vsftp is pretty much the standard these days
there is a standard package, its fairly simple to setup as a basic ftp
server but it has a lot of options, including the ability to configure
TLS encryption.
On Mon, Mar 21, 2016 at 6:04 PM, ToddAndMargo wrote:
> Hi All,
>
>
jdow
There are commercial (Squid uses the BSD License) versions that can do
this out of the box based on squid 3, you can also do a DIY version
but it takes a considerable amount of work.
The one thing is they are somewhat controversial so you need to notify
your employees that you are doing it
Yasha
It looks like office 360 supports legacy MAPI clients and thats good
news for you because there is a Linux MAPI client library which plugs
into several mail clients.
Although I've never liked evolution as a mail client there is a plugin
which comes with SL for it yum install evolution-mapi
Sorry most distros and are dropping 32 bit support. To be honest that laptop as well made as it was is getting to old for developers to worry about supporting.That said there are always distros that focus on running on older hardware. I don't know the current list of good ones to try but you can
If you are really worried about this put a "web application firewall" in front of your server in other words a squid reverse proxy which tests the inbound data through a filter application, or if you are really brave you can try in line snort in iptables.I would personally love to see an inline
Here Here NicoYou are absolutely right!!Don't get me wrong I respect and have a great working relationship with the upstream developers; however I don't always agree with their development and patch policies in mission critical environments.The one place they still agree with us on this is in the
There you are getting into the LDAP/Kerberos territory or you can use winbind.
In theory if you install the UNIX extensions in your AD server you can
assign the users uid and gid numbers. last I looked at it you had to
do it manually they aren't auto assigned by the AD server.
You should also
Look at the ones that specialize as a DVR there are a few of them but off the top of my head I can't remember the name of the software involved. But there are a few distros that specialize in this. A warning though with that many feed you will probably need a hefty RAID which may need an external
users at once via a web interface and in some variants to a TV/DVD recorder.-- Sent from my HP Pre3On Sep 15, 2014 7:17 PM, Paul Robert Marino prmari...@gmail.com wrote: Look at the ones that specialize as a DVR there are a few of them but off the top of my head I can't remember the name
its slightly more complicated than that because all of the copyrighted
logos, themes need to be stripped out. In addition there are a few
pieces of software needed for compile dependencies which aren't
included in the standard RH base due to the fact that they are sold as
addons.
That said yes it
I've never heard of SCCM but the Microsoft's AD thing is doable but difficult.The Unix extensions help but they don't automatically assign UID numbers or GID numbers to users so people often time use 3rd party software to do it for them.Kerberos integration is simple all you need is the Pam
Well the if you read my post the difficult part is setting the UID
numbers and GID numbers in the AD server.
yes the authconfig portion is the easy part.
On Tue, Aug 5, 2014 at 3:17 PM, Eero Volotinen eero.voloti...@iki.fi wrote:
2014-08-05 20:29 GMT+03:00 Paul Robert Marino prmari
I have a question about your test did you unmount the stick between
runs of rsync. if not you may have already had all of the information
about the filesystem cached in memory instead of having to search the
FAT table for information. this could have a huge effect on the speed
of an update.
also
, Patrick J. LoPresti wrote:
On Tue, Jul 15, 2014 at 10:44 AM, Paul Robert Marino
prmari...@gmail.com wrote:
I have a question about your test did you unmount the stick between
runs of rsync. if not you may have already had all of the information
about the filesystem cached in memory instead
Wow I wish I got into this thread earlier I could have explained a lot.
I've worked with rsync on a low level for many years and have even
debated about writing a C library and possibly a multicast transport
layer for it so I know it quiet well.
Ive seen a lot of misinformation and guessing in
Yes a lot of us noticed.Recompiling an entire distro from scratch is not an easy proposition. Furthermore they need to strip out all of the Red Hat branding. Expect it to take a while at least a month or two if not more.As far as helping I'm sure the offer is appreciated but due to certain legal
yea dmidecode has been around for a long time and its a very useful tool.
I commonly use it to grab the asset tag or serial number on a box when
I need to make a call to a hardware vendor for a replacement part.
look at the -t option
dmidecode -t bios will just give you the bios information
Well you shouldn't have mounted it as root.There is a wealth of documentation on this subject from granting servers access to mount and unmount file systems to users using fuse mounts like most desktop environments do as us Perl guys say there are many ways to do it!-- Sent from my HP Pre3On May
The truth is there was a method at one time but selinux killed it and devfs killed it so autofs and or fuse is the way to do it now.The other option is to use sudo instead of su -c because with sudo you can give the user only permission to run the exact command as root. Further more you can
its been years since I used it but you can try this
http://sourceforge.net/projects/libmtp/?source=navbar
it works to varying degrees with different devices. Ive usually been
able to use it to do the things I've needed too without too much
difficulty. I use to use it with my old MP3 payer ant it
The only way you get details on thing like pending release dates from Red Hat is if you sign and NDA and even then its only an estimate not a hard date.Plus since they make you sign an NDA you can't share the info with any one.-- Sent from my HP Pre3On Apr 15, 2014 14:34, ToddAndMargo
Chill man he was making a joke.-- Sent from my HP Pre3On Apr 15, 2014 18:34, ToddAndMargo toddandma...@zoho.com wrote: On 04/15/2014 03:19 PM, zxq9 wrote:
On Tuesday 15 April 2014 15:06:04 ToddAndMargo wrote:
On 04/15/2014 02:48 PM, Paul Robert Marino wrote:
The only way you get details
th many subsidiaries that's a nightmare but every one understands why he wants it so none of the people coordinating it are complaining.-- Sent from my HP Pre3On Apr 11, 2014 23:54, ToddAndMargo toddandma...@zoho.com wrote: On 04/10/2014 07:45 AM, Paul Robert Marino wrote:
Keep in mind PCI compliance is
, David Sommerseth
sl+us...@lists.topphemmelig.net wrote:
On 09/04/14 16:27, Paul Robert Marino wrote:
No it was always required because the shopping cart itself may in some
cases contain data which could possibly be used to gain access to
sensitive customer data. Also in a sense data about who
] On Behalf Of Paul
Robert Marino
Sent: Tuesday, April 08, 2014 11:26 PM
To: Nico Kadel-Garcia; ToddAndMargo
Cc: Scientific Linux Users
Subject: Re: Any 7 rumors?
Well frankly if you need PCI-DSS compliance pay for RHEL. Its honestly not
that expensive for the few systems that really require
Well frankly if you need PCI-DSS compliance pay for RHEL. Its honestly not that expensive for the few systems that really require it. Only the system's that handle credit cards supposedly require it and in most ecommerce companies that's probably 2 to 4 system's so what's the problem wit paying
Most of the reason they left the AD stuff out is they are still tinkering with MIT Kerberos V server.They refuse to migrate to Heimdal the AD stuff in samba AD includes an embedded Heimdal Kerberos V server because the MIT version is common but doesn't quite cut it yet.I personally always use
1) The windows GUI tools for managing it work transparently enough to fool most window's admins.2) if integrated with an LDAP server like 389 server most AD dependant applications won't know the difference either.3) you can do things like policy pushes without doing a regedit kludge on login which
In regards to satellite have you heard of Spacewalk and SAM, or even before that there was mrepo. Now with subscription manager its all standard yum repos PKI certs issued by Red Hat in other words you can easily mirror them if you know how https works.SL more stable than RHEL I'm not touching
Jose
you can also make sure the yum-conf-sl6x.noarch rpm is not installed
in a kickstart profile you can do this by putting
-yum-conf-sl6x.noarch in your package list.
Other related RPMs to this subject which are included in the default
base install are yum-conf-sl-other, and yum-autoupdate
.
On
James
thats a great analysis I highly encourage you to write an article on
the subject some time.
one more thing I would add is about authentication. If you are planing
to use centeralized authentication make sure you do a full LDAP 3
implementation with TLS and Kerberos 5. do not use the
You usually start with a yum groupupdate base then go from there.It helps to do mass updates by first updating the package groups you have installed one at a time.-- Sent from my HP Pre3On Dec 16, 2013 23:46, Nico Kadel-Garcia nka...@gmail.com wrote: On Mon, Dec 16, 2013 at 9:14 PM, J. Taylor
That's a TLS error you need to reinstall your SSL cert and or properly set the host name on the host. Furthermore ensure that full forward and reverse lookup of the host works and matches the FQDN you set for the hostname.-- Sent from my HP Pre3On Dec 13, 2013 13:17, P. Larry Nelson
did you check /etc/profile.d ?
On Wed, Dec 11, 2013 at 10:30 AM, John Lauro
john.la...@covenanteyes.com wrote:
Several programs like login and sshd set default paths.
strings /usr/sbin/sshd | grep local/bin
strings /bin/login | grep local/bin
- Original Message -
From: Yan
On Wed, Dec 11, 2013 at 10:00 AM, Jeff Siddall n...@siddall.name wrote:
On 12/10/2013 07:49 PM, Paul Robert Marino wrote:
Well in the case of migrating from one storage array to an other newer
bugger one the LVM migration capability is handy.
Any one who has had to go through the pain
You have to download the RPM's from Glusters yum repos.
They purposely removed it from EPEL because the Gluster 3.4 client is
now included in RHEL and the server version which was in EPEL was too
old to work with the client included with RHEL,
http://download.gluster.org/pub/gluster/glusterfs/
you
Well in the case of migrating from one storage array to an other newer bugger one the LVM migration capability is handy.Any one who has had to go through the pain of a SAN migration especially to a different SAN vendor will see the value of LVM there. That said that only became stable enough to
I do wrong?
Many thanks,
-T
On 12/04/2013 12:20 PM, Paul Robert Marino wrote:
ip route delete default via xxx.xxx.xxx.xxx dev eth0
then
ip route add default via yyy.yyy.yyy.yyy dev eth0
replace xxx.xxx.xxx.xxx with your current router and yyy.yyy.yyy.yyy
with the new one
there is
Well while the NIC firmware may be an issue I would suspect some of
the switch settings.
base on the message ... failed; no link present. here are a few more
things to check.
1) Please make sure every thing is set to full auto on both sides, and
if you can linit the advertises auto negotiation
ip route delete default via xxx.xxx.xxx.xxx dev eth0
then
ip route add default via yyy.yyy.yyy.yyy dev eth0
replace xxx.xxx.xxx.xxx with your current router and yyy.yyy.yyy.yyy
with the new one
there is also an ip route replace syntax as well if you need it
see man ip for more details ;-)
On
P.S. the route command is a legacy command from the 2.2 kernel days
and should not be used any more.
On Wed, Dec 4, 2013 at 3:20 PM, Paul Robert Marino prmari...@gmail.com wrote:
ip route delete default via xxx.xxx.xxx.xxx dev eth0
then
ip route add default via yyy.yyy.yyy.yyy dev eth0
Whatever gateway I had when
I booted, was the one I was stuck with. Reboot
was the only way to make the change. I even tried
manually configuring it with "route". No joy there
either. :'(
What did I do wrong?
Many thanks,
-T
On 12/04/2013 12:20 PM, Paul Robert Ma
reimbursed by your job as long ad you bought it on a credit card and get two copies of the receipt .-- Sent from my HP Pre3On Dec 4, 2013 18:10, ~Stack~ i.am.st...@gmail.com wrote: On 12/04/2013 09:57 AM, Paul Robert Marino wrote:
Well while the NIC firmware may be an issue I would suspect some
Have you tried adding dhclient to your package list in your kickstart file.
The trick with a nobase install is you can often be surprised by some
of the things that are missing from it.
if you don't have /sbin/dhclient on the host than that is probably your problem.
On Sun, Dec 1, 2013 at 12:21
On Sun, Dec 1, 2013 at 4:09 PM, Nico Kadel-Garcia nka...@gmail.com wrote:
On Sun, Dec 1, 2013 at 12:44 PM, Paul Robert Marino prmari...@gmail.com
wrote:
Have you tried adding dhclient to your package list in your kickstart file.
The trick with a nobase install is you can often be surprised
not read beyond
the subject line?
Kinda curious about where you got "windows" from. DVL is Damn Vulnerable
Linux:
http://distrowatch.com/table.php?distribution=dvl
On 2013-09-13 02:23, Paul Robert Marino wrote:
If you are looking for for penetration testing, HIDS, NIDS, or IPS there
If you are looking for for penetration testing, HIDS, NIDS, or IPS there are a lot tools out there. To do security right is never easy. I have never seen a silver bullet all in one VM or out of the box easy distro for it. All of them take work.Since the one you are looking at seems to be a
I always add -yum-autoupdate to my kickstarts to remove it I don't
know why TUV adds it to the default image for EL it has always been
controversial at best.
On Wed, Jul 31, 2013 at 10:49 AM, Brown, Chris (GE Healthcare)
christopher.br...@med.ge.com wrote:
I just allowed yesterdays updates to
I use XFS on SL 6.x its great in my opinion very stable and fast.Redhat themselves suggest it as the backend filesystem for Gluster storage nodes. Early versions on SL6 had some problems but they have all been worked out now. And on other distros SuSE and Gentoo I've used it for decade now with no
Sure you can for the most part where do you think scientific linux came from.But you don't need a license to get them they are all on Red Hat's public FTP server along with all the other SRPMS for every other free speech or open source piece of software they support. Really the FTP site is the
Interesting however I have to ask why didn't you use a flash backed ram drive for the ZIL . There is a well know core fundamental design conflict between ZFS and NFS that's so sever that Suns purposely built ZFS based NAS appliances include one of these very expensive (because all of the ones on
Ok as some one who doesn't deal with desktops any more but did more than a decade ago, and did deal with these types of problems I cups, I have a questions. What printer driver are you using and what is the model of the printer? It makes a massive difference to the question.Further more the cups
I do NOT envy you right now!-- Sent from my HP Pre3On Apr 19, 2013 11:05 PM, Andrew Z form...@gmail.com wrote: .. Im thinking of maybe getting an older cuda that has 32 version...and there is no CUDA for RH6.X of 32 . niice %) .. $ yum provides */libgcc_s.so*
Try installing
Sincerely my deepest condolences.-- Sent from my HP Pre3On Apr 19, 2013 11:10 PM, Paul Robert Marino prmari...@gmail.com wrote: I do NOT envy you right now!-- Sent from my HP Pre3On Apr 19, 2013 11:05 PM, Andrew Z form...@gmail.com wrote: .. Im thinking of maybe getting an older cuda that has 32
In direct answer to your question oddly enough twitter seems to be the site find out about this kind of thing quickly.-- Sent from my HP Pre3On Apr 14, 2013 4:36 PM, Todd And Margo Chester toddandma...@gmail.com wrote: On Sat, Apr 13, 2013 at 9:07 PM, Todd And Margo Chester
, 2013 12:24 AM, Duke Nguyen duke.li...@gmx.com wrote: On 3/29/13 10:12 PM, Paul Robert Marino wrote:
well openmip is the app that executes it so thats where the limitation
is probably coming from.
With a little time on Google you will find plenty of posts on the
subject of openmpi not being able
hello
there are two tools that come to mind first is ntop you will find it in EPEL
its a great tool that will tell you what the network traffic is doing
and has a nice web GUI.
another great tool is smoke ping http://oss.oetiker.ch/smokeping/
there is no RPM for it that I know of but it is an
kernel.shmmax does nothing if you don't bump up kernel.shmall
accordingly but I can tell you the cap is something wrong with your
application not the OS.
at one time I supported an application that in normal operation used
64BG Resident memory per instance.
And currently my PostgreSQL servers
WellThe same user should be able to login from multiple clients at the same time so as long as the gids and uids on your file system are consistent across the board that's a non issue.But a word of advice DO NOT PUT THE USERS FOR YOUR SERVICES IN AD OR ANY OTHER LDAP SERVERIts a horrible idea
-- Sent from my HP Pre3On Feb 8, 2013 10:06 AM, Pat Riehecky riehe...@fnal.gov wrote: On 02/08/2013 08:56 AM, Nico Kadel-Garcia wrote:
On Fri, Feb 8, 2013 at 1:54 AM, Paul Robert Marinoprmari...@gmail.com wrote:
I should be making some samba4 rpms soon but mine will not start with
fedora.
-- Sent from my HP Pre3On Feb 8, 2013 11:12 AM, Stephan Wiesand stephan.wies...@desy.de wrote: On Feb 8, 2013, at 17:01 , Paul Robert Marino wrote:
And just as an aside last I looked at systemd I didn't think it was fully baked yet. Many of the init scripts were ported in a haphazard rushed
One quick addition most people aren't really aware of this but you haven't need to use Samba for printer sharing in over a decade modern versions of windows use IPP (Internet Print Protocol) for printing and so does CUPS-- Sent from my HP Pre3On Feb 7, 2013 6:19 PM, Andrew Z form...@gmail.com
I should be making some samba4 rpms soon but mine will not start with fedora. RedHat has this insane idea that they are going to fix MIT kerberos 5 after more than a decade of it being broken. So they've stripped out the embedded heimdal kdc. The problem is it doesn't work properly without
Change your terminal settings.The background color is the default background color of your terminal.It sucks if you are on a default white background xterm but works well if you are on a black background terminal.that you are experiencing is a software color philosophy difference. I personally
Honestly if your information security people at your university think
the latest cutting edge version of Firefox is more secure than the
stable patched and thoroughly tested version included with SL than
they aren't really information security people!
In fact most real info sec people don't hate
take a look at this one http://relax-and-recover.org/
the RPM is in EPEL rear.noarch
it should give you the best of both worlds.
the problem with using dd is you occasionally get bit drift which can
cause you problems latter. and Rsync wont install grub on your mbr or
format the partitions. rear
That site has been your friend for more than a decade now for almost every rpm based distro especially when you use the the advanced search.-- Sent from my HP Pre3On Jan 30, 2013 9:27 PM, Nico Kadel-Garcia nka...@gmail.com wrote: http://rpm.pbone.net is your friend for SL 6 or other releases, when
The output of the domainname command hasn't ever worked the way you
would expect on Redhat to my recollection. quite simply the Redhat
network scripts have never set the variable unless you configure NIS
and nothing expects it to be set any more.
'hostname -d' should give you the output you are
:
On 01/17/2013 12:22 AM, Paul Robert Marino wrote:
Most of the functions of flash plus better 3D rendering can now be
achieved by HTML 5, so really flash is only being used now for legacy
web site support. Most mobile devices don't support flash but they all
support HTML 5. Adobe has even
Close but thats not the whole truth.
Most of the functions of flash plus better 3D rendering can now be
achieved by HTML 5, so really flash is only being used now for legacy
web site support. Most mobile devices don't support flash but they all
support HTML 5. Adobe has even started changing their
a plugable mechanism for
verifying pre-shared secrets.
On Sat, Dec 22, 2012 at 12:02 AM, Nico Kadel-Garcia nka...@gmail.com wrote:
On Fri, Dec 21, 2012 at 5:50 AM, David Sommerseth
sl+us...@lists.topphemmelig.net wrote:
On 20/12/12 19:49, Paul Robert Marino wrote:
Its base64 with DIGEST-MD5
, 2012 10:16 AM, David Sommerseth
sl+us...@lists.topphemmelig.net wrote:
On 19/12/12 23:45, Paul Robert Marino wrote:
this statement
(I double checked the network traffic, and even though not using SSL
the password is not transferred over the network in clear-text)
is wrong
It is clear
this statement
(I double checked the network traffic, and even though not using SSL
the password is not transferred over the network in clear-text)
is wrong
It is clear text that has been base64 encoded unless you are using
gssapi with kerberos 5 or some other encrypted authentication
mechanism.
Well there is your problem
The users home directory needs to be 700 unless you turn off strict key
checking in the sshd configuration file. Also the public key should be 600
as well.
Making home directories world or group readable isn't a good plan for
collaberation because many applications
well its really dependant on what video card and driver you are using.
for example the proprietary nvidia driver has a gui that can adjust
the display mode and resolution without restarting X fairly easily but
there is no such option with the free nvidia driver.
On Wed, Nov 21, 2012 at 1:32 PM,
On Nov 21, 2012 7:57 PM, Paul Robert Marino prmari...@gmail.com wrote:
Ok
To be clear are you using kerberos or not
If the answer is no and you are just using ssh keys the most common cause
of this issue is that the useres home directory is group or world readable.
In the most secure mode
Also megaraid is an old chipset are you sure you are using the right
driver. Some of the new lsi chipsets provide backwarks compatibilityto
megaraid to support older os version but from everthing I've heard it
doesn't work too well.
On Nov 14, 2012 12:40 PM, Christopher Tooley ctoo...@uvic.ca
By the way lsi raids especily the ones OEMed by dell tend to ship with bad
firmware revisions. Check if there are firmware updates and if so update it
even if the change log doesn't indicate your specific issue
On Nov 14, 2012 1:35 PM, Paul Robert Marino prmari...@gmail.com wrote:
Also megaraid
It sounds like your bonded interface is flaping
The persistant dhcp setting will reload the ip if the original lease is
still valid but network manager will remove your route if the interface
flaps unless you set nm_controled to no.
You should check your logs though first to see if your interface
The reason is cdrecord is nolonger maintained wodim is a fork that was
created for an other project that is still activly maintained.
Wodim has an almost identical command line syntax and in most cases there
is a symlink or alias created to the to emulate cdrecord
On Oct 21, 2012 12:37 PM, Stephen
Yea but to be clear that's non a dynamic value it has to be configured when
the kernel is compiled.
Some unix flavors had that option due to odd differences between different
versions of their own home grown hardware. That really is an unusual thing
to adjust now unless you are running on some
Well if I'm right he's talking about either adjusting to a nonstandard tick
source which happens either with a nonstandart cpu, bios chip, or an atomic
clock. If its a teir 1 (atomic clock) source the ntp documentaion covers
this but if its a nonstandard cpu that's an other thing. However ther is
Don't focus on the boonding its transparent once configured.
Treat the bonded interface bondx like it was a ethx and the guides will
make sense.
I beleave off the top of my head the answer is apply the bridge to the vlan
interface unless you want the vlan tags to go to the vms and do 802.1Q on
the
hello every one
I'm running into an issue trying to install openstack-nova and i
tracked it to a specific rpm dependency issue.
It looks like when installing file.x86_64 yum says it requires
file-libs.i686 but cant install it because file-libs.x86_64 is
installed so this looks like a compile
84 matches
Mail list logo