[CentOS] Sa-Update Error - CentOS 6.3

[Shiv. Nath]

Dear CentOS community Greetings,

i was waiting for few days before sending this email message, i thought
some server may have problem. That might causing the issue, will resolve
its own. but since a week now i am getting this message. because i have
not come across this error before, is anyone have across what is it? why
my server is unable to download the file

ERROR:
http: GET http://daryl.dostech.ca/sa-update/asf/1389247.tar.gz request
failed: 404
Not Found:  
404 Not Found  Not Found The
requested URL
/sa-update/asf/1389247.tar.gz was not found on this server. 
Apache/2.2.6 (Fedora) Server at daryl.dostech.ca Port 80



i tried to download the file using wget to see, here are the results. what
should i change to resolve this issue?

[root@jet mavi]# wget http://daryl.dostech.ca/sa-update/asf/1389247.tar.gz
http://daryl.dostech.ca/sa-update/asf/1389247.tar.gz
Resolving daryl.dostech.ca... 71.164.246.108
Connecting to daryl.dostech.ca|71.164.246.108|:80... connected.
HTTP request sent, awaiting response... 404 Not Found
2012-09-25 07:37:11 ERROR 404: Not Found.


Thanks / Shiv. Nath

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] /var/spool/mail ?

[Hadi Motamedi]

Dear All
On my server , the /var/spool/mail/root is getting very big in size . To free 
up more space, can you please let me know how can I solve my problem ?
Thank you

  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] /var/spool/mail ?

[Markus Falb]

On 25.9.2012 12:02, Hadi Motamedi wrote:
> 
> Dear All
> On my server , the /var/spool/mail/root is getting very big in size . To free 
> up more space, can you please let me know how can I solve my problem ?
> Thank you

- grow the partition /var/spool/mail is on
- delete old mails
- forward mails instead of delivering locally (/etc/aliases)

If you take the 3rd approach, please promise not to ask what to do if
your personal mailbox is getting very big in size.

Assuming that some of this mails could be error messages, fix whatever
is causing mails to root, or you will have the same problem again.
-- 
Kind Regards, Markus Falb

___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] /var/spool/mail ?

[SilverTip257]

Root is probably locally receiving logwatch and other various email messages.

Take a look at the manpage for mail.
Become root, run the 'mail' command, and delete some of the old emails.

Going forward, you could/should consider forwarding mail destined for
root to some mailbox you check.

---~~.~~---
Mike
//  SilverTip257  //


On Tue, Sep 25, 2012 at 6:02 AM, Hadi Motamedi  wrote:
>
> Dear All
> On my server , the /var/spool/mail/root is getting very big in size . To free 
> up more space, can you please let me know how can I solve my problem ?
> Thank you
>
>
> ___
> CentOS mailing list
> CentOS@centos.org
> http://lists.centos.org/mailman/listinfo/centos
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Sa-Update Error - CentOS 6.3

[Leonard den Ottolander]

Hello Shiv.,

On Tue, 2012-09-25 at 07:39 +, Shiv. Nath wrote:
> ERROR:
> http: GET http://daryl.dostech.ca/sa-update/asf/1389247.tar.gz request
> failed: 404
> Not Found:  
> 404 Not Found  Not Found The
> requested URL
> /sa-update/asf/1389247.tar.gz was not found on this server. 
> Apache/2.2.6 (Fedora) Server at daryl.dostech.ca Port 80
> 

This issue was reported last week (see the thread "SpamAssassin
reporting help") and I have experienced it myself last Sunday.
Apparently this server occasionally fails to deliver the requested
tarball.

As this cron job is run daily and I have only seen it once I'm not
worrying too much. If you do you might want to contact either the
spamassassin mailing list or the owner of that server.

Regards,
Leonard.

-- 
mount -t life -o ro /dev/dna /genetic/research


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] /var/spool/mail ?

[Hadi Motamedi]

> Date: Tue, 25 Sep 2012 12:13:40 +0200
> From: h.rei...@thelounge.net
> To: centos@centos.org
> CC: motamed...@hotmail.com
> Subject: Re: [CentOS] /var/spool/mail ?
> 
> 
> 
> Am 25.09.2012 12:02, schrieb Hadi Motamedi:
> > 
> > Dear All
> > On my server , the /var/spool/mail/root is getting very big in size . To 
> > free up more space, can you please let me know how can I solve my problem ?
> > Thank you
> 
> these are system-mails (cronjobs, logwatch, smartd, mdadm.)
> you should read them from the very beginning of the setup!
> 
> /etc/aliases:
> root: your-mail-addr...@yourdomain.tld
> 
> call the command "newaliases"
> 
> call "postqueue -f" if postfix is used to deliver existing mails
> for sendmail -> no idea, i am postfix-user since many years
> __
> 
> you can also delete the mails before change the config to
> relay them in future and restart the MTA
> 

Thank you very much for your help.

  
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] SSL CRIME

[Markus Falb]

On 25.9.2012 00:37, Leon Fauster wrote:
> Am 24.09.2012 um 23:49 schrieb Johnny Hughes:
>> On 09/24/2012 06:07 AM, Markus Falb wrote:
>>> Hi,
>>> Some of you have heard of CRIME, probably.
>>>
>>> from https://bugzilla.redhat.com/show_bug.cgi?id=857051
 Adding the following line to the /etc/sysconfig/httpd file:

  export OPENSSL_NO_DEFAULT_ZLIB=1
>>> But there are other services but http that use ssl and are vulnerable?
>>> What is the optimal place for setting this environment variable system wide?
>>>
>>> I tried to set it in
>>> /etc/profile.d/CRIME.sh
>>> /etc/bashrc
>>> without success.
>>
>> The setting only matters if programs look for it and do something with
>> it ... so you would need to set it for the user that starts whatever
>> service you are trying to protect, if that daemon actually uses the
>> variable.
>>
>> Just because a variable does something in httpd, that does not mean the
>> same variable means the same thing to sshd or any other daemon.
> 
> 
> 
> 
> its in openssl itself (rhel5/6)
> 
> http://pkgs.fedoraproject.org/cgit/openssl.git/tree/openssl-0.9.8j-env-nozlib.patch?id=1d20b5f2
> 
> IMO, the same above would also apply for e. g. /etc/sysconfig/ldap ...

That was my understanding too. And instead of fixing X services I would
like to fix it for all services at once in one central location.

One could do it in /etc/init.d/functions maybe, but I doubt that it
would survive an update of initscripts.

Now that ssl compression got security relevant, maybe the openssl
default should be changed. Default off, enabled only explicit. Leon, I
know you suggested building a custom openssl package in an earlier
message, but to be honest, I am not very enthusiastic about maintaining
my own openssl. Maybe an upstream bugzilla should be filed.

Another related question: What services are vulnerable to CRIME or the
concepts behind CRIME and what services are not. Everyone is only
talking about http. For example I think that smtp is not vulnerable if
it does not support smtp auth, or maybe ftp is not vulnerable because it
does a separate data channel, and so on...
-- 
Kind Regards, Markus Falb



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] SSL CRIME

[Markus Falb]

On 24.9.2012 22:26, Albert McCann wrote:
>> -Original Message-
>> From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On
>> Behalf Of Markus Falb
>> Sent: Monday, September 24, 2012 7:07 AM
>> To: centos@centos.org
>> Subject: [CentOS] SSL CRIME
>>
>> Hi,
>> Some of you have heard of CRIME, probably.
>>
>> from https://bugzilla.redhat.com/show_bug.cgi?id=857051
>>> Adding the following line to the /etc/sysconfig/httpd file:
>>>
>>>   export OPENSSL_NO_DEFAULT_ZLIB=1
>>
>> But there are other services but http that use ssl and are vulnerable?
>> What is the optimal place for setting this environment variable system
>> wide?
>>
>> I tried to set it in
>> /etc/profile.d/CRIME.sh
>> /etc/bashrc
>> without success.
> 
> What about placing it in the /etc/rc.d/rc.local file?

$  ls -l /etc/rc3.d/S99local
lrwxrwxrwx. 1 root root 11 18. Sep 09:08 /etc/rc3.d/S99local -> ../rc.local

It is too late, isn't it?
-- 
Kind Regards, Markus Falb



signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] SSL CRIME

[m . roth]

Markus Falb wrote:
> On 25.9.2012 00:37, Leon Fauster wrote:
>> Am 24.09.2012 um 23:49 schrieb Johnny Hughes:
>>> On 09/24/2012 06:07 AM, Markus Falb wrote:
 Hi,
 Some of you have heard of CRIME, probably.

Reading this thread, I finally looked it up. This was my best hit:
,
which I thought y'all might find interesting.

  mark


___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos

[CentOS] BackupPC and rsync

[Emmett Culley]

I have been using BackupPC via rsync daemons on the target machines and all has 
been working well.  At least until about the time rsync went to version 3.0.6.

Since then backups have been failing for some targets.  The failure is a TCP 
ZeroWindow issue.  It looks like the server rsync process cannot empty it's 
buffer soon enough and eventually the process fails.

I really do not know if it is rsync version related, because I never looked at 
the packet stream until I started having failures.

BackupPC was running on a VM host and the failing machine was one of the guest 
VMs. I tried upgrading rsync to 3.0.9 and that didn't help.

So I moved the BackupPC set up to a different server (no VM).  Not all backups 
are working. though I still see some ZeroWindow packets along with a few 
retransmision packets.  But the backup completes on all machines, including the 
VM that was failing before.

I've googled rsync zerowindow and found some references, but none seemed to 
apply to my situation.

Anybody else having a similar experience?

Emmett
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos