Joe Nall | 1 Dec 01:36 2010

Re: biosdevname hitting rawhide


On Nov 30, 2010, at 4:34 PM, Matt Domsch wrote:

> On Tue, Nov 30, 2010 at 04:29:32PM -0600, Michael Cronenworth wrote:
>> Matt Domsch wrote:
>>>>> Yes, your system, on new install, or if you delete
>>>>> /etc/udev/rules.d/70-persistent-net.rules and the HWADDR lines from
>>>>> /etc/sysconfig/network-scripts/ifcfg-*, will then use the new names.
>>> specifically, em0 for the above device, and em<Type Instance>  for the
>>> second NIC specified in SMBIOS...
>> 
>> OK. Perhaps the wiki should be updated to state the feature works more 
>> generically (SMBIOS 2.6+) and not for just Dell/HP systems?
> 
> I've done so now.
> 
>> Interesting work, Matt. I'm surprised the Unix purists who would fight 
>> you to death to keep sendmail on desktops would allow you to change the 
>> almighty eth* naming scheme.
> 
> I've caught flack for years - that's why this is just now happening.
> The previous released version of biosdevname was over 3 years ago -
> the pushback was against changing the eth* naming scheme.  But there's
> no other way to do it.  I wish there was.

As someone who deals with HP DL580 boxes with 6+ NICs routinely, this is good stuff. Deterministic naming of
the built in NICs will simplify installation instructions for us.

Are the internal names going to be lomX or emX?

(Continue reading)

Joe Nall | 1 Dec 01:45 2010

Re: [HEADS-UP] Moving /var/run and /var/lock to tmpfs in Rawhide


On Nov 30, 2010, at 4:01 PM, Tom Lane wrote:

> Paul Howarth <paul <at> city-fan.org> writes:
>> Paul Wouters <paul <at> xelerance.com> wrote:
>>> Can't selinux pickup things without a restorecon? And what is the
>>> problem another (root) process screwing over a pid or lock file?
>>> Can't SElinux lock that down from the /var/run level?
> 
>> /var/run is var_run_t in targeted policy, but hardly anything below
>> /var/run is - almost every subdir/file has its own context type.
> 
>> Just creating a file/directory within /var/run using the initscript will
>> inherit the var_run_t, which in most cases is not what's needed, hence
>> the need for restorecon.
> 
>> Having the daemon create the file/dir works better because there will
>> be a type transition defined in policy that results in the correct
>> context type being used.
> 
> That comment suggests you don't even understand the reason why those
> subdirectories exist.  It's this: the daemons do not, and should not,
> run with the root privileges needed to create things directly in
> /var/run.  The point of a subdirectory is to be owned by the
> lower-privilege account under which the particular daemon is running.
> If the subdir has to be remade at runtime, that has to be done by the
> root-privilege initscript, because /var/run is only writable by root.

I was nodding my head in agreement reading this paragraph, and then I
looked at my development box. Only avahi-daemon and hald follow this
(Continue reading)

Garry T. Williams | 1 Dec 02:08 2010
Picon

Re: [HEADS-UP] Moving /var/run and /var/lock to tmpfs in Rawhide

On Tuesday, November 30, 2010 19:45:11 Joe Nall wrote:
> On Nov 30, 2010, at 4:01 PM, Tom Lane wrote:
>> That comment suggests you don't even understand the reason why those
>> subdirectories exist.  It's this: the daemons do not, and should not,
>> run with the root privileges needed to create things directly in
>> /var/run.  The point of a subdirectory is to be owned by the
>> lower-privilege account under which the particular daemon is running.
>> If the subdir has to be remade at runtime, that has to be done by the
>> root-privilege initscript, because /var/run is only writable by root.
>
> I was nodding my head in agreement reading this paragraph, and then I
> looked at my development box. Only avahi-daemon and hald follow this
> pattern in my /var/run (which I'm sure is not a complete sample).

Well, the distinct types are there.

Plus, my /var/run has directories owned by:

    avahi
    haldaemon
    mysql
    named

Also, the group owners are different from root on:

    cups
    screen

I'm still nodding my head in agreement.  :-)

(Continue reading)

Ben Boeckel | 1 Dec 02:33 2010
Picon

Re: biosdevname hitting rawhide

Michael Cronenworth <mike <at> cchtml.com> wrote:
> Interesting work, Matt. I'm surprised the Unix purists who would fight 
> you to death to keep sendmail on desktops would allow you to change the 
> almighty eth* naming scheme.

Why? FreeBSD (and other BSDs, I'm sure) have been naming network
interfaces based on the manufacturer, at least, for a while now (I
personally started with 7.x and am unsure of when that was new). I was
always curious why eth* was used on Linux actually.

--Ben

--

-- 
devel mailing list
devel <at> lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel

Ryan Rix | 1 Dec 03:08 2010
Picon

Re: Released 2 projects (SaltOS and RhinOS) under GPL-3.0

Also look at http://fedoraproject.org/wiki/ISV_Welcome if you're 
interested in more of an ISV point of view. Not sure if the ISV sig is 
still active, but there are enough people who care that we can find you 
some place :)

On 11/30/2010 01:04 PM, William Lima wrote:
> Hello Sanz,
>
> Take a look at:
>
> http://fedoraproject.org/wiki/How_to_get_sponsored_into_the_packager_group
>
> and
>
> irc://irc.freenode.net/fedora-devel
>
>
> On Tue, Nov 30, 2010 at 5:08 PM, Josep Sanz<josep.sanz <at> ws3.es>  wrote:
>> Hi.
>>
>> I send this email to inform you that we have released under GPL-3.0 two projects:
>>
>> - SaltOS: is an ERP / CRM / Management Suite, ideal for freelancers and SMEs.
>>
>> - RhinOS: is a solution to have a professional website, ideal for any web project.
>>
>> You can find more information at http://www.ws3.es
>>
>> I would like to suggest these programs (especially SaltOS) as tools to be included in the Fedora
distribution. What do we do? Where do we contact?
(Continue reading)

Matt Domsch | 1 Dec 04:58 2010
Picon

Re: biosdevname hitting rawhide

On Tue, Nov 30, 2010 at 06:36:17PM -0600, Joe Nall wrote:
> As someone who deals with HP DL580 boxes with 6+ NICs routinely,
> this is good stuff. Deterministic naming of the built in NICs will
> simplify installation instructions for us.

Thanks for the good word!

> Are the internal names going to be lomX or emX?

embedded NICs are emX
Add-in cards are pci<slot>#<port>

in both cases, if the device is an SR-IOV NIC, it will append _<vf> to
the name for each virtual function.

Now, oddly, I don't have a lot of HP gear handy - especially not a
Flex10.  If someone does, I'd love to know how to tell the various
partitions of a Flex10 are on the same port, so we can append
_<flex10-instance> similar to SR-IOV.  I'm asking the same of Broadcom
who just published an update to handle NPAR for their 57712 driver to
netdev over the weekend.

Than

-- 
Matt Domsch
Technology Strategist
Dell | Office of the CTO
--

-- 
devel mailing list
(Continue reading)

Frank Ch. Eigler | 1 Dec 05:38 2010
Picon

Re: [HEADS-UP] Moving /var/run and /var/lock to tmpfs in Rawhide


Daniel J Walsh <dwalsh <at> redhat.com> writes:

> [...]
> So if you create a directory in the postinstall of an rpm, the directory
> will be created as var_run_t (rule 1),  rpm has SELinux intelligence
> built in, but since you did this in postinstall, rpm command does not
> know you did it.  You will have to run restorecon. [...]

If the directories were listed in %files, as %ghost or whatever, rpm
could figure it out, no?  Could we have a single early rpm-based
initscript that creates all /var/run & /var/lock subdirs owned by
installed packages, and selinux-labels them?

- FChE
--

-- 
devel mailing list
devel <at> lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel

Picon

Re: Released 2 projects (SaltOS and RhinOS) under GPL-3.0

Hello, Josep.

I have looked at SaltOS and found it very nice on first glance. As in sphere of my interests CRM, ERP and groupware solutions I think I can look to it and help in packaging. But before we can start. In SaltOS distributive now bundled many libs and foreign software, what is strongly forbidden in Fedora - [1], [2]. Do you ready start work to separate them and use system versions?

[1] http://fedoraproject.org/wiki/Packaging:No_Bundled_Libraries
[2] http://fedoraproject.org/wiki/Packaging/Guidelines#Bundling_of_multiple_projects

30.11.2010 22:08, Josep Sanz пишет:
Hi.

I send this email to inform you that we have released under GPL-3.0 two projects:

- SaltOS: is an ERP / CRM / Management Suite, ideal for freelancers and SMEs.

- RhinOS: is a solution to have a professional website, ideal for any web project.

You can find more information at http://www.ws3.es

I would like to suggest these programs (especially SaltOS) as tools to be included in the Fedora distribution. What do we do? Where do we contact?

We remain at your disposal for any clarification or suggestion.

Josep Sanz.

--

--

-- 
devel mailing list
devel <at> lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
Jon Masters | 1 Dec 09:20 2010

Re: biosdevname hitting rawhide

On Tue, 2010-11-30 at 16:29 -0600, Michael Cronenworth wrote:
> Matt Domsch wrote:
> >> >  Yes, your system, on new install, or if you delete
> >> >  /etc/udev/rules.d/70-persistent-net.rules and the HWADDR lines from
> >> >  /etc/sysconfig/network-scripts/ifcfg-*, will then use the new names.
> > specifically, em0 for the above device, and em<Type Instance>  for the
> > second NIC specified in SMBIOS...
> 
> OK. Perhaps the wiki should be updated to state the feature works more 
> generically (SMBIOS 2.6+) and not for just Dell/HP systems?

+1

And also, I'd love to see fewer attacks on Dell here. Matt is doing good
work that is generic and uses open standards that can be implemented by
many vendors. The fact that some have yet to move on SMBIOS struct type
additions reflects on them alone.

> Interesting work, Matt. I'm surprised the Unix purists who would fight 
> you to death to keep sendmail on desktops would allow you to change the 
> almighty eth* naming scheme.

Because it makes *sense* and is in keeping with UNIX tradition on many
systems. I'm all for making all manner of changes when there is a
justification that is rationalized and the benefits can be explained.
When it's hand wavy "this is good" type stuff, I feel different :)

Jon.

--

-- 
devel mailing list
devel <at> lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel

Rahul Sundaram | 1 Dec 09:34 2010
Picon

Re: biosdevname hitting rawhide

On 12/01/2010 01:50 PM, Jon Masters wrote:
> On Tue, 2010-11-30 at 16:29 -0600, Michael Cronenworth wrote:
>>
>> OK. Perhaps the wiki should be updated to state the feature works more 
>> generically (SMBIOS 2.6+) and not for just Dell/HP systems?
> +1
>
> And also, I'd love to see fewer attacks on Dell here. 

Can you point out a single attack on Dell in this entire conversation?

Rahul
--

-- 
devel mailing list
devel <at> lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel


Gmane