Re: [CentOS] 6.0 Media problems
On 08/28/2011 11:37 PM Always Learning wrote: > On Sun, 2011-08-28 at 22:33 -0400, ken wrote: > >> On 08/28/2011 09:17 PM Always Learning wrote: > >> Broadly speaking it's a pentium i686, but without pae. The fact that >> this machine is excluded from RH/CentOS doesn't bode well for Linux. > > The i686 is an i386 32 bit CPU and needs PAE to address more than 64 GB. > > http://en.wikipedia.org/wiki/P6_%28microarchitecture%29 states about the > i686:- > > "PAE and wider 36-bit address bus to support 64 GB of physical memory > (the linear address space of a process was still limited to 4 GB)." Paul, this is good to read, but irrelevant. I'm currently using 2G of RAM in this machine (less in the others), run several server apps as well as client apps and 2G of RAM suffices quite nicely. Only token amounts of swap are used. I could upgrade this box to 4G of RAM, but what for? It's not needed. Nothing would run any faster or better. So what's the point? > >> Well, since I've got two or three other machines I'm either upgrading or >> installing linux on, machines that are older than this one, I guess I'm >> done with RH/CentOS. > > Is your use of a particular Intel CPU really to blame and not > necessarily Centos ? Really...? "blame"...? If this CPU functions just fine on RH/CentOS 5.6 and other distributions, by what rationale can it be blamed for anything? > > You could stay with Centos 5.x and upgrade to 5.7 when it becomes > available. You do not have to upgrade to Centos 6. > > If the motherboard is fairly modern, and has the correct type of CPU > socket, you may be able to replace the CPU for a PAE one. Of course I *could* possibly do this. To what end? As said, the apps I'm using wouldn't run any better or faster. It's much easier and simpler and faster and cheaper to download a different distribution. > >>> I'm waiting for Centos 6.1 before I try version 6. >> Do you think hardware restrictions will be lessened in 6.1? > > No. I think many initial teething problems will be solved and > installation bugs, if any, will be reduced or eliminated. I'm letting > the more daring and adventurous folk with lots of spare time discover > the problems. Re: the question. I wouldn't think so either. It wouldn't make sense to require pae for 6.0 but not for 6.1 and beyond. That "spare time" factor... yeah. Upgrading CPUs doesn't fit into the precious few spare time slots in my calendar. > > When M$ introduced Windows 3, they had to create version 3.1 because of > the problems. Even that had bugs so Windows 3.11 was introduced. The > same with M$ DOS 6, the eventual stable version was 6.22. The same with > Windows 98. That had to be followed by 98 version 2 (Second Edition) and > then version 3 (Millennium Edition). Centos is a lot more reliable but > there are usually some odd problems with a major upgrade. I hope we're not going to start rationalizing the presence of linux bugs on the basis of Microsoft's record of failures. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.0 Media problems
On 08/28/2011 11:38 PM John R Pierce wrote: > On 08/28/11 7:33 PM, ken wrote: >>> Recently someone wrote that PAE related to i386 but was not required for x64. What CPU type is your target machine ? >> Broadly speaking it's a pentium i686, but without pae. The fact that >> this machine is excluded from RH/CentOS doesn't bode well for Linux. > > its late 2011, the world is finally moving to 64bit as the primary > platform.this doesn't bode well for your old 32bit-only CPU.a > 32bit only CPU can no longer be considered enterprise grade. Snob appeal does work on a lot of people. Maybe in today's world it's a character flaw, but I prefer actual reasons. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.0 Media problems
On Monday, August 29, 2011 12:12:03 PM ken wrote: > On 08/28/2011 11:37 PM Always Learning wrote: > > On Sun, 2011-08-28 at 22:33 -0400, ken wrote: > >> On 08/28/2011 09:17 PM Always Learning wrote: ... > >> Well, since I've got two or three other machines I'm either upgrading or > >> installing linux on, machines that are older than this one, I guess I'm > >> done with RH/CentOS. > > > > Is your use of a particular Intel CPU really to blame and not > > necessarily Centos ? > > Really...? "blame"...? If this CPU functions just fine on RH/CentOS 5.6 > and other distributions, by what rationale can it be blamed for anything? Now could you please do what you should have done from the beginning and tell us what CPU you're trying to install C6 on. Please. All distributions make a choice when it comes to how old hardware to support. Do you find it strange that C5 supports older hardware than C6? /Peter signature.asc Description: This is a digitally signed message part. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
From: Timothy Murphy > I've installed a substitute box - and HP MicroServer - > which by a miracle has CentOS-5.6 installed on it. > Now I'm wondering what is the best way to install CentOS-6, > given that there is no CD/DVD driver on this machine. If you have the management card, you could mount a virtual DVD and boot on it. You could also add the setup grub entry to your grub, and put the ISO files on a local HD (that will not be overwritten). JD ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
Always Learning wrote: >> I've had a disaster on my home network server; >> the partition table on the disk containing / has become corrupted, >> and testdisk has not enabled me to recover the table. >> If anyone can help with this I should be grateful. > > Have you used testdisk to find and copy files to another partition ? I didn't see an option on testdisk to find (and copy) files. I only saw options to guess the correct partition table, which in my case did not seem to work. Actually, all the missing data is on extended partitions. I think if I could find where /dev/sda4 begins I might be able to determine where the logical partitions inside /dev/sda4 start and end? -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
John R Pierce wrote: > On 08/28/11 6:52 AM, Timothy Murphy wrote: >> Now I'm wondering what is the best way to install CentOS-6, >> given that there is no CD/DVD driver on this machine. >> >> I have access to the internet, so I can download the CD/DVD . >> I know I could install through a USB stick; >> I'm just wondering if there is a more direct route. > > A) PXE boot and do a network installation aka kickstart. This would, > of course, require another 'nix system on the LAN running DHCP, TFTP, > and NFS Thanks for the suggestions. I've always found PXEboot extraordinarily difficult to use. I think I succeeded on one occasion, and failed on many others. I usually tried using cobbler, but as I said with little success. > B) boot a USB stick with the Netinstall image, and point it at a http > URL of the centos repository, which could be either a local mirror or > one on the internet somewhere as long as your internet is reasonably > fast and stable. I'd suggest doing a bare minimal install this way, > then adding other stuff post-install with yum. I guess this is probably the easiest solution. I haven't downloaded CentOS-6 yet, so I would have to download it anyway. As you say, starting with a minimal download is probably best. But I had hoped there was some simple way of abstracting vmlinux and initrd from the CD or DVD image, and adding a stanza to grub.conf to boot from those? -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
Les Mikesell wrote: >>> Now I'm wondering what is the best way to install CentOS-6, >>> given that there is no CD/DVD driver on this machine. >>> >>> I have access to the internet, so I can download the CD/DVD . >>> I know I could install through a USB stick; >>> I'm just wondering if there is a more direct route. > Or, boot the Netinstall image and do an NFS intall from your local copy. Thanks for the suggestion. Unfortunately I don't have a second desktop on my local LAN. Will Netinstall allow me to use a partition on the same box that it is running on? -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 8/28/11, Always Learning wrote: > > On Sun, 2011-08-28 at 13:33 +0100, Karanbir Singh wrote: > >> This is a mailing list, a conversational forum. not a blog or a >> documentaion forum. If you want to contribute such stuff productively, >> do so in the wiki, where it would be appreciated and actually worthwhile. > > Good idea. Thank you. > > Any news of those tee-shirts please ? > > > > > -- > With best regards, > > Paul. > England, > EU. > > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > I upgraded from centos 5.6 to centos 6.0 to have all of the new featues on GIMP at hand. I selected Desktop when installing. But I don't see it under Applications -> Graphics as I had it under my previous centos 5.6 . Can you please let me know why? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
On 08/29/2011 06:36 AM Timothy Murphy wrote: > Always Learning wrote: > > >>> I've had a disaster on my home network server; >>> the partition table on the disk containing / has become corrupted, >>> and testdisk has not enabled me to recover the table. >>> If anyone can help with this I should be grateful. >> Have you used testdisk to find and copy files to another partition ? > > I didn't see an option on testdisk to find (and copy) files. > I only saw options to guess the correct partition table, > which in my case did not seem to work. > > Actually, all the missing data is on extended partitions. > I think if I could find where /dev/sda4 begins > I might be able to determine where the logical partitions > inside /dev/sda4 start and end? > fdisk -l ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On Mon, Aug 29, 2011 at 6:53 AM, hadi motamedi wrote: > > I upgraded from centos 5.6 to centos 6.0 to have all of the new > featues on GIMP at hand. I selected Desktop when installing. But I > don't see it under Applications -> Graphics as I had it under my > previous centos 5.6 . Can you please let me know why? > > Because you didn't install it. Please at least attempt to check these things out before you run crying to the list -- During times of universal deceit, telling the truth becomes a revolutionary act. George Orwell ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.0 Media problems
On Mon, 2011-08-29 at 06:12 -0400, ken wrote: > I hope we're not going to start rationalizing the presence of linux > bugs on the basis of Microsoft's record of failures. Bugs, or "programme difficulties", are inevitable. M$ success is promoting the standardisation of exchange of computer data and promoting the wider acceptance of computers at home by people not computer-knowledgeable. Despite that the future is open-source with the option of paid-support. How long before M$ gives away Windoze and charges for updates (bug rectifications), anti-virus measures and 'hand-holding' support ? * For $10 a month free technical support and advice 9 am to 5 pm; * $20 a month for evenings up to 10 pm; * $30 a month for 24 hours a day Mondays to Friday; and * for complete peace of mind $40 a month for 24 hours service 7 days a week. * Tired of waiting for a technical support person to answer the phone ? Join our priority club for a speedy answer - only $99 a month ! A lot of gratitude and praise is due to many unknown people who made contributions large and small to the very significant, but inadequately publicised, computer revolution of which Centos is a proud and worthy participant. -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On Mon, 2011-08-29 at 16:23 +0430, hadi motamedi wrote: > I upgraded from centos 5.6 to centos 6.0 to have all of the new > featues on GIMP at hand. I selected Desktop when installing. But I > don't see it under Applications -> Graphics as I had it under my > previous centos 5.6 . Can you please let me know why? I'm still on Centos 5.6. What happens when you type-in:- yum install gimp Paul. -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.0 Media problems
Always Learning wrote: > On Mon, 2011-08-29 at 06:12 -0400, ken wrote: > >> I hope we're not going to start rationalizing the presence of linux >> bugs on the basis of Microsoft's record of failures. > > Bugs, or "programme difficulties", are inevitable. > > M$ success is promoting the standardisation of exchange of computer data > and promoting the wider acceptance of computers at home by people not > computer-knowledgeable. Despite that the future is open-source with the > option of paid-support. > > How long before M$ gives away Windoze and charges for updates (bug > rectifications), anti-virus measures and 'hand-holding' support ? Ancient office funny (old when I started office jobs): Answers: $0.10 Good Answers: $0.50 Correct Answers: $1.00 Dumb looks are still free mark "except M$ *charges* for verbal dumb looks" ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 6.0 Media problems
On 08/29/11 3:20 AM, ken wrote: > Snob appeal does work on a lot of people. Maybe in today's world it's a > character flaw, but I prefer actual reasons. how "passive-aggressive" of you. There's nothing 'snob' about it, it is a simple technical and financial decision. RHEL targets SERVERS, and every server made since about 1996 has 64bit capable processors, or at least PAE support in 32bit mode. in 2011, 4GB of memory is $20 worth, and without PAE or 64bit, you can't support more. put very simply, your ?? year old muttbox is not within Red Hat's target market for new versions of Enterprise Linux, they saw no justification in having to generate and test a seperate kernel for low end hardware older than 5+ years, and committing to updates for it for the next 6 years. You can continue to run EL 5 on it for years to come. Or choose any number of other Linux distributions which target down rev hardware. -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] External vfat devices show uppercase filenames, how to change defaults for GNOME desktop?
Hello there! I've recently switched from Fedora 11 to CentOS6. Now my SD cards (automatically mounted on plug) contents is displayed as UPPERCASE filenames. I well see in mount's man that vfat's shortname option can be set to either lower, win95, winnt, mixed. OK, that's for entries in /etc/fstab or when mounting manually. I'd like to change the defaults for devices that automatically mount in GNOME.. is this possible? In gconf-editor, I don't see a storage/ subdir in system/.. Any hint? Regards, -- wwp signature.asc Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] mounting an ext3 filesystem "-o ro"
Hi, I want to do something *bad* : to mount an already mounted ext3 partition. Mounting "-o bind" is not an option, this partition is mounted by different virtual machines. NFS is the right way to go, so I want another one :-) I have no problem mounting this partition read-only, but it seems that actually it is not really read-only. From /var/log/messages : Aug 29 11:26:43 xen02 kernel: EXT3-fs: INFO: recovery required on readonly filesystem. Aug 29 11:26:43 xen02 kernel: EXT3-fs: write access will be enabled during recovery. Aug 29 11:26:43 xen02 kernel: kjournald starting. Commit interval 5 seconds Aug 29 11:26:43 xen02 kernel: EXT3-fs: recovery complete. Aug 29 11:26:43 xen02 kernel: EXT3-fs: mounted filesystem with ordered data mode. This recovery is probably triggered by the file /.autofsck, but I have not found how to get rid of this feature. Is there a way to read an ext3 filesystem, completely disabling recovery and any write operation ? Thanks, -- Philippe Naudin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] External vfat devices show uppercase filenames, how to change defaults for GNOME desktop?
From: wwp > I've recently switched from Fedora 11 to CentOS6. Now my SD cards > (automatically mounted on plug) contents is displayed as UPPERCASE > filenames. > I well see in mount's man that vfat's shortname option can be set to > either lower, win95, winnt, mixed. OK, that's for entries in /etc/fstab > or when mounting manually. > I'd like to change the defaults for devices that automatically mount in > GNOME.. is this possible? > In gconf-editor, I don't see a storage/ subdir in system/.. > Any hint? Still under 5.x but maybe try gconf-tool2... $ gconftool-2 -g /system/storage/default_options/vfat/mount_options $ gconftool-2 -s /system/storage/default_options/vfat/mount_options --list-type=string -t list [shortname=lower,uid=,utf8] JD ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mounting an ext3 filesystem "-o ro"
On 29 August 2011 15:18, Philippe Naudin wrote: > Hi, > > I want to do something *bad* : to mount an already mounted ext3 > partition. Use a clustering file system (i.e., ocfs2) instead. > This recovery is probably triggered by the file /.autofsck, but I > have not found how to get rid of this feature. Is there a way to > read an ext3 filesystem, completely disabling recovery and any > write operation ? Mounting in ext2 will ignore the journalling but not recommended. In any case you won't be able to mount a dirty ext3 filesystem as ext2. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] External vfat devices show uppercase filenames, how to change defaults for GNOME desktop?
Hello John, On Mon, 29 Aug 2011 07:19:31 -0700 (PDT) John Doe wrote: > From: wwp > > > I've recently switched from Fedora 11 to CentOS6. Now my SD cards > > (automatically mounted on plug) contents is displayed as UPPERCASE > > filenames. > > I well see in mount's man that vfat's shortname option can be set to > > either lower, win95, winnt, mixed. OK, that's for entries in /etc/fstab > > or when mounting manually. > > I'd like to change the defaults for devices that automatically mount in > > GNOME.. is this possible? > > In gconf-editor, I don't see a storage/ subdir in system/.. > > Any hint? > > Still under 5.x but maybe try gconf-tool2... > $ gconftool-2 -g /system/storage/default_options/vfat/mount_options > $ gconftool-2 -s /system/storage/default_options/vfat/mount_options > --list-type=string -t list [shortname=lower,uid=,utf8] Hmm interesting hint. I tried for both my current user and as root, the key was not existing yet, I wrote it. Unplugged device, replugged devices, filenames are still UPPERcase :-\. Regards, -- wwp signature.asc Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mounting an ext3 filesystem "-o ro"
Le lun 29 aoû 2011 15:23:12 CEST, Hakan Koseoglu a écrit: > On 29 August 2011 15:18, Philippe Naudin > wrote: > > Hi, > > > > I want to do something *bad* : to mount an already mounted ext3 > > partition. > Use a clustering file system (i.e., ocfs2) instead. I need to learn more about it before, but you are right that it's definitely better to use an appropriate tool. > > This recovery is probably triggered by the file /.autofsck, but I > > have not found how to get rid of this feature. Is there a way to > > read an ext3 filesystem, completely disabling recovery and any > > write operation ? > Mounting in ext2 will ignore the journalling but not recommended. In > any case you won't be able to mount a dirty ext3 filesystem as ext2. It works ! I can use tune2fs to check that the filesystem seems OK and then mount it as an ext2 filesystem. Thanks a lot ! -- Philippe Naudin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] External vfat devices show uppercase filenames, how to change defaults for GNOME desktop?
On Mon, 2011-08-29 at 15:45 +0200, wwp wrote: > I've recently switched from Fedora 11 to CentOS6. Now my SD cards > (automatically mounted on plug) contents is displayed as UPPERCASE > filenames. My current camera has file names on a SD card like:- IMG_6988.JPG so I used a simple bash programme to change the prefix and make JPG lowercase. the output is e6988.jpg Then I use another bash script to copy the contents of a HDD directory to another directory, reducing the size to 700 pixels wide for my cataloguing program. That program lets me optionally impose the date and time, various texts and logos on a standard 900 pixels wide copy for use elsewhere. With Centos it seems the possibilities are endless :-) -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] External vfat devices show uppercase filenames, how to change defaults for GNOME desktop?
Hello, On Mon, 29 Aug 2011 15:42:04 +0100 Always Learning wrote: > > On Mon, 2011-08-29 at 15:45 +0200, wwp wrote: > > > I've recently switched from Fedora 11 to CentOS6. Now my SD cards > > (automatically mounted on plug) contents is displayed as UPPERCASE > > filenames. > > My current camera has file names on a SD card like:- > > IMG_6988.JPG > > so I used a simple bash programme to change the prefix and make JPG > lowercase. the output is > > e6988.jpg > > Then I use another bash script to copy the contents of a HDD directory > to another directory, reducing the size to 700 pixels wide for my > cataloguing program. That program lets me optionally impose the date and > time, various texts and logos on a standard 900 pixels wide > copy for use elsewhere. > > With Centos it seems the possibilities are endless :-) I well understand your point. I'm used to shell scripting, and I use it all day long, but my point was not how to import-n-rename files, but how to get mounted vfat fs to use lowercase. Thanks anyway! Regards, -- wwp signature.asc Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Question re: CentOS-6.0, KVM, and /dev/sr0
I am experimenting with KVM and I wish to create a virtual machine image in a logical volume. I can create the new lv without problem but when I go to format its file system then I get these warnings: Warning: WARNING: the kernel failed to re-read the partition table on /dev/sda (Device or resource busy). As a result, it may not reflect all of your changes until after reboot. Warning: Unable to open /dev/sr0 read-write (Read-only file system). /dev/sr0 has been opened read-only. When I take a look at things using parted I see this: # parted -l print Model: ATA WDC WD5000AAKS-0 (scsi) Disk /dev/sda: 500GB Sector size (logical/physical): 512B/512B Partition Table: msdos Number Start EndSize Type File system Flags 1 1049kB 525MB 524MB primary ext4 boot 2 525MB 500GB 500GB primary lvm Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_guest01: 129GB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start EndSize File system Flags 1 0.00B 129GB 129GB ext4 Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_log: 1049MB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start End SizeFile system Flags 1 0.00B 1049MB 1049MB ext4 Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_tmp: 8389MB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start End SizeFile system Flags 1 0.00B 8389MB 8389MB ext4 Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_home: 4194MB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start End SizeFile system Flags 1 0.00B 4194MB 4194MB ext4 Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_swap: 8321MB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start End SizeFile system Flags 1 0.00B 8321MB 8321MB linux-swap(v1) Model: Linux device-mapper (linear) (dm) Disk /dev/mapper/vg_inet02-lv_root: 53.7GB Sector size (logical/physical): 512B/512B Partition Table: loop Number Start End SizeFile system Flags 1 0.00B 53.7GB 53.7GB ext4 Warning: Unable to open /dev/sr0 read-write (Read-only file system). /dev/sr0 has been opened read-only. Error: /dev/sr0: unrecognised disk label The host system is CentOS-6.0 with updates applied. I did a manual disc configuration on initial install but I do not recall specifically dealing with /dev/sr0 at any point. Can anyone explain to me what is happening here and what I should do? Am I constrained to reboot the server each time that I make changes to an LV? Is there some configuration change I need make to the base system? The favour of a direct copy of any reply to the mailing list is requested as I am a digest subscriber. -- *** E-Mail is NOT a SECURE channel *** James B. Byrnemailto:byrn...@harte-lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
On Mon, Aug 29, 2011 at 5:47 AM, Timothy Murphy wrote: > Les Mikesell wrote: > Now I'm wondering what is the best way to install CentOS-6, given that there is no CD/DVD driver on this machine. I have access to the internet, so I can download the CD/DVD . I know I could install through a USB stick; I'm just wondering if there is a more direct route. > >> Or, boot the Netinstall image and do an NFS intall from your local copy. > > Thanks for the suggestion. > Unfortunately I don't have a second desktop on my local LAN. > Will Netinstall allow me to use a partition on the same box > that it is running on? I think there is a way to do that, but haven't you had enough trouble yet that you see the wisdom in having a backup system or at least a removable/external drive that you can use for backups and installs? -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
On Mon, Aug 29, 2011 at 5:47 AM, Timothy Murphy wrote: > >> Or, boot the Netinstall image and do an NFS intall from your local copy. > > Thanks for the suggestion. > Unfortunately I don't have a second desktop on my local LAN. > Will Netinstall allow me to use a partition on the same box > that it is running on? Local hard drive install instructions: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Installation_Guide/s1-steps-hd-installs-x86.html -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache warns Web server admins of DoS attack tool
On Sunday, August 28, 2011 06:47:08 PM Les Mikesell wrote: > So, if the forums provide a usable rss feed, reading > them shouldn't be that bad, even though you have to follow the links > to read longer messages and reply. If the forums have useful RSS feeds, yeah, that would work. I use Kontact; the default feed reader for Kontact is Akregator, which works reasonably well as long as the RSS feed is reasonable (that is, you can get all useful content without having to go to the forum website; if the forum RSS feed requires me to go to the website for essential things like subjects and thread starters, then it's unreasonable). Otherwise I find web forums require a complete change in workflow; that is, I have to go look at the website and navigate around, with different interfaces, logins, and paradigms. I like e-mail when done right (folderized, threaded, etc). When done wrong it's useless, too, for that matter. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache warns Web server admins of DoS attack tool
On Mon, Aug 29, 2011 at 10:21 AM, Lamar Owen wrote: > On Sunday, August 28, 2011 06:47:08 PM Les Mikesell wrote: >> So, if the forums provide a usable rss feed, reading >> them shouldn't be that bad, even though you have to follow the links >> to read longer messages and reply. > > If the forums have useful RSS feeds, yeah, that would work. I use Kontact; > the default feed reader for Kontact is Akregator, which works reasonably well > as long as the RSS feed is reasonable (that is, you can get all useful > content without having to go to the forum website; if the forum RSS feed > requires me to go to the website for essential things like subjects and > thread starters, then it's unreasonable). > > Otherwise I find web forums require a complete change in workflow; that is, I > have to go look at the website and navigate around, with different > interfaces, logins, and paradigms. I like e-mail when done right > (folderized, threaded, etc). When done wrong it's useless, too, for that > matter. Not so sure about usability - it looks like the rss is all-or-nothing and I have no interest at all in CentOS4. I'll see how it shows up in google reader. The QA forum works fine that way to pick up the occasional announcement, though. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] rpm and /etc/cron.daily/rpm
The rpm package used to provide /etc/cron.daily/rpm /etc/logrotate.d/rpm I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're intended for that purpose. Anyone have any idea why they're not in cron.daily and logrotate.d? mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS-announce Digest, Vol 78, Issue 5
Send CentOS-announce mailing list submissions to centos-annou...@centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-requ...@centos.org You can reach the person managing the list at centos-announce-ow...@centos.org When replying, please edit your Subject line so it is more specific than "Re: Contents of CentOS-announce digest..." Today's Topics: 1. CESA-2011:1196 Moderate CentOS 4 i386 system-config-printer - security update (Tru Huynh) 2. CESA-2011:1196 Moderate CentOS 4 x86_64 system-config-printer - security update (Tru Huynh) -- Message: 1 Date: Mon, 29 Aug 2011 12:20:22 +0200 From: Tru Huynh Subject: [CentOS-announce] CESA-2011:1196 Moderate CentOS 4 i386 system-config-printer - security update To: centos-annou...@centos.org Message-ID: <20110829102022.ga9...@sillage.bis.pasteur.fr> Content-Type: text/plain; charset="us-ascii" CentOS Errata and Security Advisory CESA-2011:1196 system-config-printer security update for CentOS 4 i386: https://rhn.redhat.com/errata/RHSA-2011-1196.html The following updated file has been uploaded and is currently syncing to the mirrors: i386: updates/i386/RPMS/system-config-printer-0.6.116.10-1.6.el4.i386.rpm updates/i386/RPMS/system-config-printer-gui-0.6.116.10-1.6.el4.i386.rpm source: updates/SRPMS/system-config-printer-0.6.116.10-1.6.el4.src.rpm You may update your CentOS-4 i386 installations by running the command: yum update system-config-printer Tru -- Tru Huynh (mirrors, CentOS i386/x86_64 Package Maintenance) http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B -- next part -- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.centos.org/pipermail/centos-announce/attachments/20110829/aa8708eb/attachment-0001.bin -- Message: 2 Date: Mon, 29 Aug 2011 12:20:56 +0200 From: Tru Huynh Subject: [CentOS-announce] CESA-2011:1196 Moderate CentOS 4 x86_64 system-config-printer - security update To: centos-annou...@centos.org Message-ID: <20110829102056.gb9...@sillage.bis.pasteur.fr> Content-Type: text/plain; charset="us-ascii" CentOS Errata and Security Advisory CESA-2011:1196 system-config-printer security update for CentOS 4 x86_64: https://rhn.redhat.com/errata/RHSA-2011-1196.html The following updated file has been uploaded and is currently syncing to the mirrors: x86_64: updates/x86_64/RPMS/system-config-printer-0.6.116.10-1.6.el4.x86_64.rpm updates/x86_64/RPMS/system-config-printer-gui-0.6.116.10-1.6.el4.x86_64.rpm source: updates/SRPMS/system-config-printer-0.6.116.10-1.6.el4.src.rpm You may update your CentOS-4 x86_64 installations by running the command: yum update system-config-printer Tru -- Tru Huynh (mirrors, CentOS i386/x86_64 Package Maintenance) http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B -- next part -- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.centos.org/pipermail/centos-announce/attachments/20110829/5f47cbb5/attachment-0001.bin -- ___ CentOS-announce mailing list centos-annou...@centos.org http://lists.centos.org/mailman/listinfo/centos-announce End of CentOS-announce Digest, Vol 78, Issue 5 ** ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] (c 5.6) Running 2 versions of Apache ?
Just wondering how to run 2 versions of Apache on the same server, listening on different IPs and both on port 80. Does one give them, the httpd, different names and effectively duplicate most of the Apache set-up ? I use Apache;s virtual hosts facility for normal purposes but this is for a different project. Thank you. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
On 08/29/2011 08:54 AM, m.r...@5-cent.us wrote: > The rpm package used to provide > /etc/cron.daily/rpm > /etc/logrotate.d/rpm > > I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're > intended for that purpose. Anyone have any idea why they're not in > cron.daily and logrotate.d? > > Looks like those files are now provided by the "rpm-cron" package in RHEL 6 / CentOS 6. -Greg ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 05:01:13PM +0100, Always Learning wrote: > > Just wondering how to run 2 versions of Apache on the same server, > listening on different IPs and both on port 80. > > Does one give them, the httpd, different names and effectively duplicate > most of the Apache set-up ? > > I use Apache;s virtual hosts facility for normal purposes but this is > for a different project. > > Thank you. > > Paul. First, this sounds like a messy way to do it... spinning up another OS instance with the appropriate version of Apache you are after sounds cleaner... However... As long as you keep your various Apache installs from stepping on each other (where the binaries, logs, configs live, etc), you just need to make sure they're binding to mutually exclusive IP/port pairs. The "Listen" directive is likely what you're after here. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 09:13 -0700, Ray Van Dolson wrote: > First, this sounds like a messy way to do it... spinning up another > OS instance with the appropriate version of Apache you are after sounds > cleaner... I have a spare server but I want to use an under-utilised one. > As long as you keep your various Apache installs from stepping on each > other (where the binaries, logs, configs live, etc), you just need to > make sure they're binding to mutually exclusive IP/port pairs. The > "Listen" directive is likely what you're after here. That's what I am currently browsing Google for. Can the 'Listen 1.2.3.4:80' statement be inside a Virtual Host section ? Does the 'NameVirtualHost' statement affect every Virtual Host until the next encounter of it, IP that is ? If I don't get an answer I'll probably experiment. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 05:23:24PM +0100, Always Learning wrote: > > On Mon, 2011-08-29 at 09:13 -0700, Ray Van Dolson wrote: > > > First, this sounds like a messy way to do it... spinning up another > > OS instance with the appropriate version of Apache you are after sounds > > cleaner... > > I have a spare server but I want to use an under-utilised one. I was thinking virtualization (Xen or an OpenVZ style might be appropriate). > > > As long as you keep your various Apache installs from stepping on each > > other (where the binaries, logs, configs live, etc), you just need to > > make sure they're binding to mutually exclusive IP/port pairs. The > > "Listen" directive is likely what you're after here. > > That's what I am currently browsing Google for. > > Can the 'Listen 1.2.3.4:80' statement be inside a Virtual Host section ? > > Does the 'NameVirtualHost' statement affect every Virtual Host until the > next encounter of it, IP that is ? > > If I don't get an answer I'll probably experiment. Listen should be used in the global configuration. So, for example your 2.2 configuration file listens on 1.2.3.4:80: Listen 1.2.3.4:80 NameVirtualhost 1.2.3.4:80 And you have an Apache 2.3.x instance with a separate config file listening on either a different IP or a different port on the initial IP: Listen 1.2.3.5:80 NameVirtualHost 1.2.3.5:80 ... or Listen 1.2.3.4:8080 NameVirtualHost 1.2.3.4:8080 ... Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 8/29/11, Always Learning wrote: > > On Mon, 2011-08-29 at 16:23 +0430, hadi motamedi wrote: > >> I upgraded from centos 5.6 to centos 6.0 to have all of the new >> featues on GIMP at hand. I selected Desktop when installing. But I >> don't see it under Applications -> Graphics as I had it under my >> previous centos 5.6 . Can you please let me know why? > > I'm still on Centos 5.6. > > What happens when you type-in:- > >yum install gimp > > > Paul. > > > -- > With best regards, > > Paul. > England, > EU. > > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > Sorry. I asked and it seems that the GIMP new features just come with centos 6 . ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On Mon, 2011-08-29 at 09:45 -0700, hadi motamedi wrote: > On 8/29/11, Always Learning wrote: > > What happens when you type-in:- > > > > yum install gimp > Sorry. I asked and it seems that the GIMP new features just come with centos > 6 . Have you got GIMP in your Centos 6 ? Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
Greg Bailey wrote: > On 08/29/2011 08:54 AM, m.r...@5-cent.us wrote: >> The rpm package used to provide >> /etc/cron.daily/rpm >> /etc/logrotate.d/rpm >> >> I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're >> intended for that purpose. Anyone have any idea why they're not in >> cron.daily and logrotate.d? > > Looks like those files are now provided by the "rpm-cron" package in > RHEL 6 / CentOS 6. Thanks, Greg. Though it seems really dumb and pointless to make a separate package just to run something that's already in the rpm package. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 8/29/11, Jim Perrin wrote: > On Mon, Aug 29, 2011 at 6:53 AM, hadi motamedi wrote: > >> >> I upgraded from centos 5.6 to centos 6.0 to have all of the new >> featues on GIMP at hand. I selected Desktop when installing. But I >> don't see it under Applications -> Graphics as I had it under my >> previous centos 5.6 . Can you please let me know why? >> >> > Because you didn't install it. Please at least attempt to check these things > out before you run crying to the list > > -- > During times of universal deceit, telling the truth becomes a revolutionary > act. > George Orwell > Sorry . You mean installing its rpm packages from the centos 6 install cd via 'rpm -Uvh *' ? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
On Mon, 2011-08-29 at 12:49 -0400, m.r...@5-cent.us wrote: > Greg Bailey wrote: > > Looks like those files are now provided by the "rpm-cron" package in > > RHEL 6 / CentOS 6. > Thanks, Greg. Though it seems really dumb and pointless to make a separate > package just to run something that's already in the rpm package. Brilliant job creation scheme to increase State and Federal tax yields. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos] rpm and /etc/cron.daily/rpm
On Mon, 29 Aug 2011, Always Learning wrote: > Brilliant job creation scheme to increase State and Federal tax yields. 'Always' -- if you are going to post cr*p, at least have the courtesy to not CROSS post to Red Hat lists and here -- Russ herrold ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
Always Learning wrote: > On Mon, 2011-08-29 at 12:49 -0400, m.r...@5-cent.us wrote: >> Greg Bailey wrote: >> > Looks like those files are now provided by the "rpm-cron" package in >> > RHEL 6 / CentOS 6. > >> Thanks, Greg. Though it seems really dumb and pointless to make a >> separate package just to run something that's already in the rpm package. > > Brilliant job creation scheme to increase State and Federal tax yields. Huh? Sounds more like some corporate micromanagement to me, hypothetically to increase support revenues. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos] rpm and /etc/cron.daily/rpm
R P Herrold wrote: > On Mon, 29 Aug 2011, Always Learning wrote: > >> Brilliant job creation scheme to increase State and Federal tax yields. > > 'Always' > > -- if you are going to post cr*p, at least have the courtesy > to not CROSS post to Red Hat lists and here Russ, my fault - I'd crossposted to here and the general RH list. Dunno if I should consider filing this as a bug or not with upstream. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos] rpm and /etc/cron.daily/rpm
On Mon, 2011-08-29 at 13:09 -0400, R P Herrold wrote: > -- if you are going to post cr*p, at least have the courtesy > to not CROSS post to Red Hat lists and here I cancelled it from the Red Hat moderation queue, because, as intelligent people know, one can not post to lists one is not subscribed to. This means it did not appear on the Red Hat list; so why are you complaining ? Paul. Always Learning - are you ? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off topic list for centos please?
Greetings, On Sun, Aug 28, 2011 at 9:59 PM, Les Mikesell wrote: > On Sun, Aug 28, 2011 at 7:58 AM, Karanbir Singh wrote: >> >> I didnt imply holding postings back for moderation > > I start with the view that the policy restrictions that make 3rd party > package repositories necessary and not referenced in the base distro > _are_ a Centos problem, even if inherited from upstream, so discussing > the workarounds here should be on topic, even if not Centos-specific. > > -- > Les Mikesell > lesmikes...@gmail.com > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > +1 Though I have not not contributed to this lisy much, This is the primary email-ID where people learn I direct to most people in intent to become RH* certified. It has helped them much. So be it. Long live centos at centos.org -- Regards, Rajagopal ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
On 08/29/2011 09:49 AM, m.r...@5-cent.us wrote: > Greg Bailey wrote: >>On 08/29/2011 08:54 AM, m.r...@5-cent.us wrote: >>> The rpm package used to provide >>> /etc/cron.daily/rpm >>> /etc/logrotate.d/rpm >>> >>> I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're >>> intended for that purpose. Anyone have any idea why they're not in >>> cron.daily and logrotate.d? >> Looks like those files are now provided by the "rpm-cron" package in >> RHEL 6 / CentOS 6. > Thanks, Greg. Though it seems really dumb and pointless to make a separate > package just to run something that's already in the rpm package. Looks like: https://bugzilla.redhat.com/show_bug.cgi?id=500722 has the rationale... -Greg ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] centos] rpm and /etc/cron.daily/rpm
On Mon, 29 Aug 2011, m.r...@5-cent.us wrote: > Russ, my fault - I'd crossposted to here and the general RH list. Dunno if > I should consider filing this as a bug or not with upstream. yes but, no ... your content was not wild-ass OT political - R ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
On Mon, 2011-08-29 at 10:28 -0700, Greg Bailey wrote: > On 08/29/2011 09:49 AM, m.r...@5-cent.us wrote: > >>> I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're > >>> intended for that purpose. Anyone have any idea why they're not in > >>> cron.daily and logrotate.d? > Looks like: > > https://bugzilla.redhat.com/show_bug.cgi?id=500722 > > has the rationale... Quote "rpm requires crontabs in order to drop a cron job in. crontabs requires cronie, which requires an smtp server. If it weren't for this, we'd have a better chance at a smtp server less and cron less system." SMTP on a server seems an ideal transmission method for warning messages of cron failures etc. Can not understand the logic of stripping the 'rpm' cron part from the cron system. Its only a few bytes on systems of hundreds or thousands of GB. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On Mon, Aug 29, 2011 at 11:49 AM, hadi motamedi wrote: >>> I upgraded from centos 5.6 to centos 6.0 to have all of the new >>> featues on GIMP at hand. I selected Desktop when installing. But I >>> don't see it under Applications -> Graphics as I had it under my >>> previous centos 5.6 . Can you please let me know why? >>> >>> >> Because you didn't install it. Please at least attempt to check these things >> out before you run crying to the list >> > Sorry . You mean installing its rpm packages from the centos 6 install > cd via 'rpm -Uvh *' ? You almost always want yum to resolve package dependencies for you instead of executing rpm directly for installs or updates. Rpm will tell you about the dependencies but not do anything else helpful like finding and installing the needed libraries. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos] rpm and /etc/cron.daily/rpm
On Mon, 2011-08-29 at 13:30 -0400, R P Herrold wrote: > yes but, no ... your content was not wild-ass OT political I'm apolitical with an occasional sense of humour. Which USA party do you want me to favour? I'll find it difficult to endorse the former governor of Alaska or the Tea Drinkers. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm and /etc/cron.daily/rpm
On Mon, Aug 29, 2011 at 12:35 PM, Always Learning wrote: > >> >>> I see /usr/lib/rpm/rpm.log and rpm.daily, which looks like they're >> >>> intended for that purpose. Anyone have any idea why they're not in >> >>> cron.daily and logrotate.d? > >> Looks like: >> >> https://bugzilla.redhat.com/show_bug.cgi?id=500722 >> >> has the rationale... > > Quote "rpm requires crontabs in order to drop a cron job in. crontabs > requires cronie, which requires an smtp server. If it weren't for this, > we'd have a better chance at a smtp server less and cron less system." > > SMTP on a server seems an ideal transmission method for warning messages > of cron failures etc. Can not understand the logic of stripping the > 'rpm' cron part from the cron system. Its only a few bytes on systems of > hundreds or thousands of GB. I got the impression a long time ago that the people working on fedora didn't like unix much and wanted to turn the system into something more like a single-user toy with really, really fast boot time instead of having a standard set of services that you could always depend on. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 09:26 -0700, Ray Van Dolson wrote: > I was thinking virtualization (Xen or an OpenVZ style might be > appropriate). Perhaps when I start using Centos 6.1. KVM or XEN ? > Listen should be used in the global configuration. So, for example > your 2.2 configuration file listens on 1.2.3.4:80: The standard Listen statement is used globally for the benefit of non-virtual hosts, if any. > And you have an Apache 2.3.x instance with a separate config file > listening on either a different IP or a different port on the initial > IP: Even sub-version numbers of Apache are stable, odd ones are less stable. That is why I use only 2.2. > I never ever give a virtual host declaration an IP address. If moving the virtual host to another server, I don't have to change anything expect the DNS. Also virtual hosts are web sites with different domain names, so I use instead. I found some information on http://httpd.apache.org/docs/2.2/vhosts/examples.html http://httpd.apache.org/docs/2.2/mod/core.html#namevirtualhost I think the solution for me is two NameVirtualHost statements:- NameVirtualHost 11.22.33.44:80 NameVirtualHost 11.22.33.55:80 with normal virtual hosts on IP 11.22.33.44 and the special virtual host on 11.22.33.55 This will give me a separate IP address, for the special virtual host, which I can utilise in iptables. Thank you for your suggestions. Best regards, Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 1:19 PM, Always Learning wrote: > >> I was thinking virtualization (Xen or an OpenVZ style might be >> appropriate). > > Perhaps when I start using Centos 6.1. KVM or XEN ? For light use you could drop in VMware server or player or virtualbox without much effect on the current system. It shouldn't be necessary, though, unless you'd like to install otherwise conflicting rpm packages or give root access to someone on the virtual server only. >> Listen should be used in the global configuration. So, for example >> your 2.2 configuration file listens on 1.2.3.4:80: > > The standard Listen statement is used globally for the benefit of > non-virtual hosts, if any. > >> And you have an Apache 2.3.x instance with a separate config file >> listening on either a different IP or a different port on the initial >> IP: > > Even sub-version numbers of Apache are stable, odd ones are less stable. > That is why I use only 2.2. > >> > > I never ever give a virtual host declaration an IP address. If moving > the virtual host to another server, I don't have to change anything > expect the DNS. Also virtual hosts are web sites with different domain > names, so I use > > > > > > instead. So why can't you do that for your new virtualhost instead of running on a different IP? > I found some information on > > http://httpd.apache.org/docs/2.2/vhosts/examples.html > > http://httpd.apache.org/docs/2.2/mod/core.html#namevirtualhost > > I think the solution for me is two NameVirtualHost statements:- > > NameVirtualHost 11.22.33.44:80 > > NameVirtualHost 11.22.33.55:80 > > with normal virtual hosts on IP 11.22.33.44 and the special virtual host > on 11.22.33.55 > > This will give me a separate IP address, for the special virtual host, > which I can utilise in iptables. If you are just firewalling there, apache can permit/deny ip ranges on its own for a location or virtualhost. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
At Mon, 29 Aug 2011 12:37:45 -0500 CentOS mailing list wrote: > > On Mon, Aug 29, 2011 at 11:49 AM, hadi motamedi wrote: > > >>> I upgraded from centos 5.6 to centos 6.0 to have all of the new > >>> featues on GIMP at hand. I selected Desktop when installing. But I > >>> don't see it under Applications -> Graphics as I had it under my > >>> previous centos 5.6 . Can you please let me know why? > >>> > >>> > >> Because you didn't install it. Please at least attempt to check these > >> things > >> out before you run crying to the list > >> > > > Sorry . You mean installing its rpm packages from the centos 6 install > > cd via 'rpm -Uvh *' ? > > You almost always want yum to resolve package dependencies for you > instead of executing rpm directly for installs or updates. Rpm will > tell you about the dependencies but not do anything else helpful like > finding and installing the needed libraries. And you really, really don't what to install *every* RPM on the install CD/DVD. In some cases there are 'mutually exclusive' packages (or pairs of packages where installing both makes no sense, like more than one SMTP daemon, etc.). Most of the time installing *both* mysql AND postgresql makes no sense -- you can do it and sometimes it is needful and proper to have two (or even more) database servers running at the same time, just most of the time most people are not going to do that. OTOH it can be useful to have a selection of PDF viewers or text editors. > -- Robert Heller -- 978-544-6933 / hel...@deepsoft.com Deepwoods Software-- http://www.deepsoft.com/ () ascii ribbon campaign -- against html e-mail /\ www.asciiribbon.org -- against proprietary attachments ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 6: bootup display
On my old CentOS 5, when it boots up (to level 3) it displays a line for each of the things it is starting as it does it. I found that quite useful. On my new CentOS 6, while it is booting up, it displays a useless CentOS trademark picture. Is there a way to get the old kind of display in CentOS 6? Thanks, Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: bootup display
Michael D. Berger wrote: > On my old CentOS 5, when it boots up (to level 3) it displays > a line for each of the things it is starting as it does it. I > found that quite useful. On my new CentOS 6, while it is > booting up, it displays a useless CentOS trademark picture. > Is there a way to get the old kind of display in CentOS 6? Yes. vi /etc/grub.conf (or /boot/grub/grub.conf, the former's a link to the latter), and edit the kernel line to remove rhgb quiet I hate that damn crap, but I suppose it's for WinDoze or Mac people who are terribly confused by seeing it all mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: bootup display
At 11:52 AM 8/29/2011, you wrote: >On my old CentOS 5, when it boots up (to level 3) it displays >a line for each of the things it is starting as it does it. I >found that quite useful. On my new CentOS 6, while it is >booting up, it displays a useless CentOS trademark picture. >Is there a way to get the old kind of display in CentOS 6? > >Thanks, >Mike. If you're watching it, hit any function key. If you're not near the keyboard, then . ? David ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 13:35 -0500, Les Mikesell wrote: > For light use you could drop in VMware server or player or virtualbox > without much effect on the current system. It shouldn't be necessary, > though, unless you'd like to install otherwise conflicting rpm > packages or give root access to someone on the virtual server only. I've use Virtual Box successfully for Windoze 98 to run Ami Pro 3.1. > So why can't you do that for your new virtualhost instead of running > on a different IP? A mentally deranged lunatic has sent 30,000+ wrong URLs to a tiny web site. Its started about 5 August but significantly escalated on 22 August. My Apache routine can add the IPs to iptables and block them. Since 22 August the lunatic has used over 100 different IPs from around the world to send those wrong URLs which always seem to include one of these:- forgotten_password.php login.php contact.php Assigning a spare IP address to this small web site should make it easier for me to experiment with IP tables and examine TCP packets without disturbing the server's normal workings. For example no valid HTTP request sent to that IP address should contain 'pas' or 'log' or 'con' so if I detect these the packets can be dropped - that is the theory. With dropped packets I lose the ability to easily record IP address and host name. However my web page has over 100 entries of machines compromised in the current abuse, so loosing new details is worth the satisfaction of blocking the loony. > If you are just firewalling there, apache can permit/deny ip ranges on > its own for a location or virtualhost. I don't know which IP address to block until at least one 'hit'. For low level abuse, I use a routine to add 'Deny from' to the site's .htaccess file. An IP blocked with this method can still access HTTPD where it will receive a 403 rejection. Thus successful blocks still involve the web server. By filtering in IP tables by IP and then port, I can try to identity those keywords: con, pas, log and, if successful, drop the packets. Packet length, used by this lunatic, with a very few exceptions, is 60 bytes, so I could potentially identify the required 3-byte fragments. It is amazing so many machines can be broken-into or misused by one deranged lunatic. I wonder if those machines run on Windoze. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
Always Learning wrote: > > On Mon, 2011-08-29 at 13:35 -0500, Les Mikesell wrote: >> So why can't you do that for your new virtualhost instead of running >> on a different IP? > > A mentally deranged lunatic has sent 30,000+ wrong URLs to a tiny web > site. Its started about 5 August but significantly escalated on 22 > August. Sorry, not a lunatic. Your website's name has been harvested, and added to some black-market commercial or script kiddie toolkit, and it's on infected servers around the world. Take it from me... (I'm a contractor for a US Federal Gov't agency*, and we get *tons*. > > My Apache routine can add the IPs to iptables and block them. Since 22 > August the lunatic has used over 100 different IPs from around the world > to send those wrong URLs which always seem to include one of these:- > Check out fail2ban. It works very nicely. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 2:25 PM, Always Learning wrote: > >> For light use you could drop in VMware server or player or virtualbox >> without much effect on the current system. It shouldn't be necessary, >> though, unless you'd like to install otherwise conflicting rpm >> packages or give root access to someone on the virtual server only. > > I've use Virtual Box successfully for Windoze 98 to run Ami Pro 3.1. > >> So why can't you do that for your new virtualhost instead of running >> on a different IP? > > A mentally deranged lunatic has sent 30,000+ wrong URLs to a tiny web > site. Its started about 5 August but significantly escalated on 22 > August. Ummm, 30,000 isn't a particularly big number of hits to an apache server, especially if all it has to do is respond with a 'file not found'. But you are probably wise to be defensive. > My Apache routine can add the IPs to iptables and block them. Since 22 > August the lunatic has used over 100 different IPs from around the world > to send those wrong URLs which always seem to include one of these:- > > forgotten_password.php > > login.php > > contact.php That probably means the intrusion is self-propagating. That is, if the target is running some vulnerable php version or application, it is able to install a copy of itself and start over. > Assigning a spare IP address to this small web site should make it > easier for me to experiment with IP tables and examine TCP packets > without disturbing the server's normal workings. For example no valid > HTTP request sent to that IP address should contain 'pas' or 'log' or > 'con' so if I detect these the packets can be dropped - that is the > theory. With dropped packets I lose the ability to easily record IP > address and host name. However my web page has over 100 entries of > machines compromised in the current abuse, so loosing new details is > worth the satisfaction of blocking the loony. As long as you aren't vulnerable yourself, I don't see the point of wasting human hours to save machine microseconds. And this is a tiny bit of the viruses and automated intrusion attempts happening in the wild so unless you can generalize it into a fail2ban type of process your time would be better spent making sure your systems are up to date and inherently secure. >> If you are just firewalling there, apache can permit/deny ip ranges on >> its own for a location or virtualhost. > It is amazing so many machines can be broken-into or misused by one > deranged lunatic. I wonder if those machines run on Windoze. If that is the first instance you've seen, you must have a low-profile site. And no, web applications have their own bugs and vulnerabilities on Linux too. And if you aren't fairly close to up-to-date on the base distribution, those exploits can get root access. The last one I bothered tracking down used a java/spring vulnerability to run something to trigger a local root exploit in glibc (that I think was fixed in the 5.4 or 5.5 update) but there are probably newer ones - and more we don't know about. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 15:31 -0400, m.r...@5-cent.us wrote: > Sorry, not a lunatic. Your website's name has been harvested, and added to > some black-market commercial or script kiddie toolkit, and it's on > infected servers around the world. Take it from me... (I'm a contractor > for a US Federal Gov't agency*, and we get *tons*. It would be nice if Uncle Sam went after the pests. The attacks are not automatic. The loony is currently having difficulty finding vulnerable IPs and concentrating his efforts on a Japanese company with very lax security (7 IPs at the same place so far). > Check out fail2ban. It works very nicely. Mark, >From http://www.fail2ban.org/wiki/index.php/Main_Page it states: Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address. I would like, if possible, to identify the fragments in IP tables and instantly block the packets thus preventing them entering the remainder of the server. Fail2ban does not do this. My current blocking requirement is specialised. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On 08/29/11 11:19 AM, Always Learning wrote: >> > I never ever give a virtual host declaration an IP address. If moving > the virtual host to another server, I don't have to change anything > expect the DNS. Also virtual hosts are web sites with different domain > names, so I,,, Always Talking, Never Learning. you need a new 'handle'. AT: "How do I do (poorly described vague idea) ?" (8 threads later, when the actual requirement is finally extracted) someone: "Like this" AT: "No, No, I always do THIS" sigh... -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] heartbeat
Is anyone else running heartbeat on CentOS 6 on x86_64? We have it installed, rpm -qi says it's from fedora, and /etc/init.d/heartbeat, after sourcing its shell environment, decides that it should look for the executables in /usr/lib/heartbeat. Unfortunately, where I found them, and where the package installed them, is in /usr/lib64/heartbeat. I haven't d/l the RH rpm, since I see that's in fedora, so I'm *assuming* they're they same. I just want to check, before I file a bug with upstream. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
Always Learning wrote: > > On Mon, 2011-08-29 at 15:31 -0400, m.r...@5-cent.us wrote: > >> Sorry, not a lunatic. Your website's name has been harvested, and added >> to >> some black-market commercial or script kiddie toolkit, and it's on >> infected servers around the world. Take it from me... (I'm a contractor >> for a US Federal Gov't agency*, and we get *tons*. > > It would be nice if Uncle Sam went after the pests. Please. We don't want "unintended consequences" (as in, you're running these servers open to the 'Net? Why, you should)* > > The attacks are not automatic. The loony is currently having difficulty > finding vulnerable IPs and concentrating his efforts on a Japanese > company with very lax security (7 IPs at the same place so far). Sounds like that may be their attack vector. I'd expect it to spread. > >> Check out fail2ban. It works very nicely. > > Mark, > >>From http://www.fail2ban.org/wiki/index.php/Main_Page > it states: > > Fail2ban scans log files like /var/log/pwdfail > or /var/log/apache/error_log and bans IP that > makes too many password failures. It updates > firewall rules to reject the IP address. > > I would like, if possible, to identify the fragments in IP tables and > instantly block the packets thus preventing them entering the remainder > of the server. Fail2ban does not do this. My current blocking > requirement is specialised. You might want to try it, anyway. It takes care of a *lot* of other attacks, too. mark * Forgot this on the last post: ObDisclaimer: I do not speak for the US Federal Gov't, nor for my employer; I speak (and rant) only for myself. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache warns Web server admins of DoS attack tool
On Mon, Aug 29, 2011 at 10:53 AM, Les Mikesell wrote: >>> So, if the forums provide a usable rss feed, reading >>> them shouldn't be that bad, even though you have to follow the links >>> to read longer messages and reply. >> >> If the forums have useful RSS feeds, yeah, that would work. I use Kontact; >> the default feed reader for Kontact is Akregator, which works reasonably >> well as long as the RSS feed is reasonable (that is, you can get all useful >> content without having to go to the forum website; if the forum RSS feed >> requires me to go to the website for essential things like subjects and >> thread starters, then it's unreasonable). >> >> Otherwise I find web forums require a complete change in workflow; that is, >> I have to go look at the website and navigate around, with different >> interfaces, logins, and paradigms. I like e-mail when done right >> (folderized, threaded, etc). When done wrong it's useless, too, for that >> matter. > > Not so sure about usability - it looks like the rss is all-or-nothing > and I have no interest at all in CentOS4. I'll see how it shows up in > google reader. The QA forum works fine that way to pick up the > occasional announcement, though. The first look isn't promising - there is only a small amount of text displayed and clicking through to get the rest doesn't recognize mobile browsers so you always have to zoom in for a reasonable font size when using the phone app. And a large percent of the admittedly small sample looks more like spam or off-topic than what we see here. Is anyone interested in seeing things like: "Atlantica online OG Realms Private Server" or "Does CentOS join Micorsoft strategy?" Clicking on the first one of those gave me a 'you do not have permission to access this forum' error, which might mean someone removed it after the rss entry was picked up, but still not a great user experience. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 14:49 -0500, Les Mikesell wrote: > Ummm, 30,000 isn't a particularly big number of hits to an apache > server, especially if all it has to do is respond with a 'file not > found'. But you are probably wise to be defensive. If it was the usually 50 to 100 phpmyadmin attempts from a single IP address, that single IP address can be blocked in IPtables. The current lunatic could continue his attacks for several months. That probably means several hundred IPs, perhaps thousands, blocked for that one small web site. By splitting the targeted web site from the others, everything I do in IPtables should have little adverse effect on the server's other activities which use different IP addresses. I am trying to isolate the problem and then experiment to devise a re-usable solution for future persistent attacks, if any. > That probably means the intrusion is self-propagating. That is, if > the target is running some vulnerable php version or application, it > is able to install a copy of itself and start over. In this particular incident, I am reasonable certain the loony is using tools to find vulnerable IPs and then manually feeding the address into his scrip. > As long as you aren't vulnerable yourself, I don't see the point of > wasting human hours to save machine microseconds. And this is a tiny > bit of the viruses and automated intrusion attempts happening in the > wild so unless you can generalize it into a fail2ban type of process > your time would be better spent making sure your systems are up to > date and inherently secure. I spent several hours today examining firewalls, questioning the set-up and tightening-up. > If that is the first instance you've seen, you must have a low-profile > site. First instance that has continued for more than 24 hours; and first with 30,000+ hits. Never ever advertise but top in Google's listing for a few distinct items and in the top 5 for a few other items. > And no, web applications have their own bugs and > vulnerabilities on Linux too. And if you aren't fairly close to > up-to-date on the base distribution, those exploits can get root > access. Always keen to update to the latest releases. I've seen too many Windoze machines run by others hacked and infected. > The last one I bothered tracking down used a java/spring > vulnerability to run something to trigger a local root exploit in > glibc (that I think was fixed in the 5.4 or 5.5 update) but there are > probably newer ones - and more we don't know about. Our browsers never run Flash or Java - the potential risk is perceived as too great. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache warns Web server admins of DoS attack tool
On 29/08/11 21:11, Les Mikesell wrote: > > Clicking on the first one of those gave me a 'you do not have > permission to access this forum' error, which might mean someone > removed it after the rss entry was picked up, but still not a great > user experience. > Yes, that was spam and was removed by a moderator hence the permissions error you see. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On 8/29/2011 3:25 PM, Always Learning wrote: > On Mon, 2011-08-29 at 13:35 -0500, Les Mikesell wrote: > >> For light use you could drop in VMware server or player or virtualbox >> without much effect on the current system. It shouldn't be necessary, >> though, unless you'd like to install otherwise conflicting rpm >> packages or give root access to someone on the virtual server only. > I've use Virtual Box successfully for Windoze 98 to run Ami Pro 3.1. > >> So why can't you do that for your new virtualhost instead of running >> on a different IP? > A mentally deranged lunatic has sent 30,000+ wrong URLs to a tiny web > site. Its started about 5 August but significantly escalated on 22 > August. > > My Apache routine can add the IPs to iptables and block them. Since 22 > August the lunatic has used over 100 different IPs from around the world > to send those wrong URLs which always seem to include one of these:- > > forgotten_password.php > > login.php > > contact.php > > If you can get a good list of what is requested, such as the one started above, and 'if' none of those pages exist, you can use modrewrite to redirect them to 127.0.0.1. :) Effectively sending the request back to themselves. That irritates them. Can be done on a per domain basis or serverwide for those regular attempts into what might exist on any server. For instance, I regularly see phpmyadmin references. I don't run that on any servers, but they come looking. John Hinton ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 3:14 PM, Always Learning wrote: > >> That probably means the intrusion is self-propagating. That is, if >> the target is running some vulnerable php version or application, it >> is able to install a copy of itself and start over. > > In this particular incident, I am reasonable certain the loony is using > tools to find vulnerable IPs and then manually feeding the address into > his scrip. That means he's not very good at it yet. The ones you need to worry about will send quick exploit tests cycling through different destinations, that if they succeed will post to a central receiver. Then later, likely from a different location, it will send the one that attempts to escalate access to root and/or establish a connection back for central control. The point here being that an IP block probably won't help much against an exploit that works well enough to establish a distributed base. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, 2011-08-29 at 15:52 -0500, Les Mikesell wrote: > That means he's not very good at it yet. The ones you need to worry > about will send quick exploit tests cycling through different > destinations, that if they succeed will post to a central receiver. > Then later, likely from a different location, it will send the one > that attempts to escalate access to root and/or establish a connection > back for central control. The point here being that an IP block > probably won't help much against an exploit that works well enough to > establish a distributed base. Thank you for this. If I can establish an effective block for wrong HTTP requests in IPtables for incoming port 80 traffic, back-upped by my Apache routine adding IPs to IPtables or .htacesss file and having screwed down access and egress for all other traffic, the only other enhancement I need is SELinux ? Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 4:17 PM, Always Learning wrote: >> That means he's not very good at it yet. The ones you need to worry >> about will send quick exploit tests cycling through different >> destinations, that if they succeed will post to a central receiver. >> Then later, likely from a different location, it will send the one >> that attempts to escalate access to root and/or establish a connection >> back for central control. The point here being that an IP block >> probably won't help much against an exploit that works well enough to >> establish a distributed base. > > Thank you for this. > > If I can establish an effective block for wrong HTTP requests in > IPtables for incoming port 80 traffic, back-upped by my Apache routine > adding IPs to IPtables or .htacesss file and having screwed down access > and egress for all other traffic, the only other enhancement I need is > SELinux ? It's always hard to guess what the next successful exploit might be. With web servers they tend to be URLs that can be misparsed (by apache or application level code) into arbitrary commands which may or may not be combined with writing files somewhere and then trying to execute them. You can avoid a lot of the problems by making sure that apache can't write anywhere that is mounted with execute capability. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
> You can avoid a lot of the problems by making sure > that apache can't write anywhere that is mounted with execute > capability. > Or install a security module to do that for you. One that I've written that is nearing the end of its beta: https://github.com/cormander/tpe-lkm In some cases, you can even tell it to let apache not exec anything at all, if you're not running cgi scripts or bytecode php deployments (zend, etc). -- Corey ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
On Mon, Aug 29, 2011 at 4:57 PM, Corey Henderson wrote: >> You can avoid a lot of the problems by making sure >> that apache can't write anywhere that is mounted with execute >> capability. >> > > Or install a security module to do that for you. One that I've written > that is nearing the end of its beta: > > https://github.com/cormander/tpe-lkm > > In some cases, you can even tell it to let apache not exec anything at > all, if you're not running cgi scripts or bytecode php deployments (zend, > etc). > Would it have blocked this widely known/used vulnerability? http://seclists.org/fulldisclosure/2010/Oct/257 -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] (c 5.6) Running 2 versions of Apache ?
> On Mon, Aug 29, 2011 at 4:57 PM, Corey Henderson > wrote: >>> You can avoid a lot of the problems by making sure >>> that apache can't write anywhere that is mounted with execute >>> capability. >>> >> >> Or install a security module to do that for you. One that I've written >> that is nearing the end of its beta: >> >> https://github.com/cormander/tpe-lkm >> >> In some cases, you can even tell it to let apache not exec anything at >> all, if you're not running cgi scripts or bytecode php deployments >> (zend, >> etc). >> > > Would it have blocked this widely known/used vulnerability? > http://seclists.org/fulldisclosure/2010/Oct/257 > Yes, because you've created the file you're executing: $ gcc -w -fPIC -shared -o /tmp/exploit payload.c $ ls -l /tmp/exploit -rwxrwx--- 1 taviso taviso 4.2K Oct 15 09:22 /tmp/exploit* # Now force the link in /proc to load $ORIGIN via LD_AUDIT. $ LD_AUDIT="\$ORIGIN" exec /proc/self/fd/3 The attempt fails as designed by tpe. I've specifically tested this one. It also stops the trick of using ld-x.x.so to execute binaries, because mmap and mprotect are also checked in addition to execve. Tested on both CentOS 5 & 6. Haven't bothered testing it on 4 since it's close to EOL. -- Corey ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 6: wpa_supplicant, unexpected behavior
On my CentOS 6: chkconfig --list wpa_supplicant shows off at all levels, which is confirmed by examination of: /etc/init.d/wpa_supplicant but ps -ef shows the process running. Furthermore, repeated cd /etc/init.d/ ./wpa_supplicant stop appears to succeed, but the process continues to run. These observations were made at levels 3 and 5. Thanks in advance for your explanation. Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: wpa_supplicant, unexpected behavior
On Mon, Aug 29, 2011 at 10:35:18PM +, Michael D. Berger wrote: > On my CentOS 6: >chkconfig --list wpa_supplicant > shows off at all levels, which is confirmed by examination of: >/etc/init.d/wpa_supplicant > but ps -ef shows the process running. > Furthermore, repeated >cd /etc/init.d/ >./wpa_supplicant stop > appears to succeed, but the process continues to run. > These observations were made at levels 3 and 5. > Are you using NetworkManager? It probably starts wpa_supplicant. Have you ever noticed, on a Gnome desktop, how you have to specifically uncheck enable wireless? -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Angel: I'm weak. I've never been anything else. I wanted to lose myself in you. I know it will cost me my soul, and part of me didn't care. It's not the demon in me that needs killing, Buffy, it's the man. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache warns Web server admins of DoS attack tool
On Mon, Aug 29, 2011 at 03:11:31PM -0500, Les Mikesell wrote: > On Mon, Aug 29, 2011 at 10:53 AM, Les Mikesell wrote: > > The first look isn't promising - there is only a small amount of text > displayed and clicking through to get the rest doesn't recognize > mobile browsers so you always have to zoom in for a reasonable font > size when using the phone app. And a large percent of the admittedly > small sample looks more like spam or off-topic than what we see here. > Is anyone interested in seeing things like: > "Atlantica online OG Realms Private Server" > or > "Does CentOS join Micorsoft strategy?" One of those was probably fairly quickly removed as spam. The second one is really not typical of the forum. -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Jonathon: You think I just want attention? Buffy: No, I think you're up here in a clock tower with a high-powered rifle because you want to blend in. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] mail.centos.org : packets to strange ports
Reading a daily Logwatch report I noticed mail.centos.org sending packets to my outgoing mail server. The packets were blocked by IPtables. >From 72.26.200.202 - 18 packets To xx.xx.xx.xx - 18 packets Service: 33120 (tcp/33120) - 2 packets Service: 33906 (tcp/33906) - 4 packets Service: 39856 (tcp/39856) - 2 packets Service: 42049 (tcp/42049) - 2 packets Service: 54517 (tcp/54517) - 2 packets Service: 54792 (tcp/54792) - 4 packets Service: 58445 (tcp/58445) - 2 packets I thought all outgoing mail dialogue was conducted on port 25. Incoming mail from Centos is usually received by a different server. Thanks, Paul. -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: wpa_supplicant, unexpected behavior
On Mon, 29 Aug 2011 19:36:13 -0400, Scott Robbins wrote: > On Mon, Aug 29, 2011 at 10:35:18PM +, Michael D. Berger wrote: >> On my CentOS 6: >>chkconfig --list wpa_supplicant >> shows off at all levels, which is confirmed by examination of: >>/etc/init.d/wpa_supplicant >> but ps -ef shows the process running. Furthermore, repeated >>cd /etc/init.d/ >>./wpa_supplicant stop >> appears to succeed, but the process continues to run. These >> observations were made at levels 3 and 5. >> >> > Are you using NetworkManager? It probably starts wpa_supplicant. Have > you ever noticed, on a Gnome desktop, how you have to specifically > uncheck enable wireless? Yes, I am using NetworkManager, and, as I forgot to mention, KDE. But I see that NetworkManager starts at level 2. (BTW, I also see that the scripts in /etc/init.d have a new format for specifying start and stop levels.) Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
John Doe wrote: > From: Timothy Murphy > >> I've installed a substitute box - and HP MicroServer - >> which by a miracle has CentOS-5.6 installed on it. >> Now I'm wondering what is the best way to install CentOS-6, >> given that there is no CD/DVD driver on this machine. > > You could also add the setup grub entry to your grub, and put the ISO > files on a local HD (that will not be overwritten). Could you be a bit more precise, please. What do you mean by the "setup grub entry"? -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
Les Mikesell wrote: > Local hard drive install instructions: > http://docs.redhat.com/docs/en- US/Red_Hat_Enterprise_Linux/6/html/Installation_Guide/s1-steps-hd-installs- x86.html Thanks. I'll try that. -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
Les Mikesell wrote: > but haven't you had enough trouble > yet that you see the wisdom in having a backup system or at least a > removable/external drive that you can use for backups and installs? I do actually run BackupPC each night, but I didn't include / among the directories to backup, and now realise there are many config files and scripts I wrote, and I have now forgotten exactly what I did! -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Update to CentOS 6.0 without CD/DVD reader
ken wrote: >> Actually, all the missing data is on extended partitions. >> I think if I could find where /dev/sda4 begins >> I might be able to determine where the logical partitions >> inside /dev/sda4 start and end? > fdisk -l If the information given by this were correct I would have no problem ... -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Upstart file format
Where can I find documentation on the new format of the files in /etc/init.d/? Thanks, Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Tuesday, August 30, 2011 09:51 AM, Michael D. Berger wrote: > Where can I find documentation on the new format > of the files in /etc/init.d/? You mean /etc/event.d? Upstart...I thought Centos 6 uses systemd? > > Thanks, > Mike. > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Tue, Aug 30, 2011 at 09:57:22AM +0800, Christopher Chan wrote: > On Tuesday, August 30, 2011 09:51 AM, Michael D. Berger wrote: > > Where can I find documentation on the new format > > of the files in /etc/init.d/? > > You mean /etc/event.d? Upstart...I thought Centos 6 uses systemd? Systemd is only in Fedora at present--apparently (though I haven't run across it) it has some flaws as a server system. (You can search Fedora forum, look for threads on systemd with the user jpollard--they've apparently had some serious issues with it.) It does seem, though this may be my age and grouchiness speaking, that much of the development used to be done by people who thought like system administrators, whereas these days, it's done by people who think like smartphone users. Much of Fedora seems aimed (and nothing wrong with this) at the less experienced user with a laptop using DHCP, but the trouble is that RH seems to blindly put in the things aimed at said user. -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Xander: You were looking at my neck. Angel: What? Xander: You were checking out my neck, I saw that. Angel: No, I wasn't. Xander: Just keep your distance, pal. Angel: I wasn't looking at your neck. Xander: I told you to eat before we left. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Mon, 2011-08-29 at 22:03 -0400, Scott Robbins wrote: > It does seem, though this may be my age and grouchiness speaking, that > much of the development used to be done by people who thought like > system administrators, whereas these days, it's done by people who > think > like smartphone users. Much of Fedora seems aimed (and nothing wrong > with this) at the less experienced user with a laptop using DHCP, but > the trouble is that RH seems to blindly put in the things aimed at > said user. Dumbing down ? -- With best regards, Paul. England, EU. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Tue, 30 Aug 2011 09:57:22 +0800, Christopher Chan wrote: > On Tuesday, August 30, 2011 09:51 AM, Michael D. Berger wrote: >> Where can I find documentation on the new format of the files in >> /etc/init.d/? > > You mean /etc/event.d? Upstart...I thought Centos 6 uses systemd? > > >> Thanks, >> Mike. >> >> ___ CentOS mailing list >> CentOS@centos.org >> http://lists.centos.org/mailman/listinfo/centos On my new Centos 6, if you type: man init it mentions: "init - Upstart process management daemon" Also, if you look at a file in /etc/init.d/, you can see that there is a new file format. It is the documentation of this new format that I would like to read. Thanks, Mike. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Tuesday, August 30, 2011 10:06 AM, Always Learning wrote: > > On Mon, 2011-08-29 at 22:03 -0400, Scott Robbins wrote: > >> It does seem, though this may be my age and grouchiness speaking, that >> much of the development used to be done by people who thought like >> system administrators, whereas these days, it's done by people who >> think >> like smartphone users. Much of Fedora seems aimed (and nothing wrong >> with this) at the less experienced user with a laptop using DHCP, but >> the trouble is that RH seems to blindly put in the things aimed at >> said user. > > Dumbing down ? > > Yeah...as opposed to making more convenient/efficient to use ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Upstart file format
On Tuesday, August 30, 2011 10:16 AM, Michael D. Berger wrote: > On Tue, 30 Aug 2011 09:57:22 +0800, Christopher Chan wrote: > >> On Tuesday, August 30, 2011 09:51 AM, Michael D. Berger wrote: >>> Where can I find documentation on the new format of the files in >>> /etc/init.d/? >> >> You mean /etc/event.d? Upstart...I thought Centos 6 uses systemd? >> >> >>> Thanks, >>> Mike. >>> >>> ___ CentOS mailing list >>> CentOS@centos.org >>> http://lists.centos.org/mailman/listinfo/centos > > On my new Centos 6, if you type: > man init > it mentions: > "init - Upstart process management daemon" > Also, if you look at a file in /etc/init.d/, you can see > that there is a new file format. It is the documentation > of this new format that I would like to read. > I'm sure the RHEL 6 manuals will have it covered somewhere. Have you taken a look there? /me starts flogging /etc/event.d on his Hardy Upstart ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Off topic list for centos please?
On Sunday, August 28, 2011 09:59 PM, Always Learning wrote: > > On Sun, 2011-08-28 at 14:39 +0100, Karanbir Singh wrote: > >> heh, I've been to belgium 8 times in the last 5 years. Its never >> failed to rain on me ( even snow one in a while ). A CentOS Conference >> would be nice, its been brought up often. If you want to help make it >> happen - come join the centos-promo list and lets see if we can do >> something. > > You, purposely ?, omitted the time of the year when it rained :-) > Snow is unlikely in June, July and August in the northern hemisphere. Maybe he meant hail :p ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] If you are using CentOS 6 and KDE....
I am sure Anne is referring to the fact that CentOS 6 has KDE 4, which has a distinctly different "desktop" paradigm from KDE 3 in CentOS 5. If you are used to only CentOS 5, and haven't been running any other distributions with KDE 4, it might come as a shock. Emmett On 08/28/2011 05:35 AM, Karanbir Singh wrote: > On 08/28/2011 10:28 AM, Anne Wilson wrote: >> The desktop will look strange and behave differently. If you need any help >> in >> getting used to it, either join the kde user list, >> https://mail.kde.org/mailman/listinfo/kde , the kde forum, >> http://forum.kde.org/ , or mail me personally. > > you forgot to mention what the issues really are ? > >> Once again I will turn off receipt from this list. The attitude of several >> posters is unacceptable to me. > > is it not easier to just turn off emails from them getting to you via > mail filters ? > > - KB > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > > ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] If you are using CentOS 6 and KDE....
On Mon, 2011-08-29 at 19:48 -0700, Emmett Culley wrote: > I am sure Anne is referring to the fact that CentOS 6 has KDE 4, which has a > distinctly different "desktop" paradigm from KDE 3 in CentOS 5. If you are > used to only CentOS 5, and haven't been running any other distributions with > KDE 4, it might come as a shock. I've heard Gnome in C6 is different from C5. Its upset some. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] resize2fs
Hi All: I am trying to resize a centos (5.2) VM drive. I use VMware and I have increased the size of the drive by 40G. I am running resize2fs on /dev/sdb1 (which is my root partition) but when I do I get this error: [root@centos ~]# resize2fs /dev/sdb1 120G resize2fs 1.39 (29-May-2006) The containing partition (or device) is only 19970795 (4k) blocks. You requested a new size of 31457280 blocks. How can I change the block size? I have also tried to use gparted live cd but it will not allow me to increase the size even though it sees 40g of unused space. I can only create a new partition. Any help would be appreciated. Thanks, Ed ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] resize2fs
> I am trying to resize a centos (5.2) VM drive. I use VMware and I have > increased the size of the drive by 40G. I am running resize2fs on > /dev/sdb1 (which is my root partition) but when I do I get this error: > > [root@centos ~]# resize2fs /dev/sdb1 120G > resize2fs 1.39 (29-May-2006) > The containing partition (or device) is only 19970795 (4k) blocks. > You requested a new size of 31457280 blocks. > > How can I change the block size? > > I have also tried to use gparted live cd but it will not allow me to > increase the size even though it sees 40g of unused space. I can only > create a new partition. > > Any help would be appreciated. > I just ran into same kinda of thing and I for one found much easier to create new virtual 40gb drive, restore backup, drop old drive, use new one. done. If anything goes wrong you still have old virtual drive you can go back to. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 8/29/11, Always Learning wrote: > > On Mon, 2011-08-29 at 09:45 -0700, hadi motamedi wrote: > >> On 8/29/11, Always Learning wrote: > >> > What happens when you type-in:- >> > >> > yum install gimp > >> Sorry. I asked and it seems that the GIMP new features just come with >> centos 6 . > > Have you got GIMP in your Centos 6 ? > > > Paul. > > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > Sorry. My centos 6.0 does not come up with GIMP as built-in . I just see its rpm on the install cd. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On Mon, Aug 29, 2011 at 10:49 PM, hadi motamedi wrote: >>> > What happens when you type-in:- >>> > >>> > yum install gimp >> >>> Sorry. I asked and it seems that the GIMP new features just come with >>> centos 6 . >> >> Have you got GIMP in your Centos 6 ? >> > Sorry. My centos 6.0 does not come up with GIMP as built-in . I just > see its rpm on the install cd. You do understand that it is possible (and easy) to install and update software over the internet, don't you? -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 08/29/11 8:49 PM, hadi motamedi wrote: > Sorry. My centos 6.0 does not come up with GIMP as built-in . I just > see its rpm on the install cd. so # yum install gimp same as any other package. CentOS6, I've noticed, installs a LOT less junk on the default installs. -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] resize2fs
> I am trying to resize a centos (5.2) VM drive. I use VMware and I have > increased the size of the drive by 40G. I am running resize2fs on > /dev/sdb1 (which is my root partition) but when I do I get this error: > > [root@centos ~]# resize2fs /dev/sdb1 120G > resize2fs 1.39 (29-May-2006) > The containing partition (or device) is only 19970795 (4k) blocks. > You requested a new size of 31457280 blocks. > > How can I change the block size? Yo don't need to. But to increase the filesystem size, you'll need more blocks, which means you'll first need to increase the size of the partition. Thereafter, you resize the filesystem to use that free space. So, there are two steps and now you are skipping step #1 and trying step #2 directly. Here is some help: http://www.howtoforge.com/linux_resizing_ext3_partitions -- TiN ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ImageMagick : Centos GUI ?
On 8/30/11, Les Mikesell wrote: > On Mon, Aug 29, 2011 at 10:49 PM, hadi motamedi > wrote: > What happens when you type-in:- > > yum install gimp >>> Sorry. I asked and it seems that the GIMP new features just come with centos 6 . >>> >>> Have you got GIMP in your Centos 6 ? >>> >> Sorry. My centos 6.0 does not come up with GIMP as built-in . I just >> see its rpm on the install cd. > > You do understand that it is possible (and easy) to install and update > software over the internet, don't you? > > -- > Les Mikesell > lesmikes...@gmail.com > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > Thank you very much for your help. I installed it via yum. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Postfix not set top start after upgrade
I noticed that after the lastest yum update on CentOS 5.6 we get Postfix 2.3.3, but the status of the postfix service (chkconfig --list postfix) changes to off. So after a reboot, it doesn't start automatically. I don't recall this ever happening before. Is this by design? A packaging error? Thanks, Micha ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
