In other words, anyone hitting those ports that are not being used at all
except by our sniff protector, would allow instant banning.
So...does something like this exist?
I don't know of a program that specifically listens to defined ports and
acts on that, but fail2ban would accomplish the end
However if you are referring to packet sniffers there is no solid way of
blocking them.
How exactly would I sniff the packets from say my work computer between
someone's home computer and work server?
___
CentOS mailing list
CentOS@centos.org
Is there any way to prevent mail from completed cron jobs for
only say the hourly directory?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
redirect the output to /dev/null
Heh, missed the obvious:)
Thanks,
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
I just got back from a datacenter where I installed a new server running
CentOS 5.3. I set up a software raid with md0 being /. (Only one mount,
didn't split anything up.)
How about /boot? Where's that?
Although I have never done it, you can boot anaconda from grub and I wonder
if you couldn't
Although I have never done it, you can boot anaconda from grub and I wonder
if you couldn't put a ks= as parameter in the grub conf? Setting up software
raid in ks is easy. You can also install via url with ks.
I just did this and it works. A complete grub stanza booted and installed via
url
I have a kickstart file that works for /dev/sda.
I now need to detect an HP server and use /dev/cciss instead of hard
coded /dev/sda.
If you already know where you want the install, simply replace 'sda' or
whatever it was with 'cciss/c0d0' or whatever controller/disc you intend.
jlc
Have any of you used the iSCSI target server in a production environment
yet?
Is NFS and option?
Briefly, but iet has been rock stable for me. It just runs forever...
I have only used NFS under vmware, it worked good.
jlc
___
CentOS mailing list
I am starting with 4 1TB SATA disks.
With RAID 6 that will give me 2 TB right?
R6 on SATA? Been there, it's not pretty. The overhead of that
raid level on that type of disc for vm storage will not be
pretty.
R10 that. Same capacity, way better performance.
jlc,
what has been rock stable?
can you be more specific on the implementaion?
are you saying it or iet
if iet what is that?
;-)
Sorry buddy,
I meant iSCSI Enterprise Target @ http://iscsitarget.sourceforge.net/
This project is fortunate enough to have the developers and some
very bright and
If the line counts are constant you could do the reverse:
grep -B 3 \(E:\|D:\) input.txt | grep Shadow
Now that's cool, each case has to be separate so
grep -B 3 D: input.txt or even the actual volume string for
certainties sake is the ticket!
Thanks Nate and Bill!
jlc
I have almost this same setup running with no problems. Make sure you
have only one default gateway on your server defined on your Internet
facing interface. This should be getting assigned from the DHCP
request to your ISP so make sure you don't have a gateway in your
internal interface.
As
Need some opinions on making a multihomed box more resilient to
failure. This server runs asterisk and performs nat and firewalling
for an office. Its wan nic is plugged directly into a cable modem
and I am stuck with it being configured as a dhcp client. The lan
nic services a small office, and
I need to setup a CentOS box offsite to have a series of files replicated to it.
My problem is this machine won't have Samba on it but I need to replicate the
hierarchy in question in such a manner that I can restore from it and retain
file system permissions.
That's where I am stumped, anyone
Get a port of GNU Tar for MS-Windows and install it and a SSH client on the
Windows Machines. Use GNU Tar + SSH to ship the files. GNU Tar will
preserve the file permissions. Once the tar files land on the remote
(offsite box), unpack the tar file(s) to the local disk.
For the more
Rsync over ssh is usually the best way to replicate files periodically.
Yup, doing it this way already, just need to understand how to maintain
NTFS perms...
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
use ntbackup on the windows machine to create .bkp file, then copy that
to the DR backup with scp or rsync or whatever.
I looked at that initially, but the incremental was huge for some reason
and the bandwidth needed over the link was more than we could provision
for.
File by file would
http://setacl.sourceforge.net/
Yeah, I thought of using the MS reskit utils as I have logon
scripts which already make use of them and through those I see
you can backup acls to a txt file but the thought of restoring
some of the data and then selectively applying a backed up acl
would be
I have an issue, although it's a result of sketchy code in the sip
implementation
in Asterisk that's been around forever, I am sure I am going to have to fix it
some other
way as many people have waited with no fix yet from Digium.
If a name resolution fails for a remote sip peer, the entire
Anyone know of an OS/Software inventory tool that supports Linux and Windows
that is agentless?
Thanks,
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
If it is agentless how does it gain the information?
With a login with appropriate local rights, for example on
the windows clients a wmi query can return everything you need.
___
CentOS mailing list
CentOS@centos.org
I need a little help, trying to search for a line that begins with /dev
and ends with a single digit that I will choose, like 5. I can search for
^/dev and 5$ but I am having trouble forming the combined search pattern
using egrep.
Any ideas?
Thanks!
jlc
/dev.*5$
Thanks, I don't know what I was thinking. Been looking at this script
too long and I wanna go home:) I got it anyway with grep '^/dev.*1$'
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Wouldn't that match something like /dev/sda11 ? I tried a few
variations though didn't figure out the exact syntax(so used to
perl regex) to match exactly 1 number at the end of the line.
Yup, but the script cleans the disc and makes 6 partitions so I
am safe. OTOH, there is a portion which
- Does CentOS 5.3 work smoothly with HP DL380 server especially
recognizing SAS disks and hardware RAID-1 features? From you
experience, do you have to use HP Storage Drivers provided for
RedHat Enterprise Linux 5?
I have a few of those G5's and they will work fine, CentOS has
the needed drivers.
I installed inotify and incrond to watch a directory and set the
job as '/mnt/dir IN_ATTRIB chmod 0660 $@/$#' which worked very well
except that as expected, IN_ATTRIB is to broad of a watch class as it
caused an enormous amount of contention with the filemonitor and/or
db server and the client
After the client exits the data base with the QB
client the files are changed and the client can't work with them.
Actually, they can but they can't delete files when they make test
companies for example.
The changes are being done on the Linux side by gamin (filemon).
I do question what would
I used the example 2 in the inotifywait manpage as the starting point
for my script. Using the close_write, create move events worked well
for me. Looked at incrond - seemed overkill/overcomplicated - chose not
to use it.
But if it's fighting with something else in the background trying to do
I've handled these kind of complex samba rights problems by either using
acls or if it's particularly thorny, an inotify script - needs
inotify-tools-3.13-1.el5.rf.
Nice tool! That's far more elegant than what I had planned.
Thanks!
jlc
___
CentOS
I have a directory shared out via Samba for Quickbooks and seem
to have some issues with permissions. The directory being shared
is a subdirectory in an ext3 partition being mounted with the acl
option.
It has been setup as follows:
chown root:DOMAIN\AD_Group /mnt/Intuit_Data/
chmod
You probably want to look at the ``force user'' and/or ``force group''
Well, I would need ``force group'', but I tried that with an AD group and
it didn't work? I will dig into this again and see what went wrong.
(or look for a Real Accounting(tm) package in place
of QB :-).
Don't even get me
I don't think that would even solve the problem because gamin reports to
QB and then QB makes the changes as per the FAM docs which is the older
of gamin.
http://oss.sgi.com/projects/fam/doc.html
There is no explicit docs on gamin on the gnome site. They refer to FAM
as the per the documentation.
If you find out please tell us what the secret is. I'd love to know.
I finally got it working. I am not sure if lsb is truly required, but
reading the init scripts suggested it might need it and I never had it
installed so I installed it. There is also two versions of the db mangler
18 is for
I'm experimenting with using WinXP Xen guests as an alternative to
upgrading workstations. The administrative advantages seem overwhelming.
Using the beta opensource parvirt drivers? Performance would be unacceptable
otherwise. On that note, my environment would not permit the unstable nature
I am interested in the multiple connections allowed with VNC for support
type console sharing. When connected with RDP, the console of the VM has a
login screen, so you can't use VNC to the console at the same time as a RDP
connection...
Remote Assistance parallels the behavior you're after
We threw in the towel on this POS and just purchased a full XP license
to run under VMWare to host it.
I am getting there, trust me:) I can't believe support! Just useless.
Their forums are filled with equally upset people, but one of the list
members has contacted me and hopefully I can see what
Anyone running this POS on CentOS and can spare some info? Support
is useless, and it's just not working:)I am not getting a qbdir.dat
file created, and the error log is, well, empty!
jlc
___
CentOS mailing list
CentOS@centos.org
Looking at https://bugzilla.redhat.com/show_bug.cgi?id=469401
has me a bit unsure about the kmod for 5.3's kernel, is not expected
to appear?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
xfs kmod's for centos-5 have so far been done within the centos loop,
but this is interesting - looks like 5.4 might have a tech-preview for
xfs included in.
I never thought of that given that they come from the plus repo. So its only
a matter of time then before it appears for the 5.3 kernels...
You can remove them with rpm -e pkgnames --nodeps and then reinstall
them with yum. I had to do this recently with some strangeness that was
goign on with kpartx and device-mapper-multipath of al things.
# rpm -i --replacepkgs rpm-file is possibly safer in some scenarios.
Depending on what you
I just want to re-install ?
How do I do that?
Fetch rpm's, man rpm, you'll see options to --force,
--replacefiles, --replacepkgs etc...
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
What am I doing wrong?
Running SELinux?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Just started using mock to rebuild some srpms. I have two I want to
rebuild, problem is the first creates a dep that is required by the second.
Is there an automated way to populate an additional repo/cache that mock
would look at when building the second so I could queue both?
Although I
I've got a shell script that takes a list of packages.
The script defines a destination directory.
Before it builds a package, it removes any repo stuff in that directory
and runs createrepo on it.
The destination directory is part of the mock configuration file.
It then builds the package and
When booting the 5.3 i386 netinstall iso and performing a
ks install, the server pauses for a very long time at the
Retrieving images/stage2.img screen and the apache log
where the http served tree exists shows it looking for:
...File does not exist: /var/www/html/CentOS/images/product.img
...File
I can do a yum update in my post kickstart (which is what I am doing now
actually).
Maybe a better way to do this...
However, I want to save network time at installations.
If I copy down the files from centos/5.3/updates/x86_64/RPMS
and place them in a directory local on my network,
can I just
How can I write to the end of a disc such as dd would with a large seek
quickly instead of reading/seeking to the end?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
quickly instead of reading/seeking to the end?
Use
seek=bytes
See
man dd
That doesn't do it quickly. It still reads through n bytes until
it reaches the specified value which makes it equally painful as
just dd'ing the whole device.
At any rate, the objective was to clear out
I would say that people know that 5.2 work and looking at changelogs,
they don't see a real NEED to install 5.3. I personally always have
the newest release though.
What happens to their 5.2 the first time they use yum?
___
CentOS mailing list
I have setup postfix on my server (for my blog to send out emails)
however I host my email on google apps. I want my server to be able
to send emails towards my GoogleApps account but it's sending it to
the user within the system (I know this is normal but I need it to be
a bit different).
So you
I need a new pda/smart phone that allows me to do some remote admin.
Anyone know of anything that I can run a vpn and cli/ssh with?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
What specific (if any) VPN-client would you need?
Cisco pix, I'll look at an iPhone again...
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Folks, be sure to do an updatedb and then locate rpmsave and rpmnew
after upgrading the system. Then you can make sure your local changes
get propagated into the updated system.
If the case is a file gets overwritten, and not a case of a file gets
copied to a new one called *.rpm{save|new}
How in earth can I get myself out of this??
Press the power button once quicly and let it reboot. At
the grub timer countdown hit esc. Press e to edit, move
the cursor down to the middle line and press e, add a s
on the end, press b to boot.
Once you're at a prompt, type passwd, then read.
Which is why I should password protect grub on my desktop -- have done so now
on my laptop.
Don't bother, that's the dumbest feature I ever saw. You can edit the password
out of the grub
line to...
___
CentOS mailing list
CentOS@centos.org
I rebooted, got the blue Centos screen
Enter to edit
Line 2 Kernel/vmline-2.6.18
hit e
gvo100 rhgb quite
added an s (quites) Enter
then at a later try also added the b (quitesb)
Huh? On that line that starts with kernel, such as:
kernel /vmlinuz-2.6.18-92.1.18.el5 ro
Anyone used authconfig to join a CentOS box to an AD Domain?
I can't for the life of me get this command to even execute without
error?
Looking at the tui which I can make work, I am trying to glean possible
settings from it but have no luck. Although krb5 auth is disabled and winbind
is enabled,
The windows driver directory PRINT$ can take a little work to get
setup properly, but after it's setup right you install drivers there
from a Windows client as if it were any other print server.
Ross,
Took the long ugly way around this and used the nix commands to import
and assign drivers
I need a little help on this problem, please? I include
my /etc/apcupsd/apcupsd.conf file is attached.
Ok
port 3551 udp/tcp has
been added to the (running) firewall.
Are you attempting to run the agent on a machine *without*
the ups comm connected to it, such that it will receive status
from
A while ago I looked into this and was told not to bother as it was a
hack at best. Anyone shed any reliable info on creating a print server
for windows nt - vista clients both x86 and x46 for a few Canon and
HP IP Printers.
Would this be reliable, are there any caveats or issues to be aware of?
It just needs a working cups and samba install to get it working. I run
several linux print servers for windows clients, including driver installs.
What/How do you handle authentication/perms for the printers?
The only real problem I had was right before service pack 3 came out for XP.
Some
The non-standard port is a good trick,
Here's just an opinion: Security by obscurity only
makes you feel good, it does nothing in reality.
Anyone sufficiently talented to hack a service in
order to gain root or do something useful would not
be fooled by that. Set whatever your doing up right
so
I think that's a nice example of pervasive fallacious binary thinking,
combined with an old tired slogan that by all rights should be dead by now.
Ok...
By the same token, we should not use firewalls, because they can be
circumvented by people who are skilled enough, nor use passwords,
I heard that for best performance, the -no-acpi option is recommended.
Maybe that's only an issue with other versions of Windows/KVM. Can
anyone confirm?
Windows Vista/2008 requires ACPI. It won't run w/o.
jlc
___
CentOS-virt mailing list
+ /home/drew/bin/MegaCli -AdpPRSetDelay 168 -a0
^MInvalid input at or near token -AdpPRSetDelay
Doesn't like the syntax
Looks like the manual is outdated, you should have
ran a -h :)
Turns out this is the correct syntax:
MegaCli -AdpPR -Dsbl|EnblAuto|EnblMan|Start|Stop|Info|{SetDelay Val}
I have loaded cinelerra from rpmforge but I'm having a really hard time
getting the avi to even show up in it.
I don't know cinelerra, and if you can believe, I don't have a single CentOS
box w/ a desktop heh but I would presume you have to demux the audio and video
into separate files as that is
Life is much better now that I'm using -h instead of the manual.
I have a new question about policies
Direct and DisDskCache makes sense
Cached and EnDiskCache makes sense
not so sure about
Directand EnDskCache
Cached and DisDsk Cache
Do they make sense?
I believe Cached|Direct refers
The manual IS sloppy.
missing - characters in the syntax
Tryijng to figure out -Val syntax
megacli AdpPRSetDelay -Val
-aN|-a0,1,2|-aALL
+ /home/drew/bin/MegaCli -AdpPRSetDelay 0 -a0
Invalid input at or near token -AdpPRSetDelay
Tried sticking a - in front of the zero.
I bet you didn't learn the syntax from the manual.
I'll bet you inherited some scripts from someone else,
and learned by tweaking working scripts.
Uhm, I learned from the manual. I am tempted to fire one
up and just figure it out...
___
CentOS mailing
Drives are not consistent with Disk Group.
Doesn't look like it liked the way I specified the mirrors!
I really can't remember, but for some reason I think in the GUI
you span then mirror, but in the cli you do it one pass. Dump the
two ld's and try that command over.
I really can't remember,
There is a MegaCLI command line interface that runs under the operating
system. Normally I prefer command line tools. But this software is big,
and complex. All I have been able to find is a reference manual,
that has lots of typos and is not very well organized for me to learn
what I need to
Right now I only have to do this for VMWare's drivers, I
build custom RPMs of the drivers and the tools and push
them out when I push out a new kernel so I don't need to
worry about this kind of thing.
That's a cool idea...
Care to share those two spec files? :)
jlc
This wasn't the SW for me to try to roll my own RPM with, since the
Source code wasn't available to me, etc.
You don't need source to make an rpm. You can simply use an rpm as an
organized way to distribute and keep track of files that are installed.
jlc
Have you tried to delete locally, instead of over NFS?
As I said, the deletes are done locally via ssh.
Have you tried the unlink command instead of rm ?
Nope, but I will now!
Thanks,
jlc
___
CentOS mailing list
CentOS@centos.org
I don't think we can use this new MB since the Realtek 8111C does not seem to
be
supported (well)
You can make that work, someone just posted a link to an alternative sk98lin
module
to the atrpms one a few weeks ago.
Realtek nics are crap anyway, but given the mobo, I don't think critical
Try the data=writeback option which emulates the way XFS handles log
operations. With UPS and/or battery backed caching controller the risk
should be minimum.
That will help, but ext3 is not good at handling large files at all,
so if you can switch to XFS that will make a bigger
When I try to
start the ups daemon, I get the below error:
ups failed. The error was: Starting UPS driver controller: [FAILED]
Starting upsd: [FAILED]
Starting UPS monitor (master): [FAILED]
I have never used NUT before, I just knew it existed. Apcupsd has
always done what I need but I would
I have an issue with a busy CentOS server exporting iSCSI and NFS/SMB shares.
Some of the files are very large, and when they get deleted IO climbs to an
unacceptable rate. Is there a way to purge a file with little to no IO
overhead on ext3?
Thanks!
jlc
I need to do a
simulated power failure, to verify that it will in fact shutdown the
box after 2 minutes!
Plug the PC into a stable power source, let the same PC monitor the UPS.
Unplug the UPS and place a load on it, watch what it instructs the PC to
do :)
Check your halt scripts for a command
Is it the ext3 or the exports. M
It's on the ext3 fs when rm'ed locally via ssh (I export some ext3
fs's over NFS and SMB).
1) What is the local storage on (controller, disks, raid, etc)
HP MSA20 (scsi = sata discs)
2) Does the IO go up if you do the delete locally, remotely or both
3) What is
I tried yum install winpower and the
response was no package winpower available (rpmforge is one of the
yum repositories I use, so it's not there, with that name).
It's not, but that search method could be expanded:
# yum list \*winpower\*
# yum list \*win\*
# yum list \*win\* |grep -i you get
Thank you. I will give apcupsd a shot. We don't have any APC units,
but, possibly, it will work with our UPS. If not, I will try to get
WinPower running properly. I will also try your suggestions for
searching with yum.
I forgot to mention Network UPS Tools (NUT). That also works with many.
jlc
Apcupsd apparently runs with some of the UPS not made by APC, but
looks like it will not work with mine. Here's what's in the Service
data for apcupsd:
apcupsd (pid 6568) is running...
Error contacting host localhost port 3551: Connection refused
That doesn't mean it can't contact your ups, that
I've got the package below installed now. Is that the right one?
No
Running Transaction
Installing: perl-UPS-Nut # [1/1]
Installed: perl-UPS-Nut.noarch 0:0.04-1.el5.rf
Complete!
Slow down a bit son, anything with a Perl- in the front is, well, a perl
Anyone know how I can do this w/o rsync? We have a large
mirror we made with wget, but I don't see how to prevent
wget from fetching anything it has already?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
I need to setup HylaFax which leads to my first question, anyone
got an opinion on whether or not to use HylaFax or HylaFax+?
Also, I have to setup a Digi serial port server for an external fax modem.
Any reco's on a robust unit that won't need to be reset often?
Thanks!
jlc
OOPS! My first reply ignored the fact you wanted an inventory. I
presume you mean a snapshot that you can use for a diff?
That was misleading, sorry :)
You and Bill's solution will be perfect.
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
I'm trying to find a CentOS 5 x86_64 video driver for an Intel
DG965WHMKR mobo to support 1680X1050 resolution. There appears to be
nothing at Intel - or anywhere else that I can find.
Anyone know where I can find one?
That 965 mobo uses the X3000 IGA, so you can prolly add rpmforge and
install
Ok, here are the default settings that my kickstart file creates to
allow me to join the domain and have samba manage the keytab.
Ross,
I was out of town and missed this thread which is of great interest to me
as well. When you say have samba manage the keytab do you mean not use one
as have a
Too bad. However, based on your information I found this on Google:
http://sivel.net/2007/05/sso-apache-ad-1/
Thanks Filipe. Now I guess I can have a crack at this too.
I haven't tried this one, but make note it lacks NTLMv2 and group support
which made it non usable in my environment. Like
Here's your problem. :)
Microsoft do things their own way and assume that's how everybody likes
it.
That's funny, I am using OL as well, and I don't have a problem with
headers/footers or Microsoft trying to tell me to do anything? In fact
I have no problem with any of our MS infrastructure.
I did some reading about Cinelerra last night and they call it Render
or Rendering, when you are finished editing and want to Save. They
save the video and audio files separately. I guess that's how we are
able to see some programs on DirectTV in English or in Spanish
And, movies on DVDs.
Still not sure why it produces an .xml
file instead of .avi or something else, but if I RFM, I will probably
figure that out.
Welcome to Non-linear video editing, I haven't read up on Cinelerra but
it saves an xml file since while you are working in a project, you are
not touching your data.
However, knoppix refuses to let me
write to either my usb hdd or usb pendrive. Does anyone know how to
persuade it?
Remount rw as root?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
(Most lists have reply-to set to the individual, not
the list)
So apparently Directors *and* ordinary list members make
mistakes. Ohh the irony :)
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
I have a bind server running that cannot resolve www.atbfinancialonline.com.
I turned on debug 10 in the named.conf and start up dig on it, but dig just
times out, what else can I do to see why exactly it won't resolve this?
Thanks!
jlc
___
CentOS
Check what name severs are hosting the domain and try resolving
directly from them.
atbfinancialonline.com name server dns1.cidc.telus.com.
atbfinancialonline.com name server dns2.cidc.telus.com.
vbg I shoulda done that:) Yup, so it's only resolving from cache
for those that did hit it I see.
The wiki has a long procedure for installing Sun JDK 1.6 but not JRE.
What's the benefit to installing the JDK this way (repackaging it)?
Thanks!
jlc
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
We are moving all our (limited and badly organized) documentation to a wiki.
Anyone got any examples/pointers to a hierarchy that made logical sense? We
are hoping to move everything from topology to application specific notes in
to the wiki. Given the size of this task, I only want to do this
OK - well, I am pretty much sold on Alfresco but I can't guarantee that
it will do the SSO with FF - it definitely will do AD and I think kicks
Viewpoint butt.
Nice interface, do I understand this right: the only community version is
a dev snapshot, and it needs java (shudder)?
I just started
501 - 600 of 972 matches
Mail list logo