Re: [CentOS] centos.firehosted.com / tagged as malicious
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 09/02/16 18:18, Corey Erickson wrote: > This repository has begun triggering alerts in my enterprises > trend micro solution this morning. > > > centos.firehosted.com/7.2.1511/updates/x86_64/repodata/repomd.xml > > Any tips on ensuring this repository is never queried by my systems > ? > > It seems to keep getting picked up on freshly deployed vagrants > for development at this time. > > Thanks, Corey Erickson That mirror is one of the external mirrors that is listed on http://mirror-status.centos.org/ So my first question would be : why does TrendMicro suspect it's a malicious site ? If the host is compromised, that's worth mentioning the mirror admin (I'll send him an email with the contact email address he provided us when registering that mirror) Can you give us details about the reason why TrendMicro thinks that node is "malicious" ? I'll start a dedicated thread on the centos-mirror list if needed (https://lists.centos.org/mailman/listinfo/centos-mirror) Thanks, - -- Fabian Arrotin The CentOS Project | http://www.centos.org gpg key: 56BEC54E | twitter: @arrfab -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAla8VhsACgkQnVkHo1a+xU67WwCfXpgC6yznSXbfWltAQoQdGRfI dr0AnjrEGNtTQbiM6QTNe3BBl7/GJfPT =7S/M -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS-announce Digest, Vol 132, Issue 4
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ...@centos.org
You can reach the person managing the list at
centos-announce-ow...@centos.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of CentOS-announce digest..."
Today's Topics:
1. CEBA-2016:0134 CentOS 6 firefox BugFix Update (Johnny Hughes)
2. CEBA-2016:0140 CentOS 6 httpd BugFix Update (Johnny Hughes)
3. CEBA-2016:0136 CentOS 6 httpd BugFix Update (Johnny Hughes)
4. CEBA-2016:0135 CentOS 6 initscripts BugFix Update (Johnny Hughes)
5. CEBA-2016:0150 CentOS 6 kernel BugFix Update (Johnny Hughes)
6. CESA-2016:0152 Moderate CentOS 6 sos Security Update
(Johnny Hughes)
--
Message: 1
Date: Tue, 9 Feb 2016 18:01:53 +
From: Johnny Hughes
To: centos-annou...@centos.org
Subject: [CentOS-announce] CEBA-2016:0134 CentOS 6 firefox BugFix
Update
Message-ID: <20160209180153.ga47...@n04.lon1.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Bugfix Advisory 2016:0134
Upstream details at : https://rhn.redhat.com/errata/RHBA-2016-0134.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
732d70ca9a967fcd57ca72070966871c2962d75daf354e353ec62f277ba5e801
firefox-38.6.0-2.el6.centos.i686.rpm
x86_64:
732d70ca9a967fcd57ca72070966871c2962d75daf354e353ec62f277ba5e801
firefox-38.6.0-2.el6.centos.i686.rpm
970b53958a88395b0cdf9564fddcc953669449cfac05cb377b8208718977a78a
firefox-38.6.0-2.el6.centos.x86_64.rpm
Source:
a26f1e526805cef57139007e5fee42e8e0fa1b1aad682337a0a9c56949923598
firefox-38.6.0-2.el6.centos.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #cen...@irc.freenode.net
Twitter: @JohnnyCentOS
--
Message: 2
Date: Tue, 9 Feb 2016 18:02:24 +
From: Johnny Hughes
To: centos-annou...@centos.org
Subject: [CentOS-announce] CEBA-2016:0140 CentOS 6 httpd BugFix
Update
Message-ID: <20160209180224.ga47...@n04.lon1.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Bugfix Advisory 2016:0140
Upstream details at : https://rhn.redhat.com/errata/RHBA-2016-0140.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
5f1add7f698255f1219f6048fc929925711076c79400af243b8543ed572828cf
httpd-2.2.15-47.el6.centos.2.i686.rpm
42b422488545690e24b1e35a091ac4a61f73be25babb35a8eed66fbbad22e3b0
httpd-devel-2.2.15-47.el6.centos.2.i686.rpm
eca70b9bc3314c7f1b32be6779a4f13d6c8c3aee23eb9d24d9716b4736dd599f
httpd-manual-2.2.15-47.el6.centos.2.noarch.rpm
35e16836eed1f15dc9edaa3bc831b78b3bdfbaf8c3a75cef83454db5eefa38b3
httpd-tools-2.2.15-47.el6.centos.2.i686.rpm
3acf2b5d65e7bee28ffac1c225f88695dedb083ce63d3fa1d41a77fa66e373b1
mod_ssl-2.2.15-47.el6.centos.2.i686.rpm
x86_64:
7d2ffb2a1f1c1a48c3a9c43db10542e6345fa8cc2821f9ca075d72fc6226b0c2
httpd-2.2.15-47.el6.centos.2.x86_64.rpm
42b422488545690e24b1e35a091ac4a61f73be25babb35a8eed66fbbad22e3b0
httpd-devel-2.2.15-47.el6.centos.2.i686.rpm
f279fa5f74d6fee985fd7589bc40984dba1127af4e13fd1137a7458e70d010eb
httpd-devel-2.2.15-47.el6.centos.2.x86_64.rpm
eca70b9bc3314c7f1b32be6779a4f13d6c8c3aee23eb9d24d9716b4736dd599f
httpd-manual-2.2.15-47.el6.centos.2.noarch.rpm
d9e24bf3eb5bdb4d692c8fe1707250c4efd485051a7103ec960b07b2e2f06501
httpd-tools-2.2.15-47.el6.centos.2.x86_64.rpm
c3e793ddcb4f9bb9ad89b1f4d9bd182b2dfd98b2bedad6c4ce25c8feeca6f7a1
mod_ssl-2.2.15-47.el6.centos.2.x86_64.rpm
Source:
eff61018e9d2efbd5699d64825d4ebb8fe2e492f70dde1ea08a0416a82af629d
httpd-2.2.15-47.el6.centos.2.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #cen...@irc.freenode.net
Twitter: @JohnnyCentOS
--
Message: 3
Date: Tue, 9 Feb 2016 18:02:55 +
From: Johnny Hughes
To: centos-annou...@centos.org
Subject: [CentOS-announce] CEBA-2016:0136 CentOS 6 httpd BugFix
Update
Message-ID: <20160209180255.ga48...@n04.lon1.karan.org>
Content-Type: text/plain; charset=us-ascii
CentOS Errata and Bugfix Advisory 2016:0136
Upstream details at : https://rhn.redhat.com/errata/RHBA-2016-0136.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
4eaf1cbed674c7a1da99f48f306beccc18805873a1ec19ca9d3ac4033e7a7054
httpd-2.2.15-47.el6.centos.3.i686.rpm
f2870eda1af2066dccd1c885b634c165ca57fe05d839bb916c2747df0ee4c3c4
httpd-devel-2.2.15-47.el6.centos.3.i686.rpm
9c812ec8277965da7fd803631accfb765f337797ab3ffab117fa162e8db6eb61
httpd-manual-2.2.
Re: [CentOS] safest way to mount iscsi loopback..
nobody does use iscsi loopback over an lvm? On 05/02/16 17:36, lejeczek wrote: .. what is? fellow centosians. how to you mount your loopback targets? I'm trying lvm backstore, I was hoping I would do it with uuid, but it's exposed more than once and how would kernel decide which device to use I don't know. thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 7 workstation, mutter CRITICAL...
A fully updated, just built last month, CentOS 7 workstation. The system has 16G of ram, and the real work is done on servers. I'm seeing a ton of complaints in the logs. Feb 10 18:06:00 gnome-session: (gnome-shell:3248): mutter-CRITICAL **: meta_window_raise: assertion '!window->override_redirect' failed I found a bug report from last summer, but as I said, all updates are done. Also, is there a bug in the firefox package? Feb 10 17:07:51 : IcedTea-Web java error manual log: Feb 10 17:07:51 : Application title was not found in manifest. Check with application vendor mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OpenSwan Drop Out Issue
On 02/10/2016 10:10 PM, John Cenile wrote: I do notice a lot of these errors in the secure log though, would this be any indication of a problem? (I'm grepping for this specific error, they're not the only messages in there). Feb 11 14:18:10 site-a pluto[10450]: "site-b/1x1" #803: ignoring Delete SA payload: PROTO_IPSEC_ESP SA(0x01f90e1d) not found (maybe expired) I think they indicate that both sides are restarting the tunnel, and that site-b is sending a "delete" command as it restarts the tunnel, while site-a has already removed the tunnel. But that doesn't tell us anything about why they're doing that. Control debugging from both sides *should* make that clear, but you'll have to either make sense of the complete logs or share them. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] heads up: /boot space on kernel upgrade
I have a CentOS 6 machine that was initially installed as CentOS 6.4 in May of 2013. It's /boot filesystem is 200M which, IIRC, was the default /boot size at the time. The most recent kernel update (2.6.32-573.18.1.el6) fails because of lack of space in /boot. The workaround is edit /etc/yum.conf, reduce installonly_limit from 5 to something lower (I used 3), remove the oldest kernel via 'rpm -e', and then re-apply the update. In this case, it was necessary to use the 'yum update' command line vs the Update Applet due to an incomplete transaction from the failed update. Devin ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] rpm containing gmessage???
Maybe I haven't run the correct yum commands or looked in the right repo, but I haven't found a utility called 'gmessage'. Anyone know where to find it? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] heads up: /boot space on kernel upgrade
Devin Reade wrote: > I have a CentOS 6 machine that was initially installed as CentOS 6.4 > in May of 2013. It's /boot filesystem is 200M which, IIRC, was the > default /boot size at the time. > > The most recent kernel update (2.6.32-573.18.1.el6) fails because of > lack of space in /boot. The workaround is edit /etc/yum.conf, reduce > installonly_limit from 5 to something lower (I used 3), remove the > oldest kernel via 'rpm -e', and then re-apply the update. In this case, > it was necessary to use the 'yum update' command line vs the Update Applet > due to an incomplete transaction from the failed update. > Right. Around that time, fedora wanted a gig, and so, seeing the future, we've been assigning a gig to /boot for a few years now. I would *strongly* recommend that for new or rebuilt systems. On the other hand, don't really see the need to save five previous kernels. mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm containing gmessage???
On Thu, 11 Feb 2016 13:42:39 -0500 ken wrote: > Maybe I haven't run the correct yum commands or looked in the right > repo, but I haven't found a utility called 'gmessage'. Anyone know > where to find it? gmessage has been more-or-less superseded by zenity. -- MELVILLE THEATRE ~ Real D 3D Digital Cinema ~ www.melvilletheatre.com ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] heads up: /boot space on kernel upgrade
Default boot volume on Fedora is 500M, with a kernel installonly_limit of 3. So far this seems sufficient, even accounting for the "rescue kernel" (which is really a nohostonly initramfs, which is quite a bit larger than the standard hostonly initramfs used for numbered kernels). ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] heads up: /boot space on kernel upgrade
Chris Murphy wrote: > Default boot volume on Fedora is 500M, with a kernel installonly_limit > of 3. So far this seems sufficient, even accounting for the "rescue > kernel" (which is really a nohostonly initramfs, which is quite a bit > larger than the standard hostonly initramfs used for numbered > kernels). IIRC, we saw discussions elsewhere, and ... I think it's called fedup (great name, great marketing!) that updated a full release, and it *really* needed > 500M, as it was dumping a *lot* in /boot. And, as they say, disk space is cheap, esp. when we buy multiterabyte disks, even for the root drive. (Ok, most of them are 1TB). mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] safest way to mount iscsi loopback..
On 2/11/2016 5:14 AM, lejeczek wrote: nobody does use iscsi loopback over an lvm? I'm not sure what 'iscsi loopback' even means.iSCSI is used to mount a virtual block device hosted on another system (initiator mode) or to share a virtual block device (target mode), while loopback is used to mount a local file as a device, such as an .iso image of an optical disc. can you explain in a little more detail what you're trying to do ? -- john r pierce, recycling bits in santa cruz ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] ananconda update.img creation fails: generated but with wrong python version in /usr/sbin/anaconda contained
Hi all, I've created an anaconda update.img file per instructions at https://fedoraproject.org/wiki/Anaconda/Updates for Centos 7.2. The problem is that the update.img file contains references to python3 (say, file /usr/sbin/anaconda), and so the all installation fails immediately. My question is: what are the steps to create an anaconda update image appropriate for a particular centos release? Thanks a lot. The steps I have performed (to create an update.img) are listed below: 1) find the version of ananconda that centos 7.2 installation media: 21.48.22.56-1. 2) follow the instructions at the above wiki page, and wiki https://fedoraproject.org/wiki/Anaconda. Run the following command (to generate update.img): 2.1 yum -y install git 2.2 git clone https://fedoraproject.org/wiki/Anaconda 2.3 cd anaconda 2.4 scripts/makeupdates -t anaconda-21.48.22.56-1 3) save the generated image to place under .../images directory. From what I see, all PXE clients did download the new update.img file and merge the changes contained. But because the updated anaconda pointed to python3 instead of python 2.7.5 (the version comes with installation media), the installation process failed immediately. Thanks. Best,David ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm containing gmessage???
On 02/11/2016 01:48 PM, Frank Cox wrote: On Thu, 11 Feb 2016 13:42:39 -0500 ken wrote: Maybe I haven't run the correct yum commands or looked in the right repo, but I haven't found a utility called 'gmessage'. Anyone know where to find it? gmessage has been more-or-less superseded by zenity. That's nutz. From docs I've seen, gmessage is way more flexible and featured. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm containing gmessage???
On Thu, 11 Feb 2016 18:55:16 -0500 ken wrote: > > gmessage has been more-or-less superseded by zenity. > > > > That's nutz. From docs I've seen, gmessage is way more flexible and > featured. It doesn't appear that way to me, but what do I know. I just use zenity for my own bash scripts and whatnot. Anyway, just for you I have just created a Centos 7 rpm of the latest GTK3 based version of that program and posted it on my website. http://www.melvilletheatre.com/articles/el7/index.html Enjoy. -- MELVILLE THEATRE ~ Real D 3D Digital Cinema ~ www.melvilletheatre.com ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] heads up: /boot space on kernel upgrade
Hello, I always used 500~512 with yum configured for clean kernels installation = 2. Best regards, El dia 11/02/2016 8:25 p. m., va escriure: > Chris Murphy wrote: > > Default boot volume on Fedora is 500M, with a kernel installonly_limit > > of 3. So far this seems sufficient, even accounting for the "rescue > > kernel" (which is really a nohostonly initramfs, which is quite a bit > > larger than the standard hostonly initramfs used for numbered > > kernels). > > IIRC, we saw discussions elsewhere, and ... I think it's called fedup > (great name, great marketing!) that updated a full release, and it > *really* needed > 500M, as it was dumping a *lot* in /boot. And, as they > say, disk space is cheap, esp. when we buy multiterabyte disks, even for > the root drive. (Ok, most of them are 1TB). > >mark > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
