Re: [CentOS-es] Apache + PHP + Oracle OCI
También va a depender de la codificación html. http://www.w3c.es/divulgacion/guiasbreves/internacionalizacion 2010/9/16 Paúl Vizuete fpvizu...@gmail.com: espero que este articulo te sirva http://www.vivaphp.com.ar/articulos/acentos-en-php-postgresql-y-apache2 lo unico que tendrias que configurar es el juego de caracteres en tu bd oracle Saludos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
Revisa en Los archivos de configuracion de sendmail si declaraste el dominio de Hotmail en lista negra o algo parecido revisa todos Los archivos de la carpeta sendmail. ---Original Message--- From: Carlos Sura Date: 9/16/2010 10:42:40 PM To: centos-es@centos.org Subject: [CentOS-es] Sendmail, no envia correos a hotmail. Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. Carlos Sura.- grad.gifSENDER_EMAILlblancoamat@gmail@@com.pngimage.gif___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Se reinicia pc
Les comento que logré solucionar el problema. Lo que mse sucedia era que me daba conflicto la tarjeta de red PCI y la tarjeta de puertos FXO que uso para la central Asterisk. Al desconfigurar la tarjeta de red y configurarle la onboard quedo absolutamente solucionado. Muchas gracias a todos por su ayuda. Salu2 Carlitos El 27 de agosto de 2010 16:58, Mauro Sánchez maur...@gmail.com escribió: El día 27 de agosto de 2010 20:35, Osvaldo Rivas spad...@gmail.com escribió: No podría ser la temperatura del procesador? Fíjate en las mediciones desde el BIOS o si tu equipo dispone de logs de eventos a nivel de hardware mejor. Pero si fuera la temperatura del procesador me parece que no se reiniciaría exactamente cada una hora. Eso es lo más extraño, que sea exactamente cada una hora. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
Ojala te sirva este link, nos avisas como te fue http://www.encuentroalternativo.com/emails-no-llegan-yahoo-spam/?utm_source=feedburnerutm_medium=emailutm_campaign=Feed%3A+EncuentroAlternativo+%28Encuentro+Alternativo%29 Cordialmente Ing. Csar Martnez Administracin Servidores Diseo Desarrollo Web Usuario Linux # 494131 SERVICOM Oficina 02-2554-271 02-2221-386 Mvil 09-9374-317 Email Msn cmarti...@servicomecuador.com Skype servicomecuador Pin BlackBerry 21DB3490 Web www.servicomecuador.com Hub Clientes www.servicomecuador.com/billing Noticias www.servicomecuador.com/blog Dir. Av. 10 de Agosto N29-140 Entre Acua y Cuero y Caicedo Quito - Ecuador - Sudamrica = Clusula de Confidencialidad La informacin contenida en este e-mail es confidencial y solo puede ser utilizada por la persona a la cual esta dirigida.Si Usted no es el receptor autorizado, cualquier retencin, difusin, distribucin o copia de este mensaje es prohibida y sancionada por la ley. Si por error recibe este mensaje, por favor reenviarlo al remitente y borre el mensaje recibido inmediatamente. = El 16/09/10 21:48, Leandro Blanco escribi: Revisa en Los archivos de configuracion de sendmail si declaraste el dominio de Hotmail en listanegra o algo parecido revisa todos Los archivos de la carpeta sendmail. ---Original Message--- From: Carlos Sura Date: 9/16/2010 10:42:40 PM To: centos-es@centos.org Subject: [CentOS-es] Sendmail, no envia correos a hotmail. Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, tambin tengo un dominio. Agradecera mucho la ayuda. Carlos Sura.- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
Revisaste si tus ips estaba listadas en alguna lista negra como spamhaus o similar?? El 16/09/2010 22:41, Carlos Sura carlos_s...@hotmail.com escribió: Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. Carlos Sura.- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
Hola, agradezco sus respuestas. Les comento: si, revise en los sitios mas comunes para ver mi IP, estaba listada o marcada como SPAM, para mi sorpresa, ninguna de las dos, estaba marcada como SPAM. También, acabo de probar postfix y dovecot. Por si había algún problema en general con sendmail. Y este también hace lo mismo, los correos a Yahoo, Gmail y dominios públicos o privados, SI llegan, pero cuando es hacia Hotmail no llegan, ni si quiera al correo basura. Pero si yo mando de Hotmail a una cuenta de mi servidor, si llegan. A que se podría deber esta cuestión?. Estaba revisando este enlace: http://www.encuentroalternativo.com/emails-no-llegan-yahoo-spam/?utm_source=feedburnerutm_medium=emailutm_campaign=Feed:+EncuentroAlternativo+%28Encuentro+Alternativo%29 Me pareció muy interesante, a lo mejor y podría estar baneado por completo en Hotmail -o al menos eso pensé- pero, como saberlo? hay alguna forma de saberlo? Agradezco la ayuda que me puedan dar. Date: Fri, 17 Sep 2010 10:24:38 -0400 From: lis...@rnt.cl To: centos-es@centos.org Subject: Re: [CentOS-es] Sendmail, no envia correos a hotmail. Revisaste si tus ips estaba listadas en alguna lista negra como spamhaus o similar?? El 16/09/2010 22:41, Carlos Sura carlos_s...@hotmail.com escribió: Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. Carlos Sura.- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] problemas con DNS e IPTABLES
Muchas gracias pero ya encontre ĺa respuesta. esta ahora es mi iptables lo q pasaba es q no podia pinear y el los host no podian conectarse al server DNS e hice estos cambios a las politicas echo -n Aplicando Reglas de Firewall por roberto panta arcos... ## FLUSH de reglas iptables -F iptables -X iptables -Z iptables -t nat -F ## Establecemos politica por defecto iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT iptables -t nat -P PREROUTING ACCEPT iptables -t nat -P POSTROUTING ACCEPT ## Empezamos a filtrar # El localhost se deja (por ejemplo conexiones locales a mysql) iptables -A INPUT -i lo -j ACCEPT iptables -A INPUT -s 195.168.200.105/24 -i eth1 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 80 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 443 -j ACCEPT # para poder acceder al servidor DNS y poder salir a internet con el dns local;necesite las tres sentencias sino el ultimo drop lo niega para el cliente #del servidor al host se pinea con nombre pero del host al server no,con las dos primeras; con las tres no hay problema y solo con la ultima tampoco pasa naa #el permiso para protocolo tcp es opcional ya q DNS trabaja con protocolo UDP iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 53 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p udp --dport 53 -j ACCEPT #el -udp puede ir antes o despues del -s ip y el --sport tambien --source-port iptables -A INPUT -s 192.168.200.0/24 -p udp --sport 53 -j ACCEPT # sin esta sentencia no hay pineo del lado: server-host pero si de host - server iptables -A INPUT -i eth1 -p ICMP -j ACCEPT #las siguientes sentencias se probaron pero no tienen repercucion #iptables -A FORWARD -s 192.168.200.0/24 -i eth1 -p udp --dport 53 -j ACCEPT #iptables -A FORWARD -s 192.168.200.0/24 -i eth1 -p udp --sport 53 -j ACCEPT #esta setencia estuvo en un tutorial pero no sirvio de naa #iptables -t nat -A POSTROUTING -p udp -s 192.168.200.0/24 --sport 1024:65535 -d any/0 -dport 53 -j ACCEPT cerramos todo lo q no quiero iptables -A INPUT -s 192.168.200.0/24 -i eth1 -j DROP # enmascaramiento de la red eth1 iptables -t nat -A POSTROUTING -s 192.168.200.0/24 -o eth0 -j MASQUERADE #cerramos todos los puertos restantes iptables -A INPUT -s 0/0 -p tcp --dport 1:1024 -j DROP iptables -A INPUT -s 0/0 -p udp --dport 1:1024 -j DROP echo OK . Verifique que lo que se aplica con: iptables -L -n # Fin del script y con esto. no tengo problemas... pineo sin ningun problema con mis nombres de dominio negando el resto de puertos. y salir a internet desde mis clientes sin problemas. GRACIAS From: domin...@linuxsc.net To: centos-es@centos.org Date: Thu, 16 Sep 2010 20:24:16 -0500 Subject: Re: [CentOS-es] problemas con DNS e IPTABLES Y ya probaste abriendo el puerto 53 tcp y udp en iptables -- mens. original -- Asunto: [CentOS-es] problemas con DNS e IPTABLES De: Roberto Panta Arcos roberto_pa...@hotmail.com Fecha: 16/09/2010 11:54 Buenos dias tengo centos 5.4 , instalando iptables y named. todo va bien con el servicio DNS para mi red local. El problema es cuando activo el iptables, alli solo puedo pinear con IP's y ya no con los nombres. si desactivo el iptables puedo pinear con nombres e ip's options { directory /var/named; dump-file /var/named/data/cache_dump.db; statistics-file /var/named/data/named_stats.txt; allow-recursion { 127.0.0.1; 192.168.200.0/24; }; forwarders { 200.48.225.130; 200.48.225.146; }; forward first; }; zone sicannet.com { type master; file sicannet.com.zone; allow-update { none; }; }; zone 200.168.192.in-addr.arpa { type master; file 200.168.192.in-addr.arpa.zone; allow-update { none; }; }; include /etc/rndc.key; * y el IPTABLES echo -n ## FLUSH de reglas iptables -F iptables -X iptables -Z iptables -t nat -F ## Establecemos politica por defecto iptables -P INPUT ACCEPT iptables -P OUTPUT ACCEPT iptables -P FORWARD ACCEPT iptables -t nat -P PREROUTING ACCEPT iptables -t nat -P POSTROUTING ACCEPT ## Empezamos a filtrar # El localhost se deja (por ejemplo conexiones locales a mysql) iptables -A INPUT -i lo -j ACCEPT iptables -A INPUT -s 195.168.200.105/24 -i eth1 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 80 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 443 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p tcp --dport 53 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -p udp --dport 53 -j ACCEPT iptables -A INPUT -s 192.168.200.0/24 -i eth1 -j DROP iptables -t nat -A POSTROUTING -s 192.168.200.0/24 -o eth0 -j MASQUERADE iptables -A INPUT -s 0/0 -p tcp --dport 1 -j DROP # Fin del script
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
como algo adicional, puedes poner SPF en tu DNS... On 17/09/2010 09:31 a.m., Carlos Sura wrote: //Hola, agradezco sus respuestas. Les comento: si, revise en los sitios mas comunes para ver mi IP, estaba listada o marcada como SPAM, para mi sorpresa, ninguna de las dos, estaba marcada como SPAM. También, acabo de probar postfix y dovecot. Por si había algún problema en general con sendmail. Y este también hace lo mismo, los correos a Yahoo, Gmail y dominios públicos o privados, SI llegan, pero cuando es hacia Hotmail no llegan, ni si quiera al correo basura. Pero si yo mando de Hotmail a una cuenta de mi servidor, si llegan. A que se podría deber esta cuestión?. Estaba revisando este enlace: http://www.encuentroalternativo.com/emails-no-llegan-yahoo-spam/?utm_source=feedburnerutm_medium=emailutm_campaign=Feed:+EncuentroAlternativo+%28Encuentro+Alternativo%29 Me pareció muy interesante, a lo mejor y podría estar baneado por completo en Hotmail -o al menos eso pensé- pero, como saberlo? hay alguna forma de saberlo? Agradezco la ayuda que me puedan dar. Date: Fri, 17 Sep 2010 10:24:38 -0400 From: lis...@rnt.cl To: centos-es@centos.org Subject: Re: [CentOS-es] Sendmail, no envia correos a hotmail. Revisaste si tus ips estaba listadas en alguna lista negra como spamhaus o similar?? El 16/09/2010 22:41, Carlos Sura carlos_s...@hotmail.com mailto:carlos_s...@hotmail.com escribió: Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. Carlos Sura.- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS-es] software de nomina
hala lista como vamos.. me podrian ayudar necesito uun software que maneje la nòmina de mi empresa, con el codigo fuente claro esta para poder ajustarlo a las necesidades de la misma , gracias PD: preferiblente en java o php, pero la verdad no importaria el lenguaje, gracias saludos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Apache + PHP + Oracle OCI
Hola Emiliano. utiliza la siguiente directiva en el apache (httpd.conf) y en el archivo virtualhosts que tengas configurado. AddDefaultCharSet ISO-8859-1 y en el archivo /etc/php.ini coloca la siguiente directriz: default_charset = iso-8859-1 reinicia el apache y debe funcionar la visualización.. Saludos Carlos R. El 16 de septiembre de 2010 08:14, Emiliano Roatta emilianoroa...@gmail.com escribió: Gente: Buenos días. Estoy teniendo un problema con Apache + PHP + Oracle en CentOS. Logré instalar y configurar un servidor web apache, desde el cuál se ejecutan unos scripts php que consultan datos a un servidor de bases de datos Oracle. El problema reside en la visualización de los resultados, en los cuáles, por ejemplo, las Ñ se ven reemplazadas por signos de interrogación. Alguien puede darme una mano por aquí? Gracias desde ya. Saludos! Emiliano. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es -- Carlos Restrepo M. Administrador de Sistemas Profesional Linux LPI 101 - 102 ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
configuraste los SPF de tu dominio? slds El 16 de septiembre de 2010 23:41, Carlos Sura carlos_s...@hotmail.comescribió: Hola! he hecho esto: [miusua...@mihost ~]# tail /var/log/maillog Sep 16 21:21:27midominio sendmail[14043]: o8H4LRdk014043: from= cs...@midominio.com, size=691, class=0, nrcpts=3, msgid= 1284696062.11...@midominio.com, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Sep 16 21:21:27 midominio sm-msp-queue[13654]: o8H412I9013948: to= micor...@hotmail.com,micor...@googlemail.com,micor...@ymail.com, ctladdr= cs...@midominio.com (500/500), delay=00:20:25, xdelay=00:00:00, mailer=relay, pri=180548, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (o8H4LRdk014043 Message accepted for delivery) Sep 16 21:21:28 midominio sendmail[14046]: o8H4LRdk014043: to= micor...@googlemail.com, ctladdr=cs...@emidominio.com (500/500), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=180691, relay= gmail-smtp-in.l.google.com. [74.125.91.27], dsn=2.0.0, stat=Sent (OK 1284697288 g34si6211499qcs.84) Sep 16 21:21:28 midominio sendmail[14046]: o8H4LRdk014043: to= micor...@hotmail.com, ctladdr=cs...@midominio.com (500/500), delay=00:00:01, xdelay=00:00:00, mailer=esmtp, pri=180691, relay= mx3.hotmail.com. [65.55.37.104], dsn=2.0.0, stat=Sent ( 1284696062.11...@midominiocom Queued mail for delivery) Sep 16 21:21:29 midominio sendmail[14046]: o8H4LRdk014043: to= micor...@ymail.com, ctladdr=cs...@midominio.com (500/500), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=180691, relay= a.mx.mail.yahoo.com. [67.195.168.31], dsn=2.0.0, stat=Sent (ok dirdel) Y como veo... No veo nada raro, o distinto, o fuera de lugar... Alguien si? Ayuda? ** -- From: carlos_s...@hotmail.com To: centos-es@centos.org Date: Fri, 17 Sep 2010 02:42:03 + Subject: [CentOS-es] Sendmail, no envia correos a hotmail. Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. *Carlos Sura.-* ** ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es -- Jesús Hinojosa Palma DVinci S.A.C www: http://www.dvinci.pe mail: jhinoj...@dvinci.pe Mobil: +51 1 989097034 Phone: +51 1 7207265 ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Resumen de CentOS-es, Vol 45, Env ío 30
Para Paúl Vizuete. Probá con los productos Axoft (www.axoft.com.ar) -Mensaje original- De: centos-es-boun...@centos.org [mailto:centos-es-boun...@centos.org] En nombre de centos-es-requ...@centos.org Enviado el: viernes, 17 de septiembre de 2010 01:00 p.m. Para: centos-es@centos.org Asunto: Resumen de CentOS-es, Vol 45, Envío 30 Envíe los mensajes para la lista CentOS-es a centos-es@centos.org Para subscribirse o anular su subscripción a través de la WEB http://lists.centos.org/mailman/listinfo/centos-es O por correo electrónico, enviando un mensaje con el texto help en el asunto (subject) o en el cuerpo a: centos-es-requ...@centos.org Puede contactar con el responsable de la lista escribiendo a: centos-es-ow...@centos.org Si responde a algún contenido de este mensaje, por favor, edite la linea del asunto (subject) para que el texto sea mas especifico que: Re: Contents of CentOS-es digest Además, por favor, incluya en la respuesta sólo aquellas partes del mensaje a las que está respondiendo. Asuntos del día: 1. software de nomina (Paúl Vizuete) -- Message: 1 Date: Fri, 17 Sep 2010 10:30:24 -0500 From: Paúl Vizuete fpvizu...@gmail.com Subject: [CentOS-es] software de nomina To: fedora-ve fedora...@googlegroups.com, lista li...@fedora-es.com, centos-es centos-es@centos.org Message-ID: aanlktik+cjz+nae9fnxj=byxfmfyopommxyps=azs...@mail.gmail.com Content-Type: text/plain; charset=ISO-8859-1 hala lista como vamos.. me podrian ayudar necesito uun software que maneje la nòmina de mi empresa, con el codigo fuente claro esta para poder ajustarlo a las necesidades de la misma , gracias PD: preferiblente en java o php, pero la verdad no importaria el lenguaje, gracias saludos -- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Fin de Resumen de CentOS-es, Vol 45, Envío 30 * ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS-es] proxy tranparente
hola, tengo un proxy transparente y lo filtra squid, pero como haria para filtrar trafico https he intentado redireccionarlo tambien puerto de squid pero no funciona sabne como puedo hacer para filtrar trafico https en una red que usa proxy transparante? ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS-es] Migrar servidor OpenVPN
Buenas, les cuento que estoy tratando de migrar mi servidor openvpn, el tema es que varios de los clientes que se conectan, no tengo posibilidad ni de modificarles los archivos de configuracion ni de ingresar a cambiar los certificados. Yo intente copiar la carpeta /etc/openvpn del servidor original y pegarla en el servidor nuevo. Pero no me levanta el servicio openvpn luego de hacer eso. Alguno tiene idea que otro procedimiento hay que hacer para que el nuevo servidor me quede funcionando con los mismos certificados que tenia en el viejo servidor? Gracias y salu2 Carlitos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Sendmail, no envia correos a hotmail.
Hola, pues bien, aquí mi resultado: He vuelto a instalar todo otra vez, y volvi a configurarlo, tengo un sistema base LAMP con CentOS 5.5, utilizo Sendmail, y tambien he probado con postfix+dovecot. Y he hecho todas las pruebas pertinentes para enviar correos, el problema sigue siendo el mismo, puedo enviar correos a Gmail, Dominios privados, Yahoo, pero no a Hotmail, mi IP no esta reportada en los servicios comunes de SPAM, y no se que clase de error podría tener, si puedo enviar y recibir de cualquier tipo, menos de Hotmail, y tampoco puedo creer que el dominio ha sido bloqueado por ellos, porque es realmente nuevo. No he encontrado ni una solucion al problema de momento, solo voy a intentar reportar el dominio a hotmail, tal vez obtengo alguna respuesta. De no ser asi, que me podrían recomendar? me urge relativamente solucionar eso lo mas pronto posible. Carlos Sura.- From: jhinoj...@gmail.com Date: Fri, 17 Sep 2010 09:19:23 -0500 To: centos-es@centos.org Subject: Re: [CentOS-es] Sendmail, no envia correos a hotmail. configuraste los SPF de tu dominio?slds El 16 de septiembre de 2010 23:41, Carlos Sura carlos_s...@hotmail.com escribió: Hola! he hecho esto: [miusua...@mihost ~]# tail /var/log/maillog Sep 16 21:21:27midominio sendmail[14043]: o8H4LRdk014043: from=cs...@midominio.com, size=691, class=0, nrcpts=3, msgid=1284696062.11...@midominio.com, proto=ESMTP, daemon=MTA, relay=localhost.localdomain [127.0.0.1] Sep 16 21:21:27 midominio sm-msp-queue[13654]: o8H412I9013948: to=micor...@hotmail.com,micor...@googlemail.com,micor...@ymail.com, ctladdr=cs...@midominio.com (500/500), delay=00:20:25, xdelay=00:00:00, mailer=relay, pri=180548, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (o8H4LRdk014043 Message accepted for delivery) Sep 16 21:21:28 midominio sendmail[14046]: o8H4LRdk014043: to=micor...@googlemail.com, ctladdr=cs...@emidominio.com (500/500), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=180691, relay=gmail-smtp-in.l.google.com. [74.125.91.27], dsn=2.0.0, stat=Sent (OK 1284697288 g34si6211499qcs.84) Sep 16 21:21:28 midominio sendmail[14046]: o8H4LRdk014043: to=micor...@hotmail.com, ctladdr=cs...@midominio.com (500/500), delay=00:00:01, xdelay=00:00:00, mailer=esmtp, pri=180691, relay=mx3.hotmail.com. [65.55.37.104], dsn=2.0.0, stat=Sent ( 1284696062.11...@midominiocom Queued mail for delivery) Sep 16 21:21:29 midominio sendmail[14046]: o8H4LRdk014043: to=micor...@ymail.com, ctladdr=cs...@midominio.com (500/500), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=180691, relay=a.mx.mail.yahoo.com. [67.195.168.31], dsn=2.0.0, stat=Sent (ok dirdel) Y como veo... No veo nada raro, o distinto, o fuera de lugar... Alguien si? Ayuda? From: carlos_s...@hotmail.com To: centos-es@centos.org Date: Fri, 17 Sep 2010 02:42:03 + Subject: [CentOS-es] Sendmail, no envia correos a hotmail. Hola a todos, Mi problema es el siguiente: Tengo un servidor con CentOS 5.5, y he instalado Sendmail para la salida de los correos de el servidor, probe enviando a Gmail, Yahoo -y funciona muy bien- pero a la hora de enviar a Hotmail, simplemente no caen, ni si quiera a la carpeta de correo basura; y quisiera saber si a alguien le ha pasado esto ya, o me puede explicar que esta pasando, ya que de momento no tengo idea de por donde ira la cosa. Tengo 2 ip's fijas, si de algo sirve saber, también tengo un dominio. Agradecería mucho la ayuda. Carlos Sura.- ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es -- Jesús Hinojosa Palma DVinci S.A.C www: http://www.dvinci.pe mail: jhinoj...@dvinci.pe Mobil: +51 1 989097034 Phone: +51 1 7207265 ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Migrar servidor OpenVPN
Verifica los privilegios de los archivos, seguramente se queja de que los dejaste publicos el openvpn... From: centos-es-boun...@centos.org [mailto:centos-es-boun...@centos.org] On Behalf Of Azu Carlitox Sent: Friday, September 17, 2010 3:26 PM To: centos-es@centos.org Subject: [CentOS-es] Migrar servidor OpenVPN Buenas, les cuento que estoy tratando de migrar mi servidor openvpn, el tema es que varios de los clientes que se conectan, no tengo posibilidad ni de modificarles los archivos de configuracion ni de ingresar a cambiar los certificados. Yo intente copiar la carpeta /etc/openvpn del servidor original y pegarla en el servidor nuevo. Pero no me levanta el servicio openvpn luego de hacer eso. Alguno tiene idea que otro procedimiento hay que hacer para que el nuevo servidor me quede funcionando con los mismos certificados que tenia en el viejo servidor? Gracias y salu2 Carlitos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] proxy tranparente
el problema que el trafico https no se puede hacer cache de ese tipo de trafico, tienes que hacer una regla en el iptables y dejar cruzar el puerto 443, esto se debe a que las conexiones https son encriptadas entre el usuario y el servidor a donde se conecta, si lo pasas por un cache, es visto como una violacion de seguridad y la encriptacion se cae y la pagina no puede ser mostrada. un cordial saludo, Jose Lara -Original Message- From: ces can arvega...@hotmail.com Reply-to: centos-es@centos.org To: centos centos-es@centos.org Subject: [CentOS-es] proxy tranparente Date: Fri, 17 Sep 2010 14:31:11 -0500 hola, tengo un proxy transparente y lo filtra squid, pero como haria para filtrar trafico https he intentado redireccionarlo tambien puerto de squid pero no funciona sabne como puedo hacer para filtrar trafico https en una red que usa proxy transparante? ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS] looking for cool, post-install things to do on a centos 5.5 system
(note: i asked this a few days ago but it *appears* that that post was tossed due to getting excessive bounces from my account. so i'm posting it again, apologies if you're seeing it a second time.) over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: other ideas? LTSP -- MELVILLE THEATRE ~ Melville Sask ~ http://www.melvilletheatre.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Robert P. J. Day wrote: To: CentOS discussion list centos@centos.org From: Robert P. J. Day rpj...@crashcourse.ca Subject: [CentOS] looking for cool, post-install things to do on a centos 5.5 system (note: i asked this a few days ago but it *appears* that that post was tossed due to getting excessive bounces from my account. so i'm posting it again, apologies if you're seeing it a second time.) over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. Hi Robert. That sounds interesting. You might like to checkout my Auto Linux Installer bash scripts. I wrote these to automate the installation of Fedora and now have a set configured to install CentOS 5.5 You may be able to enhance your course and add some more time to it by using some things from my ALI scripts? They are designed to install a fresh Fedora/CentOS/RHEL system, deal with automating service management, and configure the freshly installed system to use your saved configuration files - if there are any. http://www.karsites.net/centos/anyuser/auto-linux-installer.php I'm also 3/4 the way writing a tutorial on how to download and install the latest version of Eclipse 3.6.0 Helios for PHP programmers, on CentOS 5.5 I have it all working fine, but the howto is not completed yet. HTH Keith - Websites: http://www.karsites.net http://www.php-debuggers.net http://www.raised-from-the-dead.org.uk All email addresses are challenge-response protected with TMDA [http://tmda.net] - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Frank Cox wrote: On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: other ideas? LTSP an intriguing idea, but that might be a bit ambitious and might also cut into future marketing. one of my plans is that, after this week-long course is over, i want to market to the same client some quick, 1-day courses that go further and each cover a very specific topic. for example, i can imagine a 1-day course in virtualization. maybe a 1-day course in server security. a course in monitoring and system tuning. and perhaps a course in advanced networking that would incorporate LTSP. so i'm more looking for ideas that are nice add-ons to the generic course, but that don't jump so far ahead that they might take a bite out of a future course that i could market. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Hi, On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: other ideas? Maybe a crash course in troubleshooting using the rescue CD ? I don't know exactly which subjects are covered in your course ? Can you be more precise ? :) regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] should vsftpd be disabled in favour of sftp for security reasons?
(another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
(another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? As FTP is a clear-text protocol, I would surely advise against leaving it on :) I only run a vsftpd server on one of my machines for the customers comfort, but that will change in the near future ! I can easily image scenarios where unencrypted traffic with usernames/passwords is disallowed. Regards, Michel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Michel van Deventer wrote: Hi, On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: other ideas? Maybe a crash course in troubleshooting using the rescue CD ? I don't know exactly which subjects are covered in your course ? Can you be more precise ? :) sure. while it's a 3rd-party courseware manual, it was obviously written to emulate fairly closely red hat's admin course here: https://www.redhat.com/courses/rh131_red_hat_linux_system_administration/details/ so the best way i can sum it up is that it's a perfectly decent admin course that covers all the standard admin topics you'd expect to see. all i was interested in was any additional packages or configuration that people on this list have used to great effect that most people would *not* have thought of or heard of. for instance, is anyone version controlling their system config files with a utility like, say, etckeeper? that sort of thing. i just want to pad out some of the sections with a few more items. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 2010-09-17 at 03:39 -0400, Robert P. J. Day wrote: over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. You should share some of the topics/courses here. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. Serial over LAN or IPMI for the Fence Management on the machine. OOB Access. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. Explain how to set up auditd to enable full logging. John ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
On Fri, 2010-09-17 at 05:51 -0400, Robert P. J. Day wrote: (another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? There is nothing wrong with locking it down in Read Only file structures. John ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
On Fri, 17 Sep 2010, Michel van Deventer wrote: (another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? As FTP is a clear-text protocol, I would surely advise against leaving it on :) I only run a vsftpd server on one of my machines for the customers comfort, but that will change in the near future ! I can easily image scenarios where unencrypted traffic with usernames/passwords is disallowed. but you can configure vsftpd to have secure connection: http://wiki.vpslink.com/Configuring_vsftpd_for_secure_connections_(TLS/SSL/SFTP) would that not address that issue? i'm not arguing against secure communications, only that that manual page so cavalierly dismisses vsftpd when it seems clear that you *can* configure vsftpd to be secure. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
From: Robert P. J. Day rpj...@crashcourse.ca so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. Random thoughts (maybe already in your standard topics): - kickstart (cd, usb, pxe) - local CentOS repository - drbd or some distributed fs - nfs / nis - ldap - samba - keepalived / ipvs - fail2ban - proxies (squid, nginx...) - monitoring (nagios, cacti...) - VM (KVM, Xen...) - quotas, acls - encrypted fs JD ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] xen domU crash
Hello all, From time to time (more often lately) all xen guests crash with all process to % CPU load. All VM running with Fedora 8 OS (PV VM). On host (dual socket Xeon Nocona R0 3GHz) run CentOS x86_64 with hypervisor Xen 3.4.0 Have some similar experiences? Any ideas? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Bandwidth limit per user or ip
Greetings all, I would like to set the use of bandwidth in my network per user or ip address, is it possible using my linux box running Centos 5.1? regards, Damas -- If opportunity doesn't knock, build a door. Says, Makweba Sir ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bandwidth limit per user or ip
yes, iptables uid matching and tc will do this. but its kinda ugly to setup. On 09/17/2010 12:42 PM, Damas Ally wrote: Greetings all, I would like to set the use of bandwidth in my network per user or ip address, is it possible using my linux box running Centos 5.1? regards, Damas ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Robert P. J. Day wrote: To: CentOS discussion list centos@centos.org From: Robert P. J. Day rpj...@crashcourse.ca Subject: [CentOS] looking for cool, post-install things to do on a centos 5.5 system ... over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. Adding Multimedia capabilities Using SQLite3 from the command line Creating a Database Creating and populating a table Selecting, inserting, updating and deleting data in the database Remote login sessions using ssh -X Intro to nmap, nessus and Metasploit Intro to Firefox plugins, eg Firebug How to find and install other usefull FF plugins. Obviously the list is endless really. HTH Keith - Websites: http://www.karsites.net http://www.php-debuggers.net http://www.raised-from-the-dead.org.uk All email addresses are challenge-response protected with TMDA [http://tmda.net] - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bandwidth limit per user or ip
Please, Forward to me some basic instructions on how to do or specify the policy. I mean which service or protocol should be assigned to my iptables and how? would i need to create some groups or use mac address of a user pc? thanks, rgds! Damas On Fri, Sep 17, 2010 at 1:49 PM, Juergen Gotteswinter j...@internetx.dewrote: yes, iptables uid matching and tc will do this. but its kinda ugly to setup. On 09/17/2010 12:42 PM, Damas Ally wrote: Greetings all, I would like to set the use of bandwidth in my network per user or ip address, is it possible using my linux box running Centos 5.1? regards, Damas ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- If opportunity doesn't knock, build a door. Says, Makweba Sir ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Remove all packages from specific repository
Hi CentOS Mailinglist, we are using amavisd-new (with all dependencies) from Fedora/Redhat EPEL repo. Some packages from EPEL repo are very old. (amavisd-new, clamav, spamassassin) What's the best way to remove all amavisd-new packages (and it's dependencies) from EPEL repo and reinstall it from rpmforge repo? Thank you. Best regards, Morten ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Keith Roberts wrote: Adding Multimedia capabilities Using SQLite3 from the command line Creating a Database Creating and populating a table Selecting, inserting, updating and deleting data in the database Remote login sessions using ssh -X Intro to nmap, nessus and Metasploit Intro to Firefox plugins, eg Firebug How to find and install other usefull FF plugins. Obviously the list is endless really. not entirely. keep in mind that this is an *admin* course for RHEL/centos so any additional topics should be primarily server-oriented. that suggests that things like multimedia would have little value. heck, even graphical utilities might be irrelevant since, as a server, the system might not even have X installed. so, yes, i realize this is still being a bit vague. i'm just interested in what others have found as being really, really useful in the context of setting up a server. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 9:39 AM, Robert P. J. Day rpj...@crashcourse.ca wrote: logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. sysadmins should now really know about configuration management tools. So show them how to bootstrap an infrastructure with kickstart and cfengine (or puppet or chef or ...) -- natxo ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bandwidth limit per user or ip
take a look at http://lartc.org/wondershaper/ On 09/17/2010 01:06 PM, Damas Ally wrote: Please, Forward to me some basic instructions on how to do or specify the policy. I mean which service or protocol should be assigned to my iptables and how? would i need to create some groups or use mac address of a user pc? thanks, rgds! Damas On Fri, Sep 17, 2010 at 1:49 PM, Juergen Gotteswinterj...@internetx.dewrote: yes, iptables uid matching and tc will do this. but its kinda ugly to setup. On 09/17/2010 12:42 PM, Damas Ally wrote: Greetings all, I would like to set the use of bandwidth in my network per user or ip address, is it possible using my linux box running Centos 5.1? regards, Damas ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/10 2:39 AM, Robert P. J. Day wrote: (note: i asked this a few days ago but it *appears* that that post was tossed due to getting excessive bounces from my account. so i'm posting it again, apologies if you're seeing it a second time.) over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. I'd consider the most valuable things to know about would be the nature of an assortment of 3rd party yum repositories (i.e. EPEL makes an effort not to overwrite core packages but probably won't have everything you want), how to find and install their *-release packages, how to use yum to search and install things from them, and that most of them should left disabled in the yum configuration so they don't affect things unless you explicitly enable them on the command line for a search or specific package you want. Oh - and how to install and use freenx/NX for remote access. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 17/09/10 08:39, Robert P. J. Day wrote: (note: i asked this a few days ago but it *appears* that that post was tossed due to getting excessive bounces from my account. so i'm posting it again, apologies if you're seeing it a second time.) over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. How about how to subscribe to the CentOS mailing list? ;-) A. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] selinux with samba
I'm having problems setting up a samba server with sellinux in centos 5.6 (x64). My samba config works flawlessly when selinux is disabled but fails to access shares when selinux is enabled. Wich command makes it possible to run samba with selinux without disabling it, now I've done: set sebool -P smbd_disable_trans 1 but doesn't really solve my problem. Thanks in advance! geert ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Amazon AMI based on CentOS 5?
Hello, Amazon has just released a custom Linux distribution (Amazon Linux AMI) for use in their EC2 cloud: http://aws.amazon.com/ec2/faqs/#What_is_the_Amazon_Linux_AMI Out of curiosity, I googled a bit around it and read in various places (e.g. [1] and [2]) that it is based on CentOS 5 (basically a stripped down version) and should be compatible with most packages. Do any of you have confirmation of this? And more details/experience? (I'm not a EC2 user, so I cannot check by myself...) Thanks, Mathieu [1] http://www.cloudave.com/4872/open-source-and-cloud-computing-the-amazon-linux-ami-is-now-available/ [2] http://news.ycombinator.com/item?id=1693055 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/10 7:51 AM, Robert P. J. Day wrote: On Fri, 17 Sep 2010, Les Mikesell wrote: I'd consider the most valuable things to know about would be the nature of an assortment of 3rd party yum repositories (i.e. EPEL makes an effort not to overwrite core packages but probably won't have everything you want), how to find and install their *-release packages, how to use yum to search and install things from them, and that most of them should left disabled in the yum configuration so they don't affect things unless you explicitly enable them on the command line for a search or specific package you want. i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. No, the important thing to know is that the repositories that have the current packages you want to install will also cause dependency issues if you enable them for general updates. I use rpmforge for subversion and some other things, but I haven't really kept up with what is out there. Oh - and how to install and use freenx/NX for remote access. h ... good idea. or i might just add in VNC and carry over the freenx to an additional course dealing with networking/remote admin/etc. thanks. I'd guess that for most people starting with linux, freenx with NX running on their existing windows/mac would be a much better fit. Maybe vmwware player or virtualbox too. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Remove all packages from specific repository
Morten P.D. Stevens wrote on 09/17/2010 07:06 AM: What's the best way to remove all amavisd-new packages (and it's dependencies) from EPEL repo and reinstall it from rpmforge repo? To see what repos you have installed packages from: [code] rpm -qa --qf %{VENDOR} \n | sort | uniq [/code] The result should be a list of VENDOR tags. To see the packages from a particular Vendor, for example EPEL:[code] rpm -qa --qf %{NAME} %{VENDOR} \n | grep Fedora Project | cut -d ' ' -f 1 | sort [/code] The result should be a list of EPEL packages. Remove all, or all related to the packages you want to remove, then disable EPEL, or set it to a lower priority than RPMforge. Enable RPMforge, and install the packages you want. If the RPMforge packages are all later versions, then the prior removal should not be necessary. A simple yum update with the correct repo configuration should be sufficient. Phil ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] selinux with samba
Geert Batsleer wrote on 09/17/2010 09:14 AM: I'm having problems setting up a samba server with sellinux in centos 5.6 (x64). My samba config works flawlessly when selinux is disabled but fails to access shares when selinux is enabled. Wich command makes it possible to run samba with selinux without disabling it, now I've done: set sebool -P smbd_disable_trans 1 but doesn't really solve my problem. See the SELinux Wiki article, Section 7: http://wiki.centos.org/HowTos/SELinux Phil ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Eduardo Grosclaude wrote: On Fri, Sep 17, 2010 at 4:39 AM, Robert P. J. Day rpj...@crashcourse.ca wrote: logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. If your students are new to RHEL/CentOS admin, they will appreciate some education regarding what and how to search into docs and other information sources: the Guides, CentOS community resources such as Forum, Wiki or this mailing list. I always push the second chapter of Frisch's Essential Systems Administration (O'Reilly, of course) at folks. That's the chapter entitled The Unix Way, which gives a *really* good overview of the archetecture of *Nix, what's where and why. Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 09/17/2010 03:39 AM, Robert P. J. Day wrote: (note: i asked this a few days ago but it *appears* that that post was tossed due to getting excessive bounces from my account. so i'm posting it again, apologies if you're seeing it a second time.) over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done in the way of what can be added to or configured on a centos server system? the course covers all the standard topics -- installation, package management, service management, filesystem maintenance, that sort of thing. so i'm looking for bonus, neat stuff that others here do as a matter of course when putting together a centos system. logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. rday I've done quite a few things. Recently, I just run puppet and let it do EVERYTHING for whatever a system might need. But things I have done in the past are autodetect if the system is a vm and install vmware-tools, find the next ip address available in DNS for the particular subnet the newly installed system is in and dynamically update forward and reverse (including a helpful TXT record which fit a known convention), run yum update and reboot, and even create a qtree on netapp automatically. Just a quick few things.. I also do some stuff during pre installation like align the disk on proper boundaries and enable software raid according to the meta data associated with the system record in cobbler. Cobbler is nice as a subscription means to dynamically alter kickstart configs so I can add 'raid=5' as meta data for instance the the vm will build itself with raid5 (if it can of course). Same things applies to selinux, firewall, and other features that need to be enabled very early on and puppet just checks to make sure it's still true. I've moved away from doing stuff in post install and instead let puppet handle pretty much everything. API's are great for this. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Remove all packages from specific repository
On Fri, Sep 17, 2010 at 3:19 PM, Phil Schaffner wrote: To see the packages from a particular Vendor, for example EPEL:[code] rpm -qa --qf %{NAME} %{VENDOR} \n | grep Fedora Project | cut -d ' ' -f 1 | sort [/code] The result should be a list of EPEL packages. Hi Phil, This command is great to list (and remove) all packages from EPEL repository. Thank you very much. Best regards, Morten ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] using NUT on centos 5
I have NUT configured on a few of my CentOS servers. I compiled and installed from source (2.4.3), so all of my nut-related files sit under /usr/local/ups. I am using a Liebert UPS. Here's how I have it working: Connect a serial cable from your server to the UPS (if available; USB is an option on some models, I think). The nut software can communicate with the UPS via serial on a ttyS (mine is /dev/ttyS0). This server (directly attached) must run upsd. Other servers that use the same UPS can communicate with upsd running on the first server via upsmon. All servers must run upsmon (this is what actually monitors the UPS). Configure ups.conf with information about your UPS (mine is liebert). The nut docs have a list of supported hardware and the drivers that you use for them (I use the driver 'liebert'): [liebert] driver = liebert port = /dev/ttyS0 At least one server attached to each UPS must run upsd. Here's my upsd.conf (comments removed). Note that the second line uses the IP address of the LAN interface on your server, so that other machines on the same subnet can communicate with upsd: LISTEN 127.0.0.1 3493 LISTEN 172.21.97.1 3493 You have to configure upsd.users to allow access to certain users (one for each upsmon process that will communicate with upsd). This information will be used to configure upsmon on the clients. For example, I have two servers listed here: the local server (server1) and another server attached to the same UPS (server2): [server1-ups] password = server1-ups-pass upsmon master [server2-ups] password = server2-ups-pass upsmon slave Configure upsmon.conf on each client. Based on the example above, here's the upsmon.conf for server1: FINALDELAY 5 MONITOR lieb...@localhost 1 server1-ups server1-ups-pass master ... and the upsmon.conf for server2: FINALDELAY 5 MONITOR lieb...@server1 1 server2-ups server2-ups-pass master Once you have ups.conf, upsd.conf, upsd.users, and upsmon.conf configured, you can test you connections like the following: [r...@server1 ~]# /usr/local/ups/bin/upsc lieb...@localhost device.mfr: Liebert device.model: MultiLink device.type: ups driver.name: liebert driver.parameter.pollinterval: 2 driver.parameter.port: /dev/ttyS0 driver.version: 2.4.3 driver.version.internal: 1.02 ups.mfr: Liebert ups.model: MultiLink ups.status: OL LB [r...@server2 ~]# /usr/local/ups/bin/upsc lieb...@server1 device.mfr: Liebert device.model: MultiLink device.type: ups driver.name: liebert driver.parameter.pollinterval: 2 driver.parameter.port: /dev/ttyS0 driver.version: 2.4.3 driver.version.internal: 1.02 ups.mfr: Liebert ups.model: MultiLink ups.status: OL LB Don't forget to add the nut software to your startup scripts and appropriate runlevels. Hope this helps. Pat Boyer On Tue, Sep 14, 2010 at 11:18 AM, fred smith fre...@fcshome.stoneham.ma.uswrote: Hi! Trying to set up NUT on Centos 5 to monitor a CyberPower 1500AVR UPS. There seem to be many documents, all of which seem to be not fully consistent with each other, and most of them aren't up to date. I'm guessing I should be using udev rather than hal, but I'm somewhat stumped on how to figure out what device it should be monitoring. there are a bunch of udev rules installed (in /lib/udev/rules.d/52-nut-usbups.rules) but it's not at all clear to me what, if anything, I'm supposed to do with them, or how I cause udev to see them there and do its thing. there's a document at http://fedoranews.org/contributors/kazutoshi_morioka/nut/ but it doesn't show how to do it with a USB device, only serial. so I decided to move on and see if it could be made to work without that understanding, using whatever I could figure out using the INSTALL file that comes with NUT. And that isn't geting me anywhere, so far. If anyone out there has had success at setting up NUT on Centos 5 (or RHEL) and can offer any advice, I'd appreciate hearing from you. Thanks in advance! -- Fred Smith -- fre...@fcshome.stoneham.ma.us- For him who is able to keep you from falling and to present you before his glorious presence without fault and with great joy-- to the only God our Savior be glory, majesty, power and authority, through Jesus Christ our Lord, before all ages, now and forevermore! Amen. - Jude 1:24,25 (niv) - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Remove all packages from specific repository
Morten P.D. Stevens wrote on 09/17/2010 09:55 AM: Hi Phil, This command is great to list (and remove) all packages from EPEL repository. You're welcome. Guess you managed to ignore the extraneous Xoops code tags from the forum copy/paste. :-) Phil ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
Robert P. J. Day wrote: On Fri, 17 Sep 2010, Michel van Deventer wrote: (another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? As FTP is a clear-text protocol, I would surely advise against leaving it on :) I only run a vsftpd server on one of my machines for the customers comfort, but that will change in the near future ! I can easily image scenarios where unencrypted traffic with usernames/passwords is disallowed. but you can configure vsftpd to have secure connection: http://wiki.vpslink.com/Configuring_vsftpd_for_secure_connections_(TLS/SSL/SFTP) would that not address that issue? i'm not arguing against secure communications, only that that manual page so cavalierly dismisses vsftpd when it seems clear that you *can* configure vsftpd to be secure. Google for vsftpd + bugtraq. Be afraid. -- Charles Polisher ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 8:18 AM, Les Mikesell wrote: h ... good idea. or i might just add in VNC and carry over the freenx to an additional course dealing with networking/remote admin/etc. thanks. I'd guess that for most people starting with linux, freenx with NX running on their existing windows/mac would be a much better fit. Maybe vmwware player or virtualbox too. Oh, another thing - I've always thought that every course on unix-like systems should touch on what the fork() and open() system calls do, sort of like learning to count to 10 before memorizing math formulas. If you understand that every process except init is fork()ed from a running parent, that environment variables and open files are inherited (because the child/parent share the COW memory), and the security checks that happen in open(), you can pretty much deduce the rest of the system behavior (well, except for selinux...). -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Les Mikesell wrote: On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). i will probably throw in an hour or so of shell scripting, just enough to whet their appetites and make them want an actual course. :-) rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
On Fri, Sep 17, 2010 at 5:51 AM, Robert P. J. Day rpj...@crashcourse.ca wrote: (another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? I agree with the point that the document is making. If you go to the trouble to lock down an account, it doesn't make sense to allow that same account to access the server via the ftp protocol. However, I do use vsftpd with specific IDs that do not have shell access. These accounts are also generally not system accounts so even if a password was sniffed, it would not allow shell access. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done For me: I'd want to have a closer look at things that *might* give advantages but DO bring troubles: SEL KVM And dangers such as DoS DDoS Zombie computers randomly port-scanning Internal user ignorance, apathy, malice, and mis-information about how to secure the campus network from the hostile world. A boss who does not understand what he wants, but he wants it real bad. *** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept for the presence of computer viruses. www.Hubbell.com - Hubbell Incorporated** ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And So, what's the longest awk scripts you've ever written, Mike? It works wonderfully well for what it was intended - and mostly, I use it for reports or data conversion. learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). Misuse of awk. mark why, yes, I *have* written 100 and 200 line awk scripts to do data converstion and data validation ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
I know the OP asked for cool things to do, but I'll add my vote to those who suggested highlighting configuration management. I'm not sure how much puppet or cfengine you teach in a half-day, but I'm fairly confident you could cover: 1. considering configuration files to be code -- it needs to be in a repository 2. setting up a Subversion or git repository and some possible ways of laying out a configuration repository (per host, per service, etc) 3. committing changes, recovering older configs when newer ones introduce regressions Personally, I like Subversion for configuration repositories because (imo) sysadmins usually like having an authoritative repo rather than a widely branched one -- but git is on the rise and is certainly worth considering. Other, slightly related, suggestions include setting up a documentation wiki and/or a ticketing system. Trac can do both, but there are plenty of worthwhile alternatives. -- Paul Heinlein heinl...@madboa.com http://www.madboa.com/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Brunner, Brian T. wrote: over the next several weeks, i'm teaching some courses in RHEL admin but (unsurprisingly) i'll be using centos 5.5. it's a decently-written, 3rd party course, all the generic, standard admin topics but it does leave me about a 1/2 day to throw in any cool stuff i want to add. so, any recommendations for neat things that people here have done For me: I'd want to have a closer look at things that *might* give advantages but DO bring troubles: SEL KVM And dangers such as DoS DDoS Zombie computers randomly port-scanning Internal user ignorance, apathy, malice, and mis-information about how to secure the campus network from the hostile world. A boss who does not understand what he wants, but he wants it real bad. Which leads back to what I suggested - an overview of the architecture of *Nix. I worked in a division of a telecom once that some of the 27 teams had files *everywhere* (including /), and everyone had the root password mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 10:02 AM, Robert P. J. Day wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). i will probably throw in an hour or so of shell scripting, just enough to whet their appetites and make them want an actual course. :-) Yes, at least get across the concept that anything they do on the command line can be saved in a file and run again - and any command that needs to be repeated with small differences can be easily wrapped in a 'for' loop with a list of substitutions. And if the course doesn't already cover it, point out the ability to ^r recall previous commands and repeat with simple edits. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 10:12 AM, m.r...@5-cent.us wrote: Les Mikesell wrote: On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And So, what's the longest awk scripts you've ever written, Mike? It works wonderfully well for what it was intended - and mostly, I use it for reports or data conversion. Don't think I've ever written one from scratch, at least not since perl was around because it was too painful to debug. I agree that it works fine when you copy someone else's already-debugged code. I'm not recommending never using awk, I just don't see the point of learning to write it. learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). Misuse of awk. mark why, yes, I *have* written 100 and 200 line awk scripts to do data converstion and data validation But why, when very likely better versions of whatever you were doing have already been written and debugged as CPAN perl modules? Would you do something like time parsing or format conversions in awk, or extract mime attachment from a mail message? Those sound simple but aren't and in perl you only have to write a couple of lines yourself to do them. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 10:12 AM, m.r...@5-cent.us wrote: Les Mikesell wrote: On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And So, what's the longest awk scripts you've ever written, Mike? It works wonderfully well for what it was intended - and mostly, I use it for reports or data conversion. Don't think I've ever written one from scratch, at least not since perl was around because it was too painful to debug. I agree that it works fine when you copy someone else's already-debugged code. I'm not recommending never using awk, I just don't see the point of learning to write it. learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). Misuse of awk. mark why, yes, I *have* written 100 and 200 line awk scripts to do data converstion and data validation But why, when very likely better versions of whatever you were doing have already been written and debugged as CPAN perl modules? Would you do something like time parsing or format conversions in awk, or extract mime attachment from a mail message? Those sound simple but aren't and in perl you only have to write a couple of lines yourself to do them. Ah, no. I wrote 30 scripts around '91-'92 to take datafiles from 30 sources and reformat them, to feed to the C program I'd written with embedded sql, in place of the d/b's sqlloader (*bleah*). Then, 11 years ago, I wrote a validation program for data that was being loaded by another program that I didn't want to change; the data had been exported from ArcInfo, and had to go into our Oracle d/b. Really simple to do in awk - just so much of it, and no, perl would have offered no improved/shorter way to do it, and yes, I do know perl - in '04, for example, I rewrote a call routing and billing system from perl (written by my then-manager, who'd never studied programming, can you say spaghetti?) into reasonable perl. Actually, I just wrote a scraper in perl, using HTML::Parser. Anyway, the point of that was to demonstrate that I know both, and awk is better, IMO, for some jobs. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 11:47, m.r...@5-cent.us wrote: Ah, no. I wrote 30 scripts around '91-'92 to take datafiles from 30 sources and reformat them, to feed to the C program I'd written with embedded sql, in place of the d/b's sqlloader (*bleah*). Then, 11 years ago, I wrote a validation program for data that was being loaded by another program that I didn't want to change; the data had been exported from ArcInfo, and had to go into our Oracle d/b. Really simple to do in awk - just so much of it, and no, perl would have offered no improved/shorter way to do it, and yes, I do know perl - in '04, for example, I rewrote a call routing and billing system from perl (written by my then-manager, who'd never studied programming, can you say spaghetti?) into reasonable perl. Actually, I just wrote a scraper in perl, using HTML::Parser. Anyway, the point of that was to demonstrate that I know both, and awk is better, IMO, for some jobs. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos It's all about picking the right tool for the job. Python is good for some things, perl for others, awk for still different things... It is the beauty of Linux... John -- John Kennedy ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS-announce Digest, Vol 67, Issue 5
Send CentOS-announce mailing list submissions to centos-annou...@centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-requ...@centos.org You can reach the person managing the list at centos-announce-ow...@centos.org When replying, please edit your Subject line so it is more specific than Re: Contents of CentOS-announce digest... Today's Topics: 1. CEBA-2010:0695 CentOS 5 i386 python-dmidecode Update (Karanbir Singh) 2. CEBA-2010:0695 CentOS 5 x86_64 python-dmidecode Update (Karanbir Singh) 3. CEBA-2010:0696 CentOS 5 i386 device-mapper-multipath Update (Karanbir Singh) 4. CEBA-2010:0696 CentOS 5 x86_64device-mapper-multipath Update (Karanbir Singh) 5. CESA-2010:0698 Critical CentOS 5 i386 samba3x Update (Karanbir Singh) 6. CESA-2010:0698 Critical CentOS 5 x86_64 samba3x Update (Karanbir Singh) 7. CESA-2010:0697 Critical CentOS 5 i386 samba Update (Karanbir Singh) 8. CESA-2010:0697 Critical CentOS 5 x86_64 samba Update (Karanbir Singh) -- Message: 1 Date: Wed, 15 Sep 2010 22:03:23 + From: Karanbir Singh kbsi...@centos.org Subject: [CentOS-announce] CEBA-2010:0695 CentOS 5 i386 python-dmidecodeUpdate To: centos-annou...@centos.org Message-ID: 20100915220323.ga1...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2010:0695 Upstream details at : https://rhn.redhat.com/errata/RHBA-2010-0695.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 59d449bc485b27b7f825d67b793e5f0e python-dmidecode-3.10.13-1.el5_5.1.i386.rpm Source: c64fadc96b9a50d83c1ad8a401451886 python-dmidecode-3.10.13-1.el5_5.1.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net -- Message: 2 Date: Wed, 15 Sep 2010 22:03:23 + From: Karanbir Singh kbsi...@centos.org Subject: [CentOS-announce] CEBA-2010:0695 CentOS 5 x86_64 python-dmidecodeUpdate To: centos-annou...@centos.org Message-ID: 20100915220323.ga1...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2010:0695 Upstream details at : https://rhn.redhat.com/errata/RHBA-2010-0695.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 856a846d2b27de0a5a74a055e100efcb python-dmidecode-3.10.13-1.el5_5.1.x86_64.rpm Source: c64fadc96b9a50d83c1ad8a401451886 python-dmidecode-3.10.13-1.el5_5.1.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net -- Message: 3 Date: Wed, 15 Sep 2010 22:03:44 + From: Karanbir Singh kbsi...@centos.org Subject: [CentOS-announce] CEBA-2010:0696 CentOS 5 i386 device-mapper-multipath Update To: centos-annou...@centos.org Message-ID: 20100915220344.ga1...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2010:0696 Upstream details at : https://rhn.redhat.com/errata/RHBA-2010-0696.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 4aa482821c012d554a32ef5c8dbea36b device-mapper-multipath-0.4.7-34.el5_5.5.i386.rpm 318dbe2838a06577258dfb85d33f8e0b kpartx-0.4.7-34.el5_5.5.i386.rpm Source: 7a78c52e025f0264d701da4d0caa0ab6 device-mapper-multipath-0.4.7-34.el5_5.5.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net -- Message: 4 Date: Wed, 15 Sep 2010 22:03:45 + From: Karanbir Singh kbsi...@centos.org Subject: [CentOS-announce] CEBA-2010:0696 CentOS 5 x86_64 device-mapper-multipath Update To: centos-annou...@centos.org Message-ID: 20100915220345.ga1...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2010:0696 Upstream details at : https://rhn.redhat.com/errata/RHBA-2010-0696.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 183024be4611c71b5cef0c667f1404b3 device-mapper-multipath-0.4.7-34.el5_5.5.x86_64.rpm 5658ce10f2a02dec4484109e35f5715c kpartx-0.4.7-34.el5_5.5.x86_64.rpm Source: 7a78c52e025f0264d701da4d0caa0ab6 device-mapper-multipath-0.4.7-34.el5_5.5.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net -- Message: 5 Date: Wed, 15 Sep 2010 22:42:24 + From: Karanbir Singh kbsi...@centos.org Subject: [CentOS-announce]
Re: [CentOS] iptables
On Thursday 16 September 2010 16:03, alexus wrote: I'm trying to do some simple tcp port forwarding The first thing you need to do is drop the RH-firewall BS and create a new firewall rule set setup for your needs. If you don't know how to setup a firewall then I would suggest you get one of those GUI programs that can do this for you. [r...@wcmisdlin02 ~]# curl --verbose http://10.52.208.221:80 * About to connect() to 10.52.208.221 port 80 * Trying 10.52.208.221... Connection refused * couldn't connect to host * Closing connection #0 curl: (7) couldn't connect to host [r...@wcmisdlin02 ~]# Looks like this host doesn't accept port 80 connections. -- Regards Robert Linux The adventure of a life time. Linux User #296285 Get Counted http://counter.li.org/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] should vsftpd be disabled in favour of sftp for security reasons?
On Fri, 17 Sep 2010 07:08:23 -0700 cpol...@surewest.net wrote: Robert P. J. Day wrote: On Fri, 17 Sep 2010, Michel van Deventer wrote: (another in an ongoing list of things i just want to clarify for the sake of future courses taught on centos.) from this RHEL doc page: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/s1-openssh-server-config.html the reader is advised to, for the sake of security, remove/disable vsftpd, ostensibly in favour of sftp/sftp-server. really? i can obviously see disallowing stuff like telnet and rsh and rlogin, that's a no-brainer. but advising against vsftpd for the sake of security? i'm not sure i see the logic in that. thoughts? As FTP is a clear-text protocol, I would surely advise against leaving it on :) I only run a vsftpd server on one of my machines for the customers comfort, but that will change in the near future ! I can easily image scenarios where unencrypted traffic with usernames/passwords is disallowed. but you can configure vsftpd to have secure connection: http://wiki.vpslink.com/Configuring_vsftpd_for_secure_connections_(TLS/SSL/SFTP) would that not address that issue? i'm not arguing against secure communications, only that that manual page so cavalierly dismisses vsftpd when it seems clear that you *can* configure vsftpd to be secure. Google for vsftpd + bugtraq. Be afraid. I used to have vsftpd laying around unused after I started using sftp but I just went ahead and removed it. The less services I have running the fewer points of entry are there, so if you can already do what ftp does with ssh/sftp why open up ftp. Unless you are supporting some legacy apps that do not support sftp. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Robert P. J. Day wrote: To: CentOS mailing list centos@centos.org From: Robert P. J. Day rpj...@crashcourse.ca Subject: Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system On Fri, 17 Sep 2010, Les Mikesell wrote: On 9/17/2010 8:24 AM, m.r...@5-cent.us wrote: Proper scripting abilities are perhaps beyond reach for a short course, but you could at least show off some one-liners or those short, stunningly useful examples to help them get the idea that they definitely should get their feet wet on it sooner or later. awk, awk! Perl's a day, minimum, by itself, but awk you can do in an hour or two, and have immediate results. But awk is a dead end that can't do a lot of things by itself. And learning how to embed awk into other scripts is even more syntactically obscure than just using perl in the first place. Besides, perl's '-c' check and debug facilities make it much more usable to beginners than awk's propensity to find errors mid-run (and worse, mid-some-other-script because you had to embed it). i will probably throw in an hour or so of shell scripting, just enough to whet their appetites and make them want an actual course. :-) rday What about something on using the find command and xargs? Most shell commands can be piggy-backed on the find command. And also as mentioned, how and where to find documentation? pinfo is a nice man page and info page viewer, with Lynx like navigation. Much easier than trying to how to use the info command. # pinfo find 1 Introduction ** This manual shows how to find files that meet criteria you specify, and how to perform various actions on the files that you find. The principal programs that you use to perform these tasks are `find', `locate', and `xargs'. Some of the examples in this manual use capabilities specific to the GNU versions of those programs. HTH Keith Roberts - Websites: http://www.karsites.net http://www.php-debuggers.net http://www.raised-from-the-dead.org.uk All email addresses are challenge-response protected with TMDA [http://tmda.net] - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 10:47 AM, m.r...@5-cent.us wrote: Ah, no. I wrote 30 scripts around '91-'92 to take datafiles from 30 sources and reformat them, to feed to the C program I'd written with embedded sql, in place of the d/b's sqlloader (*bleah*). Then, 11 years ago, I wrote a validation program for data that was being loaded by another program that I didn't want to change; the data had been exported from ArcInfo, and had to go into our Oracle d/b. Really simple to do in awk - just so much of it, and no, perl would have offered no improved/shorter way to do it, I don't get it. Why wouldn't you just talk to the db directly with perl's dbi/dbd, replacing both the awk and C parts? I do that all the time. Or was that before dbi - or the dbd you needed? and yes, I do know perl - in '04, for example, I rewrote a call routing and billing system from perl (written by my then-manager, who'd never studied programming, can you say spaghetti?) into reasonable perl. Actually, I just wrote a scraper in perl, using HTML::Parser. Anyway, the point of that was to demonstrate that I know both, and awk is better, IMO, for some jobs. That depends on how you define better. I can see how it could save a microsecond of loading time on tiny jobs, but not how it can do anything functionally better. Have you tried feeding one of your long scripts to a2p and timing some job with enough input to matter? I'd expect perl to win anything where there is enough actual work to make up for the compile/tokenize pass. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] can i run NFS *exclusively* off of v4?
is it possible to set up NFS on centos 5.5 so that it uses *only* version 4? i tried this not that long ago on fedora and was surprised to see a complaint when i tried to start the server and was told that i was missing required functionality of NFSv1, or something equally weird. i'll check the /etc/init.d/nfs script, but i think what got me into trouble was trying to use the entire set of options: --no-nfs-version 1 --no-nfs-version 2 --no-nfs-version 3 i'm going to try it again this afternoon on centos 5.5, but has anyone else tried this? should it *theoretically* work? rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 10:47 AM, m.r...@5-cent.us wrote: Ah, no. I wrote 30 scripts around '91-'92 to take datafiles from 30 sources and reformat them, to feed to the C program I'd written with embedded sql, in place of the d/b's sqlloader (*bleah*). Then, 11 years ago, I wrote a validation program for data that was being loaded by another program that I didn't want to change; the data had been exported from ArcInfo, and had to go into our Oracle d/b. Really simple to do in awk - just so much of it, and no, perl would have offered no improved/shorter way to do it, I don't get it. Why wouldn't you just talk to the db directly with perl's dbi/dbd, replacing both the awk and C parts? I do that all the time. Or was that before dbi - or the dbd you needed? Mike, you really aren't reading all of what I wrote. Perl itself wasn't available in '91-'92. I'd already written the C program, and then the hypothesis that our company would be able to tell all the sources of the data what format to put it in was shown to be less realistic than the typical tv commercial. I don't know the state of dbd/dbi in '98 or '99, but I was *not* going to touch the existing program that loaded the data, and I was trying to get just very basic validation, which included feedback as to what was wrong with each bad record (and let the rest be loaded). and yes, I do know perl - in '04, for example, I rewrote a call routing and billing system from perl (written by my then-manager, who'd never studied programming, can you say spaghetti?) into reasonable perl. Actually, I just wrote a scraper in perl, using HTML::Parser. Anyway, the point of that was to demonstrate that I know both, and awk is better, IMO, for some jobs. That depends on how you define better. I can see how it could save a microsecond of loading time on tiny jobs, but not how it can do anything functionally better. Have you tried feeding one of your long scripts to a2p and timing some job with enough input to matter? I'd expect perl to win anything where there is enough actual work to make up for the compile/tokenize pass. Nope. And the one company no longer exists as such, it having been sold over 10 years ago, and that project over for something like 15 years; the other, I've no idea what they're doing these days with the City of Chicago's 911 system for geodata loading, but I'd be surprised if they weren't still using my system, money being tight, and the VAR I worked with being cheaper than ever. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Robert P. J. Day wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). -- Jim Wildman, CISSP, RHCE j...@rossberry.com http://www.rossberry.com Society in every state is a blessing, but Government, even in its best state, is a necessary evil; in its worst state, an intolerable one. Thomas Paine ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, m.r...@5-cent.us wrote: So, what's the longest awk scripts you've ever written, Mike? It works wonderfully well for what it was intended - and mostly, I use it for reports or data conversion. Upwards of 1000 lines..back in the 90's. -- Jim Wildman, CISSP, RHCE j...@rossberry.com http://www.rossberry.com Society in every state is a blessing, but Government, even in its best state, is a necessary evil; in its worst state, an intolerable one. Thomas Paine ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Jim Wildman wrote: On Fri, 17 Sep 2010, Robert P. J. Day wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). i've already added some of that, using things like --replacepkgs and --replacefiles and so on. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Jim Wildman wrote: To: CentOS mailing list centos@centos.org From: Jim Wildman j...@rossberry.com Subject: Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system On Fri, 17 Sep 2010, Robert P. J. Day wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) Keith - Websites: http://www.karsites.net http://www.php-debuggers.net http://www.raised-from-the-dead.org.uk All email addresses are challenge-response protected with TMDA [http://tmda.net] - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 12:45 PM, m.r...@5-cent.us wrote: I don't get it. Why wouldn't you just talk to the db directly with perl's dbi/dbd, replacing both the awk and C parts? I do that all the time. Or was that before dbi - or the dbd you needed? Mike, you really aren't reading all of what I wrote. Perl itself wasn't available in '91-'92. I think you are mistaken about that. Programming Perl, covering version 4 of perl was published in 1991. Check the printing history if you have a newer copy. Perl itself goes back to 1987 or so. I'm pretty sure I wrote things in version 1 downloaded through usenet. Not sure when dbi/dbd came around but before that there were things like oraperl with specific database clients grafted in. I'll grant the historical value of awk for the prior decade and for the conceptual introduction of hash arrays for scripting languages, though. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 3:09 PM, Les Mikesell lesmikes...@gmail.com wrote: On 9/17/2010 12:45 PM, m.r...@5-cent.us wrote: I don't get it. Why wouldn't you just talk to the db directly with perl's dbi/dbd, replacing both the awk and C parts? I do that all the time. Or was that before dbi - or the dbd you needed? Mike, you really aren't reading all of what I wrote. Perl itself wasn't available in '91-'92. I think you are mistaken about that. Programming Perl, covering version 4 of perl was published in 1991. Check the printing history if you have a newer copy. Perl itself goes back to 1987 or so. I'm pretty sure I wrote things in version 1 downloaded through usenet. Not sure when dbi/dbd came around but before that there were things like oraperl with specific database clients grafted in. I used Perl4 under DOS to write connective tissue for my business systems in C back in '92. But then, awk under DOS did a lot of help too. -- Eduardo Grosclaude Universidad Nacional del Comahue Neuquen, Argentina ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 1:06 PM, Keith Roberts wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 12:58 PM, Robert P. J. Day wrote: On Fri, 17 Sep 2010, Jim Wildman wrote: On Fri, 17 Sep 2010, Robert P. J. Day wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). i've already added some of that, using things like --replacepkgs and --replacefiles and so on. I think a current moderately harmless example would be getting a non-ancient version of subversion and viewvc from rpmforge, then noting that a 'yum full update' with epel enabled will swap in a viewvc configured in an incompatible way. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] can i run NFS *exclusively* off of v4?
On Fri, 17 Sep 2010, Robert P. J. Day wrote: is it possible to set up NFS on centos 5.5 so that it uses *only* version 4? i tried this not that long ago on fedora and was surprised to see a complaint when i tried to start the server and was told that i was missing required functionality of NFSv1, or something equally weird. i'll check the /etc/init.d/nfs script, but i think what got me into trouble was trying to use the entire set of options: --no-nfs-version 1 --no-nfs-version 2 --no-nfs-version 3 i'm going to try it again this afternoon on centos 5.5, but has anyone else tried this? should it *theoretically* work? as an actual example of what i'm talking about, if you take a look at /etc/sysconfig/nfs on centos 5.5, consider these lines: # Define which protocol versions mountd # will advertise. The values are no or yes # with yes being the default #MOUNTD_NFS_V1=no #MOUNTD_NFS_V2=no #MOUNTD_NFS_V3=no theoretically, should i be able to uncomment all of those lines so that mountd advertises only V4? i would have thought so but, if i do that: # service nfs restart Shutting down NFS mountd: [FAILED] Shutting down NFS daemon: [ OK ] Shutting down NFS quotas: [ OK ] Shutting down NFS services:[FAILED] Starting NFS services: [ OK ] Starting NFS quotas: [ OK ] Starting NFS daemon: [ OK ] Starting NFS mountd: Usage: rpc.mountd [-F|--foreground] [-h|--help] [-v|--version] [-d kind|--debug kind] [-o num|--descriptors num] [-f exports-file|--exports-file=file] [-p|--port port] [-V version|--nfs-version version] [-N version|--no-nfs-version version] [-n|--no-tcp] [-H ha-callout-prog] [-s|--state-directory-path path] [-t num|--num-threads=num] [FAILED] # on the other hand, if i re-comment just the V1 line: # service nfs restart Shutting down NFS mountd: [FAILED] Shutting down NFS daemon: [ OK ] Shutting down NFS quotas: [ OK ] Shutting down NFS services:[FAILED] Starting NFS services: [ OK ] Starting NFS quotas: [ OK ] Starting NFS daemon: [ OK ] Starting NFS mountd: [ OK ] # now that's just silly, no? i can start the mountd daemon as long as i allow it to advertise NFSv1? rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] multipath troubleshoot
Hi, My storage admin just assigned a Lun (fibre) to my server. Then re scanned using echo 1 /sys/class/fc_host/host5/issue_lip echo 1 /sys/class/fc_host/host6/issue_lip I can see the scsi device using dmesg But mpath device are not created for this LUN Pleas see below. The last 4 should be active and I think this is the problem Kernel: 2.6.18-164.11.1.el5xen , EL 5.5 -- [r...@cvprd3 lvm]# multipathd -k multipathd show paths hcildev dev_t pri dm_st chk_st next_check 5:0:0:0 sdb 8:16 1 [active][ready] XXX... 7/20 5:0:0:1 sdc 8:32 1 [active][ready] XXX... 7/20 5:0:0:16384 sdd 8:48 1 [active][ready] XXX... 7/20 5:0:0:16385 sde 8:64 1 [active][ready] XXX... 7/20 5:0:0:32768 sdf 8:80 1 [active][ready] XXX... 7/20 5:0:0:32769 sdg 8:96 1 [active][ready] XXX... 7/20 5:0:0:49152 sdh 8:112 1 [active][ready] XXX... 7/20 5:0:0:49153 sdi 8:128 1 [active][ready] XXX... 7/20 5:0:0:2 sdj 8:144 1 [active][ready] XXX... 7/20 5:0:0:16386 sdk 8:160 1 [active][ready] XXX... 7/20 5:0:0:32770 sdl 8:176 1 [active][ready] XXX... 7/20 5:0:0:49154 sdm 8:192 1 [active][ready] XXX... 7/20 5:0:0:3 sdn 8:208 1 [active][ready] XXX... 7/20 5:0:0:16387 sdo 8:224 1 [active][ready] XXX... 7/20 5:0:0:32771 sdp 8:240 1 [active][ready] XXX... 7/20 5:0:0:49155 sdq 65:0 1 [active][ready] XXX... 7/20 5:0:0:4 sdr 65:16 1 [active][ready] XXX... 7/20 5:0:0:16388 sds 65:32 1 [active][ready] XXX... 7/20 5:0:0:32772 sdt 65:48 1 [active][ready] XXX... 7/20 5:0:0:49156 sdu 65:64 1 [active][ready] XXX... 7/20 5:0:0:5 sdv 65:80 0 [undef] [faulty] [orphan] 5:0:0:16389 sdw 65:96 0 [undef] [faulty] [orphan] 5:0:0:32773 sdx 65:112 0 [undef] [faulty] [orphan] 5:0:0:49157 sdy 65:128 0 [undef] [faulty] [orphan] multipathd Thanks in Adv Paras. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Les Mikesell wrote: To: centos@centos.org From: Les Mikesell lesmikes...@gmail.com Subject: Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system On 9/17/2010 1:06 PM, Keith Roberts wrote: i've already added a section on EPEL, just so i can install things like git. and i know there's an entire page at centos.org on extra repos. any there that you *particularly* recommend? i'll revisit that page later today but i'm thinking that, for the sake of this first-level admin course, EPEL might be sufficient for now. How to identify and work your way out of rpm conflicts. (without using nodeps of course). How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Of course. But what if they want/need to install a package that is not available in any of the repos? Maybe even just for testing purposes? Keith ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 10:14 AM, Paul Heinlein wrote: I know the OP asked for cool things to do, but I'll add my vote to those who suggested highlighting configuration management. I'm not sure how much puppet or cfengine you teach in a half-day, but I'm fairly confident you could cover: 1. considering configuration files to be code -- it needs to be in a repository 2. setting up a Subversion or git repository and some possible ways of laying out a configuration repository (per host, per service, etc) 3. committing changes, recovering older configs when newer ones introduce regressions Personally, I like Subversion for configuration repositories because (imo) sysadmins usually like having an authoritative repo rather than a widely branched one -- but git is on the rise and is certainly worth considering. Has anyone ever standardized a way to do this that will work across more than a few platforms? I've always thought there should be a way to at least make a subversion repository holding copies of all of /etc of all of your machines where similar hosts are branches from a master and current changes are always checked back in. Then even if you don't use it to control and push changes you could at least easily view the changes over time on any host and the difference between any two hosts. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 1:21 PM, Keith Roberts wrote: How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Of course. But what if they want/need to install a package that is not available in any of the repos? Maybe even just for testing purposes? Yes, that's where the 'last resort' comes in... But you are right, you should also know how to build things that live in /usr/local or under your home directory. Sometimes there are special purpose needs for things that don't exist as rpms yet or you need concurrent access to different versions. And I'm sure someone will add that you should also know how to build your own rpm if I don't mention it, but that can be non-trivial compared to just staying out of the way of the system-managed space. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 11:14 AM, Paul Heinlein heinl...@madboa.com wrote: I know the OP asked for cool things to do, but I'll add my vote to those who suggested highlighting configuration management. I'm not sure how much puppet or cfengine you teach in a half-day, but I'm fairly confident you could cover: Yes! If there's anything I wish were taught to new system administrators, it's that your configuration is your code. 1. considering configuration files to be code -- it needs to be in a repository 2. setting up a Subversion or git repository and some possible ways of laying out a configuration repository (per host, per service, etc) 3. committing changes, recovering older configs when newer ones introduce regressions My general method is to keep a CVS committed directory somewhere on the root filesystem with all configurations. Then I symlink the tracked files back to that repository. For example: /etc/hosts -- /configs/HOSTNAME/etc/hosts /etc/syslog.conf -- /configs/HOSTNAME/etc/syslog.conf Restoring a machine's identity is just a simple matter of checking out that host's configuration directory then running a script to create the symlink.s Personally, I like Subversion for configuration repositories because (imo) sysadmins usually like having an authoritative repo rather than a widely branched one -- but git is on the rise and is certainly worth considering. Other, slightly related, suggestions include setting up a documentation wiki and/or a ticketing system. Trac can do both, but there are plenty of worthwhile alternatives. -- Paul Heinlein heinl...@madboa.com http://www.madboa.com/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 10:52 AM, John Kennedy wrote: It's all about picking the right tool for the job. Python is good for some things, perl for others, awk for still different things... It is the beauty of Linux... But there are things a beginner won't know when making this choice - like the limitations of what a language can do, availability of library support, cross-platform support, probability of future language changes that aren't backwards compatible, etc., etc., all of which turn out to be important in the long run as soon as you get past throw-away one liners. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 12:45 PM, m.r...@5-cent.us wrote: I don't get it. Why wouldn't you just talk to the db directly with perl's dbi/dbd, replacing both the awk and C parts? I do that all the time. Or was that before dbi - or the dbd you needed? Mike, you really aren't reading all of what I wrote. Perl itself wasn't available in '91-'92. I think you are mistaken about that. Programming Perl, covering version 4 of perl was published in 1991. Check the printing history if you have a newer copy. Perl itself goes back to 1987 or so. I'm pretty sure I wrote things in version 1 downloaded through usenet. Not sure when dbi/dbd came around but before that there were things like oraperl with specific database clients grafted in. That may be, but it was *not* part of the standard installations, AFAIK. I remember someone handed me some documentation around '92 or '93, and it wasn't very clear. Meanwhile, awk was there and available and reliable. I'll grant the historical value of awk for the prior decade and for the conceptual introduction of hash arrays for scripting languages, though. YES! I *adore* associative arrays. You, on the other hand, remind me of Larry Wall, who popped into comp.lang.awk around '93 or '94, and rather than try to help someone solve his awk problem, tried to get him to rewrite it into perl mark inappropriate venue, to say the least ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 1:06 PM, Keith Roberts wrote: snip How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Excerpt when a user comes to you and asks you to install a package for which there isn't any rpm... or, for that matter, when you're force to use CPAN to install a module for which there's no .rpm, and then the build fails, but works if you cd into /root/.cpan/BUILD/pgmsource and make mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Scott Robbins wrote: On Fri, Sep 17, 2010 at 08:18:38AM -0500, Les Mikesell wrote: On 9/17/10 7:51 AM, Robert P. J. Day wrote: On Fri, 17 Sep 2010, Les Mikesell wrote: Oh - and how to install and use freenx/NX for remote access. h ... good idea. or i might just add in VNC and carry over the freenx to an additional course dealing with networking/remote admin/etc. thanks. I'd guess that for most people starting with linux, freenx with NX running on their existing windows/mac would be a much better fit. Maybe vmwware player or virtualbox too. And then, you can give them one of the more important Linux lessons. Let them install FreeNX, go to the website and see the completely outdated docmentation. Learning how horrible so much of the documentation is, is probably an important part of being a Linux administrator. FreeNX, fortunately, has a CentOS wiki article, so let them google for it. Not even being sarcastic here. Lack of good docoumentation is probably one of the biggest challenges facing the Linux user or administrator. Hey, you're being easy on them. Have them install and configure openLDAP, and find the documentation mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 03:18:23PM -0400, m.r...@5-cent.us wrote: Scott Robbins wrote: Oh - and how to install and use freenx/NX for remote access. And then, you can give them one of the more important Linux lessons. Let them install FreeNX, go to the website and see the completely outdated docmentation. Learning how horrible so much of the documentation is, is probably an important part of being a Linux administrator. FreeNX, fortunately, has a CentOS wiki article, so let them google for it. Not even being sarcastic here. Lack of good docoumentation is probably one of the biggest challenges facing the Linux user or administrator. Hey, you're being easy on them. Have them install and configure openLDAP, and find the documentation Heh--well, since I've written my own page on it, it's gotten better. RH didn't help by making some undocumented changes, but once again, the CentOS folks got it documented. I suspect LDAP documentation is one reason Active Directory became so popular. (Feed the troll, I'm hungry.) :) (Although the part about LDAP documentation is not trolling, I think it's pretty much an accepted thing. The Active Directory part was, of course, a troll.) -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 09/17/10 12:12 PM, m.r...@5-cent.us wrote: You, on the other hand, remind me of Larry Wall, who popped into comp.lang.awk around '93 or '94, and rather than try to help someone solve his awk problem, tried to get him to rewrite it into perl well, not all problems are nails, even if your only tool is a hammer. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Scott Robbins wrote: On Fri, Sep 17, 2010 at 03:18:23PM -0400, m.r...@5-cent.us wrote: Scott Robbins wrote: snip Oh - and how to install and use freenx/NX for remote access. And then, you can give them one of the more important Linux lessons. Let them install FreeNX, go to the website and see the completely outdated docmentation. Learning how horrible so much of the documentation is, is probably an important part of being a Linux administrator. FreeNX, fortunately, has a CentOS wiki article, so let them google for it. Not even being sarcastic here. Lack of good docoumentation is probably one of the biggest challenges facing the Linux user or administrator. Hey, you're being easy on them. Have them install and configure openLDAP, and find the documentation Heh--well, since I've written my own page on it, it's gotten better. RH didn't help by making some undocumented changes, but once again, the CentOS folks got it documented. I did have some notes, but dunno if I ever emailed 'em to myself from my job in '06, but though it took me about a month, I managed to get it up, with the help of a dozen or so links, after wading through dozens of links, and lots of folks begging for help (and not getting any), and *way* outdated stuff I suspect LDAP documentation is one reason Active Directory became so popular. (Feed the troll, I'm hungry.) :) Dunno. It was up there already. But then, M$$$ would make sure of that. (Although the part about LDAP documentation is not trolling, I think it's pretty much an accepted thing. The Active Directory part was, of course, a troll.) And their utterly inadequate tools. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Les Mikesell wrote: To: centos@centos.org From: Les Mikesell lesmikes...@gmail.com Subject: Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system On 9/17/2010 1:21 PM, Keith Roberts wrote: How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Of course. But what if they want/need to install a package that is not available in any of the repos? Maybe even just for testing purposes? Yes, that's where the 'last resort' comes in... But you are right, you should also know how to build things that live in /usr/local or under your home directory. Sometimes there are special purpose needs for things that don't exist as rpms yet or you need concurrent access to different versions. And I'm sure someone will add that you should also know how to build your own rpm if I don't mention it, but that can be non-trivial compared to just staying out of the way of the system-managed space. That's almost getting into repository management. I've looked at this rpm guide: http://www.rpm.org/max-rpm-snapshot/ I found this very helpfull in understanding how to use RPM, and it also goes into details about creating rpm packages. Regards, Keith - Websites: http://www.karsites.net http://www.php-debuggers.net http://www.raised-from-the-dead.org.uk All email addresses are challenge-response protected with TMDA [http://tmda.net] - ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 2:07 PM, Scott Robbins wrote: Oh - and how to install and use freenx/NX for remote access. h ... good idea. or i might just add in VNC and carry over the freenx to an additional course dealing with networking/remote admin/etc. thanks. I'd guess that for most people starting with linux, freenx with NX running on their existing windows/mac would be a much better fit. Maybe vmwware player or virtualbox too. And then, you can give them one of the more important Linux lessons. Let them install FreeNX, go to the website and see the completely outdated docmentation. Learning how horrible so much of the documentation is, is probably an important part of being a Linux administrator. FreeNX, fortunately, has a CentOS wiki article, so let them google for it. Not even being sarcastic here. Lack of good docoumentation is probably one of the biggest challenges facing the Linux user or administrator. I sort-of agree, but having a working display is the one thing you need most in order to do anything else at all - and doing it via freenx often lets you park your session on a fast remote server instead of the slow inherited desktop you are likely to use for experimentation otherwise, so I'd make an exception and do some handholding here. It's in epel now so I'd get it from there via yum instead of the centos-testing version. And then you can ssh in to the server with putty or whatever client you like to cat /etc/nxserver/client.id_dsa.key. Copy/paste that into the key dialog in your local NX config, save it and you are ready to go faster than you can find the first page of incorrect details with google. And if you have more than one person doing it, they can share the same box with user level logins and learn to coordinate their root changes. -- Les Mikesell lesmike...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Kwan Lowe wrote: My general method is to keep a CVS committed directory somewhere on the root filesystem with all configurations. Then I symlink the tracked files back to that repository. For example: /etc/hosts -- /configs/HOSTNAME/etc/hosts /etc/syslog.conf -- /configs/HOSTNAME/etc/syslog.conf Restoring a machine's identity is just a simple matter of checking out that host's configuration directory then running a script to create the symlink.s I've keyed configuration repositories to HOSTNAME before (and still do for very small installations), but over the long haul I've found the service-keyed repository more to my liking. In particular, cfengine makes it easy to work that way: /etc/motd - /r/systems/motd/motd.HOSTNAME /etc/openldap/slapd.conf - /r/services/openldap/slapd.conf.HOSTNAME One benefit of this method is that you can have a single file that works for a whole class of machines, e.g., /etc/syslog.conf - /r/services/syslog/syslog.conf.client-linux where client becomes server for syslog servers and linux becomes macosx or sunos depending on the platform. As I said, however, a lot of that arrangement is a function of the way that cfengine works. I'd probably do it differently if I were using a different tool. -- Paul Heinlein heinl...@madboa.com http://www.madboa.com/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 2:12 PM, m.r...@5-cent.us wrote: You, on the other hand, remind me of Larry Wall, who popped into comp.lang.awk around '93 or '94, and rather than try to help someone solve his awk problem, tried to get him to rewrite it into perl I'll take that as a compliment. Larry has always been brilliant. Note that I'm not against continuing to use anything that works - I just don't see the point in learning awk today since there are better and more completed alternatives today and think it is a bad idea to recommend to anyone. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On 9/17/2010 2:15 PM, m.r...@5-cent.us wrote: How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Excerpt when a user comes to you and asks you to install a package for which there isn't any rpm... or, for that matter, when you're force to use CPAN to install a module for which there's no .rpm, and then the build fails, but works if you cd into /root/.cpan/BUILD/pgmsource and make Agreed that it's good to know how - but 'there isn't any rpm' should really mean there isn't any rpm at any well-maintained location, not just in the base system or that you didn't bother to look. Every time you build something yourself you are taking on the job of maintaining it forever and probably leaving people in a lurch when you leave and someone else has to figure out what non-standard things you did. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 03:34:58PM -0400, m.r...@5-cent.us wrote: Scott Robbins wrote: Heh--well, since I've written my own page on it, it's gotten better. RH didn't help by making some undocumented changes, but once again, the CentOS folks got it documented. I did have some notes, but dunno if I ever emailed 'em to myself from my job in '06, but though it took me about a month, I managed to get it up, with the help of a dozen or so links, after wading through dozens of links, and lots of folks begging for help (and not getting any), and *way* outdated stuff That's basically what I did--wrote up my notes and put up the page that I wished I'd had when first trying to wrap my head around it. Like many opensource things, it's not as hard as it seems, once you realize how it's done. (Although the part about LDAP documentation is not trolling, I think it's pretty much an accepted thing. The Active Directory part was, of course, a troll.) And their utterly inadequate tools. LDAP's, or AD's? Our Windows admin teaches mixed martial arts as a sideline, so I don't argue too much with him. :) All kidding aside, to the OP, though it's not a cool thing--it's one of the crummy things in many cases--finding docs to supplement the often inadequate official documentation is pretty durn important. -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, Sep 17, 2010 at 2:39 AM, Robert P. J. Day rpj...@crashcourse.ca wrote: logging utilities? intrusion detection? monitoring? anything that leaps to mind that i can use to fill up a few more hours. i'm already thinking of showing how to build and boot a new kernel. other ideas? thanks. Cacti, pmacct, pnrg ... kind regards/ldv ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
On Fri, 17 Sep 2010, Les Mikesell wrote: Agreed that it's good to know how - but 'there isn't any rpm' should really mean there isn't any rpm at any well-maintained location, not just in the base system or that you didn't bother to look. Every time you build something yourself you are taking on the job of maintaining it forever and probably leaving people in a lurch when you leave and someone else has to figure out what non-standard things you did. i agree with this. i'm looking for extra goodies that don't involve possibly violating corporate IT policy by downloading and building new packages to be installed on mission-critical servers. there are certainly enough existing packages at trustworthy repos that i don't need to go beyond that. rday -- Robert P. J. Day Waterloo, Ontario, CANADA Top-notch, inexpensive online Linux/OSS/kernel courses http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] looking for cool, post-install things to do on a centos 5.5 system
Les Mikesell wrote: On 9/17/2010 2:15 PM, m.r...@5-cent.us wrote: How to download, md5sum check, unpack, configure and compile a GPL *.tar.gz package. As SysAdmin that's something they will need to do sooner or later :) But it's much more important to know all the reasons *not* to do that except as a last resort. Reasons that someone who has had to maintain and update such things for decades will know that won't occur to an inexperienced beginner. You can summarize by saying yum update is a lot easier. Excerpt when a user comes to you and asks you to install a package for which there isn't any rpm... or, for that matter, when you're force to use CPAN to install a module for which there's no .rpm, and then the build fails, but works if you cd into /root/.cpan/BUILD/pgmsource and make Agreed that it's good to know how - but 'there isn't any rpm' should really mean there isn't any rpm at any well-maintained location, not just in the base system or that you didn't bother to look. Every time you build something yourself you are taking on the job of maintaining it forever and probably leaving people in a lurch when you leave and someone else has to figure out what non-standard things you did. Um, no. Sometimes users want stuff that no one *has* built a package for, and I'm certainly not going to. Perhaps you work in a more structured environment, where all the servers are the same. Ain't the case in a lot of places I've worked, and certainly not here (here being where I work now, and who I -may not- imply that I speak for, contract regs, federal regs...). And, of course, you'd *better* document what you did and how you did it, and put that in a well-known location, such as the organization's wiki mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos