Re: useradd -p question
You're one hundred percent correct - MD5 hashed is pretty terrible, the stack exchange posts with salts and sha512 examples are far more desirable for certain. On Wed, Jul 19, 2017 at 4:18 PM, David Sommerseth < sl+us...@lists.topphemmelig.net> wrote: > On 19/07/17 02:50, Steven Miano wrote: > > usermod -p $(openssl passwd -1 ${SOME_TEXT}) ${USERNAME_HERE} > > Eeeek! -1 gives MD5 hashed passwords! Don't do that! MD5 is considered > broken and very weak! > > > There's some Python and Perl examples here which gives SHA512 based > password hashes. > > <https://unix.stackexchange.com/questions/52108/how-to- > create-sha512-password-hashes-on-command-line> > > > -- > kind regards, > > David Sommerseth > -- Miano, Steven M. http://stevenmiano.com
Re: useradd -p question
usermod -p $(openssl passwd -1 ${SOME_TEXT}) ${USERNAME_HERE} And seemingly useradd would use the same syntax. On Tue, Jul 18, 2017 at 8:47 PM, Todd Chesterwrote: > Hi All, > > Is there a way to add include a new user's password > when creating his account with `useradd`. There is a "-p" > option, but it requires and "encrypted password". And > I have no idea what that would be. I only know his actual > password. And including his actual password gets you > some unknown password that I have to redo with `passwd` > > Many thanks, > -T > -- Miano, Steven M. http://stevenmiano.com
Re: Red Hat's new virtualization
The upstream of CloudForms is actually: http://manageiq.org/ On Sat, Aug 27, 2016 at 6:16 AM, David Sommerseth < sl+us...@lists.topphemmelig.net> wrote: > On 27/08/16 09:23, ToddAndMargo wrote: > > Hi All, > > > > Will we be seeing any of this? > > > > http://www.infoworld.com/article/3111908/virtualization/red-hat- > virtualization-4-woos-vmware-faithful.html > > > > > > And does it have anything to do with qemu-kvm? > > > > AFAIK, Red Hat Virtualization (RHV) is building upon libvirt and > qemu-kvm. The difference is that it comes with a far more powerful > management tool than virsh and virt-manager and the host OS is a scaled > down RHEL installation fine-tuned for being a virtualization host. > > Right now I've forgotten what the upstream project of RHV is named, but > it should exist such a project. > > You also have CloudForms, which is an even wider scoped management tool > capable of managing more than just libvirt/qemu-kvm virt hosts. The > upstream project for this is called oVirt, IIRC. > > > -- > kind regards, > > David Sommerseth > -- Miano, Steven M. http://stevenmiano.com
Re: free ssl certificate
If you are automating the process, it has no impact on your environment, maintenance, or administrative costs. The only reason I could see a short lifespan of the certificates being an issue is if you were manually caring and feeding them. >From LE: "At launch all certificates will have a lifetime of exactly 90 days. Post launch we will possibly offer more options, but they will likely be on the shorter side rather than the longer side. Part of the rationale for the 90 day number is that when certs are renewed only once a year, a lot can change. The person in charge might forget how to do it, or leave the organization, or change email addresses, etc. A shorter lifetime will hopefully encourage people to automate the renewal process, and we'll provide tools to help with that." I am in no way shape or form related to or affiliated with LE or the EFF, however, my opinion is very positive in terms of the links I chose to share with this list. It would be interesting to hear more about this negative perspective. ~Steven On Thu, Jul 14, 2016 at 7:56 AM, Steven Haigh <net...@crc.id.au> wrote: > On 14/07/2016 9:11 PM, Steven Miano wrote: > > https://letsencrypt.org/ > > > > Free SSL certificates, 90 days before renewal, and extremely convenient > > renewal procedures. > > 90 day renewal is the only reason I will never touch or recommend Lets > Encrypt. > > StartSSL's free certs are valid for 1 year. > > > > > Toolkit for ease of use: > > > > https://certbot.eff.org/ > > > > On Thu, Jul 14, 2016 at 5:52 AM, Steven Haigh <net...@crc.id.au > > <mailto:net...@crc.id.au>> wrote: > > > > And if you want a nice toolkit to make it easier: > > https://github.com/CRCinAU/startapi > > > > On 14/07/2016 7:30 PM, Enrico M.V. Fasanelli wrote: > > > https://www.startssl.com > > > > > > Ciao, > > > > > > Enrico > > > > > >> On 14 Jul 2016, at 11:22, Ian A Taylor <i...@st-andrews.ac.uk > <mailto:i...@st-andrews.ac.uk> > > >> <mailto:i...@st-andrews.ac.uk <mailto:i...@st-andrews.ac.uk>>> > wrote: > > >> > > >> Sir/Madam > > >> > > >> Can anyone recommend where I can get a free SSL certificate. > > >> > > >> > > >> -- > > >> > > >> Thanking you. > > >> > > >> Yours sincerely > > >> > > >> > > >> > > >> Ian Taylor > > >> University of St.Andrews, > > >> School of Physics & Astronomy, > > >> North Haugh, > > >> St.Andrews, > > >> Fife KY16 9SS, > > >> Scotland. > > >> > > >> e-Mail :- i...@st-and.ac.uk <mailto:i...@st-and.ac.uk> > > >> Tel:- (0)1334-463141 > > >> Fax:- (0)1334-463104 > > >> > > >> The University of St Andrews > > >> is a charity registered in > > >> Scotland : No SC013532. > > > > > > -- > > > Keep Ithaka always in your mind. > > > Arriving there is what you are destined for. (Konstantinos P. > > Kavafis). > > > > > > > > > > > > > > > > > > > -- > > Steven Haigh > > > > Email: net...@crc.id.au <mailto:net...@crc.id.au> > > Web: https://www.crc.id.au > > Phone: (03) 9001 6090 - 0412 935 897 > > > > > > > > > > -- > > Miano, Steven M. > > http://stevenmiano.com > > -- > Steven Haigh > > Email: net...@crc.id.au > Web: https://www.crc.id.au > Phone: (03) 9001 6090 - 0412 935 897 >
Re: GDM a slightly different Banner Message display issue
Are you following this: https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Desktop_Migration_and_Administration_Guide/customizing-login-screen.html ? The: #dconf update Is a crucial step. On Thu, Oct 15, 2015 at 6:35 AM, Stephen Berg (Contractor) < stephen.berg@nrlssc.navy.mil> wrote: > I've tried to set this up a couple times and somehow I get no banner > display at all. > > On an idle desktop I set the following by running dconf-editor as root, > made sure the system was up to date (SL7.1) and rebooted it. When the login > screen came up all I get is the two most recent users listed. No banner at > all. So it's not showing the banner and it is showing the recent user's. > I've looked into this issue a few times but never found a solution, so it's > probably something really simple and silly that I'm missing. > > [org/gnome/login-screen] > banner-message-enable=true > banner-message-text='You are accessing a U.S. Government (USG) Information > (...snip...)' > disable-user-list=true > enable-fingerprint-authentication=false > > -- > Stephen Berg > Systems Administrator > NRL Code: 7320 > Office: 228-688-5738 > stephen.berg@nrlssc.navy.mil > -- Miano, Steven M. http://stevenmiano.com
Re: A simple terminal program
I enjoy just using screen /dev/ttyUSB0 (for usb to serial to roll over cables) when I need to use a simple terminal. For a more robust day to day terminal terminator is a great alternative as well. On Mon, Jun 15, 2015 at 1:25 AM, ToddAndMargo toddandma...@zoho.com wrote: On 06/14/2015 08:53 PM, ToddAndMargo wrote: Hi All, Okay, I know this dates me, but I still do RS232 for machine shops. Dave over on the W7 group gave me this link to HTerm. http://www.der-hammer.info/terminal/ It has both a Windows and Linux version. The Windows version even runs in, cough, cough, Wine. It passed Virus Total too. And it is intuitive. I am currently installing it on my direct install FC22 flash drive, like a live USB only it works. I call it my Dead Stick. -T It required glibc.i686 gtk2.i686 libSM.i686 libpng12.i686 -- Miano, Steven M. http://stevenmiano.com
Re: SL7: Is there a GUI for systemctl?
In FC22 there is cockpit though, which does have a very nice WUI (Web User Interface) for systemctl: Here are a couple of screenshots for those features (cockpit has a multitude of other great functionality as well though, including being able to add additional hosts to any cockpit-ws). Services (Target): http://i.imgur.com/TGkHHYf.png Services (Target (abrt-ccpp.service): http://i.imgur.com/WhQaFPS.png r/s, mianosm On Sun, Jun 14, 2015 at 2:24 AM, ToddAndMargo toddandma...@zoho.com wrote: On 06/13/2015 11:04 PM, Tom H wrote: On Sun, Jun 14, 2015 at 1:45 AM, ToddAndMargo toddandma...@zoho.com wrote: On 06/13/2015 10:21 PM, Tom H wrote: On Sat, Jun 13, 2015 at 11:19 PM, ToddAndMargo toddandma...@zoho.com wrote: ? There's systemd-ui but it was dropped from Fedora in F22 and there was a discussion on systemd-devel@ about dropping it upstream earlier this year. Supposedly KDE has a GUI inside of kcm_systemd called systemd. Even hear or used such a thing? (I can't even find it.) It's packaged in Fedora as kcm_systemd. Hi Tom, I see it in FC22. I wonder if EPEL would compile one up for EL7? https://bugzilla.redhat.com/show_bug.cgi?id=1231505 The worst that could happen is that they would say no. -T
Re: can't read a lvm2 partition
You can see sdc1 because it is your /boot Do a pvscan, vgscan and see if the volumes are present. If the volume groups are present: vgchange -ay , and then mount the volumes (mount /dev/mapper/somevg-somelv /some/mount/point). Good luck! ~mianosm On Fri, May 15, 2015 at 6:18 PM, ToddAndMargo toddandma...@zoho.com wrote: Hi All, SL 6.6, x64 I have a bootable Fedora Core 21 flash drive. Gparted says it has two partitions: /dev/sdc1 ext4 500 MB /dev/sdc2 lvm2 pv fedora_localhost 14.16 GB From SL, I can see /dev/sdc1, but I can not see /dev/sdc2. What am I doing wrong? I would really like the ability to transfer files back and forth. Many thanks, -T -- Miano, Steven M. http://stevenmiano.com
Re: Clarity on current status of Scientific Linux build
Great resource/links Lamar, I especially took note of these two PDFs: http://indico.cern.ch/event/274555/session/11/contribution/39/material/slides/1.pdf (CentOS variant, however still building SL7 in parallel). http://indico.cern.ch/event/274555/session/11/contribution/54/material/slides/0.pdf (CentOS may just be fully adopted and no need for a custom Linux distribtution). Very intriguing. On Mon, Jun 23, 2014 at 9:15 AM, Lamar Owen lo...@pari.edu wrote: On 06/23/2014 03:34 AM, Alain Péan wrote: Le 22/06/2014 22:42, Mark Rousell a écrit : 6) Anything I've forgotten? It seems it is more likely that Scientific LInux 7 will become a Special Interest Group (SIG) of CentOS 7. See the presentations at the Hepix meeting in Annecy Le Vieux, last May, on SL 10 years, notably the ones from Connie Sieh and Jarek Polok: http://indico.cern.ch/event/274555/session/11/#20140519 Given two CERN people, involved in SL for a long time, are now part of the CentOS Core this does seem likely. If anyone wants to see another effort that is ongoing, I encourage you to check out Russ Herrold's work on clefos, a link to which he has already posted. -- http://stevenmiano.com/ Miano, Steven M. http://stevenmiano.com
Re: Wanted LDAP server configuration documents
This is a very good starting point: http://www.tldp.org/HOWTO/LDAP-HOWTO/installing.html On Sun, Mar 23, 2014 at 7:41 PM, Pritam Khedekar pritamkhedek...@gmail.comwrote: Dear All, Please send me some LDAP config documents if available. ASAP. -- http://stevenmiano.com/ Miano, Steven M. http://stevenmiano.com
Re: fc20 changed system logging
Hey Vladimir, Thanks for filling in the gaps. This installation that I'm on is a fresh Fedora 20 (Heisenbug) installation from media. Here is my `yum history info 1` (with some editing for brevity): sudo yum history info 1 Loaded plugins: langpacks, refresh-packagekit Transaction ID : 1 Begin time : Wed Jan 15 19:04:28 2014 Begin rpmdb: 0:da39a3ee5e6b4b0d3255bfef95601890afd80709 End time :19:52:38 2014 (48 minutes) End rpmdb : 1559:ddc0bb756493d614f12d21ac3bed86c1d42a80d4 User : System unset Return-Code: Success Packages Altered: snip Install rsyslog-7.4.2-2.fc20.x86_64 @anaconda /snip and if I rpm -qa | grep -i syslog - that's the only package that I see come up. I'd venture to guess the fact that I added on nearly every optional group during the install may have included that package. Even so in any large-scale deployment scenario I too prefer a centralized log server for easier review/management/shipment (to splunk or whatever your preferred log parser may be). Thanks again for filling in my gaps though! ~Steven On Fri, Jan 31, 2014 at 7:14 AM, Vladimir Mosgalin mosga...@vm10124.spb.edu wrote: Hi Steven Miano! On 2014.01.31 at 06:46:31 -0500, Steven Miano wrote next: I'm currently on Fedora 20 (Heisenbug), and still have a /var/log/messages. Actually, it means that you probably upgraded from F19 or installed logging service manually. On F20, one can remove rsyslog - or not install it, if doing fresh install - and everything will be fine. I would add that the old messages are still there - and journalctl simply brings another method of finding the information you're looking for. Yes, but it stores it in different place; it would work even if you remove /var/log/messages journalctl -b is equivalent to dmesg. Not quite. It is equivalent to dmesg+messages+.xsession-errors (or gdm log) when run from root or .xsession-errors/gdm equivalent when run from user. Of course, you can ask it to show you only certain categories of messages; that's main difference to main logging from user perspective: before, log files were split to different files by category when message arrived and stored like that, and with journald you split by category only when viewing these messages. Either way, on server systems I just don't see how journald is going to obsolete rsyslog, remote logging ability can be a real lifesaver at times, that alone justifies rsyslog usage.. Until they implement it in journald, at least. -- http://stevenmiano.com/ Miano, Steven M. http://stevenmiano.com
Re: fc20 changed system logging
It is very possible to do: # rpm --import https://fedoraproject.org/static/246110C1.txt # yum update yum # yum clean all # yum --releasever=20 distro-sync Source: http://fedoraproject.org/wiki/Upgrading_Fedora_using_yum#Fedora_19_-.3E_Fedora_20 On Fri, Jan 31, 2014 at 1:10 PM, ToddAndMargo toddandma...@zoho.com wrote: On 01/31/2014 04:14 AM, Vladimir Mosgalin wrote: Actually, it means that you probably upgraded from F19 or installed logging service manually. Hi Vladimir, Every time I have inquired of Fedora about new versions, they just told me to wipe and reinstall. Is it possible to upgrade now? yum upgrade? -T -- ~~ Computers are like air conditioners. They malfunction when you open windows ~~ -- http://stevenmiano.com/ Miano, Steven M. http://stevenmiano.com