Re: [CentOS] Please help me rate vnc, rdesktop, and freenx
On Thu, Dec 06, 2007, Brian Mathis wrote: >On Dec 6, 2007 5:05 PM, Robert Moskowitz <[EMAIL PROTECTED]> wrote: >> I have been dragging my feet on remote display, and have just gotten VNC >> going to have SOMETHING to move off the start line. But I need the >> 'best' for different situations, so I want to rate them. >> >> 1 to 3 where 1 is the 'best' for the catagory and 3 the loser. >> >> VNC RDESKTOP FREENX >> >> >> Server memory >> Server cpu >> client memory >> client cpu >> bandwidth >> >> thanks. I AM search the net for this information. So far have not >> found the magic query request :) >> > >There are numerous ways to remotely access a Linux machine, and >honestly the "remote desktop" style that Windows uses is the worst of >them. VNC, rdesktop, and freenx all replicate that method of access, >where you basically get a picture of what would be on the monitor if >you were sitting at it. > >As was already mentioned, ssh is really the main way for remote >access, but for people not familiar with Linux, there's no GUI and no >mouse beyond copy/paste, so you may look for another solution. > >The real *NIX way of accessing a graphical application remotely is by >using a remote X desktop. It sounds strange if you're not familiar >with it, but basically you run the 1 application on the remote server, >and the application window (and only the application window), shows up >on your local workstation. SSH provides a way to do this securely. >The drawback is you will need an X server running on your local >computer, but that can be had for free in Windows from cygwin. I don't Do Windows(tm) so rarely have to deal with them. When working with Linux and other *nix systems, it's always through ssh with X11 forwarding for those rare occassions when I need to do something like run Firefox from a client's machine to access a router from their private LAN. That can get a bit clunky on slow connections, but it does work. If I'm on a fast connection, I'll run the xterm on the remote system with ``ssh -f remotename xterm'', but if it's a slow connection ``xterm -e ssh remotename &'' to run the xterm on my local machine. Once I get around to upgrading my Macs to Leopard, I may use the Apple remote desktop feature occassionally when I need to see what a client is doing on their desktop which should be faster than trying to talk them through a GUI on the phone. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Capitalism works primarily because most of the ways that a company can be scum end up being extremely bad for business when there's working competition. -rra ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Please help me rate vnc, rdesktop, and freenx
On Thu, Dec 06, 2007, Scott Silva wrote: >on 12/6/2007 2:57 PM Les Bell spake the following: >>Scott Silva <[EMAIL PROTECTED]> wrote: >> >>Yeah... ssh into the server, vi whatever.conf re-[start|load] service, exit >>ssh. >>"the simple things are sometimes the best!" >><< >> >>Darn straight. And using ssh-agent (or Pageant with PuTTY on Windows) in >>conjunction with key forwarding, you can make it easy to script stuff that >>runs across multiple machines, thereby automating an entire server farm, if >>you want to. Unix admin maxim: if you have to do something more than once, >>write a script for it. See >>http://www.lesbell.com.au/Home.nsf/web/SSH+for+Server+Administration?OpenDocument >> >>We certainly don't want to revert to the "point-and-grunt" method of doing >>things found in the Windows world. I thought we'd put that behind us when >>we stopped living in the trees. >> >>[I considered a "wink" smiley here, but decided against it. ;) ]. >> >Speaking of windows (ducking), I see that server 2008 will have a >command-line only install mode. It looks like Microsoft finally realized >how much usable processor time is wasted refreshing GUI screens on servers >no one is even looking at. At one time I had a system monitor running on an NT machine which provide a pretty display of CPU usage over time, and noticed that an idle machine with nothing but a ``screen saver'' running seemed to have about 30% CPU utilization which dropped near zero as soon as some activity shut the screen saver down. Granted, this was probably 8 years ago and processors are faster, but it's still indicative of M$-Bloat. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The cry has been that when war is declared, all opposition should therefore be hushed. A sentiment more unworthy of a free country could hardly be propagated. If the doctrine be admitted, rulers have only to declare war and they are screened at once from scrutiny ... In war, then, as in peace, assert the freedom of speech and of the press. Cling to this as the bulwark of all our rights and privileges. -- William Ellery Channing ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] remote ssh to machine how display firefox
On Sat, Dec 08, 2007, Les Bell wrote: > >Les Mikesell <[EMAIL PROTECTED]> wrote: > >>> >What's a 'trusted' forwarding mean as opposed to any other kind? ><< > >A trusted X11 client will bypass the security controls specified in the X11 >Security Extension Specification (see >http://refspecs.freestandards.org/X11/security.pdf). In general, you don't >want to enable this unless you have to. Notice that "trusted forwarding" >trusts the users to all be good guys. > >(In fact, if you're on a trusted network, you shouldn't need to use SSH at >all, since you trust the devices (and their users) attached to the network >not to do nasty things like network sniffing, MitM attacks, etc.). True enough, but ssh makes the X11 DISPLAY things so easy! One doesn't have to much with xhosts and such. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 It is surprising how much new stuff users find that developers never do. You put a copy in front of a normal user and they find all these bugs that you would think developers would find. The real users and developers are completely different species as far as I am concerned. --Linux creator Linus Torvalds ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] remote ssh to machine how display firefox
On Fri, Dec 07, 2007, Les Mikesell wrote: >Karanbir Singh wrote: > >>>>>ssh -X firefox >>>>you prolly meant -Y :D >>>> >>>Ok well just double checked and tested it here and -X works here. I >>>knew about -Y but thought you only use that if you absolutely have too :) >> >>the reason I would prefer -Y is that its ( well, the man page says >>anyway ) more secure than -X. Also, these days a lot of admins will >>disable -X functionality on machines. Have not come across anywhere -Y >>didnt work ( and the host OS was installed in the last 5 years ). >> >>I am not doubting that -X will mostly work, but perhaps we should be >>promoting the idea of -Y a bit more. > >Coming from a fedora client, you have had to specify -Y for a while for >most things to work. But I don't think the man page makes it very clear >what the difference is. What's a 'trusted' forwarding mean as opposed >to any other kind? This is controlled by setting ForwardX11Trusted yes|no in the ssh_config file so my guess is that earlier versions of Fedora didn't set this. I first ran into a problem with this when connecting to a FreeBSD 4.8 system. It took me a while to figure out why X11 clients didn't work from my Linux desktops. The strange thing was that xeyes would work, but xterms would not. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 But how is this legal plunder to be identified? Quite simply. See if the law takes from some persons what belongs to them, and gives it to other persons to whom it does not belong. See if the law benefits one citizen at the expense of another by doing what the citizen himself cannot do without committing a crime. -- Frederic Bastiat, The Law ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] remote ssh to machine how display firefox
On Sat, Dec 08, 2007, Les Mikesell wrote: >Les Bell wrote: >>Les Mikesell <[EMAIL PROTECTED]> wrote: >> >>What's a 'trusted' forwarding mean as opposed to any other kind? >><< >> >>A trusted X11 client will bypass the security controls specified in the X11 >>Security Extension Specification (see >>http://refspecs.freestandards.org/X11/security.pdf). In general, you don't >>want to enable this unless you have to. Notice that "trusted forwarding" >>trusts the users to all be good guys. > >Is there a way to describe it in more than 2 words but less than 18 >pages? The main point seems to be that almost nothing works if your >forwarding isn't trusted. But shouldn't being able to log in via ssh >mean that you are trusted? One would hope so, assuming authorized_keys and proper pass phrases (but then putty and others allow this from the Microsoft Virus, Windows and I don't trust anything coming from Windows). On the few systems where we permit ssh authentication with user name and password, access is tightly controlled via tcp_wrappers to specific IP addresses. Recently we have been using OpenVPN to allow secure access from remote users which makes restricting ssh access easier when people are roaming so can't be easily identified by IP address. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation. -- Johnny Hart ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Rsync question
On Sat, Dec 08, 2007, Steven Vishoot wrote: >Hello All, > >I have an off topic question about rsync and was >wondering if i can get some kind person help with it. >I have two servers with each server have three same >directories on them /dir1/ /dir2/ /dir3/ . How would i >achieve this by using rsync? >I have tried rsync -avrt --delete server_ip:/dir1/ >/dir2/ /dir3/ /dir1/ /dir2/ /dir3/ >this does not do anything except give errors. > I usually set up an rsync module on the remote system allowing writes, and restricting access to the IP address of the machine initiating the backups. Say this is backups_upd. Then I'll do something like: cd / for dir in dir*; do rsync --delete -axr $dir destmachine::backups_upd/$dir done The section of the rsyncd.conf file might look like this: [backups_upd] list = no uid = root gid = root read only = false use chroot = false path = /backups comment = /backups hosts allow = 192.168.0.0/16 hosts deny = * Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 It is practically impossible to teach good programming style to students that have had prior exposure to BASIC: as potential programmers they are mentally mutilated beyond hope of regeneration. -- Dijkstra ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with UML editor?
On Tue, Dec 11, 2007, Scott Ehrlich wrote: >A colleague, using CentOS 5 64-bit, installed by me, asked me for the >following assistance: > >"The site I was trying to get to was http://www.eclipsedownload.com/. I >downloaded the EclipseUML free version, but it's obviously not giving me >the information I need. I have Java packages in Eclipse that I would like >to display in a class diagram to show how they relate to one another. >Theoretically, we have/had licenses for the Omondo tool. I believe the >studio edition will do what I need. If we have no licenses, I can download >the tool I used previously (http://www.soyatec.com/main.php), but that may >have been the cause of my Eclipse crashing. Then again, it crashes once a >day or so now, so I don't know if the Soyatec's eUML2 tool will make it any >worse. > >If you find another tool I can use or test, please let me know. I could >use it as soon as possible." I'm using ArgoUML with ArchGenXML to develop Plone products. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 If you think health care is expensive now, wait until you see what it coses when it's free -- P.J. O'Rourke ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Looking for a howto site
On Tue, Dec 11, 2007, Alfredo Perez wrote: >Hi > >I have been googling without success so I thought >to ask the following question to the list: > >I was wondering if any of you know of a site >that shows how to setup a wireless access point >using Centos. You might look at http://www.linux-sxs.org/ Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 If ye love wealth greater than liberty, the tranquillity of servitude greater than the animating contest for freedom, go home from us in peace. We seek not your consul, nor your arms. Crouch down and lick the hand that feeds you. May your chains set lightly upon you; and may posterity forget ye were our countrymen. -- Samuel Adams (American Patriot) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Looking for a howto site
On Tue, Dec 11, 2007, Scott Silva wrote: >on 12/11/2007 11:51 AM Bill Campbell spake the following: >>On Tue, Dec 11, 2007, Alfredo Perez wrote: >>>Hi >>> >>>I have been googling without success so I thought >>>to ask the following question to the list: >>> >>>I was wondering if any of you know of a site >>>that shows how to setup a wireless access point >>>using Centos. >> >>You might look at http://www.linux-sxs.org/ >Wow, that site looks like it has been around for a while. >I see Caldera stuff there. Quite a collection of info. It started as an offshoot of the Caldera mailing list, so has been around for years. There is still a very active mailing list with many people who were Caldera users (myself included). It's pretty distribution agnostic these days. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 A Galileo could no more be elected president of the United States than he could be elected Pope of Rome. Both high posts are reserved for men favored by God with an extraordinary genius for swathing the bitter facts of life in bandages of self-illusion. -- H. L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] vsifax on Centos 5.1
On Tue, Dec 11, 2007, Gregory P. Ennis wrote: >On Wed, 2007-12-12 at 00:56 +0100, Vincent Knecht wrote: >> > All >> > >> > I am trying to install vsifax on a 64 bit Centos 5.1 system. The Esker >> > staff have been helpful but no cigar. >> > >> > At first they thought the problem might be related to a 64 bit machine >> > so I tried to install vsifax on a 32 bit Centos 5.1 machine and received >> > the same error. >> > >> > One of their installation scripts is trying to execute a binary called >> > eula which fails. >> > >> > ./eula: cannot execute binary file >> >> maybe just retry after invoking that command ? >> chmod +x eula >> > >Thanks for the suggestion. I probably should have posted the deails. >I was actually hoping that the protections was the issue but looks to me >that it is not Have you looked at HylaFax, an open source fax system for *nix systems that has been around for many years (it started life as flexfax, but had to change the name since somebody else had it). We have been using HylaFax on various Linux systems for well over a decade with excellent results (and we hosted their mailing list for several years before they registered hylafax.org). http://www.hylafax.org/ Another commercial package for *nix systems is Faximum. This too has been around since the early '90s. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The pinnacle of open systems is: when moving from vendor to vendor, the design flaws stay the same. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] vsifax on Centos 5.1
On Wed, Dec 12, 2007, Gregory P. Ennis wrote: >On Tue, 2007-12-11 at 22:25 -0800, Bill Campbell wrote: >> On Tue, Dec 11, 2007, Gregory P. Ennis wrote: >> >On Wed, 2007-12-12 at 00:56 +0100, Vincent Knecht wrote: >> >> > All >> >> > >> >> > I am trying to install vsifax on a 64 bit Centos 5.1 system. The Esker >> >> > staff have been helpful but no cigar. >> >> > >> >> > At first they thought the problem might be related to a 64 bit machine >> >> > so I tried to install vsifax on a 32 bit Centos 5.1 machine and received >> >> > the same error. >> >> > >> >> > One of their installation scripts is trying to execute a binary called >> >> > eula which fails. >> >> > >> >> > ./eula: cannot execute binary file >> >> >> >> maybe just retry after invoking that command ? >> >> chmod +x eula >> >> >> > >> >Thanks for the suggestion. I probably should have posted the deails. >> >I was actually hoping that the protections was the issue but looks to me >> >that it is not >> >> Have you looked at HylaFax, an open source fax system for *nix >> systems that has been around for many years (it started life as >> flexfax, but had to change the name since somebody else had it). >> We have been using HylaFax on various Linux systems for well over >> a decade with excellent results (and we hosted their mailing list >> for several years before they registered hylafax.org). >> >> http://www.hylafax.org/ >> >> Another commercial package for *nix systems is Faximum. This too >> has been around since the early '90s. ... > >Bill, > >Thanks for taking the time to suggest hylafax.We need to be able to >convert *.pcl files to tiff files either at the time of faxing or the >fax module needs to do this for us. Does hylafax have the capability to >convert pcl to tif? vsifax has done what we needed, but to my surprise >the more I talk with them the more I get the impression they are not >actively wanting to support it for Unix/Linux systems. Personally I haven't had any need for PCL->FAX translation, but somebody else suggested ImageMagick which has lots of conversion options as does ghostscript. I often send faxes from HylaFAX with PDF documents. It handles PostScript, plain-text, and a variety of image formats as well. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Those who cast the vote decide nothing. Those who count the vote decide everything. (Joseph Stalin) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] find IP address of device on network based on MAC address
On Fri, Dec 14, 2007, Jim Perrin wrote: >On Dec 14, 2007 3:02 PM, Jerry Geis <[EMAIL PROTECTED]> wrote: >> I have a device on my network that is not DHCP and I dont know the IP >> address of it >> and it has not method of finding it or changing it unless you know the >> IP address (setable by browser). >> >> Is there a way on linux, based on MAC address, to get the IP of the unit? > >Ping all the ips on your network, then use 'arp' to show the ip and >mac linking. This should give you the information you need. For a private network, 192.168.1.0/24 ping -c3 -b 192.168.1.255 arp -an | grep -i macaddress Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Democracy must be sometihng more than two wolves and a sheep voting on what to have for dinner -- James Bovard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Prelink: Something's happening here
On Sun, Dec 23, 2007, Johnny Hughes wrote: >Johnny Hughes wrote: ... >>> How did the RPM database have the right values for the sqlite3 file before >>> prelink was run? Or, another way, why was the file different in the first >>> place, that running prelink against it fixed it? And if "undoing" the >>> prelink >>> changed something, why wasn't it "changed back" when I ran prelink against >>> the sqlite3 file the second time? >>> >>> Finding this confusing as H__L. >>> >>> I have *alot* of files on this system with this issue - I discovered this >>> while debugging a problem with MailScanner. And, why do I see similar >>> behavior on another system that's freshly built? EG: just ran the installer >>> and "yum update" and see the same issue with a smaller number of files? >> ... > >We have been in touch with the upstream provider on this ... first some >issues: > >The default prelink setup can take up to 2 weeks to rerun a full >prelink. This is due to serveral settings in the file >/etc/sysconfig/prelink. > >So, after an update, it may take up to 14 days for a file to get >prelinked after it's libraries are updated. You can manually prelink >sooner if required. > >It seems the only real thing affected by this is "rpm -V". A minor problem if one is trying to find changes on a possibly cracked system. Personally I figure being able to verify a system at any time is far more important than any possible optimization from prelinking so remove/disable prelink. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Government's view of the economy could be summed up in a few short phrases: If it moves, tax it. If it keeps moving, regulate it. And if it stops moving, subsidize it -- Ronald Reagan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Linux vs Windows Drivers
On Wed, Dec 26, 2007, Bit wrote: >What is so fundamentally different about drivers in Linux and Windows? A major difference with Vista is that their drivers are more concerned with DMCA copyright protection than performance, and this goes down into the hardware as well. http://www.cs.auckland.ac.nz/~pgut001/pubs/vista_cost.html >Specifically, video card drivers have always frustrated my understanding >of what's going on under the hood. Say I have a nice video card from >ATI. I need to install some cool drivers from ATI in order to make the >card work at its best and in order to do any cool things like dual >monitors. I download these drivers from the company's website, install >them on my machine, and I'm off and running. Assuming all goes >according to plan. Video card manufacturers have a long history of changing things, with no documentation of course as they're proprietary. So long as they provide Windows drivers, they figure their job is done. Linux doesn't have enough market share to really get their attention, and developing these for Vista is made more expensive (see the article above) so they concentrate their efforts where they will get the most return. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The day-to-day travails of the IBM programmer are so amusing to most of us who are fortunate enough never to have been one -- like watching Charlie Chaplin trying to cook a shoe. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: How to size an email server to handle 5 million emails per day
On Thu, Jan 03, 2008, Joshua Gimer wrote: >I can only talk from experience; we are currently doing spam and anti- >virus checks in our inbound flow of around 600,000 messages per day. >To do this we have three inbound SMTP gateways running Sophos >Puremessage with Sendmail as the MTA.. These systems are quad proc >systems with 6 to 8 GB of ram. This is still not enough to handle the >inbound flow efficiently at our organization. We have a system that handles similar quantities of incoming mail with a single incoming MX server running postfix, amavisd, and clamav to do anti- virus checking only, passing clean messages to a cluster of five machines which do spamassassin checking and delivery into Maildir folders NFS mounted on a central machine using LDAP authentication on the cluster machines. The incoming MX server has an Intel(R) Pentium(R) 4 CPU 3.20GHz with 2GB RAM running SLES9, and rarely has a load average above 1.00. The cluster servers have similar processors with 1GB RAM, running SLES9 and SLES10 (new ones will be CentOS :-). The main file server that has all the home directories is rather ancient by comparison, running SuSE 9.2 Pro on an Intel(R) Pentium(R) 4 CPU 3.00GHz with 2GB RAM and lots of hard disk space. >We are currently looking into Ironport, which should be able to handle >our entire inbound and outbound flow on one system. They say that they >have the ability to drop around 98% of traffic that is coming in using >reputation filtering, anti-spam checks and anti-virus checks. We have >been demoing the device for a couple of months and I am really happy >with it, it has been doing what was promised. The border server rejects several million attempts a day using a combination of DNSRBLs, and other checks. It also has no users, accepting mail for valid users with rather large postfix virtual tables that map all incoming addresses to the internal servers. I like this distributed architecture as all the machines in the cluster are pretty much vanilla boxes that are easily built and replaced if necessary. The only machine that's critical is the one containing all the user's home directories. Even that one has been replaced with a new machine with minimal down time by bringing up a replacement, syncing the users from the old machine to the new one, doing a bit of DNS editing to point to the new machine, then rsync'ing the user's Maildir folders as new mail is delivered to the new machine. Each of the cluster machines needs to remount the home directories with the new DNS. We were able to make the switch with less than 15 minutes of down time while making the DNS changes and remounting cluster machines. It took about an hour to complete the home rsyncs with about 10,000 users. Even considering the relatively puny public MX server, it would be able to handle quite a bit more mail easily. The cluster machines scale close to linearly. They're also running on a 10/100 switch, and going to a gigabit switch should speed up mail delivery. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Government is actually the worst failure of civilized man. There has never been a really good one, and even those that are most tolerable are arbitrary, cruel, grasping and unintelligent. -- H. L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Mail server setup for small ISP
On Thu, Jan 03, 2008, Ugo Bellavance wrote: >Hi, >I will probably have to design an e-mail (and other components) >infrastructure for a small ISP soon (WISP). See my previous post on sizing mail servers. The setup there is in use at several of our regional ISP customers, and has been very solid. It's a design that has evolved since we started building and selling systems for ISPs in 1994. >I'm doing some research to determine which components would be best to >offer e-mail services to their client and allow the staff to manage >accounts easily. There are various tools available to do this. I have set up very restricted webmin configurations so the support people at the ISP could do the necessary things easily with minimal chance of major screwups (after I've patched some things in webmmin that allowed it to remove /home when somebody typed in a bad directory :-). >I usually use virtual machines a lot for isolation and easy backups and >migration (when a hardware node is underpowered, it is easy to migrate one >or more virtual machines to another hardware node easily). >I have looked at iSCSI and drbd for high-availability of the storage: >http://www.pcpro.co.uk/realworld/82284/san-on-the-cheap/page1.html. >This looks like it should be doing a great job of high availability >storage. >For mail server, I guess I should look at an MTA and IMAP/POP server that >supports LDAP and/or MySQL for users. Postfix should be a good choice for >MTA, as I know it (at least a little, but I know sendmail better). For >IMAP/POP, I'm not sure... Would dovecot be sufficient, or should I try >cyrus. I'd rather use components that are available for base or extras >repository (or rpmforge). I think that squirrelmail and horde would do a >good job for webmail. The systems we build have postfix/amavise/clamav, courier-imap, and usually horde/imp for webmail. I personally don't like Cyrus as I prefer to use standard Maildir which allows easy clustering for mail delivery and IMAP/POP access. >There shoudn't be any troubles having some redundancy for DNS, web servers, >mtas, but what about IMAP/POP? linux-HA? MySQL replication should be >enough, I guess. Or maybe linux-HA as well. I wonder if I should add GFS >to the mix to have multiple IMAP/POP servers use the same storage. Or >maybe IMAP proxies? > > Any insights welcome :). I hope you're not charging your client for your learning curve. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The whole aim of practical politics is to keep the populace alarmed (and hence clamorous to be led to safety) by an endless series of hobgoblins. -- H.L. Mencken, 1923 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] What's up with the mailing list spam?
On Fri, Jan 04, 2008, Ralph Angenendt wrote: >Matt Shields wrote: >> Just this morning I've gotten 3 or 4 pieces of spam on the CentOS mailing >> list. > >Tell us how we should reject that in advance and we will. Yes, the >"user" was subscribed. We have Mailman configured to check with spamassassin, sending messages with sufficiently high scores to the moderator(s) for approval and automatically discarding anything with a score > 20. Thus anything with scores between our required_score of 5 and 20 is held for moderation. While this isn't perfect, fewer than 1 spam per month has made it through to any of the lists we host in the last year (at least one of which I approved accidentally :-). The only moderated list we host is one for monthly announcements where only the list owner is allowed to post. All the others are members-only. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 More laws, less justice. -- Marcus Tulius Ciceroca (42 BD) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Log Monitoring Recomendation
On Mon, Jan 07, 2008, Joseph L. Casale wrote: > > Given my experience in Linux is limited currently, what do you guys > use to monitor logs such as `messages' on your centos servers? I had a > hardware failure that happened in between me manually looking (of > course...). I would hope it might have a some features to email > critical issues etc... We use swatch to monitor various things, mainly security related. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Rights is a fictional abstraction. No one has ``Rights'', neither machines nor flesh-and-blood. Persons... have opportunities, not rights, which they use or do not use. -- Lazarus Long ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Log Monitoring Recomendation
On Mon, Jan 07, 2008, Les Mikesell wrote: >Bill Campbell wrote: > >>> Given my experience in Linux is limited currently, what do you guys >>> use to monitor logs such as `messages' on your centos servers? I had a >>> hardware failure that happened in between me manually looking (of >>> course...). I would hope it might have a some features to email >>> critical issues etc... >> >>We use swatch to monitor various things, mainly security related. >> > >Did you have to do something to it to make it work with centos? I have >one running on a machine that collects a lot of router syslogs and it >has the annoying habit of resending a bunch of old notifications >whenever a new one is noticed. Not really. Swatch is pretty straightforward perl, using gnu-tail to watch the end of log file(s). The only issue I've seen is that it will sometimes report old things on occassion when starting if there are matching entries near the end of the files. One place where I used this is on an openldap server that would occassionally get into a ``too many open files'' situation, and swatch would call a routine that restarted slapd when this happened. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Capitalism works primarily because most of the ways that a company can be scum end up being extremely bad for business when there's working competition. -rra ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Log Monitoring Recomendation
On Tue, Jan 08, 2008, Ugo Bellavance wrote: >Joseph L. Casale wrote: >>Given my experience in Linux is limited currently, what do you guys use >>to monitor logs such as ?messages? on your centos servers? I had a >>hardware failure that happened in between me manually looking (of >>course?). I would hope it might have a some features to email critical >>issues etc? > >logwatch is a good start. > >Get the latest version from www.logwatch.org. Runs automatically daily >and sends output to root. Isn't logwatch standard in CentOS installations? Swatch monitors one or more log files in real time, with options to report events immediately, or after some number of repeations in a specified time period (e.g. report immediately if a network interface goes into permiscuous mode, but only report something else if there are ``n'' occurrences within a minute). I've attached the swatchrc configuration file from this machine which has several examples. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Never blame a legislative body for not doing something. When they do nothing, that don't hurt anybody. When they do something is when they become dangerous. -- Will Rogers perlcode 0 use Sys::Hostname::Long; perlcode 0 my $host_long = hostname_long; perlcode 0 my $email=qq([EMAIL PROTECTED]); perlcode 0 my $secmail = qq([EMAIL PROTECTED]); perlcode my ($month, $day, $time, $host_name, @message) = split(/\s+/); watchfor /Your ClamAV installation is OUTDATED/ mail addresses=$secmail, subject=[swatch] $host_long clamav update watchfor /^(\S+) - (\S+) \[(.*?)\].*session_login/ mail addresses=$secmail, subject=[swatch] $host_name usermin login $2 $1 watchfor /entered promiscuous mode/ mail addresses=$secmail, subject=[swatch] $host_name promiscuous watchfor /File name too long/ mail addresses=$email, subject=[swatch] BufferOverflow_attempt watchfor /DHCPREQUEST/ mail addresses=postmaster, subject=[swatch] [EMAIL PROTECTED] watchfor /Failed password for.*from\s+(\S+)/ threshold track_by=$1,type=limit,count=3,seconds=60 mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Accepted password for root.*from\s+(\S+)/ mail addresses=$secmail, subject=[swatch] $host_name ssh password $1 watchfor /Accepted publickey for root.*from\s+(\S+)/ mail addresses=$secmail, subject=[swatch] $host_name ssh publickey $1 watchfor /Invalid login as admin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Invalid login as mainadmin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Successful login as mainadmin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /DeliveryErrors/ mail addresses=postmaster, subject=[swatch] Postfix_Delivery_Errors watchfor /file system full/ mail addresses=$email, subject=[swatch] [EMAIL PROTECTED] watchfor /refused connect from\s+(\S+)/ threshold track_by=$1,type=limit,count=3,seconds=60 mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Fwd: Securing Linux laptops
On Tue, Jan 08, 2008, Marko A. Jennings wrote: >On Tue, January 8, 2008 9:14 am, Robert Moskowitz wrote: > >> So what options do we have for encrypting partitions. > > >I found this article helpful: >http://www.redhatmagazine.com/2007/01/18/disk-encryption-in-fedora-past-present-and-future/ One could also set up a script that automatically sends an e-mail message when the laptop boots, and perhaps periodic e-mails from cron. This could provide at least the IP address from which the mail was sent which could help locate it. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 There is no worse tyranny than to force a man to pay for what he does not want merely because you think it would be good for him. -- Robert Heinlein ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos command to monitor a process for exit
On Sat, Jan 12, 2008, mouss wrote:
>Les Mikesell wrote:
>> Jerry Geis wrote:
>>> Is there a command that will monitor a process for exiting (crash or
>>> normal exit) and
>>> then execute another command based on the said process no longer being
>>> active?
>>>
>>> Or is there a "wrapper" command that runs a process and when that
>>> process exists
>>> due to crashing or just exiting normally) that another process can be
>>> run.
>>>
>>
>> Why not use a shell script as a wrapper? If you don't put something in
>> the background with an & on the line, the next line will execute when/if
>> the program started on the current line exits. There are nearly always
>> other copies of the shell running anyway so you get shared-text
>> efficiency. If you just want to keep restarting the same program,
>> something like this should run forever.
>>
>> while :
>> do
>> my_program
>> done
>>
>
>This has two issues (at least):
>- if the program is a daemon, it returns immediately, so the scrpit will
>try to start the program again and again
>- if the script gets a signal, it will be killed. back to start.
If you use ``kill -0 pid'' it shouldn't affect the running process, and
will return success ($? = 0) if the process is running, and fail otherwise.
A fairly standard way of checking things like this is:
pidfile=/var/run/progname.pid
progname_signal() {
[ -f $progname_pidfile ] && kill -$1 `cat $progname_pidfile`
}
if progname_signal 0
then
echo is running
else
echo not running
fi
Bill
--
INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
"If taxation without consent is robbery, the United States government
has never had, has not now, and is never likely to have, a single honest
dollar in its treasury." -- Lysander Spooner, Letter to Grover Cleveland 1886
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] "find" switch to find files of a certain size?
On Sun, Jan 13, 2008, Fajar Priyanto wrote: >On Thursday 10 January 2008 23:21:55 [EMAIL PROTECTED] wrote: >> Is there a switch in "find" (or some other command besides find) that'll >> let you find files larger than a specified size? >> >> My file system is 88% full and I'd like to see where the biggest space >> hoggers are. > >I also found this on the net: >du /path/to/anywhere/* -hs | grep [0-9]M | sort -rn | head -20 > I usually use something like: find /mountpoint -xdev -size +10000 > someplacenotfull Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Our Foreign dealings are an Open Book, generally a Check Book. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] location of sg.c on distro CDs
On Wed, Jan 16, 2008, Paul Heinlein wrote: >On Wed, 16 Jan 2008, Ray Leventhal wrote: > >>I find I'm in need of sg.c and can't seem to locate the rpm for the >>generic scsi driver on my CentOS5 CD's. >> >>Might someone point me in the right place, please? > >Normally, I'd suggest running > > yum provides sg.c > >but it comes up empty on my CentOS 5 box. I don't see an sg.c file in any of the RPMS in the distribution, using a utility I wrote that extracts the contents of all packages into a file. There is an sg.h file which is part of the glibc-headers package. The sg.ko files are in various kernel-2.6.* packages. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The essence of all slavery consists in taking the produce of another's labor by force. It is immaterial whether this force be founded on ownership of the slave or ownership of the money that he must get to live on. Leo Tolstoy 1891 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Setenv missing
On Thu, Jan 17, 2008, Ern jura wrote: > > When I tried to use the setenv command to set the default text editor > for subversion, I found it was missing how can I install it or enable > it in CentOS 5 The setenv command is used in csh and its descendants. The corresponding command(s) that works on /bin/sh, bash, ksh, etc. is: # this works on /bin/sh and all it's children PAGER='vim' export PAGER # this works on most, but not all export PAGER='vim' One can also use something like: PAGER='vim' some_command Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Independent self-reliant people would be a counterproductive anachronism in the collective society of the future where people will be defined by their associations. 1896 John Dewey, educational philosopher, proponent of modern public schools. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ReiserFS
On Sun, Jan 27, 2008, [EMAIL PROTECTED] wrote: >Hi, > >Is their any gotcha when using ResiserFs as a file system? We used reiserfs for a while on SuSE systems thinking that it would be OK because it was the default. Unfortunately I have had several occassions where we had massive data loss with reiserfs so haven't used for several years. We moved to ext3 on the ``/'' file system with xfs on other file systems on SuSE with no problems. The ext3 systems seem to be bullet proof, and xfs doesn't require fsck in most cases. We have used ext3 on all the CentOS systems as it doesn't support xfs in the default configuration. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 DOS: n., A small annoying boot virus that causes random spontaneous system crashes, usually just before saving a massive project. Easily cured by UNIX. See also MS-DOS, IBM-DOS, DR-DOS. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question on "cp -f" on centos 5.1
On Mon, Jan 28, 2008, Jerry Geis wrote: >When I issue the command cp -af --reply=yes * ../other >it tells me --reply is deprecated and use -i or -f. > >when I remove the --reply=yes I have to indicate 'y' to every >file being copied. > >I just want to copy every file in my current directory to another >directory and overwrite any file that is there. > >What is the correct way to do that? ``unalias cp'' then do your real work. You will then only be prompted when attempting to remove files without write permission. If you feel like a responsible adult, you might want to comment out the other aliases in your .profile or other startup files which appear as: alias rm='rm -i' alias cp='cp -i' alias mv='mv -i' Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Mechanical Engineers build weapons. Civil Engineers build targets. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] One approach to dealing with SSH brute force attacks.
On Wed, Jan 30, 2008, Brian Mathis wrote: ... > >Log parsing scripts often don't provide the immediacy that rate >limiting does when under attack. You'd have to run the script >constantly parsing logs, since most ssh scans come in bursts. We use swatch for this and othter interesting events (e.g. NICs being put in promiscuous mode). It continually monitors one or more log files using gnu-tail in a perl script, and can do various things depending on a configuration file. It can send e-mail notifications and/or execute scripts which can do anything your heart desires. The fail2ban program has similar capabilities, and can block IP addresses attempting multiple connections using iptables. Personally I prefer swatch, but that's largely because I found it first and understand its configuration. We generally restrict ssh access to using authorized_keys, and use tcp_wrappers to further limit access by IP address. Roaming users can first establish a VPN connection using OpenVPN, then make any ssh connections vis the private VPN tunnel. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Many citizens because of their respect for what only appears to be a law are cunningly coerced into waiving their rights due to ignorance. -- U.S. v. Minker ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] No route to host
On Thu, Jan 31, 2008, horas simalango wrote: >Thank's for your support, > >So what is the conclusion sir? >Is the problem in my server or in pttropical server? >Could you please explain more clear? Most likely there was a temporary problem connecting to their server. I was just able to ping mail.pttropical.co.id, their only listed MX server. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The difference between science and the fuzzy subjects is that science requires reasoning while those other subjects merely require scholarship. -- Robert Heinlein ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] One approach to dealing with SSH brute force attacks.
On Mon, Feb 04, 2008, John Horne wrote: > >On Wed, 2008-01-30 at 13:11 -0800, Bill Campbell wrote: >> On Wed, Jan 30, 2008, Brian Mathis wrote: >> ... >> > >> >Log parsing scripts often don't provide the immediacy that rate >> >limiting does when under attack. You'd have to run the script >> >constantly parsing logs, since most ssh scans come in bursts. >> >> We use swatch for this and othter interesting events (e.g. NICs >> being put in promiscuous mode). It continually monitors one or >> more log files using gnu-tail in a perl script, and can do >> various things depending on a configuration file. It can send >> e-mail notifications and/or execute scripts which can do anything >> your heart desires. >> >Hello, > >Do you have any specific swatch config lines for detecting ssh >brute-force attacks? If so would you care to share them? (off-list if >you prefer). Likewise we use swatch for general log monitoring, and have >it report back anything unusual to our central monitoring system (Big >Brother). Here's part of the swatchrc file from one of our public servers. We get many more reports from sshd via tcp_wrappers (libwrap) which have been modified to use DNSRBLs to white and black list various hosts and IP ranges. perlcode 0 use Sys::Hostname::Long; perlcode 0 my $host_long = hostname_long; perlcode 0 my $email=qq([EMAIL PROTECTED]); perlcode 0 my $secmail = qq([EMAIL PROTECTED]); perlcode my ($month, $day, $time, $host_name, @message) = split(/\s+/); watchfor /device (\S+) entered promiscuous mode/ mail addresses=$secmail, subject=[swatch] $host_name promiscuous $1 watchfor /File name too long/ mail addresses=$email, subject=[swatch] BufferOverflow_attempt watchfor /DHCPREQUEST/ mail addresses=postmaster, subject=[swatch] [EMAIL PROTECTED] watchfor /Failed password for.*from\s+(\S+)/ threshold track_by=$1,type=both,count=3,seconds=60 mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Accepted password for root.*from\s+(\S+)/ mail addresses=$secmail, subject=[swatch] $host_name ssh password $1 watchfor /Accepted publickey for root.*from\s+(\S+)/ mail addresses=$secmail, subject=[swatch] $host_name ssh publickey $1 watchfor /Invalid login as admin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Invalid login as mainadmin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /Successful login as mainadmin/ mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] watchfor /DeliveryErrors/ mail addresses=postmaster, subject=[swatch] Postfix_Delivery_Errors watchfor /file system full/ mail addresses=$email, subject=[swatch] [EMAIL PROTECTED] watchfor /refused connect from\s+(\S+)/ threshold track_by=$1,type=both,count=3,seconds=60 mail addresses=$secmail, subject=[swatch] [EMAIL PROTECTED] # end of file Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 there is nothing more difficult to take in hand, more perilous to conduct, or more uncertain in its success, than to take the lead in the introduction of a new order of things. Because the innovator has for enemies all those who have done well under the old conditions, and lukewarm defenders in those who may do well under the new. -- Machiavelli ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: tail command
On Mon, Feb 04, 2008, Scott McClanahan wrote: > >On Mon, 2008-02-04 at 14:09 -0800, Scott Silva wrote: >> on 2/4/2008 1:56 PM Scott McClanahan spake the following: >> > In centos 4 we used tail in the following way: >> > >> > tail +83 file >> > >> > That would tail the contents of the file starting at line 83. In centos >> > 5 that same command complains about the file +83 not being found. It >> > appears that the + option in tail doesn't work the same way in centos 5. >> > Is there another easy way to grab the contents of a file starting at a >> > certain line number and beyond. >> I think it would be tail -n +83 file > >Ahh, yes. Because it can be a line count or byte count. The -n wasn't >necessary in the old coreutils. Thanks alot. The default syntax for tail for the last 20 years or so would be ``tail -83 filename''. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Imagine if every Thursday your shoes exploded if you tied them the usual way. This happens to us all the time with computers, and nobody thinks of complaining. -- Jef Raskin http://jefraskin.com/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Creating a Roaming imap account
On Tue, Feb 05, 2008, Anne Wilson wrote: >This (CentOS5.1) box is my new imap server. Using >system-config-security-level I opened port 143 tcp, and mail is readable >throughout the LAN. I want a Roaming account on my laptop so that I can read >mail while away from home. I have set up the account in kmail, and I know >that that part is correct, as it worked on my old, less-secured, imap server. >However, I haven't been able so far to make a connection. > >Do I need 143 udp open? What else must I do to allow me to connect over WAN? You should have port 993 open which provides security via SSL. One can use TLS to initiate connections via port 143, but this may result in unencrypted logins which result in your username and password being sent in clear text across the Internet. You will also have to make provisions to allow mail relaying from the roaming IP for the duration of the authenticated connection (assuming that your mail server is not an open relay which will get it black listed pretty quickly). There are various ways to handle this. We have used WHOSON for years which doesn't require any action on the part of the IMAP client. One can also use SMTP AUTH, POP/IMAP before SMTP, or other methods. It would probably be easier to set up OpenVPN so you can tunnel from the remote systems into your private network, then connect via the private IP address for IMAP and SMTP sending. Once one has generated the proper keys for the OpenVPN connections, it is easy to make the connections (and easy to revoke them as well). There are OpenVPN clients for the Microsoft virus, Windows, OS X, and every version of Unix I've used. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Democracy, n.: A government of the masses. Authority derived through mass meeting or any other form of direct expression. Results in mobocracy. Attitude toward property is communistic... negating property rights. Attitude toward law is that the will of the majority shall regulate, whether it is based upon deliberation or governed by passion, prejudice, and impulse, without restraint or regard to consequences. Result is demagogism, license, agitation, discontent, anarchy. -- U. S. Army Training Manual No. 2000-25 (1928-1932), since withdrawn. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] log outbound port 80 connections
On Tue, Feb 05, 2008, Tony Schreiner wrote: > >On Feb 5, 2008, at 12:15 PM, John R Pierce wrote: > >>Tony Schreiner wrote: >>>Is there a way to log outbound connections to a specific port (80)? >>>CentOS 4.6. >> >> >>assuming you want to log user web browsing traffic, configuring a >>Squid transparent proxy at your network border would be the best >>way. its logfiles are quite similar to those of a webserver, so >>you can use a wide range of log analysis tools. >> > >To get more specific about what's going on. My network services have >informed me that the machine is probing other systems at a high rate. >An infection of some sort. And I'm trying to track down what's going on. In that case, you might want to use ``lsof -i :80'' to see processes using port 80. Once one has an interesting PID, then using ``lsof -p PID'' will show everything that process is using including the full path to the executing program. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The only logical reason to take guns away from responsible people is to give irresponsible people an edge in the perpetration of their crimes against us. -- The Idaho Observer, Vol. 1, No. 2 February 1997 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] python XML processing to turn a XML file into a structure?
On Tue, Feb 05, 2008, Robinson Tiemuqinke wrote: >Hi, > > I'm running Centos 5 with python 2.4.3. Anyone know >if there are python xml processing tools/packages that >can turn an XML file directly into a complex >structure? and write a complex structure back into an >XML file? > >I'm a newbie to Python programming, though years ago >I've processed XML files with Java but now I am in a >rush. First check the python library reference: http://docs.python.org/lib/lib.html There are various tools there that may provide what you need. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Suppose you were an idiot. And suppose you were a member of Congress. But I repeat myself. -- Mark Twain ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Using tcpdump to sniff telnet password
On Wed, Feb 06, 2008, Fajar Priyanto wrote: >Hi all, >As long as I can remember reading various articles/docs, they all say that >telnet is not secure because all traffic is in clear text. Well, out of >boredom, I try to sniff username and password from a telnet session. Another program I like for things like this is tcpflow which takes the same command line arguments as tcpdump, but creates separate files for each side of a tcp connection. It displays the data in plain text which makes debugging things like unencrypted imap and pop connections fairly easy. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The very powerful and the very stupid have one thing in common. Instead of altering their views to fit the facts, they alter the facts to fit their views ... which can be very uncomfortable if you happen to be one of the facts that needs altering. -- Doctor Who, "Face of Evil" ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba GUI interface
On Wed, Feb 06, 2008, Craig White wrote: > >On Wed, 2008-02-06 at 14:18 -0500, Dean Maluski wrote: >> CentOS 5.1 >> I was just trying to add users and shares to Samba from GUI interface. >> I've already added users from command line. >> Regardless, when I go to select users the existing users is blank. >> When I add a user if it already exists I get a complaint that user >> exists. If I add a new user from GUI it does not get added to the blank >> list. >> OK I just added a user from gui, applied it [HIT OK] >> went back and tried to add user again but when hitting [OK] complained >> that user exists. Seems things are working except listing existing users >> in interface. >> I can live with this but I'm about to upgrade a server at work and >> ultimately I was hoping my Windows Sys Admin could manage to >> administrate Samba. I don't think this will be possible without a GUI. > >personally, I've found webmin to be useful (not part of standard >packaging but is in dag repository) http://www.webmin.com > >Webmin can be configured to add posix/samba users at same time and/or >convert posix users to samba users I prefer using swat on port 901 for most samba configuration, largely because it has excellent on-line help to explain the multitude of options available. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The cry has been that when war is declared, all opposition should therefore be hushed. A sentiment more unworthy of a free country could hardly be propagated. If the doctrine be admitted, rulers have only to declare war and they are screened at once from scrutiny ... In war, then, as in peace, assert the freedom of speech and of the press. Cling to this as the bulwark of all our rights and privileges. -- William Ellery Channing ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Date/Time config 'behind the scenes'
On Thu, Feb 07, 2008, Tim Alberts wrote: >The GUI tool to set date time works great when your running X or >whatever, but what is it really doing in the background? How do I setup >automatic time synchronization from the command line? A method I frequently use to figure out what's going on under the covers is to create a file to use as a time stamp, modify something with a GUI, then use find to see what has been changed. touch /tmp/timestamp # do something GUIish find /etc -newer /tmp/timestamp > /tmp/changelist Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The meek shall inherit the Earth, the rest of us will go to the stars... -Dr. Isaac Asimov ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] About postgresql tcpip connection
On Fri, Feb 15, 2008, Roilan Cardoso S?nchez wrote: > > hello everybody > > i´m trying to connect to my postgresql via tcpip and it thow an error > is not accepting tcp-ip connections > I ask to google but i dont find the solution, people said about the > prostgresql.conf enable tcpip, I try but when i start the service it > thow an error. > Other thing is add the option i to postmaster.opt but when i start the > service this file is redefined > > anybody can helpme You need to have the allowable networks specified in the postgresql pg_hba.conf file. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation. -- Johnny Hart ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] About postgresql tcpip connection
On Fri, Feb 15, 2008, Roilan Cardoso S?nchez wrote: > > I add in pg_hba.conf > hostallall192.168.0.0/24ident sameuser I'm not using the CIDR notation, but have network netmask for our internal LAN 192.168.253.0/24: host all all 192.168.253.0 255.255.255.0 md5 I suspect one has to restart postgresql to have it see changes, but wouldn't bet on it. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 There are three kinds of men. The ones that learn by reading. The few who learn by observation. The rest of them have to pee on the electric fence for themselves. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS, ISDN and Fax ...
On Sun, Mar 02, 2008, Ralph Angenendt wrote: >Hey guys, > >is anyone of you using CentOS (4/5) for an ISDN fax gateway? I just had >someone over here at the CentOS booth who wanted to know if there's a >possibility to integrate the AVM CAPI into CentOS and then use the >machine as a fax gateway with 2, 3 or 4 S0 buses. > >Is that possible? Probably. It's been quite a while since I did any new ISDN connections, and have never done it with internal cards, only with device line Annex 8000s via PRIs, and smaller Ascend Pipelines and Max 1600s (I have a couple of Max 1600s and a variety of Pipelines here we're not using if anybody is interested). I looked at a variety of internal ISDN cards with Linux about 10 years ago, but preferred to stick with external devices. We use HylaFAX for all our incoming and outgoing fax, with Multitech external modems. I've always avoided any internal modems as it's kinda hard to reset a wedged internal modem without rebooting the machine. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Life is not a journey to the grave with the intention of arriving safely in one pretty and well preserved piece, but to skid across the line broadside, thoroughly used up, worn out, leaking oil, shouting GERONIMO! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS, ISDN and Fax ...
On Sun, Mar 02, 2008, Fred Kienker wrote: >> -Original Message- >> From: Bill Campbell [mailto:[EMAIL PROTECTED] ... >> We use HylaFAX for all our incoming and outgoing fax, with >> Multitech external modems. I've always avoided any internal >> modems as it's kinda hard to reset a wedged internal modem >> without rebooting the machine. ... > >What Multitech external modem(s) do you recommend using with HylaFax? We're currently using the MT5634ZBA externals which work very well. They do not support the fancier caller-id features that some of the more expensive Multitechs do so HylaFAX cannot route incoming faxes based on the calling number. I put that in the nice-to-have category, and isn't critical to our operations. I have also used their MT2834ZDX, but had some flow control problems which caused us to move to the MT5634ZBA. I have done extensive testing on modems from many manufacturers, and the only ones I've found that have been really reliable are the Multitechs and Telebits (I still have three Worldblazers and a couple of Trailblazers sitting on the shelf from our old dialup uucp days). Our setup here has a channel bank with incoming voice and data on a single T1 so we are digital to that point, with the Multitechs plugged into POTS ports off of an RJ-21 connector to a patch panel. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Foreign aid might be defined as a transfer from poor people in rich countries to rich people in poor countries -- Douglas Casey ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Migrate Outlook Express mail to Thunderbird?
On Sat, Mar 15, 2008, mouss wrote: >Jeff Larsen wrote: >> >> >>Taking a different approach than others... >> >>Load them back into Outlook Express on a Windows box. Open a gmail >>account and enable it for IMAP access. Configure Outlook Express for >>gmail/IMAP and copy the messages to gmail folders. Configure T-Bird on >>CentOS for gmail/IMAP and copy from gmail to Local Folders. Hopefully >>you don't have several Gigs of messages. If you already have an IMAP >>enabled mail account somewhere else, you could use that too. > >no need for gmail if he has a machine that can run an imap server >(dovecot, courier, ...), as this would be faster. > >and yes, if the mailbox is large, that'll take a loong time. I don't >know which outlook* variants can copy multiple folders at once. Last >time I had to do this, I needed to copy folders one at a time and when I >reached the last folder, I left the machine for one day... (that was >with some outlook 200?). My normal method of getting mail from an Exchange or other IMAP server to a local Maildir store is with a python script that logs into the remote IMAP server, queries for all the folders, then copies all the messages to the local Maildir (which is usually served by courier-map). We *STRONGLY* recommend that people leave their mail on the IMAP server, not on their desktop machines as (a) it's on a reliable server, not the Microsoft Virus Windows, (b) it's easy to move to a new desktop machine with minimal hassle, and (c) it's available via webmail or remote secure IMAP when away from the desk. Over the years I've written scripts to convert from a variety of mail stores to Maildir including standard Unix mail files, U.W. IMAP binary mbx format, kmail, etc. As I remember the original posting was talking about mail stored in Microsoft's proprietary binary format, I think the same one used by Access and Exchange servers. I have never tackled recovering data from these formats, and Friends don't let Friends do Windows. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 It is surprising how much new stuff users find that developers never do. You put a copy in front of a normal user and they find all these bugs that you would think developers would find. The real users and developers are completely different species as far as I am concerned. --Linux creator Linus Torvalds ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] which open source wiki CMS?
On Sun, Mar 16, 2008, Simon Jolle sjolle wrote: >Hi Centos Users > >I am searching for an Open Source Wiki CMS based on PHP/MySQL. There are >so much out there, thats why feel free to share you experience. I use Zope and Plone, a python based system. I really don't like PHP, but don't want to start a religions language war (I'll leave that to others :-). FWIW, I was a long-time perl hacker before learning python when I started working extensively with Zope and Plone. I have come to prefer python for general use. >Please review your favorite Wiki software. Code quality, security, >features and continuous, stable development. Zope and Plone have a very active developer community, and an excellent reputation for security. Plone is easy for novice users who want to put up static content without lots of expertise in HTML and other technologies. It is extremely powerful for building sites, but has a rather steep learning curve. Plone is built on the Zope object database, zodb, and can easily interface with postgres, mysql, oracle, M$-SQL, and any other database supported with the python database tools. It is also easy to interface with it using xml-rpc without doing anything special to enable an xml-rpc server. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Never blame a legislative body for not doing something. When they do nothing, that don't hurt anybody. When they do something is when they become dangerous. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rpm build machines
On Tue, Mar 18, 2008, Johnny Tan wrote: >How similar should my rpm build machine be to my target >deploy machines? Like, do you have to build on a multi-core >machine if you plan to run on a multi-core machine? Or as >long as the arch is the same, nothing else matters? IHMO, it's always best to build on identical machines. In theory they should work, but I have had problems when building packages where 32-bit AMD and 32-bit Intel systems had some incompatibilties that resulted in illegal instruction traps. One package I know gave me this was gmp, GNU Arbitrary Precision Arithmetic Library, required by clamav. Pretty much everything we build, we do with the OpenPKG portable package management system where the basic philosophy is to make it easy to build on the target machines thus avoiding this type of problem. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 If the future navigation system [for interactive networked services on the NII] looks like something from Microsoft, it will never work. (Chairman of Walt Disney Television & Telecommunications) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RPM verify weirdness
On Wed, Mar 19, 2008, Gavin Carr wrote: >Hi all, > >Can anyone explain this to me? (CentOS 4/5) > > # rpm -qf /etc/exports > setup > # rpm -V setup > S.5T c /etc/bashrc > S.5T c /etc/printcap > ..?. c /etc/securetty > # echo ' foo' > /etc/exports > # cat /etc/exports > foo > # rpm -V setup > S.5T c /etc/bashrc > S.5T c /etc/printcap > ..?. c /etc/securetty > >I thought verify was supposed to check every file in the package? It does, only displaying changes. The ones with ? are most likely zero length. The ``c'' characters in the middle indicate configuration files, and changes are often normal. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 A child can go only so far in life without potty training. It is not mere coincidence that six of the last seven presidents were potty trained, not to mention nearly half of the nation's state legislators. -- Dave Barry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Xen or VMWARE on CentOS 5
On Wed, Feb 27, 2008, Les Mikesell wrote: >Ern jura wrote: >>Does anyone out there have a comprehensive tutorial on installing VMware >>and >>successfully managing virtual machines with either xen or vmware? > >VMware is pretty simple: download the server rpm, install it, run the >vmware-config.pl setup script to set the options and install your (free) >license key. Then run vmware locally or from some other machine to >access the console where you can create and start the virtual machines. > Once created, you can treat the virtual machines like they were >separate physical boxes except that they contend for host resources (and >once they are up on the network I prefer to connect directly to them >with ssh, X, freenx, or vnc instead of using the VMware console. You'll >want plenty of RAM on the host machine and if you run several VM's they >will perform better if you can spread them over different disk drives. I just started playing with VMware-server-1.0.5-80187 on a 64-bit CentOS 5 system system, and am having some issues with the hotkey switching. Running the vmware-server-console via an ssh connection from a PPC Mac Mini, it doesn't recognize the ctrl-alt sequences, which isn't totally surprising as I'm using a PS/2 Microsoft Natural keyboard on a KVM switch with a USB->PS/2 adapter. When I try running it directly on the CentOS system's console through the same KVM switch, it doesn't respond either. I have installed SCO Openserver 5.0.6a on a virtual image, and that seems to be working OK (my primary object now with VMware is to have a fall-back when customer's OSR5 system's hardware goes south). I have had at least one situation where it didn't recognize the CTRL-RightButton sequence in an xterm running on the OSR5 image. This is a CentOS 5 system with ``yum update'' reporting that everything is current. The system has 2GB RAM. uname -a returns: Linux atramax2.mi.celestial.com 2.6.18-53.1.14.el5 #1 SMP Wed Mar 5 11:37:38 EST 2008 x86_64 x86_64 x86_64 GNU/Linux cat /proc/cpuinfo processor : 0 vendor_id : GenuineIntel cpu family : 6 model : 15 model name : Intel(R) Core(TM)2 CPU 4400 @ 2.00GHz stepping: 2 cpu MHz : 1999.939 cache size : 2048 KB physical id : 0 siblings: 2 core id : 0 cpu cores : 2 fpu : yes fpu_exception : yes cpuid level : 10 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm syscall lm constant_tsc pni monitor ds_cpl est tm2 cx16 xtpr lahf_lm bogomips: 4002.81 clflush size: 64 cache_alignment : 64 address sizes : 36 bits physical, 48 bits virtual power management: processor : 1 vendor_id : GenuineIntel cpu family : 6 model : 15 model name : Intel(R) Core(TM)2 CPU 4400 @ 2.00GHz stepping: 2 cpu MHz : 1999.939 cache size : 2048 KB physical id : 0 siblings: 2 core id : 1 cpu cores : 2 fpu : yes fpu_exception : yes cpuid level : 10 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm syscall lm constant_tsc pni monitor ds_cpl est tm2 cx16 xtpr lahf_lm bogomips: 3999.96 clflush size: 64 cache_alignment : 64 address sizes : 36 bits physical, 48 bits virtual power management: Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Once at a social gathering, Gladstone said to Disraeli, I predict, Sir, that you will die either by hanging or of some vile disease. Disraeli replied, "That all depends upon whether I embrace your principles or your mistress". ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Xen or VMWARE on CentOS 5
On Mon, Mar 24, 2008, Les Mikesell wrote: >Bill Campbell wrote: >>On Wed, Feb 27, 2008, Les Mikesell wrote: ... >>I just started playing with VMware-server-1.0.5-80187 on a 64-bit >>CentOS 5 system system, and am having some issues with the hotkey >>switching. Running the vmware-server-console via an ssh >>connection from a PPC Mac Mini, it doesn't recognize the ctrl-alt >>sequences, which isn't totally surprising as I'm using a PS/2 >>Microsoft Natural keyboard on a KVM switch with a USB->PS/2 >>adapter. When I try running it directly on the CentOS system's >>console through the same KVM switch, it doesn't respond either. >> >>I have installed SCO Openserver 5.0.6a on a virtual image, and >>that seems to be working OK (my primary object now with VMware is >>to have a fall-back when customer's OSR5 system's hardware goes >>south). I have had at least one situation where it didn't >>recognize the CTRL-RightButton sequence in an xterm running on >>the OSR5 image. > >As I mentioned in the post above, I prefer to connect directly to the >guests once their network is up instead of using the vmware console - >and especially so for a guest OS that doesn't have a vmware-tools >package. I only use the console long enough to create and configure the >guest systems. That makes sense, particularly since I didn't understand that the vmware- tools was something that runs on the guest-os. So far I have gotten as far as getting the basics configured including the network interface and have it automatically booting when the Linux box comes up (although it's currently hanging waiting for date entry which may require a bit of hackery). The only way I have found to reliably get mouse and keyboard focus out of the virtual window is to use ctrl-alt-F1 to switch to a character mode, then ctrl-alt-F7 to get back to X11. Tony Lawrence has some useful information for those of use who are afflicted with maintaining SCO OpenServer systems: http://aplawrence.com/OSR5/smithosr5vmware.html Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 If you think health care is expensive now, wait until you see what it coses when it's free -- P.J. O'Rourke ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Commands failing silently?
On Mon, Mar 24, 2008, Dan Bongert wrote: >Hello all: > >I have a couple CentOS 4 servers (all up-to-date) that are having strange >command failures. I first noticed this with a perl script that uses lots of >system calls. > >Basically, sometimes a command just won't run: > >thoth(52) /tmp> ls > ... > >thoth(66) /tmp> uname -a >Linux thoth.ssc.wisc.edu 2.6.9-67.0.7.ELsmp #1 SMP Sat Mar 15 06:54:55 EDT >2008 i686 i686 i386 GNU/Linux > >Nothing in either dmesg or /var/log/messages seems to indicate any >problems. It also doesn't seem to matter what the command is -- ls is the >quickest test, but sshd will sometimes to fail to spawn children, etc. >There aren't a large amount of processes on the machine either -- only 122 >at the moment. There is a very good chance that the machine has been cracked, and the system's /bin/ls routine replaced by one hacked to hide the cracker's programs. ``rpm -V coreutils procps util-linux'' may well show several critical programs changed. You can also try running ``strace /bin/ls'' to see what is going on. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 When I hear a man applauded by the mob I always feel a pang of pity for him. All he has to do to be hissed is to live long enough. -- H.L. Mencken, Minority Report ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Question on mail
On Thu, Mar 27, 2008, Les Mikesell wrote:
>Jerry Geis wrote:
>>All of a sudden I am getting this error this morning.
>>--
>>
>><<< 553 5.3.0 Spam blocked see:
>>http://ordb.org/lookup/?host=mp;{client_addr}
>>501 5.6.0 Data format error
>>
>>Content-Type: message/delivery-status
>>Action: failed
>>Status: 5.3.0
>>Diagnostic-Code: SMTP; 553 5.3.0 Spam blocked see:
>>http://ordb.org/lookup/?host=mp;{client_addr}
>>Last-Attempt-Date: Thu, 27 Mar 2008 09:06:03 -0400
>>
>>---
>>Mail has been working fine for me for a very long time.
>>I goto the address http://ordb.org and I get no page.
>>Is this because this site is down or am I considered spam all of a sudden?
>
>The site hasn't worked in years - I think they recently turned it on
>again denying everything so people would remove it from their configs.
As far as I know, it's been blocking everything for about two
years now. The amazing thing is that people are still using it.
Bill
--
INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
Scientists are explorers. Philosophers are tourists. -- Richard Feynman
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] IMAP security
On Fri, Mar 28, 2008, Anne Wilson wrote: >I have port 143 open so that I can get my mail when away from home. >Occasionally, though, my router reports things like You should be using secure IMAP on port 933, not port 143 where everything is sent in clear text. I don't know about other IMAP servers, but courier-imap handles this by default. Most current e-mail clients allow one to set this up easily, either directly or using TLS to request a secure connection on an initial connection to port 143. This doesn't keep people from trying dictionary attacks via imaps, but it does prevent them from sniffing the connections. Of course you are using good passwords n'est pas? Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Intellectually, teachers fall between education theorists and bright cocker spaniels. (Probably closer to the education theorists. The AKC has been doing wonders with spaniels.) If you think I'm kidding look at the GREs for education majors, whose scores are the lowest of all fields, and remember that these are the smart ones. -- http://www.FredOnEverything.net ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: questions on kickstart
On Fri, Mar 28, 2008, Les Mikesell wrote: >Joshua Baker-LePain wrote: >>On Fri, 28 Mar 2008 at 4:32pm, Ross S. W. Walker wrote >> >>>I think you might be missing a little something in there, like /boot? >> >>/boot is not required to be its own partition. In the days of yore, >>when BIOSes couldn't boot from partitions the crossed the 1024 cylinder >>barrier, it made sense to have a small /boot as your first partition. >>These days? Not so much. > >There are still good reasons to keep it separate. For example you may >want / on something grub doesn't understand like LVM or raid (raid1 can >pretend it isn't, but other levels won't work. Or you may want to move >your / to a drive other than the one that boots. I used to use the separate /boot partition, but quit when the 1024 sector problem was solved, mostly because OS upgrades or installation of alternate distributions in a different partition for ``/'' would frequently result in a less than useful /boot setup. Having /boot on the ``/'' file system isn't as vulnerable to poorly written installation and upgrade scripts. Being a belts and suspenders guy, I don't boot from raid or lvm file systems as there are too many ways things can go bad. I generally build systems with two identical ext3 partitions for ``/'' and ``/backroot', swap, and the remainder in ``/home''. Once the system is installed and configured, the ``/'' is copied to ``/backroot'' with the ``/backroot/etc/fstab'' file edited appropriately and ``/boot/grub/menu.lst'' set up to allow booting from the ``/backroot'' partion (which isn't normally mounted). This provides the ability to boot a damaged system from ``/backroot'', and a fallback position if an upgrade goes south by refreshing the copy just prior to doing the upgrade. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 It is better to die on your feet than to live on your knees! -- Emiliano Zapata. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Is tripwire still being developed?
On Sat, Mar 29, 2008, Mag Gam wrote: Yes, but the emphasis is on their commercial products. Another open source alternative for intrusion detection is aide. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The Constitution is a written instrument. As such, its meaning does not alter. That which it meant when it was adopted, it means now. -- SOUTH CAROLINA v. US, 199 U.S. 437, 448 (1905) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Rocketport PCI drivers CentOS 5.1 x86_64
Are there drivers for the Rocketport PCI 8-port cards for CentOS 5.1 x86_64? I'm not finding anything in the default repos. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 The children who know how to think for themselves spoil the harmony of the collective society that is coming, where everyone would be interdependent. 1899 John Dewey, educational philosopher, proponent of modern public schools. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] MS Exchange Replacement
On Sun, Apr 06, 2008, Joseph L. Casale wrote: >>What about Zimbra or Scallix? >> > >Zimbra looks impressive! Anyone here running it? We have Zimbra running with several hundred mail users on a CentOS 4.5 system (it wouldn't run on CentOS 5 when we started the project). It works well, but does not play nicely with others, basically taking over major parts of the system, postfix, openldap, IMAP, etc., and does so in a manner that makes it difficult to integrate in some systems (e.g. put it behind a postfix, amavisd, clamav, spamassassin system that I can keep current with the Latest & Greatest updates, and configure DNSRBLs to my liking). I like to think I have better solutions for e-mail handling than Zimbra, and much prefer to use them unless there's an absolute demand for Exchange functionallity. I won't get into the licensing religious wars, nor do I mind paying for proprietary solutions if they do a better job for my paying customers than I can do with open source. The horde/imp/kronolith/... family of programs, provide good functionallity, but, like any webmail solution, have some basic limitations due to the web interface. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 "If taxation without consent is not robbery, then any band of robbers have only to declare themselves a government, and all their robberies are legalized." -- Lysander Spooner, Letter to Grover Cleveland 1886 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] xfs and centosplus kernel
On Mon, Apr 07, 2008, Peter Kjellstrom wrote: >On Friday 04 April 2008, Fong Vang wrote: >> I read that XFS has problems with 4K Stack size for Linux on 32-bit >> systems. How did we address this in the centosplus kernel? Since what >> release of CentOS was this problem resolved? > >I just wanted to add that xfs has no special connection to the centosplus >kernel. If you want xfs you pick up the kmod-xfs package (no need to change >kernel). There's more info relating to xfs here describing what to get without using the centosplus repository. http://wiki.centos.org/Repositories/CentOSPlus Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 If the government can take a man's money without his consent, there is no limit to the additional tyranny it may practise upon him; for, with his money, it can hire soldiers to stand over him, keep him in subjection, plunder him at discretion, and kill him if he resists. Lysander Spooner, 1852 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: MS Exchange Replacement
On Mon, Apr 07, 2008, Johnny Hughes wrote: >Jun Salen wrote: >>Joseph L. Casale wrote: >>>What is the closest open source mail server I can replace exchange >>>with that provides the nearest equivalent in user experience? >>> >>>Thanks! >>>jlc >> >>I use Zimbra OS Edition with more than 300 users, Ajax and HTML capable >>and very easy to setup. Looks professional in terms of interface. Good >>community too. The only problem is that it was bought by Yahoo which is >>planning to buy by M$, but since OS version was GPL, then I assume that >>the project will continue even after acquired by M$. Maybe. > >it is NOT GPL, it is YPL ><http://www.zimbra.com/license/yahoo_public_license_1.0.html> and can >not be redistributed without attribution ... so if the M$ buy out >happens there is no guarantee that another version could be made under >the terms of the YPL. > >There has been MUCH dismay about this in the Zimbra forums ... and we >will have to see what happens if the buyout happens. As well there should be. Microsoft has a long history of buying software companies that have *nix solutions that compete with their own products, then killing the *nix versions (RealWorld and other accounting software comes to mind). At one time HP had a promising Exchange replacement, which they dropped. There are those who think that M$ brought pressure on HP to drop this, and HP probably sells far more systems running Windows than they do running *nix systems. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Liberty don't work as good in practice as it does in speeches. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Plone
On Tue, Apr 08, 2008, [EMAIL PROTECTED] wrote: >Any good guide to install Plone? I have googled around and could >not find a good one [meaning clear instructions that I can easily >follow]. From a repository would be best . Have you tried plone.org? There are a variety of quick install methods available? Do you have Zope installed? Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Things in our country run in spite of government. Not by aid of it! Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Server Shut Down!!!!
On Wed, Apr 09, 2008, Harry Sukumar wrote: > >Good Day All, >I have a serious problem on one of my servers running CentOS 5!!! >The problem started this way, >I wanted to store some data under /home and I got an error message saying >it is in the read only mode >So I rebooted the machine, >Then I see this serious error messages at boot time (I am unable to boot) >Here is the Error Message!!! >*** Error occurred during the file system check. >*** Dropping you to shell; the system will reboot This sounds like you have a serious disk/controller problem. I would try booting the system with a Knoppix liveCD (or other livecd of your preference), which should allow you to look at the hard disk to analyze the problem(s), run fsck if fdisk shows that the partition table is intact. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 That rifle on the wall of the labourer's cottage or working class flat is the symbol of democracy. It is our job to see that it stays there. --GEORGE ORWELL ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Summary Server Shut Down!!!!
On Wed, Apr 09, 2008, Harry Sukumar wrote: > >Summary >Many Thanks to Bill Campbell, Nicolas Sahlqvist and Barry Brimer >The problem turned out to be one of disk had software errors (message >attached), >I used ubuntu live cd to fix this issue You are making good backups n'est pas? ... Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 A perpetual and unlimited debt represents deficit spending as a social principle. It means a progressive redistribution of wealth by will of government until there is no more fat to divide; after that comes a level rationing of the national income. It means in the end the cheapening of money and then inflation, whereby the middle class is economically murdered in its sleep. In the arsenal of revolution the perfect weapon is inflation. -- Garet Garrett, The Revolution Was ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] kickstart ks.cfg file on USB devices
Is there an easy way to specify the proper device location for the kickstart configuration file if it is on a USB flash or USB floppy drive? Depending on the hard disk configuration they might by /dev/sda, /dev/sdb, etc. On SuSE'autoyast instalattions, the system searches all available devices for an ``info'' configuration file. Does CentOS 5.x do something similar to find a ``ks.cfg'' file? Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Scientists are explorers. Philosophers are tourists. -- Richard Feynman ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kickstart ks.cfg file on USB devices
On Fri, Apr 11, 2008, Milton Calnek wrote: >findfs comes to mind. > >other than that... >fdisk -l | grep That's fine -- once the system has been installed, but I'm looking for a general way when attempting kickstart installs on new hardware that may find devices in different places. >Bill Campbell wrote: >>Is there an easy way to specify the proper device location for >>the kickstart configuration file if it is on a USB flash or USB >>floppy drive? Depending on the hard disk configuration they >>might by /dev/sda, /dev/sdb, etc. >> >>On SuSE'autoyast instalattions, the system searches all available >>devices for an ``info'' configuration file. Does CentOS 5.x do >>something similar to find a ``ks.cfg'' file? >> >>Bill > >-- >Milton Calnek BSc, A/Slt(Ret.) >[EMAIL PROTECTED] >306-717-8737 > > >-- >This message has been scanned for viruses and >dangerous content by MailScanner, and is >believed to be clean. > >_______ >CentOS mailing list >CentOS@centos.org >http://lists.centos.org/mailman/listinfo/centos > -- Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 When a place gets crowded enough to require ID's, social collapse is not far away. It is time to go elsewhere. The best thing about space travel is that it made it possible to go elsewhere. -- Robert Heinlein ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kickstart ks.cfg file on USB devices
On Fri, Apr 11, 2008, John wrote: >On Fri, 2008-04-11 at 12:18 -0600, Milton Calnek wrote: >> findfs comes to mind. >> >> other than that... >> fdisk -l | grep >> >> Bill Campbell wrote: >> > Is there an easy way to specify the proper device location for >> > the kickstart configuration file if it is on a USB flash or USB >> > floppy drive? Depending on the hard disk configuration they >> > might by /dev/sda, /dev/sdb, etc. >> > >> > On SuSE'autoyast instalattions, the system searches all available >> > devices for an ``info'' configuration file. Does CentOS 5.x do >> > something similar to find a ``ks.cfg'' file? > >"ks=cdrom:/ks.cfg" Specify it at the command prompt at boot time. You >may have to substitute the drive you have your Kick Start file in. That's a no brainer, but when I'm testing various ks.cfg files, it's far quicker to be able to edit a file on a USB device than to burn a new CD. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Government's view of the economy could be summed up in a few short phrases: If it moves, tax it. If it keeps moving, regulate it. And if it stops moving, subsidize it -- Ronald Reagan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Unable to POST after suspend
On Wed, Sep 12, 2007, Mark Rosenstand wrote: >On Tue, 2007-09-11 at 12:13 -0500, B.J. McClure wrote: >> ... > >In its current configuration, this system has survived over 500 boots. >It has failed this one time, which is the only time I've tried to use >suspend. I've tested every component in other PC's and they all seem to >function properly, except the motherboard. > >My theory is that the suspend succeeded but perhaps the BIOS settings >don't define any way to switch state SLEEP -> ON. The system has been >without power and BIOS battery over night, but it hasn't changed >anything. > >Do anybody know of a way to force wake up? Many main boards have a place to set a jumper to reset the BIOS to the default state. I've never tried resetting things using this (and try not to deal with hardware if I can help it which is my my company name is not Celestial Hardware :-). Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The meek shall inherit the Earth, the rest of us will go to the stars... -Dr. Isaac Asimov ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Kickstart install surprise
I have to say that I was more that a bit surprised, if not to say dismayed when I booted a system with CentOS 5 installed to test a kickstart CD in interactive mode, took it to the custom partitioning screen, then rebooted without saving anything only to come up with a grub prompt, and the disk's partition table wiped. The ks.cfg file did say to wipe the disk when installing, but I would expect that it wouldn't do this in interactive mode until one told it to start the installation. I have been installing Linux systems for well over a decade, starting with Caldera Network Desktop 1.0, all versions of Caldera through 2001, and SuSE from 8.1 through SLES10, and never have I seen an installation procedure that would write to anything on the hard drive without asking first. This certainly violates the Principle of Least Surprise. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 When dealing with any spammer, one must always keep in mind that you are dealing with someone who makes their living through forgery, fraud, theft, subterfuge and obfuscation. Stated simply, spammers lie. David Ritz <[EMAIL PROTECTED]> ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart install surprise
On Wed, Sep 12, 2007, Jim Perrin wrote: >I suppose it would help if I finished the reply before sending. > >On 9/12/07, Bill Campbell <[EMAIL PROTECTED]> wrote: > >> I have been installing Linux systems for well over a decade, starting with >> Caldera Network Desktop 1.0, all versions of Caldera through 2001, and SuSE >> from 8.1 through SLES10, and never have I seen an installation procedure >> that would write to anything on the hard drive without asking first. > >The whole idea behind kickstart is that it does not ask questions. >It's for automated installs. Think pxe setup, or a computer lab, or >hundreds of identical workstations. Why answer questions on all of >them, when you can automate the process and go get a coffee? I understand what kickstart is for. I've been doing autoyast installs on SuSE for quite a while to build identical systems. IHMO, If you're going to have an interactive option, then it should be interactive, gathering information to do the install, and not start scribbling on the hard drive until all that information is complete. >> This certainly violates the Principle of Least Surprise. >Not really. The tool works as expected. You're just unfamiliar with it. >Not trying to sound snippy with this, so please don't take it this way. I guess my expectations are a bit different than yours. Yes, I'm unfamiliar with Anaconda and kickstart (and I'm trying very hard to be polite and not be viewed as a troll). I'm new to CentOS, and have had little experience with Red Hat systems. I've been designing computer systems now for over 40 years, Unix systems since 1982, and Linux since 1995. I've always tried to design software as bullet-proof (idiot proof :-) as possible, and not to do irreversible things accidentally (measure twice, cut once). It just happens that I'm reading a very interesting book somewhat related to this, Alan Cooper's ``The Inmates are Running the Asylum: Why High-Tech Products Drive Us Crazy and How to Restore the Sanity''. My primary purpose in the original message was to provide feedback from somebody who's pretty technical, but not steeped in Red Hat/CentOS. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Everybody is ignorant, only on different subjects. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart install surprise
On Wed, Sep 12, 2007, Karanbir Singh wrote: >Bill Campbell wrote: >> My primary purpose in the original message was to provide feedback from >> somebody who's pretty technical, but not steeped in Red Hat/CentOS. > >I have read that book you speak of, it was mildly entertaining - >however, you are quoting that out of context here. > >The problem you have is that you used the wrong tool for the wrong job, >busted your own system - and are now looking for something / someone to >blame. Thats fine. We all have a spleen, needs venting sometimes. How was I using the wrong tool when I was testing a kickstart configuration file in interactive mode, which I figured would be safe as it would allow me to exit before it wrote on the disk? I have done similar testing of autoyast configuration files on many occassions without clobbering anything. I would hardly call it venting. I've made a serious effort not to say some of the things that come to mind (particularly when I found that not only had it nuked my hard drive, but also nuked the external USB drive that happened to be on at the time). If I were venting, I might make comments to the effect that if I wanted to run a system that would eat every drive on the system without asking, I would be running the Microsoft Virus, Windows :-). >Besides that, since you said its all new to you, feel free to hang >around - there is a fantastic knowledgebase here on the list. I am sure >you would be most welcome :) Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 People who relieve others of their money with guns are called robbers. It does not alter the immorality of the act when the income transfer is carried out by government. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Very strange problem i have faced in my 2 years carrier
On Thu, Sep 13, 2007, Feizhou wrote: > >>>I have seen vi do this action when it didn't understand a keycode on teh >>>terminal you are using properly... change the case of a few letters next >>>to the cursor. But IIRC that was busybox vi. >>> >>>Is it crazy to propose someone opened /etc/passwd in vi, and saved it >>>out without noticing this had happened? >>> > >If you suspect your box has been rooted, then perhaps it is time to do >some checking. > >rpm -Va Unfortunately that isn't much use if you're running the default system with prelink as it changes large numbers of executables rendering the RPM verify close to useless. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The very powerful and the very stupid have one thing in common. Instead of altering their views to fit the facts, they alter the facts to fit their views ... which can be very uncomfortable if you happen to be one of the facts that needs altering. -- Doctor Who, "Face of Evil" ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Document Scanning and Storage
On Wed, Sep 12, 2007, Dennis McLeod wrote: >I'd like to start scanning our boxed up documents. I'd say about 30,000 >files total. >Mostly to eliminate the boxes of paper we have. >I'd like to scan them, store them, Have some sort of index, and be able to >retrieve them on multiple machines. I think PDF would be the desired format. >I'd like be able to set some permissions as well. (not a deal breaker...) >I've searched Sourceforge, and have seen knowledgetree, myDMS, contineo, >etc, but really would like to hear from someone that is using something >similar. This is not a trivial operation. I was a principal in a company that developed a Linux based system to do this about 8 years ago, with a product good enough that it made national news when Bill Gates' home town of Medina Washington bought a system from us, not a Windows based system. The scanning can be done pretty nicely using a scanner with and ADF (Automatic Document Feeder), and xsane has the ability to number pages skipping numbers so one can can both sides of two-sided documents in two passes. The biggest issue is probably doing the OCR conversion to get text for indexing. We used proprietary software from Vividata for this which worked pretty well. I haven't looked seriously at gocr or other open source OCR software for Linux so don't know how well it would work. I've been using the ReadIris OCR software on Macs recently, which has some very nice features such as handling multi-page PDF files well. If I were to tackle this today, I would probably do it using Plone since it handles things like indexing and organization well. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Breathe fire, slay dragons, and take chances. Failure is temporary, regret is eternal. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart install surprise
On Thu, Sep 13, 2007, Karanbir Singh wrote: >Bill Campbell wrote: >> How was I using the wrong tool when I was testing a kickstart configuration >> file in interactive mode, which I figured would be safe as it would allow >> me to exit before it wrote on the disk? I have done similar testing of >> autoyast configuration files on many occassions without clobbering >> anything. > >anaconda-kickstart does not have a simulation mode. it might have been >well worth the time to investigate that before trying it out :) >assumption is dangerous. But then I suppose at this stage you might >point to me and say hindsight is an exacting science. Its always easier >to say what one might have or should have done. > >virtual machine technology is fairly far along the road to stability, >thats always a good option when testing such stuff. > >Also, when you say interactive mode - what exactly do you mean by that >? because Anaconda has two modes, Interactive and Kickstart scripted. >And as already been pointed out, you can skip portions out of the >kickstart ( its quite common to see the drive partitioning logic >commented out so that the person on $console might be able to do that >himself ), and anaconda will ask you about those questions. But you cant >really have a complete interactive install session and also have a >kickstart script running alongside. The kickstart configuration file and system-config-kickstart tool have an option for interactive kickstart installations, which I ass-u-me-d would work much the same way autoyast automatic installs do where I can abort the installation any time up to the point where it says start-install, do you really want to do this? My approach to writing GUI sysadmin tools is to have the GUI collect the configuration parameters, then execute one or more command line tools to do the real work. One of the few things I really liked about AIX was that their SMIT tool displays the commands, and logs them as well which can be very useful to figure out what's going on under the hood. This is a bit easier than ``touching'' a file to create a timestamp, doing something with a GUI tool, the using ``find /etc -newer'' to figure out what the GUI tool is actually doing. >> I would hardly call it venting. I've made a serious effort not to say some >> of the things that come to mind (particularly when I found that not only >> had it nuked my hard drive, but also nuked the external USB drive that > >ok thats interesting. by default anaconda should not touch the drives >its not creating partitions on. Unless you expressly tell it to. did >/var/log/anaconda.log, /root/anaconda-ks.cfg, /root/*.log have anything >interesting to say about why it might have nuked that other drive as well ? That could be useful if I hadn't killed the install, only to find myself with two empty disks without partition tables. I just finished reinstalling the system, and now installing all our OpenPKG based software on it. Doing this, I am reminded of something worth venting about -- the aliases on rm, mv, and cp to keep the children from doing dangerous things :-). UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 No matter how much I may exaggerate it, it must have a certain amount of truth...Now rumor travels fast but it don't stay put as long as truth Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart install surprise
On Wed, Sep 12, 2007, Ross S. W. Walker wrote: >Karanbir Singh wrote: >> >> Bill Campbell wrote: >> > How was I using the wrong tool when I was testing a >> kickstart configuration >> > file in interactive mode, which I figured would be safe as >> it would allow >> > me to exit before it wrote on the disk? I have done >> similar testing of >> > autoyast configuration files on many occassions without clobbering >> > anything. >> >> anaconda-kickstart does not have a simulation mode. it might have been >> well worth the time to investigate that before trying it out :) >> assumption is dangerous. But then I suppose at this stage you might >> point to me and say hindsight is an exacting science. Its >> always easier >> to say what one might have or should have done. >> >> virtual machine technology is fairly far along the road to stability, >> thats always a good option when testing such stuff. >> >> Also, when you say interactive mode - what exactly do you mean by that >> ? because Anaconda has two modes, Interactive and Kickstart scripted. >> And as already been pointed out, you can skip portions out of the >> kickstart ( its quite common to see the drive partitioning logic >> commented out so that the person on $console might be able to do that >> himself ), and anaconda will ask you about those questions. >> But you cant >> really have a complete interactive install session and also have a >> kickstart script running alongside. >> >> > I would hardly call it venting. I've made a serious effort >> not to say some >> > of the things that come to mind (particularly when I found >> that not only >> > had it nuked my hard drive, but also nuked the external USB >> drive that >> >> ok thats interesting. by default anaconda should not touch the drives >> its not creating partitions on. Unless you expressly tell it to. did >> /var/log/anaconda.log, /root/anaconda-ks.cfg, /root/*.log >> have anything >> interesting to say about why it might have nuked that other >> drive as well ? > >Well actually there is the kickstart option 'clearpart --all'. > >If one specifies a 'clearpart -all' without specifying which drives then >I believe the result is all partitions from all drives. > >Definitely a VERY dangerous option, I would say that that should have been >clearly stated in the RHEL docs. Agreed! Furthermore, I don't think that system-config-kickstart provides any options to selectively clear partitions. Perhaps it would have been safer had I specified a particular drive in the partitioning section. >I can sympathise with your situation Bill, but one should test carefully >these scripted installs first either on a Xen VM or VMware VM, or on a >bare-bones system that hasn't been customized yet. Fortunately this machine was pretty bare-bones, and won't be installed at our customer's until next Tuesday. It cost me about a half-day though in reconsructing things, and can be considered a learning experience. The external drive was a copy of another external that I had to make as it originally had an xfs file system (which I was surprised to find that CentOS doesn't support by default as I've been using for several years on SuSE systems). I don't mean to be harping on SuSE, it's just that's what I've been working with primarily for the last six years or so, and it's what I know best. If I were moving from CentOS/Red Hat to SuSE, I would probably be surprised by things they support and SuSE doesn't. Two things that I found different that affects our systems the most are (a) lack of support for xfs and jfs file systems, and (b) lack of support for ieee1394 external disks. I've dabbled in gentoo, and ubuntu, but far prefer RPM based systems as that's what I've used since I stared doing serious Linux work about 12 years ago. I'm not an acolyte of the Church of GNU, and get turned off a bit by the religious ferver of the GNU/Linux crowd. >If you want a descructive install may I recommend at least using >'clearpart --linux' which only wipes Linux partitions. That wouldn't have saved the external drive as that had an ext3 Linux file system. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Breathe fire, slay dragons, and take chances. Failure is temporary, regret is eternal. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Very strange problem i have faced in my 2 years carrier
On Thu, Sep 13, 2007, Karanbir Singh wrote: >Bill Campbell wrote: >>Unfortunately that isn't much use if you're running the default >>system with prelink as it changes large numbers of executables >>rendering the RPM verify close to useless. > >unless you are using a very old version of rpm, prelink is not a problem There are still a metric tonne of S.5... lines when doing ``rpm -V'' I just ran a script now that checks all packages on a fresh install of Centos 5, x86_64 with all updates applied. This should be pretty clean on a new install, but ``wc'' on the output returns ``45031 100197 2608718''. Over 45,000 lines of output is a bit much on a new system. Running ``fgrep S.5 filename | grep '/usr/bin/' | wc'' returns 446 files that fail verification in just the /usr/bin directory. This is on a system without prelink, and hasn't been up long enough for cron to have run it in any case. My guess is that it has something to do with the way CentOS handles 64 bit packaging. It appears that it's installing i386 and x86_64 versions of packages. ``rpm -qa | sort | uniq -c'' shows 337 packages with the duplicate names. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Government spending? I don't know what it's all about. I don't know any more about this thing than an economist does, and, God knows, he doesn't know much. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] too many links error when creating directories
On Fri, Sep 28, 2007, chitgoks wrote: > > hi , our centos os has an ext3 file system. and i cant create any more > directories, it gives me a too many links error, even when doing a > manual mkdir. I don't know whether it's applicable here, but I ran into a problem years ago where there was a limit on the number of directories at the root of a file system, but only at the root of the system. The solution was to create symbolic links in the top level directory to subdirectories. I haven't seen this problem on Linux systems, and we have some /home directories with about 10,000 subdirectories. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Anyone who thinks Microsoft never does anything truly innovative isn't paying attention to the part of the company that pushes the state of its art: Microsoft's legal department. --Ed Foster, InfoWorld Gripe Line columnist ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] too many links error when creating directories
On Thu, Sep 27, 2007, John R Pierce wrote: >chitgoks wrote: >>hi john >> >>ext3 does have its limit right? because i am planning on upgrading the >>file system to reiser instead. does retuning the file system always >>have you require to back up your data? > >ext3's inode limits are set when you create the file system. the >defaults are generally adequate, unless you're going to create very many >very tiny files (say, <= 4K). > >AFAIK, ReiserFS is completely unsupported by RHEL and CentOS.You'll >be on your own. I would avoid reiserfs as I've seen far too many cases where there has been massive data loss with it. I've used xfs extensively on SuSE systems without problems, but haven't tried it on centos as it's not supported by the base systems. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 The very powerful and the very stupid have one thing in common. Instead of altering their views to fit the facts, they alter the facts to fit their views ... which can be very uncomfortable if you happen to be one of the facts that needs altering. -- Doctor Who, "Face of Evil" ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Silly question - Anything faster than rm?
On Sat, Sep 29, 2007, Jamie Lists wrote: >On 9/29/07, Luciano Rocha <[EMAIL PROTECTED]> wrote: >> On Sat, Sep 29, 2007 at 04:43:43AM -0700, Jamie Lists wrote: >> > Maybe this is a silly question, but i have a few million files i need >> > to delete but i can't just reformat the volume. >> > >> > Right now the fastest thing i can think of is >> > >> > nice -20 rm -Rf /folder-i-want-to-delete >> > >> > is there a better or faster way to do this? >> >> No, but if you want to re-use the directory name, rename it before >> removing it: >> mv folder-i-want-to-delete _removed_folder >> rm -fr _removed_folder & >> keep working... >> >> -- >Thanks for the tip.. We just have millions and millions of files and >it's taking FOREVER haha! > >I thought maybe there might be some other command i'm not aware of >that would wipe this stuff out faster ya know. If there's not much other data on the file system it might be faster to copy that off, make a new file system, then copy the data back. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Government's view of the economy could be summed up in a few short phrases: If it moves, tax it. If it keeps moving, regulate it. And if it stops moving, subsidize it -- Ronald Reagan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Silly question - Anything faster than rm?
On Sun, Sep 30, 2007, Matthew Miller wrote: >On Sun, Sep 30, 2007 at 07:14:54PM +, [EMAIL PROTECTED] wrote: >> Go with fat16 or fat32 instead of ext3fs. > >For performance??? For humor, a very bad joke. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 I don't make jokes, I just watch the Government and report the facts... Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Silly question - Anything faster than rm?
On Sun, Sep 30, 2007, [EMAIL PROTECTED] wrote: >For deleting performance. When it comes to deleting files, fat seems >fairly quick. It even can magically delete ones you wanted. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Zimbra error on centos 4.4
On Wed, Oct 03, 2007, Indunil Jayasooriya wrote: > > Is anybody out there that has successfully installed Zimbra on > Centos 4.4. I downloaded .tgz for RHEL4 from Zimbra site. it is the > opensource edition. > this is the one I downloded. > zcs-4.5.7_GA_1319.RHEL4.tgz > I extracted and run istall.sh. Then, I got below error? > Install anyway? [N] y > The system will be modified. Continue? [N] y > Removing /opt/zimbra > Installing packages > zimbra-core...basename: too few arguments > Try `basename --help' for more information. > ..FAILED > ###ERROR### > installation failed > Installation cancelled > YOUR COMMENTS ? > > I myself got it running BEYOND this point. But, Now I get below error. > *** CONFIGURATION COMPLETE - press 'a' to apply > Select from menu, or press 'a' to apply config (? - help) a > Save configuration data to a file? [Yes] > Save config in file: [/opt/zimbra/config.11051] > Saving config in /opt/zimbra/config.11051...Done > The system will be modified - continue? [No] yes > Operations logged to /tmp/zmsetup.log.11051 > Setting local config values...Done > Setting up CA...Done > Creating SSL certificate...Done > Initializing ldap...Failed to start slapd. Attempting debug start to > determine error. > daemon: bind(7) failed errno=99 (Cannot assign requested address) > slap_open_listener: failed on ldap://mailgw.la-[1]marge.com:389 > FAILED (1) > ERROR > Configuration failed > YOUR COMMENTS? This would happen if one had slapd running already. Zimbra requires that one remove conflicting services before installing, including, as I remember, an MTA, openldap, pop, and imap. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Most people, sometime in their lives, stumble across truth. Most jump up, brush themselves off, and hurry on about their business as if nothing had happened. - Sir Winston Churchill ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Zimbra error on centos 4.4
On Thu, Oct 04, 2007, Ralph Angenendt wrote: >umair shakil wrote: >> >>Salam, >>openldap & bind package is missing . > >Em. No. > >>daemon: bind(7) failed errno=99 (Cannot assign requested address) >>slap_open_listener: failed on ldap://mailgw.la-[2] marge.com:389 > >slapd cannot bind to the adress:port - probably because something is >already listening there. Zimbra really wants to own the machine, and doesn't play nicely with others. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 It is no crime to be ignorant of economics, which is, after all, a specialized discipline and one that most people consider to be a 'dismal science.' But it is totally irresponsible to have a loud and vociferous opinion on economic subjects while remaining in this state of ignorance. -- Murray N. Rothbard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Need advice on 3rd party repository
On Fri, Oct 05, 2007, Ray Van Dolson wrote: >On Fri, Oct 05, 2007 at 07:29:12PM -0400, Jesse Cantara wrote: >> Hello, >> >> I am looking for some advice on a way to update some packages to newer >> releases than are available in the standard CentOS repositories. >> Specifically, I am trying to update apache and PHP to conform to >> "Scanalert"'s "Hacker Safe" website security scan, and the required >> versions do not exist in the CentOS repositories. I'm using CentOS 5. > >Are you sure there are actually issues with your versions of PHP? The >upstream vendor backports security fixes: > > http://www.redhat.com/security/updates/backporting/ > >Security scanning tools often have no clue of this. You could have left off `` of this''. Several of the security scanning companies I've dealt with seem to be seriously lacking in clues. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Our Foreign dealings are an Open Book, generally a Check Book. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] accurate file size
On Sun, Oct 14, 2007, Stephen Harris wrote: >On Sun, Oct 14, 2007 at 04:30:16PM -0400, [EMAIL PROTECTED] wrote: >> Hello >> >> I was copying some files from one server to other, >> that I relized the total file size ( sum of all files ) >> in one server is a bit more than the one that copied from >> ( about 6 when I do du -s ) > >"du" takes into account block sizes and so on, so may not be the same on >two different machines. "ls -l" shows the exact size per file. There may also be differences if the file system types are different between the systems (e.g. reiserfs vs ext3). There is overhead on all file systems, so that a fresh, empty file system will have less free space than one might expect based on the size of the disk, number of sectors, and block size. I would expect that a newly built file system would have more available space after loading files from another system would have a bit more free space, all other things being equal, because new files would likely be in contiguous space, not spread about as may happen with growing database files. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 You know the one thing that's wrong with this country? Everyone gets a chance to have their fair say. -Bill Clinton, May 29, 1993, The White House ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: DocX support in OpenOffice
On Thu, Oct 18, 2007, Scott Silva wrote: >on 10/18/2007 12:03 PM Frank Cox spake the following: ... >>Many people switch to using Linux after they get tired of the crap that >>goes >>along with trying to get things done with Windows. I don't see that as a >>sign >>that there is anything in need of fixing. >Microsoft makes proprietary standards because they are the 800 pound >gorilla of the PC world. Until the world finally puts Microsoft behind >them, you have to deal with inter-operability with your peers. And when you >are trying to persuade a business to part with their hard earned dollars to >deal with your business, asking them to change to suit you will not fly >very far. Microsoft is having *SERIOUS* problems in the EU now, in no small part due to the efforts of Andrew Tridgell and other members of the Samba team who have testified at length regarding Microsoft's practices. Microsoft also attempted to pack the international committee with their Partners in their attempt to get their proprietary XML Office formats accepted as a Standard. These attempts have failed so far. >You can have principles, or you can have income. You can have income and principles (although I have a hard time explaining to my wife why I would never work for Microsoft :-). I could make a lot more income if I were willing to work cleaning up after Windows machines. I do have a fair number of people who have been using OpenOffice on Linux machines since the days it was StarOffice, before Sun bought them. My poster child for this is a 65+ psychologist who is also very active in local politics. She handles hundreds of Microsoft Office files a week using OpenOffice.org software, and loves to tell her friends how solid her system is and that she doesn't have to worry about worms and virii. On the other hand, I have been recommending that most people use OS X for their desktop applications for the last five years or so as it Just Works(TM) without hassles, OpenOffice.org works fine, and they can get Microsoft Office 2004 for Mac if they feel compelled to do so. Before I got a Mac Mini for my own desktop almost four years ago, I would have to use Windows once a year for TurboTax, but that is available for the Mac. Two years ago I gave my wife a Mac Mini to replace her Win98 machine so she no longer has to listen to me piss, moan, and cuss whenever I have to deal with Windows. On her Windows machine, I exported here C drive, read-only, and mounted it on the Mac so she could get to her old data, but not write it back to the Windows machine. We still use Linux for all of our servers, and will for the foreseeable future, but I find the Macs more suitable for the average desktop user who doen't care about what's under the hood. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 ...I'm not one of those who think Bill Gates is the devil. I simply suspect that if Microsoft ever met up with the devil, it wouldn't need an interpreter. -- Nick Petreley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] LD_ASSUME_KERNEL library issues CentOS 5 x86_64
I'm trying to get the Syspro/Encore MRP software running on a new CentOS 5 x86_64 system which uses an ODBC package built with old glibc/errno libraries. I have this same software running on a Suse Linux Enterprise 9 SP3 system using LD_ASSUME_KERNEL=2.4.1, but when I try this on CentOS 5 it results in many unidentified libraries including libc.so.6, librt... etc. My guess is that there are packages that support these compatibility libraries, and, silly me, I thought these might be in the compat-glibc package, but that doesn't work. Any suggestions? Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 If you make yourselves sheep, the wolves will eat you -- Benjamin Franklin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Filesystem for Maildir
On Wed, Nov 28, 2007, Christopher Chan wrote: > >>>What does fsbench say? It has the best writing performance too?!? >>> >>No, according to the fsbench results, ReiserFS wins on Read Performance, >>but XFS is, approximately, four times more faster on write. >> >>I said that the ReiserFS have the best performance based on my >>read/write server statics, where read requests are 70% of total I/O >>requests. > >Ah. Too bad reiserfs is not stable enough for you. I've lost several file systems to reiserfs, originally figuring that they were safe since SuSE has used them as their default for years. We're using ext3 now as it appears to be rock-solid, is supported out of the box by every Linux I've used, and I've never lost one. We haven't had any notable performance problems using this at a regional ISP customer's site with about 10,000 e-mail users and several machines in a cluster delivering mail to Maildir folders that are NFS mounted to the central server. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Many companies that have made themselves dependent on [the equipment of a certain major manufacturer] (and in doing so have sold their soul to the devil) will collapse under the sheer weight of the unmastered complexity of their data processing systems. -- Edsger W. Dijkstra, SIGPLAN Notices, Volume 17, Number 5 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Filesystem for Maildir
On Thu, Nov 29, 2007, Rodrigo Barbosa wrote: >On Wed, Nov 28, 2007 at 08:51:25AM -0800, Bill Campbell wrote: >> We haven't had any notable performance problems using this at a regional >> ISP customer's site with about 10,000 e-mail users and several machines in >> a cluster delivering mail to Maildir folders that are NFS mounted to the >> central server. > >I've been using ext3 on server with 2+ boxes for quite some time now, >without any performance problems. > >I'm using the same kind of setup you use. Cluster, Maildir, NFS. > >Works quite nice, doesn't it ? Very. We have a single Linux box facing the Internet which runs everything through postfix, amavisd, and clamav to weed out the phishing and worms that attack the Microsoft virus, Windows, then hands off messages that pass to the internal cluster using round-robin DNS as the poor-mans load balancer. This box runs with a load average less than 1.00 most of the time, rejects close to 2 million messages a day on IP related tests, passing about a half-million through to the internal servers which do the spamassassin checking and delivery to the user's mail stores. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 We shouldn't elect a President; we should elect a magician. Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Mail Server Install
On Thu, Nov 29, 2007, Steve Searle wrote: >Around 04:48pm on Thursday, November 29, 2007 (UK time), Tronn Wærdahl >scrawled: > >> British and English is the same ain't it .. > >No, England is one of the countries in Britain. English, Scots and >Welsh are all British. And all speak different languages :-). Winston Churchill said the U.S. and Britain are two peoples separated by a common language. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 A fake fortuneteller can be tolerated. But an authentic soothsayer should be shot on sight. Cassandra did not get half the kicking around she deserved. -- R.A. Heinlein ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Filesystem for Maildir
On Fri, Nov 30, 2007, Christopher Chan wrote: >Bill Campbell wrote: >>On Thu, Nov 29, 2007, Rodrigo Barbosa wrote: >>>On Wed, Nov 28, 2007 at 08:51:25AM -0800, Bill Campbell wrote: >>>>We haven't had any notable performance problems using this at a regional >>>>ISP customer's site with about 10,000 e-mail users and several machines >>>>in >>>>a cluster delivering mail to Maildir folders that are NFS mounted to the >>>>central server. >>>I've been using ext3 on server with 2+ boxes for quite some time now, >>>without any performance problems. >>> >>>I'm using the same kind of setup you use. Cluster, Maildir, NFS. >>> >>>Works quite nice, doesn't it ? >> >>Very. We have a single Linux box facing the Internet which >>runs everything through postfix, amavisd, and clamav to weed out >>the phishing and worms that attack the Microsoft virus, Windows, >>then hands off messages that pass to the internal cluster using >>round-robin DNS as the poor-mans load balancer. This box runs >>with a load average less than 1.00 most of the time, rejects >>close to 2 million messages a day on IP related tests, passing >>about a half-million through to the internal servers which do the >>spamassassin checking and delivery to the user's mail stores. >> > >What processing and i/o power do you have on that box and how much RAM? >For the front end boxes, I had about 20-30 dual PIII 800Mhz boxes with >two SCSI disks and 1GB worth of RAM. They reject close to 180 million >messages based on access and ip rules, header and body checks (so >nothing cpu heavy) and they pass on about 3 million for routing or >further processing. The border MX machine is running a Intel(R) Pentium(R) 4 CPU 3.20GHz, seen as two processors in /proc/cpuinfo with 6389.76 bogomips. It has 2GB RAM, and currently has a load average of 0.24 reported by top. The hard drive is a 40GB WDC WD400JD-19LS SATA which isn't anything special by any means. It's running SLES9, installed in February 2006. Uptime is only 356 days as it had to be rebooted to move things around in the rack. The machines handling mail deliver in the cluster vary. The first one I checked has an Intel(R) Celeron(R) CPU 2.66GHz with 1GB of RAM. These too have pretty vanilla SATA drives. The main server with the home directories has an Intel(R) Pentium(R) 4 CPU 3.00GHz with no SMP, 2GB RAM, and several SATA drives. The border MX isn't beginning to breath hard handling the IP access rules, postfix, amavisd, and clamav. We have seen very even distribution amongst the delivery machines in the cluster using nothing more for load balancing than dnscache from djbdns for a single hostname on the private internal 10/100 LAN. The attached image shows the size of the mail queues on each of the 4 machines every fifteen minutes since midnight yesterday. This peaks shortly after midnight when daily security scans and other maintenance jobs are running. The load averages on these cluster machines rarely gets over 1.00. The primary limiting factor seems to be the time spamassassin takes to process messages. This is typically measured in seconds per message on commodity hardware. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Do not meddle in the affairs of dragons, for you are crunchy and taste good with ketchup. <>___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Obtuse-smtpd and Postfix
On Sat, Dec 01, 2007, Manuel Leon wrote: > > Hi all > > > I would like to switch to CENTOS Postfix from sendmail. My current > sendmail, in combination with > > the very old obtuse-smtpd, allows me: > > 1. To control who of the internal users can send mail and > to which domain or accounts You could control access by requiring them to send via the submission port (587) with smtp-auth either using sasl or dovcot and postfix. > 2. To control who of the internal users can receive mail and > from which domain or accounts I think would require some work using Chip Salzenberg's deliver program, procmail, or some such MDA (Mail Delivery Agent) behind postfix. Off hand I can't think of how one would do this directly with postfix. > 3. To obtain a copy of all sent mails > > 4. To obtain a copy of all received mails These two could be handled using always_bcc in postfix's main.cf. > > Obtuse-smtpd is very easy to configure and very effective. It takes > control of all smtp activities over Port > > 25 and, after filtering and checking, passes the safe mails to > sendmail for final delivery. Obtuse can, also, > > check for addressability, through DNS, of the mail sender and other > useful features. Postfix gives lots of options for incoming filtering using DNS, amavisd and clamav etc. There's extensive documentation on the postfix web site, http://www.postfix.org/ Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 People from East Germany have found the West so confusing. It's so much easier when you have only one party. -- Linus Torvalde, Linux Expo Canada when asked about confusion over many Linux distributions. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pcre vs. regexp for Postfix checks
On Mon, Dec 03, 2007, Miark wrote: >What are your opinions on pcre vs regexp for header_, body_, and >mime_checks in Postfix? > >I looked at the regexp_table and prce_table man pages, and see >almost no difference other than the available flags. The main difference is that pcre uses the same regular expression syntax as perl and python. I consider this an advantage as I've been using this syntax for the better part of 20 years, and don't have to remember how other systems handle REs (which is a major part of my reason for starting to use perl in the late '80s). Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 Good luck to all you optimists out there who think Microsoft can deliver 35 million lines of quality code on which you can operate your business. -- John C. Dvorak ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SSH question
On Wed, Dec 05, 2007, Evans F. Mitchell KD4EFM / AFA2TH / WQFK-894 wrote: >On my logwatch that I have emailed to me, >I see a line where I'm showed logging in via a known >ip address, and when I log in from my laptop through >my EV-DO card wirelessly, the computer show log in as >ok, but it can not translate the ip from the aircard >and marks the log in as a possible hack attempt. > >How do you go in and set a network subnet as a valid >ip block and not an attack attempt? You need to set up DNS so that the dynamic IP address assigned internally resolves to a hostname that your system likes. It may be sufficient to do this in the /etc/hosts file. We use split-horizon DNS with djbdns to allow internal resolution of private subdomains and reverse DNS for the local private net blocks without broadcasting this to the world. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 A child can go only so far in life without potty training. It is not mere coincidence that six of the last seven presidents were potty trained, not to mention nearly half of the nation's state legislators. -- Dave Barry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] x25 line xterm
On Fri, Feb 04, 2011, Hal Davison wrote: >Noted that xterm by default uses 24 lines >per window. > >I have reviewed /etc/termcap looking for a >specific entry for xterm that I can edit >to change the ln#24 to ln#25 for our >application. > >When I used RedHat there was an editable >option to change the number of displayable >lines as is done in putty. At the command line: 'xterm -geometry 80x25'. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 ...it does not require a majority to prevail, but rather an irate, tireless minority keen to set brush fires in people's minds... -- Samuel Adams ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] openoffice & command line printing
On Fri, Feb 18, 2011, Gregory P. Ennis wrote: > >On 18/02/2011, at 2:29 PM, Gregory P. Ennis wrote: > >> Everyone, >> >> I am trying to print some *.doc files from the command line with >> openoffice on centos 5.5 with using cups as the print server. >> >> I can open the file from the command line with open office and then >> print it manually from the gui, but when I open the file and print from >> command line I am not getting anything. >> >> The commands that I have used are the following : >> >> /usr/bin/openoffice.org -pt lpt4 /mnt/lp/document.doc >> -terminate_after_init > >This works for me on LibreOffice on my Mac (also uses Cups) > >LibreOffice 3.3 330m12(Build:1) > >/path/to/soffice -headless -pt PRINTER_NAME doco.doc > >Note though that if you wanted to do this outside of X11, it might fail... I tried this using NeoOffice on my Macbook Pro which doesn't use X11, but I expect that it would fail on Linux without X11 as it presents the normal print dialog box to select the printer even though it's set on the command line. Answering the question below, I ran this in background, terminating the command with "&", which left NeoOffice running, but gave me the command line back so I could continue. This is not entirely a Bad Thing(tm) as it avoids the startup time when printing multiple documents. On the other hand, having NeoOffice present the print dialog box for every file is less than optimal, but it looks like that's a NeoOffice thing. I tried the same command with the path to the most recent OpenOffice.org soffice which didn't present the dialog box, and terminated after the print job was complete. Trying this on a CentOS 5 box here it works fine running the job in background where it is ready to run subsequent print jobs. This does not present the print dialog box either. I ran this test in an xterm via ssh with X11 forwarding from my Macbook Pro. Another test using 'xterm -e ssh -x' to disable X11 forwarding failed on startup saying it can't open DISPLAY. Running the command with 'ssh -Y user@system /path/to/soffice ...'' did work nicely, and did not leave soffice running on completion. >-- > >Cameron, > >Thanks for your suggestion > >On my system that command results in printing the document on the >desired printer, but does not return back to the shell prompt. If I add >-terminate_after_init so that the command line is : > >openoffice.org -headless -pt lpt3 document.doc -terminate_after_init > >The above command returns back to the prompt but the document is not >printed. > >Any other ideas would be appreciated!!! > >Greg > >___ >CentOS mailing list >CentOS@centos.org >http://lists.centos.org/mailman/listinfo/centos > -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things. -- Doug Gwyn ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] iptables question.
We use a home-brew system similar to fail2ban to block traffic from IP addresses which appear to be doing Nasty Things(tm). The main thing our system does that fail2ban doesn't is to use a central DNSRBL we maintain allowing it to immedatiately ban listed IP addresses the first time they make an attempt to connection without waiting for them to hit a sufficient number of times to bring up the block. This system sends e-mail messages to our security alias whenever a blocking even occurs, either from tcp_wrappers or swatch log watcher. My problem is that occassionally an IP addresses doesn't appear to be blocked as we continue to see the e-mail messages after the blocks are in place. Most frequently these occur from courier-imap failed login attempts, less frequently from sshd. To start, iptables is initialized by setting up a named rule set, say on eth0: # these two set up the rule set. iptables -N csblocks iptables -A csblocks -j RETURN # now add it to input, check csblocks on all new connections. iptables -i eth0 -m state --state NEW -j csblocks #Insert block IP address 1.2.3.4 as first rule in the set. iptables -I csblocks 1 -s 1.2.3.4 -j DROP # now add a rule to prevent IP forwarding on gateway machines. iptables -A FORWARD -s 1.2.3.4 -j DROP # for good measure, null route the IP route add -host 1.2.3.4 reject With all that incoming attempts still seem to get by for a few IP addresses, but certainly not all. Can anybody point out what I'm doing wrong, or why this may happen? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 An almost hysterical antagonism toward the gold standard is one issue which unites statists of all persuasions. They seem to sense that gold and economic freedom are inseparable. -- Alan Greenspan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables question.
On Mon, Feb 21, 2011, Stephen Harris wrote: >On Mon, Feb 21, 2011 at 03:32:40PM -0800, Bill Campbell wrote: > >> My problem is that occassionally an IP addresses doesn't appear to be >> blocked as we continue to see the e-mail messages after the blocks are in >> place. Most frequently these occur from courier-imap failed login >> attempts, less frequently from sshd. >> >> To start, iptables is initialized by setting up a named rule set, >> say on eth0: >> >> # these two set up the rule set. >> iptables -N csblocks >> iptables -A csblocks -j RETURN >> >> # now add it to input, check csblocks on all new connections. >> iptables -i eth0 -m state --state NEW -j csblocks > >> With all that incoming attempts still seem to get by for a few IP >> addresses, but certainly not all. >> >> Can anybody point out what I'm doing wrong, or why this may happen? > >Connections that are already established may be blocked but traffic >will continue to flow because you're only blocking on "NEW" traffic. > >eg > >login fail >login fail >login fail > tripped the threshold> >login fail >login fail >login fail > > > >You'll see 3 login failures after the block occured because the connection >was still open. That makes sense, and was one of the first things I thought of. On the other hand "lsof -n -i" doesn't show any open connections to the IP address, and I would think that the forwarding and null route would prevent that. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Historically, inflation is a classic game of legal plunder, more effective than taxes since the legalized theft is concealed. -- T. Hunt Tooley http://mises.org/story/3292 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: grep regex pointer appreciated
On Mon, Mar 07, 2011, Robert Grasso wrote: >Hello, >On my opinion, grep is not powerful enough in order to achieve what you >want. It would be preferable to use at least some (old but powerful) tools >such sed, awk, or even better : perl. Actually, what you need is a tool >providing a capture buffer (this is perl jargon - "back references" in sed >jargon) in which you can get the string you want to extract, rather than >trying to build up a positive matching regex, as the string boundaries seem >to be easy enough to describe with regexs. One can use pcregrep which is grep that groks perl regular expressions. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 If the government can take a man's money without his consent, there is no limit to the additional tyranny it may practise upon him; for, with his money, it can hire soldiers to stand over him, keep him in subjection, plunder him at discretion, and kill him if he resists. Lysander Spooner, 1852 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] script question
On Thu, Mar 31, 2011, Jerry Geis wrote: >I can do "simply" search and replace with sed. >However, I want to setup httpd.conf from a script >that changes the default "/" which is presently: While this can be done with sed, it's generally a lot easier to do with python or perl, particularly when dealing with multi-line replacement patterns. It was this type of job that led me to perl in the late 1980s as perl was a lot easier to understand than advanced sed features, and there was only one regular expression syntax to remember. Currently I use python for most things, but don't want to start a scripting language wars thread here. There's a very useful script 'replace' in the Kernighan and Pike book "The Unix Programming Environment" which uses sed for in-place replacements as an example of exception handling (MySQL has a similar 'replace' script but with different arguments which tells me that their developers hadn't done much basic *nix study as this book, while old, is still excellent). The best book I've ever read on sed is "Unix Text Processing" by Dougherty and O'Reilly which covers many *nix utilities. > >Options FollowSymLinks >AllowOverride None > > >and change it to the following: > > >Order Deny,Allow >Deny from all >AllowOverride None > > >How do you do that with scripts? Basically substitute everything between >the two Directory tags. > >Thanks, > >Jerry >___ >CentOS mailing list >CentOS@centos.org >http://lists.centos.org/mailman/listinfo/centos > -- Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 It's just got so that 90 percent of the people in this country don't give a damn. Politics ain't worrying this country one tenth as much as parking space. -- Will Rogers ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SQL*Plus output as PDF [Linux]
On Wed, Apr 13, 2011, m.r...@5-cent.us wrote: >Sven Aluoor wrote: >> Hi folks >> >> I generate with SQL*Plus a CSV file. How to convert this to PDF? Or >> more generally: how to get SQL*Plus output to PDF on Linux? I generally go from CSV files to PDF using a python scripts to generate input for groff, then use groff to create the PDF files. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 To disarm the people is the most effectual way to enslave them. -- George Mason ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [OT] ups advice
On Thu, Apr 14, 2011, Brunner, Brian T. wrote: >centos-boun...@centos.org wrote: >> On Thu, Apr 14, 2011 at 5:06 PM, admin lewis >> wrote: >>> Hi >>> I have a Dell PowerEdge T310 *tower* server.. I have to buy an ups by >>> apc... anyone could help me giving an hint ? >>> a simple "smart ups 1000" could be enough ? > >UPS and Power Supplies are not all the same. >If the UPS has a stepped voltage output (not smooth sine wave like the >local public grid has) in large enough steps to mess up the power >supply, you wind up with no UPS in effect. We have been using APC UPSs for decades now, and the only major problem I've seen is batteries swelling in some of the rack-mount chassis making them difficult to impossible to remove. By difficult I mean taking the cover off the UPS to get to the batteries. By impossible, taking the cover off reveals that the construction is such that the batteries won't come out the top. We lose power fairly frequently here, and need the UPSs to keep things going long enough to get generator backup started. I have found that the APC UPSs really don't like cheap generators. We had a week long power outage after the 2001 Clinton Inaugural windstorm, and I got an inexpensive generator from Sears which didn't work at all with APC equipment. We're now using Honda generators which are very quiet, and have kept things going for over a week at a time. Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 Find out just what people will submit to, and you have found out the exact amount of injustice and wrong which will be imposed upon them; and these will continue until they are resisted with either words or blows, or both. The limits of tyrants are prescribed by the endurance of those whom they oppress. -- Frederick Douglass. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] USB->Parallel cable compatibility
I have an installation where we're replacing a rather old Linux box with a new one that has no parallel ports. The old box has two parallel ports going to Okidata printers. The IOGEAR GUC1284B USB to Parallel Adapter cable looks like it might be a simple solution to this, but I would like to know that it works before getting a couple. Comments? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way Voice: (206) 236-1676 Mercer Island, WA 98040-0820 Fax:(206) 232-9186 Skype: jwccsllc (206) 855-5792 the incurable idiots may conceivably constitute an absolute majority of the population. -- H.L. Mencken ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Raspberry Pi 4 and C++ 17
On Mon, Apr 25, 2022, Will wrote: >Hi, > >I have a program I want to run on a Raspberry PI 4 that was written on an >x86_64 architecture. So I downloaded the Raspberry PI image of CentOS 7 and >now I'm on armv7hl. Unfortunately, there doesn't appear to be any devtools >for arm at all. Is there an easy(ish) way to get c++ 17 this architecture? What program do you want to run on the Pi 4? Bill -- INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC URL: http://www2.celestial.com/ 6641 E. Mercer Way Mobile: (206) 947-5591 PO Box 820 Fax:(206) 232-9186 Mercer Island, WA 98040-0820 Instead of giving money to found colleges to promote learning, why don't they pass a constitutional amendment prohibiting anybody from learning anything? If it works as good as the Prohibition one did, why, in five years we would have the smartest race of people on earth. -- The Best of Will Rogers ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Raspberry Pi 4 and C++ 17
On Mon, Apr 25, 2022, Will wrote:
>On 4/25/2022 4:09 PM, Bill Campbell wrote:
>> On Mon, Apr 25, 2022, Will wrote:
>> > Hi,
>> >
>> > I have a program I want to run on a Raspberry PI 4 that was written on an
>> > x86_64 architecture. So I downloaded the Raspberry PI image of CentOS 7
>> > and
>> > now I'm on armv7hl. Unfortunately, there doesn't appear to be any devtools
>> > for arm at all. Is there an easy(ish) way to get c++ 17 this architecture?
>> What program do you want to run on the Pi 4?
>>
>> Bill
>It's something I wrote myself a few years ago that extensively uses
>std::filesystem.
Will,
Have you tried building on the current 64 bit Raspberry PI Linux?
My most recent install is running on an 8GB Pi 4+ in an Argon One M.2
case with 1TB SSD drive in a headless configuration. I've built
over 300 packages from sources for amavisd through zlib on the Pi.
These are all packages I've been using for decades going back to
Caldera Linux and most recently CentOS.
I've had to install quite a few development packages using apt-get
on the Pi. I could provide a complete list of installed packages
that could be used to quickly use apt-get install to pull in the
packages needed.
# dpkg-query -f '${binary:Package}\n' -W | sort > packages_list.txt
# comm -13 packages_list.txt mypackagelist > newpackages
# apt-get update
# apt-get install `cat newpackages`
Bill
--
INTERNET: b...@celestial.com Bill Campbell; Celestial Software LLC
URL: http://www2.celestial.com/ 6641 E. Mercer Way
Mobile: (206) 947-5591 PO Box 820
Fax:(206) 232-9186 Mercer Island, WA 98040-0820
...if it weren't for the the denial of common sense, most of our
public intellectuals would have nothing to do -- Tom Woods, Meltdown
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
