On Fri, 2011-09-09 at 05:09 +, Smith, Martin R.
[smma0...@stcloudstate.edu] wrote:
> When I attach gdb to the process, I have tried the main process and
> the four child processes, it provides no output.
> Here are the steps I'm taking:
> 1. On freeipa-server run htop and find the pid (or
I am installing FreeIPA on a new installation of Fedora 15. During
installation it gets to this point and fails:
The following operations may take some minutes to complete.
Ple
I removed the -w 4 from the config file. Here is what happens now.
When a user with expired password logs in the krb5kdc process now crashes,
instead of running at 100%.
If I attach gdb to the process before it crashes and attempt to login the
process doesn't crash. Here are the results of "bt
On 09/09/2011 11:38 AM, Jimmy wrote:
> I am installing FreeIPA on a new installation of Fedora 15. During
> installation it gets to this point and fails:
>
>
>
> The following o
I temporarily disabled SElinux(echo 0 >/selinux/enforce) and the install
completed. Did I miss something in the documentation? I didn't see anything
aboud SElinux in the install doc.
Jimmy
On Fri, Sep 9, 2011 at 1:09 PM, Dmitri Pal wrote:
> ___ Freeipa
Jimmy wrote:
I temporarily disabled SElinux(echo 0 >/selinux/enforce) and the install
completed. Did I miss something in the documentation? I didn't see
anything aboud SElinux in the install doc.
It should work in enforcing mode.
Can you provide the output of this:
ausearch -m avc -ts recent
If it crashes it is a bug in the KDC.
Can you please get us the core dump when it crashes ?
If you have abtrd installed it should be somewhere in /var/cache/abrt
(check /var/log/messages) to see where.
Alternatively you can run service krb5kdc stop
then as root in a shell run ulimit -c unlimited
It's been about 20 mins since I ran the install and did so with SELinux
disabled. I ran the command you suggested, but with 'today' as the argument
instead of 'recent'. This is the output:
ausearch -m avc -ts today
time->Fri Sep 9 14:24:12 2011
type=SYSCALL msg=audit(1315578252.415:214): arch
On Fri, 2011-09-09 at 13:44 -0400, Jimmy wrote:
> It's been about 20 mins since I ran the install and did so with
> SELinux disabled.
For future reference, please do not disable selinux, just put it in
permissive mode, so the AVCs will still be produced they will simply not
be applied against the
I'll go back to a clean system and re-install freeipa with SELinux in
permissive so we can see what's going on.
Jimmy
On Fri, Sep 9, 2011 at 1:50 PM, Simo Sorce wrote:
> On Fri, 2011-09-09 at 13:44 -0400, Jimmy wrote:
> > It's been about 20 mins since I ran the install and did so with
> > SELinu
Jimmy wrote:
It's been about 20 mins since I ran the install and did so with SELinux
disabled. I ran the command you suggested, but with 'today' as the
argument instead of 'recent'. This is the output:
ausearch -m avc -ts today
time->Fri Sep 9 14:24:12 2011
type=SYSCALL msg=audit(1315578252
To answer Rob's question : selinux-policy-3.9.16-23.fc15.noarch
And to correct myself from earlier, `echo 0 >/selinux/enforce` does set
SELinux to permissive, does not disable it. So the AVC's I sent are correct.
On Fri, Sep 9, 2011 at 2:10 PM, Rob Crittenden wrote:
> Jimmy wrote:
>
>> It's bee
On Wed, Sep 7, 2011 at 12:15 PM, Rob Crittenden wrote:
> Do you mean the test repositories on freeipa.org? You should not need to
> enable these, Fedora 15 should have everything you need. You probably need
> to enable updates-testing though.
OK, this is working now. I was using a private reposit
I have linked a zip the whole directory from abrt. After typing "abrt-cli -l"
it outputted:
-
Directory: /var/spool/abrt/ccpp-2011-09-09-13:41:51-972
count: 1
executable: /usr/sbin/krb5kdc
package:krb5-server-1.9.1-5.fc15
time: Fri 09 Sep 2011 01:41:51 PM CD
Hi,
On Thu, Sep 8, 2011 at 21:20, Simo Sorce wrote:
> On Thu, 2011-09-08 at 17:29 -0400, Dan Scott wrote:
>> Hi,
>>
>> On Wed, Sep 7, 2011 at 14:59, Dmitri Pal wrote:
>> > On 09/07/2011 02:45 PM, Dan Scott wrote:
>> >> I have a FreeIPA 1 system which is being migrated to FreeIPA 2. After
>> >> m
On 09/09/2011 03:14 PM, Smith, Martin R. [smma0...@stcloudstate.edu] wrote:
> I have linked a zip the whole directory from abrt. After typing
> "abrt-cli -l" it outputted:
> -
> Directory: /var/spool/abrt/ccpp-2011-09-09-13:41:51-972
> count: 1
> executable: /usr/sbin/krb5kdc
On 09/09/2011 07:28 PM, Dmitri Pal wrote:
> On 09/09/2011 03:14 PM, Smith, Martin R. [smma0...@stcloudstate.edu]
> wrote:
>> I have linked a zip the whole directory from abrt. After typing
>> "abrt-cli -l" it outputted:
>> -
>> Directory: /var/spool/abrt/ccpp-2011-09-09-13:41:51-972
>> cou
17 matches
Mail list logo
