On 02/14/2017 08:40 PM, Alice Wonder wrote:
Well CentOS 7 doesn't use that, and trying to figure out where in the
mess of /etc/sysconfig/network-scripts the problem is occurring has
caused me much frustration.
DHCPv6 is really unusual. IPv6 addressing and routing is set up almost
entirely
On 2/15/2017 12:04 AM, Gordon Messmer wrote:
DHCPv6 is really unusual. IPv6 addressing and routing is set up
almost entirely in the kernel, unless you're using static addresses.
IPv6 is neither harder nor easier with NetworkManager, in my experience.
It was my understanding that most ipv6 n
hi all,
i'm trying to rebuild the current sssd-client.i686 rpm that is part of
the x86_64 repo, but i fail to do so. rebuilding the sssd.src.rpm on
x86_64 does not produce this rpm.
i can rebuild sssd.src.rpm with --target=i686, but that sssd-client rpm
has conflicts and a whole bunch of i686 dep
On 02/15/2017 02:39 AM, Stijn De Weirdt wrote:
> hi all,
>
> i'm trying to rebuild the current sssd-client.i686 rpm that is part of
> the x86_64 repo, but i fail to do so. rebuilding the sssd.src.rpm on
> x86_64 does not produce this rpm.
>
> i can rebuild sssd.src.rpm with --target=i686, but tha
On 02/15/2017 03:41 AM, Johnny Hughes wrote:
> On 02/15/2017 02:39 AM, Stijn De Weirdt wrote:
>> hi all,
>>
>> i'm trying to rebuild the current sssd-client.i686 rpm that is part of
>> the x86_64 repo, but i fail to do so. rebuilding the sssd.src.rpm on
>> x86_64 does not produce this rpm.
>>
>> i
Johnny,
https://git.centos.org/blob/sig-core!
bld-seven.git/37012c4fe4f69aa649fdb3e9b1ec002aafd2054f/mock!
c7-epel-i686.cfg
needs update to 1611
Sincerely
Andy
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/cento
hi johnny,
apologies, yes this is centos7 on x86_64.
i had to set PKGCONFIG_DIR, but that looked like the only thing.
i'll give mock a try and see what comes out.
thanks a lot
stijn
On 02/15/2017 10:44 AM, Johnny Hughes wrote:
> On 02/15/2017 03:41 AM, Johnny Hughes wrote:
>> On 02/15/2017 02
On 02/12/2017 03:15 PM, Kay Schenk wrote:
> Since the latest Firefox update to 45.7.0 on my CentOS 6.8 system, I can
> no longer install add-ons/extensions. Things LOOK like they're working
> but the extensions don't get stored in my normal area and they don't
> appear in my Add-Ons menu. Is anyone
Hi list,
I've a problem with vsftpd on C7.3. This is a dedicated server protected
by a Zywall5. SELINUX is disabled.
This is my vsftpd configuration:
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_
Hi list,
I've an update:
I've changed listen_port from 21 to 10021 restarted again vsftpd and
problem is solved.
I can't understand whats happened.
Any ideas?
Il 15/02/2017 13:37, Alessandro Baggi ha scritto:
Hi list,
I've a problem with vsftpd on C7.3. This is a dedicated server protecte
Too much temptation to resist, I don't know which one of us is older but I have
a feeling it's a "horse race". Like you, I still have a land line, WiFi is too
slow and "WiFi security" seems to be an oxymoronic phrase. Why people text (or
IM for that matter) anything other than a one-liner is b
On 02/15/2017 07:34 AM, Leroy Tennison wrote:
> Too much temptation to resist, I don't know which one of us is older but I
> have a feeling it's a "horse race". Like you, I still have a land line, WiFi
> is too slow and "WiFi security" seems to be an oxymoronic phrase. Why people
> text (or IM
Once upon a time, Gordon Messmer said:
> DHCPv6 is really unusual. IPv6 addressing and routing is set up
> almost entirely in the kernel, unless you're using static addresses.
> IPv6 is neither harder nor easier with NetworkManager, in my
> experience.
Not sure about the version in CentOS, but i
Thanks Gordon...
On 02/12/2017 03:15 PM, Gordon Messmer wrote:
On 02/12/2017 10:56 AM, Robert Moskowitz wrote: >>> It's probably safe to specify some range of higher numbered >>>
ports: >>> >>> use-v4-udp-ports { range 10240 65535; }; use-v6-udp-ports
{ range >>> 10240 65535; }; >> >> But that
Dear Cent OS User
Today my Mendeley Reference Manager was crash. To recover freshly I deleted
Mendeley file from my system from two place, 1) from share folder and 2)
from cache folder by using this command.
Copy from history
730 ls -a
731 cd .Mendeley\ Desktop/
732 ls
733 ll
734
On 02/15/2017 12:23 AM, John R Pierce wrote:
DHCPv6 is really unusual. IPv6 addressing and routing is set up
almost entirely in the kernel, unless you're using static addresses.
IPv6 is neither harder nor easier with NetworkManager, in my experience.
It was my understanding that most ipv6 n
On 02/15/2017 07:41 AM, Johnny Hughes wrote:
On 02/15/2017 07:34 AM, Leroy Tennison wrote:
Too much temptation to resist, I don't know which one of us is older but I have a feeling it's a
"horse race". Like you, I still have a land line, WiFi is too slow and "WiFi
security" seems to be an oxy
On Wed, February 15, 2017 7:34 am, Leroy Tennison wrote:
> Too much temptation to resist, I don't know which one of us is older but I
> have a feeling it's a "horse race". Like you, I still have a land line,
> WiFi is too slow and "WiFi security" seems to be an oxymoronic phrase.
> Why people tex
Robert Nichols wrote:
> On 02/15/2017 07:41 AM, Johnny Hughes wrote:
>> On 02/15/2017 07:34 AM, Leroy Tennison wrote:
>>> Too much temptation to resist, I don't know which one of us is older
>>> but I have a feeling it's a "horse race". Like you, I still have a
>>> land line, WiFi is too slow and
Hello Warren,
On Thu, 2017-02-09 at 15:27 -0700, Warren Young wrote:
> So you’ve now sprayed the heap on this system, but you can’t upload
> anything else to it because noexec, so…now what? What has our
> nefarious attacker gained?
So the heap is set with data provided by the (local) attacker wh
On Wed, 15 Feb 2017, Valeri Galtsev wrote:
My start with CentOS 7 to some extent reminded me this MacOS Server
experience ;-) No, not ansence of documentation, but the attitude to make
everybody use GUI. Exactly as you notice. I bet many users were lost by
Linux then...
Sometimes on this list
On 02/15/2017 09:37 AM, Leonard den Ottolander wrote:
> Hello Warren,
>
> On Thu, 2017-02-09 at 15:27 -0700, Warren Young wrote:
>> So you’ve now sprayed the heap on this system, but you can’t upload
>> anything else to it because noexec, so…now what? What has our
>> nefarious attacker gained?
>
Hello Johnny,
On Wed, 2017-02-15 at 09:47 -0600, Johnny Hughes wrote:
> 2. They already have shell access on the machine in question and they
> can already run anything in that shell that they can run via what you
> are pointing out.
No, assuming noexec /home mounts all they can run is system bi
On 02/15/2017 09:45 AM, John Hodrien wrote:
> On Wed, 15 Feb 2017, Valeri Galtsev wrote:
>
>> My start with CentOS 7 to some extent reminded me this MacOS Server
>> experience ;-) No, not ansence of documentation, but the attitude to make
>> everybody use GUI. Exactly as you notice. I bet many use
Johnny Hughes wrote:
> On 02/15/2017 09:37 AM, Leonard den Ottolander wrote:
>> On Thu, 2017-02-09 at 15:27 -0700, Warren Young wrote:
>>> So you’ve now sprayed the heap on this system, but you can’t upload
anything else to it because noexec, so…now what? What has our
nefarious attacker gained?
>>
Once upon a time, Leonard den Ottolander said:
> On Wed, 2017-02-15 at 09:47 -0600, Johnny Hughes wrote:
> > 2. They already have shell access on the machine in question and they
> > can already run anything in that shell that they can run via what you
> > are pointing out.
>
> No, assuming noex
hi all,
building with mock was pretty easy (esp easier then figuring out what
build deps were required ;)
anyway, for this specific case, following things needed to be taken in
account:
* do not copy all i686 rpms with the x86_64 ones in a single repo; was a
huge mess. i ended up with same rpms t
On Mon, 2017-02-13 at 16:49 +, James Hogarth wrote:
> On EL6 yes NM should be removed on anything but a wifi system but on
> EL7 unless you fall into a specific edge case as per the network docs:
>
> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html-single/Netwo
On Wed, February 15, 2017 10:22 am, Chris Adams wrote:
> Once upon a time, Leonard den Ottolander said:
>> On Wed, 2017-02-15 at 09:47 -0600, Johnny Hughes wrote:
>> > 2. They already have shell access on the machine in question and they
>> > can already run anything in that shell that they can
> Used a VCR or Cassette Player lately?
My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
player and tape recorders with broadcast quality handheld recorder
DR-100mk3 and an amazingly good Sony PX440.
Still retain the original functionality. C7 doesn't retain all the
origin
On Tue, 2017-02-14 at 20:40 -0800, Alice Wonder wrote:
> Why the bleep can't stuff like this be simple KISS with simple
> key=value
> configuration files?
Amen. Its incredibly simple to understand and doesn't require a
doctorate in confused thinking !
--
Regards,
Paul.
England, EU. En
On 15 Feb 2017 16:40, "Always Learning" wrote:
On Mon, 2017-02-13 at 16:49 +, James Hogarth wrote:
> On EL6 yes NM should be removed on anything but a wifi system but on
> EL7 unless you fall into a specific edge case as per the network docs:
>
> https://access.redhat.com/documentation/en
Always Learning wrote:
>
>> Used a VCR or Cassette Player lately?
>
> My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
> player and tape recorders with broadcast quality handheld recorder
> DR-100mk3 and an amazingly good Sony PX440.
But how do you play all your old VCR tape
On 02/15/2017 08:22 AM, Chris Adams wrote:
noexec is not that big of a protection. On a normal CentOS system, you
almost certainly have python installed (as well as likely other
scripting languages such as perl), and they can be used to do just about
anything compiled code can do.
Exactly. S
On Wed, February 15, 2017 11:45 am, m.r...@5-cent.us wrote:
> Always Learning wrote:
>>
>>> Used a VCR or Cassette Player lately?
>>
>> My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
>> player and tape recorders with broadcast quality handheld recorder
>> DR-100mk3 and an
On 02/15/2017 08:47 AM, Valeri Galtsev wrote:
And yes, ALL user writable places (including often overlooked /dev/shm)
are mounted with nosuid, nosgid, nodev, noexec options on servers where
users are allowed to have shell.
How sure are you? On the system I'm looking at right now, any user can
On 2/15/2017 9:45 AM, m.r...@5-cent.us wrote:
But how do you play all your old VCR tapes? As I said, I want to burn them
to disk, but I still have a working VCR.
ugh, the video quality of VHS is *so* nasty, I don't WANT to play those
old tapes any more. I do have a still working Hi8 VCR I've
Hello Guys,
after hours of uncessfull create example before i forward special
parition tests.
part ignoe --onpart
But Installation hang out for parition the harddisk.
jump to another console partitions are ok ?
Which line/lines is/are missing?
Andy
#version=DEVEL
# System authorization in
On 2/15/2017 11:04 AM, Andreas Benzler wrote:
after hours of uncessfull create example before i forward special
parition tests.
part ignoe --onpart
But Installation hang out for parition the harddisk.
jump to another console partitions are ok ?
There are an awful lot of typos in this email m
Opened bug
Bug 1422622 at RedHat Bugzilla.
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
Once upon a time, Gordon Messmer said:
> Leonard, man... you've got let this go. Users with shell access
> already have fairly broad permission to execute arbitrary code on
> the system they log in to. The memory leak in pkcheck is *not* a
> security issue. It's just a bug.
Here's the other th
Once upon a time, Valeri Galtsev said:
> Indeed, perl and often python are installed on most of servers I run. Not
> considering myself security expert, I would like to ask: could you point
> to some elevation of privileges exploit written in perl or python? All
> I've seen were c/c++, but again I
I'm ill, i'm german ...
the script is looks ok, copy from a slim installation of anaconda.
Insert only the "pre part"
and
part/boot --onpart=/dev/sda1
part/ --onpart=/dev/sda2
partswap--onpart=/dev/sda3
As i wrote: Jump over to another console and the partitions are t
On Wed, February 15, 2017 1:29 pm, Chris Adams wrote:
> Once upon a time, Valeri Galtsev said:
>> Indeed, perl and often python are installed on most of servers I run.
>> Not
>> considering myself security expert, I would like to ask: could you point
>> to some elevation of privileges exploit wri
On Wed, February 15, 2017 12:23 pm, Gordon Messmer wrote:
> On 02/15/2017 08:47 AM, Valeri Galtsev wrote:
>> And yes, ALL user writable places (including often overlooked /dev/shm)
>> are mounted with nosuid, nosgid, nodev, noexec options on servers where
>> users are allowed to have shell.
>
>
>
On Wed, 2017-02-15 at 12:45 -0500, m.r...@5-cent.us wrote:
> Always Learning wrote:
> >
> >> Used a VCR or Cassette Player lately?
> >
> > My VCR broke. Replaced it with a DVD/HDD & USB3 unit. Replaced cassette
> > player and tape recorders with broadcast quality handheld recorder
> > DR-100mk3 a
On 02/15/2017 12:08 PM, Valeri Galtsev wrote:
/run/screen/S- - NOT on CentOS 5
/var/spool/samba - NOT on CentOS 5 that needs extra security - in our shop;
To be pedantic: screen definitely creates a user-writable directory on
CentOS 5, in a different location, and samba will include that dire
So the rebuilt not work?
Sincerely
Andy
Am Mittwoch, den 15.02.2017, 17:26 + schrieb Styma, Robert (Nokia -
US):
> 1422622
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
On Wed, Feb 15, 2017 at 2:25 AM, Johnny Hughes wrote:
> On 02/12/2017 03:15 PM, Kay Schenk wrote:
> > Since the latest Firefox update to 45.7.0 on my CentOS 6.8 system, I can
> > no longer install add-ons/extensions. Things LOOK like they're working
> > but the extensions don't get stored in my n
Y'all may remember I posted here weeks ago, that flash-plugin was
crashing. There was an update this morning, which I did on my
workstation... and it hasn't crashed all day on either of the two radio
stations who I listen to via streaming media.
mark
Terrible me of understand how that works ...
But: not enough place on sda for core.img if you are using grub2 ???
I bump boot to 500MB, help nothing. Try another filesystem same
error.
"Sometimes you must be the developer to understand the program."
now it looks like
#version=DEVE
Hi Andy,
I tried it but got the same error. I am pretty sure I got the correct copy of
the driver as can be seen in the log. Interesting note, when rhgb was on
during boot, the word CentOS 6.8 at the bottom right of the screen was orange
instead of white. I wonder if the kernel was aware of
On Wed, February 15, 2017 2:38 pm, Gordon Messmer wrote:
> On 02/15/2017 12:08 PM, Valeri Galtsev wrote:
>> /run/screen/S- - NOT on CentOS 5
>> /var/spool/samba - NOT on CentOS 5 that needs extra security - in our
shop;
>
>
> To be pedantic: screen definitely creates a user-writable directory on
Ce
In my new Centos7 BIND DNS server, I am seeing messages in logwatch
about GeoIP.
Something new for me to learn about, and it seems, configure.
Checking to see what packages are available I find:
GeoIP.armv7hl 1.5.0-11.el7 @centos-base_rbf
GeoIP-data.noarch
On Feb 15, 2017 11:11 PM, "Robert Moskowitz" wrote:
In my new Centos7 BIND DNS server, I am seeing messages in logwatch about
GeoIP.
Something new for me to learn about, and it seems, configure.
Checking to see what packages are available I find:
GeoIP.armv7hl 1.5.0-1
55 matches
Mail list logo
