Discuss

discuss@lists.centos.org

1 participants
34732 discussions

Samba setup
by Robert G. (Doc) Savage 31 Jan '21

31 Jan '21

I'm following https://www.linuxbabe.com/redhat/set-up-samba-server-on-centos-8-rhel-8-for… to set up Samba 4.12.3-12 on my Storinator fileserver running CentOS 8.3. I am trying to share out /tank/Windows/ as a Samba share: # ls -al /tank total 61 drwxr-xr-x. 6 root root 7 Dec 26 10:43 Backups drwxr-xr-x. 6 root root 6 Dec 4 22:47 Repos drwxrwxrwx. 2 doc doc 4 Dec 28 14:01 VMs drwxrwxrwx. 2 root root 2 Jan 17 17:04 Windows My /etc/samba/smb.conf file is set up as follows: # testparm Load smb config files from /etc/samba/smb.conf Loaded services file OK. Server role: ROLE_STANDALONE Press enter to see a dump of your service definitions # Global parameters [global] printcap name = cups security = USER idmap config * : backend = tdb cups options = raw hosts allow = 192.168.0 ... [public] comment = public share, no need to enter username and password guest ok = Yes path = /tank/Windows read only = No When I try to map network drive from my Windows 10 PC using the graphical File Explorer, it asks me for my username and password. It doesn't accept my password. When I try to map it at the CMD cli, I get: C:\> net use S: \\192.168.1.20\public\ System error 67 has occurred. The network name cannot be found. Could this be a network browsing problem in Samba? What have I missed? --Doc Savage Fairview Heights, IL

3 5

Re: [CentOS] Samba setup
by Robert G. (Doc) Savage 30 Jan '21

30 Jan '21

On Fri, 2021-01-29 at 04:40 +0000, Strahil Nikolov wrote: > I know from experience that you need to decide how you control access > and you got 2 options: > > - Linux directory is set to 777 and all control is in samba > - Linux directory is set as if unix user will access it and you use > the sam uid/gid for both client and server accounts (AD, FreeIPA, > LDAP) > > What is your settings right now ? > > Best Regards, > Strahil Nikolov Strahil, 777 and ownership of /tank/Windows is nobody:nobody. It's actually an empty directory right now. Not using AD/FreeIPA/LDAP. --Robert Savage Fairview Heights, IL > > > On Thu, Jan 28, 2021 at 7:57, Robert G. (Doc) Savage via CentOS > > <centos(a)centos.org> wrote: > > On Tue, 2021-01-19 at 17:18 +0100, Götz Reinicke wrote: > > > > > > Anything in the samba logs? May be SELinux/Firewall issues? > > > > Götz, > > > > Unfortunately, no. > > > > The nmbd log verifies that the fileserver's samba service is the > > local > > master browser for WORKGROUP on both eth0 and virbr0. > > > > [2021/01/17 19:02:22.190795, 0] > > > > ../../source3/nmbd/nmbd_become_lmb.c:397(become_local_master_stage2 > > ) > > ***** > > Samba name server LIONSTORE is now a local master browser for > > workgroup > > WORKGROUP on subnet 192.168.1.20 > > ***** > > > > [2021/01/17 19:02:22.191085, 0] > > > > ../../source3/nmbd/nmbd_become_lmb.c:397(become_local_master_stage2 > > ) > > ***** > > Samba name server LIONSTORE is now a local master browser for > > workgroup > > WORKGROUP on subnet 192.168.122.1 > > ***** > > > > The samba smbd log simply reports the connection denials: > > > > [2021/01/17 23:07:40.304626, 0] > > ../../lib/util/access.c:371(allow_access) > > Denied connection from 192.168.1.30 (192.168.1.30 > > > > There's nothing in the SELinux logs for that date. > > > > I checked firewall-config on the storage server and verified that > > the > > samba service is allowed (but not samba-client or samba-dc). > > > > Is there a really comprehensive setup checklist available for > > setting > > up samba on CentOS? The partial how-tos I've been able to find are > > obviously not enough. I'm looking for completer smb.conf setup, > > firewall settings, required services, directory permissions, > > accounts, > > and anything else that's required. I'm running up against very > > unhelpful roadblocks that seem to indicate a critical permissions > > problem but nothing specific. > > > > V/R > > --Doc Savage > > Fairview Heights, IL > > > > _______________________________________________ > > CentOS mailing list > > CentOS(a)centos.org > > https://lists.centos.org/mailman/listinfo/centos

2 3

Telegram on CentOS 7
by H 29 Jan '21

29 Jan '21

Is anyone running Telegram on CentOS 7? I see that it seems to be available as a snap and also in the getpagespeed repository. I try to avoid snap apps but am not familiar with the latter repository. Does anyone have experience with either source for the program?

3 4

How do I download RHEL 8.3 with free license and free subscription for my production servers?
by Turritopsis Dohrnii Teo En Ming 29 Jan '21

29 Jan '21

Subject: How do I download RHEL 8.3 with free license and free subscription for my production servers? Good day from Singapore, I am referring to the following news articles. Article: CentOS is gone—but RHEL is now free for up to 16 production servers Link: https://arstechnica.com/gadgets/2021/01/centos-is-gone-but-rhel-is-now-free… Article: Red Hat’s Disruption of CentOS Unleashes Storm of Dissent Link: https://www.enterpriseai.news/2021/01/22/red-hats-disruption-of-centos-unle… How do I download Red Hat Enterprise Linux 8.3 with free license and free subscription for my production servers? When I visited Red Hat's official website, I don't see any page or any option to download RHEL 8.3 with free license and free subscription. Please advise. Thank you very much. Mr. Turritopsis Dohrnii Teo En Ming, 42 years old as of 28 January 2021 Thursday, is a TARGETED INDIVIDUAL living in Singapore. He is an IT Consultant with a System Integrator (SI)/computer firm in Singapore. He is an IT enthusiast. -----BEGIN EMAIL SIGNATURE----- The Gospel for all Targeted Individuals (TIs): [The New York Times] Microwave Weapons Are Prime Suspect in Ills of U.S. Embassy Workers Link: https://www.nytimes.com/2018/09/01/science/sonic-attack-cuba-microwave.html ******************************************************************************************** Singaporean Targeted Individual Mr. Turritopsis Dohrnii Teo En Ming's Academic Qualifications as at 14 Feb 2019 and refugee seeking attempts at the United Nations Refugee Agency Bangkok (21 Mar 2017), in Taiwan (5 Aug 2019) and Australia (25 Dec 2019 to 9 Jan 2020): [1] https://tdtemcerts.wordpress.com/ [2] https://tdtemcerts.blogspot.sg/ [3] https://www.scribd.com/user/270125049/Teo-En-Ming -----END EMAIL SIGNATURE-----

5 4

CentOS 6 fix sudo CVE-2021-3156
by Gionatan Danti 28 Jan '21

28 Jan '21

Hi all, do you know if a fix for sudo CVE-2021-3156 is available for CentOS 6? While CentOS 6 is now supported anymore, RedHat has it under its payedsupport agreement (see: https://access.redhat.com/security/vulnerabilities/RHSB-2021-002) So I wonder if some community-packaged patch exists... Thanks. -- Danti Gionatan Supporto Tecnico Assyoma S.r.l. - www.assyoma.it email: g.danti(a)assyoma.it - info(a)assyoma.it GPG public key ID: FF5F32A8

7 11

OPIE w/ OpenSSH Account Enumeration The remote host is susceptible to an information disclosure attack.
by Kaushal Shriyan 28 Jan '21

28 Jan '21

Hi, I am running the openssh-server-7.4p1-21.el7.x86_64 on CentOS Linux release 7.9.2009 (Core). #cat /etc/redhat-release CentOS Linux release 7.9.2009 (Core) # rpm -qa |grep ssh openssh-server-7.4p1-21.el7.x86_64 libssh2-1.8.0-4.el7.x86_64 openssh-7.4p1-21.el7.x86_64 openssh-clients-7.4p1-21.el7.x86_64 While invoking the Vulnerability Assessment and Penetration Testing (VAPT) scan, we are encountering the below vulnerability. OPIE w/ OpenSSH Account Enumeration The remote host is susceptible to an > information disclosure attack. CVE-2007-2768 A patch currently does not > exist for this issue. As a workaround, ensure that OPIE for PAM is not > installed. > Version source : SSH-2.0-OpenSSH_7.4 > Installed version : 7.4 > https://seclists.org/fulldisclosure/2007/Apr/634 Any help will be highly appreciated. Thanks in Advance. Please let me know if you need any additional information. Best Regards, Kaushal -

2 1

Re: [CentOS] How to query which yum package groups a particular package is member of
by Jamie Burchell 28 Jan '21

28 Jan '21

How about using yum history to find when and why the package was installed? yum history summary dnsmasq yum history package-list dnsmasq Jamie On Wed, 27 Jan 2021 at 20:56, Kenneth Porter <shiva(a)sewingwitch.com> wrote: > --On Wednesday, January 27, 2021 3:31 PM -0500 Stephen John Smoogen > <smooge(a)gmail.com> wrote: > > > or one can look for the comps file in /var/cache/yum > > > > network-tools has dnsmasq listed as a package > > > > repoquery says the following on my rhel box > > NetworkManager-1:1.4.0-20.el7_3.x86_64 > > libvirt-daemon-driver-network-0:4.5.0-36.el7_9.3.x86_64 > > Aha! It's actually in network-server ("Network Infrastructure Server") > group. network-tools is the next one in the comps.xml file. The group name > sounds like something I might have wanted for my application, but the > contents are really for a lightweight server like one finds in a consumer > router. > > But, except for dhcp and radvd, none of the other packages in that group > are installed, so I still don't see how I got dnsmasq on my system. Here's > the network-server package list: > > <packagereq type="optional">dhcp</packagereq> > <packagereq type="optional">dnsmasq</packagereq> > <packagereq type="optional">freeradius</packagereq> > <packagereq type="optional">quagga</packagereq> > <packagereq type="optional">radvd</packagereq> > <packagereq type="optional">rsyslog-gnutls</packagereq> > <packagereq type="optional">rsyslog-gssapi</packagereq> > <packagereq type="optional">rsyslog-kafka</packagereq> > <packagereq type="optional">rsyslog-mysql</packagereq> > <packagereq type="optional">rsyslog-pgsql</packagereq> > <packagereq type="optional">rsyslog-relp</packagereq> > <packagereq type="optional">syslinux</packagereq> > <packagereq type="optional">syslinux-tftpboot</packagereq> > <packagereq type="optional">tang</packagereq> > <packagereq type="optional">tftp-server</packagereq> > > > _______________________________________________ > CentOS mailing list > CentOS(a)centos.org > https://lists.centos.org/mailman/listinfo/centos >

3 4

Re: [CentOS] How to query which yum package groups a particular package is member of
by Stephen John Smoogen 27 Jan '21

27 Jan '21

On Wed, 27 Jan 2021 at 15:23, Kenneth Porter <shiva(a)sewingwitch.com> wrote: > --On Wednesday, January 27, 2021 8:07 PM +0000 J Martin Rushton via CentOS > <centos(a)centos.org> wrote: > > > Here's how to find the package for a particular file: > > That one's easy and I use this all the time: > > rpm -qf full-file-name > > I'm looking for how to get the yum group for a package. (I'm guessing a > package might even be in more than one group?) That would help explain how > the dnsmasq package got installed on my system. (It was never enabled by > systemd and isn't required by any other package. So I went ahead and > erased > it to free the space and reduce my attack surface.) > > > yum group list then look at the groups installed yum group info <group> as in yum group info base > _______________________________________________ > CentOS mailing list > CentOS(a)centos.org > https://lists.centos.org/mailman/listinfo/centos > -- Stephen J Smoogen.

2 2

How to query which yum package groups a particular package is member of
by Kenneth Porter 27 Jan '21

27 Jan '21

I'm trying to find out how dnsmasq got on my CentOS 7 system, since I use BIND for DNS. I'm guessing it was part of a base group that Anaconda installs for all systems. Red Hat has this answered on this page but the answer is only available to subscribers. I'm guessing this kind of content will be available to us once the new free subscription thing starts. <https://access.redhat.com/solutions/2534881>

2 2

Re: [CentOS] How to query which yum package groups a particular package is member of
by Stephen John Smoogen 27 Jan '21

27 Jan '21

On Wed, 27 Jan 2021 at 15:01, Kenneth Porter <shiva(a)sewingwitch.com> wrote: > I'm trying to find out how dnsmasq got on my CentOS 7 system, since I use > BIND for DNS. I'm guessing it was part of a base group that Anaconda > installs for all systems. > > probably from virtualization if it is there.. but a way to check is repoquery --whatrequires dnsmasq Red Hat has this answered on this page but the answer is only available to > subscribers. I'm guessing this kind of content will be available to us > once > the new free subscription thing starts. > > <https://access.redhat.com/solutions/2534881> > > _______________________________________________ > CentOS mailing list > CentOS(a)centos.org > https://lists.centos.org/mailman/listinfo/centos > -- Stephen J Smoogen.

1 0

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss