Re: [CentOS] Centos 6.6 does not have a default firewall?
On Fri, Nov 7, 2014 at 9:13 AM, Johnny Hughes wrote: > On 11/07/2014 09:49 AM, Johnny Hughes wrote: > > On 11/05/2014 04:23 PM, Jason Pyeron wrote: > >> I noticed that the 6.6 x86_64 DVD ISO install of minimal no longer > creates a /etc/sysconfig/iptables file. > >> > >> What prompted the change? > >> > > > > No idea WHY it changed ... but I have validated that the exact same > > behavior exists in RHEL 6.6. > > > > A minimal RHEL 6.6 install shows these files only in /etc/sysconfig/ > > > > [root@localhost sysconfig]# ls | grep tables > > ip6tables-config > > iptables-config > > > > So this is the same as upstream, and therefore the expected (even if not > > the desired) results on CentOS 6.6. > > > > I also see this: > > > > http://bugs.centos.org/view.php?id=7831 > > > > Which while not DIRECTLY related, will need to be solved to run: > > > > system-config-firefall-tui > > > > (If you want to generate an /etc/sysconfig/iptables file) > > Filed an upstream bug so that they can clarify if this is the desired > result: > > https://bugzilla.redhat.com/show_bug.cgi?id=1161682 > > > Thanks for opening the bugzilla, Johnny. We just discovered this issue on minimal netinstall as well. Grant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Java SSLv3 status on CentOS-6.6
On Wed, Mar 11, 2015 at 10:03 AM, James B. Byrne wrote: > Can anyone inform me as to whether or not Java on CentOS-6.6 still has > SSLv3 enabled? And if it does then how is it disabled? > > James: Check the java.security file for your JRE. I'm running OpenJDK 8 on Cent 6.6 and it's located at /usr/lib/jvm/jre/lib/security/java.security. I haven't made any changes to the java.security file, which shows SSLv3 is already disabled: jdk.tls.disabledAlgorithms=SSLv3 Grant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] mingetty on centos 6
On Tue, Aug 9, 2011 at 10:41 AM, Jerry Geis wrote: > hi all, > > on centos 5 - I could trim the number of mingetty's running by editing > /etc/inittab > > on centos 6 there are none in the /etc/inittab file but it reverences > /etc/init/tty.conf. > I dont see in there how to control how many mingetty's get started. > Where is that? > > THanks, > > > Check out ACTIVE_CONSOLES in /etc/sysconfig/init. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 4 Dovecot Problem
On Sun, Oct 23, 2011 at 10:19 AM, John Hinton wrote: > For those of you that still are running CentOS 4... I have one system > that is still going... there is a problem with the newest release of > Dovecot under mbox. Certain spam is causing this error when users try to > log on. > > file lib.c: line 37 (nearest_power): assertion failed: (num <= > ((size_t)1 << (BITS_IN_SIZE_T-1))) > > Rolling back to a previous release fixes these issues. I'm not bothering > to file a bug with Redhat as the EOL is rapidly approaching and I just > about have my one system's users moved to a new server. > > I have not as of yet seen this problem on CentOS 5 mbox systems, but I > don't have many users on those systems either as I'm 'slowly' migrating > all to CentOS 6 Maildir systems. > > I got bit by this bug as well. I rolled back to dovecot-0.9.11-9 for now until I find time to upgrade to CentOS 5 or 6. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] epel repository broken
It's a known issue. You can follow along here: https://pagure.io/releng/issue/8392 On Thu, May 30, 2019 at 7:34 AM Günther J. Niederwimmer wrote: > Hello, > > I have now over two Days this errors on all my systems ? > > Updateinfo file is not valid XML: 92f2e15cad66d79ea1ad327e2af7af89d98e4d153d7a3e27ff41946f476af5b4- > updateinfo.xml.zck', mode 'rt' at 0x7f464cf24420> > > a "yum clean all" dont't change the Problem! > -- > mit freundliche Grüßen / best regards, > > Günther J. Niederwimmer > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Firewall builder - which rpm?
On Dec 29, 2007 10:09 PM, Robert Moskowitz <[EMAIL PROTECTED]> wrote: > I need a decent, easy, firewall on Centos. This is for test systems, so > I do not need a lot. For 'a lot', I use and Astaro firewall. > > I had used Firestarter once, but found out that it cannot handle routing > between a public and private network. Basically saying this is > impossible. Of course, if your private network is addressed per RFC > 1918 (that I co-authored), I can understand the difficulty, but > otherwise > > Anyway, I found firehol, but this is rather confusing. ( how do I > define a service like for port 5903? What about UDP for RTP? How do I > run the thing?) > > There have been people here mentioning Firewall Builder, and that seems > be well documented, except which rpm I should grab for Centos 5. > > I am looking over at http://www.fwbuilder.org/ and > http://www.fwbuilder.org/nightly_builds/build-329/ for rpms, but which > one? fedora-c5 ? > > thanks. > > Firewall builder is available in the ATrpms repository for C5: http://atrpms.net/dist/el5/fwbuilder/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Nagios 3 RPMs
On Thu, Sep 4, 2008 at 8:31 AM, nate <[EMAIL PROTECTED]> wrote: > Geoff Galitz wrote: > > > > > > Is anyone working on Nagios 3.x RPMs? If not, perhaps I'll whip some up > and > > submit them to some appropriate repository. > > Dag's repository has had them for some time. I haven't tried the > binaries, only the source rpms but they work fine, have had one > system running on nagios 3 for a couple months now, just fired up > another one yesterday. > > nate > > > Are you sure about Dag already offering Nagios 3? I don't see any mention of it on his site: http://dag.wieers.com/rpm/packages/nagios/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] possible corrupt rpm database
On 7/23/07, Dave <[EMAIL PROTECTED]> wrote: Hello, I've got a centos5 box that at least has a dependency issue or a corrupt rpm database. I am open to suggestions as to how to proceed. I have added some extra repositories to my yum configuration, centosplus, rpmforge, atrpms, and the kbs repos. I haven't been having issues with installs or upgrades until today when i ran a yum update, and got a missing dependency error for zaptel, a perl dependency. I've tried doing a yum install for the package, but no success. The error is below and i am open to suggestions. Thanks. Dave. #yum update Loading "installonlyn" plugin Setting up Update Process Setting up repositories Reading repository metadata in from local files Excluding Packages from CentOS-5 - Base Finished Excluding Packages from CentOS-5 - Updates Finished Resolving Dependencies --> Populating transaction set with selected packages. Please wait. ---> Package asterisk-devel.i386 1:1.4.8-42.el5 set to be updated ---> Package zaptel.i386 1:1.4.4-36.el5 set to be updated ---> Package asterisk.i386 1:1.4.8-42.el5 set to be updated --> Running transaction check --> Processing Dependency: perl(Zaptel::Config::Defaults) for package: zaptel --> Finished Dependency Resolution Error: Missing Dependency: perl(Zaptel::Config::Defaults) is needed by package zaptel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos This is a dependency problem with ATrpms repo--not CentOS. I suggest subscribing to the ATrpms users list at [EMAIL PROTECTED]<../mail?view=cm&tf=0&[EMAIL PROTECTED]>or following this thread in the archives: http://lists.atrpms.net/pipermail/atrpms-users/2007-July/007568.html Grant ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS 5] tftp-server, unable to create new files (even with "-c" option)
On 9/13/07, Davide Grandis <[EMAIL PROTECTED]> wrote: > > Hi all, > > I'm trying to setup a TFTP server to serve as repository for the > config of all my Cisco network devices. > > As per the the tftpd man, I've added the "-c" option into the /etc/ > xinetd.d/tftp (as follows) but I still cannot get write access > (unless the file is already present). > > [EMAIL PROTECTED] ~]# cd /etc/xinetd.d > [EMAIL PROTECTED] xinetd.d]# cat tftp > # default: off > # description: The tftp server serves files using the trivial file > transfer \ > # protocol. The tftp protocol is often used to boot diskless \ > # workstations, download configuration files to network-aware > printers, \ > # and to start the installation process for some operating > systems. > service tftp > { > disable = no > socket_type = dgram > protocol= udp > wait= no > user= root > server = /usr/sbin/in.tftpd > server_args = -s -c /tftpboot > per_source = 11 > cps = 100 2 > flags = IPv4 > } > > And here is it concerning the home path owner & permissions: > > [EMAIL PROTECTED] /]# ls -la > ... > drwxrwxrwx 2 root root 4096 Sep 13 10:18 tftpboot > ... > [EMAIL PROTECTED] /]# ls -la tftpboot/ > drwxrwxrwx 2 root root 4096 Sep 13 10:18 . > drwxr-xr-x 25 root root 4096 Sep 13 17:48 .. > -rwxrwxrwx 1 nobody nobody 1811552 Sep 12 10:28 c3500xl-c3h2s-mz. > 120-5.WC17.bin > -rwxrwxrwx 1 nobody nobody1181 Sep 13 17:51 pippo.config > > (pippo.config = fake file) > > This is what I get at the TFTP client side: > > LabTI-Infra-3524XL-01#copy running-config tftp: > Address or name of remote host []? 10.58.2.204 > Destination filename [labti-infra-3524xl-01-confg]? > TFTP: error code 1 received - File not found > > %Error opening tftp://10.58.2.204/labti-infra-3524xl-01-confg > (Undefined error) > > LabTI-Infra-3524XL-01# > LabTI-Infra-3524XL-01#copy running-config tftp: > Address or name of remote host []? 10.58.2.204 > Destination filename [labti-infra-3524xl-01-confg]? pippo.config > !! > 2327 bytes copied in 0.831 secs > > So, it means that the TFTP client can only *re-write* an existing > file but not creating new ones, and this is the expected behavior if > the "-c" parameter is omitted! > > What am I missing? > > Any suggestion really appreciated! > > TIA, > Davide > > I had this same problem when trying to back up my switch configs. After some googling, I found a workaround for RH-based systems. The workaround is disable tftp in xinetd, and run in.tftpd manually. I never figured out why it would not work with xinetd. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS 5] tftp-server, unable to create new files (even with "-c" option)
On 9/13/07, Davide Grandis <[EMAIL PROTECTED]> wrote: > > Hi Grant, > > Thanks for the support. > > > I had this same problem when trying to back up my switch configs. After > some googling, I found a workaround for RH-based systems. The workaround is > disable tftp in xinetd, and run in.tftpd manually. I never figured out > why it would not work with xinetd. > > > May I ask you to tell me the detailed steps to achieve that... I'm an > absolute beginner! :-) > > Thanks again, > Davide > > > Here's the post about this problem on fedora forum: http://forums.fedoraforum.org/archive/index.php/t-109735.html Here's the ugly workaround: In /etc/xinetd.d/tftp, set disable = yes Restart xinetd (/etc/init.d/xinetd restart) Run in.tftpd (for example, "/usr/sbin/in.tftpd -l -c -v -u root -s /tftpboot") You can add the previous command to /etc/rc.local to make it start on boot. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos