On Sat, 20 Aug 2011, Anne Wilson wrote:
> Hi, John. That sounds really useful, particularly on the netbook where I have
> to remember to disable the mounts before travelling. The only problem is, I
> don't know how to do that. Can you either describe it to me or point me to
> suitable reading?
On Sat, 20 Aug 2011, Anne Wilson wrote:
> Every attempt to mount was simply hanging - so no help at all. However, as
> you will have seen by now, the problem is solved. I was right that I had
> missed some steps, and you were right that the mount points at the server end
> were not correctly set
On Mon, 15 Aug 2011, Keith Roberts wrote:
> That's interesting Joe. So where are these tools being
> gotten from if the RPM packages are not installed yet?
It's part of the installer.
> Is there some way to find out exactly what tools are
> available for use in the %pre section please?
It's par
On Thu, 11 Aug 2011, Michael Gliwinski wrote:
> On Wednesday 10 Aug 2011 18:59:14 Paul Heinlein wrote:
>> Oddly, when using sssd+ldap, getent without a specific key won't
>> return ldap account information, but with a key it will. That is,
>> "getent passwd" will return only accounts in the local
On Fri, 29 Jul 2011, Craig White wrote:
> Not going to comment on Exchange/OWA
It's really hard for me not to. Exchange is a god awful pile of crap that
doesn't properly implement IMAP (true of 2003-2007, not tried 2010), and MS
don't really care that much about it, as you should be using MAPI.
On Wed, 27 Jul 2011, Marko Vojinovic wrote:
> What never happens again? The message doesn't appear on subsequent root X
> logins (this is a bug that should be reported), or you subsequently never try
> to login as root again (this is a good idea to be practiced)?
Nah, you get the option of disabl
On Wed, 27 Jul 2011, Cliff Pratt wrote:
> I trying to try out CentOS 6 in an Oracle VirtualBox running on
> Ubuntu. Has anyone been able to get this configuration working?
>
> When I try to boot the "Live" ISO it starts to do the countdown but
> when it reaches zero it gets stuck - nothing else ha
On Tue, 26 Jul 2011, Fajar Priyanto wrote:
> Hi all,
> Can pls share your experience on this?
>
> Currently I have this network:
> 10.1.16.0/22.
> 10.1.16.0-10.16.17.254 are DHCP managed
> 10.1.18.0-10.1.19.254 are statically assigned
>
> If I need to expand it to:
> 10.1.16.0/20
>
> 1. What is th
On Mon, 25 Jul 2011, m.r...@5-cent.us wrote:
>> Not sure how that can be with a "graphical" install on kickstart and
>> asking also @general-desktop and @internet-browser in my kickstart file.
>
> Yeah, they changed the group names, as I think I mentioned last week. To
> *stupid* things, like "GNO
On Fri, 22 Jul 2011, Always Learning wrote:
> On Fri, 2011-07-22 at 15:37 +0100, John Hodrien wrote:
>
>> Working GSSAPI scares the willies out of windows users when they're
>> not used to it.
>>
>>"But it let me in without a password. Isn't tha
On Fri, 22 Jul 2011, Ray Leventhal wrote:
> On 7/22/2011 10:20 AM, Kaplan, Andrew H. wrote:
>> Hi there --
>>
>> Thanks for everyone's replies. I do have putty 0.61, and I went ahead
>> with Matt's suggestion. Once that was done, I logged into the server that
>> was the subject of my posting, and
On Thu, 21 Jul 2011, m.r...@5-cent.us wrote:
> John Hodrien wrote:
>> On Thu, 21 Jul 2011, m.r...@5-cent.us wrote:
>>
>>> I was puzzled to not that the former of the two is an rpm of zero bytes.
>>
>> Why puzzled? I'm guessing it's just an empty
On Thu, 21 Jul 2011, m.r...@5-cent.us wrote:
> I was puzzled to not that the former of the two is an rpm of zero bytes.
Why puzzled? I'm guessing it's just an empty RPM with a load of dependencies
as a way of cleaning up the dependency chain.
jh
___
C
On Thu, 21 Jul 2011, Patrick Lists wrote:
> I have used NFS (v3 & v4) and HTTP and for me HTTP was faster so I
> continued to use HTTP.
I'd switch to HTTP on the basis that HTTP seems to be the more 'normal' way to
install, and there are no obvious downsides.
jh
_
On Wed, 20 Jul 2011, Patrick Lists wrote:
> On 07/20/2011 06:11 PM, Iain Morris wrote:
>> Spacewalk is great, but be prepared for some significant configuration
>> time and energy. Also, it requires Oracle (postgres is in progress
>> last I checked).
>
> From what I read the PostgreSQL support is
On Wed, 20 Jul 2011, m.r...@5-cent.us wrote:
> Two and a quarter years ago, I got stuck with Spacewalk where I had a
> short-term contract, and it was a horror. (Note that while I was working
> on it, it went from 0.4 to 0.5) As Iain said, it requires Oracle, and I
> found I had to add an addition
On Wed, 20 Jul 2011, Ljubomir Ljubojevic wrote:
> OK.
>
> If it needs license, what would be the harm if you install (newer)
> version from rpm? Their source RPM is actually nosrc.rpm so they just
> package it for easier install. I was assuming this when I suggested the
> packages.
What I meant
On Wed, 20 Jul 2011, Ole Holm Nielsen wrote:
> I fail to see how your repository problem is related to my Kickstart PXE/NFS
> problem. We can install CentOS 6 (no Kickstart) without problems using PXE.
> It's the NFS-mounting of the Kickstart-file which fails. What I'd love to
> learn
> is how
On Wed, 20 Jul 2011, Ljubomir Ljubojevic wrote:
> I use http://rpm.pbone.net/ to search for CentOS/RHEL and Fedora packages.
Valid.
> It says that there is matlab 7.4.0 rpm for Fedora 5 and 10-15.
>
> Fedora 5 version should be good for CentOS 5 , and Fedora 12 package for
> CentOS 6.
>
> Link f
On Wed, 20 Jul 2011, hadi motamedi wrote:
> You are right. But here, people use windows more than Linux. So
> hearing about MATLAB for windows comes natural. I need to switch
> completely to my centos so I need to do everything with my centos as I
> did them on my windows. It sounds a little bit h
On Wed, 20 Jul 2011, hadi motamedi wrote:
> If we cannot find the exact application name for centos, say MATLAB
> for centos does not exist, so we must search for 'Mathematics
> laboratory for centos' ? Or if Pspice for centos does not exist so we
> must search for 'Electronics circuit schematics
On Tue, 19 Jul 2011, hadi motamedi wrote:
> Dear All
> With respect to the references you gave me, I figured out to add the
> following line to my /etc/sysconfig/iptables :
> -A RH-Firewall-1-INPUT -p udp -m udp --dport 53 -j ACCEPT
> Then I issued:
> #service iptables restart
> And now the window
On Sun, 17 Jul 2011, Always Learning wrote:
> If using SSH, FTP, phpmyadmin etc. etc. then DO NOT use the standard
> ports. Allocate a different IP address (if you have several) and use a
> non-web IP address for SSH and a different non-web IP address for
> phpmyadmin etc. WITH non-standard ports
On Fri, 15 Jul 2011, Ljubomir Ljubojevic wrote:
> I had a problem with 32-bit rpms on 64-bit system. I tried to install
> krusader-2.0.0.i386 in 64-bit system, and it reported that files from
> openssl(I think) x86_64 conflicts with files in same package but i686.
> That means that there are packa
On Fri, 15 Jul 2011, John Hodrien wrote:
> On Fri, 15 Jul 2011, Ross Walker wrote:
>
>> Did you try the built-in round robin DNS, which is the domain name itself?
>>
>> This works for me.
>
> Works fine as long as I don't enable TLS, at which point it fails.
&g
On Fri, 15 Jul 2011, Ross Walker wrote:
> Did you try the built-in round robin DNS, which is the domain name itself?
>
> This works for me.
Works fine as long as I don't enable TLS, at which point it fails.
Jul 15 14:19:37 centos6 automount[15860]: init_ldap_connection: lookup(ldap):
TLS requir
I'm trying to use autofs with Active Directory.
This works:
autofs_ldap_auth.conf:
/etc/sysconfig/autofs:
LDAP_URI="ldap://domaincontroller1 ldap://domaincontroller2";
This also works if I replace the auth with a DIGEST-MD5 from GSSAPI (which
gets used by default). Good so far.
However, I
On Wed, 13 Jul 2011, John Hodrien wrote:
> On Wed, 13 Jul 2011, Mark Weaver wrote:
>
>> What I've attempting to do is make it possible for me to connect to
>> clients' servers where RRAS service is already running using PPTP so
>> that I can connect remotely wh
On Wed, 13 Jul 2011, Mark Weaver wrote:
> What I've attempting to do is make it possible for me to connect to
> clients' servers where RRAS service is already running using PPTP so
> that I can connect remotely while I'm running Linux on my laptop so I
> don't have to stop what I'm doing and boot
On Wed, 13 Jul 2011, John R Pierce wrote:
> for many things, 32bit code is more compact and runs faster than 64bit
> code (primarily because the code is smaller, so it requires fewer
> fetches, more code fits in the cache, etc).64 bit OS's totally
> compatible with 32bit applications. of c
On Tue, 12 Jul 2011, Joe Mata wrote:
> I'm doing my first 6.0 install the same way as I've always done my
> server installs -- in text mode. But it looks like there's no option
> to do the following in the 6.0 text mode installer?
>
> * Set hostname
> * Set network settings
> * Choose packages
>
On Tue, 12 Jul 2011, David wrote:
> Dually noted, but since my first go at building from src failed so I
> figured I would ask.
Has there actually been an el6 package released to fix this bug?
Other than some unpackaged files it seems to build ok as far as I can tell
without actually testing it.
On Tue, 12 Jul 2011, David wrote:
> Using FreeIPA Server V2 and began testing against CentOS6 since it has a
> better support for SSSD. Ran into an issue with importing a Kerberos
> keytab to the new host and the FreeIPA folks indicated this is a known
> bug that was fixed in RHEL5.6:
>
> http://
On Mon, 11 Jul 2011, m.r...@5-cent.us wrote:
> You're joking
>>
>> I think the rationale was that they decided to put their efforts into a
>> GUI install and it was too much work to continue the functionality of
>> the text mode. You'd have to dig through the Fedora testing list, I
>> think.
On Sun, 10 Jul 2011, Emmanuel Noobadmin wrote:
> On 7/8/11, Les Mikesell wrote:
>> On 7/8/2011 9:45 AM, John Hodrien wrote:
>>>
>>> I was curious, so *did* find out what the cause was, and it's entirely not
>>> CentOS's fault. It's very hard t
On Fri, 8 Jul 2011, Emmanuel Noobadmin wrote:
> Mr Hodrien already demonstrated how to provide the information. Could
> you not at least follow suit, copy and paste the relevant commands
> leading up to the problem? If you had done so, he would had known the
> problem occurred after that point and
On Fri, 8 Jul 2011, John R. Dennison wrote:
> I'm fairly certain this is going to turn out to be a meatware problem;
> but since you refuse to post any details at all we'll never know. That
> and picking up your toys and going home, of course.
PEBKAC confirmed. Problem is with the configure.ac
On Fri, 8 Jul 2011, John J. Boyer wrote:
> I've installed autoconf and automake from the CentOS repository. When I
> get liblouisutdml from its repository and run the autogen.sh script and
> then configure I get the error I explained in my previous message.
> Autoconf is generating a bad configure
On Fri, 8 Jul 2011, John J. Boyer wrote:
> I used rhel up to a few weeks ago and had no problem with autotools. it is
> definitely a CentOS issue.
And you've done a package compare of the two machines to verify you're not
missing something?
jh
___
Cent
On Fri, 8 Jul 2011, John J. Boyer wrote:
> You saw my previous message about a strange error. I've tried many times
> to get autotools working on CentOS. It's the only distro in which I have
> had problems. How do i bring this to the attention of those who make the
> decisions?
Autotools behave r
On Fri, 1 Jul 2011, Ljubomir Ljubojevic wrote:
> John Hodrien wrote:
>> On Fri, 1 Jul 2011, m.r...@5-cent.us wrote:
>>
>>> *shrug* I think all the UPSs I've seen for consumers in the last five
>>> years seem to have a USB port to go to the computer. T
On Fri, 1 Jul 2011, m.r...@5-cent.us wrote:
> *shrug* I think all the UPSs I've seen for consumers in the last five
> years seem to have a USB port to go to the computer. That, and apcupsd,
> are all you need.
Only if it speaks the right language which doesn't seem to be guaranteed.
apcupsd didn'
On Fri, 1 Jul 2011, Robert Heller wrote:
> With a non-Linux compatable UPS, you can use a old analog serial modem
> as a power sensor. If the machine has a serial port (RS-232), you can
> plug the modem into the wall outlet and connect it to the computer's
> serial port. When the power goes out,
On Fri, 1 Jul 2011, Timothy Murphy wrote:
> I have a CentOS-5.6 remote server in a house in Italy,
> where there are occasional thunder-storms.
>
> There was one yesterday, when the electricity
> went off 3 times, for a second or so on each occasion.
Just buy a really basic UPS. I don't know w
On Thu, 30 Jun 2011, rai...@ultra-secure.de wrote:
>> Steve Barnes wrote:
>
> [...]
>
>> Or maybe having that core root tree on separate HDD and separate HDD
>> controller.
>>
>
>
> Unfortunately, all this does not matter at all.
> The problem is: sshd is swapped out and the system needs to swap-o
On Tue, 28 Jun 2011, Khusro Jaleel wrote:
> I have experienced strange behaviour from Firefox once or twice after
> doing a yum update. I believe it was not because Firefox was updated but
> because a bunch of GTK related stuff was updated which Firefox uses,
> hence why it got confused. I don't r
On Fri, 24 Jun 2011, Emmanuel Noobadmin wrote:
> I'm trying to do some network transfer test using NFS. The problem is
> when I try to eliminate the possibility of the hard disks being the
> bottleneck. I am unable to export /dev/shm as a NFS share. Initially
> there was an error about fsid or wro
On Thu, 23 Jun 2011, Giles Coochey wrote:
> Well, if you have access to the source, you can probably modify some
> constants to disable particular protocols, or there may be compile time
> options already - it would be nice to disable automatically on runtime if
> the host does not have a IPv6 pro
On Thu, 23 Jun 2011, Giles Coochey wrote:
> Yes, I'm sure it will depend on the implementation, the trailing dot was
> somewhat an educated guess from previous ISC BIND & dig tool use. :-)
> As for both the A and record, I think you will have that until IPv4
> is fully deprecated by IPv6 and
On Thu, 23 Jun 2011, Giles Coochey wrote:
> Can you avoid the bar.baz.domain.com.domain.com by searching for
>
> bar.baz.domain.com.
>
> (note trailing dot)
>
> ??
Hmm, good suggestion, that I'd not considered, Thanks. It does appear to
clear that up (down to two lookups from three: an and
On Wed, 22 Jun 2011, Ljubomir Ljubojevic wrote:
> As Les wrote in another branch of the thread, search clause is if you
> try name without a domain.
I think it's slightly more subtle and possibly more annoying than that.
Say you have a machine called foo.mydomain.com
By default (if you don't sp
On Tue, 21 Jun 2011, Todd Cary wrote:
> Grasping a full understanding of setting default Users, Groups
> and Masks has alluded me over the years, but now I find myself in
> a situation where manually "setting" the file/directory
> attributes is becoming a pain.
>
> I understand the fundamentals of
On Fri, 10 Jun 2011, John Doe wrote:
From: Daniel De Marco
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth required pam_deny.so
What's the use of the pam_succeed_if li
On Wed, 8 Jun 2011, Lamar Owen wrote:
> And while CentOS does its best to be 100% binary compatible, I wonder how
> supportable a combined system (partial upstream binaries, partial CentOS or
> SL binaries) really will be over the complete release cycle, and what sort
> of oddball bugs you might r
On Tue, 7 Jun 2011, Nicolas Ross wrote:
> By looking at the man page, distro-sync wouldn't re-install a package with
> the same version. For exemple, on my rhel boxes, I have
> tzdata-2011g-1.el6.noarch installed, and on my sl6's one, I have
> tzdata-2011g-1.el6.noarch. It's the same exact version
On Thu, 26 May 2011, Ljubomir Ljubojevic wrote:
> So having SSD in laptop (if they are unreliable) is not much of an
> option, unless I am going to carry duplicate HDD/SSD just in case this
> one crashes.
I'd argue that's just one of the risks you run with a laptop. In a laptop
you've typically
On Thu, 26 May 2011, Ljubomir Ljubojevic wrote:
> Unless you are away on important business trip and you loose your system
> just minutes before the meeting. Yes, it can happen to regular HDD, it's
> much lesser probability for now.
If I'm going to a meeting where I've got documents I need, they'
On Thu, 26 May 2011, Emmanuel Noobadmin wrote:
> Personally, I'm averse to using SSD with any important long term data
> is the nightmare that I could one day wake up to find everything gone
> without any means of recovery. Compared that to a hard disk, which
> barring catastrophic physical damage
On Thu, 26 May 2011, Timothy Murphy wrote:
> But I'm generally puzzled by the emphasis many people put on speed.
> Unless one is a gamer, it doesn't seem to me to make much difference
> if it takes 13 second or 30 seconds to boot up.
> Either way it is going to take the same time to get to an URL.
On Tue, 24 May 2011, Rudi Ahlers wrote:
> But don't you think that a SSD, or rather Solid State Drive, would
> still be seen as a different type of drive than a SATA drive, even
> though they share the same type of bus & connector + power cable?
A SATA SSD is different to a SATA HDD. Yes. And t
On Mon, 23 May 2011, Rudi Ahlers wrote:
> Doesn't SATA and SAS drives also wear out?
Not in such a clear way related to usage. You could have a SATA disk that you
write to 24 hours a day and it could last for years. With an SSD, you'd be
certain to kill your disk in months if you treated it lik
On Fri, 20 May 2011, Ljubomir Ljubojevic wrote:
> I am trying to automatize signing of unsigned .rpm files. My repo has at
> least 50 x 3 packages.
>
> But I would have to type numerous passwords for each file. I can not see
> hot to pass pass phrase to script.
>
> rpmsign --resign {--pass=??} ??
On Fri, 20 May 2011, Keith Roberts wrote:
> I'm sure they would Ned. But I want to learn how to do the
> whole repository thing myself - not just build packages for
> another very good 3rd party repo.
There really is nothing to creating a repo that's hard in itself.
createrepo/mrepo an rpmsign an
On Tue, 17 May 2011, Christopher Chan wrote:
>> I think a moderated mailing list around release time sounds like bliss to me.
>>
>
> Yeah...for you...think of the poor moderator!
Well, we could sign up on a rota...
jh
___
CentOS mailing list
CentOS@cen
On Tue, 17 May 2011, Christopher Chan wrote:
> The Centos ML does quite well without a moderator imho. No need to go
> draconian like other projects/'communities'
I think a moderated mailing list around release time sounds like bliss to me.
jh
___
Cent
On Mon, 16 May 2011, Nicolas Thierry-Mieg wrote:
> This would give apache write access to the site contents, which is bad
> practice.
>
> It also won't solve the umask issue.
> Since the OP wants all members of webdev1 to have write access to site1,
> he needs the setgid bit active on site1/ . And
On Thu, 5 May 2011, Gordon Messmer wrote:
> On 05/03/2011 10:43 AM, aurfal...@gmail.com wrote:
>> Can any one comment on what ppl are using for larger deployments? I
>> hope its not a resounding M$ AD?!
>
> Use sssd. It's now included in CentOS 5.
Included doesn't necessarily mean usable though
On Tue, 3 May 2011, aurfal...@gmail.com wrote:
> So whats the answer today for ~10K users?
>
> The bug fixes suggested here work around the problems I have been
> encountering.
Well that's good then.
> Can any one comment on what ppl are using for larger deployments? I
> hope its not a resoundi
On Tue, 3 May 2011, Mattias Geniar wrote:
> Understandable, but since a lot of people are still going to stick with
> CentOS 4/5 for legacy reasons, I would argue that nss_ldap is still
> worth "fixing".
I'm not saying it's not worth fixing, I suspect it's fundamentally unfixable
without a comple
On Fri, 29 Apr 2011, Devin Reade wrote:
> Probably moot now anyway as nobody is interested in fixing it since sssd
> will cure all ills and bring world peace. (Insert sarcasm/skepticism as
> appropriate.)
I'd probably argue that nss_ldap is fundamentally unfixable. Why *not* get
behind sssd? H
On Thu, 28 Apr 2011, Mattias Geniar wrote:
> I read quite a few topics on that solving the issue, but it didn't seem
> to be that case in my environment.
> Are there other workarounds/tips if the bind_policy doesn't work? The
> rc.local hack seems ... ugly ... and embarrassing if a client would
>
On Thu, 28 Apr 2011, Scott Robbins wrote:
> On Thu, Apr 28, 2011 at 03:52:44PM +0100, John Hodrien wrote:
>> On Thu, 28 Apr 2011, Mattias Geniar wrote:
>>
>>> could be a work-around I can live with, but it doesn't appear there is.
>>
>> I'd hope you&#
On Thu, 28 Apr 2011, Mattias Geniar wrote:
>> Did you include nss_initgroups_ignoreuser in your /etc/ldap.conf?
>>
>> nss_initgroups_ignoreusers root,ldap
>>
>> Brgds
>
> Hi Benjamin,
>
> I tried that, but that just makes it hang upon the next service trying
> to start (in our case: a zabbix monit
On Thu, 21 Apr 2011, Karanbir Singh wrote:
> yes, a package was released, unsigned, and has been fixed. ( and 4 more
> tests added to the release process to make sure that this does not
> happen again; or atleast reduce the chance of this going out ).
And if people stick with the sane practice of
On Thu, 21 Apr 2011, Mathieu Baudier wrote:
> Sorry, but not everybody is on production machines.
>
> Since the OP could not analyze himself the error message, one could
> safely assume he is not dealing with critical production environments.
> Maybe he was just told: "install quickly this CentOS
On Thu, 21 Apr 2011, Karanbir Singh wrote:
> On 04/21/2011 09:26 AM, Johnny Hughes wrote:
>>> Other workarounds for this particular issue have just been suggested here:
>>> http://lists.centos.org/pipermail/centos/2011-April/110547.html
>>> http://lists.centos.org/pipermail/centos/2011-April/11055
On Wed, 13 Apr 2011, Joseph L. Casale wrote:
>> Well, Nagios is more for outage/alerts were I was looking more for
>> trending.
>>
>> Thats why I was originally using Cacti w/Nagios plugin.
>
> There are plenty of graphing/trending addons for Nagios, I moved to
> Icinga and use PNP4Nagios with it.
On Wed, 13 Apr 2011, Kai Schaetzl wrote:
> John Hodrien wrote on Wed, 13 Apr 2011 16:37:16 +0100 (BST):
>
>> System Level | 126 Watts | ok
>
> Ah, thanks. My systems don't show that :-)
Yep, it's entirely system dependent. And on a current Dell, I belie
On Wed, 13 Apr 2011, Kai Schaetzl wrote:
> I'm not aware of an IPMI command that shows current power consumption.
That entirely depends on the system as far as I'm aware.
Dell R610 will give you this information from "ipmitool sdr":
Current 1| 0.28 Amps | ok
Current 2| 0
On Wed, 13 Apr 2011, Alain Péan wrote:
I'll try know, with the change in /etc/krb5.conf (validate = false), if
it works now.
It won't (or at least it shouldn't). Validate is essential as it confirms
that the KDC providing the TGT to the user is the same KDC that you registered
with when you j
On Wed, 13 Apr 2011, Alain Péan wrote:
Hi John,
There are only two realms I mentionned, LAB-LPP.LOCAL, and
TEST-LPP.LOCAL. I am currently doing test with the latter, and indeed,
pc-2003-test is the AD DC, so the KDC for TEST-LPP.LOCAL. The fdqn is
also pc-2003-test.test-lpp.local.
'kinit ' wor
On Tue, 12 Apr 2011, Alain Péan wrote:
Le 12/04/2011 22:03, John Hodrien a écrit :
On Tue, 12 Apr 2011, Alain Péan wrote:
Indeed, nothing fails now. I want my users to authenticate against
Active directory, and it works, and I would like them to be able to use
their kerberos credentials, if
On Tue, 12 Apr 2011, Alain Péan wrote:
Indeed, nothing fails now. I want my users to authenticate against
Active directory, and it works, and I would like them to be able to use
their kerberos credentials, if they need, to access domain ressources,
as shares. But I have still to see a problem th
On Tue, 12 Apr 2011, Alain Péan wrote:
In fact, I solved the problem using the authconfig command, but I wonder
if it is really correct, as I mixed kerberos and ldap. Here is the
authconfig command for my test domain :
Using kerberos and ldap is a perfectly reasonable thing to want to do, but
On Tue, 12 Apr 2011, Alain Péan wrote:
Sorrry, little error with the output of klit -ke, because I am testing
on a test AD domain at this moment. On the first machine, output is :
# klist -ke
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
-
On Tue, 12 Apr 2011, Alain Péan wrote:
Hi John,
Thnks for your answer. Here are the content of /etc/krb5.conf and klist
-ke. I agree that there can be siomething missing, that was working
before...
The keytab isn't valid for the host as it doesn't contain a usable principal
for doing a valida
On Sun, 10 Apr 2011, Alain Péan wrote:
After further verification, it seems to be related to ticket granting.
Here is what I have in /var/log/messages :
su: pam_krb5[7200]: TGT failed verification using keytab and key for
'host/bardeen.lab-lpp.local@LAB-LPP.LOCAL': Cannot find ticket for
request
On Thu, 7 Apr 2011, Ljubomir Ljubojevic wrote:
> Just newer kernel and newer core packages that can drive newer
> applications. CentOS 5.5 kernel and core packages are 3-4 years old in
> the (Linux) world that dramatically changed since then.
I wouldn't refer to the 5.5 kernel as 3-4 years old as
On Wed, 6 Apr 2011, Scott Robbins wrote:
> Not all that unique, but a bit better--I think it's
> VolumeGroup00/lvm_root, VolumeGroup00/lvm_swap, and things like that.
>
> (Keeping both LVs in the same VG by default.)
As far as I know it's much better than that:
The volume group by default with E
On Wed, 6 Apr 2011, Jussi Hirvi wrote:
> On 5.4.2011 21.49, compdoc wrote:
>> For reasons of speed and ease of maintenance and backups, what I've settled
>> on is: a small separate drive for the host to boot from, a small separate
>> drive for the guest OSes (I like using qcow2 on WD Raptors), and
On Tue, 5 Apr 2011, Rudi Ahlers wrote:
> Why,
>
> We've been running SSH on hundreds of servers on a port higher than
> 5000 for year now and no problems at all.
I always feel slightly ickie about running services on ports normal users can
run on (this obviously depends a lot on who can run proce
On Tue, 5 Apr 2011, Ljubomir Ljubojevic wrote:
> rpm is here:
> http://rpms.plnet.rs/centos5-i386/RPMS.plnet/skype-2.1.0.81-1.el5.noarch.rpm
>
> source rpm is now currently publicly available since I rearranged my
> repository links/path but haven't finished.
Since when did skype become noarch?
On Tue, 5 Apr 2011, rrich...@blythe.org wrote:
> 1) Move sshd to another
> port, one higher than 5000
I'd have mixed feelings about the Wisdom of running on a non-reserved port.
jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailm
On Mon, 4 Apr 2011, Tom Yates wrote:
> i occasionally trip my iptables rule myself, for example if i scp a couple
> of files off a server and then go back for a third; i feel it would be a
> shame to lock myself out for an hour, by doing that.
An argument for something like pam_tally? Ideally, y
On Mon, 4 Apr 2011, robert mena wrote:
> Hi Brunner,
>
> I need four network interfaces. This can be in one or multiple cards.
>
> The problem is just what you've described : lack of info regarding the
> compatibility/stability of such card under CentOS.
>
> And since some of those dual/quad card
On Sat, 2 Apr 2011, Jay Leafey wrote:
> You COULD use option #1, but it requires some additional resources and a
> LOT of shuffling.
Why do you need to shuffle?
fdisk /dev/sda
delete the PV partition
create a new PV partition starting at the same sector but ending at the end of
the now larger di
On Wed, 30 Mar 2011, ken wrote:
> John,
>
> Whether or not it's "more work" is highly subjective. And it's not
> inherently insecure; people often *make* it insecure by lazily setting
> permissions to allow *any* server to have access. Even ssh can be
> insecure if it's not configured properly.
On Mon, 28 Mar 2011, ken wrote:
> Like the error says, you need to specify the display. I.e., on the
> remote machine you must set the environmental variable "DISPLAY"...
> something like
>
> (export DISPLAY=192.168.1.42:0.0 & firefox)
>
> Though this may work, this may well reveal another, diffe
On Thu, 24 Mar 2011, Michael B Allen wrote:
> On Wed, Mar 23, 2011 at 2:35 PM, John Hodrien wrote:
>> On Wed, 23 Mar 2011, Michael B Allen wrote:
>>
>> Sure, but if you're not a domain admin, you've only got a machine principal,
>> and your own principal (wh
On Wed, 23 Mar 2011, Michael B Allen wrote:
Yes, but using the machine principal you're able to request any number of
service principals that are SERVICENAME/. For this to work in a
virtual hosting environment, you need multiple machine names (since we're
talking about making a number of HTTP/
301 - 400 of 480 matches
Mail list logo
