Hello,
There are some errors on the HowTos/OS_Protection page on the CentOS wiki. I
would like to correct the errors.
Thanks,
William Voyek
PGP.sig
Description: PGP signature
___
CentOS-docs mailing list
CentOS-docs@centos.org
I use named virtual hosts on my web servers, as I'm sure many others do.
I'm used to the method of using a vhost directory for the container files.
I didn't find documentation for it in the CentOS docs or the Apache docs.
I'm not sure if I should take it as a hint that it is depreciated...
On 08/21/2009 10:41 PM, Ed Heron wrote:
I use named virtual hosts on my web servers, as I'm sure many others do.
I'm used to the method of using a vhost directory for the container files.
I didn't find documentation for it in the CentOS docs or the Apache docs.
I'm not sure if I should
On Fri, Aug 21, 2009 at 3:41 PM, Ed Herone...@heron-ent.com wrote:
I use named virtual hosts on my web servers, as I'm sure many others do.
I'm used to the method of using a vhost directory for the container files.
I didn't find documentation for it in the CentOS docs or the Apache docs.
On Fri, Aug 21, 2009 at 3:41 PM, Ed Herone...@heron-ent.com wrote:
I use named virtual hosts on my web servers, as I'm sure many others do.
I'm used to the method of using a vhost directory for the container files.
I didn't find documentation for it in the CentOS docs or the Apache docs.
Hi,
On Fri, Aug 21, 2009 at 15:54, Brian
Mathisbrian.mathis+centosd...@gmail.com wrote:
PS. You could also service reload instead of restart for a more
graceful reconfiguration.
And:
# service httpd graceful
For an even more graceful reconfiguration. reload will kill
connections that already
On Fri, Aug 21, 2009 at 12:57 PM, Voyek, Williamwvo...@edmc.edu wrote:
Hello,
There are some errors on the HowTos/OS_Protection page on the CentOS wiki. I
would like to correct the errors.
Sure. What are you seeing as errors though?
--
During times of universal deceit, telling the truth
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Jim,
Under Pam modifications:
authrequired pam_tally2.so onerr=fail unlock_time=60 no_magic_root
account required pam_tally2.so deny=3 no_magic_root per_user
deny=3 should be in auth. It's not allowed in account.
From: Brian Mathis, Friday, August 21, 2009 1:52 PM
On Fri, Aug 21, 2009 at 3:41 PM, Ed Herone...@heron-ent.com wrote:
...
I've written a quick little article detailing how to create a vhost
directory under CentOS.
...
I always figured that the CentOS way to handle that was to put them
into
From: Filipe Brandenburger, Friday, August 21, 2009 2:03 PM
# service httpd graceful
Thanks!
___
CentOS-docs mailing list
CentOS-docs@centos.org
http://lists.centos.org/mailman/listinfo/centos-docs
On Fri, Aug 21, 2009 at 4:41 PM, Voyek, Williamwvo...@edmc.edu wrote:
snip
All valid points, I'm sold. Do you have access already to make these changes?
- -Original Message-
From: centos-docs-boun...@centos.org [mailto:centos-docs-boun...@centos.org]
On Behalf Of Jim Perrin
Sent:
On 08/22/2009 12:12 AM, Ed Heron wrote:
From: Brian Mathis, Friday, August 21, 2009 1:52 PM
On Fri, Aug 21, 2009 at 3:41 PM, Ed Herone...@heron-ent.com wrote:
...
I've written a quick little article detailing how to create a vhost
directory under CentOS.
...
I always
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
No, I don't have editing access.
Thanks,
William
- -Original Message-
From: centos-docs-boun...@centos.org [mailto:centos-docs-boun...@centos.org] On
Behalf Of Jim Perrin
Sent: Friday, August 21, 2009 2:29 PM
To: Mail list for wiki
On 08/21/2009 10:39 PM, Voyek, William wrote:
No, I don't have editing access.
whats your username ?
--
Karanbir Singh : http://www.karan.org/ : 2522...@icq
___
CentOS-docs mailing list
CentOS-docs@centos.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 08/21/2009 10:39 PM, Voyek, William wrote:
No, I don't have editing access.
whats your username ?
--
Karanbir Singh : http://www.karan.org/ : 2522...@icq
wvoyek
-BEGIN PGP SIGNATURE-
Version: 9.10.0 (Build 500)
Charset:
The CentOS development team is pleased to announce the release of CentOS
4.8 for i386 and x86_64.
It is available on all CentOS.org mirrors and via bittorrent, see this
link to download ISOs:
http://isoredirect.centos.org/centos/4.8/isos/
This release corresponds to the upstream vendor U8
Sres:
Los dejo cordialmente invitados a participar en las Jornadas Regionales
de Software Libre que este año se realizaran en Santiado de Chile.
Les dejo el link para que puedan informarse:
http://www.jornadasregionales.org/
Por otro lado también les hago la invitación a enviar sus charlas
porfavor si pueden desuscribirme de esta lista háganlo con urgencia ...
En 2009 se conmemora mundialmente el NACIMIENTO DE LUIS BRAILLE.
HONREMOS CON FE, ENTUSIASMO , AMOR Y GRATITUD AL CIEGO MÁS GENIAL DE TODOS
LOS TIEMPOS.
ÉL SACÓ A SUS HERMANOS DE INFORTUNIO DE LA PREHISTORIA, IDEANDO EL
Tienes que hacerlo al accediendo en la dirección que esta al final de la
listas.
Jocla escribió:
porfavor si pueden desuscribirme de esta lista háganlo con urgencia ...
En 2009 se conmemora mundialmente el NACIMIENTO DE LUIS BRAILLE.
HONREMOS CON FE, ENTUSIASMO , AMOR Y GRATITUD AL CIEGO
Akemi Yagi wrote:
On Thu, Aug 20, 2009 at 1:22 PM, James
Pearsonjame...@moving-picture.com wrote:
Akemi Yagi wrote:
On Thu, Aug 20, 2009 at 12:15 PM, James
Pearsonjame...@moving-picture.com wrote:
Does anyone have access to the xorg-x11-server-1.1.1-48.53.el5 (or
later) SRPM - which may be
Mag Gam wrote:
Well, I am poor and so is my school.
Hear, hear
We want to setup a cheap storage farm so I was asking what is people's
opinions on the the controller and the disks :-)
Cor, looks like it is not just me having to think of a storage farm.
Over here, some downtime (an
Hi,
I was look a yum repository with I add to centos 5.3, where I find
bacula with version 2.4.4 or 2.4.4.1
f...@ll
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Ian Murray wrote on Fri, 21 Aug 2009 02:09:04 + (GMT):
[r...@xen ~]# virt-install -p
ERRORA name is required for the virtual machine.
Oh, my god. I just gave this extra parameter as I thought it would then ask for
the missing data. I forgot that you can either have interactive or
- Original Message
From: Kai Schaetzl mailli...@conactive.com
To: centos@centos.org
Sent: Friday, 21 August, 2009 10:31:22
Subject: Re: [CentOS] virt-manager crashes Host during installation of guest
Ian Murray wrote on Fri, 21 Aug 2009 02:09:04 + (GMT):
[r...@xen ~]#
On 08/20/2009 05:46 PM, Coert Waagmeester wrote:
Xen DomU
DRBD
LVM Volume
RAID 1
this makes no sense, you are loosing about 12% of i/o capability here -
even before hitting drbd, and then taking another hit on whatever drbd
brings in ( depending on
Oliver Ransom wrote on Fri, 21 Aug 2009 11:12:35 +0930:
As an additional question to the above, would forcing users to log in
with SSH keys rather than passwords avoid requiring any anti brute
force attack measures to be put in place?
Regarding SHH: yes. Nevertheless, you will want to
Hello,
I've got a CentOS 5.3 machine that i'd like to virtualize some
services on. Currently a reinstall for virtualization isn't doable so i
thought about user-mode-linux, UML. Has anyone run this on Centos5? If so,
feedback prose and cons appreciated.
Thanks.
Dave.
I have not run
On Aug 21, 2009, at 6:27 AM, Karanbir Singh mail-li...@karan.org
wrote:
On 08/20/2009 05:46 PM, Coert Waagmeester wrote:
Xen DomU
DRBD
LVM Volume
RAID 1
this makes no sense, you are loosing about 12% of i/o capability
here -
even before
-Original Message-
From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
Behalf Of Eugene Vilensky
Sent: Thursday, August 20, 2009 10:15 PM
To: CentOS mailing list
Subject: [CentOS] protecting multiuser systems from bruteforce ssh
attacks
Hello,
What is the best way to
Hi,
On Thu, Aug 20, 2009 at 16:55, Ray Leventhalcen...@swhi.net wrote:
I ran logwatch at the command line:
logwatch --detail medium --mailto r...@fqdn.example.com
but still no email.
Can you send e-mails using other programs on that machine?
For instance:
$ echo test | mail -s test
I have a bunch of HP BL465c G5 blades, with additional dual-port network
adapters. The onboard interfaces use the bnx2 driver, while the
expansion card uses tg3.
All 4 interfaces are detected by both Anaconda and the installed system,
but Anaconda is reversing the ordering:
Anaconda:
-Original Message-
From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
Behalf Of Ryan Pugatch
Sent: Wednesday, August 19, 2009 5:23 AM
To: CentOS mailing list
Subject: Re: [CentOS] How to tell if I've been hacked?
Christopher Chan wrote:
Scott Ehrlich wrote:
There
Christoph Maser pisze:
Am Freitag, den 21.08.2009, 11:06 +0200 schrieb f...@ll:
Hi,
I was look a yum repository with I add to centos 5.3, where I find
bacula with version 2.4.4 or 2.4.4.1
f...@ll
___
CentOS mailing list
CentOS@centos.org
Also processes you thinkk you DO recognize:
Just for testing how alert my co-workers were, i had a program called
kswapd, just calculating prime-numbers...
They never noticed. ;-)
Without any preperation it's harder. No point in installing tripwire,
activating apparmor/selinux
Rob Kampen wrote:
I am running a 64 bit 5.3 kernel on an intel mb and all has been well.
Today I thought it would be okay to reboot so that the latest kernel was
running - i.e move from 128.2.1 to 128.4.1 release.
The system passes POST fine, grub passes control to the 128.4.1 kernel
and
I'm trying to get public key authentication working on a client to
server connection so i can drop passwords. I've got the keys in place and
confirmed they are working. I'm now trying to set up ssh-agent, I read i can
do it manually i was looking for a more automated method for users on
Michael Klinosky wrote:
Rob Kampen wrote:
I am running a 64 bit 5.3 kernel on an intel mb and all has been well.
Today I thought it would be okay to reboot so that the latest kernel was
running - i.e move from 128.2.1 to 128.4.1 release.
The system passes POST fine, grub passes control to
I noticed a few days ago that I'm not getting my logwatch
emails to the root account any longer, and while I've
definitely been applying updates from base, no other changes
have happened on this box.
I ran logwatch at the command line:
logwatch --detail medium --mailto
Is there any way to get anaconda to load the drivers in a different
order on CentOS 5.3?
A grub param? See the bottom of this:
http://www.science.uva.nl/research/air/wiki/LogicalInterfaceNames?show_comments=1
I am sure a pre or post script might be in order. Dell had a doc I recall, a
quick
On Friday 21 August 2009, Mag Gam wrote:
I was wondering if anyone here has experience with HP MSA60 with P400
and P800 controller. How reliable are they for a 24x7 shop?
We have a few (p800). My opinion is that they're acceptable but not fast.
We've had one flaky controller in 30 controllers
I'm trying to build a bugfixed anaconda package for 5.3 x84_64, but there
are some fairly basic failures, like pkg-config .pc files not being found.
When I modify the spec file accordingly, linking fails because installed
libraries are not found.
$ rpmbuild -ba anaconda.spec
On Friday 21 August 2009, Joseph L. Casale wrote:
We have a few (p800). My opinion is that they're acceptable but not fast.
Heard this a few times now, in the interest of getting something better
next time, what have you found equally reliable but faster?
Nothing as cheap as a full dl185
Am 21.08.2009 um 19:08 schrieb Peter Kjellstrom:
On Friday 21 August 2009, Joseph L. Casale wrote:
We have a few (p800). My opinion is that they're acceptable but
not fast.
Heard this a few times now, in the interest of getting something
better
next time, what have you found equally
Hello
Rainer Duffner wrote:
Am 21.08.2009 um 19:08 schrieb Peter Kjellstrom:
On Friday 21 August 2009, Joseph L. Casale wrote:
We have a few (p800). My opinion is that they're acceptable but
not fast.
Heard this a few times now, in the interest of getting something
better
next time,
On Friday 21 August 2009 17:29:09 Ray Leventhal wrote:
So while I now understand that they've been running on schedule and why
I've not been seeing them...I still am in a bit of a quandry as I would
*like* to receive them.
Should Mailscanner's threshold be addressed or is there something I'm
HI All,
I have a directory tree that when the user un-gzips/untars it does
into /opt by default.
The directory tree is like:
ugui
|
|-- misc files
|-- source
|-framework
|-- misc files
so when unzipped I want to end it with /opt/ugui and all the stuff
below it.
How do I do this?
ML wrote:
HI All,
I have a directory tree that when the user un-gzips/untars it does
into /opt by default.
The directory tree is like:
ugui
|
|-- misc files
|-- source
|-framework
|-- misc files
so when unzipped I want to end it with /opt/ugui and all the stuff
below
On Fri, Aug 21, 2009 at 3:16 PM, ML mailingli...@mailnewsrss.com wrote:
HI All,
I have a directory tree that when the user un-gzips/untars it does
into /opt by default.
The directory tree is like:
ugui
|
|-- misc files
|-- source
|-framework
|-- misc files
so when unzipped
Eugene Vilensky evilen...@... writes:
Hello,
What is the best way to protect multiuser systems from brute force
attacks? I am setting up a relatively loose DenyHosts policy, but I
like the idea of locking an account for a time if too many attempts
are made, but to balance this with
ML wrote:
HI All,
I have a directory tree that when the user un-gzips/untars it does
into /opt by default.
The directory tree is like:
ugui
|
|-- misc files
|-- source
|-framework
|-- misc files
so when unzipped I want to end it with /opt/ugui and all the stuff
Am 21.08.2009 um 21:07 schrieb Joseph L. Casale:
If you really want to go with a HW controller, try Areca or the high-
end 3Ware models.
Well, for non Solaris/non file servers, hardware raid is easiest.
True. Replacing disks is much easier for sure.
I am
hesitant to go with Areca
Joseph L. Casale wrote:
I have always used LSI stuff but found them slow as hell, I am pretty sure
the hp sa's are LSI
chips...
for a server, random IO operations per second is usually more important
than sequential burst read/write. I've found many server RAID cards
excell at IOPS
Everyone,
This morning I received a notice from PayPal that one of our sites got
hacked and was spoofing a PayPal web site.
When I checked the the site, I was surprised to find they were correct.
About 5 days a go we had a server that got hacked and somehow the file
paypal.com.tar got uploaded
At Fri, 21 Aug 2009 12:16:41 -0700 CentOS mailing list centos@centos.org
wrote:
HI All,
I have a directory tree that when the user un-gzips/untars it does
into /opt by default.
The directory tree is like:
ugui
|
|-- misc files
|-- source
|-framework
|-- misc files
On Fri, Aug 21, 2009 at 04:08:43PM -0500, Gregory P. Ennis wrote:
Everyone,
This morning I received a notice from PayPal that one of our sites got
hacked and was spoofing a PayPal web site.
When I checked the the site, I was surprised to find they were correct.
About 5 days a go we had a
Am 21.08.2009 um 23:08 schrieb Gregory P. Ennis:
I have tried to obtain dialog with PayPal about this but they have not
responded to my queries.
Big surprise.
They're like ebay (well, they *are* ebay...).
Only boilerplate responses.
Or nothing.
In their defense, they must get a lot of spam.
Gregory P. Ennis wrote:
P.S. I found the following entry in my error_log of /var/log/httpd/ :
[Sun Aug 16 04:26:19 2009] [info] Server built: Jul 14 2009 06:02:39
--00:21:14-- http://code.go.ro/paypal.com.tar
Resolving code.go.ro... 81.196.20.134
Connecting to
On Fri, 21 Aug 2009, Gregory P. Ennis wrote:
place. I looked like the hacker downloaded his paypal spoof files into
a subdirectory of /var/www/phpmyadmin
I am running 5.3 with all current updates.
and third party software as well.
We do not ship phpmyadmin, and clearly and repeatedly
Am 21.08.2009 um 23:24 schrieb R P Herrold:
On Fri, 21 Aug 2009, Gregory P. Ennis wrote:
place. I looked like the hacker downloaded his paypal spoof files
into
a subdirectory of /var/www/phpmyadmin
I am running 5.3 with all current updates.
and third party software as well.
We do
On Fri, Aug 21, 2009 at 11:29:17PM +0200, Rainer Duffner wrote:
Am 21.08.2009 um 23:24 schrieb R P Herrold:
On Fri, 21 Aug 2009, Gregory P. Ennis wrote:
place. I looked like the hacker downloaded his paypal spoof files
into
a subdirectory of /var/www/phpmyadmin
I am running
Am 21.08.2009 um 23:08 schrieb Gregory P. Ennis:
I have tried to obtain dialog with PayPal about this but they have not
responded to my queries.
Big surprise.
They're like ebay (well, they *are* ebay...).
Only boilerplate responses.
Or nothing.
In their defense, they must get a lot of
On Fri, Aug 21, 2009 at 5:17 PM, Ray Van Dolsonra...@bludgeon.org wrote:
- Keep phpMyAdmin up to date. Best way to do this is to use a
package from a well known repository like EPEL that keeps the
package at the latest version for you.
I've not beaten EPEL up too much on things like
On Fri, Aug 21, 2009 at 5:31 PM, Ray Van Dolsonra...@bludgeon.org wrote:
Nope, but you can take steps to prevent (or make it more difficult) for
people that shouldn't be accessing it from accessing it.
Apache allow from, etc... basic authentication, make sure you're using
HTTPS and selinux.
On Fri, Aug 21, 2009 at 05:34:27PM -0400, Jim Perrin wrote:
On Fri, Aug 21, 2009 at 5:17 PM, Ray Van Dolsonra...@bludgeon.org wrote:
- Keep phpMyAdmin up to date. Best way to do this is to use a
package from a well known repository like EPEL that keeps the
package at the latest
On Fri, Aug 21, 2009 at 5:31 PM, Ray Van Dolsonra...@bludgeon.org wrote:
Nope, but you can take steps to prevent (or make it more difficult) for
people that shouldn't be accessing it from accessing it.
Apache allow from, etc... basic authentication, make sure you're using
HTTPS and
On Fri, 21 Aug 2009 13:21:17 -0500 Ron Blizzard wrote:
I don't know if you can repartition with CentOS as you install, or not
-- I don't think you can. I use Puppy Linux for this. One of its
included utilities is GParted, which is a lot like Partition Magic and
it lets you resize your Windows
On Aug 21, 2009, at 4:17 PM, Ray Van Dolson wrote:
- Keep phpMyAdmin up to date. Best way to do this is to use a
package from a well known repository like EPEL that keeps the
package at the latest version for you.
- Run with SELinux Enforcing
- Protect phpMyAdmin with Basic HTTP
Chris Boyd wrote:
On Aug 21, 2009, at 4:17 PM, Ray Van Dolson wrote:
- Keep phpMyAdmin up to date. Best way to do this is to use a
package from a well known repository like EPEL that keeps the
package at the latest version for you.
- Run with SELinux Enforcing
- Protect
Am 21.08.2009 um 23:58 schrieb R P Herrold:
On Fri, 21 Aug 2009, Rainer Duffner wrote:
Is there an alternative?
mysql at the command line works fine here
So our non-geek customers need not apply ;-)
Because there's no alternative.
There may be no GUI alternative but ignorance needs
Rainer Duffner wrote:
Is there an alternative?
mysql at the command line works fine here
So our non-geek customers need not apply ;-)
Isn't there something in openoffice that hooks to databases these days?
--
Les Mikesell
lesmikes...@gmail.com
On Aug 21, 2009, at 5:47 PM, Gregory P. Ennis po...@pomec.net wrote:
On Fri, Aug 21, 2009 at 5:31 PM, Ray Van Dolsonra...@bludgeon.org
wrote:
Nope, but you can take steps to prevent (or make it more difficult)
for
people that shouldn't be accessing it from accessing it.
Apache
Am 22.08.2009 um 00:37 schrieb Les Mikesell:
Rainer Duffner wrote:
Is there an alternative?
mysql at the command line works fine here
So our non-geek customers need not apply ;-)
Isn't there something in openoffice that hooks to databases these
days?
There might be - but do you
James Pearson wrote:
Karanbir Singh wrote:
On 08/20/2009 01:22 PM, James Pearson wrote:
Is it possible to get an update on the status of 4.8?
its going out to the mirrors right now, Depending on how long they take
to stabalise, we should see release in the next 24 - 48 hrs.
Thanks
Les Mikesell wrote:
Isn't there something in openoffice that hooks to databases these days?
OOo Data, its a report-n-forms app, somewhat analogous to Microsoft
Access. Natively it uses Derby, I think , but it can connect to any
database you have a JDBC driver for and execute SQL
dunno if it is a priority, or if anyone is to concerned, yet wiki.centos.org
does not appear to come up well in ie8
tested fine in firefox, yet ie8 was wacked
ymmv
- rh
___
CentOS mailing list
CentOS@centos.org
I use Symantec’s Norton Partition Magic to carve up the disk, usually into 3
partitions (NTFS for windows, FAT32 for moving files between windows and linux,
and a linux partition).
You’ll need to copy the linux bootloader into the Master Boot Record and then
set it up so you can choose which
thanks barry for i was not sure if i had the right 1
mike
- Original Message -
From: Barry Brimer li...@brimer.org
To: CentOS mailing list centos@centos.org
Sent: Saturday, August 22, 2009 12:56 PM
Subject: Re: [CentOS] ned help on downloading
Pentium(R) D CPU 2.80Ghz
3 GB of Ram
Ok guys
How do i check MD5 SUM in the ISO Directory Mike___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
78 matches
Mail list logo