Discuss April 2011

discuss@lists.centos.org

312 participants
282 discussions

opreport version 0.9.4 on Centos Linux 5.5
by Frank Chang 26 Apr '11

26 Apr '11

Nicholas Thierry-Mieg, Thank you for your reply on Saturday Apr 23,2011. Since then I have been trying to learn how to use oprofile 0.9.4 on Centos Linux 5.5. If I follow the following steps running as root, opcontrol --shutdown opcontrol --callgraph=7 opcontrol --image=/home/frankc/DQTTest5/MatchUpTest/lirh5g_deb/Mary48.exe opcontrol --start /home/frankc/DQTTest5/MatchUpTest/lirh5g_deb/Mary48.exe opcontrol --dump opreport -c > profile_info.txt or opreport -l /home/frankc/DQTTest5/MatchUpLib/lirh5g_deb/libmdMatchup.so I obtain the following warning: warning: the last modified time of the binary file does not match that of the sample file for /home/frankc/DQTTest5/MatchUpLib/lirh5g_deb/libmdMatchup.so Either this is the wrong binary or the binary has been modified since the sample file was created. warning: the last modified time of the binary file does not match that of the sample file for /home/frankc/DQTTest5/MatchUpTest/lirh5g_deb/MatchUpAccurate.exe I am wondering how to prevent this warning message from occuring because it indicates our profiling results may be incorrect. Thank you.

1 0

Adding comments to /etc/sysconfig/iptables
by Alexander Farber 26 Apr '11

26 Apr '11

Hello, I'm a user (and big fan) of CentOS 5.6 and in my /etc/sysconfig/iptables there are few blocking rules for some annoying visitors of my website (I run a card game there since many years and some people are "special"): *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [294:35064] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -s xx.xx.0.0/16 -j DROP -A INPUT -p icmp -m icmp --icmp-type any -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp -m multiport --dports 80,8080,443 -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 \ --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 1/min --limit-burst 2 -j ACCEPT COMMIT My problem is that I often don't remember why and when a blocking rule had been added. Is there a way to add comments to the iptables file? A hash mark # does not seem to work. If comments not possible, please share few tricks - how do YOU usually use iptables on CentOS, i.e. there is "sudo service iptables save", but I've yet to discover its usefulness Regards Alex

5 5

Blocking an IP address both as source and destination
by Alexander Farber 26 Apr '11

26 Apr '11

Hello, how do you block incoming AND outgoing traffic to a site? I have 2 drop lines for a site in my /etc/sysconfig/iptables: *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [294:35064] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -s xx.xx.xx.0/24 -j DROP -A INPUT -d xx.xx.xx.0/24 -j DROP -A INPUT -p icmp -m icmp --icmp-type any -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp -m multiport --dports 80,8080 -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 1/min --limit-burst 2 -j ACCEPT COMMIT but for some reason still can "ping xx.xx.xx.1" and "ssh xx.xx.xx.1" prints "ssh: connect to host xx.xx.xx.1 port 22: Connection refused" immediately, which probably means my packets aren't dropped at all. Using CentOS 5.6/64 bit Thank you Alex

4 5

centosplus kernel not up to date ?
by Nicolas Ross 25 Apr '11

25 Apr '11

Is it possible that the kernel in the centosplus repo is not up to date ? The centosplus kernel I have is kernel-PAE-2.6.18-238.5.1.el5 and the regular one is 2.6.18-238.9.1.el5... I need the plus because of the firewire drivers. Regards,

6 13

Htaccess Help
by Matt 25 Apr '11

25 Apr '11

Been looking for a while on this before resorting to asking. I have an .htaccess file like so. order allow,deny allow from x.x.x.0/24 I have this in my root html directory and it works fine. Only allows access by the x.x.x.0/24 subnet. Thing is I have one file ~"siteinfo.html" that I want to allow anyone to access. How would I do that?

2 1

Attaching LinkSys WRT54GL to CentOS machine
by Timothy Murphy 25 Apr '11

25 Apr '11

I have a LinkSys WRT54GL router, which I would like to attach to my CentOS-5.6 server, to set up a LAN 192.168.2.* . The server is attached to the internet through a Billion modem/router which has a single ethernet outlet. The instructions for the LinkSys router assume that it is being attached directly to an ADSL modem. But for various reasons I want everything to go through my server. I wonder if anyone has set up a system like this? If so, I'd be grateful for advice on how to do it. -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland

9 21

Should svnserve run as root?
by Les Mikesell 25 Apr '11

25 Apr '11

Now that the subversion package in CentOS is a usable version I've replaced a Collabnet package with it. But, it seems odd that the svnserve process runs as root instead of having a unique user to own the files and run the process like most other daemons. Did I miss something in the setup? -- Les Mikesell lesmikesell(a)gmail.com

1 0

Samba can't access dir - SELinux problem?
by Alexander Farber 25 Apr '11

25 Apr '11

Hello, I was using CentOS 5.5 as a "playground" VM at my WinXP notebook and now I'm migrating to a new CentOS 5.6 install and everything has worked well - except samba. I have this very permissive config to export my ~/src dir: # cat /etc/samba/smb.conf [global] guest ok = yes guest account = afarber security = share hosts allow = 172.16.6. 127.0.0.1 [src] path = /home/afarber/src public = yes writable = yes printable = no But in the new install it has stopped working and prints: # tail /var/log/samba/smbd.log [2011/04/25 01:36:37, 0] smbd/service.c:make_connection_snum(1013) '/home/afarber/src' does not exist or permission denied when connecting to [src] Error was Permission denied I've checked permissions and installed rpms - they're all the same (and smbd runs as "root", doesn't it?) Is this maybe a SELinux setting problem? # tail /var/log/audit/audit.log (only at the new VM) type=AVC msg=audit(1303720863.712:53): avc: denied { search } for pid=6737 comm="smbd" name="/" dev=sda3 ino=2 scontext=user_u:system_r:smbd_t:s0 tcontext=system_u:object_r:home_root_t:s0 tclass=dir type=SYSCALL msg=audit(1303720863.712:53): arch=c000003e syscall=4 success=no exit=-13 a0=2b79380c9620 a1=7fff35dfe9f0 a2=7fff35dfe9f0 a3=ea items=0 ppid=6543 pid=6737 auid=500 uid=500 gid=0 euid=500 suid=0 fsuid=500 egid=500 sgid=0 fsgid=500 tty=(none) ses=2 comm="smbd" exe="/usr/sbin/smbd" subj=user_u:system_r:smbd_t:s0 key=(null) # ls -aldZ /home/afarber/src (same result at both old and new VMs) drwxrwxr-x afarber afarber user_u:object_r:user_home_t /home/afarber/src # ls -aldZ /home/afarber/ drwx------ afarber afarber user_u:object_r:user_home_dir_t /home/afarber/ Does anybody please know a magic command here? Thank you Alex

3 4

rpm libuser-devel is not signed
by Olaf Mueller 25 Apr '11

25 Apr '11

Hello, 'yum update' runs into the following error message. Package libuser-devel-0.54.7-2.1.el5_5.2.i386.rpm is not signed regards Olaf

13 26

Migrating standalone systems to KVM
by Jussi Hirvi 24 Apr '11

24 Apr '11

A while ago I got great instructions from Pasi for migrating standalone systems to *xen*. However, now I have decided to use KVM instead, which raises a new question: How to migrate a standalone system to *KVM*? I know a two-step way to do it: standalone system -> xen pv guest xen pv guest -> KVM pv guest I read that xen -> KVM migration is trivially easy. But is there an easier (one-step) way to do this? - Jussi -- Jussi Hirvi * Green Spot Topeliuksenkatu 15 C * 00250 Helsinki * Finland Tel. +358 9 493 981 * Mobile +358 40 771 2098 (only sms) jussi.hirvi(a)greenspot.fi * http://www.greenspot.fi

10 13

← Newer
1
...
4
5
6
7
8
9
10
...
29
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss April 2011