Re: [CentOS] RADIUS

2018-02-14 Thread Javier Romero 
Hi,

Radius is a AAA protocol (Authorization, Aurhentication and Accounting) you
can use rhe three methods or only one of them.

Authentication can be done by usong a Freeradius Server, aitvorization will
give a userr profile with certain privileges for example In a network
connection, and accounting (user connection details) can be registered In a
MySQL database if needed.

Check for guodes con how to install and use Freeradiua on CentOS.

Regards,



El miércoles, 14 de febrero de 2018, hw  escribió:

>
> Hi,
>
> I´m trying to figure out how to practically use RADIUS to authenticate
> users.
>
> So far, I have only found documentation explaining that the idea is that
> users somehow magically need to authenticate against a RADIUS server via
> a device like a switch or a wireless access point before they are given or
> being denied access to a network.  I understand that I have to refer to
> the documentation of the switch or access point to figure out how to set
> up RADIUS authentication with the particular device.
>
> But how is this achieved in practice?  Let´s say I have a couple laptops
> and
> a couple phones and a couple computers which connect either to a switch or
> to
> a wireless access point.  Both the switch and the access point support
> RADIUS,
> and I would set them up to talk to the RADIUS server and require every
> device
> that wants to connect to the network through them to authenticate first.
> I also
> have a couple thin clients and a couple computers which use PXE-boot, and
> the
> users of those would have to provide authentication before the machines
> could
> even boot.
>
> Then what?  How do I make it so that the users are actually able to
> authenticate?
>
> Is there any documentation about this?  Or am I not supposed to use RADIUS
> but
> something else?
> ___
> CentOS mailing list
> CentOS@centos.org
> https://lists.centos.org/mailman/listinfo/centos
>


-- 

*Javier Romero*

*E-mail: xavi...@gmail.com *

*Skype: xavinux*
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] FOSDEM Dojo update, videos

2018-02-14 Thread Rich Bowen 
Yeah. I was very disappointed with the final quality of the videos from
that room. Hopefully I can learn from this and make it better next time.
Nothing to be done about it now unfortunately.

If you'd like to help put together a meetup in the London area I'd be glad
to help. I know KB has expressed interest too.

On Wed, Feb 14, 2018, 07:08 Always Learning  wrote:

>
> M - Some illumination on the speaker would be advantageous. Perhaps
> it would have been better filming/videoing from the right, rather than
> the left, side.
>
> Viewing it on my PC (running Centos of course), Mr Singh's talking is
> not always distinct. Different types of mic provide different levels of
> clarity. A laval mic (clip-on miniature microphone) with better audio
> would probably help.
>
> Am interested to know what camera and mic were used.
>
> When is the next presentation in the London/greater London area ?
>
> --
> Regards,
>
> Paul.
> England, EU.  England's place is in the European Union.
> Exclusively Centos for more than 10 years.
>
>
> ___
> CentOS mailing list
> CentOS@centos.org
> https://lists.centos.org/mailman/listinfo/centos
>
-- 
Rich Bowen - rbo...@redhat.com
@rbowen // @rdocommunity // @CentOSProject
859 351 9166
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

[CentOS] RADIUS

2018-02-14 Thread hw 


Hi,

I´m trying to figure out how to practically use RADIUS to authenticate
users.

So far, I have only found documentation explaining that the idea is that
users somehow magically need to authenticate against a RADIUS server via
a device like a switch or a wireless access point before they are given or
being denied access to a network.  I understand that I have to refer to
the documentation of the switch or access point to figure out how to set
up RADIUS authentication with the particular device.

But how is this achieved in practice?  Let´s say I have a couple laptops and
a couple phones and a couple computers which connect either to a switch or to
a wireless access point.  Both the switch and the access point support RADIUS,
and I would set them up to talk to the RADIUS server and require every device
that wants to connect to the network through them to authenticate first.  I also
have a couple thin clients and a couple computers which use PXE-boot, and the
users of those would have to provide authentication before the machines could
even boot.

Then what?  How do I make it so that the users are actually able to 
authenticate?

Is there any documentation about this?  Or am I not supposed to use RADIUS but
something else?
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] kmod c74 broken: howto report it

2018-02-14 Thread Johnny Hughes 
On 02/06/2018 01:39 PM, Stijn De Weirdt wrote:
> hi akemi,
> 
> i also forgot about this thread. we already tested the latest kmod last
> week and it indeed fixes the issue.
> 
> still no clue how to report issues to centos team to doublecheck
> packaging mishaps...

If the package does not have a .centos. in the name (ie,
firefox-52.6.0-1.el7.centos.x86_64.rpm) then we did not modify it, so we
did not change the package in any way.  An example of a normal package
would be:  liberation-sans-fonts-1.07.2-15.el7.noarch.rpm  (no
.el7.centos, just .el7, etc.)

You can report centos bugs (something we have broken and is not
upstream) at https://bugs.centos.org/

If it is an upstream issue, we can't fix it .. if we created the issue,
we will try to fix it.

This is one of many areas where we need community help.  Anyone who
wants to can get a bugs.centos.org account and can look at all open
bugs.  You can comment on any bug.  What we need is the community to see
if they can duplicate the bug in question .. and for people who can test
the same bug in RHEL, please do so.  If the bug also appears in RHEL,
create a bug at bugzilla.redhat.com and reference the bugs.centos.org
entry there.

If the bug is present in CentOS Linux and not in RHEL, then add that to
a comment in the bugs.centos.org entry.  This kind of thing helps us
greatly as we have a limited number of people who work on the main
CentOS Linux distribution.

So, people who ask .. what can I, as a community member, do to help the
CentOS Project.  This is one major way .. get a bugs.centos.org account
and help us figure out if the issue is reproducible, and if it was
introduced by the CentOS build or exists upstream.

Other ways the community can help .. sign up for forums.centos.org and
read issues there and respond.  Answer questions on this mailing list
and other centos.org mailing lists.  You could also join a SIG
(https://wiki.centos.org/SpecialInterestGroup).

Thanks,
Johnny Hughes



> 
> stijn
> 
> On 02/06/2018 12:49 AM, Akemi Yagi wrote:
>> On Tue, Jan 2, 2018 at 10:10 AM, Akemi Yagi  wrote:
>>>
>>> On Thu, Dec 7, 2017 at 6:23 AM, Stijn De Weirdt  
>>> wrote:
>>
 latest kmod update 20-15.el7_4.6 is broken on our systems, while
 previous 20-15.el7_4.4 was working fine (and downgrading fixes the issue).

 the issue is with modules from mellanox kmod rpms that are symlinked in
 the weak-updates dir. the config files in /etc/depmod.d look ok (and do
 work with previous version): dist.conf has weak-updates after built-in,
 and mellanox kmod rpms ship a config that overrides it for all modules.
>>
>>> A little late in getting back to your post ...
>>>
>>> This issue was reported upstream at RH and is being worked on:
>>>
>>> https://bugzilla.redhat.com/show_bug.cgi?id=1522994
>>>
>>> Hopefully the fixed version comes out soon.
>>
>> For the record, it was fixed in kmod-20-15.el7_4.7 :
>>
>> https://access.redhat.com/errata/RHBA-2018:0159
>>
>> Akemi
>> ___
>> CentOS mailing list
>> CentOS@centos.org
>> https://lists.centos.org/mailman/listinfo/centos
>>
> ___
> CentOS mailing list
> CentOS@centos.org
> https://lists.centos.org/mailman/listinfo/centos
> 




signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] FOSDEM Dojo update, videos

2018-02-14 Thread Always Learning 

M - Some illumination on the speaker would be advantageous. Perhaps
it would have been better filming/videoing from the right, rather than
the left, side.  

Viewing it on my PC (running Centos of course), Mr Singh's talking is
not always distinct. Different types of mic provide different levels of
clarity. A laval mic (clip-on miniature microphone) with better audio
would probably help.

Am interested to know what camera and mic were used.

When is the next presentation in the London/greater London area ?

-- 
Regards,

Paul.
England, EU.  England's place is in the European Union.
Exclusively Centos for more than 10 years.


___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS 6: Yum downloadonly changes local source repositories (and CentOS 7)

2018-02-14 Thread Danny Smit 
For what its worth, I managed to get around the problem with a small
patch on yum itself:


--- ORIG/usr/lib/python2.6/site-packages/yum/yumRepo.py 2017-03-22
05:32:26.0 +
+++ NEW/usr/lib/python2.6/site-packages/yum/yumRepo.py  2018-02-14
09:14:04.879902463 +
@@ -863,6 +863,7 @@ class YumRepository(Repository, config.R
text=text,
cache=cache,
size=package.size,
+copy_local=1,
)

def getHeader(self, package, checkfunc = None, reget = 'simple',


Although newer versions of yum do not rename the local package
anymore, it still does not copy/download the package into the desired
"downloaddir".
I will try to report that upstream.

Regards,
Danny


On Tue, Feb 13, 2018 at 6:05 PM, Danny Smit  wrote:
> Hi All,
>
> I'm trying to use yum with the downloadonly option to collect a set of
> packages including dependencies. I noticed that even on CentOS 6 the
> downloadonly option is currently a default feature of the core of yum
> itself, which is nice.
>
> However something strange occurs when one of the repositories to
> download from is a local repository, like:
>
> [custom-repo]
> name=My custom repo
> baseurl=file:///repositories/mycustomrepo/
>
> I added such a repo to my yum configuration and then executed:
>
> yum install -y --downloadonly --downloaddir=downloads  custom_package
>
> When executing the above the package in question is suddenly renamed from:
>
> /repositories/mycustomrepo/x86_64/custom_package-1.1-2.el6.x86_64.rpm
>
> to
>
> /repositories/mycustomrepo/x86_64/custom_package-1.1-2.el6
>
> Note that the architecture part and file extension are removed with
> the file in the local repo, where I wouldn't expect yum to even try to
> change something there.
> Also nothing is downloaded into the downloads dir as specified.
>
> Strangely when it concerns a package that comes from a repository that
> is configured as an http URL, the download option works flawlessly.
>
> Has anyone else seen this behavior? Is it a bug? Or is there a way around 
> this?
> Actually I would even prefer not having to run yum as root for this,
> unfortunately yum to require write access to lock files in /var/.
>
> Platform: CentOS 6.9  (also not working with CentOS 7, then it keeps
> the file intact, but doesn't download either)
> Yum: 3.2.29-81.el6.centos
>
> Kind regards,
> Danny
___
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos