[CentOS-docs] new wiki article: How to repair a software RAID5 volume with more than one failed disk
Hi all, I've finally got some time to finish the second article I've promised to write some time ago; please read it, any comments are welcome: http://wiki.centos.org/TipsAndTricks/Repair_RAID5_Volumes -- Lev. ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] newsletter
Hey On Wed, Aug 19, 2009 at 3:53 PM, fish.firedfish.fi...@gmail.com wrote: What is the proof reader ? Check if there has the pronunciation error? Of transalte the document to the local language? I don't know if I really get what you are trying to ask. A proof reader is someone who checks if all the spelling and grammar is correct. Currently the Newsletter is not translated, but I would really like that to happen :) Cheers Didi 2009-08-19 fish.fired 发件人: Geerd-Dietger Hoffmann 发送时间: 2009-08-19 21:25:10 收件人: Mail list for wiki articles 抄送: 主题: Re: [CentOS-docs] newsletter Hey On Wed, Aug 19, 2009 at 5:05 AM, lostsonlost...@lostsonsvault.org wrote: Hey I was wondering how i can become a proof reader for the newsletter ? I speak and read native english as it says in the wiki. Cool. We really need someone like that :) If you tell me your wiki name I will add you to the Newsletter group and you can help. Cheers Didi ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] newsletter
On Thu, Aug 20, 2009 at 3:39 PM, Marcus Moellerm...@marcus-moeller.de wrote: On Wed, Aug 19, 2009 at 3:53 PM, fish.firedfish.fi...@gmail.com wrote: What is the proof reader ? Check if there has the pronunciation error? Of transalte the document to the local language? I don't know if I really get what you are trying to ask. A proof reader is someone who checks if all the spelling and grammar is correct. Currently the Newsletter is not translated, but I would really like that to happen :) Thats not the complete truth :) The newsletter is already translated to Chinese by Timothy Lee. We should link to that at the end. And have a translation page somewhere. Am I correct in assuming that http://wiki.centos.org/zh/Newsletter is the page? Cheers Didi Best Regards Marcus ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] newsletter
OK. 2009-08-20 fish.fired 发件人: Marcus Moeller 发送时间: 2009-08-20 21:40:13 收件人: Mail list for wiki articles 抄送: 主题: Re: [CentOS-docs] newsletter On Wed, Aug 19, 2009 at 3:53 PM, fish.firedfish.fi...@gmail.com wrote: What is the proof reader ? Check if there has the pronunciation error? Of transalte the document to the local language? I don't know if I really get what you are trying to ask. A proof reader is someone who checks if all the spelling and grammar is correct. Currently the Newsletter is not translated, but I would really like that to happen :) Thats not the complete truth :) The newsletter is already translated to Chinese by Timothy Lee. Best Regards Marcus ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Newsletter help
Geerd-Dietger Hoffmann wrote: On Wed, Aug 19, 2009 at 5:11 PM, Ray Leventhalcen...@swhi.net wrote: Hi, I'd be happy to offer my services in proofreading the newsletter if this is needed. My 'day' job is that of a technical writer and I'm a native english speaker. If I can be of help, I'd be happy to. Hey cool :) We really need help. Can you tell me your wiki name and I can add you. Cheers Didi Hi Didi, Wiki name is: RayLeventhal Thanks, -Ray ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
[CentOS-docs] Correction on Multiple Pages in Wiki
Multiple pages keep trying to link to http://wiki.centos.org/NetworkManager This page does not exist but the following page does. http://wiki.centos.org/HowTos/Laptops/NetworkManager Can people referencing NetworkManager correct their Links. Seems most of the error are in the laptop howtos. Thank you, Nick Sklav ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS] CENTOS 4.8 available time????
Johnny Hughes wrote: We have the ISO and tree in QA testing at the moment, and all updates after the release of 4.8 are also in the QA tree for testing. There is currently a problem with AMD K2 and the i586 kernel, but that should not prevent release. Once we have received enough feedback that this roll out is good, we can move the release into place. Is it possible to get an update on the status of 4.8? Thanks James Pearson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
Bernhard Gschaider wrote on Thu, 20 Aug 2009 01:47:07 +0200: - following the Wiki-Howto to the letter (especially using the Xen-install-kernels) Again, I think this is the wrong way to go, it's outdated. I've never done it this way and I think this How-To is derived from very old Xen versions and got updated a few times over time without changing the basics. It *may* work, but it's complicated to follow and overly complex, e.g. you can very easily make a tiny mistake and never get going which is highly frustrating. As I wrote, just do a virt-install -p and that's all. No install kernels, no creation of an image file, no nothing. virt-install will do everything for you. Once the VM has been setup and saved you can create a config-file and put it in /etc/xen and then xm create the machine. Straight-forward and easy. The config-file is going to look like this: name = d-mini maxmem = 128 memory = 128 vcpus = 1 bootloader = /usr/bin/pygrub on_poweroff = destroy on_reboot = restart on_crash = restart #vfb = [ type=vnc,vncdisplay=12,vncunused=1 ] disk = [ file:/home2/vm/d-minimal.img,xvda,w] vif = [ mac=00:16:3e:43:18:13 ] And if you prefer kickstart a (replace with your own data) virt-install -p --location=ftp:// --noautoconsole --nographics -- file=/.../d-minimal.img --file-size=1 --name=d-mini --ram=256 -x ks=ftp://.../minimal-file.ks ip=192.168.1.* netmask=255.255.255.0 dns=192.168.1.* gateway=192.168.1.* gets you in business in less than 10 minutes without any manual intervention. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] needs help about vps
hi all anyone have experience about vps which one is better? xen vs virtual-box thank you __ Looking for the perfect gift? Give the gift of Flickr! http://www.flickr.com/gift/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CENTOS 4.8 available time????
On 08/20/2009 01:22 PM, James Pearson wrote: Is it possible to get an update on the status of 4.8? its going out to the mirrors right now, Depending on how long they take to stabalise, we should see release in the next 24 - 48 hrs. -- Karanbir Singh : http://www.karan.org/ : 2522...@icq ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] drbd xen question
Hello all, I am running drbd protocol A to a secondary machine to have 'backups' of my xen domUs. Is it necessary to change the xen domains configs to use /dev/drbd* instead of the LVM volume that drbd mirrors, and which the xen domU runs of? regards, Coert ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
Again, I think this is the wrong way to go, it's outdated. I've never done it this way and I think this How-To is derived from very old Xen versions and got updated a few times over time without changing the basics. It *may* work, but it's complicated to follow and overly complex, e.g. you can very easily make a tiny mistake and never get going which is highly frustrating. Actual, virt-install commmand line looks no less daunting to me. The Wiki described method should work for all RH derived distributions that are Xen PV compatible. I tried SME (or it might have been Trixbox... or both!) and it installed okay, but the kernel wasn't happy in a Xen world. Could fix it, but was lazy and used hardware virtualisation. Personally, I prefer to keep swap on a seperate partition, as it makes it easier to mount root. I don't know if that is possible under virt-install. To be honest, I don't really think there are too many shortcuts with Xen, because it pays to understand how it works at a lower level, how to mount loopbacks, even with LVM's inside them, etc. I can't really remember the options under virt-install, but if they do 'dumb things down', then that may not be helpful in the long run. Anyway, both ways are way more friendly than debootstrapping your Debian system. ;o) disk = [ file:/home2/vm/d-minimal.img,xvda,w] I think tap:aio is more favoured than file, for performance reasons. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] needs help about vps
- Original Message From: ann kok oiyan...@yahoo.ca To: centos@centos.org Sent: Thursday, 20 August, 2009 15:10:09 Subject: [CentOS] needs help about vps hi all anyone have experience about vps which one is better? Depends what you are trying to do run multiple servers, or just a second environment on your workstation plus, pls define 'better' ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] what is RAID background initialization ??
we have DELL server (CENTOS 4.X) with MD1000 connect on it. One of Raid5 (internal 4 disks) has hard disk bad and I replace it. I saw /var/log/messages have following entry: === Aug 18 15:33:20 host1 Server Administrator: Storage Service EventID: 2049 Array disk removed: Array Disk 0:11 Controller 1, Connector 0 Aug 18 15:34:09 host1 Server Administrator: Storage Service EventID: 2052 Array disk inserted: Array Disk 0:11 Controller 1, Connector 0 Aug 18 15:34:09 host1 Server Administrator: Storage Service EventID: 2065 Array disk Rebuild started: Array Disk 0:11 Controller 1, Connector 0 Aug 19 00:42:58 host1 Server Administrator: Storage Service EventID: 2124 Redundancy normal: Virtual Disk 0 (Virtual Disk 0) Controller 1 (PERC 4e/DC) Aug 19 00:42:58 host1 Server Administrator: Storage Service EventID: 2092 Array disk Rebuild completed: Array Disk 0:11 Controller 1, Connector 0 Aug 19 00:45:53 host1 Server Administrator: Storage Service EventID: 2127 Background Initialization started: Virtual Disk 0 (Virtual Disk 0) Controller 1 (PERC 4e/DC) = My questions are: 1. why after disk rebuild there have background initialization? 2. is all kind of configuration (e.g. RAID0, RAID10, ...) need perform background initialization? 3. if I run heavy application, will it hurt background initialization and disk rebuild? Thanks. ___ 您的生活即時通 - 溝通、娛樂、生活、工作一次搞定! http://messenger.yahoo.com.tw/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] drbd xen question
On Aug 20, 2009, at 10:22 AM, Coert Waagmeester lgro...@waagmeester.co.za wrote: Hello all, I am running drbd protocol A to a secondary machine to have 'backups' of my xen domUs. Is it necessary to change the xen domains configs to use /dev/drbd* instead of the LVM volume that drbd mirrors, and which the xen domU runs of? Yes otherwise the data won't be replicated and your drbd volume will be inconsistent and need resync'd. -Ross ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] what is RAID background initialization ??
On Aug 20, 2009, at 10:33 AM, mcclnx mcc mcc...@yahoo.com.tw wrote: we have DELL server (CENTOS 4.X) with MD1000 connect on it. One of Raid5 (internal 4 disks) has hard disk bad and I replace it. I saw / var/log/messages have following entry: === Aug 18 15:33:20 host1 Server Administrator: Storage Service EventID: 2049 Array disk removed: Array Disk 0:11 Controller 1, Connector 0 Aug 18 15:34:09 host1 Server Administrator: Storage Service EventID: 2052 Array disk inserted: Array Disk 0:11 Controller 1, Connector 0 Aug 18 15:34:09 host1 Server Administrator: Storage Service EventID: 2065 Array disk Rebuild started: Array Disk 0:11 Controller 1, Connector 0 Aug 19 00:42:58 host1 Server Administrator: Storage Service EventID: 2124 Redundancy normal: Virtual Disk 0 (Virtual Disk 0) Controller 1 (PERC 4e/DC) Aug 19 00:42:58 host1 Server Administrator: Storage Service EventID: 2092 Array disk Rebuild completed: Array Disk 0:11 Controller 1, Connector 0 Aug 19 00:45:53 host1 Server Administrator: Storage Service EventID: 2127 Background Initialization started: Virtual Disk 0 (Virtual Disk 0) Controller 1 (PERC 4e/DC) = My questions are: 1. why after disk rebuild there have background initialization? The rebuild resilvers the new disk based on the existing parity information while the second pass updates segments based on new parity information that may have been written before the resilver process finished, for a RAID1 it would be to mirror blocks that were updated during the rebuild. This is because a disk doesn't participate in an array until it is rebuilt. 2. is all kind of configuration (e.g. RAID0, RAID10, ...) need perform background initialization? RAID 1 and above. 3. if I run heavy application, will it hurt background initialization and disk rebuild? Yes, of course, I usually set rebuild rate to 100% because I'd rather slow IO during a rebuild then risk a possible double failure during a slow rebuild. -Ross ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] drbd xen question
Ross Walker wrote: On Aug 20, 2009, at 10:22 AM, Coert Waagmeester lgro...@waagmeester.co.za wrote: Hello all, I am running drbd protocol A to a secondary machine to have 'backups' of my xen domUs. Is it necessary to change the xen domains configs to use /dev/drbd* instead of the LVM volume that drbd mirrors, and which the xen domU runs of? Yes otherwise the data won't be replicated and your drbd volume will be inconsistent and need resync'd. -Ross ___ To be clear, are you saying you have a DRBD partition on both host machines, and LVM on top of that to allocate LVs for host storage? You would not want to bypass the LVM layer in that case. The hosts would be still configured to map the LV devices into the domUs. You need to go through the LVM layer, which uses the DRBD partition as a block physical device. The writes down through the DRDB layer will still be replicated. -Alan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CENTOS 4.8 available time????
Karanbir Singh wrote: On 08/20/2009 01:22 PM, James Pearson wrote: Is it possible to get an update on the status of 4.8? its going out to the mirrors right now, Depending on how long they take to stabalise, we should see release in the next 24 - 48 hrs. Thanks James Pearson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] drbd xen question
On Thu, 2009-08-20 at 09:38 -0600, Alan Sparks wrote: Ross Walker wrote: On Aug 20, 2009, at 10:22 AM, Coert Waagmeester lgro...@waagmeester.co.za wrote: Hello all, I am running drbd protocol A to a secondary machine to have 'backups' of my xen domUs. Is it necessary to change the xen domains configs to use /dev/drbd* instead of the LVM volume that drbd mirrors, and which the xen domU runs of? Yes otherwise the data won't be replicated and your drbd volume will be inconsistent and need resync'd. -Ross ___ To be clear, are you saying you have a DRBD partition on both host machines, and LVM on top of that to allocate LVs for host storage? You would not want to bypass the LVM layer in that case. The hosts would be still configured to map the LV devices into the domUs. You need to go through the LVM layer, which uses the DRBD partition as a block physical device. The writes down through the DRDB layer will still be replicated. -Alan Hello Alan, This is my current setup: Xen DomU DRBD LVM Volume RAID 1 What I first wanted to do was: DomU | DRBD LVM Volume RAID 1 Is this possible or not recommended? Regards, Coert ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] drbd xen question
Coert Waagmeester wrote: Hello Alan, This is my current setup: Xen DomU DRBD LVM Volume RAID 1 What I first wanted to do was: DomU | DRBD LVM Volume RAID 1 If I understand you diagram, you have DRDB running inside your domU with LVM on top of it now, and you are considering moving DRDB out of the domU into your dom0. Yes, it should work, and yes, you'll have to change the domU config to map the drbd block device into the domU. Am hoping a vgscan on the domU will pick up the fact you will be effectively changing the physical device names. I think the arrangement of doing DRDB and LVM at the dom0 level, and mapping LVs out of that as domU disks is not an uncommon implementation. -Alan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] needs help about vps
On Thu, Aug 20, 2009 at 9:24 AM, Ian Murraymurra...@yahoo.co.uk wrote: - Original Message From: ann kok oiyan...@yahoo.ca To: centos@centos.org Sent: Thursday, 20 August, 2009 15:10:09 Subject: [CentOS] needs help about vps hi all anyone have experience about vps which one is better? Depends what you are trying to do run multiple servers, or just a second environment on your workstation plus, pls define 'better' ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Maybe you mean Virtual Machines, if that's so both Xen and Virtualbox are easy to install and manage even Vmware Server is easy to install and manage too. But if you mean server VPS, then there are three options: KVM, Xen and OpenVZ, all are free and you might find useful this site: http://www.howtoforge.com/ just search these keywords: CentOS Virtualization -- Linux User #452368 http://twitter.com/vpadro Manifiesto por una cultura libre: http://culturalibre.org/ Doing a thing well is often a waste of time. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS Server Recommendations
From: Chuck Sent: August 16, 2009 18:17 I recommend a highly secured master that is not queried by any clients (preferably in a network/vlan your clients can't even access)... then configure one-way zone transfers to 2 or more slave servers which you configure your clients to point to. Maintain your zone files in rcs of some sort... While I can agree with you suggestion in principal I think that this might be overkill in our situation. We have a relatively small network (6-8 servers, 15-20 workstations and maybe a dozen other types of equipment). I our case I think we can get away with a master and a slave DNS server running on existing servers. For IP control/delegation and DNS control/delegation I recommend IP Plan. I had stumbled across this before but I will have a better look at it. Of course bind is the 800lb gorilla in the DNS world... don't even think about putting DNS on windows. We are primarily a UNIX/Linux shop and I prefer not to use windows for such services unless I absolutely must. There are services that we require that only run on windows so we do have windows servers in our mix. I don't recommend any front ends being that a few hours well spent reading the docs and man pages will make you a dns expert in no time. Bind is very easy to learn and shouldn't take longer than an afternoon at best. I think I am going to have to disagree with you here. I have been using BIND for several years. While I have spent many hours reading docs and man pages I definitely would not classify myself as a DNS expert. I know that I am of above average intelligence and maybe I just have a blind spot when it comes to BIND (and it has been known to happen) but I just do not find it as straight forward to learn as you have. Then again I am getting on in years so that may be a contributing factor as well. Anyway, thank you very much for your comments and suggestions. They are appreciated. Regards, Hugh -- Hugh E Cruickshank, Forward Software, www.forward-software.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
Ian Murray wrote on Thu, 20 Aug 2009 14:21:33 + (GMT): Actual, virt-install commmand line looks no less daunting to me. What is daunting about virt-install -p? I don't know if that is possible under virt-install. Everything is possible, it depends on how deep you want to dig into it. This guy just wants to get his first Xen VM up for some testing (I suppose). There is no need to follow lengthy explanations and fail in the end if there is a simple command available. I think tap:aio is more favoured than file, for performance reasons. This is general belief. I suggest doing some tests. After that you may think different. ;-) Also, there have been various problems with tap:aio devices in the various Xen incarnations over time that weren't present in file. You want to use LVM or remote storage for real world usage, anyway, but that wasn't the task outlined by the OP. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS Server Recommendations
From: Hugh E Cruickshank Sent: August 14, 2009 14:18 I am looking for some possible recommendations on the handling of our internal DNS services. First some background... I would like to express my appreciation to all those that responded to my request (particularly Robert). I do not have solution yet but I do have a lot of information to review and digest. Thanks again to all. Regards, Hugh -- Hugh E Cruickshank, Forward Software, www.forward-software.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Access to xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM ?
Does anyone have access to the xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM - which may be part of 5.4 beta? It's mentioned as having a fix for Bugzilla #448586 https://bugzilla.redhat.com/show_bug.cgi?id=448586 I what to see if it fixes a X11 crash we're having. Thanks James Pearson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Access to xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM ?
On Thu, Aug 20, 2009 at 12:15 PM, James Pearsonjame...@moving-picture.com wrote: Does anyone have access to the xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM - which may be part of 5.4 beta? It's mentioned as having a fix for Bugzilla #448586 https://bugzilla.redhat.com/show_bug.cgi?id=448586 Looks like the patch is in there: * Wed Apr 22 2009 Adam Jackson a...@redhat.com 1.1.1-48.53 - xserver-1.1.1-saturate-trap-walks.patch: Saturate span walks in Render, so we don't wrap around. (#448586) Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] protecting multiuser systems from bruteforce ssh attacks
Hello, What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. What are some policies/techniques that have worked for this list with minimal hassle? Thanks! -Eugene ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Access to xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM ?
Akemi Yagi wrote: On Thu, Aug 20, 2009 at 12:15 PM, James Pearsonjame...@moving-picture.com wrote: Does anyone have access to the xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM - which may be part of 5.4 beta? It's mentioned as having a fix for Bugzilla #448586 https://bugzilla.redhat.com/show_bug.cgi?id=448586 Looks like the patch is in there: * Wed Apr 22 2009 Adam Jackson a...@redhat.com 1.1.1-48.53 - xserver-1.1.1-saturate-trap-walks.patch: Saturate span walks in Render, so we don't wrap around. (#448586) Is that SRPM (or just the patch) available for download from somewhere? Thanks James Pearson ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce ssh attacks
On Thu, 2009-08-20 at 15:14 -0500, Eugene Vilensky wrote: Hello, What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. Along with DenyHosts, consider the SSH server options AllowGroups and AllowUsers to specify the users/groups allowed to connect. My experience is that this will deal with the majority of brute-force attacks, since many of these target known user accounts ( root, daemon, etc. ) as well as common names ( joe, jane, etc. ). If an attempt is made to log in with a user name not specified by the AllowGroups or AllowUsers options, the ssh server will reject it as an invalid user and throw the connection on the floor, which seems to lighten the load for DenyHosts. Refer to man sshd_config for more info. For myself, with a pretty small user population, I just create a group called sshusers ( of course, the name can be whatever you choose ) and put users in that group who need SSH access from outside. As always, YMMV. ; What are some policies/techniques that have worked for this list with minimal hassle? Thanks! -Eugene ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Ron Loftin relof...@twcny.rr.com God, root, what is difference ? Piter from UserFriendly ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Alternative to logwatch
Hello, I am searching an alternative to logwatch. After too much time spent trying to configure it. I have apache log's in different files and directories, for some reason I can not put logwatch to work. Anyone know and alternative? -- -- -- Publicidad y Servicios http://www.pas-world.com Directorio http://www.precioventa.com Tienda http://informatica.precioventa.com/es/ Autoridad certificadora http://ca.precioventa.com/es/ -- -- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Alternative to logwatch
Developer wrote: Hello, I am searching an alternative to logwatch. After too much time spent trying to configure it. I have apache log's in different files and directories, for some reason I can not put logwatch to work. Anyone know and alternative? Check out swatch from the RPMForge repo. swatch.noarch : Tool for actively monitoring log files. Regards, Max ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] logwatch not mailing
Hi, # uname -a Linux obfuscated.example.com 2.6.18-128.4.1.el5 #1 SMP Tue Aug 4 20:23:34 EDT 2009 i686 i686 i386 GNU/Linux I noticed a few days ago that I'm not getting my logwatch emails to the root account any longer, and while I've definitely been applying updates from base, no other changes have happened on this box. I ran logwatch at the command line: logwatch --detail medium --mailto r...@fqdn.example.com but still no email. As expected, /etc/cron.daily has the following entry: lrwxrwxrwx 1 root root 39 Jul 30 2008 0logwatch - /usr/share/logwatch/scripts/logwatch.pl Where should I start looking to figure out why logwatch seems not to be doing its thing? Thanks in advance, -Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] logwatch not mailing
On Thu, Aug 20, 2009 at 3:55 PM, Ray Leventhal cen...@swhi.net wrote: I noticed a few days ago that I'm not getting my logwatch emails to the root account any longer, and while I've definitely been applying updates from base, no other changes have happened on this box. I'd check the /var/spool/cron log to see if it's actually running properly. After that I'd check the maillogs to see if there was a delivery problem. I ran logwatch at the command line: logwatch --detail medium --mailto r...@fqdn.example.com Try that again, but tail -f /var/log/maillog in another window (if there's not alot of mail traffic on that host) to see if it's generating any mail logs but still no email. As expected, /etc/cron.daily has the following entry: lrwxrwxrwx 1 root root 39 Jul 30 2008 0logwatch - /usr/share/logwatch/scripts/logwatch.pl What are the permissions on /usr/share/logwatch/scripts/logwatch.pl? Check to see if any updates were applied to logwatch recently (yum info or rpm -qi logwatch) and check your logwatch config files to see if anything changed there. Hope this helps, Cliff ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] logwatch not mailing
On Thu, Aug 20, 2009 at 3:55 PM, Ray Leventhalcen...@swhi.net wrote: I noticed a few days ago that I'm not getting my logwatch emails to the root account any longer, and while I've definitely been applying updates from base, no other changes have happened on this box. Where should I start looking to figure out why logwatch seems not to be doing its thing? Are any emails going out? Perhaps sendmail died? If it were me, I would start by checking the mail queue (# mailq), the mail log (/var/adm/maillog), and the sendmail mail transport agent (# service sendmail status). I use a default setup which requires sendmail to be running for delivery of mail to r...@locahost. gd ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce ssh attacks
Eugene Vilensky wrote on Thu, 20 Aug 2009 15:14:58 -0500: What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. Google for SSH rate-limiting. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce ssh attacks
Hi, fail2ban is good choice, not only for ssh. bye On 20.8.2009, at 23:31, Kai Schaetzl wrote: Eugene Vilensky wrote on Thu, 20 Aug 2009 15:14:58 -0500: What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. Google for SSH rate-limiting. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Hodja Nasredin nasre...@sutra.cz ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] DNS Server Recommendations
You could get really simple if your a small shop and just use dnsmasq. Although, I'm not sure it meets all of your needs. Matt -- Mathew S. McCarrell Clarkson University '10 mccar...@gmail.com mccar...@clarkson.edu 1-518-314-9214 On Thu, Aug 20, 2009 at 2:39 PM, Hugh E Cruickshank h...@forsoft.comwrote: From: Hugh E Cruickshank Sent: August 14, 2009 14:18 I am looking for some possible recommendations on the handling of our internal DNS services. First some background... I would like to express my appreciation to all those that responded to my request (particularly Robert). I do not have solution yet but I do have a lot of information to review and digest. Thanks again to all. Regards, Hugh -- Hugh E Cruickshank, Forward Software, www.forward-software.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Access to xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM ?
On Thu, Aug 20, 2009 at 1:22 PM, James Pearsonjame...@moving-picture.com wrote: Akemi Yagi wrote: On Thu, Aug 20, 2009 at 12:15 PM, James Pearsonjame...@moving-picture.com wrote: Does anyone have access to the xorg-x11-server-1.1.1-48.53.el5 (or later) SRPM - which may be part of 5.4 beta? Looks like the patch is in there: * Wed Apr 22 2009 Adam Jackson a...@redhat.com 1.1.1-48.53 - xserver-1.1.1-saturate-trap-walks.patch: Saturate span walks in Render, so we don't wrap around. (#448586) Is that SRPM (or just the patch) available for download from somewhere? Not that I know of. However, I heard that the release of 5.4 is around the corner, so the wait may not be long. Akemi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to tell if I've been hacked?
Check for failed logins in /var/log/messages Check if the /etc/passwd file have been changed Use commands like last, w and uptime. 2009/8/19 Eduardo Grosclaude eduardo.groscla...@gmail.com On Wed, Aug 19, 2009 at 1:57 AM, Bill Campbellcen...@celestial.com wrote: You cannot trust tools like ``ps'', ``find'', ``netstat'', and ``lsof'' as these are frequently replaced by ones that are modified to hide the cracker's work. As a corollary, the only safe way to audit a suspected system is booting your diagnostic tool from known good media (eg try a security Live CD distro) -- Eduardo Grosclaude Universidad Nacional del Comahue Neuquen, Argentina ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Install 32 or 64 bits
I would go for the 64bits version. (even though you only run 1GB Memory) 2009/8/18 Yaovi Atohoun yaov...@yahoo.fr Hi all, I am going to install CENTOS 5..3 on three HP Proliant ML 350G servers. The processor is Quad-core Xeon E5420 and E5335 for one of them. They all have 1GB Memory. Should I install a 32 bits version or 64 bits versions? The servers will be used an organization about 50 peoples for Web, Mail and related services. Thanks --- En date de : *Mar 18.8.09, Alan Sparks aspa...@doublesparks.net* a écrit : De: Alan Sparks aspa...@doublesparks.net Objet: Re: [CentOS] httpd .htaccess rewrite for images À: CentOS mailing list centos@centos.org Date: Mardi 18 Août 2009, 6h18 Dave wrote: In my httpd virtual host directive i have: alias /images /var/www/test.example.com/images Directory /var/www/test.example.com/images Options None AllowOverride None order allow,deny Allow from all /Directory Comments appreciated. Assume you mean that the rewrites are ignored. Note that AllowOverride None tells apache to completely ignore .htaccess files. Either move your rewrite rules into the vhost container or consider AllowOverride FileInfo. -Alan ___ CentOS mailing list CentOS@centos.org http://mc/compose?to=cen...@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
I definitely think if your new to Xen and are use to doing normal CD installs, then virt-install is the easiest way to go. Also, you could consider using prebuilt images that are already made depending on your needs. These can be found on stacklet.com. Hope that helps, Matt -- Mathew S. McCarrell Clarkson University '10 mccar...@gmail.com mccar...@clarkson.edu 1-518-314-9214 On Thu, Aug 20, 2009 at 2:31 PM, Kai Schaetzl mailli...@conactive.comwrote: Ian Murray wrote on Thu, 20 Aug 2009 14:21:33 + (GMT): Actual, virt-install commmand line looks no less daunting to me. What is daunting about virt-install -p? I don't know if that is possible under virt-install. Everything is possible, it depends on how deep you want to dig into it. This guy just wants to get his first Xen VM up for some testing (I suppose). There is no need to follow lengthy explanations and fail in the end if there is a simple command available. I think tap:aio is more favoured than file, for performance reasons. This is general belief. I suggest doing some tests. After that you may think different. ;-) Also, there have been various problems with tap:aio devices in the various Xen incarnations over time that weren't present in file. You want to use LVM or remote storage for real world usage, anyway, but that wasn't the task outlined by the OP. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce ssh attacks
On 21/08/2009, at 5:44 AM, Eugene Vilensky wrote: Hello, What is the best way to protect multiuser systems from brute force attacks? I am setting up a relatively loose DenyHosts policy, but I like the idea of locking an account for a time if too many attempts are made, but to balance this with keeping the user from making a helpdesk call. What are some policies/techniques that have worked for this list with minimal hassle? As an additional question to the above, would forcing users to log in with SSH keys rather than passwords avoid requiring any anti brute force attack measures to be put in place? Thanks, Oliver Thanks! -Eugene ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] protecting multiuser systems from bruteforce sshattacks
As an additional question to the above, would forcing users to log in with SSH keys rather than passwords avoid requiring any anti brute force attack measures to be put in place? You are right, but that is not feasible for most shared systems. Its hard enough to get customers to use SSH, SFTP, and SCP instead of telnet and FTP. Getting them to use keys would be impossible. Another problem to consider is what other ports are open on the machine. Are any of them prone to brute force attacks? I don't think you can use keys for them. Neil -- Neil Aggarwal, (281)846-8957, www.JAMMConsulting.com Will your e-commerce site go offline if you have a DB server failure, fiber cut, flood, fire, or other disaster? If so, ask about our geographically redundant database system. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
- Original Message From: Kai Schaetzl mailli...@conactive.com To: centos@centos.org Sent: Thursday, 20 August, 2009 19:31:21 Subject: Re: [CentOS] virt-manager crashes Host during installation of guest Ian Murray wrote on Thu, 20 Aug 2009 14:21:33 + (GMT): Actual, virt-install commmand line looks no less daunting to me. What is daunting about virt-install -p? [r...@xen ~]# virt-install -p ERRORA name is required for the virtual machine. [r...@xen ~]# virt-install -p -n newdom ERRORMemory amount is required for the virtual machine. [r...@xen ~]# virt-install -p -n newdom -r 256 ERRORA disk must be specified (use --nodisks to override) So it goes on... I suppose once you plough through all the options and save the whole command somewhere, then it is trivial to create new ones, but I got the impression that it was interactive for any missing options. Perhaps for the benefit of the OP, perhaps you could give a complete known working example. I don't know if that is possible under virt-install. Everything is possible, it depends on how deep you want to dig into it. This guy just wants to get his first Xen VM up for some testing (I suppose). There is no need to follow lengthy explanations and fail in the end if there is a simple command available. I think tap:aio is more favoured than file, for performance reasons. This is general belief. I suggest doing some tests. After that you may think different. ;-) Also, there have been various problems with tap:aio devices in the various Xen incarnations over time that weren't present in file. Well, if you have done such tests, please do share... especially on the xen-users list, as there are far more competent Xen-ers to discuss your findings than me. You want to use LVM or remote storage for real world usage, anyway, but that wasn't the task outlined by the OP. File based domains initially seemed the simplest way for me, but after a while I concluded they were a but of a pain actually, so indeed I do stick with LVs. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] p800 and HP
I was wondering if anyone here has experience with HP MSA60 with P400 and P800 controller. How reliable are they for a 24x7 shop? TIA ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Arg... jdk problem on centos 5
I have downloaded the EE JDK 5.07 for Linux from Sun. If I try and run java_ee_sdk-5_07-linux.bin as a normal user it works fine and I get the gui installer to appear. However if I run it as root, I get this output and then if hangs indefinitely ultimately requiring a kill -9 to stop: [r...@canthus Downloads]# ./java_ee_sdk-5_07-linux.bin Checking available disk space... Checking Java(TM) 2 Runtime Environment... Extracting Java(TM) 2 Runtime Environment files... *** glibc detected *** ./java_ee_sdk-5_07-linux.bin: double free or corruption (!prev): 0x092d52a8 *** === Backtrace: = /lib/libc.so.6[0x5850f1] /lib/libc.so.6(cfree+0x90)[0x588bc0] ./java_ee_sdk-5_07-linux.bin(GetPublicJREPath+0x6df)[0x8054269] ./java_ee_sdk-5_07-linux.bin(main+0x8f8)[0x804e37c] /lib/libc.so.6(__libc_start_main+0xdc)[0x531e8c] ./java_ee_sdk-5_07-linux.bin(dlopen+0x41)[0x804c9f5] === Memory map: SNIP ffce7000-ffcfc000 rw-p 7ffea000 00:00 0 [stack] e000-f000 r-xp e000 00:00 0 Deleting temporary files... Any ideas??? Thx ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] p800 and HP
Mag Gam wrote: I was wondering if anyone here has experience with HP MSA60 with P400 and P800 controller. How reliable are they for a 24x7 shop? well, its not 5-nines stuff, there's all kinda single points of failure. you want 0.9 kinda reliability, you need a fully redundant system with multipath, at every stage, like a fiberchannel SAN with dual HBA's on each system, dual switches, dual controllers on each storage array, etc, all components hotswappable, etc. of course, this all comes at siginficant expense, both in complexity and cost. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Dual Booting Question
Hi List I'm new to centos i'm also on the forum but my question is how do i do a dual boot say windows/centos i no i have to partition the harddrive can i do this in centos..\ could someone help us out Mike___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] problem with udev when booting kernel 5.3 release 128.4.1
Rob Kampen wrote: Hi List, I am running a 64 bit 5.3 kernel on an intel mb and all has been well. Today I thought it would be okay to reboot so that the latest kernel was running - i.e move from 128.2.1 to 128.4.1 release. The system passes POST fine, grub passes control to the 128.4.1 kernel and the boot process is under way. after some 30 secs the system starts beeping - continuously. After I hooked up a monitor I find that udev does not come up with OK and thats when the system starts the beep beep beep .. No logs to see .. using grub to select 128.2.1 boot fine Any ideas? Thanks in advance for your words of wisdom and advice. Rob ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Still no joy with the latest kernel - fails at initialization of udevd with beep beep beep ... I have tried a new version of the rr174x raid controller device driver, new make and make install but still the same issue. Not sure if this module is looked at by udev or not - I'm way out of my depth here. Currently server is functioning fine on Linux obfuscated.example.com 2.6.18-128.2.1.el5 #1 SMP Tue Jul 14 06:36:37 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux but I'm perturbed why a simple update of the kernel kills my server - not what I expected from CentOS / RHEL. What tests / things should I check? I see no files in /etc with dates after Jul 21 (date I installed 128.2.1 kernel) that appear to contain any device related changes Any help appreciated. Rob begin:vcard fn:Rob Kampen n:Kampen;Rob email;internet:rkam...@kampensonline.com tel;work:407-896-9556 x6344 tel;fax:407-896-7607 tel;home:407-876-4854 tel;cell:407-341-3815 version:2.1 end:vcard ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] p800 and HP
Well, I am poor and so is my school. We want to setup a cheap storage farm so I was asking what is people's opinions on the the controller and the disks :-) On Thu, Aug 20, 2009 at 10:33 PM, John R Piercepie...@hogranch.com wrote: Mag Gam wrote: I was wondering if anyone here has experience with HP MSA60 with P400 and P800 controller. How reliable are they for a 24x7 shop? well, its not 5-nines stuff, there's all kinda single points of failure. you want 0.9 kinda reliability, you need a fully redundant system with multipath, at every stage, like a fiberchannel SAN with dual HBA's on each system, dual switches, dual controllers on each storage array, etc, all components hotswappable, etc. of course, this all comes at siginficant expense, both in complexity and cost. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] virt-manager crashes Host during installation of guest
virt-install can be interactive if you supply a few necessary options first. I've put a sample of what I normally do below. [r...@dom0 ~]$ /usr/sbin/virt-install -p --nonsparse -b xenbr0 What is the name of your virtual machine? VM NAME HERE How much RAM should be allocated (in megabytes)? 256 What would you like to use as the disk (path)? /xen/images/VM NAME HERE.disk How large would you like the disk (/xen/images/VM NAME HERE) to be (in gigabytes)? 5 Would you like to enable graphics support? (yes or no) no What is the install location? http://mirror.clarkson.edu/centos/5.3/os/x86_64/ Also, if your willing to spend a few bucks, the Running Xen book is a great source of information for anything relating to Xen (and I'm not saying that just because I'm friends with several of the authors). Also, you might find the following slides useful. http://cosi.clarkson.edu/docs/installingxen/ -- Mathew S. McCarrell Clarkson University '10 mccar...@gmail.com mccar...@clarkson.edu 1-518-314-9214 On Thu, Aug 20, 2009 at 10:09 PM, Ian Murray murra...@yahoo.co.uk wrote: - Original Message From: Kai Schaetzl mailli...@conactive.com To: centos@centos.org Sent: Thursday, 20 August, 2009 19:31:21 Subject: Re: [CentOS] virt-manager crashes Host during installation of guest Ian Murray wrote on Thu, 20 Aug 2009 14:21:33 + (GMT): Actual, virt-install commmand line looks no less daunting to me. What is daunting about virt-install -p? [r...@xen ~]# virt-install -p ERRORA name is required for the virtual machine. [r...@xen ~]# virt-install -p -n newdom ERRORMemory amount is required for the virtual machine. [r...@xen ~]# virt-install -p -n newdom -r 256 ERRORA disk must be specified (use --nodisks to override) So it goes on... I suppose once you plough through all the options and save the whole command somewhere, then it is trivial to create new ones, but I got the impression that it was interactive for any missing options. Perhaps for the benefit of the OP, perhaps you could give a complete known working example. I don't know if that is possible under virt-install. Everything is possible, it depends on how deep you want to dig into it. This guy just wants to get his first Xen VM up for some testing (I suppose). There is no need to follow lengthy explanations and fail in the end if there is a simple command available. I think tap:aio is more favoured than file, for performance reasons. This is general belief. I suggest doing some tests. After that you may think different. ;-) Also, there have been various problems with tap:aio devices in the various Xen incarnations over time that weren't present in file. Well, if you have done such tests, please do share... especially on the xen-users list, as there are far more competent Xen-ers to discuss your findings than me. You want to use LVM or remote storage for real world usage, anyway, but that wasn't the task outlined by the OP. File based domains initially seemed the simplest way for me, but after a while I concluded they were a but of a pain actually, so indeed I do stick with LVs. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] problem with udev when booting kernel 5.3 release 128.4.1
On Thu, Aug 20, 2009 at 10:41:55PM -0400, Rob Kampen wrote:
Rob Kampen wrote:
Hi List,
I am running a 64 bit 5.3 kernel on an intel mb and all has been well.
Today I thought it would be okay to reboot so that the latest kernel
was running - i.e move from 128.2.1 to 128.4.1 release.
The system passes POST fine, grub passes control to the 128.4.1 kernel
and the boot process is under way.
after some 30 secs the system starts beeping - continuously.
After I hooked up a monitor I find that udev does not come up with OK
and thats when the system starts the beep beep beep ..
...
Still no joy with the latest kernel - fails at initialization of udevd
with beep beep beep ...
I have tried a new version of the rr174x raid controller device driver,
new make and make install but still the same issue. Not sure if this
module is looked at by udev or not - I'm way out of my depth here.
Currently server is functioning fine on
Linux obfuscated.example.com 2.6.18-128.2.1.el5 #1 SMP Tue Jul 14
06:36:37 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
but I'm perturbed why a simple update of the kernel kills my server -
not what I expected from CentOS / RHEL.
What tests / things should I check? I see no files in /etc with dates
after Jul 21 (date I installed 128.2.1 kernel) that appear to contain
any device related changes
The changelog from 2.6.18-128.2.1.el5 to 2.6.18-128.4.1.el5:
* Fri Jul 24 2009 Don Howard dhow...@redhat.com [2.6.18-128.4.1.el5]
- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen )
[512862 512863] {CVE-2009-2406}
- [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886
512887] {CVE-2009-2407}
- [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh )
[511173 508842] {CVE-2009-1895}
- [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]
* Tue Jul 14 2009 Jiri Pirko jpi...@redhat.com [2.6.18-128.3.1.el5]
- [pci] quirk: disable MSI on VIA VT3364 chipsets (Dean Nelson ) [507529 501374]
- [char] tty: prevent an O_NDELAY writer from blocking (Mauro Carvalho Chehab )
[510239 506806]
- [misc] hrtimer: fix a soft lockup (Amerigo Wang ) [418061 418071]
{CVE-2007-5966}
- [misc] hrtimer: check relative timeouts for overflow (AMEET M. PARANJAPE )
[510018 492230]
Do you see anything relevant to your hardware?
Since you mention that udev has started, we can rule out the
kernelbooting/initrd stage.
Tru
--
Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0xBEFA581B
pgpRNdsAuCe8Z.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Dual Booting Question
When install the system, please format the disk and leave the free space to the linux. Intall the xp firstly, then install the centos on the free space. Use the grub to load these two system. 2009-08-21 Hanmo 发件人: Michael Wright 发送时间: 2009-08-21 10:39:33 收件人: centos@centos.org 抄送: 主题: [CentOS] Dual Booting Question Hi List I'm new to centos i'm also on the forum but my question is how do i do a dual boot say windows/centos i no i have to partition the harddrive can i do this in centos..\ could someone help us out Mike ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5.1 kickstart CD and intel 82576 driver
Well, first of all, thanks so much for the overwhelming response to my post. I got it working and here is what I did; 1 - Get the source from Intel and compile in the same env as the kickstart OS. You will have an igb.ko file as a result. 2 - Mount the kickstart CD; a - cd to were you want it. b - gunzip /media/CDROM/initrd.img | cpio -i --make-directories 3 - change to to the modules directory that was created in #2b above. a - gunzip modules.cgz | (cd were you want it cpio -idv) b - cp igb.ko were ever you wanted it from #a above/kernal-version/86x64 4 - change to the parent dir the of kernal-version and do; a - find kernal-version | cpio -ov -H crc | gzip path to were u want it/modules.cgz 5 - modify the files in your modules dir from #2b above, Since 5.3 has support for this Itel NIC, I had to reverse engineer from 5.3 initrd.img the files; pci.ids modules.alias 6 - go into the parent dir from #2b were the contents of initrd.img were extracted and were you modifying the files in #3b and #4b; a - (find . | cpio --quiet -c -o) ../initrd.img 7 - copy the iniitrd to your original isolinux dir that the kickstart Cd is based off of. 8 - change to that dir and do; a - mkisofs -o ../whatevername.iso -b isolinux.bin -c boot.cat -no- emul-boot -boot-load-size 4 -boot-info-table . 9 - use what ever burning sw to create a CD from iso. Hope this helps any one in a similar bind. On Aug 19, 2009, at 4:56 PM, aurfal...@gmail.com wrote: Hi all, I've got a Centos 5.1 kickstart that I must continue to use. How can I update the kick start image so that it recognizes Intel gigabit 82576 nic? BTW, I compiled the driver I need and have this igb.ko file. How do I incorporate that into my initrd.img file that I see on the kickstart CD that is probably my kickstart boot OS. Thank you very much in advance. aurf - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Running UML on CentOS?
Hello, I've got a CentOS 5.3 machine that i'd like to virtualize some services on. Currently a reinstall for virtualization isn't doable so i thought about user-mode-linux, UML. Has anyone run this on Centos5? If so, feedback prose and cons appreciated. Thanks. Dave. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] p800 and HP
Well, I am poor and so is my school. We want to setup a cheap storage farm so I was asking what is people's opinions on the the controller and the disks :-) It's rock solid, I am sure you wont have issues... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
