Re: [CentOS] Postfix - message queue filling with Host or name not found - try again

[Ben McGinnes]

On 22/11/10 2:54 PM, Indunil Jayasooriya wrote:
> 
> Pls add bdgiedjhea.po6e4ina.com  to
> /etc/hosts file
> 
> and , then add bdgiedjhea.po6e4ina.com
>  to mydestination parameter in
> /etc/postfix/main.cf  file
> 
> mydestination = $myhostname, localhost.$mydomain, localhost,
> bdgiedjhea.po6e4ina.com 

This is a really *bad* idea, it makes Rob's mail server accept mail
for that domain, which is not what he wants.  What he wants is to
prevent his system from sending an auto-response to an unreachable
host.


Regards,
Ben



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Postfix - message queue filling with Host or name not found - try again

[Ben McGinnes]

On 22/11/10 2:47 PM, Rob Kampen wrote:
> Ben McGinnes wrote:
>>
>> What is the complete output of postqueue -p?  What is the From address
>> and, more to the point, is it MAILER-DAEMON?
>>   
> Yes it is

Cool.

>> Where $MSGID is one of the messages in the queue.  That will show
>> you the message and headers.  I'd be willing to bet it's your
>> server trying to send a rejection/spam detection to a server.
>
> Correct - thanks for the pointers on how to track it down -

No problem.

> so now my question is how do I set things up to simply try this once
> and then drop it, rather than queue it up for the next five days
> with all the attendant dns errors.

That would be difficult to do without it affecting all mail and
resolution problems are supposed to induce temporary failures for a
reason.  The reason normally being that if you are isolated from the
Internet for any length of time (e.g. link outage), you don't want
mail queued on the server being bounced or dropped because you can't
reach an external name server to find an A record or MX record.

> This is definitely at the boundaries of my mail setup experience -
> for some reason the other two mail servers I run do not seem to get
> the same level of spam and thus I seldom notice this.

Are they both running Postfix too?  If so, compare the output of
postconf -n between the three servers and look for what is different.

In this case, the email address that the bounces are trying to be
delivered to is what appeared in the MAIL FROM section during
delivery.  It is almost certainly intended to bounce and the mail will
all be spam.  I haven't been able to find any A records for that
domain and the registration is in Russia.  It's a fairly safe bet that
they're spammers.

I would recommend that you add the following to your
smtpd_recipient_restrictions in main.cf:

check_sender_access
hash:/etc/postfix/sender_access,

Probably immediately above or below the line for
"check_recipient_access" which is listed in your original post.

Create a file called /etc/postfix/sender_access with the text editor
of your choice and include the following line:

po6e4ina.com   REJECT

Then run the following commands:

postmap /etc/postfix/sender_access
postfix reload

That should do the trick nicely.


Regards,
Ben



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] "Cracking Passwords In The Cloud: Amazon ’s New EC2 GPU Instances" -- using CentOS

[Timo Schoeler]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi,

in case someone missed it: CentOS was used in a EC2 setup to demonstrate
GPU-based brute force cracking of passwords.

"Cracking Passwords In The Cloud: Amazon’s New EC2 GPU Instances"

http://stacksmashing.net/2010/11/15/cracking-in-the-cloud-amazons-new-ec2-gpu-instances/

See also:

http://it.slashdot.org/story/10/11/16/1549245/Cracking-Passwords-With-Amazon-EC2-GPU-Instances

Cheers,

Timo :)
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFM6i59fg746kcGBOwRAoioAKC6oCVuh0meM5ynVUe7L+a3JlLFHgCeMivH
nwFIhD4rcm6pP66uE9/M3Uo=
=ZWeW
-END PGP SIGNATURE-
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[rainer]

> On 11/21/10 10:51 PM, Niki Kovacs wrote:
>> Is there anything you could especially recommend for this job? (I'm not
>> afraid of getting my hands dirty, BTW :oD)
>
>
> Alix2D2 or similar.
> http://www.pcengines.ch/alix2d2.htm
>
> they sell for about $80, add a flash card or small HD to hold your
> router software,
> they have little minicases to mount them,
> http://www.pcengines.ch/case1c1blku.htm
> http://www.yawarra.com.au/en-alix.php
>
> these run pfSense very nicely, which is a very nice turnkey router
> distribution.


Yes, ALIX+pfSense is highly recommended.
If ALIX is too slow (it should do between 50 and 70 MBit/s), consider Atom
D510 platform servers. They should run on ~50 Watt and easily saturate
100-200Mbit.
ALIX takes 5-10 Watt.



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] TC Filter Flows & ESFQ - Traffic Shaping

[Frederick Abrams]

Hi,

We currently have ESFQ running on an old Fedora machine and i'm trying 
to build a new router with something similar using CentOS 5.5

The problem is that it seems by default the CentOS is not compiled with 
TC ESFQ or TC filter hash flows

I get the following error: Unknown filter "flow", hence option "hash" is 
unparsable

How can i add support for the hash flow option or ESFQ or perhaps 
someone can suggest a better option where I can get the same 
functionality of even sharing based on src / dst

tc filter add dev eth0 parent 10: protocol ip handle 10 flow hash keys 
dst divisor 1024

-- 
Fred

-- 
This message has been scanned for viruses and
dangerous content by Intelvision MailScanner,
and is believed to be clean.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Robert Heller]

At Mon, 22 Nov 2010 07:51:46 +0100 CentOS mailing list  
wrote:

> 
> Hi,
> 
> Last week I finished installing a small network in a private school : 
> one server (an old IBM X225), seventeen desktops (Fujitsu Siemens PIV 
> 2.4 GHZ, 512 MB RAM, 40 GB HD), all running CentOS 5.5.
> 
> One extra machine is acting as a router, in that it is installed between 
> the DSL modem and the network, with two Ethernet cards, and it's taking 
> care of DHCP, DNS, NTP and also acts like a proxy (with Squid). It seems 
> quite big and noisy and electricity-consuming to me, so I wonder if 
> there is any small device that could possibly do the job as good, but 
> which would me more adapted : small, solid and cheap (if possible). I 
> imagine some tiny box just with a CPU and a small harddisk, a little RAM 
> and two network interfaces (one out, one in), where I could install a 
> very stripped-down CentOS, and then just forget about it.
> 
> So far, I've googled a bit, and I've found two things: 1) Pyramid 
> Soekris boards, where I can put something like Pyramid Linux on it. And 
> 2) The Linksys WRT54GL, for which there are Linux firmwares like OpenWRT 
> and DD-WRT.
> 
> Is there anything you could especially recommend for this job? (I'm not 
> afraid of getting my hands dirty, BTW :oD)


One *simple* option would be to get a "small" IDE (I assume the existing
router machine is IDE based) SSD (or a 32G Compact Flash card +
IDE adaptor -- see eBay) and replace the IDE hard drive with this and
pull out the case fan (or just unplug its power connector).  Remove its
keyboard / mouse / monitor.  Much of the noise and power use is the disk
drive and fan (for the disk drive).

> 
> Cheers,
> 
> Niki
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
>  

-- 
Robert Heller -- 978-544-6933 / hel...@deepsoft.com
Deepwoods Software-- http://www.deepsoft.com/
()  ascii ribbon campaign -- against html e-mail
/\  www.asciiribbon.org   -- against proprietary attachments


  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firefox. java. 64 bit. bleah!

[Lars Hecking]

Nicolas Thierry-Mieg writes:
> 
> nspluginwrapper is for running 32-bit plugins in a 64-bit browser. Now 
> that we have functional 64-bit flash and java plugins I don't see the 
> need, but YMMV.

 We do not have a functional 64-bit flash plugin, and no 64-bit adobe plugin,
 so we need the wrapper for those.

 I've done some systematic testing this morning. If you don't want to read
 everything below, the summary is that on an x86_64 system, only the 64-bit
 java plugin works, and the 32-bit plugin crashes. This means that the only
 working setup on x86_64 is firefox + java plugin x86_64, nspluginwrapper
 plus Adobe + flash 32-bit plugins. The brave may try the beta 64-bit flash
 plugin.

 Test setup. This is a 64-bit machine running CentOS 5.4, all relevant packages
 removed and a fresh, clean install of firefox 3.0.18 i386, Adobe reader 9.4,
 flash-plugin from rpmforge. I also extracted the java plugin from
 jre-6u22-linux-i586-rpm.bin and copied it into /usr/lib/mozilla/plugins.

$ ll /usr/lib/mozilla/plugins/
total 292
lrwxrwxrwx 1 root root 39 Nov 22 13:09 libflashplayer.so -> 
/usr/lib/flash-plugin/libflashplayer.so
-rwxr-xr-x 1 root root  77510 Sep 15 09:44 libnpjp2.so
-rwxr-xr-x 1 root root  30640 Oct  9  2009 mozplugger.so
-rwxr-xr-x 1 root root 179552 Nov 22 13:09 nppdf.so
$ 

 firefox starts normally and about:plugins shows the adobe/flash/java plugins
 are installed. Then I browse to www.javatester.org and click on the "Java
 Enabled?" button. The result is a crash:

$ firefox
Didn't find JVM under /usr/lib/mozilla/plugins
firefox: ../../../../src/plugin/solaris/plugin2/common/JavaVM.c:104: 
InitializeJVM: Assertion `foundJVM' failed.
/usr/lib/firefox-3.0.18/run-mozilla.sh: line 131:  6093 Aborted 
"$prog" ${1+"$@"}
$ 

 I get the same result with a binary, /usr/local based installation of firefox
 3.6.12 (i386) from mozilla.org.

 Next, I am trying the following: install the complete 32-bit java rpm under
 /usr/java.i386 and link the 32-bin java plugin rather than copy it.

$ cd /usr/lib/mozilla/plugins/
$ ll
total 212
lrwxrwxrwx 1 root root 39 Nov 22 13:09 libflashplayer.so -> 
/usr/lib/flash-plugin/libflashplayer.so
lrwxrwxrwx 1 root root 43 Nov 22 13:36 libnpjp2.so -> 
/usr/java.i386/default/lib/i386/libnpjp2.so
-rwxr-xr-x 1 root root  30640 Oct  9  2009 mozplugger.so
-rwxr-xr-x 1 root root 179552 Nov 22 13:09 nppdf.so
$ 

 Similar result.

$ firefox
Error occurred during initialization of VM
java/lang/NoClassDefFoundError: java/lang/Object
$ 

 The above proves conclusively that the 32-bit firefox browser is broken on
 a 64-bit system. The culprit is probably java.

 Onward to x86_64. Remove all packages, start with a fresh install of
 Adobe reader, flash plugin (i386), jre-6u22-linux-x64-rpm.bin, firefox 3.0.18
 x86_64, *no* nspluginwrapper. about:plugins shows the java plugin only, as
 expected, and the browser passes the "java enabled" test at javatester.org.

 Then I install the i386 nspluginwrapper. No change in about:plugins, but I
 noticed this

$ ll plugins*/libn*
lrwxrwxrwx 1 root root 38 Nov 22 13:51 plugins-wrapped/libnpjp2.so -> 
/usr/lib64/mozilla/plugins/libnpjp2.so
lrwxrwxrwx 1 root root 39 Nov 22 13:46 plugins/libnpjp2.so -> 
/usr/java/default/lib/amd64/libnpjp2.so
$ 

 i.e. nspluginwrapper.i386 installation has wrapped the native 64-bit java
 plugin.

 Last step is the installation of nspluginwrapper.x86_64 on top of all.
 All plugins show up and java works.

 Summary: only the 64-bit browser works on a 64-bit machine. It needs
 nspluginwrapper to make use of the 32-bit blob plugins. The 32-bit browser
 crashes and burns as soon as java (or even java script) is involved.
 In this round of testing, I haven't seen the removal of the java plugin
 link from the plugins-wrapped directory that I reported earlier.



---
This message and any attachments may contain Cypress (or its
subsidiaries) confidential information. If it has been received
in error, please advise the sender and immediately delete this
message.
---

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Brian Mathis]

2010/11/21 Jorge Fábregas :
> On Sunday 21 November 2010 20:19:59 Kill Script wrote:
>> I have a Java program that I want to start up with every boot, but I'm
>> unsure how to do it.
>
> Put the call to your script on this file:
>
> /etc/rc.d/rc.local
>
>
> HTH,
> Jorge

It may be tempting to use the rc.local, but that's the quick and dirty
way and not good for the long-term sustainability and management of a
system.  There's no way to individually control any service running
from there, and no way to stop it on shutdown.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[John Hodrien]

On Mon, 22 Nov 2010, Robert Heller wrote:

> One *simple* option would be to get a "small" IDE (I assume the existing
> router machine is IDE based) SSD (or a 32G Compact Flash card +
> IDE adaptor -- see eBay) and replace the IDE hard drive with this and
> pull out the case fan (or just unplug its power connector).  Remove its
> keyboard / mouse / monitor.  Much of the noise and power use is the disk
> drive and fan (for the disk drive).

Really?  Even a meaty 3.5" drive will be less than 10W, and you're between 4
and 5 for a low power unit.  Something like a 1Tb Samsung Ecogreen is around
4.3W.  The CPU in the system is going to draw a whole lot more than that.  But
face it, if it's just acting as a router, it can completely spin that down
after boot anyway.

CPU and motherboard contribute a fair whack to the power consumption.

I've no specific recommendations, but clearly something like the following
gets you close.

http://www.simtec.co.uk/products/EB2410ITX/

Get the gold board and you've got twin 10/100Mbit network, 128Mbyte RAM,
various ways of connecting extra storage, and a 2.3W maximum power draw.

That compares rather well with the old Pentium 4 you're likely to have
knocking round which draws about 70W typically just for the CPU...

jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Alexander Georgiev]

2010/11/22 Niki Kovacs :
> one server (an old IBM X225), seventeen desktops all running CentOS 5.5.
>
> One extra machine is acting as a router, in that it is installed between
> the DSL modem and the network, with two Ethernet cards, and it's taking
> care of DHCP, DNS, NTP and also acts like a proxy (with Squid).
> - quite big and noisy and electricity-consuming to me,.
>
> I've found two things: 1) Pyramid
> Soekris boards, where I can put something like Pyramid Linux on it. And
> 2) The Linksys WRT54GL, for which there are Linux firmwares like OpenWRT
> and DD-WRT.
>

I would want to spare substantial effort and to keep things simple and
stupid. I would:

1) migrate all services DHCP, DNS, NTP and Squid to the X225 server
2) Use the Linksys WRT54GL for routing/gateway. I would not bother
installing the OpenWRT.

I would do this, unless I am looking forward to increase my expertise
in home built routers.

Kind regards,
Alex
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Robert Moskowitz]

By default, sendmail only listens on the localloop:

DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl

But by default to allow sendmail to even work the iptables entry is:

-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j 
ACCEPT

Without this, sendmail can't even connect to localloop.  But should I 
handedit this line to something like:

-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp -d 127.0.0.1 
--dport 25 -j ACCEPT

And once you handedit iptables, you can't use the gnome firewall applet, 
I suspect...



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Les Mikesell]

On 11/22/2010 9:11 AM, Robert Moskowitz wrote:
> By default, sendmail only listens on the localloop:
>
> DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
>
> But by default to allow sendmail to even work the iptables entry is:
>
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j
> ACCEPT
>
> Without this, sendmail can't even connect to localloop.  But should I
> handedit this line to something like:
>
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp -d 127.0.0.1
> --dport 25 -j ACCEPT
>
> And once you handedit iptables, you can't use the gnome firewall applet,
> I suspect...

Every security decision has its own tradeoffs, so first you need to 
consider what you are trying to protect against.  If you don't have a 
program listening on a port, it doesn't matter whether it is explicitly 
firewalled or not.  A program needs root access to listen on ports below 
1024 - and anyone with root access can change the iptables settings too...

-- 
  Les Mikesell
   lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Robert Moskowitz]

On 11/22/2010 10:43 AM, Les Mikesell wrote:
> On 11/22/2010 9:11 AM, Robert Moskowitz wrote:
>
>> By default, sendmail only listens on the localloop:
>>
>> DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
>>
>> But by default to allow sendmail to even work the iptables entry is:
>>
>> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j
>> ACCEPT
>>
>> Without this, sendmail can't even connect to localloop.  But should I
>> handedit this line to something like:
>>
>> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp -d 127.0.0.1
>> --dport 25 -j ACCEPT
>>
>> And once you handedit iptables, you can't use the gnome firewall applet,
>> I suspect...
>>  
> Every security decision has its own tradeoffs, so first you need to
> consider what you are trying to protect against.  If you don't have a
> program listening on a port, it doesn't matter whether it is explicitly
> firewalled or not.  A program needs root access to listen on ports below
> 1024 - and anyone with root access can change the iptables settings too...

Ah, there is the combination I missed.  I was concerned about sendmail 
doing what I thought it was suppose to do:  only listen on loopback.  If 
something could change that behaviour, it could also change any iptables 
settings.

I have 25 blocked on the firewall anyway.  But just looking at the i(s) 
and t(s). (while trying not to stuff more angels on the pinhead or some 
such metaphor).


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Strange ntp behaviour?

[Robert Moskowitz]

On 11/21/2010 11:34 PM, Luigi Rosa wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Robert Moskowitz said the following on 22/11/10 01:51:
>
>
>> Yet from this host I get:
>>
>> # host 0.centos.pool.ntp.org
>> 0.centos.pool.ntp.org has address 208.53.158.34
>> 0.centos.pool.ntp.org has address 69.50.219.51
>> 0.centos.pool.ntp.org has address 108.76.168.145
>>
>> So what is NTP doing here; why the errors for getaddrinfo?
>>
>> Or is this nothing more than 2 out of some many times getaddrinfo failed, 
>> but worked just fine enough to count?
>>  
> Could be a temporary failure.
>
> Check actual ntpd status withntpq -p
>
> In alternative you could use "generic" ntp public pool:
>
> server 0.pool.ntp.org
> server 1.pool.ntp.org
> server 2.pool.ntp.org
> server 3.pool.ntp.org
>
> Or your local ntp public pool: go to http://www.pool.ntp.org/en/ choose your
> geographic area from the table on top right of the page then your coutry.
>
> For instance, United States server pool configuration is
>
> server 0.us.pool.ntp.org
> server 1.us.pool.ntp.org
> server 2.us.pool.ntp.org
> server 3.us.pool.ntp.org

For all the fiddling I did to set up my own ntp servers for my net, I 
should have looked that little bit extra and done this part, rather than 
just use the Centos default ntp servers.  thanks for the tip.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Les Mikesell]

On 11/22/2010 10:06 AM, Robert Moskowitz wrote:
>
>>>
>>> DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
>>>
>>> But by default to allow sendmail to even work the iptables entry is:
>>>
>>> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j
>>> ACCEPT
>>>
>>> Without this, sendmail can't even connect to localloop. But should I
>>> handedit this line to something like:
>>>
>>> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp -d 127.0.0.1
>>> --dport 25 -j ACCEPT
>>>
>>> And once you handedit iptables, you can't use the gnome firewall applet,
>>> I suspect...
>> Every security decision has its own tradeoffs, so first you need to
>> consider what you are trying to protect against. If you don't have a
>> program listening on a port, it doesn't matter whether it is explicitly
>> firewalled or not. A program needs root access to listen on ports below
>> 1024 - and anyone with root access can change the iptables settings
>> too...
>
> Ah, there is the combination I missed. I was concerned about sendmail
> doing what I thought it was suppose to do: only listen on loopback. If
> something could change that behaviour, it could also change any iptables
> settings.
>
> I have 25 blocked on the firewall anyway. But just looking at the i(s)
> and t(s). (while trying not to stuff more angels on the pinhead or some
> such metaphor).

Yes, it is always better to deny anything questionable - and to block at 
your border router(s) too, but realistically if someone can get that far 
you are fried anyway.  Also, even if sendmail does accept remote 
connections, it won't relay for them without additional changes to the 
config.

-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Bob p...@nle]

I am looking for something similar to this thread.. Is there a way to 
make a small CentOS distro that is bootable and runnable from only a
USB memory stick?  It would need to be able to have files modified, but 
I wouldn't want the USB stick to die prematurely due to a ton of writes...

Bob
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Blake Hudson]

> Is there anything you could especially recommend for this job? (I'm not 
> afraid of getting my hands dirty, BTW :oD)
>

+1 for Linksys WRT54GL and tomato firmware
+1 for pfsense (or monowall) on a small server


The Linksys is going to be your cheapest option and will take the least
amount of time to setup. It is also the least featureful. As far as
support goes, just buy a spare and keep it around in case something goes
wrong with the primary unit. In my experience, I've never had to reboot
a Linksys running tomato. However, I have had bad power adapters or
routers die in the past, so I would keep a spare for any application
that required mid level availability.

pfsense (a fork of monowall) is great on any device I've tried it on.
And it should offer basic DNS and NTP serving ability that the Linksys
may lack. Your performance/availability is going to be limited by your
hardware here as well. If you need high availability, I'd recommend a
name brand Dell/HP/etc with a warranty and redundant hardware. If some
downtime is acceptable to the the client, then perhaps forgo the
redundancy but keep the warranty or get a spare box.

The great thing about the Linksys is that it will likely pay for itself
inside of a year due to the lower operating costs and low initial
investment. A server based box may not pay for itself, but could provide
additional features (enhanced security, VPN, authenticated wifi hotspot,
etc) that would be worthwhile to the client.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Novell sale news?

[Les Mikesell]

Is anyone following the news of the Novell sale and some mysterious 
'intellectual property assets' that were transferred to a holding 
company controlled by Microsoft?

-- 
   Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Digimer]

On 11/22/2010 01:13 PM, Les Mikesell wrote:
> Is anyone following the news of the Novell sale and some mysterious
> 'intellectual property assets' that were transferred to a holding
> company controlled by Microsoft?

I saw that, and can't help but wonder if we're in for another "SCO". =/

-- 
Digimer
E-Mail: digi...@alteeve.com
AN!Whitepapers: http://alteeve.com
Node Assassin:  http://nodeassassin.org
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[John Hodrien]

On Mon, 22 Nov 2010, Bob p...@nle wrote:

> I am looking for something similar to this thread.. Is there a way to
> make a small CentOS distro that is bootable and runnable from only a
> USB memory stick?  It would need to be able to have files modified, but
> I wouldn't want the USB stick to die prematurely due to a ton of writes...

Lookup stateless linux.  Very easy to get a read-only root CentOS going, with
writable regions or not to taste.

jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Adam Tauno Williams]

On Mon, 2010-11-22 at 12:13 -0600, Les Mikesell wrote: 
> Is anyone following the news of the Novell sale and some mysterious 
> 'intellectual property assets' that were transferred to a holding 
> company controlled by Microsoft?

Oh, sheesh, here we go.  Baseless speculation and the weaving on
conspiracy theories.

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] firefox. java. 64 bit. bleah!

[Nicolas Thierry-Mieg]

Lars Hecking wrote:
> Nicolas Thierry-Mieg writes:
>>
>> nspluginwrapper is for running 32-bit plugins in a 64-bit browser. Now
>> that we have functional 64-bit flash and java plugins I don't see the
>> need, but YMMV.
>
>   We do not have a functional 64-bit flash plugin, and no 64-bit adobe plugin,
>   so we need the wrapper for those.
>
>   I've done some systematic testing this morning. If you don't want to read
>   everything below, the summary is that on an x86_64 system, only the 64-bit
>   java plugin works, and the 32-bit plugin crashes. This means that the only
>   working setup on x86_64 is firefox + java plugin x86_64, nspluginwrapper
>   plus Adobe + flash 32-bit plugins. The brave may try the beta 64-bit flash
>   plugin.

the beta x86_64 flash plugin is what I was referring to. I've been using 
it for a while (from rpmforge) and it works well for me.

my setup, which works fine on several systems with different hardware, 
is pure x86_64. No nspluginwrapper, I dropped that when the 64-bit flash 
plugin was satisfactory for me. On the system I'm writing from I have:
flash-plugin-10.2.161.23-0.1.el5.rf.x86_64
jre-1.6.0_18-fcs.x86_64

I don't use the acrobat plugin, I usually open pdfs with evince. I also 
only activate java on a few specific sites (yes I know I should update it).

[nthie...@localhost ~]$ l /usr/lib64/mozilla/plugins/
total 0
lrwxrwxrwx 1 root root 41 Nov 17 08:48 libflashplayer.so -> 
/usr/lib64/flash-plugin/libflashplayer.so
lrwxrwxrwx 1 root root 39 Jul  6 22:14 libnpjp2.so -> 
/usr/java/default/lib/amd64/libnpjp2.so

I use seamonkey (x86_64) rather than firefox, but I just tested both 
java (at www.javatester.org) and flash (youtube) in firefox x86_64 and 
they both work.

But as I said, YMMV...
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Les Mikesell]

On 11/22/2010 12:14 PM, Digimer wrote:
>
>> Is anyone following the news of the Novell sale and some mysterious
>> 'intellectual property assets' that were transferred to a holding
>> company controlled by Microsoft?
>
> I saw that, and can't help but wonder if we're in for another "SCO". =/

SCO didn't get off the ground since it was ruled that they didn't 
actually own the IP in question and Novell did.  And they ran out of 
money for the legal process.  This could be a very different game.

--
Les Mikesell
 lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[John Kennedy]

On Mon, Nov 22, 2010 at 13:26, Les Mikesell  wrote:

> On 11/22/2010 12:14 PM, Digimer wrote:
> >
> >> Is anyone following the news of the Novell sale and some mysterious
> >> 'intellectual property assets' that were transferred to a holding
> >> company controlled by Microsoft?
> >
> > I saw that, and can't help but wonder if we're in for another "SCO". =/
>
> SCO didn't get off the ground since it was ruled that they didn't
> actually own the IP in question and Novell did.  And they ran out of
> money for the legal process.  This could be a very different game.
>
> --
> Les Mikesell
> lesmikes...@gmail.com
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>

My guess (and I REALLY hope I am right) is that the IP in question is
related to NetWare and eDirectory. Both products (started out to be)/are
better than MS products, not Linux/SUSE stuff.

-- 
 John Kennedy
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[m . roth]

Les Mikesell wrote:
> Is anyone following the news of the Novell sale and some mysterious
> 'intellectual property assets' that were transferred to a holding
> company controlled by Microsoft?
>
Just saw that today. I wonder if any of those assets is the superior (and
utterly badly marketed) WordPerfect.

 mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] pcscd

[m . roth]

Anyone working with/using it? One thing that's driving me nuts is that it
keeps spitting garbage into the logs (card absent or mute!!!). I just
tried editing /etc/init.d/pcscd - there's *no* way to pass parms from the
config file - and set the logging level to --error, and it's still doing
it.

Clues for the poor, to shut it up?

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] where to download tzdata-java-20101-1.e15 RPM fro CENTOS 5.5 X86?

[mcclnx mcc]

I am installed CENTOS 5.5 on X86.  After finish, I tried to apply latest 
patches.  Rpm patch manager say need "dependency"  "tzdata-java-20101-1.e15".  
I search CENTOS 5.5 CD and can NOT find this file.  I also search Internet and 
no result.

Can anyone tell me where to download "tzdata-java-20101-1.e15" RPM?

Thanks.


  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Barry Brimer]

> Just saw that today. I wonder if any of those assets is the superior (and
> utterly badly marketed) WordPerfect.

I thought Novell sold WordPerfect to Corel a long time ago.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Kill Script]

On Mon, Nov 22, 2010 at 9:36 AM, Brian Mathis wrote:

> It may be tempting to use the rc.local, but that's the quick and dirty
> way and not good for the long-term sustainability and management of a
> system.  There's no way to individually control any service running
> from there, and no way to stop it on shutdown.
>

Yeah, thank you.  I talked with the person who wrote the Java program, and
he essentially said the same thing.

I'm looking through his suggestions now, and he suggested a shutdown script.
I others who have examples with pid.txt and "dirname $0".  Not sure what
these are and am googling them now.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[m . roth]

Barry Brimer wrote:
>> Just saw that today. I wonder if any of those assets is the superior
>> (and utterly badly marketed) WordPerfect.
>
> I thought Novell sold WordPerfect to Corel a long time ago.

Maybe - I've lost track. I'm still waiting for *anyone* to actually market
the damn thing - I'd *buy* it (or rather, upgrade from 6.0.c for DOS)
I'll take it over Word *or* OO.o, any day.

   mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Adam Tauno Williams]

On Mon, 2010-11-22 at 14:42 -0500, m.r...@5-cent.us wrote: 
> Barry Brimer wrote:
> >> Just saw that today. I wonder if any of those assets is the superior
> >(and utterly badly marketed) WordPerfect.
> > I thought Novell sold WordPerfect to Corel a long time ago.
> Maybe - I've lost track. I'm still waiting for *anyone* to actually market
> the damn thing - I'd *buy* it (or rather, upgrade from 6.0.c for DOS)
> I'll take it over Word *or* OO.o, any day.

It is nearly antique at this point.

Recent OOo has worked extremely well for me; editing complex 200+ page
documents with refereces, TOCs, & indexes.  I've really become a fan of
OOo starting in the 3.2.x series.

-- 
Adam Tauno Williams  LPIC-1, Novell CLA

OpenGroupware, Cyrus IMAPd, Postfix, OpenLDAP, Samba

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] where to download tzdata-java-20101-1.e15 RPM fro CENTOS 5.5 X86?

[Nicolas Thierry-Mieg]

mcclnx mcc wrote:
> I am installed CENTOS 5.5 on X86.  After finish, I tried to apply latest 
> patches.  Rpm patch manager say need "dependency"  "tzdata-java-20101-1.e15". 
>  I search CENTOS 5.5 CD and can NOT find this file.  I also search Internet 
> and no result.
>
> Can anyone tell me where to download "tzdata-java-20101-1.e15" RPM?

you're searching for the wrong version: after 2010 it's an L as in lucky
tzdata-2010l-1.el5

you could also just "yum update tzdata" to avoid searching for the wrong 
version.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Les Mikesell]

On 11/22/2010 1:37 PM, Kill Script wrote:
>
>
> It may be tempting to use the rc.local, but that's the quick and dirty
> way and not good for the long-term sustainability and management of a
> system.  There's no way to individually control any service running
> from there, and no way to stop it on shutdown.
>
>
> Yeah, thank you.  I talked with the person who wrote the Java program,
> and he essentially said the same thing.
>
> I'm looking through his suggestions now, and he suggested a shutdown
> script. I others who have examples with pid.txt and "dirname $0".  Not
> sure what these are and am googling them now.

Standard init scripts use some common functions to write the process ID 
of the running program in a standard place so the 'stop' operation can 
find it.  A side effect of this is that if you have multiple instances 
of a program running you have to have separate init scripts with 
different names to control them.   Also, you generally need root access 
to start/stop with this facility.  If your program doesn't otherwise 
need root access and you want an ordinary user to have control you may 
want to do it some other way.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] where to download tzdata-java-20101-1.e15 RPM fro CENTOS 5.5 X86?

[Les Mikesell]

On 11/22/2010 1:55 PM, Nicolas Thierry-Mieg wrote:
> mcclnx mcc wrote:
>> I am installed CENTOS 5.5 on X86.  After finish, I tried to apply latest 
>> patches.  Rpm patch manager say need "dependency"  
>> "tzdata-java-20101-1.e15".  I search CENTOS 5.5 CD and can NOT find this 
>> file.  I also search Internet and no result.
>>
>> Can anyone tell me where to download "tzdata-java-20101-1.e15" RPM?
>
> you're searching for the wrong version: after 2010 it's an L as in lucky
> tzdata-2010l-1.el5
>
> you could also just "yum update tzdata" to avoid searching for the wrong
> version.

Something is wrong if a plain "yum update" doesn't find everything you need.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[m . roth]

Adam Tauno Williams wrote:
> On Mon, 2010-11-22 at 14:42 -0500, m.r...@5-cent.us wrote:
>> Barry Brimer wrote:
>> >> Just saw that today. I wonder if any of those assets is the superior
>> >(and utterly badly marketed) WordPerfect.
>> > I thought Novell sold WordPerfect to Corel a long time ago.
>> Maybe - I've lost track. I'm still waiting for *anyone* to actually
>> market the damn thing - I'd *buy* it (or rather, upgrade from 6.0.c for
>> DOS)
>> I'll take it over Word *or* OO.o, any day.
>
> It is nearly antique at this point.
>
Why do you call it that? What features are missing (and I haven't looked
at a current copy in 10 years, btw). In general, I don't see *anything* I
couldn't have done with the one from back then.

> Recent OOo has worked extremely well for me; editing complex 200+ page
> documents with refereces, TOCs, & indexes.  I've really become a fan of
> OOo starting in the 3.2.x series.
>
I guarantee WP 10-12 years ago could handle all that - most City of
Chicago, and I think federal contracts, used to specify that documents be
in WP format.

Besides, the files were always *much* smaller, and you could always beat
it into submission with , I think it was, and the way it revealed
formatting... I was amazed that they didn't market that straight for
designing web pages. AND not a single word processor or web page building
I've seen writes them clean: both Word and OO.o write out *crap*, with
font size and font and color and every damn thing on every single line,
rather than only when something changes.

  mark


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Niki Kovacs]

Blake Hudson a écrit :
>> Is there anything you could especially recommend for this job? (I'm not 
>> afraid of getting my hands dirty, BTW :oD)
>>
> 
> +1 for Linksys WRT54GL and tomato firmware
> +1 for pfsense (or monowall) on a small server
> 
> 

Thanks for the many answers in this thread. I'm not a native speaker, so 
one more question. Does "tomato" firmware mean the original firmware as 
installed by Linksys, or some third-party firmware like OpenWRT and DD-WRT?

Cheers,

Niki
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[John R Pierce]

On 11/22/10 12:48 PM, Niki Kovacs wrote:
> Blake Hudson a écrit :
>>> Is there anything you could especially recommend for this job? (I'm not
>>> afraid of getting my hands dirty, BTW :oD)
>>>
>> +1 for Linksys WRT54GL and tomato firmware
>> +1 for pfsense (or monowall) on a small server
>>
>>
> Thanks for the many answers in this thread. I'm not a native speaker, so
> one more question. Does "tomato" firmware mean the original firmware as
> installed by Linksys, or some third-party firmware like OpenWRT and DD-WRT?

Tomato is another 3rd party firmware.  it only runs on 'classic' WRT54G* 
whereas dd-wrt runs on a wider range.  Tomato has a cleaner user 
interface, quite good QoS ('traffic shaping') features, and is always 
free, while the DD-Wrt project manager took DD-Wrt partially 
proprietary, to the annoyance of a lot of the contributors who 
understood it to be GPL.


pfSense is still my favorite choice, running on a low power miniboard 
like the ALIX or various Atom mini-systems.



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[m . roth]

Niki Kovacs wrote:
> Blake Hudson a écrit :
>>> Is there anything you could especially recommend for this job? (I'm not
>>> afraid of getting my hands dirty, BTW :oD)
>>>
>> +1 for Linksys WRT54GL and tomato firmware
>> +1 for pfsense (or monowall) on a small server
>
> Thanks for the many answers in this thread. I'm not a native speaker, so
> one more question. Does "tomato" firmware mean the original firmware as
> installed by Linksys, or some third-party firmware like OpenWRT and
> DD-WRT?

Third party. I have friends who swear by it.
 is the first hit when you google tomato
wrt54gl

mark

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Alexander Dalloz]

Am 22.11.2010 16:11, schrieb Robert Moskowitz:
> By default, sendmail only listens on the localloop:
> 
> DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
> 
> But by default to allow sendmail to even work the iptables entry is:
> 
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j 
> ACCEPT
> 
> Without this, sendmail can't even connect to localloop.  

No, that is not correct. You miss to see the following rule

-A RH-Firewall-1-INPUT -i lo -j ACCEPT

in the default /etc/sysconfig/iptables config file. So there is no
problem where you see one.

> But should I 
> handedit this line to something like:
> 
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp -d 127.0.0.1 
> --dport 25 -j ACCEPT
> 
> And once you handedit iptables, you can't use the gnome firewall applet, 
> I suspect...

Alexander

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Robert Heller]

At Mon, 22 Nov 2010 15:10:41 -0500 CentOS mailing list  
wrote:

> 
> Adam Tauno Williams wrote:
> > On Mon, 2010-11-22 at 14:42 -0500, m.r...@5-cent.us wrote:
> >> Barry Brimer wrote:
> >> >> Just saw that today. I wonder if any of those assets is the superior
> >> >(and utterly badly marketed) WordPerfect.
> >> > I thought Novell sold WordPerfect to Corel a long time ago.
> >> Maybe - I've lost track. I'm still waiting for *anyone* to actually
> >> market the damn thing - I'd *buy* it (or rather, upgrade from 6.0.c for
> >> DOS)
> >> I'll take it over Word *or* OO.o, any day.
> >
> > It is nearly antique at this point.
> >
> Why do you call it that? What features are missing (and I haven't looked
> at a current copy in 10 years, btw). In general, I don't see *anything* I
> couldn't have done with the one from back then.
> 
> > Recent OOo has worked extremely well for me; editing complex 200+ page
> > documents with refereces, TOCs, & indexes.  I've really become a fan of
> > OOo starting in the 3.2.x series.
> >
> I guarantee WP 10-12 years ago could handle all that - most City of
> Chicago, and I think federal contracts, used to specify that documents be
> in WP format.
> 
> Besides, the files were always *much* smaller, and you could always beat
> it into submission with , I think it was, and the way it revealed
> formatting... I was amazed that they didn't market that straight for
> designing web pages. AND not a single word processor or web page building
> I've seen writes them clean: both Word and OO.o write out *crap*, with
> font size and font and color and every damn thing on every single line,
> rather than only when something changes.

And I *still* use LaTeX.  *I* won't touch a "word processor" (I tried
OO *once* to create a mess-word version of my resume and it was a total
disaster).  I routinely create documents with something close to 1000 pages,
with refereces, TOCs, & indexes, etc. Way back when I've created
rather large documents with LaTeX *on a 10mhz 68000* with only 1Meg (yes
*one* meg) of RAM (this was an Atari 1040ST running OS-9/68000).  And a
40 *meg* hard drive.  Talk about small footprint software.  With
pdflatex and tex4ht I can generate PDF directly and *clean* HTML.  And
both using Makefiles with automated tools.  And TeX/LaTeX is open
source.

> 
>   mark
> 
> 
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
> 

-- 
Robert Heller -- 978-544-6933 / hel...@deepsoft.com
Deepwoods Software-- http://www.deepsoft.com/
()  ascii ribbon campaign -- against html e-mail
/\  www.asciiribbon.org   -- against proprietary attachments


 
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Jorge Fábregas]

On Monday 22 November 2010 10:36:31 Brian Mathis wrote:
> It may be tempting to use the rc.local, but that's the quick and dirty
> way and not good for the long-term sustainability and management of a
> system.  There's no way to individually control any service running
> from there, and no way to stop it on shutdown.

I totally agree.  My suggestion was based on the assumption that the OP didn't 
have much system-administration experience and using rc.local was definitely 
the easiest way out.

I should have warned him of the alternate correct method though...Fortunately 
he has been nicely informed by others.

-- 
Jorge
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] Grub, pata, and sata

[David G. Mackay]

I've just filed bug 0004634.  Grub won't install onto my pata drive now
that I have a sata drive installed.  This is grub 0.97 on CentOS5.5.
Has anyone else encountered this?  I'm guessing that I can always
install Fedora on hda, which should give me a working grub, but I was
hoping for something a little less involved.

Thanks,
Dave Mackay


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Tom Bishop]

It depends on what hardware you have available and what all you would
like to play with...I run both tomato and pfsense and both are great
products but both serve a particular setting...I use tomato for AP's
primarily but also use it for a soho router much better than
linksys...but if you want more routing functionality/security like
openvpn and more available packages to play with then pfsense is a
good choice...if you want or need more filtering capabilities then you
could also look at untangle (much more hardware intensive) or
endian...I have used/using all of the above...all of them have
advantages and tradeoffs just depends on what your requirements are...

On 11/22/10, m.r...@5-cent.us  wrote:
> Niki Kovacs wrote:
>> Blake Hudson a écrit :
 Is there anything you could especially recommend for this job? (I'm not
 afraid of getting my hands dirty, BTW :oD)

>>> +1 for Linksys WRT54GL and tomato firmware
>>> +1 for pfsense (or monowall) on a small server
>>
>> Thanks for the many answers in this thread. I'm not a native speaker, so
>> one more question. Does "tomato" firmware mean the original firmware as
>> installed by Linksys, or some third-party firmware like OpenWRT and
>> DD-WRT?
>
> Third party. I have friends who swear by it.
>  is the first hit when you google tomato
> wrt54gl
>
> mark
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Drew]

> AND not a single word processor or web page building
> I've seen writes them clean:

I beg to differ. I've used Dreamweaver for years and while I can't
speak for the latest versions, the MX version released in 2002
produced some of the cleanest (x)html I've seen. And with their tidy
command you could get the code properly indented so it became easily
readable. PHP/MySQL code otoh was brutally messy.

-- 
Drew

"Nothing in life is to be feared. It is only to be understood."
--Marie Curie
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Router for SOHO network - hardware considerations

[Todd Edwards]

On Mon, 2010-11-22 at 10:09 -0800, Blake Hudson wrote:

> 
> +1 for Linksys WRT54GL and tomato firmware
> +1 for pfsense (or monowall) on a small server
> 


I love my ASUS RT-N16 running DD-WRT although I have heard from friends
that tomato is superior. With a 480mhz processor, 128mb of ram, and 32mb
of flash its a beastly little residential router with the right software
running on it. I haven't touched it since I set it up other than to
upgrade to the latest DD-WRT. My wife's TV obsession combined with my
torrent traffic has made my life miserable with more than one router
running a proprietary firmware. 

Unfortunately I don't have any numbers as to how much traffic this thing
can actually handle, but I can only assume that it's much higher than
the Linksys models with lower specifications. DD-WRT gives me all the
control I need over my home network, but it certainly wouldn't be enough
for all situations.

http://www.dd-wrt.com/wiki/index.php/Asus_RT-N16#Specs_:

r...@asusrt-n16:~# uptime
 20:16:50 up 102 days, 23:37, load average: 0.01, 0.02, 0.00

r...@asusrt-n16:/proc# cat cpuinfo
system type : Broadcom BCM4716 chip rev 1
processor   : 0
cpu model   : MIPS 74K V4.0
BogoMIPS: 239.20
wait instruction: no
microsecond timers  : yes
tlb_entries : 64
extra interrupt vector  : no
hardware watchpoint : yes
ASEs implemented: mips16 dsp
shadow register sets: 1
VCED exceptions : not available
VCEI exceptions : not available

dcache hits : 2147483648
dcache misses   : 3732208860
icache hits : 2147483648
icache misses   : 4277960450
instructions: 2147483648

r...@asusrt-n16:/proc# cat meminfo
total:used:free:  shared: buffers:  cached:
Mem:  127946752 17866752 110080  1900544  6295552
Swap:000
MemTotal:   124948 kB
MemFree:107500 kB
MemShared:   0 kB
Buffers:  1856 kB
Cached:   6148 kB
SwapCached:  0 kB
Active:   1751 kB
Inactive:  729 kB
HighTotal:   0 kB
HighFree:0 kB
LowTotal:   124948 kB
LowFree:107500 kB
SwapTotal:   0 kB
SwapFree:0 kB
Dirty:   0 kB
Writeback:   0 kB
Mapped:364 kB
Slab:  178 kB
CommitLimit: 62472 kB
Committed_AS: 4344 kB
PageTables:   2001 kB
VmallocTotal:   786388 kB
VmallocUsed:40 kB
VmallocChunk:   786332 kB


-- 

Todd Edwards


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[John R Pierce]

On 11/21/10 6:20 PM, Kill Script wrote:
>
> and I think that I can easily modify this Oracle init.d example
>
> http://www.linuxjournal.com/files/linuxjournal.com/linuxjournal/articles/044/4445/4445l1.html
>

note that example is suffering from some HTML formatting issues.  
Specifically, the lines like...

su-$ORA_OWNER -c $ORA_HOME/bin/dbstart

should be

su - $ORA_OWNER -c $ORA_HOME/bin/dbstart


(noting the spaces on either side of the first dash ...)


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sendmail, localloop, and iptables -- should I be more paranoid?

[Robert Moskowitz]

On 11/22/2010 05:52 PM, Alexander Dalloz wrote:
> Am 22.11.2010 16:11, schrieb Robert Moskowitz:
>
>> By default, sendmail only listens on the localloop:
>>
>> DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
>>
>> But by default to allow sendmail to even work the iptables entry is:
>>
>> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j
>> ACCEPT
>>
>> Without this, sendmail can't even connect to localloop.
>>  
> No, that is not correct. You miss to see the following rule
>
> -A RH-Firewall-1-INPUT -i lo -j ACCEPT
>
> in the default /etc/sysconfig/iptables config file. So there is no
> problem where you see one.
>

Last week I built a new Centos 5.5 server.  I installed logwatch and run 
logwatch to 'force' the output.  Before I did that, I had created 
/root/.forward with my email address.

Sendmail could not send the message.  I went into the gnome firewall 
applet and allowed smtp, adding the rule I showed and still nothing.  
Then I figured that the message was queued (that is what maillog said) 
and would stay there for a while, so I restarted sendmail, and the 
message went right out.

So empirical evidence strongly supports the need of this rule.


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Michael Semcheski]

On Mon, Nov 22, 2010 at 2:42 PM,   wrote:
>> I thought Novell sold WordPerfect to Corel a long time ago.

> Maybe - I've lost track. I'm still waiting for *anyone* to actually market
> the damn thing - I'd *buy* it (or rather, upgrade from 6.0.c for DOS)
> I'll take it over Word *or* OO.o, any day.

I know that Corel is still releasing Word Perfect, and its still a
very good product.  Latest version is 14, I think.  Its just fine.
Still has "Reveal Codes", works with Word, OO, and PDF files.

Windows only, unfortunately.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[John R. Dennison]

On Mon, Nov 22, 2010 at 09:29:12PM -0500, Michael Semcheski wrote:
> 
> Windows only, unfortunately.

When did they stop publishing *nix versions?  I worked
extensively with that monstrosity 15-16 years ago on
SCO / MWC Coherent.





John

-- 
The nuclear arms race is like two sworn enemies standing waist deep in
gasoline, one with three matches, the other with five.

-- Carl Sagan (1934-1996), astronomer and writer, debate transcript with
William F. Buckley, aired after the first showing of the ABC TV movie
"The Day After", November 20, 1983


pgp7b9Q0LqGQc.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Les Mikesell]

On 11/22/10 9:57 PM, John R. Dennison wrote:
> On Mon, Nov 22, 2010 at 09:29:12PM -0500, Michael Semcheski wrote:
>>
>> Windows only, unfortunately.
>
>   When did they stop publishing *nix versions?  I worked
>   extensively with that monstrosity 15-16 years ago on
>   SCO / MWC Coherent.

I don't think they ever did a real native *nix verson - they had a slightly 
custom version of wine wrapped around the windows code.   And there was some 
strange Microsoft involvement in the Corel company too - probably why you 
haven't heard much from them.

-- 
   Les Mikesell
lesmikes...@gmail.com



___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Stephen Harris]

On Mon, Nov 22, 2010 at 06:12:38PM -0500, Robert Heller wrote:
> And I *still* use LaTeX.  *I* won't touch a "word processor" (I tried

Feh.  N00b.  LaTeX.  Feh.
  
  % head -20 cv
  .m1 0.05i
  .m2 0.15i
  .m3 0
  .m4 0.11i
  .po 0.6c
  .ll 7.5i
  .pl 10.5i
  .SZ 11
  .tr ~
  .kern 0
  .lg 0
  .he ''\&Stephen Harris - Curriculum Vitae\l'|0\(ul''
  .fo '''[Page % of 4]'
  .in 0.2i
  .fi
  .rs
  .nf
  .ti -0.2i
  .u "PERSONAL DETAILS"

> with refereces, TOCs, & indexes, etc. Way back when I've created
> rather large documents with LaTeX *on a 10mhz 68000* with only 1Meg (yes
> *one* meg) of RAM (this was an Atari 1040ST running OS-9/68000).  And a

The company I worked for 20 years ago had fixed on nroff with me macros.
That gave us portability across so so many generations of servers that
Microsoft should be envious.

Yes, documents I created in 1991 still display properly today.

> 40 *meg* hard drive.  Talk about small footprint software.  With

Heh, I supported a server with 64Mbyte disk and 15 users.  And 3 telex
lines.  Ah, Unix... I <3 you :-)

-- 

rgds
Stephen
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Frank Cox]

On Mon, 22 Nov 2010 22:09:59 -0600
Les Mikesell wrote:

> I don't think they ever did a real native *nix verson - they had a slightly 
> custom version of wine wrapped around the windows code. 

Native WP for Unix existed back in the days of WP/DOS and the like.

WP ran on a huge number of platforms.  I still have WP 4.1 for Amiga laying
around here somewhere.

http://en.wikipedia.org/wiki/WordPerfect

"While available in DOS and Microsoft Windows versions, its popularity was based
in part on the fact that it was available for a wide variety of computers and
operating systems, including Mac OS, Linux, the Apple IIe, a separate version
for the Apple IIgs, most popular versions of Unix, VMS, Data General,
System/370, AmigaOS, Atari ST, OS/2, and NeXTSTEP."

-- 
MELVILLE THEATRE ~ Melville Sask ~ http://www.melvilletheatre.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Kill Script]

2010/11/22 Jorge Fábregas 

> I totally agree.  My suggestion was based on the assumption that the OP
> didn't
> have much system-administration experience and using rc.local was
> definitely
> the easiest way out.
>

Exactly...

The OP was recommended that by someone else but thought better than to put
that in production!
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Les Mikesell]

On 11/22/10 10:28 PM, Frank Cox wrote:
> On Mon, 22 Nov 2010 22:09:59 -0600
> Les Mikesell wrote:
>
>> I don't think they ever did a real native *nix verson - they had a slightly
>> custom version of wine wrapped around the windows code.
>
> Native WP for Unix existed back in the days of WP/DOS and the like.
>
> WP ran on a huge number of platforms.  I still have WP 4.1 for Amiga laying
> around here somewhere.
>
> http://en.wikipedia.org/wiki/WordPerfect
>
> "While available in DOS and Microsoft Windows versions, its popularity was 
> based
> in part on the fact that it was available for a wide variety of computers and
> operating systems, including Mac OS, Linux, the Apple IIe, a separate version
> for the Apple IIgs, most popular versions of Unix, VMS, Data General,
> System/370, AmigaOS, Atari ST, OS/2, and NeXTSTEP."

That's going back to the character-mode days.  I meant the GUI version.

-- 
   Les Mikesell
lesmikes...@gmail.com

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[John R. Dennison]

On Mon, Nov 22, 2010 at 10:09:59PM -0600, Les Mikesell wrote:
> 
> I don't think they ever did a real native *nix verson - they had a slightly 
> custom version of wine wrapped around the windows code.   And there was some 
> strange Microsoft involvement in the Corel company too - probably why you 
> haven't heard much from them.

No, there were native iBCS2 execs for SCO and similar.  I was
doing the product and integration testing for Mark Williams back
then and was tasked with that POS back in the '94-'95 timeframe.





John

-- 
In today's online world, what your mother told you is true, only more so:
people really can judge you by your friends.

-- Harold Abelson, MIT computer science professor, on personal information
that can be gleaned from social networking sites, NY Times, 17 March 2010


pgppTnI2XT30V.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Kill Script]

On Mon, Nov 22, 2010 at 8:03 PM, John R Pierce  wrote:

>su-$ORA_OWNER -c $ORA_HOME/bin/dbstart
>
> should be
>
>su - $ORA_OWNER -c $ORA_HOME/bin/dbstart
>

So, for a Java program, would you suggest creating a different user, giving
that user just enough privileges, and then running the script so that it
exited if the wrong user tried to use it?

(Just trying to think what's the best long term solution for something like
this)
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news?

[Fajar Priyanto]

On Tue, Nov 23, 2010 at 12:12 PM, Stephen Harris  wrote:
> On Mon, Nov 22, 2010 at 06:12:38PM -0500, Robert Heller wrote:
>> And I *still* use LaTeX.  *I* won't touch a "word processor" (I tried
>
> Feh.  N00b.  LaTeX.  Feh.

I used Chiwriter (DOS) during my college days. I'm surprised it's fan
is still going after all these years.
http://www.delfijn.nl/ChiWriter/chiappl.htm

Crap now I realize how old I am.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] best way to start and shutdown programs in CentOS?

[Les Mikesell]

On 11/22/10 10:34 PM, Kill Script wrote:
> On Mon, Nov 22, 2010 at 8:03 PM, John R Pierce  > wrote:
>
> su-$ORA_OWNER -c $ORA_HOME/bin/dbstart
>
> should be
>
> su - $ORA_OWNER -c $ORA_HOME/bin/dbstart
>
>
> So, for a Java program, would you suggest creating a different user, giving 
> that
> user just enough privileges, and then running the script so that it exited if
> the wrong user tried to use it?
>
> (Just trying to think what's the best long term solution for something like 
> this)

Yes, especially if it runs a network protocol with the possibility of remote 
exploits.  It is an easy way to limit the damage if anything goes wrong.  But, 
the init scripts start as root so they need to su to the right user before 
starting the app.

-- 
   Les Mikesell
lesmikes...@gmail.com
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Fail Transfer of Large Files

[Nico Kadel-Garcia]

On Sun, Nov 21, 2010 at 10:13 PM, Michael D. Berger
 wrote:
> On Sun, 21 Nov 2010 11:49:29 -0500, Nico Kadel-Garcia wrote:
>
> [...]
>>
>> Good question. I don't have a hard rule of thumb, but I'd estimate that
>> any one file that takes more than 10 minutes to transfer is too big. So
>> transferring CD images over a high bandwidth local connection at 1
>> MByte/second, sure, no problem! But for DSL that may have only 80
>> KB/second, 80 KB/second * 60 seconds/minute * 10 minutes = 48 Meg. So
>> splitting a CD down to lumps of of, say, 50 Megs seems reasonable.
>>
> [...]
>
> The file I was having trouble with was a tar file of a complex
> directory tree containing mostly jpg files under 15M in size.
> So instead I did rsync -rv on the unpacked directory tree, and it
> worked just fine.  PROBLEM SOLVED.

Good for you. Next time, use "rsync -avH". "-H" preserves hardlinks,
"-a" preserves lots of other useful characteristics, such as symlinks
and full ownership and permissions.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Novell sale news? (OT)

[Niki Kovacs]

Drew a écrit :

> 
> I beg to differ. I've used Dreamweaver for years and while I can't
> speak for the latest versions, the MX version released in 2002
> produced some of the cleanest (x)html I've seen. 

XHTML is supposed to be semantic, e. g. it indicates clearly that "this 
is a quotation", "this is an abbreviation", etc. The only thing 
Dreamweaver can do is put cleanly indented  brackets around 
everything, to make sure no search engine leafing through the page will 
ever have the slightest clue about the content. Which is bad.

http://www.microlinux.fr --> made with Vim :oD

Cheers,

Niki
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos