Re: Who Uses Scientific Linux, and How/Why?
We're a university HPC centre. We've been using SL since at least SL4 (before that was before my time), and currently mostly on SL7 with a few SL6 still dotted around on older clusters. Certainly in the past there was a requirement to have a RHEL-like OS for certain core software packages. Probably less so now, but most of our tooling is still based around SL so there hasn't been a big impetus to change. Plus the stability of the longer RHEL life cycle has been a big plus for stable clusters (*). On non-cluster nodes we have a mixture of some other OS's. We're very thankful for all of the work the SL team has put in over the years! And to everyone on this list who has been so generous with their time. In terms of the future, we're mainly focussed on CentOS 8 as it should be most similar to our current deployment tools, and since that's where CERN etc are going it seems like a good option. No doubt there will be teeting pains, but life has to be interesting, right. :) Paddy (*) although more recently some people are asking more and more for the latest and greatest.. yes, we're looking at you ML and AI! :) On Mon, Feb 24, 2020 at 06:09:27AM -0800, Peter Willis wrote: > Hello, > > The variation in uses of t Scientific Linux is quite interesting. > As mentioned before, we are using it for fluid dynamics modelling and > oceanography, in the context of parallel computing with OpenMP and MPICH. > > I am curious to see what everyone else have been using it for. > > Perhaps, if it’s not too much trouble, people on the list might give a short > blurb about how they use it and why. > Maybe also mention others they know who are using it who are not on this list. > > Peter > > > > >I'm no scientist, just an electronics guy who do a lot of research in RF (as > >hobby, mostly testing antennas for ham radio in VHF bands) from Argentina. > > > >Fot SL the most "well done" linux distribution, for people who simply knows. > > > >Will look forward to move to another distribution. > > > > > >>I'm an independent electronics inventor, heavily dependent > >>on both competent software and competent laboratory science, > >>both for the knowledge I depend on and the tools I use to > >>transform that knowledge into products and services for > >>my customers. > >> -- Paddy Doyle Research IT / Trinity Centre for High Performance Computing, Lloyd Building, Trinity College Dublin, Dublin 2, Ireland. Phone: +353-1-896-3725 https://urldefense.proofpoint.com/v2/url?u=https-3A__www.tchpc.tcd.ie_=DwIFaQ=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=7eQbAmvcrvtsbWH90yHv8gKKZkdTRKgrn1hq9Br2S8M=blSs6NvBcMwBsnqPmuBiKlRs_FQCvvhsilYiQ2-X8ls=
RHSA-2018:3410-01 Xorg local privilege escalation (SL7.4 and 7.5)
Hi all, I see that the updated package for this is coming soon (it's in https://urldefense.proofpoint.com/v2/url?u=ftp-3A__ftp.scientificlinux.org_linux_scientific_7rolling_testing_x86-5F64_=DwIBAg=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=b1EjH22FCE8r-fcoGl-SLxt9G0XIS4rPsQL8UKqnbc4=D-LfxoLpNCvS3D0YNQ9y0uE2wqeKSHFSMKBMMgol5Vk=), but just in the meantime to flag this for anyone (like me) who didn't grasp the significance of this Xorg bug: There's a one-liner local privilege escalation to root if a user has console access: https://urldefense.proofpoint.com/v2/url?u=https-3A__www.theregister.co.uk_2018_10_25_x-5Forg-5Fserver-5Fvulnerability_=DwIBAg=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=b1EjH22FCE8r-fcoGl-SLxt9G0XIS4rPsQL8UKqnbc4=YhZx_CQ_EVk7_uu90rDNmATTbt5wwTZVni7u8SWO2W8= See these for the background (it's not just RedHat-based systems): https://urldefense.proofpoint.com/v2/url?u=https-3A__cve.mitre.org_cgi-2Dbin_cvename.cgi-3Fname-3DCVE-2D2018-2D14665=DwIBAg=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=b1EjH22FCE8r-fcoGl-SLxt9G0XIS4rPsQL8UKqnbc4=aJ1jCxRTlnZWPI5JHHeYCLHuV4pULZSN98QsRZg889w= https://urldefense.proofpoint.com/v2/url?u=https-3A__bugzilla.redhat.com_show-5Fbug.cgi-3Fid-3DCVE-2D2018-2D14665=DwIBAg=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=b1EjH22FCE8r-fcoGl-SLxt9G0XIS4rPsQL8UKqnbc4=RewEdGJv681_o50C5TFx5LKkPkFo0lbIW2QxjSHERQA= The interim fix is to remove the setuid bit from /usr/bin/Xorg. I've tested this on some of our systems and it doesn't seem to break things. Paddy -- Paddy Doyle Trinity Centre for High Performance Computing, Lloyd Building, Trinity College Dublin, Dublin 2, Ireland. Phone: +353-1-896-3725 https://urldefense.proofpoint.com/v2/url?u=http-3A__www.tchpc.tcd.ie_=DwIBAg=gRgGjJ3BkIsb5y6s49QqsA=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A=b1EjH22FCE8r-fcoGl-SLxt9G0XIS4rPsQL8UKqnbc4=5_6mb8JwWYdcL_-ECtNgn3-_RWn424jKeE8mLmYK8rs=
Re: systemd tftp xinetd
On Tue, Sep 11, 2018 at 10:24:32AM -0500, Ken Teh wrote: > I've done all that. But after I reboot the system, I cannot tftp a file > from the server. But if I start tftp.service manually, I can get the file. > > If a service is never available on reboot after you've enabled it, what does > 'systemctl enable' mean? > > Is there some magic sequence of steps I need to take to "really" enable the > tftp service? We use tftp via xinetd via systemd here, and it does work after a reboot. I think you might need to enable xinetd via systemd as well. What is it's status currently? systemctl status xinetd.service (I couldn't spot that in your previous emails; apologies if you've already posted it) Enable it if required: systemctl enable xinetd.service Paddy
Re: Trouble with MySQL Server
On Wed, May 16, 2018 at 01:53:37AM +, Lofgren, Eric wrote: > Having failed to fix the ugly partition system, we???re going for > reconfiguring mysql to make it elsewhere. I followed this post to try to get > the temporary directory to point to another partition: > https://encylia.com/2015/02/06/how-to-change-the-mysql-tmp-location-on-centos/ > by doing all of the following under sudo: > > mkdir /home/mysqltmp > chmod 1777 /home/mysqltmp Maybe instead of the chmod, just make the dir owned by the mysql user: chown mysql.mysql /home/mysqltmp Or check if selinux is enabled and is preventing writing to that directory. getenforce grep mysqltmp /var/log/audit/audit.log Paddy > nano /etc/my.cnf > > Add below line under the [mysqld] section and save the file: > tmpdir=/home/mysqltmp > > systemctl restart mysqld > > This restart fails. If I restore the old my.cnf without the change, it works > perfectly. Checking the log, it seems there???s a permissions issue: > > 2018-05-16T00:01:05.211853Z 0 [Note] /usr/sbin/mysqld (mysqld 5.7.22) > starting as process 5929 ... > 2018-05-16T00:01:05.214159Z 0 [Note] InnoDB: PUNCH HOLE support available > 2018-05-16T00:01:05.214186Z 0 [Note] InnoDB: Mutexes and rw_locks use GCC > atomic builtins > 2018-05-16T00:01:05.214191Z 0 [Note] InnoDB: Uses event mutexes > 2018-05-16T00:01:05.214194Z 0 [Note] InnoDB: GCC builtin > __atomic_thread_fence() is used for memory barrier > 2018-05-16T00:01:05.214197Z 0 [Note] InnoDB: Compressed tables use zlib 1.2.3 > 2018-05-16T00:01:05.214202Z 0 [Note] InnoDB: Using Linux native AIO > 2018-05-16T00:01:05.214382Z 0 [Note] InnoDB: Number of pools: 1 > 2018-05-16T00:01:05.214459Z 0 [Note] InnoDB: Using CPU crc32 instructions > mysqld: Can't create/write to file '/home/mysqltmp/ibAcknwl' (Errcode: 13 - > Permission denied) > 2018-05-16T00:01:05.214535Z 0 [ERROR] InnoDB: Unable to create temporary > file; errno: 13 > 2018-05-16T00:01:05.214542Z 0 [ERROR] InnoDB: Plugin initialization aborted > with error Generic error > 2018-05-16T00:01:05.214548Z 0 [ERROR] Plugin 'InnoDB' init function returned > error. > 2018-05-16T00:01:05.214551Z 0 [ERROR] Plugin 'InnoDB' registration as a > STORAGE ENGINE failed. > 2018-05-16T00:01:05.214554Z 0 [ERROR] Failed to initialize builtin plugins. > 2018-05-16T00:01:05.214557Z 0 [ERROR] Aborting > > Any clues as to what I???ve done wrong? > > Thanks, > Eric > > > On May 15, 2018, at 12:07 AM, Steven Haigh <net...@crc.id.au> wrote: > > > > Your ibtmp1 file will be written to /var/lib/mysql/ by default. That's on a > > partition that is full. > > > > Either reconfigure mysql to create this elsewhere, or fix the ugly > > partition system :) > > > > -- > > Steven Haigh > > > > ? net...@crc.id.au ? > > https://urldefense.proofpoint.com/v2/url?u=https-3A__www.crc.id.au=DwIDaQ=C3yme8gMkxg_ihJNXS06ZyWk4EJm8LdrrvxQb-Je7sw=iUZ75NAR4hD2qziTurU89Tw8MeGe3cJQ6SpQAafuVT0=ziwKCJsn_tIEWNg9SSZnfZ62b3McsLUsMRm2PeXqh38=kCcOkUUIK1h2Ys9iKe-Z-bm0dQqcRyaBKpJPoZX5OXM= > > ? +61 (3) 9001 6090? 0412 935 897 > -- Paddy Doyle Trinity Centre for High Performance Computing, Lloyd Building, Trinity College Dublin, Dublin 2, Ireland. Phone: +353-1-896-3725 http://www.tchpc.tcd.ie/
Re: Why are our systems still at 7.3
Just adding that the 'yum reinstall yum-conf-sl7x' from this message: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1710=SCIENTIFIC-LINUX-USERS===2341 ..together with 'yum update rdma-core.x86_64' from this follow-up: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1710=SCIENTIFIC-LINUX-USERS=0=5500 ..worked well for us. Most of our systems automatically went from 7.3 -> 7.4 but there were a few strays. Paddy On Fri, Jan 12, 2018 at 10:57:38AM +0100, Maarten wrote: > Make sure this file says: > > cat /etc/yum/vars/slreleasever > 7x > > > On 01/12/2018 10:49 AM, Peter Boy wrote: > > Hi, > > > > I have a fully updated system (at least as far as I???m aware of), but a > > ???cat /etc/system-release??? still shows 7.3 (instead of currently 7.4) > > > > As far as I read the docs, for version 7 an automatic update to the latest > > release is default (and yum-conf-sl7x is installed) and it worked for me up > > to 7.3. > > > > > > DO I have to worry about something? > > > > > > Thanks > > > > > > ??? > > Dr. Peter Boy > > Universität Bremen > > Mary-Sommerville-Str. 5 > > 28359 Bremen > > Germany > > > > p...@zes.uni-bremen.de > > www.zes.uni-bremen.de > > > > > > > > Are you looking for a web content management system for scientific research > > organizations? > > Have a look at http://www.scientificcms.org > > > > > > Are you looking for a web content management system for public > > administrations? > > Have a look at http://www.aplaws.org & https://fedorahosted.org/aplaws/ > > > -- Paddy Doyle Trinity Centre for High Performance Computing, Lloyd Building, Trinity College Dublin, Dublin 2, Ireland. Phone: +353-1-896-3725 http://www.tchpc.tcd.ie/
