Re: Offline update FAQ?

[Tam Nguyen]

Chris,
what happen if you needed to add critical package right after you burn the
DVD?  Would you keep cooking more DVDs?

Use a USB drive because it's more flexible.  It allows you to copy, remove,
and replace packages.
Use command "rsync" for transfer and replace update package, but you can
always choose other command that you're comfortable with.




On Wed, Mar 2, 2016 at 10:12 AM, Howard, Chris  wrote:

> Can someone point me to a good cookbook for doing offline updates?
>
> My fuzzy understanding is that I would build an internet-accessible
> SL system, then periodically create my own repository
> and from that cook a DVD and take it to the non-internet-accessible machine
> and run Yum against it.
>
> I need help filling in the steps.
>
> Chris
>

Re: nvidia-xconfig: unrecognized option: --twinview

[Tam Nguyen]

Have you tried going to System -- Preferences --Nvidia X Server Settings?

On Fri, Sep 19, 2014 at 10:47 AM, James M. Pulver jmp...@cornell.edu
wrote:

  I have a new SL6.5 install, with nvidia drivers installed for a quadro
 600 with 2 DVI out ports. I am trying to re-enable both monitors, using my
 trusty:

 nvidia-xconfig –twinview



 but I get:

 nvidia-xconfig: unrecognized option: --twinview



 Invalid commandline, please run `nvidia-xconfig --help` for usage
 information.



 What’s up? Any idea how to have twinview work, or what command replaced
 it? The help output seems to just omit that sort of functionality
 altogether…



 Any ideas?



 --

 James Pulver

 CLASSE Computer Group

 Cornell University

Re: do_IRQ?

[Tam Nguyen]

I had similar error on one of our nodes.  My was a bug on the motherboard.
The work around for me was to add a kernel-boot option to the grub-loader
like so:

1. vim /etc/grub.conf
2. kernel .quiet *pci=nomsi,noaer*


On Sat, Jun 7, 2014 at 11:47 PM, ToddAndMargo toddandma...@zoho.com wrote:

 Hi All,

 SL 6.5, 64 bit

 About once every four hours or so, this pops up in
 my xterms:

 kernel:do_IRQ: 1.165 No irq handler for vector (irq -1)

 Doesn't seems to hurt anything.  Any idea what it
 means?

 Many thanks,
 -T

Re: Google chrome stable 28.0 installation problem

[Tam Nguyen]

Download Google rpm here: http://orion.lcg.ufrj.br/RPMS/myrpms/google/
then yum install the download rpm.

-Tam




On Tue, Jul 2, 2013 at 6:45 PM, Yasha Karant ykar...@csusb.edu wrote:

 Add/remove software shows:

 google-chrome-stable-28.0.**1500.70-209565 (x86_64)

 but installation results in a transaction error:

 google-chrome-stable-28.0.**1500.70-209565.x86_64 requires
 libstdc++.so.6(GLIBCXX_3.4.15)**(64bit)

 and the dependency does not automatically resolve.  Is there a workaround
 for this
 issue?

 Yasha Karant

Re: NFS problem on ls command

[Tam Nguyen]

We ran into this issue couple of weeks ago.  There is a ticket about this
bug with the NFS v3+4.  Our work around was to mount it with a different
version of NFS.

https://bugzilla.redhat.com/show_bug.cgi?id=736394#c13 is also
referenced by http://bugs.centos.org/view.php?id=6241.

-T

On Thu, Mar 28, 2013 at 12:58 PM, Evan Sather esat...@anl.gov wrote:

  Hi Everyone,

 We're experiencing NFS-related problems after viewing home directories on
 SL6 desktops.  SL5 clients do not experience this problem.  The NFS server
 is a SL5 machine.

 One of our desktops outputs this:

 [user@host1 ~]$ ls -ltr |tail
 ls: reading directory .: Invalid argument


 Another of our desktops outputs this:

 [user@host2 ~]$ ls -l
 ls: reading directory .: Too many levels of symbolic links

  Has anyone else seen this or a similar issue?  Does anyone have any
 suggestions?

 --
 *Evan Sather*
 Linux System Administrator
 High Energy Physics
 Argonne National Laboratory

Re: SL6.3 NFS permissions problem -

[Tam Nguyen]

How did you mount it?
did you try:
ntfs-3g /dev/xyz  /new/mount/point?

another way is in your /etc/fstab:
/dev/xyz  /new/mount/point ntfs-3g *rw* 0 0

-Tam

On Fri, Feb 1, 2013 at 10:59 AM, Bob Goodwin - Zuni, Virginia, USA 
bobgood...@wildblue.net wrote:

I keep most of my data on an NFS server and find that I can
access files to read but it wont let me save changes! I've been
looking at permissions and changing them to 777 to no avail. Is
there something I need in User/Groups?

Don't know where to look next, any suggestions appreciated,

Bob

--
http://www.qrz.com/db/W2BOD

box7   Scientific Linux 6.3

Re: ssh returns Permission denied (gssapi-keyex,gssapi-with-mic).

[Tam Nguyen]

Hi Joe,
Did you look at the sshd_config file?
I ran into a similar error output but it may not necessarily be the same
issue you're having.  In my case, the sshd_conf file on one of my users
machine was edited and renamed.  I backup that file and copy a default
sshd_config file, then test it.

Good luck.
-T

On Wed, Nov 21, 2012 at 5:16 PM, Joseph Areeda newsre...@areeda.com wrote:

 I can't figure out what causes this error.

 I can fix it by regenerating the server key on the system I'm trying to
 connect to and restarting sshd but that seems to be temporary as the same
 problem comes back in a week or so.  Rebooting the server does not fix it.

 Does anyone know what that error means?  I am using ssh not gsissh
 although I do have globus toolkit installed to contact grid computers.

 I'm pretty sure it's a misconfiguration on my part but I can't figure out
 what I did or didn't do.

 Thanks,

 Joe

Re: wireless USB again

[Tam Nguyen]

I have been using the same Hawking USB wireless Disk Adapter on my
Scientific Linux.  It worked fine.  Google for the Hawking driver for
Linux.  It is out there.  If you decided to get Hawking, let me know and
I'll give you the driver.  I believe I've it backup on my usb drive.

Re: Scientific Linux 6.3 i386/x86_64 is now available

[Tam Nguyen]

Your update command was wrong.  Fix 63 to 6.3.
Therefore, it should be:
 yum --releasever=6.3 update#there is a dot(.) between the 6 and 3.




On Fri, Aug 10, 2012 at 1:59 PM, Jon Brinkmann brinkm...@nmsu.edu wrote:

 On Fri, Aug 10, 2012 at 08:44:24AM -0500, Chris wrote:
  I had to do an upgrade, not an update to get the new version.
 
  yum --releasever=6x upgrade

 I too had problems using update.  I got:

 # yum --releasever=63 update
 Loaded plugins: security

 http://ftp.scientificlinux.org/linux/scientific/63/x86_64/os/repodata/repomd.xml:
 [Errno 14] PYCURL ERROR 22 - The requested URL returned error: 404
 Trying other mirror.

 http://ftp1.scientificlinux.org/linux/scientific/63/x86_64/os/repodata/repomd.xml:
 [Errno 14] PYCURL ERROR 22 - The requested URL returned error: 404
 Trying other mirror.

 http://ftp2.scientificlinux.org/linux/scientific/63/x86_64/os/repodata/repomd.xml:
 [Errno 14] PYCURL ERROR 6 - Couldn't resolve host '
 ftp2.scientificlinux.org'
 Trying other mirror.

 ftp://ftp.scientificlinux.org/linux/scientific/63/x86_64/os/repodata/repomd.xml:
 [Errno 14] PYCURL ERROR 9 - Server denied you to change to the given
 directory
 Trying other mirror.
 Error: Cannot retrieve repository metadata (repomd.xml) for repository:
 sl. Please verify its path and try again

 I reverted to the old method:

 # rpm -Uvh
 ftp://ftp.scientificlinux.org/linux/scientific/6.3/i386/os/Packages/yum-conf-sl6x-1-2.noarch.rpm
 Retrieving
 ftp://ftp.scientificlinux.org/linux/scientific/6.3/i386/os/Packages/yum-conf-sl6x-1-2.noarch.rpm
 Preparing...###
 [100%]
1:yum-conf-sl6x  ###
 [100%]
 # yum update yum
 ...
 # yum update
 ...

 Jon

Re: cryptsetup luksOpen /dev/sdb1 lin-bak, but it disappears after I reboot

[Tam Nguyen]

Thanks Todd.

-Tam

On Fri, Aug 3, 2012 at 6:48 PM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 On 07/31/2012 05:29 AM, Tam Nguyen wrote:

 You are very welcome, Todd.
 Please share with us your finding.  I would love to learn the mystery
 behind your issue.

 -Tam


 Hi Tam,

 So far:
 crypttab coughs on passwords with space:
 
 https://bugzilla.redhat.com/**show_bug.cgi?id=845698https://bugzilla.redhat.com/show_bug.cgi?id=845698

 Crypttab does not mount volume at boot:
 
 https://bugzilla.redhat.com/**show_bug.cgi?id=845701https://bugzilla.redhat.com/show_bug.cgi?id=845701

 Red Hat is pretty good about looking into these things,
 so now we wait.

 -T

Re: cryptsetup luksOpen /dev/sdb1 lin-bak, but it disappears after I reboot

[Tam Nguyen]

You are very welcome, Todd.
Please share with us your finding.  I would love to learn the mystery
behind your issue.

-Tam

On Tue, Jul 31, 2012 at 1:19 AM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 On Mon, Jul 30, 2012 at 10:55 PM, Todd And Margo Chester
 toddandma...@gmail.com mailto:toddandma...@gmail.com** wrote:

 On 07/30/2012 06:26 PM, Tam Nguyen wrote:

 Todd,
 let's keep it simple, get it right and work, then you can
 take off from
 there.  So do this:
 vi /etc/fstab:
 /dev/mapper/lin-bak   /mnt  ext4   defaults  0  0


 Hi Tam,

 I have tried this.  With and without the first
 parameter set to allow dump, which I do need.


 vi /etc/crypttab:
 lin-bak/dev/sdb1


 I have tried this.  At boot I get mount: special device
 /dev/mapper/lin-bak does not exist


 mount -a


 without /dev/mapper/lin-bak, it won't mount.

 reboot


 /dev/mapper/lin-bak disappears


 Then we'll go from there.
 -Tam


 You know what I have not tried, removing the
 dash from lin-bak in crypttab


 Makes no difference.


 -T


 I am mounting now by using rc.local:

 # if I can not get /etc/crypttab to work, this will populate
 # /dev/mapper with lin-bak and mount /lin-bak
 if [ ! -L /dev/mapper/lin-bak ]; then

 cryptsetup luksOpen /dev/sdb1 lin-bak  /etc/crypttab.lin-bak.key
 if [ -L /dev/mapper/lin-bak ]  [ -n $(mount -l | grep -i
 lin-bak) ]; then
mount /lin-bak
 fi
 fi


 I suppose I don't need the
 [ -n $(mount -l | grep -i lin-bak) ]
 But, I was pleased with my coding, so I left it in.

 -T




 On 07/30/2012 08:04 PM, Tam Nguyen wrote: Todd,

  I am glad it works for you.  I get my working on the VM without touching
  the rc.local file.  You should research on it.
 
  Good luck

 Hi Tam,

 Thank you for the copious amounts of time and your
 knowledge you shared with me helping me!

 Red Hat is going to get a few bug reports out of this
 in the next few days!

 -T

Re: cryptsetup luksOpen /dev/sdb1 lin-bak, but it disappears after I reboot

[Tam Nguyen]

There is no default directory /var/mapper.  It is supposed to be
/dev/mapper.
Can you do all of that steps again, but before you reboot, can you please
give me the output of the following files:

cat /dev/mapper
cat /etc/fstab
cat /etc/crypttab



On Sun, Jul 29, 2012 at 10:59 PM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 On Sun, Jul 29, 2012 at 7:37 PM, Todd And Margo Chester
 toddandma...@gmail.com mailto:toddandma...@gmail.com** wrote:

 Hi All,

 I can set up /dev/mapper/lin-bak with

  # cryptsetup luksOpen /dev/sdb1 lin-bak

 but it disappears after I reboot. This messes up my
 crypttab/fstab. Any idea what I am doing wrong?

 Many thanks,
 -T



 On 07/29/2012 06:15 PM, Tam Nguyen wrote: Hi Todd,

  Did you create a file journal (mkfs...) after you executed the command?:
 
# cryptsetup luksOpen /dev/sdb1 lin-bak
 
 
  Basic steps are:
  1) cryptsetup luksFormat /dev/xyz
  2) cryptsetup luksOpen /dev/xyz  abc   ---then verify it in /dev/mapper
  3) mkfs.ext4 /dev/mapper/abc --- i like to use ext4.  Do research
  on this journal if you're not clear.
  Now that we got it settled.  Come the fun part- automounting:
  4) configure your /etc/fstab
  5) then configure your /etc/crypttab
  Before you reboot your machine, do a tested mount:
   mount -a
 
  -Tam
 


 Yes, did all that.   I can mount too.  But, when I reboot,
 lin-bak disappears from /var/mapper.   AAA!

 -T

Re: cryptsetup luksOpen /dev/sdb1 lin-bak, but it disappears after I reboot

[Tam Nguyen]

Todd,
Before you run mkfs, understand that your device sdb1 will be
formatted(all previous data will be gone).  So be VERY CAREFUL with mkfs



On Sun, Jul 29, 2012 at 7:37 PM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 Hi All,

 I can set up /dev/mapper/lin-bak with

 # cryptsetup luksOpen /dev/sdb1 lin-bak

 but it disappears after I reboot. This messes up my
 crypttab/fstab. Any idea what I am doing wrong?

 Many thanks,
 -T

Re: LUKS and fstab question

[Tam Nguyen]

You need to map it in the file /etc/crypttab.

You want to configure your /etc/crypttab file to look like this:
lin-bak /dev/sdb1

On Sat, Jul 28, 2012 at 9:40 PM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 Hi All,

 Xfce 4.8
 Scientific Linux 6.2, 64 bit

 I have just encrypted my backup drive.  Is there anyway
 to get it into my fstab?

 Problem is rebooting removed the label I created in
 /dev/mapper with

  # cryptsetup luksOpen /dev/sdb1 lin-bak

 and in fstab, I can add:
   /dev/mapper/lin-bak  /lin-bak  ext4  defaults  1 0

 But /dev/mapper/lin-bak vanishes on me after a reboot.

 I can double click on the icon on my desktop and
 it will mount in /media/lin-bak.  But this plays
 havoc on my scripts.  Gives me a long funny name
 in /dev/mapper too, which disappears when you
 dismount.

 Be nice to be able to get the drive into my fstab.
 If not, how do I mount it from the command line?

 If I try to mount directly, I get

  # mount  /dev/sdb1  /lin-bak
  mount: unknown filesystem type 'crypto_LUKS'

 Perplexed,
 -T

Re: LUKS and fstab question

[Tam Nguyen]

I haven't tested it with password that contains space.  Try escape with
back slash key( \ ).



On Sun, Jul 29, 2012 at 12:30 AM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 On Sat, Jul 28, 2012 at 9:40 PM, Todd And Margo Chester
 toddandma...@gmail.com mailto:toddandma...@gmail.com** wrote:

 Hi All,

 Xfce 4.8
 Scientific Linux 6.2, 64 bit

 I have just encrypted my backup drive.  Is there anyway
 to get it into my fstab?

 Problem is rebooting removed the label I created in
 /dev/mapper with

   # cryptsetup luksOpen /dev/sdb1 lin-bak

 and in fstab, I can add:
/dev/mapper/lin-bak  /lin-bak  ext4  defaults  1 0

 But /dev/mapper/lin-bak vanishes on me after a reboot.

 I can double click on the icon on my desktop and
 it will mount in /media/lin-bak.  But this plays
 havoc on my scripts.  Gives me a long funny name
 in /dev/mapper too, which disappears when you
 dismount.

 Be nice to be able to get the drive into my fstab.
 If not, how do I mount it from the command line?

 If I try to mount directly, I get

   # mount  /dev/sdb1  /lin-bak
   mount: unknown filesystem type 'crypto_LUKS'

 Perplexed,
 -T



 On 07/28/2012 07:31 PM, Tam Nguyen wrote: You need to map it in the file
 /etc/crypttab.

 
  You want to configure your /etc/crypttab file to look like this:
  lin-bak /dev/sdb1
 

 Ah ha!  Thank you!

 In /etc/crypttab, how do you handle passwords with spaces in
 them?  I think it gags on quote marks.

 -T

Re: how do I disable background updates?

[Tam Nguyen]

Hi,
please look into the directory /etc/cron.daily/ and see if there is a
yum.cron file.  Also, it's worth to investigate files in the directory
/etc/yum.repo.d/.



On Mon, Jul 9, 2012 at 7:03 PM, Todd And Margo Chester 
toddandma...@gmail.com wrote:

 Hi All,

 According to /var/log/yum.log, something is doing back
 ground updates.

 This morning the flash-plugin updated after I downgraded
 it yesterday and I got a libvirt updated that crashed
 my VMs.  I did not ask for these updates.  I am afraid to go
 on the Internet!

 How do I turn off these background updates?

 Many thanks,
 -T

Re: sendmail questions

[Tam Nguyen]

Hi Eve,
For question 2, you would want to look into the file /etc/postfix/generic.
 It has detail info and good examples.

Nook color to Android + Linux distro

[Tam Nguyen]

Hi all,
This is knowledge-share for anyone who has Android phone or tablet and
interested in getting Linux distro onto your android phone or tablet.
I just purchased a $150 Nook Color (ereader), jailbreak it, and got Android
installed.  With Android in place, install Linux with the Linux Installer
app was pretty smooth.
Instruction to install Linux distro onto your android.
http://android.galoula.com/en/LinuxInstall/QuickTutorial.html

If you needed help with the above steps, I am happy to help.
Have fun

Btw, after jailbreaking your Nook Color, yes you can still read your
ebooks, pdf files, and doc with app like adobe reader, qPDF, etc.
Tam

Re: Whitelisting websites

[Tam Nguyen]

Hi Christopher,
-You can ALLOW vs. DENY, REJECT using /etc/sysconfig/iptables rules.

-You can also, in the httpd.conf file, under the directives *Order
allow,deny*, you can specify allow or deny access to ip address

To deal with DHCP or IPs change, you should research RARP on how to request
IP address from Physical address.  Then you will have to come up with a
script that will updated your server.

Good luck


On Fri, May 11, 2012 at 3:33 PM, Christopher Tooley ctoo...@uvic.ca wrote:

 Hello All,

 I've been requested to whitelist websites for a local user here,
 apparently the internet is extremely distracting for work, save for certain
 sites - has anyone done something like this before? I know I could put IPs
 and website addresses in /etc/hosts, but I don't want to have to fix the
 hosts file whenever IPs change.

 This will be entirely for one computer.

 The only thing I can think of is to have a cron script that will
 periodically update the /etc/hosts file with the correct IPs and addresses
 - any other suggestions?

 Thanks,
 -Chris

Re: 64-bit wine, recently broken multiarch deps?

[Tam Nguyen]

Hi,
I ran into similar problem couple of months ago.  This worked for me and
hopefully for you too.  Need this latest epel:
Originally from here:  https://fedoraproject.org/wiki/EPEL
sub-link:
http://linux.mirrors.es.net/fedora-epel/6/i386/repoview/epel-release.html

Re: new to scientific

[Tam Nguyen]

Hi,
I think this is what you're looking for:
https://www.centos.org/modules/newbb/viewtopic.php?topic_id=32993

Re: mount nfs server exit with time out error

[Tam Nguyen]

Hi,
please take a look at this:
http://linux-ip.net/html/ether-arp.html

good luck

On Sun, May 6, 2012 at 12:46 PM, Matthias Hundertmark mhund...@gmx.dewrote:

 Hi,

 I'm using Scientific 6.2 with kernel vmlinuz-2.6.32-220.13.1.el6.**x86_64
 and I can't mount a folder on  nfs server. The server run well, the folders
 could be mounted with my previous version.
 The showmount command works fine on Scientific but when I mount a folder a
 time out error occur.
 The following tcpdump show what happen when I start the mount command on
 esprimo, the dump was created by the server octopus:

 16:17:04.247339 arp who-has octopus tell vigor
 16:17:04.247410 arp reply octopus is-at 00:a1:b0:a1:2d:94 (oui Unknown)
 16:17:06.692464 IP esprimo.57894  octopus.domain: 44264+ A?
 octopus.xxx.xxx. (46)
 16:17:06.692472 IP esprimo.57894  octopus.domain: 28144+ ?
 octopus.xxx.xxx. (46)
 16:17:06.693684 IP octopus.domain  esprimo.57894: 44264* 1/1/1 (96)
 16:17:06.694142 IP octopus.domain  esprimo.57894: 28144* 0/1/0 (95)
 16:17:06.706010 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:06.706124 IP octopus.nfsd  esprimo.667: R 0:0(0) ack 1446085413 win
 0
 16:17:07.707005 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:07.707112 IP octopus.nfsd  esprimo.931: R 0:0(0) ack 2904100776 win
 0
 16:17:09.708045 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:09.708164 IP octopus.nfsd  esprimo.898: R 0:0(0) ack 1643028723 win
 0
 16:17:13.709094 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:13.709217 IP octopus.nfsd  esprimo.823: R 0:0(0) ack 3627061754 win
 0
 16:17:21.710189 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:21.710298 IP octopus.nfsd  esprimo.827: R 0:0(0) ack 1741549279 win
 0
 16:17:24.246462 arp who-has esprimo tell vigor
 16:17:31.711291 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:31.711431 IP octopus.nfsd  esprimo.1007: R 0:0(0) ack 2248962949win 0
 16:17:36.710968 arp who-has octopus tell esprimo
 16:17:36.711021 arp reply octopus is-at 00:a1:b0:a1:2d:94 (oui Unknown)
 16:17:41.712389 IP esprimo.1946382194  octopus.nfs: 0 proc-285212672
 16:17:41.712516 IP octopus.nfsd  esprimo.790: R 0:0(0) ack 3337005692 win
 0
 16:17:46.711600 arp who-has esprimo tell octopus
 16:17:46.711709 arp reply esprimo is-at 00:30:05:d1:60:2a (oui Unknown)
 16:17:53.234186 IP esprimo.60578  octopus.ssh: P 1:49(48) ack 192 win 501
 nop,nop,timestamp 4782694 1654367

 I have only basic knowledge about TCP/IP but it's seems that esprimo start
 the connection with two request and use an invalid port number.

 Is there somebody who know what's going wrong?

 Thank you for your support.

Re: mount nfs server exit with time out error

[Tam Nguyen]

Btw, I just checked my old notes, which I copied and pasted below.
 Hopefully this will shed some light into your issue:


1. The server first checks its routing table to see which router
provides the next hop to the destination network.
2. If there is a valid router, let's say with an IP address of
192.168.1.1, the server checks its ARP table to see whether it has the MAC
address of the router's NIC. You could very loosely view this as the server
trying to find the Ethernet serial number of the next hop router on the
local network, thereby ensuring that the packet is sent to the correct
device.
3. If there is an ARP entry, the server sends the IP packet to its NIC
and tells the NIC to encapsulate the packet in a frame destined for the MAC
address of the router.
4. If there is no ARP entry, the server issues an ARP request asking
that router 192.168.1.1 respond with its MAC address so that the delivery
can be made. When a reply is received, the packet is sent and the ARP table
is subsequently updated with the new MAC address.
5. As each router in the path receives the packet, it plucks the IP
packet out of the Ethernet frame, leaving the MAC information behind. It
then inspects the destination IP address in the packet and use its routing
table to determine the IP address of the next router on the path to this
destination.
6. The router then uses the ARP-ing process to get the MAC address
of this next hop router. It then reencapsulates the packet in an Ethernet
frame with the new MAC address and sends the frame to the next hop router.
This relaying process continues until the packet reaches the target
computer.
7. If the target server is on the same network as the source server, a
similar process occurs. The ARP table is queried. If no entry is available,
an ARP request is made asking the target server for its MAC address. Once a
reply is received, the packet is sent and the ARP table is subsequently
updated with the new MAC address.
8. The server will not send the data to its intended destination
unless it has an entry in its ARP table for the next hop. If it doesn't,
the application needing to communicate will issue a timeout or time
exceeded error.
9. As can be expected, the ARP table contains only the MAC addresses
of devices on the locally connected network. ARP entries are not permanent
and will be erased after a fixed period of time depending on the operating
system used.

Re: SL^ and NFS4 -

[Tam Nguyen]

Hi,
See the steps below.  Please keep in mind this is very basic configuration
just to get it up and running.  Haven't cover authentication, ACL, SELinux,
etc.

install package
$ yum install nfs-utils

Add port 2049
$ vi /etc/sysconfig/iptables
-A INPUT -p tcp --dport 2049 -j ACCEPT
-A INPUT -p udp --dport 2049 -j ACCEPT

Restart iptables
$ service iptables restart

Start nfs service + survive reboot
$ /etc/init.d/nfs start
$ /etc/init.d/nfslock start
$ chkconfig nfs on

Create a test directory
$ mkdir -p /nfs_test

Edit nfs export file:
$ vi /etc/exports
/nfs_test  *(ro,sync) == esoteric indicates world accessible

Now export it:
$ exportfs -a

Verify it:
$ exportfs

Go to your client box, and test it.  Like so:
$ mount -t nfs server:/nfs_test  /client/mount/point






On Thu, May 3, 2012 at 10:34 AM, Bob Goodwin - Zuni, Virginia, USA 
bobgood...@wildblue.net wrote:

   Can someone suggest a clear instruction for setting up an NSF4
   server on SL6.2/64, preferably with an example.

   I have NFS3 working on SL5 but haven't been able to get this new
   one working ...

   Thanks,

   Bob

   --http://www.qrz.com/db/W2BOD

   box7

Re: SL^ and NFS4 -

[Tam Nguyen]

You are very welcome, Bob.
Glad that we can help.  Please share with us if you experience any issue.

Re: How do i change hostname?

[Tam Nguyen]

If you don't want to reboot your computer, then become root and type this:
[arnav@dhcppc1 ~]$ hostname lappy

then exit your terminal and open a new terminal.

The actual file to change your hostname is:
[arnav@dhcppc1 ~]$ vi /etc/sysconfig/network

If you edited file /etc/sysconfig/network, then you need to reboot your
computer.

Re: How do i change hostname?

[Tam Nguyen]

Which instruction did you follow?
To permanently change your hostname that will survive the reboot, you will
have to edit the file /etc/sysconfig/network.

the command:
$ hostname lappy
is just a temporary change.

On Wed, May 2, 2012 at 1:36 PM, Arnav Kalra arnavkalra...@gmail.com wrote:

 Yahoo. It has changed. When i reboot will i get the hostname as lappy or
 that dhcppc stuff?


 Regards,
 Arnav Kalra
 104, Sector 14
 Karnal - 132001
 Mobile - +91 9896961018
 Home - +91 184 4030104



 On Wed, May 2, 2012 at 11:04 PM, Tam Nguyen tam8gu...@gmail.com wrote:

 If you don't want to reboot your computer, then become root and type this:
 [arnav@dhcppc1 ~]$ hostname lappy

 then exit your terminal and open a new terminal.

 The actual file to change your hostname is:
 [arnav@dhcppc1 ~]$ vi /etc/sysconfig/network

 If you edited file /etc/sysconfig/network, then you need to reboot your
 computer.

Re: problems SL-6 new install -

[Tam Nguyen]

Bob,
It does sound like you might have misconfigured the repository.
I would suggest you go the yumex and xfce sites to make sure your
repository is set up correctly.

Btw, you just installed SL6.2.. did you update the rpmforge and gpgkeys?
Give this a try, If your machine is 64, then install:
*
http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
*
*
*
32 bits:
*
http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.i686.rpm
*
*
*
*finally:*

rpm --import http://apt.sw.be/RPM-GPG-KEY.dag.txt


Then try to install yumex and xfce again.



On Sun, Apr 29, 2012 at 5:02 PM, Bob Goodwin - Zuni, Virginia, USA 
bobgood...@wildblue.net wrote:

 On 29/04/12 16:49, Tam Nguyen wrote:

 Hi Bob,
 I just did a test-install yumex and xfce on my VM, and both packages
 installed successfully.  What error output did you get when you attempted
 to install them?


No package available - Nothing to do.

Which really surprised me!

Maybe I'm missing some repo? I installed from a USB-spin, or
whatever it's called used Fedora Live USB creator.

Newegg had a board and rack mount case on sale and it looks like
it will make a nice file server [NFS] that I will put under the
table. I'm presently using an old HP that takes up space on my desk.

Bob






 On Sun, Apr 29, 2012 at 3:28 PM, Bob Goodwin - Zuni, Virginia, USA 
 bobgood...@wildblue.net 
 mailto:bobgoodwin@wildblue.**netbobgood...@wildblue.net
 wrote:

  I've just installed SL6.2 on a new computer and have some
problems:

  Yum install yumex doesn't work? Yumex has a very convenient
  listing of rpms that I find convenient.

  I have not been able to yum groupinstall xfce.

  Am I doing something wrong?

  Bob

  -- http://www.qrz.com/db/W2BOD

  box7




 --
 http://www.qrz.com/db/W2BOD

 box7

Re: new user

[Tam Nguyen]

Hi Carl,
please go here:
http://listserv.fnal.gov/scripts/wa.exe?SUBED1=scientific-linux-usersA=1

This is not a wiki but similarly in-line to your search:
http://www.dedoimedo.com/computers/scientific-linux-repos.html

a little deep into yum and rpm
http://www.ibm.com/developerworks/linux/library/l-lpic1-v3-102-5/

I hope this helps.

goodluck!
-Tam



On Sat, Apr 14, 2012 at 5:22 PM, Carl Friedberg friedb...@comets.comwrote:

 Greetings,

 I've just started out with Sceintific Linux 6.2

 I have a question: how do I register for the scientificlinux.org website
 (a link, please)? I can see where to log in, but there's no link there for
 those (like me) who need an account.

 Another question: Is there a Scientific Linux wiki? I had no luck in my
 search for one.

 There's a broken link on the YUM FAQ page:

 https://www.scientificlinux.org/documentation/faq/yum.apt.repo

 The link --   Yum Wiki (end of answer to the first question:

 http://wiki.linux.duke.edu/Yum

 is broken.

 Thanks,

 Carl Friedberg
 www.about.me/carl.friedberg
 friedb...@comets.com
 www.comets.com
 Problems Solved

Re: iptables + vhost access

[Tam Nguyen]

Not knowing the configuration of your httpd.conf file and the configuration
of the local users' home directory, there is no direct answer.  Therefore,
my approach to your question is to give you a very basic setup, which would
allow users to access files in their home's directory.  You can base off of
this to make it works on your machine.
Before you do anything, backup your httpd.conf file.
Even better, do this on a test VM.

In the file httpd.conf, change these 2 directives to look like this:

   #UserDir disabled

UserDir *public_html*

this enables local users to access html files inside the the *public_html *
directory.

Let's say we want UserX to have access to his/her home directory:
mkdir /home/UserX*/public_html*

Then create an html file in the *public_html *directory,

Now comes the fun part, permission and SELinux :).
Permission:  Make sure UserX is the owner of the *public_html* directory
and all files within it (hence, recursively).
chown userx:userx *public_html*

Directory and files need read and execute permission
chmod 755

Selinux:  public_html and all files within must have one of these context
types:
  httpd_sys_content_t
 or
  public_content_rw_t

sample command:
chcon -R -t httpd_sys_content_t *public_html

*then make sure SELinux setting survives reboot, run command:
semanage fcontext -a -t httpd_sys_content_t *public_html*

verify the directory and do the same to all files inside *public_html*:
 ll  -Z

Finally, enable SELinux boolean:
 setsebool -P httpd_enable_homedirs on

Restart Apache without interrupting the users:
 apachectl graceful

Now access UserX' home directory:
http://servername_or_ip_address/~userx/

This is just a basic configuration to give you a general idea.  You will
have to customize the settings and permissions according to your server's
needs.

good luck
-Tam


On Mon, Apr 9, 2012 at 8:33 PM, Terry Northren tnorth...@gmail.com wrote:

 Hi again,
 on Apache server, how do I allow users to access files in their home
 folders?

Re: iptables + vhost access

[Tam Nguyen]

That error means you do not have the prerequisite package installs.
Install the package:

yum -y install policycoreutils-python

Since we are on the SELinux topic, I would recommend you also install:

yum -y install setools-console

Btw, looking back at your first post about Apache authentication and access
deny and allow, how did you manage to get your Apache to work in the first
place, especially configuring SELinux settings?


On Wed, Apr 11, 2012 at 10:53 AM, Terry Northren tnorth...@gmail.comwrote:

 Tam,
 I followed your directions.  I ran into an error when I executed the
 semanage command:

 semanage fcontext -a -t httpd_sys_content_t public_html

 Here is my output error:
 -bash: /usr/sbin/semanage: No such file or directory

 I went ahead and followed the rest of your tutorial.  It worked!!
 Does this mean I will have to re-configure SELinux after every reboot?


 On 4/11/12, Tam Nguyen tam8gu...@gmail.com wrote:
  Not knowing the configuration of your httpd.conf file and the
 configuration
  of the local users' home directory, there is no direct answer.
  Therefore,
  my approach to your question is to give you a very basic setup, which
 would
  allow users to access files in their home's directory.  You can base off
 of
  this to make it works on your machine.
  Before you do anything, backup your httpd.conf file.
  Even better, do this on a test VM.
 
  In the file httpd.conf, change these 2 directives to look like this:
 
 #UserDir disabled
 
  UserDir *public_html*
 
  this enables local users to access html files inside the the
 *public_html *
  directory.
 
  Let's say we want UserX to have access to his/her home directory:
  mkdir /home/UserX*/public_html*
 
  Then create an html file in the *public_html *directory,
 
  Now comes the fun part, permission and SELinux :).
  Permission:  Make sure UserX is the owner of the *public_html* directory
  and all files within it (hence, recursively).
  chown userx:userx *public_html*
 
  Directory and files need read and execute permission
  chmod 755
 
  Selinux:  public_html and all files within must have one of these context
  types:
httpd_sys_content_t
   or
public_content_rw_t
 
  sample command:
  chcon -R -t httpd_sys_content_t *public_html
 
  *then make sure SELinux setting survives reboot, run command:
  semanage fcontext -a -t httpd_sys_content_t *public_html*
 
  verify the directory and do the same to all files inside *public_html*:
   ll  -Z
 
  Finally, enable SELinux boolean:
   setsebool -P httpd_enable_homedirs on
 
  Restart Apache without interrupting the users:
   apachectl graceful
 
  Now access UserX' home directory:
  http://servername_or_ip_address/~userx/
 
  This is just a basic configuration to give you a general idea.  You will
  have to customize the settings and permissions according to your server's
  needs.
 
  good luck
  -Tam
 
 
  On Mon, Apr 9, 2012 at 8:33 PM, Terry Northren tnorth...@gmail.com
 wrote:
 
  Hi again,
  on Apache server, how do I allow users to access files in their home
  folders?
 
 
 
 

Re: iptables + vhost access

[Tam Nguyen]

We're glad to be able to help you.

The package setools-console is very handy when it comes to setting the
SELinux's user, role, and type for a specific file to allow specific access
to a specific services.

After installing setools-console, you can find out the list of SELinux
context type:
seinfo -t

Or a list of SELinux context user:
seinfo -u

Or role
seinfo -r


You will get  a long list of context types.  An example I've gave you
earlier was httpd_sys_content_t.  Try this command:

seinfo -t | grep httpd_sys

Output:
   httpd_sys_content_t    recognize that? :)
   httpd_sys_htaccess_t
   httpd_sys_ra_content_t
   httpd_sys_rw_content_t
   httpd_sys_script_t
   httpd_sys_script_exec_t

Another example, find the SELinux context type for Samba share file.
seinfo -t | grep samba

Output:
   samba_secrets_t
   samba_unconfined_script_exec_t
   samba_net_t
   samba_var_t
   samba_net_exec_t
   samba_net_tmp_t
   samba_unconfined_net_t
   samba_unconfined_script_t
   sambagui_exec_t
   samba_share_t   =  general samba share privilege
   samba_initrc_exec_t
   sambagui_t
   samba_etc_t
   samba_log_t

Lastly, to make sure your hard-work SELinux survives reboot, run:
semanage fcontext -a -t context_type_goes_here_t  file_name_goes_here

If you assigned context user, then run:
semanage fcontext -a -s context_user_goes_here_t   -t
context_type_goes_here_t file_name

Actual example:
semanage fcontext -a -s system_u  -t samba_share_t  /samba/sharedir


And of course, you can always have the option to turn off SELinux but I
would not recommend it.  The only time I turned off SELinux was when I
tested a service that kept spitting out permission denied or service not
accessible...

On Apr 3, zxq9 provided an excellent intro to SELinux.  Take a look at his
post.

Wish you the best.
-Tam



On Wed, Apr 11, 2012 at 11:32 AM, Terry Northren tnorth...@gmail.comwrote:

 Tam and Alan,
 thanks for the package.  That solved it.

 Tam, what do I do with setools-console package?

 Our Linux Admin was working on a test Apache server.  Most of the
 configuration was done by him, but he left the company.  I am picking
 up the left behind.  Coming from the Windows side, I am new to many
 aspects of Linux.  Still learning my rope.  The Scientific Linux
 community has been extremely helpful and resourceful :D.


 On 4/11/12, Tam Nguyen tam8gu...@gmail.com wrote:
  That error means you do not have the prerequisite package installs.
  Install the package:
 
  yum -y install policycoreutils-python
 
  Since we are on the SELinux topic, I would recommend you also install:
 
  yum -y install setools-console
 
  Btw, looking back at your first post about Apache authentication and
 access
  deny and allow, how did you manage to get your Apache to work in the
 first
  place, especially configuring SELinux settings?
 
 
  On Wed, Apr 11, 2012 at 10:53 AM, Terry Northren tnorth...@gmail.com
 wrote:
 
  Tam,
  I followed your directions.  I ran into an error when I executed the
  semanage command:
 
  semanage fcontext -a -t httpd_sys_content_t public_html
 
  Here is my output error:
  -bash: /usr/sbin/semanage: No such file or directory
 
  I went ahead and followed the rest of your tutorial.  It worked!!
  Does this mean I will have to re-configure SELinux after every reboot?
 
 
  On 4/11/12, Tam Nguyen tam8gu...@gmail.com wrote:
   Not knowing the configuration of your httpd.conf file and the
  configuration
   of the local users' home directory, there is no direct answer.
   Therefore,
   my approach to your question is to give you a very basic setup, which
  would
   allow users to access files in their home's directory.  You can base
 off
  of
   this to make it works on your machine.
   Before you do anything, backup your httpd.conf file.
   Even better, do this on a test VM.
  
   In the file httpd.conf, change these 2 directives to look like this:
  
  #UserDir disabled
  
   UserDir *public_html*
  
   this enables local users to access html files inside the the
  *public_html *
   directory.
  
   Let's say we want UserX to have access to his/her home directory:
   mkdir /home/UserX*/public_html*
  
   Then create an html file in the *public_html *directory,
  
   Now comes the fun part, permission and SELinux :).
   Permission:  Make sure UserX is the owner of the *public_html*
 directory
   and all files within it (hence, recursively).
   chown userx:userx *public_html*
  
   Directory and files need read and execute permission
   chmod 755
  
   Selinux:  public_html and all files within must have one of these
   context
   types:
 httpd_sys_content_t
or
 public_content_rw_t
  
   sample command:
   chcon -R -t httpd_sys_content_t *public_html
  
   *then make sure SELinux setting survives reboot, run command:
   semanage fcontext -a -t httpd_sys_content_t *public_html*
  
   verify the directory and do the same to all files inside
 *public_html*:
ll  -Z
  
   Finally

Re: iptables + vhost access

[Tam Nguyen]

Your question is not really clear me so I am interpreting it as 2 different
questions.  First, your iptables' syntax looks fine to me.  Maybe someone
in the forum will see something I may have missed.

As for your HTTP configuration, the order is mismatch.

Because you have:

Order allow,deny

Allow from badguy.com === btw, did you mean goodguy.com ???  See
 correction below.

Deny from ALL


this means you allow badguy.com to access your vhost, which is true, but
then you have Deny from ALL, which overrides the Allow from badguy.com;
therefore the final authentication is=  deny all.  Basically, no one can
access your Apache server.

Also, when you have both directives Require ... + Allow/Deny ..., you
should include directive Satisfy Any or ALL.
Satisfy Any ===  Correct access username and password  OR  an allow domain
name
Satisfy ALL === both authentications(username + password AND allow domain
name) must be met in order to have access

Put them all together, and this is what you're aiming for:


Virtualhost *:80
 DirectoryRoot ...
 ServerName terrynt.server.com
Directory /www/mysite/test
 Options Indexes FollowSymLinks
 AllowOverride None
 AuthUser Basic
 AuthName Enter Passowrd
 AuthUserFile /path/to/.password
 Require valid-user
 Order deny,allow
 Deny from ALL
 Allow from goodguy.com===  I edited from badguy.com to
goodguy.comhttp://badguy.com/
 Satisfy ALL   === more secure
/Directory
/Virtualhost

The above configuration simply means deny access to all and allow access
only to domain goodguy.com

goodluck
-Tam


On Mon, Apr 9, 2012 at 10:41 AM, =?ISO-8859-1?Q?Terry_N?= 
tnorth...@gmail.com wrote:

 Hi,
 after so many attempts of unsuccessfully restricted and allowed specified
 domain from accessing my vhost, I tried the firewall.  Firewall did not
 work.  Not sure where I messed it up.  See below, port 80, REJECT
 ip_address
 wasn't working.  That IP address was my laptop:

 HTTP:

 Virtualhost *:80
  DirectoryRoot ...
  ServerName terrynt.server.com
 Directory /www/mysite/test
  Options Indexes FollowSymLinks
  AllowOverride None
  AuthUser Basic
  AuthName Enter Passowrd
  AuthUserFile /path/to/.password
  Require valid-user
  Order allow,deny
  Allow from badguy.com
  Deny from ALL
  /Directory
 /Virtualhost

 --

 FIREWALL:

 *nat
 :PREROUTING ACCEPT [0:0]
 :OUTPUT ACCEPT [0:0]
 :POSTROUTING ACCEPT [0:0]
 -A POSTROUTING -o eth+ -j MASQUERADE
 COMMIT
 *filter
 :INPUT ACCEPT [0:0]
 :FORWARD ACCEPT [0:0]
 :OUTPUT ACCEPT [0:0]
 -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
 -A INPUT -p icmp -j ACCEPT
 -A INPUT -i lo -j ACCEPT
 -A INPUT -i eth+ -j ACCEPT
 -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
 -A INPUT -p tcp -s 192.168.1.xyz --dport 80 -j REJECT
 -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
 -A FORWARD -p icmp -j ACCEPT
 -A FORWARD -i lo -j ACCEPT
 -A FORWARD -i eth+ -j ACCEPT
 -A FORWARD -o eth+ -j ACCEPT
 -A INPUT -j REJECT --reject-with icmp-host-prohibited
 -A FORWARD -j REJECT --reject-with icmp-host-prohibited
 COMMIT

Re: network manager questions

[Tam Nguyen]

Hello Ken,
please take a look at this article.
http://kb.iu.edu/data/bbsr.html



-Tam

Re: soft link for web vhost

[Tam Nguyen]

Hi Mike,
zxq9 puts it best.
Also, cross link could cause lots of headache when you have to do
maintenance.  Assuming this is not overwhelming volume of data, my approach
would be to download the data onto my local server, secure it, then make
soft-link.

Another useful command regarding to your issue is:

semanage boolean -l | grep httpd

this command is similar to zxq9's:
getsebool -a | grep httpd

with a little explanation to each boolean.

Prerequisite package to run command  semanage  is:
yum install policycoreutils-python


How did you mount the nfs directory? I am referring to the
autofs/auto.master vs. one-line mount.

-Tam

Re: how to update scientific linux 6.1 to 6.2?

[Tam Nguyen]

Hi Stephen,
thanks for the link.  That did it for me.  About looping through the
alphabet, I was ready to write a bash script.  Luckily, my yum.repo didn't
give me issue.

-Tam

On Wed, Apr 4, 2012 at 8:06 AM, Stephen Berg (Contractor) 
stephen.berg@nrlssc.navy.mil wrote:

 On 04/04/2012 06:53 AM, zxq9 wrote:

 On 04/04/2012 03:31 PM, Eero Volotinen wrote:

 yum --releasever=6.2 update did the trick.

 2012/4/4 Eero Volotineneero.volotinen@iki.**fi eero.voloti...@iki.fi
 :

 tried normal redhat way update, without any success:

 yum upgrade
 Setting up Upgrade Process
 No Packages marked for Update


 sorry for noise to the list..


 Hi Eero,

 I believe that using --releasever=N doesn't make a permanenent change.
 You will need to set your release version to 6.2, 6x or 6rolling if you
 want to be pulling from the 6.2 repos the next time you run yum --
 otherwise you'll be puzzled why you're not getting updates.

 I'm unsure if there is a more elegant solution, but I think the only
 place to make that change permanent is by doing something like:

 sed --in-place=.bak -e s/6.1/6x/ /etc/redhat-release

 Or do the equivalent by hand. But that might be a crude hack -- Someone
 else here please pipe up if there is a better way.

 Or there is always:

 alias yum=yum --releasever=6x

 Cheers
 -z

  I use the instructions in the URL below and tweaked the process a bit
 for some local issues I have.  I found that on some systems the rather long
 list of packages it wants to update can cause yum to get a bit confused.
  So I loop through the alphabet one letter at a time running yum -y
 --releasever=6.2 update a\*, then b\*, c\* etc.  That keeps yum happy.
  After that the only packages left are a few with capital letters or
 numerals at the beginning of the package name.  Also had an issue with
 autofs, so I grab a copy of the new autofs rpm and update it locally before
 beginning the process.

 https://www.scientificlinux.**org/documentation/howto/**upgrade.6xhttps://www.scientificlinux.org/documentation/howto/upgrade.6x

 --
 Stephen Berg
 Systems Administrator
 NRL Code: 7320
 Office: 228-688-5738
 stephen.berg@nrlssc.navy.**mil stephen.berg@nrlssc.navy.mil

Re: how to update scientific linux 6.1 to 6.2?

[Tam Nguyen]

Yes, that would also work.


Thanks
-Tam


 I just do this from a terminal.  I added the sleep when I started seeing
 one yum process blocking the next for a second or two.

 *for i in {a..z}**do*
   *yum --releasever=6.2 -y update --skip-broken --nogpg ${i}\**
   *sleep* 3*done*

Re: soft link for web vhost

[Tam Nguyen]

Mike,
the link provided some clues, but you got to put them together.  For
example, in your vhost configuration, you need to have this parameter,
which mentioned in the discussion:

Options FollowSymLinks


but that alone is not enough.  If the original file is on your local
server, then you need to validate its SELinux security context type to
match your vhost's SELinux security context type.
This is what you need:
httpd_sys_content_t

Thanks
Tam

On Tue, Apr 3, 2012 at 10:52 AM, Mike mikechan...@yahoo.com wrote:

 Hi,
 I follow this discussion
 http://www.cyberciti.biz/faq/creating-soft-link-or-
 symbolic-link/ and able to create a softlink in my Directory, but it did
 not
 appear on my web browser.  Please assist

 Thank you for your time.

Re: soft link for web vhost

[Tam Nguyen]

Hey Mike,
congrat!  zxq9's awesome rundown is a good start.  Once you get the hang of
SELinux mode, your server would be secured at least couple of notches.
 Just don't go crazy with chconning, as zxq9 put it.  For practice- setup
a test VM.

Happy SELinux![?]

-Tam
35C.png

Re: mail server pop3

[Tam Nguyen]

Hi,
could you please give me output of the following files, run these commands:

grep -v ^# /etc/dovecot/conf.d/10-auth.conf
grep -v ^# /etc/dovecot/conf.d/20-pop3.conf


Thanks
Tam

Re: mail server pop3

[Tam Nguyen]

Hi Terry,
looking at your 20-pop3.conf's output, you need to uncomment the
highlighted line:
...
 # Note that Outlook 2003 seems to have problems with %v.%u format which was
  # Dovecot's default, so if you're building a new server it would be a good
  # idea to change this. %08Xu%08Xv should be pretty fail-safe.
  #
  #pop3_uidl_format = %08Xu%08Xv

To

pop3_uidl_format = %08Xu%08Xv
:wq!

then run:
/etc/init.d/dovecot restart

Thanks
Tam

On Mon, Apr 2, 2012 at 3:02 PM, Terry Northren tnorth...@gmail.com wrote:

 Here are the outputs;

 *10-auth.conf*

 disable_plaintext_auth = no
 2
 auth_mechanisms = plain login


 *20-pop3.conf*

 protocol pop3 {
   # Don't try to set mails non-recent or seen with POP3 sessions. This is
   # mostly intended to reduce disk I/O. With maildir it doesn't move files
   # from new/ to cur/, with mbox it doesn't write Status-header.
   #pop3_no_flag_updates = no

   # Support LAST command which exists in old POP3 specs, but has been
 removed
   # from new ones. Some clients still wish to use this though. Enabling
 this
   # makes RSET command clear all \Seen flags from messages.
   #pop3_enable_last = no

   # If mail has X-UIDL header, use it as the mail's UIDL.
   #pop3_reuse_xuidl = no

   # Keep the mailbox locked for the entire POP3 session.
   #pop3_lock_session = no

   # POP3 requires message sizes to be listed as if they had CR+LF
 linefeeds.
   # Many POP3 servers violate this by returning the sizes with LF
 linefeeds,
   # because it's faster to get. When this setting is enabled, Dovecot
 still
   # tries to do the right thing first, but if that requires opening the
   # message, it fallbacks to the easier (but incorrect) size.
   #pop3_fast_size_lookups = no

   # POP3 UIDL (unique mail identifier) format to use. You can use
 following
   # variables, along with the variable modifiers described in
   # doc/wiki/Variables.txt (e.g. %Uf for the filename in uppercase)
   #
   #  %v - Mailbox's IMAP UIDVALIDITY
   #  %u - Mail's IMAP UID
   #  %m - MD5 sum of the mailbox headers in hex (mbox only)
   #  %f - filename (maildir only)
   #  %g - Mail's GUID
   #
   # If you want UIDL compatibility with other POP3 servers, use:
   #  UW's ipop3d : %08Xv%08Xu
   #  Courier : %f or %v-%u (both might be used simultaneosly)
 #  Cyrus (= 2.1.3): %u
   #  Cyrus (= 2.1.4): %v.%u
   #  Dovecot v0.99.x : %v.%u
   #  tpop3d  : %Mf
   #
   # Note that Outlook 2003 seems to have problems with %v.%u format which
 was
   # Dovecot's default, so if you're building a new server it would be a
 good
   # idea to change this. %08Xu%08Xv should be pretty fail-safe.
   #
   #pop3_uidl_format = %08Xu%08Xv

   # Permanently save UIDLs sent to POP3 clients, so pop3_uidl_format
 changes
   # won't change those UIDLs. Currently this works only with Maildir.
   #pop3_save_uidl = no

   # POP3 logout format string:
   #  %i - total number of bytes read from client
   #  %o - total number of bytes sent to client
   #  %t - number of TOP commands
   #  %p - number of bytes sent to client as a result of TOP command
   #  %r - number of RETR commands
   #  %b - number of bytes sent to client as a result of RETR command
   #  %d - number of deleted messages
   #  %m - number of messages (before deletion)
   #  %s - mailbox size in bytes (before deletion)
   #  %u - old/new UIDL hash. may help finding out if UIDLs changed
 unexpectedly
   #pop3_logout_format = top=%t/%p, retr=%r/%b, del=%d/%m, size=%s

   # Maximum number of POP3 connections allowed for a user from each IP
 address.
   # NOTE: The username is compared case-sensitively.
   #mail_max_userip_connections = 3
 # Space separated list of plugins to load (default is global
 mail_plugins).
   #mail_plugins = $mail_plugins

   # Workarounds for various client bugs:
   #   outlook-no-nuls:
   # Outlook and Outlook Express hang if mails contain NUL characters.
   # This setting replaces them with 0x80 character.
   #   oe-ns-eoh:
   # Outlook Express and Netscape Mail breaks if end of headers-line is
   # missing. This option simply sends it if it's missing.
   # The list is space-separated.
   #pop3_client_workarounds =
 }




 On Mon, Apr 2, 2012 at 2:25 PM, Tam Nguyen tam8gu...@gmail.com wrote:

 Hi,
 could you please give me output of the following files, run these
 commands:

 grep -v ^# /etc/dovecot/conf.d/10-auth.conf
 grep -v ^# /etc/dovecot/conf.d/20-pop3.conf


 Thanks
 Tam

Re: problem with libvpx dependency

[Tam Nguyen]

Hi there,
you need rpmforge and GPG key.
Here is the rpmforge:
*For 64bits:
http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm
*

For 32 bits
*

http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.i686.rpm
*

then import GPG key, run this command in terminal:
*

rpm --import http://apt.sw.be/RPM-GPG-KEY.dag.txt


*
Or you can go directly to the source and download it:

http://apt.sw.be


Thanks

Tam


2012/3/28 MT Julianto mtjulia...@gmail.com


 2012/3/28 Łukasz Posadowski lukasz.posadow...@gmail.com


 2012-03-28,14:00 +0200, MT Julianto:
  $ sudo yum install vlc
  Error: Package: libavcodec53-0.10.2-54.el6.x86_64 (atrpms)
 Requires: libvpx.so.1()(64bit)

 Do you have /usr/lib/libvpkx.so.1 file? Sometimes there is libvpkx.so,
 or libvpkx.so.0 and simple
 ln -s /usr/lib/libvpkx.so /usr/lib/libvpkx.so.1


 I have libvpx instead of libvpkx, and I have added the symlink

 $ ls -l /usr/lib64/libvpx.so*
 -rwxr-xr-x. 1 root root 400K Dec 21  2010 libvpx.so.0.0.0
 lrwxrwxrwx. 1 root root   15 Mar 16 11:17 libvpx.so.0.0 - libvpx.so.0.0.0
 lrwxrwxrwx. 1 root root   15 Mar 16 11:17 libvpx.so.0 - libvpx.so.0.0.0
 lrwxrwxrwx. 1 root root   15 Mar 28 13:35 libvpx.so - libvpx.so.0.0.0
 lrwxrwxrwx. 1 root root   15 Mar 28 14:19 libvpx.so.1 - libvpx.so.0.0.0

 However, the problem persisted.  Is there anything else I should fix?

 -Tito.