On Thu, 2018-07-05 at 06:34 -0500, Johnny Hughes wrote:
> I pushed the 3 SRPMs that are not in CR to:
>
> http://vault.centos.org/6.10/os/Source/SPackages/
> All the other new SRPMS should be available from :
>
> http://vault.centos.org/6.9/cr/Source/SPackages/
When you have time, could all 6.1
Hi,
I usually receive updates after the related announcement has hit my
inbox. But today I see a thunderbird update, but no message on
centos-announce yet, not even in the archives.
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
___
Hi,
On Wed, 2017-07-05 at 13:25 -0500, Johnny Hughes wrote:
> We are changing the URLs for new CentOS updates from the current link
> types (example):
>
> https://rhn.redhat.com/errata/RHSA-2017-1679.html
>
> to these type of links instead (example):
>
> https://access.redhat.com/errata/RHSA-20
On Fri, 2017-03-03 at 13:26 +, Johnny Hughes wrote:
> CentOS Errata and Bugfix Advisory 2017:0392
>
> Upstream details at : https://rhn.redhat.com/errata/RHBA-2017-0392.html
> 33395736c057583471a3e8d3554adb014d0d4cd167aa03bad5099c02faad1d38
> polkit-0.112-11.el7_3.src.rpm
Note that this u
Hello Johnny,
On Wed, 2017-02-15 at 09:47 -0600, Johnny Hughes wrote:
> 2. They already have shell access on the machine in question and they
> can already run anything in that shell that they can run via what you
> are pointing out.
No, assuming noexec /home mounts all they can run is system bi
Hello Warren,
On Thu, 2017-02-09 at 15:27 -0700, Warren Young wrote:
> So you’ve now sprayed the heap on this system, but you can’t upload
> anything else to it because noexec, so…now what? What has our
> nefarious attacker gained?
So the heap is set with data provided by the (local) attacker wh
Hello Warren,
On Thu, 2017-02-09 at 14:22 -0700, Warren Young wrote:
> There are two serious problems with this argument:
>
> 1. Give me a scenario where this attacker can execute *only* pkcheck
> in order to exploit this hypothetical library’s flaw, but where the
> attacker cannot simply provid
On Thu, 2017-02-02 at 13:40 -0800, Gordon Messmer wrote:
> Escalation *requires* attacking a program in a security context other
> than your own.
Not necessarily. Suppose the adversary is aware of a root
exploit/privilege escalation in a random library. Then the heap spraying
allows this attacker
Hello Gordon,
On Thu, 2017-02-09 at 12:38 -0800, Gordon Messmer wrote:
> Git already has the protection you're looking for. As part of its core
> design, git uses a hash chain to verify the integrity of its history.
> Every change and every file is thus protected. It's impossible to
> insert
On Thu, 2017-02-09 at 14:12 -0600, Johnny Hughes wrote:
> The patch files are in git as text files, right? Why would you need
> checksums of those? That is the purpose of git, right?
Checksums are there to make sure that you get what you are supposed to
get. That is also true for text files. (A s
On Thu, 2017-02-09 at 12:58 -0600, Johnny Hughes wrote:
> At the time of extraction, the .metadata file is created (again,
> not by us, but by the Red Hat team that distributes source), and all the
> non-text sha1sums are in there as well as all the text sources.
Aha, .metadata, well, for f.e. bc
On Thu, 2017-02-09 at 12:53 -0600, Johnny Hughes wrote:
> Red Hat exports the source code to the repo, I don't think they are
> going to change what the put in. It is an extracted SRPM.
It shouldn't be hard to generate a checksum file. Or should this request
be directed at Red Hat?
Regards,
Leon
Hello John,
On Thu, 2017-02-09 at 16:33 +, John Hodrien wrote:
> On Thu, 9 Feb 2017, Leonard den Ottolander wrote:
>
> > How about my request for checksums in the git repo?
>
> What checksums would you actually want in git?
SRPMS are signed which allows the integrity of
Hello Johnny,
On Thu, 2017-02-09 at 09:07 -0600, Johnny Hughes wrote:
> Yes .. that content will be republished. It was an accident.
How about my request for checksums in the git repo?
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
__
Hi all,
Since the vault for 7.3.1611 has been cleared out last sunday (20170207)
- why is that? - I'm using git to download a "SRPM", or more accurately,
its contents.
However, using git has one major drawback: It is missing checksums for
the files.
Are there any plans to provide checksums for t
On Thu, 2017-02-02 at 12:18 -0800, Gordon Messmer wrote:
> I apologize if my intent was unclear. I was providing you with the text
> that you should use in your bug report. I am not explaining the problem
> to you, I am showing you a clear way to explain the problem in the bug
> report. You s
On Thu, 2017-02-02 at 10:39 -0800, Gordon Messmer wrote:
> Open a new bug report and focus on this patch, exclusively:
> https://cgit.freedesktop.org/polkit/commit/src/programs/pkexec.c?id=6c992bc8aefa195a41eaa41c07f46f17de18e25c
By the way, the comment for that commit starts with:
This usage is
On Thu, 2017-02-02 at 10:39 -0800, Gordon Messmer wrote:
> It took me a while to find the patch that you mentioned, which is
> probably why your bugs are being disregarded.
It is beyond my control where patches are listed in the Red Hat bugzilla
pages. I don't think the Red Hat employee involved
On Thu, 2017-02-02 at 07:16 -0800, Gordon Messmer wrote:
> On 02/02/2017 06:51 AM, Leonard den Ottolander wrote:
> > pkcheck might not be directly vulnerable. However, pkexec is.
>
>
> If that's so, why are you supplying patches to pkcheck rather than
> fixing pkexec
On Thu, 2017-02-02 at 06:40 -0800, John R Pierce wrote:
> On 2/2/2017 6:22 AM, Leonard den Ottolander wrote:
> > However, the fact that the binary in the example is setuid is orthogonal
> > to the fact that heap spraying is a very serious attack vector.
>
> without privilege
Based on an article that was mentioned on this list
https://googleprojectzero.blogspot.nl/2014/08/the-poisoned-nul-byte-2014-edition.html
I found two attacker controlled memory leaks in the option parsing of
pkcheck.c. These memory leaks allow a local attacker the ability to
"spray the heap", i.
On Fri, 2017-01-27 at 13:56 -0800, Gordon Messmer wrote:
> On 01/27/2017 10:59 AM, Leonard den Ottolander wrote:
> > https://en.wikipedia.org/wiki/MD5 seems to disagree:
>
>
> No, it doesn't. That page links to RFC 6151, which notes:
>
> "It is not urgent to
Hello Gordon,
On Fri, 2017-01-27 at 10:26 -0800, Gordon Messmer wrote:
> Cryptographers still consider MD5 secure for HMAC use. Wikipedia's
> references (currently 6, 7, and 8) in this article are useful:
>
> https://en.wikipedia.org/wiki/Hash-based_message_authentication_code
https://en.wikipe
On Fri, 2017-01-27 at 10:02 -0600, Johnny Hughes wrote:
> But generally, this upgrade should be OK via ssh, etc.
Just make sure you invoke screen right after you log in in case you
accidentally lose the connection.
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
__
Hello list,
To my astonishment the openssh versions on both C6 and C7 will by
default negotiate an MD5 HMAC.
C6 client, C7 server:
debug2: mac_setup: found hmac-md5
debug1: kex: server->client aes128-ctr hmac-md5 none
debug2: mac_setup: found hmac-md5
debug1: kex: client->server aes128-ctr hmac-
Hello Jon,
On Thu, 2017-01-26 at 23:35 -0500, Jon LaBadie wrote:
> And here I thought I had asked to upgrade to 7.2 a year ago.
Not exactly sure what you are referring to, but to elaborate on what the
others said, only the latest point release is a supported release. This
was 7.2.1511 (year 15, m
Hello Ian, Mark,
On Thu, 2017-01-12 at 02:33 +, Ian Mortimer wrote:
> Yes. The fix is to remove the systemdict line.
I should add that I did *not* investigate if that line has anything to
do with the security fix that it came with, or that it is just an
unrelated addition.
So if you are usi
Hello Bernard,
On Wed, 2017-01-11 at 10:59 -0500, Bernard Fay wrote:
> I made my search on google way to complicated for nothing :(
Only way to learn is from your mistakes ;-) .
> Thanks John and Seb! authorized_keys will do the job.
If you need interactive login for f.e. sftp you should h
Hi Paul,
On Wed, 2017-01-11 at 12:43 +, Always Learning wrote:
> Goeiemiddag Leonard,
Heh :) . I was just thinking yesterday, "lekker ananas" :-) .
> One could say the host name, 4-3-2-1-static.friendly-ip.com, is
> not absolutely required in the 1.2.3.4 virtual host file.
>
> Not knowing w
Hello Paul,
On Tue, 2017-01-10 at 12:00 +, Always Learning wrote:
> (4) The 'extra' Apache Virtual Host file contains
>
>
Why do you add dummy.domain.com:80 here as the match is done on the
ServerName?
> DocumentRoot /prod/web/domains/dummy/
> ServerName 1.2.3.4
> CustomLo
Hello Frank,
On Tue, 2017-01-10 at 11:28 -0600, Frank Cox wrote:
> Has the issue with the last ghostscript update been resolved? I
> temporarily added ghostcript to the excludes line in my yum.conf to
> prevent problems and haven't seen any more mention of it here.
Yamaban recently pointed out i
Hello Robert,
On Tue, 2016-12-27 at 12:43 -0500, Robert Moskowitz wrote:
> My understanding (most likely flawed) is that Indexes are needed to see
> the list of files in mydir,
Correct.
> and to be able to walk down to subdir.
Incorrect. The index is a convenience. Without it directories with
Hello Robert,
On Tue, 2016-12-27 at 10:25 -0500, Robert Moskowitz wrote:
> I can display the /home/rgm/public_html/index.html file that only has
> "Hello World' in it (to prevent anyone from walking my file tree from
> the root).
To prevent people walking a directory structure you better disabl
Hello Mark,
On Sun, 2016-12-18 at 11:56 -0500, mark wrote:
> This is odd. Just recently, at home, even though I have it set to display
> messages as plain text, I'm suddenly seeing pics attached to spam inline, as
> though I had it set to display html.
>
> Can't find anything to make it
Hello Jason,
On Sun, 2016-12-18 at 10:42 -0500, jason welsh wrote:
> just wondering if anyone has figured out how to make pacmd switch the
> output of a certain application
Have a look at man pactl. You probably need something like
$ pactl move-sink-input ID SINK
Regards,
Leonard.
--
mount
Hello Mark,
On Fri, 2016-12-16 at 11:08 -0500, m.r...@5-cent.us wrote:
> I don't see any errors in dmesg or messages, and I've tried reinstalling
> xorg-x11-drv-ati, which gives me
> xorg-x11-drv-ati-7.6.1-3.20160215gitd41fccc.el7.x86_64.
>
> Does anyone have any ideas on this? I can't even get a
Hello Alfred,
On Fri, 2016-12-16 at 09:05 -0500, Alfred von Campe wrote:
> Our current build process requires the directfb-1.4.11-3.el6.i686.rpm
> and directfb-devel-1.4.11-3.el6.i686.rpm packages, but they appear to
> be no longer available from the EPEL repo, and I can’t find them
> anywhere els
Hello Glen,
On Thu, 2016-12-15 at 10:10 -0800, Glenn E. Bailey III wrote:
> I was most def root.
There's a difference whether you logged in as root or su-ed to root. In
the latter case /home is still in use by the user you su-ed from.
Even though it is not strictly necessary to init 1 you must m
Hello Johnny,
On Wed, 2016-12-14 at 23:21 -0600, Johnny Hughes wrote:
> Not sure what you are asking.
>
> You don't want to put large GZ tarballs in git .. we only put text file
> in git. All binary files are put in a look-aside cache.
Alright. That is exactly the answer I was looking for :) .
Hello Phil,
On Wed, 2016-12-14 at 20:57 +, Phil Wyett wrote:
> The path to the repo is wrong.
>
> git clone https://git.centos.org/git/centos-git-common.git
Too late to boost my brain with more coffee for today. Not as sharp as I
would like to be ;) .
Still leaves me with the question why a
Hello Jonathan,
On Wed, 2016-12-14 at 15:03 -0500, Jonathan Billings wrote:
> On Wed, Dec 14, 2016 at 07:29:19PM +0100, Leonard den Ottolander wrote:
> > > get_sources.sh
> >
> > The name suggests this is what we need (or do we??) If only I could find
> > that scrip
Hello Johnny,
On Wed, 2016-12-14 at 06:58 -0600, Johnny Hughes wrote:
> So:
>
> git clone https://git.centos.org/summary/rpms!skopeo
Apart from the syntax error because the exclamation mark is not escaped
this leads nowhere.
So I tried:
$ git clone https://git.centos.org/git/rpms/skopeo.git
>
Hello Alexandru,
On Tue, 2016-12-13 at 21:01 +0200, Alexandru Chiscan wrote:
> I have seen the the same bug (probably) was present in Fedora 23
> (libreoffice version 5.0.5.2-1.fc23.x86_64
> https://bugzilla.redhat.com/show_bug.cgi?id=1308700)
You should best duplicate that bug and report it ag
Hello Valeri,
On Tue, 2016-12-13 at 17:21 -0600, Valeri Galtsev wrote:
> That is inevitable: some of the tools/projects to work may require you to
> bring a huge external infrastructure if you want to use them. This has no
> way around.
The point is not that one requires (many) tools to build a p
Hello Alice,
On Tue, 2016-12-13 at 14:16 -0800, Alice Wonder wrote:
> I'm getting spec files from centos git which is really convenient when
> the related source is easy to find. But some things - e.g. from a spec file
>
> # How to create the source tarball:
> #
> # git clone git://git.fedorahos
Hello Kaushal,
On Fri, 2016-11-25 at 23:53 +0530, Kaushal Shriyan wrote:
> I am seeing this issue in *thruk.log prod: ERROR: failed to open socket
> /var/tmp/live.sock: No such file or directory*
> #ls -l /var/tmp/live.sock
> srw-rw 1 nagios nagios 0 Nov 25 18:12 /var/tmp/live.sock
> selinux
Hello Shagun,
On Sat, 2016-11-19 at 07:50 +, Maheshwari, Shagun wrote:
> package: kde-baseapps-4.10.5-4.el7.centos.x86_64
> unresolved deps:
> kde-runtime >= 0:4.14.8
$ grep kde-runtime kde-baseapps.spec
Requires: kde-runtime%{?_kde4_version: >= %{_kde4_version}}
That would suggest t
Hello Mark,
On Thu, 2016-11-03 at 13:48 -0400, m.r...@5-cent.us wrote:
> I see errors from a cron job,
> Could not get metalink
> https://mirrors.fedoraproject.org/metalink?repo=epel-7&arch=x86_64 error
> was
> 14: curl#6 - "Could not resolve host: mirrors.fedoraproject.org; Unknown
> error"
>
>
Hello Christopher,
As Peter already pointed out it is not done to "hijack" existing
threads. It is confusing for the reader to have a different subject
discussed in an existing thread. Please start a new mail with a
descriptive subject line and send that to the list. Thank you.
Regards,
Leonard.
Hello Hadi,
On Sat, 2016-10-29 at 22:12 -0700, Hadi Motamedi wrote:
> I am suspicious that the remote system is suffering from many
> frequent main supply power cut . Can you please do me favor and let me know
> if there is any log on my centos server that I can check to see if there
> would be ma
Hi Yamaban,
On Sun, 2016-10-30 at 11:10 +0100, Leonard den Ottolander wrote:
> Still no argument to replace an existing working one... And as I asked
> Valeri, can you please provide us with links indicating the poor quality
> of Corsair SSDs (in general)?
Well never mind that requ
Hello Yamaban,
On Thu, 2016-10-27 at 19:38 +0200, Yamaban wrote:
> For my personal use I would replace that Drive asap.
> - There is no warranty for it anymore (time since buy)
I fail to see how that is relevant... If you lose your data because of a
failing disk you lose your data. Whether or not
Hello Valeri,
On Fri, 2016-10-28 at 09:28 -0500, Valeri Galtsev wrote:
> Amazing. He suggested you definitely reliable drive (Samsung). Reliable in
> my boot too. You ask his opinion about yet another Corsair. One by Corsair
> failed on you already.
It did not. He asked whether it did but there i
Hi,
On Thu, 2016-10-27 at 11:25 +0200, Alessandro Baggi wrote:
> === START OF READ SMART DATA SECTION ===
> SMART overall-health self-assessment test result: PASSED
That's the line you are looking for. Since your disk apparently does not
store an error log - not sure if that's something with SSDs
Hi,
On Mon, 2016-10-24 at 12:07 +0200, Alessandro Baggi wrote:
> === START OF READ SMART DATA SECTION ===
> SMART Error Log not supported
I reckon there's a between those lines. The line right after the
first should read something like:
SMART overall-health self-assessment test result: PASSED
Hello Richard,
On Mon, 2016-10-24 at 03:39 -0400, Richard Beels wrote:
> The new update for links in EPEL takes it from 2.8-2 to 2.13-1. But
> yum includes 21 xWindows dependencies that weren't required before.
>
> I'd rather not install them - it's a headless server. Was this intentional?
Ve
Hello Alessandro,
On Fri, 2016-10-21 at 11:03 +0200, Alessandro Baggi wrote:
> ID# ATTRIBUTE_NAME FLAG VALUE WORST THRESH TYPE UPDATED
> WHEN_FAILED RAW_VALUE
>1 Raw_Read_Error_Rate 0x000f 100 100 050Pre-fail Always
>- 0/4754882
smartctl -A only show
Hello Alice,
On Wed, 2016-10-19 at 14:22 -0700, Alice Wonder wrote:
> I formerly used secp521r1 but suddenly Google with no warning stopped
> supporting it in chrome. That company is too powerful.
Actually this is something the NSA insists on:
https://www.iad.gov/iad/customcf/openAttachment.cfm
Hi,
On Thu, 2016-10-20 at 13:47 +0200, Leonard den Ottolander wrote:
> The point Bernstein makes in the article I referenced is not so much
> that the NIST curves are suspect (for the reasons you mention) but the
> fact that the ECDSA algorithm itself is such that it is virtually
> i
Hello Alice,
On Wed, 2016-10-19 at 13:40 -0700, Alice Wonder wrote:
> On 10/19/2016 11:34 AM, Leonard den Ottolander wrote:
> > Personally I would be more concerned whether or not to enable ECDSA
> > algorithms (https://blog.cr.yp.to/20140323-ecdsa.html).
> For web ser
Hello Gordon,
On Wed, 2016-10-19 at 10:31 -0700, Gordon Messmer wrote:
> On 10/19/2016 08:30 AM, Leonard den Ottolander wrote:
> > Where did you get the idea that AES (~ Rijndael) is a weak cipher?
>
>
> It's not the cipher, but the mode. CBC has several known weakn
Hello Clint,
On Wed, 2016-10-19 at 11:28 +1300, Clint Dilks wrote:
> The following weak client-to-server encryption algorithms are supported by
> the remote service:
> rijndael-...@lysator.liu.se
> arcfour256
> arcfour128
> aes256-cbc
> 3des-cbc
> aes192-cbc
> blowfish-cbc
> cast128-cbc
> arcfour
Hello Bernard,
On Mon, 2016-10-17 at 09:10 -0400, Bernard Fay wrote:
> I tried to apply a security context on a directory with the following
> commands:
>
> [root@ local]# semanage fcontext -a -t httpd_sys_rw_content_t "netdot(/.*)?"
> [root@ local]# restorecon -R netdot/
Try using absolute path
Hello Barak,
On Mon, 2016-09-26 at 18:53 +0300, Barak Korren wrote:
> On 25 September 2016 at 17:57, Leonard den Ottolander >>
> >> Nested Virtualization will be a tech preview in RHEL 7.3 Beta, and so
> >> it'll be available after RHEL 7.3 is released and CentO
Hi,
On Sun, 2016-09-25 at 10:46 -0400, Jonathan Billings wrote:
> Nested Virtualization will be a tech preview in RHEL 7.3 Beta, and so
> it'll be available after RHEL 7.3 is released and CentOS rebuilds it.
Gave the beta a try. The option "nested" for AMD cpu's is no longer
automatically set. Yo
Hello Jonathan,
On Sun, 2016-09-25 at 10:46 -0400, Jonathan Billings wrote:
> On Sun, Sep 25, 2016 at 04:38:39PM +0200, Leonard den Ottolander wrote:
> > How do I pass the "-enable-nesting" option to qemu-kvm using either
> > virt-manager.py, virsh or the domain xml?
&g
Hi,
On Fri, 2016-09-23 at 15:05 +0200, Leonard den Ottolander wrote:
> So the question is: How do I enable the svm flag in the guest?
The qemu-kvm option "-enable-nesting" that I dug up in the source looks
promising. No mention in the man page on either C6 or C7 but it is
mentione
Hello,
I'm trying to get the Android Emulator to run inside a kvm vm on
CentOS-6. Apparently the latest Android Emulators cannot run without
hardware acceleration so I am trying to get the vm to see the svm cpu
flag.
Host:
$ grep model\ name /proc/cpuinfo | sort -u
model name : AMD Phenom(tm
Hello,
On Sat, 2016-08-20 at 18:40 -0400, Fred Smith wrote:
> on my C7 system:
>
> # yum list installed | grep -y sane
> libsane-hpaio.x86_64 3.13.7-6.el7_2.1 @updates
>
> sane-backends.x86_64 1.0.24-9.el7
> @anaconda
> san
Hi Johnny,
> https://lists.centos.org/pipermail/centos-announce/2016-August/022030.html
Sorry for the noise: I overlooked the fact that I had an active search
in my CentOS announce folder... Doh!
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
Hello,
Received an update for qemu-kvm and qemu-img today, but the
corresponding announcement is missing. Haven't received any messages
since August 3rd, so there might be other announcements that haven't
made it to the list yet.
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/resear
Hello Roger,
On Mon, 2015-10-26 at 09:46 -0400, Roger Wells wrote:
> On 10/26/2015 09:27 AM, Leonard den Ottolander wrote:
> > Anyone else seeing this? C7 Gnome Desktop, opened a gnome-terminal,
> > click File -> New Profile and gnome-terminal-server gets killed.
> >
Hi,
Anyone else seeing this? C7 Gnome Desktop, opened a gnome-terminal,
click File -> New Profile and gnome-terminal-server gets killed.
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mailing list
CentOS@centos.org
ht
On Wed, 2015-10-21 at 21:20 +0200, Yamaban wrote:
> TL;DR:
TL;DQ?
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Hello Robert,
On Mon, 2015-10-19 at 21:12 +, Styma, Robert E (Robert) wrote:
> Various Google searches and the manual page have not shown me how to
> avoid using ftp mirrors.
When configuring your repo's using baseurl= instead of mirrorlist= you
can pin the server being used. Find a http mirr
On Wed, 2015-09-09 at 08:40 -0600, CS DBA wrote:
> --> Finished Dependency Resolution
> Error: Package: kmymoney-4.6.6-1.el7.x86_64 (epel)
>Requires: libcalligrakdchart.so.13()(64bit)
> You could try using --skip-broken to work around the problem
> You could try running: rpm -Va --nof
On Thu, 2015-09-03 at 09:53 -0400, Mike - st257 wrote:
> Any other thoughts? :-/
> I can't be the only person that wants to use Spice with out TLS for some
> testing/labbing. ;-)
Personally I only have experience with virt-manager or virt-install with
--nographics over a serial tty.
Quite a bit c
Hello Mike,
On Wed, 2015-09-02 at 13:05 -0400, Mike - st257 wrote:
> I've been through the virt-install manpage a few times now to no avail.
> What is wrong with my syntax here (seen below)?
> ~]# virt-install --connect qemu:///system -n blahhost -r2048 --vcpus=4
> --arch=x86_64 --video qxl --gra
Hello Boris,
On Tue, 2015-08-25 at 15:59 -0400, Boris Epstein wrote:
> We have a Centos 6 VM (64 bit) running on a VMware vSphere 5.5 server. It
> was running just fine until one day I decided to reboot it and it just
> would not boot up. Effectively, dracut failed to initialize the LVM, much
> li
Hello,
On Sat, 2015-08-22 at 08:05 -0700, Alice Wonder wrote:
> Thunderbird has a MITM vulnerability with its otherwise rather groovy
> auto-configuration feature.
>
> The problem is that it makes requests via HTTP to retrieve the auto
> configuration information.
>
> This allows a black hat (
Hi,
The debuginfo repodata for C6 is missing:
http://debuginfo.centos.org/6/x86_64/repodata/7a42847903e6a76f9397c0bc9aca6afbbef1f74c-filelists.sqlite.bz2:
[Errno 14] PYCURL ERROR 22 - "The requested URL returned error: 404 Not Found"
Trying other mirror.
Error: failure:
repodata/7a42847903e6a76f
Hello,
On Thu, 2015-04-02 at 14:25 +0100, Karanbir Singh wrote:
> On 04/02/2015 11:45 AM, Leonard den Ottolander wrote:
> > Just noticed that the distro tag used in openssl is different from
> > upstream. Upstream and the last update (openssl-1.0.1e-30.el6_6.7) use
> > "
Hello Johnny,
On Thu, 2015-05-21 at 15:26 -0500, Johnny Hughes wrote:
> Just me not approving the mail in the announce list.. I just did it.
>
> Note, Red Hat does not push Bug Fix or Enhancement updates to their
> mailing list, just Security .. so you won't see it there.
I am aware of that. Muc
Hi,
Received lvm2 updates for CEBA-2015-1018 but haven't seen an
announcement on CentOS announce yet nor can I find it in the archives.
Is it still in the pipeline or did something go wrong?
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
__
Hi,
Just noticed that the distro tag used in openssl is different from
upstream. Upstream and the last update (openssl-1.0.1e-30.el6_6.7) use
"el6_6" where as the latest update (openssl-1.0.1e-30.el6.8) uses
"el_6". Any reason for this discrepancy?
Regards,
Leonard.
--
mount -t life -o ro /dev/
On Thu, 2014-10-30 at 11:32 -0500, Johnny Hughes wrote:
> Millions of users have installed that package ...
Yeah sorry Johnny, should have thought of that before reporting "the
issue".
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mail
Hi,
On Thu, 2014-10-30 at 16:49 +0100, Leonard den Ottolander wrote:
> file /usr/share/selinux/targeted/audioentropy.pp.bz2: cpio: rename
> failed - Input/output error
Sorry for crying wolf guys, I thought the archive was corrupt but
apparently it's my file system.
Regards,
Leonard.
Hi,
Updating selinux-policy-targeted to 3.7.19-260 fails. The archive seems
corrupt. Got another copy from
http://mirror.centos.org/centos/6/os/x86_64/Packages/ which also fails:
# rpm -Fv selinux-policy-targeted-3.7.19-260.el6.noarch.rpm
Preparing packages for installation...
selinux-policy-tar
Package hwloc-1.5-2.el6_5.x86_64.rpm is not signed
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Hello team,
Just wondering how the build of 5.10 is coming along. Is there a
resource that informs us on these matters? Thanks!
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mailing list
CentOS@centos.org
http://list
Hello,
gpk-update-viewer on my CentOS 6 desktop gives me an error about
untrusted updates. When running yum update from a terminal I get the
following error:
Package chkconfig-1.3.49.3-2.el6_4.1.x86_64.rpm is not signed
No other packages seem to be affected so for now I updated excuding
chkconfi
On Wed, 2013-06-26 at 16:56 -0500, Johnny Hughes wrote:
> The CentOS-6 message is a separate announcement:
>
> http://lists.centos.org/pipermail/centos-announce/2013-June/019809.html
Yes sorry, totally overlooked that. Guess I assumed you'd bundle them
like upstream does.
Regards,
Leonard.
--
Hello Johnny,
On Wed, 2013-06-26 at 02:32 +, Johnny Hughes wrote:
> CentOS Errata and Security Advisory 2013:0981 Critical
>
> Upstream details at : https://rhn.redhat.com/errata/RHSA-2013-0981.html
Upstream report concerns both C5 and C6 but I only see updates for C5.
Is this an oversight o
Hi guys,
Thank you for the release of 5.9. I haven't been following the list much
lately, or even realized Red Hat released 5.9 :) Keep up the good work!
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS mailing list
Cen
Hello James,
On Mon, 2012-12-17 at 11:03 -0500, James B. Byrne wrote:
> I was unable to find where on the system said locale aliases
> are kept however.
/usr/lib/locale
Regards,
Leonard.
--
mount -t life -o ro /dev/dna /genetic/research
___
CentOS
Hello James,
On Sat, 2012-12-15 at 08:52 -0500, James B. Byrne wrote:
> localedef --no-archive -f UTF-8 -i
> /usr/share/i18n/locales/en_CA@-mmm-dd en_CA@-mmm-dd.utf8
>
> which produces the requisite files without reporting an error but
> which none-the-less insists on using the iso-8859-1
Hello Rob,
On Wed, 2012-11-28 at 09:53 +1300, Rob Kampen wrote:
> Now I am needing to load this database file onto a debian host running
> Plesk 9.5.4 via their system admin and it is unreliable - after four
> attempts we have all except the streets table loaded - but this table
> will not load
Hello Shiv.,
On Tue, 2012-09-25 at 07:39 +, Shiv. Nath wrote:
> ERROR:
> http: GET http://daryl.dostech.ca/sa-update/asf/1389247.tar.gz request
> failed: 404
> Not Found:
> 404 Not Found Not Found The
> requested URL
> /sa-update/asf/1389247.tar.gz was not found on this server.
> Apache/2.
Hello Paul,
On Wed, 2012-09-19 at 09:37 -0700, Paul Heinlein wrote:
> Management of Full Disk Encryption (FDE) drives is usually handled in
> BIOS or via central Windows application.
I also expected unlocking at boot to be handled by the BIOS/UEFI, but
according to
http://www.trustedcomputinggro
Hello Paul,
On Wed, 2012-09-19 at 09:37 -0700, Paul Heinlein wrote:
> Management of Full Disk Encryption (FDE) drives is usually handled in
> BIOS or via central Windows application.
Indeed. The scenario I mentioned of course does not work when one boots
from the encrypted drive, only if one att
1 - 100 of 268 matches
Mail list logo
