Re: [CentOS-virt] CentOS-6.0 and LXC

2011-07-19 Thread Nenad Opsenica 


Always Learning wrote:
 On Tue, 2011-07-19 at 08:22 +1000, Matt Paine wrote:

   
 As far as I am aware, KVM uses the cpu hardware to run completely
 different operating systems independently of the host.


 LXC is similar to Linux-VServer, or virtuozzo, where you are always
 running a base kernel, and can run multiple init's at the same time.

 ...
 

 Thank you for your explanation. It is most helpful. To summarise what I
 think is correct: One can run multiple LXC containers, each containing
 an identical version of the main host operating system but processes are
 separate from the others. KVM creates a type of 'container' allowing
 different host operating systems to run in that container.

 Can one run inside a LXC container a KVM ?

 Can one run inside a KVM some LXC containers ?

 Or is the simultaneous usage on the same machine of LXC and KVM mutually
 exclusive or incompatible ?

 Thank you again.
   
I have no experience with LXC, but I have been running Linux-Vserver 
inside KVM container, without any problem. I suppose that it is the same 
with LXC.

Running KVM inside LXC I haven't tried, but if it is possible I still 
think it is not such a good idea. Any disturbance in some of the LXCs 
will make problem to others (e.g. kernel driver crash will reflect on 
all LXCs and, therefore, all KVMs).

I think that running LXC/Linux-Vserver inside KVM machine is a great 
tool to light virtualize several small servers inside one large KVM.

Regards,

Nenad

___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] CentOS-6.0 and LXC

2011-07-19 Thread Matt Paine 
Hi Paul. See my un-educated comments inline :)


On 19 July 2011 08:59, Always Learning cen...@u6.u22.net wrote:


 On Tue, 2011-07-19 at 08:22 +1000, Matt Paine wrote:

  As far as I am aware, KVM uses the cpu hardware to run completely
  different operating systems independently of the host.
 
 
  LXC is similar to Linux-VServer, or virtuozzo, where you are always
  running a base kernel, and can run multiple init's at the same time.
 
  ...

 Thank you for your explanation. It is most helpful. To summarise what I
 think is correct: One can run multiple LXC containers, each containing
 an identical version of the main host operating system but processes are
 separate from the others. KVM creates a type of 'container' allowing
 different host operating systems to run in that container.


If can try to clarify my understanding, LXC is process isolation. basically
the kernel is shared between the containers. (not specifically the entire
host operating system, just the kernel).

KVM will need to be explained by someone else, the only understanding I have
with this is it relies on virtualisation in the processor to switch between
os's. With the benifit being you can run M$Windows if you want to.

There is no way to run windows with LXC.


Can one run inside a LXC container a KVM ?


If the guest container have the correct privileges, then I would assume so.
But I would suggest this would be a messy way to do things, and breaks the
whole container concept. The processes in the container are ment to be
'contained' yet to get the correct kernel priveleges to do complete KVM
switching would be to open up the entire container to the rest of the system
(if thats even at all possible, it may not be! The kernel may not provide
the correct privileges to do KVM virtualisation within a LXC guest)


Can one run inside a KVM some LXC containers ?


This one I would say definitely. Since you are running a completely new
kernel, I cant see a reason why you couldn't provide an LXC kernel to run
within a KVM guest. But theres a bit of guessing here as well :)



 Or is the simultaneous usage on the same machine of LXC and KVM mutually
 exclusive or incompatible ?

 Thank you again.



 --
 With best regards,

 Paul.
 England,
 EU.


 ___
 CentOS-virt mailing list
 CentOS-virt@centos.org
 http://lists.centos.org/mailman/listinfo/centos-virt

___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] CentOS-6.0 and LXC

2011-07-19 Thread SZ Quadri 
On Tue, Jul 19, 2011 at 4:29 AM, Always Learning cen...@u6.u22.net wrote:


 On Tue, 2011-07-19 at 08:22 +1000, Matt Paine wrote:

  As far as I am aware, KVM uses the cpu hardware to run completely
  different operating systems independently of the host.
 
 
  LXC is similar to Linux-VServer, or virtuozzo, where you are always
  running a base kernel, and can run multiple init's at the same time.
 
  ...

 Thank you for your explanation. It is most helpful. To summarise what I
 think is correct: One can run multiple LXC containers, each containing
 an identical version of the main host operating system but processes are
 separate from the others. KVM creates a type of 'container' allowing
 different host operating systems to run in that container.

 Can one run inside a LXC container a KVM ?

 Can one run inside a KVM some LXC containers ?

 Or is the simultaneous usage on the same machine of LXC and KVM mutually
 exclusive or incompatible ?


It may not be exactly like LXC but you can also have a look a OpenVZ.
I have been using it on many servers for years with no problems. It is quite
lightweight and easy to use.
I think you can run OpenVZ inside KVM as well.

- SZ Quadri
___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

[CentOS-virt] qemu-kvm -snapshot

2011-07-19 Thread Andrea Chierici 
Hi,
I am trying to benchmark disk I/O performance on VM running with 
-snapshot option enabled.
In order to do that I specify cache=none in the -drive parameter (yes I 
am running qemu-kvm at command line0.
The problem is that if I use this option kvm seems to ignore the 
cache=none directive and I get weird output from iozone (I/O values are 
better than on the real machine, indicating that caching is enabled). 
The same command line, without -snapshot gives a correct output.

Has anyone a clue about that? I succeeded in disabling cache in the past 
(with -snapshot enabled), but apparently this is not working anymore and 
I can't explain why.

If this can help, here is the command line I am using:

/usr/libexec/qemu-kvm  -m 2048 -smp 1 -name test-1 \
-boot c -drive 
file=/var/lib/libvirt/images/test-1.img,if=virtio,index=0,boot=on,cache=none 
\
-net nic,macaddr=54:52:00:37:a9:eb,model=virtio -net tap \
-vnc 127.0.0.1:10 -k en-us -snapshot 

the host is running centos5 and all latest updates are applied.

Cheers,

Andrea

-- 
Andrea Chierici - INFN-CNAF 
Viale Berti Pichat 6/2, 40127 BOLOGNA
Office Tel: +39 051 6092809 
ICQ#2328798, MSN#ataruzatgmail.com, Skype#ataruz
--

___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] Suggestions to improve this minimal kickstart config for CentOS 6?

2011-07-19 Thread Kartik Subbarao 

On 07/19/2011 12:36 PM, Kartik Subbarao wrote:
 rpm -e $(rpm -qa |grep -i firmware)

This should be changed to:
rpm -e $(rpm -qa | grep -i firmware | grep -v kernel-firmware)

Since apparently kernel depends on kernel-firmware.

-Kartik

___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS-virt] Suggestions to improve this minimal kickstart config for CentOS 6?

2011-07-19 Thread Manuel Wolfshant 

On 07/20/2011 12:15 AM, Kartik Subbarao wrote:

On 07/19/2011 12:36 PM, Kartik Subbarao wrote:

rpm -e $(rpm -qa |grep -i firmware)

This should be changed to:
rpm -e $(rpm -qa | grep -i firmware | grep -v kernel-firmware)

Since apparently kernel depends on kernel-firmware.
Try the attached ks.  It installs around 180 packages. libselinux-utils 
is in because I find it mandatory to be able to modify the selinux 
configuration of an existing system.


There are a few packages left which can be removed if you insist:
- the firmware packages if you do not use that specific hardware ( 
atmel, brocade, qlogic ).
- yum-presto if you prefer to always download full rpm packages instead 
of deltas

- which, acl, attr


install
text
reboot
#cdrom
url --url http://wolfy/centos/os/x86_64/
lang en_US.UTF-8
keyboard us
skipx
network --device eth0 --bootproto dhcp
rootpw --iscrypted  $PUTYOURENCRYPTEDPASSWORDHERE
firewall --enabled
selinux --enforcing
authconfig --enableshadow --enablemd5
timezone Europe/Amsterdam
bootloader --location=mbr
# The following is the partition information you requested
# Note that any partitions you deleted are not expressed
# here so unless you clear all partitions first, this is
# not guaranteed to work
clearpart --all --initlabel
part /boot --fstype ext3 --size=250
part pv.2 --size=5000 --grow 
volgroup VolGroup00 --pesize=32768 pv.2
logvol / --fstype ext4 --name=LogVol00 --vgname=VolGroup00 --size=1024 --grow
logvol swap --fstype swap --name=LogVol01 --vgname=VolGroup00 --size=256 --grow 
--maxsize=512
repo --name=updates --baseurl=http://PATHTOAVALIDREPO

%packages --nobase --excludedocs
coreutils
yum
rpm
e2fsprogs
lvm2
grub
openssh-server
openssh-clients
dhclient
yum-presto
-atmel-firmware-1.3-7.el6.noarch
-b43-openfwwf-5.2-4.el6.noarch
-cronie-1.4.4-2.el6.i686
-cronie-anacron-1.4.4-2.el6.i686
-crontabs-1.10-32.1.el6.noarch
-ipw2100-firmware-1.3-11.el6.noarch
-ipw2200-firmware-3.1-4.el6.noarch
-ivtv-firmware-20080701-20.2.noarch
-iwl1000-firmware-128.50.3.1-1.1.el6.noarch
-iwl3945-firmware-15.32.2.9-4.el6.noarch
-iwl4965-firmware-228.61.2.24-2.1.el6.noarch
-iwl5000-firmware-8.24.2.12-3.el6.noarch
-iwl5150-firmware-8.24.2.2-1.el6.noarch
-iwl6000-firmware-9.176.4.1-2.el6.noarch
-iwl6050-firmware-9.201.4.1-2.el6.noarch
-libertas-usb8388-firmware-5.110.22.p23-3.1.el6.noarch
-xorg-x11-drv-ati-firmware
-mysql-libs-5.1.47-4.el6.i686
-postfix-2.6.6-2.el6.i686
-rt61pci-firmware-1.2-7.el6.noarch
-rt73usb-firmware-1.8-7.el6.noarch
-sudo-1.7.2p2-9.el6.i686
-sysstat-9.0.4-11.el6.i686
-yum-utils-1.1.26-11.el6.noarch
-zd1211-firmware-1.4-4.el6.noarch
-info
-system-config-firewall-base
%end
%post
%end
acl-2.2.49-4.el6.i686
aic94xx-firmware-30-2.el6.noarch
atmel-firmware-1.3-7.el6.noarch
attr-2.4.44-4.el6.i686
audit-2.0.4-1.el6.i686
audit-libs-2.0.4-1.el6.i686
authconfig-6.1.4-6.el6.i686
basesystem-10.0-4.el6.noarch
bash-4.1.2-3.el6.i686
bfa-firmware-2.1.2.1-2.el6.noarch
binutils-2.20.51.0.2-5.11.el6.i686
bzip2-1.0.5-6.1.el6.i686
bzip2-libs-1.0.5-6.1.el6.i686
ca-certificates-2010.63-3.el6.noarch
centos-release-6-0.el6.centos.2.i686
checkpolicy-2.0.22-1.el6.i686
chkconfig-1.3.47-1.el6.i686
coreutils-8.4-9.el6.i686
coreutils-libs-8.4-9.el6.i686
cpio-2.10-9.el6.i686
cracklib-2.8.16-2.el6.i686
cracklib-dicts-2.8.16-2.el6.i686
curl-7.19.7-16.el6.i686
cyrus-sasl-lib-2.1.23-8.el6.i686
dash-0.5.5.1-3.1.el6.i686
db4-4.7.25-16.el6.i686
db4-utils-4.7.25-16.el6.i686
dbus-glib-0.86-5.el6.i686
dbus-libs-1.2.24-3.el6.i686
device-mapper-1.02.53-8.el6.i686
device-mapper-event-1.02.53-8.el6.i686
device-mapper-event-libs-1.02.53-8.el6.i686
device-mapper-libs-1.02.53-8.el6.i686
dhclient-4.1.1-12.P1.el6.i686
diffutils-2.8.1-28.el6.i686
dracut-004-32.el6.noarch
dracut-kernel-004-32.el6.noarch
e2fsprogs-1.41.12-3.el6.i686
e2fsprogs-libs-1.41.12-3.el6.i686
efibootmgr-0.5.4-8.el6.i686
elfutils-libelf-0.148-1.el6.i686
ethtool-2.6.33-0.3.el6.i686
expat-2.0.1-9.1.el6.i686
file-libs-5.04-5.el6.i686
filesystem-2.4.30-2.1.el6.i686
findutils-4.4.2-6.el6.i686
fipscheck-1.2.0-4.1.el6.i686
fipscheck-lib-1.2.0-4.1.el6.i686
gamin-0.1.10-9.el6.i686
gawk-3.1.7-6.el6.i686
gdbm-1.8.0-36.el6.i686
glib2-2.22.5-5.el6.i686
glibc-2.12-1.7.el6.i686
glibc-common-2.12-1.7.el6.i686
gmp-4.3.1-7.el6.i686
gnupg2-2.0.14-4.el6.i686
gpgme-1.1.8-3.el6.i686
grep-2.6.3-2.el6.i686
grub-0.97-68.el6.i686
grubby-7.0.15-2.el6.i686
gzip-1.3.12-18.el6.i686
hwdata-0.233-1.el6.noarch
info-4.13a-8.el6.i686
initscripts-9.03.17-1.el6.centos.i686
iproute-2.6.32-10.el6.i686
iptables-1.4.7-3.el6.i686
iptables-ipv6-1.4.7-3.el6.i686
iputils-20071127-13.el6.i686
kbd-1.15-11.el6.i686
kbd-misc-1.15-11.el6.noarch
kernel-2.6.32-71.el6.i686
kernel-firmware-2.6.32-71.el6.noarch
keyutils-libs-1.4-1.el6.i686
krb5-libs-1.8.2-3.el6.i686
less-436-4.el6.i686
libacl-2.2.49-4.el6.i686
libattr-2.4.44-4.el6.i686
libblkid-2.17.2-6.el6.i686
libcap-2.16-5.2.el6.i686
libcap-ng-0.6.4-3.el6.i686
libcgroup-0.36.1-6.el6.i686
libcom_err-1.41.12-3.el6.i686
libcurl-7.19.7-16.el6.i686

Re: [CentOS-virt] Suggestions to improve this minimal kickstart config for CentOS 6?

2011-07-19 Thread Dennis Jacobfeuerborn 
On 07/19/2011 11:36 PM, Manuel Wolfshant wrote:
 On 07/20/2011 12:15 AM, Kartik Subbarao wrote:
 On 07/19/2011 12:36 PM, Kartik Subbarao wrote:
 rpm -e $(rpm -qa |grep -i firmware)
 This should be changed to:
 rpm -e $(rpm -qa | grep -i firmware | grep -v kernel-firmware)

 Since apparently kernel depends on kernel-firmware.
 Try the attached ks. It installs around 180 packages. libselinux-utils is
 in because I find it mandatory to be able to modify the selinux
 configuration of an existing system.

 There are a few packages left which can be removed if you insist:
 - the firmware packages if you do not use that specific hardware ( atmel,
 brocade, qlogic ).
 - yum-presto if you prefer to always download full rpm packages instead of
 deltas
 - which, acl, attr

Interesting. I'm also experimenting with a minimal kickstart and without 
the system-config-firewall-base package I can no longer login. Apparently 
the login succeeds but I immediately get thrown back to the login prompt. 
As soon as I add that package everything is fine again.

Regards,
   Dennis
___
CentOS-virt mailing list
CentOS-virt@centos.org
http://lists.centos.org/mailman/listinfo/centos-virt

Re: [CentOS] CentOS 6 - VM network bridge issue

2011-07-19 Thread James Hogarth 
 I built a CentOS 6 machine to host several CentOS 6 guest servers. As all
guests will be Internet facing I set up the host with two bridged NICs and
assigned an Internet facing IP address to br0 and a local IP address to br1.

 Each guest was installed using br0 and br1 with virtio drivers.  On each I
assigned an Internet facing IP address to eth0 and a local IP address on
eth1.  So far so good.  I can access the guest servers from either IP
address as expected.  That is HTTP, SSH and SMTP servers on them are
accessible and do what they are supposed to do.

 Except...  Except from any location outside of my Comcast Cable Modem.  To
be clear, from any machine inside the modem to any address on the guests,
all works perfectly.  But outside the modem the guest apps either don't
receive packets or for some reason don't respond, and I've tired it from
four different locations.

 Using Wireshark on the guests I can see the packets arrive from the
outside sources, but no response is seen.  On accesses from inside I can see
both incoming and outgoing packets, as expected.

 I can ping the outside sources from the guests, yet pings from the outside
sources get no response from the guests.  All the outside sources get
responses when pinging the host.  I can ping the guests from any inside
machine.


Initial thought is a routing issue particularly with multiple NICs.

What does 'ip r s' reveal?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] EL6, xinetd, and permissions. What am I missing?

2011-07-19 Thread John Doe 
From: Benjamin Smith li...@benjamindsmith.com
Staging for a rollout of EL 6, and ran into a very strange permissions issue 
with xinetd that defies all (my) logic. 
It's a script called spfiled that we use for messaging between our server 
cluster servers. I'm trying to get it to run with least permissions 
necessary. Because it reads/writes files in conjunction with a web-based 
service, it runs as user apache. 
...
Jul 18 16:32:25 bender xinetd[17830]: Server /path/to/filed.php is not 
executable [file=/etc/xinetd.d/spfiled461] [line=11]
Jul 18 16:32:25 bender xinetd[17830]: Error parsing attribute server - 
DISABLING SERVICE [file=/etc/xinetd.d/spfiled461] [line=11]


The man page says of group: .This attribute is ineffective if the effective 
user ID of xinetd is not super-user and if the groups attribute is not set to 
’yes’
Xinetd running as root?
Tried with groups = yes?

JD

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [SOLVED] CUPS LAN printing problem (from Vista)

2011-07-19 Thread Marc Deop 
On Monday 18 July 2011 20:59:18 Keith Roberts wrote:
 On Mon, 18 Jul 2011, Keith Roberts wrote:
 
  To: CentOS mailing list centos@centos.org
  From: Keith Roberts ke...@karsites.net
  Subject: Re: [CentOS] CUPS LAN printing problem (from Vista)
  
  On Mon, 18 Jul 2011, m.r...@5-cent.us wrote:
 
  To: CentOS mailing list centos@centos.org
  From: m.r...@5-cent.us
  Subject: Re: [CentOS] CUPS LAN printing problem (from Vista)
 
  Keith Roberts wrote:
  I have my main machine running Centos 5.6, and it has a HP
  Deskjet 810c printer physically attached to it. CUPSD
  broadcasts in on my LAN as the default printer. I can print
  to the default HP printer over the LAN, from a laptop
  running Centos 5.6.
 
  However, I do have problems trying to print to this
  same printer over the LAN, from a laptop running
  M$ Vista.
 
  Has anyone been able to print from a machine running M$
  Windoze Vista to their CUPS LAN printer running on Centos
  5.x please. All I need to know is yes, this works, or no
  it's not possible.
  snip
  Dunno 'bout 5.6, but 5.4, 5.5, sure. We had people doing that.
 
  Thanks Mark - that's all I need to know.
 
  If it works for 5.4/5 there's not reason for it not to work
  on 5.6
 
  Now I know it's possible to do, I will spend time on reading
  the documentation and seeking a solution myself.
 
  I'm not looking to be spoon fed three times daily - LOL!
 
 OK, thanks again for confirming that Mark. I have it working 
 now fine. Here are the notes I've made for the next time I 
 have to reinstall Windoze Bista.
 
 ++
 
 Install Wireshark, and then install the HP Deskjet 810c 
 Inkjet printer driver. (Use the 812c - it's close enough)
 
 Notes for setting up CUPS HP Deskjet 810c printer
 to be able to print across LAN from Vista Home.
 
 Install the printer following this guide:
 
 http://www.divms.uiowa.edu/help/windows/printers_vista/
 
 Using Wireshark Network Analyser I got the following error under
 the IPP menu when trying to print a test document:
 
 Status-code: client-error-document-format-not-supported
 
 Googling for that returned the following forum article:
 
 http://mindspill.net/computing/cross-platform-notes/cups-client-error-document-format-not-
supported.html
 
 Following the above article and making the suggested changes
 fixed the printing from Vista to Centos 5.6 CUPS problem:
 
 The problem
 
 Printing fails from Windows, with the following message in
 /var/log/cups/access_log (on the linux box):
 
 Print-Job client-error-document-format-not-supported
 
 The solution ?
 
 Make sure you've enabled support for Windows PCL drivers.
 
 Uncomment application/octet-stream in /etc/cups/mime.types
 and uncomment application/octet-stream in /etc/cups/mime.convs.
 
 I made those changes, actually created a local.types and local.convs file
 in /etc/cups/ and stopped and restarted the cups server.
 
 Restarting the print job under Vista, and the printer responded
 immediately. The Status-code in Wireshark has now changed to
 succesful-ok
 
 I got a Windows Printer Test Page with details of the printer
 setup, and Additional files used by this driver.
 

Thanks for sharing this information Keith :)

Regards
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6 - VM network bridge issue

2011-07-19 Thread Khusro Jaleel 
On 19/07/2011 08:14, James Hogarth wrote:


  I built a CentOS 6 machine to host several CentOS 6 guest servers. 
 As all guests will be Internet facing I set up the host with two 
 bridged NICs and assigned an Internet facing IP address to br0 and a 
 local IP address to br1.
 
  Each guest was installed using br0 and br1 with virtio drivers.  On 
 each I assigned an Internet facing IP address to eth0 and a local IP 
 address on eth1.  So far so good.  I can access the guest servers from 
 either IP address as expected.  That is HTTP, SSH and SMTP servers on 
 them are accessible and do what they are supposed to do.
 
  Except...  Except from any location outside of my Comcast Cable 
 Modem.  To be clear, from any machine inside the modem to any address 
 on the guests, all works perfectly.  But outside the modem the guest 
 apps either don't receive packets or for some reason don't respond, 
 and I've tired it from four different locations.
 
  Using Wireshark on the guests I can see the packets arrive from the 
 outside sources, but no response is seen.  On accesses from inside I 
 can see both incoming and outgoing packets, as expected.
 
  I can ping the outside sources from the guests, yet pings from the 
 outside sources get no response from the guests.  All the outside 
 sources get responses when pinging the host.  I can ping the guests 
 from any inside machine.
 

A bit of a long shot but does turning on STP on the br* interfaces help? 
I vaguely remember I had to do the following on one of my machines that 
uses bonding + bridges:

# brctl stp br0 on

I have put this in the machines' /etc/rc.local so it's applied upon 
every reboot.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread John Hodrien 
On Sun, 17 Jul 2011, Always Learning wrote:

 If using SSH, FTP, phpmyadmin etc. etc. then DO NOT use the standard
 ports. Allocate a different IP address (if you have several) and use a
 non-web IP address for SSH and a different non-web IP address for
 phpmyadmin etc. WITH non-standard ports (you can go as high as about
 64000). Also consider ONLY allowing access from predefined static IP
 addresses (under your control). Do not make it easy for the hackers.
 Give them a difficult time.

Running on non-default ports (especially high numbered ports) always strikes
me as the wrong way of doing things.  You've come out of the admin shelter of
low ports meaning you're now vulnerable to local attacks - if I can make ftp
(one of your examples) crash, I can potentially steal its port and run my own
ftp server, stealing everyone's password if I have a local account.  At the
same time, you're still vulnerable to plenty of scanning attacks.

If you want accessible services to be accessible, I say make them accessible,
and secure that service as much as you reasonably can.

If you want to restrict access to make it more secure, put them behind a VPN
or other protection.  That way you *really* get the security benefit that you
wanted in the first place.

jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread hadi motamedi 
On 7/19/11, John Hodrien j.h.hodr...@leeds.ac.uk wrote:
 On Sun, 17 Jul 2011, Always Learning wrote:

 If using SSH, FTP, phpmyadmin etc. etc. then DO NOT use the standard
 ports. Allocate a different IP address (if you have several) and use a
 non-web IP address for SSH and a different non-web IP address for
 phpmyadmin etc. WITH non-standard ports (you can go as high as about
 64000). Also consider ONLY allowing access from predefined static IP
 addresses (under your control). Do not make it easy for the hackers.
 Give them a difficult time.

 Running on non-default ports (especially high numbered ports) always strikes
 me as the wrong way of doing things.  You've come out of the admin shelter
 of
 low ports meaning you're now vulnerable to local attacks - if I can make ftp
 (one of your examples) crash, I can potentially steal its port and run my
 own
 ftp server, stealing everyone's password if I have a local account.  At the
 same time, you're still vulnerable to plenty of scanning attacks.

 If you want accessible services to be accessible, I say make them
 accessible,
 and secure that service as much as you reasonably can.

 If you want to restrict access to make it more secure, put them behind a VPN
 or other protection.  That way you *really* get the security benefit that
 you
 wanted in the first place.

 jh
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

Dear All
With respect to the references you gave me, I figured out to add the
following line to my /etc/sysconfig/iptables :
-A RH-Firewall-1-INPUT -p udp -m udp --dport 53 -j ACCEPT
Then I issued:
#service iptables restart
And now the windows machine can browse valid url . Thank you for your help.
I want to put more stuff on my centos 5.6 machine. To this end, I
installed ultraedit, octave, gschem,shorewall on my centos 5.6
machine. But I don't see one-to-one relationship between these
applications and the ones I have on my windows machine. For example,
the octave does not have  the same power as MATLAB on windows machine
or Pspice on windows is more powerful than the the one I have on my
centos. Can you please let me know where powerful centos stuffs for
various purposes can be selected and installed from the internet?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread John Hodrien 
On Tue, 19 Jul 2011, hadi motamedi wrote:

 Dear All
 With respect to the references you gave me, I figured out to add the
 following line to my /etc/sysconfig/iptables :
 -A RH-Firewall-1-INPUT -p udp -m udp --dport 53 -j ACCEPT
 Then I issued:
 #service iptables restart
 And now the windows machine can browse valid url . Thank you for your help.
 I want to put more stuff on my centos 5.6 machine. To this end, I
 installed ultraedit, octave, gschem,shorewall on my centos 5.6
 machine. But I don't see one-to-one relationship between these
 applications and the ones I have on my windows machine. For example,
 the octave does not have  the same power as MATLAB on windows machine
 or Pspice on windows is more powerful than the the one I have on my
 centos. Can you please let me know where powerful centos stuffs for
 various purposes can be selected and installed from the internet?

So you've installed Octave but it's not as powerful as MATLAB on windows.
I know this is crazy talk, but have you tried MATLAB on CentOS?

There is no one-to-one relationship between applications on one OS and on
another.

Keep googling.

jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread John Doe 
From: hadi motamedi motamed...@gmail.com

 centos. Can you please let me know where powerful centos stuffs for
 various purposes can be selected and installed from the internet?

Hum... powerful stuff for various purposes is usually mysterious secret 
knowledge handed from masters to disciples...
Do you think you could handle such powerful stuff...?!?

JD
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread hadi motamedi 
On 7/19/11, John Doe jd...@yahoo.com wrote:
 From: hadi motamedi motamed...@gmail.com

 centos. Can you please let me know where powerful centos stuffs for
 various purposes can be selected and installed from the internet?

 Hum... powerful stuff for various purposes is usually mysterious secret
 knowledge handed from masters to disciples...
 Do you think you could handle such powerful stuff...?!?

 JD
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

Sorry for not being specific in the question. I mean engineering
centos stuff with one-to-one relationship for windows ones like Visual
C , MATLAB , Pspice , etc. ?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] cannot start virt-manager in centos 6

2011-07-19 Thread Patrick Lists 
On 07/19/2011 05:25 AM, 赵小强 wrote:
I just upgrade from centos 5.6 to centos 6.0 on a x86_64 box. But
 when I try to create a new virtual guest, virt-manager give: Error:
 internal error cannot parse /usr/bin/qemu-system-x86_64 version number
 in 'QEMU emulator version 0.14.0, Copyright (c) 2003-2008 Fabrice Bellard'.
   I have googled it ,but got nothing help. Any help? Thanks first :-)

So you did an upgrade from 5.6 to 6.0 and not a fresh install of 6.0?

I do not know what is causing this error but it suggests that some RPM 
packages were not (properly) upgraded. I do know that upgrading from 5.6 
to 6.0 is *not* supported. This is to prevent errors, perhaps like yours.

If nobody else on the list can help you, I suggest that you backup your 
data and you do a clean install of 6.0.

Regards,
Patrick
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Kevin Thorpe 
Hi all, sorry for being OT but would any of you recommend a ticketing system?
We'd like something pretty comprehensive to cover helpdesk and HR stuff as
well as software bugs/requests. There seems to be a million variations
out there.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Marius Vaitiekunas 
On Tue, Jul 19, 2011 at 2:32 PM, Kevin Thorpe
kevin.tho...@pibenchmark.com wrote:
 Hi all, sorry for being OT but would any of you recommend a ticketing system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff as
 well as software bugs/requests. There seems to be a million variations
 out there.
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


Hi,
We use otrs, it is ITIL compatible. Written in perl, opensource,
possible support.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Rainer Duffner 
Am Di, 19.07.2011, 13:32 schrieb Kevin Thorpe:
 Hi all, sorry for being OT but would any of you recommend a ticketing
 system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff as
 well as software bugs/requests. There seems to be a million variations
 out there.

Only very few are actually worth installing.

http://www.bestpractical.com/rt/  - RequestTracker
http://www.otrs.org/ - OTRS

maybe the one or other commercial one.

I only used RT, but OTRS seems to develop nicely, too.

Both required a lot of Perl-Modules that may or may not exist in the
distribution.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Jorge Fábregas 
On 07/19/2011 07:32 AM, Kevin Thorpe wrote:
 would any of you recommend a ticketing system?

Redmine:
http://www.redmine.org/

You can give it a try by using any of the the Bitnami virtual-machine
images:
http://bitnami.org/stack/redmine

HTH,
Jorge
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Keith Roberts 
On Tue, 19 Jul 2011, Kevin Thorpe wrote:

 To: CentOS mailing list centos@centos.org
 From: Kevin Thorpe kevin.tho...@pibenchmark.com
 Subject: [CentOS] [OT] would any of you recommend a ticketing system?
 
 Hi all, sorry for being OT but would any of you recommend a ticketing system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff as
 well as software bugs/requests. There seems to be a million variations
 out there.

This is not free, but it is very comprehensive, and will 
also probably do a lot more than what you need. I have 
played with the trial demo version last year, and it's got 
alot of interesting features, including billing. It is a 
complete solution for web hosting providers, amongst other 
things.

Kind Regards,

Keith Roberts

-
Websites:
http://www.karsites.net
http://www.php-debuggers.net
http://www.raised-from-the-dead.org.uk

All email addresses are challenge-response protected with
TMDA [http://tmda.net]
-
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Keith Roberts 
On Tue, 19 Jul 2011, Keith Roberts wrote:

 To: CentOS mailing list centos@centos.org
 From: Keith Roberts ke...@karsites.net
 Subject: Re: [CentOS] [OT] would any of you recommend a ticketing system?
 
 On Tue, 19 Jul 2011, Kevin Thorpe wrote:

 To: CentOS mailing list centos@centos.org
 From: Kevin Thorpe kevin.tho...@pibenchmark.com
 Subject: [CentOS] [OT] would any of you recommend a ticketing system?

 Hi all, sorry for being OT but would any of you recommend a ticketing system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff as
 well as software bugs/requests. There seems to be a million variations
 out there.

 This is not free, but it is very comprehensive, and will
 also probably do a lot more than what you need. I have
 played with the trial demo version last year, and it's got
 alot of interesting features, including billing. It is a
 complete solution for web hosting providers, amongst other
 things.

Forgot to post that link:

http://www.whmcs.com/

 Kind Regards,

 Keith Roberts

 -
 Websites:
 http://www.karsites.net
 http://www.php-debuggers.net
 http://www.raised-from-the-dead.org.uk

 All email addresses are challenge-response protected with
 TMDA [http://tmda.net]
 -
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


-- 
-
Websites:
http://www.karsites.net
http://www.php-debuggers.net
http://www.raised-from-the-dead.org.uk

All email addresses are challenge-response protected with
TMDA [http://tmda.net]
-
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] 2 questions on CentOS firewall

2011-07-19 Thread Timothy Murphy 
I'm running CentOS-6 on an HP MicroServer
with a Billion 5200S modem/router connecting to the internet.
I'm running the standard CentOS-6 firewall on the server.

(1) I can open port 22 on the Billion, allowing me to ssh in from outside.
But for some reason I cannot ping the same address from outside.
(I can ping it internally.)
Why is this?
I'm not sure if the problem lies with the router or the server?
There does not seem to be any explicit rule on either
to allow ICMP packets through.

(2) I have a Linksys WRT54GL WiFi router attached to the server,
to allow access to the internet from laptops.
This works fine.
But I was surprised to find that when I turn OFF
the firewall on the server this stops access to the internet on laptops.
(I didn't test to see if re-booting the laptop would solve this.)
Can disabling the firewall actually prevent some linkage?



-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] 2 questions on CentOS firewall

2011-07-19 Thread Ljubomir Ljubojevic 
Timothy Murphy wrote:
 I'm running CentOS-6 on an HP MicroServer
 with a Billion 5200S modem/router connecting to the internet.
 I'm running the standard CentOS-6 firewall on the server.
 
 (1) I can open port 22 on the Billion, allowing me to ssh in from outside.
 But for some reason I cannot ping the same address from outside.
 (I can ping it internally.)
 Why is this?
 I'm not sure if the problem lies with the router or the server?
 There does not seem to be any explicit rule on either
 to allow ICMP packets through.

This is due to modem refuses to answer to pings. You might have option 
to allow it in modem config.

Ping (ICMP) does not use ports but it is packet of type 8.

 
 (2) I have a Linksys WRT54GL WiFi router attached to the server,
 to allow access to the internet from laptops.
 This works fine.
 But I was surprised to find that when I turn OFF
 the firewall on the server this stops access to the internet on laptops.
 (I didn't test to see if re-booting the laptop would solve this.)
 Can disabling the firewall actually prevent some linkage?
 

When you turn off firewall, it stops routing packets so they can not be 
passed to systems behind it.

Only option I can think of is to use shorewall as firewall and add 
NAT/Masquerade and the rest of the rules to routestoped confgi file:

By default, when the Shorewall firewall is stopped it will deny access 
from all hosts. This page allows you to define hosts or networks that 
will still be accessible.
No addresses to be accessible when stopped have been defined yet.

I am not sure if this does what you need, but if you need to turn down 
firewall a lot then consider this option.

Other then that, all you can do is to manually remove and add iptables 
rules without shuting down firewall.

-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] NM on a server?

2011-07-19 Thread Timothy Murphy 
Is there any point in running NetworkManager on a server?
The IP addresses of the two server NICS are fixed
(192.168.1.2 and 192.168.2.2 .)

I'm not clear if it is necessary in some way
to run NM on a CentOS system?


-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Antwort: NM on a server?

2011-07-19 Thread Andreas Reschke 
centos-boun...@centos.org schrieb am 19.07.2011 15:24:29:

 Timothy Murphy gayle...@eircom.net 
 Gesendet von: centos-boun...@centos.org
 
 19.07.2011 15:25
 
 Bitte antworten an
 CentOS mailing list centos@centos.org
 
 An
 
 centos@centos.org
 
 Kopie
 
 Thema
 
 [CentOS] NM on a server?
 
 Is there any point in running NetworkManager on a server?
 The IP addresses of the two server NICS are fixed
 (192.168.1.2 and 192.168.2.2 .)
 
 I'm not clear if it is necessary in some way
 to run NM on a CentOS system?
 
 
 -- 
 Timothy Murphy 
 e-mail: gayleard /at/ eircom.net
 tel: +353-86-2336090, +353-1-2842366
 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland
 
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

In normal case: no. I'm also using HP Proliant Microserver at home with 
kvm. And kvm needs to shutdown NetworkManager, because it can't handle 
with br0-Device.

 
 
Gruß 
Andreas Reschke


andreas.resc...@behrgroup.com___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] NM on a server?

2011-07-19 Thread Jakub Jedelsky 
Dne 19.7.2011 15:24, Timothy Murphy napsal(a):
 Is there any point in running NetworkManager on a server?
 The IP addresses of the two server NICS are fixed
 (192.168.1.2 and 192.168.2.2 .)
 
 I'm not clear if it is necessary in some way
 to run NM on a CentOS system?

I remove NM on servers in any case. IMHO network as service is much more
better.

JJ
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Oliver Schad 
On Tuesday 19 July 2011 13:32:50 Kevin Thorpe wrote:
 Hi all, sorry for being OT but would any of you recommend a ticketing
 system? We'd like something pretty comprehensive to cover helpdesk and HR
 stuff as well as software bugs/requests. There seems to be a million
 variations out there.

OTRS and RT for support and HR. It's a pain to install and configure it 
according to your needs but both work great.

For software I would recommend something like redmine (maybe mantis or trac) 
which supports multiple projects/customers, has repository integration (CVS, 
Subversion, GIT, ...) build in and has a very clean view (otrs and RT tends to 
show too much).

There is no system which fits all requirements for every purpose.

Regards
Oli

-- 
Oliver Schad
Geschäftsführer (CEO)
Automatic Server AG
E-Mail: i...@automatic-server.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Scott Robbins 
On Tue, Jul 19, 2011 at 01:39:08PM +0200, Rainer Duffner wrote:
 Am Di, 19.07.2011, 13:32 schrieb Kevin Thorpe:
  Hi all, sorry for being OT but would any of you recommend a ticketing
  system?

 
 http://www.bestpractical.com/rt/  - RequestTracker
 http://www.otrs.org/ - OTRS
 

If you do use RT, I have a page I put up after putting it on CentOS 5.5.
Most of it is still probably applicable.

-- 
Scott Robbins
PGP keyID EB3467D6
( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 )
gpg --keyserver pgp.mit.edu --recv-keys EB3467D6

Buffy: Willow, you're alive.
 Willow: Aren't I usually?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Scott Robbins 
On Tue, Jul 19, 2011 at 09:36:26AM -0400, Scott Robbins wrote:
 If you do use RT, I have a page I put up after putting it on CentOS 5.5.
 Most of it is still probably applicable.

Of course, putting the link to said page might be useful.  (Rough
morning.)

http://home.roadrunner.com/~computertaijutsu/rt3.html


-- 
Scott Robbins
PGP keyID EB3467D6
( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 )
gpg --keyserver pgp.mit.edu --recv-keys EB3467D6

Giles: It's a trick. They get inside my head, make me see
things I want.
Xander: Then why would they make you see me?
Giles: You're right. Let's go.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Samba 3.5.4 net map group list doesn´t work

2011-07-19 Thread Francisco Arencibia Quesada 
Good morning to everybody, I´m using centos 5.6 with samba 3.5.4, I´m
having troubles mapping groups in samba, I write net groupmap list,
and It doesn´t show any groups, nothing,  This is driving me crazy,
please if somebody can give me a hand with this, I will be thankful
forever.!!!
Best Regards
Francisco.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread m . roth 
Keith Roberts wrote:
 On Tue, 19 Jul 2011, Kevin Thorpe wrote:
 From: Kevin Thorpe kevin.tho...@pibenchmark.com

 Hi all, sorry for being OT but would any of you recommend a ticketing
 system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff
 as well as software bugs/requests. There seems to be a million variations
 out there.

 This is not free, but it is very comprehensive, and will
 also probably do a lot more than what you need. I have
 played with the trial demo version last year, and it's got
 alot of interesting features, including billing. It is a
 complete solution for web hosting providers, amongst other
 things.

Missed the beginning of the thread, so I don't know what Keith's talking
about. The two that I'd recommend that are F/OSS are bugzilla and Mantis.
Worked with both, both work well.

 mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Eric Viseur 
FWIW, I've been using Indefero for quite a while, might suit some of your
needs.  It's basically a Google Code clone.

2011/7/19 m.r...@5-cent.us

 Keith Roberts wrote:
  On Tue, 19 Jul 2011, Kevin Thorpe wrote:
  From: Kevin Thorpe kevin.tho...@pibenchmark.com
 
  Hi all, sorry for being OT but would any of you recommend a ticketing
  system?
  We'd like something pretty comprehensive to cover helpdesk and HR stuff
  as well as software bugs/requests. There seems to be a million
 variations
  out there.
 
  This is not free, but it is very comprehensive, and will
  also probably do a lot more than what you need. I have
  played with the trial demo version last year, and it's got
  alot of interesting features, including billing. It is a
  complete solution for web hosting providers, amongst other
  things.

 Missed the beginning of the thread, so I don't know what Keith's talking
 about. The two that I'd recommend that are F/OSS are bugzilla and Mantis.
 Worked with both, both work well.

 mark

 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Samba 3.5.4 net map group list doesn´t work

2011-07-19 Thread Josh Miller 
On 07/19/2011 06:55 AM, Francisco Arencibia Quesada wrote:
 Good morning to everybody, I´m using centos 5.6 with samba 3.5.4, I´m
 having troubles mapping groups in samba, I write net groupmap list,
 and It doesn´t show any groups, nothing,  This is driving me crazy,
 please if somebody can give me a hand with this, I will be thankful
 forever.!!!

Try running the command as root or with sudo, and with debug to a high 
level:

  sudo net -d 3 groupmap list

Do you get any additional troubleshooting information there?  (3 is a 
good start and you can go to 10.)

You should see two groups by default:

  net groupmap list
Administrators (S-1-5-32-544) - BUILTIN\administrators
Users (S-1-5-32-545) - BUILTIN\users

If that doesn't give you anything helpful, try running with strace for 
more info:

  sudo strace -o /tmp/ngm.strace net groupmap list

You can then analyze the output in /tmp/ngm.strace for additional clues.

-- 
Josh Miller
Open Source Solutions Architect
http://itsecureadmin.com/
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] CentOS 6

2011-07-19 Thread m . roth 
I finally switched workstations, and am running into a lot of truly
annoying details with CentOS 6, and the software with it. For one, I'm
doing this by webmail, and this version of Firefox *insists* on putting
what I'm typing in gray, rather than black. For another, I despise the new
version of thunderbird, since it now shows the full subject, if I have
what they used to call the preview pane... and then take six more lines to
do it, which I can't make go away.[1]

rxvt, which is my preferred terminal, comes up with about 6 pt type, and
I'm trying to find out how to change that, as well as bringing up all
seven of my sessions in a directory under my home, instead of home

*sigh* Hopefully, 6.1 will fix at least *some* things...

 mark, who doesn't want something that looks like M$

1. All mailreaders used to show this information at the top of the email,
and hide or unhide the rest of the headers... but no matter what, if I
scrolled down, they went off the top of the screen, not stayed there
occupying space.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Robert Heller 
At Tue, 19 Jul 2011 12:32:50 +0100 CentOS mailing list centos@centos.org 
wrote:

 
 Hi all, sorry for being OT but would any of you recommend a ticketing system?
 We'd like something pretty comprehensive to cover helpdesk and HR stuff as
 well as software bugs/requests. There seems to be a million variations
 out there.

I use RT for sales and helpdesk (for web hosting clients) type stuff. 
Works reasonably well. Somewhat non-trivial to set up, but work well
once set up.  Warning: it needs all sorts of 'extra' Perl modules,
mostly from RPMForge and somethings there are interesting package
conflicts... Depending on how things are set up, you'll want to
interpose a spam filter.  

http://www.bestpractical.com/?rt=3.4.2

I use bugzilla for software bugs/requests.  RT would work here, but
bugzilla is probably more familar to programmers and is somewhat better
geared to bug reports. 


yum --enablerepo=epel install bugzilla

 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos
 
   
   

-- 
Robert Heller -- 978-544-6933 / hel...@deepsoft.com
Deepwoods Software-- http://www.deepsoft.com/
()  ascii ribbon campaign -- against html e-mail
/\  www.asciiribbon.org   -- against proprietary attachments


 
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread Adam Wead 
I'd recommend Jira:

http://www.atlassian.com/software/jira/

We use it primarily for software projects and bug tracking, but it can
easily be configured as a helpdesk application, and still be used for other
things.  Very configurable, easy to setup and maintain and they have reduced
pricing for non-profits and government institutions.  I'm not sure about HR
applications, though.


Adam Wead
Systems and Digital Collections Librarian
Rock and Roll Hall of Fame and Museum


On Tue, Jul 19, 2011 at 10:22 AM, Robert Heller hel...@deepsoft.com wrote:

 At Tue, 19 Jul 2011 12:32:50 +0100 CentOS mailing list centos@centos.org
 wrote:

 
  Hi all, sorry for being OT but would any of you recommend a ticketing
 system?
  We'd like something pretty comprehensive to cover helpdesk and HR stuff
 as
  well as software bugs/requests. There seems to be a million variations
  out there.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6

2011-07-19 Thread Lamar Owen 


On Jul 19, 2011, at 10:21 AM, m.r...@5-cent.us wrote:


I finally switched workstations, and am running into a lot of truly
annoying details with CentOS 6, and the software with it.


If the same details you find annoying are the same way in upstream  
EL6.



For one, I'm
doing this by webmail, and this version of Firefox *insists* on  
putting

what I'm typing in gray, rather than black.


Not to go overboard or anything, but if this behavior is in upstream  
the same way, then a bugzilla needs to be filed upstream.  If upstream  
acts differently, then it would need to be filed in the CentOS tracker.


FWIW, I just checked Scalix webmail with my RHEL 6.1 system, and the  
text in the e-mail is gray.  It's been a very long time since I've  
tried with a C5 desktop hmmm, let me see it's not as pale of a  
gray, but it's also not black, either, in Firefox 3.6.18 on a CentOS  
5.6 system I have here.  Probably has a lot to do with the current  
theme


[snip]


*sigh* Hopefully, 6.1 will fix at least *some* things...


If it's the same behavior as upstream, then file the bug upstream.  It  
won't be 'fixed' if it's not filed.


If those three things are the biggest issues you're having, given how  
major of an upgrade it is, things are in pretty good shape, sounds  
like to me, at least.





smime.p7s
Description: S/MIME cryptographic signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Cron questions

2011-07-19 Thread Armin Tueting 
Hello ,

  identical PHP script on two CentOS 5.6 (i386 and x86_64) gives the following
  information while running as a cron job.

  Warning: Terminal locale not UTF-8, but UTF-8 locale is being forced.
 Screen output may not be correctly printed

-- 
Best regards,
 Armin  mailto:armin.tuet...@tueting-online.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Samba 3.5.4 net map group list doesn´t work

2011-07-19 Thread Francisco Arencibia Quesada 
Thanks, I did this and now when I used net groupmap list, It works..
I have read somewhere that in new version of Samba we have to add
groups manually..
Thanks brother!

net groupmap add ntgroup=Domain Admins unixgroup=10512 rid=512
net groupmap add ntgroup=Domain Users unixgroup=10513 rid=513
net groupmap add ntgroup=Domain Guests unixgroup=10514 rid=514
net groupmap add ntgroup=Domain Controllers unixgroup=10516  rid=516
net groupmap add ntgroup=Domain Computers unixgroup=10515  rid=515
net groupmap add ntgroup=Administrators unixgroup=10544 rid=544
 type=local

net groupmap add ntgroup=Users unixgroup=10545 rid=545 type=local
net groupmap add ntgroup=Guests unixgroup=nobody rid=546 type=local




On 7/19/11, Josh Miller jos...@itsecureadmin.com wrote:
 On 07/19/2011 06:55 AM, Francisco Arencibia Quesada wrote:
 Good morning to everybody, I´m using centos 5.6 with samba 3.5.4, I´m
 having troubles mapping groups in samba, I write net groupmap list,
 and It doesn´t show any groups, nothing,  This is driving me crazy,
 please if somebody can give me a hand with this, I will be thankful
 forever.!!!

 Try running the command as root or with sudo, and with debug to a high
 level:

   sudo net -d 3 groupmap list

 Do you get any additional troubleshooting information there?  (3 is a
 good start and you can go to 10.)

 You should see two groups by default:

   net groupmap list
 Administrators (S-1-5-32-544) - BUILTIN\administrators
 Users (S-1-5-32-545) - BUILTIN\users

 If that doesn't give you anything helpful, try running with strace for
 more info:

   sudo strace -o /tmp/ngm.strace net groupmap list

 You can then analyze the output in /tmp/ngm.strace for additional clues.

 --
 Josh Miller
 Open Source Solutions Architect
 http://itsecureadmin.com/
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Cron questions

2011-07-19 Thread Lisandro Grullon 
Check the local in both machines and look under /var/log/ for clues.

 Armin Tueting armin.tuet...@tueting-online.com 7/19/2011 10:49 AM 
Hello ,

  identical PHP script on two CentOS 5.6 (i386 and x86_64) gives the following
  information while running as a cron job.

  Warning: Terminal locale not UTF-8, but UTF-8 locale is being forced.
 Screen output may not be correctly printed

-- 
Best regards,
Armin  mailto:armin.tuet...@tueting-online.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] 2 questions on CentOS firewall

2011-07-19 Thread Robert Spangler 
On Tuesday 19 July 2011 09:11, the following was written:

  Timothy Murphy wrote:
   I'm running CentOS-6 on an HP MicroServer
   with a Billion 5200S modem/router connecting to the internet.
   I'm running the standard CentOS-6 firewall on the server.
  
   (1) I can open port 22 on the Billion, allowing me to ssh in from
   outside. But for some reason I cannot ping the same address from
   outside. (I can ping it internally.)
   Why is this?
   I'm not sure if the problem lies with the router or the server?
   There does not seem to be any explicit rule on either
   to allow ICMP packets through.

  This is due to modem refuses to answer to pings. You might have option
  to allow it in modem config.

Modems cannot answer pings.  They are a bridge.  The most likely reason why 
the OP cannot ping is because the firewall is not allowing it.  Adding rules 
to allow pings should clear up this issue.

   (2) I have a Linksys WRT54GL WiFi router attached to the server,
   to allow access to the internet from laptops.
   This works fine.
   But I was surprised to find that when I turn OFF
   the firewall on the server this stops access to the internet on laptops.
   (I didn't test to see if re-booting the laptop would solve this.)
   Can disabling the firewall actually prevent some linkage?

  When you turn off firewall, it stops routing packets so they can not be
  passed to systems behind it.

IPTABLES does not route packets.  IPTABLES manipulate packet so that they can 
be routed to the proper destination.

The reason the OP could not connect to the internet is because the firewall 
was NAT'ing his packets that were leaving his network to his internet facing 
ip address.  Ounce the natting stopped the packets were sent to the internet 
with the address of his laptop which was most likely a private address.  
Since private addresses are not supposed to be routed on the internet the 
receiving router dropped the return packet.

  Only option I can think of is to use shorewall as firewall and add
  NAT/Masquerade and the rest of the rules to routestoped confgi file:

The OP can continue to use IPTABLES the rules just need to be setup properly.  
No need to install other software when what you have installed will do the 
job.

OP can start by reading this Tutorial. 

http://www.zoominternet.net/~lazydog/iptables-tutorial


-- 

Regards
Robert

Linux
The adventure of a lifetime.

Linux User #296285
Get Counted
http://counter.li.org/
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6

2011-07-19 Thread Steve Clark 

On 07/19/2011 10:21 AM, m.r...@5-cent.us wrote:

I finally switched workstations, and am running into a lot of truly
annoying details with CentOS 6, and the software with it. For one, I'm
doing this by webmail, and this version of Firefox *insists* on putting
what I'm typing in gray, rather than black. For another, I despise the new
version of thunderbird, since it now shows the full subject, if I have
what they used to call the preview pane... and then take six more lines to
do it, which I can't make go away.[1]


Do you have the CompactHeader extension? This will shrink  the subject area to 
one line with a + to expand it.

rxvt, which is my preferred terminal, comes up with about 6 pt type, and
I'm trying to find out how to change that, as well as bringing up all
seven of my sessions in a directory under my home, instead of home

*sigh* Hopefully, 6.1 will fix at least *some* things...

  mark, who doesn't want something that looks like M$

1. All mailreaders used to show this information at the top of the email,
and hide or unhide the rest of the headers... but no matter what, if I
scrolled down, they went off the top of the screen, not stayed there
occupying space.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos




--
Stephen Clark
*NetWolves*
Sr. Software Engineer III
Phone: 813-579-3200
Fax: 813-882-0209
Email: steve.cl...@netwolves.com
http://www.netwolves.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] CentOS-announce Digest, Vol 77, Issue 5

2011-07-19 Thread centos-announce-request 
Send CentOS-announce mailing list submissions to
centos-annou...@centos.org

To subscribe or unsubscribe via the World Wide Web, visit
http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
centos-announce-requ...@centos.org

You can reach the person managing the list at
centos-announce-ow...@centos.org

When replying, please edit your Subject line so it is more specific
than Re: Contents of CentOS-announce digest...


Today's Topics:

   1. CESA-2011:0927 Important CentOS 5 i386 kernel Update
  (Karanbir Singh)
   2. CESA-2011:0927 Important CentOS 5 x86_64 kernel   Update
  (Karanbir Singh)
   3. CEBA-2011:0940  CentOS 5 i386 xen Update (Karanbir Singh)
   4. CEBA-2011:0940  CentOS 5 x86_64 xen Update (Karanbir Singh)
   5. CEBA-2011:0939  CentOS 5 i386 ksh Update (Karanbir Singh)
   6. CEBA-2011:0939  CentOS 5 x86_64 ksh Update (Karanbir Singh)


--

Message: 1
Date: Mon, 18 Jul 2011 21:33:40 +
From: Karanbir Singh kbsi...@centos.org
Subject: [CentOS-announce] CESA-2011:0927 Important CentOS 5 i386
kernel  Update
To: centos-annou...@centos.org
Message-ID: 20110718213340.ga8...@chakra.karan.org
Content-Type: text/plain; charset=us-ascii


CentOS Errata and Security Advisory 2011:0927 Important

Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0927.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( md5sum Filename ) 

i386:
40261f41e17f5847e5542f21a901bd89  kernel-2.6.18-238.19.1.el5.i686.rpm
ea0ede2d0ad22c8214ee16d953d5d6d2  kernel-debug-2.6.18-238.19.1.el5.i686.rpm
deec5173a7ef557929db5fda3463b51e  
kernel-debug-devel-2.6.18-238.19.1.el5.i686.rpm
cc8279cf9d118c6203240d7f98f26778  kernel-devel-2.6.18-238.19.1.el5.i686.rpm
e2350bff673fc28f02e37a05a96067a3  kernel-doc-2.6.18-238.19.1.el5.noarch.rpm
68241e041732ffd7847a931527edea65  kernel-headers-2.6.18-238.19.1.el5.i386.rpm
958e828c2080f2ef79ac203f6bcf09a9  kernel-PAE-2.6.18-238.19.1.el5.i686.rpm
80d97b2f0d78b66dbdcbed765395eeaf  kernel-PAE-devel-2.6.18-238.19.1.el5.i686.rpm
8c4629ee49f39a3e3721f1e09e77a69a  kernel-xen-2.6.18-238.19.1.el5.i686.rpm
d93b4d38af1fab0a959a870d42838680  kernel-xen-devel-2.6.18-238.19.1.el5.i686.rpm

Source:
7bc7a9f7b653216b34542ff733f7abf1  kernel-2.6.18-238.19.1.el5.src.rpm


-- 
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #cen...@irc.freenode.net



--

Message: 2
Date: Mon, 18 Jul 2011 21:33:41 +
From: Karanbir Singh kbsi...@centos.org
Subject: [CentOS-announce] CESA-2011:0927 Important CentOS 5 x86_64
kernel  Update
To: centos-annou...@centos.org
Message-ID: 20110718213341.ga8...@chakra.karan.org
Content-Type: text/plain; charset=us-ascii


CentOS Errata and Security Advisory 2011:0927 Important

Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0927.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( md5sum Filename ) 

x86_64:
7ad0a67c4f4c28003fff543c9b015898  kernel-2.6.18-238.19.1.el5.x86_64.rpm
45307a106fd29f07c4f590156cfdf207  kernel-debug-2.6.18-238.19.1.el5.x86_64.rpm
0d6d847a4bea5c34b9486013ffcc6b99  
kernel-debug-devel-2.6.18-238.19.1.el5.x86_64.rpm
5c8883d6c06de9380eb6471ce536bae9  kernel-devel-2.6.18-238.19.1.el5.x86_64.rpm
c72015ce88ebf092685b6e41316d8a56  kernel-doc-2.6.18-238.19.1.el5.noarch.rpm
0bf8bdcc7ad8aa82c819dfafef4517e5  kernel-headers-2.6.18-238.19.1.el5.x86_64.rpm
f14c3863855aad4d6ca0ddd9244eed70  kernel-xen-2.6.18-238.19.1.el5.x86_64.rpm
8dfd9cc91f7db06c3872d40902b88503  
kernel-xen-devel-2.6.18-238.19.1.el5.x86_64.rpm

Source:
7bc7a9f7b653216b34542ff733f7abf1  kernel-2.6.18-238.19.1.el5.src.rpm


-- 
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #cen...@irc.freenode.net



--

Message: 3
Date: Mon, 18 Jul 2011 22:01:38 +
From: Karanbir Singh kbsi...@centos.org
Subject: [CentOS-announce] CEBA-2011:0940  CentOS 5 i386 xen Update
To: centos-annou...@centos.org
Message-ID: 20110718220138.ga9...@chakra.karan.org
Content-Type: text/plain; charset=us-ascii


CentOS Errata and Bugfix Advisory 2011:0940 

Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0940.html

The following updated files have been uploaded and are currently 
syncing to the mirrors: ( md5sum Filename ) 

i386:
07bf356fef9397114eede6b8ea15c18b  xen-3.0.3-120.el5_6.3.i386.rpm
0aa96396a3061d2b5edc7fe798b9bb2d  xen-devel-3.0.3-120.el5_6.3.i386.rpm
6b1b73080278fd8bdae0c307571fcd60  xen-libs-3.0.3-120.el5_6.3.i386.rpm

Source:
e2c4a222d8cf1f3643b0c01aae9dbe05  xen-3.0.3-120.el5_6.3.src.rpm


-- 
Karanbir Singh
CentOS Project { http://www.centos.org/ }
irc: z00dax, #cen...@irc.freenode.net



--

Message: 4
Date: Mon, 18 Jul 2011 22:01:38 +
From: Karanbir Singh kbsi...@centos.org

Re: [CentOS] CentOS-announce Digest, Vol 77, Issue 5

2011-07-19 Thread Markus Falb 
On 19.7.2011 18:00,
centos-announce-requ...@centos.org wrote:

1. CESA-2011:0927 Important CentOS 5 i386 kernel   Update
   (Karanbir Singh)
...
 Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0927.html
...
 i386:
 40261f41e17f5847e5542f21a901bd89  kernel-2.6.18-238.19.1.el5.i686.rpm
...

Announcement made but the updates are still missing. I just had a look
on mirror.centos.org and I could not find it.

-- Kind Regards, Markus Falb



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread David Lemcoe 
osTicket is pretty sweet.

On Tue, Jul 19, 2011 at 10:33 AM, Adam Wead amsterda...@gmail.com wrote:

 I'd recommend Jira:

 http://www.atlassian.com/software/jira/

 We use it primarily for software projects and bug tracking, but it can
 easily be configured as a helpdesk application, and still be used for other
 things.  Very configurable, easy to setup and maintain and they have reduced
 pricing for non-profits and government institutions.  I'm not sure about HR
 applications, though.

 
 Adam Wead
 Systems and Digital Collections Librarian
 Rock and Roll Hall of Fame and Museum



 On Tue, Jul 19, 2011 at 10:22 AM, Robert Heller hel...@deepsoft.comwrote:

 At Tue, 19 Jul 2011 12:32:50 +0100 CentOS mailing list centos@centos.org
 wrote:

 
  Hi all, sorry for being OT but would any of you recommend a ticketing
 system?
  We'd like something pretty comprehensive to cover helpdesk and HR stuff
 as
  well as software bugs/requests. There seems to be a million variations
  out there.


 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] would any of you recommend a ticketing system?

2011-07-19 Thread David McKendrick 
Kayako. Cerberus is another option. Both have visible code when / if
modifications are needed, but both are also pay2play.

Can't recommend anything beyond those but I've gone through about thirty
different systems over the years.

On Tue, 2011-07-19 at 12:49 -0400, David Lemcoe wrote:
 osTicket is pretty sweet.
 
 On Tue, Jul 19, 2011 at 10:33 AM, Adam Wead amsterda...@gmail.com
 wrote:
 I'd recommend Jira:
 
 http://www.atlassian.com/software/jira/
 
 We use it primarily for software projects and bug tracking,
 but it can easily be configured as a helpdesk application, and
 still be used for other things.  Very configurable, easy to
 setup and maintain and they have reduced pricing for
 non-profits and government institutions.  I'm not sure about
 HR applications, though.
 
 
 Adam Wead
 Systems and Digital Collections Librarian
 Rock and Roll Hall of Fame and Museum
 
 
 
 
 On Tue, Jul 19, 2011 at 10:22 AM, Robert Heller
 hel...@deepsoft.com wrote:
 At Tue, 19 Jul 2011 12:32:50 +0100 CentOS mailing list
 centos@centos.org wrote:
 
 
  Hi all, sorry for being OT but would any of you
 recommend a ticketing system?
  We'd like something pretty comprehensive to cover
 helpdesk and HR stuff as
  well as software bugs/requests. There seems to be a
 million variations
  out there.
 
 
 
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos
 
 
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] 2 questions on CentOS firewall

2011-07-19 Thread Timothy Murphy 
Ljubomir Ljubojevic wrote:

 (1) I can open port 22 on the Billion, allowing me to ssh in from
 outside. But for some reason I cannot ping the same address from outside.

 This is due to modem refuses to answer to pings. You might have option
 to allow it in modem config.
 
 Ping (ICMP) does not use ports but it is packet of type 8.

Thanks again for your response.
Could CentOS be preventing me from pinging the system?

 When you turn off firewall, it stops routing packets so they can not be
 passed to systems behind it.
 
 Only option I can think of is to use shorewall as firewall and add
 NAT/Masquerade and the rest of the rules to routestoped confgi file:

I was using Shorewall before I went over to CentOS-6,
and will probably go over to it.

But I don't really need to disable the firewall on the server.
I just thought I'd try it as an experiment.

-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS-announce Digest, Vol 77, Issue 5

2011-07-19 Thread Ljubomir Ljubojevic 
Markus Falb wrote:
 
 Announcement made but the updates are still missing. I just had a look
 on mirror.centos.org and I could not find it.
 
 -- Kind Regards, Markus Falb
 

Does this ring a bell?:

  The following updated files have been uploaded and are currently
  syncing to the mirrors: ( md5sum Filename )

-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Will QA web site have CentOS 6.1 status?

2011-07-19 Thread Greg Bailey 
The QA web site at http://qaweb.dev.centos.org/qa/blog was really 
helpful for those of us who were curious as to how CentOS 6.0 was coming 
along.  However, there doesn't seem to be much information as to how 
CentOS 6.1 is going from either the QA web site, the forums 
(Announcements), or Kananbir's twitter feed -- but it may be I'm just 
not looking in the right place.

Does the QA site only get updated once 6.1 is passed along to the QA 
members?  Wondering if 6.1 RPMs are mostly built and perhaps developers 
are wrestling with the same kinds of anaconda issues that they faced 
with 5.6...

thanks,
Greg

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] 2 questions on CentOS firewall

2011-07-19 Thread Ljubomir Ljubojevic 
Robert Spangler wrote:
 On Tuesday 19 July 2011 09:11, the following was written:
 
  Timothy Murphy wrote:
   I'm running CentOS-6 on an HP MicroServer
   with a Billion 5200S modem/router connecting to the internet.
   I'm running the standard CentOS-6 firewall on the server.
  
   (1) I can open port 22 on the Billion, allowing me to ssh in from
   outside. But for some reason I cannot ping the same address from
   outside. (I can ping it internally.)
   Why is this?
   I'm not sure if the problem lies with the router or the server?
   There does not seem to be any explicit rule on either
   to allow ICMP packets through.

  This is due to modem refuses to answer to pings. You might have option
  to allow it in modem config.
 
 Modems cannot answer pings.  They are a bridge.  The most likely reason why 
 the OP cannot ping is because the firewall is not allowing it.  Adding rules 
 to allow pings should clear up this issue.

Please first read OP mail then give me lessons. HE said it was 
modem/router, I shortened it. I was little lazy.

How do you think he opened and forwarded port on his modem(/router) if 
he was in bridged mode?

 
   (2) I have a Linksys WRT54GL WiFi router attached to the server,
   to allow access to the internet from laptops.
   This works fine.
   But I was surprised to find that when I turn OFF
   the firewall on the server this stops access to the internet on laptops.
   (I didn't test to see if re-booting the laptop would solve this.)
   Can disabling the firewall actually prevent some linkage?

  When you turn off firewall, it stops routing packets so they can not be
  passed to systems behind it.
 
 IPTABLES does not route packets.  IPTABLES manipulate packet so that they can 
 be routed to the proper destination.

You can nitpick if you like, but do not forget that OP is most probably 
noob (no disrespect intended). Why is necessary to write War  Peace 
when the result is the same, no firewall = no internet for PC's behind 
the CentOS system.

And lets finish it with a style:
Timothy, you could turn off firewall and still have internet if you set 
static route in modem/router for the subnet used between CentOS and 
Clients, so modem/router does final NAT'ing.

 
 The reason the OP could not connect to the internet is because the firewall 
 was NAT'ing his packets that were leaving his network to his internet facing 
 ip address.  Ounce the natting stopped the packets were sent to the internet 
 with the address of his laptop which was most likely a private address.  
 Since private addresses are not supposed to be routed on the internet the 
 receiving router dropped the return packet.

Irrelevant, modem/router is used.

I have spent last 6 years doing NAT-ing, policy routing, static and 
dynamic routing, complex iptables rules, marking packets to block and/or 
slowdown torrents but leave gamers alone, what ever you can think of. 
But there is not need to complicate things when the question is so simple:

In the current state of his network, if he turns of firewall, clients 
behind it will not have internet.

-- 

Ljubomir Ljubojevic
(Love is in the Air)
PL Computers
Serbia, Europe

Google is the Mother, Google is the Father, and traceroute is your
trusty Spiderman...
StarOS, Mikrotik and CentOS/RHEL/Linux consultant
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Cron questions

2011-07-19 Thread Armin Tueting 
Title: Re: [CentOS] Cron questions


Hello Lisandro,

Tuesday, July 19, 2011, 4:52:28 PM, you wrote:





Check the local in both machines and look under /var/log/ for clues.

 Armin Tueting armin.tuet...@tueting-online.com 7/19/2011 10:49 AM 
Hello ,

 identical PHP script on two CentOS 5.6 (i386 and x86_64) gives the following
 information while running as a cron job.

 Warning: Terminal locale not UTF-8, but UTF-8 locale is being forced.
Screen output may not be correctly printed

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos



both servers gives the following output
$ locale
LANG=en_US.UTF-8
LC_CTYPE="en_US.UTF-8"
LC_NUMERIC="en_US.UTF-8"
LC_TIME="en_US.UTF-8"
LC_COLLATE="en_US.UTF-8"
LC_MONETARY="en_US.UTF-8"
LC_MESSAGES="en_US.UTF-8"
LC_PAPER="en_US.UTF-8"
LC_NAME="en_US.UTF-8"
LC_ADDRESS="en_US.UTF-8"
LC_TELEPHONE="en_US.UTF-8"
LC_MEASUREMENT="en_US.UTF-8"
LC_IDENTIFICATION="en_US.UTF-8"
LC_ALL=

/var/log/cron doesn't give any hints either - CMD (run-parts /etc/cron.daily)

the issue is with x86_64 architecture

--
Best regards,
Armin

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Will QA web site have CentOS 6.1 status?

2011-07-19 Thread Always Learning 

On Tue, 2011-07-19 at 10:51 -0700, Greg Bailey wrote:#

 The QA web site at http://qaweb.dev.centos.org/qa/blog 
 was really helpful for those of us who were curious as to how CentOS
 6.0 was coming along.  However, there doesn't seem to be much
 information as to how CentOS 6.1 is going from either the QA web site,
 the forums (Announcements), or Kananbir's twitter feed -- but it may
 be I'm just not looking in the right place.

Like some others, I imagine, I am waiting patiently for Centos 6.1 which
will reflect the tranquillity one has come to expect, respect and
appreciate in Centos.  Hopefully any 6.0 issues will be resolved in 6.1.
 

-- 
With best regards,

Paul.
England,
EU.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread Steve liu 
Hi

just want to check out soft by svn, but failed for 'connection refused'
reason

e.g.
svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

and this is my iptables status and some info to confirm the DNS and ICMP
connection are ok.

=
 service iptables status
 iptables: Firewall is not running.

 ping svn.mplayerhq.hu
 PING svn.mplayerhq.hu (192.190.173.45) 56(84) bytes of data.
 64 bytes from avserver.banki.hu (192.190.173.45): icmp_seq=1 ttl=49
time=200 ms
=


 so, anyone knows the reason?

 my system is centos 6 with 64bit

 thanks
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Will QA web site have CentOS 6.1 status?

2011-07-19 Thread David Lemcoe 
I haven't heard a single bit of news about CentOS 6.1, and that's a little
frustrating seeing how quick 5.1 was from 5.0...

On Tue, Jul 19, 2011 at 2:26 PM, Always Learning cen...@u6.u22.net wrote:


 On Tue, 2011-07-19 at 10:51 -0700, Greg Bailey wrote:#

  The QA web site at http://qaweb.dev.centos.org/qa/blog
  was really helpful for those of us who were curious as to how CentOS
  6.0 was coming along.  However, there doesn't seem to be much
  information as to how CentOS 6.1 is going from either the QA web site,
  the forums (Announcements), or Kananbir's twitter feed -- but it may
  be I'm just not looking in the right place.

 Like some others, I imagine, I am waiting patiently for Centos 6.1 which
 will reflect the tranquillity one has come to expect, respect and
 appreciate in Centos.  Hopefully any 6.0 issues will be resolved in 6.1.


 --
 With best regards,

 Paul.
 England,
 EU.


 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS-announce Digest, Vol 77, Issue 5

2011-07-19 Thread Markus Falb 
On 19.7.2011 19:48, Ljubomir Ljubojevic wrote:
 Markus Falb wrote:

 Announcement made but the updates are still missing. I just had a look
 on mirror.centos.org and I could not find it.

 -- Kind Regards, Markus Falb

 
 Does this ring a bell?:
 
   The following updated files have been uploaded and are currently
   syncing to the mirrors: ( md5sum Filename )

Of course it did. Thats why I asked.

-- Kind Regards, Markus Falb



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread David Lemcoe 
Usually as a quick troubleshooting step, I will go service iptables stop,
try what is causing the problem, and then see if it's the firewall causing
the issue.

On Tue, Jul 19, 2011 at 2:30 PM, Steve liu lsen@gmail.com wrote:

 Hi

 just want to check out soft by svn, but failed for 'connection refused'
 reason

 e.g.
 svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
 svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

 and this is my iptables status and some info to confirm the DNS and ICMP
 connection are ok.

 =
  service iptables status
  iptables: Firewall is not running.

  ping svn.mplayerhq.hu
  PING svn.mplayerhq.hu (192.190.173.45) 56(84) bytes of data.
  64 bytes from avserver.banki.hu (192.190.173.45): icmp_seq=1 ttl=49
 time=200 ms
 =


  so, anyone knows the reason?

  my system is centos 6 with 64bit

  thanks



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread Steve liu 
thanks for your quick response

but I really do this, see highlight...

any else


On Wed, Jul 20, 2011 at 2:43 AM, David Lemcoe fo...@lemcoe.com wrote:

 Usually as a quick troubleshooting step, I will go service iptables stop,
 try what is causing the problem, and then see if it's the firewall causing
 the issue.

 On Tue, Jul 19, 2011 at 2:30 PM, Steve liu lsen@gmail.com wrote:

 Hi

 just want to check out soft by svn, but failed for 'connection refused'
 reason

 e.g.
 svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
 svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

 and this is my iptables status and some info to confirm the DNS and ICMP
 connection are ok.

 =
  service iptables status
  iptables: Firewall is not running.

  ping svn.mplayerhq.hu
  PING svn.mplayerhq.hu (192.190.173.45) 56(84) bytes of data.
  64 bytes from avserver.banki.hu (192.190.173.45): icmp_seq=1 ttl=49
 time=200 ms
 =


  so, anyone knows the reason?

  my system is centos 6 with 64bit

  thanks



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos




-- 
steve
Beijin, China
lsen@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] CentOS updates (Was: CentOS-announce Digest, Vol 77, Issue 5)

2011-07-19 Thread Akemi Yagi 
On Tue, Jul 19, 2011 at 11:42 AM, Markus Falb markus.f...@fasel.at wrote:

 Announcement made but the updates are still missing. I just had a look
 on mirror.centos.org and I could not find it.

From a Forum post this morning:

https://www.centos.org/modules/newbb/viewtopic.php?topic_id=32234start=0#forumpost137902

There was some problem but has been fixed.

Akemi
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS-announce Digest, Vol 77, Issue 5

2011-07-19 Thread helpaz 
On Tue, Jul 19, 2011 at 21:42, Markus Falb markus.f...@fasel.at wrote:
 Announcement made but the updates are still missing. I just had a look
 on mirror.centos.org and I could not find it.
 Of course it did. Thats why I asked.

AFAIK it is now fixed and soon you should see this updates near your mirror.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread David Lemcoe 
I apologize. I didn't even see that part.

I've never used svn:// to access my repos, so I won't be able to help there.

Though, what I do use is http:// to access them, because it makes for one
less port to be open. You actually use apache to do it.

http://wiki.centos.org/HowTos/Subversion

On Tue, Jul 19, 2011 at 2:47 PM, Steve liu lsen@gmail.com wrote:

 thanks for your quick response

 but I really do this, see highlight...

 any else


 On Wed, Jul 20, 2011 at 2:43 AM, David Lemcoe fo...@lemcoe.com wrote:

 Usually as a quick troubleshooting step, I will go service iptables
 stop, try what is causing the problem, and then see if it's the firewall
 causing the issue.

 On Tue, Jul 19, 2011 at 2:30 PM, Steve liu lsen@gmail.com wrote:

 Hi

 just want to check out soft by svn, but failed for 'connection refused'
 reason

 e.g.
 svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
 svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

 and this is my iptables status and some info to confirm the DNS and ICMP
 connection are ok.

 =
  service iptables status
  iptables: Firewall is not running.

  ping svn.mplayerhq.hu
  PING svn.mplayerhq.hu (192.190.173.45) 56(84) bytes of data.
  64 bytes from avserver.banki.hu (192.190.173.45): icmp_seq=1 ttl=49
 time=200 ms
 =


  so, anyone knows the reason?

  my system is centos 6 with 64bit

  thanks



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos




 --
 steve
 Beijin, China
 lsen@gmail.com


 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6

2011-07-19 Thread Rob Kampen 

 On 07/19/2011 10:21 AM, m.r...@5-cent.us wrote:

I finally switched workstations, and am running into a lot of truly
annoying details with CentOS 6, and the software with it. For one, I'm
doing this by webmail, and this version of Firefox *insists* on putting
what I'm typing in gray, rather than black. For another, I despise the new
version of thunderbird, since it now shows the full subject, if I have
what they used to call the preview pane... and then take six more lines to
do it, which I can't make go away.[1]
Yes - thunderbird 3 uses more screen real-estate, also I just found out 
the funambol plug-in to allow me to sync and backup my contacts is not 
available and doesn't appear to be getting any nearer - this is just 
about enough to get me back onto 5.6!!

rxvt, which is my preferred terminal, comes up with about 6 pt type, and
I'm trying to find out how to change that, as well as bringing up all
seven of my sessions in a directory under my home, instead of home

*sigh* Hopefully, 6.1 will fix at least *some* things...
yumex also has some quirks - it doesn't remember its setting and thus 
always goes back 'update' list - not normally a problem as I normally 
use yum, but when building up a new system or looking for packages yumex 
normally just makes life easier.

  mark, who doesn't want something that looks like M$

1. All mailreaders used to show this information at the top of the email,
and hide or unhide the rest of the headers... but no matter what, if I
scrolled down, they went off the top of the screen, not stayed there
occupying space.


rant
you made no comment about anaconda - I found it seems to have moved 
backwards - a lot!
Could not find out how to set up my md-raid in any of the offered panels 
- so I ended up using a UBCD disk to do the partitioning and setting the 
fd mode - then anaconda showed the /dev/mdx devices - finally!
Then when I tried rescue mode it asks for a restore image - I hadn't 
even got to the point where this could be done - I was looking for a 
runlevel 1 type of console so I could make some changes - I still don't 
know what I did, but eventually managed to crash out of the installer 
and get a root prompt.

As I said - seems to have gone seriously backward.
/rant
Having vented, I must say the rest of CentOS 6.0 seems to work well - 
I'll keep exploring.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos


attachment: rkampen.vcf___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread Steve liu 
I agree.

but it's not up to me.
some web site only offers svn you know...

this works for me before...

at first I supposed it be problem of that web site. But later I tried to
check out sth from other site, still failed.

so I guess there must be sth wrong in my sys...[?]

though, thanks all the same. [?]

On Wed, Jul 20, 2011 at 2:56 AM, David Lemcoe fo...@lemcoe.com wrote:

 I apologize. I didn't even see that part.

 I've never used svn:// to access my repos, so I won't be able to help
 there.

 Though, what I do use is http:// to access them, because it makes for one
 less port to be open. You actually use apache to do it.

 http://wiki.centos.org/HowTos/Subversion


 On Tue, Jul 19, 2011 at 2:47 PM, Steve liu lsen@gmail.com wrote:

 thanks for your quick response

 but I really do this, see highlight...

 any else


 On Wed, Jul 20, 2011 at 2:43 AM, David Lemcoe fo...@lemcoe.com wrote:

 Usually as a quick troubleshooting step, I will go service iptables
 stop, try what is causing the problem, and then see if it's the firewall
 causing the issue.

 On Tue, Jul 19, 2011 at 2:30 PM, Steve liu lsen@gmail.com wrote:

 Hi

 just want to check out soft by svn, but failed for 'connection refused'
 reason

 e.g.
 svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
 svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

 and this is my iptables status and some info to confirm the DNS and ICMP
 connection are ok.

 =
  service iptables status
  iptables: Firewall is not running.

  ping svn.mplayerhq.hu
  PING svn.mplayerhq.hu (192.190.173.45) 56(84) bytes of data.
  64 bytes from avserver.banki.hu (192.190.173.45): icmp_seq=1 ttl=49
 time=200 ms
 =


  so, anyone knows the reason?

  my system is centos 6 with 64bit

  thanks



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos




 --
 steve
 Beijin, China
 lsen@gmail.com


 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos



 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos




-- 
steve
Beijin, China
lsen@gmail.com
338.gif33A.gif___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6

2011-07-19 Thread Rob Kampen 

 On 07/19/2011 10:58 AM, Steve Clark wrote:

On 07/19/2011 10:21 AM, m.r...@5-cent.us wrote:

I finally switched workstations, and am running into a lot of truly
annoying details with CentOS 6, and the software with it. For one, I'm
doing this by webmail, and this version of Firefox *insists* on putting
what I'm typing in gray, rather than black. For another, I despise the new
version of thunderbird, since it now shows the full subject, if I have
what they used to call the preview pane... and then take six more lines to
do it, which I can't make go away.[1]

Do you have the CompactHeader extension? This will shrink  the subject 
area to one line with a + to expand it.

Thanks - this works just fine!!

rxvt, which is my preferred terminal, comes up with about 6 pt type, and
I'm trying to find out how to change that, as well as bringing up all
seven of my sessions in a directory under my home, instead of home

*sigh* Hopefully, 6.1 will fix at least *some* things...

  mark, who doesn't want something that looks like M$

1. All mailreaders used to show this information at the top of the email,
and hide or unhide the rest of the headers... but no matter what, if I
scrolled down, they went off the top of the screen, not stayed there
occupying space.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos




--
Stephen Clark
*NetWolves*
Sr. Software Engineer III
Phone: 813-579-3200
Fax: 813-882-0209
Email: steve.cl...@netwolves.com
http://www.netwolves.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos


attachment: rkampen.vcf___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] nfsv4 and kerberos - fails to mount

2011-07-19 Thread Rob Kampen 

 I have been trying all sorts of things to get this working.
nfsv4 works fine if I just use the nfs-v3 form of export
i.e.
/nfs4exports 
192.168.230.237/24(ro,fsid=0,sync,insecure,no_root_squash,no_subtree_check,squash_uids=0-99)
/nfs4exports/NDG 
192.168.230.237/24(rw,insecure,no_subtree_check,nohide,sync,no_root_squash,squash_uids=0-99)

but this is inherently open to all on this machine.

so then using this recipe
http://www.techrepublic.com/blog/opensource/kerberos-authentication-with-nfsv4/1965
and many others that hours of google foo shows

change exports to
/nfs4exports 
gss/krb5(ro,fsid=0,sync,insecure,no_root_squash,no_subtree_check,squash_uids=0-99)
/nfs4exports/NDG 
gss/krb5(rw,insecure,no_subtree_check,nohide,sync,no_root_squash,squash_uids=0-99)


now from the client I can see
[rkampen@timsws ~]$ showmount -e example.com
Export list for example.com:
/nfs4exports gss/krb5
/nfs4exports/NDG gss/krb5

but
[rkampen@timsws /]$ sudo mount -t nfs4 -o sec=krb5 ndgonline.net:/ /NDG/
mount.nfs4: access denied by server while mounting ndgonline.net:/

and
[rkampen@timsws /]$ sudo mount -t nfs4 -o sec=krb5 ndgonline.net:/NDG /NDG/
mount.nfs4: access denied by server while mounting ndgonline.net:/NDG

And I cannot find any log entries relating to the kerberos KDC or on the 
nfs server - two different machines.
I have set up all the principals in the KDC and used kadmin/ktadd to 
load into the client and the server /etc/krb5.keytab as per the above url.
How and where do I get logging to occur so I can find out the missing 
piece in my kerberos setup?

Any help or directions appreciated.
TIA



attachment: rkampen.vcf___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] [OT] Apache oddity - appending garbage request does not result in a 404

2011-07-19 Thread Ray Leventhal 
HI,

I know this is OT and I apologize in advance, but with the wealth of 
knowledge on this list I hope that some kind soul will help (off list is 
fine).

I run CentOS 5.6 with the usual LAMP stack.  One of the virtual sites on 
this server failed a PCI Compliance (credit card security stuff) 
because, of all things, a URL with a non-existent request after the .php 
doesn't return a 404 and I can't figure out why.

Example: http://www.domain.com/pagedoesnotexist returns the expected 404

But browse to a page that does exist, like goodpage.php, then append 
either a slash and some random string, or a ?=somerandomstring and the 
goodpage.php is still displayed.

I'll gladly provide more info, if needed.  Any pointers on where to look 
would be truly appreciated.

Thanks in advance, and my apologies for the noise.

-Ray
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] nfsv4 and kerberos - fails to mount

2011-07-19 Thread Olaf Mueller 
Rob Kampen wrote:

Hello,

nfs4 with kerberos works fine here on CentOS 5.6.

 change exports to
[...]gss/krb([...]
[...]gss/krb([...]
My /etc/exports says '... gss/krb5(...'.
And 'SECURE_NFS=yes' is set in /etc/sysconfig/nfs.

All needed services are running?
- rpcsvcgssd (server)
- rpcidmapd (server)
- rpcgssd (client)

A very good instruction, in my opinion, to get it running is
http://sadiquepp.blogspot.com/2009/02/how-to-configure-nfsv4-with-kerberos-in.html.


regards
Olaf
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] Apache oddity - appending garbage request does not result in a 404

2011-07-19 Thread John R Pierce 
On 07/19/11 1:28 PM, Ray Leventhal wrote:
 Example:http://www.domain.com/pagedoesnotexist  returns the expected 404

 But browse to a page that does exist, like goodpage.php, then append
 either a slash and some random string, or a ?=somerandomstring and the
 goodpage.php is still displayed.

 I'll gladly provide more info, if needed.  Any pointers on where to look
 would be truly appreciated.

your php page should examine the arguments and if there's anythign there 
unexpected, it should force the 404 via

 {
 header ('Location: '.$newReq);
 header ('HTTP/1.0 404 Page Not Found');
 die;  // Don't send any more output.
 }

or whatever...


-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] [OT] Apache oddity - appending garbage request does not result in a 404

2011-07-19 Thread Keith Roberts 
On Tue, 19 Jul 2011, John R Pierce wrote:

 To: centos@centos.org
 From: John R Pierce pie...@hogranch.com
 Subject: Re: [CentOS] [OT] Apache oddity - appending garbage request does not
 result in a 404
 
 On 07/19/11 1:28 PM, Ray Leventhal wrote:
 Example:http://www.domain.com/pagedoesnotexist  returns the expected 404

 But browse to a page that does exist, like goodpage.php, then append
 either a slash and some random string, or a ?=somerandomstring and the
 goodpage.php is still displayed.

 I'll gladly provide more info, if needed.  Any pointers on where to look
 would be truly appreciated.

 your php page should examine the arguments and if there's anythign there
 unexpected, it should force the 404 via

 {
 header ('Location: '.$newReq);
 header ('HTTP/1.0 404 Page Not Found');
 die;  // Don't send any more output.
 }

 or whatever...

If you don't need or want to pass any variables to your 
PHP scripts, you could use something like this PHP function:

function url_check()
{

  if (''  _SERVER[QUERY_STRING] OR
  '#top'  _SERVER[QUERY_STRING])
  {
   echo p Passing of variables by URL query string is not supported! /p;
   echo p Program terminating now - Please try again /p;
   echo p Found in URL - _SERVER['QUERY_STRING'] /p;
   exit();
  }

Kind Regards,

Keith Roberts

-
Websites:
http://www.karsites.net
http://www.php-debuggers.net
http://www.raised-from-the-dead.org.uk

All email addresses are challenge-response protected with
TMDA [http://tmda.net]
-
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6 - VM network bridge issue

2011-07-19 Thread Kahlil Hodgson 
On 07/19/2011 07:52 PM, Khusro Jaleel wrote:
 A bit of a long shot but does turning on STP on the br* interfaces help? 
 I vaguely remember I had to do the following on one of my machines that 
 uses bonding + bridges:
 
 # brctl stp br0 on
 
 I have put this in the machines' /etc/rc.local so it's applied upon 
 every reboot.

I've had to do the same for my Fedora hosts with Centos guests. You can put
STP=on
in
/etc/sysconfig/network-scripts/ifcfg-br0

to force this bridge to always use STP.

Also, adding

NETWORKDELAY=15
to
/etc/sysconfig/network

will force you network startup script to hang for 15 seconds during
start up.  This gives the STP a chance to settle before any other
services attempt to use the bridge.

Kal
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6 - VM network bridge issue (SOLVED)

2011-07-19 Thread Emmett Culley 
On 07/19/2011 12:14 AM, James Hogarth wrote:
 
   I built a CentOS 6 machine to host several CentOS 6 guest servers. As all 
 guests will be Internet facing I set up the host with two bridged NICs and 
 assigned an Internet facing IP address to br0 and a local IP address to br1.
  
   Each guest was installed using br0 and br1 with virtio drivers.  On each I 
 assigned an Internet facing IP address to eth0 and a local IP address on 
 eth1.  So far so good.  I can access the guest servers from either IP address 
 as expected.  That is HTTP, SSH and SMTP servers on them are accessible and 
 do what they are supposed to do.
  
   Except...  Except from any location outside of my Comcast Cable Modem.  To 
 be clear, from any machine inside the modem to any address on the guests, all 
 works perfectly.  But outside the modem the guest apps either don't receive 
 packets or for some reason don't respond, and I've tired it from four 
 different locations.
  
   Using Wireshark on the guests I can see the packets arrive from the 
 outside sources, but no response is seen.  On accesses from inside I can see 
 both incoming and outgoing packets, as expected.
  
   I can ping the outside sources from the guests, yet pings from the outside 
 sources get no response from the guests.  All the outside sources get 
 responses when pinging the host.  I can ping the guests from any inside 
 machine.
  
 
 Initial thought is a routing issue particularly with multiple NICs.
 
 What does 'ip r s' reveal?
 
That was it!  ip r s showed that I had the local facing NIC (eth1) as the 
gateway, which caused all outgoing packets to be routed to the local network 
DUH!.

Emmett
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Will QA web site have CentOS 6.1 status?

2011-07-19 Thread Daniel Bird 
On 19/07/2011 19:42, David Lemcoe wrote:
 I haven't heard a single bit of news about CentOS 6.1, and that's a 
 little frustrating seeing how quick 5.1 was from 5.0...
 From the front page of http://centos.org/

Since upstream has a 6.1 version already released, we will be using a 
Continous Release repository for 6.0 to bring all 6.1 and post 6.1 
security updates to all 6.0 users, till such time as CentOS-6.1 is 
released itself.

D
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Will QA web site have CentOS 6.1 status?

2011-07-19 Thread David Lemcoe 
That's not exactly news, since that came out when 6.0 came out. Also, it
doesn't speak as to a possible release of 6.1.



On Tue, Jul 19, 2011 at 5:45 PM, Daniel Bird db...@sgul.ac.uk wrote:

 On 19/07/2011 19:42, David Lemcoe wrote:
  I haven't heard a single bit of news about CentOS 6.1, and that's a
  little frustrating seeing how quick 5.1 was from 5.0...
  From the front page of http://centos.org/

 Since upstream has a 6.1 version already released, we will be using a
 Continous Release repository for 6.0 to bring all 6.1 and post 6.1
 security updates to all 6.0 users, till such time as CentOS-6.1 is
 released itself.

 D
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] managing a rack full of centos servers

2011-07-19 Thread John R Pierce 
to date, I've done all my administration on a manual 1 at a time basis, 
as each system has been pretty much unique.

its looking like I might need to setup a deployment of a dozen or 2 
basically identical machines, all running pretty much the same sorts of 
stuff.  I have zero experience with the sorts of management tools folks 
use to automate this type of configuration, both initial setup, and 
ongoing management (system updates, user application updates, 
configuration changes, etc).

anyone care to suggest any such tools, maybe some real-world pros and 
cons?   of course, being centos, I prefer FOSS tools.   for various 
reasons, this environment likely will NOT be virtualized (although I may 
emulate a test setup with vmware).



-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] nfsv4 and kerberos - fails to mount

2011-07-19 Thread Rob Kampen 

 On 07/19/2011 04:43 PM, Olaf Mueller wrote:

Rob Kampen wrote:

Hello,

nfs4 with kerberos works fine here on CentOS 5.6.


change exports to
[...]gss/krb([...]
[...]gss/krb([...]

My /etc/exports says '... gss/krb5(...'.

Got this already

And 'SECURE_NFS=yes' is set in /etc/sysconfig/nfs.

This too is set

All needed services are running?
- rpcsvcgssd (server)
- rpcidmapd (server)
- rpcgssd (client)

Yes all running

A very good instruction, in my opinion, to get it running is
http://sadiquepp.blogspot.com/2009/02/how-to-configure-nfsv4-with-kerberos-in.html.

This was one of the ones I used - will start from the beginning again.
Thanks for comments


regards
Olaf
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos


attachment: rkampen.vcf___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread William Warren 
On 7/19/2011 7:43 PM, John R Pierce wrote:
 to date, I've done all my administration on a manual 1 at a time basis,
 as each system has been pretty much unique.

 its looking like I might need to setup a deployment of a dozen or 2
 basically identical machines, all running pretty much the same sorts of
 stuff.  I have zero experience with the sorts of management tools folks
 use to automate this type of configuration, both initial setup, and
 ongoing management (system updates, user application updates,
 configuration changes, etc).

 anyone care to suggest any such tools, maybe some real-world pros and
 cons?   of course, being centos, I prefer FOSS tools.   for various
 reasons, this environment likely will NOT be virtualized (although I may
 emulate a test setup with vmware).



webmin is a good free option depending on your admin needs.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Fajar Priyanto 
On Wed, Jul 20, 2011 at 7:43 AM, John R Pierce pie...@hogranch.com wrote:
 to date, I've done all my administration on a manual 1 at a time basis,
 as each system has been pretty much unique.

 its looking like I might need to setup a deployment of a dozen or 2
 basically identical machines, all running pretty much the same sorts of
 stuff.  I have zero experience with the sorts of management tools folks
 use to automate this type of configuration, both initial setup, and
 ongoing management (system updates, user application updates,
 configuration changes, etc).

Redhat satellite can handle it. Too bad I don't know if there is foss
alternative for it.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread John J. Boyer 
Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I 
want to set up mailing lists for my server in the cloud for three 
domains that I own. What mailing list managers do yourecommend, and 
where can they be found? I don't ming compiling source code.

Thanks,
-- 
John J. Boyer; President, Chief Software Developer
Abilitiessoft, Inc.
http://www.abilitiessoft.com
Madison, Wisconsin USA
Developing software for people with disabilities

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread Dave Stevens 
On Tuesday, July 19, 2011 05:07:16 PM John J. Boyer wrote:
 Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I
 want to set up mailing lists for my server in the cloud for three
 domains that I own. What mailing list managers do yourecommend, and
 where can they be found? I don't ming compiling source code.
 
 Thanks,

mailman has always worked well for me, easy to use, reasonable defaults, mail 
archived by default.

Dave

-- 
Let us think the unthinkable, let us do the undoable, let us prepare to 
grapple with the ineffable itself, and see if we may not eff it after all.

Douglas Adams in one of the Hitchiker novels...
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Giovanni Tirloni 
On Tue, Jul 19, 2011 at 8:43 PM, John R Pierce pie...@hogranch.com wrote:

 to date, I've done all my administration on a manual 1 at a time basis,
 as each system has been pretty much unique.

 its looking like I might need to setup a deployment of a dozen or 2
 basically identical machines, all running pretty much the same sorts of
 stuff.  I have zero experience with the sorts of management tools folks
 use to automate this type of configuration, both initial setup, and
 ongoing management (system updates, user application updates,
 configuration changes, etc).

 anyone care to suggest any such tools, maybe some real-world pros and
 cons?   of course, being centos, I prefer FOSS tools.   for various
 reasons, this environment likely will NOT be virtualized (although I may
 emulate a test setup with vmware).


You might want to look at automation tools like Puppet, Chef or Cfengine (in
no particular order).

-- 
Giovanni Tirloni
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Patrick Lists 
On 07/20/2011 02:03 AM, Fajar Priyanto wrote:
 Redhat satellite can handle it. Too bad I don't know if there is foss
 alternative for it.

There is http://spacewalk.redhat.com/

Or check out:

http://pulpproject.org/
https://fedorahosted.org/candlepin/
http://theforeman.org/  (or look at https://fedorahosted.org/cobbler/ )

The above managed from: http://www.katello.org/

And then there's also for the Cloud:
https://www.aeolusproject.org/

And off course the workhorse:
http://www.puppetlabs.com/

Regards,
Patrick
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread Patrick Lists 
On 07/20/2011 02:17 AM, Dave Stevens wrote:
 On Tuesday, July 19, 2011 05:07:16 PM John J. Boyer wrote:
 Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I
 want to set up mailing lists for my server in the cloud for three
 domains that I own. What mailing list managers do yourecommend, and
 where can they be found? I don't ming compiling source code.

 Thanks,

 mailman has always worked well for me, easy to use, reasonable defaults, mail
 archived by default.

In addition to Dave's fine suggestion, there is also Sympa:
http://www.sympa.org/

Regards,
Patrick
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread David Lemcoe 
Spacewalk is the free alternative to Satellite, and is pretty dang awesome
if you ask me.

On Tue, Jul 19, 2011 at 8:25 PM, Patrick Lists 
centos-l...@puzzled.xs4all.nl wrote:

 On 07/20/2011 02:03 AM, Fajar Priyanto wrote:
  Redhat satellite can handle it. Too bad I don't know if there is foss
  alternative for it.

 There is http://spacewalk.redhat.com/

 Or check out:

 http://pulpproject.org/
 https://fedorahosted.org/candlepin/
 http://theforeman.org/  (or look at https://fedorahosted.org/cobbler/ )

 The above managed from: http://www.katello.org/

 And then there's also for the Cloud:
 https://www.aeolusproject.org/

 And off course the workhorse:
 http://www.puppetlabs.com/

 Regards,
 Patrick
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread John R Pierce 
On 07/19/11 5:07 PM, John J. Boyer wrote:
 Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I
 want to set up mailing lists for my server in the cloud for three
 domains that I own. What mailing list managers do yourecommend, and
 where can they be found? I don't ming compiling source code.

Mailman is kind of the defacto standard list manager these days, indeed, 
this centos list is managed by it.

the project site is  http://www.list.org/ with the documentation and such.

its in the EL5 and I assume EL6 standard repositories, so...

 yum install mailman

suffices to install it and set it up.  it uses a service called, 
naturally, mailman

 chkconfig mailman on
 service mailman start

except I think the installation does this automatically.

oddly, In the rhel/centos install, all the management tools are in 
/usr/lib/mailman/bin/ which isn't in the normal path, but you only need 
these to create new lists and such, pretty much everything else is done 
through a simple web interface..

the web interface for users and list moderators will default to 
http://yourhost.domain.com/mailman/listinfo  if you don't dink around 
with vhost records.



-- 
john r pierceN 37, W 122
santa cruz ca mid-left coast

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Peter Brady 
On 20/07/11 10:30 AM, David Lemcoe wrote:
 Spacewalk is the free alternative to Satellite, and is pretty dang
 awesome if you ask me.

+1 for spacewalk.  I use it in combination with kickstarts (have not
fiddled with the cobbler/PXE provisioning interface yet) to rollout
identical deployments for HPC grids.  Then manage patches and updates
via spacewalk.

Cheers
-pete



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Fajar Priyanto 
On Wed, Jul 20, 2011 at 8:25 AM, Patrick Lists
centos-l...@puzzled.xs4all.nl wrote:
 On 07/20/2011 02:03 AM, Fajar Priyanto wrote:
 Redhat satellite can handle it. Too bad I don't know if there is foss
 alternative for it.

 There is http://spacewalk.redhat.com/

They have it? Awesome!
Thanks for the info!!
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Les Mikesell 
On 7/19/11 6:43 PM, John R Pierce wrote:
 to date, I've done all my administration on a manual 1 at a time basis,
 as each system has been pretty much unique.

 its looking like I might need to setup a deployment of a dozen or 2
 basically identical machines, all running pretty much the same sorts of
 stuff.  I have zero experience with the sorts of management tools folks
 use to automate this type of configuration, both initial setup, and
 ongoing management (system updates, user application updates,
 configuration changes, etc).

 anyone care to suggest any such tools, maybe some real-world pros and
 cons?   of course, being centos, I prefer FOSS tools.   for various
 reasons, this environment likely will NOT be virtualized (although I may
 emulate a test setup with vmware).


It doesn't take that much time to manage a server.  For a dozen or two you 
probably can't save enough time to be worth setting up anything more than ssh 
keys on one that you use for management and a couple of scripts that loop over 
them to do things like 'ssh  $host yum -y update that you might do 
frequently. 
  For more ad-hoc things you can just open a bunch of terminal windows ssh'd to 
each and paste in the commands.

For the install you can copy the kickstart file that the first install creates 
to a web server and use it to duplicate the setup on the others.  You might 
want 
something like backuppc to keep a history of recent copies of at least /etc and 
anywhere else you have modified files.  If you do any complicated programming 
or 
scripting, you'll probably want subversion or some other version control system 
to manage the revisions.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread David Lemcoe 
Mailman is probably what you want to use, because anyone who subscribes to
any amount of mailing lists knows exactly how to use Mailman and it's
features.

On Tue, Jul 19, 2011 at 8:45 PM, John R Pierce pie...@hogranch.com wrote:

 On 07/19/11 5:07 PM, John J. Boyer wrote:
  Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I
  want to set up mailing lists for my server in the cloud for three
  domains that I own. What mailing list managers do yourecommend, and
  where can they be found? I don't ming compiling source code.

 Mailman is kind of the defacto standard list manager these days, indeed,
 this centos list is managed by it.

 the project site is  http://www.list.org/ with the documentation and such.

 its in the EL5 and I assume EL6 standard repositories, so...

 yum install mailman

 suffices to install it and set it up.  it uses a service called,
 naturally, mailman

 chkconfig mailman on
 service mailman start

 except I think the installation does this automatically.

 oddly, In the rhel/centos install, all the management tools are in
 /usr/lib/mailman/bin/ which isn't in the normal path, but you only need
 these to create new lists and such, pretty much everything else is done
 through a simple web interface..

 the web interface for users and list moderators will default to
 http://yourhost.domain.com/mailman/listinfo  if you don't dink around
 with vhost records.



 --
 john r pierceN 37, W 122
 santa cruz ca mid-left coast

 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread Les Mikesell 
On 7/19/11 8:19 PM, David Lemcoe wrote:
 Mailman is probably what you want to use, because anyone who subscribes to any
 amount of mailing lists knows exactly how to use Mailman and it's features.

One feature you are likely to miss, though, is a good search for the archives. 
If it is open to the public I suppose you can let google index it for you.

-- 
   Les Mikesell
lesmikes...@gmail.com


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread Jay Leafey 
I usually use SSH keys in conjunction with ClusterSSH 
(http://clusterssh.sourceforge.net), I have been using the 3.27 version 
with good results.  It makes managing batches of servers a bit easier, 
allowing the execution of the same command across multiple systems at 
the same time.

--
Jay Leafey - jay.lea...@mindless.com
Memphis, TN


smime.p7s
Description: S/MIME Cryptographic Signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread Smithies, Russell 
I'll put in a plug for HP Cluster Management Utility
http://h20311.www2.hp.com/HPC/cache/412128-0-0-0-121.html?jumpid=reg_R1002_USEN

We also use C3 - an oldy but a goody :-)
http://www.csm.ornl.gov/torc/C3/index.html


--Russell

 -Original Message-
 From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
 Behalf Of Patrick Lists
 Sent: Wednesday, 20 July 2011 12:27 p.m.
 To: CentOS mailing list
 Subject: Re: [CentOS] Recommended mailing list manager for CentOS 5.6
 
 On 07/20/2011 02:17 AM, Dave Stevens wrote:
  On Tuesday, July 19, 2011 05:07:16 PM John J. Boyer wrote:
  Does CentOS 5.6 have a mailing list manager like ecartis or
 majordomo? I
  want to set up mailing lists for my server in the cloud for three
  domains that I own. What mailing list managers do yourecommend, and
  where can they be found? I don't ming compiling source code.
 
  Thanks,
 
  mailman has always worked well for me, easy to use, reasonable
 defaults, mail
  archived by default.
 
 In addition to Dave's fine suggestion, there is also Sympa:
 http://www.sympa.org/
 
 Regards,
 Patrick
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos
===
Attention: The information contained in this message and/or attachments
from AgResearch Limited is intended only for the persons or entities
to which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipients is prohibited by AgResearch
Limited. If you have received this message in error, please notify the
sender immediately.
===
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] high performance open source DHCP solution?

2011-07-19 Thread Rogelio 
The free DHCP solution, ISC, seems to be having scaling issues (i.e.
handling only about 200 DHCPDISCOVER and 20 DHCPRENEW requests), and I
was wondering if anyone had any open source suggestions of solutions
that could scale much better?

(Ideally, I could find a free version of a solution like Nominum, but
I know that's asking for much.)

Anyone have any suggestions?

-- 
Also on LinkedIn?  Feel free to connect if you too are an open
networker: scubac...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Recommended mailing list manager for CentOS 5.6

2011-07-19 Thread Robert Heller 
At Tue, 19 Jul 2011 19:07:16 -0500 CentOS mailing list centos@centos.org 
wrote:

 
 Does CentOS 5.6 have a mailing list manager like ecartis or majordomo? I 
 want to set up mailing lists for my server in the cloud for three 
 domains that I own. What mailing list managers do yourecommend, and 
 where can they be found? I don't ming compiling source code.
 

Mailman works well. 

 Thanks,

-- 
Robert Heller -- 978-544-6933 / hel...@deepsoft.com
Deepwoods Software-- http://www.deepsoft.com/
()  ascii ribbon campaign -- against html e-mail
/\  www.asciiribbon.org   -- against proprietary attachments



  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] high performance open source DHCP solution?

2011-07-19 Thread Joseph L. Casale 
Anyone have any suggestions?

You thought about using its built in load balancing to scale out the capacity?
Don't know what hardware you are using but it might be worth looking at the
lease db and log file setups you are using if you can't add iron to the 
equation.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] managing a rack full of centos servers

2011-07-19 Thread cooleyr 
On Jul 19, 2011 6:48 PM, Jay Leafey jay.lea...@mindless.com wrote:

 I usually use SSH keys in conjunction with ClusterSSH (
http://clusterssh.sourceforge.net), I have been using the 3.27 version with
good results.  It makes managing batches of servers a bit easier, allowing
the execution of the same command across multiple systems at the same time.

In the same vein, I instead recomend pdsh.  It has a few quirks which
increases the learning curve, but it works very, very well, assuming that's
the level of control you want/need.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] high performance open source DHCP solution?

2011-07-19 Thread Les Mikesell 
On 7/19/11 9:54 PM, Rogelio wrote:
 The free DHCP solution, ISC, seems to be having scaling issues (i.e.
 handling only about 200 DHCPDISCOVER and 20 DHCPRENEW requests), and I
 was wondering if anyone had any open source suggestions of solutions
 that could scale much better?

 (Ideally, I could find a free version of a solution like Nominum, but
 I know that's asking for much.)

 Anyone have any suggestions?

That's the first I've heard of scaling/performance problems - writing the 
syslog 
entries are about the most work it does.  What kind of hardware and how much 
RAM 
does the server have?   My first thought would be to use a 2nd system which you 
probably want for failover in any case.

-- 
   Les Mikesell
 lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] high performance open source DHCP solution?

2011-07-19 Thread Rogelio 
 You thought about using its built in load balancing to scale out the capacity?
 Don't know what hardware you are using but it might be worth looking at the
 lease db and log file setups you are using if you can't add iron to the 
 equation.

I'm looking over the documentation, and I see the -Y/-y options in dhcpd.

Maybe there is something worth considering rather than changing DHCP solutions.

(Other suggestions for DHCP replacement / scaling are always welcome)

-- 
Also on LinkedIn?  Feel free to connect if you too are an open
networker: scubac...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] svn check out failed for 'connection refused' reason

2011-07-19 Thread cooleyr 
On Jul 19, 2011 11:30 AM, Steve liu lsen@gmail.com wrote:
 e.g.
 svn co svn://svn.mplayerhq.hu/mplayer/trunk mplayer
 svn: Can't connect to host 'svn.mplayerhq.hu': Connection refused

 and this is my iptables status and some info to confirm the DNS and ICMP
connection are ok.

Do an nmap scan on svn.mplayerhq.hu.  Look for svn / subversion in etc
services to see which port you specifically need to have open.  I'd bet your
upstream firewall is blocking the port.  You can try connection to the host
+ port with nc -w2 -v to see if you get connected.  Type some junk and you
should see some error back from the server.
If the network looks good with all of the above, the problem is with your
local svn binary, or its configuration.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firewall?

2011-07-19 Thread hadi motamedi 
On 7/19/11, John Hodrien j.h.hodr...@leeds.ac.uk wrote:
 On Tue, 19 Jul 2011, hadi motamedi wrote:

 Dear All
 With respect to the references you gave me, I figured out to add the
 following line to my /etc/sysconfig/iptables :
 -A RH-Firewall-1-INPUT -p udp -m udp --dport 53 -j ACCEPT
 Then I issued:
 #service iptables restart
 And now the windows machine can browse valid url . Thank you for your
 help.
 I want to put more stuff on my centos 5.6 machine. To this end, I
 installed ultraedit, octave, gschem,shorewall on my centos 5.6
 machine. But I don't see one-to-one relationship between these
 applications and the ones I have on my windows machine. For example,
 the octave does not have  the same power as MATLAB on windows machine
 or Pspice on windows is more powerful than the the one I have on my
 centos. Can you please let me know where powerful centos stuffs for
 various purposes can be selected and installed from the internet?

 So you've installed Octave but it's not as powerful as MATLAB on windows.
 I know this is crazy talk, but have you tried MATLAB on CentOS?

 There is no one-to-one relationship between applications on one OS and on
 another.

 Keep googling.

 jh
 ___
 CentOS mailing list
 CentOS@centos.org
 http://lists.centos.org/mailman/listinfo/centos

If we cannot find the exact application name for centos, say MATLAB
for centos does not exist, so we must search for 'Mathematics
laboratory for centos' ? Or if Pspice for centos does not exist so we
must search for 'Electronics circuit schematics editor and simulator
for centos' ? If there any reference site that we can select centos
application with respect to their functionality deffinition but not
just the application name?
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

  1   2   >