Discuss July 2008

discuss@lists.centos.org

347 participants
435 discussions

setroubleshoot
by drew einhorn 01 Jul '08

01 Jul '08

There is a setroubleshoot package that runs under X, that really makes it a lot easier to troubleshoot selinux, but I really don't want to run X on all my vms. Does anyone here know of an equivalent that doesn't require X? -- Drew Einhorn

2 1

Yogunluk: Re: [CentOS] CentOS 5.2 kernel [2.6.18-92.1.1.el5] crasheson dual-PIII Compaq ProLiant 3000
by tapsin＠hostunuz.com 01 Jul '08

01 Jul '08

Yogunlugumuza gore mesajiniza en yakin zamanda cevap verilecektir. Sercan TAPSIN GSM: 05358583410 05542390959 05542390960 ICQ : 706886 MSN : sercantapsin(a)hotmail.com Yahoo : sercantapsin(a)yahoo.com Google : sercantapsin(a)gmail.com Mail : tapsin(a)hostunuz.com

3 2

Configuring sendmail in a corporate environment
by Alfred von Campe 01 Jul '08

01 Jul '08

I have a stock CentOS 5 system as far as email (sendmail) is concerned that is on our corporate LAN. I am not trying to set up a mail server; I merely want our CentOS systems to be able to send out emails. This works as long as the recipient's domain is our local domain. Any email send to recipients that are not in our local domain get stuck in the queue: # mailq /var/spool/mqueue (2 requests) -----Q-ID----- --Size-- -----Q-Time----- ------------Sender/ Recipient----------- m61D6wC1029257 16 Tue Jul 1 09:06 <XXXX(a)XXXX.XXXX.com> (Deferred: Connection timed out with mx2.emailsrvr.com.) <alfred(a)von-campe.com> It appears that our firewall is not allowing connection to outside MX hosts. I think I need to configure sendmail to forward emails to our local smtp host, but I am not sure how to do that. Alfred

5 6

Spacewalk from Redhat
by Bazy 01 Jul '08

01 Jul '08

Hello, Is anyone using Spacewalk (http://www.redhat.com/spacewalk/) on CentOS 5 or 4? What kind of hardware are you useing it on? Thank you.

8 9

kickstart and lang
by Jerry Geis 01 Jul '08

01 Jul '08

I have a line like: lang en_US.UTF-8 in my kickstart file. However it stops on that screen to prompt me. Everything else works fine... I am using centos 4.6. Is this line no longer correct? I am sure I got it from a anaconda file to start with. Jerry

3 3

iptables connlimit
by noro 01 Jul '08

01 Jul '08

hi, i try use iptables connlimit, # iptables -I INPUT -p tcp --dport 80 -m connlimit --connlimit-above 16 --connlimit-mask 24 -j DROP iptables: Unknown error 4294967295 where is problem ? thanks # rpm -qa | grep iptables iptables-1.3.5-4.el5 # uname -a Linux test 2.6.18-92.1.1.el5 #1 SMP Sat Jun 21 19:04:27 EDT 2008 i686 i686 i386 GNU/Linux

3 2

Yum repository for bacula for CentOS 5?
by Kevin Thorpe 01 Jul '08

01 Jul '08

Can anyone point me at a yum repository containing a CentOS 5 version of bacula? thanks -- Kevin Thorpe

3 3

2.6.18-92.1.6.el5xen hangs Samba daemon
by Brett Serkez 01 Jul '08

01 Jul '08

All, I have a fresh CentOS 5.2 server that I am just starting to customize, it is very close to stock. This morning I ran yum update: ============================================================================= Installing: kernel-xen i686 2.6.18-92.1.6.el5 updates 15 M Updating: samba i386 3.0.28-1.el5_2.1 updates 16 M samba-client i386 3.0.28-1.el5_2.1 updates 4.9 M samba-common i386 3.0.28-1.el5_2.1 updates 8.7 M After rebooting, Samba would not start, running 'service smb start' simply hangs forever, nothing in the logs I could find and I could see from ps that smbd was never forking to release the start script. I discovered that if I boot using the previous kernel 2.6.18-92.1.1.el5xen all is well. I did try regressing samba by uninstalling and then installing disabling the updates repo to no avail, the older version (1.1) of Samba was installed when I tried booting the older kernel, which did work, as well as the updated version (1.6). Brett

3 4

self Certificate Authority, using /etc/pki/tls/misc/CA
by David Hláčik 01 Jul '08

01 Jul '08

Hello all, lately i am facing problems with Certification Authorities. I have used centos script /etc/pki/tls/misc/CA my own certificate authority. In next steps i am generating requests for certificates to services such as LDAP,NNRPD and lately signing requests with CA. My approach is to import my own CA into Windows Vista OS as root CA and trusted, to avoid messages in clients such as "certificate could not be verified, certificate is not signed or cerficate authority cannot be verified". When i asked for help at openssl mailinglist i have recieved interesting answer : Just make sure your certificate is actually one "son" of your CA. > > It is right To make one CA cert with the 509 extensions set to CA > X509v3 Basic Constraints: > CA:TRUE > X509v3 Key Usage: > Certificate Sign, CRL Sign > Netscape Cert Type: > SSL CA, S/MIME CA > > But it is a mistake to make the "son" as ANOTHER SELF SIGNED cert with > those > extensions not set as CA > X509v3 extensions: > X509v3 Basic Constraints: > CA:FALSE > Netscape Cert Type: > SSL Client, SSL Server, S/MIME, Object Signing > X509v3 Key Usage: > Digital Signature, Non Repudiation, Key Encipherment > Netscape Comment: > > I know of important companies doing this mistake. > The second cert has to be one SIGNED by the first CA authority, not a > selfsigned one with CA fields "off" of false. > Said in other words: the second cert is the result or output of a CSR > (certificate signing request) signed by the CA cert. Yes, that is true, so why this is not so in case of /etc/pki/tls/misc/CA . All my generated server certificates signed with own CA, using this script have : X509v3 extensions: > X509v3 Basic Constraints: > CA:FALSE > Netscape Comment: > OpenSSL Generated Certificate > X509v3 Subject Key Identifier: > CC:FC:A1:2D:DE:CD:D1:9E:34:F3:89:08:F9:D6:30:79:AF:EE:6B:94 > X509v3 Authority Key Identifier: > > keyid:C7:B9:B0:BC:5A:A2:73:18:02:F2:80:E2:8A:0C:BC:58:0C:87:14:95 Thanks in advance! DAVID

1 0

where is ProxyHTMLURLMap for C5 ?
by tblader 01 Jul '08

01 Jul '08

Hello, I'm setting up a reverse proxy in Apache (httpd-2.2.3-11.el5_1.centos.3) I have some pages being served which contain hard-coded names of machines behind the proxy, which obviously do not resolve on the client side. I found an Apache config item called ProxyHTMLURLMap* which supposedly will allow me to re-write these hostnames, but can't seem to find the apache module to install Starting httpd: 'ProxyHTMLURLMap', perhaps misspelled or defined by a module not included in the server configuration Anyone know what the name of that rpm/module is for Centos 5? Thanks!

2 1

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss July 2008