Re: [CentOS] Google Earth on EL6.x x86_64
On 03/06/2013 05:54 AM, Fred Smith wrote: > > http://lists.centos.org/mailman/listinfo/centos > > Yes, I did the modifications given earlier by Earl and one other poster > and now google earth starts up. > > but it complains there's no usable graphics card, and only displays > the menus/borders/etc, with the main view window being empty/black. > > I do have a supported graphics card (Nvidia GeForce 9800GT), and have > the nvidia drivers installed. > > can anyone advise how to make GE recognize it? I'm guessing it's failing > because Google seems to be distributing 32-bit binaries instead of 64-bit > binaries, but I've no clue how to fix this. > > Clues will be appreciated! try to install the nvidia 32bit compatibility libraries. if installed using the nvidia installer it asks you, if installed from elrepo use nvidia-x11-drv-32bit package Lec > > thanks in advance. > > Fred > -- Lec ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS-announce Digest, Vol 97, Issue 2
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ...@centos.org
You can reach the person managing the list at
centos-announce-ow...@centos.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of CentOS-announce digest..."
Today's Topics:
1. CESA-2013:0588 Moderate CentOS 5 gnutls Update (Johnny Hughes)
2. CEBA-2013:0591 CentOS 5 libxml2 Update (Johnny Hughes)
3. CESA-2013:0587 Moderate CentOS 5 openssl Update (Johnny Hughes)
--
Message: 1
Date: Tue, 5 Mar 2013 13:43:03 +
From: Johnny Hughes
Subject: [CentOS-announce] CESA-2013:0588 Moderate CentOS 5 gnutls
Update
To: centos-annou...@centos.org
Message-ID: <20130305134303.ga27...@chakra.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Security Advisory 2013:0588 Moderate
Upstream details at : https://rhn.redhat.com/errata/RHSA-2013-0588.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
d406c1625f60d19b757d3a3b1c3755e8b3d512f39c6b62405c3dfb40e407e106
gnutls-1.4.1-10.el5_9.1.i386.rpm
b545ba0216af79f830a203ecb36f56c18a4d8f1b3114c680096a1999b428f9e5
gnutls-devel-1.4.1-10.el5_9.1.i386.rpm
938cad7cb143172b6190a97e4c36f6ec508d86efdac3b6bc8121cd8e958c09c6
gnutls-utils-1.4.1-10.el5_9.1.i386.rpm
x86_64:
d406c1625f60d19b757d3a3b1c3755e8b3d512f39c6b62405c3dfb40e407e106
gnutls-1.4.1-10.el5_9.1.i386.rpm
bb64f014b99389f570571c073312fca6f07db748a19d8a5f8e9734493fd0329b
gnutls-1.4.1-10.el5_9.1.x86_64.rpm
b545ba0216af79f830a203ecb36f56c18a4d8f1b3114c680096a1999b428f9e5
gnutls-devel-1.4.1-10.el5_9.1.i386.rpm
023bf23e98b902bbe2a0f8899d9e567f5f892f0ee355dc321464d5df264ab23e
gnutls-devel-1.4.1-10.el5_9.1.x86_64.rpm
54eef63f0b8d0d21847a1798ac1322917f33f0e5f1c3a6668793b776469574bc
gnutls-utils-1.4.1-10.el5_9.1.x86_64.rpm
Source:
8549aa07932fdfb2eaaabfad862ec66f74f1dc153dee55591297b00b86bebb2f
gnutls-1.4.1-10.el5_9.1.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #cen...@irc.freenode.net
--
Message: 2
Date: Tue, 5 Mar 2013 13:44:17 +
From: Johnny Hughes
Subject: [CentOS-announce] CEBA-2013:0591 CentOS 5 libxml2 Update
To: centos-annou...@centos.org
Message-ID: <20130305134417.ga27...@chakra.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Bugfix Advisory 2013:0591
Upstream details at : https://rhn.redhat.com/errata/RHBA-2013-0591.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
65bb89c8944962636db78141830c7f69aa4426a2a6e6113cc2b02458074b5a66
libxml2-2.6.26-2.1.21.el5_9.2.i386.rpm
85a25609b42b0d9d43508c0b636318f19f77e75f84ff2f5e7f547693798cc1a6
libxml2-devel-2.6.26-2.1.21.el5_9.2.i386.rpm
0e01f0682cfdf5cd0f963895bc3ad90809fd3a6b4e94503d4e3f7e84e8955ffc
libxml2-python-2.6.26-2.1.21.el5_9.2.i386.rpm
x86_64:
65bb89c8944962636db78141830c7f69aa4426a2a6e6113cc2b02458074b5a66
libxml2-2.6.26-2.1.21.el5_9.2.i386.rpm
0d35a2642461ef969c648b17c8975a853e3a5e9645600fb124d51122dd62a719
libxml2-2.6.26-2.1.21.el5_9.2.x86_64.rpm
85a25609b42b0d9d43508c0b636318f19f77e75f84ff2f5e7f547693798cc1a6
libxml2-devel-2.6.26-2.1.21.el5_9.2.i386.rpm
20c1e1ae776ac266e279bd1067087cccdd4cfb53400f4dc47d05fb1a7da33b62
libxml2-devel-2.6.26-2.1.21.el5_9.2.x86_64.rpm
51fd9ad1f3d74f426f1af7c1c5d813bbe819d15b9d07d27cb1f3f8a7b1b70e3b
libxml2-python-2.6.26-2.1.21.el5_9.2.x86_64.rpm
Source:
5c100afcfbde58be99b2c4ef94ed959ee163de55f8e3e0379ec174cb2320e767
libxml2-2.6.26-2.1.21.el5_9.2.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #cen...@irc.freenode.net
--
Message: 3
Date: Tue, 5 Mar 2013 13:45:27 +
From: Johnny Hughes
Subject: [CentOS-announce] CESA-2013:0587 Moderate CentOS 5 openssl
Update
To: centos-annou...@centos.org
Message-ID: <20130305134527.ga27...@chakra.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Security Advisory 2013:0587 Moderate
Upstream details at : https://rhn.redhat.com/errata/RHSA-2013-0587.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
b3c9e6759e2b6b562b9d8d7edb48a83ade73d041376f32b223249f7e4bb5db8a
openssl-0.9.8e-26.el5_9.1.i386.rpm
e04c5bcf1b3a72831df27f7d089a5698c889acafc8225584d8234b84ad204cd1
openssl-0.9.8e-26.el5_9.1.i686.rpm
3a8e98ce86754ab28bb9dea2938dd5d4a958cfc87606dbe7518b92c6e785084f
openssl-devel-0.9.8e-26.el5_9.1.i386.rpm
e062413c195abe8387e580fbcaad830d2b6ba48ccefad5f67c0281cead80
o
Re: [CentOS] Software RAID complete drives or individual partitions
On Tue, Mar 5, 2013 at 8:56 PM, Chris Weisiger wrote: > Im not so much concerned about the os not being on a raid system. I am > really concerned about my data, music, pictures,docs, etc. > True, the data is generally more important than the OS (or hardware - you can buy more). > I run a minimum os centos 5.9 install anyway so it would take long to > reload the os if i had to. > BUT do you _really_ want to reload the OS and have to tweak config files again? Especially if you do not have the OS on a raid volume, back at least /etc/ up nightly or weekly (whatever fits your scenario) so you have at least some config files to go off of. There's a fellow on the Gentoo Forums that has a signature that says: "Computer users fall into two groups:- those that do backups those that have never had a hard drive fail." You might be lucky, but you won't want to get caught if your luck to drys up! :) > > -Original Message- > From: John R Pierce > Sent: 3/5/2013 6:45 PM > To: centos@centos.org > Subject: Re: [CentOS] Software RAID complete drives or individual > partitions > > On 3/5/2013 4:27 PM, Mark LaPierre wrote: > > The question is why are you using raid at all? > > indeed. the primary justification for the "R" in RAID, Redundant, is > high availability. having the OS on a non-raid volume completely > violates this.RAID is most definitely NOT a substitute for backups. > > > -- > john r pierce 37N 122W > somewhere on the middle of the left coast > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- ---~~.~~--- Mike // SilverTip257 // ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Apache attacks - you can't stop them, or can you?
So I have this nice, simple web server up running. Its purpose is to allow me external testing with HIP, and to provide some files for external distribution. Of course, there it is sitting on port 80 and the attacks are coming in per logwatch report. Examples from the report include: Requests with error response codes 404 Not Found //phpMyAdmin-2.5.1/scripts/setup.php: 1 Time(s) //phpMyAdmin-2.5.4/scripts/setup.php: 1 Time(s) //phpMyAdmin-2.5.5-pl1/scripts/setup.php: 1 Time(s) //phpMyAdmin-2.5.5-rc1/scripts/setup.php: 1 Time(s) //phpMyAdmin-2.5.5-rc2/scripts/setup.php: 1 Time(s) /muieblackcat: 1 Time(s) /myadmin/scripts/setup.php: 2 Time(s) /mysql-admin/scripts/setup.php: 1 Time(s) /mysql/scripts/setup.php: 1 Time(s) /mysqladmin/scripts/setup.php: 2 Time(s) /mysqlmanager/scripts/setup.php: 1 Time(s) Now these are only a few, though I am probably not being hit as hard as others out there. My question is: Is there a way to shut this nonsense down? Or because I am sending the 404, I am doing all that is reasonable to do? I am wondering that if this list starts getting long, that is a lot of logging and I probably don't need to log 404s? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache attacks - you can't stop them, or can you?
Il 06/03/2013 14:17, Robert Moskowitz ha scritto: > So I have this nice, simple web server up running. Its purpose is to > allow me external testing with HIP, and to provide some files for > external distribution. Of course, there it is sitting on port 80 and > the attacks are coming in per logwatch report. Examples from the report > include: > > Requests with error response codes > 404 Not Found > //phpMyAdmin-2.5.1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.4/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-pl1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc2/scripts/setup.php: 1 Time(s) > /muieblackcat: 1 Time(s) > /myadmin/scripts/setup.php: 2 Time(s) > /mysql-admin/scripts/setup.php: 1 Time(s) > /mysql/scripts/setup.php: 1 Time(s) > /mysqladmin/scripts/setup.php: 2 Time(s) > /mysqlmanager/scripts/setup.php: 1 Time(s) > > Now these are only a few, though I am probably not being hit as hard as > others out there. > > My question is: > > Is there a way to shut this nonsense down? Or because I am sending the > 404, I am doing all that is reasonable to do? > You could use fail2ban to reduce the load on the server; here is my config: cat /etc/fail2ban/filter.d/apache-errorcode.conf # Fail2Ban configuration file # # Author: Lorenzo Quatrini # # $Revision: 1 $ # [Definition] errorcode = 400|403|404 # Option: failregex # Notes.: Regexp to catch bad request # Values: TEXT # failregex = ^ -.*"(GET|POST).*HTTP.*" (?:%(errorcode)s) # Option: ignoreregex # Notes.: regex to ignore. If this regex matches, the line is ignored. # Values: TEXT # ignoreregex = > I am wondering that if this list starts getting long, that is a lot of > logging and I probably don't need to log 404s? > The "downside" of using fail2ban is that you will start receiving email about banned hosts; but that is configurable, as is the number of failed attempts before being banned. Also you can have "trusted" hosts that never get banned... but the manual explains this better that I can do. Regards Lorenzo ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Google Earth on EL6.x x86_64
On Wed, Mar 06, 2013 at 10:57:35AM +0200, Alexandru Chiscan wrote: > On 03/06/2013 05:54 AM, Fred Smith wrote: > > > > http://lists.centos.org/mailman/listinfo/centos > > > > Yes, I did the modifications given earlier by Earl and one other poster > > and now google earth starts up. > > > > but it complains there's no usable graphics card, and only displays > > the menus/borders/etc, with the main view window being empty/black. > > > > I do have a supported graphics card (Nvidia GeForce 9800GT), and have > > the nvidia drivers installed. > > > > can anyone advise how to make GE recognize it? I'm guessing it's failing > > because Google seems to be distributing 32-bit binaries instead of 64-bit > > binaries, but I've no clue how to fix this. > > > > Clues will be appreciated! > try to install the nvidia 32bit compatibility libraries. if installed > using the nvidia installer it asks you, if installed from elrepo use > > nvidia-x11-drv-32bit package Ah, thanks Lec! That was less than obvious, so I appreciate the guidance. Fred -- Fred Smith -- fre...@fcshome.stoneham.ma.us - "And he will be called Wonderful Counselor, Mighty God, Everlasting Father, Prince of Peace. Of the increase of his government there will be no end. He will reign on David's throne and over his kingdom, establishing and upholding it with justice and righteousness from that time on and forever." --- Isaiah 9:7 (niv) -- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
Chris, I've used software raid quite a bit, and have developed a few rules of thumb, hope these help! - Use one raid array, generally md0, for /boot, and one for LVM, md1. This allows the individual drives to be mounted and read on another server for recovery if you're using RAID1. This is generally how the drives in a RAID1 array would look. This is from a CentOS 5 server, so /boot is only 100MB, on CentOS 6 it would be 500MB. # fdisk -l /dev/sda Disk /dev/sda: 250.0 GB, 250059350016 bytes 255 heads, 63 sectors/track, 30401 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sda1 * 1 13 104391 fd Linux raid autodetect /dev/sda2 14 30401 244091610 fd Linux raid autodetect # cat /proc/mdstat Personalities : [raid1] md0 : active raid1 sdb1[1] sda1[0] 104320 blocks [2/2] [UU] md1 : active raid1 sdb2[1] sda2[0] 244091520 blocks [2/2] [UU] - Avoid software RAID5 or 6, only use it for RAID1 or 10. Software RAID5 performance can be abysmal, because of the parity calculations and the fact that each write to the array requires that all drives be read and written. Older hardware raid controllers can be pretty cheap on eBay, I'm using an old 3Ware on my home CentOS server. Avoid hostraid adapters, these are just software raid in the controller rather than the OS. Even with hardware raid performance won't be near as good as RAID10, I generally only use RAID5 or 6 for partitions that hold backups. If you are using drives over 1TB, consider partitioning the drives into smaller chunks, say around 500MB, and creating multiple arrays. That way if you get a read error on one sector that causes one of the raid partitions to be marked as bad, only that partition needs to be rebuild rather than the whole drive. Mark Snyder Highland Solutions 200 South Michigan Ave., Suite 1000 Chicago, IL 60604 http://www.highlandsolutions.com - Original Message - From: "Chris Weisiger" To: centos@centos.org Sent: Monday, March 4, 2013 9:53:48 PM Subject: [CentOS] Software RAID complete drives or individual partitions I have been reading about software raid. I configured my first software raid system about a month ago. I have 4 500 Gig drives configured in RAID 5 configuration with a total of 1.5TB. Currently I configured the complete individual drivers as software raid, then created a /dev/md0 with the drives I then created a /file_storage partition on /dev/md0. I created my /boot / and swap partitions on a non raid drive in my system. Is the the proper way to configure software raid? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On Wed, Mar 6, 2013 at 10:00 AM, Mark Snyder wrote: > > I've used software raid quite a bit, and have developed a few rules of thumb, > hope these help! Do you (or anyone...) have any rules of thumb regarding drives over 2TB or using raid sets that were created on Centos5 under Centos6? I once booted a centos5 box with the initial centos6 'live' CD and it permanently broke all of the auto-detected mirrors so I have been a little reluctant to it again. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
Greetings, I am looking for a hardware raid card that supports up to 4 SATA II hard disks with hot swap (compatible raid cage) I have short listed two LSI/3Ware cards: 1. 9750-4i 2. 9650SE-4LPML Both appear to be well supported in Linux. I would appreciate your personal experience with the CLI tools provided by LSI. Can they be configured to send email for disk failures or SMART errors? Is there a Web interface for monitoring? Any preference between 1 and 2 above. Thanks for your time and suggestions. -- Arun Khan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Replacing Multiple Servers with One
We are replacing four servers, running mail, web, ftp, and dns, respectively, with a single server to run all four services. The new server will have a new IP address. It seems fairly straightforward to redirect mail, web, and ftp services to the new server via DNS CNAMES, but I'm not quite sure about how to do the change for the DNS service itself. Is there a need to maintain the old DNS server's IP address during a transition, or longer? Via a virtual IP with the old DNS server's IP address on the new machine, perhaps? Or a second NIC with the old address? Or just have the router redirect incoming DNS requests? Thanks. -- Tim Evans | 5 Chestnut Court Linux/UNIX Consulting | Owings Mills, MD 21117 http://www.tkevans.com/ | 443-394-3864 tkev...@tkevans.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache attacks - you can't stop them, or can you?
On 03/06/2013 07:17 AM, Robert Moskowitz wrote: > So I have this nice, simple web server up running. Its purpose is to > allow me external testing with HIP, and to provide some files for > external distribution. Of course, there it is sitting on port 80 and > the attacks are coming in per logwatch report. Examples from the report > include: > > Requests with error response codes > 404 Not Found > //phpMyAdmin-2.5.1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.4/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-pl1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc2/scripts/setup.php: 1 Time(s) > /muieblackcat: 1 Time(s) > /myadmin/scripts/setup.php: 2 Time(s) > /mysql-admin/scripts/setup.php: 1 Time(s) > /mysql/scripts/setup.php: 1 Time(s) > /mysqladmin/scripts/setup.php: 2 Time(s) > /mysqlmanager/scripts/setup.php: 1 Time(s) > > Now these are only a few, though I am probably not being hit as hard as > others out there. > > My question is: > > Is there a way to shut this nonsense down? Or because I am sending the > 404, I am doing all that is reasonable to do? > > I am wondering that if this list starts getting long, that is a lot of > logging and I probably don't need to log 404s? There is also mod_security ... http://people.centos.org/hughesjr/mod_security/ You can read about what it is here: http://www.modsecurity.org/ signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Replacing Multiple Servers with One
On Wed, Mar 6, 2013 at 10:40 AM, Tim Evans wrote: > We are replacing four servers, running mail, web, ftp, and dns, > respectively, with a single server to run all four services. > > The new server will have a new IP address. > > It seems fairly straightforward to redirect mail, web, and ftp services > to the new server via DNS CNAMES, SMTP mail needs to use MX records, not CNAMEs, and in fact the target of the MX can't be a CNAME.Pop/imap connections want an A record or CNAME.You can use multiple MX records and they don't all have to work - smtp deliveries are supposed to try them all before failing so that can be handy during transitions. >but I'm not quite sure about how to do > the change for the DNS service itself. > Is there a need to maintain the old DNS server's IP address during a > transition, or longer? Via a virtual IP with the old DNS server's IP > address on the new machine, perhaps? Or a second NIC with the old > address? Or just have the router redirect incoming DNS requests? Is this a 'public' DNS server? These must be registered (and there should be at least 2 so you can move them and the registration one at a time). Or a local resolving server? These have the IPs configured into every client and/or will be handed out via DHCP. Again, there should be at least 2 but failures cause fairly long timeouts so breakage is a bad thing.Assuming these are all in the same subnet, the simple fix is to use IP aliases to keep the old addresses on the new server until you are sure that everything knows the new one. More drastically, but sometimes easier, you could also convert the old machines to VMs running on a single physical host which would let you consolidate the hardware without many logical changes. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Replacing Multiple Servers with One
On Wed, Mar 6, 2013 at 4:40 PM, Tim Evans wrote: > We are replacing four servers, running mail, web, ftp, and dns, > respectively, with a single server to run all four services. > > The new server will have a new IP address. > > It seems fairly straightforward to redirect mail, web, and ftp services > to the new server via DNS CNAMES, but I'm not quite sure about how to do > the change for the DNS service itself. > > Is there a need to maintain the old DNS server's IP address during a > transition, or longer? Via a virtual IP with the old DNS server's IP > address on the new machine, perhaps? Or a second NIC with the old > address? Or just have the router redirect incoming DNS requests? > > Thanks. > -- > Tim Evans | 5 Chestnut Court > Linux/UNIX Consulting | Owings Mills, MD 21117 > http://www.tkevans.com/ | 443-394-3864 > tkev...@tkevans.com > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > Hi Tim, To migrate the DNS server, ideally the steps as follows, - Provision the new server and setup as the secondary DNS server - Sync the zones - Reduce the TTL of the nameservers - Change the new server to primary - Change the glue DNS records (from domain registrar panel - if applicable) - Let the old server running for few days and monitor for any traffic Regards, Vipul ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache attacks - you can't stop them, or can you?
Am 06.03.2013 14:17, schrieb Robert Moskowitz: > So I have this nice, simple web server up running. [...] > the attacks are coming in per logwatch report. Examples from the report > include: > > Requests with error response codes > 404 Not Found > //phpMyAdmin-2.5.1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.4/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-pl1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc1/scripts/setup.php: 1 Time(s) > //phpMyAdmin-2.5.5-rc2/scripts/setup.php: 1 Time(s) > /muieblackcat: 1 Time(s) > /myadmin/scripts/setup.php: 2 Time(s) > /mysql-admin/scripts/setup.php: 1 Time(s) > /mysql/scripts/setup.php: 1 Time(s) > /mysqladmin/scripts/setup.php: 2 Time(s) > /mysqlmanager/scripts/setup.php: 1 Time(s) That's the normal background noise of the Internet. Scans for known security holes. Hardly worth a bother. If it bothers you, set up fail2ban as Lorenzo proposed. Apart from that, take it as a reminder to keep up to date with the software you use to close known security holes as quickly as possible. > My question is: > > Is there a way to shut this nonsense down? Or because I am sending the > 404, I am doing all that is reasonable to do? > > I am wondering that if this list starts getting long, that is a lot of > logging and I probably don't need to log 404s? I wouldn't disable 404 logging. Even on my hardest-hit webservers the volume is not so big that it gets anywhere near causing an actual problem. And it's nice to be kept up to date about the latest exploits in your daily logwatch mail so if the hits are getting closer you can take evasive action. :-) -- Tilman Schmidt Phoenix Software GmbH Bonn, Germany signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 5 sshd does not log IP address of reverse mapping failure
I'm running a mix of CentOS 5 and 6 servers reachable by ssh from the Internet. Of course I allow only public key authentication and no root login. In addition I'm running fail2ban to block obnoxious brute force attack sources. On CentOS 6 this is working pretty well, but on CentOS 5 there's one class of attacks fail2ban fails to ban. (No pun intended.) This isn't fail2ban's fault, but openssh's. When the source IP address of a failed attempt fails the reverse mapping check, CentOS 6 (openssh-server-5.3p1-81.el6_3.x86_64) logs: Mar 3 04:06:34 posthamster sshd[1718]: reverse mapping checking getaddrinfo for hn.ly.kd.adsl [61.163.113.72] failed - POSSIBLE BREAK-IN ATTEMPT! from which fail2ban can pick up and block IP address 61.163.113.72 just fine. CentOS 5 (openssh-server-4.3p2-82.el5) OTOH logs: Mar 3 04:44:48 gimli sshd[12870]: reverse mapping checking getaddrinfo for hn.ly.kd.adsl failed - POSSIBLE BREAK-IN ATTEMPT! without the IP address. The name is of no use because sshd just confirmed that it doesn't really correspond to the attacker's IP address. Any ideas how to remedy that situation? TIA T. -- Tilman Schmidt Phoenix Software GmbH Bonn, Germany signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache attacks - you can't stop them, or can you?
2013/3/6 Johnny Hughes : > On 03/06/2013 07:17 AM, Robert Moskowitz wrote: >> So I have this nice, simple web server up running. Its purpose is to >> allow me external testing with HIP, and to provide some files for >> external distribution. Of course, there it is sitting on port 80 and >> the attacks are coming in per logwatch report. Examples from the report >> include: >> >> Requests with error response codes >> 404 Not Found >> //phpMyAdmin-2.5.1/scripts/setup.php: 1 Time(s) >> //phpMyAdmin-2.5.4/scripts/setup.php: 1 Time(s) >> //phpMyAdmin-2.5.5-pl1/scripts/setup.php: 1 Time(s) >> //phpMyAdmin-2.5.5-rc1/scripts/setup.php: 1 Time(s) >> //phpMyAdmin-2.5.5-rc2/scripts/setup.php: 1 Time(s) >> /muieblackcat: 1 Time(s) >> /myadmin/scripts/setup.php: 2 Time(s) >> /mysql-admin/scripts/setup.php: 1 Time(s) >> /mysql/scripts/setup.php: 1 Time(s) >> /mysqladmin/scripts/setup.php: 2 Time(s) >> /mysqlmanager/scripts/setup.php: 1 Time(s) >> >> Now these are only a few, though I am probably not being hit as hard as >> others out there. >> >> My question is: >> >> Is there a way to shut this nonsense down? Or because I am sending the >> 404, I am doing all that is reasonable to do? >> >> I am wondering that if this list starts getting long, that is a lot of >> logging and I probably don't need to log 404s? > > There is also mod_security ... > > http://people.centos.org/hughesjr/mod_security/ > > You can read about what it is here: ossec also blocks this kind of web scanners with active response enabled. -- Eero ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Wireless cannot ping gateway after 6.3 CR updates
I'm having a wireless connection issue with an HP laptop and a Zotac media server after the 6.4 package updates from CR repository. Nothing changed with wireless config as far as I can tell. Both have been working fine with previous releases of 6.x. Oddly, if a cat 5 cable is connected for a few seconds and then disconnected the wireless works fine and survives a 'service network restart' but does not survive a reboot. A laptop running Ubuntu 12.04 continues to connect normally. The boxes in question appear to connect to the router/accesspoint, are assigned correct static IPs, but cannot ping any box on the intranet including the router. No other boxes on the intranet can ping the hp or zotac, Once a network cable is inserted and removed all is well with that box. The zotac box uses the ath9k wireless driver, the HP uses b43. Same result using DHCP instead of static IP. Output of iwconfig appears normal on both errant boxes and does not change from non-working to working state. Google has not been much help. FWIW, here is output of iwconfig and ifconfig. ~]$ ifconfig eth0 Link encap:Ethernet HWaddr 00:01:2E:BC:74:14 inet6 addr: fe80::201:2eff:febc:7414/64 Scope:Link UP BROADCAST MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:9 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 b) TX bytes:1249 (1.2 KiB) loLink encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:89 errors:0 dropped:0 overruns:0 frame:0 TX packets:89 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:8807 (8.6 KiB) TX bytes:8807 (8.6 KiB) wlan0 Link encap:Ethernet HWaddr 74:F0:6D:8C:FE:CF inet addr:192.168.1.208 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::76f0:6dff:fe8c:fecf/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:732 errors:0 dropped:0 overruns:0 frame:0 TX packets:79 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:107489 (104.9 KiB) TX bytes:9217 (9.0 KiB) [LSF@nra ~]$ iwconfig lono wireless extensions. eth0 no wireless extensions. wlan0 IEEE 802.11bgn ESSID:"toadnet" Mode:Managed Frequency:2.437 GHz Access Point: 00:24:93:38:89:80 Bit Rate=54 Mb/s Tx-Power=15 dBm Retry long limit:7 RTS thr:off Fragment thr:off Power Management:on Link Quality=70/70 Signal level=-28 dBm Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0 Tx excessive retries:0 Invalid misc:29 Missed beacon:0 Any thoughts appreciated. B.J. CentOS release 6.3 (Final) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Wireless cannot ping gateway after 6.3 CR updates
On Wed, 2013-03-06 at 13:06 -0500, b.j. mcclure wrote: > I'm having a wireless connection issue with an HP laptop and a Zotac > media server after the 6.4 package updates from CR repository. Nothing > changed with wireless config as far as I can tell. Both have been > working fine with previous releases of 6.x. > > Oddly, if a cat 5 cable is connected for a few seconds and then > disconnected the wireless works fine and survives a 'service network > restart' but does not survive a reboot. A laptop running Ubuntu 12.04 > continues to connect normally. > > The boxes in question appear to connect to the router/accesspoint, are > assigned correct static IPs, but cannot ping any box on the intranet > including the router. No other boxes on the intranet can ping the hp or > zotac, Once a network cable is inserted and removed all is well with > that box. The zotac box uses the ath9k wireless driver, the HP uses b43. > Same result using DHCP instead of static IP. > > Output of iwconfig appears normal on both errant boxes and does not > change from non-working to working state. > > Google has not been much help. FWIW, here is output of iwconfig and > ifconfig. > > ~]$ ifconfig > eth0 Link encap:Ethernet HWaddr 00:01:2E:BC:74:14 > inet6 addr: fe80::201:2eff:febc:7414/64 Scope:Link > UP BROADCAST MULTICAST MTU:1500 Metric:1 > RX packets:0 errors:0 dropped:0 overruns:0 frame:0 > TX packets:9 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:1000 > RX bytes:0 (0.0 b) TX bytes:1249 (1.2 KiB) > > loLink encap:Local Loopback > inet addr:127.0.0.1 Mask:255.0.0.0 > inet6 addr: ::1/128 Scope:Host > UP LOOPBACK RUNNING MTU:16436 Metric:1 > RX packets:89 errors:0 dropped:0 overruns:0 frame:0 > TX packets:89 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:0 > RX bytes:8807 (8.6 KiB) TX bytes:8807 (8.6 KiB) > > wlan0 Link encap:Ethernet HWaddr 74:F0:6D:8C:FE:CF > inet addr:192.168.1.208 Bcast:192.168.1.255 > Mask:255.255.255.0 > inet6 addr: fe80::76f0:6dff:fe8c:fecf/64 Scope:Link > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:732 errors:0 dropped:0 overruns:0 frame:0 > TX packets:79 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:1000 > RX bytes:107489 (104.9 KiB) TX bytes:9217 (9.0 KiB) > > [LSF@nra ~]$ iwconfig > lono wireless extensions. > > eth0 no wireless extensions. > > wlan0 IEEE 802.11bgn ESSID:"toadnet" > Mode:Managed Frequency:2.437 GHz Access Point: > 00:24:93:38:89:80 > Bit Rate=54 Mb/s Tx-Power=15 dBm > Retry long limit:7 RTS thr:off Fragment thr:off > Power Management:on > Link Quality=70/70 Signal level=-28 dBm > Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0 > Tx excessive retries:0 Invalid misc:29 Missed beacon:0 > > Any thoughts appreciated. > > B.J. > > CentOS release 6.3 (Final) Replying to my own post, I forgot to mention I have tried several USB wireless adapters on both boxes with same results as onboard adapter, booted previous 2.6.32-279 kernel instead of 2.6.32-358 and disabled Network Manager with no change in behavior. B.J. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5 sshd does not log IP address of reverse mapping failure
On 03/06/2013 09:45 AM, Tilman Schmidt wrote: > Any ideas how to remedy that situation? As long as you get the IP address for failed logins, ignore reverse mapping failures. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 03/06/2013 08:35 AM, Arun Khan wrote: > > Both appear to be well supported in Linux. They are. > I would appreciate your personal experience with the CLI tools > provided by LSI. > Can they be configured to send email for disk failures or SMART errors? Not the CLI tools. You'll need to run 3dm2. > Is there a Web interface for monitoring? Yes, that is also provided by 3dm2. > Any preference between 1 and 2 above. Based on about 10 years of running a hundred or so systems with 3ware controllers, I would say that you're better off with an LSI MegaRAID card, or with Linux software RAID. 3ware cards themselves have been the most problematic component of any system I've run in my entire professional career (starting in 1996). Even very recent cards fail in a wide variety of ways, and there is no guarantee that if your array fails using a controller that you buy now that you'll be able to connect it to a controller that you buy later. At this point, I deploy almost exclusively systems running Linux with KVM on top of software RAID. While I lose the battery backed write cache (which is great for performance unless you sustain enough writes to fill it completely, at which point the system grinds nearly to a halt), I gain a consistent set of management tools and the ability to move a disk array to any hardware that accepts the same form factor disk. The reliability of my systems has improved significantly since I moved to software RAID. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Apache attacks - you can't stop them, or can you?
On 03/06/2013 05:25 AM, Lorenzo Quatrini wrote: > The "downside" of using fail2ban is that you will start receiving email about > banned hosts; but that is configurable, as is the number of failed attempts > before being banned. The other down side is that if you set up a new virtual host and don't put a favicon.ico file in its root, you'll ban every visitor with the configuration that you shared. You'll also ban everyone that tries to visit a section of any site that's protected with HTTP authentication, regardless of whether or not they are a legitimate user. 404s are not uncommon, and should not be used as the sole basis for blocking. Rule processing can become very CPU intensive if the list becomes long. Using fail2ban for HTTP will work on relatively unknown servers, but once a server has been running long enough to be frequently scanned, you probably will find that your kernel spends a lot of time checking the firewall for every new TCP connection. The best way to defend an HTTP server is to serve only static content. If you have non-static content, protect it with HTTP AUTH. If you have non-static content that must be publicly accessible, keep it up to date and consider the use of an external IDS like Snort. It's $500/year for the intrusion definitions IIRC, and well worth that. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 03/04/2013 07:53 PM, Chris Weisiger wrote: > > Currently I configured the complete individual drivers as software > raid, then created a /dev/md0 with the drives If you configure an entire drive as a raid device, you'd have a device name like /dev/mdp0, which you'd then partition. I think what you've done is created only one partition per disk, and made those partitions into a RAID set. That's not wrong, but it's not the same thing. Non-partitionable RAID sets such as the one you've created are the most common configuration for software RAID. Hardware RAID volumes are almost always the partionable type. > Is the the proper way to configure software raid? "Proper" is relative to its fitness for a specific purpose. As you haven't indicated a specific purpose, "proper" doesn't have any real meaning. The array you've created will work, and it will protect your data from loss due to the failure of a single disk. You need to make sure your "root" mail is delivered to someone who will read it in a timely manner, or else that protection is not useful. The array's performance will be relatively lower than a single-drive configuration or a RAID10 configuration, but that may be acceptable for bulk storage. The array will not protect you from filesystem corruption or from accidental deletion. Subject to those and other limitations, your array seems more or less proper. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 03/05/2013 05:58 AM, SilverTip257 wrote: > > Veering slightly from your original question... > I recently set up softraid arrays by hand before invoking the Anaconda > installer (on a 6.3 install). Recent mdadm packages that ship with CentOS > support metadata 1.1 and 1.2 (... actually defaulting to 1.2 I believe), > but GRUB 0.97 only supports metadata 1.0 and not the metadata version that > mdadm defaulted to. On my CentOS 5 installs in the past I've specifically > set --metadata=0.90 to avert any catastrophes like this. As far as I know, GRUB 0.97 only supports metadata 0.90, as does LILO. Anaconda will create arrays with 0.90 metadata for this reason. The kernel wiki disagrees with me: https://raid.wiki.kernel.org/index.php/RAID_superblock_formats Debian's documentation indicates that only grub 1.98+20100720-1 or later will boot from a RAID volume with a newer metadata format: http://www.debian.org/releases/stable/i386/release-notes/ch-information.en.html#mdadm-metadata ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 2013-03-06, Arun Khan wrote: > > I am looking for a hardware raid card that supports up to 4 SATA II > hard disks with hot swap (compatible raid cage) > > I have short listed two LSI/3Ware cards: > 1. 9750-4i > 2. 9650SE-4LPML > > I would appreciate your personal experience with the CLI tools > provided by LSI. > Can they be configured to send email for disk failures or SMART errors? Yes, with the 3dm2 monitor. There was a bug (which may still exist) where using the hostname of the SMTP server did not work, so you should try the IP address if you try using a DNS name and it doesn't work. You may also want to adjust the EmailSeverity option in 3dm.conf; I use EmailSeverity 3 which sends me information messages like array verifications and BBU charging events in addition to disk failures and SMART errors. I believe the default setting only sends out errors. > Is there a Web interface for monitoring? 3dm2 can also provide a web server, though I've never used it. The command line tools (tw_cli) are okay, but they don't have a fabulous API. In particular the output is basically human readable text, which means you need to do your own text parsing if you want to use the output in automated tools like nagios. > Any preference between 1 and 2 above. I would have a slight preference for the 9750 series. You get a faster controller for a very similar price. The only other thing I would recommend is that you not rely on the reshape feature of these 3ware cards. My first test many years ago actually destroyed the array, and I aborted my second test last year because the reshape was probably going to take many weeks. (This was, IIRC, a reshape from 4 3TB disks to 5. Linux md can do this reshape in 1-2 days.) If you need to add space you should use tools like LVM instead. The other standard warnings about using these controllers apply (e.g., if using the write cache, have a BBU on the card and a UPS on the server; do regular verifies on your redundant arrays; RAID is not a backup system). --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Centos 6.3 - unsupported video hardware
I pulled one of my old OQO model 2 out of the junk bin and installed Centos 6.3 over Centos 5.3. The internal video does not work in graphics mode (text works fine), though a monitor attacked to the VGA port works fine. Although my intension is to use this as a portable test server, it would be nice if the video was available. How might I go about figuring out the Xorg magic to get it working? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 03/06/2013 08:00 AM, Mark Snyder wrote: > - Avoid software RAID5 or 6, only use it for RAID1 or 10. Software > RAID5 performance can be abysmal, because of the parity calculations > and the fact that each write to the array requires that all drives be > read and written. My understanding of Linux mdadm RAID5 is that a write will read the block being written and the parity block. The calculations can be done with only those blocks, and the two are written. That's one extra read per write plus parity calculations. I'm quite certain that I've seem some hardware RAID arrays that will read the entire stripe to do a write. RAID5 will always write more slowly than RAID1 or RAID10, but that can sometimes be acceptable if capacity is more important than performance. > Older hardware raid controllers can be pretty cheap > on eBay, I'm using an old 3Ware on my home CentOS server. If there's anything to avoid, it'd be old 3ware hardware. Those cards are often less reliable than the disks they're attached to, and that's saying something. > Avoid > hostraid adapters, these are just software raid in the controller > rather than the OS. All hardware raid is "just software raid in the controller rather than the OS". The advantages of hardware RAID are offloading parity calculations to dedicated hardware so that the CPU doesn't need to do it, and a battery backed write cache. The write cache is critical to safely writing a RAID array in the event of a power loss, and can greatly improve performance provided that you don't write enough data to fill the cache. The host CPU is very often faster with parity than the dedicated hardware, which is why Alan Cox has been quoted as saying that the best RAID controllers in the world are made by Intel and AMD. However, if you think you need the couple of percent of CPU cycles that would have been used by software RAID, you might prefer the hardware solution. > If you are using drives over 1TB, consider partitioning the drives > into smaller chunks, say around 500MB, and creating multiple arrays. > That way if you get a read error on one sector that causes one of the > raid partitions to be marked as bad, only that partition needs to be > rebuild rather than the whole drive. If you have a disk on which a bad sector is found, it's time to replace it no matter how your partitions are set up. Drives reserve a set of sectors for re-mapping sectors that are detected as bad. If your OS sees a bad sector, it's because that reserve has been exhausted. More sectors will continue to go bad, and you will lose data. Always replace a drive as soon as your OS sees bad sectors, or before based on SMART data. Partitioning into many smaller chunks is probably a waste of time. Like most of the other participants in this thread, I create software RAID sets of one or two partitions per disk and use LVM on top of that. Hopefully BTRFS will simplify this even further in the near future. :) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 03/06/2013 10:56 AM, Keith Keller wrote: > The other standard warnings about using these controllers apply (e.g., > if using the write cache, have a BBU on the card A 3ware card will not enable write caching unless a BBU is present. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On Wed, Mar 6, 2013 at 1:27 PM, Gordon Messmer wrote: >> > Hopefully BTRFS will simplify this even further in the near future. :) I wouldn't hold my breath. Someone on the backuppc list reported that it had a tiny limit on hardlinks which would make it seem to me like they don't quite understand how filesystems are supposed to work. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: > I pulled one of my old OQO model 2 out of the junk bin and installed > Centos 6.3 over Centos 5.3. > > The internal video does not work in graphics mode (text works fine), > though a monitor attacked to the VGA port works fine. Although my > intension is to use this as a portable test server, it would be nice if > the video was available. How might I go about figuring out the Xorg > magic to get it working? I would recommend that you start by disabling the old xorg.conf and see if it can dynamically generate a working configuration. sudo mv /etc/X11/xorg.conf /etc/X11/xorg.conf-disabled and then restart Craig ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 03/06/2013 11:49 AM, Les Mikesell wrote: > I wouldn't hold my breath. Someone on the backuppc list reported that > it had a tiny limit on hardlinks which would make it seem to me like > they don't quite understand how filesystems are supposed to work. The limitation was fixed in 3.7: https://bugzilla.kernel.org/show_bug.cgi?id=15762 I think the btfs developers understand quite well how filesystems are supposed to work. As best I understand it, the limitation was a result of back-references, which are an important feature to keep inodes from ending up as orphans. If you're going to have an on-line fsck, that matters. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On Wed, Mar 6, 2013 at 2:16 PM, Gordon Messmer wrote: > On 03/06/2013 11:49 AM, Les Mikesell wrote: >> I wouldn't hold my breath. Someone on the backuppc list reported that >> it had a tiny limit on hardlinks which would make it seem to me like >> they don't quite understand how filesystems are supposed to work. > > The limitation was fixed in 3.7: > https://bugzilla.kernel.org/show_bug.cgi?id=15762 > > I think the btfs developers understand quite well how filesystems are > supposed to work. As best I understand it, the limitation was a result > of back-references, which are an important feature to keep inodes from > ending up as orphans. If you're going to have an on-line fsck, that > matters. OK, but in my opinion it is worse if that was a design decision that is just now being changed. Bugs I can understand, but not choosing to design a new filesystem with unrealistic limitations. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
Am 06.03.2013 um 17:25 schrieb Les Mikesell : > On Wed, Mar 6, 2013 at 10:00 AM, Mark Snyder > wrote: >> >> I've used software raid quite a bit, and have developed a few rules of >> thumb, hope these help! > > Do you (or anyone...) have any rules of thumb regarding drives over > 2TB or using raid sets that were created on Centos5 under Centos6? I AFAIK you need to use a GPT for partitions with >2TB ... -- LF ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On 03/06/2013 02:51 PM, Craig White wrote: > On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: > >> I pulled one of my old OQO model 2 out of the junk bin and installed >> Centos 6.3 over Centos 5.3. >> >> The internal video does not work in graphics mode (text works fine), >> though a monitor attacked to the VGA port works fine. Although my >> intension is to use this as a portable test server, it would be nice if >> the video was available. How might I go about figuring out the Xorg >> magic to get it working? > > I would recommend that you start by disabling the old xorg.conf and see if it > can dynamically generate a working configuration. > > sudo mv /etc/X11/xorg.conf /etc/X11/xorg.conf-disabled > > and then restart There is no xorg.conf. This is a fresh install of Centos 6.3; I removed the old 5.3 partitions and did a total from scratch install. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] netcat or netcat6 for Centos 6.3
In my testing of HIP, there is reference to use 'nc6' for a simple TCP character echo server. No such animal in Centos, and after a bit of digging I find this refers to Netcat6 which seems to be a dead app? Is it available as an rpm somewhere for Centos? My searching is coming up empty. Or just about any service that I can start on one system and connect from another that would perform this simple echo test. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 2013-03-06, Gordon Messmer wrote: > On 03/06/2013 10:56 AM, Keith Keller wrote: >> The other standard warnings about using these controllers apply (e.g., >> if using the write cache, have a BBU on the card > > A 3ware card will not enable write caching unless a BBU is present. My man page for tw_cli implies that you can turn on write caching without a BBU: Please Note: 1) The default of the unit creation sets write cache to "on" for performance reasons. However, if there is no BBU available for the controller, a warning is sent to standard error. Perhaps newer controllers will refuse to enable the write cache anyway; the tw_cli man page is written not to be specific to a particular controller. Since we're already offtopic, I asked around about 3ware vs. MegaRAID. The ''consensus'' (1 < n < 5) was that MegaRAIDs had better performance but the CLI was daunting compared to the 3ware controllers. But if LSI starts phasing out the 3ware line perhaps it makes sense for people to start looking at MegaRAID controllers to be prepared for this possibility. (The minimal web searching I've done seems to support the dauntiness of the MegaRAID tools.) --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 3/6/2013 12:22 PM, Leon Fauster wrote: > AFAIK you need to use a GPT for partitions with >2TB ... you need GPT to partition devices larger than 2TB, regardless of the parittion size. me, I use parted # parted /dev/sdc "label gpt" # parted /dev/sdc -a none "mkpart primary 512s -1s" to make a single full disk partition that starts at sector 512, which is 256K bytes, which is usually a decent boundary for SSDs, large raids, and other such devices. -- john r pierce 37N 122W somewhere on the middle of the left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On Wed, Mar 6, 2013 at 2:31 PM, Robert Moskowitz wrote: > > On 03/06/2013 02:51 PM, Craig White wrote: >> On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: >> >>> I pulled one of my old OQO model 2 out of the junk bin and installed >>> Centos 6.3 over Centos 5.3. >>> >>> The internal video does not work in graphics mode (text works fine), >>> though a monitor attacked to the VGA port works fine. Although my >>> intension is to use this as a portable test server, it would be nice if >>> the video was available. How might I go about figuring out the Xorg >>> magic to get it working? When you say "internal video does not work", what do you mean? Is the laptop screen black, garbled, flickering, unresponsive? If black, did you try startx for the command line? Are there any errors (EE) or warnings (WW) in /var/log/Xorg.0.log? Anything in /var/log/messages or dmesg? What is the output of lspci | grep VGA? -- Dale Dellutri ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 03/06/2013 12:20 PM, Les Mikesell wrote: > OK, but in my opinion it is worse if that was a design decision that > is just now being changed. Bugs I can understand, but not choosing to > design a new filesystem with unrealistic limitations. It's not being changed, per se. A reasonable means of increasing the number of back-references has been implemented. (again, AFAICT) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On 03/06/2013 03:47 PM, Dale Dellutri wrote: > On Wed, Mar 6, 2013 at 2:31 PM, Robert Moskowitz wrote: >> On 03/06/2013 02:51 PM, Craig White wrote: >>> On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: >>> I pulled one of my old OQO model 2 out of the junk bin and installed Centos 6.3 over Centos 5.3. The internal video does not work in graphics mode (text works fine), though a monitor attacked to the VGA port works fine. Although my intension is to use this as a portable test server, it would be nice if the video was available. How might I go about figuring out the Xorg magic to get it working? > When you say "internal video does not work", what do you mean? > Is the laptop screen black, garbled, flickering, unresponsive? Scrolling flickering, blue and white image. > If black, did you try startx for the command line? Have not switched to init 3 to try. > Are there any errors (EE) or warnings (WW) in /var/log/Xorg.0.log? (EE) open /dev/fb0: No such device (WW) Falling back to old probe method for vesa (WW) Falling back to old probe method for fbdev (WW) CHROME(0): Manufacturer plainly copied main PCI IDs to subsystem/card IDs. (WW) CHROME(0): Unable to estimate virtual size (WW) CHROME(0): [XvMC] XvMC is not supported on this chipset (WW) Lid Switch: Don't know how to use device > Anything in /var/log/messages or dmesg? what would I search for? > > What is the output of lspci | grep VGA? 01:00.0 VGA compatible controller: VIA Technologies, Inc. CX700/VX700 [S3 UniChrome Pro] (rev 03) Hope this points somewhere. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 03/06/2013 12:28 PM, Keith Keller wrote: > Please Note: 1) The default of the unit creation sets write cache > to "on" for performance reasons. However, if there is no BBU > available for the controller, a warning is sent to standard error. It is a warning that there is no BBU, not a warning that you'll get unsafe write caching without one. To the best of my recollection, all controllers will turn off write caching if the battery fails and during the battery re-learn cycle. If there is no BBU present, caching will never be enabled. > Since we're already offtopic, I asked around about 3ware vs. MegaRAID. > The ''consensus'' (1 < n < 5) was that MegaRAIDs had better performance > but the CLI was daunting compared to the 3ware controllers. I don't know whether or not there's any noteworthy performance difference. MegaRAID cards have not been as prone to failure in my experience. The management software is definitely inferior. > But if LSI > starts phasing out the 3ware line perhaps it makes sense for people to > start looking at MegaRAID controllers to be prepared for this > possibility. (The minimal web searching I've done seems to support the > dauntiness of the MegaRAID tools.) Whether or not LSI continues to make 3ware cards, I continue to strongly recommend against their use. They suck. They have always sucked. If a customer wanted me to manage a system with a 3ware card in it, I'd decline because at some point I'm going to be paged during off hours to fix the damn thing. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On Wed, Mar 6, 2013 at 2:42 PM, John R Pierce wrote: >> AFAIK you need to use a GPT for partitions with >2TB ... > > you need GPT to partition devices larger than 2TB, regardless of the > parittion size. > > me, I use parted > > # parted /dev/sdc "label gpt" > # parted /dev/sdc -a none "mkpart primary 512s -1s" > > to make a single full disk partition that starts at sector 512, which is > 256K bytes, which is usually a decent boundary for SSDs, large raids, > and other such devices. Large drives often have 4k sectors - don't you want a 1M offset to make sure the partition start is aligned? Gparted seems to do that by default. Also, is it possible to make the raid auto-assemble at boot like smaller ones do?I had to put an ARRAY entry into /etc/mdadm.conf with the devices but I think someone advised doing "set raid on" in parted. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On Wed, Mar 6, 2013 at 3:03 PM, Robert Moskowitz wrote: > > On 03/06/2013 03:47 PM, Dale Dellutri wrote: >> >> On Wed, Mar 6, 2013 at 2:31 PM, Robert Moskowitz >> wrote: >>> >>> On 03/06/2013 02:51 PM, Craig White wrote: On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: > I pulled one of my old OQO model 2 out of the junk bin and installed > Centos 6.3 over Centos 5.3. > > The internal video does not work in graphics mode (text works fine), > though a monitor attacked to the VGA port works fine. Although my > intension is to use this as a portable test server, it would be nice if > the video was available. How might I go about figuring out the Xorg > magic to get it working? >> >> When you say "internal video does not work", what do you mean? >> Is the laptop screen black, garbled, flickering, unresponsive? > > > Scrolling flickering, blue and white image. > > >> If black, did you try startx for the command line? > > > Have not switched to init 3 to try. > > >> Are there any errors (EE) or warnings (WW) in /var/log/Xorg.0.log? > > > (EE) open /dev/fb0: No such device > > (WW) Falling back to old probe method for vesa > (WW) Falling back to old probe method for fbdev > (WW) CHROME(0): Manufacturer plainly copied main PCI IDs to subsystem/card > IDs. > (WW) CHROME(0): Unable to estimate virtual size > (WW) CHROME(0): [XvMC] XvMC is not supported on this chipset > (WW) Lid Switch: Don't know how to use device > > >> Anything in /var/log/messages or dmesg? > > > what would I search for? Error messages pertaining to the video controller. > > >> >> What is the output of lspci | grep VGA? > > 01:00.0 VGA compatible controller: VIA Technologies, Inc. CX700/VX700 [S3 > UniChrome Pro] (rev 03) Use the info in this line (VIA CX700 VX700 or UniChrome Pro) to do a google search. Add linux to the search terms to see what driver you need. > > Hope this points somewhere. > > -- Dale Dellutri ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 3/6/2013 1:05 PM, Gordon Messmer wrote: > I don't know whether or not there's any noteworthy performance > difference. MegaRAID cards have not been as prone to failure in my > experience. The management software is definitely inferior. megacli doth sucketh mightily, but its a little less annoying when you realize that A) the -'s are all optional (so don't use them) and B) the commands are case independent and I find them considerably less annoying to type as all lower case. so.. this |megacli cfgldadd r6[||20||:||0||,||20||:||1||,||20||:||2||,||20||:||3||,||20||:||4||,||20||:||5||,||20||:||6||,||20||:||7||,||20||:||8||,||20||:||9||,||20||:||10||] a0| |m||egacli pdhsp set physdrv[||20||:||11||,20:12||] a0 instead of... | |MegaCli64 -CfgLdAdd -r6||[||20||:||0||,||20||:||1||,||20||:||2||,||20||:||3||,||20||:||4||,||20||:||5||,||20||:||6||,||20||:||7||,||20||:||8||,||20||:||9||,||20||:||10||] -a0| ||MegaCli64 -P|dHsp -Set -PhysDrv[||20||:||11||,||20:12] -a0| (where megacli is a symlink to /path/to/MegaCli64 ...) also I found a python script online called megaclisas-status and modified it to better suit my needs, this gives a MUCH nicer output for drive status than the native commands... # lsi-raidinfo -- Controllers -- -- ID | Model c0 | LSI MegaRAID SAS 9261-8i -- Volumes -- -- ID | Type | Size | Status | InProgress volume c0u0 | RAID1 1x2 | 2727G | Optimal | None volume c0u1 | RAID6 1x8 | 16370G | Optimal | None volume c0u2 | RAID6 1x8 | 16370G | Optimal | None -- Disks -- -- Encl:Slot | vol-span-unit | Model | Status disk 8:0 | 0-0-0 | Z291VTS5ST33000650NS 0003 | Online, Spun Up disk 8:1 | 0-0-1 | Z291VTRPST33000650NS 0003 | Online, Spun Up disk 8:2 | 1-0-0 | Z291VTKWST33000650NS 0003 | Online, Spun Up disk 8:3 | 1-0-1 | Z291VT9YST33000650NS 0003 | Online, Spun Up disk 8:4 | 1-0-2 | Z291VTT6ST33000650NS 0003 | Online, Spun Up disk 8:5 | 1-0-3 | Z291VT6CST33000650NS 0003 | Online, Spun Up disk 8:6 | 1-0-4 | Z291VTLAST33000650NS 0003 | Online, Spun Up disk 8:7 | 1-0-5 | Z291VTK1ST33000650NS 0003 | Online, Spun Up disk 8:8 | 1-0-6 | Z291VTNGST33000650NS 0003 | Online, Spun Up disk 8:9 | 1-0-7 | Z291VTRAST33000650NS 0003 | Online, Spun Up disk 8:10 | 2-0-0 | Z291VV05ST33000650NS 0003 | Online, Spun Up disk 8:11 | 2-0-1 | Z291VTW1ST33000650NS 0003 | Online, Spun Up disk 8:12 | 2-0-2 | Z291VTRLST33000650NS 0003 | Online, Spun Up disk 8:13 | 2-0-3 | Z291VTRXST33000650NS 0003 | Online, Spun Up disk 8:14 | 2-0-4 | Z291VSZGST33000650NS 0003 | Online, Spun Up disk 8:15 | 2-0-5 | Z291VSW1ST33000650NS 0003 | Online, Spun Up disk 8:16 | 2-0-6 | Z291VTB5ST33000650NS 0003 | Online, Spun Up disk 8:17 | 2-0-7 | Z291VSX8ST33000650NS 0003 | Online, Spun Up disk 8:18 | x-x-x | Z291VTS7ST33000650NS 0003 | Hotspare, Spun down disk 8:19 | x-x-x | Z291VT3HST33000650NS 0003 | Hotspare, Spun down along with another script that runs this and emails alerts if there's any bad drive or volume status. -- john r pierce 37N 122W somewhere on the middle of the left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On 3/6/2013 1:12 PM, Les Mikesell wrote: > Large drives often have 4k sectors - don't you want a 1M offset to > make sure the partition start is aligned? 256K is a multiple of 4K. sure, you could use 2048s instead if you wanted 1M boundaries, its all good. -- john r pierce 37N 122W somewhere on the middle of the left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 3/6/2013 1:40 PM, John R Pierce wrote: > |megacli cfgldadd > r6[||20||:||0||,||20||:||1||,||20||:||2||,||20||:||3||,||20||:||4||,||20||:||5||,||20||:||6||,||20||:||7||,||20||:||8||,||20||:||9||,||20||:||10||] > a0| > |m||egacli pdhsp set physdrv[||20||:||11||,20:12||] a0 yow, wtf happend to THAT formatting?!? I wrote so.. this megacli cfgldadd r6[20:0,20:1,20:2,20:3,20:4,20:5,20:6,20:7,20:8,20:9,20:10] a0 megacli pdhsp set physdrv[20:11,20:12] a0 instead of... MegaCli64 -CfgLdAdd -r6[20:0,20:1,20:2,20:3,20:4,20:5,20:6,20:7,20:8,20:9,20:10] -a0 MegaCli64 -PdHsp -Set -PhysDrv[20:11,20:12] -a0 . -- john r pierce 37N 122W somewhere on the middle of the left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6.3 - unsupported video hardware
On 03/06/2013 04:18 PM, Dale Dellutri wrote: > On Wed, Mar 6, 2013 at 3:03 PM, Robert Moskowitz wrote: >> On 03/06/2013 03:47 PM, Dale Dellutri wrote: >>> On Wed, Mar 6, 2013 at 2:31 PM, Robert Moskowitz >>> wrote: On 03/06/2013 02:51 PM, Craig White wrote: > On Mar 6, 2013, at 12:24 PM, Robert Moskowitz wrote: > >> I pulled one of my old OQO model 2 out of the junk bin and installed >> Centos 6.3 over Centos 5.3. >> >> The internal video does not work in graphics mode (text works fine), >> though a monitor attacked to the VGA port works fine. Although my >> intension is to use this as a portable test server, it would be nice if >> the video was available. How might I go about figuring out the Xorg >> magic to get it working? >>> When you say "internal video does not work", what do you mean? >>> Is the laptop screen black, garbled, flickering, unresponsive? >> >> Scrolling flickering, blue and white image. >> >> >>> If black, did you try startx for the command line? >> >> Have not switched to init 3 to try. >> >> >>> Are there any errors (EE) or warnings (WW) in /var/log/Xorg.0.log? >> >> (EE) open /dev/fb0: No such device >> >> (WW) Falling back to old probe method for vesa >> (WW) Falling back to old probe method for fbdev >> (WW) CHROME(0): Manufacturer plainly copied main PCI IDs to subsystem/card >> IDs. >> (WW) CHROME(0): Unable to estimate virtual size >> (WW) CHROME(0): [XvMC] XvMC is not supported on this chipset >> (WW) Lid Switch: Don't know how to use device >> >> >>> Anything in /var/log/messages or dmesg? >> >> what would I search for? > Error messages pertaining to the video controller. > >> >>> What is the output of lspci | grep VGA? >> 01:00.0 VGA compatible controller: VIA Technologies, Inc. CX700/VX700 [S3 >> UniChrome Pro] (rev 03) > Use the info in this line (VIA CX700 VX700 or UniChrome Pro) to do a > google search. Add linux to the search terms to see what driver you need. I had another oqo2 in the dustbin with C5.3 on it. I powered it up and it came up in init 3 mode. When I did startx the external monitor came up nicely, but the system's screen was white. Then I remembered (they have been in the dustbin for a few years). I never got the video working back on C5.3. In fact I had to play around with xorg.conf to get better than 800x640 for the external monitor, so C6.3 is an improvement. So no driver that I can find. Oh well. They will just be little servers for testing. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 2013-03-06, Gordon Messmer wrote: > On 03/06/2013 12:28 PM, Keith Keller wrote: >> Please Note: 1) The default of the unit creation sets write cache >> to "on" for performance reasons. However, if there is no BBU >> available for the controller, a warning is sent to standard error. > > It is a warning that there is no BBU, not a warning that you'll get > unsafe write caching without one. > > To the best of my recollection, all controllers will turn off write > caching if the battery fails and during the battery re-learn cycle. If > there is no BBU present, caching will never be enabled. Unfortunately, I don't have an available machine on which to test. But at one point I believe that I did have a 9550-backed controller with no BBU which would allow me to turn on write caching for a redundant array. I know that this same machine does say that the write cache is "on" for the JBOD units it currently hosts. (It's a tertiary backup on a data center power grid, so the likelihood of sudden power loss is low, and if the filesystem is lost I wouldn't be all that upset.) >> But if LSI >> starts phasing out the 3ware line perhaps it makes sense for people to >> start looking at MegaRAID controllers to be prepared for this >> possibility. (The minimal web searching I've done seems to support the >> dauntiness of the MegaRAID tools.) > > Whether or not LSI continues to make 3ware cards, I continue to strongly > recommend against their use. They suck. They have always sucked. If a > customer wanted me to manage a system with a 3ware card in it, I'd > decline because at some point I'm going to be paged during off hours to > fix the damn thing. This is surprising to me. I've had one 3ware controller fail in 10 years. Two caveats to this note are that the failure ended up destroying the filesystem, and I'm not happy with another 3ware controller I have (the aforementioned 9550, which is very old). To throw Yet Another Monkey Wrench into the discussion, I know that some of the CentOS folks swear by Areca controllers. So YMMV in any case. --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] maintaining patches across releases
Hi all, I have what might be a foolish question about patching packages. I am not sure exactly how to phrase the question, so please follow up if it seems as though I'm not being clear. I was looking at this bug which my machines are currently experiencing: https://bugzilla.redhat.com/show_bug.cgi?id=883905 The proposed patch is literally one new line in the XFS codebase. So since the patch is so straightforward, I had a crazy idea that I would build my own kernel with this patch, and test it out to see if it worked. (It's been many years since I built my own kernel, so that would be an adventure in and of itself.) My worry would be, I would want to make sure that I propagated this patch every time I updated the kernel package. Is this something others do regularly? If so, is there a standard way of managing the process of applying one's own patches to a series of source packages, and being able to re-patch and rebuild updated packages? I'm guessing that I just need to build xfs.ko. Are there any gotchas beyond the wiki entry on building your own kernel modules? That page seems to target CentOS 5, not 6, but I imagine the process is quite similar. --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Software RAID complete drives or individual partitions
On Wed, Mar 6, 2013 at 2:12 PM, Gordon Messmer wrote: > On 03/05/2013 05:58 AM, SilverTip257 wrote: > > > > Veering slightly from your original question... > > I recently set up softraid arrays by hand before invoking the Anaconda > > installer (on a 6.3 install). Recent mdadm packages that ship with > CentOS > > support metadata 1.1 and 1.2 (... actually defaulting to 1.2 I believe), > > but GRUB 0.97 only supports metadata 1.0 and not the metadata version > that > > mdadm defaulted to. On my CentOS 5 installs in the past I've > specifically > > set --metadata=0.90 to avert any catastrophes like this. > > As far as I know, GRUB 0.97 only supports metadata 0.90, as does LILO. > Anaconda will create arrays with 0.90 metadata for this reason. > I can tell you from my recent experience that whatever concoction of GRUB 0.97 (shipped with CentOS 6.3) supports booting off of metadata 1.0 I often encounter metadata 0.90 ... on many [all?] of the aging CentOS 5 installs I see. > > The kernel wiki disagrees with me: > https://raid.wiki.kernel.org/index.php/RAID_superblock_formats > > Debian's documentation indicates that only grub 1.98+20100720-1 or later > will boot from a RAID volume with a newer metadata format: > Grub 1.99 or thereabouts is pretty awesome. Grub2 (as Debian packages it) supports booting off LVM which is slick. Not overly useful, but convenient if you would rather /boot be part of the rootfs ... especially with kernels getting larger. A /boot partition that could be 100MB with CentOS 5 now needs to be around 512MB with CentOS 6 (found this out the hard way with a development system). Disk space is cheap ... but I still don't want to waste space! :) > > http://www.debian.org/releases/stable/i386/release-notes/ch-information.en.html#mdadm-metadata > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > -- ---~~.~~--- Mike // SilverTip257 // ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] maintaining patches across releases
On Wed, Mar 6, 2013 at 3:22 PM, Keith Keller wrote: > Hi all, > > I have what might be a foolish question about patching packages. I am > not sure exactly how to phrase the question, so please follow up if it > seems as though I'm not being clear. > > I was looking at this bug which my machines are currently experiencing: > > https://bugzilla.redhat.com/show_bug.cgi?id=883905 > > The proposed patch is literally one new line in the XFS codebase. So > since the patch is so straightforward, I had a crazy idea that I would > build my own kernel with this patch, and test it out to see if it > worked. (It's been many years since I built my own kernel, so that > would be an adventure in and of itself.) You may want to check this out: http://bugs.centos.org/view.php?id=6087 My understanding is that "There is no side effect other than the load. There are not performance issues with the ailds behaving like this." Is this not the case ? > My worry would be, I would want to make sure that I propagated this > patch every time I updated the kernel package. Is this something > others do regularly? If so, is there a standard way of managing > the process of applying one's own patches to a series of source > packages, and being able to re-patch and rebuild updated packages? > > I'm guessing that I just need to build xfs.ko. Are there any gotchas > beyond the wiki entry on building your own kernel modules? That page > seems to target CentOS 5, not 6, but I imagine the process is quite > similar. > > --keith The wiki article: http://wiki.centos.org/HowTos/BuildingKernelModules may not be quite up-to-date in that it does not reflect the kernel version for CentOS 6 (2.6.32). But the principle is there. For building your own modules, you can also download one of the kmod packages from ELRepo and study how it's done. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] maintaining patches across releases
On 2013-03-07, Akemi Yagi wrote: > > You may want to check this out: > > http://bugs.centos.org/view.php?id=6087 > > My understanding is that "There is no side effect other than the load. > There are not performance issues with the ailds behaving like this." > Is this not the case ? As far as I can tell, it is. I actually prompted Dave's quoted comment on the XFS list: http://oss.sgi.com/archives/xfs/2012-11/msg00594.html So this would be a low priority task for me (as well as a learning exercise). If the patch were two lines I probably wouldn't bother. ;-) It is 99.5% cosmetic, but I have noticed that the ''baseline'' load, when there is no I/O, varies between 3 and 4, which makes it very slightly more difficult to interpret the load. That is my main motivation for bothering--if the baseline were more stable I probably wouldn't bother. (With fewer XFS filesystems mounted the issue is even less obvious.) > The wiki article: > > http://wiki.centos.org/HowTos/BuildingKernelModules > > may not be quite up-to-date in that it does not reflect the kernel > version for CentOS 6 (2.6.32). But the principle is there. For > building your own modules, you can also download one of the kmod > packages from ELRepo and study how it's done. Perfect, thank you! If people are interested, and I do make the attempt, I will post my results. --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] maintaining patches across releases
On Wed, Mar 6, 2013 at 4:25 PM, Keith Keller wrote: > On 2013-03-07, Akemi Yagi wrote: >> >> You may want to check this out: >> >> http://bugs.centos.org/view.php?id=6087 >> >> My understanding is that "There is no side effect other than the load. >> There are not performance issues with the ailds behaving like this." >> Is this not the case ? > > As far as I can tell, it is. I actually prompted Dave's quoted comment > on the XFS list: > > http://oss.sgi.com/archives/xfs/2012-11/msg00594.html > > So this would be a low priority task for me (as well as a learning > exercise). If the patch were two lines I probably wouldn't bother. ;-) > It is 99.5% cosmetic, but I have noticed that the ''baseline'' load, > when there is no I/O, varies between 3 and 4, which makes it very > slightly more difficult to interpret the load. That is my main > motivation for bothering--if the baseline were more stable I probably > wouldn't bother. (With fewer XFS filesystems mounted the issue is > even less obvious.) I thought about applying the patch to the centosplus kernel but decided not to bother because it looked like a "non-issue". But it you think it's worth the fix, that can be done. It will be even better if you supply the actual patch for the CentOS kernel. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] maintaining patches across releases
On 2013-03-07, Akemi Yagi wrote: > > I thought about applying the patch to the centosplus kernel but > decided not to bother because it looked like a "non-issue". But it you > think it's worth the fix, that can be done. It will be even better if > you supply the actual patch for the CentOS kernel. Honestly I do not think it's worth the fix for the centosplus kernel. But perhaps others disagree with me; if so, is the proposed patch by RedHat usable? https://bugzilla.redhat.com/attachment.cgi?id=674895 If it's not, let me know, and I will try to generate the correct one. --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT/HW] hardware raid -- comment/experience with 3Ware
On 2013-03-06, Keith Keller wrote: > > This is surprising to me. I've had one 3ware controller fail in 10 years. I realized that this is untrue. I have had three 3ware controllers fail on me in 10 years, out of about 25. That's actually a pretty poor failure rate. Two of those failures were not fatal--they would crash the disk subsystem (and for the one which hosted the / filesystem, cause a kernel panic), but not destroy the filesystems. One of those two, and the other which did trash the filesystems, were out of warranty at the time of failure. (But I have even older 3ware controllers which are still perfectly fine.) --keith -- kkel...@wombat.san-francisco.ca.us ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
