Re: [CentOS] PHP 5.2.x
> Are there reliable repositories for PHP 5.2 for CentOS 5? Try epl. https://fedoraproject.org/wiki/EPEL ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] the ongoing wait for centos 5.4
> i've checked a couple dozen random mirrors, and have yet to find > it. i'm almost tempted to ask, "any idea on when 5.4 will be > available?", but i just *know* that would get me in trouble. If you had try harder and try them all, you should be able to find these mirrors with 5.4 in them. http://centos.cs.wisc.edu/pub/mirrors/linux/centos/5.4/ http://mirror.highspeedweb.net/CentOS/5.4/ http://mirror.sanctuaryhost.com/centos/5.4/isos/ http://mirror.fdcservers.net/centos/5.4/isos/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] the ongoing wait for centos 5.4
>> >> at the risk of picking at that scab a bit longer, i'm going to toss >> out a comment regarding people still waiting for the public >> availability of centos 5.4. >> >> here: >> >> http://lists.centos.org/pipermail/centos/2009-October/083743.html >> >About ten minutes after your email, I got one from our local computer >shop. > > "Windows 7 coming soon!!!" > no date. no reason. Just churn. Windows 7 will be out on the 22nd Oct 2009. Your local computer Shop did not try hard enough to find this out? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Status of RPMForge || RPMRepo
> Are the websites for RPMForge or RPMRepo off line for anyone else? Am too having the same problem ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables
> Never (if you aren't guru) edit your iptables by directly editing your > config. Always use iptables binary. > > It is said there... -t option shouldn't be on that line. The line should > be only > -A PREROUTING -p tcp --dport 26 -j REDIRECT --to-port 25 > because you're already in the *nat section of the config. > > But again, you should enter this command instead of editing the config: > iptables -A PREROUTING -t nat -p tcp --dport 26 -j REDIRECT --to-port 25 Thanks Tomas and Christopher ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables
> *nat # Manipulate nat table > > :PREROUTING ACCEPT [0:0] > :POSTROUTING ACCEPT [0:0] > :OUTPUT ACCEPT [0:0] > -A PREROUTING -t nat -p tcp --dport 26 -j REDIRECT --to-port 25 > > COMMIT Thanks Christopher, I had updated my rules to *nat :OUTPUT ACCEPT [0:0] :PREROUTING ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] -A PREROUTING -t nat -p tcp --dport 26 -j REDIRECT --to-port 25 COMMIT # Completed When I did a restart, there is an error. Flushing firewall rules: [ OK ] Setting chains to policy ACCEPT: nat mangle filter [ OK ] Unloading iptables modules:[ OK ] Applying iptables firewall rules: iptables-restore v1.3.5: Line 52 seems to have a -t table option. Error occurred at line: 52 Try `iptables-restore -h' or 'iptables-restore --help' for more information. [FAILED] Line 52 is -A PREROUTING -t nat -p tcp --dport 26 -j REDIRECT --to-port 25 Regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] iptables
Hi, I have an existing iptables as follows:- # Firewall configuration written by system-config-securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall-1-INPUT - [0:0] -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 110 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 143 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 995 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT How do add a redirect port 26 to 25. I had googled the net and notice that the syntax is different iptables -A INPUT -p tcp --dport 26 -j ACCEPT iptables -A PREROUTING -t nat -p tcp --dport 26 -j REDIRECT --to-port 25 regards LC ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
> I did a yum -y install tomcat5 and tomcat got installed with >> openjdk. > But > somehow if I goto http://localhost:8080 > I am unable to get to the tomcat default site. >> > Correction. I got to a blank page. >>> Do a 'yum search tomcat' and note that there are several packages. If >>> you want the admin site and sample webapps you have to install the >>> corresponding packages. >> Results as follows:- >> >> === Matched: tomcat >> >> tomcat5-admin-webapps.i386 : The administrative web applications for Jakarta >>: Tomcat >> tomcat5-webapps.i386 : Web applications for Jakarta Tomcat > Are these two installed? Or do you want them? If you are going to > supply your own ROOT application you shouldn't need them, but if you > want to see something by default or have web administration access you > would. Yes those are installed. I will need to have the administration site To manage. But it wont show up. Just a blank page >>> Have you installed anything else that might conflict or replace >>> components? Does 'java -version' show >>> java version "1.6.0"? >>> The default page should be what is at >>> /var/lib/tomcat5/webapps/ROOT/index.jsp. Does that look normal? Do you >>> get something at http://localhost:8080/admin or >>> http://localhost:8080/manager/html? >> >> [r...@localhost ~]# java -version >> java version "1.6.0" >> OpenJDK Runtime Environment (build 1.6.0-b09) >> OpenJDK Client VM (build 1.6.0-b09, mixed mode) >> >> I do have a /var/lib/tomcat5/webapps but it does not has the ROOT folder >> >> [r...@localhost webapps]# ls -la >> total 16 >> drwxrwxr-x 2 root tomcat 4096 Jul 28 05:24 . >> drwxr-xr-x 6 root root 4096 Aug 26 04:17 .. >> >> Since there isn't a ROOT folder, I guess I cannot access to admin >> or the manager site. But how come I don't have the ROOT folder and I am >> unable >> to locate it anywhere. > > Try an "rpm -e tomcat5-webapps" and let yum install it again. Thanks a lot! It is working now ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
>>> I did a yum -y install tomcat5 and tomcat got installed with openjdk. >>> But >>> somehow if I goto http://localhost:8080 >>> I am unable to get to the tomcat default site. >>> Correction. I got to a blank page. > Do a 'yum search tomcat' and note that there are several packages. If > you want the admin site and sample webapps you have to install the > corresponding packages. Results as follows:- === Matched: tomcat tomcat5-admin-webapps.i386 : The administrative web applications for >> Jakarta : Tomcat tomcat5-webapps.i386 : Web applications for Jakarta Tomcat >> >>> Are these two installed? Or do you want them? If you are going to >>> supply your own ROOT application you shouldn't need them, but if you >>> want to see something by default or have web administration access you >>> would. >> >> Yes those are installed. I will need to have the administration site >> To manage. But it wont show up. Just a blank page > > Have you installed anything else that might conflict or replace > components? Does 'java -version' show > java version "1.6.0"? > The default page should be what is at > /var/lib/tomcat5/webapps/ROOT/index.jsp. Does that look normal? Do you > get something at http://localhost:8080/admin or > http://localhost:8080/manager/html? [r...@localhost ~]# java -version java version "1.6.0" OpenJDK Runtime Environment (build 1.6.0-b09) OpenJDK Client VM (build 1.6.0-b09, mixed mode) I do have a /var/lib/tomcat5/webapps but it does not has the ROOT folder [r...@localhost webapps]# ls -la total 16 drwxrwxr-x 2 root tomcat 4096 Jul 28 05:24 . drwxr-xr-x 6 root root 4096 Aug 26 04:17 .. Since there isn't a ROOT folder, I guess I cannot access to admin or the manager site. But how come I don't have the ROOT folder and I am unable to locate it anywhere. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
> I did a yum -y install tomcat5 and tomcat got installed with openjdk. > But > somehow if I goto http://localhost:8080 > I am unable to get to the tomcat default site. >> > Correction. I got to a blank page. >> >>> Do a 'yum search tomcat' and note that there are several packages. If >>> you want the admin site and sample webapps you have to install the >>> corresponding packages. >> >> Results as follows:- >> >> === Matched: tomcat >> >> tomcat5-admin-webapps.i386 : The administrative web applications for Jakarta >>: Tomcat >> tomcat5-webapps.i386 : Web applications for Jakarta Tomcat > Are these two installed? Or do you want them? If you are going to > supply your own ROOT application you shouldn't need them, but if you > want to see something by default or have web administration access you > would. Yes those are installed. I will need to have the administration site To manage. But it wont show up. Just a blank page ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
>>> I did a yum -y install tomcat5 and tomcat got installed with openjdk. But >>> somehow if I goto http://localhost:8080 >>> I am unable to get to the tomcat default site. >> Correction. I got to a blank page. > Do a 'yum search tomcat' and note that there are several packages. If > you want the admin site and sample webapps you have to install the > corresponding packages. Results as follows:- === Matched: tomcat jakarta-commons-collections-tomcat5.i386 : Jakarta Commons Collection dependency : for Tomcat5 mod_jk-ap20.i386 : Tomcat mod_jk connector for Apache 2.0.x mod_jk-debuginfo.i386 : Debug information for package mod_jk mod_jk-manual.i386 : Tomcat mod_jk connector manual mod_jk-tools.i386 : Analysis and report tools for mod_jk struts-webapps-tomcat5.i386 : Sample struts webapps for tomcat5 tomcat-native.i386 : Tomcat native library tomcat5.i386 : Apache Servlet/JSP Engine, RI for Servlet 2.4/JSP 2.0 API tomcat5-admin-webapps.i386 : The administrative web applications for Jakarta : Tomcat tomcat5-common-lib.i386 : Libraries needed to run the Tomcat Web container : (part) tomcat5-jasper.i386 : Compiler JARs and associated scripts for tomcat5 tomcat5-jasper-javadoc.i386 : Javadoc generated documentation for tomcat5-jasper tomcat5-jsp-2.0-api.i386 : Jakarta Tomcat Servlet and JSP implementation classes tomcat5-jsp-2.0-api-javadoc.i386 : Javadoc generated documentation for : tomcat5-jsp-2.0-api tomcat5-server-lib.i386 : Libraries needed to run the Tomcat Web container : (part) tomcat5-servlet-2.4-api.i386 : Jakarta Tomcat Servlet implementation classes tomcat5-servlet-2.4-api-javadoc.i386 : Javadoc generated documentation for : tomcat5-servlet-2.4-api tomcat5-webapps.i386 : Web applications for Jakarta Tomcat ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
> Is SELinux running? Have you checked /var/log/messages > or /var/log/audit/audit.log if you have it? Is there anything in your > tomcat logs? Do you get an error when you try to pull up the website? SElinux is setup to disabled. There is no log or anyting related. I do have a folder tomcat5 in /var/log/ and the only file is catalina.out. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
> I did a yum -y install tomcat5 and tomcat got installed with openjdk. But somehow if I goto http://localhost:8080 > I am unable to get to the tomcat default site. Correction. I got to a blank page. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
I did a yum -y install tomcat5 and tomcat got installed with openjdk. But somehow if I goto http://localhost:8080 I am unable to get to the tomcat default site. Any insight? >>> Does netstat show anything listening on 8080? Do you have a firewall that >>> >>> hasn't been adjusted to allow access to port 8080? > >> Thanks for the reply. Netstat does not show port 8080. Iptables is not >> running. >> > Netstat is calling port 8080 webcache, so tomcat is listening. Have you > checked your firewall? I do not have a firewall.. Iptables is off ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
>> I did a yum -y install tomcat5 and tomcat got installed with openjdk. But somehow if I goto http://localhost:8080 I am unable to get to the tomcat >> default site. >> >> Any insight? > Does netstat show anything listening on 8080? Do you have a firewall that > hasn't been adjusted to allow access to port 8080? Thanks for the reply. Netstat does not show port 8080. Iptables is not running. Proto Recv-Q Send-Q Local Address Foreign Address State tcp0 0 *:mysql *:* LISTEN tcp0 0 localhost.localdomain:8005 *:* LISTEN tcp0 0 *:8009 *:* LISTEN tcp0 0 *:webcache *:* LISTEN tcp0 0 *:http *:* LISTEN tcp0 0 *:ssh *:* LISTEN But tracking the log /var/log/tomcat5/catalina.out I have it running Aug 26, 2009 5:33:05 AM org.apache.catalina.core.AprLifecycleListener lifecycleEvent INFO: The Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre/lib/i386/client:/usr/lib/jvm/jav a-1.6.0-openjdk-1.6.0.0/jre/lib/i386:/usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0 /jre/../lib/i386:/usr/java/packages/lib/i386:/lib:/usr/lib Aug 26, 2009 5:33:05 AM org.apache.coyote.http11.Http11BaseProtocol init INFO: Initializing Coyote HTTP/1.1 on http-8080 Aug 26, 2009 5:33:05 AM org.apache.catalina.startup.Catalina load INFO: Initialization processed in 780 ms Aug 26, 2009 5:33:05 AM org.apache.catalina.core.StandardService start INFO: Starting service Catalina Aug 26, 2009 5:33:05 AM org.apache.catalina.core.StandardEngine start INFO: Starting Servlet Engine: Apache Tomcat/5.5.23 Aug 26, 2009 5:33:05 AM org.apache.catalina.core.StandardHost start INFO: XML validation disabled Aug 26, 2009 5:33:05 AM org.apache.coyote.http11.Http11BaseProtocol start INFO: Starting Coyote HTTP/1.1 on http-8080 Aug 26, 2009 5:33:06 AM org.apache.jk.common.ChannelSocket init INFO: JK: ajp13 listening on /0.0.0.0:8009 Aug 26, 2009 5:33:06 AM org.apache.jk.server.JkMain start INFO: Jk running ID=0 time=0/28 config=null Aug 26, 2009 5:33:06 AM org.apache.catalina.storeconfig.StoreLoader load INFO: Find registry server-registry.xml at classpath resource Aug 26, 2009 5:33:06 AM org.apache.catalina.startup.Catalina start INFO: Server startup in 435 ms ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tomcat 6 and Java 1.6
>> Is there any yum repo which contains tomcat 6 and java 1.6? >CentOS 5.3 ships java-1.6.0-openjdk. thanks I did a yum -y install tomcat5 and tomcat got installed with openjdk. But somehow if I goto http://localhost:8080 I am unable to get to the tomcat default site. Any insight? Regards WL ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Tomcat 6 and Java 1.6
Hi, Is there any yum repo which contains tomcat 6 and java 1.6? Thanks Regards WL ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Clamav engine updates
> Is there a yum URL I should add to get 0.95.1 (and onwards) from CentOS or Redhat, > or must I "roll my own" ? Use rpmforge. The package is clamav ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] realtime backup
>> >>> For a speedy backup, could put the db on LVM. Then your procedure would >> >>> be shutdown/freeze db, make lv snapshot, startup/unfreeze db, >> >>> rsync/backup data, remove snapshot. >> >> That's what I'd suggest too, but be warned that performance on that >> >> database (if gets to be of any size to be useful) would completely >> >> suck... not unlike driving at 90mph and with the ebrake on and >> >> constantly up-and-down-shifting... >> >> >> >> -I >> > >> > Would a decent alternative be a master/slave, with the dumps being done >> > from the slave. That way if the slave bogs down during the dump, it can catch >> > up afterwards. The master shouldn't slow down at all, or very minimally as it >> > is caching the slave transactions. >> > >> One too many "would's"... > ;) That would work, and I've done that (though not at the 5-minute > interval) in production environments. But since the OP hasn't responded > to this thread with any type of follow-up detail (like the size of the > db), I'm wondering how much time I want to spend putting out possible > solutions... Thanks everyone. At the present I am looking at 150mb worth of database. I stumbled across Zmanda. Has anything tried it? Is it suitable for my case? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] realtime backup
Hi, I had a cfml application running on mysql database. Can some suggest a realtime backup solution via ftp say every 5mins without damaging the database? Thanks regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Re: tar spanning
>> No. I am on a few lists and each list with a different email address >> so that I can sort them out correctly. If you people don’t wish to >> help out, its fine, just ignore my mails. It will be nice to stop making fun >> of me. > Looks like this week has been a rough one for many people. > A quick google: > http://www.linuxquestions.org/questions/linux-software-2/tar-split-question-605013/ Thanks! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Re: tar spanning
> People are so afraid that someone will be able to identify them through > newsgroup postings or harvest their address > for spam. > So what if someone googles my name and finds out I help people on a few lists! > Makes me look real bad, doesn't it? No. I am on a few lists and each list with a different email address so that I can sort them out correctly. If you people don’t wish to help out, its fine, just ignore my mails. It will be nice to stop making fun of me. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] tar spanning
Hi, I have a directory with 18GB worth of files and I would like to tar span and burn it into a few DVDs after that. How can I do this in command line? Thanks Regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] libkeyutils.so
Hi, I had setup yet another qmail toaster on a centos 5 x64. While trying to send a test email, I encountered this error. @40004809bc511c396914 /var/qmail/bin/qmail-smtpd: error while loading shared libraries: libkeyutils.so.1: failed to map segment from shared object: Cannot allocate memory Any idea? Thanks and best regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] stunnel
Dear all, I had notice that my logwatch has a heap of stunneling like the one below. Is there a security breech? **Unmatched Entries** (1) LOG5[6504:3086657232]: Connection closed: 29433 bytes sent to SSL, 62 bytes sent to socket (1) LOG5[9516:3086649040]: stunnel 4.15 on i686-redhat-linux-gnu with OpenSSL 0.9.8b 04 May 2006 (1) LOG5[9516:3086649040]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP (1) LOG5[9516:3086649040]: Connection closed: 29433 bytes sent to SSL, 62 bytes sent to socket (1) LOG5[10472:3086608080]: stunnel 4.15 on i686-redhat-linux-gnu with OpenSSL 0.9.8b 04 May 2006 (1) LOG5[10472:3086608080]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP (1) LOG5[10472:3086608080]: Connection closed: 29434 bytes sent to SSL, 62 bytes sent to socket (1) LOG5[11422:3086517968]: stunnel 4.15 on i686-redhat-linux-gnu with OpenSSL 0.9.8b 04 May 2006 (1) LOG5[11422:3086517968]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP (1) LOG5[11422:3086517968]: Connection closed: 31916 bytes sent to SSL, 84 bytes sent to socket (1) LOG5[12306:3086350032]: stunnel 4.15 on i686-redhat-linux-gnu with OpenSSL 0.9.8b 04 May 2006 (1) LOG5[12306:3086350032]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP (1) LOG5[12306:3086350032]: Connection closed: 29482 bytes sent to SSL, 62 bytes sent to socket (1) LOG5[13201:3086767824]: stunnel 4.15 on i686-redhat-linux-gnu with OpenSSL 0.9.8b 04 May 2006 (1) LOG5[13201:3086767824]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP (1) LOG5[13201:3086767824]: Connection closed: 29482 bytes sent to SSL, 62 bytes sent to socket Thanks nic ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
RE: [CentOS] Securing SSH
>> Tim Alberts wrote: >>> So I setup ssh on a server so I could do some work from home and I >>> think the second I opened it every sorry monkey from around the >>> world has been trying every account name imaginable to get into the >>> system. >>> >>> What's a good way to deal with this? I use denyhosts ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] denyhosts
Sorry for asking the obvious - what is the output from: - /sbin/service denyhosts status DenyHosts is running with pid = 25005 - /sbin/chkconfig --list denyhosts denyhosts 0:off 1:off 2:off 3:on4:off 5:off 6:off You could also try to reset the configuration by copying /usr/share/doc/denyhosts-2.6/denyhosts.cfg-dist to /etc/denyhosts/denyhosts.cfg (don't forget to backup your configuration). Yes i did that many times, nothing was caught Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] denyhosts
b. http://www.howtoforge.com/preventing_ssh_dictionary_attacks_with_denyhosts Since taking care of these things I've had no more trouble and since installing DenyHosts I haven't had to spend anywhere the amount of time making adjustments to my firewall either. Thanks. I just cant figure out why denyhosts isnt working. I had also disabled remote root login, but denyhost isnt catching it. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] denyhosts
Hi, My denyhosts stop working. How do i check why isnt it working anymore for me? Thanks Oct 2 22:59:17 beyond sshd[15690]: Failed password for root from 221.7.37.142 port 49836 ssh2 Oct 2 22:59:17 beyond sshd[15692]: Received disconnect from 221.7.37.142: 11: Bye Bye Oct 2 22:59:18 beyond sshd[15701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.37.142 user=root Oct 2 22:59:20 beyond sshd[15701]: Failed password for root from 221.7.37.142 port 50929 ssh2 Oct 2 22:59:20 beyond sshd[15702]: Received disconnect from 221.7.37.142: 11: Bye Bye Oct 2 22:59:22 beyond sshd[15706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.37.142 user=root Oct 2 22:59:24 beyond sshd[15706]: Failed password for root from 221.7.37.142 port 51911 ssh2 Oct 2 22:59:24 beyond sshd[15707]: Received disconnect from 221.7.37.142: 11: Bye Bye Oct 2 22:59:30 beyond sshd[15718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.37.142 user=root Oct 2 22:59:32 beyond sshd[15718]: Failed password for root from 221.7.37.142 port 52741 ssh2 Oct 2 22:59:32 beyond sshd[15719]: Received disconnect from 221.7.37.142: 11: Bye Bye Oct 2 22:59:33 beyond sshd[15724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.37.142 user=root Oct 2 22:59:36 beyond sshd[15724]: Failed password for root from 221.7.37.142 port 54591 ssh2 Oct 2 22:59:36 beyond sshd[15725]: Received disconnect from 221.7.37.142: 11: Bye Bye Oct 2 22:59:41 beyond sshd[15735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.37.142 user=root ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mail server
what can you recommend for mail server. I'll be needing mail server with tls,ssl and virtual domains with web ui management, im doing this for a client of mine. I have been using Qmail. http://www.qmailrocks.org/ This site has everything you will need. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
We dont have that brand in my country. you do realize, "CentOS List <[EMAIL PROTECTED]>" doesn't let us know what country you're in, who you are, or much of anything else. I kinda doubt your name is Mr. CentOS List I think you are abit too slow. I found a local dealer. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] IBM X3200
>> I am getting a IBM x3200.. This machine can only support up to 4 x 250GB >> SATA. I need to have a usable space of 500GB and mirror it to other >> 500GB. >> IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on >> the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on >> hardware raid and then during the installation of centos 5, i raid 1 on >> both the 2 sets of hardware raids? > > IBM's website says you can use 500GB and even 750GB drives with their > 'simple swap SATA raid'.whatever. Yes That is what i had thought. Total of 4 HDD is 3.0TB, so i presume each HDD can be 750GB. But the IBM consultant insisted that they had not tested x3200 with 500GB SATA HDD. If the machine can support that, I wont have a problem installing CentOS using raid-1 with 2 x 500GB SATA drives. I wonder who should I listen to. The website or the consultant. Doesn't Consultant = Salesperson ? Yes. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
CentOS List spake the following on 8/29/2007 7:47 PM: Hi ppl . I am getting a IBM x3200.. This machine can only support up to 4 x 250GB SATA. I need to have a usable space of 500GB and mirror it to other 500GB. IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on hardware raid and then during the installation of centos 5, i raid 1 on both the 2 sets of hardware raids? Thanks Buy a single raid card that can support raid 10 or raid 1+0. The card IBM recommended is only 0,1 and they will not warranty any parts which are not from IBM. Then you could software raid the two raid sets, as they will show up looking like scsi devices. Is the card they recommend a true hardware raid card? Not a fakeraid like the ICH7 intel stuff. So IBM will not warranty the raid card. They have to warranty the rest of the system, and get a warranty on the raid card from the vendor. I have done it with HP several times because the crappy Adaptec raid cards they push are less than stellar performers, and their linux driver support seems way behind the windows drivers. Which x3200 were you looking at? I could get up to 3.0 TB with 4 750 GB drives on the one I was just looking at. And optional raid5. You could just raid1 with 2 500GB drives. The model i am getting is 436242A x32. IBM insisted that this machine is not tested with 500GB SATA, and insisted me to pick up 4 x 250GB. If this machine is able to support 2 x 500GB, I would just run software raid. The raid card IBM is proposing is a PCI card which cost abour USD$300. Can you recommend a good raid card which is able to do raid 10/1+0 and very well supported by CentOS 5? Thanks I see. I just went to IBM's custom shop and was playing with the "build it" options. You are buying it through the Express Options program which doesn't let you customize the systems. If IBM won't give you what you want, you can try some of the other makers like HP. Or you can get a 3ware (AMCC) raid card. They are the best supported SATA cards in linux. Thanks everyone. I found a local 3ware dealer. Keeping this dealer handy. If this machine does not support the 500GB, i will get a 3ware 8506-4LP. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
Can you recommend a good raid card which is able to do raid 10/1+0 and very well supported by CentOS 5? Like shooting fish in a barrel: 3Ware. We dont have that brand in my country. Checked with some distributors and shops. Any other favorites? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] IBM X3200
I am getting a IBM x3200.. This machine can only support up to 4 x 250GB SATA. I need to have a usable space of 500GB and mirror it to other 500GB. IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on hardware raid and then during the installation of centos 5, i raid 1 on both the 2 sets of hardware raids? IBM's website says you can use 500GB and even 750GB drives with their 'simple swap SATA raid'.whatever. Yes That is what i had thought. Total of 4 HDD is 3.0TB, so i presume each HDD can be 750GB. But the IBM consultant insisted that they had not tested x3200 with 500GB SATA HDD. If the machine can support that, I wont have a problem installing CentOS using raid-1 with 2 x 500GB SATA drives. I wonder who should I listen to. The website or the consultant. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
The card IBM recommended is only 0,1 and they will not warranty any parts which are not from IBM. is this machine available with a simple JBOD non-raid 4 channel SATA card? use linux native software raid 0+1... it probably performs better than their raid cards anyways. As I am not confident to build and maintain the software raid 0+1, therefore, i decided not to get into that stage. Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
Hi ppl . I am getting a IBM x3200.. This machine can only support up to 4 x 250GB SATA. I need to have a usable space of 500GB and mirror it to other 500GB. IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on hardware raid and then during the installation of centos 5, i raid 1 on both the 2 sets of hardware raids? Thanks Buy a single raid card that can support raid 10 or raid 1+0. The card IBM recommended is only 0,1 and they will not warranty any parts which are not from IBM. Then you could software raid the two raid sets, as they will show up looking like scsi devices. Is the card they recommend a true hardware raid card? Not a fakeraid like the ICH7 intel stuff. So IBM will not warranty the raid card. They have to warranty the rest of the system, and get a warranty on the raid card from the vendor. I have done it with HP several times because the crappy Adaptec raid cards they push are less than stellar performers, and their linux driver support seems way behind the windows drivers. Which x3200 were you looking at? I could get up to 3.0 TB with 4 750 GB drives on the one I was just looking at. And optional raid5. You could just raid1 with 2 500GB drives. The model i am getting is 436242A x32. IBM insisted that this machine is not tested with 500GB SATA, and insisted me to pick up 4 x 250GB. If this machine is able to support 2 x 500GB, I would just run software raid. The raid card IBM is proposing is a PCI card which cost abour USD$300. Can you recommend a good raid card which is able to do raid 10/1+0 and very well supported by CentOS 5? Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: IBM X3200
CentOS List spake the following on 8/29/2007 11:31 AM: Hi ppl . I am getting a IBM x3200.. This machine can only support up to 4 x 250GB SATA. I need to have a usable space of 500GB and mirror it to other 500GB. IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on hardware raid and then during the installation of centos 5, i raid 1 on both the 2 sets of hardware raids? Thanks Buy a single raid card that can support raid 10 or raid 1+0. The card IBM recommended is only 0,1 and they will not warranty any parts which are not from IBM. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] IBM X3200
Hi ppl . I am getting a IBM x3200.. This machine can only support up to 4 x 250GB SATA. I need to have a usable space of 500GB and mirror it to other 500GB. IBM proposed me to get 2 RAID cards. Do you guys think i can do raid 0 on the first 2 x 250GB HDD and raid 0 on the second 2 x 250GB hdd, both on hardware raid and then during the installation of centos 5, i raid 1 on both the 2 sets of hardware raids? Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Changing IRQ
Is there a way to change IRQ of PCI devices? PCI is designed to share IRQs between cards, and to automatically configure. all PCI device drivers should be designed to cope properly with this. I have a Digium card which is conflicting with all the other PCI cards and even the onboard NIC. There are 3 PCI slots and i had swapped all the 3 and have the same SIOCSIFFLAGS error What do you think? the Digium is broken? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Changing IRQ
Hi, Is there a way to change IRQ of PCI devices? Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] x86_64 openssl conflict
> While yumming some packages, I keep getting the errors below. How to
> overcome it?
>
> Transaction Check Error:
> file /usr/share/man/man1/asn1parse.1ssl.gz from install of
> openssl-0.9.8b-8.3.el5 conflicts with file from package
> openssl-0.9.8b-8.3.el5
try a 'yum remove openssl.i386' then retry.
-Ross
In a situation like this, it will be helpful to see the arch of
package names. Add this line:
%_query_all_fmt %%{name}-%%{version}-%%{release}.%%{arch}
to either ~/.rpmmacros or /etc/rpm/macros (system wide).
Add to?
Thanks
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
[CentOS] x86_64 openssl conflict
Hi, While yumming some packages, I keep getting the errors below. How to overcome it? Transaction Check Error: file /usr/share/man/man1/asn1parse.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/nseq.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/ocsp.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/smime.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 thanks and regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NFS / DNS problem
The first thing that popped in my head was reverse lookup, but as I kept reading and saw your test with web3 it could ave been a sync problem between the two nameservers. By restarting ns1 all the zones were synced again and your initial problem isn't there anymore and so your test with web3 was successful as in it didn't loose it's mount. Keep an eye on ns1 when you make updates in the zones on ns0. I have seen problems where the sync didn't occur automatically and I had to sync "manually" by stopping and starting bind on the secondary server. Hope it helps you a little bit. Peter Simone wrote: > Hi all, > > Today we have had a strange problem that has taken down our website, we > understand what happened but not why so I am hoping someone has seen > this before. > > We have our web servers (web1 web2 web3 . web10) mounting an NFS > share (/export/data) from server nfs1. On the web server side we use > autofs in the format nfs-dedicated:/export/data where nfs-dedicated is > an alias in our internal DNS servers pointing to server nfs1. We run a > primary and a secondary DNS (bind) server ns0, ns1 authoritative for our > zones and our webservers have them configured in /etc/resolv.conf > Today we had to run some upgrade on the dns servers (bios firmwares etc) > so we took down ns0 and with it our website went down. > All the nfs shares disappeared from the web servers (the logs show > requests to mount/unmount timing out), but at the same time on nfs1 the > logs show requests (mount and unmount) coming from the web servers and > no errors. > > As soon as ns0 is back up, all gets back to normal. Minutes later we > take down ns1 for maintenance and it doesn't have any impact on the > website. > > dig @ns0 nfs-web gives exactly the same results on ns0/1 > > Back to the office we try to reproduce the same scenario configuring > iptables on web3 to block traffic to ns0 but the server (web3) keeps > working fine reverting to ns1 for name resolution (as you would expect). > > Has anybody seen this happening before? Any comment/suggestion much > appreciated. > > Thanks > > Simone > > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > > > signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5 iptables
Around 12:22am on Wednesday, June 13, 2007 (UK time), CentOS List scrawled: Line 35 COMMIT What are the few lines before that? Thanks, I saw the error on my iptables and fixed it up. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5 iptables
Line 35 COMMIT What are the few lines before that? -A RH-Firewall-1-INPUT -p tcp -m tcp -i eth0 -m state --dport 139 --state NEW -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m udp -i eth0 -m state --dport 139 --state NEW -j ACCEPT -A RH-Firewall-1-INPUT -p tcp -m tcp -i eth1 -m state --dport 139 --state NEW -j DROP -A RH-Firewall-1-INPUT -p tcp -m udp -i eth1 -m state --dport 139 --state NEW -j DROP -A RH-Firewall-1-INPUT -p tcp -m tcp -m state --dport 6000:6010 --state NEW -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 6277 -d 204.152.184.184 -j ACCEPT -A RH-Firewall-1-INPUT -p udp --dport 6277 -d 192.188.61.3 -j ACCEPT -A RH-Firewall-1-INPUT -p udp -m udp --dport 24441 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos 5 iptables
I applied a set of iptables rules and started iptables without any trouble. But after i edited the rules and restarting it, it gives me "Applying iptables firewall rules: iptables-restore: line 35 failed". I looked into /etc/sysconfig/ for the mentioned file and it was not found. I did a quick check and locate only found /sbin/ iptables-restore. I had done updatedb before using locate. All your firewall rules are in the file: /etc/sysconfig/iptables. Check on line 35 of that file. Line 35 COMMIT regards ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] centos 5 iptables
Hi, I applied a set of iptables rules and started iptables without any trouble. But after i edited the rules and restarting it, it gives me "Applying iptables firewall rules: iptables-restore: line 35 failed". I looked into /etc/sysconfig/ for the mentioned file and it was not found. I did a quick check and locate only found /sbin/iptables-restore. I had done updatedb before using locate. Any ideas? thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos openssl-devel
Well, it does the trick for openssl-devel.. But there are other packages which still require openssl i386. What should i do? It really depends if you need 32 bit compatibility. I tend to do "yum remove glibc.i686" to get rid of it entirely. I did that and yet it getting the same error. Transaction Check Error: file /usr/share/man/man1/asn1parse.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/nseq.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/ocsp.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 file /usr/share/man/man1/smime.1ssl.gz from install of openssl-0.9.8b-8.3.el5 conflicts with file from package openssl-0.9.8b-8.3.el5 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
