Re: [CentOS] ssh terminal froze once in a while
Centos wrote: Hello My ssh terminal froze some times, and I was thinking it might be related to centos , but now I found that even ubuntu users experiencing the same problem. does ssh logs any where, and what do you suggest for finding the cause. Had the same/similar problem. Our home dirs are nfs mounted from a linux box & if I explicitly set the nfs mount options in fstab instead of using the catchall "default" , the problem seems to go away. Workign locally on the client on the nfs home dir was OK, just that an ssh session to another box ( and same nfs home dir ) would occasionally hang after time. Never found any complaints in any log files - discovered my "cure" by accident really. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Vmware Server on Centos 5.1
Alfredo Perez wrote: Regards Alfredo The Sauce Your sig brought a smile to my face. Thanks - I needed it. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Firewall frustration
Robert Moskowitz wrote: qsm wrote: maybe shorewall can do your live so easy. It does not support the rtl8150 chipset. That is what the I have in the way of USB ethernet dongles. Which is another reason to go with a Centos based solution when you need to put something up as you go. Which is how I have shorewall/shoreline working . . . . [EMAIL PROTECTED] ~]$ cat /etc/redhat-release CentOS release 5 (Final) [EMAIL PROTECTED] ~]$ rpm -qi shorewall Name: shorewallRelocations: (not relocatable) Version : 4.0.2 Vendor: Invoca Systems Release : 3 Build Date: Mon Aug 20 09:03:41 2007 Install Date: Mon Aug 20 09:05:25 2007 Build Host: nutube Group : System Environment/Base Source RPM: shorewall-4.0.2-3.src.rpm Size: 483558 License: GPL Signature : (none) Packager: Simon Matter <[EMAIL PROTECTED]> URL : http://www.shorewall.net/ Summary : Shoreline Firewall is an iptables-based firewall for Linux systems Description : The Shoreline Firewall, more commonly known as "Shorewall", is a Netfilter (iptables) based firewall that can be used on a dedicated firewall system, a multi-function gateway/router/server or on a standalone GNU/Linux system. Shorewall offers two alternative firewall compilers, shorewall-perl and shorewall-shell. The shorewall-perl compiler is suggested for new installed systems and shorewall-shell is provided for backwards compability and smooth legacy system upgrades because shorewall perl is not fully compatible with all legacy configurations. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dump on remote filesystems?
Scott Ehrlich wrote: On Tue, 29 Jan 2008, Tom Brown wrote: I have a couple C5 systems I want to back up. My plan is to, one way or another, back them up to a C5 machine in my office. I have samba installed on the systems to back up, the machines are mounted on the system in my office, and a tape library hanging of the system in my office. I was hoping to perform a simple /sbin/dump of the remote systems. I put together a script for another successful backup I have going on a system with local filesystems. But for remote filesystems, I get errors of File Cannot Be Accessed (//remote_system/subdir) which does exist as an smb mounted filesystem. I'd use NFS, but I would like a bit more control and some level of encryption for the user authentication and data being transferred. If a direct dump of remote smb filesystems isn't possible, I may opt to have each system perform their own local dumps, then run a script locally on the tape-connected machine to dump those local dumps, or copy the dumps locally then dump them to tape. If nothing else works, I can always install Windows XP and use Windows backup program, but I'd really like to try and get this going under Linux before going that route. use amanda, www.amanda.org it rocks My fundamental question is why dump claims it cannot access what I want it to back up. What's to say other solutions - Amanda, etc, will work any better? I want to know how to resolve the source problem before looking into other products. How will BackupPC or Amanda do any better? I've never had dump try to access anything other than the physical or logical partition. So if you ran dump 0avf /dev/null / on your machine(s), it tries to backup remote mounted filesystems? Something's not right . . . . -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: rsync and swapping
Scott Silva wrote: on 1/30/2008 5:24 AM Jerry Geis spake the following: hi all, I use rsync to copy/backup ALL my stuff to another disk. When I run this seems like my machine (4 GIG ram centos 5.1) now begins to swap out more programs. Is there a way to reduce that swapping? I am running with echo 1 > /proc/sys/vm/swappiness I simply mount /dev/sdc1 /mnt/backup; mkdir /mnt/backup/month.day.year then rsync -a /home /mnt/backup/mon.day.year This is approximately 102G of data. Thanks for any suggestions. Jerry Rsync's main benefit is on backups of changed files. dumping to a new destination every time makes rsync less efficient than just about every other option. Now if you made the new directory, and hardlinked the old stuff to the new directory, then rsync would shine. I did the rsync hard link for a while. After 30+ hardlinks to each file built up, filesystem operations slowed down - not in a killer way, but I did notice it. I think it's better to just use --backup and write the previous version to a new dir with --backup-dir=`date +%F` or some such scheme. You don't see the backups represented as a whole directory structure, but it's less messy. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Help with authenticating against Active Directory.
Milton Calnek wrote: Hello all, I'm trying to authenticate shell login's against an MS-ADS. I don't have admin access to the ADS, but I can talk to the admins. I have gotten as far as getting authentication working, but the uid's depend on the order of login. ie: the first guy to login gets 1, the next gets 10001, etc. The problem I have with this is that I want to share the home directories via nfs, which means everyone has to have the same id. Is anyone else doing this? My smb.conf and nsswitch.conf files are below. TIA You can get samba to be a single sign on using MS AD & issue predictable uids in linux. The smb.conf option: idmap backend = idmap_rid:DOMAIN=10-300 will take the users' RID in AD, add 10 to it, use that for the uid in Linux. This smb.conf worked for me a couple years ago at my former employer, on RH4 type machines. Note I did not have an ldap server defined. This is the entire global section I used in all linux boxes that I joined to the domain. [global] workgroup = DOMAIN realm = DOMAIN.EXAMPLE.COM server string = Samba Server security = ads # log level = 0 vfs:2 log file = /var/log/samba/ALL.log max log size = 500 socket options = TCP_NODELAY SO_RCVBUF=32768 SO_SNDBUF=32768 load printers = No preferred master = No domain master = No dns proxy = No wins server = 192.168.1.1 netbios name = LINUX999 netbios aliases = host999 ldap ssl = no idmap uid = 1-300 idmap gid = 1-300 template homedir = /users/%U template shell = /bin/bash winbind enum users = No winbind enum groups = No idmap backend = idmap_rid:DOMAIN=10-300 allow trusted domains = no username map = /etc/samba/smbusers name resolve order = wins bcast cups options = raw disable spoolss = Yes show add printer wizard = No os level = 1 winbind use default domain = yes host msdfs = Yes admin users = DOMAIN\admin20 DOMAIN\admin22 -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] GRabbing MAC address
Jerry Geis wrote: I am trying to grab the mac address for eth0 on centos 5.1 with ifconfig | grep eth0 | cut -d ' ' -f 5 and I dont get anything. What am I not doing right? ifconfig | grep eth0 | cut -d ' ' -f 1 gives me eth0 but anything else like -f 2, -f 3 etc I get nothing. Jerry There's multiple spaces in the output that cut is hitting - use tr to reduce them. ifconfig | grep eth0 | tr -s ' ' ' ' | cut -d ' ' -f 5 -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Moving from RAID 0 to LVM RAID?
Michael Simpson wrote: On 3/7/08, Scott Silva <[EMAIL PROTECTED]> wrote: on 3-6-2008 3:58 PM Scott R. Ehrlich spake the following: So I've learned a valuable RAID 0 lesson, and it fortunately was not a major catastrophy. I got lucky, and had a workable-enough backup on tape to make the user who needed some data happy. Now, from the OS side, LVM is an option. Say the RAID controller only allows hardware striping or mirroring for logical volumes, but I want to use more than two disks, and I don't want the RAID 0 problem again. When I get a replacement disk and build the system from the ground up again, I could, conceivably, use hardware RAID 1 for the OS on two disks, and CentOS 5 64-bit's LVM for software RAID 5 (or maybe 1+0 if available) on the remaining for 4 disks, maybe 3 disks as active and the 4th as a hot spare? Hi there, Minor point: Rather than go for a RAID 5 with a hot spare you are better off going for a RAID 6 array using the 4 discs if your hardware supports it. sw raid supports raid 6. Another plus for sw raid is that it's hardware agnostic - doesn't care about controller make, brand, chipset, firmware, etc. If your RAID 5 has a disk failure then has another whilst it is rebuilding using the hot spare then your data is b0rked whereas with RAID 6 you can tolerate 2 disk failures and still access the data. You lose the same amount of capacity that you would have with the RAID 5 + hot spare set up that you are considering. mike -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] rsync
Craig White wrote: On Fri, 2008-03-07 at 19:09 +, Anne Wilson wrote: On Friday 07 March 2008 18:40:03 Craig White wrote: I've gone over and over the man page and I don't get it and it's obviously a simple task I want to rsync a directory but only the pdf files... rsync -ncauv --include=*.pdf $WORKING $WEB_SERVER # sync's everything, I want to exclude stuff rsync -ncauv --filter='+ *.pdf' --filter='+ *.odt *.ott *.eps' \ $WORKING $WEB_SERVER # sync's everything...does not seem to exclude anything rsync -ncauv --filter='. /root/scripts/qm_manual_filter' \ $WORKING $WEB_SERVER # cat qm_manual_filter - * + *pdf excludes everything I am using -n for dry-run I definitely need recursive but -a option handles that I don't know if it would work, but could you use --exclude-from=/path/to/skiplist.txt to exclude everything then use your filter line to add .pdfs back? I've not tried adding anything back after excluding. You can certainly use wild cards in your skiplist, such as *.odt *.ott *.eps doesn't work... (from script) rsync -ncauv --exclude-from='/root/scripts/qm_manual_filter' \ --include='**/*.pdf' $WORKING $WEB_SERVER # ./sync-qm_manual.scr building file list ... done sent 29 bytes received 20 bytes 98.00 bytes/sec total size is 0 speedup is 0.00 no files but changing qm_manual_filter to specifics... # cat qm_manual_filter #+ **/*pdf #- * - *.ods - *.odt - *.ott - *.eps - Build-PDF/ did work, so I guess the simplest form is to just do this... # tail -n 1 script... rsync -ncauv \ --filter='. /root/scripts/qm_manual_filter' \ $WORKING $WEB_SERVER # cat qm_manual_filter + **/*pdf - *.ods - *.odt - *.ott - *.eps - Build-PDF/ which ultimately does what I want, I think. here's a stupid hack . . . . cd /base/dir/of/pdfs find . -type f -name '*.pdf' -print > list for f in `cat list`; do ( test ! -d /dest/`dirname $f`` && mkdir -p /dest/`dirname $f`` ) rsync -av $f /dest/$f done -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommendations for a “real RA ID" 1 card on Centos box
Therese Trudeau wrote: You can turn on write back caching if you have a UPS as well (provided your UPS is wired into your system for a graceful shutdown) Hopefully you have a redundant PS unit. Having a UPS is not going to help if your PS fails. That's a very good point never thought of that. Acrtually this RAID 1 setup I'm planning is for my desktop machine, problem is is's not built like a server so there is not the traditional slid in bay for a second PS as do many 1 and 2u rack servers have. Unless there is some specialty product available that somehow fits in to a tower case. Could you reccomend a redundant PS for a desktop machine (if they exist)? The whole system needs to be designed for dual supplies. You can't just plop down two power supplies in parallel without some circuitry that attempts to monitor & balance them out. I'm curious - why does your desktop needs so much redundancy ? -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommendations for a “real RA ID" 1 card on Centos box
Toby Bluhm wrote: Therese Trudeau wrote: You can turn on write back caching if you have a UPS as well (provided your UPS is wired into your system for a graceful shutdown) Hopefully you have a redundant PS unit. Having a UPS is not going to help if your PS fails. That's a very good point never thought of that. Acrtually this RAID 1 setup I'm planning is for my desktop machine, problem is is's not built like a server so there is not the traditional slid in bay for a second PS as do many 1 and 2u rack servers have. Unless there is some specialty product available that somehow fits in to a tower case. Could you reccomend a redundant PS for a desktop machine (if they exist)? The whole system needs to be designed for dual supplies. You can't just plop down two power supplies in parallel without some circuitry that attempts to monitor & balance them out. I'm curious - why does your desktop needs so much redundancy ? Just for fun, the first hit on a google for "redundant atx power supply" http://www.directron.com/tc400r8.html Seems you can just plop one into your std atx chassis . . . -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommendations for a “real RA ID" 1 card on Centos box
Therese Trudeau wrote: Date: Fri, 14 Mar 2008 10:33:29 -0400 ACTUALLY I totally forgot. I absoluteluy can not use software raid. Because I use Adobe products. Adobe products do not install well on software raid systems, and tend to crash on software raid beacuse of their activation process. If I go raid, I absolutely need a hardware raid which is entirely transparent to the operating system, at least as far as adobe products are concerned. The stuff I found about that issue seemed to be on Windows. Are you dual booting this box? -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommendations for a “real RA ID" 1 card on Centos box
Tom Brown wrote: Yeah, that PS appears to have only one outlet (unless i'm not seeing it in the photo), most redundant PS's have seperaate outlets for a Y power cable one for each supply. Guess it's not that redundant. yes - although i would never use a Y cable - Dual PSU's need 2 feeds from seperate PDU's Unless you have another source of AC power or want to use two UPS, then it's not important. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Recommendations for a “real RA ID" 1 card on Centos box
Therese Trudeau wrote: ACTUALLY I totally forgot. I absoluteluy can not use software raid. Because I use Adobe products. Adobe products do not install well on software raid systems, and tend to crash on software raid beacuse of their activation process. If I go raid, I absolutely need a hardware raid which is entirely transparent to the operating system, at least as far as adobe products are concerned. The stuff I found about that issue seemed to be on Windows. Are you dual booting this box? No, read this: http://by114w.bay114.mail.live.com/mail/ReadMessageLight.aspx?Aux=14%7c0%7c8CA53FEB6F84AE0%7c&FolderID=----0001&InboxSortAscending=False&InboxSortBy=Date&ReadMessageId=7c63352d-9f07-476b-b568-56a3b3aeb8c8&n=562513198 my previous thread... Sorry, I can't access your Windows Live Hotmail inbox . . . -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Strange behavior from grep
Mário Gamito wrote: Hi, Thank you for your answer. After a little more research, I found out that the line containing the word 'gamito' is huge and yet it scrolls so fast in the screen that I can barely see it. I tried redirecting the output of the grep to a file and that huge line went in to it. So, I've tried a double grep: $ grep 'gamito' file | grep 'gamito' but without success. Well, my question now is, how do I get the word 'gamito' alone from the file ? Perhaps try to chop the line down to size by using fold or split. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how do i have a clone centos server
Mail Administrator wrote: Thnaks john, u gave me a grt idea .. the second one seems quite interestin but i do have to get additional HDD and mirror my existing server which has jus one disk This was my procedure to mirror an existing single IDE disk RH4 system. YMMV. No guarantees. Not tested on Centos5. May eat all your data and drink all your beer. Make a total backup before doing anything. IIRC the grub setup is what gave me the most problem. Hopefully, someone will chime in to point out any flaws here. Current System/OS on single 10GB IDE disk /dev/hda2 = swap @ 1GB /dev/hda1 = / @ 9GB Current system/OS is not in an LVM volume. 1. Install a 2nd identical disk as hdb 2. fdisk: /dev/hdb1 = 9000M ; /dev/hdb2 = 1000M ( rest of disk ) part1 = type FD (raid) part2 = type FD (raid) 3. Create mirror device /dev/md10 for / with 2nd disk missing: mdadm --create --level=1 --force --raid-devices=1 /dev/md10 /dev/hdb1 4. mke2fs -j /dev/md10 5. Create mirror device /dev/md11 for swap with 2nd disk missing: mdadm --create --level=1 --force --raid-devices=1 /dev/md11 /dev/hdb2 6. mkswap /dev/md11 It may be safer to start step 7 from a rescue disk. 7. mkdir /z 8. mount /dev/md10 /z 9. cd / 10. dump -a0f - . | ( cd /z ; restore -xvf - ) 11. Update pertinent lines in /z/etc/grub.conf: splashimage=(hd0,0)/boot/grub/splash.xpm.gz root (hd0,0) kernel /boot/vmlinuz-2.6.9-11.EL ro root=/dev/md10 rhgb /z/etc/fstab: /dev/md10 / ext3defaults1 1 /dev/md11 swapswapdefaults0 0 12. Shutdown 13. swap hdb & hda around 14. Boot RHEL4 linux rescue ; let system find/mount RHEL Installations 15. fdisk hdb to be identical to hda 16. chroot /mnt/sysimage 17. grub-install /dev/hda 18. grub-install /dev/hdb 19. Setup grub: grub root (hd0,0) setup (hd0) quit 20. Create new initrd(s) to include modules raid, scsi, lvm, etc needed at boot time: mkinitrd --with=raid0 --with=raid1 --with=raid5 --with=aic79xx /boot/initrd-2.6.9-22.EL.img.new mv /boot/initrd-2.6.9-22.EL.img /boot/initrd-2.6.9-22.EL.img.old cp /boot/initrd-2.6.9-22.EL.img.new /boot/initrd-2.6.9-22.EL.img 21. Reboot to normal startup on the new mirrored / & swap. Step 21 needs to boot cleanly. Step 22 will remove your last chance to revert to the old setup by installing the original boot disk as hda. If something goes bad here, may need to restore from backup. 22. Add in 2nd disk to md10 mirror set: mdadm --grow /dev/md10 --raid-devices=2 mdadm --add /dev/md10 /dev/hdb1 23. Add in 2nd disk to md11 mirror set: mdadm --grow /dev/md11 --raid-devices=2 mdadm --add /dev/md11 /dev/hdb2 You can monitor the sync process: cat /proc/mdstat: md10 : active raid1 hdb1[2] hda1[0] 8789632 blocks [2/1] [U_] [>] recovery = 0.8% (77952/8789632) finish=5.5min speed=25984K/sec unused devices: 24. System will be at normal state when mirror sync is finished -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Announcement Project based on CentOS 4.4
Tronn Wærdahl wrote: Personally i dont like YUM, I prefer apt-get, the package you dont wanna update is openldap, espesially the server, you could easyly configre apt, to ignore those packages There is allso a script included to make your own apt repository Tronn man yum.conf . . . exclude List of packages to exclude from updates or installs. This should be a space separated list. Shell globs using wildcards (eg. * and ?) are allowed. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2250 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Searching an Scsi Controller for CentOS 5
Olaf Mueller wrote: Hello, does CentOs 5 supports an Adaptec AHA-2940W/2940UW scsi controller (pci)? Is this controller maybe supported by the aic7xxx driver? I've had no problem so far with a DAT4 tape drive on that controller - using Centos 5 x86_64: scsi11 : Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev 7.0 aic7880: Ultra Wide Channel A, SCSI Id=7, 16/253 SCBs Vendor: SONY Model: SDT-1 Rev: 01u4 Type: Sequential-Access ANSI SCSI revision: 02 target11:0:6: Beginning Domain Validation target11:0:6: FAST-20 SCSI 20.0 MB/s ST (50 ns, offset 15) target11:0:6: Domain Validation skipping write tests target11:0:6: Ending Domain Validation scsi 11:0:6:0: Attached scsi generic sg8 type 1 st: Version 20050830, fixed bufsize 32768, s/g segs 256 st 11:0:6:0: Attached scsi tape st0 st0: try direct i/o: yes (alignment 512 B) -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2250 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Performance of CentOS as a NAT gateway
http://www.vyatta.com/download/ - runs on plain old PC hardware and it's touted as being a Cisco beater. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2250 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Accidentally removed glibc & glibc-devel :: Help
geekylucas wrote: Hi, I attempted to ugprade glibc & glibc-devel and ended up removing them entirely by accident. *idiot* What are the steps needed to get glibc back onto my system. Absolutely nothing is working at the moment, rpm, yum, etc. I presume I'm going to have to boot from a rescue CD of some kind. If someone could outline how to do this, or point me to some docs I would be most grateful. (CentOS 4.3) Copy the rpms you need to reinstall onto another rpm type system - any somewhat current rpm type distro will do. Run rpm2cpio to extract the rpm into a cpio package. Take that cpio pkg to your busted machine and cpio extract the files. Things should then work OK. You should then be able to force rpm install the real rpm. I've done this twice, a whacked rpm and glibc - always used / as the working dir on the busted machine. Worked like a charm. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2250 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] script help
Toby Bluhm wrote: adrian kok wrote: Hi Phil thank you But I have several hundred those pattern directories! I did think to cat those directories in a file "olddir" eg: dir-192.168.30.0 dir-192.168.30.144 dir-192.168.30.184 and sed 's/dir-192.168/dir-10.0/g' olddir > newdir but i don't know how to move rename the directories in olddir to newdir Thank you again Assuming dir-192.168* are all in one directory level, cd to that dir: for olddir in `ls -1 | grep dir-192.168` do newdir=`echo $olddir | sed 's/^dir-192.168/dir-10.0/'` mv $olddir $newdir done That sed line should be: 's/^dir-192\.168/dir-10\.0/'` -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] script help
[EMAIL PROTECTED] wrote: Was there an problem with Frank's response from earlier? rename 192.168 10.0 dir* Bah! It's too simple! :-) -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] script help
adrian kok wrote: Hi Phil thank you But I have several hundred those pattern directories! I did think to cat those directories in a file "olddir" eg: dir-192.168.30.0 dir-192.168.30.144 dir-192.168.30.184 and sed 's/dir-192.168/dir-10.0/g' olddir > newdir but i don't know how to move rename the directories in olddir to newdir Thank you again Assuming dir-192.168* are all in one directory level, cd to that dir: for olddir in `ls -1 | grep dir-192.168` do newdir=`echo $olddir | sed 's/^dir-192.168/dir-10.0/'` mv $olddir $newdir done -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question about backup regimens
Mark Snyder wrote: Tom Brown wrote: I need to recommend some backup options for a web server running CentOS 4.1. The client prefers using a tape drive as their backup device and has access to safe offsite storage. I was thinking of system backups weekly and differential backups nightly but don't know what software to recommend for the differential b/u's. For full backups I can just schedule a tar and compress using cron. Any recommendations would be appreciated. for me www.amanda.org everytime I've used amanda for a number of years without a hitch. Simple to implement. Depending on how you set it up, an amanda tape can be restored using only native OS tools. Centos has amanda rpms, but I prefer to built it from tarball. Can also backup to disk (virtual tape) and tape raid. -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question about backup regimens
Toby Bluhm wrote: Mark Snyder wrote: Tom Brown wrote: Reply was meant for Tom Brown's message, not Mark Snyder's . . . . -- Toby Bluhm Midwest Instruments Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 6 Update?
Funny. When no news is given, people don't like it. When news is given, people still don't like it: it's inaccurate. However, people really, really don't like the 100% accurate estimate: "When it's ready" ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple way to banish IP addresses ?
Niki Kovacs wrote: > Hi, > > I just set up a web server... and my bandwidth is being eaten by some > chinese folks trying to brute-force-ssh their way into the machine. > > Is there a simple way to banish either single IP addresses or, maybe > even better, whole IP classes ? I know it's feasible with iptables, but > is there something more easily configurable ? > > Cheers, > Try fail2ban from rpmforge. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Simple way to banish IP addresses ?
Toby Bluhm wrote: > Niki Kovacs wrote: >> Hi, >> >> I just set up a web server... and my bandwidth is being eaten by some >> chinese folks trying to brute-force-ssh their way into the machine. >> >> Is there a simple way to banish either single IP addresses or, maybe >> even better, whole IP classes ? I know it's feasible with iptables, but >> is there something more easily configurable ? >> >> Cheers, >> > > > Try fail2ban from rpmforge. > > Also, if you're using the standard fw that ships with centos, you can stop entire blocks of IPs by manually inserting rules after iptables starts: iptables -I RH-Firewall-1-INPUT 1 -s 1.2.3.4/24 -p tcp --dport 22 -j DROP IP ranges by country: http://www.countryipblocks.net/country-blocks/select-formats/ The IP ranges will change from time to time, so you have to check often. You could script in a download from http://www.countryipblocks.net/continents/ to keep it current. Like someone said, if you have to keep ssh open to the world, changing the port number will dramatically cut down on the attempts. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.4? anyone?
You Centos guys just aren't getting the message are you? We need to know EXACTLY what is going on with the release! None of this "soon" crap will do. Please post a progress report on packages built, isos transfered, server update progress by region, hours worked, keystrokes typed, bathroom breaks, hours slept, family time taken. Bar charts would be a nice touch. We need to know these things! Our very lives hang upon this release. Strap a wireless webcam to your head for god's sake and broadcast your every move. Verbalized every action. Quit leaving us in the lurch! Thank you -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.4? anyone?
Look, it's not me that wants it. It's . . . it's the servers, OKAY? I think they've got a jones on for 5.4. I walk past the cpu room and hear trashing and growling. I look inside and it's all quiet and normal and all that - but I *know* something is going on in there. They're emanating a serious attitude. I mean I type "ls -las" or "ps ax" at an ssh term and I get a pause there, like its saying "Maybe I'll show you, maybe I won't!" Time for a webcam in the server room. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Low End NAS hardware.
Drew wrote: > Hey, > > The recent discussion on NAS/SAN and the Thecus N8800 got me to thinking. > > Bit of background. I have an old Dual Athlon MP2800+ that I'm using > for a home web/file server. It runs fine but between the noise of the > various fans and it's location in the living room, I've been asked by > my spouse to find a replacement for it that's smaller & quieter. > Looking at the Thecus, and based on experience with Atom based > Mini-ITX systems at work, I was thinking about rolling my own. > > My questions is, for a small home server that runs apache/php/mysql > and Samba, how well do the Mini-ITX boards like the VIA C3/7 & Intel > Atoms handle this sort of task? I've used VIA systems as MythTV > frontends but never as file/web servers. I'd expect they'd do fine for > home use but I've never tried. > I looked at doing the same thing. I have an old Athlon XP ~ 1800 MHZ at home, made noise, pumped a lot of heat into the closet. Sure, itx would be low power and smaller, but the pieces parts seemed quite pricey to me and what I had worked fine. So I cranked the cpu speed down in the bios to 700 MHZ, lowered the cpu voltage, switched the case fans to run off 5v. Still runs apache, samba, firewall, dhcpd, etc. without a hitch. Never noticed the slowdown in normal activities. Dual processor board? Try removing one cpu to cut down on power. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM, usb drives, Active Directory
Scott Ehrlich wrote: > I have a client with a handful of USB drives connected to a CentOS > box. I am charged with binding the USB drives together into a single > LVM for a cheap storage data pool (10 x 1 TB usb drives = 10 TB cheap > storage in a single mount point). > > The next fun piece is how to incorporate that storage space into an > existing Active Directory structure to apply AD acls for limited > access. > > I'd rather not use Samba, as that is its own infrastructure and > maintains its own credentials database. > > What are my best options? > Why would you use USB disks? Even if you could put up with not-so-stellar speed, the tangle of cables & powerpacks would be messy and prone to accidental disconnect. On top of that, using only LVM to glue it all together would really exacerbate the disconnect problem. A single disk failure could bring the entire volume down with no recourse but to restore from backup. That's another thing - is this data valuable? If so, you need to have an idea for backups. Ditch the crazy USB scheme and get better hardware - raid/hotswap. And a 10 drive, 10TB raid5 is also going to be a headache. There's been several recent discussions here about such matters - large volume filesystems, SW raid vs HW raid, raid types, LVM, etc. Look through the archives. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM, usb drives, Active Directory
Scott Ehrlich wrote: > I have a client with a handful of USB drives connected to a CentOS > box. I am charged with binding the USB drives together into a single > LVM for a cheap storage data pool (10 x 1 TB usb drives = 10 TB cheap > storage in a single mount point). > > The next fun piece is how to incorporate that storage space into an > existing Active Directory structure to apply AD acls for limited > access. > > I'd rather not use Samba, as that is its own infrastructure and > maintains its own credentials database. > The answer to your AD question is Samba. It integrates into AD perfectly well. Search the Centos archives. samba.org has extensive info on the subject. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] unison versus rsync
Joseph L. Casale wrote: >> Another feature of rsync modules that can be useful is that each module can >> specify a user and group thus one can rsync user directories between >> systems where the user names are the same but uid and gid may differ. > > I have been looking at this all morning. Is there any way to auth with keys > or something unique so I can script this securely? Iiuc, the only auth is done > through these rsync user/pass pairs unless you do it with hosts etc. > I was also looking at unison/rsync to solve a problem, came across this, has potential for me. http://samba.anu.edu.au/rsync/firewall.html I may have to connect to a Windows box - I'm not excited about that. I've made it work on Windows before - just dislike the inherent extra layer of setup glop one has to go through to do it. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Corporate drop box for files
Joseph L. Casale wrote: >> Dumb question: samba? > > I should have stated for customers/vendors as well, across > the wire:) > > The webdav approach sounds good, but building doesn't fit the time frame. > I'll look at the other reco's. > Take a look at knowledgetree - similar to alfresco. http://sourceforge.net/projects/kt-dms/files/ The versions prior to 3.7 have the installer drop everything into /opt. 3.7 has a much more intrusive install - add's a couple repo's, replaces some rpms, weaved more into the system. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Detect file change
Alan Hoffmeister wrote: > Em 26/01/2010 10:38, Wade Hampton escreveu: >> If you know C, you can write a simple program using >> inotify(7). For example, you could write a program >> to continually monitor the directory and pass >> in the script plus args as a arg. >> >> See: http://www.ibm.com/developerworks/linux/library/l-inotify.html >> >> > I don't know C... I was looking for a bash script... If you want to try inotify, rpmforge has inotify-tools rpm. Sample scripts in the man pages. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to map ata#.# numbers to /dev/sd numbers?
Stephen Harris wrote:
> On my C5 machine (a Dell XPS420) I have a 500Gb disk on the internal SATA
> controller.
>
> I also have a SiI3132 dual-port multi-device eSATA card. This is connected
> to an external SATA array of disks.
>
> Now occasionally I see something like this in my logs
>
> ata7.01: exception Emask 0x0 SAct 0x0 SErr 0x0 a ction 0x0
> ata7.01: irq_stat 0x00060002, device error via D 2H FIS
> ata7.01: cmd 25/00:08:47:1c:92/00:00:6c:00:00/e0 tag 0 dma 4096 in
> res 51/40:00:4e:1c:92/00:00:6c:00:00/00 Emask 0x9 (media error)
> ata7.01: status: { DRDY ERR }
> ata7.01: error: { UNC }
> ata7.01: configured for UDMA/100
> ata7: EH complete
>
> How do I tell what disk this is complaining about? Is there a way
> to determine what ata7.01 maps to in terms of /dev/sd# values?
>
> /proc/scsi/scsi doesn't obviously match scsi# numbers to ata# numbers :-(
>
Try looking in /dev/disk/
--
tkb
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] merge an lvm snapshot back
Joseph L. Casale wrote: You need to start by reading some of the docs on LVM2. eg. nothing stops you from mounting a snapshot back onto the same mountpoint you snaped from. I understand that, but where I am unsure is how space in the vg relates to this? Will this not require much additional space, what if I need to do this a continued basis? You make the snapshot with a given size. That size should be large enough to hold all expected _changed_ /or/ _new_ stuff. Whatever is not changed or new, lvm simply points back to the original lv. If you need to add more space to the snapshot, do an lvextend on it. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] create raid /dev/md2
S.Tindall wrote:
David Hlácik" wrote on Friday, April 18, 2008 11:40 AM:
Hi , currently i have 2 raid devices /dev/md0 and /dev/md1 , i have
added 2
new disks, fdisked , created 2 primary partitions with type fd
(linux raid autodetect)
Now i want to create raid from them
[EMAIL PROTECTED] ~]# mdadm --create --verbose /dev/md2 --level=1 /dev/sdc1
/dev/sdd1
mdadm: error opening /dev/md2: No such file or directory
will return that error, what shouldi do?
Not familiar with that error, but try specifying the number of devices:
# mdadm -C /dev/md2 -l1 -n2 /dev/sd[cd]1
Steve Tindall
Forgot to ask, does /dev/md2 exists in /dev?
If not, you can still use makedev to generate it:
# cd /dev
# MAKEDEV md
Undocumented, but it still works.
man mdadm
-a, --auto{=no,yes,md,mdp,part,p}{NN}
Instruct mdadm to create the device file if needed, possibly
allocating an unused minor number . . . . .
--
Toby Bluhm
Alltech Medical Systems America, Inc.
30825 Aurora Road Suite 100
Solon Ohio 44139
440-424-2240
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] case insensitive file system
Ruslan Sivak wrote: John R Pierce wrote: Ruslan Sivak wrote: We have an application that was build on a windows platform that expects a case insensitive file system. Is there a way to set one up in CentOS? NTFS should work, I think, but I feel uneasy using that under Linux. NTFS is not whats case insensitive, its WINDOWS thats case insensitive. you'll need to fix that application to either use all monocase names or to be self-consistent enough to run properly on a case sensitive system. I will look into fixing the application, but it may not be possible. There must be a filesystem that I can use. Mac's have HFS+ which can be case insensitive. Aren't Macs pretty much Linux? Isn't there a similar filesystem availalbe for linux? I wouldn't run the whole system on it, just the portion that hosts the app. http://www.brain-dump.org/projects/ciopfs/ -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] case insensitive file system
case insensitive on purpose filesystem: http://www.brain-dump.org/projects/ciopfs/ -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Turning off Win2008 machines from a CentOS box
Joseph L. Casale wrote: I understand this may be able to be done with Samba? Anyone know the syntax for a CentOS 5.1 Samba client and what needs to be done to Windows 2008 Server to allow this (I suspect out of the box it wouldn't allow it)? I was hoping to use SSH with keys and script the login and execution of the native win shutdown command, but I have had troubles making any of the usual win SSH Daemons work under Windows 2008 Server x64. winexe opens a command prompt on XP boxes. You can script the shutdown - have no idea if it'll work on 2008: winexe -A $accountname //$computername "cmd /c shutdown -s -t 60" and down it goes. http://eol.ovh.org/winexe/ -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS-Samba question
John R Pierce wrote: MHR wrote: The 98 boot has an automatic (no password) logon. As I said, I can't win9X has horrible network username habits...you need to determine what username its running as... dirty trick, log off, and the username should be in the login prompt, just hit enter to relogin with the same username and the same blank local password.. on the SAMBA server, create that username as a linux user, AND `smbuser -a username`, assign it a smb password. when win98 prompts for a password, thats the username it will use, you get no choice, and win98 should be able to 'save' that password (if you check said box on the login prompt), which causes it to be saved to a .pwd file (I think thats the name of the password cache). It's username.PWL. Boot to dos or if you can stand it - safe mode & delete the users file. I remember doing that often for folks who constantly foobared their login. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [Fwd: Re: [CentOS] School Server Setup]
Sorin Srbu wrote: Everything was orangy, yellow or weird green in the 70s... ;-) Throw in a little brown and you've described a tie-dyed shirt I wore in high school. Just the other day my wife and I were looking at our old neighborhood with google street view. Unfortunately, some places have really gone downhill since then. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] nfs cannot see mount points on other machine
Kai Schaetzl wrote: Jason Pyeron wrote on Thu, 26 Jun 2008 18:03:49 -0400: Any ideas what the "dangerous" inode confusion is about? Is it relevant today? I have no idea. I think the proposed problem is that the client doesn't know that it's traversing filesystems, so, the same inode number on filesystem / and /b is each time the inode number on /. I have no idea if this can actually happen or how this is worked out or if it is still a problem. But I think the way it is now by default is not a good solution. As I wrote you can work and copy to these faked folders and they disappear and reappear with mounting although they are actually somewhere on the local filesystem. It looks like the mounting creates a local directory listing that is only available when it's mounted. The way it works without nohide is really able to trick you to think you are writing to the remote side, but you aren't. I think this is dangerous. They should indeed have *hidden* those folders instead of faking them. The talk about "hidden" is wrong in my eyes. They do not hide they pretend things that are not there. >From that perspective I think using nohide is the better option. But I don't know if that "inode problem" could really hit or not. I haven't seen it so far. I think what would be a bad idea is to cross-mount the nfs shares themselves, but this is prevented unless you explicitely export them. I don't understand your talk about "fake" directories. They are not fake, they truly exist in the filesystem. It's just that another filesystem is being overlaid in that dir. Some fs like dev, proc, sys exist only in memory and are created on the fly at boottime, others are just disk partitions. Nothing mysterious there. That NFS only exports a single partition at a time is probably due to the duplicate inode problem - maybe other stuff - I don't know. At any rate, just export the additional fs and mount it where you like. Again, nothing mysterious and it has been done that way since NFS was invented. Want to prove that your "fake" dirs are not fake? Boot the rescue CD and don't have it automatically find your Linux partitions. Mount what ever's your / partition on /tmp/sysimage. There's /tmp/sysimage/dev and it has an inode number. Let's mkdir /tmp/sysimage/dev/testdirontherootpartition. That has an inode number too. Boot back to the OS - /dev/testdirontherootpartition doesn't exist - it's been overlaid by the udev system. Boot back to the resue CD - /tmp/sysimage/dev/testdirontherootpartition is there - same inode as it was before. Same goes for your /home dir when it's a separate partition - if /home is not mounted, anything you write there will be written to the root partition and will be hidden when /home is mounted. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] nfs cannot see mount points on other machine
Kai Schaetzl wrote: Toby Bluhm wrote on Fri, 27 Jun 2008 08:54:56 -0400: I don't understand your talk about "fake" directories. They are not fake, they truly exist in the filesystem. They are nevertheless fake. Consider the following: - system A has mount points / and /home - system B nfs mounts / on A without nohide at /nfs/A Result is that you see *all* directories of A on B, including /home. There is no way to know that it doesn't exist on A, unless you compare the directories on both machines. There is no indication that you are not writing to A:/home when you write to /nfs/A/home. That is what I call "fake". It's definitely not "hidden". "hidden" comes from "hiding" = you don't see it. I consider this behavior *very* misleading. That NFS only exports a single partition at a time is probably due to the duplicate inode problem - maybe other stuff - I don't know. At any rate, just export the additional fs and mount it where you like. Again, nothing mysterious and it has been done that way since NFS was invented. That may be so. I'm quite happy with this behavior as long as nfs doesn't pretend that something is there that isn't. I was asking "where" that faked directory actually exists as it is gone when I unmount. If I understand your explanation correctly if I write to /nfs/A/home I'm actually writing to A, but not to the /home filesystem (as I think) but to a home directory on the / filesystem. Is that correct? Yes. Let's use some examples. If A:/ is /dev/sda1 and A:/home is /dev/sda2, then in your above situation, writes to B:/nfs/A/home will be written to /dev/sda1 on A and _not_ /dev/sda2 on A. When A exports /, it's actually only exporting the filesystem on /dev/sda1. That makes clear why it is gone when I unmount. Further, if I unmount /home on A I should still get /home when I list / on A. Yes - you will get the /home that's on /dev/sda1 Just now that "faked" home on /. Correct? I understand that this directory *does* exist on A (just not where one would think) *after* nfs mounting. However, from the standpoint of machine B it is a fake. It is artificially being created because an ls on A shows it. The correct behavior would be to *not list* any other mount points in the nfs mount. Again, it's not fake, it's not artificial. It's truly there on /dev/sda1, the storage device. If you umount /home, rmdir /home, you can't mount /dev/sda2 on /home any more can you? If you mkdir /home2, you can put stuff in there until you run out of space on /dev/sda1. If you mount /dev/sda2 on /home2, the stuff you wrote to /home2 will still be on /dev/sda1 and will be hidden by the overlay of /dev/sda2. If you umount A:/ from B:/nfs/A and then write to B:/nfs/A - because B:/nfs/A will still exist as a real directory - it will be stored in /dev/sda1 on B. Whether you mount NFS exports or local disk partitions, it works the same way. By your analogy, umounting /dev/sda2 /home should make /home disappear from / because it's not mounted. Or mounting /dev/sda1 as / should just make /dev/sda2 fall into /home without any entry in fstab. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] nfs cannot see mount points on other machine
That's exactly how nfs behaves, it's an elevator without that safety net. You're right. NFS is very dangerous and it may trick you. It should only be used if you know how it works and what you are doing. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] nfs cannot see mount points on other machine
Isn't that right for everything? Dunno. But NFS nearly claimed another victim. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] system-auth.rpmnew
Kai Schaetzl wrote: William L. Maltby wrote on Sun, 29 Jun 2008 09:09:17 -0400: IMO, it's never OK w/o first examining the effects. The rpmnew is provided specifically because replacing the previous one may be highly destructive to the aims of that system's users/admins. I've not looked, but I suspect the rpmnew needs to be compared to the target of the symlink. That's the point and why I'm asking. I think the rpmnew got created because the target is a symlink (I think normally rpm overwrites a config file if it has not been changed from the previous version, this obviously is bound to fail in this case). The question now is, should it have actually replaced system-auth-ca, was the symlink incorrect in the first place, should there be both system-auth and system-auth-ca be available in parallel, or what? I don't know for what exactly both or just one of the files gets used, I can just assume it's some authorization. And ca file might get used when authorizing with a certificate (remote or with a card?). I don't find myself in a position to assess the difference between the files and what it means for security. The main difference between the files seems to be something about user-ids above/below 500. I don't see a system-auth-ca on my 4 Centos5 systems. My 3 systems still at C5.1 show the same: ls -als /etc/pam.d/system-auth* 4 lrwxrwxrwx 1 root root 14 May 10 2007 /etc/pam.d/system-auth -> system-auth-ac 8 -rw-r--r-- 1 root root 848 May 10 2007 /etc/pam.d/system-auth-ac 4 -rw-r--r-- 1 root root 683 Nov 10 2007 /etc/pam.d/system-auth.rpmnew rpm -q --whatprovides /etc/pam.d/system-auth pam-0.99.6.2-3.26.el5 rpm -q --whatprovides /etc/pam.d/system-auth-ac authconfig-5.3.12-2.el5 My test box at C5.2: ls -als /etc/pam.d/system-auth* 4 lrwxrwxrwx 1 root root 14 May 20 09:09 /etc/pam.d/system-auth -> system-auth-ac 8 -rw-r--r-- 1 root root 844 May 20 09:09 /etc/pam.d/system-auth-ac 4 -rw-r--r-- 1 root root 683 May 24 13:35 /etc/pam.d/system-auth.rpmnew rpm -q --whatprovides /etc/pam.d/system-auth pam-0.99.6.2-3.27.el5 rpm -q --whatprovides /etc/pam.d/system-auth-ac authconfig-5.3.21-3.el5 -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 5.2 upgrade - urlopen error unknown url type: media
Robert Moskowitz wrote: Robert Moskowitz wrote: Kai Schaetzl wrote: Robert Moskowitz wrote on Thu, 3 Jul 2008 08:46:12 -0400: [Errno 4] IOError: Searching the local folder of this list reveals two older postings from you about this (one from December, one a few days ago). It seems to indicate that your repo is not completely in sync. Either a new sync or clean all got you going last time ;-) The other times a yum clean all did the job. Problems with old metadata, it would seem. This time I did the clean first and still got the error. I ran a rsync and did not get any updates to base. I should also mention that right now, I have a fresh install foranother system running off this repo. Just some guesses here . . . Maybe something's buggered in /etc/yum.repos.d. Try comparing the broken with the working. If the broken still looks right, try making a backup of the broken & copy in the working - there may be some overlooked typo or a character that's invisible to the editor program - like dos file ^M. Could also clear out all non Centos specific repos just to reduce the noise. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] /etc/pam.d/system-auth changes in update
listmail wrote: On Thu, 10 Jul 2008 16:31:44 +0200, Kai Schaetzl wrote Filipe Brandenburger wrote on Wed, 9 Jul 2008 23:08:44 -0400: The exact same question came up two weeks ago. And the answers were confusing at least me ;-) To me as well, having now read the thread. No one seems to know why the changes were made, only that they *were* made. I'm still hoping that there might be documentation on the impact of these changes. Does anyone know, or have a link to, why system-auth was changed in the most recent update to PAM? It wasn't changed in 5.2 'cause it was that way in 5.1 - see http://lists.centos.org/pipermail/centos/2008-June/102152.html. Since I didn't know the truth behind the system-auth "mystery" myself, here's some commands I ran: yum groupinfo Base | grep -E "auth|pam" rpm -q --whatrequires pam rpm -q --whatrequires authconfig rpm -qi firstboot-tui rpm -qipl http://vault.centos.org/5.0/os/i386/CentOS/authconfig-5.3.12-2.el5.i386.rpm rpm -qipl authconfig man system-auth-ac man authconfig -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] SERIOUSLY OT STREAM EDITING IMAGES
Chris Geldenhuis wrote: Hi All, I have been Googling my head off but cannot find a method to stream edit all the images in a directory and to resize them. I have a large number of images of up to 3GB in size that I want to put in albums on a website, but before I do this I need to resize them to a more realistic configuration. I know how to do this manually with the GIMP but it becomes tedious for more than a few images. Running CentOS 5 as virtualised under XEN as a web server. Try ImageMagick - yum info ImageMagick. It has lots of slick tools for image manipulation. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] selinux & httpd & portmap
Having problems starting httpd & portmapper
#service httpd start
/usr/sbin/httpd: error while loading shared libraries: libm.so.6: cannot
open shared object file: No such file or directory
and I traced it to selinux, which I had just turned on for the first time:
# sestatus
SELinux status: enabled
SELinuxfs mount:/selinux
Current mode: enforcing
Mode from config file: enforcing
Policy version: 21
Policy from config file:targeted
I can
#setsebool -P httpd_disable_trans on
and httpd starts - but there's zero enforcing now as I understand it.
Further digging & I get to:
# cat /var/log/audit/audit.log | audit2allow -m local
module local 1.0;
require {
type portmap_t;
type httpd_t;
type file_t;
class lnk_file read;
class file { getattr read execute };
}
#= httpd_t ==
allow httpd_t file_t:file { read getattr execute };
allow httpd_t file_t:lnk_file read;
#= portmap_t ==
allow portmap_t file_t:file { read getattr execute };
allow portmap_t file_t:lnk_file read;
Other stuff like postfix, postgrey, amavisd are working fine since
turning selinux on.
Before I make a mess of things with trying to make a new policy,
shouldn't two basic services like portmap & httpd already be allowed to
run out of the box by selinux?
If not, am I going down the right path to get it working?
Thanks
--
Toby Bluhm
Alltech Medical Systems America, Inc.
30825 Aurora Road Suite 100
Solon Ohio 44139
440-424-2240 ext203
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux & httpd & portmap
Ian Blackwell wrote:
Craig White wrote:
Suggest that you make sure you are fully updated, then
'touch /.autorelabel' then reboot (reboot at a time you choose because
it may take a long time to relabel every file on your system -
especially if you have a lot of files).
Craig
What Craig implies is that your system won't be available for quite a
long time (relatively), while the relabel takes place. The boot time
with an autorelabel is very long, and you won't have access to the
server until the relabel is completed. So choose your time for the
reboot with that knowledge.
Ian
No problems there - I'm getting my selinux feet wet on a test box. Not
quite ready to risk torching a production machine.
The relabel did take some time after a reboot - portmap & httpd started
ok. WHile postgrey, clamd, postfix and amavisd all started, none could
access the libs & dirs they needed to process emails.
So I disabled selinux, rebooted, made sure everything worked alright -
which it did. Then enabled permissive mode & rebooted & it relabeled
itself this time.
After running some things, send/receive email, it still wants to deny:
type=AVC msg=audit(1216990772.410:72): avc: denied { read } for
pid=2037 comm="clamd" path="/var/clamav/main.cvd" dev=md0 ino=980355
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:var_t:s0 tclass=file
type=AVC msg=audit(1216990777.968:73): avc: denied { read } for
pid=2037 comm="clamd" name="meminfo" dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216990777.969:74): avc: denied { getattr } for
pid=2037 comm="clamd" path="/proc/meminfo" dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216991822.928:113): avc: denied { signal } for
pid=2762 comm="postfix-script"
scontext=root:system_r:postfix_master_t:s0
tcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm="amavisd" name="p002.exe"
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm="arj"
path="/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj"
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0
tclass=lnk_filetcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm="amavisd" name="p002.exe"
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.372:123): avc: denied { unlink } for
pid=2116 comm="amavisd" name="p002.exe" dev=md0 ino=1005252
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm="arj"
path="/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj"
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
SO - is it normal to have to update policies on basic services? Am I
missing an rpm?
--
Toby Bluhm
Alltech Medical Systems America, Inc.
30825 Aurora Road Suite 100
Solon Ohio 44139
440-424-2240 ext203
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux & httpd & portmap
Craig White wrote:
On Fri, 2008-07-25 at 10:36 -0400, Toby Bluhm wrote:
Ian Blackwell wrote:
Craig White wrote:
Suggest that you make sure you are fully updated, then
'touch /.autorelabel' then reboot (reboot at a time you choose because
it may take a long time to relabel every file on your system -
especially if you have a lot of files).
Craig
What Craig implies is that your system won't be available for quite a
long time (relatively), while the relabel takes place. The boot time
with an autorelabel is very long, and you won't have access to the
server until the relabel is completed. So choose your time for the
reboot with that knowledge.
Ian
No problems there - I'm getting my selinux feet wet on a test box. Not
quite ready to risk torching a production machine.
The relabel did take some time after a reboot - portmap & httpd started
ok. WHile postgrey, clamd, postfix and amavisd all started, none could
access the libs & dirs they needed to process emails.
So I disabled selinux, rebooted, made sure everything worked alright -
which it did. Then enabled permissive mode & rebooted & it relabeled
itself this time.
After running some things, send/receive email, it still wants to deny:
type=AVC msg=audit(1216990772.410:72): avc: denied { read } for
pid=2037 comm="clamd" path="/var/clamav/main.cvd" dev=md0 ino=980355
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:var_t:s0 tclass=file
type=AVC msg=audit(1216990777.968:73): avc: denied { read } for
pid=2037 comm="clamd" name="meminfo" dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216990777.969:74): avc: denied { getattr } for
pid=2037 comm="clamd" path="/proc/meminfo" dev=proc ino=-268435454
scontext=system_u:system_r:clamd_t:s0
tcontext=system_u:object_r:proc_t:s0 tclass=file
type=AVC msg=audit(1216991822.928:113): avc: denied { signal } for
pid=2762 comm="postfix-script"
scontext=root:system_r:postfix_master_t:s0
tcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm="amavisd" name="p002.exe"
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm="arj"
path="/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj"
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0
tclass=lnk_filetcontext=root:system_r:initrc_t:s0 tclass=process
type=AVC msg=audit(1216992166.348:121): avc: denied { create } for
pid=2116 comm="amavisd" name="p002.exe"
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.372:123): avc: denied { unlink } for
pid=2116 comm="amavisd" name="p002.exe" dev=md0 ino=1005252
scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
type=AVC msg=audit(1216992166.403:124): avc: denied { getattr } for
pid=2970 comm="arj"
path="/var/amavis/tmp/amavis-20080725T091655-02116/parts/p002.arj"
dev=md0 ino=1005252 scontext=system_u:system_r:amavis_t:s0
tcontext=system_u:object_r:amavis_var_lib_t:s0 tclass=lnk_file
SO - is it normal to have to update policies on basic services? Am I
missing an rpm?
those aren't basic services but are packages that are supplied by
postfix is centos, the rest are from rpmforge
repositories other than CentOS/upstream and apparently don't have all of
their files/folder labeled properly.
what do you get from command...
sealert -a /var/log/dmesg
zero alerts
or
sealert -a /var/log/audit/audit.log
lots of stuff from when it wasn't labeled right, so I stripped all
audit.log entries before the last DAEMON_START to a file & ran sealert
on it.
found 15 alerts in new_audit_log
Summary:
SELinux is preventing clamd (clamd_t) "search" to ./kernel
(sysctl_kernel_t).
Detailed Description:
[SELinux is in permissive mode, the operation would have been denied but was
permitted due to permissive mode.]
SELinux denied access requested by clamd. It is not expected that this
access is
required by clamd and this access may signal an intrusion attempt. It is
also
possible that the specific version or configuration of the application is
causing it to require additional access.
Allowing Access:
Sometimes labeling problems can cause SELinux denials. You could try to
restore
the default system file context for ./ker
Re: [CentOS] selinux & httpd & portmap
Craig White wrote: On Mon, 2008-07-28 at 09:24 -0400, Toby Bluhm wrote: I just want to point out that the issue isn't with postfix but rather amavisd and how/where amavisd connects/communicates with the various parts and pieces. I'm afraid that I can't be too much help here because I use MailScanner and not amavisd but the SELinux mail list could help you work through these things (I'm presuming that amavisd hasn't worked through all of their contexts). Sounds like my situation is not completely unexpected. Thanks for your hints - I'll follow up on them. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Ross S. W. Walker wrote: Eduardo Grosclaude wrote: Hello, My "hardware" (?) RAID system seems to work but says "duplicate PV" while booting, I don't think I was reading Could just be that lvm is finding your pv through another path - lvm.conf can be setup to only scan specific devices. There might be a disk from an old RAID1 set in there. I'll second that. I forgot to zero out one of my disks from a test raid setup & the when I rebooted for the 5.2 upgrade, lvm refused to start - duplicate uuid - IIRC. 5.1 + updates didn't present the problem, so something was changed in that regard for 5.2. mdadm --examine will tell if there's raid metadata there, --zero-superblock will erase it. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Toby Bluhm wrote: Ross S. W. Walker wrote: Eduardo Grosclaude wrote: Hello, My "hardware" (?) RAID system seems to work but says Never mind, mdadm don't apply with HW raid. mdadm --examine will tell if there's raid metadata there, --zero-superblock will erase it. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux & httpd & portmap
MHR wrote: Tony, 1) Please edit your replies to remove unnecessary information. 2) If you need to present this large of an amount of data, please include it in an attachment. Thanks. I was waiting for you :) BTW - my name is Toby. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Duplicate PV on HW RAID?
Eduardo Grosclaude wrote: Ross, Nate, Tony, thanks for your promptly response Toby On Mon, Jul 28, 2008 at 2:51 PM, nate <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote: Eduardo Grosclaude wrote: snip Oops... system-config-lvm shows under 'Uninitialized entities': /dev/sda -> part 1 -> part 2 -> unpartitioned space /dev/sdb -> part 1 -> unpartitioned space These shouldn't be appearing as two discs in the first place-- but anaconda said I only had one unit... Anyway, why the asymmetry? Did I screw the RAID volume somehow? Or did I install plain on sda and this RAID never worked as such? :P The machine BIOS correctly describes the RAID volume at start. Doesn't It smell like fake RAID? Should I declare sdb invalid to the firmware program so as to force resync? Thanks again If it were me & I was just starting out on a new setup, I'd blow it all away and start from scratch. I hate that nagging feeling something's gonna bite me later down the road. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux & httpd & portmap
Ralph Angenendt wrote: MHR wrote: Tony, 1) Please edit your replies to remove unnecessary information. 2) If you need to present this large of an amount of data, please include it in an attachment. Maybe that would have broken the list limit ... Not sure of your meaning - by being 53k or being a 53k attachment? 53k * several thousand mails ... I did check my trashbin for Centos messages sorted by size & 53k was no where near the worst offenders - not trying to make an excuse, just showing my thought process - seemed like I would be okay. And it was data, not just the same sig repeated 50 times or a big bitmap. Is there a recommended limit on email size posted somewhere? Perhaps the membership join/reminder could have etiquette/rules included? Awaiting my penance . . . . -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Hardware serial number access from (a) command(s)
Scott Silva wrote: on 7-29-2008 11:26 AM MHR spake the following: On Tue, Jul 29, 2008 at 10:32 AM, Scott Silva wrote: You must have forgotten to wave the chicken over your head 3 times and said the magic words. You don't want to wave the chicken more than 3 times, as he will be angry enough after the 3. ;-P Did you remember to thaw the chicken? ;^) mhr Its supposed to be dead first? Don't forget organically fed and free range. -- Toby Bluhm Alltech Medical Systems America, Inc. 30825 Aurora Road Suite 100 Solon Ohio 44139 440-424-2240 ext203 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: Hardware serial number access from (a) command(s)
MHR wrote: On Tue, Jul 29, 2008 at 12:46 PM, Lanny Marcus <[EMAIL PROTECTED]> wrote: On Tue, Jul 29, 2008 at 2:27 PM, Toby Bluhm <[EMAIL PROTECTED]> wrote: Scott Silva wrote: on 7-29-2008 11:26 AM MHR spake the following: On Tue, Jul 29, 2008 at 10:32 AM, Scott Silva wrote: You must have forgotten to wave the chicken over your head 3 times and said the magic words. You don't want to wave the chicken more than 3 times, as he will be angry enough after the 3. ;-P Did you remember to thaw the chicken? ;^) mhr Its supposed to be dead first? Don't forget organically fed and free range. I was born and raised in California, where Scott and Mark are, but this waving the chicken over my head, when working on a PC, is new to me. :-) It's the latest rage - you have to be here :-) mhr Sheesh! Get with it, man. The scientific research has proven it works better than burning candles and chanting. :-) -- Toby Bluhm ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Updated bind marked as vulnerable
mbneto wrote: Hi, I have a Centos 4.6 machine that even tough has been updated with the latest bind 9.2.4-28.0.1.el4 is marked as vulnerable by https://www.dns-oarc.net/oarc/services/dnsentropy. I have another machine which also uses that same distro and is not. Do I have to do any other update? Are those boxes directly handling your DNS requests to the internet for you - i.e. their IPs show up in the test results as the DNS Resolvers? If yes, probably your named.conf would need to be looked at in the problem box. More likely, it's your nameserver in your resolv.conf or the nameserver of your nameserver that the test site is talking to. You have to bug whoever runs those boxes about the problem. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] guest vms crash host systems
If you haven't already, check the mainboard & power supply for bad capacitors: http://en.wikipedia.org/wiki/Capacitor_plague ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On 11/5/2011 10:43 PM, Doug Coats wrote: > I understand what google docs offers but it comes with the need for an email > address that i can not make students have, the inability for me to control > who has access to which files, and no way to get teachers access without each > student configuring that on their own. My teachers have enough to worry > about. They will not use a solution that is more difficult then what we > already use. Any solution has to be a clear upgrade with advantages for it > to be adopted. > Sent from my ASUS Eee Pad > Try a search for "document management system open source." ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Preventing hour-long fsck on ext3-filesystem
Bernhard Gschaider wrote: > Hi! > > I'm justing in the process of setting up a new fileserver for our > company. I'm installing CentOS 5.3 (64 bit) on it. > > One of the "problems" with it is that it has a 3.5TB filesystem for > the user data which I formatted during setup as an ext3. Now my > experience with our current fileserver is that a 0.5TB ext3 filesystem > needs approx half an hour to complete (and kicks in every so and so > reboots or every 180days). My estimate is that for the larger > filesystem (and the faster machine) the fsck would need well over an > hour (being optimistic). I dread the day when I have to reboot the > server and wait for 2hours or more just because the system thought it > would be a prudent thing to check the filesystem. > > My question: > > - is there another stable filesystem (XFS, ReiserFS ...) in the >centosplus-kernel where this could be avoided (fsck is faster) and >that is as safe as ext3 > - Or would it be better to switch off automatic checking with tune2fs > > Any opinion/experience welcome. I looked around a bit but couldn't > find a good answer > > Bernhard > > PS: Sorry for the stupid question, but I'm only part-time admin and > testing this myself would take weeks, I guess > If you use ext3 on LVM, you could every once in a while make a snapshot of the fs & do a background fsck on the snapshot. https://www.redhat.com/archives/ext3-users/2008-January/msg00032.html -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba Question
Bo Lynch wrote: > On Thu, May 21, 2009 2:43 pm, JohnS wrote: >> On Thu, 2009-05-21 at 14:16 -0400, Bo Lynch wrote: >>> Hopefully very easy question to answer. I am trying to migrate data of >>> of >>> a samba server that is using winbind joined to a windows domain to >>> another >>> box. What samba or winbind files do I need so that this will resolve to >>> names rather than UID and GID. For example >>> drwxr-x--- 1049 10926 10005 36864 May 15 11:46 Student >>> >>> Thanks >> -- >> Migrate what data exactly? Is winbindd/samba your domain controller or >> is it on a Active Directory Server? >> >> Caveat is you don't need winbindd. If you using winbind with AD then >> save your *.tdb files. Depends on your situation totally. Kerberos cache >> come to mind also. You smb.conf also. Just to migrate user data none of >> the above is needed. This answer you ? ?. As far as I know UID and GID >> is the only way to inter operate with AD... >> >> JohnStanley >> > > The situation I'm in is that this box is joining to a win2000 PDC using > samba+winbind for setting permissions on files and dir with domain > users/groups. When I do a ls -l I just see the uid or gid instead of the > domainame+_user domainname+group which is causing samba not to know who > owns the file. > Is winbind added to the appropriate fields in nsswitch.conf? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba Question
>>> The situation I'm in is that this box is joining to a win2000 PDC using >>> samba+winbind for setting permissions on files and dir with domain >>> users/groups. When I do a ls -l I just see the uid or gid instead of the >>> domainame+_user domainname+group which is causing samba not to know who >>> owns the file. >>> >> Is winbind added to the appropriate fields in nsswitch.conf? >> >> -- > > > Yes > > Is wbind running? Does any of the wbinfo commands give what you expect? -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS-announce] CentOS 5 i386 - The CentOS-5.3 i386 Live CD is released
Niki Kovacs wrote: > Ladislav Bodnar a écrit : > >> Hey, didn't you abandon Linux and switch to Windows not long ago? I remember >> you making a big deal out of this on your blog. Or did you change your mind >> again? Was the Windows world that bad? > > To err is human. Béranger is looking for perfection in an imperfect > world... and IMHO he's making quite a good job at spotting the > imperfections, even if you don't agree with the conclusions. > What's really nice is when some fixing goes along with that spotting. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS-announce] CentOS 5 i386 - The CentOS-5.3 i386 Live CD is released
> > Fixing of what? > Come on now. You started this thread. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CIFS Issue When Copying Large/Many Files From CentOS To Remote Windows 2003 Server Share
Kemp, Larry wrote: > Mucho thanks guys... > > 1) We have disabled the antivirus for the entire drive (which is a RAID5 > diskarray). I will try to have Bacula send it job to this mounted system now > and see if CENT OS comes back with any CIFS errors. > > 2) I did try originally editing the /etc/fstab to mount the remote share as > SMB in as many different ways that I could find online. But none seemed to > work for me. It seemed to be a little bit different across Linux distros and > versions, as well as SMB versions. And in the end, I simply got CIFS to work > and had just not yet figured out the exact verbiage for SMB to work in > /etc/fstab to mount /mnt/remotewinserver automagically at boot. I did read up > on SMB as well to see if I was missing something small. If you have a > combination that has worked for you Nate, please do share sir, I would be > most gracious on my end...believe me. The remote sharer is a Windows 2003 > Server running 2 64bit processors, but the OS was installed as 32bit for > whatever reason. > > 3) Unfortunately Windows claimed the big fat HP Storage server before CENT OS > could (sorry for this starting to sound like a Windows whinefest too). Having > said that, Win2k3 Server runs the array already backing up all Windows > servers using Backup Exec. I am ofcourse trying use CENT OS and Bacula but > needed large diskspace. Had we had another array/server I could use CENT OS > would have no problem running I am certain. So as a second method I am > creating a VM running CENT OS and Bacula on the large S:\drive of the Windows > server that has an expandable VMDK drive (VMWare). This way my CENT OS/Bacula > VM can grow as big as it needs to and to CENT OS and Bacula the storage > device is just natively /storage-array. At least that is one plan anyway. > > > We are also "talking about" just buying the Symantec Linux client for > backups. But the original goal was to use CENT OS for this since our > production systems are CENT OS. > > Okay that's everything I think. Thanks for the help thus far. > How about getting getting them to carve out a chunk of the storage server through iscsi for dedicated Centos use. Would bypass most of that Windows share crappola. -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba Question
Rajagopal Swaminathan wrote: > Greetings, > > There is a requirement of Samba server with the following specification: > > There are two groups: Designers, Draftsmen > > The share folder hierarchy is Project-->Final > > Now the Designers groups should have rw rights for Projects and subfolders > > The draghtsmen should be able to upload only files (not folders) to > Final subfolder. They are not allowed to modify/delete anything > anywhere. They will not have any permission in project folder > > any ideas? > You should be able to do that with a inotify script running in the background. Install inotify-tools from rpmforge, manpage has some examples to get you started. Probably need two dirs to work with: files are dumped into "upload", processed by inotify, moved to "final". -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] question on wget
Dave wrote: > Hello, > I've got an ftp site, not mine, that has content on it that i want > to download. It's not anonymous so it requires a log in. The problem is > either the ISP has a bandwidth throttle or the admin does, in either case > inconsistently as to the point in the file, but i rarely get a complete > download. I'm using ncftp. I was wondering if either ncftpget or wget could > do like an auto get and keep getting more and more until it has the complete > file? > If you think throttling down your download may help, wget --limit-rate= . . . . -- tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to show that a filesystem is ACL-enabled?
On 9/16/2010 10:09 AM, Robert P. J. Day wrote: > On Thu, 16 Sep 2010, Miguel Medalha wrote: > >> >>> can someone clarify this? is there a command that shows whether a >>> filesystem is currently acl-enabled? and is the mount man page >>> simply incomplete in that respect? thanks. >> >> tune2fs -l /dev/[hda1,sda1] >> >> The values between [ ] are an example only. Replace, of course, with >> your own storage device. >> >> Look at "Filesystem features" and "Default mount options". > >ah, excellent, i can see that "default mount options" includes > "acl", and i'm going to guess that that's a kernel config option > that's selected on a per-filesystem type basis. thanks. > I'm not sure what fs mount options are available through kernel config, but you can set/unset many fs options/features with tune2fs. Check the manpage. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] excel parser (preferably perl)?
On 10/19/2010 11:17 AM, Les Mikesell wrote: > On 10/19/2010 9:34 AM, Todd Denniston wrote: >> >>> I'm getting tired of converting spreadsheets that someone else updates >>> to csv so my perl scripts can push the data into a mysql database. Is >>> there a better way? I haven't had much luck with >>> perl-Spreadsheet-ParseExcel (and find it odd that yum prefers the .32 >>> version from epel over .57 from rpmforge anyway). Is the current CPAN >>> version better? Or the equivalent java tools? Or maybe a scripted >>> OpenOffice conversion would be possible. >>> >>> Needs to deal with both xls and xlsx formats, the odd characters that >>> are confused with quotes even after csv conversion, numbers with $'s and >>> commas embedded, excel's date formatting nonsense, etc. >>> >> >> Would it cause more headaches than it would solve, for you to hook the excel >> folks directly to the >> mysql db and have their changes take place immediately? Assuming a LAN >> environment here instead of >> 'the only connection is email'. > > That's pretty much impossible in the near term anyway. The bulk of this > involves reconciling inventory data maintained by one set of people for > financial purposes in a database I don't control with some others used > for operational monitoring and management. For example, we need to be > able to report the current value of the set of equipment being used for > a particular purpose - where servers are being shuffled around for > different purposes all the time. I'm using ocsinventory-ng for > operational tracking because the agents keep it updated automatically > but it only handles computers and by itself doesn't deal with cost or > deprecation. New requirements keep popping up as we go and I don't find > out about them until someone sends me a spreadsheet with some new fields > and a request to add them to the db and populate them so they'll be > available in future reports. > >> Could you do the sanity checking you currently do by using some db functions? > > Maybe, but doing string operations in sql instead of using perl regexps > seems a little insane by itself. > >> "MySQL Forums :: Microsoft Access :: Connecting MS Office, MS Excel, MS >> Access to MySQL using ODBC" >> http://forums.mysql.com/read.php?65,148441,148441 >> >> * OK, I often come at problems from a different direction. * > > Yeah, the inconvenient parts could probably be done in vbscript or > something on a windows box, pushing the results into the db through > odbc, but I thought this would be a common enough problem that > cross-platform tools would be available. I am using some java stuff on > the reporting side - maybe I should look there for conversion tools too. > I experimented a little with this sometime last year - seemed to work okay: http://www.artofsolving.com/opensource/jodconverter ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] pdflush kernel thread pops up every 10 seconds or so and video decoding grinds to a halt for 1/2 a second
On 10/19/2010 3:34 PM, Aleksey Tsalolikhin wrote: > On Mon, Oct 18, 2010 at 9:08 PM, JohnS wrote: >> >> On Mon, 2010-10-18 at 18:25 -0700, Aleksey Tsalolikhin wrote: >>> Hi. A friend of mine was doing real-time video decoding on >>> Fedora Core 13 and he had a performance glitch (1/2 a second >>> freeze) every 5-10 seconds. "top" showed flush-253:0 >>> process at the moment of the freeze. >> >> And what is the Priority of it running at? How many Cores also? > > He sees this issue at normal priority and at nice -n -19 / -20. > > He has 6 cores with hyperthreading on > > 3.8 Ghz, the memory is 1.850 Mhz > > The system is 980x Intel 6 core > > He just told me he has two modes for his decoding program, in one > mode the system does not write to disk at all, and there are NO GLITCHES > doing it this way; another way, it writes lots of little files as it decodes, > and the glitch happens actually every 5-20 seconds. > > Would like to get to the bottom of this so he can decode with temp files > and without glitches. > Ext3 filesystem? Maybe altering the commit option at mount time would help: http://www.mjmwired.net/kernel/Documentation/filesystems/ext3.txt#49 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: Ralph Angenendt wrote: touch /forcefsck and reboot. This will cause all filesystems to be checked with fsck after the reboot. I did it several times. Unfortunately, it couldn't fix the problem. Does it say the fsck is a success or fails? I still get the following errors and the system goes "read only" after a couple of minutes. EXT3-fs warning (device dm-0): ext3_clear_journal_err: Filesystem error recorded from previous mount: IO failure EXT3-fs warning (device dm-0): ext3_clear_journal_err: Marking fs in need of filesystem check. EXT3-fs warning: mounting fs with errors, running e2fsck is recommended EXT3 FS on dm-0, internal journal EXT3-fs: recovery complete. EXT3-fs: mounted filesystem with ordered data mode. It seem formatting the /mnt/raid is the way to go. However, i have to move /mnt/raid/var to /var first. / is on another hard disk and there is space available. there are lots of programs use var lively. How can I move /mnt/raid/var to /var. Boot the rescue disk. Mount the partitions someplace. Dump /old_var to /new_var. Of course, if the /old_var fs is somewhat trash, /new_var won't be much better. I'd be wary of hardware problems with raid controller, cables, or disks. That "IO failure" in your logs isn't what you want to see during fs operations. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Toby Bluhm wrote: . . . Boot the rescue disk. Mount the partitions someplace. Dump /old_var to /new_var. Also verify that fstab or symlinks is not going to keep using old_var. Also Also make sure you have enough space for the new_var location. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Your first message says you have the problems on the lv mounted at /mnt/raid. >/dev/raid_vg0/raid_lv0 /mnt/raid ext3defaults0 0 then later >I am thinking about reformatting this volume, but /var is on that >volume as well. If you mean that /var is a separate lv in your raid_vg0 volume group, then just umount /mnt/raid and run your fsck on /dev/raid_vg0/raid_lv0. If you have services that live in or depend on /mnt/raid being mounted, stop all those services first. Or init 1 to single user console. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux & httpd & portmap
Just to follow up with a summary on this . . .
Followed the email HowTo on the Centos wiki by installing postfix,
dovecot, postgrey, amavisd and setting up SSL/TLS.
Set selinux to permissive, targeted.
Sent many, many emails with attachments, spam, etc. to & from the box.
Removed previous selinux entries from audit.log.
The new policy was extracted with
cat new_audit.log|audit2allow -m local
module local 1.0;
require {
type traceroute_port_t;
type amavis_t;
type postfix_spool_t;
type clamd_t;
type amavis_var_lib_t;
type sysctl_kernel_t;
type var_t;
type postfix_smtpd_t;
type initrc_t;
type proc_t;
class unix_stream_socket connectto;
class file { read getattr };
class sock_file write;
class lnk_file { read create unlink getattr };
class udp_socket name_bind;
class dir { read search };
}
#= amavis_t ==
allow amavis_t amavis_var_lib_t:lnk_file { read create unlink getattr };
allow amavis_t traceroute_port_t:udp_socket name_bind;
#= clamd_t ==
allow clamd_t proc_t:file { read getattr };
allow clamd_t sysctl_kernel_t:dir search;
allow clamd_t sysctl_kernel_t:file read;
allow clamd_t var_t:dir read;
allow clamd_t var_t:file { read getattr };
#= postfix_smtpd_t ==
allow postfix_smtpd_t initrc_t:unix_stream_socket connectto;
allow postfix_smtpd_t postfix_spool_t:sock_file write;
Put the policy into effect with
cat new_audit.log|audit2allow -M local
semodule -i local.pp
Ran through all the same email tests.
selinux has not complained - yet.
--
Toby Bluhm
Alltech Medical Systems America, Inc.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: I think I found the culprit albeit I still don't know how to fix. 1. During boot the screen prints the following errors "no fstab.sys, mounting internal defaults ... No devices found Setting up Logical Volume Management: /var/lock: mkdir failed: No such file or directory" I have a LV on RAID mounted as /mnt/raid. Then /mnt/raid/var is symlinked to /var. I was afraid you were going to say that. Go back to single user mode. mkdir /new_var cd /mnt/raid/var tar cf - . | ( cd /new_var ; tar xvf - ) Make sure both dirs look the same. Change the link to /new_var. Or remove the old link & mv /new_var /var. reboot. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] File system goes read-only once in a while
Mufit Eribol wrote: Toby Bluhm wrote: Mufit Eribol wrote: I have a LV on RAID mounted as /mnt/raid. Then /mnt/raid/var is symlinked to /var. I was afraid you were going to say that. Go back to single user mode. mkdir /new_var cd /mnt/raid/var tar cf - . | ( cd /new_var ; tar xvf - ) Make sure both dirs look the same. Change the link to /new_var. Or remove the old link & mv /new_var /var. reboot. Toby, Thank you for this nice tip. It worked perfectly. The server is back in the game again. Just for my learning experience, I would appreciate if you clarify one point though. Why are you afraid when you hear /mnt/raid/var symlinked to /var? Because it can complicate a recovery, as you just experienced. Why did you feel a need to have /var setup as you did? Did you expect to fill it up quickly or a need for speed? You also have /tmp separate - do you expect more than usual activity there? Perhaps a better question would be - What is the purpose of this machine? If it's a just a fileserver on a home lan, you don't *need* to make it complicated, although learning is fun :-). Running a very active internet facing box with email, mysql, apache, etc. would probably call for a more complicated setup - which would actually make recovery & security easier/better. Here is my fstab: /dev/md2/ ext3defaults 1 1 <--- md2 Software RAID1 /dev/md1/boot ext3defaults 1 2 <--- md0 Software RAID1 /dev/md0/tmpext3defaults 1 2 <--- md1 Software RAID1 tmpfs /dev/shmtmpfs defaults0 0 devpts /dev/ptsdevpts gid=5,mode=620 0 0 sysfs /syssysfs defaults0 0 proc/proc procdefaults0 0 LABEL=SWAP-sda3 swapswapdefaults,pri=1 0 0 LABEL=SWAP-sdb3 swapswapdefaults,pri=1 0 0 /dev/raid_vg0/raid_lv0 /mnt/raid ext3defaults 0 0 <--- Hardware RAID10 Before, home and var were under /mnt/raid directory and symlinked to /home and /var. Now, both directories were copied to / (md2 software RAID1) as new_home and new_var and /home and /var symlinks are now pointing to these new directories. /mnt/raid (hardware RAID10) which is the main storage of my server is not being used at the moment. Instead of using links, may as well just mount it where it belongs. I am planning to have 2 logical volumes (for home and var separately) instead of 1. Then, they will be mounted as separate partitions as /home and /var to /dev/raid_vg0/raid_lv0 and /dev/raid_vg0/raid_lv1, respectively. Is it a good approach? Please advise. I'm somewhat simple-minded - I like to keep the system that way :-). I split the partitions into 3 / swap /home either on a single disk or mirrored ( swap mirrored too ) - no lvm. For data storage I use lvm on raid on a separate mount point. Not saying you should do the same - it's just what I do. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Reloading /etc/hosts
Robert Moskowitz wrote: I am doing some testing and am having to make many changes to /etc/hosts Is there a way to reload the /etc/hosts file without doing a service network restart? Takes effect immediately. Do you not get the changes right away? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: gcc editor for newbie (Emacs or vim or ?)
Florin Andrei wrote: Frank Cox wrote: On Tue, 12 Aug 2008 10:48:10 -0700 Florin Andrei <[EMAIL PROTECTED]> wrote: It's an awful editor. I wish I could hire the person who came up with the user interface, only to have the satisfaction of having him/her fired five minutes later. With no severance package. Viewed in the context of the time when it was originally created, it's a work of genius. There's a reason why it became the default text editor on Unix systems. I don't deny that. Interlaced video, at the time it was invented, was a great idea. Now it's a huge harassment for anyone doing video processing. The steam engine was a huge step forward - a few hundred years ago. And look at it now. If interlaced video powered by a steam engine works for me, why should I change? My car is over 10 yrs old & runs fine - don't need a new one. My house was built 45 yrs ago & I like it - don't need a new one. I was born over 50 yrs ago & I don't need . . . well, ok - maybe there's room for improvement. :-) -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to create whole image
kapil singh wrote: Hello, I am using Cent OS 5.2 . i want to create one master image of whole running OS becoz i have to do same installation many times on different machines. so any one suggest me to how create and run the image of whole OS at the time of installation or , which escape me to install each and every thing many times. i would not like to create image using dd. any suggestions ?? Clonezilla is designed with your intent in mind. I believe it should support lvm & sw raid. www.clonezilla.org -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Missing fonts for tightvnc
Robert Moskowitz wrote: You would think installing via yum would handle dependencies, but perhaps fonts are not managed like dependencies. Anyway, I installed tightvnc to test out its IPv6 support. Installed ok (after I erased regular vnc). But when I tried to start it, I got 5 warnings about: Font directory '/usr/X11R6/lib/X11/fonts/misc' not found - ignoring (then the same message for Speedo, Type1, 75dpi, and 100dpi). Then a fatel server error about: could not open default fount 'fixed' So I looked in the repos (curtesy of yumex) and did find a few 75dpi a 100dpi fonts, but there seemed to be a lot of these two. I installed a ocuple of them and tried again. Got the same errors. So how do I fix this one? Perhaps vnc can't talk to the xfs daemon - IPv6 or firewall related? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Missing fonts for tightvnc
Robert Moskowitz wrote: Toby Bluhm wrote: Robert Moskowitz wrote: You would think installing via yum would handle dependencies, but perhaps fonts are not managed like dependencies. Anyway, I installed tightvnc to test out its IPv6 support. Installed ok (after I erased regular vnc). But when I tried to start it, I got 5 warnings about: Font directory '/usr/X11R6/lib/X11/fonts/misc' not found - ignoring (then the same message for Speedo, Type1, 75dpi, and 100dpi). Then a fatel server error about: could not open default fount 'fixed' So I looked in the repos (curtesy of yumex) and did find a few 75dpi a 100dpi fonts, but there seemed to be a lot of these two. I installed a ocuple of them and tried again. Got the same errors. So how do I fix this one? Perhaps vnc can't talk to the xfs daemon - IPv6 or firewall related? Perhaps. What ports does xfs use? Why does it work for vncserver (on IPv4 only of course)? 7100 I think . . . grep xfs /etc/services xfs 7100/tcp# X font server . . yes But I stopped both iptables and ip6tables and the same error messages. And installing OpenOffice did not 'fix' things. Perhaps setting symlinks may be needed. I remember playing games with Matlab to get it to find it's own fonts. I think it went something like: mkdir cp fonts* mkfontdir Add to /etc/X11/fs/config Like you say, maybe just a link to /usr/share/X11/fonts/misc would do the trick. Perhaps a vnc/X startup script somewhere is hardcoded? -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
nate wrote: Mag Gam wrote: I am using RHEL 5.1 with custom kernel. Might be something about your custom kernel that affects lvm operations. It could be you have a version mis-match in lvm components in your system. I have a LV I am trying to remove and its keep complaining its open. I have unmounted the filesystem, lsof shows nothing, fuser shows nothing. I am certain a reboot will fix it, but I don't know why this occurs. Can anyone shed some light on this? Are there some other LVM hacks I can use for this? No snapshots still present for that lv? Not really a hack but you need to deactivate it: lvchange -a n Verify that it's deactivated with the lvdisplay command Current versions of lvm/lvremove will do that automatically. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
Toby Bluhm wrote: nate wrote: . . . Verify that it's deactivated with the lvdisplay command Current versions of lvm/lvremove will do that automatically. . . . but verifying is still a good idea. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LVM not removing LV
Mag Gam wrote: There are too many mount points. Close to 120. I am fairly certain this volume is not mouted. I did a grep -i lvname /proc/mounts Maybe a daemon is still holding your lv device open? Somewhere, maybe this list, I remember a similar discussion where the culprit was a backup agent holding /dev/ open. The solution was to kill the daemon. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Home NAS device
Joseph L. Casale wrote: I am looking for something that I can hack away like a NSLU2 but that thing only has one disc and worst of all its 100m interface. Anyone know of a device you can load Linux on that has maybe 2 discs like a NAS200 with a gig nic? I need a quiet device to act as a tftp-dhcp/web/dns system. The problem I see with going the all-in-one NAS route is that down the road, there's always some function you'd like to add - but you can't. You've hit the limitations of the box. I thought of just building one from a new Soekris board, or even a mini itx but hope there was something simpler/cheaper. Or even micro-ATX. I saw recently that AMD came out with a clocked-down Athlon. The total package wattage was projected to be lower than Intel's Atom. If I can find that link . . . . . . . . here it is: http://www.tomshardware.com/reviews/Atom-Athlon-Efficient,1997.html -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Home NAS device
Joseph L. Casale wrote: What's involved in building an embedded version of CentOS for a Soekris or similar small mobo? Is that a feat worth considering or is the work involved huge? Centos 5 supports 686 or better. I *think* the geode is a 586 type cpu. Something like Puppy or DSL would probably be better. The hw vendor may say what it can run - hopefully something less generic than just "Linux." -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: USB drive fails at sector 0xFFFFFFF
Scott Silva wrote: More than likely it is a problem with the Linux reverse engineered support for a Windows proprietary file system. Why back up to NTFS? Originally I was backing up across the LAN to the drive attached to my XP workstation. That would isolate the error if it was caused by the NTFS driver. I would use a linux supported filesystem unless you *need* to be able to look at these dump files from a windows workstation. Could reformat the disk for ext2/3 & install ext2ifs on the windows box: http://www.fs-driver.org While I haven't much heavy use or testing, it's worked well for me. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] i didn't see the 4.7 announcement
Robert wrote: . . . The announcement was received here at 1200 UDT on 9/13. More noticeable, though, was the disappearance of the chorus of complaining about the *volunteer* effort not being fast enough to please them. Perhaps they're so choked up that mere words are inadequate to describe their gratitude. ;-) -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] email and MS outlook
Mag Gam wrote: We use Microsoft Outlook heavy at school but our backed is CentOS. I use echo "Foo" | mail -s "subject" [EMAIL PROTECTED] a lot. Is it possible to change the priority to High so Outlook will understand it? The priority meaning the email will be sent to the normal email queue but on Outlook it would have the exclamation point. Maybe just a stupid idea . . . If it is just a header thing, as it's been suggested, I would try procmail. Your command would be something like echo "Foo" | mail -s "subject:real_recipient" [EMAIL PROTECTED] The procmail script for the highpriority account would add in the necessary header, pull real_recipient out of subject & forward it to [EMAIL PROTECTED] -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: DKIM
mouss wrote: . . . I don't like Josh mail, yours is worst. I dunno about that. I mean after a long thread where you try to make sure you are doing the right thing on your end before going upstream to complain, you get to be called childish, ignorant and full of BS. I'd be pissed too. BTW - very informative thread. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: DKIM
Scott Silva wrote: . . . A "one stop shop" on everything CentOS. I like that approach better. A new list for email only would probably lead to email threads on *both* lists, users being reminded to take the discussion to the other list, etc. -- Toby Bluhm Alltech Medical Systems America, Inc. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: question about software Raid 1
Kanwar Ranbir Sandhu wrote: . . . You said above, "When this finishes...", but how do you know the check is completed? I saw this in /var/log/messages: cat /proc/mdstat gives progress cat /sys/block/md0/md/sync_action gives current mode -tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: AW: AW: [CentOS] Nightly yum update did an "upgrade"
Griesbach, Lutz wrote: . . Don't top post, please. With RTFM you are right, I read the man pages and disabled nightly updates. Thank you for your help. Did you leave it so it at least notifies you of available updates? Better than ignoring updates altogether. -tkb ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
