Discuss October 2007

discuss@lists.centos.org

268 participants
322 discussions

TFTP server not working as expected when run from xinetd
by Matt Arnilo S. Baluyos (Mailing Lists) 26 Oct '07

26 Oct '07

Hi All, I have a Trixbox server (CentOS derivative) from which our Cisco IP phones get their config files via TFTP. I have noticed that when I run the TFTP server via "service xinetd start", I am not able to get files via TFTP. I have tested it by doing a manual transfer via a TFTP client from another machine. When I try to run the TFTP service manually by doing "/usr/sbin/in.tftpd -l", I do not encounter any problem whatsoever? Any pointers regarding this issue? Do I have to enable anything else? Thanks. -- Stand before it and there is no beginning. Follow it and there is no end. Stay with the ancient Tao, Move with the present.

3 5

self signed ssl cert on C5
by Tom Diehl 26 Oct '07

26 Oct '07

Hi, Does anyone have a pointer to correct documantation for generating and installing a self signed ssl cert for use on httpd on a C-5 machine? The docs say to use genkey but AFAIK upstream rm'd crypto-utils from the distro and as such it is not available. I tried generating the cert on a C-4 machine using genkey and installing on the C-5 machine but I get the following error when I try to connect: [Thu Oct 25 12:48:03 2007] [debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client certificate B [Thu Oct 25 12:48:03 2007] [debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read client certificate B [Thu Oct 25 12:48:03 2007] [debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read client certificate B [Thu Oct 25 12:48:03 2007] [info] [client 192.168.0.25] SSL library error 1 in handshake (server roadrunner.tntechs.com:443) [Thu Oct 25 12:48:03 2007] [info] SSL Library Error: 336105671 error:140890C7:SSL routines:func(137):reason(199) [Thu Oct 25 12:48:03 2007] [info] [client 192.168.0.25] Connection closed to child 0 with abortive shutdown (server roadrunner.tntechs.com:443) Can anyone tell me where I am going wrong here? Google is not being helpful and I am getting frustrated. I wish I better understood open ssl. :-( Regards, -- Tom Diehl tdiehl(a)rogueind.com Spamtrap address mtd123(a)rogueind.com

5 9

rolling your own kernel - guidelines?
by Florin Andrei 26 Oct '07

26 Oct '07

Let's say I want to use a much newer kernel - even one from the future, such as the upcoming 2.6.24. :-) What would y'all smart folks do in this case, in order to avoid any possible nasty consequences? Would you import the config file from the original CentOS5 kernel into the new kernel, and let the kernel deal with the differences? I.e. have the old configuration as some sort of baseline that can be further tweaked. Or some other strategy? -- Florin Andrei http://florin.myip.org/

5 9

Using raid 1 for rollback purposes
by James Olin Oden 25 Oct '07

25 Oct '07

Hi All, For quite some time I've used raid 1 as a means of providing a rollback mechanism for an upgrade (which I learned from others long ago). So essentially, before an upgrade you split the mirrors and upgrade one side or the other. If your upgrade goes well you sync one way, if your upgrade does not you sync the other (much hand waving and chanting going on, as its more complicated than that, but that is the essence of the solution). Recently, I was asked to do the same thing but with a raid 1+0 solution. Its easy, enough to break the raid 1 volumes underneath, but then how do I use the broke off volumes to form the duplicate strip. Pictures may help. We start off looking like: /----------- Raid 0 Volume ----------\ | [disk 0]<---R 1--->[disk 2] | | | | [disk 1]<---R 1--->[disk 3] | \--------------------------------------------/ What we want to go to is: /--- Raid 0 ---\ /--- Raid 0 ---\ | [disk 0] | | [disk 2] | | | | | | [disk 1] | | [disk 3] | \-----------------/ \------------------/ Old System New System Is this possible with the current set of mdadm tools? Thanks...james

3 3

apache mod_authnzldap against Active Directory
by David Nalley 25 Oct '07

25 Oct '07

Hey guys I am running CentOS 5 with httpd 2.2.3 I am trying to configure mod_authnzldap authing against Active Directory and I have it working about 50% of the time. About 50% of the time this works with no issue, the rest of the time it fails. Sometimes it fails and notes the following in the error log: [Mon Oct 22 15:58:03 2007] [debug] mod_authnz_ldap.c(373): [client 10.XXX.XX.XXX] [13379] auth_ldap authenticate: using URL ldap://10.XX.XX.XXX:389/DC=centos,DC=org?sAMAccountName?sub?(objectClass=*) [Mon Oct 22 15:58:03 2007] [warn] [client 10.xxx.xx.xxx] [13379] auth_ldap authenticate: user special authentication failed; URI /logo.gif [ldap_search_ext_s() for user failed][Operations error] Other times it printsthe following, but nothing after that (and CPU usage skyrockets to 100% of a single CPU) [Mon Oct 22 16:08:11 2007] [debug] mod_authnz_ldap.c(373): [client 10.XX.XXX.XX] [13437] auth_ldap authenticate: using URL ldap://10.XX.X.XXX:389/DC=centos,DC=org?sAMAccountName?sub?(objectClass=*) In capturing the packets I see that it binds successfully several times and then tries to authenticate. The AD box returns: LDAPMessage searchResDone(5) operationsError (00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece) [0 results] None of the binds that occur in the capture failed though. (all the bind responses reported success) The appropriate (anonymized) lines from httpd.conf are: <Location /logo.gif> # <--- change path as needed Order allow,deny Allow from all AuthBasicProvider ldap AuthType Basic AuthzLdapAuthoritative off AuthName "BackupPC login" AuthLDAPBindDN ldapb(a)centos.org AuthLDAPBindPassword myformerlysecretpasswordpostedtoworld AuthLDAPURL "ldap://10.XX.XX.XXX:389/DC=centos,DC=org?sAMAccountName?sub? (objectClass=*)" NONE require valid-user </Location> I have debug turned on. On startup I get: [root@backuppc httpd]# service httpd start Starting httpd: [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(849): [13375] auth_ldap url parse: `ldap://10.XX.X.XXX:389/DC=centos,DC=org?sAMAccountName?sub?(objectClass=*)' [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(858): [13375] auth_ldap url parse: Host: 10.XX.XX.XXX:389 [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(860): [13375] auth_ldap url parse: Port: 389 [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(862): [13375] auth_ldap url parse: DN: DC=centos,DC=org [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(864): [13375] auth_ldap url parse: attrib: sAMAccountName [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(866): [13375] auth_ldap url parse: scope: subtree [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(871): [13375] auth_ldap url parse: filter: (objectClass=*) [Mon Oct 22 15:53:31 2007] [debug] mod_authnz_ldap.c(951): LDAP: auth_ldap not using SSL connections [ OK ]

1 0

fastcgi
by Centos 25 Oct '07

25 Oct '07

Hello is there any fastcgi rpm available. I downloaded fastcgi rpm from pbone.net, but it does not contain mod_fastcgi.so what about srpm ? http://rpm.pbone.net/index.php3/stat/4/idpl/612033/com/mod_fastcgi-2.4.0-1.… thanks for help

3 9

DNS CNAME question
by Rogelio 25 Oct '07

25 Oct '07

Not sure if this is the best place to ask this question (and if so, please point me to a better listserv), but is there anything "wrong" RFC or best practice wise with pointing a CNAME record to a DNS server? (I'm using EveryDNS.net, and I'd like to make my CNAME records ns1-> 4.myDomain.com correspond to ns1->ns4.EveryDNS.net.)

4 3

mirroring kbsingh repos
by James A. Peltier 25 Oct '07

25 Oct '07

Hi All, I'm trying to find out the best way to mirror the kbsingh repositories because most of my machines do not have access to the outside world. What is the best way to do this. I want extras and misc for both el4 and el5 all arches. -- James A. Peltier Technical Director, RHCE SCIRF | GrUVi @ Simon Fraser University - Burnaby Campus Phone : 778-782-3610 Fax : 778-782-3045 Mobile : 778-840-6434 E-Mail : jpeltier(a)cs.sfu.ca Website : http://gruvi.cs.sfu.ca | http://scirf.cs.sfu.ca MSN : subatomic_spam(a)hotmail.com

2 3

nscd problem
by James A. Peltier 25 Oct '07

25 Oct '07

Hi All, I just enabled nscd to see if I can speed up some operations on our large NFS/NIS environment, however, now that I've enabled nscd I am no longer able to sudo. Can someone please point me in the right direction? Everything was working fine prior to enabling it. -- James A. Peltier Technical Director, RHCE SCIRF | GrUVi @ Simon Fraser University - Burnaby Campus Phone : 778-782-3610 Fax : 778-782-3045 Mobile : 778-840-6434 E-Mail : jpeltier(a)cs.sfu.ca Website : http://gruvi.cs.sfu.ca | http://scirf.cs.sfu.ca MSN : subatomic_spam(a)hotmail.com

2 3

Cronjob script with date stamp?
by Scott Ehrlich 25 Oct '07

25 Oct '07

I have a cron job that calls a shell script - the script invokes dump. I'd like to do two things: - Have the script dump the results of the job to a text file. I tried this with /path/to/dump my switches -v >> /home/me/dump.log But that just produced an empty file. - Have the dump file be date-stamped with the date it was executed. Right now, I manually edit the script to change the filename to the date the dump will be taken. To get a differential dump, would I have dump produce its output to the same file each time? I would not want to overwright the existing contents. I'm currently dumping to a file on an external hard drive, but will eventually go to tape. Thanks for feedback. Scott

3 2

← Newer
1
...
5
6
7
8
9
10
11
...
33
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss October 2007