A very big thanks
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- -
- Jason Pyeron PD Inc. http://www.pdinc.us -
- Principal Consultant 10 West 24th Street #100-
- +1 (443) 26
Hi,
I'm running a Centos 5.1 server that uses saslauthd to allow sendmail
SMTP relaying for some clients. saslauthd is configured to use method
"shadow" to lookup the username / password directly from /etc/shadow.
This setup has been working for several month now, but is broken since
last Monday.
Bernd Bartmann wrote:
/var/log/maillog:
AUTH failure (LOGIN): authentication failure (-13) SASL(-13):
authentication failure: checkpass failed
/var/log/messages:
saslauthd[3665]: do_auth : auth failure: [user=username]
[service=smtp] [realm=] [mech=shadow] [reason=Unknown]
Does someone
On Sun, May 25, 2008 at 11:42 AM, Ian Blackwell wrote:
> Bernd Bartmann wrote:
>>
>> /var/log/maillog:
>> AUTH failure (LOGIN): authentication failure (-13) SASL(-13):
>> authentication failure: checkpass failed
>>
>> /var/log/messages:
>> saslauthd[3665]: do_auth : auth failure: [user=user
On Sat, May 24, 2008 at 8:29 PM, Fred Noz <[EMAIL PROTECTED]> wrote:
> In addition to easy maintenance, readonly-root adds a layer of security.
> The security is broken if someone gains access to the root user, but
> then many security protections are lost if someone gains root.
However, this shou
Ok, so it stripping a mirror more redundant then, from what you say?
But, it's limited to pairs of 4 HDD's, which means a bigger chassis, and
a mobo / PCI controller that can support 8 HDD's if I want to add more?
Huh? Said who? 6 disks = 3 mirrors = 3 stripped mirrors or 3 x single
disk spe
William Warren wrote:
I'm not a fan of RAID 5 at all since it can only tolerate one failure at
all. Go with raid 10 or something like that which is able to handle
more than one failure. Intermittent, uncorrectable sector failures
during rebuilds are becoming an increasing problem with today's
Why are you still using CentOS 4?
Do you have an issue with Centos 4? I prefer to wait for RH to work most
of the kinks with their new releases. Centos 5 has new versions of
various libraries and software. They have never been able to guarantee
zero breakage. Eg: I have heard of constantly
Christopher Chan wrote:
Why are you still using CentOS 4?
Do you have an issue with Centos 4? I prefer to wait for RH to work
most of the kinks with their new releases. Centos 5 has new versions
of various libraries and software. They have never been able to
guarantee zero breakage. Eg: I
MHR wrote:
My main system is a CentOS 5.1 64-bit desktop with gobs of disk and a
couple of printers attached that work just fine. I have it set up
with samba so my VMWare guest Windows XP can access most of the files
and the printers.
But, when I try to connect to the printers from a remot
So they say, and correct me if i'm wrong, that RAID10 is a RAID 1 of
RAID 0. A mirror of stripe sets. You said it's not that, i lost you on
this one.
Heh, I dare say most of us are lost on this one. It is a blinking new
module for md that is not available on Centos 4. This should help
Christopher Chan wrote:
So they say, and correct me if i'm wrong, that RAID10 is a RAID 1 of
RAID 0. A mirror of stripe sets. You said it's not that, i lost you
on this one.
Heh, I dare say most of us are lost on this one. It is a blinking new
module for md that is not available on Ce
Linux wrote:
On Fri, May 23, 2008 at 4:19 AM, Christopher Chan
<[EMAIL PROTECTED]> wrote:
And stick with md-raid 10 (also known as software raid) because it is
much more intelligently designed than any
closed-source-embedded-raid-controller.
This was valid until...quite a few years ago.
Has h
Bernd Bartmann wrote:
Thanks Ian. That's indeed the reason. "service saslauthd status" gives
"saslauthd dead but subsys locked". Now, what could be the reason why
saslauthd was not running any more?
cu,
Bernd.
___
CentOS mailing list
CentOS@centos.org
On Sun, May 25, 2008 at 2:42 PM, Ian Blackwell wrote:
> Bernd Bartmann wrote:
>>
>> Thanks Ian. That's indeed the reason. "service saslauthd status" gives
>> "saslauthd dead but subsys locked". Now, what could be the reason why
>> saslauthd was not running any more?
>
> Hard to say without seeing t
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of MHR
Sent: Saturday, May 24, 2008 4:00 PM
To: CentOS mailing list
Subject: [CentOS] CentOS-Samba question
My main system is a CentOS 5.1 64-bit desktop with gobs of disk and a couple
of printers attached tha
Christopher Chan wrote:
> William Warren wrote:
> > I'm not a fan of RAID 5 at all since it can only tolerate one failure at
> > all. Go with raid 10 or something like that which is able to handle
> > more than one failure. Intermittent, uncorrectable sector failures
> > during rebuilds are b
From: Ross S. W. Walker Sent: May 25, 2008 08:56
>
> Typically most vendors recommend a two-prong approach, keep the
> database data files on a RAID5/RAID6 type array and keep the
> log files on a RAID10 array.
>
I can not comment on "most vendors" but for the PROGRESS RDBMS RAID5
is definitely
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Filipe Brandenburger
> Sent: Friday, May 23, 2008 8:55 PM
> To: CentOS mailing list
> Subject: Re: [CentOS] how to debug ssh slow connection issues.
>
> Try to change this in your /etc/ssh/sshd_config
Jason Pyeron wrote:
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Filipe Brandenburger
Sent: Friday, May 23, 2008 8:55 PM
To: CentOS mailing list
Subject: Re: [CentOS] how to debug ssh slow connection issues.
Try to change this in your /etc/ssh/sshd_
Hugh E Cruickshank wrote:
> From: Ross S. W. Walker Sent: May 25, 2008 08:56
> >
> > Typically most vendors recommend a two-prong approach, keep the
> > database data files on a RAID5/RAID6 type array and keep the
> > log files on a RAID10 array.
> >
>
> I can not comment on "most vendors" but
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Jay Leafey
> Sent: Sunday, May 25, 2008 2:17 PM
>
> Jason Pyeron wrote:
> >
> >> -Original Message-
> >> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> >> Behalf Of Filipe Brandenburge
> I can not comment on "most vendors" but for the PROGRESS RDBMS RAID5
> is definitely not recommended. It will work but you will see a
> significant reduction in performance. We strongly recommend that our
> clients go with RAID10 (as in RAID 1+0). In-house we only use RAID10.
+1
Write performanc
As an experiment, I am attempting to build a more recent version of
GNOME than 2.16.0 on CentOS 5.1. I've tried both garnome and jhbuild,
and neither one works quite right. Jhbuild blows out looking for a
dbus-glib-1 revision >= 0/74 (the release rev is 0.70), so I
downloaded that and tried to bu
MHR wrote:
As an experiment, I am attempting to build a more recent version of
GNOME than 2.16.0 on CentOS 5.1. I've tried both garnome and jhbuild,
and neither one works quite right. Jhbuild blows out looking for a
dbus-glib-1 revision >= 0/74 (the release rev is 0.70), so I
downloaded that an
On Sun, May 25, 2008 at 1:29 PM, Finnur Örn Guðmundsson
<[EMAIL PROTECTED]> wrote:
>
> Howdy,
>
> Just a thought, do you have the expat-devel package installed?
>
Yes:
$ yum list | grep -i expat
expat.x86_64 1.95.8-8.2.1 installed
expat.i386
On Sun, May 25, 2008 at 01:12:30PM -0700, MHR wrote:
> As an experiment, I am attempting to build a more recent version of
> GNOME than 2.16.0 on CentOS 5.1. I've tried both garnome and jhbuild,
...
just my 1st and last warning: if you break your setup don't come complaining
here :)
> ...
> gcc -
On Sun, May 25, 2008 at 1:35 PM, Tru Huynh <[EMAIL PROTECTED]> wrote:
> ...
> just my 1st and last warning: if you break your setup don't come complaining
> here :)
>
I presume you mean my GNOME setup, and yes, I know - there are
instructions on both jhbuild and garnome on how to avoid that.
Hopefu
MHR wrote:
However, that raises another question: why does the build (either
one) not know the machine architecture on which it is running and
therefore detect the proper library to which to link?
Did you ask the people who wrote that buildsystem ? what did they say ?
--
Karanbir Singh : htt
On Sun, May 25, 2008 at 1:49 PM, Karanbir Singh <[EMAIL PROTECTED]> wrote:
>
> Did you ask the people who wrote that buildsystem ? what did they say ?
>
Yes, I was emailing back and forth with them yesterday. So far, on
this problem (the latest in a line), no response yet.
Of course, I did not s
Hi,
Without any update, hardware/software modification, etc... one of my
systems "Hourly restart" problem started again. Currently, I counted 5
restarts at 59th minute. No log entry, no console error, nothing
really interesting. If I do not see camera records with my own eyes,
I'll suspect about s
Anything in the bios called watchdog turned on?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
On Mon, May 26, 2008 at 12:30 AM, Gregg McClintic <[EMAIL PROTECTED]> wrote:
> Anything in the bios called watchdog turned on?
Waiting for morning (it's late night here) for further diag.
Should I disable it? Or is it malfunctioning because of CentOS?
Thanks...
__
Bernd Bartmann wrote:
It did start without any problems. Looks like I found the cause. From
the logs I see that someone tried a brute force attach on the SMTP
relay with several username / password combinations. Then one of the
attempts lead to a segfault of saslauth. Which probably means that
th
On Sun, May 25, 2008 at 7:51 AM, John <[EMAIL PROTECTED]> wrote:
>
> Simple Configuration... Your Global is wrong. This is for sane simple
> Printing! Read the samba howto's on samba.org.
>
I have - several times. This is what was working for my host-guest combo.
> [global]
> printing =
Linux wrote:
> However, this should *never* be used alone for security concerns. A
> compromiser can easily run that simple mount command to remount
> read-write after root access.
I've been reading some of your recent comments, Anonymous looser, and
I've really got to say this - you seem to make
MHR wrote:
>> Perhaps I was not clear in my original email, the point being that you dont
>> need to rebuild drivers when kernels update ( in 99% of the cases )
>
> Is that now true also of the nvidia driver(s)? I haven't seen
> anything so to indicate.
The nvidia driver, for me, built against 2
Hi People,
As part of securing SSH we currently have UseDNS set to yes. But we are
finding that a number of ISP's are deliberately refusing to configure
matching forward and reverse DNS records. So I am wondering how many of
you are still using this option?
To be honest I have no idea what is needed by the kernel for the bios to beable
to check that the os is responding correctly. I enabled it on a test server and
had the same issue on a default 4.6 cent install. I could have the name in the
bios (the service ) incorrect ie, watch guard,watch dog ,
On Mon, May 26, 2008 at 2:15 AM, Karanbir Singh <[EMAIL PROTECTED]> wrote:
> I've been reading some of your recent comments, Anonymous looser, and
> I've really got to say this - you seem to make some authoritative style
> comments on things you really dont know much about. eg. in this case -
> the
On Mon, May 26, 2008, Clint Dilks wrote:
>Hi People,
>
>As part of securing SSH we currently have UseDNS set to yes. But we are
>finding that a number of ISP's are deliberately refusing to configure
>matching forward and reverse DNS records. So I am wondering how many of
>you are still using t
Linux wrote:
> A cd-rom can provide security as a readonly mount, but readonly
> mounted ordinary filesystem/disk means almost nothing. Dont you read
> comments like "administrator remounts read-write"? Why?
If your blockdev is exposed to the OS as 'ro', your administator can go
jump off a cliff i
John Bowden wrote:
> NVIDIA® nForce® 430 MCP
> Lan= NVIDIA® nForce® 430 MCP built-in Gigabit MAC with external Attansic PHY.
The forcedeth drivers in the CentOS-5 kernel seem to work fine for that
interface
--
Karanbir Singh : http://www.karan.org/ : [EMAIL PROTECTED]
__
On Sun, 2008-05-25 at 18:33 -0400, Gregg McClintic wrote:
> To be honest I have no idea what is needed by the kernel for the bios to
> beable to check that the os is responding correctly. I enabled it on a test
> server and had the same issue on a default 4.6 cent install. I could have the
> nam
Ross S. W. Walker wrote:
Christopher Chan wrote:
William Warren wrote:
I'm not a fan of RAID 5 at all since it can only tolerate one failure at
all. Go with raid 10 or something like that which is able to handle
more than one failure. Intermittent, uncorrectable sector failures
during rebu
Just asking. I don't use CentOS as a desktop OS, so the firefox problem
doesn't bother me at all, but CentOS 5 is an upgrade in many regards,
and I find it very stable. I have yet to try RAID10 with it though, as
soon as I can get my hands on enough spare HDD's :)
I believe you cannot do i
Nikolay Ulyanitsky wrote:
I can not comment on "most vendors" but for the PROGRESS RDBMS RAID5
is definitely not recommended. It will work but you will see a
significant reduction in performance. We strongly recommend that our
clients go with RAID10 (as in RAID 1+0). In-house we only use RAID10.
On Mon, May 26, 2008 at 3:16 AM, Christopher Chan
<[EMAIL PROTECTED]> wrote:
> I believe you cannot do it via the installer yet. Can anybody confirm the
> presence of raid10 personality in Centos 5?
Installer does not have raid10 as an option. Not sure whether boot cd
has this module or not. But a
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Jason Pyeron
> Sent: Sunday, May 25, 2008 3:27 PM
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> > Behalf Of Jay Leafey
> > Sent: Sunday, May 25, 2008 2:17
On Saturday 24 May 2008 21:55:57 Robert Spangler wrote:
First of all, thank you Robert for pointing some points. For the sake of
discussion, may I say something too?
> Since you believe that he wants a very strict firewall why are you setting
> the default policy's to ACCEPT? Security 101, strict
Dear All,
I come from FreeBSD world. This is my first time setting up a CentOS
on my laptop Dell Vostro 1400 with intel 965GM chipset. I am having problem
here and need your help.
I have 5.1 release installed.
I have trouble to get 1280x800 resolution. The driver used is I810. I don't know
if th
Linux wrote:
On Mon, May 26, 2008 at 3:16 AM, Christopher Chan
<[EMAIL PROTECTED]> wrote:
I believe you cannot do it via the installer yet. Can anybody confirm the
presence of raid10 personality in Centos 5?
Installer does not have raid10 as an option. Not sure whether boot cd
has this module
On Thu, 2008-05-08 at 14:58 -0500, Gregory P. Ennis wrote:
> On Thu, 2008-05-08 at 12:31 -0400, Ross S. W. Walker wrote:
> > Gregory P. Ennis wrote:
> > > On Thu, 2008-05-08 at 10:46 -0400, Ross S. W. Walker wrote:
> > > > Gregory P. Ennis wrote:
> > > > >
> > > > > On Wed, 2008-05-07 at 12:00 -05
Hi,
I've found a great tool called pidstat which is able to report I/O
disks statistic. But, it's only for kernels 2.6.20 and later only, is
there any tool for Centos xen kernel?
Thanks in advance!
--
--
Open Kairos http://www.openkairos.com
Watch More TV http://sebelk.blogspot.com
Sergio Belki
On Sun, 25 May 2008 21:31:53 -0400
Chen Xu <[EMAIL PROTECTED]> wrote:
> I have trouble to get 1280x800 resolution. The driver used is I810. I don't
> know
> if the chipset is too new for the xorg driver, and can anyone tell me
> if there is a fix,
> maybe with 915resolution?
http://www.melvillet
On Sun, May 25, 2008 at 2:02 PM, Jason Pyeron <[EMAIL PROTECTED]> wrote:
>> Try to change this in your /etc/ssh/sshd_config:
>>
>> Change:
>>
>> UseDNS yes
>> to:
>> UseDNS no
>
> Okay that fixed it, but why? I used nslookup and set my server to the same
> as /etc/resolv.conf. There were no delays,
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Filipe Brandenburger
> Sent: Monday, May 26, 2008 12:15 AM
> To: CentOS mailing list
> Subject: Re: [CentOS] how to debug ssh slow connection issues.
>
> On Sun, May 25, 2008 at 2:02 PM, Jason Pyeron
On Sun, May 25, 2008 at 4:23 PM, Karanbir Singh <[EMAIL PROTECTED]> wrote:
> MHR wrote:
>>
>> Is that now true also of the nvidia driver(s)? I haven't seen
>> anything so to indicate.
>
> The nvidia driver, for me, built against 2.6.18-8.el5) has worked fine
> upto the latest released kernel ( 2.6
58 matches
Mail list logo
