Once upon a time, Fabian Arrotin said:
> Migration is scheduled for """"Tuesday April 8th, 7:00 am UTC time"""".
> You can convert to local time with $(date -d '2024-04-08 07:00 UTC')
April 8, 2024, is Monday, not Tuesday.
--
Chris Adams
his will not be the case for the second half of a RHEL major release
life cycle, because the corresponding Stream will be EOL and no longer
updated.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Chris Adams said:
> The package elfutils-debuginfod-client is needed for even a minimal
> install, but it is not available on most mirrors. I suspect some are
> excluding mirroring debuginfo packages with just a *debuginfo* pattern
> to rsync, where they should
os.eggycrew.com
volico.mm.fcix.net
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ackage was orphaned in Fedora, so there's no maintainer to create
and manage builds.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
is false, while
test -blob is true).
Note that bash has test and [ as shell builtins, but the external
command /usr/bin/test and /usr/bin/[ have the same behavior.
The [[ ]] method is a bash extension, and treats a test operator without
a corresponding operand (e.g. [[ -z ]]) as an error condition inste
o this for example).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
don't think any filesystems care (I know I've mounted
snapshots of ext4 and IIRC xfs on the same system, haven't touched
btrfs).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
RUB2's FS handling anyway, so
this case is probably far down the list.
I think that having RAID 1 for /boot and/or /boot/efi can be helpful
(and I've set it up, definitely not saying "don't do that"), but has to
be handled with care and possibly (probably?) wo
--metalink=https://mirrors.centos.org/metalink?repo=centos-baseos-9-stream&arch=x86_64
repo --name=appstream
--metalink=https://mirrors.centos.org/metalink?repo=centos-appstream-9-stream&arch=x86_64
repo --name=crb
--metalink=https://mirrors.centos.org/metalink?repo=centos-crb-9-stream&
x27;s incomplete. Instead, you can use something like:
https://github.com/sshambar/nmutils
to add event scripts to NM to handle it (although IIRC I had a couple of
issues with those scripts too, but didn't get back to working it all
out).
--
Chris Adams
__
s happening?
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
es (in which case, why back up), this will
still be lost in the noise of total writes. Any old SSD will handle
that just fine for many years to come.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ing file contents on the "full"
> backup weekly or monthly.
Unless you never write to the disk, that will still be lost in the noise
of writes. But if it still bothers you, use rsync --open-noatime.
--
Chris Adams
___
CentOS mailin
is -v3, but not -v4.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Will the Fedora EPEL repo RPM be added to any CentOS 9-stream core
repos, like epel-release is in 7 and 8-stream extras?
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Make a connection for the physical ethernet em1 to be part of the bridge
> > nmcli con add type ethernet ifname em1 master bridge-br0
does it. If you don't specify a connection name, NM names a new bridge
member connection profile as "bridge-slave-".
--
Chris Adams
I'm starting to look at CentOS 9-stream... what is the CRB repo? It
appears to be a lot of development libraries and such, but I didn't see
a definition or "CRB" anywhere.
--
Chris Adams
___
CentOS mailing list
Cen
idge-slave-em1
# Disable the original config
nmcli con mod em1 autoconnect 0
Then you set your VMs to use the bridge - in the libvirt XML for
example, you'd have something like:
Inside the VM, configure
Once upon a time, Stephen John Smoogen said:
> On Sun, 14 Nov 2021 at 17:48, Chris Adams wrote:
> > I started looking at 9-stream a bit... and I notice there are no package
> > modules. All the things that were modules in 8/8-stream appear to have
> > been folded back into
forward, or are modules just still to be filled out?
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ng a floppy image after floppy
image). I wonder if it would install in a modern VM?
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
(I didn't
find a list in a quick search), so don't think they claim that CentOS 7
is supported. I think they just say "here's an RPM" and "here's a
repo".
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ld be satisfied).
Have you run Teams before on this system? If so, I've found that it
tends to bog down over time, which I suspect is something like it
growing a cache without bounds or the like. If that's the case, I
suggest removing its data and re-logg
core issue is a more fundamental
> one: Red Hat, our upstream, is walking away from traditional server
> needs.
Like any commercial product, RHEL exists for Red Hat's customers... so
if you want to see something specific from RHEL, you need to be a
customer to g
Once upon a time, Chris Adams said:
> Once upon a time, Łukasz Posadowski said:
> > From 11.06 journal is logging a lot of denied access to /proc for
> > unix_chkpwd by selinux. They are so frequent, that I see them in
> > htop. :) Right now I have 2122 logges denials.
to know who is
> logged in, do probably yes, bit I'm not sure.
I haven't dug into it, but I'm thinking there was some policy or library
change that isn't quite right... sssd_be also has the same denial on
startup (so every boot).
--
Chris Adams
panies (sometimes imperfectly, as seen
with the VPN mess just before FreeBSD 13 release).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
7;t
many requests to do that (so it isn't a well-supported thing to change).
It looks like something like this might do it:
authselect create-profile sha256 --base-on=sssd
sed -i 's/sha512/sha256/g' /etc/authselect/custom/sha256/*
authselect select custom/sha256
--
Chris Ad
may have been a hack around the kernel not balancing well to begin with
of course).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Nicolas Kovacs said:
> Le 12/04/2021 à 23:11, Chris Adams a écrit :
> > oVirt
> > itself doesn't include backup software (it supports VM snapshots and
> > clones), but there are several third-party backup tools (both free and
> > commercial)
oVirt
itself doesn't include backup software (it supports VM snapshots and
clones), but there are several third-party backup tools (both free and
commercial) compatible with oVirt/RHV, like Storeware's vProtect (I
haven't used it but seen others mention
e multi-valued (such as
addresses and routes), you can prefix with + or - to add or remove just
one entry. For example, to remove just address 10.1.1.2/24:
nmcli con mod em1 -ipv4.address 10.1.1.2/24
nmcli con up em1
--
Chris Adams
___
Cen
wn provA; nmcli con
up provB". You'd only want one to autoconnect though, so maybe:
nmcli con down provA
nmcli con mod provA autoconnect 0
nmcli con up provB
nmcli con mod provB autoconnect 1
Or you could even get fancier with a script that would check th
but mdraid has grown support for Intel (and maybe some other?) common
motherboard RAID. So, /dev/md doesn't inherently mean "Linux
software RAID" for a while now.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
/misc-scripts/
I know you can use driver disks to load additional modules from
elsewhere, but I wanted to end up with the kernel-plus anyway, so why
not just do it during install?
Lightly tested, but seems to work. Posting here in case it is useful to
others.
--
Chris Adams
elieve that when creating an external snapshot, you have to either
specify --disk-only (to not snapshot RAM), or supply --memspec (to
specify how/where to save RAM).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
something like
this can be a lesson on "hmm, hadn't thought of that before" type things
to watch for in other areas.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
kage installs its files directly to the EFI partition where they are
needed.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
le are confusing UEFI and Secure Boot.
UEFI is a replacement for the ages-old BIOS - Secure Boot is an
extension to UEFI to create a "trusted" (for whatever that may mean)
boot chain to get to the OS. You can have UEFI without having Secure
Boot
s well as newer Fedora (similar but newer
kernels). Are you sure you weren't doing something in an unsupported
and/or undefined way that just happened to work on CentOS 6?
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
is that there are
many cheap adapters on Amazon that claim to be Prolific or FTDI but are
in fact counterfeit clones - those may or may not work reliably for ANY
purpose.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Chris Adams said:
> I am trying to use a kickstart to install CentOS 8.2 on a server with a
> pair of drives with Linux software RAID 1. The install completes, but
> the resulting system will not boot - I get "Booting from Hard drive C:"
> from the BIO
RAID and
a bootloader).
Anybody else run into this? Any ideas? I've been installing from
kickstarts for ages, including software RAID, but not CentOS 8 with
software RAID until now.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://l
2018-04-10 2018-10-30 203
7.6 2018-10-30 2019-01-28 90
7.7 2019-08-06 (didn't find release notes)
7.8 2020-03-31 2020-04-27 27
8.1 2019-11-05 2020-01-15 71
8.2 2020-04-28
gap between a RHEL
8.x release and the corresponding CentOS release will drop.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
installed, it can also be used for
serial access... run "screen /dev/ttyS0 9600" (change the device and
speed as needed). Screen has its own superset of VT102, so you can set
TERM=screen, but it is also possibly close enough to the linux terminal
emulation to work directly (they
nformation (basically
what it can create in the iptables back-compat mode). The nftables
rules created by firewalld don't fall into that category, so can't be
viewed by iptables.
Instead, use the nft command, like "nft list ruleset" to see a dump of
all current rules.
--
reak
things, and it can break even more things in IPv6.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ot really sure). Do you have any
IPv6 firewall running there?
One other note about mail on v6 - not only do you need to have a valid
reverse (with matching forward) DNS record, you probably need to do TLS
with a valid cert (Let's Encrypt is free and easy).
--
Chris Adams
___
Once upon a time, Kenneth Porter said:
> --On Tuesday, April 28, 2020 10:16 PM -0500 Chris Adams
> wrote:
> >And frankly, giving you a /56 is pretty crappy, since ARIN rules say to
> >give every site a /48. I'd only do a /56 for a home connection prefix
> >
to
give every site a /48. I'd only do a /56 for a home connection prefix
delegation. But, that's AT&T! :)
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Kenneth Porter said:
> On 4/28/2020 3:17 PM, Chris Adams wrote:
> >- gateway sends a router solicitation and gets a router advertisement
> > with "stateful config" set, which tells gateway to do DHCPv6 (but
> > default route comes from RA)
&
ou don't really
need to filter out anything else!). You could filter "ip6 and
multicast", because RAs and DHCPv6 (and ND, neighbor discovery, the
counterpart to ARP) are all multicast.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
easiest if the system is a virtual machine and/or the storage is
on a SAN with snapshot capabilities.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
stalled /etc/named.iscdlv.key file)
ISC DLV has been obsolete for a while now, you should disable it.
> dnssec-lookaside auto;
I think setting this to "no" and restarting named should do it.
--
Chris Adams
___
CentOS mailing lis
lock" is the
network chip. :) If you need clock setting on a disconnected network,
you can get a dedicated time server.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
ten dynamic network changes that
work much better with NetworkManager than the old-style static scripts.
Containers, VMs, and VPNs all come and go, and work better with a single
system configuring their networks (rather than each layer implementing
their
blocking like fail2ban is okay - better is to just allow
your "known good" sources and not try to block things bit by bit.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
and that's going away sometime soon too, Chrome on all platforms will
no longer support Flash).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
.
I found https://bugzilla.redhat.com/show_bug.cgi?id=1770969 which then
references a RHEL-subscriber-only solution.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
r using a program like that. I'm not sure if something like
that is available for Linux, and if it would handle USB (you'd have to
actually look at each stick since they aren't always exactly the same
size).
If it helps your search, what you are looking for is an application of
the knaps
using the update on multiple CentOS 7 systems
(some with firewalld and some with iptables) without errors.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
dn't realize until recently that the Linux kernel only
supports uRPF-style filtering on IPv4, not IPv6. That's not good IMHO.
There is an iptables rpfilter extension, and I believe firewalld
includes it on IPv6 by default, but firewalld isn't appropriate for a
ion bar).
Do you have the device configured to not configure IP? From the CLI,
do "nmcli con mod ipv4.method disabled ipv6.method ignore".
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Alessandro Baggi said:
> Really I don't know, I can say that they have an entry in fstab and
> I have several mnt-share.mount unit as generated.
Are the fstab entries marked "_netdev"?
--
Chris Adams
___
CentO
config/network-scripts (the
supported options may vary some).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
a read-only device.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
The bigger change there is switching from iptables to nftables - while
you can keep using the iptables command and language (there's a
translation), to get the most out of it, you have to learn the nft
command and language (which is different). I'v
n not recover and reconnect to newly activated bridge when
> you return LAN cable, even only a second later...
See the NetworkManager-config-server package.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Chris Adams said:
> Once upon a time, Robert Nichols said:
> > the lack of VM snapshot capability is a total deal-breaker for me.
>
> The capability is still there and works just the same as before. The
> only change is that the new preferred tool for graph
napshots. virt-manager is still
there for now (presumably until Cockpit grows all the necessary
support), and the underlying virsh support hasn't changed.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
via amavisd-new, with messages going postfix ->
amavisd -> second postfix (all via SMTP). It's more complicated, and
not really necessary for the small setup (but I run larger mail servers
with that setup, so I do the same for my personal servers as well).
--
Chris Adams
___
Once upon a time, Kenneth Porter said:
> How would you implement the section here titled "Sendmail
> workaround" using Postfix?
http://www.postfix.org/postconf.5.html#recipient_delimiter
--
Chris Adams
___
CentOS mailing list
CentOS@
s of systems that have some USB3 and
some USB2 ports - accidentally plug your external SSD into a USB2 port
and start copying lots of data, and the system can just about appear to
be hung. Welcome to USB!
--
Chris Adams
___
CentOS mailing l
--drives=sda
bootloader --location=mbr --boot-drive=sda
reqpart
part /boot --ondisk=sda --asprimary --size=1024 --fstype=xfs
part pv.1 --ondisk=sda --size=3600 --grow
volgroup centos pv.1
logvol / --vgname=centos --name=root --fstype=xfs --size=1536 --grow
logvol swap --vgname=centos --
lt config, chrony doesn't serve time,
which is a good thing (see: all the problems with ntpd serving a lot
more than time). All you have to do is uncomment/add "allow" lines in
/etc/chrony.conf.
--
Chris Adams
___
CentOS mailing list
which is mostly small and black these days).
There's a "magic" thing systemd does now - hit C-A-D seven times in two
seconds and it'll stop what it is waiting for and just go ahead and
reboot. Will kill anything not shut down, but at least it'
ou might think, especially at point-release time.
There are often new dependencies when packages get updates beyond just
bug patching, sometimes an installed package might get obsoleted by a
different package (can't remember if that shows up in check-update),
et
e" or "yum list updates" won't tell you how
many packages would be installed with "yum update"... dependencies and
such are not resolved for check-update/list updates.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
g
> from.
.bash_profile will not be read when you just run "su", because
.bash_profile is read in a login shell, and "su" does not create a login
shell.
.bashrc will be read (and is really where aliases belong anyway), or you
can "su -"
Once upon a time, Johnny Hughes said:
> We obviously can not yet make an educated guess on WHEN this process
> might or might not be completed .. or WHEN the new version will be
> available.
So, next Tuesday then? :)
Thanks for the update, and all the hard work!
--
Ch
em and the other for
swap! This was probably 1992 or 1993, can't remember.
Today I installed Linux on a system wtih 48 CPU cores...
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Leon Fauster via CentOS said:
> And this only for Fedora29, a C7 installation works fine (dynamically
> expands to the boundaries of the disk).
You are asking about Fedora - you'd probably get better results on the
Fedora mailing lists, forums, etc.
--
switch to modularity with RHEL 8 adds
complications to the build system that have to be figured out. I
believe for example that EPEL can't use modules yet (the details on that
are still being worked out).
--
Chris Adams
___
CentOS mailing list
CentOS@ce
tant past having some kind of problem like
this, and I think on those systems, I used a boot floppy (yes, that long
ago!) with gPXE on it.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
tion 66 is a
hostname, not an IP. I don't know how you tell ISC DHCP to use option
67 instead of the file field, but maybe that could trigger different
client behavior?
More odd is that dnsmasq is adding a null terminator to both options 66
and 67. My UEFI PXE clients seem to acce
y to grab the same from my dnsmasq DHCP for comparison).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
.
ln -s grub2-efi-x64/boot/efi/EFI/fedora/grubx64.efi .
echo "sournce (http,pxesrv,cmadams.net)/local/grub2.pl" > grub.cfg
fi
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
package to
see a list of processes that appear to need a restart due to library (or
binary) changes. It isn't 100% accurate, but it is pretty close. There
are some things that can't be restarted (like PID 1); then you should
probably reboot.
--
Chris Adams
_
es with an
ethernet switch between them (and another port to the outside world).
It doesn't actually work that way (because they are sharing the physical
port), but it is close.
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
;
that's going to be a vendor/hardware specific setting (if it can be done
at all). Different vendors have different methods of configuring which
NIC(s) have IPMI access. You won't be able to configure that with
ipmitool; it'll typically have to be set in the BIOS and/or BM
Once upon a time, Adam Tauno Williams said:
> On Tue, 2018-05-15 at 13:04 -0500, Chris Adams wrote:
> > Once upon a time, Adam Tauno Williams said:
> > > Rules load automatically via the /etc/sysconfig/network-
> > > scripts/rules-
> > > {interface} files. Ro
file? I just put something
like:
table 200 default via 192.168.41.1 dev eth1
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
get rid of the nagging warning screen.
It's Open Source - patching to remove such a nag is legal and a service
to the users.
It's a screensaver program - how many updates does it need anyway? If
it is just updates to add more fancy animations, there is zero reason to
demand
Is there an DHCPv6 client in CentOS that supports prefix delegation
correctly? The old version of dhclient can't set a requested prefix
delegation length, so isn't very useful, and I can't get the even-older
wide-dhcpv6 from EPEL to work.
Once upon a time, Valeri Galtsev said:
> https://letsencrypt.org/
>
> - you will have to run web server to have certificate signed by
> them
Not necessarily - we do most of our Let's Encrypt validation with DNS
rather than HTTP
rk, but that would be up to the wifi
vendor's controller system (some can use RADIUS, some can use AD, some
use their own systems, etc.).
--
Chris Adams
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
t the same time (takes a DHCP tweak).
Just like the early days of BIOS PXE however, UEFI PXE clients don't
always seem to do the right thing. I have an Intel NUC (7th gen), and
it always fails with UEFI PXE.
--
Chris Adams
___
CentOS mailing l
ow.
Lots of people weren't seeing issues, but that's in part because Intel's
updated microcode release only actually updated microcode for recent
CPUs. I have many servers that aren't crashing, but that's because
Intel hasn't actual
1 - 100 of 200 matches
Mail list logo
