Re: [CentOS-docs] Proposal for a new page - NFS port locking
On 05/03/2011 02:31 PM, Steve Barnes wrote: G'day Further to a little discussion on #centos-social IRC, I'd like to put together a wiki page that describes the steps required to lock-down the ports used by NFS. I expect it'll be quite short, with details on which NFS related config files to edit and a short iptables excerpt that covers the relevant ports to allow. I'm thinking this could go under HowTos - Security? Unless there's a more suitable area, I can work on the initial scratch version in my home page area (which I don't presently have permission to edit). I suggest to add the info to the already existing http://wiki.centos.org/HowTos/OS_Protection page ( which should be renamed to something with security in name, I always need a couple of minutes to find this page if I do not have my bookmarks handy :) ) ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
[CentOS-announce] CESA-2011:0477 Important CentOS 4 i386 gstreamer-plugins Update
CentOS Errata and Security Advisory 2011:0477 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0477.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 190311dc8ed8fdf7c3c301ffadf9f9af gstreamer-plugins-0.8.5-1.EL.3.i386.rpm 32fbd4d18460314ff9af93fd0d1f378a gstreamer-plugins-devel-0.8.5-1.EL.3.i386.rpm Source: 256abd47ac8c051bde1a4fd43d738b02 gstreamer-plugins-0.8.5-1.EL.3.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0480 CentOS 5 x86_64 httpd Update
CentOS Errata and Bugfix Advisory 2011:0480 Upstream details at : http://rhn.redhat.com/errata/RHBA-2011-0480.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 4d4215fa25a5fe2a1df574d7f16462c5 httpd-2.2.3-45.el5.centos.1.x86_64.rpm ac7f1a96085f35f4bd2dd2d3370e28aa httpd-devel-2.2.3-45.el5.centos.1.i386.rpm a25c87c8fff8ce4c5bbac7ff58b7dbd9 httpd-devel-2.2.3-45.el5.centos.1.x86_64.rpm 20fcc271da66102815fb111ce3b0030b httpd-manual-2.2.3-45.el5.centos.1.x86_64.rpm 1522c08cad8f4af3a8d795c95ff9a1c7 mod_ssl-2.2.3-45.el5.centos.1.x86_64.rpm Source: 6f17d543fc9ba2efb722b198fd489f75 httpd-2.2.3-45.el5.centos.1.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0476 CentOS 5 x86_64 gfs2-utils Update
CentOS Errata and Bugfix Advisory 2011:0476 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0476.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: b16f29d702c5bb6d441f66d7ca72d958 gfs2-utils-0.1.62-28.el5_6.1.x86_64.rpm Source: a252789490e2f97415994961db12e345 gfs2-utils-0.1.62-28.el5_6.1.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CESA-2011:0478 Moderate CentOS 5 x86_64 libvirt.test Update
CentOS Errata and Security Advisory 2011:0478 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0478.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 7f4119dc15b764730045b48a4d73 libvirt-0.8.2-15.el5_6.4.i386.rpm 437ad9eda63165d2a88abc64a9486c4d libvirt-0.8.2-15.el5_6.4.x86_64.rpm 2d2022c6d742753e4dea2e2bed14069a libvirt-devel-0.8.2-15.el5_6.4.i386.rpm aac41cb94ea2cb2c108fb51c7e1ebd28 libvirt-devel-0.8.2-15.el5_6.4.x86_64.rpm f9e5baba35d3d0ea926c1fefaffba10e libvirt-python-0.8.2-15.el5_6.4.x86_64.rpm Source: 611bb01c6828419875b0af66c14bb8b5 libvirt-0.8.2-15.el5_6.4.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CESA-2011:0478 Moderate CentOS 5 i386 libvirt.test Update
CentOS Errata and Security Advisory 2011:0478 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0478.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 1f3cd7f0f8be455353a45c11a1b66631 libvirt-0.8.2-15.el5_6.4.i386.rpm 4c6719a2eaac8012f37c578b3ee87412 libvirt-devel-0.8.2-15.el5_6.4.i386.rpm b0ea6c520ffa3d1d78b4d55b2c78f80d libvirt-python-0.8.2-15.el5_6.4.i386.rpm Source: 611bb01c6828419875b0af66c14bb8b5 libvirt-0.8.2-15.el5_6.4.src.rpm -- Karanbir Singh CentOS Project { http://www.centos.org/ } irc: z00dax, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CESA-2011:0478 Moderate CentOS 5 i386 libvirt Update
CentOS Errata and Security Advisory 2011:0478 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0478.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 1f3cd7f0f8be455353a45c11a1b66631 libvirt-0.8.2-15.el5_6.4.i386.rpm 4c6719a2eaac8012f37c578b3ee87412 libvirt-devel-0.8.2-15.el5_6.4.i386.rpm b0ea6c520ffa3d1d78b4d55b2c78f80d libvirt-python-0.8.2-15.el5_6.4.i386.rpm Source: 611bb01c6828419875b0af66c14bb8b5 libvirt-0.8.2-15.el5_6.4.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CESA-2011:0478 Moderate CentOS 5 x86_64 libvirt Update
CentOS Errata and Security Advisory 2011:0478 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0478.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 7f4119dc15b764730045b48a4d73 libvirt-0.8.2-15.el5_6.4.i386.rpm 437ad9eda63165d2a88abc64a9486c4d libvirt-0.8.2-15.el5_6.4.x86_64.rpm 2d2022c6d742753e4dea2e2bed14069a libvirt-devel-0.8.2-15.el5_6.4.i386.rpm aac41cb94ea2cb2c108fb51c7e1ebd28 libvirt-devel-0.8.2-15.el5_6.4.x86_64.rpm f9e5baba35d3d0ea926c1fefaffba10e libvirt-python-0.8.2-15.el5_6.4.x86_64.rpm Source: 611bb01c6828419875b0af66c14bb8b5 libvirt-0.8.2-15.el5_6.4.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0481 CentOS 5 x86_64 selinux-policy Update
CentOS Errata and Bugfix Advisory 2011:0481 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0481.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: b474ed1e2bd60fde0c0f31df8e036d6b selinux-policy-2.4.6-300.el5_6.1.noarch.rpm 88bb05a4c48c0e6868aea9d771fb5169 selinux-policy-devel-2.4.6-300.el5_6.1.noarch.rpm 3dd219bb3924ad2f52df32a3a3295043 selinux-policy-minimum-2.4.6-300.el5_6.1.noarch.rpm 1f7d3def31d87f869f5b58a41b6c22c0 selinux-policy-mls-2.4.6-300.el5_6.1.noarch.rpm f7e887779e1df172f59630e78a463772 selinux-policy-strict-2.4.6-300.el5_6.1.noarch.rpm af6ad119c6580c0a295dd19649c3a37f selinux-policy-targeted-2.4.6-300.el5_6.1.noarch.rpm Source: b75348cb1f1d7bfd2ce754d189cd3593 selinux-policy-2.4.6-300.el5_6.1.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0482 CentOS 5 x86_64 mod_authz_ldap FASTTRACK Update
CentOS Errata and Bugfix Advisory 2011:0482 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0482.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 5ce2b332cb9f31aaea04e5712eca1852 mod_authz_ldap-0.26-11.el5.x86_64.rpm Source: 7a9b303099adc6c1c01198a95fa44cdc mod_authz_ldap-0.26-11.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0482 CentOS 5 i386 mod_authz_ldap FASTTRACK Update
CentOS Errata and Bugfix Advisory 2011:0482 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0482.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 960aa1736476e563411015126940864c mod_authz_ldap-0.26-11.el5.i386.rpm Source: 7a9b303099adc6c1c01198a95fa44cdc mod_authz_ldap-0.26-11.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0483 CentOS 5 x86_64 pyOpenSSL FASTTRACK Update
CentOS Errata and Bugfix Advisory 2011:0483 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0483.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 71c0230f4218dc342de910d4377ee54a pyOpenSSL-0.6-2.el5.x86_64.rpm Source: 88caddf181e3e4095489fe49887dbc8f pyOpenSSL-0.6-2.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0483 CentOS 5 i386 pyOpenSSL FASTTRACK Update
CentOS Errata and Bugfix Advisory 2011:0483 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0483.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: b2bfd6a5547010f23f4791c507d3c577 pyOpenSSL-0.6-2.el5.i386.rpm Source: 88caddf181e3e4095489fe49887dbc8f pyOpenSSL-0.6-2.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0418 CentOS 5 x86_64 xorg-x11-font-utils Update
CentOS Errata and Bugfix Advisory 2011:0418 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0418.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: e638cf34d6279c6886e83274c19e3bbe xorg-x11-font-utils-7.1-3.x86_64.rpm Source: 4cbf441c6a0b57a817b9367ccc97d271 xorg-x11-font-utils-7.1-3.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0418 CentOS 5 i386 xorg-x11-font-utils Update
CentOS Errata and Bugfix Advisory 2011:0418 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0418.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 0d0378ca8dc86ee3635d8759b7675163 xorg-x11-font-utils-7.1-3.i386.rpm Source: 4cbf441c6a0b57a817b9367ccc97d271 xorg-x11-font-utils-7.1-3.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0398 CentOS 5 i386 giflib Update
CentOS Errata and Bugfix Advisory 2011:0398 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0398.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 63ceb8cea4c3345c2b03884ebafb4478 giflib-4.1.3-7.3.3.el5.i386.rpm 067cf0373cab16b3636a623e22f95ac1 giflib-devel-4.1.3-7.3.3.el5.i386.rpm 3b01434add9b56867a3e39efd62102d9 giflib-utils-4.1.3-7.3.3.el5.i386.rpm Source: ad51db342fd15b011f987add288d9d2f giflib-4.1.3-7.3.3.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0398 CentOS 5 x86_64 giflib Update
CentOS Errata and Bugfix Advisory 2011:0398 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0398.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 9e4432c7d8257cd60dd95239058dda5a giflib-4.1.3-7.3.3.el5.i386.rpm 781207a3f41445600de8ff6636a70e6d giflib-4.1.3-7.3.3.el5.x86_64.rpm ce8ff35a2e24154b0bb44c03917fb902 giflib-devel-4.1.3-7.3.3.el5.i386.rpm 799c5c16d21d95ab31b6465da8f26a38 giflib-devel-4.1.3-7.3.3.el5.x86_64.rpm d70a9b529cbe0682dbe5df6f5ff3c1dd giflib-utils-4.1.3-7.3.3.el5.x86_64.rpm Source: ad51db342fd15b011f987add288d9d2f giflib-4.1.3-7.3.3.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0397 CentOS 5 i386 sed Update
CentOS Errata and Bugfix Advisory 2011:0397 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0397.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: e0d2b8832f5c5e9c5282d7877a5097f8 sed-4.1.5-8.el5.i386.rpm Source: a07f73614e79631c5d6f9bb79994a71d sed-4.1.5-8.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0397 CentOS 5 x86_64 sed Update
CentOS Errata and Bugfix Advisory 2011:0397 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0397.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 6547ceb363f5e4401a05d3e695746674 sed-4.1.5-8.el5.x86_64.rpm Source: a07f73614e79631c5d6f9bb79994a71d sed-4.1.5-8.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0399 CentOS 5 i386 dejagnu Update
CentOS Errata and Bugfix Advisory 2011:0399 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0399.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: fe5b2dddcb018335bd4163fb36ca889c dejagnu-1.4.4-7.el5.noarch.rpm Source: eb0b7f70912ed4b8956c390823464148 dejagnu-1.4.4-7.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0399 CentOS 5 x86_64 dejagnu Update
CentOS Errata and Bugfix Advisory 2011:0399 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0399.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: c556127a77d78da1b2ee4bbc8a55fd9c dejagnu-1.4.4-7.el5.noarch.rpm Source: eb0b7f70912ed4b8956c390823464148 dejagnu-1.4.4-7.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0400 CentOS 5 i386 w3m Update
CentOS Errata and Bugfix Advisory 2011:0400 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0400.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: d64e624e05d0ead5364768bb92b8b211 w3m-0.5.1-18.el5.i386.rpm e7fb7b52a4aee68ed95942f69074229c w3m-img-0.5.1-18.el5.i386.rpm Source: aa3a4205f38efc424a2ad08dab976658 w3m-0.5.1-18.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0400 CentOS 5 x86_64 w3m Update
CentOS Errata and Bugfix Advisory 2011:0400 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0400.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 8355909d222e3b7366d6e803b4afcd3f w3m-0.5.1-18.el5.x86_64.rpm 8d267d3d714bec32be4aadd1dd77088f w3m-img-0.5.1-18.el5.x86_64.rpm Source: aa3a4205f38efc424a2ad08dab976658 w3m-0.5.1-18.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0416 CentOS 5 i386 quota Update
CentOS Errata and Bugfix Advisory 2011:0416 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0416.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 2863d414a9527559259f0c0d5aebfcf1 quota-3.13-5.el5.i386.rpm Source: aed34af69dfb1e7593d228f5585d41d4 quota-3.13-5.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0416 CentOS 5 x86_64 quota Update
CentOS Errata and Bugfix Advisory 2011:0416 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0416.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 7ad4be82a6b2109feef394487b379d39 quota-3.13-5.el5.x86_64.rpm Source: aed34af69dfb1e7593d228f5585d41d4 quota-3.13-5.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEEA-2011:0419 CentOS 5 x86_64 jwhois Update
CentOS Errata and Enhancement Advisory 2011:0419 Upstream details at : https://rhn.redhat.com/errata/RHEA-2011-0419.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 90cf0cea5370794f05730f24201d9bee jwhois-3.2.3-12.el5.x86_64.rpm Source: d910f6011db7428702419150f72e2fc8 jwhois-3.2.3-12.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEEA-2011:0419 CentOS 5 i386 jwhois Update
CentOS Errata and Enhancement Advisory 2011:0419 Upstream details at : https://rhn.redhat.com/errata/RHEA-2011-0419.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 32f7e1c92a9f9e61479115d8b3b2a72d jwhois-3.2.3-12.el5.i386.rpm Source: d910f6011db7428702419150f72e2fc8 jwhois-3.2.3-12.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0417 CentOS 5 i386 paps Update
CentOS Errata and Bugfix Advisory 2011:0417 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0417.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: ca962e1526476ee451796723c3c9f59b paps-0.6.6-20.el5.i386.rpm Source: ca811006e3368a1c4c2c7405b39d0496 paps-0.6.6-20.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0417 CentOS 5 x86_64 paps Update
CentOS Errata and Bugfix Advisory 2011:0417 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0417.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 31cb3cecdfa1ea96c4336ad0c2c4141c paps-0.6.6-20.el5.x86_64.rpm Source: ca811006e3368a1c4c2c7405b39d0496 paps-0.6.6-20.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:0401 CentOS 5 x86_64 screen Update
CentOS Errata and Bugfix Advisory 2011:0401 Upstream details at : https://rhn.redhat.com/errata/RHBA-2011-0401.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 69637a5337a6f526ad074fbfb7b1c5c8 screen-4.0.3-4.el5.x86_64.rpm Source: 94c203c7bac3d9565c709fc12c8fd4e3 screen-4.0.3-4.el5.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
[CentOS-announce] CEBA-2011:4813 CentOS 5 i386 kudzu Update
CentOS Errata and Bugfix Advisory 2011:4813 Upstream details at : http://bugs.centos.org/view.php?id=4813 The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 108ab1d84f723ba8ed01c489b9d33df3 kudzu-1.2.57.1.26-1.el5.centos.1.i386.rpm 9d82d83151f2ca14dc44c06d0d79d4f5 kudzu-devel-1.2.57.1.26-1.el5.centos.1.i386.rpm Source: 794ca573847cf34f8f80b36f2205f562 kudzu-1.2.57.1.26-1.el5.centos.1.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net ___ CentOS-announce mailing list CentOS-announce@centos.org http://lists.centos.org/mailman/listinfo/centos-announce
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
On Tue, 03 May 2011 08:48:46 -0500 Johnny Hughes joh...@centos.org wrote: I do not see anything listed in the upsteam bugzilla concerning squid and EL5.6 ... anyone else have this issue? I also checked... nothing related to squid crash after upgrading to 5.6. squid logs are rotated on a weekly basis, so it seems that squid crashes once a week here. In the default setup, squid is accessing directly to its log files. As a workaround, I can probably switch to syslog, so squid would be tolerant to logrotate (and not concerned about). Laurent. -- Laurent CREPET l...@megrapet.fr ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Centos under (vmware vs KVM)
Hello, we are using several centos servers under Vmware. We are having more and more requests for server space for each business application (let assume that these business requests are for different type of services: databases, web apps, application servers etc. I wonder which solution is better: 1. new CentOS under vmware (having several CentOS servers under Vmware) or 2. new CentOS under KVM under existing CentOS (having a few CentOS servers with several KVMs in each) Each approach has some advantages and disadvantages. Can you share your thoughts about it ? Regards Przemyslaw Bak (przemol) - Wez udzial w konkursie i WYGRAJ! Sprawdz http://linkint.pl/f299e ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos under (vmware vs KVM)
On 05/04/2011 10:58 AM, przemol...@poczta.fm wrote: Hello, we are using several centos servers under Vmware. We are having more and more requests for server space for each business application (let assume that these business requests are for different type of services: databases, web apps, application servers etc. I wonder which solution is better: 1. new CentOS under vmware (having several CentOS servers under Vmware) or 2. new CentOS under KVM under existing CentOS (having a few CentOS servers with several KVMs in each) Each approach has some advantages and disadvantages. Can you share your thoughts about it ? What vmware version do you use: server, esxi?? What type of applications do you run under these vms?? -- CL Martinez carlopmart {at} gmail {d0t} com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos under (vmware vs KVM)
On Wed, 4 May 2011, carlopmart wrote: On 05/04/2011 10:58 AM, przemol...@poczta.fm wrote: Hello, we are using several centos servers under Vmware. We are having more and more requests for server space for each business application (let assume that these business requests are for different type of services: databases, web apps, application servers etc. I wonder which solution is better: 1. new CentOS under vmware (having several CentOS servers under Vmware) or 2. new CentOS under KVM under existing CentOS (having a few CentOS servers with several KVMs in each) Each approach has some advantages and disadvantages. Can you share your thoughts about it ? What vmware version do you use: server, esxi?? What type of applications do you run under these vms?? How mature is your organization? How big will this get? -- Jim Wildman, CISSP, RHCE j...@rossberry.com http://www.rossberry.net Society in every state is a blessing, but Government, even in its best state, is a necessary evil; in its worst state, an intolerable one. Thomas Paine ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos under (vmware vs KVM)
On 04 May 2011, at 12:04, Jim Wildman wrote: On Wed, 4 May 2011, carlopmart wrote: On 05/04/2011 10:58 AM, przemol...@poczta.fm wrote: Hello, we are using several centos servers under Vmware. We are having more and more requests for server space for each business application (let assume that these business requests are for different type of services: databases, web apps, application servers etc. I wonder which solution is better: 1. new CentOS under vmware (having several CentOS servers under Vmware) or 2. new CentOS under KVM under existing CentOS (having a few CentOS servers with several KVMs in each) Each approach has some advantages and disadvantages. Can you share your thoughts about it ? What vmware version do you use: server, esxi?? What type of applications do you run under these vms?? How mature is your organization? How big will this get? And what about High Availability (vMotion, HA, DRS, ...) features? Any of those in use in production yet? Would you need to have equivalents for those too? Kind regards, Tom De Vylder ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
On Tue, 3 May 2011 02:26:33 -0700 (PDT) John Doe jd...@yahoo.com wrote: From: Laurent CREPET l...@megrapet.fr Any ideas ? Different setup here (compiled latest squid 2.7.STABLE9). Main difference I can see with the rpm's rotatelog is that we use delaycompress... JD I would prefer not to compile anything. From squid web site, I found references to packages available here: http://people.redhat.com/jskala/squid/ And this guy takes the SRPM from Fedora: http://www.howtoforge.com/anonymous-proxy-using-squid-3-centos-5.x However, since: - my settings have not been modified recently - logrorate and squid packages have not been updated by CentOS 5.6 (see below) ...an issue with glibc ? [root@stargate ~]# egrep centos-release|glibc|squid|logrotate /var/log/yum.log* /var/log/yum.log:Apr 18 15:27:25 Updated: centos-release-notes-5.6-0.x86_64 /var/log/yum.log:Apr 18 15:27:25 Updated: 10:centos-release-5-6.el5.centos.1.x86_64 /var/log/yum.log:Apr 18 15:27:34 Updated: glibc-common-2.5-58.el5_6.2.x86_64 /var/log/yum.log:Apr 18 15:27:46 Updated: glibc-2.5-58.el5_6.2.x86_64 /var/log/yum.log:Apr 18 15:27:47 Updated: glibc-2.5-58.el5_6.2.i686 /var/log/yum.log:Apr 28 09:35:49 Updated: glibc-common-2.5-58.el5_6.3.x86_64 /var/log/yum.log:Apr 28 09:35:59 Updated: glibc-2.5-58.el5_6.3.x86_64 /var/log/yum.log:Apr 28 09:36:00 Updated: glibc-2.5-58.el5_6.3.i686 /var/log/yum.log.1:Jan 21 15:25:52 Updated: glibc-common-2.5-42.el5_4.3.x86_64 /var/log/yum.log.1:Jan 21 15:25:57 Updated: glibc-2.5-42.el5_4.3.x86_64 /var/log/yum.log.1:Jan 21 15:26:06 Updated: glibc-2.5-42.el5_4.3.i686 /var/log/yum.log.1:May 28 16:19:13 Updated: glibc-common-2.5-49.x86_64 /var/log/yum.log.1:May 28 16:19:13 Updated: centos-release-notes-5.5-0.x86_64 /var/log/yum.log.1:May 28 16:19:13 Updated: 10:centos-release-5-5.el5.centos.x86_64 /var/log/yum.log.1:May 28 16:19:18 Updated: glibc-2.5-49.i686 /var/log/yum.log.1:May 28 16:19:21 Updated: glibc-2.5-49.x86_64 /var/log/yum.log.1:May 28 16:19:29 Updated: 7:squid-2.6.STABLE21-6.el5.x86_64 /var/log/yum.log.1:Jun 18 14:34:20 Updated: glibc-common-2.5-49.el5_5.2.x86_64 /var/log/yum.log.1:Jun 18 14:34:29 Updated: glibc-2.5-49.el5_5.2.x86_64 /var/log/yum.log.1:Jun 18 14:34:30 Updated: glibc-2.5-49.el5_5.2.i686 /var/log/yum.log.1:Aug 10 15:21:21 Updated: glibc-common-2.5-49.el5_5.4.x86_64 /var/log/yum.log.1:Aug 10 15:21:28 Updated: glibc-2.5-49.el5_5.4.x86_64 /var/log/yum.log.1:Aug 10 15:21:44 Updated: glibc-2.5-49.el5_5.4.i686 /var/log/yum.log.1:Oct 15 13:07:25 Updated: glibc-common-2.5-49.el5_5.5.x86_64 /var/log/yum.log.1:Oct 15 13:07:29 Updated: glibc-2.5-49.el5_5.5.x86_64 /var/log/yum.log.1:Oct 15 13:07:30 Updated: glibc-2.5-49.el5_5.5.i686 /var/log/yum.log.1:Oct 15 13:07:31 Updated: logrotate-3.7.4-9.el5_5.1.x86_64 /var/log/yum.log.1:Nov 02 14:03:17 Updated: glibc-common-2.5-49.el5_5.7.x86_64 /var/log/yum.log.1:Nov 02 14:03:27 Updated: glibc-2.5-49.el5_5.7.x86_64 /var/log/yum.log.1:Nov 02 14:03:40 Updated: glibc-2.5-49.el5_5.7.i686 /var/log/yum.log.1:Nov 08 09:26:57 Updated: logrotate-3.7.4-9.el5_5.2.x86_64 /var/log/yum.log.2:Dec 06 13:14:54 Installed: 7:squid-2.6.STABLE21-3.el5.x86_64 /var/log/yum.log.2:Dec 18 06:27:14 Updated: glibc-common-2.5-42.el5_4.2.x86_64 /var/log/yum.log.2:Dec 18 06:27:22 Updated: glibc-2.5-42.el5_4.2.x86_64 /var/log/yum.log.2:Dec 18 06:27:31 Updated: glibc-2.5-42.el5_4.2.i686 Laurent. -- Laurent CREPET l...@megrapet.fr ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LDAPs causing System Message Bus to hang when there's no network
On Tue, 3 May 2011, aurfal...@gmail.com wrote: So whats the answer today for ~10K users? The bug fixes suggested here work around the problems I have been encountering. Well that's good then. Can any one comment on what ppl are using for larger deployments? I hope its not a resounding M$ AD?! I use a lightly patched nss_ldap and it's far from terrible. I'm forced to either use nss_getgrent_skipmembers or limit the number of groups it can see by localising it to a specific OU, as the performance becomes unworkable otherwise. I've additionally patched it to improve performance against our tree by optimising some of the queries using site specific details. nss_getgrent_skipmembers is not without downsides, but if it's tolerable in your situation it'll get you the best performance. In my case, the server end is indeed AD. It's been considerably faster and more stable than using winbind. jh ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
Le mer 04 mai 2011 12:48:39 CEST, Laurent CREPET a écrit: [...] However, since: - my settings have not been modified recently - logrorate and squid packages have not been updated by CentOS 5.6 (see below) ...an issue with glibc ? Squid and logrotate work just fine here : $ rpm -q squid logrotate squid-2.6.STABLE21-6.el5 logrotate-3.7.4-9.el5_5.2 $ ls -l /var/log/squid/ total 92624 -rw--- 1 squid squid 43709603 mai 4 13:08 access.log -rw--- 1 squid squid 9424047 mai 1 04:02 access.log.1.gz -rw--- 1 squid squid 9751039 avr 24 04:02 access.log.2.gz -rw--- 1 squid squid 10745924 avr 17 04:02 access.log.3.gz -rw--- 1 squid squid 11373152 avr 10 04:02 access.log.4.gz -rw--- 1 squid squid 9620745 avr 3 04:02 access.log.5.gz -rw-r- 1 squid squid 2794 mai 4 11:58 cache.log -rw-r- 1 squid squid 2503 mai 1 04:02 cache.log.1.gz -rw-r- 1 squid squid 1580 avr 24 04:02 cache.log.2.gz -rw-r- 1 squid squid 1881 avr 17 04:02 cache.log.3.gz -rw-r- 1 squid squid 1591 avr 10 04:02 cache.log.4.gz -rw-r- 1 squid squid 2772 avr 3 04:02 cache.log.5.gz -rw-r--r-- 1 squid squid 511 nov 26 09:13 squid.out Have you double checked that your problem is not a permission problem, or some SELinux issue ? You can also try, as root : $ logrotate -d -v -f /etc/logrotate.d/squid # and without -d $ squid -k rotate $ ls -lZ /var/log/squid/ to see if there is any error message. HTH, -- Philippe ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
dont know if it helps, but squid keeps crashing for me when selinux was activated and diskd enabled in the squid config. Am 04.05.11 13:35, schrieb Philippe Naudin: Le mer 04 mai 2011 12:48:39 CEST, Laurent CREPET a écrit: [...] However, since: - my settings have not been modified recently - logrorate and squid packages have not been updated by CentOS 5.6 (see below) ...an issue with glibc ? Squid and logrotate work just fine here : $ rpm -q squid logrotate squid-2.6.STABLE21-6.el5 logrotate-3.7.4-9.el5_5.2 $ ls -l /var/log/squid/ total 92624 -rw--- 1 squid squid 43709603 mai 4 13:08 access.log -rw--- 1 squid squid 9424047 mai 1 04:02 access.log.1.gz -rw--- 1 squid squid 9751039 avr 24 04:02 access.log.2.gz -rw--- 1 squid squid 10745924 avr 17 04:02 access.log.3.gz -rw--- 1 squid squid 11373152 avr 10 04:02 access.log.4.gz -rw--- 1 squid squid 9620745 avr 3 04:02 access.log.5.gz -rw-r- 1 squid squid 2794 mai 4 11:58 cache.log -rw-r- 1 squid squid 2503 mai 1 04:02 cache.log.1.gz -rw-r- 1 squid squid 1580 avr 24 04:02 cache.log.2.gz -rw-r- 1 squid squid 1881 avr 17 04:02 cache.log.3.gz -rw-r- 1 squid squid 1591 avr 10 04:02 cache.log.4.gz -rw-r- 1 squid squid 2772 avr 3 04:02 cache.log.5.gz -rw-r--r-- 1 squid squid 511 nov 26 09:13 squid.out Have you double checked that your problem is not a permission problem, or some SELinux issue ? You can also try, as root : $ logrotate -d -v -f /etc/logrotate.d/squid # and without -d $ squid -k rotate $ ls -lZ /var/log/squid/ to see if there is any error message. HTH, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Audio/video recording software
Hi everyone! :-) I am supposed to get (for the first time) into the world of making youtube clips. I have a webcam, a microphone and a big hard drive configured and ready. The question is: what would you suggest as an easy-to-use yum-installable app that could handle a couple of minutes/hours of recording? People who are about to use it are complete noobs, and I would like to give them a user interface of type start the program, press record, talk for a while, press stop, press save, quit the program. That is, if something like that exists for CentOS (version 5.6, if it matters). I don't mind proprietary/patented/nonfree A/V formats, codecs and stuff. Anything goes, of a typical amateur youtube quality. I just need something that generates video clips in the simplest way possible. Any recommendations? TIA, :-) Marko ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Audio/video recording software
At Wed, 4 May 2011 14:14:59 +0200 CentOS mailing list centos@centos.org wrote: Hi everyone! :-) I am supposed to get (for the first time) into the world of making youtube clips. I have a webcam, a microphone and a big hard drive configured and ready. The question is: what would you suggest as an easy-to-use yum-installable app that could handle a couple of minutes/hours of recording? People who are about to use it are complete noobs, and I would like to give them a user interface of type start the program, press record, talk for a while, press stop, press save, quit the program. That is, if something like that exists for CentOS (version 5.6, if it matters). I wonder if Kino would do this. Kino is availalble from the rpmforge repo and installs cleanly via yum under CentOS 5.x. I don't mind proprietary/patented/nonfree A/V formats, codecs and stuff. Anything goes, of a typical amateur youtube quality. I just need something that generates video clips in the simplest way possible. Any recommendations? TIA, :-) Marko ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Robert Heller -- 978-544-6933 / hel...@deepsoft.com Deepwoods Software-- http://www.deepsoft.com/ () ascii ribbon campaign -- against html e-mail /\ www.asciiribbon.org -- against proprietary attachments ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Syntax Help on a Bash Script
On 05/04/2011 12:00 AM, Les Mikesell wrote: On 5/3/11 11:33 PM, Robert wrote: Hi All, I'm brand new at doing anything linux and would like feedback on this script I'm trying to understand from an example I'm working on.. Oh, running Centos 5.6 Anyhow, I run this bash script: #!/bin/bash # send data to the table in the MySQL database MYSQL='which mysql' if [ $# -ne 4 ] then echo Usage: mtest4 empid lastname firstname salary else statement=insert into employees values ($1, '$2','$3', $4) $MYSQL test EOF $statement EOF If [ $? -eq 0 ] then echo Data successfully added else echo Problem adding data fi fi and here is the error I get: [Bobster@localhost ~]$ ./mtest4 5 Johnson John 12 ./mtest4: line 15: syntax error near unexpected token `then' ./mtest4: line 15: ` then' Thanks in advance for any inputs. The If on line 14 should be if (lowercase). Hey that was the fix.. [Bobster@localhost ~]$ ./mtest4 5 Johnson John 12 /usr/bin/mysql /usr/bin/test Data successfully added Thanks Les! Bob ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
On Wed, 4 May 2011 13:35:37 +0200 Philippe Naudin philippe.nau...@supagro.inra.fr wrote: Le mer 04 mai 2011 12:48:39 CEST, Laurent CREPET a écrit: [...] However, since: - my settings have not been modified recently - logrorate and squid packages have not been updated by CentOS 5.6 (see below) ...an issue with glibc ? Squid and logrotate work just fine here : $ rpm -q squid logrotate squid-2.6.STABLE21-6.el5 logrotate-3.7.4-9.el5_5.2 $ ls -l /var/log/squid/ total 92624 -rw--- 1 squid squid 43709603 mai 4 13:08 access.log -rw--- 1 squid squid 9424047 mai 1 04:02 access.log.1.gz -rw--- 1 squid squid 9751039 avr 24 04:02 access.log.2.gz -rw--- 1 squid squid 10745924 avr 17 04:02 access.log.3.gz -rw--- 1 squid squid 11373152 avr 10 04:02 access.log.4.gz -rw--- 1 squid squid 9620745 avr 3 04:02 access.log.5.gz -rw-r- 1 squid squid 2794 mai 4 11:58 cache.log -rw-r- 1 squid squid 2503 mai 1 04:02 cache.log.1.gz -rw-r- 1 squid squid 1580 avr 24 04:02 cache.log.2.gz -rw-r- 1 squid squid 1881 avr 17 04:02 cache.log.3.gz -rw-r- 1 squid squid 1591 avr 10 04:02 cache.log.4.gz -rw-r- 1 squid squid 2772 avr 3 04:02 cache.log.5.gz -rw-r--r-- 1 squid squid 511 nov 26 09:13 squid.out Have you double checked that your problem is not a permission problem, or some SELinux issue ? SELinux is disabled. [root@stargate ~]# grep SELINUX /etc/selinux/config # SELINUX= can take one of these three values: SELINUX=disabled # SELINUXTYPE= type of policy in use. Possible values are: SELINUXTYPE=targeted You can also try, as root : $ logrotate -d -v -f /etc/logrotate.d/squid # and without -d $ squid -k rotate [root@stargate ~]# /etc/init.d/squid status squid (pid 6173) is running... [root@stargate ~]# logrotate -d -v -f /etc/logrotate.d/squid reading config file /etc/logrotate.d/squid reading config info for /var/log/squid/access.log reading config info for /var/log/squid/cache.log reading config info for /var/log/squid/store.log Handling 3 logs rotating pattern: /var/log/squid/access.log forced from command line (5 rotations) empty log files are not rotated, old logs are removed considering log /var/log/squid/access.log log needs rotating rotating log /var/log/squid/access.log, log-rotateCount is 5 renaming /var/log/squid/access.log.5.gz to /var/log/squid/access.log.6.gz (rotatecount 5, logstart 1, i 5), renaming /var/log/squid/access.log.4.gz to /var/log/squid/access.log.5.gz (rotatecount 5, logstart 1, i 4), renaming /var/log/squid/access.log.3.gz to /var/log/squid/access.log.4.gz (rotatecount 5, logstart 1, i 3), renaming /var/log/squid/access.log.2.gz to /var/log/squid/access.log.3.gz (rotatecount 5, logstart 1, i 2), renaming /var/log/squid/access.log.1.gz to /var/log/squid/access.log.2.gz (rotatecount 5, logstart 1, i 1), renaming /var/log/squid/access.log.0.gz to /var/log/squid/access.log.1.gz (rotatecount 5, logstart 1, i 0), copying /var/log/squid/access.log to /var/log/squid/access.log.1 truncating /var/log/squid/access.log compressing log with: /bin/gzip removing old log /var/log/squid/access.log.6.gz rotating pattern: /var/log/squid/cache.log forced from command line (5 rotations) empty log files are not rotated, old logs are removed considering log /var/log/squid/cache.log log needs rotating rotating log /var/log/squid/cache.log, log-rotateCount is 5 renaming /var/log/squid/cache.log.5.gz to /var/log/squid/cache.log.6.gz (rotatecount 5, logstart 1, i 5), renaming /var/log/squid/cache.log.4.gz to /var/log/squid/cache.log.5.gz (rotatecount 5, logstart 1, i 4), renaming /var/log/squid/cache.log.3.gz to /var/log/squid/cache.log.4.gz (rotatecount 5, logstart 1, i 3), renaming /var/log/squid/cache.log.2.gz to /var/log/squid/cache.log.3.gz (rotatecount 5, logstart 1, i 2), renaming /var/log/squid/cache.log.1.gz to /var/log/squid/cache.log.2.gz (rotatecount 5, logstart 1, i 1), renaming /var/log/squid/cache.log.0.gz to /var/log/squid/cache.log.1.gz (rotatecount 5, logstart 1, i 0), copying /var/log/squid/cache.log to /var/log/squid/cache.log.1 truncating /var/log/squid/cache.log compressing log with: /bin/gzip removing old log /var/log/squid/cache.log.6.gz rotating pattern: /var/log/squid/store.log forced from command line (5 rotations) empty log files are not rotated, old logs are removed considering log /var/log/squid/store.log log needs rotating rotating log /var/log/squid/store.log, log-rotateCount is 5 renaming /var/log/squid/store.log.5.gz to /var/log/squid/store.log.6.gz (rotatecount 5, logstart 1, i 5), renaming /var/log/squid/store.log.4.gz to /var/log/squid/store.log.5.gz (rotatecount 5, logstart 1, i 4), renaming /var/log/squid/store.log.3.gz to /var/log/squid/store.log.4.gz (rotatecount 5, logstart 1, i 3), renaming /var/log/squid/store.log.2.gz to /var/log/squid/store.log.3.gz (rotatecount 5, logstart 1, i 2), renaming
Re: [CentOS] community communication
On 03/05/11 23:42, Johnny Hughes wrote: Every time we (the CentOS Team) post on this list, it leads to a huge thread with same detractors looking to post bad things about the CentOS team. Then the same CentOS Fanbois come to our rescue. Then I (Johnny Hughes) post something tell people who want to use CentOS to use it and for people who don't want to use it to use something else. Then we start a huge flamewar that greatly increases the noise to signal ratio of this list. Lets see if we can avoid that on this thread. That reminds me of the movie '50 First Dates' ;) Ciao, Ak. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] since CentOS 5.6 upgrade, squid crashes
Le mer 04 mai 2011 15:03:06 CEST, Laurent CREPET a écrit: [root@stargate ~]# logrotate -d -v -f /etc/logrotate.d/squid [snip ] So, logrotating squid logs by hand works. Now, when logrotate is started from /etc/cron.daily/logrotate, it processes more log files. It has consequences on system load and disk space. Here are my last ideas. Not sure it is working : logrotate -d is debug mode, it actually does nothing. You have to try again without -d to check if it works. Don't forget to check the content of /var/log/squid/ (file size, date and time) for the result. -- Philippe ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos under (vmware vs KVM)
On 05/04/2011 03:58 AM, przemol...@poczta.fm wrote: Hello, we are using several centos servers under Vmware. We are having more and more requests for server space for each business application (let assume that these business requests are for different type of services: databases, web apps, application servers etc. I wonder which solution is better: 1. new CentOS under vmware (having several CentOS servers under Vmware) or 2. new CentOS under KVM under existing CentOS (having a few CentOS servers with several KVMs in each) Each approach has some advantages and disadvantages. Can you share your thoughts about it ? My thoughts are that KVM is part of the OS while VMWare is an addon. If KVM can meet your needs (are all the physical servers vmx|svm compatible, etc.), then I would go with KVM. It is also much easier to script the creation of KVM VMs via things like cobbler, etc. If I were doing this, I would be doing it in KVM unless there was something that made me require an external to the OS solution. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] RHEL 6.1 beta
Original Message Subject: Re: [CentOS] RHEL 6.1 beta From: Steve Clark scl...@netwolves.com To: CentOS mailing list centos@centos.org Date: Tuesday, May 03, 2011 10:40:51 AM On 05/02/2011 10:47 AM, Les Mikesell wrote: On 5/2/2011 8:57 AM, Steve Clark wrote: On 05/02/2011 09:38 AM, Lamar Owen wrote: On Monday, May 02, 2011 06:48:37 AM Christopher Chan wrote: biosdevname for nics...bye bye eth0! Not by default, and according to the release notes only for certain Dell servers ATM. But, yes, a different way of looking at NICs is coming down the pipe. It's about time. EGADS Why? After working with FreeBSD for ten years it so nice not to have to worry is this rl0, vr0, em0, fxp0, bge0, ed0, etc in networking scripts. Why would you want to go back to that? The numbers chosen in the eth? scheme are more or less randomized even on identical hardware, so it is pretty much impossible to prepare a disk to ship to a remote site and have it come up working unattended or clone disk images for a large rollout. If this gives predictable names in bios-detection order it will be very useful. Remote-site support is expensive and typically not great at the quirks of Linux distributions that you need to know to do IP assignments. In my experience with Linux over the last 3 years using Centos and RH I have never seen the ethn device numbering change, and it always corresponds to the hardware vendor marking on the units we use. We create images and ghost them onto various hardware platforms. I just make sure I remove the net persistent rules and the ifcfg-ethn stuff and they are then redetected in the correct order. Ditto, working with Dell hardware mostly, 2 or 4 NICs, never had an issue with them flipping or rearranging or out of order with the labels on CentOS5. We did have some problems with Fedora detecting in the wrong order, though we did not experience a flip. Images made with Clonezilla work fine, though the NICs come back up as DHCP - unsure if this was clonezilla or kudzu. Either way it was easy enough to configure an IP manually. I can see ethX/Y, eth0/1, 0/2, etc where X is the bus and Y is the port being acceptable, although most people probably won't experience a benefit. The BSD method of fxp0, rl0, etc is a pain in the rear. How exactly is the naming convention supposed to occur? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS-announce Digest, Vol 75, Issue 1
Send CentOS-announce mailing list submissions to centos-annou...@centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-requ...@centos.org You can reach the person managing the list at centos-announce-ow...@centos.org When replying, please edit your Subject line so it is more specific than Re: Contents of CentOS-announce digest... Today's Topics: 1. CESA-2011:0477 Important CentOS 4 i386gstreamer-plugins Update (Johnny Hughes) 2. CESA-2011:0477 Important CentOS 4 x86_64 gstreamer-plugins Update (Johnny Hughes) 3. CEBA-2011:0480 CentOS 5 x86_64 httpd Update (Johnny Hughes) 4. CEBA-2011:0480 CentOS 5 i386 httpd Update (Johnny Hughes) 5. CEBA-2011:0476 CentOS 5 i386 gfs2-utils Update (Johnny Hughes) 6. CEBA-2011:0476 CentOS 5 x86_64 gfs2-utils Update (Johnny Hughes) 7. CESA-2011:0478 Moderate CentOS 5 x86_64 libvirt.test Update (Johnny Hughes) 8. CESA-2011:0478 Moderate CentOS 5 i386 libvirt.test Update (Johnny Hughes) 9. CESA-2011:0478 Moderate CentOS 5 i386 libvirt Update (Johnny Hughes) 10. CESA-2011:0478 Moderate CentOS 5 x86_64 libvirt Update (Johnny Hughes) 11. CEBA-2011:0481 CentOS 5 i386 selinux-policy Update (Johnny Hughes) 12. CEBA-2011:0481 CentOS 5 x86_64 selinux-policy Update (Johnny Hughes) 13. CEBA-2011:0482 CentOS 5 x86_64 mod_authz_ldap FASTTRACK Update (Johnny Hughes) 14. CEBA-2011:0482 CentOS 5 i386 mod_authz_ldap FASTTRACK Update (Johnny Hughes) 15. CEBA-2011:0483 CentOS 5 x86_64 pyOpenSSL FASTTRACK Update (Johnny Hughes) 16. CEBA-2011:0483 CentOS 5 i386 pyOpenSSL FASTTRACK Update (Johnny Hughes) -- Message: 1 Date: Wed, 4 May 2011 12:22:21 + From: Johnny Hughes joh...@centos.org Subject: [CentOS-announce] CESA-2011:0477 Important CentOS 4 i386 gstreamer-plugins Update To: centos-annou...@centos.org Message-ID: 2011050411.ga4...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Security Advisory 2011:0477 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0477.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) i386: 190311dc8ed8fdf7c3c301ffadf9f9af gstreamer-plugins-0.8.5-1.EL.3.i386.rpm 32fbd4d18460314ff9af93fd0d1f378a gstreamer-plugins-devel-0.8.5-1.EL.3.i386.rpm Source: 256abd47ac8c051bde1a4fd43d738b02 gstreamer-plugins-0.8.5-1.EL.3.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net -- Message: 2 Date: Wed, 4 May 2011 12:22:21 + From: Johnny Hughes joh...@centos.org Subject: [CentOS-announce] CESA-2011:0477 Important CentOS 4 x86_64 gstreamer-plugins Update To: centos-annou...@centos.org Message-ID: 2011050411.ga4...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Security Advisory 2011:0477 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2011-0477.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 8037dc0e84daf3afc51b8d32e9c8673a gstreamer-plugins-0.8.5-1.EL.3.x86_64.rpm 002b5d7974c28481af1883de30a2e70a gstreamer-plugins-devel-0.8.5-1.EL.3.x86_64.rpm Source: 256abd47ac8c051bde1a4fd43d738b02 gstreamer-plugins-0.8.5-1.EL.3.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net -- Message: 3 Date: Wed, 4 May 2011 12:34:52 + From: Johnny Hughes joh...@centos.org Subject: [CentOS-announce] CEBA-2011:0480 CentOS 5 x86_64 httpd Update To: centos-annou...@centos.org Message-ID: 20110504123452.ga4...@chakra.karan.org Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2011:0480 Upstream details at : http://rhn.redhat.com/errata/RHBA-2011-0480.html The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename ) x86_64: 4d4215fa25a5fe2a1df574d7f16462c5 httpd-2.2.3-45.el5.centos.1.x86_64.rpm ac7f1a96085f35f4bd2dd2d3370e28aa httpd-devel-2.2.3-45.el5.centos.1.i386.rpm a25c87c8fff8ce4c5bbac7ff58b7dbd9 httpd-devel-2.2.3-45.el5.centos.1.x86_64.rpm 20fcc271da66102815fb111ce3b0030b httpd-manual-2.2.3-45.el5.centos.1.x86_64.rpm 1522c08cad8f4af3a8d795c95ff9a1c7 mod_ssl-2.2.3-45.el5.centos.1.x86_64.rpm Source: 6f17d543fc9ba2efb722b198fd489f75 httpd-2.2.3-45.el5.centos.1.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #cen...@irc.freenode.net -- Message: 4 Date: Wed, 4 May 2011 12:34:52 +
Re: [CentOS] RHEL 6.1 beta
On 5/4/2011 10:43 AM, Blake Hudson wrote: We create images and ghost them onto various hardware platforms. I just make sure I remove the net persistent rules and the ifcfg-ethn stuff and they are then redetected in the correct order. Ditto, working with Dell hardware mostly, 2 or 4 NICs, never had an issue with them flipping or rearranging or out of order with the labels on CentOS5. We did have some problems with Fedora detecting in the wrong order, though we did not experience a flip. Maybe if they all take the same driver they are probed in a fixed order. Mine usually have a mix of at least broadcomm and intel. Also note that once the NIC mac address is set as HWADDR= in the ifcfg-eth? file the settings will stay fixed (with a weird scheme of renaming the device after kernel detection...). Images made with Clonezilla work fine, though the NICs come back up as DHCP - unsure if this was clonezilla or kudzu. Clonezilla just copies your source, so the same thing happens as would happen if you moved the original disk to a different chassis - which is also a likely scenario for me. Kudzu will rename your ifcfg-eth? files with a .bak extension and create new ones that default to dhcp. If kudzu doesn't run and you have the wrong HWADDR= setting in the file the interface won't come up at all. Either way it was easy enough to configure an IP manually. This gets a lot harder when you've shipped the disk elsewhere for installation and the operators there only know windows. I can see ethX/Y, eth0/1, 0/2, etc where X is the bus and Y is the port being acceptable, although most people probably won't experience a benefit. The BSD method of fxp0, rl0, etc is a pain in the rear. How exactly is the naming convention supposed to occur? I think the bsd's have a mapping between the driver needed and the device name. I don't really care what the name is, as long as I know the names that correspond to the physical jacks and they are consistent across machines with the same bus/card layout. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] apache docroot permissions
I have a group of users (content editors) who need read-write access to apache document root. The apache web server is running as user:apache and group:apache. The filesystem permissions are currently set as apache:apache. How should I modify filesystem permission so that content editors can have read-write permissions and webserver can serve files as well? Following is what I have setup now, but I am not sure whether it is a good configuration. I appreciate any comments or suggestions regarding this. setup chown -R apache:contenteditors /var/www/html chmod u=rx /var/www/html chmod g+w /var/www/html chmod g+s /var/www/html Add people editing web/html files to contenteditors group. setup thanks, jM. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Finding wich files a writen to
Hi ! I have a server (Centos 5) that is using a pair of SAS drives to store the data. (Mail server) They are on an adaptec raid controler with a battery backup and write back cache active. From time to time, I have sever peak io to those data disks ( 400 to 500 iops, 70 to 100 megs/sec). With iostat, I find that it's almost a write i/o problem. How can I find to which files the OS writes ? On OSX boxes, there is a utility called fs_usage that can reports any disk activity for a particular process or all processes. Is there any utility like this on Centos ? iotop can points me to wich process, but that doesn't points me to what files are the culprits... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
User apache only needs read access except under special conditions, such as a script that needs to store configuration in a file. And a lot of apps store their state in a DB so they don't need filesystem write access at all. Set the permissions as strict as possible, so that if an attacker finds a bug in apache, he does as little damage as possible. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
On 05/04/2011 12:17 PM, Nicolas Ross wrote: iotop can points me to wich process, but that doesn't points me to what files are the culprits... A rough way would be to change to the top-level directory where you suspect the files are being written and perform: find . -type f -mmin -1 (that would search for all files modified within the last minute) A more elegant way would be: lsof -p PID (where PID is the process ID...of the process iotop showed you) HTH, Jorge ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
On Wed, May 4, 2011 at 12:58 PM, Kenneth Porter sh...@sewingwitch.comwrote: User apache only needs read access except under special conditions, such as a script that needs to store configuration in a file. And a lot of apps store their state in a DB so they don't need filesystem write access at all. Set the permissions as strict as possible, so that if an attacker finds a bug in apache, he does as little damage as possible. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Thanks for the suggestions Richard and Kenneth. I installed drupal here and it requires user running apache to have write access on filesystem. Otherwise it complains: 'The directory sites/default/files is not writable'. The content editors/developers need write access to theme/pictures folders. So it seems like I can't avoid giving write access to apache user. Any hacks or tips here? jM. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
On 05/04/2011 02:49 PM, Johan Martinez wrote: On Wed, May 4, 2011 at 12:58 PM, Kenneth Porter sh...@sewingwitch.com mailto:sh...@sewingwitch.com wrote: User apache only needs read access except under special conditions, such as a script that needs to store configuration in a file. And a lot of apps store their state in a DB so they don't need filesystem write access at all. Set the permissions as strict as possible, so that if an attacker finds a bug in apache, he does as little damage as possible. ___ CentOS mailing list CentOS@centos.org mailto:CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Thanks for the suggestions Richard and Kenneth. I installed drupal here and it requires user running apache to have write access on filesystem. Otherwise it complains: 'The directory sites/default/files is not writable'. The content editors/developers need write access to theme/pictures folders. So it seems like I can't avoid giving write access to apache user. Any hacks or tips here? You may not need it in this case, but you can set up your mount using acls, then use setfacl to assign more than just one group or user to have permissions on a directory. You can keep that in mind if httpd gets upset about having a different group than apache. http://computernetworkingnotes.com/rhce_certification/acl.htm signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
Johan Martinez wrote on Wed, 4 May 2011 14:49:52 -0500: Thanks for the suggestions Richard and Kenneth. I installed drupal here and it requires user running apache to have write access on filesystem. Assuming you are running mod_php and safe_mode: that is probably because of PHP safe_mode. You didn't tell you were going to write to that area with drupal. That's a completely different picture then! You really have to give the complete picture. In PHP safe_mode you can: a) have all php files and the write area owned by apache b) have all php files owned by a user and the write area writable by apache but owned by the user (*) c) have all php files owned by the user, group-owned by apache and the write -area group-owned by apache and owned by the user and use safe_mode_gid instead of safe_mode. (*) this doesn't work if you create subdirectories because they get the wrong permissions and apache can't pass thru I think the most-used scenario is b). You will have to do some research to see what fits your setup best. (php.net/safe_mode). Also note that safe_mode is discouraged officially now since it isn't 100% reliable. However, I strongly advise using it if possible as long as it is available. Kai ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
On Wednesday, May 04, 2011 10:49 PM +0200 Kai Schaetzl mailli...@conactive.com wrote: b) have all php files owned by a user and the write area writable by apache but owned by the user (*) (*) this doesn't work if you create subdirectories because they get the wrong permissions and apache can't pass thru Make the writable directories SGID and any files and subdirectories created there will inherit the group ownership: http://www.library.yale.edu/wsg/docs/permissions/sgid.htm ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
Kenneth Porter wrote on Wed, 04 May 2011 14:12:32 -0700: Make the writable directories SGID and any files and subdirectories created there will inherit the group ownership: AFAIK, this works on Unix, but not on Linux. On Linux you have to use ACLs, as Johnny already pointed to. Kai ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
On Thu, May 05, 2011 at 12:31:15AM +0200, Kai Schaetzl wrote: Kenneth Porter wrote on Wed, 04 May 2011 14:12:32 -0700: Make the writable directories SGID and any files and subdirectories created there will inherit the group ownership: AFAIK, this works on Unix, but not on Linux. On Linux you have to use ACLs, as It works on Linux. $ id -a uid=500(sweh) gid=500(sweh) groups=0(root),500(sweh),501(vboxusers) $ ls -ld . drwxr-sr-x 2 sweh bin 4096 May 4 18:33 ./ $ ls -l hmmm /bin/ls: hmmm: No such file or directory $ touch hmmm $ ls -ld hmmm -rw-r--r-- 1 sweh bin 0 May 4 18:33 hmmm So the file I just created is in group bin even though I am not in that group. -- rgds Stephen ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] apache docroot permissions
On 05/04/2011 12:49 PM, Johan Martinez wrote: Thanks for the suggestions Richard and Kenneth. I installed drupal here and it requires user running apache to have write access on filesystem. Otherwise it complains: 'The directory sites/default/files is not writable'. The content editors/developers need write access to theme/pictures folders. So it seems like I can't avoid giving write access to apache user. Any hacks or tips here? Tip 1: Your files and directories can have different permissions. Rather than your original setup, try: chown -R apache:contenteditors /var/www/html find /var/www/html -type f -exec chmod 0464 {} + find /var/www/html -type d -exec chmod 2575 {} + or: chown -R apache:apache /var/www/html find /var/www/html -type f -exec setfacl -m g:contenteditors:rw {} + find /var/www/html -type d -exec setfacl -m g:contenteditors:rwx {} + Tip 2: Don't install drupal in /var/www/html. Generally, /var/www/html should be used only for static content. Web applications should be installed outside the document root to prevent a misconfiguration from allowing remote clients from downloading files that might contain configurations, passwords, or other sensitive information. See the rpm packaged drupal for an example of how this is done. Tip 3: If your application says that it needs write access to sites/default/files, then add write access only for that directory. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] LDAPs causing System Message Bus to hang when there's no network
On 05/03/2011 10:43 AM, aurfal...@gmail.com wrote: Can any one comment on what ppl are using for larger deployments? I hope its not a resounding M$ AD?! Use sssd. It's now included in CentOS 5. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
On Wednesday 04 May 2011 21:01:03 Jorge Fábregas wrote: On 05/04/2011 12:17 PM, Nicolas Ross wrote: iotop can points me to wich process, but that doesn't points me to what files are the culprits... A rough way would be to change to the top-level directory where you suspect the files are being written and perform: find . -type f -mmin -1 (that would search for all files modified within the last minute) A more elegant way would be: lsof -p PID (where PID is the process ID...of the process iotop showed you) Just out of curiosity I decided to write a simple script which checks all the files from all pids on the system. Here is what I got: http://hydra.azilian.net/scripts/read_fds.pl The idea is to read all the /proc/PID/fdinfo/ files and check the difference in the pos lines (the position in the file descriptor). This is both write and read position depending on how the application has opened the file. So in the end it lists all pids and the respective FDs which have changes: hackman@gamelon:~$ sudo ./read_fds.pl 4 Pid: 14229 Position change: 22 blocks FD: 4(/home/hackman/f2.tst) Pid: 14229 Position change: 12 blocks FD: 3(/home/hackman/f1.tst) The argument to the script is the sleep between the two checks. I have tested the script on a few production servers... It works as a charm :) Thank you for the good question... now I have one good tool in my arsenal :) -- Best regards, Marian Marinov signature.asc Description: This is a digitally signed message part. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Samba with 389 Directory Server Auth problem
On 04/28/2011 01:57 AM, sync wrote: [root@mybox logs]# net getlocalsid lib/smbldap.c:smbldap_search_domain_info(1392) Adding domain info for CMOMA failed with NT_STATUS_UNSUCCESSFUL SID for domain mybox is: S-1-5-21-4207250186-2406131440-3849861866 You should run getlocalsid before you put any LDAP settings in smb.conf. If you remove or comment all LDAP settings, you shouldn't get an error. dn: sambaDomainName=CMOMA,dc=cmoma,dc=mycompany,dc=com objectclass: sambaDomain objectclass: sambaUnixIDPool objectclass: top sambaDomainName: CMOMA samba SID: S-1-5-21-4207250186-2406131440-3849861866 uidNumber: 550 gidNumber: 550 I'm pretty sure sambaDomainName cannot have spaces. It's subject to the rules for Windows NT workgroup names. Use CMOMA only. SID: should be sambaSID: The recommended settings for uidNumber and gidNumber are 1000, and you should include sambaNextRid with the same value. adding new entry sambaDomainName=CMOMA,dc=cmoma,dc=mycompany,dc=com ldap_add: Object class violation ldap_add: additional info: unknown object class sambaUnixIDPool I double checked /opt/fedora-ds/slapd-server/config/schema/61samba.ldif created in the initial setup steps and was unable to find a sambaUnixIDPool objectclass, but did see a sambaUnixIdPool. However, after I edited /tmp/sambaDomainName.ldif to reflect this objectclass name, ldif2ldap still complains about an 'unknown object class'. I'm reasonably certain that objectclass names are case insensitive, so the error probably indicates that your ldif isn't being loaded. It could be a formatting error. Check the error log for your DS. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
Just out of curiosity I decided to write a simple script which checks all the files from all pids on the system. Here is what I got: http://hydra.azilian.net/scripts/read_fds.pl The idea is to read all the /proc/PID/fdinfo/ files and check the difference in the pos lines (the position in the file descriptor). This is both write and read position depending on how the application has opened the file. So in the end it lists all pids and the respective FDs which have changes: hackman@gamelon:~$ sudo ./read_fds.pl 4 Pid: 14229 Position change: 22 blocks FD: 4(/home/hackman/f2.tst) Pid: 14229 Position change: 12 blocks FD: 3(/home/hackman/f1.tst) The argument to the script is the sleep between the two checks. I have tested the script on a few production servers... It works as a charm :) Thank you for the good question... now I have one good tool in my arsenal :) This is excellent, and sooo clever... Except that I don't have the /proc/*/fdinfo directories. It seems that theses directories appeared in 2.6.22, and, since I am in centos5, I only have 2.6.18... I tested it on SL6 machine, and it works perfectly... Upgrade is not an option for the moment for the machine I have the problem with. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
2011/5/4 Nicolas Ross rossnick-li...@cybercat.ca: Hi ! I have a server (Centos 5) that is using a pair of SAS drives to store the data. (Mail server) They are on an adaptec raid controler with a battery backup and write back cache active. From time to time, I have sever peak io to those data disks ( 400 to 500 iops, 70 to 100 megs/sec). With iostat, I find that it's almost a write i/o problem. How can I find to which files the OS writes ? On OSX boxes, there is a utility called fs_usage that can reports any disk activity for a particular process or all processes. Is there any utility like this on Centos ? iotop can points me to wich process, but that doesn't points me to what files are the culprits... I sugest a look for tools like this http://freshmeat.net/projects/fsniper it helps to make a script to watch file activities, and it uses a kernel feature I discovered inotify some months ago when I looked into every initscript in init.d [23:13:35 root@gw init.d]# cat /etc/redhat-release CentOS release 5.3 (Final) [23:13:45 root@gw init.d]# head restorecond #!/bin/sh # # restorecond: Daemon used to maintain path file context # # chkconfig:2345 12 87 # description: restorecond uses inotify to look for creation of new files \ # listed in the /etc/selinux/restorecond.conf file, and restores the \ # correct security context. more about inotify: http://linux.die.net/man/7/inotify http://www.linuxjournal.com/article/8478 What Is inotify? inotify is a file change notification system—a kernel feature that allows applications to request the monitoring of a set of files against a list of events. When the event occurs, the application is notified. To be useful, such a feature must be simple to use, lightweight with little overhead and flexible. It should be easy to add new watches and painless to receive notification of events. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
(...) This is excellent, and sooo clever... Except that I don't have the /proc/*/fdinfo directories. It seems that theses directories appeared in 2.6.22, and, since I am in centos5, I only have 2.6.18... I tested it on SL6 machine, and it works perfectly... Upgrade is not an option for the moment for the machine I have the problem with. It appears that RHEL has back-ported some featears in 2.6.18 kernels. My service is now at 5.6 (was 5.5). Now I have the /proc/*/fdinfo directories, and can use your tool. Best regards, ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Finding wich files a writen to
On Thursday 05 May 2011 05:24:10 Marcelo Beckmann wrote: 2011/5/4 Nicolas Ross rossnick-li...@cybercat.ca: Hi ! I have a server (Centos 5) that is using a pair of SAS drives to store the data. (Mail server) They are on an adaptec raid controler with a battery backup and write back cache active. From time to time, I have sever peak io to those data disks ( 400 to 500 iops, 70 to 100 megs/sec). With iostat, I find that it's almost a write i/o problem. How can I find to which files the OS writes ? On OSX boxes, there is a utility called fs_usage that can reports any disk activity for a particular process or all processes. Is there any utility like this on Centos ? iotop can points me to wich process, but that doesn't points me to what files are the culprits... I sugest a look for tools like this http://freshmeat.net/projects/fsniper it helps to make a script to watch file activities, and it uses a kernel feature I discovered inotify some months ago when I looked into every initscript in init.d [23:13:35 root@gw init.d]# cat /etc/redhat-release CentOS release 5.3 (Final) [23:13:45 root@gw init.d]# head restorecond #!/bin/sh # # restorecond: Daemon used to maintain path file context # # chkconfig:2345 12 87 # description: restorecond uses inotify to look for creation of new files \ # listed in the /etc/selinux/restorecond.conf file, and restores the \ # correct security context. more about inotify: http://linux.die.net/man/7/inotify http://www.linuxjournal.com/article/8478 What Is inotify? inotify is a file change notification system—a kernel feature that allows applications to request the monitoring of a set of files against a list of events. When the event occurs, the application is notified. To be useful, such a feature must be simple to use, lightweight with little overhead and flexible. It should be easy to add new watches and painless to receive notification of events. If you go the inotify route, do keep in mind that you need to monitor for modify events, otherwise you would not see the file changes before the applications finish with the files. Regards, Marian -- Best regards, Marian Marinov signature.asc Description: This is a digitally signed message part. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Xen Install manager won't let me install anything.
Greetings all. I am attempting to install dom-u guests on a vanilla install of Centos 5.6. I am attempting to use the Xen Manager and it 1) won't let me choose ANYTHING but network install, which is quite odd to say the least, and 2) won't let my freebsd install iso complete. I am a novice with Xen, however, it doesn't make sense even in the most minimally supported system that it would default to a more complex install method such as network, or PXE why does the Centos install of Xen Manager installation wizard force you to only choose network install? -- Respectfully, Martes G Wigglesworth M. G. Wigglesworth Holdings, LLC www.mgwigglesworth.net ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos