On Fri, Jan 22, 2016 at 11:02 AM, Ed Heron wrote:
> I'm still running CentOS 5 with Xen.
>
> We recently replaced a virtual host system board with an Intel
> S1400FP4, so the host went from a 4 core Xeon with 32G RAM to a 6 core
> Xeon with 48G RAM, max 96G. The drives
On 01/22/2016 11:11 AM, John R Pierce wrote:
if you can insert a custom Machine Owner Key into this keyring, then
anyone with sufficient ingenuity can, too. which renders the whole
signature thing moot, other than as another step to be cracked.
I'm not sure you understand mokutil. You do
On 1/22/2016 1:23 PM, Gordon Messmer wrote:
On 01/22/2016 11:11 AM, John R Pierce wrote:
if you can insert a custom Machine Owner Key into this keyring, then
anyone with sufficient ingenuity can, too. which renders the whole
signature thing moot, other than as another step to be cracked.
On 1/22/2016 11:00 AM, Eero Volotinen wrote:
It works on linux, it can't be secure?
if you can insert a custom Machine Owner Key into this keyring, then
anyone with sufficient ingenuity can, too. which renders the whole
signature thing moot, other than as another step to be cracked.
--
Que tal todos.
Tengo dos servidores con CentOS 6 instalado en un server DELL con arreglo
RAID, pero desconozco el tipo de arreglo.
Actualmente estos dos servidores se encuentran replicándo su configuración
bajo el esquema de DRBD.
Sin embargo, quisiera implementar un "algo" tipo Plan de
On 1/22/2016 7:04 AM, Gordon Messmer wrote:
On 01/21/2016 11:33 PM, wk wrote:
How can I sign my test.ko for CentOS7.1?
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sect-signing-kernel-modules-for-secure-boot.html
what a
It works on linux, it can't be secure?
:)
Eero
22.1.2016 8.54 ip. "John R Pierce" kirjoitti:
> On 1/22/2016 7:04 AM, Gordon Messmer wrote:
>
>> On 01/21/2016 11:33 PM, wk wrote:
>>
>>> How can I sign my test.ko for CentOS7.1?
>>>
>>
>>
>>
Hi,volotinen:
as it mentioned in your web link:
"Your on the right track your module need to be signed", my question how
to sign test_file_system.ko?
thanks,
w.k.
-- --
??: "eero.volotinen";;
Well, you cannot sign it as you don't have access to signing key? It might
be possible to add keys to secure boot, I am not sure.
Looks like only way to get unsigned modules to work is just disable secure
boot..
Eero
pe 22. tammikuuta 2016 klo 12.40 wk <304702...@qq.com> kirjoitti:
>
On Fri, 2016-01-22 at 14:56 -0600, NightLightHosts Admin wrote:
> On Fri, Jan 22, 2016 at 11:02 AM, Ed Heron wrote:
> > I'm still running CentOS 5 with Xen.
> >
> > We recently replaced a virtual host system board with an Intel
> > S1400FP4, so the host went from a 4 core
On 1/22/2016 2:24 PM, Gordon Messmer wrote:
On 01/22/2016 01:56 PM, John R Pierce wrote:
Sure, if someone has penetrated my IPMI and/or virtualization
management, I'm already in a world of hurt
Exactly. IPMI should be on a dedicated VLAN with a bastion host. No
other systems should have
On Thu, Jan 21, 2016, 10:48 PM wk <304702...@qq.com> wrote:
> Hi,
>
>CentOS7.1, Dell PowerEdge R730xd.
>
>How to check/get UEFI information by shell/bash terminal ? example:if
> UEFI is enabled? if secure boot is enabled?
>
You should find an early kernel message that secure boot is
On Fri, Jan 22, 2016 at 4:54 PM, Ed Heron wrote:
> Yes, but it isn't that simple. One copy of the mirror would be on a
> physical disk. The other copy of the mirror would be on RAM disk.
> Since data in RAM doesn't generally survive reboot, the RAM piece would
> need to be
> Ed Heron wrote:
> Yes, in a test environment, I am mirroring a Logical Volume with a RAM
> disk to increase the perceived speed of the disk. I'm expecting to
> convert a live guest to this type of setup, this weekend.
>
> I was asking 2 questions.
> 1. Should I
On Fri, 2016-01-22 at 16:17 -0600, NightLightHosts Admin wrote:
> > Ed Heron wrote:
> > Yes, in a test environment, I am mirroring a Logical Volume with a RAM
> > disk to increase the perceived speed of the disk. I'm expecting to
> > convert a live guest to this type of
Clonezilla ...
bye
;)
2016-01-22 13:47 GMT-05:00 Gerardo Barajas :
> Que tal todos.
> Tengo dos servidores con CentOS 6 instalado en un server DELL con arreglo
> RAID, pero desconozco el tipo de arreglo.
>
> Actualmente estos dos servidores se encuentran replicándo su
On 01/22/2016 01:56 PM, John R Pierce wrote:
Sure, if someone has penetrated my IPMI and/or virtualization
management, I'm already in a world of hurt
Exactly. IPMI should be on a dedicated VLAN with a bastion host. No
other systems should have access to it at all. The servers, especially,
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
On Thu, Jan 21, 2016 at 6:25 PM, Dennis Jacobfeuerborn
wrote:
> On 21.01.2016 15:44, C. L. Martinez wrote:
>> Hi all,
>>
>> I have installed a CentOS6 lxc guest under a Debian 8.x LXC host. All
>> it is working ok but I can't change the hostname for the centos6 lxc
>>
On Fri, 2016-01-22 at 16:59 -0600, NightLightHosts Admin wrote:
> On Fri, Jan 22, 2016 at 4:54 PM, Ed Heron wrote:
> > Yes, but it isn't that simple. One copy of the mirror would be on a
> > physical disk. The other copy of the mirror would be on RAM disk.
> > Since data
Ed Heron wrote:
> Absolutely, I'll share my real world results. I'm happy that I'm not
> the only person interested in the technique. I'm a little disappointed
> somebody isn't telling me there is a much simpler method of putting my
> database in RAM. The technique is
On 01/22/2016 04:25 PM, John R Pierce wrote:
I do think the whole secureboot thing is a bad idea on a general
purpose computer system, seems like an attempt at creating product
lock in and turning the x86 PC into an appliance, which it really isn't.
mokutil is designed to address that
I'm still running CentOS 5 with Xen.
We recently replaced a virtual host system board with an Intel
S1400FP4, so the host went from a 4 core Xeon with 32G RAM to a 6 core
Xeon with 48G RAM, max 96G. The drives are SSD.
I was recently asked to move an InterBase server from Windows 7 to
On 01/21/2016 11:33 PM, wk wrote:
How can I sign my test.ko for CentOS7.1?
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sect-signing-kernel-modules-for-secure-boot.html
___
CentOS
On 01/22/2016 02:38 PM, John R Pierce wrote:
for that matter, what about a VM running on a service like Amazon AWS
(or pick your virtual server environment) ?AWS provides a remote
console, doesn't it?
AWS doesn't offer UEFI Secure Boot, so I'm not sure how that's relevant.
It seems like
On Fri, 2016-01-22 at 17:39 -0600, NightLightHosts Admin wrote:
> Ed Heron wrote:
> > Absolutely, I'll share my real world results. I'm happy that I'm not
> > the only person interested in the technique. I'm a little disappointed
> > somebody isn't telling me there is a
On 1/22/2016 3:42 PM, Gordon Messmer wrote:
On 01/22/2016 02:38 PM, John R Pierce wrote:
for that matter, what about a VM running on a service like Amazon AWS
(or pick your virtual server environment) ?AWS provides a remote
console, doesn't it?
AWS doesn't offer UEFI Secure Boot, so I'm
27 matches
Mail list logo