CentOS 7 is now released
Hi all, CentOS 7 (final) has been released today. See : https://www.centos.org/ It took 27 days to release it after the release oh RHEL 7. It is much better than the release of CentOS 6 (242 days, or 8 months, after the release of RHEL 6). No SIG for SL mentionned in the release notes. Alain
Re: Filezilla: GnuTLS error when using FTPES
Hi, Le 17/01/2012 16:27, palmerlwatson a écrit : When I'm trying to log in to a server via FTPS with Filezilla I get these FTP messages from the server: Response: 220-This is a private system - No anonymous login Response: 220 You will be disconnected after 60 minutes of inactivity. Command:AUTH TLS Response: 234 AUTH TLS OK. Status: Initializing TLS... Error: GnuTLS error -50: The request is invalid. Error: Failed to initialize TLS. Error: Could not connect to server It worked great before on Fedora 14/Filezilla. But now I'm using Scientific-Linux with Filezilla (I reinstalled my PC from Fedora to Scientific Linu), and it gives this. What am I missing? I found today a thread on Filezilla forum, stating that beginning with Filezilla client 3.53, 3DES "insecure" encryption is no more allowed. For vsftpd, a solution quoted is to add this option to vsftp.conf : ssl_ciphers=HIGH I tried, this works. See : http://forum.filezilla-project.org/viewtopic.php?f=2&t=23280 Alain -- ====== Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Fwd: Re: Filezilla: GnuTLS error when using FTPES
I forgot to send it to the list. Alain Message original Sujet: Re: Filezilla: GnuTLS error when using FTPES Date : Tue, 17 Jan 2012 22:07:40 +0100 De :Alain Péan Pour : palmerlwatson Hi, I have the exact same problem runnig Filezilla under windows, latest version 3.5.3. The previous version 3.5.2 works. The FTP server is on an Ubuntu 8.04 LTS 64 bit, using vsftpd : $ vsftpd -v vsftpd: version 2.0.6 So I can confirm it seems to be a bug with the latest Filezilla version (3.5.3), using FTPES. Here is the error message I get : GnuTLS error -12: A TLS fatal alert has been received. Alain Le 17/01/2012 19:16, palmerlwatson a écrit : I: /etc/init.d/iptables stop and tried it again with Filezilla. The same error message. I tried it with gftp: I got connection timed out (iptables still off) So I tried with an Ubuntu 11.04 (on the same machine/network, but in VirtualBox). I installed Filezilla from the Ubuntu repositories: root@ubuntu:/home/ubuntu# dpkg -l | grep -i filezilla ii filezilla 3.3.5.1-1ubuntu1 Full-featured graphical FTP/FTPS/SFTP client ii filezilla-common 3.3.5.1-1ubuntu1 Architecture independent files for filezilla root@ubuntu:/home/ubuntu# lsb_release -a No LSB modules are available. Distributor ID:Ubuntu Description: Ubuntu 11.04 Release: 11.04 Codename: natty root@ubuntu:/home/ubuntu# and it worked!! So it looks like the problem isn't on FTP server side. The problem is on FTP client side. If any further info needed please tell me, and I will be glad to give that information. Since I didn't find "ftp-ssl" package in the SL repositories, I couldn't try out the thing from terminal.. The FTPS password is simple, that's not the problem. Here are my configured repositories: [root@pc ~]# yum repolist repo id repo name status adobe-linux-x86_64 Adobe Systems Incorporated 2 rpmforge RHEL 6.1 - RPMforge.net - dag 4.091 skype Skype Repository 1 sl Scientific Linux 6.1 - x86_64 6.251 sl-security Scientific Linux 6.1 - x86_64 - security updates 847 virtualbox VirtualBox 17 repolist: 11.209 [root@pc ~]# Could it be a problem with the CertificateAuthorities installed (or not installed?) on my PC? Thanks for any help. 2012/1/17 Felip Moll: I remember that no much time ago there was an incompatibility with Proftpd and Filezilla and I remember some other problems with these two programs. For example: http://forum.filezilla-project.org/viewtopic.php?f=2&t=23101 I suggest you to search on Google for your specific problem to be sure that the cause is your computer, because maybe it is not. With gFTP or another ftp client does it work? best regards 2012/1/17 Ray Van Dolson On Tue, Jan 17, 2012 at 04:27:52PM +0100, palmerlwatson wrote: When I'm trying to log in to a server via FTPS with Filezilla I get these FTP messages from the server: Response: 220-This is a private system - No anonymous login Response: 220 You will be disconnected after 60 minutes of inactivity. Command:AUTH TLS Response: 234 AUTH TLS OK. Status: Initializing TLS... Error: GnuTLS error -50: The request is invalid. Error: Failed to initialize TLS. Error: Could not connect to server It worked great before on Fedora 14/Filezilla. But now I'm using Scientific-Linux with Filezilla (I reinstalled my PC from Fedora to Scientific Linu), and it gives this. What am I missing? I installed Scientific Linux as a "Normal Desktop" from the 64bit DVD: [user@pc ~]$ lsb_release -a LSB Version: :core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch Distributor ID:Scientific Description:Scientific Linux release 6.1 (Carbon) Release:6.1 Codename:Carbon [g@a ~]$ rpm -qa | egrep -i "filezilla|gnutls" gnutls-2.8.5-4.el6.x86_64 [user@pc ~]$ I downloaded Filezilla from here (FileZilla_3.5.3_x86_64-linux-gnu.tar.bz2): http://filezilla-project.org/download.php?type=client because I didn't find it in the repositories. Does anybody knows why do I get this answer? I mean what is the solution to make it work? (again: connection worked with Fedora 14 on the same day.) Thank you! Maybe you have some sort of smart firewall in the middle which doesn't recognize the encrypted traffic as part of an FTP session? (Or perhaps such a firewall exists on the remote side). Ray
Re: Need Fortran advice
Le 04/11/2011 13:01, Ichihara Takashi a écrit : On 2011.11.1 at 10:58 AM(JST) , Todd And Margo Cheste wrote, Hi Guys, (snif) I do not know squat about Fortran compilers. Question: is there a good Fortran environment I should put on his new computer? Bear in mind when you answer, that if my customer likes your suggestion, doctoral engineering students will be required to use it (tormented with it). Many thanks, -T My recommendation is Intel Fortran compiler. http://software.intel.com/en-us/articles/intel-compilers/ Especially, for the Non-Commercial Software Development, Free Download is available. http://software.intel.com/en-us/articles/non-commercial-software-development http://software.intel.com/en-us/articles/non-commercial-software-download/ Takashi As a member of a french research laboratory which uses Intel compilers, I must add a precision : Non Commercial use means that you are not paid for your work, otherwise Intel compilers are not free, even on Linux. See Intel FAQ : http://software.intel.com/en-us/articles/non-commercial-software-faq/ And especially the first answer : *"What does noncommercial mean?* Non-commercial means that you are not getting compensated in any form for the products and/or services you develop using these Intel® Software Products." It is not the case for must of us. So, for free use, go for gfortran, but my experience is that indeed Intel compilers make faster code. Alain -- ====== Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Re: Detecting AD server for Kerberized authentication on SL 5.6 and 6.1
Hi Nico, It is strange that the DNS servers does not display the Active Directory domain servers IP. It is the default behaviour. Active Directory relies on DNS. Are you sure your Linux machine is actually using the Active Directory windows DNS servers in resolv.conf ? It should, for AD authentication to work. In this case, you should retrieve the domain servers IP (same as KDC), by typing : # dig AD-domain.example.com. Alain Le 24/08/2011 14:04, Nico Kadel-Garcia a écrit : I'm quite aware that it's possible to authenticate local users against the Kerberos services of Active Directory, but seek a way to detect what the actual local KDC is in an environment that does not seem to publish the relevant SRV records for its Active Directory servers. Does anyone know a graceful way to deduce this, without running a full-blown nmap across the local network or trying to bother the Active Directory admins to reveal their secrets?
Re: Update
Le 22/07/2011 06:26, Federico Alves a écrit : I wonder what is going on. We are taking too long to release the current version. Cern alone is forging ahead they already have a beta version that tracks RedeHat 6.1. Scientific Linux has a 6.1 Release Candidate available, see : http://listserv.fnal.gov/scripts/wa.exe?A2=ind1107&L=scientific-linux-devel&T=0&P=4419 They plan to release RC2 next tuesday, and final the same week... CentOS did not release anything yet, so it is not so easy... Alain
Re: Back to Science!!! Sage!!! open source mathematics software
Le 01/07/2011 17:16, Timmy Siu a écrit : Dear All SL User: I found this mathematics software. It is very big in size (about 1GB after extraction). It doesn't have any GUI. It only comes in Linux binary, no windows binary. Can anyone give some hint to using it and what task can it compute?? :-( http://www.sagemath.org/index.html Hi Timmy, If I remember correctly, Sage has indeed a GUI, but through a web interface. See : http://www.sagemath.org/tour-graphics.html It is in fact a Python software mixing a lot of scientific tools (Numpy, scipy, Matplotlib and so on...). It has indeed a windows version (why not, it is Python, and web interface ?), and also for mac osx, solaris... http://www.sagemath.org/download-windows.html Alain -- == Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Re: value of RAM reported not correct in SLC 5.6
Le 17/06/2011 17:10, Lamar Owen a écrit : http://serverfault.com/questions/46600/rhel5-xen-dom0-max-memory KVM and Virtualization are both groups; installing the Virtualization group pulls in kernel-xen; this means you get a DomO instead of the kernel on bare metal, and you hit the DomO configured limit. Yes, I confused with SL 6.0 (RHEL 6.0) where Xen support has been removed, in favor of KVM . So it is indeed a limitation of Xen, with host as Dom0. Alain -- == Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Re: value of RAM reported not correct in SLC 5.6
Le 17/06/2011 10:45, Aldo Saavedra a écrit : One of the RPMs installs/enabled virtualisation. Once installed the system itself becomes the first virtual machine (VM) on bootup without actually configuring any VMs. According to google searches the max RAM you can assign a VM is 32GB. Hi Aldo, This seems to me a little bit weird. I am myself using KVM, but with less than 32 GB on the host, and I am not aware that the system itself (the host) becomes the first VM. I think it is doubtful, perhaps it would stand better for Xen ? For a VM host, the more Ram you have, the better it is, so I don't see why it would be limited to 32 GB. I am neither aware of a limit of 32 GB per guest (64 bits). I even found a document from OpenSuse stating a (tested) limit of 512 GB : http://doc.opensuse.org/products/draft/SLES/SLES-kvm_draft/cha.kvm.limits.html Alain -- == Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Re: value of RAM reported not correct in SLC 5.6
Le 10/06/2011 17:03, Stijn De Weirdt a écrit : we are running SL5.6 x86_64 (2.6.18-238.9.1) on a 96GB machine without issues. Hi all, It's a little bit off topic, but I thought that SLC was the CERN variant of Scientific Linux. And SL 5.6 is not yet released. I saw that SLC 5.6 was released months ago and is now the official release for CERN. So, for my information (and perhaps others), why is there a SLC 5.6 release and not yet a SL 5.6 one ? Thanks for the clarification ! Alain
Re: clock drift under Hyper-V
Le 27/05/2011 18:17, Orion Poplawski a écrit : On 05/27/2011 12:14 AM, Jaroslaw Polok wrote: Hello On 05/26/2011 10:28 PM, Orion Poplawski wrote: On 05/26/2011 07:29 AM, Zack Yovel wrote: 1. Hyper-V does not support RHEL. The only linux distro it supports is SUSE. I'm running a couple of CentOS 5.6 instances under Hyper-V. Horrible clock drift issues, but otherwise okay. You may want to add: divider=10 clocksource=acpi_pm to kernel arguments in /etc/grub.conf to correct the clock drift problem. Doesn't help me. Thanks though. I would have thought that the Hyper-V timesync integration driver would help too, but not for me. Hyper-V does support RHEL, at least 5 (not yet 6 perhaps). See : http://www.redhat.com/promo/svvp/ But if you have clock drift, why don't you setup an NTP server inside your VM ? Alain -- == Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==
Re: May be a bug in SL-60-i386-2011-03-03-Everything-DVD1.iso
Le 15/04/2011 04:29, Nico Kadel-Garcia a écrit : I've heard good things about KVM performance, but didn't see it in RHEL/CentOS/SL 5.x. I'll be very intersted to see the results of the Debian testing I'm doing in the near future. Hi Nico, Just for curiosity, what do you consider as KVM solution under Debian ? Alain -- ====== Alain Péan - LPP/CNRS Administrateur Système/Réseau Laboratoire de Physique des Plasmas - UMR 7648 Observatoire de Saint-Maur 4, av de Neptune, Bat. A 94100 Saint-Maur des Fossés Tel : 01-45-11-42-39 - Fax : 01-48-89-44-33 ==