Re: Tripwire
I have this idea I am thinking of using for deploying Tripwire on our servers. Newly installed servers (I always start from scratch) will never have all the files included in the policy file since it assumes everything is installed (I on the other hand do custom installs to minimize disk space and exposure). Anyway, what I was thinking was this: 1. run tripwire with default policy 2. errors generated will be grepped for lines beginning with "Filename:" and redirected to a logfile 3. use a custom script to remove or comment out the filenames in the logfile from the default policy file Be aware though that although in theory this will work, I haven't personally used this method as I am still in the process of re-installing my servers with 8.0, but it should work. Even a shell script ought to do the work. Most of the time I use this scripting method to solve repetitive problems (problems that will occur again over time or on another system). Regards, Marlon Yu -- Psyche-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/psyche-list
xenix support?
Hello list, I am planning on moving a program, currently running on SCO Xenix System V version 2.3.4, over to Linux using iBCS2. Browsing the web informed me that it has been replaced by Linux-ABI and that ABI should be patched against a vanilla (kernel.org) kernel. However, I was also told that some distros, including RH, distribute patched kernels already. So does RH8 have the ABI patch and is it already compiled into the kernel that was installed? Hopefully, I can mount the Xenix HD too without problems, but if not, there's always tar. :-) Regards, Marlon Yu -- Psyche-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/psyche-list
Re: server installation
- Original Message - From: "Tammy Fox" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, October 15, 2002 12:56 AM Subject: Re: server installation > On the first CD, look at the RedHat/base/comps.xml file. Can't read it properly. IE says it can't find comps.dtd (data tag definitions?). M. Yu
Running X on servers
Hello list, I was recently installing RedHat 8.0 in my office PC and noticed that it now comes with a package group labeled "Server Configuration Tools". Clicking on Details show that the set contain RPMs that RH put together to provide GUI front ends to configuration tools (others are config tools in themselves) - they are named redhat-config-.rpm. It seems to me that RH is now leaning towards using a GUI-based system. Brings me memories of when I had access to a Sun Netra-I running Solaris/SunOS, and x86 machines running WinNT/2K. Anyway, I think this goes against keeping server installations as lean as possible. Personally, I install and run servers using text mode only (most are headless machines with VERY low end video cards - most of my linux routers/firewalls/VPN gateways are even using ISA cards!!!). To me, running X on a server is not only illogical but a waste of precious resources and introducing a potential security risk. I also think that using text mode forces one to actually see/learn what is being done instead of hiding it behind GUI front-ends. Then again, I know RH is just trying to make it easy for new hostmasters (I'll refrain from calling them sysads) to use/configure these machines. In the end though, IMHO, it'll only introduce more incompetent hostmasters who call themselves sysadmins as soon as they learn the intricacies of the concept of point-and-click. And when the proverbial sh*t hits the fan, i.e. X wouldn't load, they're stuck there staring at the screen feverishly typing in MS-DOS commands like HELP and wondering why typing a command followed by "/?" doesn't show a syntax/help screen (ok a bit harsh, but you get the point). So, what about you guys, where do you stand? Do think running X on servers is the way to go? Informed opinions only, please cat flames/rants > /dev/null :-) Marlon Yu -- Psyche-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/psyche-list
Errata Support Period
Hey list, Just went to www.redhat.com/errata/ to check for updates for my RH8 box and saw this announcement that RH would be providing "errata maintenance for at least 12 months from the date of initial release". It also puts up the End of Life dates for errata maintenance for several products. What exactly does this mean? That RH would no longer provide free support for a product after EoL (but provide it for a fee, or maybe not provide any at all whether for free or paid)? Believe it or not I still run RH6.2 in some of our production boxes and will probably continue to do so after the March 31, 2003 EoL date. What can I look forward to beyond 03/31/03? Marlon Yu -- Psyche-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/psyche-list
