Craig White | 1 Sep 01:11 2011

Re: Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables


On Aug 31, 2011, at 1:08 PM, Louis Lagendijk wrote:

> On Wed, 2011-08-31 at 19:00 +0100, Always Learning wrote:
>> On Wed, 2011-08-31 at 13:55 -0400, Lamar Owen wrote:
>> 
>>> On Wednesday, August 31, 2011 01:33:31 PM Always Learning wrote:
>>>> Rather than being a willing or passive victim to 100% of the attacks, I
>>>> aim to reduce the penetrability of most of them.
>> 
> Still useless: it is not the attacks that you know about and that show
> themselves as errors in your logs (and filter from the log, that is the
> only gain), but those where you have a real security hole that you have
> to worry about. And those will be exploited from one of the many other
> bots in the hackers botnet. 
> An empty log may give you a nice feeling of security, but it is false...
> A lot of work, but very little if any gain.
> Louis
----
you're wasting your breath - I tried to tell him that a week ago but he only hears his own thoughts anyway.

More to the point, he disables SELinux and then spends hours trying to improve security.

Craig
Always Learning | 1 Sep 01:28 2011
Picon

Re: Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables


On Wed, 2011-08-31 at 16:11 -0700, Craig White wrote:
> More to the point, he disables SELinux and then spends hours trying to
> improve security.

Tell the world the ENTIRE story. 

Disabled it because things would not run. Said publicly in the last 7
days will find time to learn about Selinux and the details of the file
description blocks which SElinux appear to use.

I am trying to filter-out some web page access attepts in IP Tables.
When will you accept that has nothing to do with Selinux ?

Have a nice day.

Paul.
Michael D. Berger | 1 Sep 01:28 2011
Picon

Re: CentOS 6, KDE 4: bad DNS traffic

On Wed, 31 Aug 2011 18:22:42 +0000, Michael D. Berger wrote:

> On my new CentOS 6, KDE 4, running WireShark I see what appears to be
> frequent nonsensical DNS queries, for example:
>    "settings-personal.desktop" and "settings-system.desktop".
> The DNS response is always:"No such name".  Do tell! These appear
> especially when I click on things on the KDE menus.  On my old CentOS 5
> box, on the same LAN, I see no such thing.  I note that I have replaced
> the original /etc/hosts with my own.  Might these have been resolved in
> the original?
> 
> Thanks for your comments.
> Mike.

It appears that the peculiar URLs in the DNS queries are the
name of files that appear in the directory:
   /usr/share/kde4/services/
I looked at a few with vi, and they appear to be lists of
words for concepts in numerous languages.  Does this help in
determining why they should appear as URLs in DNS queries?

Thanks,
Mike.
Greg Bailey | 1 Sep 01:49 2011

Re: CentOS 6 packages

On 8/31/2011 3:30 PM, CS DBA wrote:
> Hi all;
>
> does anyone know if the following packages are available (via yum) for
> CentOS 6 and if so which repo they come from?
>
> Thanks in advance...
>
>
> kmymoney
> darktable
> digiKam
>

You could try the search page at:

http://pkgs.org/search/

I didn't get any hits for kmymoney nor darktable for CentOS 6 (there was 
for CentOS 5), but I did for digiKam:

http://pkgs.org/search/?keyword=digikam&search_on=name&distro=82&arch=32-bit

-Greg
John R. Dennison | 1 Sep 02:28 2011

Re: Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables

On Thu, Sep 01, 2011 at 12:28:01AM +0100, Always Learning wrote:
> 
> Tell the world the ENTIRE story. 

That you never listen to anyone but yourself?  I'm confident that this
is a known fact.

> I am trying to filter-out some web page access attepts in IP Tables.
> When will you accept that has nothing to do with Selinux ?

About the same time you realize that it's futile and selinux will
compartmentalize any risk if it was to occur.

Hint: your way isn't always, nor is it even often, the best way.

						John
--

-- 
The first lesson of economics is that we live in a world of scarcity.
There is never enough of anything to satisfy all those who want it.  The
first lesson of politics is to ignore the first lesson of economics.

-- Thomas Sowell (1930-), American economist and political commentator
_______________________________________________
CentOS mailing list
CentOS@...
http://lists.centos.org/mailman/listinfo/centos
Tom Lanyon | 1 Sep 03:05 2011
Picon

Re: Apache warns Web server admins of DoS attack tool

On 31/08/2011, at 11:07 PM, Karanbir Singh wrote:
> On 08/31/2011 10:56 AM, Timo Schoeler wrote:
>> Just released:
>> https://www.apache.org/dist/httpd/Announcement2.2.html
> 
> thanks. I guess we should wait on a fix from upstream, make sure its 
> tested etc. If there is interest in doing a local fix/build for c4/5/6 
> testing repo's, please submit a patch and I can push it through the 
> buildsys. For the main distro, lets wait on the upstream fix.

For EL 4, 5, 6:

https://rhn.redhat.com/errata/RHSA-2011-1245.html

Tom
John R Pierce | 1 Sep 03:06 2011

Re: Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables

On 08/31/11 4:28 PM, Always Learning wrote:
> Disabled it because things would not run.

Always Talking.  Never Learning.

--

-- 
john r pierce                            N 37, W 122
santa cruz ca                         mid-left coast
Always Learning | 1 Sep 03:09 2011
Picon

Re: Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables


On Wed, 2011-08-31 at 18:06 -0700, John R Pierce wrote:
> On 08/31/11 4:28 PM, Always Learning wrote:
> > Disabled it because things would not run.
> 
> Always Talking.  Never Learning.

Always Learning despite the taunts !

Paul.
Jonathan Vomacka | 1 Sep 03:21 2011
Picon

CentOS 6 Partitioning Map/Schema

Good Evening All,

I have a question regarding CentOS 6 server partitioning. Now I know 
there are a lot of different ways to partition the system and different 
opinions depending on the use of the server. I currently have a quad 
core intel system running 8GB of RAM with 1 TB hard drive (single). In 
the past as a FreeBSD user, I have always made a physical volume of the 
root filesystem (/), SWAP, /tmp, /usr, /var, and /home. In the 
partitioning manager I would always specify 10GB for root, 2GB or so for 
SWAP, 20GB var, 50GB usr, 10GB /tmp, and allocate all remaining space to 
my home directory as my primary data volume (assuming all my 
applications are installed and ran from my home directories). I was 
recently told that this is an old style of partitioning and is not used 
in modern day Linux distributions. So more accurately, here are my 
questions to the list:

1) What is a good partition map/schema for a server OS where it's 
primary purpose is for a LAMP server, DNS (bind), and possibly gameservers

2) CentOS docs recommend using 10GB SWAP for 8GB of RAM. 1X the amount 
of physical memory + 2GB added. (Reference: 
http://www.centos.org/docs/5/html/Installation_Guide-en-US/s1-diskpartitioning-x86.html). 
I was told this is ridiculous and will severely slow down the system. Is 
this true? If so, what is a good swap space to use for 8GB of RAM? The 
university of MIT recommends making MULTIPLE 2GB swap spaces equaling 
10GB if this is the case. Please help!

3) Is EXT4 better or worse to use then XFS for what I am planning to use 
the system for?

(Continue reading)

Jonathan Vomacka | 1 Sep 03:28 2011
Picon

CentOS 6 Partitioning Help

*Re-sending as it appears my original e-mail did not go through*.

Good Evening All,

I have a question regarding CentOS 6 server partitioning. Now I know 
there are a lot of different ways to partition the system and different 
opinions depending on the use of the server. I currently have a quad 
core intel system running 8GB of RAM with 1 TB hard drive (single). In 
the past as a FreeBSD user, I have always made a physical volume of the 
root filesystem (/), SWAP, /tmp, /usr, /var, and /home. In the 
partitioning manager I would always specify 10GB for root, 2GB or so for 
SWAP, 20GB var, 50GB usr, 10GB /tmp, and allocate all remaining space to 
my home directory as my primary data volume (assuming all my 
applications are installed and ran from my home directories). I was 
recently told that this is an old style of partitioning and is not used 
in modern day Linux distributions. So more accurately, here are my 
questions to the list:

1) What is a good partition map/schema for a server OS where it's 
primary purpose is for a LAMP server, DNS (bind), and possibly gameservers

2) CentOS docs recommend using 10GB SWAP for 8GB of RAM. 1X the amount 
of physical memory + 2GB added. (Reference: 
http://www.centos.org/docs/5/html/Installation_Guide-en-US/s1-diskpartitioning-x86.html). 
I was told this is ridiculous and will severely slow down the system. Is 
this true? If so, what is a good swap space to use for 8GB of RAM? The 
university of MIT recommends making MULTIPLE 2GB swap spaces equaling 
10GB if this is the case. Please help!

3) Is EXT4 better or worse to use then XFS for what I am planning to use 
(Continue reading)


Gmane