Discuss October 2010

discuss@lists.centos.org

256 participants
226 discussions

sudo 1.6.9 versus sudo 1.7.2 behavioral differences with umask settings
by David Goldsmith 08 Oct '10

08 Oct '10

Two servers, each have normal user umask values of 0077 and root umask values on 0022. On the first server (CentOS 5.4 i386) running sudo 1.6.9pl7-5 (from base), here are the results of touching a file as a user, as root and as a user sudoing to root: user: touch file - result is 600 root: touch file - result is 644 user: sudo touch file - result is 644 On the second server (CentOS x86-64) running sudo 1.7.2p1-7 (from updates), here are the results of the same actions: user: touch file - result is 600 root: touch file - result is 644 user: sudo touch file - result is 600 ** this differs ** On the second system, if I downgrade sudo to the base version, it behaves the same as on the first server, so this appears to be sudo version specific rather than an i386 vs x86-64 difference. Looking at the changelogs at the package home site, I don't see anything obvious that covers this change: http://www.courtesan.com/sudo/stable.html#1.7.0 http://www.courtesan.com/sudo/stable.html#1.7.1 http://www.courtesan.com/sudo/stable.html#1.7.2 Does anyone know how to change the behavior with the umask values when using the newer version of sudo? This is causing us some issues when sudoing to update an SVN working directory used by our Puppet server. Thanks, David Goldsmith

4 8

Zoneminder
by Joseph L. Casale 08 Oct '10

08 Oct '10

I have a few dvr's that I am contemplating converting to Zoneminder (don't know any other app) and would prefer to use CentOS over fedora obviously but the only rpm I see exists for Fedora. I don't want the hassle of manually compiling this, as we have our own config mgmt. Anyone using this rpm (srpm recompiled) in CentOS or know of a solution that exists? Thanks! jlc

6 9

Duplex networkprinter for Linux
by kim.gabrielsen＠get2net.dk 07 Oct '10

07 Oct '10

Hi, does anybody know about a duplex (color) printer with linux support? either with centos as print server or - preferably - as a stand alone network printer? thanks. KIm

11 12

Re: [CentOS] LDAP authentication on a remote server (via ldaps://) [SOLVED]
by Mathieu Baudier 07 Oct '10

07 Oct '10

> Here are the changes I'd review: > > 1. After installing the CA cert, did you create a hash link? E.g., > > /usr/sbin/cacertdir_rehash /etc/openldap/cacerts > > 2. Make sure you know the difference between /etc/ldap.conf and > /etc/openldap/ldap.conf. The former is used by nss_ldap, the > latter by openldap clients. > > 3. Does /etc/ldap.conf have all the correct TLS entries, e.g., > > ssl start_tls > tls_checkpeer yes > tls_cacertdir /etc/openldap/cacerts > > Additionally, I've had trouble using the "uri" directive > in /etc/ldap.conf, esp. with encrypted connections. The > "host" and "port" directives have worked better for me. > > 4. Does /etc/pam.d/system-auth have pam_ldap.so entries for > auth, account, password, and session? > > 5. Are you running nscd? (I've found it indispensable when working > with network auth.) > > 6. Review the changes to /etc/nsswitch.conf to make sure that > the passwd, shadow, and group entries all query ldap. Thanks a lot for this check-list (I recommend it for others in the future). I had already checked most of the points, but I still played around with your ideas, without success But, this remark: > I've never done ldaps to port 636, only TLS to port 389, so some of my > comments may be slightly off-base in your situtation. made me think of checking what should be the difference between a START_TLS on a plain ldap port and ldaps on the ssl port In /etc/ldap.conf: for ldap + START_TLS this is indeed > ssl start_tls but for ldaps (my case) this should be: ssl on Changing the value of 'ssl' to 'on' solved my problem! (and this explains why my ldapsearch queries were working: as you pointed out, /etc/ldap.conf is for the configuration of nss_ldap) IMHO, the comments in /etc/ldap.conf could be a bit more explicit on the 'on' value: ... # OpenLDAP SSL mechanism # start_tls mechanism uses the normal LDAP port, LDAPS typically 636 #ssl start_tls #ssl on ... Thanks a lot for your help!

7 12

CentOS-announce Digest, Vol 68, Issue 3
by centos-announce-request＠centos.org 07 Oct '10

07 Oct '10

Send CentOS-announce mailing list submissions to centos-announce(a)centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request(a)centos.org You can reach the person managing the list at centos-announce-owner(a)centos.org When replying, please edit your Subject line so it is more specific than "Re: Contents of CentOS-announce digest..." Today's Topics: 1. CESA-2010:0742 Moderate CentOS 4 i386 postgresql - security update (Tru Huynh) 2. CESA-2010:0742 Moderate CentOS 4 x86_64 postgresql - security update (Tru Huynh) ---------------------------------------------------------------------- Message: 1 Date: Wed, 6 Oct 2010 20:48:46 +0200 From: Tru Huynh <tru(a)centos.org> Subject: [CentOS-announce] CESA-2010:0742 Moderate CentOS 4 i386 postgresql - security update To: centos-announce(a)centos.org Message-ID: <20101006184845.GG23836(a)sillage.bis.pasteur.fr> Content-Type: text/plain; charset="us-ascii" CentOS Errata and Security Advisory CESA-2010:0742 postgresql security update for CentOS 4 i386: https://rhn.redhat.com/errata/RHSA-2010-0742.html The following updated file has been uploaded and is currently syncing to the mirrors: i386: updates/i386/RPMS/postgresql-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-contrib-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-devel-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-docs-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-jdbc-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-libs-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-pl-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-python-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-server-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-tcl-7.4.30-1.el4_8.1.i386.rpm updates/i386/RPMS/postgresql-test-7.4.30-1.el4_8.1.i386.rpm source: updates/SRPMS/postgresql-7.4.30-1.el4_8.1.src.rpm You may update your CentOS-4 i386 installations by running the command: yum update postgresql Tru -- Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance) http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B

1 0

does ssh-copy-id not use "id_rsa.pub" file by default?
by Robert P. J. Day 07 Oct '10

07 Oct '10

yesterday, i was demoing how to use ssh-copy-id on centos 5.5 to copy one's public key to another machine and account so you don't need to type the password anymore. i used "ssh-keygen" to create the standard RSA-format files, then checked the man page for ssh-copy-id, which reads: ssh-copy-id [-i [identity_file]] [user@]machine ... If the -i option is given then the identity file (defaults to ~/.ssh/id_rsa.pub) is used the above seems to suggest that, as long as i'm happy copying over the default id_rsa.pub file, all i need type is: $ ssh-copy-id -i barney(a)192.168.2.19 /usr/bin/ssh-copy-id: ERROR: No identities found $ clearly, that doesn't work. but if i simply add in the name of the file, it's fine: $ ssh-copy-id -i .ssh/id_rsa.pub barney(a)192.168.2.19 ^^^^^^^^^^^^^^^ any reason for that? the man page clearly states that that file is the default, but it's obvious i still need to type its name. am i missing something? is the man page wrong? rday -- ======================================================================== Robert P. J. Day Waterloo, Ontario, CANADA http://crashcourse.ca Twitter: http://twitter.com/rpjday LinkedIn: http://ca.linkedin.com/in/rpjday ========================================================================

5 7

hfsutils package
by Jerry Geis 07 Oct '10

07 Oct '10

Has anyone used the hfsutils package? I tried the following and get an error: hfs mount ../vlc-1.1.3-intel.dmg hfsutils version 3.2.6 - Copyright (C) 1996-1998 Robert Leslie This is free software but comes with ABSOLUTELY NO WARRANTY. Type `license' for details. expected integer but got "../vlc-1.1.3-intel.dmg" while executing "hfs mount $path $partno" (procedure "hmount" line 20) invoked from within "hmount mount ../vlc-1.1.3-intel.dmg" ("eval" body line 1) invoked from within "eval hmount $argv" invoked from within "if {$argc > 0} { eval hmount $argv }" (file "/usr/bin/hfs" line 457) I'm sure its something I am doing wrong but I dont see it. Jerry

1 1

XEN images and XFS don't seem to get along
by Boris Epstein 07 Oct '10

07 Oct '10

Hello listmates, It appears that on the second machine in a row (CentOS 5.5, 32 bit) if I am trying to place a VM into a file located in XFS the machine just hangs (the host machine, not the VM). If I place the VM in a raw device or in a file in ext3 all seems to work perfectly. Is that just a coincidence or is there a reason for this madness? Thanks. Boris.

2 1

(no subject)
by mamwake＠yahoo.com 07 Oct '10

07 Oct '10

http://equitation-accordee.com/to.php

1 0

networking problem
by Ben McGinnes 07 Oct '10

07 Oct '10

On 7/10/10 6:20 PM, Smith Erick Marume-Bahizire wrote: > Hello > Please I want help in centos server I can ping the gateway or > my eth1 ip address but i cant browse from my server could you help > me with the codes the codes that will enable network cause i've > already configure my iptables and it's showing me that everything is > ok. Please help Thank you. Okay, firstly, when asking for help with a new issue, it is best to start a new message rather than reply to a message on an unrelated topic. Otherwise those of us using threaded mail clients (like Mutt or Thunderbird) might overlook the query. Secondly, we need a little detail about your current network configuration and what you have tried. Is it only browsing that is not working, or do other services not work either? Can you send through the output of: route -n cat /etc/resolv.conf Regards, Ben

2 1

← Newer
1
...
16
17
18
19
20
21
22
23
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss October 2010