Johnny Hughes wrote:
> On 01/09/2012 09:59 PM, Anthony wrote:
>
> In both cases, you are not going to be told about packages already
> installed that are newer than those in the CentOS.
>
> You can find those RPMs though by doing this:
>
> rpm -qa | egrep "\.rf" | sort
>
>
> that will tell you all
On Tuesday 10 January 2012 04:05:43 Marko Vojinovic wrote:
> On Monday 09 January 2012 15:29:59 Daniel J Walsh wrote:
> > file_t means the file has no label, so the only way to create
> > this type of file would be to remove the security attributes on
> > the file. On an SELinux system, file_t shou
On 1/9/2012 10:31 AM, m.r...@5-cent.us wrote:
> I *loathe* dnsorbs Maybe this one will get through its crap. Maybe if
> I add a few more words
>
> John R. Dennison wrote:
>> On Mon, Jan 09, 2012 at 12:49:31PM -0500, m.r...@5-cent.us wrote:
>>> I haven't gotten anything from the list since m
If an attacker finds an exploit to take control of httpd, they're still
blocked in part by the fact that httpd runs as the unprivileged apache
user and hence can't write any root-owned files on the system, unless
the attacker also knows of a second attack that lets apache escalate its
privilege
On 01/10/12 11:12, Bennett Haselton wrote:
What about sshd -- assuming that the attacker can connect to sshd at all
(i.e. not prevented by a firewall), if they find an exploit to let them
take control of sshd, would that imply immediate total control of the
UsePrivilegeSeparation
Specifies wheth
On 1/10/2012 2:02 AM, Adrian Sevcenco wrote:
> On 01/10/12 11:12, Bennett Haselton wrote:
>> What about sshd -- assuming that the attacker can connect to sshd at all
>> (i.e. not prevented by a firewall), if they find an exploit to let them
>> take control of sshd, would that imply immediate total
On Monday 09 January 2012 23:36:53 Igor Furlan wrote:
> Is there a way to revert the 'copy&paste' functionality back to the
> traditional UNIX way of doing it,
> highlight the text with left mouse/touchpad button and paste it with
> the middle mouse/touchpad button.
AFAIK, it *should* work while i
Readers,
Would someone advise whether the distribution of an obsolete version
of java should be reported as a bug;
http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinf
From: Bennett Haselton
> On 1/10/2012 2:02 AM, Adrian Sevcenco wrote:
>> UsePrivilegeSeparation
>> Specifies whether sshd(8) separates privileges by creating an
>> unprivileged child process to deal with incoming network traffic.
>> After successful authentication, another process will be c
On 10 January 2012 13:04, e-letter wrote:
> Readers,
>
> Would someone advise whether the distribution of an obsolete version
> of java should be reported as a bug;
> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
Why is this a bug? The bug comments mention that the latest CentOS 6
has
On 1/10/2012 5:16 AM, John Doe wrote:
> From: Bennett Haselton
>
>> On 1/10/2012 2:02 AM, Adrian Sevcenco wrote:
>>> UsePrivilegeSeparation
>>> Specifies whether sshd(8) separates privileges by creating an
>>> unprivileged child process to deal with incoming network traffic.
>>> After succe
On 1/9/2012 8:05 PM, Marko Vojinovic wrote:
> On Monday 09 January 2012 15:29:59 Daniel J Walsh wrote:
>> file_t means the file has no label, so the only way to create this
>> type of file would be to remove the security attributes on the file.
>> On an SELinux system, file_t should never be create
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/10/2012 08:37 AM, Bennett Haselton wrote:
> On 1/9/2012 8:05 PM, Marko Vojinovic wrote:
>> On Monday 09 January 2012 15:29:59 Daniel J Walsh wrote:
>>> file_t means the file has no label, so the only way to create
>>> this type of file would be t
From: Bennett Haselton
> On 1/10/2012 5:16 AM, John Doe wrote:
>> The sshd child is running as bob; so it has bob (and not root) rights...
>
> Yes, I understand that. What I said was that if you could take complete
> control of the sshd process you were connecting to, even if that process
>
On Tue, Jan 10, 2012 at 2:49 PM, John Doe wrote:
> From: Bennett Haselton
>
> > On 1/10/2012 5:16 AM, John Doe wrote:
> >> The sshd child is running as bob; so it has bob (and not root)
> rights...
> >
> > Yes, I understand that. What I said was that if you could take complete
> > control of t
On 10/01/12 13:34, Bennett Haselton wrote:
> On 1/10/2012 5:16 AM, John Doe wrote:
>> From: Bennett Haselton
>>
>>> On 1/10/2012 2:02 AM, Adrian Sevcenco wrote:
UsePrivilegeSeparation
Specifies whether sshd(8) separates privileges by creating an
unprivileged child process to
On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh wrote:
>
> Now if only more people used RHEL we could further enhance the
> products. :^)
>
Why isn't it accepted as more of a standard?
--
Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing
Dne 10.1.2012 4:02, email builder napsal(a):
> Why? Just remove that package and install the one from CentOS.
> Spamassassin doesn't need to be touched.
Hello,
Seems to me that you are still using the mix of repos. Packages from RF
work fine.
root@specs2:1280:279:/$ rpm -q spamassassin perl-IO-S
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/10/2012 09:00 AM, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
> wrote:
>>
>> Now if only more people used RHEL we could further enhance the
>> products. :^)
>>
>
> Why isn't it accepted as more of a standard?
>
I
e-letter wrote:
> Readers,
>
> Would someone advise whether the distribution of an obsolete version
> of java should be reported as a bug;
> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
One *could* argue that Java is a bug, being a) so error-prone, b) so
vulnerable to attack, and c) s
John Doe wrote:
> From: Bennett Haselton
>
>> On 1/10/2012 5:16 AM, John Doe wrote:
>>> The sshd child is running as bob; so it has bob (and not root)
>>> rights...
>>
>> Yes, I understand that. What I said was that if you could take complete
>> control of the sshd process you were connecting to
Hello there,
since I installed CentOS6 few months ago (kept up-to-date using yum),
I'm facing very poor performances when writing to USB pendrives.
The hardware: a Dell Latitude E6500 laptop (Intel Core Duo P8600
@2.40Ghz), 4Go RAM + 4Go swap, several USB2 pendrives of various brands
(less than
On Tue, Jan 10, 2012 at 8:47 AM, wrote:
>
>> Would someone advise whether the distribution of an obsolete version
>> of java should be reported as a bug;
>> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
>
> One *could* argue that Java is a bug, being a) so error-prone, b) so
> vulnera
On Tue, January 10, 2012 17:15, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 8:47 AM, wrote:
>>
>> One *could* argue that Java is a bug, being a) so error-prone, b) so
>> vulnerable to attack, and c) so huge and slow, and shouldn't be
>> allowed
>
> But you'd be wrong on all counts. I'd arg
On Tue, Jan 10, 2012 at 8:27 AM, Daniel J Walsh wrote:
>
> On 01/10/2012 09:00 AM, Les Mikesell wrote:
>> On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
>> wrote:
>>>
>>> Now if only more people used RHEL we could further enhance the
>>> products. :^)
>>>
>>
>> Why isn't it accepted as more of
Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 8:47 AM, wrote:
>>
>>> Would someone advise whether the distribution of an obsolete version
>>> of java should be reported as a bug;
>>> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
>>
>> One *could* argue that Java is a bug, being a) so
On Tue, Jan 10, 2012 at 10:17 AM, Giles Coochey wrote:
>>
>> But you'd be wrong on all counts. I'd argue the opposite - that you
>> should only be allowed to use languages that work across CPU types and
>> OS's so as to never be locked into a monopolistic single vendor.
>>
>
> So if I were to dev
I've retried again, and it still fails. I see that it's mounted /dev/sda2,
which is where I've got the contents of a DVD, as /mnt/isolinux. The
contents of that are:
ls -a
.GPLTRANS.TBL
.. Packages images
.discinfo
Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 10:17 AM, Giles Coochey wrote:
>>>
>>> But you'd be wrong on all counts. I'd argue the opposite - that you
>>> should only be allowed to use languages that work across CPU types and
>>> OS's so as to never be locked into a monopolistic single vendor.
From: "m.r...@5-cent.us"
> I've retried again, and it still fails. I see that it's mounted
> /dev/sda2,
> which is where I've got the contents of a DVD, as /mnt/isolinux.
Unless you specifically need the DVD contents, maybe try with
the ISOs instead...
JD
_
From: wwp
> I wonder if some mount options aren't wrong with USB pendrives, see:
> /dev/sdd1 on /media/monolith type vfat
> (rw,nosuid,nodev,uhelper=udisks,shortname=mixed,dmask=0077,utf8=1,flush)
> my suspicion is about the flush option, which I find atypical here.
I guess it is to be safe i
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ..
On Tue, Jan 10, 2012 at 10:32 AM, wrote:
>>>
Would someone advise whether the distribution of an obsolete version
of java should be reported as a bug;
http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
>>>
>>> One *could* argue that Java is a bug, being a) so error-prone, b)
On Monday, January 09, 2012 02:03:23 PM John R Pierce wrote:
> Is there another tool I can use for GPT partitions over 2TB ?
Hmm, I have an EL6.2 installation (i386) with four mounted volumes over 2TB;
IIRC parted was used to make them. I don't recall doing anything special to
get the partition
On Tue, Jan 10, 2012 at 10:47 AM, wrote:
>>
But you'd be wrong on all counts. I'd argue the opposite - that you
should only be allowed to use languages that work across CPU types and
OS's so as to never be locked into a monopolistic single vendor.
>>> So if I were to develop
On Mon, Jan 9, 2012 at 1:03 PM, John R Pierce wrote:
>
>> Using gparted (GUIs, why did it have to be GUIs), you at least don't get
>> that idiot warning.
>
> yeah, no gui on my file or database servers. not gonna happen.
>
Having the X libs installed so you can run a gui program with a remote
di
On 01/10/2012 07:17 AM, Hakan Koseoglu wrote:
> On 10 January 2012 13:04, e-letter wrote:
>> Readers,
>>
>> Would someone advise whether the distribution of an obsolete version
>> of java should be reported as a bug;
>> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
> Why is this a bug?
John Doe wrote:
> From: "m.r...@5-cent.us"
>
>> I've retried again, and it still fails. I see that it's mounted
>> /dev/sda2, which is where I've got the contents of a DVD, as
/mnt/isolinux.
>
> Unless you specifically need the DVD contents, maybe try with
> the ISOs instead...
This doesn't vague
Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 10:32 AM, wrote:
> Would someone advise whether the distribution of an obsolete version
> of java should be reported as a bug;
> http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=827
One *could* argue that Java is a bug,
On 01/10/2012 07:58 AM, Ned Slider wrote:
> On 10/01/12 13:34, Bennett Haselton wrote:
>> On 1/10/2012 5:16 AM, John Doe wrote:
>>> From: Bennett Haselton
>>>
On 1/10/2012 2:02 AM, Adrian Sevcenco wrote:
>UsePrivilegeSeparation
>Specifies whether sshd(8) separates privileges by
We've got about 200 existing servers running CentOS/RHEL 5.6 and all new
servers are being provisioned using CentOS/RHEL 6.1. So that everything
is consistent we need to upgrade the servers running CentOS/RHEL 5.6. I've
searched the CentOS wiki, the Red Hat site, and the internet looking for
On Tue, 10 Jan 2012 13:55:05 -0500
Gene Poole wrote:
> We've got about 200 existing servers running CentOS/RHEL 5.6 and all new
> servers are being provisioned using CentOS/RHEL 6.1. So that everything
> is consistent we need to upgrade the servers running CentOS/RHEL 5.6. I've
> searched the
> But this thread's gotten way OT: *does* anyone have any
> idea what the .img file is that the running o/s from install.img
> is looking for, after the partitioning, when it's ready to install?
Possibly, but without the info I previously requested, I won't be
trying to reproduce the problem.
e.g
Gene Poole wrote:
> We've got about 200 existing servers running CentOS/RHEL 5.6 and all new
> servers are being provisioned using CentOS/RHEL 6.1. So that everything
> is consistent we need to upgrade the servers running CentOS/RHEL 5.6. I've
> searched the CentOS wiki, the Red Hat site, and the
Darr247 wrote:
>> But this thread's gotten way OT: *does* anyone have any
>> idea what the .img file is that the running o/s from install.img
>> is looking for, after the partitioning, when it's ready to install?
>
> Possibly, but without the info I previously requested, I won't be
> trying to repr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/10/2012 11:20 AM, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 8:27 AM, Daniel J Walsh
> wrote:
>>
>> On 01/10/2012 09:00 AM, Les Mikesell wrote:
>>> On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
>>> wrote:
Now if only more peopl
On 01/10/12 9:39 AM, Les Mikesell wrote:
> Having the X libs installed so you can run a gui program with a remote
> display doesn't bother a server much. And it's sometimes handy to be
> able to run wireshark like that if you need to peek at a few packets
> in real time.
painfully slow over a rem
Hi all.
I am currently working for a hosting provider in a 100+ linux hosts'
environment. We have www, mail HA solutions, as storage we mainly use
NFS at the moment. We are also using DRBD, Heartbeat, Corosync.
I am now gathering info to make a cluster with:
- two virtualization nodes (active mas
On Tue, Jan 10, 2012 at 1:46 PM, Daniel J Walsh wrote:
>
>>> On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
wrote:
>
> Now if only more people used RHEL we could further enhance
> the products. :^)
>
Why isn't it accepted as more of a standard?
>>> I don't un
On 01/10/2012 08:56 PM, John R Pierce wrote:
> And, having to explain
> how to setup a remote X session, then how to do something with
> pointy-clicky would be painful, a one line command replaced with pages
> of screenshots? ugh.
There is NX/FreeNX server/client via ssh. Safe and simple remote
On Tue, Jan 10, 2012 at 1:56 PM, John R Pierce wrote:
>> Having the X libs installed so you can run a gui program with a remote
>> display doesn't bother a server much. And it's sometimes handy to be
>> able to run wireshark like that if you need to peek at a few packets
>> in real time.
>
> pai
> -Original Message-
> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
> Behalf Of m.r...@5-cent.us
> Sent: Tuesday, January 10, 2012 12:48
> To: CentOS mailing list
> Subject: Re: [CentOS] USB install annoyances (not OT)
>
> John Doe wrote:
> > From: "m.r...@5-cent.u
> But the question is what image# 1 that it's looking for? It's not trying
> to look on the USB for an .iso, is it?
That sounds like the bug mentioned at the bottom of the CentOS How-to:
http://wiki.centos.org/HowTos/InstallFromUSBkey
https://bugzilla.redhat.com/show_bug.cgi?id=568343 (around comm
Denniston, Todd A CIV NAVSURFWARCENDIV Crane wrote:
>> Behalf Of m.r...@5-cent.us
>> John Doe wrote:
>> > From: "m.r...@5-cent.us"
>> >
>> >> I've retried again, and it still fails. I see that it's mounted
>> >> /dev/sda2, which is where I've got the contents of a DVD, as
>> /mnt/isolinux.
>> >
>>
On 01/11/2012 05:04 AM, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 1:46 PM, Daniel J Walsh wrote:
>>
On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
> wrote:
>>
>> Now if only more people used RHEL we could further enhance
>> the products. :^)
>>
>
> Why isn'
> I am currently working for a hosting provider in a 100+ linux hosts'
> environment. We have www, mail HA solutions, as storage we mainly use
> NFS at the moment. We are also using DRBD, Heartbeat, Corosync.
>
> I am now gathering info to make a cluster with:
> - two virtualization nodes (active
On Tue, Jan 10, 2012 at 1:35 PM, wrote:
>
>> We've got about 200 existing servers running CentOS/RHEL 5.6 and all new
>> servers are being provisioned using CentOS/RHEL 6.1. So that everything
>> is consistent we need to upgrade the servers running CentOS/RHEL 5.6. I've
>> searched the CentOS wi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/10/2012 03:04 PM, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 1:46 PM, Daniel J Walsh
> wrote:
>>
On Tue, Jan 10, 2012 at 7:47 AM, Daniel J Walsh
> wrote:
>>
>> Now if only more people used RHEL we could further
>> enha
Yet another denial - it's as though it's also blocking me based on the
relationship of included text vs. new text.
blah, blah, blah. Let's see if this is enough new text to get through.
Denniston, Todd A CIV NAVSURFWARCENDIV Crane wrote:
>> Behalf Of m.r...@5-cent.us
>> >> I've retried again, an
On 01/10/2012 02:59 PM, Rafał Radecki wrote:
> Hi all.
>
> I am currently working for a hosting provider in a 100+ linux hosts'
> environment. We have www, mail HA solutions, as storage we mainly use
> NFS at the moment. We are also using DRBD, Heartbeat, Corosync.
>
> I am now gathering info to
Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 1:35 PM, wrote:
>>
>>> We've got about 200 existing servers running CentOS/RHEL 5.6 and all
>>> new servers are being provisioned using CentOS/RHEL 6.1. So that
>>> everything is consistent we need to upgrade the servers running
>>> CentOS/RHEL 5.6.
2012/1/10 夜神 岩男 :
>
> But the difficult thing about SELinux isn't how it works, its the detail
> required for each policy to wrap each program up correctly without
> denying useful functionality in the process, not to mention deploying
> them with packages, and dealing with the whole new universe o
On Tue, Jan 10, 2012 at 3:26 PM, Daniel J Walsh wrote:
>
> Again, there is nothing that we do that is Vendor specific, Everything
> we do with SELinux is open source. We are working to get our stuff
> upstream.
>
> I have no idea what you are talking about as far as variations in
> Linux Distribu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/10/2012 04:41 PM, Les Mikesell wrote:
> On Tue, Jan 10, 2012 at 3:26 PM, Daniel J Walsh
> wrote:
>>
>> Again, there is nothing that we do that is Vendor specific,
>> Everything we do with SELinux is open source. We are working to
>> get our st
Denniston, Todd A CIV NAVSURFWARCENDIV Crane wrote:
>> Behalf Of m.r...@5-cent.us
>> >> I've retried again, and it still fails. I see that it's mounted
/dev/sda2, which is where I've got the contents of a DVD, as
>> /mnt/isolinux.
>> >
>> > Unless you specifically need the DVD contents, maybe try
m.roth spake thusly:
> I started by listing that:
> 1. I have a partitioned USB stick, 8G, with a 10M FAT32 partition, and the
> rest as ext3.
> 2. Rsync'd isolinux to the FAT partition, renamed isolinux.cfg to
> syslinux.cfg
> 3. syslinux to the USB
> 4. mounted DVD.iso, and rsync'd all of that to
Hi All,
I have set up three servers in a development environment. Via CR they're
updated to Centos 6.2
It appears that these servers have postfix installed on them by default,
which unfortunately I'm not very well acquainted with.
All I want is a quick and dirty way to enable these hosts to
I have a Centos 5.7 machine with Intel I10 video (built-in, I guess -- this is
one of those all-in-one mini terminal things) that I'm trying to put a new
1920x1080 monitor onto, without conspicuous success. Prior to this it's been
using a smaller monitor with no issues.
Try as I might I can't get
On 01/11/2012 10:31 AM, m.r...@5-cent.us wrote:
> Yet another denial - it's as though it's also blocking me based on the
> relationship of included text vs. new text.
>
> blah, blah, blah. Let's see if this is enough new text to get through.
>
> Denniston, Todd A CIV NAVSURFWARCENDIV Crane wrote:
>
>> Why? Just remove that package and install the one from CentOS.
>> Spamassassin doesn't need to be touched.
>
> Seems to me that you are still using the mix of repos. Packages from RF
> work fine.
Well, kind of. If you review this thread, you'll see that the the fix was to
stop using the R
On 01/10/2012 05:54 PM, Giles Coochey wrote:
> Hi All,
>
> I have set up three servers in a development environment. Via CR
> they're updated to Centos 6.2
>
> It appears that these servers have postfix installed on them by
> default, which unfortunately I'm not very well acquainted with.
>
> All
I've been getting a few avahi-daemon errors in /var/log/messages, eg
---
Jan 11 00:40:24 helen avahi-daemon[12732]: Invalid query packet.
Jan 11 00:40:29 helen last message repeated 17 times
On Jan 10, 2012, at 7:51 PM, Timothy Murphy wrote:
> I've been getting a few avahi-daemon errors in /var/log/messages, eg
> ---
> Jan 11 00:40:24 helen avahi-daemon[12732]: Invalid query packet.
>
> Jan 1
On Tue, Jan 10, 2012 at 3:35 PM, wrote:
> >>
>>> What we do is build one, then create /boot/new and /new on the next
>>> server, rsync over to them, then mkdir /boot/old and /old, and (using
>>> zsh with modules loaded) mv * old, mv old/lost+found ., mv
>>> old/new/* ., make sure a few things are
On 01/10/2012 05:56 PM, Frank Cox wrote:
> I have a Centos 5.7 machine with Intel I10 video (built-in, I guess -- this is
> one of those all-in-one mini terminal things) that I'm trying to put a new
> 1920x1080 monitor onto, without conspicuous success. Prior to this it's been
> using a smaller mo
On Tue, Jan 10, 2012 at 3:50 PM, Daniel J Walsh wrote:
>>>
> That is not the way it works. SELinux Reference policy is a database
> of rules that govern the default ways application run.
Yes, but it is application developers that know what their
applications need to do. Is there a way for them
On Tue, 10 Jan 2012 20:50:36 -0500
Mark LaPierre wrote:
> Are you sure that your video card can support your desired resolution?
I am now.
After much fiddling around trying this and that I gave up and booted off of a
Centos 6.2 install disk, and that came up in the 1920x1080 resolution all by
it
Hello John,
On Tue, 10 Jan 2012 08:57:14 -0800 (PST) John Doe wrote:
> From: wwp
>
> > I wonder if some mount options aren't wrong with USB pendrives, see:
> > /dev/sdd1 on /media/monolith type vfat
> > (rw,nosuid,nodev,uhelper=udisks,shortname=mixed,dmask=0077,utf8=1,flush)
> > my suspici
78 matches
Mail list logo
