Matt | 21 Aug 21:43 2014
Picon

HP ProLiant DL380 G5

I have CentOS 6.x installed on a "HP ProLiant DL380 G5" server.  It
has eight 750GB drives in a hardware RAID6 array.  Its acting as a
host for a number of OpenVZ containers.

Seems like every time I reboot this server which is not very often it
sits for hours running a disk check or something on boot.  The server
is located 200+ miles away so its not very convenient to look at.  Is
there anyway to tell if it plans to run this or tell it not too?

Right now its reporting one of the drives in array is bad and last
time it did this a reboot resolved it.
Les Mikesell | 21 Aug 19:18 2014
Picon

Centos 7 lockup

A machine I set up to run OpenNMS stopped working last night - no
hardware alarm lights, but keyboard/monitor/network unresponsive.
After a reboot I see a large stack of messages like this in
/var/log/messages:

----
Aug 20 14:02:34 opennms-h-03 python: SELinux is preventing
/usr/sbin/monitor-get-edid-using-vbe from mmap
_zero access on the memprotect .

*****  Plugin mmap_zero (53.1 confidence) suggests   *************************

If you do not think /usr/sbin/monitor-get-edid-using-vbe should need
to mmap low memory in the kernel.
Then you may be under attack by a hacker, this is a very dangerous access.
Do
contact your security administrator and report this issue.

*****  Plugin catchall_boolean (42.6 confidence) suggests   ******************

If you want to allow mmap to low allowed
Then you must tell SELinux about this by enabling the
'mmap_low_allowed' boolean.
You can read 'None' man page for more details.
Do
setsebool -P mmap_low_allowed 1

*****  Plugin catchall (5.76 confidence) suggests   **************************

If you believe that monitor-get-edid-using-vbe should be allowed
(Continue reading)

Robert Moskowitz | 21 Aug 17:25 2014

Re: Trying to override MAC addr


On 08/21/2014 10:56 AM, Reindl Harald wrote:
>
> Am 21.08.2014 um 16:43 schrieb Robert Moskowitz:
>> On 08/21/2014 10:32 AM, m.roth@... wrote:
>>> Keith Keller wrote:
>>>> On 2014-08-21, John R Pierce <pierce@...> wrote:
>>>>> On 8/21/2014 7:09 AM, Robert Moskowitz wrote:
>>>>>> I am trying to override the mac addr.
>>>>> pretty sure you need to use NIC model specific utilities to do this,
>>>>> ifcfg-ethN won't do it.   the hwaddr= in there is for finding the nic,
>>>>> not for reprogramming it.
>>>> ifconfig claims to support it:
>>>>
>>>>          hw class address
>>> <snip>
>>> Also, don't forget /etc/udev/rules.d/70-persistant-net.rules
>> I can't forget what I don't know.  please point me to description of
>> these rules?
> just look at the file
>
> in the past and on CentOS before RHEL7 it was to assign MAC/device-names
> at boot, on recent Redhat based systems just remove it and stick with
> place both in the ifcfg-files while disable biosdevname and systemd
> devicenames at boot
>
> both, that udev rules and what i explained you may collide or at least
> you need to change the MAC there too to not confuse the configs
>
I worked a bit on this.  I no longer have the MAC or HW addrs in 
(Continue reading)

Robert Moskowitz | 21 Aug 16:30 2014

Re: Trying to override MAC addr

Did not work...

On 08/21/2014 10:15 AM, Reindl Harald wrote:
>
> Am 21.08.2014 um 16:09 schrieb Robert Moskowitz:
>> I am trying to override the mac addr.  Now this is on an armv7 actually
>> running the F19 kernel and Redsleeve 6, but it SHOULD be standard
>> Centos6 ifcfg-eth0 content.  Of course RSEL does not start with a
>> ifcfg-eth0 file, letting network services do all the work, so I am
>> starting from scratch, using the file from one of my C6 boxes with
>> static addressing.  My file has in it:
>>
>> DEVICE="eth0"
>> BOOTPROTO=none
>> NM_CONTROLLED="no"
>> ONBOOT="yes"
>> TYPE="Ethernet"
>> NAME="System eth0"
>> DNS1=208.83.67.188
>> GATEWAY="208.83.67.177"
>> IPADDR="208.83.67.179"
>> HOSTNAME="rigel2.htt-consult.com"
>> IPV6INIT="yes"
>> MACADDR=02:67:15:00:01:79
>> MTU=1500
> that's easy - you need to tell it the physical too
> works from Fedora 10 up to Fedora 20 that way
>
> [root <at> srv-rhsoft:~]$ cat ifcfg-eth1
> DEVICE=eth1
(Continue reading)

Robert Moskowitz | 21 Aug 16:25 2014

Re: Trying to override MAC addr


On 08/21/2014 10:15 AM, Reindl Harald wrote:
>
> Am 21.08.2014 um 16:09 schrieb Robert Moskowitz:
>> I am trying to override the mac addr.  Now this is on an armv7 actually
>> running the F19 kernel and Redsleeve 6, but it SHOULD be standard
>> Centos6 ifcfg-eth0 content.  Of course RSEL does not start with a
>> ifcfg-eth0 file, letting network services do all the work, so I am
>> starting from scratch, using the file from one of my C6 boxes with
>> static addressing.  My file has in it:
>>
>> DEVICE="eth0"
>> BOOTPROTO=none
>> NM_CONTROLLED="no"
>> ONBOOT="yes"
>> TYPE="Ethernet"
>> NAME="System eth0"
>> DNS1=208.83.67.188
>> GATEWAY="208.83.67.177"
>> IPADDR="208.83.67.179"
>> HOSTNAME="rigel2.htt-consult.com"
>> IPV6INIT="yes"
>> MACADDR=02:67:15:00:01:79
>> MTU=1500
> that's easy - you need to tell it the physical too
> works from Fedora 10 up to Fedora 20 that way
>
> [root <at> srv-rhsoft:~]$ cat ifcfg-eth1
> DEVICE=eth1
> HWADDR=68:05:ca:0d:62:c1
(Continue reading)

Robert Moskowitz | 21 Aug 16:09 2014

Trying to override MAC addr

I am trying to override the mac addr.  Now this is on an armv7 actually 
running the F19 kernel and Redsleeve 6, but it SHOULD be standard 
Centos6 ifcfg-eth0 content.  Of course RSEL does not start with a 
ifcfg-eth0 file, letting network services do all the work, so I am 
starting from scratch, using the file from one of my C6 boxes with 
static addressing.  My file has in it:

DEVICE="eth0"
BOOTPROTO=none
NM_CONTROLLED="no"
ONBOOT="yes"
TYPE="Ethernet"
NAME="System eth0"
DNS1=208.83.67.188
GATEWAY="208.83.67.177"
IPADDR="208.83.67.179"
HOSTNAME="rigel2.htt-consult.com"
IPV6INIT="yes"
MACADDR=02:67:15:00:01:79
MTU=1500

And when I restart network, it can't find eth0:

# service network restart
Shutting down loopback interface:  [  OK  ]
Bringing up loopback interface:  [  OK  ]
Bringing up interface eth0:  Device eth0 does not seem to be present, 
delaying initialization.
[FAILED]

(Continue reading)

Bill Gee | 21 Aug 16:03 2014
Picon

Re: CentOS Digest, Vol 115, Issue 21

On Thursday, August 21, 2014 12:00:03 centos-request@... wrote:
> Re: [CentOS] SELinux vs. logwatch and virsh
> From: Daniel J Walsh <dwalsh@...>
> To: CentOS mailing list <centos@...>
> 
> On 08/18/2014 02:13 PM, Bill Gee wrote:
> > Hi Dan -
> > 
> > "ausearch -m avc -ts recent" produces no output.  If I run it as "ausearch
> > -f  virsh" then it produces output similar to this.  Each day's run of
> > logwatch produces three of these audit log entries.  The a1 and a2 values
> > are different for each entry, but everything else is the same.
> > 
> > ===============
> > time->Mon Aug 18 03:21:03 2014
> > type=SYSCALL msg=audit(1408350063.257:7492): arch=c000003e syscall=21 
> > success=no exit=-13 a0=11ee230 a1=4 a2=7fff722837b0 a3=7fff72283640
> > items=0  ppid=2815 pid=2816 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0
> > egid=0 sgid=0 fsgid=0 tty=(none) ses=981 comm="bash" exe="/usr/bin/bash"
> > subj=system_u:system_r:logwatch_t:s0-s0:c0.c1023 key=(null)
> > type=AVC msg=audit(1408350063.257:7492): avc:  denied  { read }
> > for  pid=2816  comm="bash" name="virsh" dev="dm-0" ino=135911290
> > scontext=system_u:system_r:logwatch_t:s0-s0:c0.c1023 
> > tcontext=system_u:object_r:virsh_exec_t:s0 tclass=file
> > ===============
> > 
> > I thought about using audit2allow as you suggest.  The problem is then I
> > don't  really know what change is required.  What exactly will it
> > do?  And is there a guarantee that it will work?
> 
(Continue reading)

centos | 21 Aug 14:00 2014

CentOS-announce Digest, Vol 114, Issue 11

Send CentOS-announce mailing list submissions to
	centos-announce@...

To subscribe or unsubscribe via the World Wide Web, visit
	http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
	centos-announce-request@...

You can reach the person managing the list at
	centos-announce-owner@...

When replying, please edit your Subject line so it is more specific
than "Re: Contents of CentOS-announce digest..."

Today's Topics:

   1. CESA-2014:1075 Moderate CentOS 6 qemu-kvm Update (Johnny Hughes)
   2. CEBA-2014:1080  CentOS 6 ccid Update (Johnny Hughes)
   3. CEBA-2014:1081 CentOS 7 perl-Test-Pod FASTTRACK	BugFix Update
      (Johnny Hughes)

----------------------------------------------------------------------

Message: 1
Date: Tue, 19 Aug 2014 10:00:56 +0000
From: Johnny Hughes <johnny@...>
Subject: [CentOS-announce] CESA-2014:1075 Moderate CentOS 6 qemu-kvm
	Update
To: centos-announce@...
Message-ID: <20140819100056.GA27838@...>
(Continue reading)

Mark LaPierre | 21 Aug 05:06 2014
Picon

Re: Skype on CentOS 6.5 (SOLVED)

On 08/18/14 22:05, Jim Perrin wrote:>
>
> On 08/18/2014 08:09 PM, Mark LaPierre wrote:
>> Hey Y'all,
>>
>> About a week ago my Skype installation stopped working.  I can start it
up
>> but I can't log on.  Does this have something to do with the recent
update
>> to LibC?  Is there a repo som where that has the latest version of Skype
>> for CentOS 6.5?
>
> No. This is because Microsoft dropped support for older versions of Skype.
>
>
>
>> When I go to the Skype web site I see that there is a version several
>> versions newer available for RPM based Linux but that one won't even
start.
>>
>> Can anyone offer some sound advice to getting my Skype running again?
>
> Did you try the directions on the wiki?
>
> http://wiki.centos.org/HowTos/Skype
>
>

I already had the nuxrepo set up on my system.  All that was needed was

(Continue reading)

Vlado Potisk | 20 Aug 23:55 2014
Picon

lvm module missing in initramfs

After upgrading the kernel package, my Centos 7 server didn't boot. 

Here is a small summary:
old kernel = kernel-3.10.0-123.4.4.el7.x86_64 (everything just fine)
new kernel = kernel-3.10.0-123.6.3.el7.x86_64
root partition is on a primary partition, NOT on a LVM volume
/var partition is on a LVM volume
new kernel's boot problem = systemd cannot mount /var partition saying 
requirements failed or something like that

I have find out that the new kernel's initramfs image does not contain the lvm 
module while the old kernel's initramfs did.

I have created a new initramfs with lvm using dracut and could boot the server 
successfully. However I do not consider this as a fix, and don't know how to 
find the primary cause of the problem. I need some help finding out who's to 
blame:

Is the lvm module really missing? AFAIK the initramfs exists for one purpose 
only and that is to mount the root partition. All kernel modules are on this 
partition and once it is mounted, the kernel can access all hardware it 
supports - LVM included, of course. The fact is the root partition WAS mounted 
successfully before the boot process failed and the lvm module is NOT needed 
for this task. Initramfs did its job fine, didn't it?

If that's true and the lvm module is NOT missing in the initramfs, is the boot 
problem systemd related? Has it failed to activate the LVM? Why?

Any help would be appreciated.
(Continue reading)

Alan Holt | 20 Aug 17:53 2014
Picon

Re: cleaner than before RHEL7 -> Re: Run script at startup

Thanks.

I will try to use this solution (Second Way) and I'll report how it works.
This is very critical for me.

On Wed, Aug 20, 2014 at 5:58 PM, Reindl Harald <h.reindl <at> thelounge.net>
wrote:

>
> "Type=oneshot" does what the name says -> fire up a command once
> it expects that this command is short running
> since it is a bash-script and the PID is the one from
> the bash which is supposed to end after it has finished
> it would fail/restart all the time in case of monitoring
>
> "Type=simple" is a long running, non-forking service aka a
> ordinary binary which don't exit and so it's PID can be
> watched and if it disappears without a stop command, well
>
> as said, i have a lot of SSH tunnels expected to work
> 24 hours a day over different networks with Type=simple
>
> http://www.freedesktop.org/software/systemd/man/systemd.service.html
>
> Am 20.08.2014 um 16:40 schrieb Alan Holt:
> > Hello,
> >
> > thank you for your quick answer.
> >
> > You are completely right with this:
(Continue reading)


Gmane