Re: [CentOS] I'm looking forward to the future of CentOS Stream
On Thu, Dec 10, 2020 at 05:25:16PM -0800, Gordon Messmer wrote: > ... snip ... > Today, CentOS is a release stage after Stage 5 described above. The CentOS > maintainers begin work on a minor release after that release is available to > RHEL consumers, and the process of rebuilding those packages is often very > time consuming. CentOS maintainers have to reverse-engineer the exact order > in which packages are built, with the exact set of installed and available > packages in the build environment in order to ensure that the resulting > package actually uses the same interfaces that RHEL???s packages do. All > packages require that ordering and build environment matching, but most > packages are published in small sets and ordering is much easier to identify > than it is when they are published in a large batch. > > As a result, security updates can???t be published for CentOS while the > maintainers are rebuilding the minor release, because the build dependencies > aren???t available yet. Those windows occur every six months, and are > typically a month or more in length. [2] > > Today, CentOS users accept the risk that for roughly two months out of the > year, their systems may have known vulnerabilities with no patch to > remediate the problem. Personally, I think that???s a huge risk that needs > to be weighed against the costs of RHEL licenses whenever CentOS is used in > production. > > The good news is that CentOS Stream looks like it won't have that problem. > CentOS Stream updates still won???t be prepared early, while vulnerability > details are embargoed, but there aren???t any windows in which CentOS Stream > can???t immediately begin work on preparing updates once the embargo ends. > That means that CentOS Stream will be as secure as CentOS is today in > between minor updates, and significantly more secure than CentOS is today > while its maintainers prepare minor releases. While I agree with your entire post, Gordon, this specific point I think is the most critical. In our environment, we already need to look to the Continuous Release repos to get critical security updates during this embargo period. I'm betting Stream will be no less well vetted than the CR repos, and likely will be better. In any case, the burden for tracking down the updates will be much less with Stream: we'll just get the packages through our normal channels, rather than going on a hunt through CVEs and Bugzilla, then temporarily enabling the CR repos for just the period of time when we need to get the updates before disabling them again. > ... snip ... -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] bash: return status of an assignment
I think this is a problem with the precedence of && vs ||. If INSMOD is not set, it will work as you intend, but once it's set, only the || branch will execute. You can fix it if you group the assignments together: [ -z "$INSMOD" ] && (INSMOD=$(which modprobe) || INSMOD="$(which insmod)") On Sat, Feb 27, 2021 at 01:32:55PM -0800, Kenneth Porter wrote: > In the sqm-scripts package for managing network traffic shaping is this line > for finding a program suitable for loading the kernel shaping modules: > > [ -z "$INSMOD" ] && INSMOD=$(which modprobe) || INSMOD=$(which insmod) > > It seems to set INSMOD to /usr/sbin/insmod, even though /usr/sbin/modprobe > is available. (Both are symlinks to ../bin/kmod.) > > According to this article, the return value of the first assignment should > be success and it shouldn't take the fallback statement: > > <https://unix.stackexchange.com/questions/270828/how-is-the-return-status-of-a-variable-assignment-determined> > > Also working the issue here: > > <https://github.com/tohojo/sqm-scripts/issues/133> > > _______ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department, System Administrator -- Foege Building S046, (206)-685-7354 -- University of Washington School of Medicine ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Tar of files
Regular users don't have the ability to change file ownership (only group, assuming they're a member of the target group and own the file), so this is mainly a consideration if you're running tar as root. By default, if you're running as root, GNU tar assumes the --same-owner switch, which preserves the ownership in the archive. If the IDs are different, you can use --owner or --owner-map to translate the IDs. If you need to get even trickier, you can use --to-command and pass the stream to your own custom filter. On Wed, Mar 03, 2021 at 09:53:42AM -0500, Jerry Geis wrote: > When I "tar" up an archive the files have an owner bob, > when I extract that to another machine bob is there also but user number is > different. > So when I extract bob is no longer the owner of the files but someone else. > > Is there a good way to account for this ? > User ID on one box being different to the next box ? > > I was expecting to untar and bob still be the owner . > > Thanks, > > Jerry > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: firefox question
I've noticed this as well, but it does seem to be limited to my FreeBSD desktop and none of my Linux/Windows systems, and also limited to sites doing HTTP "basic" authentication. It's pretty intermittent so it hasn't come to the point where I'm annoyed enough to delve into the underlying causes, though it does seem correlated with when I upgraded from Firefox 89->90 so going over the change log might be in order. On Fri, Jul 23, 2021 at 10:43:04AM -0500, Valeri Galtsev wrote: > Dear Experts, > > My question is OT, as it is related to firefox, not CentOS system per se. > Even more: my firefox runs on FreeBSD workstation. But I figured this list > have largest likelihood of having experts in firefox (as well as on other > things), so... > > My firefox behavior changed after one of recent updates.. > > When one logs in to website that is locked using web password (e.g., set in > .htacess/.htpasswd in apache), one gives username/password once. Then > firefox remembers that while firefox is running, and you don't have to give > credentials (though authentication does happen behind the scenes all the > time since). But not anymore for me at least on my (FreeBSD) workstation: in > the morning I discover firefox (though it had not been restarted) asks yet > again credentials to websites I have been logged to. As if firefox purges > credentials to websites after some period of time (or inactivity on those > websites). > > This stared happening not long ago after one of updates firefox is known to > release annoyingly often (as in: mozilla foundation forgot the meaning of > the word "release" which means well debugged code some time about decade > ago...). > > I tried to find relevant setting in GUI preferences to no avail (maybe it is > just me?), and hope, experts know deeper lying preferences, and may point me > to relevant one. > > All in all, I'm forced back onto my pursuit for replacement for firefox > browser... > > Thanks a lot for all your answers. And my apologies for rant (which I was > not able to separate due to my frustration...). > > Valeri > > -- > > Valeri Galtsev > Sr System Administrator > Department of Astronomy and Astrophysics > Kavli Institute for Cosmological Physics > University of Chicago > Phone: 773-702-4247 > ++++ > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] how to clear out /var/cache?
The FHS specification says that applications using /var/cache should expect those data to disappear anytime, so under a strict interpretation it should be safe to remove everything. Practically, though, I don't know that I'd trust every application to adhere to that, so it might be worth looking at what applications are the biggest users of the directory and making targeted deletions or even application-specific tools to remove the data (i.e. "yum clean all"). On Thu, Dec 30, 2021 at 06:20:15PM -0500, Fred wrote: > Is it safe to just remove files from /var/cache on a running system, or is > there a correct procedure for doing that? > > Mine has hit over 3 gigs, making it one of the larger directories in /, > which is running low on space. I've hit all the low-hanging fruit I can > find and now I come to things like /var/cache, and I don't know what to do > about such. > > Thanks in advance! -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NFS Server Centos7
I would start with something like iperf to measure the actual network throughput b/w the client and server. Once you have a baseline for that, we'd have to know things like read and write buffer sizes, and sync vs async mode. On Sat, May 28, 2022 at 03:43:12PM +0200, Erik Frangež via CentOS wrote: > Hi guys, > > we are setting NFS server on CentOS7 system. Everything working OK except > speed, speed over NFS very drop... if we run dd command directly on server > we are getting speed around 1,4Gbps, if we run from client connected to NFS > is 200Mbps. > > Do you have maybe some advice what we need to check? > > Thank you! > > Best, Erik -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Bottleneck and slowness.
I think the first question needs to be, how are you defining and measuring slowness? On Sat, Aug 20, 2022 at 10:20:42PM +0530, Kaushal Shriyan wrote: > Hi, > > Is there a way to measure the bottleneck or slowness for the below setup? > For example is the slowness on any one of the below list? > >1. Client Desktop Mac >2. Network >3. Remote Server CentOS Linux release 7.9.2009 (Core) > > Any utilities or tools to measure it? Please guide me. Thanks in advance. > > Best Regards, > > Kaushal -- -- Skylar Thompson (skyl...@u.washington.edu) -- Genome Sciences Department (UW Medicine), System Administrator -- Foege Building S046, (206)-685-7354 -- Pronouns: He/Him/His ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
