e.g. ldapsearch authenticated with the appropriate uid and password returns shadowLastChange 14816 and shadowMax 9). Well, I'm just going to spam my own page. Give it a gander, and see if following it from the get go works. Note the link to the forum thread in it--it's possible, though not proven, that CentOS (probably RH) *might* have broken ldap. http://home.roadrunner.com/~computertaijutsu/ldap.html All I can say is that it works for me, but--and it's probably an important but--I haven't set it up from scratch on CentOS 5.5 yet. Thanks. I have to go to a client site this afternoon to do some fire-stomping, and will take a look at this when I get back. A quick scan, and looks like it covers all the bases. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 There never was a democracy that did not commit suicide. -- Samual Adams ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] OpenLDAP authentication, account expired when it's not.
I am trying to set up LDAP authentication for CentOS workstations, but can't get it to authenticate properly. Authentication fails saying the account has expired when I know for certain that it has not (e.g. ldapsearch authenticated with the appropriate uid and password returns shadowLastChange 14816 and shadowMax 9). The last time I did this seriously for authentication was using Apple iMacs authentication against a SuSE Linux machine so it's entirely possible I'm not doing the right thing today. Most of the sites where we're using ldap and nss are not authentication, but simply going to user's $HOME directories to deliver e-mail to Maildir stores which doesn't require authentication. FWIW, I just checked an old SLES9 system authenticating against another SuSE system by telnet'ing to its POP3 server and that works as expected so it's something different in the way SuSE's PAM and CentOS' works (using MD5 passwords). I have done a fair amount of google/RTFM as well as reading the pam documentation on the CentOS client machine, and don't find anything that helps me figure out is causing it to think the account has expired. The LDAP attributes that I think are relevant on a test account are below. I don't see anything here that looks hinky, but then I am fairly ignorant on PAM authentication. shadowExpire 0 shadowFlag 0 shadowInactive 0 shadowLastChange 14816 shadowMax 9 shadowMin 0 shadowWarning 7 Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 I ask, sir, what is the militia? It is the whole people. To disarm the people is the best and most effectual way to enslave them.-- George Mason ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] security compliance vs. old software versions
On Wed, Jun 30, 2010, Frank Cox wrote: On Wed, 2010-06-30 at 15:14 -0400, m.r...@5-cent.us wrote: Sorry, you lost me here. I turned off all access to the h/d/ramdisk on the printers, and left it off. This, of course, slows things down a lot, but it's Secure. The point is that the security scan is supposed to be verifying that your setup is, in fact, secure. If you change your setup before running the scan, and then change it back immediately afterward, how is that verifying that your setup is, in fact, secure? What you scanned != what you are actually using. There are fundamental problems with the PCI compliance checking that I've seen. I've had them say that sites accept SSLv2 when they explicitly don't as a real test shows (e.d. use openssl in client mode to attempt to connect using that protocol). The one that really frosts me is that the systems we support use a combination of tcp_wrappers, swatch, and software I've written that automatically blocks IP addresses which exhibit malicious behaviour, similar to fail2ban, but using a DNSRBL to automatically block sites have been identified as attackers. The PCI testers get blocked because of what appear to be cracking attempts, then have the gall to say that the site fails because it appears to have active firewalls. Well DUH! Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Democracy is the theory that the common people know what they want and deserve to get it good and hard. == H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] security compliance vs. old software versions
On Tue, Jun 29, 2010, Brian Mathis wrote: On Tue, Jun 29, 2010 at 5:11 PM, Les Mikesell lesmikes...@gmail.com wrote: What's the correct response to a security scan that points out that apache versions below 2.2.14 have multiple known vulnerabilities? Is there an official document about what known vulnerabilities have been fixed in the RHEL/CentOS updates or do you have to wade through the changelog to try to find each thing? -- Les Mikesell lesmikes...@gmail.com Have them read this: http://www.redhat.com/security/updates/backporting/?sc_cid=3093 If you're dealing with an auditor, that should be all they need as at least they can write down that you've made a conscious decision based on that information. That's assuming the auditor can read, which seems doubtful considering what I've found with Securityfocus and similar PCI testing outfits. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Financial panics, if left alone, rarely cause much damage to the real economy, output, employment or production. Asset values fall sharply and wipe out those who borrowed and lent too much, thereby redistributing wealth from the foolish to the prudent. -- Arthur Laffer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.4 off-center on SuperMicro console
On Fri, Apr 30, 2010, Rudi Ahlers wrote: On 4/29/10, Richard Karhuse rkarh...@gmail.com wrote: ... , lemme check and see. could this be the problem? I tried an LCD monitor, and bypassed the KVM, but the problem remains. I generally cheat on things like this, setting the video to plain VESA and a generic monitor at 1024x768. We generally run servers in init 3, and do everything via ssh though this isn't critical after the initial installation. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 There is nothing as stupid as an educated man if you get him off the thing he was educated in. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] X11 problem with remote login via SSH
On Wed, Apr 28, 2010, fred smith wrote: HI all! Strange problem that began occurring in last few weeks. Centos 5.4, up to date. I sometimes log in remotely via ssh using ssh -X and read mail via mutt. Now and then I want to use balsa instead. Try ``ssh -Y'' instead of ``ssh -X'' and/or put this in your ssh_config file: ForwardX11Trusted yes Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Democracy must be sometihng more than two wolves and a sheep voting on what to have for dinner -- James Bovard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (OT) OpenOffice.org calc chart strangeness.
On Mon, Apr 05, 2010, JohnS wrote: On Sun, 2010-04-04 at 20:16 -0700, Bill Campbell wrote: My problem is that OO/NeoOffice charts don't seem to take the first column of data as the X-Axis, but put everything on the Y-Axis which doesn't make sense to me. --- Look at the top row and Click on Chart (the icon). Then chart wizard will pop up, click number four (4). Default is set to Y axis. Also I have a like a Excel made sheet that only excel will do but the ability to do it in OO is not there but it still functions the same as exel when ran in OO. Odd it is. I think I finally figured this out after much trial and error. After selecting multiple columns and cliking on the chart icon, the trick is to select number 2. Data Range in the left column, then click on the ``First column as label'' to get it to use the first column as the X-Axis values. To me this is not intuitively obvious. Many thanks to those who contributed to this thread. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 A government which robs Peter to pay Paul can always depend on the support of Paul -- George Bernard Shaw ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (OT) OpenOffice.org calc chart strangeness.
On Sat, Apr 03, 2010, Pascal Robert wrote: Le 2010-04-02 à 20:19, Bill Campbell a écrit : ... The Linux tie-in is that I'm getting data from a postgresql database that lives on a Linux box, and none of the fancy commercial products seem to be able to use it in their data sources. You should be able to connect to it with a ODBC driver for pgsql, Excel on both Windows and OS X should be able to talk to it by ODBC. Connecting OpenOffice.org/NeoOffice to postgresql isn't a problem using the JDBC drivers (which seems to be the logical choice given the Java heritage of StarOffice-OpenOffice.org. I have been connecting them to postgresql and mysql for year now. My problem is that OO/NeoOffice charts don't seem to take the first column of data as the X-Axis, but put everything on the Y-Axis which doesn't make sense to me. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If we got one-tenth of what was promised to us in these acceptance speeches there wouldn't be any inducement to go to heaven. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] (OT) OpenOffice.org calc chart strangeness.
I am attempting to create a simple line chart graphing three columns from a soffice-calc spreadsheet. I expect it to take the leftmost column as the X-Axis, plotting the others on the Y-Axis, but it always creates an X-Axis of the row number in the columns, and the first column amongst the data. I have tried this on OpenOffice.org 3.2.0, NeoOffice(R) 3.0.2 Patch 2, iWork Pages, and Excel 12.2.4 in Microsoft Office 2008 for Mac. It does what I expect in iWork Pages and M$-Excel, but not in the various incantations of OpenOffice.org. I OO-calc has gone to a fancy wizard thingy that doesn't seem to have any way to specify details for the X-Axis, and I can't find anything useful in the on-line documentation. Does anybody know how one gets this to work in OpenOffice.org? The Linux tie-in is that I'm getting data from a postgresql database that lives on a Linux box, and none of the fancy commercial products seem to be able to use it in their data sources. On the other hand, I have written a python script that extracts the data from the postgresql database and creates the pretty reports using groff and gplot totally on Linux which is faster in any case for my current problem. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Blessed are the young, for they shall inherit the national debt. -- Herbert Hoover ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] APIC error on Intel Atom CPU, CentOS 5.x
On Tue, Mar 16, 2010, Timo Schoeler wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 thus JohnS spake: On Mon, 2010-03-15 at 19:13 -0700, Bill Campbell wrote: I am seeing ``APIC error on CPU3: 60(60)'' warnings from dmesg periodically on a CentOS 5.4 box, kernel 2.6.18-164.11.1.el5. The CPU is an Intel(R) Atom(TM) CPU 330 @ 1.60GHz. I am not a hardware type, and don't have a clue what this means. Try noapic on the kernel boot parameter. Also if that don't work out try acpi=off Hi, just jumpin' in: I too have an Atom-based machine which runs *rock solid* with ''noapic'' as parameter, and crashes without. However, I've got another machine based on exactly the same hardware (board, CPU, memory, HD, everything) and the same BIOS config -- running flawlessly without the parameter given. We have four boxes in small chassis (micro-atx?) with Atom processors that are having no problems. These machines are basically gateway boxes for small businesses and do OpenVPN tunnels inter-connecting three offices in Texas and one in Missouri. The box in question is in a larger chassis that doesn't require a low-profile NIC. It's several months newer than the others so I don't know if they're the same main board. This is occurring while an rsync-3.0.4 process is receiving data sent by a machine running rsync-3.0.7 (I just updated the CentOS box to rsync-3.0.7 since noticing that it was a bit dated). This is the only significant load on this machine at this time. Maybe your running out of kernel threads and or APIC can't distribute interrupts across the CPU. Or APIC don't like your motherboard/cpu under stress. My impression was that it was not load (I tortured both machines running BOINC for a few weeks) but traffic. Thus, I suspect the (on board) NIC to be a bit... crappy (IIRC it was Realtek)? I've always wanted to test it with a reasonable NIC. This shouldn't be on the on-board RealTek NIC, but on the Intel that's in a regular slot. On the other hand, when I look at the dmesg output it appears that it's the RealTek on the public NIC. FWIW, after I updated this to rsync-3.0.7 yesterday afternoon, I restarted the rsync using -vP to monitor it, and it has been transferring without a glitch for 15 hours now. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Property must be secured, or liberty cannot exist. -- John Adams ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] APIC error on Intel Atom CPU, CentOS 5.x
I am seeing ``APIC error on CPU3: 60(60)'' warnings from dmesg periodically on a CentOS 5.4 box, kernel 2.6.18-164.11.1.el5. The CPU is an Intel(R) Atom(TM) CPU 330 @ 1.60GHz. I am not a hardware type, and don't have a clue what this means. This is occurring while an rsync-3.0.4 process is receiving data sent by a machine running rsync-3.0.7 (I just updated the CentOS box to rsync-3.0.7 since noticing that it was a bit dated). This is the only significant load on this machine at this time. This machine has locked up requiring a hard reset twice while this rsync process has been running at night with no problems at other times. Any suggestions? Thanks. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It is better to die on your feet than to live on your knees! -- Emiliano Zapata. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] /etc/group file entries
Looking at the documentation of the /etc/group file including some google searches, it appears to me that, contrary to the man pages for group, Linux systems generally do not put membership user names for the user's primary group in the record for it in the /etc/group file, only for secondary groups. FreeBSD seems to do the same thing while SCO OpenServer has full entries for the primary group as well as secondaries. Is there a best practice when manipulating these regarding line length? I've see articles that recommend splitting long entries into multiple group lines with the same group id, while at least some SuSE Linux Enterprise systems produce single long lines (30,869 characters on a site with about 5,100 accounts). How would the system's group maintenance routines interact with a group file where this was done? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The man who produces while others dispose of his product is a slave. Ayn Rand ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Hylafax does not pick up.
On Thu, Mar 04, 2010, James B. Byrne wrote: We run the distro HylaFax on a CentOS-5.4 host. On infrequent occasions we notice that the server will not pick up an incoming call. It reports listening to modem rings. Now, it seems to me that picking up the call should be under the control of the modem but I notice that there exists a setting in Hylafax for the number of rings before picking up. The default value for this is 0 (zero) but we have it set to 1 (one). Because of this option I am not sure whether there is something wrong with the server or with the modem. Has anyone else experienced this problem and discovered its cause? I don't run the CentOS version of HylaFAX, but one I have built myself, and use its faxgetty to handle incoming fax and data (we still have some dialup uucp connections :-). The faxgetty daemon logs pretty much everything it does so you may find useful info there if you're using it. FWIW, I've never been able to figure out any of the other fax getty programs, and have been using the one with HylaFAX (nee FlexFAX) for the better part of 20 years going back to SCO Xenix days if I remember correctly. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It will be of little avail to the people that the laws are made by men of their own choice if the laws be so voluminous that they cannot be read, or so incoherent that they cannot be understood. -James Madison, Federalist Paper #62 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to find out promiscuous mode
On Wed, Feb 03, 2010, Vadkan Jozsef wrote: How can I find out that someone is using it's network card in promiscuous mode in a subnet? We use the swatch log watcher, to detect lines like this in /var/log/messages (this is from a system running VMware virtual machines in bridging mode so this is normal): Jan 28 17:35:57 pogo kernel: device eth1 entered promiscuous mode Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Our Foreign dealings are an Open Book, generally a Check Book. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] iPod Touch/iPhone VPNs with CentOS.
I am looking at options for VPN connections from iPhones and iPod Touches to CentOS systems. We use OpenVPN for connections with Windows, Mac OS X, and other Linux systems, but there don't appear to be any OpenVPN clients for iPhones (presumably because there are no tun/tap interfaces available yet). My experiences getting IPsec running on CentOS systems with OpenVPN have not been pretty. Any suggestions are welcome. Thanks. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The stamping of paper is an operation so much easier than the laying of taxes, that a government, in the practice of paper emissions, would rarely fail, in any such emergency [such as an election], to indulge itself too far in the employment of that resource... -- Alexander Hamilton ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iPod Touch/iPhone VPNs with CentOS.
On Sun, Jan 24, 2010, Eric Feldhusen wrote: I know my iPhone is able to connect to the PPTP VPN running on my pfsense firewall. I haven't looked for a PPTP package for Centos, but that's one option to try. Thanks, but I don't like PPTP for a variety of reasons, not the least being that it's a great example of kindergarten cryptography. More important though is that it requires kernel support that's not standard in CentOS, and I would like to stay away from that if possible. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It's time to feed the hogs -- Unintended Consequences ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] unison versus rsync
On Thu, Jan 14, 2010, Joseph L. Casale wrote: I didn't think unison was maintained any more - and I wouldn't expect anything to beat rsync with the -z option on a slow link. I'd just use the -P option and restart it when/if it fails. It wouldn't hurt to do subsets first since they will be quickly skipped when you repeat from the root. If you have a huge number of files it might be worth finding a way to update rsync to a 3.x version which will not need to xfer the entire directory listing before starting. Looks like rf has 3.0.7, thanks for that tip. Frankly, I abhor the thought of even using rsync for this, it's over a vpn so there is absolutely no need for encryption but I don't know another tool that can transfer diffs only? If you use rsync modules, the transfer can be done without encryption, and you restrict access to directories and specific IPs and CIDR blocks. We use this extensively to allow remote clients to update things like DNS files which go to client-specific directories, and are restricted to the IP address(es) of the client's system(s). Another feature of rsync modules that can be useful is that each module can specify a user and group thus one can rsync user directories between systems where the user names are the same but uid and gid may differ. Rsync does not use ssh when doing module transfers so if the data is sensitive, I do the transfers through OpenVPN tunnels. This also eliminates the problems of ssh authentication between trusted systems. Given the ability of rsync modules to restrict access by IP address, I have never bothered with additional authentication for this type of transfer. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Few skills are so well rewarded as the ability to convince parasites that they are victims. -- Thomas Sowell ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] unison versus rsync
On Thu, Jan 14, 2010, Joseph L. Casale wrote: Another feature of rsync modules that can be useful is that each module can specify a user and group thus one can rsync user directories between systems where the user names are the same but uid and gid may differ. I have been looking at this all morning. Is there any way to auth with keys or something unique so I can script this securely? Iiuc, the only auth is done through these rsync user/pass pairs unless you do it with hosts etc. Using rsync in daemon mode with modules requires no authentication if you are comfortable with restricting access to each module by IP address or CIDR block. The rsync man page also says: Some modules on the remote daemon may require authentication. If so, you will receive a password prompt when you connect. You can avoid the password prompt by setting the environment variable RSYNC_PASSWORD to the password you want to use or using the --password-file option. This may be useful when scripting rsync. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Many companies that have made themselves dependent on [the equipment of a certain major manufacturer] (and in doing so have sold their soul to the devil) will collapse under the sheer weight of the unmastered complexity of their data processing systems. -- Edsger W. Dijkstra, SIGPLAN Notices, Volume 17, Number 5 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] what provices replace command?
On Sat, Jan 09, 2010, Rudi Ahlers wrote: I am used to using the replace command to quickly replace strings in file, but it's not available on some of my fresh CentOS 5.4 servers. yum info replace, yum whatprovides replace, and yum search replace doesn't show me which package(s) to install to get it. So, does anyone know which package to install to get the replace command? Google doesn't help either since the work replace is too common The original replace command that I used for years was from the Kernighan and Pike ``Unix Programming Environment'', and is a simple shcll script that uses their ``overwrite'' command to safely edit a file in place. The command syntax is: replace old new file [file ...] MySQL created their own replace command that has different arguments and calling sequence (not having read KP obviously which is one of the must-have *nix books :-). I still use the original KP version, renamed ``csreplace'' to avoid conflicts with the mysql version. I've attached the csreplace and overwrite scripts which can be put someplace in PATH. A *MUCH* more flexible tool that can be used for editing in place is Ralf Engelschall's shtool script available here: ftp://ftp.gnu.org/gnu/shtool/ GNU shtool is a compilation of small but very stable and portable shell scripts into a single shell tool. All ingredients were in successful use over many years in various free software projects. The compiled shtool script is intended to be used inside the source tree of those free software packages. There it can take over various (usually non-portable) tasks related to the building and installation of such packages. The only problem I've found with shtool's subst option is that giving it a bad ``sed'' command results in zero length file(s) so it's a good idea to test complex substitutions. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Just because you do not take an interest in politics doesn't mean politics won't take an interest in you. -- Pericles : replace: replace str1 in files with str2, in place # PATH=:/bin:/usr/bin:/csrel25/bin # . /csrel25/etc/csspath# sets path for local system case $# in 0|1|2) echo 'Usage: replace str1 str2 files' 12; exit 1 esac left=$1; right=$2; shift; shift for i do if [ -s $i ] then overwrite $i sed s...@$left@$ri...@g $i fi done : overwrite:copy standard input to output after EOF : final version opath=$PATH case $# in 0|1)echo 'Usage: overwrite file cmd [args]' 12; exit 2 esac file=$1; shift new=/tmp/overwr1.$$; old=/tmp/overwr2.$$ : clean up on interrupt trap 'rm -f $new $old; exit 1' 1 2 15 : collect input if PATH=$opath $@ $new then cp $file $old trap '' 1 2 15 cp $new $file else echo overwrite: $1 failed, $file unchanged 12 exit 1 fi rm -f $new $old ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tiny webserver to run as root
On Sun, Jan 03, 2010, RedShift wrote: Hi all Does anyone have a suggestion for some software, a tiny webserver that is able to run as root and execute CGI scripts? It should be smaller than apache and preferably even smaller than lighttpd. It doesn't need a whole lot of features, it only needs to be able to execute CGI scripts. We use xml-rpc to handle administrative tasks that require root access, listening on 127.0.0.1 with authorization specific to particular tasks. This server is accessible in a very limited fashion from another xml-rpc server accessible through the normal apache server allowing restricted access to functions on the internal server. Setting up an xml-rpc server in python is very easy, and python xml-rpc clients are almost as easy to use as standard function calls. This allows us to handle specific administrative tasks from web pages while minimizing the security aspects of doing them through apache, php, and friends. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The state represents violence in a concentrated and organized form. The individual has a soul, bat as the state is a soulless machine, it can never be weaned from violence to which it owes its very existence. -- Mahatma Gandhi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Future of MySQL
On Sun, Dec 13, 2009, Kai Schaetzl wrote: I thought I post this link http://monty-says.blogspot.com/2009/12/help-saving-mysql.html in case anyone isn't aware of this yet and wants to email the EC. Another good reason to use postgresql :-). Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] openpkg
On Tue, Dec 08, 2009, Joseph L. Casale wrote: Anyone here using openpkg? Any thoughts about it? We have been using this since 2001 or so when we moved from Caldera Linux to SuSE. We now use it on CentOS, OpenSolaris, FreeBSD, OS X, and even SCO OpenServer 5.0.6a. For an old writeup I did on this see this page. http://www.celestial.com/support/Documentation/openpkg Using OpenPKG vastly simplifies the job of maintaining server software without having to depend on the underlying vendor's packaging, and does so with minimal intrusion on the system. We don't have to worry about what versions of apache, postfix, php, postgresql, mysql, berkeley db, etc. the vendor supplies as we use the OpenPKG packages in their place. Typically we get updates out to large numbers of systems within 24 hours of updates of things like clamav, samba, far quicker than CentOS or others make them available. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It's very glamorous to raise millions of dollars, until it's time for the venture capitalist to suck your eyeballs out. -- Peter Kennedy, chairman of Kraft Kennedy. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Getting EXTERN.h, perl.h, etc
On Thu, Dec 03, 2009, Charles E Campbell Jr wrote: Christoph Maser wrote: Am Donnerstag, den 03.12.2009, 18:43 +0100 schrieb Charles E Campbell Jr: Hello: I have a Fedora Core 11 system at home (Centos 5.2 at work). I'd like to build vim with huge and perl. This works under Centos, but fails at home: no EXTERN.h or perl.h (and, presumably, other things). So: is there a yum package I should be downloading, and if so, which one? (both the home computer and the work computer are 64-bit systems) Thank you, Chip Campbell The command: yum provides */$filename will tell you wich packages provide a certain file Thanks -- I'll try it out tonight at home. However, I note that trying it on my Centos machine yields: $ yum provides '*/EXTERN.h' Loaded plugins: fastestmirror Error: Caching enabled but no local cache of //var/cache/yum/addons/filelists.xml.gz from addons If I remember correctly, EXTERN.h file is often something that may be package dependent containing something like: #undef EXT #undef INIT #define EXT extern #define INIT(x) Perl distributions generally have an EXTERN.h and perl.h file that is used during the perl build process. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 What good fortune for governments that the people do not think. -- Adolf Hitler ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Adaptec SCSI Card 2930LP supported by CentOS 5.x?
On Mon, Nov 16, 2009, Tim Nelson wrote: I've never been able to get into the BIOS on it. It's almost like the card doesn't have one. When the system boots, there is not the usual 'addon card' operation where the card detects drives, displays it on the screen, then continues to POST. The system simply boots like the card isn't there. As long as you can boot from another device, the card is happily recognized and works flawlessly once an OS is running. I've looked into resetting the configuration on the card, etc... I just think in this case the card may be a lower end card used for secondary addon storage only without the option to boot... Have you tried pressing ctrl-A when the Adaptec display appears in the boot process? It's been a while since I looked at the Adaptec SCSI BIOS settings, but I know there's an setting to suppress the ctrl-A prompt on booting. I never changed it, but always ass*u*me*d that turning this off would still allow one to enter the BIOS settings without the prompt. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Government is the great fiction, through which everbody endeavors to live at the expense of everybody else. -- Frederic Bastiat ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Long tar -x: Box Shuts Down
On Thu, Nov 05, 2009, Mike -- EMAIL IGNORED wrote: My Centos 5.2 box shuts itself down during a long tar -x. There is plenty of disk available. This is new; it worked in the past. Any suggestions? Look in the logs, particularly dmesg, to see if there are any hints there. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 An almost hysterical antagonism toward the gold standard is one issue which unites statists of all persuasions. They seem to sense that gold and economic freedom are inseparable. -- Alan Greenspan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Long tar -x: Box Shuts Down
On Fri, Nov 06, 2009, Mike -- EMAIL IGNORED wrote:
On Thu, 05 Nov 2009 23:51:35 +, Mike -- EMAIL IGNORED wrote:
On Thu, 05 Nov 2009 11:04:50 -0800, Bill Campbell wrote:
On Thu, Nov 05, 2009, Mike -- EMAIL IGNORED wrote:
My Centos 5.2 box shuts itself down during a long tar -x. There is
plenty of disk available. This is new; it worked in the past.
Any suggestions?
Look in the logs, particularly dmesg, to see if there are any hints
there.
Bill
Nothing jumps out.
Mike.
I got it working again with a rescue, but it still crashes.
Here are some suspect lines from messages:
Nov 5 19:35:14 mbrc21 kernel: hda: drive_cmd: status=0x51 { DriveReady
SeekComplete Error }
Nov 5 19:35:14 mbrc21 kernel: hda: drive_cmd: error=0x04
{ DriveStatusError }
Nov 5 19:35:14 mbrc21 kernel: ide: failed opcode was: 0xb0
...
Nov 5 19:35:34 mbrc21 kernel: ACPI: PCI Interrupt :01:00.0[A] - GSI
16 (level, low) - IRQ 201
What do you think?
That sounds like either a hard drive going south, or perhaps
something in the file system off enough that it's pointing to
something off the disk.
In either case it doesn't sound good.
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
Voice: (206) 236-1676 Mercer Island, WA 98040-0820
Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792
Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation. -- Johnny Hart
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] E-Mail on SSH login?
On Mon, Nov 02, 2009, Ray Van Dolson wrote: On Mon, Nov 02, 2009 at 02:14:10PM -0800, ML wrote: Does anyone have thoughts on how to kick off an e-mail on SSH login? For security auditing purposes? You could probably do this by watching /var/log/secure, or even use something like pam_exec. We use swatch for this. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Only government can take perfectly good paper, cover it with perfectly good ink and make the combination worthless. -- Milton Friedman ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Zimbra help?
On Mon, Nov 02, 2009, ML wrote: Hi All, Is anyone versed in Zimbra? I have most things working except some MTA issue. I tried posting on the Zimbra forums after reading the docs, but my post was labeled as SPAM and the moderators have not replied to my private message to get my post reviewed. Who uses this type of method for getting help anyway? Aren't the days of Bulletin Board BBS's gone? Anyway... I installed ZCS for the first time today. Most things are running except I cannot send or receive mail. I get MTA errors. I assume that it is not running. When I send I get unable to connect to MTA. How do I diagnose the issue? The ``already in use'' message below probably means that you have the sendmail or some other MTA already running on the system which needs to be disabled. It's been a while since I looked at Zimbra, but I do know it wants to take over the system, using it's own MTA (Postfix), OpenLdap, MySQL, and IMAP so these must be disabled. in /var/log/zimbra.log: Nov 2 17:57:28 indie postfix/postfix-script[9282]: warning: not owned by root: /opt/zimbra/data/postfix/spool Nov 2 17:57:28 indie postfix/postfix-script[9289]: warning: not owned by root: /opt/zimbra/postfix-2.6.5.2z/conf/main.cf Nov 2 17:57:28 indie postfix/postfix-script[9290]: warning: not owned by root: /opt/zimbra/postfix-2.6.5.2z/conf/master.cf Nov 2 17:57:28 indie postfix/postfix-script[9291]: warning: not owned by root: /opt/zimbra/postfix-2.6.5.2z/conf/master.cf.in Nov 2 17:57:28 indie postfix/postfix-script[9294]: warning: not owned by postfix: /opt/zimbra/data/postfix/./spool/maildrop/E18EC1C1048D Nov 2 17:57:28 indie postfix/postfix-script[9295]: warning: not owned by postfix: /opt/zimbra/data/postfix/./spool/pid/master.pid Nov 2 17:57:28 indie postfix/postfix-script[9308]: starting the Postfix mail system Nov 2 17:57:28 indie postfix/master[9309]: fatal: bind 0.0.0.0 port 25: Address already in use Nov 2 17:57:28 indie saslauthd[9316]: detach_tty : master pid is: 9316 Nov 2 17:57:28 indie saslauthd[9316]: ipc_init: listening on socket: /opt/zimbra/cyrus-sasl-2.1.23.3z/state/mux Nov 2 17:57:28 indie zimbramon[2574]: 2574:info: Starting stats via zmcontrol Nov 2 17:57:59 indie zmmailboxdmgr[10822]: status requested Nov 2 17:57:59 indie zmmailboxdmgr[10822]: status OK Nov 2 17:57:59 indie zmmailboxdmgr[10894]: status requested Nov 2 17:57:59 indie zmmailboxdmgr[10894]: status OK Nov 3 01:58:00 indie postfix/postqueue[10943]: fatal: Queue report unavailable - mail system is down Nov 2 17:58:09 indie zmmailboxdmgr[11484]: status requested Nov 2 17:58:09 indie zmmailboxdmgr[11484]: status OK I have not done anything with Postfix at allU am sure it is the Fatal Bind message above, do I need to configure Postfix? I thought Zimbra did that on install? -Jason ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 The only freedom which deserves the name, is that of pursuing our own good in our own way, so long as we do not attempt to deprive others of theirs, or impede their efforts to obtain it. -- John Stuart Mill, 1859 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
