Another great guide
:http://www.nsa.gov/ia/guidance/security_configuration_guides/operating_systems.shtml#linux2
2009/12/29 Agile Aspect :
> On Mon, Dec 28, 2009 at 4:44 PM, Fernando Hallberg
> wrote:
>> Hi,
>>
>> Test my repositoriy http://flexbox.sf.net/
>>
>> I'm personalized sectool from fe
Agile Aspect wrote:
> Note, I couldn't find any source RPMs in svn.
>
> And I hasten to add, I would never delegate the task of building
> security software for my system to another person.
>
so you compile your whole system from scratch, after audting all the code?
how do you ever get anythin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
adrian kok wrote:
> Hi
>
> I have this . folder under tmp
>
> 1/ How they can make it this folder?
>
> 2/ How can I remove it?
Thanks, I just about spit my coffee out my nose when I read this, but it
made my day. :)
- --
Mike A. Harris
On 12/29/09 1:41 PM, Mike A. Harris wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> adrian kok wrote:
>> Hi
>>
>> I have this . folder under tmp
>>
>> 1/ How they can make it this folder?
>>
>> 2/ How can I remove it?
>
> Thanks, I just about spit my coffee out my nose when I read this
Hi,
I get the fedora srpm, installed, apply modify for centos and recompiled, for
rkhunter, sectool.
ipset and ipset kmod i've made by hand to use ipset function with iptables,
blocking dinamical blacklists with fail2ban and shorewall.
Att
fernando
On Tue, 29 Dec 2009 01:09:21 -0800
John R Pie
Agile,
http://flexbox.sf.net/centos/5/SRPMS
You can generate packet by specfile.
Att
Fernando
On Mon, 28 Dec 2009 18:45:29 -0800
Agile Aspect wrote:
> On Mon, Dec 28, 2009 at 4:44 PM, Fernando Hallberg
> wrote:
> > Hi,
> >
> > Test my repositoriy http://flexbox.sf.net/
> >
> > I'm personaliz
On 2009-12-28 18:49, adrian kok wrote:
> Hi
>
> I have this . folder under tmp
It is a system-generated link to the current directory. Don't touch that.
Ugo
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> adrian kok wrote:
>> Hi
>>
>> I have this . folder under tmp
>>
>> 1/ How they can make it this folder?
>>
>> 2/ How can I remove it?
>
> Thanks, I just about spit my coffee out my nose when I read this, but it
> made my day. :)
>
Don't do that
On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
> On 2009-12-28 18:49, adrian kok wrote:
> > Hi
> >
> > I have this . folder under tmp
>
> It is a system-generated link to the current directory. Don't touch that.
>
Thank heavens there's one sane person reading today. Obviously no-one
On Tuesday 29 December 2009 14:46:23 Anne Wilson wrote:
> On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
> > On 2009-12-28 18:49, adrian kok wrote:
> > > Hi
> > >
> > > I have this . folder under tmp
> >
> > It is a system-generated link to the current directory. Don't touch
> > that.
Marko Vojinovic wrote:
> On Tuesday 29 December 2009 14:46:23 Anne Wilson wrote:
>> On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
>>> On 2009-12-28 18:49, adrian kok wrote:
Hi
I have this . folder under tmp
>>> It is a system-generated link to the current directory. Don
Timo Schoeler wrote:
> Marko Vojinovic wrote:
>> On Tuesday 29 December 2009 14:46:23 Anne Wilson wrote:
>>> On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
On 2009-12-28 18:49, adrian kok wrote:
> Hi
>
> I have this . folder under tmp
It is a system-generated link
Bob McConnell wrote:
> Timo Schoeler wrote:
>> Marko Vojinovic wrote:
>>> On Tuesday 29 December 2009 14:46:23 Anne Wilson wrote:
On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
> On 2009-12-28 18:49, adrian kok wrote:
>> Hi
>>
>> I have this . folder under tmp
>
On 28/12/09 23:49, adrian kok wrote:
> Hi
>
> I have this . folder under tmp
>
> 1/ How they can make it this folder?
>
> 2/ How can I remove it?
>
> Thank you
>
> Send instant messages to your online friends http://uk.messenger.yahoo.com
> ___
> C
> Marko Vojinovic wrote:
>> On Tuesday 29 December 2009 14:46:23 Anne Wilson wrote:
>>> On Tuesday 29 December 2009 13:59:43 Ugo Bellavance wrote:
On 2009-12-28 18:49, adrian kok wrote:
>
> I have this . folder under tmp
It is a system-generated link to the current directory. Don
I looked on the openssl man page but am too dense with commands to
understand what I need to do. Ran into problems generating a key
and CSR for SSL, because the web site is on a server with an old
Ensim Control Panel. Please someone knowledgeable, give me the
openssl commands I need to use
Ross Walker wrote:
> > wrote:
>>>
Did linux ever get a working fsync() or does it still flush the
entire
filesystem buffer?
>>> Working, meaning reliable, or the ability to sync a memory range
>>> instead of the whole file system? There is sync_page_range() to only
>>> sync only a
> I looked on the openssl man page but am too dense with commands to
> understand what I need to do. Ran into problems generating a key
> and CSR for SSL, because the web site is on a server with an old
> Ensim Control Panel. Please someone knowledgeable, give me the
> openssl commands I n
On 12/29/2009 11:36 AM, Lanny Marcus wrote:
> I looked on the openssl man page but am too dense with commands to
> understand what I need to do. Ran into problems generating a key
> and CSR for SSL, because the web site is on a server with an old
> Ensim Control Panel. Please someone knowle
I realize this is a CentOS mailing list but because it is based directly on
RHEL, I would assume there are a few individuals who frequent the list that
have passed the RHCE exam. I plan on taking the exam this March and was
wondering if there are any tips you RHCEs out there could provide that m
On Tue, Dec 29, 2009 at 12:56 PM, wrote:
>> I looked on the openssl man page but am too dense with commands to
>> understand what I need to do. Ran into problems generating a key
>> and CSR for SSL, because the web site is on a server with an old
>> Ensim Control Panel. Please someone kno
On Tue, Dec 29, 2009 at 1:05 PM, Dan Carl wrote:
> On 12/29/2009 11:36 AM, Lanny Marcus wrote:
>> I looked on the openssl man page but am too dense with commands to
>> understand what I need to do. Ran into problems generating a key
>> and CSR for SSL, because the web site is on a server wi
Lanny:
> discovered that openssl is not available to me
You should be able to do a yum install openssl.
Do you have root access to the server?
Neil
--
Neil Aggarwal, (281)846-8957, http://UnmeteredVPS.net
CentOS 5.4 VPS with unmetered bandwidth only $25/month!
No overage charges, 7 day
> On Tue, Dec 29, 2009 at 12:56 PM, wrote:
>> Lanny wrote:
>>> "I believe the issue you are having is due to the size of the
>>> encryption key. The ensim control panel generates a 1024 bit key,
>>> where the certificate you got was 2048 bits. What you need to do is
>>> generate a 2048 bit key
On Tue, Dec 29, 2009 at 1:14 PM, Neil Aggarwal wrote:
>> discovered that openssl is not available to me
>
> You should be able to do a yum install openssl.
> Do you have root access to the server?
No, the site is on a shared server. I will ask him to install
openssl, if it's not already instal
Marko Vojinovic wrote:
> You mean new to the concept of files and directories? This is not Linux-only.
> The . and .. existed even in MS-DOS back in the 80's.
having an actual . and .. file in a directory is a distinctly Unix
practice. It leads to some funny behavior too, especially when
com
On Tue, 29 Dec 2009, Dan Burkland wrote:
I realize this is a CentOS mailing list but because it is based directly on
RHEL, I would assume there are a few individuals who frequent the list that
have passed the RHCE exam. I plan on taking the exam this March and was
wondering if there are any tip
On Tue, Dec 29, 2009 at 1:19 PM, Lanny Marcus wrote:
> On Tue, Dec 29, 2009 at 1:14 PM, Neil Aggarwal
> wrote:
>
>>> discovered that openssl is not available to me
>>
>> You should be able to do a yum install openssl.
>> Do you have root access to the server?
>
> No, the site is on a shared ser
On Tue, Dec 29, 2009 at 1:16 PM, wrote:
>
>> On Tue, Dec 29, 2009 at 12:56 PM, wrote:
>>> Lanny wrote:
>
"I believe the issue you are having is due to the size of the
encryption key. The ensim control panel generates a 1024 bit key,
where the certificate you got was 2048 bits.
On 12/29/2009 10:06 AM, Dan Burkland wrote:
I realize this is a CentOS mailing list but because it is based
directly on RHEL, I would assume there are a few individuals who
frequent the list that have passed the RHCE exam. I plan on taking the
exam this March and was wondering if there are an
Lanny Marcus wrote:
> Mark: Thank you. openssl *is* shown in the services running, so I am
> sure that is the problem, that it is not in my path. I will ask him to
> include openssl in my path. Lanny
>
you control your own path, ~/.bash_profile
or just specify the path to openssl on the comman
On Tue, Dec 29, 2009 at 1:22 PM, Jim Wildman wrote:
>
> I realize this is a CentOS mailing list but because it is based directly on
>> RHEL, I would assume there are a few individuals who frequent the list
>> that
>> have passed the RHCE exam. I plan on taking the exam this March and was
>> wonder
On Tue, Dec 29, 2009 at 10:21:01AM -0800, John R Pierce wrote:
> for instance, say /home/pierce is a symlink to /home2/pierce and I'm
> in /home and go cd pierce, then go cd .. in *some* unix systems,
> that cd .. takes me back to home, in others takes me to /home2
It's actually shell de
Lanny Marcus wrote:
> Mark: Thank you. openssl *is* shown in the services running, so I am
> sure that is the problem, that it is not in my path. I will ask him to
> include openssl in my path. Lanny
>
odd. openssl isn't a service, its a utility. not sure why it would be
running as a demon.
> On Tue, Dec 29, 2009 at 1:16 PM, wrote:
>>
>>> On Tue, Dec 29, 2009 at 12:56 PM, wrote:
Lanny wrote:
>>
> generate a 2048 bit key and csr on your domain. You would need to
> login in to your domain through ssh and generate the files from the
> command line."
>
>> You might w
On Tue, 29 Dec 2009, Dan Carl wrote:
> On 12/29/2009 11:36 AM, Lanny Marcus wrote:
>> I looked on the openssl man page but am too dense with commands to
>> understand what I need to do
... snip
>> openssl commands I need to use, after I ssh into the web site, to
>> generate a 2048 bit key and c
On Tue, 29 Dec 2009, Lanny Marcus wrote:
> Mark: Thank you. openssl *is* shown in the services running, so I am
> sure that is the problem, that it is not in my path. I will ask him to
> include openssl in my path. Lanny
Perhaps openssh as a daemon service -- openssl does not so run
/usr
John R Pierce wrote:
> Marko Vojinovic wrote:
>
>> You mean new to the concept of files and directories? This is not
>> Linux-only.
>> The . and .. existed even in MS-DOS back in the 80's.
>>
>
> having an actual . and .. file in a directory is a distinctly Unix
> practice. It leads t
On Tue, 2009-12-29 at 12:06 -0600, Dan Burkland wrote:
> I realize this is a CentOS mailing list but because it is based
> directly on RHEL, I would assume there are a few individuals who
> frequent the list that have passed the RHCE exam. I plan on taking the
> exam this March and was wondering if
On 12/29/09 8:06 PM, Dan Burkland wrote:
> I realize this is a CentOS mailing list but because it is based directly
> on RHEL, I would assume there are a few individuals who frequent the
> list that have passed the RHCE exam. I plan on taking the exam this
> March and was wondering if there are any
On Tuesday 29 December 2009 18:21:01 John R Pierce wrote:
> Marko Vojinovic wrote:
> > You mean new to the concept of files and directories? This is not
> > Linux-only. The . and .. existed even in MS-DOS back in the 80's.
>
> having an actual . and .. file in a directory is a distinctly Unix
> pr
Currently I work in the helpdesk however I run a virtualized CentOS network at
home where all my testing takes place (Apache, BIND, MIT Kerberos w/ LDAP
integration, OpenLDAP, NFSv4 with krb auth, Puppet). I am planning on taking
the rapid track course which sounds like an invaluable refresher.
Marko Vojinovic wrote:
> On Tuesday 29 December 2009 18:21:01 John R Pierce wrote:
>> Marko Vojinovic wrote:
>>> You mean new to the concept of files and directories? This is not
>>> Linux-only. The . and .. existed even in MS-DOS back in the 80's.
>> having an actual . and .. file in a directory i
On Tue, Dec 29, 2009 at 04:06:09PM -0500, Bob McConnell wrote:
> MS-DOS 2.0 added subdirectories, I/O redirection, pipes, filters and a
Ah, pipes... yeah, that was a fun implementation. Because DOS was single
tasking the pipe actually wrote the data out to a temporary file, then
when the generat
On 12/29/2009 11:49 AM, Benjamin Franz wrote:
> John R Pierce wrote:
>> Marko Vojinovic wrote:
>>
>>> You mean new to the concept of files and directories? This is not
>>> Linux-only.
>>> The . and .. existed even in MS-DOS back in the 80's.
>>
>> having an actual . and .. file in a directory is a
I could find no precompiled driver that worked. However, I found GNU-GPL code
for one that works
nicely on the Point Clark Networks' site. The instructions are for ClearOS 5.4
which is similar to
RHEL/Centos.
Roll your own driver with instructions and vt1211.c code at
http://www.grassmere-pr
> Marko Vojinovic wrote:
>> On Tuesday 29 December 2009 18:21:01 John R Pierce wrote:
>>> Marko Vojinovic wrote:
You mean new to the concept of files and directories? This is not
Linux-only. The . and .. existed even in MS-DOS back in the 80's.
>>> having an actual . and .. file in a dire
On Tue, Dec 29, 2009 at 12:36 PM, Lanny Marcus wrote:
> I looked on the openssl man page but am too dense with commands to
> understand what I need to do. Ran into problems generating a key
> and CSR for SSL, because the web site is on a server with an old
> Ensim Control Panel. Please som
On Tue, Dec 29, 2009 at 1:37 PM, R P Herrold wrote:
> On Tue, 29 Dec 2009, Dan Carl wrote:
>
>> On 12/29/2009 11:36 AM, Lanny Marcus wrote:
>>> I looked on the openssl man page but am too dense with commands to
>>> understand what I need to do
> ... snip
>>> openssl commands I need to use, after
On Tue, Dec 29, 2009 at 1:14 PM, Ben Mohilef wrote:
> I could find no precompiled driver that worked. However, I found GNU-GPL code
> for one that works
> nicely on the Point Clark Networks' site. The instructions are for ClearOS
> 5.4 which is similar to
> RHEL/Centos.
>
> Roll your own driver
My 12 year old wants to learn more about servers and has memorized a lot of
commands like ls, chmod, du, etc.
He wants to have his own domain and server on the web and I have enough Static
IP's, so why not foster this interest.
I have an old ultra sparc 5. Are there any CentOS versions that sup
On 12/29/2009 11:13 PM, Slack-Moehrle wrote:
> My 12 year old wants to learn more about servers and has memorized a
> lot of commands like ls, chmod, du, etc. He wants to have his own
> domain and server on the web and I have enough Static IP's, so why
> not foster this interest.
Hi Jason,
> I ha
Jason:
> Are there any CentOS versions that support Sparc?
Check out http://sparc.centos.org
Neil
--
Neil Aggarwal, (281)846-8957, http://UnmeteredVPS.net
CentOS 5.4 VPS with unmetered bandwidth only $25/month!
No overage charges, 7 day free trial, PayPal, Google Checkout
Timo,
> I have an old ultra sparc 5. Are there any CentOS versions that
> support Sparc?
IIRC there was CentOS 4.6, but I'm not sure. Is it a 'Sun Ultra 5' or a
'SPARCstation 5'?
It is a Sun Ultra 5
> He also says that ZFS rules all
Yap, it's nice. If he wants ZFS and maybe wants to become a g
On Tuesday 29 December 2009 17:13:52 Slack-Moehrle wrote:
> My 12 year old wants to learn more about servers and has memorized a lot of
> commands like ls, chmod, du, etc. He wants to have his own domain and
> server on the web and I have enough Static IP's, so why not foster this
> interest.
>
On 12/29/2009 11:28 PM, Slack-Moehrle wrote:
> Timo,
>
>> I have an old ultra sparc 5. Are there any CentOS versions that
>> support Sparc?
>
> IIRC there was CentOS 4.6, but I'm not sure. Is it a 'Sun Ultra 5' or a
> 'SPARCstation 5'?
>
> It is a Sun Ultra 5
>
>> He also says that ZFS rules al
- "Slack-Moehrle" wrote:
> My 12 year old wants to learn more about servers and has memorized a
> lot of commands like ls, chmod, du, etc.
> He wants to have his own domain and server on the web and I have
> enough Static IP's, so why not foster this interest.
Fantastic! Nothing helps creati
Hi Peter,
> I have an old ultra sparc 5. Are there any CentOS versions that support
> Sparc?
>
> Or recommendations? I know OpenBSD does, but I am more versed in Solaris
> and versions like Slackware or CentOS or Ubuntu.
>
> He also says that ZFS rules all and is pissed Apple did not adopt it
Hi Tim,
>> My 12 year old wants to learn more about servers and has memorized a
>> lot of commands like ls, chmod, du, etc.
>> He wants to have his own domain and server on the web and I have
>> enough Static IP's, so why not foster this interest.
>Fantastic! Nothing helps creativity and explora
Slack-Moehrle wrote:
> My 12 year old wants to learn more about servers and has memorized a lot of
> commands like ls, chmod, du, etc.
> He wants to have his own domain and server on the web and I have enough
> Static IP's, so why not foster this interest.
I'd say go the VM route if you can, safer
On 12/29/2009 05:36 PM, Slack-Moehrle wrote:
> Hi Peter,
>
>
>> I have an old ultra sparc 5. Are there any CentOS versions that support
>> Sparc?
>>
>> Or recommendations? I know OpenBSD does, but I am more versed in Solaris
>> and versions like Slackware or CentOS or Ubuntu.
>>
>> He also says
Tim Nelson wrote:
>
>> My 12 year old wants to learn more about servers and has memorized a
>> lot of commands like ls, chmod, du, etc.
>> He wants to have his own domain and server on the web and I have
>> enough Static IP's, so why not foster this interest.
>
> Fantastic! Nothing helps creativ
Slack-Moehrle wrote:
> My 12 year old wants to learn more about servers and has memorized a lot of
> commands like ls, chmod, du, etc.
> He wants to have his own domain and server on the web and I have enough
> Static IP's, so why not foster this interest.
>
> I have an old ultra sparc 5. Are th
Jason,
5 will run solaris 10 with a few initial issues. You may have to install 8 or
9 first and then do a firmware upgrade to get 10 to boot for installation.
Also,
512MB max will restrict you in what you can do. ZfS boot is possible but slow
and in general use, you want to reduce the size of
On Tuesday 29 December 2009 18:11:51 John R Pierce wrote:
> Slack-Moehrle wrote:
> > My 12 year old wants to learn more about servers and has memorized a lot
> > of commands like ls, chmod, du, etc. He wants to have his own domain and
> > server on the web and I have enough Static IP's, so why not
On Tue, 29 Dec 2009, Lanny Marcus wrote:
>> My notes indicate that another certificate authority
>> [startssl] also requires a stronger (sha1) signing algorithm
>> on CSR's -- ymmv
> Jackpot Russ. This is with StartCom Ltd. (StartSSL) in Israel. Eddy
> there really hung in there with me on this
On Dec 29, 2009, at 5:42 PM, Slack-Moehrle
wrote:
> Hi Tim,
>
>>> My 12 year old wants to learn more about servers and has memorized a
>>> lot of commands like ls, chmod, du, etc.
>>> He wants to have his own domain and server on the web and I have
>>> enough Static IP's, so why not foster this
Peter A wrote:
> Jason,
>
> 5 will run solaris 10 with a few initial issues. You may have to install 8 or
> 9 first and then do a firmware upgrade to get 10 to boot for installation.
> Also,
> 512MB max will restrict you in what you can do. ZfS boot is possible but slow
> and in general use, yo
We have about 800 CentOS 5.2 servers and our university. We use NFS
being served from over 10 NetApp frames. We use autofs for to mount up
our partitions. There have been times where we can't cd into the
directory. It says the directory does not exist. On some servers it
works but on others it does
> OH, and I just remembered. the Ultra 10 uses the same memory board, but
> has a little more room in the chassis, and supports 4 x 256MB tall dimms
> of the right type, for 1GB.you can get away with this in hte U5 by
> hacking a bit on the inside.catch is, the low profile 256MB modules
>
My Centos 5 server has seen the average load jumped through the roof
recently despite having no major additional clients placed on it.
Previously, I was looking at an average of less than 0.6 load, I had a
monitoring script that sends an email warning me if the current load stayed
above 0.6 for mor
On 12/29/2009 11:42 PM, Slack-Moehrle wrote:
> Hi Tim,
>
>>> My 12 year old wants to learn more about servers and has
>>> memorized a lot of commands like ls, chmod, du, etc. He wants to
>>> have his own domain and server on the web and I have enough
>>> Static IP's, so why not foster this interes
On 12/30/2009 04:43 AM, Peter A wrote:
>> OH, and I just remembered. the Ultra 10 uses the same memory board, but
>> has a little more room in the chassis, and supports 4 x 256MB tall dimms
>> of the right type, for 1GB.you can get away with this in hte U5 by
>> hacking a bit on the inside.
Noob Centos Admin wrote:
> My Centos 5 server has seen the average load jumped through the roof
> recently despite having no major additional clients placed on it.
> Previously, I was looking at an average of less than 0.6 load, I had a
> monitoring script that sends an email warning me if the c
On Dec 29, 2009, at 11:44 PM, Noob Centos Admin
wrote:
> My Centos 5 server has seen the average load jumped through the roof
> recently despite having no major additional clients placed on it.
> Previously, I was looking at an average of less than 0.6 load, I had
> a monitoring script th
Hi,
> last time I saw something like that, it was a bunch of chinese 'bots'
> hammering on my public services like ssh.
>another admin had turned
> pop3 on too, this created a very heavy load yet they didn't show up in
> top (bunches of pop3 and ssh processes showed up in ps -auxww,
> however, plu
Hi,
> Try blocking the IPs on the router and see if that helps.
Unfortunately the server's in a DC so the router is not under our control.
> You can also run iostat and look at the disk usage which also
> generates load.
I did try iostat and its iowait% did coincide with top's report, which
is
Noob Centos Admin wrote:
> However, iostat reports much lower %user and $system compared to top
> running at the same time so I'm not quite sure if I can rely on its
> figures.
> ...
> iostat
> Linux 2.6.18-128.1.16.el5xen 12/30/2009
> avg-cpu: %user %nice %system %iowait %steal %idle
>
On Dec 30, 2009, at 1:05 AM, Noob Centos Admin
wrote:
> Hi,
>
>> Try blocking the IPs on the router and see if that helps.
>
> Unfortunately the server's in a DC so the router is not under our
> control.
That sucks, oh well.
>> You can also run iostat and look at the disk usage which also
Am Mittwoch, den 30.12.2009, 05:44 +0100 schrieb Noob Centos Admin:
> since initially it seems like the high load may be due to I/O wait
Maybe this will help you to identify the IO loading process:
http://dag.wieers.com/blog/red-hat-backported-io-accounting-to-rhel5
Chris
financial.com AG
Mun
80 matches
Mail list logo
