[CentOS] busybox for centos

[premrajm]

Hi,

I am trying to build busybox for the centos-5.3,but facing issues in 
installing the busybox executable into the centos
filesystem. Is it possible to build a busybox for a server platform (x86) 
with centos.
 
 Thanks and Regards,

 Premraj


Disclaimer : This message is proprietary to Smartlink Network Systems Limited 
and is intended solely for the use of the individual to whom it is addressed. 
It may contain privileged or confidential information and should not be 
circulated or used for any purpose other than for what it is intended. If you 
have received this message in error, please notify the originator immediately. 
If you are not the intended recipient, you are notified that you are strictly 
prohibited from using, copying, altering, or disclosing the contents of this 
message. Smartlink Network Systems Ltd. accepts no responsibility for loss or 
damage arising from the use of the information transmitted by this email 
including damage from virus.


__

This email has been scrubbed for your protection by SecureMX.
For more information visit http://securemx.in
__

<>___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server 2008r2)

[Christoph Maser]

Am Freitag, den 05.02.2010, 05:20 +0100 schrieb Dan Burkland:
> Hey All,
>
> Just wondering if any of you have been able to setup CentOS 5.4 to 
> authenticate against AD on a Server 2008r2 Domain Controller. I am trying to 
> complete this particular setup however I have run into some difficulties such 
> as not being able to lookup domain users via getent passwd.
>
> Thanks for your input,
>
> Dan

You can find a documentation how to do that here:
http://wiki.centos.org/TipsAndTricks/WinbindADS

Chris


financial.com AG

Munich head office/Hauptsitz München: Maria-Probst-Str. 19 | 80939 München | 
Germany
Frankfurt branch office/Niederlassung Frankfurt: Messeturm | 
Friedrich-Ebert-Anlage 49 | 60327 Frankfurt | Germany
Management board/Vorstand: Dr. Steffen Boehnert | Dr. Alexis Eisenhofer | Dr. 
Yann Samson | Matthias Wiederwach
Supervisory board/Aufsichtsrat: Dr. Dr. Ernst zur Linden (chairman/Vorsitzender)
Register court/Handelsregister: Munich – HRB 128 972 | Sales tax ID 
number/St.Nr.: DE205 370 553
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Christoph Maser]

Am Donnerstag, den 04.02.2010, 19:31 +0100 schrieb Alan McKay:
> > It depends on what you need to do.  If you really have enough machines
> > or long-running jobs that a shell loop through them isn't practical, you
> > might want something higher-level like cfengine or puppet, or at least
> > something running under cron to make them independent.
>
> cfengine or puppet (or something else - slackmaster?) are where I want
> to be eventually - but in the immediate term something like this would
> help a lot.e.g bouncing my 4 front-end apache servers on 4
> different boxes.   That sort of thing.
>

I like clusterssh (also named cssh) and mussh for this purpose.

Chris


financial.com AG

Munich head office/Hauptsitz München: Maria-Probst-Str. 19 | 80939 München | 
Germany
Frankfurt branch office/Niederlassung Frankfurt: Messeturm | 
Friedrich-Ebert-Anlage 49 | 60327 Frankfurt | Germany
Management board/Vorstand: Dr. Steffen Boehnert | Dr. Alexis Eisenhofer | Dr. 
Yann Samson | Matthias Wiederwach
Supervisory board/Aufsichtsrat: Dr. Dr. Ernst zur Linden (chairman/Vorsitzender)
Register court/Handelsregister: Munich – HRB 128 972 | Sales tax ID 
number/St.Nr.: DE205 370 553
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Geoff Galitz]

> 
> In (HPC) clustering pdsh is very popular. It's available in .tgz with
> spec-file and rebuilds nicely on c5 with rpmbuild -tb ...
> 
>  https://computing.llnl.gov/linux/pdsh.html
>



Coming from the HPC world I've been a long time PDSH user. I believe it is
available in rpmforge, so there is no need to rebuild it if you don't want.

I highly recommend it.

In addition to the examples already cited, you can build a text file of
commonly used groups of nodes and just use that to point PDSH at.  If you
really, really want to get fancy you can... but for more advanced uses just
peek at the docs.

-geoff

-
Geoff Galitz
Blankenheim NRW, Germany
http://www.galitz.org/
http://german-way.com/blog/


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] /etc/ldap.conf pam_filter

[Nobody ist perfect]

Hi,

we use an openldap server / samba as domain controller for our
windows/linux workstations. on a specific server, login should only
be allowed, if the certain user is member of a group (let's call this
group "login"). All the users in the domain are members of the group
"Domain Users". Therefore their primary gid is not the login-group's gid.
How can I make the login depending on that login-group-membership?

Thanks!

Toby

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[James Hogarth]

On 4 February 2010 21:48,   wrote:
>> For pure RHEL/Centos/Fedora environments (especially centos/rhel) I
>> can recommend Spacewalk for any reasonable number of systems (20+) for
>> the combination of package management, configuration management and
>> kickstart management...
>>
> Has it improved significantly since the end of this past April? It took me
> a month to get it installed and correctly working. And I dunno if they
> ever put my additional fix in their documentation, that being to increase
> Oracle's two memory parameters to within 6M of the max 1G for Oracle XP.
>
> It was *definitely* not ready for production, IMO.
>
>          mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

There has been substantial development since last April. 0.7 is very
usable in production (and indeed makes my life much easier) and 0.8 is
due soon.

James
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Simon Billis]

Hi,

> On 2/4/2010 3:31 PM, Kai Schaetzl wrote:
> 
> >> What do you mean?  Forwarding to the virtuser expansion address
> should
> >> work just like any other address.
> >
> > It sounds like he didn't forward before, but queue and deliver (e.g.
> he's
> > the only available MX and queues for a firewalled MX or uses
> mailertable
> > to get the mail delivered). If he goes to virtusertable he has to
> fill the
> > table with valid forwards.
> 
> The point would be able to include a default reject rule for each
> domain, which means that you have to supply valid forwards for all
> addresses you don't want to reject at the relay.  (You could default to
> forwarding, but that doesn't help with the backscatter issue).  But
> that
> doesn't change the ability to queue/deliver except that the relay has
> to
> accept the domains as local to do the virtuser lookup so the new target
> has to have a different name for the delivery host.   I'm not sure how
> that relates to your distinction between forwarding and queuing.
> Sendmail has local and remote addresses, but remote ones all go through
> the same steps.

I am queuing and delivering using mailertable currently - hence the issue
with backscatter as some of the domains do not have catch-all accounts. I am
able to produce a list of valid email accounts and domains without a
catch-all account so I should be able to create a virtusertable with the
required entries to either accept all mail for a domain and then forward it
to a specific account (the catch-all account) or to only accept mail for a
specific account and then forward it to the same address (is this valid?) by
again using mailertable(?). I think that using access.db and relay-domains
may also work as needed.

Thanks very much for your help with this and the suggestions it is much
appreciated.

Simon.
 


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] About the openfire question ~

[Majian]

Hi, guys:

Would anyone know what causes this error message ?
 It's not the first time I've seen it but is the first time I've seen it so
often.

openfire verison is 3.6.4 .

at
org.apache.mina.filter.executor.ExecutorFilter$ProcessEventsRunnable.run(Execut
orFilter.java:283)

at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)

at
org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:51)


at java.lang.Thread.run(Unknown Source)

2007.05.13 15:07:38
org.jivesoftware.openfire.nio.ConnectionHandler.exceptionCaught(ConnectionHandle
r.java:110) 

java.lang.ArrayIndexOutOfBoundsException

2007.05.13 15:08:03
org.jivesoftware.openfire.nio.ConnectionHandler.exceptionCaught(ConnectionHandle
r.java:110) 

 

There are some lines displays that messages .

If it displayes that , the client could  have problems on the send or recive
the message .

But i don't know why does it diplays ~



Thanks in advance ~
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] pls help about changing network card but assign to another ethx

[linux-crazy]

Hi,


 Thoght of sharing this with u will be handy

I was upgrading my workstation yesterday, only the case and harddisks
remained the same. Almost everything went well, even new init ramdisk
wasn't required, but I was stuck on networking for a while. And the
problem was called "eth0_rename". After querying google it was clear
that this is the result of "network device persistency" feature and
the cause is different MAC address assigned to the new eth0 device.
Solution was easy - remove the old records from
/etc/udev/rules.d/70-persistent-net.rules




 And add some custom udev mac binding rules like below

 cat /etc/udev/rules.d/10-redhat-custom-net.rules
##Realtek
KERNEL=="eth*", SYSFS{address}=="00:16:3e:66:20:c7", NAME="eth0"
###Accton
KERNEL=="eth*", SYSFS{address}=="00:16:3e:7e:a1:9c", NAME="eth1"



http://www.gscore.org/blog/index.php/post/2008/12/16/udev-hell

Thanks

On Fri, Feb 5, 2010 at 12:51 AM, adrian kok  wrote:
> Hi
>
> I change eth1 from realtek to dlink but the centos is showing eth2 instead of 
> eth1
>
> In another version of linux, I can change 70-persistent-net.rules but
>
> I check /etc/udev/rules.d/70-persistent-net.rules but it doesn't  have the 
> file 70-persistent-net.rules
>
> please help
>
> Thank you
>
> Send instant messages to your online friends http://uk.messenger.yahoo.com
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] how to get logs from a time-range

[hqm8512]

Hi,
   I want to get logs from a time-range, like from 11:00:11 to 13:00:00 ,How 
should in do it in the bash shell? All logs in a file .

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] /etc/ldap.conf pam_filter

[Christoph Maser]

Am Freitag, den 05.02.2010, 11:38 +0100 schrieb Nobody ist perfect:
> Hi,
>
> we use an openldap server / samba as domain controller for our
> windows/linux workstations. on a specific server, login should only
> be allowed, if the certain user is member of a group (let's call this
> group "login"). All the users in the domain are members of the group
> "Domain Users". Therefore their primary gid is not the login-group's gid.
> How can I make the login depending on that login-group-membership?
>
> Thanks!
>
> Toby
>


If you use winbind you can use require_membership_of=
in/etc/security/pam_winbind.conf.

Chris


financial.com AG

Munich head office/Hauptsitz München: Maria-Probst-Str. 19 | 80939 München | 
Germany
Frankfurt branch office/Niederlassung Frankfurt: Messeturm | 
Friedrich-Ebert-Anlage 49 | 60327 Frankfurt | Germany
Management board/Vorstand: Dr. Steffen Boehnert | Dr. Alexis Eisenhofer | Dr. 
Yann Samson | Matthias Wiederwach
Supervisory board/Aufsichtsrat: Dr. Dr. Ernst zur Linden (chairman/Vorsitzender)
Register court/Handelsregister: Munich – HRB 128 972 | Sales tax ID 
number/St.Nr.: DE205 370 553
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Simon Billis]

Hi,

> On 2/4/2010 3:17 PM, Bo Lynch wrote:
> >
> > Right know we have about 30 or so linux servers scattered through out
> or
> > district. Was looking at ways of consolidating and some sort of
> redundancy
> > would be nice.
> > Will clustering not work with certain apps? We have a couple mysql
> dbases,
> > oracle database, smb shares, nfs, email, and web servers.
> 
> Each app has it's own best way to provide the redundancy and
> auto-failover and it's own set of tradeoffs of the added complexity vs.
> the possible reduced downtime if the primary fails.
> 
> I'd balance the options against the low-tech method of having raid
> mirrors in swappable bays with a spare similar server chassis or two
> around plus regular backups kept at a different location.  The raid
> lets
> you continue in the likely event of a disk failure so you can repair it
> at a convenient time.  Other failures (motherboard, power supply) are
> less likely but can be handled by swapping the drives into an alternate
> chassis (and with Centos you'll need to re-assign the IP addresses that
> are tied to the old NIC mac addresses) with a small amount of downtime.
>   And the backups cover things like operator or software errors (that
> would wipe a cluster too) or a building-level disaster that destroys
> the
> disks or the primary and spare chassis at the same time.  Some apps may
> be worth the effort to do better.

In our configurations we utilise different strategies depending on what we
want to achieve as there isn't really a panacea for this... We use virtual
servers, hot standby firewalls/routers, load balanced servers, warm standby
servers (using such things as mysql replication, rsync and DRBD to keep the
boxes in sync) and shared storage from disk arrays and servers with local
disk arrays for local performance and resilience. We have also utilised
hadoop (distributed filesystem) on some again to provide resilience within
the limitations of hadoop.

S.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] how to get logs from a time-range

[Robert Heller]

At Fri, 5 Feb 2010 19:38:23 +0800 (CST) CentOS mailing list  
wrote:

> 
> 
> 
> Hi,
>I want to get logs from a time-range, like from 11:00:11 to 13:00:00 ,How 
> should in do it in the bash shell? All logs in a file .

man grep

> 
> 
> MIME-Version: 1.0
> 
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
> 

-- 
Robert Heller -- 978-544-6933
Deepwoods Software-- Download the Model Railroad System
http://www.deepsoft.com/  -- Binaries for Linux and MS-Windows
hel...@deepsoft.com   -- http://www.deepsoft.com/ModelRailroadSystem/

  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Kai Schaetzl]

Simon Billis wrote on Fri, 5 Feb 2010 11:06:36 -:

> I am queuing and delivering using mailertable currently

I figured something along this line.

- hence the issue
> with backscatter as some of the domains do not have catch-all accounts.

Not to mention the extra stress on your system for scanning mails that won't 
get delivered, anyway. I very much encourage moving away from catch-alls at 
all. Sometimes it's impossible, but I found that most clients use only a few 
addresses and can go easily without catch-all. This can reduce the number of 
mails you have to process dramatically.

I am
> able to produce a list of valid email accounts and domains without a
> catch-all account so I should be able to create a virtusertable with the
> required entries to either accept all mail for a domain and then forward it
> to a specific account (the catch-all account) or to only accept mail for a
> specific account and then forward it to the same address (is this valid?) by
> again using mailertable(?).

If you go to virtusertable you don't need mailertable at all, it may even be 
counterproductive/not usable I guess (I'm now mostly using postfix, so my ad-
hoc experience with sendmail and mailertable is somewhat dated). But you have 
to explicitly list all target addresses. Something you didn't need to do 
before. That is what I wanted to point out earlier.
You specify the forwarding address and that's it. You can then either specify 
a catch-all (just the domain) with an error code or don't specify any. Unless 
it matches a local alias/user there's then no way to deliver it, so it will 
get rejected.

I think that using access.db and relay-domains
> may also work as needed.

I've never used access.db for relaying/local domains, I always relied on 
relay-domains. I'm not sure, but I think sendmail takes the first match and 
then stops scanning access.db. So you might be able to use something like 
this:
To:us...@domain OK (or RELAY)
To:us...@domain OK
domain REJECT

and then keep your current mailertable method (no need for virtusertable) or 
use virtusertable expandable forwarding addresses. It's possible, though, that 
the order gets changed in the compiled map file. Maybe Les knows that better.
If that works it might be the best method as it rejects at the first possible 
processing step.

Kai

-- 
Get your web at Conactive Internet Services: http://www.conactive.com



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] logwatch/shorewall warnings

[Timothy Murphy]

I'm running a little web-server under CentOS-5.4 ,
with shorewall as firewall.
I used to get messages about attempted intrusions,
with the IP addresses of those attempting to connect.

This stopped some time ago,
and my logwatch reports now are very bare.

I don't recall changing the settings of logwatch or shorewall.
Has there been some default change?

I should say that I'm not sure if I mind losing these warnings,
as I never used to do anything about them.

-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server 2008r2)

[Joseph L. Casale]

>Just wondering if any of you have been able to setup CentOS 5.4 to authenticate
>against AD on a Server 2008r2 Domain Controller. I am trying to complete this
>particular setup however I have run into some difficulties such as not being 
>able
>to lookup domain users via getent passwd. 

W2k8r2 introduced some changes over w2k3 that make the need for a newer Samba a 
must
iirc when I did this. Otherwise you can lower the security requirements on the 
w2k8r2
server.

FWIW, I don't like Samba and would suggest using ldap:)
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Thu, February 4, 2010 6:18 pm, Drew wrote:
>> Right know we have about 30 or so linux servers scattered through out or
>> district. Was looking at ways of consolidating and some sort of
>> redundancy
>> would be nice.
>
> I'm in the process of going through something like that right now. The
> solution we're pursuing is to virtualize our existing physical servers
> in virtual machines and consolidating those VM's on a smaller number
> of larger servers.
>
> The tools we're using allow us to keep a warm copy of a VM on
> redundant server and if we lose an entire server we're up within
> 3-5min with minimal data loss. As the servers we're installing have
> VMware ESXi embedded in the server and storage is pulled from
> redundant iSCSI backends, data loss due to server failure is minimal.
> And as part of the backup process includes regular off-site backups of
> the data and VMs to another office we can, in theory, lose an entire
> building and still continue to function.
>
>
> --
> Drew
>
>
Thanks for the info. Looks like VM would be the way to go. I have been
looking at Vmware and virtualbox. Would you recommend Vmware over
virtualbox?

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Thu, February 4, 2010 6:34 pm, Les Mikesell wrote:
> On 2/4/2010 3:17 PM, Bo Lynch wrote:
>>
>> Right know we have about 30 or so linux servers scattered through out or
>> district. Was looking at ways of consolidating and some sort of
>> redundancy
>> would be nice.
>> Will clustering not work with certain apps? We have a couple mysql
>> dbases,
>> oracle database, smb shares, nfs, email, and web servers.
>
> Each app has it's own best way to provide the redundancy and
> auto-failover and it's own set of tradeoffs of the added complexity vs.
> the possible reduced downtime if the primary fails.
>
> I'd balance the options against the low-tech method of having raid
> mirrors in swappable bays with a spare similar server chassis or two
> around plus regular backups kept at a different location.  The raid lets
> you continue in the likely event of a disk failure so you can repair it
> at a convenient time.  Other failures (motherboard, power supply) are
> less likely but can be handled by swapping the drives into an alternate
> chassis (and with Centos you'll need to re-assign the IP addresses that
> are tied to the old NIC mac addresses) with a small amount of downtime.
>   And the backups cover things like operator or software errors (that
> would wipe a cluster too) or a building-level disaster that destroys the
> disks or the primary and spare chassis at the same time.  Some apps may
> be worth the effort to do better.
>
> --
>Les Mikesell
> lesmikes...@gmail.com
>
Currently we are doing the low tech method. Daily and weekly backups both
onsite and off along with RAID and all that other good stuff. I was just
wondering if clustering was a better way of handling things. Thanks for
the info.
Bo

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Athmane Madjoudj]

On Fri, Feb 5, 2010 at 1:58 PM, Bo Lynch  wrote:
> On Thu, February 4, 2010 6:18 pm, Drew wrote:
>>> Right know we have about 30 or so linux servers scattered through out or
>>> district. Was looking at ways of consolidating and some sort of
>>> redundancy
>>> would be nice.
>>
>> I'm in the process of going through something like that right now. The
>> solution we're pursuing is to virtualize our existing physical servers
>> in virtual machines and consolidating those VM's on a smaller number
>> of larger servers.
>>
>> The tools we're using allow us to keep a warm copy of a VM on
>> redundant server and if we lose an entire server we're up within
>> 3-5min with minimal data loss. As the servers we're installing have
>> VMware ESXi embedded in the server and storage is pulled from
>> redundant iSCSI backends, data loss due to server failure is minimal.
>> And as part of the backup process includes regular off-site backups of
>> the data and VMs to another office we can, in theory, lose an entire
>> building and still continue to function.
>>
>>
>> --
>> Drew
>>
>>
> Thanks for the info. Looks like VM would be the way to go. I have been
> looking at Vmware and virtualbox. Would you recommend Vmware over
> virtualbox?
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

AFAIK, virtualbox is desktop only virtualization while vmware has more
offering (desktop, server, cloud etc)

-- 
Athmane Madjoudj
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[Laurent Wandrebeck]

2010/2/5 James Hogarth :
>
> There has been substantial development since last April. 0.7 is very
> usable in production (and indeed makes my life much easier) and 0.8 is
> due soon.
>
> James
Do you use PostgreSQL or Oracle as backend ? It seems Postgresql
support is a bit far from being production ready, according to their
wiki.
Laurent.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server 2008r2)

[Dan Burkland]

> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of Christopher Chan
> Sent: Thursday, February 04, 2010 10:59 PM
> To: centos@centos.org
> Subject: Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server
> 2008r2)
> 
> 
> On Friday, February 05, 2010 12:45 PM, Dan Burkland wrote:
> > I am indeed using winbind. While I am not new to CentOS I am a greenhorn
> when it comes to Winbind. What log is considered the main Winbind log?
> (perhaps /var/log/samba/winbind.log?) Also. I have posted my smb.conf on
> pastebin: http://centos.pastebin.com/f5b4406a7
> >
> 
> Does either 'wbinfo -u' or 'wbinfo -g' work for you?
> 
> If they do, do you have entries in nsswitch.conf for winbind?
> 
> >> Hey All,
> >>
> >> Just wondering if any of you have been able to setup CentOS 5.4 to
> authenticate against AD on a Server 2008r2 Domain Controller. I am trying
> to complete this particular setup however I have run into some
> difficulties such as not being able to lookup domain users via getent
> passwd.
> >>
> >
> >
> > Are you using winbind? What do the logs for winbind say?
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos

Wbinfo -u & wbinfo -g do indeed work for me however getent passwd or getent 
group returns no AD users or groups. I have winbind entries in nsswitch for 
both the passwd & group entries. Josepeh, I will try a newer RPM from a 
different repository and see if that resolves my issues. Did my smb.conf look 
ok?

Thanks again guys,

Dan
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Les Mikesell]

Simon Billis wrote:
>
>> The point would be able to include a default reject rule for each
>> domain, which means that you have to supply valid forwards for all
>> addresses you don't want to reject at the relay.  (You could default to
>> forwarding, but that doesn't help with the backscatter issue).  But
>> that
>> doesn't change the ability to queue/deliver except that the relay has
>> to
>> accept the domains as local to do the virtuser lookup so the new target
>> has to have a different name for the delivery host.   I'm not sure how
>> that relates to your distinction between forwarding and queuing.
>> Sendmail has local and remote addresses, but remote ones all go through
>> the same steps.
> 
> I am queuing and delivering using mailertable currently - hence the issue
> with backscatter as some of the domains do not have catch-all accounts. I am
> able to produce a list of valid email accounts and domains without a
> catch-all account so I should be able to create a virtusertable with the
> required entries to either accept all mail for a domain and then forward it
> to a specific account (the catch-all account) or to only accept mail for a
> specific account and then forward it to the same address (is this valid?) by
> again using mailertable(?). I think that using access.db and relay-domains
> may also work as needed.

Sendmail will only look in virtusertable if it considers the address local 
(i.e. 
you've added the target domain to local-host-names).  That means you'll have to 
use some other name for the delivery target in the virtusertable expansion side 
to get it to forward on.  Probably whatever you are using in mailertable will 
work.  You might be able to use u...@[host.domain] notation or 
u...@[ip_address] 
there to avoid another MX lookup that would come back to the relay - I'm not 
sure about that.  You'll probably have to do some testing with this part since 
it is a fairly drastic change to make the targets local - but you can do it one 
domain at a time.

-- 
   Les Mikesell
 lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Fri, February 5, 2010 8:03 am, Athmane Madjoudj wrote:
> On Fri, Feb 5, 2010 at 1:58 PM, Bo Lynch  wrote:
>> On Thu, February 4, 2010 6:18 pm, Drew wrote:
 Right know we have about 30 or so linux servers scattered through out
 or
 district. Was looking at ways of consolidating and some sort of
 redundancy
 would be nice.
>>>
>>> I'm in the process of going through something like that right now. The
>>> solution we're pursuing is to virtualize our existing physical servers
>>> in virtual machines and consolidating those VM's on a smaller number
>>> of larger servers.
>>>
>>> The tools we're using allow us to keep a warm copy of a VM on
>>> redundant server and if we lose an entire server we're up within
>>> 3-5min with minimal data loss. As the servers we're installing have
>>> VMware ESXi embedded in the server and storage is pulled from
>>> redundant iSCSI backends, data loss due to server failure is minimal.
>>> And as part of the backup process includes regular off-site backups of
>>> the data and VMs to another office we can, in theory, lose an entire
>>> building and still continue to function.
>>>
>>>
>>> --
>>> Drew
>>>
>>>
>> Thanks for the info. Looks like VM would be the way to go. I have been
>> looking at Vmware and virtualbox. Would you recommend Vmware over
>> virtualbox?
>>
>> ___
>> CentOS mailing list
>> CentOS@centos.org
>> http://lists.centos.org/mailman/listinfo/centos
>>
>
> AFAIK, virtualbox is desktop only virtualization while vmware has more
> offering (desktop, server, cloud etc)
>
> --
> Athmane Madjoudj
>
Whats your thoughts on Vmware server over esxi?
Really do not want to have to budget for Virtualization if I do not have to.
Thanks for any info.

Bo

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] directory and file permission help

[adrian kok]

Hi 

I move a zip file from window to linux

but all permission of folder and files are kept in 700 

How can I change it one time? I don't need to change directory under directory 
to change as

folder as 755
and 
files as 644

Thank you for your help

Send instant messages to your online friends http://uk.messenger.yahoo.com 
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

Bo Lynch wrote:
> 
>>
> Currently we are doing the low tech method. Daily and weekly backups both
> onsite and off along with RAID and all that other good stuff. I was just
> wondering if clustering was a better way of handling things. Thanks for
> the info.

If you are looking at VMware, ESX(i) is the nicest of the bunch but moderately 
expensive for the full version that does clustering and live moves - and you 
also need a highly reliable iscsi disk server.  But even the free version is 
very nice in terms of the management tools, low overhead, and the ability to 
overcommit the host's RAM.  You could start by building shadow copies of most 
of 
your servers that could be activated as needed, with perhaps a few being live 
with application level failover (heartbeat, drbd, database replication, etc.). 
ESXi is also a nice lab framework for testing new thing.


-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[nate]

Bo Lynch wrote:

> Whats your thoughts on Vmware server over esxi?
> Really do not want to have to budget for Virtualization if I do not have to.

Depends on the hardware, ideally esxi, though it is very
picky about hardware.

And you should budget for it, storage will be a big concern if
you want to provide high availability. A good small storage
array(few TB) starts at around $30-40k.

nate


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Athmane Madjoudj]

> Whats your thoughts on Vmware server over esxi?
> Really do not want to have to budget for Virtualization if I do not have to.
> Thanks for any info.

Here is a comparison of VMware ESXi and Server notice that server
doesn't cost money.

http://www.vmware.com/products/server/faqs.html

both are proprietary
there are a lot of good FOSS alternatives such:

KVM (require a modern hardware)
Xen (need a patched kernel: available in centos repos)
OpenVZ (need a patched kernel: available in openvz repos, mainly for
VPS but personalty i use it)

HTH

-- 
Athmane Madjoudj
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

> Bo Lynch wrote:
>>
>>>
>> Currently we are doing the low tech method. Daily and weekly backups
>> both
>> onsite and off along with RAID and all that other good stuff. I was just
>> wondering if clustering was a better way of handling things. Thanks for
>> the info.
>
> If you are looking at VMware, ESX(i) is the nicest of the bunch but
> moderately
> expensive for the full version that does clustering and live moves - and
> you
> also need a highly reliable iscsi disk server.  But even the free version
> is
> very nice in terms of the management tools, low overhead, and the ability
> to
> overcommit the host's RAM.  You could start by building shadow copies of
> most of
> your servers that could be activated as needed, with perhaps a few being
> live
> with application level failover (heartbeat, drbd, database replication,
> etc.).
> ESXi is also a nice lab framework for testing new thing.
>
>
> --
>Les Mikesell
> lesmikes...@gmail.com


When you talk about the free version are your referring to Vmware server
or is there a free version of Esxi? The website is a little misleading
with "free trail" and such.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Drew]

> Thanks for the info. Looks like VM would be the way to go. I have been
> looking at Vmware and virtualbox. Would you recommend Vmware over
> virtualbox?

> Whats your thoughts on Vmware server over esxi?
> Really do not want to have to budget for Virtualization if I do not have to.

I know some will disagree with me but for production I recommend
sticking with VMware's ESXi product, which is free, unless you have
need of some of the more advanced features which are available through
paid options.

The downside of offerings like Virtualbox or VMware Server, where the
guest OS is hosted inside the app running on a full blown OS, is the
host itself. In my experience, the smaller footprint of VMware ESX(i)
reduces the amount of maintenance required as well as has minimal
performance impact of the guest OS's.

That said, apps like Virtualbox / WMware server do have their place.
At work I routinely create virtual machines under WMware Server to
experiment with new software before releasing it into the wild at
work. The cost overhead of running Server on my own workstation is
acceptable for testing but I wouldn't consider it for production.

-- 
Drew

"Nothing in life is to be feared. It is only to be understood."
--Marie Curie
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

Bo Lynch wrote:
> 
> Whats your thoughts on Vmware server over esxi?
> Really do not want to have to budget for Virtualization if I do not have to.
> Thanks for any info.

There is a free version of ESXi - which is really the same as the paid version 
with the cluster management and vmotion functions disabled.  The only reason to 
use Server is if you need to drop it on a host that is already running things 
natively - or you need to display on the local console.  If you are starting 
from scratch, install ESXi on the hardware first and put everything on guests. 
You do need a windows box to run the control software when setting it up or 
making changes.   It can use the local server's disk for storage, but 
eventually 
you'll probably want to spend money on a reliable disk subsystem.

-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Drew]

> When you talk about the free version are your referring to Vmware server
> or is there a free version of Esxi? The website is a little misleading
> with "free trail" and such.

ESXi is free to use. ESX / vSphere is the paid version.



-- 
Drew

"Nothing in life is to be feared. It is only to be understood."
--Marie Curie
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[James Hogarth]

On 5 February 2010 13:18, Laurent Wandrebeck  wrote:
> 2010/2/5 James Hogarth :
>>
>> There has been substantial development since last April. 0.7 is very
>> usable in production (and indeed makes my life much easier) and 0.8 is
>> due soon.
>>
>> James
> Do you use PostgreSQL or Oracle as backend ? It seems Postgresql
> support is a bit far from being production ready, according to their
> wiki.
> Laurent.
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

Oracle - postgresql work is still ongoing and not yet production ready
by a long way...
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Ault]

On Fri, 2010-02-05 at 07:57 -0600, Les Mikesell wrote:

> Bo Lynch wrote:
> > 
> >>
> > Currently we are doing the low tech method. Daily and weekly backups both
> > onsite and off along with RAID and all that other good stuff. I was just
> > wondering if clustering was a better way of handling things. Thanks for
> > the info.
> 
> If you are looking at VMware, ESX(i) is the nicest of the bunch but 
> moderately 
> expensive for the full version that does clustering and live moves - and you 
> also need a highly reliable iscsi disk server.  But even the free version is 
> very nice in terms of the management tools, low overhead, and the ability to 
> overcommit the host's RAM.  You could start by building shadow copies of most 
> of 
> your servers that could be activated as needed, with perhaps a few being live 
> with application level failover (heartbeat, drbd, database replication, 
> etc.). 
> ESXi is also a nice lab framework for testing new thing.
> 
> 

There are also a lot community scripts for management as well.

http://communities.vmware.com/docs/DOC-9852


--
Les Ault VCP, RHCE
Linux Systems Administrator, Office of Information Technology
Computing Systems Services: Technical Services and Research

The University of Tennessee
135C5 Kingston Pike Building
2309 Kingston Pike
Knoxville, TN 37996
Phone: 865-974-1640

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[nate]

Drew wrote:
>> When you talk about the free version are your referring to Vmware server
>> or is there a free version of Esxi? The website is a little misleading
>> with "free trail" and such.
>
> ESXi is free to use. ESX / vSphere is the paid version.

A common confusion point. While there is a free license available
for ESXi and not for ESX, you can pay for ESXi to unlock additional
functionality(such as live migration, HA, DRS etc) and still keep
the "thin" hypervisor footprint that ESXi offers.

nate


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Fri, February 5, 2010 9:02 am, Athmane Madjoudj wrote:
>> Whats your thoughts on Vmware server over esxi?
>> Really do not want to have to budget for Virtualization if I do not have
>> to.
>> Thanks for any info.
>
> Here is a comparison of VMware ESXi and Server notice that server
> doesn't cost money.
>
> http://www.vmware.com/products/server/faqs.html
>
> both are proprietary
> there are a lot of good FOSS alternatives such:
>
> KVM (require a modern hardware)
> Xen (need a patched kernel: available in centos repos)
> OpenVZ (need a patched kernel: available in openvz repos, mainly for
> VPS but personalty i use it)
>
> HTH
>
> --
> Athmane Madjoudj

Does anyone have any experience with KVM or OpenVZ? If I can stick to
something that is not proprietary that would be great. I didn't realize
there were so many options. Any info would be greatly appreciated.
Bo

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

Bo Lynch wrote:
>
> 
> When you talk about the free version are your referring to Vmware server
> or is there a free version of Esxi? The website is a little misleading
> with "free trail" and such.

You have to register, but the way it works is that you download a full-featured 
ESXi demo with a 30-day trial license and you get free license keys that you 
can 
install any time within the 30-days to downgrade it to run for an unlimited 
time 
with the clustering and cluster mangement features disabled.  You also need to 
download the vcenter control program and the image conversion tool.

And they'll send some email occasionally, but not a huge amount.


-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Athmane Madjoudj]

>
> Does anyone have any experience with KVM or OpenVZ? If I can stick to
> something that is not proprietary that would be great. I didn't realize
> there were so many options. Any info would be greatly appreciated.
> Bo

KVM is easier (like VMware) than OpenVZ when using virt-manager to
manage virtual machine and the new version of CentOS 5.4 support KVM
(KVM is default in Fedora distro).


Personally  i use OpenVZ because my hardware doesn't support virtualization

HTH
-- 
Athmane Madjoudj
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Rudi Ahlers]

>
> > Athmane Madjoudj
>
> Does anyone have any experience with KVM or OpenVZ? If I can stick to
> something that is not proprietary that would be great. I didn't realize
> there were so many options. Any info would be greatly appreciated.
> Bo
>
> ___
>
>
If you can, avoid OpenVZ, it's not a full virtualization platform, but
rather kernel emulation. The moment one of the VPS's has a memory hog, the
whole server will suffer.

Rather use XEN / KVM / VMWare as it gives total isolation on each VPS.

-- 
Kind Regards
Rudi Ahlers
SoftDux

Website: http://www.SoftDux.com
Technical Blog: http://Blog.SoftDux.com
Office: 087 805 9573
Cell: 082 554 7532
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Simon Billis]

Les Mikesell sent a missive on 2010-02-05:

> Simon Billis wrote:
>> 
>>> The point would be able to include a default reject rule for each
>>> domain, which means that you have to supply valid forwards for all
>>> addresses you don't want to reject at the relay.  (You could default
>>> to forwarding, but that doesn't help with the backscatter issue). But
>>> that doesn't change the ability to queue/deliver except that the relay
>>> has to accept the domains as local to do the virtuser lookup so the
>>> new target has to have a different name for the delivery host.   I'm
>>> not sure how that relates to your distinction between forwarding and
>>> queuing. Sendmail has local and remote addresses, but remote ones all
>>> go through the same steps.
>> 
>> I am queuing and delivering using mailertable currently - hence the
>> issue with backscatter as some of the domains do not have catch-all
>> accounts. I am able to produce a list of valid email accounts and
>> domains without a catch-all account so I should be able to create a
>> virtusertable with the required entries to either accept all mail
>> for a domain and then forward it to a specific account (the
>> catch-all
>> account) or to only accept mail for a specific account and then
>> forward it to the same address (is this valid?) by again using
>> mailertable(?). I think that using access.db and relay-domains may
> also work as needed.
> 
> Sendmail will only look in virtusertable if it considers the address
> local (i.e.
> you've added the target domain to local-host-names).  That means
> you'll have to use some other name for the delivery target in the
> virtusertable expansion side to get it to forward on.  Probably
> whatever you are using in mailertable will work.  You might be able to
> use u...@[host.domain] notation or u...@[ip_address] there to avoid
> another MX lookup that would come back to the relay - I'm not sure
> about that.  You'll probably have to do some testing with this part
> since it is a fairly drastic change to make the targets local - but
> you can do it one domain at a time.
>

I don't think that this is going to work for me then... I'm not able to
change the envelope address for the onward delivery. The final mail server
will reject the mail if it is not the original email address that I'm
accepting the mail for on the mail scanners. Also I understand from the
documentation that mailertable is not used for class {w}, i.e. local host
names so I think that I'm stuck with the following choices...

1) getting access.db and relay-domains working correctly with:
   (a) the _RELAY_FULL_ADDR_ feature
   (b) without the above feature (which works but without the ability to
send mail from our networks from email addresses in the access.db map but I
think that this is because I need to add specific hosts to the access map.)

2) utilising a milter.

Is this a fair conclusion in your opinion?

Thanks

Simon.



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Best way to backup virtual machines from Citrix XenServer.

[Rafał Radecki]

Hi All.

I have installed Citrix XenServer. It's Linux-based virtualization software.
Could anyone propose a good way to make backups of virtual machines
(Linux/Windows) in it?

With regards,
R.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Simon Billis]

Bo Lynch sent a missive on 2010-02-05:

> On Fri, February 5, 2010 9:02 am, Athmane Madjoudj wrote:
>>> Whats your thoughts on Vmware server over esxi?
>>> Really do not want to have to budget for Virtualization if I do not
>>> have to.
>>> Thanks for any info.
>> 
>> Here is a comparison of VMware ESXi and Server notice that server
>> doesn't cost money.
>> 
>> http://www.vmware.com/products/server/faqs.html
>> 
>> both are proprietary
>> there are a lot of good FOSS alternatives such:
>> 
>> KVM (require a modern hardware)
>> Xen (need a patched kernel: available in centos repos) OpenVZ (need
>> a patched kernel: available in openvz repos, mainly for VPS but
>> personalty i use it)
>> 
>> HTH
>> 
>> --
>> Athmane Madjoudj
> 
> Does anyone have any experience with KVM or OpenVZ? If I can stick to
> something that is not proprietary that would be great. I didn't realize
> there were so many options. Any info would be greatly appreciated. Bo

OpenVZ is containerisation and not virtualisation and therefore limits the
os running to a minor version of the base os. If you need to have say
Centos4, Centos5, Solaris 10, Windows on the same box then this is not for
you.




___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Best way to backup virtual machines from Citrix XenServer.

[Simon Billis]

Rafał Radecki sent a missive on 2010-02-05:

> Hi All.
> 
> I have installed Citrix XenServer. It's Linux-based virtualization 
> software. Could anyone propose a good way to make backups of virtual 
> machines (Linux/Windows) in it?
> 
> With regards,
> R.
>

Do you have any shared storage that you're using which supports snapshots?
If you do, then a combination of coalescing the running VM's to disk and
taking a snap and also using traditional backup methods (application aware)
to disk/tape for archival and complete failure of the storage is a
reasonable thing to do.

S.




___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[m . roth]

>> Whats your thoughts on Vmware server over esxi?
>> Really do not want to have to budget for Virtualization if I do not have
>> to.
>> Thanks for any info.
>
> Here is a comparison of VMware ESXi and Server notice that server
> doesn't cost money.
>
> http://www.vmware.com/products/server/faqs.html
>
> both are proprietary

ESXi is free, but usable on one system. ESX is the full-blown version,
costs, and I *think* comes with the console... which, for some unknown
reason, is WinDoze *only*.

I believe both can be administered via browser.

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Marcelo M. Garcia]

Alan McKay wrote:
>> It depends on what you need to do.  If you really have enough machines
>> or long-running jobs that a shell loop through them isn't practical, you
>> might want something higher-level like cfengine or puppet, or at least
>> something running under cron to make them independent.
> 
> cfengine or puppet (or something else - slackmaster?) are where I want
> to be eventually - but in the immediate term something like this would
> help a lot.e.g bouncing my 4 front-end apache servers on 4
> different boxes.   That sort of thing.
> 
> I was actually going to start another "configuration management redux"
> thread as a follow up to a thread I started a few months ago.
> 
> 
Hi

This is another interesting tool:
https://fedorahosted.org/func/

Regards

mg.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Les Mikesell]

Simon Billis wrote:
> Les Mikesell sent a missive on 2010-02-05:
> 
>> Simon Billis wrote:
 The point would be able to include a default reject rule for each
 domain, which means that you have to supply valid forwards for all
 addresses you don't want to reject at the relay.  (You could default
 to forwarding, but that doesn't help with the backscatter issue). But
 that doesn't change the ability to queue/deliver except that the relay
 has to accept the domains as local to do the virtuser lookup so the
 new target has to have a different name for the delivery host.   I'm
 not sure how that relates to your distinction between forwarding and
 queuing. Sendmail has local and remote addresses, but remote ones all
 go through the same steps.
>>> I am queuing and delivering using mailertable currently - hence the
>>> issue with backscatter as some of the domains do not have catch-all
>>> accounts. I am able to produce a list of valid email accounts and
>>> domains without a catch-all account so I should be able to create a
>>> virtusertable with the required entries to either accept all mail
>>> for a domain and then forward it to a specific account (the
>>> catch-all
>>> account) or to only accept mail for a specific account and then
>>> forward it to the same address (is this valid?) by again using
>>> mailertable(?). I think that using access.db and relay-domains may
>> also work as needed.
>>
>> Sendmail will only look in virtusertable if it considers the address
>> local (i.e.
>> you've added the target domain to local-host-names).  That means
>> you'll have to use some other name for the delivery target in the
>> virtusertable expansion side to get it to forward on.  Probably
>> whatever you are using in mailertable will work.  You might be able to
>> use u...@[host.domain] notation or u...@[ip_address] there to avoid
>> another MX lookup that would come back to the relay - I'm not sure
>> about that.  You'll probably have to do some testing with this part
>> since it is a fairly drastic change to make the targets local - but
>> you can do it one domain at a time.
>>
> 
> I don't think that this is going to work for me then... I'm not able to
> change the envelope address for the onward delivery. The final mail server
> will reject the mail if it is not the original email address that I'm
> accepting the mail for on the mail scanners. Also I understand from the
> documentation that mailertable is not used for class {w}, i.e. local host
> names so I think that I'm stuck with the following choices...
> 
> 1) getting access.db and relay-domains working correctly with:
>(a) the _RELAY_FULL_ADDR_ feature
>(b) without the above feature (which works but without the ability to
> send mail from our networks from email addresses in the access.db map but I
> think that this is because I need to add specific hosts to the access map.)
> 
> 2) utilising a milter.
> 
> Is this a fair conclusion in your opinion?

What are you currently using in mailertable to get there?  If you use [domain] 
and go to the A record of the same name it might be a problem - but that might 
work if you try it.  Where I've used it, the delivery hosts had their own names 
that they'd accept in the envelope and the [IP.address] form would also work.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Kernel error - help please

[Phil Savoie]

Hi All,

Just received this error from logwatch:

- Kernel Begin 

 WARNING:  Kernel Errors Present
 [] error_code+0x39/0x40 ...:  2 Time(s)

 -- Kernel End -

Any ideas?  I don't know what this means, other than if it is a kernel
error it can't be good.

Thanks in advance,

Phil
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Athmane Madjoudj]

> ESXi is free, but usable on one system. ESX is the full-blown version,
> costs, and I *think* comes with the console... which, for some unknown
> reason, is WinDoze *only*.
>
> I believe both can be administered via browser.

maybe because there are more windows users that Linux and / or Mac OS
X and FreeBSD.

i have read in [1] and [2] that even RedHat may do the same thing (a
Wind0w$ only console)

[1]  
http://www.internetnews.com/software/article.php/3847391/Red+Hat+Virtualization+Manager+for+Windows+Only.htm

[2] http://www.linuxtoday.com/it_management/2009110700635NWRH


I' m not sure but it will be helpful if someone confirm (or not).

Best regards.

-- 
Athmane Madjoudj
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

Bo Lynch wrote:
> 
> 
> Does anyone have any experience with KVM or OpenVZ? If I can stick to
> something that is not proprietary that would be great. I didn't realize
> there were so many options. Any info would be greatly appreciated.
> Bo

Philosophically, I don't see how running on ESXi virtualization is any more or 
less proprietary than running on IBM (Dell, etc.) hardware  directly.  Unless 
you are just being pedantic about it, the main thing to consider is whether or 
not you could move your application elsewhere easily if you had to live without 
the unique proprietary features of any platform.  And you can, if you pay 
attention to how things work.  In fact there is some standardization being done 
in the virtual containers, and I'd assume VMware is a leader in that.

-- 
   Les Mikesell
lesmikes...@gmail.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

nate wrote:
> Bo Lynch wrote:
> 
>> Whats your thoughts on Vmware server over esxi?
>> Really do not want to have to budget for Virtualization if I do not have to.
> 
> Depends on the hardware, ideally esxi, though it is very
> picky about hardware.
> 
> And you should budget for it, storage will be a big concern if
> you want to provide high availability. A good small storage
> array(few TB) starts at around $30-40k.

Have you investigated any of the mostly-software alternatives for this like 
openfiler, nexentastor, etc., or rolling your own iscsi server out of 
opensolaris or centos?

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] directory and file permission help

[Kai Schaetzl]

man chmod

Kai

-- 
Get your web at Conactive Internet Services: http://www.conactive.com



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Fri, February 5, 2010 9:55 am, Les Mikesell wrote:
> Bo Lynch wrote:
>>
>>
>> Does anyone have any experience with KVM or OpenVZ? If I can stick to
>> something that is not proprietary that would be great. I didn't realize
>> there were so many options. Any info would be greatly appreciated.
>> Bo
>
> Philosophically, I don't see how running on ESXi virtualization is any
> more or
> less proprietary than running on IBM (Dell, etc.) hardware  directly.
> Unless
> you are just being pedantic about it, the main thing to consider is
> whether or
> not you could move your application elsewhere easily if you had to live
> without
> the unique proprietary features of any platform.  And you can, if you pay
> attention to how things work.  In fact there is some standardization being
> done
> in the virtual containers, and I'd assume VMware is a leader in that.
>
> --
>Les Mikesell
> lesmikes...@gmail.com

You make a valid point. Thanks


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Kernel error - help please

[William L. Maltby]

On Fri, 2010-02-05 at 09:50 -0500, Phil Savoie wrote:
> Hi All,
> 
> Just received this error from logwatch:
> 
> - Kernel Begin 
> 
>  WARNING:  Kernel Errors Present
>  [] error_code+0x39/0x40 ...:  2 Time(s)
> 
>  -- Kernel End -
> 
> Any ideas?  I don't know what this means, other than if it is a kernel
> error it can't be good.

I agree. Been getting them for months - no apparent damage can bee seen.
I'm thinking these are messages for debugging, but haven't bothered to
research. Goggle might help you.

> 
> Thanks in advance,
> 

Hope this let's you sleep a tad better,
--
Bill

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Bo Lynch]

On Fri, February 5, 2010 9:57 am, Les Mikesell wrote:
> nate wrote:
>> Bo Lynch wrote:
>>
>>> Whats your thoughts on Vmware server over esxi?
>>> Really do not want to have to budget for Virtualization if I do not
>>> have to.
>>
>> Depends on the hardware, ideally esxi, though it is very
>> picky about hardware.
>>
>> And you should budget for it, storage will be a big concern if
>> you want to provide high availability. A good small storage
>> array(few TB) starts at around $30-40k.
>
> Have you investigated any of the mostly-software alternatives for this
> like
> openfiler, nexentastor, etc., or rolling your own iscsi server out of
> opensolaris or centos?
>
> --
>Les Mikesell
> lesmikes...@gmail.com
> ___

No I have not, but now that you mention this I will definitely look into
these. Thanks again for all your help and info. This has been a greta
discussion.
Bo Lynch


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[Alan McKay]

> Oracle - postgresql work is still ongoing and not yet production ready
> by a long way...

that would eliminate it for me


-- 
“Don't eat anything you've ever seen advertised on TV”
 - Michael Pollan, author of "In Defense of Food"
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Kernel error - help please

[Robert Heller]

At Fri, 05 Feb 2010 10:21:35 -0500 CentOS mailing list  
wrote:

> 
> 
> On Fri, 2010-02-05 at 09:50 -0500, Phil Savoie wrote:
> > Hi All,
> > 
> > Just received this error from logwatch:
> > 
> > - Kernel Begin 
> > 
> >  WARNING:  Kernel Errors Present
> >  [] error_code+0x39/0x40 ...:  2 Time(s)
> > 
> >  -- Kernel End -
> > 
> > Any ideas?  I don't know what this means, other than if it is a kernel
> > error it can't be good.
> 
> I agree. Been getting them for months - no apparent damage can bee seen.
> I'm thinking these are messages for debugging, but haven't bothered to
> research. Goggle might help you.

It might also make sense to open up /var/log/messages and/or
/var/log/dmesg in an editor (read-only!) and find out what is going on
just before these messages.  What you find might be enlightening.  It
could be failing hardware (that needs replacing) or something like a
scratched CD-ROM (causing a read error...).

> 
> > 
> > Thanks in advance,
> > 
> 
> Hope this let's you sleep a tad better,
> --
> Bill
> 
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
>   
>   

-- 
Robert Heller -- 978-544-6933
Deepwoods Software-- Download the Model Railroad System
http://www.deepsoft.com/  -- Binaries for Linux and MS-Windows
hel...@deepsoft.com   -- http://www.deepsoft.com/ModelRailroadSystem/


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Best way to backup virtual machines from Citrix XenServer.

[Benjamin Donnachie]

2010/2/5 Rafał Radecki :
> I have installed Citrix XenServer. It's Linux-based virtualization software.
> Could anyone propose a good way to make backups of virtual machines
> (Linux/Windows) in it?

Try the XenServer mailing lists or wiki?

http://wiki.xensource.com/xenwiki/
http://lists.xensource.com/

Ben
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Simon Billis]

Les Mikesell sent a missive on 2010-02-05:

> Simon Billis wrote:
>> Les Mikesell sent a missive on 2010-02-05:
>> 
>>> Simon Billis wrote:

>>SNIP

> 
> What are you currently using in mailertable to get there?  If you use
> [domain] and go to the A record of the same name it might be a problem
> - but that might work if you try it.  Where I've used it, the delivery
> hosts had their own names that they'd accept in the envelope and the
> [IP.address] form would also work.

Currently I have this in the mailertable:
domain(1).com smtp:smtp2.differentdomain.com
domain(2).com smtp:smtp2.differentdomain.com
...
Domain(n).com smtp:smtp2.differentdomain.com

I think that I'm going to have to test this out and see what happens.

S.





___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[Les Mikesell]

On 2/5/2010 9:35 AM, Alan McKay wrote:
>> Oracle - postgresql work is still ongoing and not yet production ready
>> by a long way...
>
> that would eliminate it for me

What's the difference for a basically-embedded piece of an application? 
   But, looking at the complexity needed to manage a single OS version 
that already has pre-packaged, versioned applications and is designed 
for network use, it makes me thing there is something fundamentally 
wrong with the underlying system tools and concepts.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Les Mikesell]

On 2/5/2010 8:44 AM, Marcelo M. Garcia wrote:
> Alan McKay wrote:
>>> It depends on what you need to do.  If you really have enough machines
>>> or long-running jobs that a shell loop through them isn't practical, you
>>> might want something higher-level like cfengine or puppet, or at least
>>> something running under cron to make them independent.
>>
>> cfengine or puppet (or something else - slackmaster?) are where I want
>> to be eventually - but in the immediate term something like this would
>> help a lot.e.g bouncing my 4 front-end apache servers on 4
>> different boxes.   That sort of thing.
>>
>> I was actually going to start another "configuration management redux"
>> thread as a follow up to a thread I started a few months ago.
>>
>>
> Hi
>
> This is another interesting tool:
> https://fedorahosted.org/func/

Python just seems like something that should be avoided in system 
management tools.  Remember having to do special case things like having 
to 'yum update python\* yum\*' sometimes to keep the rest of an update 
from breaking?

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[nate]

Les Mikesell wrote:

> Have you investigated any of the mostly-software alternatives for this like
> openfiler, nexentastor, etc., or rolling your own iscsi server out of
> opensolaris or centos?

I have and it depends on your needs. I ran Openfiler a couple years
ago with ESX and it worked ok. The main issue there was stability. I
landed on a decent configuration that worked fine as long as you
didn't touch it(kernel updates often caused kernel panics on the
hardware which was an older HP DL580). And when Openfiler finally came
out with their newer "major" version the only upgrade path was to
completely re-install the OS(maybe that's changed now I don't know).

A second issue was availability, Openfiler(and others) have replication
and clustering in some cases, but I've yet to see anything come close
to what the formal commercial storage solutions can provide(seamless
fail over, online software upgrades etc). Mirrored cache is also a
big one as well.

Storage can be the biggest pain point to address when dealing with
a consolidated environment, since in many cases it remains a single
point of failure. Network fault tolerance is fairly simple to address,
and throwing more servers to take into account server failure is
easy, but the data can often only live in one place at a time. Some
higher end arrays offer synchronous replication to another system,
though that replication is not application aware(aka crash consistent)
so you are at some risk of data loss when using it with applications
that are not aggressive about data integrity(like Oracle for example).

A local vmware consulting shop here that I have a lot of respect for
says in their experience, doing crash consistent replication of
VMFS volumes between storage arrays there is about a 10% chance one
of the VMs on the volume being replicated will not be recoverable,
as a result they heavily promoted NetApp's VMware-aware replication
which is much safer. My own vendor 3PAR released similar software
a couple of weeks ago for their systems.

Shared storage can also be a significant pain point for performance
as well with a poor setup.

Another advantage to a proper enterprise-type solution is support,
mainly for firmware updates. My main array at work for example is
using Seagate enterprise SATA drives. The vendor has updated the
firmware on them twice in the past six months. So not only was the
process made easy since it was automatic, but since it's their
product they work closely with the manufacturer and are kept in the
loop when important updates/fixes come out and have access to them,
last I checked it was a very rare case to be able to get HDD firmware
updates from the manufacturer's web sites.

The system "worked" perfectly fine before the updates, I don't know
what the most recent update was for but the one performed in August
was around an edge case where silent data corruption could occur on
the disk if a certain type of error condition was encountered, so
the vendor sent out an urgent alert to all customers using the same
type of drive to get them updated asap.

A co-worker of mine had to update the firmware on some other Seagate
disks(SCSI) in 2008 on about 50 servers due to a performance issue
with our application, in that case he had to go to each system
individually with a DOS boot disk and update the disks, a very time
consuming process involving a lot of downtime. My company spent almost
a year trying to track down the problem before I joined and ran some
diagnostics and fairly quickly narrowed the problem down to systems
running Seagate disks(some other systems running the same app had
other brands(stupid dell), of disks that were not impacted).

A lot of firmware update tools I suspect don't work well with RAID
controllers either, since the disks are abstracted, further
complicating the issue of upgrading them.

So it all depends on what the needs are, you can go with the cheaper
software options just try to set expectations accordingly when
using them. Which for me is basically - "don't freak out when it
blows up".

nate



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] About the openfire question ~

[Ramon Nieto]

On Fri, Feb 5, 2010 at 5:27 AM, Majian  wrote:
> Hi, guys:
>
> Would anyone know what causes this error message ?
>  It's not the first time I've seen it but is the first time I've seen it so
> often.
>
> openfire verison is 3.6.4 .

It is not a Centos related question, have you asked at ignite's support site?

http://www.igniterealtime.org/community/community/support/openfire_%28formerly_wildfire%29_support
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[m . roth]

>> ESXi is free, but usable on one system. ESX is the full-blown version,
>> costs, and I *think* comes with the console... which, for some unknown
>> reason, is WinDoze *only*.
>>
>> I believe both can be administered via browser.
>
> maybe because there are more windows users that Linux and / or Mac OS
> X and FreeBSD.
>
> i have read in [1] and [2] that even RedHat may do the same thing (a
> Wind0w$ only console)

Except that VMware is *based* on RHEL. Why would you *not* have a
Linux-based console?

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Configuration Management Redux (was: best parallel / cluster SSH)

[m . roth]

>> Oracle - postgresql work is still ongoing and not yet production ready
>> by a long way...
>
> that would eliminate it for me

I've heard that before... yet I, personally, know of both postgresql and
mysql in serious production use. For example, one company that not only
does managed security services but is a root CA, with a *lot* of data,
uses mysql.

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Athmane Madjoudj]

> Except that VMware is *based* on RHEL. Why would you *not* have a
> Linux-based console?

The best is to have a cross platform console because there a lot of
linux sysadmin (including me) who run linux as a primary desktop OS
-- 
Athmane Madjoudj
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Les Mikesell]

On 2/5/2010 9:53 AM, Simon Billis wrote:

>
>>> SNIP
>
>>
>> What are you currently using in mailertable to get there?  If you use
>> [domain] and go to the A record of the same name it might be a problem
>> - but that might work if you try it.  Where I've used it, the delivery
>> hosts had their own names that they'd accept in the envelope and the
>> [IP.address] form would also work.
>
> Currently I have this in the mailertable:
> domain(1).com smtp:smtp2.differentdomain.com
> domain(2).com smtp:smtp2.differentdomain.com
> ...
> Domain(n).com smtp:smtp2.differentdomain.com
>
> I think that I'm going to have to test this out and see what happens.

I think it should work to put the smtp2.differentdomain.com in the 
virtusrtable target as long as the destination accepts that as a local 
name - and you'd have to go out of your way to avoid it if it is the 
real hostname or reverse DNS name for the interface.
-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[nate]

m.r...@5-cent.us wrote:

> Except that VMware is *based* on RHEL. Why would you *not* have a
> Linux-based console?

A common misconception. The linux based console is a VM in itself,
and is used for management purposes only, it runs on top of the
hypervisor.

nate



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

On 2/5/2010 10:12 AM, m.r...@5-cent.us wrote:
>>> ESXi is free, but usable on one system. ESX is the full-blown version,
>>> costs, and I *think* comes with the console... which, for some unknown
>>> reason, is WinDoze *only*.
>>>
>>> I believe both can be administered via browser.
>>
>> maybe because there are more windows users that Linux and / or Mac OS
>> X and FreeBSD.
>>
>> i have read in [1] and [2] that even RedHat may do the same thing (a
>> Wind0w$ only console)
> 
> Except that VMware is *based* on RHEL. Why would you *not* have a
> Linux-based console?

Esx(i) is pretty lightweight on the host side.  There's no GUI at all 
and not much you can actually do there. The vcenter client is a fairly 
complex application - probably non-trivial to port and maintain lots of 
different versions.  If you're going to lose a percentage of customers 
based on not having an appropriate platform to run the client - well you 
can do the math - they aren't dumb.

Anyway, the client doesn't need to be connected for normal operation and 
you can connect from different clients, so they don't have to be on a 
particularly reliable machine.

-- 
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] About the openfire question ~

[Les Mikesell]

On 2/5/2010 10:09 AM, Ramon Nieto wrote:
> On Fri, Feb 5, 2010 at 5:27 AM, Majian  wrote:
>> Hi, guys:
>>
>> Would anyone know what causes this error message ?
>>   It's not the first time I've seen it but is the first time I've seen it so
>> often.
>>
>> openfire verison is 3.6.4 .
>
> It is not a Centos related question, have you asked at ignite's support site?

Looks like a java error to me, so it could be Centos related.  What JVM 
is it using?

-- 
   Les Mikesell
lesmikes...@gmail.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Mount USB disk at startup?

[John Doe]

From: Ian Forde 
> On Thu, 2010-02-04 at 14:19 -0800, Kenneth Porter wrote:
> > --On Thursday, February 04, 2010 8:36 AM -0600 Robert Nichols 
> > > Looks like that's about all you can do.  USB devices aren't available
> > > until hotplug discovers them, and that's proceeding in parallel with the
> > > rest of the boot sequence.  Be sure to put a timeout in that loop lest it
> > > hang forever if that external device is absent.
> > Even better would be to make the script event-driven and launched by the 
> > hotplug process. Then there's no busy-wait.
> Since the OP is looking to have their USB drive mounted before mythtv's
> backend process starts up, I'd recommend disabling the mythbackend
> startup script:
> 
> chkconfig mythbackend off
> 
> Then doing a manual mount in /etc/rc.local, followed by starting
> mythbackend.
> 
> /sbin/mount /dev/sdb1 /wherever
> /sbin/service mythbackend start
> 
> Of course, I wouldn't recommend using a USB drive for storing myth
> recordings, as it eventually bite you due to USB2's limited bandwidth...
> 
> -I (also a mythtv user!)

Hum... hoping in in the middle of the conversation but...
I am mounting a usb disk through fstab; and the daemon (bacula) using it never 
complained...
Aren't the filesystems mounted (rc.sysinit?) before most daemons...?
Otherwise, just create a mounting init script with a starting priority lower 
than mythbackend.

JD


  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Matt Iavarone]

On Fri, Feb 5, 2010 at 7:53 AM, Athmane Madjoudj  wrote:
>> ESXi is free, but usable on one system. ESX is the full-blown version,
>> costs, and I *think* comes with the console... which, for some unknown
>> reason, is WinDoze *only*.
>>
>> I believe both can be administered via browser.
>
> maybe because there are more windows users that Linux and / or Mac OS
> X and FreeBSD.
>
> i have read in [1] and [2] that even RedHat may do the same thing (a
> Wind0w$ only console)
>
> [1]  
> http://www.internetnews.com/software/article.php/3847391/Red+Hat+Virtualization+Manager+for+Windows+Only.htm
>
> [2] http://www.linuxtoday.com/it_management/2009110700635NWRH
>
>
> I' m not sure but it will be helpful if someone confirm (or not).
>
> Best regards.
>
> --
> Athmane Madjoudj
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

It's Windows only for the management piece because it is written in
.NET, and yes it is the same for RHEV (Red Hat's Virtualization
server).  I don't know why it has to be in .NET, but it is (Probably a
C# thing).


For my money, and as this is a CentOS mailing list please forgive the
following recommendations, I would go with Oracle VM...because I don't
have much money.  OVM is free to download but has paid support
options.  It's a really small implementation of RHEL using the Xen
kernel and has a Non-Windows management UI.  It supports clustering
and high-availability with OCFS2 and does para and full
virtualization.

If I had more of a budget, I would go with RHEV.  It costs a lot less
to run compared to ESX and Hyper-V, and is higher performing too.
This, of course, uses KVM and not Xen, but the performance is there.
You need RHEL 5.4 and hardware compatibility. I'm not sure if you
would be able to manage CentOS 5.4 hosts with RHEV, but it'd be worth
a try.  I don't see why it wouldn't work.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] VMWare ESXi & CentOS5.4

[Thom Paine]

I have a brand new Dell Poweredge T310 server with 4G ram and 1TB
raid-5 hard drive in it. I Really only need to be able to run a copy
of CentOS 5.4 on it, but I'm wondering if in the build process should
I stick on ESXi 4 and then run CentOS as a vm? This would give me the
options to roll out other VM's if I want over the life of the server
(which I likely won't need) but the convenience of having them might
be there.

I'm only thinking of doing this because ESXi is free, and won't add
any cost to this server.

This server is going to be a domain controller for 5 workstations
which will run Windows XP,  as well as host 1 website with email. It
will setup a few shares for samba, and have one network printer
attached to it.

Any thoughts to this, or should I just put on CentOS 5.4 and be done
with it? I know it's like asking what everyone's favourite colour is,
but maybe a few replies will give me some ideas.

Thanks.

-- 
-=/>Thom
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[m . roth]

> I have a brand new Dell Poweredge T310 server with 4G ram and 1TB
> raid-5 hard drive in it. I Really only need to be able to run a copy
> of CentOS 5.4 on it, but I'm wondering if in the build process should
> I stick on ESXi 4 and then run CentOS as a vm? This would give me the
> options to roll out other VM's if I want over the life of the server
> (which I likely won't need) but the convenience of having them might
> be there.

In fact, that's what I'm considering in a year or two, when I need a new
h/d at home. I'd like to be able to test a new release without worrying,
and I probably want something like XP or whatever (for the sole purpose of
playing games more recent than, say, Doom (tm) or Heretic(tm) )

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Alan McKay]

On Fri, Feb 5, 2010 at 11:03 AM, Les Mikesell  wrote:

> Python just seems like something that should be avoided in system
> management tools.  Remember having to do special case things like having
> to 'yum update python\* yum\*' sometimes to keep the rest of an update
> from breaking?

Yes, I feel the same way about perl!


-- 
“Don't eat anything you've ever seen advertised on TV”
 - Michael Pollan, author of "In Defense of Food"
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[m . roth]

> On Fri, Feb 5, 2010 at 11:03 AM, Les Mikesell 
> wrote:
>
>> Python just seems like something that should be avoided in system
>> management tools.  Remember having to do special case things like having
>> to 'yum update python\* yum\*' sometimes to keep the rest of an update
>> from breaking?
>
> Yes, I feel the same way about perl!

Never had a problem with perl updates breaking anything. I do remember a
few years back, when it seemed as though any time I tried to install or
upgrade something that was in python, it *ALWAYS* wanted a different
subrelease, and upgrading that would break everything else in python

   mark, not a python fan

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] sendmail mail relay backscatter issue.

[Simon Billis]

Les Mikesell sent a missive on 2010-02-05:

> On 2/5/2010 9:53 AM, Simon Billis wrote:
> 
>> 
 SNIP
>> 
>>> 
>>> What are you currently using in mailertable to get there?  If you use
>>> [domain] and go to the A record of the same name it might be a problem
>>> - but that might work if you try it.  Where I've used it, the delivery
>>> hosts had their own names that they'd accept in the envelope and the
>>> [IP.address] form would also work.
>> 
>> Currently I have this in the mailertable:
>> domain(1).com smtp:smtp2.differentdomain.com
>> domain(2).com smtp:smtp2.differentdomain.com
>> ...
>> Domain(n).com smtp:smtp2.differentdomain.com
>> 
>> I think that I'm going to have to test this out and see what happens.
> 
> I think it should work to put the smtp2.differentdomain.com in the
> virtusrtable target as long as the destination accepts that as a local
> name - and you'd have to go out of your way to avoid it if it is the
> real hostname or reverse DNS name for the interface.

Thanks for your help Les, I'll test it all I think and see what happens.

S.




___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Kwan Lowe]

On Fri, Feb 5, 2010 at 12:06 PM, Thom Paine  wrote:
> I have a brand new Dell Poweredge T310 server with 4G ram and 1TB
> raid-5 hard drive in it. I Really only need to be able to run a copy
> of CentOS 5.4 on it, but I'm wondering if in the build process should
> I stick on ESXi 4 and then run CentOS as a vm? This would give me the
> options to roll out other VM's if I want over the life of the server
> (which I likely won't need) but the convenience of having them might
> be there.
>
> I'm only thinking of doing this because ESXi is free, and won't add
> any cost to this server.
>
> This server is going to be a domain controller for 5 workstations
> which will run Windows XP,  as well as host 1 website with email. It
> will setup a few shares for samba, and have one network printer
> attached to it.
>
> Any thoughts to this, or should I just put on CentOS 5.4 and be done
> with it? I know it's like asking what everyone's favourite colour is,
> but maybe a few replies will give me some ideas.

There are many benefits to virtualizing. Except for a few laptops,
everything in my house is virtualized with either ESXi, VMWare Server,
Xen or KVM.  Besides the flexibility, I like the ability to access the
servers from whichever room I'm in. I can work in my office and when I
want, just take the laptop outside or to kitchen and have all my apps
still in place.

A domain controller for 5 systems seems particularly well suited for
virtualization. The CPU/memory/disk requirements are relatively modest
and you'd be able to take better advantage of your Poweredge system.
Backups would be easier, as would managing the system since you'd
have, in effect, an ILO setup.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Alan McKay]

On Fri, Feb 5, 2010 at 12:45 PM,   wrote:
> Never had a problem with perl updates breaking anything. I do remember a
> few years back, when it seemed as though any time I tried to install or
> upgrade something that was in python, it *ALWAYS* wanted a different
> subrelease, and upgrading that would break everything else in python

No problems with updates - just problems assuming it is on ever box out there.

We removed it from the Nortel BCM because the perl installation
accounted for more than half the space on our embedded Linux.


-- 
“Don't eat anything you've ever seen advertised on TV”
 - Michael Pollan, author of "In Defense of Food"
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] gdm-simple-greeter, redux

[m . roth]

Does *anyone* have a clue where gdm-simple-greeter stores the usernames it
presents? I know that it is not getting it out of /etc/passwd. based on
users who can log in, since I have several machines where one user, who's
rolled off, is still showing, even though /etc/passwd has him as having a
shell that doesn't exist.

  mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Les Mikesell]

On 2/5/2010 11:54 AM, Kwan Lowe wrote:
>
> There are many benefits to virtualizing. Except for a few laptops,
> everything in my house is virtualized with either ESXi, VMWare Server,
> Xen or KVM.  Besides the flexibility, I like the ability to access the
> servers from whichever room I'm in. I can work in my office and when I
> want, just take the laptop outside or to kitchen and have all my apps
> still in place.

I wouldn't use remote access as a reason to virtualize (other than 
during the initial setup or network troubleshooting).  There are better 
ways to get remote access for daily use than a VMware console (freenx, 
vnc, ssh, remote X for linux, remote desktop, vnc for windows).

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Michael Dross]

I have recently installed ESXi4 on a new HP DL380 G6 with 12GB of memory.
I am running CentOS 5.4 and CentOS 4.8.  A few things I have learned.

First, for best I/O performance you should use the Vmware Paravirtualized 
storage controller driver. It's a little bit of a hassle setting it up. 
You just have to remake the initrd file. This will give about 10% better
disk I/O than using the other emulated controllers.  

I am using in a dual development/operational environment on the same machine
, which is nice. 
You can allocate resource pools, and control how much CPU, Memory each VM or
VM pool gets. 

I have noticed about a * 10-15% * overall performance hit running CentOS on
the ESXi hypervisor compared to bare metal.  If your applications are 
very CPU and/or I/O intensive then there will be a noticeable difference
between bare metal and a hypervises solution.  So the trade off is a
performance
hit vs the easy of features that come with a virtualized setting. 

If you are going to run just one CentOS instance, on the VM, then I wouldn't
think it would be that advantageous to have it on a VM for performance
reasons.

If you do decide to go with ESXi, you might want to up your memory as you
will
probably want to run several VM's and memory get's eaten up pretty quickly.

-Mike


-Original Message-
From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf
Of Thom Paine
Sent: Friday, February 05, 2010 12:07 PM
To: CentOS mailing list
Subject: [CentOS] VMWare ESXi & CentOS5.4

I have a brand new Dell Poweredge T310 server with 4G ram and 1TB
raid-5 hard drive in it. I Really only need to be able to run a copy
of CentOS 5.4 on it, but I'm wondering if in the build process should
I stick on ESXi 4 and then run CentOS as a vm? This would give me the
options to roll out other VM's if I want over the life of the server
(which I likely won't need) but the convenience of having them might
be there.

I'm only thinking of doing this because ESXi is free, and won't add
any cost to this server.

This server is going to be a domain controller for 5 workstations
which will run Windows XP,  as well as host 1 website with email. It
will setup a few shares for samba, and have one network printer
attached to it.

Any thoughts to this, or should I just put on CentOS 5.4 and be done
with it? I know it's like asking what everyone's favourite colour is,
but maybe a few replies will give me some ideas.

Thanks.

-- 
-=/>Thom
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Les Mikesell]

On 2/5/2010 11:30 AM, Alan McKay wrote:
> On Fri, Feb 5, 2010 at 11:03 AM, Les Mikesell  wrote:
>
>> Python just seems like something that should be avoided in system
>> management tools.  Remember having to do special case things like having
>> to 'yum update python\* yum\*' sometimes to keep the rest of an update
>> from breaking?
>
> Yes, I feel the same way about perl!

How so?  In decades of using perl, I've only seen one case where even 
major version revs did not maintain complete backwards compatibility in 
the core language, that being when @ in double-quoted strings started to 
be interpolated.  But yes, if I were to expect perl to control my 
machines, I'd provision a separate instance of it for that purpose so 
system updates can't be suicidal.  Sort of like using static libs in C 
programs that need to always work.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Les Mikesell]

On 2/5/2010 12:09 PM, Alan McKay wrote:
> On Fri, Feb 5, 2010 at 12:45 PM,  wrote:
>> Never had a problem with perl updates breaking anything. I do remember a
>> few years back, when it seemed as though any time I tried to install or
>> upgrade something that was in python, it *ALWAYS* wanted a different
>> subrelease, and upgrading that would break everything else in python
>
> No problems with updates - just problems assuming it is on ever box out there.
>
> We removed it from the Nortel BCM because the perl installation
> accounted for more than half the space on our embedded Linux.

Can you put a realistic price on what the extra resources would cost 
these days?

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] was Re: gdm-simple-greeter, redux, is sorry for the dup

[m . roth]

Not sure what happened...

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Les Mikesell]

On 2/5/2010 12:25 PM, Michael Dross wrote:
> I have recently installed ESXi4 on a new HP DL380 G6 with 12GB of memory.
> I am running CentOS 5.4 and CentOS 4.8.  A few things I have learned.
>
> First, for best I/O performance you should use the Vmware Paravirtualized
> storage controller driver. It's a little bit of a hassle setting it up.
> You just have to remake the initrd file. This will give about 10% better
> disk I/O than using the other emulated controllers.

Does this happen by itself if you've installed vmware tools in the guest 
and then get a kernel update that triggers an initrd rebuild or do you 
have to do something to specify the right module to include?

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] gdm-simple-greeter, redux

[Robert Heller]

At Fri, 5 Feb 2010 13:13:45 -0500 CentOS mailing list  wrote:

> 
> Does *anyone* have a clue where gdm-simple-greeter stores the usernames it
> presents? I know that it is not getting it out of /etc/passwd. based on
> users who can log in, since I have several machines where one user, who's
> rolled off, is still showing, even though /etc/passwd has him as having a
> shell that doesn't exist.

Are you running yp, or ldap (ie a network authentification server)? 
gdm-simple-greeter gets the usernames from the same place as login... 
If you are just using shadow passwords (eg /etc/passwd, /etc/shadow,
/etc/group), gdm-simple-greeter will use the user names in /etc/passwd.
There is a setting in /etc/gdm/custom.conf that lists the usernames to
include (usuall all/*) and to exclude (various non-user 'usernames'
like nobody, bin, daemon, etc.). I doubt that gdm-simple-greeter checks
to see if users in /etc/passwd have 'valid' shells, which is why there
is an exclude option
 

> 
>   mark
> 
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
>   
> 

-- 
Robert Heller -- 978-544-6933
Deepwoods Software-- Download the Model Railroad System
http://www.deepsoft.com/  -- Binaries for Linux and MS-Windows
hel...@deepsoft.com   -- http://www.deepsoft.com/ModelRailroadSystem/


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[John R Pierce]

Les Mikesell wrote:
>> We removed it from the Nortel BCM because the perl installation
>> accounted for more than half the space on our embedded Linux.
>> 
>
> Can you put a realistic price on what the extra resources would cost 
> these days?
>   

when you're running on an embedded single chip processor that has a 
fixed amount of flash and ram, and the board goes into 10 units or more?

lots.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[nate]

Thom Paine wrote:

> Any thoughts to this, or should I just put on CentOS 5.4 and be done
> with it? I know it's like asking what everyone's favourite colour is,
> but maybe a few replies will give me some ideas.

I like the VM approach because it gives a foolproof to snapshot the
guest and do testing/rollbacks easily, also the hardware configuration
is usually significantly simpler as it's abstracted, and it makes
the server more portable, easier to move to another system as a whole.

Where performance is a real big concern I use native hardware, but
those cases are fairly rare.

nate


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Les Mikesell]

On 2/5/2010 10:04 AM, nate wrote:
>
>> Have you investigated any of the mostly-software alternatives for this like
>> openfiler, nexentastor, etc., or rolling your own iscsi server out of
>> opensolaris or centos?
>
> I have and it depends on your needs. I ran Openfiler a couple years
> ago with ESX and it worked ok. The main issue there was stability. I
> landed on a decent configuration that worked fine as long as you
> didn't touch it(kernel updates often caused kernel panics on the
> hardware which was an older HP DL580). And when Openfiler finally came
> out with their newer "major" version the only upgrade path was to
> completely re-install the OS(maybe that's changed now I don't know).

Somewhere along the line they switch from a CentOS base to rpath for 
better package management, but I haven't followed them since.

[...]
> Another advantage to a proper enterprise-type solution is support,
> mainly for firmware updates. My main array at work for example is
> using Seagate enterprise SATA drives. The vendor has updated the
> firmware on them twice in the past six months. So not only was the
> process made easy since it was automatic, but since it's their
> product they work closely with the manufacturer and are kept in the
> loop when important updates/fixes come out and have access to them,
> last I checked it was a very rare case to be able to get HDD firmware
> updates from the manufacturer's web sites.

I had an equally frustrating experience with a Dell rebranded NetApp 
several years back.  The unit shipped with a bad moherboard FC 
controller which was a known problem and they also included an add-on 
card.  But, the guy who set it up called support where he was told that 
the problem had been fixed by this serial number and he should connect 
to the motherboard port.  The symptom was that once or twice a year it 
would see something wrong with a drive, kick it out and rebuild on a hot 
spare.  Eventually it lost several disks at once and lost the data. 
After I dug up the history I switched controllers and reinstalled 
everything from scratch and it worked after that, but by then nobody 
trusted it and it was only used for backups.   So, I no longer believe 
that paying a lot for a device that is supposed to have a good 
reputation is a sure thing - or that having a support phone number is 
going to make things better.  Everyone has different war stories, I guess...

> A co-worker of mine had to update the firmware on some other Seagate
> disks(SCSI) in 2008 on about 50 servers due to a performance issue
> with our application

Oh yeah - the drives in this device needed that too - but it wasn't that 
bad to do on one device with the NetApp software.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Ryan Wagoner]

On Fri, Feb 5, 2010 at 12:06 PM, Thom Paine  wrote:
> I have a brand new Dell Poweredge T310 server with 4G ram and 1TB
> raid-5 hard drive in it. I Really only need to be able to run a copy
> of CentOS 5.4 on it, but I'm wondering if in the build process should
> I stick on ESXi 4 and then run CentOS as a vm? This would give me the
> options to roll out other VM's if I want over the life of the server
> (which I likely won't need) but the convenience of having them might
> be there.
>
> I'm only thinking of doing this because ESXi is free, and won't add
> any cost to this server.
>
> This server is going to be a domain controller for 5 workstations
> which will run Windows XP,  as well as host 1 website with email. It
> will setup a few shares for samba, and have one network printer
> attached to it.
>
> Any thoughts to this, or should I just put on CentOS 5.4 and be done
> with it? I know it's like asking what everyone's favourite colour is,
> but maybe a few replies will give me some ideas.
>
> Thanks.
>
> --
> -=/>Thom
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

Just keep in mind your backup solution. You will not be able to use
external USB hard drives for backups on ESXi. ESXi works great when
you have more than one server. At one office I re purposed their older
server for files and backups running Windows on bare metal. I then
used ESXi on the newer machine with a few installs of windows for ad,
exchange, and a centos webserver.

Ryan
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] VMWare ESXi & CentOS5.4

[Michael Dross]

Vmware tools installed the pvscsi library. But does not automatically
reconfigure the boot/kernel to use it.

Here is a good web page that explains the steps to remake the initrd. Once
you have done that under settings in
the vSphere Client change the SCSI controller setting to Paravirtual.  I
think that the pvscsi lib will be included
in a forth coming linux kernel tree, which will make having to add this
manually, obsolete. Not sure when that will
be. I wish VMware would automate this as part of the install or P2V process.


http://vmadmin.nt.com.au/?p=28

-Mike
 

-Original Message-
From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf
Of Les Mikesell
Sent: Friday, February 05, 2010 1:36 PM
To: centos@centos.org
Subject: Re: [CentOS] VMWare ESXi & CentOS5.4

On 2/5/2010 12:25 PM, Michael Dross wrote:
> I have recently installed ESXi4 on a new HP DL380 G6 with 12GB of memory.
> I am running CentOS 5.4 and CentOS 4.8.  A few things I have learned.
>
> First, for best I/O performance you should use the Vmware Paravirtualized
> storage controller driver. It's a little bit of a hassle setting it up.
> You just have to remake the initrd file. This will give about 10% better
> disk I/O than using the other emulated controllers.

Does this happen by itself if you've installed vmware tools in the guest 
and then get a kernel update that triggers an initrd rebuild or do you 
have to do something to specify the right module to include?

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Vmware Server interface bridge not work.

[Saulo Bozzi]

Hi list!!!
Anybody, please, can help me.

My CentOS 5.4 after that update to new kernel, my vmware server not work the
interface bridge, with new kernel and old kernel.
Only work with default install of CentOS 5.4, done update, not work.

Anybody, please?

ps.:Interface, nat, host-only, vmnet1 and vmnet8, work fine.

Regards.
Bye.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[Ross Walker]

On Feb 5, 2010, at 9:03 AM, Drew  wrote:

>> Thanks for the info. Looks like VM would be the way to go. I have  
>> been
>> looking at Vmware and virtualbox. Would you recommend Vmware over
>> virtualbox?
>
>> Whats your thoughts on Vmware server over esxi?
>> Really do not want to have to budget for Virtualization if I do not  
>> have to.
>
> I know some will disagree with me but for production I recommend
> sticking with VMware's ESXi product, which is free, unless you have
> need of some of the more advanced features which are available through
> paid options.
>
> The downside of offerings like Virtualbox or VMware Server, where the
> guest OS is hosted inside the app running on a full blown OS, is the
> host itself. In my experience, the smaller footprint of VMware ESX(i)
> reduces the amount of maintenance required as well as has minimal
> performance impact of the guest OS's.
>
> That said, apps like Virtualbox / WMware server do have their place.
> At work I routinely create virtual machines under WMware Server to
> experiment with new software before releasing it into the wild at
> work. The cost overhead of running Server on my own workstation is
> acceptable for testing but I wouldn't consider it for production.

Citrix XenServer Pro is also free and it comes with live migration,  
you don't get VMotion with ESXi unless you dish out big $$ for  
Enterprise.

-Ross

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Clustering

[nate]

Les Mikesell wrote:

> Somewhere along the line they switch from a CentOS base to rpath for
> better package management, but I haven't followed them since.

Yeah the version I had at the time was based on rPath, I think
they changed to something else yet again in the past year or
so.

> trusted it and it was only used for backups.   So, I no longer believe
> that paying a lot for a device that is supposed to have a good
> reputation is a sure thing - or that having a support phone number is
> going to make things better.  Everyone has different war stories, I guess...

Oh absolutely, nothing is a sure thing, on two separate occasions
last year we had a disk failure take out an entire storage array
(I speculate that fiber errors flooded the bus and that took the
controllers off line), this was on low end crap storage. One of
our vendors OEM's low end IBM storage for some of their customers
and they reported similar events on that stuff.

In 2004 the company I was at had a *massive* outage on our EMC
array(CX600), some pretty significant data loss(~60 hours of
downtime in the first week alone), in the end it was traced
to administrator(wasn't me at the time) error. A
misconfiguration of the system allowed both controllers to go
down simultaneously. Such an error is not possible to make on
more modern systems(phew). I don't know what the specific
configuration was but the admin fessed up to it a couple years
later.

Which is why most vendors will try to push for a 2nd array and doing
some sort of replication, there's only one system in the world that
I know of that puts their money behind 100% uptime and that is the
multi million $ systems from Hitachi. They claim they've never
had to pay up for any claims.

Most other array makers don't make their systems to handle more
than 99.999% uptime on the high end. And probably 99.99% on the
mid range.

BUT under most circumstances a good storage array provides far
better availability than anything someone can build on their
own for most applications. Where good typically means the system
would be sold starting at north of $50k.

I like my own storage array because it can have up to 4 controllers
running in active-active mode(right now it has 2, getting another
2 installed in a few weeks). Recently a software update was installed
that allows the system to re-mirror itself to another controller(s)
in the system in the event of a controller failure.

Normally in a dual controller system if a controller goes down the
system goes into write-through mode to ensure data integrity which
can destroy performance, with this feature that doesn't happen,
and the system still ensures data integrity by making sure all data
is written to two locations before the write is acknowledged to
the host.

It goes well beyond that though, it automatically lays data out
so that it can survive a full shelf(up to 40 drives) failing without
skipping a beat. RAID rebuilds are very fast(up to 10x faster than
other systems), the drives are connected to a switched back plane,
there are no fiber loops on the system, every shelf of disks is
directly connected to the controllers via two fiber ports. In
the event of a power failure there is an internal disk in each
controller that the system writes it's cache out to, so no worries
about a power outage lasting longer than the batteries(typically
48-72 hours). And of course since everything is written twice,
when the power goes out you store two copies of that cache on
the internal disks, in the event one disk happens to fail
(hopefully both don't) at the precisely wrong moment.

The drives themselves are in vibration absorbing
sleds, vibration is the #1 cause of failure on disks according
to a report I read from Seagate.

http://portal.aphroland.org/~aphro/chassis-architecture.png
http://www.techopsguys.com/2009/11/20/enterprise-sata-disk-reliability/

I have had two soft failures on the system since we got it, one time
a fiber channel port had a sort of core dump, and another where
a system process crashed, both were recovered automatically without
user intervention and no noticeable impact other than the email
alerts to me.

No guarantees it won't burst into flames one day, but I do sleep
a lot better at night with this system vs the last one.

My vendor also recently introduced an interesting solution for
replication which involves 3 arrays providing synchronous long
distance replication, it works like this:

(while all arrays must be from the same vendor they do not need
to be identical in any way)

Array 1 sits in facility A
Array 2 sits in facility B (up to ~130 miles away, or 1.3ms RTT)
Array 3 sits in facility C (up to 3000 miles away, or 150ms RTT)

Array 1 is synchronously replicating to facility B (hence distance
limitations), and asynchronously replicating to facility C at
defined intervals. In the event facility A or Array 1 blows up,
Array 3 in facility C automatically connects to Array 2 and has it
send all of the data up to the point Arr

Re: [CentOS] best parallel / cluster SSH

[Alan McKay]

On Fri, Feb 5, 2010 at 1:31 PM, Les Mikesell  wrote:
> Can you put a realistic price on what the extra resources would cost
> these days?

Clearly you've never worked for a large company if you even ask that question.

A $1 difference in cost over 100,000 units sold is $100,000 in your pocket.

I recall the first model of BCM we decided not to put a power switch
on it for just this reason.


-- 
“Don't eat anything you've ever seen advertised on TV”
 - Michael Pollan, author of "In Defense of Food"
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best parallel / cluster SSH

[Les Mikesell]

On 2/5/2010 5:22 PM, Alan McKay wrote:
> On Fri, Feb 5, 2010 at 1:31 PM, Les Mikesell  wrote:
>> Can you put a realistic price on what the extra resources would cost
>> these days?
>
> Clearly you've never worked for a large company if you even ask that question.
>
> A $1 difference in cost over 100,000 units sold is $100,000 in your pocket.
>
> I recall the first model of BCM we decided not to put a power switch
> on it for just this reason.

What I meant by the price is how much the price was reduced for the 
consumer.  Manufacturers taking away functionality and not passing on 
the savings isn't very interesting, but I suppose there's a point in 
volume where you could pay someone to re-write perl or java code in C or 
some close-to-the-metal language to save a few bytes of flash and RAM.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Block network at logoff on workstation

[David McGuffey]

On Thu, 2010-02-04 at 09:19 -0500, Ross Walker wrote:
> On Feb 3, 2010, at 9:36 PM, David McGuffey   
> wrote:
> 
> > I'm trying to reduce the attack surface to a home machine that is  
> > always
> > on and connected to the Internet.  It is running CentOS 5.4, with  
> > tight
> > iptables rules and sits behind a Verizon FiOS firewall/switch also
> > configured with tight rules.
> >
> > I was wondering how to best block all network access to it when I log
> > off...then unblock it when I log on. Changing iptables requires root
> > access...as does running ifdown and ifup scripts.
> >
> > I could change the permissions on ifdown and ifup and run them from  
> > the
> > login/logout scripts, but I'd prefer not to do that.
> >
> > Any tips?
> 
> Set iptables to block all inbound traffic unless initiated from your  
> workstation.
> 
> It's the most secure, all the time.
> 
> -Ross
It is already set up that way...but I was thinking about taking the
interface down if no one is logged into the console (this is a
workstation used as a home computer and not supporting any network
servers).

I was thinking of a cron job that would run 'who' and if there were no
active logins, run 'ifdown eth0'

DaveM


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server 2008r2)

[Chan Chung Hang Christopher]

> Wbinfo -u & wbinfo -g do indeed work for me however getent passwd or getent 
> group returns no AD users or groups. I have winbind entries in nsswitch for 
> both the passwd & group entries. Josepeh, I will try a newer RPM from a 
> different repository and see if that resolves my issues. Did my smb.conf look 
> ok?
> 

It did...which is why I asked whether wbinfo -u/g worked...
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] XEN

[Matt]

I have a fairly high disk i/o intensive email server I am thinking of
upgrading.  I was thinking of upgrading it to CentOS 5.x 64bit.  I was
also thinking of running it as a guest under XEN.  Would this allow me
to more easilly transfer it to faster hardware in the future?  Or
would running as a guest seriously hurt disk i/o?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 5.4 x86_64 authenticating against AD (Server 2008r2)

[Joseph L. Casale]

>Wbinfo -u & wbinfo -g do indeed work for me however getent passwd or getent 
>group returns no AD users or groups. I have winbind entries in nsswitch for 
>both the passwd & >group entries. Josepeh, I will try a newer RPM from a 
>different repository and see if that resolves my issues. Did my smb.conf look 
>ok?

getent doesn't need to return data for this to work, just wbinfo.
It's likely the issue I spoke of, aside from the winbind entries
in smb.conf that allow local logon.

Take my advice:
yum erase samba == uber happiness

Get ldap working, no interop issues with the old samba version in rhel and
newer ms servers. Plus you will be using something forward compatible that
a txt edit could likely fix in the event something drastic changed in the
schema and search filters for example had to change.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] XEN

[Dave Stevens]

Quoting Matt :

> I have a fairly high disk i/o intensive email server I am thinking of
> upgrading.  I was thinking of upgrading it to CentOS 5.x 64bit.  I was
> also thinking of running it as a guest under XEN.  Would this allow me
> to more easilly transfer it to faster hardware in the future?  Or
> would running as a guest seriously hurt disk i/o?

I'm running a web and mail server in a guest xen domain with a raid 10  
setup and have no disk i/o issues. I think you haven't supplied enough  
info for a complete answer, though. How much traffic, how much RAM,  
what disk(s) size and config will make a difference.

Dave

> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>



-- 
"It is no measure of health to be well adjusted to a profoundly sick society."
   Krishnamurti

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos