From rstevens at vitalstream.com Sat Apr 1 00:19:35 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Fri, 31 Mar 2006 16:19:35 -0800 Subject: Logging in to bogged down system? In-Reply-To: <21208.198.60.114.90.1143838769.squirrel@webmail.ourldsfamily.com> References: <20060329011739.E20DEFE2FC@hosting4.userservices.net> <1143599408.3839.57.camel@prophead.corp.publichost.com> <21208.198.60.114.90.1143838769.squirrel@webmail.ourldsfamily.com> Message-ID: <1143850775.3839.193.camel@prophead.corp.publichost.com> On Fri, 2006-03-31 at 13:59 -0700, karlp at ourldsfamily.com wrote: > On Tue, March 28, 2006 7:30 pm, Rick Stevens said: > > On Tue, 2006-03-28 at 17:17 -0800, Harold Hallikainen wrote: > >> My FC4 system has been running great for months. But today, I headed > >> for Arkansas and the server is in California. Once I got here to AR, I > >> noticed that it was serving web pages real slowly. I logged in using > >> ssh and ran top. I found a TON of httpd processes running, using, at > >> that time, 86% of the processor time. I figured I'd try to reboot the > >> system through ssh, but now I can't even get in to it that way. I > >> connect, but the password is never requested. Instead, I get > >> "ssh_exchange_identification: read: Connection reset by peer > >> ". So, anything I can do from a couple thousand miles away? > > > > Just keep trying or get someone to hard boot it. You should also > > put the following tweaks in your /etc/sysctl.conf file to tweak > > HTTP session handling: > > > > net.ipv4.tcp_fin_timeout = 1 > > net.ipv4.tcp_max_syn_backlog = 2048 > > net.ipv4.tcp_syn_retries = 3 > > net.ipv4.tcp_tw_recycle = 1 > > net.ipv4.tcp_tw_reuse = 1 > > Are these settings 'safe' for RH8.0 and RH9? I guess a better question is, > are these settings used by 8.0 or 9? They should be. Just check /proc/sys/net/ipv4 and verify that the last bits of the things above exist as filenames, e.g.: net.ipv4.tcp_fin_timeout = /proc/sys/net/ipv4/tcp_fin_timeout If you want to just test them first without making them permanent, then echo the value to the file, e.g.: echo "1" >/proc/sys/net/ipv4/tcp_fin_timeout Note that they'll revert back to their previous settings if you DON'T put them in /etc/sysctl.conf. BTW, they're explained in the kernel's "Documentation/networking/ip-sysctl.txt" file which is part of the "kernel-doc" RPM. It's also found in the various kernel source RPMs. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Never test for an error condition you don't know how to handle. - ---------------------------------------------------------------------- From harold at hallikainen.com Sat Apr 1 04:07:07 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 31 Mar 2006 20:07:07 -0800 Subject: Logging into bogged down server Message-ID: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> For some reason, this email client deletes all the received message when I reply and then select text instead of html... When I get back home and restart the FC4 machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into the bogged down server. No luck yet. I did change the DNS server to send stuff away from this server in the hopes it would eventuall finish off all those processes and start accepting my ssh login (to the IP address instead of the domain). No luck so far. In a couple days I can go hit the reset button. Besides the modifications to configs suggested so far, I'm also thinking of adding a hardware watchdog timer to the machine so it'll reset itself should it ever do this again. I've seen a couple circuits on the web, based on a 555 timer. One of them I found looked like it could be locked up if the machine crashed during a watchdog reset. Back when I was designing MC6802 based systems, I did a watchdog timer like that and had to drive 100 miles in Kansas to hit the reset switch on a system. Watchdog timers I design now reset on an edge instead of a level so if the reset line gets stuck at either level, the watchdog will time out and reset the system. So, that's my next project! thanks for the help! Harold FCC Rules online at http://www.hallikainen.com From akelly at corisweb.org Mon Apr 3 07:31:21 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Mon, 03 Apr 2006 09:31:21 +0200 Subject: Dell Guru in the house? In-Reply-To: <442A9E6B.4020605@sjsears.com> References: <1143642983.2676.7.camel@fedora.at.home> <442A9E6B.4020605@sjsears.com> Message-ID: <1144049481.2676.14.camel@fedora.at.home> On Wed, 2006-03-29 at 15:49 +0100, Stuart Sears wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Andrew Kelly wrote: > > Hi all, > > > 2. I'm only being offered a resolution of 800x600 even though the 15.4 > > inch UltraSharp WSXGA+ is capable of (1680x1050). > > Anybody know how to get FC5 to use all this capability? > usually this is due to the system-config-display tool not recognising > your monitor properly. On my dell d800 I had to reconfigure this as well. > > so, run 'system-config-display' > you should see 'unknown monitor' > click on the hardware tab, configure your monitor. > you can find a suitable model under > Generic LCD -> LCD Panel 1680x1050 [insert Homer Simpson sound here] Stuart, thank you very much. I was occupied with half a dozen other, unrelated problems when I wrote this. Sorry I didn't have a chance to write the list and slap myself in the face before you went though the effort of answering. Yes, it was the wrong monitor, and yes, I'm embarrassed for having gone completely mental for half an hour. .. one of those forest<=>trees things Andy From john.j.poole at usa-spaceops.com Mon Apr 3 15:27:34 2006 From: john.j.poole at usa-spaceops.com (Poole, John J) Date: Mon, 3 Apr 2006 11:27:34 -0400 Subject: Redhat-install-list Digest, Vol 26, Issue 1 Message-ID: <2CE66A1ABBED8C4B85DFF5E0860987A3051D6D38@usaflcms03.usa-spaceops.ksc.nasa.gov> Alexey, If you are using DOS to ftp a "zip" file, I think you must tell ftp it is a "binary file" ftp problem with large file. John -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com]On Behalf Of redhat-install-list-request at redhat.com Sent: Saturday, April 01, 2006 12:01 PM To: redhat-install-list at redhat.com Subject: Redhat-install-list Digest, Vol 26, Issue 1 Send Redhat-install-list mailing list submissions to redhat-install-list at redhat.com To subscribe or unsubscribe via the World Wide Web, visit https://www.redhat.com/mailman/listinfo/redhat-install-list or, via email, send a message with subject or body 'help' to redhat-install-list-request at redhat.com You can reach the person managing the list at redhat-install-list-owner at redhat.com When replying, please edit your Subject line so it is more specific than "Re: Contents of Redhat-install-list digest..." Today's Topics: 1. RE: ftp problem with large file (Bret Stern) 2. Re: Question about upgrade mode (Rick Stevens) 3. Re: Logging in to bogged down system? (karlp at ourldsfamily.com) 4. Re: Logging in to bogged down system? (Rick Stevens) 5. RE: Logging into bogged down server (Harold Hallikainen) ---------------------------------------------------------------------- Message: 1 Date: Fri, 31 Mar 2006 09:54:38 -0800 From: "Bret Stern" Subject: RE: ftp problem with large file To: "Mehmet Halil" , "Getting started with Red Hat Linux" , Message-ID: Content-Type: text/plain; charset="iso-8859-1" RE: ftp problem with large file -----Original Message----- From: Mehmet Halil [mailto:Mehmet.Halil at dsp-global.com] Sent: Friday, March 31, 2006 9:01 AM To: Getting started with Red Hat Linux; bret_stern at machinemanagement.com; redhat-install-list at redhat.com Subject: RE: ftp problem with large file Hi, I believe your problem might be originating from the Windows server end. You may have to modify the registry to get around this problem. The following artcile clearly explains what you need to do: http://support.microsoft.com/default.aspx?scid=kb;en-us;304101 Cheers ---------------------------------------------------------------------------- -- From: redhat-install-list-bounces at redhat.com on behalf of A.Fadyushin at it-centre.ru Sent: Fri 3/31/2006 17:18 To: bret_stern at machinemanagement.com; redhat-install-list at redhat.com Subject: RE: ftp problem with large file Is the size of partially transferred file the same for both attempts? Also, I sometimes have seen FTP sessions closed by the server due to network problems between the server and the client (these problems caused timeouts at the server side). Alexey Fadyushin Brainbench MVP for Linux. http://www.brainbench.com > -----Original Message----- > From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list- > bounces at redhat.com] On Behalf Of Bret Stern > Sent: Thursday, March 30, 2006 11:09 PM > To: redhat-install-list at redhat.com > Subject: ftp problem with large file > > > I'm trying to transfer a 200mb .zip file using > ftp from a remote clients windows server machine > to my office ftp server. > > My office ftp server is RH4 running vsftpd. > > The target folder is home/mm a standard > system generated user folder. > > Are there any size limits to this folder? > > The error message on the sending ftp client > is "remote session closed by host". > > The transfer works up to about 25 megs (not exact), > then is terminated. I've tried it twice. > > Any ideas welcome. > > Regards, > > Bret Stern > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe This message has been sent via the Internet. Internet communications are not secure against interception or modification. DSP Global Ltd therefore cannot guarantee that this message has not been modified in transit. This message and any files transmitted with it are confidential and intended solely for the use of the addressee. The unauthorised use, disclosure, copying or alteration of this message is forbidden. If you have received this message in error please notify the sender and destroy your copies of the message and any attached files. Please note that in replying to this mail, you are granting the right for that reply to be forwarded to any other individual and to be read by a surrogate in the event that the intended recipient is out of the office or is no longer employed by the company. Any views expressed by an individual within this message do not necessarily reflect the views of company. DSP Global Ltd, Vigilant House, 120 Wilton Road, London SW1V 1JZ. It was a network configuration problem on my side. There are no problems as of now. Thanks all -------------- next part -------------- An HTML attachment was scrubbed... URL: https://www.redhat.com/archives/redhat-install-list/attachments/20060331/fc64633c/attachment.html ------------------------------ Message: 2 Date: Fri, 31 Mar 2006 09:59:43 -0800 From: Rick Stevens Subject: Re: Question about upgrade mode To: Getting started with Red Hat Linux Message-ID: <1143827983.3839.149.camel at prophead.corp.publichost.com> Content-Type: text/plain On Fri, 2006-03-31 at 16:24 +0800, Xiao Wei Zhang wrote: > Hi all, > I need to upgrade my RHEL3 and RHEL4 system to the latest service > level. I have done this by a kickstart file in upgrade mode through > network. The upgrade is successful, but it can not allow me to perform > some additional setup(such as updating dirvers or sending messages to > other machine) besides updating rpms. In install mode I can put some > scripts in %pre and %post sections in kickstart file. but in upgrade > mode both of these two sections will be ignored. Is there any way that > allow me to run some scripts after the upgrade finishes and before > system reboots. I really appreciate your help. Thank you! Note that the Kickstart manual specificially says: --------------------- CUT HERE ------------------------------------- For kickstart upgrades, the following items are required: * Language * Language support * Installation method * Device specification (if device is needed to perform installation) * Keyboard setup * The upgrade keyword * Boot loader configuration If any other items are specified for an upgrade, those items will be ignored (note that this includes package selection). --------------------- CUT HERE ------------------------------------- So you're out of luck running %pre or %post stuff during upgrades. The theory is that the items have already been installed and configured, and the upgrade is primarily to update the code--not the configs. That's also why the package selection code is also disabled during upgrades... you can only upgrade things already installed. Dependencies are handled if a new version of something requires another RPM, but you can't _install_ new or additional packages. If you must run stuff after the upgrade but before the system is fully up, you'll have to boot in single-user mode and do your thing there. Sorry! ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - To err is human, to forgive, beyond the scope of the OS - ---------------------------------------------------------------------- ------------------------------ Message: 3 Date: Fri, 31 Mar 2006 13:59:29 -0700 (MST) From: karlp at ourldsfamily.com Subject: Re: Logging in to bogged down system? To: "Getting started with Red Hat Linux" Message-ID: <21208.198.60.114.90.1143838769.squirrel at webmail.ourldsfamily.com> Content-Type: text/plain;charset=iso-8859-1 On Tue, March 28, 2006 7:30 pm, Rick Stevens said: > On Tue, 2006-03-28 at 17:17 -0800, Harold Hallikainen wrote: >> My FC4 system has been running great for months. But today, I headed >> for Arkansas and the server is in California. Once I got here to AR, I >> noticed that it was serving web pages real slowly. I logged in using >> ssh and ran top. I found a TON of httpd processes running, using, at >> that time, 86% of the processor time. I figured I'd try to reboot the >> system through ssh, but now I can't even get in to it that way. I >> connect, but the password is never requested. Instead, I get >> "ssh_exchange_identification: read: Connection reset by peer >> ". So, anything I can do from a couple thousand miles away? > > Just keep trying or get someone to hard boot it. You should also > put the following tweaks in your /etc/sysctl.conf file to tweak > HTTP session handling: > > net.ipv4.tcp_fin_timeout = 1 > net.ipv4.tcp_max_syn_backlog = 2048 > net.ipv4.tcp_syn_retries = 3 > net.ipv4.tcp_tw_recycle = 1 > net.ipv4.tcp_tw_reuse = 1 Are these settings 'safe' for RH8.0 and RH9? I guess a better question is, are these settings used by 8.0 or 9? Karl > > These will force faster recycling of the TCP connections and will help > block some DDOS attacks. > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - "If you can't fix it...duct tape it!" - Tim Allen - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- ------------------------------ Message: 4 Date: Fri, 31 Mar 2006 16:19:35 -0800 From: Rick Stevens Subject: Re: Logging in to bogged down system? To: Getting started with Red Hat Linux Message-ID: <1143850775.3839.193.camel at prophead.corp.publichost.com> Content-Type: text/plain On Fri, 2006-03-31 at 13:59 -0700, karlp at ourldsfamily.com wrote: > On Tue, March 28, 2006 7:30 pm, Rick Stevens said: > > On Tue, 2006-03-28 at 17:17 -0800, Harold Hallikainen wrote: > >> My FC4 system has been running great for months. But today, I headed > >> for Arkansas and the server is in California. Once I got here to AR, I > >> noticed that it was serving web pages real slowly. I logged in using > >> ssh and ran top. I found a TON of httpd processes running, using, at > >> that time, 86% of the processor time. I figured I'd try to reboot the > >> system through ssh, but now I can't even get in to it that way. I > >> connect, but the password is never requested. Instead, I get > >> "ssh_exchange_identification: read: Connection reset by peer > >> ". So, anything I can do from a couple thousand miles away? > > > > Just keep trying or get someone to hard boot it. You should also > > put the following tweaks in your /etc/sysctl.conf file to tweak > > HTTP session handling: > > > > net.ipv4.tcp_fin_timeout = 1 > > net.ipv4.tcp_max_syn_backlog = 2048 > > net.ipv4.tcp_syn_retries = 3 > > net.ipv4.tcp_tw_recycle = 1 > > net.ipv4.tcp_tw_reuse = 1 > > Are these settings 'safe' for RH8.0 and RH9? I guess a better question is, > are these settings used by 8.0 or 9? They should be. Just check /proc/sys/net/ipv4 and verify that the last bits of the things above exist as filenames, e.g.: net.ipv4.tcp_fin_timeout = /proc/sys/net/ipv4/tcp_fin_timeout If you want to just test them first without making them permanent, then echo the value to the file, e.g.: echo "1" >/proc/sys/net/ipv4/tcp_fin_timeout Note that they'll revert back to their previous settings if you DON'T put them in /etc/sysctl.conf. BTW, they're explained in the kernel's "Documentation/networking/ip-sysctl.txt" file which is part of the "kernel-doc" RPM. It's also found in the various kernel source RPMs. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Never test for an error condition you don't know how to handle. - ---------------------------------------------------------------------- ------------------------------ Message: 5 Date: Fri, 31 Mar 2006 20:07:07 -0800 From: Harold Hallikainen Subject: RE: Logging into bogged down server To: Getting started with Red Hat Linux Message-ID: <20060401040707.2E1FCFF2BE at hosting4.userservices.net> Content-Type: text/plain; charset="iso-8859-1" For some reason, this email client deletes all the received message when I reply and then select text instead of html... When I get back home and restart the FC4 machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into the bogged down server. No luck yet. I did change the DNS server to send stuff away from this server in the hopes it would eventuall finish off all those processes and start accepting my ssh login (to the IP address instead of the domain). No luck so far. In a couple days I can go hit the reset button. Besides the modifications to configs suggested so far, I'm also thinking of adding a hardware watchdog timer to the machine so it'll reset itself should it ever do this again. I've seen a couple circuits on the web, based on a 555 timer. One of them I found looked like it could be locked up if the machine crashed during a watchdog reset. Back when I was designing MC6802 based systems, I did a watchdog timer like that and had to drive 100 miles in Kansas to hit the reset switch on a system. Watchdog timers I design now reset on an edge instead of a level so if the reset line gets stuck at either level, the watchdog will time out and reset the system. So, that's my next project! thanks for the help! Harold FCC Rules online at http://www.hallikainen.com ------------------------------ _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list End of Redhat-install-list Digest, Vol 26, Issue 1 ************************************************** From rstevens at vitalstream.com Mon Apr 3 17:40:04 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 03 Apr 2006 10:40:04 -0700 Subject: Logging into bogged down server In-Reply-To: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> Message-ID: <1144086004.3839.212.camel@prophead.corp.publichost.com> On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: > For some reason, this email client deletes all the received message when I reply > and then select text instead of html... When I get back home and restart the FC4 > machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into > the bogged down server. No luck yet. I did change the DNS server to send stuff > away from this server in the hopes it would eventuall finish off all those > processes and start accepting my ssh login (to the IP address instead of the > domain). No luck so far. In a couple days I can go hit the reset button. > > Besides the modifications to configs suggested so far, I'm also thinking of > adding a hardware watchdog timer to the machine so it'll reset itself should it > ever do this again. I've seen a couple circuits on the web, based on a 555 timer. > One of them I found looked like it could be locked up if the machine crashed > during a watchdog reset. Back when I was designing MC6802 based systems, I did a > watchdog timer like that and had to drive 100 miles in Kansas to hit the reset > switch on a system. Watchdog timers I design now reset on an edge instead of a > level so if the reset line gets stuck at either level, the watchdog will time out > and reset the system. So, that's my next project! Useful. We use remote-controlled power strips. You can log into the strip (modem or TCP/IP) and power-cycle any of the outlets on it. HIGHLY recommended for "dark data centers". ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - The moving cursor writes, and having written, blinks on. - ---------------------------------------------------------------------- From tpotter at techmarin.com Mon Apr 3 19:28:42 2006 From: tpotter at techmarin.com (Ted Potter) Date: Mon, 3 Apr 2006 12:28:42 -0700 Subject: iptables how to close mysql port 3306 Message-ID: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> Greetings, have a machine with kernel 2.4.21-27.0.2.EL can someone please provide the command line for using iptables to close off port 3306 so remote mysql user can not attach to the mysqlserver running on this box. To make it fun, no I can not install anything. No there is not gui. Everthing I do must be from the command line on the box. Bout the only blessing is I can ssh in to the box as root. Thanks for any who care to play and share. PS I tried the following: iptables -A INPUT -p tcp -d 3306 -j REJECT then I see iptables --list REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable and I can still log on to the server remotely. Thanks again. (because it is Monday after 4-1 and the joker decided to wait!) -- Ted Potter tpotter at techmarin.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From admin at tootai.net Mon Apr 3 20:30:55 2006 From: admin at tootai.net (Administrator TOOTAI) Date: Mon, 03 Apr 2006 22:30:55 +0200 Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> Message-ID: <443185FF.6000601@tootai.net> Ted Potter wrote: > > Greetings, > > have a machine with kernel 2.4.21-27.0.2.EL > > can someone please provide the command line for using iptables to > close off port 3306 so remote > mysql user can not attach to the mysqlserver running on this box. > > To make it fun, no I can not install anything. No there is not gui. > Everthing I do must be from > the command line on the box. Bout the only blessing is I can ssh in to > the box as root. > > Thanks for any who care to play and share. > > PS > > I tried the following: > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > then I see > > iptables --list > REJECT tcp -- anywhere 0.0.12.234 reject-wthi > icmp-port-unreachable > > and I can still log on to the server remotely. > > > Thanks again. > (because it is Monday after 4-1 and the joker decided to wait!) Hi Ted, the best if you don't want that user connect to mysql is ... to stop the service;-) The rule you give with -d is for IP address, not port. It's --dport you have to use. The best start for your iptable rules is dropping everything and then open what you need Ex: # Flush all Rules $IPTABLES -F $IPTABLES -X $IPTABLES -t nat -F $IPTABLES -t nat -X $IPTABLES -t mangle -F $IPTABLES -t mangle -X # Deny all by default $IPTABLES -P INPUT DROP $IPTABLES -P OUTPUT DROP $IPTABLES -P FORWARD DROP -- Daniel From brkittycat at verizon.net Mon Apr 3 20:33:08 2006 From: brkittycat at verizon.net (Brenda Radford) Date: Mon, 03 Apr 2006 16:33:08 -0400 Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> Message-ID: <44318684.7040505@verizon.net> Ted Potter wrote: > > Greetings, > > have a machine with kernel 2.4.21-27.0.2.EL > > can someone please provide the command line for using iptables to > close off port 3306 so remote > mysql user can not attach to the mysqlserver running on this box. > > To make it fun, no I can not install anything. No there is not gui. > Everthing I do must be from > the command line on the box. Bout the only blessing is I can ssh in to > the box as root. > > Thanks for any who care to play and share. > > PS > > I tried the following: > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > then I see > > iptables --list > REJECT tcp -- anywhere 0.0.12.234 reject-wthi > icmp-port-unreachable > > and I can still log on to the server remotely. > > > Thanks again. > (because it is Monday after 4-1 and the joker decided to wait!) > > > > > > > > > > > -- > Ted Potter > tpotter at techmarin.com The -d 3306 should be --dports 3306. -d is for destination IP addresses. --dports is for destination ports. From ajai at bway.net Mon Apr 3 21:58:31 2006 From: ajai at bway.net (A. Khattri) Date: Mon, 3 Apr 2006 17:58:31 -0400 (EDT) Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> Message-ID: On Mon, 3 Apr 2006, Ted Potter wrote: > To make it fun, no I can not install anything. No there is not gui. > Everthing I do must be from > the command line on the box. Bout the only blessing is I can ssh in to the > box as root. > > Thanks for any who care to play and share. > > PS > > I tried the following: > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > then I see > > iptables --list > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > and I can still log on to the server remotely. Much easier to edit /etc/my.cnf and tell MySQL to not use networking (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). -- From tpotter at techmarin.com Mon Apr 3 22:07:51 2006 From: tpotter at techmarin.com (Ted Potter) Date: Mon, 3 Apr 2006 15:07:51 -0700 Subject: iptables how to close mysql port 3306 In-Reply-To: References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> Message-ID: <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> On 4/3/06, A. Khattri wrote: > On Mon, 3 Apr 2006, Ted Potter wrote: > > > To make it fun, no I can not install anything. No there is not gui. > > Everthing I do must be from > > the command line on the box. Bout the only blessing is I can ssh in to the > > box as root. > > > > Thanks for any who care to play and share. > > > > PS > > > > I tried the following: > > > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > > > then I see > > > > iptables --list > > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > > > and I can still log on to the server remotely. > > Much easier to edit /etc/my.cnf and tell MySQL to not use networking > (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). Thanks for the tip, however I can find no such file on the server. Darn it that would of been a sweet fix. Thank you ! Ted > -- > > > > > -- Ted Potter tpotter at techmarin.com From tpotter at techmarin.com Mon Apr 3 22:39:34 2006 From: tpotter at techmarin.com (Ted Potter) Date: Mon, 3 Apr 2006 15:39:34 -0700 Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> Message-ID: <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> On 4/3/06, Ted Potter wrote: > On 4/3/06, A. Khattri wrote: > > On Mon, 3 Apr 2006, Ted Potter wrote: > > > > > To make it fun, no I can not install anything. No there is not gui. > > > Everthing I do must be from > > > the command line on the box. Bout the only blessing is I can ssh in to the > > > box as root. > > > > > > Thanks for any who care to play and share. > > > > > > PS > > > > > > I tried the following: > > > > > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > > > > > then I see > > > > > > iptables --list > > > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > > > > > and I can still log on to the server remotely. > > > > Much easier to edit /etc/my.cnf and tell MySQL to not use networking > > (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > > > Thanks for the tip, however I can find no such file on the server. Darn it > that would of been a sweet fix. > > Thank you ! > > Ted ok so I tried this # iptables -A INPUT -p tcp -dports 3306 -j DROP Bad argument 3306 # huh ? the manual states -dports is an valid alias for --destination-ports OK so [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP Bad argument `3306' Try `iptables -h' or 'iptables --help' for more information. [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP iptables v1.2.8: Unknown arg `--dports' Try `iptables -h' or 'iptables --help' for more information. [root at d7148 bin]# [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP iptables v1.2.8: Unknown arg `--destination-ports' Try `iptables -h' or 'iptables --help' for more information. [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP Bad argument `3306' Try `iptables -h' or 'iptables --help' for more information. Any other ideas ? - for now I am going to find a cli interface that might help get this done. From hq4ever at gmail.com Mon Apr 3 23:28:30 2006 From: hq4ever at gmail.com (Maxim Vexler) Date: Tue, 4 Apr 2006 01:28:30 +0200 Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> Message-ID: On 4/4/06, Ted Potter wrote: > On 4/3/06, Ted Potter wrote: > > On 4/3/06, A. Khattri wrote: > > > On Mon, 3 Apr 2006, Ted Potter wrote: > > > > > > > To make it fun, no I can not install anything. No there is not gui. > > > > Everthing I do must be from > > > > the command line on the box. Bout the only blessing is I can ssh in to the > > > > box as root. > > > > > > > > Thanks for any who care to play and share. > > > > > > > > PS > > > > > > > > I tried the following: > > > > > > > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > > > > > > > then I see > > > > > > > > iptables --list > > > > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > > > > > > > and I can still log on to the server remotely. > > > > > > Much easier to edit /etc/my.cnf and tell MySQL to not use networking > > > (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > > > > > > Thanks for the tip, however I can find no such file on the server. Darn it > > that would of been a sweet fix. > > > > Thank you ! > > > > Ted > > ok so I tried this > # iptables -A INPUT -p tcp -dports 3306 -j DROP > Bad argument 3306 > # > huh ? the manual states -dports is an valid alias for --destination-ports > > OK so > [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP > Bad argument `3306' > Try `iptables -h' or 'iptables --help' for more information. > [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP > iptables v1.2.8: Unknown arg `--dports' > Try `iptables -h' or 'iptables --help' for more information. > [root at d7148 bin]# > [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP > iptables v1.2.8: Unknown arg `--destination-ports' > Try `iptables -h' or 'iptables --help' for more information. > [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP > Bad argument `3306' > Try `iptables -h' or 'iptables --help' for more information. > > Any other ideas ? - for now I am going to find a cli interface that might help > get this done. > For tcp it [-dport] && [--destination-port], that is no ('s) at the end. Other then that the filter looks OK. HTH -- Cheers, Maxim Vexler (hq4ever). Do u GNU ? From karlp at ourldsfamily.com Mon Apr 3 23:49:35 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Mon, 3 Apr 2006 17:49:35 -0600 (MDT) Subject: iptables how to close mysql port 3306 In-Reply-To: <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> Message-ID: <13175.198.60.114.90.1144108175.squirrel@webmail.ourldsfamily.com> On Mon, April 3, 2006 4:07 pm, Ted Potter said: > On 4/3/06, A. Khattri wrote: >> On Mon, 3 Apr 2006, Ted Potter wrote: >> >> > To make it fun, no I can not install anything. No there is not gui. >> > Everthing I do must be from >> > the command line on the box. Bout the only blessing is I can ssh in to >> the >> > box as root. >> > >> > Thanks for any who care to play and share. >> > >> > PS >> > >> > I tried the following: >> > >> > iptables -A INPUT -p tcp -d 3306 -j REJECT >> > >> > then I see >> > >> > iptables --list >> > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable >> > >> > and I can still log on to the server remotely. >> >> Much easier to edit /etc/my.cnf and tell MySQL to not use networking >> (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > > > Thanks for the tip, however I can find no such file on the server. Darn it > that would of been a sweet fix. You can add the file. However, you may want to do locate my.cnf and see what comes back. Karl > > Thank you ! > > Ted > > >> -- >> >> >> >> >> > > > > -- > Ted Potter > tpotter at techmarin.com > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From akelly at corisweb.org Tue Apr 4 08:23:06 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Tue, 04 Apr 2006 10:23:06 +0200 Subject: iptables how to close mysql port 3306 In-Reply-To: References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> Message-ID: <1144138986.2714.1.camel@fedora.at.home> On Tue, 2006-04-04 at 01:28 +0200, Maxim Vexler wrote: > On 4/4/06, Ted Potter wrote: > > On 4/3/06, Ted Potter wrote: > > > On 4/3/06, A. Khattri wrote: > > > > On Mon, 3 Apr 2006, Ted Potter wrote: > > > > > > > > > To make it fun, no I can not install anything. No there is not gui. > > > > > Everthing I do must be from > > > > > the command line on the box. Bout the only blessing is I can ssh in to the > > > > > box as root. > > > > > > > > > > Thanks for any who care to play and share. > > > > > > > > > > PS > > > > > > > > > > I tried the following: > > > > > > > > > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > > > > > > > > > then I see > > > > > > > > > > iptables --list > > > > > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > > > > > > > > > and I can still log on to the server remotely. > > > > > > > > Much easier to edit /etc/my.cnf and tell MySQL to not use networking > > > > (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > > > > > > > > > Thanks for the tip, however I can find no such file on the server. Darn it > > > that would of been a sweet fix. > > > > > > Thank you ! > > > > > > Ted > > > > ok so I tried this > > # iptables -A INPUT -p tcp -dports 3306 -j DROP > > Bad argument 3306 > > # > > huh ? the manual states -dports is an valid alias for --destination-ports > > > > OK so > > [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP > > Bad argument `3306' > > Try `iptables -h' or 'iptables --help' for more information. > > [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP > > iptables v1.2.8: Unknown arg `--dports' > > Try `iptables -h' or 'iptables --help' for more information. > > [root at d7148 bin]# > > [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP > > iptables v1.2.8: Unknown arg `--destination-ports' > > Try `iptables -h' or 'iptables --help' for more information. > > [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP > > Bad argument `3306' > > Try `iptables -h' or 'iptables --help' for more information. > > > > Any other ideas ? - for now I am going to find a cli interface that might help > > get this done. > > > > For tcp it [-dport] && [--destination-port], that is no ('s) at the end. > Other then that the filter looks OK. No, no, dports and destination-ports were correct. The problem is that a double hyphen is required and appears to have been forgotten. --dports and NOT -dports Andy > > HTH > > > -- > Cheers, > Maxim Vexler (hq4ever). > > Do u GNU ? > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe From admin at tootai.net Tue Apr 4 08:32:44 2006 From: admin at tootai.net (Administrator TOOTAI) Date: Tue, 04 Apr 2006 10:32:44 +0200 Subject: iptables how to close mysql port 3306 In-Reply-To: <1144138986.2714.1.camel@fedora.at.home> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> <1144138986.2714.1.camel@fedora.at.home> Message-ID: <44322F2C.1000205@tootai.net> Andrew Kelly wrote: > On Tue, 2006-04-04 at 01:28 +0200, Maxim Vexler wrote: > >> On 4/4/06, Ted Potter wrote: >> >>> On 4/3/06, Ted Potter wrote: >>> >>>> On 4/3/06, A. Khattri wrote: >>>> >>>>> On Mon, 3 Apr 2006, Ted Potter wrote: >>>>> >>>>> >>>>>> To make it fun, no I can not install anything. No there is not gui. >>>>>> Everthing I do must be from >>>>>> the command line on the box. Bout the only blessing is I can ssh in to the >>>>>> box as root. >>>>>> >>>>>> Thanks for any who care to play and share. >>>>>> >>>>>> PS >>>>>> >>>>>> I tried the following: >>>>>> >>>>>> iptables -A INPUT -p tcp -d 3306 -j REJECT >>>>>> >>>>>> then I see >>>>>> >>>>>> iptables --list >>>>>> REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable >>>>>> >>>>>> and I can still log on to the server remotely. >>>>>> >>>>> Much easier to edit /etc/my.cnf and tell MySQL to not use networking >>>>> (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). >>>>> >>>> Thanks for the tip, however I can find no such file on the server. Darn it >>>> that would of been a sweet fix. >>>> >>>> Thank you ! >>>> >>>> Ted >>>> >>> ok so I tried this >>> # iptables -A INPUT -p tcp -dports 3306 -j DROP >>> Bad argument 3306 >>> # >>> huh ? the manual states -dports is an valid alias for --destination-ports >>> >>> OK so >>> [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP >>> Bad argument `3306' >>> Try `iptables -h' or 'iptables --help' for more information. >>> [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP >>> iptables v1.2.8: Unknown arg `--dports' >>> Try `iptables -h' or 'iptables --help' for more information. >>> [root at d7148 bin]# >>> [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP >>> iptables v1.2.8: Unknown arg `--destination-ports' >>> Try `iptables -h' or 'iptables --help' for more information. >>> [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP >>> Bad argument `3306' >>> Try `iptables -h' or 'iptables --help' for more information. >>> >>> Any other ideas ? - for now I am going to find a cli interface that might help >>> get this done. >>> >>> >> For tcp it [-dport] && [--destination-port], that is no ('s) at the end. >> Other then that the filter looks OK. >> > > No, no, dports and destination-ports were correct. The problem is that > a double hyphen is required and appears to have been forgotten. > > --dports and NOT -dports > Hmmh, Debian SARGE: # Accept http from our Network's $IPTABLES -A INPUT -i ! $EXTERNAL_DEVICE -p TCP --dport 80 -j ACCEPT -- Daniel From tpotter at techmarin.com Tue Apr 4 08:49:49 2006 From: tpotter at techmarin.com (Ted Potter) Date: Tue, 4 Apr 2006 01:49:49 -0700 Subject: iptables how to close mysql port 3306 In-Reply-To: <1144138986.2714.1.camel@fedora.at.home> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> <1144138986.2714.1.camel@fedora.at.home> Message-ID: <5ce05200604040149t59a9614cma1b81d85f72b8f6a@mail.gmail.com> On 4/4/06, Andrew Kelly wrote: > On Tue, 2006-04-04 at 01:28 +0200, Maxim Vexler wrote: > > On 4/4/06, Ted Potter wrote: > > > On 4/3/06, Ted Potter wrote: > > > > On 4/3/06, A. Khattri wrote: > > > > > On Mon, 3 Apr 2006, Ted Potter wrote: > > > > > > > > > > > To make it fun, no I can not install anything. No there is not gui. > > > > > > Everthing I do must be from > > > > > > the command line on the box. Bout the only blessing is I can ssh in to the > > > > > > box as root. > > > > > > > > > > > > Thanks for any who care to play and share. > > > > > > > > > > > > PS > > > > > > > > > > > > I tried the following: > > > > > > > > > > > > iptables -A INPUT -p tcp -d 3306 -j REJECT > > > > > > > > > > > > then I see > > > > > > > > > > > > iptables --list > > > > > > REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > > > > > > > > > > > > and I can still log on to the server remotely. > > > > > > > > > > Much easier to edit /etc/my.cnf and tell MySQL to not use networking > > > > > (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > > > > > > > > > > > > Thanks for the tip, however I can find no such file on the server. Darn it > > > > that would of been a sweet fix. > > > > > > > > Thank you ! > > > > > > > > Ted > > > > > > ok so I tried this > > > # iptables -A INPUT -p tcp -dports 3306 -j DROP > > > Bad argument 3306 > > > # > > > huh ? the manual states -dports is an valid alias for --destination-ports > > > > > > OK so > > > [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP > > > Bad argument `3306' > > > Try `iptables -h' or 'iptables --help' for more information. > > > [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP > > > iptables v1.2.8: Unknown arg `--dports' > > > Try `iptables -h' or 'iptables --help' for more information. > > > [root at d7148 bin]# > > > [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP > > > iptables v1.2.8: Unknown arg `--destination-ports' > > > Try `iptables -h' or 'iptables --help' for more information. > > > [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP > > > Bad argument `3306' > > > Try `iptables -h' or 'iptables --help' for more information. > > > > > > Any other ideas ? - for now I am going to find a cli interface that might help > > > get this done. > > > > > > > For tcp it [-dport] && [--destination-port], that is no ('s) at the end. > > Other then that the filter looks OK. > > No, no, dports and destination-ports were correct. The problem is that > a double hyphen is required and appears to have been forgotten. > > --dports and NOT -dports > > Andy > > > > > HTH and the winner is ! iptables -A INPUT -p tcp --destination-port 3306 -j DROP sorry for all my confusion. Thanks to EVERYONE who responded ! the support is greatly appreciated. Ted > > > > -- > > Cheers, > > Maxim Vexler (hq4ever). > > > > Do u GNU ? > > > > _______________________________________________ > > Redhat-install-list mailing list > > Redhat-install-list at redhat.com > > https://www.redhat.com/mailman/listinfo/redhat-install-list > > To Unsubscribe Go To ABOVE URL or send a message to: > > redhat-install-list-request at redhat.com > > Subject: unsubscribe > > -- Ted Potter tpotter at techmarin.com From akelly at corisweb.org Tue Apr 4 08:55:45 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Tue, 04 Apr 2006 10:55:45 +0200 Subject: iptables how to close mysql port 3306 In-Reply-To: <44322F2C.1000205@tootai.net> References: <5ce05200604031228p4b6d40f8re572dc59ed69c285@mail.gmail.com> <5ce05200604031507sba7f4e9rb4e5707a64e56edf@mail.gmail.com> <5ce05200604031539r2f5c0fb5o7b4614ed688427ec@mail.gmail.com> <1144138986.2714.1.camel@fedora.at.home> <44322F2C.1000205@tootai.net> Message-ID: <1144140946.2714.6.camel@fedora.at.home> On Tue, 2006-04-04 at 10:32 +0200, Administrator TOOTAI wrote: > Andrew Kelly wrote: > > On Tue, 2006-04-04 at 01:28 +0200, Maxim Vexler wrote: > > > >> On 4/4/06, Ted Potter wrote: > >> > >>> On 4/3/06, Ted Potter wrote: > >>> > >>>> On 4/3/06, A. Khattri wrote: > >>>> > >>>>> On Mon, 3 Apr 2006, Ted Potter wrote: > >>>>> > >>>>> > >>>>>> To make it fun, no I can not install anything. No there is not gui. > >>>>>> Everthing I do must be from > >>>>>> the command line on the box. Bout the only blessing is I can ssh in to the > >>>>>> box as root. > >>>>>> > >>>>>> Thanks for any who care to play and share. > >>>>>> > >>>>>> PS > >>>>>> > >>>>>> I tried the following: > >>>>>> > >>>>>> iptables -A INPUT -p tcp -d 3306 -j REJECT > >>>>>> > >>>>>> then I see > >>>>>> > >>>>>> iptables --list > >>>>>> REJECT tcp -- anywhere 0.0.12.234 reject-wthi icmp-port-unreachable > >>>>>> > >>>>>> and I can still log on to the server remotely. > >>>>>> > >>>>> Much easier to edit /etc/my.cnf and tell MySQL to not use networking > >>>>> (skip-networking) or tell it to listen on 127.0.0.1 (bind-address). > >>>>> > >>>> Thanks for the tip, however I can find no such file on the server. Darn it > >>>> that would of been a sweet fix. > >>>> > >>>> Thank you ! > >>>> > >>>> Ted > >>>> > >>> ok so I tried this > >>> # iptables -A INPUT -p tcp -dports 3306 -j DROP > >>> Bad argument 3306 > >>> # > >>> huh ? the manual states -dports is an valid alias for --destination-ports > >>> > >>> OK so > >>> [root at d7148 bin]# iptables -A INPUT -p tcp -dports 3306 -j DROP > >>> Bad argument `3306' > >>> Try `iptables -h' or 'iptables --help' for more information. > >>> [root at d7148 bin]# iptables -A INPUT -p tcp --dports 3306 -j DROP > >>> iptables v1.2.8: Unknown arg `--dports' > >>> Try `iptables -h' or 'iptables --help' for more information. > >>> [root at d7148 bin]# > >>> [root at d7148 bin]# iptables -A INPUT -p tcp --destination-ports 3306 -j DROP > >>> iptables v1.2.8: Unknown arg `--destination-ports' > >>> Try `iptables -h' or 'iptables --help' for more information. > >>> [root at d7148 bin]# iptables -A INPUT -p tcp -destination-ports 3306 -j DROP > >>> Bad argument `3306' > >>> Try `iptables -h' or 'iptables --help' for more information. > >>> > >>> Any other ideas ? - for now I am going to find a cli interface that might help > >>> get this done. > >>> > >>> > >> For tcp it [-dport] && [--destination-port], that is no ('s) at the end. > >> Other then that the filter looks OK. > >> > > > > No, no, dports and destination-ports were correct. The problem is that > > a double hyphen is required and appears to have been forgotten. > > > > --dports and NOT -dports > > > Hmmh, Debian SARGE: > > # Accept http from our Network's > $IPTABLES -A INPUT -i ! $EXTERNAL_DEVICE -p TCP --dport 80 -j > ACCEPT I'm sorry, you're absolutely right, of course. I tripped over my use of the multiport extention. My bad. But it was still the missing hyphen in --dport(s) causing the problems. Andy From riegersteve at gmail.com Tue Apr 4 18:14:37 2006 From: riegersteve at gmail.com (Steve Rieger) Date: Tue, 04 Apr 2006 11:14:37 -0700 Subject: redhat 3.4 on ibm 336 Message-ID: <4432B78D.2000004@gmail.com> You do not have enough RAM to install Red Hat Enterprise Linux on this machine but when i install 4.2 it goes fine. this box has 4 Gigs of ram here is the post sending termination signals...done sending kill signals...done disabling swap... unmounting filesystems... /proc done /dev/pts done /tmp/ramfs done rebooting system Restarting system. Linux version 2.6.9-22.EL (bhcompile at porky.build.redhat.com) (gcc version 3.4.4 20050721 (Red Hat 3.4.4-2)) #1 Mon Sep 19 18:20:28 EDT 2005 BIOS-provided physical RAM map: BIOS-e820: 0000000000000000 - 000000000009d000 (usable) BIOS-e820: 000000000009d000 - 00000000000a0000 (reserved) BIOS-e820: 00000000000e0000 - 0000000000100000 (reserved) BIOS-e820: 0000000000100000 - 00000000c7fcda80 (usable) BIOS-e820: 00000000c7fcda80 - 00000000c7fd0000 (ACPI data) BIOS-e820: 00000000c7fd0000 - 00000000c8000000 (reserved) BIOS-e820: 00000000fec00000 - 0000000100000000 (reserved) BIOS-e820: 0000000100000000 - 0000000138000000 (usable) Warning only 4GB will be used. Use a PAE enabled kernel. 3200MB HIGHMEM available. 896MB LOWMEM available. zapping low mappings. DMI 2.3 present. ACPI: PM-Timer IO Port: 0x588 Built 1 zonelists Kernel command line: console=tty0 console=ttyS0,9600 ksdevice=eth0 initrd=initrd.img network ks=http://192.168.67.151/tftpboot/install/ks.cfg.3.4 BOOT_IMAGE=vmlinuz Initializing CPU#0 CPU 0 irqstacks, hard=c03e5000 soft=c03e4000 PID hash table entries: 4096 (order: 12, 65536 bytes) Detected 2801.510 MHz processor. Using tsc for high-res timesource Console: colour VGA+ 80x25 Dentry cache hash table entries: 131072 (order: 7, 524288 bytes) Inode-cache hash table entries: 65536 (order: 6, 262144 bytes) Memory: 3235960k/4194304k available (2111k kernel code, 39744k reserved, 667k data, 144k init, 2359092k highmem) Security Scaffold v1.0.0 initialized SELinux: Initializing. SELinux: Starting in permissive mode There is already a security framework initialized, register_security failed. selinux_register_security: Registering secondary module capability Capability LSM initialized as secondary Mount-cache hash table entries: 512 (order: 0, 4096 bytes) monitor/mwait feature present. using mwait in idle threads. CPU: Trace cache: 12K uops, L1 D cache: 16K CPU: L2 cache: 1024K Intel machine check architecture supported. Intel machine check reporting enabled on CPU#0. CPU0: Intel P4/Xeon Extended MCE MSRs (24) available CPU: Intel(R) Xeon(TM) CPU 2.80GHz stepping 01 Enabling fast FPU save and restore... done. Enabling unmasked SIMD FPU exception support... done. Checking 'hlt' instruction... OK. ACPI: IRQ9 SCI: Edge set to Level Trigger. checking if image is initramfs...it isn't (no cpio magic); looks like an initrd Freeing initrd memory: 2478k freed NET: Registered protocol family 16 PCI: PCI BIOS revision 2.10 entry at 0xfd75e, last bus=7 PCI: Using MMCONFIG mtrr: v2.0 (20020519) ACPI: Subsystem revision 20040816 ACPI: Interpreter enabled ACPI: Using PIC for interrupt routing ACPI: PCI Root Bridge [PCI0] (00:00) PCI: Probing PCI hardware (bus 00) PCI: Ignoring BAR0-3 of IDE controller 0000:00:1f.2 PCI: Transparent bridge - 0000:00:1e.0 ACPI: PCI Interrupt Link [LP00] (IRQs *11) ACPI: PCI Interrupt Link [LP01] (IRQs *3) ACPI: PCI Interrupt Link [LP02] (IRQs) *0, disabled. ACPI: PCI Interrupt Link [LP03] (IRQs *3) ACPI: PCI Interrupt Link [LP04] (IRQs) *0, disabled. ACPI: PCI Interrupt Link [LP05] (IRQs) *0, disabled. ACPI: PCI Interrupt Link [LP06] (IRQs) *0, disabled. ACPI: PCI Interrupt Link [LP07] (IRQs *5) Linux Plug and Play Support v0.97 (c) Adam Belay usbcore: registered new driver usbfs usbcore: registered new driver hub PCI: Using ACPI for IRQ routing ACPI: PCI Interrupt Link [LP00] enabled at IRQ 11 ACPI: PCI interrupt 0000:00:02.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:00:04.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:00:06.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:00:07.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:00:1d.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI Interrupt Link [LP03] enabled at IRQ 3 ACPI: PCI interrupt 0000:00:1d.1[B] -> GSI 3 (level, low) -> IRQ 3 ACPI: PCI Interrupt Link [LP07] enabled at IRQ 5 ACPI: PCI interrupt 0000:00:1d.7[D] -> GSI 5 (level, low) -> IRQ 5 ACPI: PCI interrupt 0000:00:1f.2[A]: no GSI ACPI: PCI Interrupt Link [LP01] enabled at IRQ 3 ACPI: PCI interrupt 0000:00:1f.3[B] -> GSI 3 (level, low) -> IRQ 3 ACPI: PCI interrupt 0000:04:01.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:06:00.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:07:00.0[A] -> GSI 11 (level, low) -> IRQ 11 ACPI: PCI interrupt 0000:01:01.0[A] -> GSI 11 (level, low) -> IRQ 11 PCI: Cannot allocate resource region 1 of device 0000:00:00.0 IBM machine detected. Enabling interrupts during APM calls. apm: BIOS not found. audit: initializing netlink socket (disabled) audit(1144152563.461:1): initialized highmem bounce pool size: 64 pages Total HugeTLB memory allocated, 0 VFS: Disk quotas dquot_6.5.1 Dquot-cache hash table entries: 1024 (order 0, 4096 bytes) SELinux: Registering netfilter hooks Initializing Cryptographic API ksign: Installing public key data Loading keyring - Added public key 975E6FA84E049D8A - User ID: Red Hat, Inc. (Kernel Module GPG key) pci_hotplug: PCI Hot Plug PCI Core version: 0.5 ACPI: Processor [CPU3] (supports C1) Real Time Clock Driver v1.12 Linux agpgart interface v0.100 (c) Dave Jones serio: i8042 AUX port at 0x60,0x64 irq 12 serio: i8042 KBD port at 0x60,0x64 irq 1 Serial: 8250/16550 driver $Revision: 1.90 $ 8 ports, IRQ sharing enabled ?ttyS0 at I/O 0x3f8 (irq = 4) is a 16550A RAMDISK driver initialized: 16 RAM disks of 16384K size 1024 blocksize Uniform Multi-Platform E-IDE driver Revision: 7.00alpha2 ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx hda: HL-DT-STDVD-ROM GDR8083N, ATAPI CD/DVD-ROM drive ide1: I/O resource 0x170-0x177 not free. ide1: ports already in use, skipping probe Using cfq io scheduler ide0 at 0x1f0-0x1f7,0x3f6 on irq 14 hda: ATAPI 24X DVD-ROM drive, 256kB Cache Uniform CD-ROM driver Revision: 3.20 ide-floppy driver 0.99.newide usbcore: registered new driver hiddev usbcore: registered new driver usbhid drivers/usb/input/hid-core.c: v2.0:USB HID core driver mice: PS/2 mouse device common for all mice md: md driver 0.90.0 MAX_MD_DEVS=256, MD_SB_DISKS=27 NET: Registered protocol family 2 IP: routing cache hash table of 8192 buckets, 256Kbytes TCP: Hash tables configured (established 524288 bind 37449) Initializing IPsec netlink socket NET: Registered protocol family 1 NET: Registered protocol family 17 ACPI: (supports S0 S4 S5) ACPI wakeup devices: PCI0 md: Autodetecting RAID arrays. md: autorun ... md: ... autorun DONE. RAMDISK: Compressed image found at block 0 VFS: Mounted root (ext2 filesystem). Greetings. Red Hat install init version 9.1.4.1 starting mounting /proc filesystem... done mounting /dev/pts (unix98 pty) filesystem... done Red Hat install init version 9.1.4.1 using a serial console remember, cereal is an important part of a nutritionally balanced breakfast. trying to remount root filesystem read write... done mounting /tmp as ramfs... done running install... running /sbin/loader Welcome to Red Hat Enterprise Linux -- -- Steve Rieger 310-339-4355 (cell) 3394355 at gmail.com (pager) http://fhs.lyon.k12.nv.us/steve%20rieger.htm From harold at hallikainen.com Wed Apr 5 14:53:41 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Wed, 5 Apr 2006 07:53:41 -0700 (PDT) Subject: Logging into bogged down server In-Reply-To: <1144086004.3839.212.camel@prophead.corp.publichost.com> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> Message-ID: <24608.207.177.227.29.1144248821.squirrel@sujan.hallikainen.org> > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: >> For some reason, this email client deletes all the received message when >> I reply >> and then select text instead of html... When I get back home and restart >> the FC4 >> machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to >> ssh into >> the bogged down server. No luck yet. I did change the DNS server to send >> stuff >> away from this server in the hopes it would eventuall finish off all >> those >> processes and start accepting my ssh login (to the IP address instead of >> the >> domain). No luck so far. In a couple days I can go hit the reset button. >> >> Besides the modifications to configs suggested so far, I'm also thinking >> of >> adding a hardware watchdog timer to the machine so it'll reset itself >> should it >> ever do this again. I've seen a couple circuits on the web, based on a >> 555 timer. >> One of them I found looked like it could be locked up if the machine >> crashed >> during a watchdog reset. Back when I was designing MC6802 based systems, >> I did a >> watchdog timer like that and had to drive 100 miles in Kansas to hit the >> reset >> switch on a system. Watchdog timers I design now reset on an edge >> instead of a >> level so if the reset line gets stuck at either level, the watchdog will >> time out >> and reset the system. So, that's my next project! > > Useful. We use remote-controlled power strips. You can log into the > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > HIGHLY recommended for "dark data centers". > When I got back home, I found the video out of the server also frozen. I didn't see any disk activity. Hit the reset button and all is well. I'll go ahead and make the suggested config file changes. Meanwhile, any suggestions on a particular low cost remote controlled (PCP/IP) power strip? THANKS! Harold -- From johan.lithander at teligent.se Wed Apr 5 15:05:38 2006 From: johan.lithander at teligent.se (Johan Lithander) Date: Wed, 5 Apr 2006 17:05:38 +0200 Subject: Logging into bogged down server In-Reply-To: <24608.207.177.227.29.1144248821.squirrel@sujan.hallikainen.org> Message-ID: <000301c658c2$66698950$5bffa8c0@teligent.org> -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Harold Hallikainen Sent: den 5 april 2006 16:54 To: Getting started with Red Hat Linux Subject: RE: Logging into bogged down server > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: >> For some reason, this email client deletes all the received message >> when I reply and then select text instead of html... When I get back >> home and restart the FC4 machine, I'll get back on SquirrelMail. >> Anyways... I'm STILL trying to ssh into the bogged down server. No >> luck yet. I did change the DNS server to send stuff away from this >> server in the hopes it would eventuall finish off all those processes >> and start accepting my ssh login (to the IP address instead of the >> domain). No luck so far. In a couple days I can go hit the reset button. >> >> Besides the modifications to configs suggested so far, I'm also >> thinking of adding a hardware watchdog timer to the machine so it'll >> reset itself should it ever do this again. I've seen a couple >> circuits on the web, based on a >> 555 timer. >> One of them I found looked like it could be locked up if the machine >> crashed during a watchdog reset. Back when I was designing MC6802 >> based systems, I did a watchdog timer like that and had to drive 100 >> miles in Kansas to hit the reset switch on a system. Watchdog timers >> I design now reset on an edge instead of a level so if the reset line >> gets stuck at either level, the watchdog will time out and reset the >> system. So, that's my next project! > > Useful. We use remote-controlled power strips. You can log into the > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > HIGHLY recommended for "dark data centers". > When I got back home, I found the video out of the server also frozen. I didn't see any disk activity. Hit the reset button and all is well. I'll go ahead and make the suggested config file changes. Meanwhile, any suggestions on a particular low cost remote controlled (PCP/IP) power strip? THANKS! Harold -- FYI: There are server machines which has built in management modules which shares the eth channels with the CPU board, but works independantly from the CPU board. The management module can be used power up/down the CPU board (among other things) using IPMI over LAN (differs between different manufacturors). Tho, these type of machines is usually quite expensive. Regs. /J From rstevens at vitalstream.com Wed Apr 5 17:31:56 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 05 Apr 2006 10:31:56 -0700 Subject: Logging into bogged down server In-Reply-To: <24608.207.177.227.29.1144248821.squirrel@sujan.hallikainen.org> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> <24608.207.177.227.29.1144248821.squirrel@sujan.hallikainen.org> Message-ID: <1144258316.5154.21.camel@prophead.corp.publichost.com> On Wed, 2006-04-05 at 07:53 -0700, Harold Hallikainen wrote: > > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: > >> For some reason, this email client deletes all the received message when > >> I reply > >> and then select text instead of html... When I get back home and restart > >> the FC4 > >> machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to > >> ssh into > >> the bogged down server. No luck yet. I did change the DNS server to send > >> stuff > >> away from this server in the hopes it would eventuall finish off all > >> those > >> processes and start accepting my ssh login (to the IP address instead of > >> the > >> domain). No luck so far. In a couple days I can go hit the reset button. > >> > >> Besides the modifications to configs suggested so far, I'm also thinking > >> of > >> adding a hardware watchdog timer to the machine so it'll reset itself > >> should it > >> ever do this again. I've seen a couple circuits on the web, based on a > >> 555 timer. > >> One of them I found looked like it could be locked up if the machine > >> crashed > >> during a watchdog reset. Back when I was designing MC6802 based systems, > >> I did a > >> watchdog timer like that and had to drive 100 miles in Kansas to hit the > >> reset > >> switch on a system. Watchdog timers I design now reset on an edge > >> instead of a > >> level so if the reset line gets stuck at either level, the watchdog will > >> time out > >> and reset the system. So, that's my next project! > > > > Useful. We use remote-controlled power strips. You can log into the > > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > > HIGHLY recommended for "dark data centers". > > > > When I got back home, I found the video out of the server also frozen. I > didn't see any disk activity. Hit the reset button and all is well. I'll > go ahead and make the suggested config file changes. Meanwhile, any > suggestions on a particular low cost remote controlled (PCP/IP) power > strip? APC makes several models, depending on how many outlets you need and what the power load is. We use the 8-port 20-amp unit a lot. One good source is http://www.wti.com/power.htm or you can google something like "remote +control +power +strips". There are lots of them out there. Warning: The prices start at about $400 US. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Denial. It ain't just a river in Egypt anymore! - ---------------------------------------------------------------------- From harold at hallikainen.com Wed Apr 5 18:17:12 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Wed, 5 Apr 2006 11:17:12 -0700 (PDT) Subject: Logging into bogged down server In-Reply-To: <1144258316.5154.21.camel@prophead.corp.publichost.com> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> <24608.207.177.227.29.1144248821.squirrel@sujan.hallikainen.org> <1144258316.5154.21.camel@prophead.corp.publichost.com> Message-ID: <26703.207.177.227.29.1144261032.squirrel@sujan.hallikainen.org> > On Wed, 2006-04-05 at 07:53 -0700, Harold Hallikainen wrote: >> > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: >> >> For some reason, this email client deletes all the received message >> when >> >> I reply >> >> and then select text instead of html... When I get back home and >> restart >> >> the FC4 >> >> machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying >> to >> >> ssh into >> >> the bogged down server. No luck yet. I did change the DNS server to >> send >> >> stuff >> >> away from this server in the hopes it would eventuall finish off all >> >> those >> >> processes and start accepting my ssh login (to the IP address instead >> of >> >> the >> >> domain). No luck so far. In a couple days I can go hit the reset >> button. >> >> >> >> Besides the modifications to configs suggested so far, I'm also >> thinking >> >> of >> >> adding a hardware watchdog timer to the machine so it'll reset itself >> >> should it >> >> ever do this again. I've seen a couple circuits on the web, based on >> a >> >> 555 timer. >> >> One of them I found looked like it could be locked up if the machine >> >> crashed >> >> during a watchdog reset. Back when I was designing MC6802 based >> systems, >> >> I did a >> >> watchdog timer like that and had to drive 100 miles in Kansas to hit >> the >> >> reset >> >> switch on a system. Watchdog timers I design now reset on an edge >> >> instead of a >> >> level so if the reset line gets stuck at either level, the watchdog >> will >> >> time out >> >> and reset the system. So, that's my next project! >> > >> > Useful. We use remote-controlled power strips. You can log into the >> > strip (modem or TCP/IP) and power-cycle any of the outlets on it. >> > HIGHLY recommended for "dark data centers". >> > >> >> When I got back home, I found the video out of the server also frozen. I >> didn't see any disk activity. Hit the reset button and all is well. I'll >> go ahead and make the suggested config file changes. Meanwhile, any >> suggestions on a particular low cost remote controlled (PCP/IP) power >> strip? > > APC makes several models, depending on how many outlets you need and > what the power load is. We use the 8-port 20-amp unit a lot. One good > source is http://www.wti.com/power.htm or you can google something like > "remote +control +power +strips". There are lots of them out there. > Warning: The prices start at about $400 US. > THANKS! I did manage to find one for under $100. It's at http://www.digital-loggers.com/lpc.html . Besides web access, it will real soon now) be able to ping the server and reboot if the ping fails. I've got one on order. Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From micros50 at computer.net Thu Apr 6 01:04:09 2006 From: micros50 at computer.net (mylar) Date: Wed, 05 Apr 2006 21:04:09 -0400 Subject: Logging into bogged down server In-Reply-To: <1144086004.3839.212.camel@prophead.corp.publichost.com> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> Message-ID: <1144285449.5776.0.camel@manhattan.ruffe.edu> On Mon, 2006-04-03 at 13:40, Rick Stevens wrote: > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: > > For some reason, this email client deletes all the received message when I reply > > and then select text instead of html... When I get back home and restart the FC4 > > machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into > > the bogged down server. No luck yet. I did change the DNS server to send stuff > > away from this server in the hopes it would eventuall finish off all those > > processes and start accepting my ssh login (to the IP address instead of the > > domain). No luck so far. In a couple days I can go hit the reset button. > > > > Besides the modifications to configs suggested so far, I'm also thinking of > > adding a hardware watchdog timer to the machine so it'll reset itself should it > > ever do this again. I've seen a couple circuits on the web, based on a 555 timer. > > One of them I found looked like it could be locked up if the machine crashed > > during a watchdog reset. Back when I was designing MC6802 based systems, I did a > > watchdog timer like that and had to drive 100 miles in Kansas to hit the reset > > switch on a system. Watchdog timers I design now reset on an edge instead of a > > level so if the reset line gets stuck at either level, the watchdog will time out > > and reset the system. So, that's my next project! > > Useful. We use remote-controlled power strips. You can log into the > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > HIGHLY recommended for "dark data centers". > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - The moving cursor writes, and having written, blinks on. - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe From micros50 at computer.net Thu Apr 6 01:08:15 2006 From: micros50 at computer.net (mylar) Date: Wed, 05 Apr 2006 21:08:15 -0400 Subject: Logging into bogged down server In-Reply-To: <1144086004.3839.212.camel@prophead.corp.publichost.com> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> Message-ID: <1144285695.5776.4.camel@manhattan.ruffe.edu> On Mon, 2006-04-03 at 13:40, Rick Stevens wrote: > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: > > For some reason, this email client deletes all the received message when I reply > > and then select text instead of html... When I get back home and restart the FC4 > > machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into > > the bogged down server. No luck yet. I did change the DNS server to send stuff > > away from this server in the hopes it would eventuall finish off all those > > processes and start accepting my ssh login (to the IP address instead of the > > domain). No luck so far. In a couple days I can go hit the reset button. > > > > Besides the modifications to configs suggested so far, I'm also thinking of > > adding a hardware watchdog timer to the machine so it'll reset itself should it > > ever do this again. I've seen a couple circuits on the web, based on a 555 timer. > > One of them I found looked like it could be locked up if the machine crashed > > during a watchdog reset. Back when I was designing MC6802 based systems, I did a > > watchdog timer like that and had to drive 100 miles in Kansas to hit the reset > > switch on a system. Watchdog timers I design now reset on an edge instead of a > > level so if the reset line gets stuck at either level, the watchdog will time out > > and reset the system. So, that's my next project! > > Useful. We use remote-controlled power strips. You can log into the > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > HIGHLY recommended for "dark data centers". > On trick I used in a machine I couldn't log into at home that was connected to a UPS was to kill the power to the outlet supplying the UPS. This tricked the UPS into thinking there was an outage and it signaled the machine to go into shutdown mode. After about 20-30 minutes the OS and machine automatically shutdown. Then all I did was power up the outlet again, the machine rebooted and all was fine. mylar From rstevens at vitalstream.com Thu Apr 6 01:09:45 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 05 Apr 2006 18:09:45 -0700 Subject: Logging into bogged down server In-Reply-To: <1144285695.5776.4.camel@manhattan.ruffe.edu> References: <20060401040707.2E1FCFF2BE@hosting4.userservices.net> <1144086004.3839.212.camel@prophead.corp.publichost.com> <1144285695.5776.4.camel@manhattan.ruffe.edu> Message-ID: <1144285785.3301.46.camel@prophead.corp.publichost.com> On Wed, 2006-04-05 at 21:08 -0400, mylar wrote: > On Mon, 2006-04-03 at 13:40, Rick Stevens wrote: > > On Fri, 2006-03-31 at 20:07 -0800, Harold Hallikainen wrote: > > > For some reason, this email client deletes all the received message when I reply > > > and then select text instead of html... When I get back home and restart the FC4 > > > machine, I'll get back on SquirrelMail. Anyways... I'm STILL trying to ssh into > > > the bogged down server. No luck yet. I did change the DNS server to send stuff > > > away from this server in the hopes it would eventuall finish off all those > > > processes and start accepting my ssh login (to the IP address instead of the > > > domain). No luck so far. In a couple days I can go hit the reset button. > > > > > > Besides the modifications to configs suggested so far, I'm also thinking of > > > adding a hardware watchdog timer to the machine so it'll reset itself should it > > > ever do this again. I've seen a couple circuits on the web, based on a 555 timer. > > > One of them I found looked like it could be locked up if the machine crashed > > > during a watchdog reset. Back when I was designing MC6802 based systems, I did a > > > watchdog timer like that and had to drive 100 miles in Kansas to hit the reset > > > switch on a system. Watchdog timers I design now reset on an edge instead of a > > > level so if the reset line gets stuck at either level, the watchdog will time out > > > and reset the system. So, that's my next project! > > > > Useful. We use remote-controlled power strips. You can log into the > > strip (modem or TCP/IP) and power-cycle any of the outlets on it. > > HIGHLY recommended for "dark data centers". > > > On trick I used in a machine I couldn't log into at home that was > connected to a UPS was to kill the power to the outlet supplying the > UPS. This tricked the UPS into thinking there was an outage and it > signaled the machine to go into shutdown mode. After about 20-30 minutes > the OS and machine automatically shutdown. Then all I did was power up > the outlet again, the machine rebooted and all was fine. That's fine, provided the machine is "healthy" enough to see the signal from the UPS. That assumes the kernel hasn't gone blooey and that it's handling interrupts properly (as most UPS thingies toggle the DTR or DSR line to signal a power glitch). ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Very funny, Scotty. Now beam down my clothes." - ---------------------------------------------------------------------- From redhat at buglecreek.com Thu Apr 6 14:43:38 2006 From: redhat at buglecreek.com (redhat at buglecreek.com) Date: Thu, 06 Apr 2006 08:43:38 -0600 Subject: up2date & /var/tmp Message-ID: <1144334618.12213.258475352@webmail.messagingengine.com> Ocasionally, files show up in /var/tmp with names like rpm-tmp.60427. I assume that is is the result of running up2date. Does anyone know why they get created? Also, why they do not get removed? The contents below a example from a Redhat ES 3 box. if [ $1 = 0 ] ; then if grep '^/usr/lib/mysql$' /etc/ld.so.conf > /dev/null 2>&1 then grep -v '^/usr/lib/mysql$' /etc/ld.so.conf \ > /etc/ld.so.conf.$$ 2> /dev/null mv /etc/ld.so.conf.$$ /etc/ld.so.conf fi /sbin/ldconfig /usr/lib/mysql fi Thanks From tek_guy at rediffmail.com Thu Apr 6 18:32:08 2006 From: tek_guy at rediffmail.com (Tech Guy) Date: 6 Apr 2006 18:32:08 -0000 Subject: Permitting normal user to create OS accounts Message-ID: <20060406183208.599.qmail@webmail9.rediffmail.com> ? Hello, I have a requirement where the clients should be able to create their own accounts (OS accounts) but with a limitation on GROUPID, HOME DIR, SHELL, etc means they cannot choose any of them. All of them will be predefined. They should only provide the UserID. I was thinking of a script which basically calls ?useradd? predefining GROUP, Home dir etc and then making it available using SUDO. Is there any better way to do this or is there any tool that I can use that allows normal users to create accounts with ofcourse no security risks. I appreciate you suggestions Thanks -------------- next part -------------- An HTML attachment was scrubbed... URL: From mnair at iusb.edu Thu Apr 6 18:57:59 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Thu, 6 Apr 2006 14:57:59 -0400 Subject: ntpd time Message-ID: How do synchronize the time using ntpd? What changes do I need to make in the ntp.conf file. Thanks ../Murli -------------- next part -------------- An HTML attachment was scrubbed... URL: From rstevens at vitalstream.com Thu Apr 6 19:12:24 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 06 Apr 2006 12:12:24 -0700 Subject: ntpd time In-Reply-To: References: Message-ID: <1144350744.3301.59.camel@prophead.corp.publichost.com> On Thu, 2006-04-06 at 14:57 -0400, Nair, Murlidharan T wrote: > How do synchronize the time using ntpd? What changes do I need to make > in the ntp.conf file. Have you tried "system-config-date"? Click on the "Network Time Protocol" tab, click on the "Enable Network Time Protocol" box to turn it on and select the servers you want, then click "SAVE". Remember that your firewall must permit incoming traffic on TCP and UDP port 123. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - You know you've landed gear-up when it takes full power to taxi. - - -- Chuck Yeager - ---------------------------------------------------------------------- From rstevens at vitalstream.com Thu Apr 6 19:14:52 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 06 Apr 2006 12:14:52 -0700 Subject: up2date & /var/tmp In-Reply-To: <1144334618.12213.258475352@webmail.messagingengine.com> References: <1144334618.12213.258475352@webmail.messagingengine.com> Message-ID: <1144350892.3301.63.camel@prophead.corp.publichost.com> On Thu, 2006-04-06 at 08:43 -0600, redhat at buglecreek.com wrote: > Ocasionally, files show up in /var/tmp with names like rpm-tmp.60427. I > assume that is is the result of running up2date. Does anyone know why > they get created? Also, why they do not get removed? The contents below > a example from a Redhat ES 3 box. > > if [ $1 = 0 ] ; then > if grep '^/usr/lib/mysql$' /etc/ld.so.conf > /dev/null 2>&1 > then > grep -v '^/usr/lib/mysql$' /etc/ld.so.conf \ > > /etc/ld.so.conf.$$ 2> /dev/null > mv /etc/ld.so.conf.$$ /etc/ld.so.conf > fi > /sbin/ldconfig /usr/lib/mysql > fi They should be cleaned up by the "%post" part of the RPM update. If they're not (and the above one seems to come from the MySQL update), bugzilla it so Red Hat fixes their post install scripts. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If Windows isn't a virus, then it sure as hell is a carrier! - ---------------------------------------------------------------------- From rstevens at vitalstream.com Thu Apr 6 19:29:57 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 06 Apr 2006 12:29:57 -0700 Subject: Permitting normal user to create OS accounts In-Reply-To: <20060406183208.599.qmail@webmail9.rediffmail.com> References: <20060406183208.599.qmail@webmail9.rediffmail.com> Message-ID: <1144351797.3301.76.camel@prophead.corp.publichost.com> On Thu, 2006-04-06 at 18:32 +0000, Tech Guy wrote: > > Hello, > > I have a requirement where the clients should be able to create their > own accounts (OS accounts) but with a limitation on GROUPID, HOME DIR, > SHELL, etc means they cannot choose any of them. All of them will be > predefined. They should only provide the UserID. useradd uses the defaults in /etc/defaults/useradd, so edit those accordingly. > I was thinking of a script which basically calls ?useradd? predefining > GROUP, Home dir etc and then making it available using SUDO. Make sure the script generates a temp file that contains the command and that there is NO way for a user to append any other options to the useradd command. > Is there any better way to do this or is there any tool that I can use > that allows normal users to create accounts with ofcourse no security > risks. Any script you allow a user to run has security risks. What I'd do is set up a mail account and let users send a message to that account to create the user. For example: create-account at mydomain.com In your /etc/mail/aliases file, aim that mail account to a script that parses out the account name and creates it, e.g.: create-account: |script-to-create-account That way there's no interactivity between the user wishing to create an account and the system and you can control the execution environment of the script to a finer degree. Just an idea. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - We look for things. Things that make us go! - ---------------------------------------------------------------------- From mnair at iusb.edu Thu Apr 6 20:20:23 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Thu, 6 Apr 2006 16:20:23 -0400 Subject: ntpd time/Samba Message-ID: Thanks, I got the time synchronized. I am installing samba on my linux system. Is there some place I need to specify which windows machine I am connecting from in any of the config files of samba? Cheers../Murli -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Rick Stevens Sent: Thursday, April 06, 2006 3:12 PM To: Getting started with Red Hat Linux Subject: Re: ntpd time On Thu, 2006-04-06 at 14:57 -0400, Nair, Murlidharan T wrote: > How do synchronize the time using ntpd? What changes do I need to make > in the ntp.conf file. Have you tried "system-config-date"? Click on the "Network Time Protocol" tab, click on the "Enable Network Time Protocol" box to turn it on and select the servers you want, then click "SAVE". Remember that your firewall must permit incoming traffic on TCP and UDP port 123. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - You know you've landed gear-up when it takes full power to taxi. - - -- Chuck Yeager - ---------------------------------------------------------------------- _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe From rstevens at vitalstream.com Thu Apr 6 22:42:26 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 06 Apr 2006 15:42:26 -0700 Subject: ntpd time/Samba In-Reply-To: References: Message-ID: <1144363346.3301.87.camel@prophead.corp.publichost.com> On Thu, 2006-04-06 at 16:20 -0400, Nair, Murlidharan T wrote: > Thanks, I got the time synchronized. > > I am installing samba on my linux system. Is there some place I need to > specify which windows machine I am connecting from in any of the config > files of samba? That depends on what your security model is. The quick answer is "yes", but how extensive those changes are depends on what security you want to impose. > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Rick > Stevens > Sent: Thursday, April 06, 2006 3:12 PM > To: Getting started with Red Hat Linux > Subject: Re: ntpd time > > On Thu, 2006-04-06 at 14:57 -0400, Nair, Murlidharan T wrote: > > How do synchronize the time using ntpd? What changes do I need to make > > in the ntp.conf file. > > Have you tried "system-config-date"? Click on the "Network Time > Protocol" tab, click on the "Enable Network Time Protocol" box to turn > it on and select the servers you want, then click "SAVE". Remember that > your firewall must permit incoming traffic on TCP and UDP port 123. > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - You know you've landed gear-up when it takes full power to taxi. - > - -- Chuck Yeager - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - God is real...........unless declared integer or long - ---------------------------------------------------------------------- From bret_stern at machinemanagement.com Sat Apr 8 03:29:19 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Fri, 7 Apr 2006 20:29:19 -0700 Subject: web server Message-ID: I have FC4 running reliably on a nice Dell server behind a good firewall. I would like to stop my ISP from hosting my site and let my static ip (one of five i have) server host my web site. It seems straight forward. 1. I need to change my configuration at Internic to point to my servers. 2. I need to modify my httpd.conf file. Are there any other suggestions. Recommended setup in httpd.conf?? Regards, Bret stern From bret_stern at machinemanagement.com Sat Apr 8 03:31:50 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Fri, 7 Apr 2006 20:31:50 -0700 Subject: Maile Server - Sendmail Message-ID: I want to host my own mail server, and quit paying my ISP 24.95 per month for it. My FC4 server has sendmail, (which I have shut off right now), but I would like to activate the service and start using my own server for mail. What things do I need to do this? What is an A record?? Bret Stern 'Nothing ventured, nothing gained' From karlp at ourldsfamily.com Sat Apr 8 03:52:46 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 7 Apr 2006 21:52:46 -0600 (MDT) Subject: web server In-Reply-To: References: Message-ID: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> On Fri, April 7, 2006 9:29 pm, Bret Stern said: > > I have FC4 running reliably on a nice Dell server > behind a good firewall. > > I would like to stop my ISP from hosting my site > and let my static ip (one of five i have) server > host my web site. > > It seems straight forward. > > 1. I need to change my configuration at Internic > to point to my servers. DNS: Are you going to write your own or have them do it. Some registrars won't point to a host outside their hosting pool. I pay my ISP a couple bucks a month extra to secondary my DNS entries. They hit mine 3 times a day and as long as I update the 'serial' in my entries, I'm good to go. Search for DNS HOWTO, or NAMED HOWTO for help. > > 2. I need to modify my httpd.conf file. Very true. If Apache is running, just point your browser at localhost and you're on your way. > > Are there any other suggestions. Recommended > setup in httpd.conf?? Wow, that's a book. Please be specific with requests, hopefully one per email, as you go along and hit the inevitable bumps. Some things you'll probably end up doing is VirtualHosts and security/login sites, etc. This isn't rocket science, but it can get hairy with the different versions of HTTPD. As long as you're at it, look into fetchmail, or just using your host as the email server, too. That cleans up the MX records at the DNS server. If you do, take a hard look at bogofilter or spamassassin, plus clamav for virus protection. You could look at them anyway if you are going to use fetchmail, which is pretty simple to use. Redundancy is good for spam and virus filtering. HTH more than confuses. Karl > > Regards, > > > Bret stern > > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From karlp at ourldsfamily.com Sat Apr 8 03:57:17 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 7 Apr 2006 21:57:17 -0600 (MDT) Subject: Maile Server - Sendmail In-Reply-To: References: Message-ID: <20525.198.60.114.90.1144468637.squirrel@webmail.ourldsfamily.com> On Fri, April 7, 2006 9:31 pm, Bret Stern said: > > I want to host my own mail server, and quit > paying my ISP 24.95 per month for it. > > My FC4 server has sendmail, (which I have > shut off right now), but I would like to activate > the service and start using my own server for mail. > > What things do I need to do this? > > What is an A record?? See my previous email. This is part of the DNS/named realm. A 'A' record is the main DNS pointer to your IP address. Oh, and you really only need one, not all 5, unless you want to put a box outside the DMZ to host a Counterstrike gaming server, for instance... Put it on Windows 2003 server and let the hackers party! It runs better on Linux, however. Sendmail is very complex, but learnable. And, having tried the others, setup is easier and with it pre-installed, possible... Make sure to enable dovecot as the IMAP server. It's very fast. sendmail.mc is where you'll need to start to get it working. By default, sendmail won't accept any email from anything other than the localhost, for security reasons. As you get into it, there are some good helpers on this list who've been there. > > > Bret Stern > > 'Nothing ventured, nothing gained' > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From harold at hallikainen.com Sat Apr 8 04:11:12 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 7 Apr 2006 21:11:12 -0700 (PDT) Subject: web server In-Reply-To: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> References: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> Message-ID: <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> > > On Fri, April 7, 2006 9:29 pm, Bret Stern said: >> >> I have FC4 running reliably on a nice Dell server >> behind a good firewall. >> >> I would like to stop my ISP from hosting my site >> and let my static ip (one of five i have) server >> host my web site. >> >> It seems straight forward. >> >> 1. I need to change my configuration at Internic >> to point to my servers. > > DNS: Are you going to write your own or have them do it. Some registrars > won't point to a host outside their hosting pool. I pay my ISP a couple > bucks a month extra to secondary my DNS entries. They hit mine 3 times a > day > and as long as I update the 'serial' in my entries, I'm good to go. Search > for DNS HOWTO, or NAMED HOWTO for help. > >> >> 2. I need to modify my httpd.conf file. > > Very true. If Apache is running, just point your browser at localhost and > you're on your way. > >> >> Are there any other suggestions. Recommended >> setup in httpd.conf?? > > Wow, that's a book. Please be specific with requests, hopefully one per > email, as you go along and hit the inevitable bumps. Some things you'll > probably end up doing is VirtualHosts and security/login sites, etc. This > isn't rocket science, but it can get hairy with the different versions of > HTTPD. > > As long as you're at it, look into fetchmail, or just using your host as > the > email server, too. That cleans up the MX records at the DNS server. If you > do, take a hard look at bogofilter or spamassassin, plus clamav for virus > protection. You could look at them anyway if you are going to use > fetchmail, > which is pretty simple to use. Redundancy is good for spam and virus > filtering. > > HTH more than confuses. > > Karl > I'm pretty much doing what you're proposing (http://www.hallikainen.org). I started slow and built stuff up over the years. I'm running a Linksys BEFSR81 router between the DSL and the LAN. I have it forwarding ports for http, ssh, smtp, and ssl to the FC4 machine. I'm using sendmail for sending and receiving email (relaying it through my ISPs smtp server). I'm using Apache for web serving. I'm using dovecot as the IMAP server. I'm using SquirrelMail as my webmail client. These are all included with FC4. Mostly I go through the config files making small modifications in the hopes of getting stuff to do what I want. Before modifying a config, I cp it to filename.HH.1 where 1 changes with each revision and HH is a flag so I can easily find modified configs. One of the changes I made in Apache config is to put the document root at /home/harold/public_html instead of /var/www or wherever it defaults. That makes it easy for me to make changes without becoming root. For DNS, I'm using http://www.dns2go.com. I told Networks Solutions to use the DNS2go servers for my dns. dns2go is designed to provide dns services to people with dynamic IP addresses (both you and I have static). Even though I have a static IP, I'm running the dns2go script so it knows my server's IP address. This came in handy a couple years ago when I moved. I pulled the server from home and put it in my office for a few weeks. No one knew the difference. The IP address changed as appropriate. When I got DSL in our new home, I moved the server there, plugged it in, and it was on line. Real simple! So... I suggest just start messing with it. Decide what service you want to get working first. Keep banging on it until it works. Ask questions here. Good luck! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From harold at hallikainen.com Sat Apr 8 04:27:49 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 7 Apr 2006 21:27:49 -0700 (PDT) Subject: web server In-Reply-To: <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> References: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> Message-ID: <46137.192.168.1.1.1144470469.squirrel@sujan.hallikainen.org> > >> >> On Fri, April 7, 2006 9:29 pm, Bret Stern said: >>> >>> I have FC4 running reliably on a nice Dell server >>> behind a good firewall. >>> >>> I would like to stop my ISP from hosting my site >>> and let my static ip (one of five i have) server >>> host my web site. >>> >>> It seems straight forward. >>> >>> 1. I need to change my configuration at Internic >>> to point to my servers. >> >> DNS: Are you going to write your own or have them do it. Some registrars >> won't point to a host outside their hosting pool. I pay my ISP a couple >> bucks a month extra to secondary my DNS entries. They hit mine 3 times a >> day >> and as long as I update the 'serial' in my entries, I'm good to go. >> Search >> for DNS HOWTO, or NAMED HOWTO for help. >> >>> >>> 2. I need to modify my httpd.conf file. >> >> Very true. If Apache is running, just point your browser at localhost >> and >> you're on your way. >> >>> >>> Are there any other suggestions. Recommended >>> setup in httpd.conf?? >> >> Wow, that's a book. Please be specific with requests, hopefully one per >> email, as you go along and hit the inevitable bumps. Some things you'll >> probably end up doing is VirtualHosts and security/login sites, etc. >> This >> isn't rocket science, but it can get hairy with the different versions >> of >> HTTPD. >> >> As long as you're at it, look into fetchmail, or just using your host as >> the >> email server, too. That cleans up the MX records at the DNS server. If >> you >> do, take a hard look at bogofilter or spamassassin, plus clamav for >> virus >> protection. You could look at them anyway if you are going to use >> fetchmail, >> which is pretty simple to use. Redundancy is good for spam and virus >> filtering. >> >> HTH more than confuses. >> >> Karl >> > > > I'm pretty much doing what you're proposing (http://www.hallikainen.org). > I started slow and built stuff up over the years. > > I'm running a Linksys BEFSR81 router between the DSL and the LAN. I have > it forwarding ports for http, ssh, smtp, and ssl to the FC4 machine. I'm > using sendmail for sending and receiving email (relaying it through my > ISPs smtp server). I'm using Apache for web serving. I'm using dovecot as > the IMAP server. I'm using SquirrelMail as my webmail client. These are > all included with FC4. > > Mostly I go through the config files making small modifications in the > hopes of getting stuff to do what I want. Before modifying a config, I cp > it to filename.HH.1 where 1 changes with each revision and HH is a flag so > I can easily find modified configs. > > One of the changes I made in Apache config is to put the document root at > /home/harold/public_html instead of /var/www or wherever it defaults. That > makes it easy for me to make changes without becoming root. > > For DNS, I'm using http://www.dns2go.com. I told Networks Solutions to use > the DNS2go servers for my dns. dns2go is designed to provide dns services > to people with dynamic IP addresses (both you and I have static). Even > though I have a static IP, I'm running the dns2go script so it knows my > server's IP address. This came in handy a couple years ago when I moved. I > pulled the server from home and put it in my office for a few weeks. No > one knew the difference. The IP address changed as appropriate. When I got > DSL in our new home, I moved the server there, plugged it in, and it was > on line. Real simple! > > So... I suggest just start messing with it. Decide what service you want > to get working first. Keep banging on it until it works. Ask questions > here. > > Good luck! > > Harold One more thing to try is webmin. I think you can use yum to install it. As root, type yum install webmin. Then go to https://localhost:10000 and login as root. Lots of config stuff available there, including Apache. Harold -- From karlp at ourldsfamily.com Sat Apr 8 04:52:16 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 7 Apr 2006 22:52:16 -0600 (MDT) Subject: web server In-Reply-To: <46137.192.168.1.1.1144470469.squirrel@sujan.hallikainen.org> References: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> <46137.192.168.1.1.1144470469.squirrel@sujan.hallikainen.org> Message-ID: <21269.198.60.114.90.1144471936.squirrel@webmail.ourldsfamily.com> On Fri, April 7, 2006 10:27 pm, Harold Hallikainen said: > >> >>> >>> On Fri, April 7, 2006 9:29 pm, Bret Stern said: >>>> >>>> I have FC4 running reliably on a nice Dell server >>>> behind a good firewall. >>>> >>>> I would like to stop my ISP from hosting my site >>>> and let my static ip (one of five i have) server >>>> host my web site. >>>> >>>> It seems straight forward. >>>> >>>> 1. I need to change my configuration at Internic >>>> to point to my servers. >>> >>> DNS: Are you going to write your own or have them do it. Some registrars >>> won't point to a host outside their hosting pool. I pay my ISP a couple >>> bucks a month extra to secondary my DNS entries. They hit mine 3 times a >>> day >>> and as long as I update the 'serial' in my entries, I'm good to go. >>> Search >>> for DNS HOWTO, or NAMED HOWTO for help. >>> >>>> >>>> 2. I need to modify my httpd.conf file. >>> >>> Very true. If Apache is running, just point your browser at localhost >>> and >>> you're on your way. >>> >>>> >>>> Are there any other suggestions. Recommended >>>> setup in httpd.conf?? >>> >>> Wow, that's a book. Please be specific with requests, hopefully one per >>> email, as you go along and hit the inevitable bumps. Some things you'll >>> probably end up doing is VirtualHosts and security/login sites, etc. >>> This >>> isn't rocket science, but it can get hairy with the different versions >>> of >>> HTTPD. >>> >>> As long as you're at it, look into fetchmail, or just using your host as >>> the >>> email server, too. That cleans up the MX records at the DNS server. If >>> you >>> do, take a hard look at bogofilter or spamassassin, plus clamav for >>> virus >>> protection. You could look at them anyway if you are going to use >>> fetchmail, >>> which is pretty simple to use. Redundancy is good for spam and virus >>> filtering. >>> >>> HTH more than confuses. >>> >>> Karl >>> >> >> >> I'm pretty much doing what you're proposing (http://www.hallikainen.org). >> I started slow and built stuff up over the years. >> >> I'm running a Linksys BEFSR81 router between the DSL and the LAN. I have >> it forwarding ports for http, ssh, smtp, and ssl to the FC4 machine. I'm >> using sendmail for sending and receiving email (relaying it through my >> ISPs smtp server). I'm using Apache for web serving. I'm using dovecot as >> the IMAP server. I'm using SquirrelMail as my webmail client. These are >> all included with FC4. >> >> Mostly I go through the config files making small modifications in the >> hopes of getting stuff to do what I want. Before modifying a config, I cp >> it to filename.HH.1 where 1 changes with each revision and HH is a flag so >> I can easily find modified configs. >> >> One of the changes I made in Apache config is to put the document root at >> /home/harold/public_html instead of /var/www or wherever it defaults. That >> makes it easy for me to make changes without becoming root. >> >> For DNS, I'm using http://www.dns2go.com. I told Networks Solutions to use >> the DNS2go servers for my dns. dns2go is designed to provide dns services >> to people with dynamic IP addresses (both you and I have static). Even >> though I have a static IP, I'm running the dns2go script so it knows my >> server's IP address. This came in handy a couple years ago when I moved. I >> pulled the server from home and put it in my office for a few weeks. No >> one knew the difference. The IP address changed as appropriate. When I got >> DSL in our new home, I moved the server there, plugged it in, and it was >> on line. Real simple! >> >> So... I suggest just start messing with it. Decide what service you want >> to get working first. Keep banging on it until it works. Ask questions >> here. >> >> Good luck! >> >> Harold > > > One more thing to try is webmin. I think you can use yum to install it. As > root, type yum install webmin. Then go to https://localhost:10000 and > login as root. Lots of config stuff available there, including Apache. Harold, your help is great. But (isn't that always one? I'm the Butt here), Webmin hammers the config files. Not in a bad way, but if you want the commented files, forget it. All the comments are stripped out. Frankly, once you get familiar with things, that's not bad either. Since I'm a command-line geek, I use vi to modify httpd.conf, etc. AND, the worst job of removing comments I've seen to date is in smb.conf (Samba). Maybe webmin doesn't mess with httpd.conf? I do use webmin for a bunch of stuff, like running my custom scripts for cleaning up my spamfilter rules. One nice thing about webmin is the ssh front end. I've removed it from webmin and made it so it doesn't run in the browser, too. Nice tool. Rambling here. Time to go to bed. Karl > > Harold > > -- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From harold at hallikainen.com Sat Apr 8 05:10:49 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 7 Apr 2006 22:10:49 -0700 (PDT) Subject: web server In-Reply-To: <21269.198.60.114.90.1144471936.squirrel@webmail.ourldsfamily.com> References: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> <46137.192.168.1.1.1144470469.squirrel@sujan.hallikainen.org> <21269.198.60.114.90.1144471936.squirrel@webmail.ourldsfamily.com> Message-ID: <53038.192.168.1.1.1144473049.squirrel@sujan.hallikainen.org> > > On Fri, April 7, 2006 10:27 pm, Harold Hallikainen said: >> >>> >>>> >>>> On Fri, April 7, 2006 9:29 pm, Bret Stern said: >>>>> >>>>> I have FC4 running reliably on a nice Dell server >>>>> behind a good firewall. >>>>> >>>>> I would like to stop my ISP from hosting my site >>>>> and let my static ip (one of five i have) server >>>>> host my web site. >>>>> >>>>> It seems straight forward. >>>>> >>>>> 1. I need to change my configuration at Internic >>>>> to point to my servers. >>>> >>>> DNS: Are you going to write your own or have them do it. Some >>>> registrars >>>> won't point to a host outside their hosting pool. I pay my ISP a >>>> couple >>>> bucks a month extra to secondary my DNS entries. They hit mine 3 times >>>> a >>>> day >>>> and as long as I update the 'serial' in my entries, I'm good to go. >>>> Search >>>> for DNS HOWTO, or NAMED HOWTO for help. >>>> >>>>> >>>>> 2. I need to modify my httpd.conf file. >>>> >>>> Very true. If Apache is running, just point your browser at localhost >>>> and >>>> you're on your way. >>>> >>>>> >>>>> Are there any other suggestions. Recommended >>>>> setup in httpd.conf?? >>>> >>>> Wow, that's a book. Please be specific with requests, hopefully one >>>> per >>>> email, as you go along and hit the inevitable bumps. Some things >>>> you'll >>>> probably end up doing is VirtualHosts and security/login sites, etc. >>>> This >>>> isn't rocket science, but it can get hairy with the different versions >>>> of >>>> HTTPD. >>>> >>>> As long as you're at it, look into fetchmail, or just using your host >>>> as >>>> the >>>> email server, too. That cleans up the MX records at the DNS server. If >>>> you >>>> do, take a hard look at bogofilter or spamassassin, plus clamav for >>>> virus >>>> protection. You could look at them anyway if you are going to use >>>> fetchmail, >>>> which is pretty simple to use. Redundancy is good for spam and virus >>>> filtering. >>>> >>>> HTH more than confuses. >>>> >>>> Karl >>>> >>> >>> >>> I'm pretty much doing what you're proposing >>> (http://www.hallikainen.org). >>> I started slow and built stuff up over the years. >>> >>> I'm running a Linksys BEFSR81 router between the DSL and the LAN. I >>> have >>> it forwarding ports for http, ssh, smtp, and ssl to the FC4 machine. >>> I'm >>> using sendmail for sending and receiving email (relaying it through my >>> ISPs smtp server). I'm using Apache for web serving. I'm using dovecot >>> as >>> the IMAP server. I'm using SquirrelMail as my webmail client. These >>> are >>> all included with FC4. >>> >>> Mostly I go through the config files making small modifications in the >>> hopes of getting stuff to do what I want. Before modifying a config, I >>> cp >>> it to filename.HH.1 where 1 changes with each revision and HH is a flag >>> so >>> I can easily find modified configs. >>> >>> One of the changes I made in Apache config is to put the document root >>> at >>> /home/harold/public_html instead of /var/www or wherever it defaults. >>> That >>> makes it easy for me to make changes without becoming root. >>> >>> For DNS, I'm using http://www.dns2go.com. I told Networks Solutions to >>> use >>> the DNS2go servers for my dns. dns2go is designed to provide dns >>> services >>> to people with dynamic IP addresses (both you and I have static). Even >>> though I have a static IP, I'm running the dns2go script so it knows my >>> server's IP address. This came in handy a couple years ago when I >>> moved. I >>> pulled the server from home and put it in my office for a few weeks. No >>> one knew the difference. The IP address changed as appropriate. When I >>> got >>> DSL in our new home, I moved the server there, plugged it in, and it >>> was >>> on line. Real simple! >>> >>> So... I suggest just start messing with it. Decide what service you >>> want >>> to get working first. Keep banging on it until it works. Ask questions >>> here. >>> >>> Good luck! >>> >>> Harold >> >> >> One more thing to try is webmin. I think you can use yum to install it. >> As >> root, type yum install webmin. Then go to https://localhost:10000 and >> login as root. Lots of config stuff available there, including Apache. > > Harold, your help is great. But (isn't that always one? I'm the Butt > here), > Webmin hammers the config files. Not in a bad way, but if you want the > commented files, forget it. All the comments are stripped out. Frankly, > once > you get familiar with things, that's not bad either. Since I'm a > command-line geek, I use vi to modify httpd.conf, etc. AND, the worst job > of > removing comments I've seen to date is in smb.conf (Samba). Maybe webmin > doesn't mess with httpd.conf? I do use webmin for a bunch of stuff, like > running my custom scripts for cleaning up my spamfilter rules. One nice > thing about webmin is the ssh front end. I've removed it from webmin and > made it so it doesn't run in the browser, too. Nice tool. Rambling here. > Time to go to bed. > > Karl > > Thanks for the comments! I haven't used webmin much. I've mostly just looked around. Hopefully I didn't delete all my config file comments. I have thus far edited config files using pico (which comes with pine). So... maybe it's best to stick to just editing the files with a text editor. Generally the comments in the config files are very good and enough to figure out what's going on. Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From karlp at ourldsfamily.com Sat Apr 8 05:29:10 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 7 Apr 2006 23:29:10 -0600 (MDT) Subject: web server In-Reply-To: <53038.192.168.1.1.1144473049.squirrel@sujan.hallikainen.org> References: <20377.198.60.114.90.1144468366.squirrel@webmail.ourldsfamily.com> <37491.192.168.1.1.1144469472.squirrel@sujan.hallikainen.org> <46137.192.168.1.1.1144470469.squirrel@sujan.hallikainen.org> <21269.198.60.114.90.1144471936.squirrel@webmail.ourldsfamily.com> <53038.192.168.1.1.1144473049.squirrel@sujan.hallikainen.org> Message-ID: <21670.198.60.114.90.1144474150.squirrel@webmail.ourldsfamily.com> On Fri, April 7, 2006 11:10 pm, Harold Hallikainen said: > >> >> On Fri, April 7, 2006 10:27 pm, Harold Hallikainen said: >>> >>>> >>>>> >>>>> On Fri, April 7, 2006 9:29 pm, Bret Stern said: >>>>>> >>>>>> I have FC4 running reliably on a nice Dell server >>>>>> behind a good firewall. >>>>>> >>>>>> I would like to stop my ISP from hosting my site >>>>>> and let my static ip (one of five i have) server >>>>>> host my web site. >>>>>> >>>>>> It seems straight forward. >>>>>> >>>>>> 1. I need to change my configuration at Internic >>>>>> to point to my servers. >>>>> >>>>> DNS: Are you going to write your own or have them do it. Some >>>>> registrars >>>>> won't point to a host outside their hosting pool. I pay my ISP a >>>>> couple >>>>> bucks a month extra to secondary my DNS entries. They hit mine 3 times >>>>> a >>>>> day >>>>> and as long as I update the 'serial' in my entries, I'm good to go. >>>>> Search >>>>> for DNS HOWTO, or NAMED HOWTO for help. >>>>> >>>>>> >>>>>> 2. I need to modify my httpd.conf file. >>>>> >>>>> Very true. If Apache is running, just point your browser at localhost >>>>> and >>>>> you're on your way. >>>>> >>>>>> >>>>>> Are there any other suggestions. Recommended >>>>>> setup in httpd.conf?? >>>>> >>>>> Wow, that's a book. Please be specific with requests, hopefully one >>>>> per >>>>> email, as you go along and hit the inevitable bumps. Some things >>>>> you'll >>>>> probably end up doing is VirtualHosts and security/login sites, etc. >>>>> This >>>>> isn't rocket science, but it can get hairy with the different versions >>>>> of >>>>> HTTPD. >>>>> >>>>> As long as you're at it, look into fetchmail, or just using your host >>>>> as >>>>> the >>>>> email server, too. That cleans up the MX records at the DNS server. If >>>>> you >>>>> do, take a hard look at bogofilter or spamassassin, plus clamav for >>>>> virus >>>>> protection. You could look at them anyway if you are going to use >>>>> fetchmail, >>>>> which is pretty simple to use. Redundancy is good for spam and virus >>>>> filtering. >>>>> >>>>> HTH more than confuses. >>>>> >>>>> Karl >>>>> >>>> >>>> >>>> I'm pretty much doing what you're proposing >>>> (http://www.hallikainen.org). >>>> I started slow and built stuff up over the years. >>>> >>>> I'm running a Linksys BEFSR81 router between the DSL and the LAN. I >>>> have >>>> it forwarding ports for http, ssh, smtp, and ssl to the FC4 machine. >>>> I'm >>>> using sendmail for sending and receiving email (relaying it through my >>>> ISPs smtp server). I'm using Apache for web serving. I'm using dovecot >>>> as >>>> the IMAP server. I'm using SquirrelMail as my webmail client. These >>>> are >>>> all included with FC4. >>>> >>>> Mostly I go through the config files making small modifications in the >>>> hopes of getting stuff to do what I want. Before modifying a config, I >>>> cp >>>> it to filename.HH.1 where 1 changes with each revision and HH is a flag >>>> so >>>> I can easily find modified configs. >>>> >>>> One of the changes I made in Apache config is to put the document root >>>> at >>>> /home/harold/public_html instead of /var/www or wherever it defaults. >>>> That >>>> makes it easy for me to make changes without becoming root. >>>> >>>> For DNS, I'm using http://www.dns2go.com. I told Networks Solutions to >>>> use >>>> the DNS2go servers for my dns. dns2go is designed to provide dns >>>> services >>>> to people with dynamic IP addresses (both you and I have static). Even >>>> though I have a static IP, I'm running the dns2go script so it knows my >>>> server's IP address. This came in handy a couple years ago when I >>>> moved. I >>>> pulled the server from home and put it in my office for a few weeks. No >>>> one knew the difference. The IP address changed as appropriate. When I >>>> got >>>> DSL in our new home, I moved the server there, plugged it in, and it >>>> was >>>> on line. Real simple! >>>> >>>> So... I suggest just start messing with it. Decide what service you >>>> want >>>> to get working first. Keep banging on it until it works. Ask questions >>>> here. >>>> >>>> Good luck! >>>> >>>> Harold >>> >>> >>> One more thing to try is webmin. I think you can use yum to install it. >>> As >>> root, type yum install webmin. Then go to https://localhost:10000 and >>> login as root. Lots of config stuff available there, including Apache. >> >> Harold, your help is great. But (isn't that always one? I'm the Butt >> here), >> Webmin hammers the config files. Not in a bad way, but if you want the >> commented files, forget it. All the comments are stripped out. Frankly, >> once >> you get familiar with things, that's not bad either. Since I'm a >> command-line geek, I use vi to modify httpd.conf, etc. AND, the worst job >> of >> removing comments I've seen to date is in smb.conf (Samba). Maybe webmin >> doesn't mess with httpd.conf? I do use webmin for a bunch of stuff, like >> running my custom scripts for cleaning up my spamfilter rules. One nice >> thing about webmin is the ssh front end. I've removed it from webmin and >> made it so it doesn't run in the browser, too. Nice tool. Rambling here. >> Time to go to bed. >> >> Karl >> >> > > Thanks for the comments! I haven't used webmin much. I've mostly just > looked around. Hopefully I didn't delete all my config file comments. I > have thus far edited config files using pico (which comes with pine). > > So... maybe it's best to stick to just editing the files with a text > editor. Generally the comments in the config files are very good and > enough to figure out what's going on. Not necessarilly. Example: I'm a DBA but not for a SQL type database, so those types (Oracle, MySQL, etc.) are out of my realm so far that I've not done a bunch of learning yet. I use webmin to manage MySQL databases. Not much, because the packages I use it for (Squirrelmail and WebCalendar) have great setup docs. The Custom Commands part of the Others section of webmin is great for a web-based method of editing whatever files you want to add an Edit page for. I also use it for stopping and starting my firewall, editing my SpamAssassin local.cf file and some other files... Karl Now REALLY to bed... > > Harold > > -- > FCC Rules Updated Daily at http://www.hallikainen.com > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From bc98kinney at yahoo.com Sat Apr 8 16:16:49 2006 From: bc98kinney at yahoo.com (Bob Kinney) Date: Sat, 8 Apr 2006 09:16:49 -0700 (PDT) Subject: kermit configuration file In-Reply-To: <1142273279.890.399.camel@prophead.corp.publichost.com> Message-ID: <20060408161649.6430.qmail@web30708.mail.mud.yahoo.com> --- Rick Stevens wrote: > On Mon, 2006-03-13 at 07:51 -0800, Bob Kinney wrote: > > > > > > > > > On Sun, 2006-02-19 at 15:46 -0800, Bob Kinney wrote: > > > > I've searched high and low for an answer to this; hopefully somebody > here > > > can > > > > help. > > > > > > > > I'm trying to get kermit to read two commands from a .mykermrc file in > my > > > home > > > > directory: > > > > > > > > SET LINE /dev/ttyS0 > > > > SET CARRIER-WATCH OFF > > > > > > > > I also have an identical .kermrc. > > > > > > > > For some reason, the SET LINE command does not work. > > > > > > > > [bob at micron ~]$ kermit > > > > /var/lock > > > > C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 > > > > Copyright (C) 1985, 2003, > > > > Trustees of Columbia University in the City of New York. > > > > Type ? or HELP for help. > > > > (/home/bob/) C-Kermit>show file > > > > > > > > Transfer mode: automatic > > > > File patterns: automatic (SHOW PATTERNS for list) > > > > File scan: on 49152 > > > > Default file type: binary > > > > File names: converted > > > > Send pathnames: off > > > > Receive pathnames: auto > > > > Match dot files: no > > > > Wildcard-expansion: kermit > > > > File collision: backup > > > > File destination: disk > > > > File incomplete: auto > > > > File bytesize: 8 > > > > File character-set: ascii > > > > File default 7-bit: ascii > > > > File default 8-bit: latin1-iso > > > > File UCS bom: on > > > > File UCS byte-order: little-endian > > > > Computer byteorder: little-endian > > > > File end-of-line: lf > > > > File eof: length > > > > File download-directory: (none) > > > > Send move-to: (none) > > > > Send rename-to: (none) > > > > Receive move-to: (none) > > > > Receive rename-to: (none) > > > > Initialization file: /home/bob/.kermrc > > > > Root set: (none) > > > > Disk output buffer: 32768 (writes are buffered, blocking) > > > > Stringspace: 500000 > > > > Listsize: 102400 > > > > Longest filename: 255 > > > > Longest pathname: 4096 > > > > Last file sent: (none) > > > > Last file received: (none) > > > > > > > > Also see: > > > > SHOW PROTOCOL, SHOW XFER, SHOW PATTERNS, SHOW STREAMING, SHOW > > > CHARACTER-SETS > > > > (/home/bob/) C-Kermit>show comm > > > > > > > > Communications Parameters: > > > > Line: /dev/tty, speed: unknown, mode: remote, modem: generic > > > > Parity: none, duplex: full, flow: none, handshake: none > > > > Carrier-watch: off, close-on-disconnect: off > > > > Lockfile directory: /var/lock > > > > Typical port device name: /dev/ttyS0 > > > > > > > > Modem signals unavailable > > > > > > > > Type SHOW DIAL to see DIAL-related items. > > > > Type SHOW MODEM to see modem-related items. > > > > > > > > (/home/bob/) C-Kermit> > > > > > > > > > > > > If I rename .kermrc to hide it, the CARRIER-WATCH line changes to the > > > > system default of "auto". > > > > > > > > > > > > Using FC3 on kernel 2.6.12-1.1381_FC3. > > > > > > > > Anyone have any advice? > > > > > > First, swap the "SET CARRIER-WATCH OFF" and the "SET LINE /dev/ttyS0" > > > lines. You have to turn off carrier watch before swapping to a line > > > without carrier. > > > > > > > Thanks for the advice Rick. I tried it, without success. This seems to > > be something that broke between RH9 and FC3 distros. I had it working on > > RH9, but I did FC3 as a fresh install. Hmmm...here's a clue: When invoking kermit as a non-root user, I get this: [bob at micron ~]$ kermit /var/lock C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 Copyright (C) 1985, 2003, Trustees of Columbia University in the City of New York. Type ? or HELP for help. (/home/bob/) C-Kermit>set line /dev/ttyS0 /var/lock Sorry, write access to UUCP lockfile directory denied. What's /var/lock look like? [bob at micron ~]$ ll -d /var/lock drwxrwxr-x 10 root lock 4096 Apr 8 11:01 /var/lock [bob at micron ~]$ ll /var/lock total 64 drwx------ 2 root root 4096 Aug 9 2004 iptraf drwx------ 2 root root 4096 Sep 27 2005 lvm drwxrwsr-x 2 root mailman 4096 Mar 21 2005 mailman drwxr-xr-x 2 root root 4096 Apr 8 11:05 mrtg drwxr-xr-x 2 rpm rpm 4096 Feb 20 03:22 rpm drwxr-xr-x 2 root root 4096 Apr 7 20:22 subsys drwxr-xr-x 2 uucp uucp 4096 Oct 14 2004 uucp drwxrwxrwt 2 root root 4096 Feb 13 2005 xemacs [bob at micron ~]$ What would be the security-conscious way to allow non-root users to access the serial port? Should I add myself to the "lock" group, or give universal write access to /var/lock? A better plan? --bc __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From bret_stern at machinemanagement.com Sat Apr 8 16:52:11 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Sat, 8 Apr 2006 09:52:11 -0700 Subject: Added drive - Messed up?? Message-ID: I just added a drive using fdisk, but I think I hosed the system. I used fdisk to create a new partition on a second 18 g scsi drive. Then used mkfs to format the partition. I think I ^$%^&$% it! There is some stuff I would like to save on the drives (if possible) Here is the boot message. Reading all physical volumes.. No volume groups found Unable to find volume group "VolGroup00" ERROR /bin/lvm exited abnormally with value 5 ! (pid 437) mount: error 6 mounting ext3 ERROR opening /dev/console!!!!: 2 error dup2'ing fd 0 to 0 error dup2'ing fd 0 to 1 error dup2'ing fd 0 to 2 switchroot: mount failed kernel panic - not syncing From kostassf at cha.forthnet.gr Sat Apr 8 22:11:26 2006 From: kostassf at cha.forthnet.gr (Kostas Sfakiotakis) Date: Sun, 09 Apr 2006 01:11:26 +0300 Subject: Maile Server - Sendmail In-Reply-To: References: Message-ID: <4438350E.6090400@cha.forthnet.gr> Greetings Bret , Bret Stern wrote: > I want to host my own mail server, and quit > paying my ISP 24.95 per month for it. > > My FC4 server has sendmail, (which I have > shut off right now), but I would like to activate > the service and start using my own server for mail. > > What things do I need to do this? > > What is an A record?? An The "A" record is one type of Resource Records used by DNS It is the type of resource record used by DNS in order to translate the human readable URLs to computer understandable IP Addresses . Although am not a master on DNS the form of an A record would look something like www.forthnet.gr 86400 IN A 193.92.150.50 On the above line www.forthnet.gr is the human readable URL ( it's my ISPs URL ) The above record is valid for 86400 seconds or 24 hours after this time period passes the Primary DNS Server responsible for the above "A" record would have to check whether it is still valid or not . Now since you are trying to set up a mail server there are two more types of Resource Records you would have to setup . The "MX" or Mail eXchange record this record says to anybody that want's to sent you an email the server they would have to contact in order to sent you an email . For example . forthnet.gr 86400 IN MX 100 mailgate.forthnet.gr Now the above line says that if you wish to sent me an email your ISPs mail server would have to contact mailgate.forthnet.gr . 86400 plays again the same role . Now one last thing that you have to consider since you are trying to setup an eMail eXchange Server is the PTR or Pointer Record . What this record does is get an IP and return the URL ( or the FQDN ) of the machine that the IP coresponds to . For example : 24.150.92.193.in-addr.arpa. 86400 IN PTR mailgate.forthnet.gr Now it is generally consider could practice ( some mail servers may even refuse to "work with" a mail server even he doesn't a PTR record similar to the above one AND an A record . Kind Regards, Kostas From nnurdam_rh at yahoo.com Mon Apr 10 04:55:52 2006 From: nnurdam_rh at yahoo.com (Nofriyadi Nurdam) Date: Sun, 9 Apr 2006 21:55:52 -0700 (PDT) Subject: Problem with "out of frequency" In-Reply-To: <1144351797.3301.76.camel@prophead.corp.publichost.com> Message-ID: <20060410045552.9540.qmail@web52509.mail.yahoo.com> Hi All, Could you help me please? I have received error message as I installed RedHat9 to my computer. Then I tried with linux lowres. It worked just until I configured display to 1024-768. It was the same as I configured display to 800-600. Help me please Thanks in advance --------------------------------- Blab-away for as little as 1?/min. Make PC-to-Phone Calls using Yahoo! Messenger with Voice. -------------- next part -------------- An HTML attachment was scrubbed... URL: From karlp at ourldsfamily.com Mon Apr 10 14:36:59 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Mon, 10 Apr 2006 08:36:59 -0600 (MDT) Subject: Problem with "out of frequency" In-Reply-To: <20060410045552.9540.qmail@web52509.mail.yahoo.com> References: <1144351797.3301.76.camel@prophead.corp.publichost.com> <20060410045552.9540.qmail@web52509.mail.yahoo.com> Message-ID: <37917.207.173.117.242.1144679819.squirrel@ourldsfamily.com> On Sun, April 9, 2006 10:55 pm, Nofriyadi Nurdam said: > Hi All, > > Could you help me please? > I have received error message as I installed RedHat9 to my computer. Then > I tried with linux lowres. It worked just until I configured display to > 1024-768. It was the same as I configured display to 800-600. > Help me please Display problems such as this are usually caused by a video adapter not being probed correctly. The first thing I'd recommend is installing Fedora Core 4, which has a significantly larger number of drivers available. CTL-ALT + or CTL-ALT - will cycle through the available resolutions found. You'll get better help from those who are using Redhat v9. I use ubuntu and Fedora Core 4 more. HTH (a little) Karl > > Thanks in advance > > > --------------------------------- > Blab-away for as little as 1?/min. Make PC-to-Phone Calls using Yahoo! > Messenger with Voice._______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From fta7wmt at netvigator.com Mon Apr 10 16:25:07 2006 From: fta7wmt at netvigator.com (lstar) Date: Mon, 10 Apr 2006 16:25:07 -0000 Subject: iptables problem Message-ID: <001101c6445e$fdba2fd0$0a00a8c0@lstar> Hi All, I would like to ask an " iptables" question which port should i block if i need to restrict access samba services? I have search the information from knowledgebase of redhat offical web site. it found following port a.. Port 137 (UDP) - NetBIOS name service and nmbd b.. Port 138 (UDP) - NetBIOS datagram service c.. Port 139 (TCP) - File and printer sharing and smbd d.. Port 389 (TCP) - for LDAP (Active Directory Mode) e.. Port 445 (TCP) - NetBIOS was moved to 445 after 2000 and beyond, (CIFS) f.. Port 901 (TCP) - for SWAT Should I port all above port to restrict the access to samba services or any specific port also enough ? Regards lstar -------------- next part -------------- An HTML attachment was scrubbed... URL: From rstevens at vitalstream.com Mon Apr 10 17:08:14 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 10 Apr 2006 10:08:14 -0700 Subject: kermit configuration file In-Reply-To: <20060408161649.6430.qmail@web30708.mail.mud.yahoo.com> References: <20060408161649.6430.qmail@web30708.mail.mud.yahoo.com> Message-ID: <1144688894.20728.3.camel@prophead.corp.publichost.com> On Sat, 2006-04-08 at 09:16 -0700, Bob Kinney wrote: > > --- Rick Stevens wrote: > > > On Mon, 2006-03-13 at 07:51 -0800, Bob Kinney wrote: > > > > > > > > > > > > > On Sun, 2006-02-19 at 15:46 -0800, Bob Kinney wrote: > > > > > I've searched high and low for an answer to this; hopefully somebody > > here > > > > can > > > > > help. > > > > > > > > > > I'm trying to get kermit to read two commands from a .mykermrc file in > > my > > > > home > > > > > directory: > > > > > > > > > > SET LINE /dev/ttyS0 > > > > > SET CARRIER-WATCH OFF > > > > > > > > > > I also have an identical .kermrc. > > > > > > > > > > For some reason, the SET LINE command does not work. > > > > > > > > > > [bob at micron ~]$ kermit > > > > > /var/lock > > > > > C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 > > > > > Copyright (C) 1985, 2003, > > > > > Trustees of Columbia University in the City of New York. > > > > > Type ? or HELP for help. > > > > > (/home/bob/) C-Kermit>show file > > > > > > > > > > Transfer mode: automatic > > > > > File patterns: automatic (SHOW PATTERNS for list) > > > > > File scan: on 49152 > > > > > Default file type: binary > > > > > File names: converted > > > > > Send pathnames: off > > > > > Receive pathnames: auto > > > > > Match dot files: no > > > > > Wildcard-expansion: kermit > > > > > File collision: backup > > > > > File destination: disk > > > > > File incomplete: auto > > > > > File bytesize: 8 > > > > > File character-set: ascii > > > > > File default 7-bit: ascii > > > > > File default 8-bit: latin1-iso > > > > > File UCS bom: on > > > > > File UCS byte-order: little-endian > > > > > Computer byteorder: little-endian > > > > > File end-of-line: lf > > > > > File eof: length > > > > > File download-directory: (none) > > > > > Send move-to: (none) > > > > > Send rename-to: (none) > > > > > Receive move-to: (none) > > > > > Receive rename-to: (none) > > > > > Initialization file: /home/bob/.kermrc > > > > > Root set: (none) > > > > > Disk output buffer: 32768 (writes are buffered, blocking) > > > > > Stringspace: 500000 > > > > > Listsize: 102400 > > > > > Longest filename: 255 > > > > > Longest pathname: 4096 > > > > > Last file sent: (none) > > > > > Last file received: (none) > > > > > > > > > > Also see: > > > > > SHOW PROTOCOL, SHOW XFER, SHOW PATTERNS, SHOW STREAMING, SHOW > > > > CHARACTER-SETS > > > > > (/home/bob/) C-Kermit>show comm > > > > > > > > > > Communications Parameters: > > > > > Line: /dev/tty, speed: unknown, mode: remote, modem: generic > > > > > Parity: none, duplex: full, flow: none, handshake: none > > > > > Carrier-watch: off, close-on-disconnect: off > > > > > Lockfile directory: /var/lock > > > > > Typical port device name: /dev/ttyS0 > > > > > > > > > > Modem signals unavailable > > > > > > > > > > Type SHOW DIAL to see DIAL-related items. > > > > > Type SHOW MODEM to see modem-related items. > > > > > > > > > > (/home/bob/) C-Kermit> > > > > > > > > > > > > > > > If I rename .kermrc to hide it, the CARRIER-WATCH line changes to the > > > > > system default of "auto". > > > > > > > > > > > > > > > Using FC3 on kernel 2.6.12-1.1381_FC3. > > > > > > > > > > Anyone have any advice? > > > > > > > > First, swap the "SET CARRIER-WATCH OFF" and the "SET LINE /dev/ttyS0" > > > > lines. You have to turn off carrier watch before swapping to a line > > > > without carrier. > > > > > > > > > > Thanks for the advice Rick. I tried it, without success. This seems to > > > be something that broke between RH9 and FC3 distros. I had it working on > > > RH9, but I did FC3 as a fresh install. > > > Hmmm...here's a clue: When invoking kermit as a non-root user, I get this: > > [bob at micron ~]$ kermit > /var/lock > C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 > Copyright (C) 1985, 2003, > Trustees of Columbia University in the City of New York. > Type ? or HELP for help. > (/home/bob/) C-Kermit>set line /dev/ttyS0 > /var/lock > Sorry, write access to UUCP lockfile directory denied. > > > What's /var/lock look like? > > [bob at micron ~]$ ll -d /var/lock > drwxrwxr-x 10 root lock 4096 Apr 8 11:01 /var/lock > [bob at micron ~]$ ll /var/lock > total 64 > drwx------ 2 root root 4096 Aug 9 2004 iptraf > drwx------ 2 root root 4096 Sep 27 2005 lvm > drwxrwsr-x 2 root mailman 4096 Mar 21 2005 mailman > drwxr-xr-x 2 root root 4096 Apr 8 11:05 mrtg > drwxr-xr-x 2 rpm rpm 4096 Feb 20 03:22 rpm > drwxr-xr-x 2 root root 4096 Apr 7 20:22 subsys > drwxr-xr-x 2 uucp uucp 4096 Oct 14 2004 uucp > drwxrwxrwt 2 root root 4096 Feb 13 2005 xemacs > [bob at micron ~]$ > > What would be the security-conscious way to allow non-root users to access > the serial port? Should I add myself to the "lock" group, or give universal > write access to /var/lock? A better plan? Either would work. The more restrictive thing (the least impact on security) is to add yourself to the lock group. I can't recall if kermit runs as the invoking user or as a user in and of itself. If it's the latter, then add the user kermit runs as to the lock group. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - When in doubt, mumble. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Mon Apr 10 17:12:39 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 10 Apr 2006 10:12:39 -0700 Subject: iptables problem In-Reply-To: <001101c6445e$fdba2fd0$0a00a8c0@lstar> References: <001101c6445e$fdba2fd0$0a00a8c0@lstar> Message-ID: <1144689159.20728.8.camel@prophead.corp.publichost.com> On Sat, 2006-03-11 at 00:23 +0800, lstar wrote: > Hi All, > I would like to ask an " iptables" question > which port should i block if i need to restrict access samba services? > I have search the information from knowledgebase of redhat offical web > site. it found following port > * Port 137 (UDP) - NetBIOS name service and nmbd > * Port 138 (UDP) - NetBIOS datagram service > * Port 139 (TCP) - File and printer sharing and smbd > * Port 389 (TCP) - for LDAP (Active Directory Mode) > * Port 445 (TCP) - NetBIOS was moved to 445 after 2000 and > beyond, (CIFS) > * Port 901 (TCP) - for SWAT > Should I port all above port to restrict the access to samba services > or any specific port also enough ? To block Samba, UDP 137 and 138 and TCP 139 and 445 are all you need to block. TCP 445 is not used just for Samba (anything using LDAP will use that port including local logins if you use LDAP to authenticate), and swat is an admin tool which you _may_ wish to block. The actual Samba protocol is over the first four I mentioned. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - BASIC is the Computer Science version of `Scientific Creationism' - ---------------------------------------------------------------------- From bret_stern at machinemanagement.com Mon Apr 10 17:33:12 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Mon, 10 Apr 2006 10:33:12 -0700 Subject: Fedora 5 Message-ID: Anybody using Fedora 5? Any major problems? From rstevens at vitalstream.com Mon Apr 10 17:55:42 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 10 Apr 2006 10:55:42 -0700 Subject: Fedora 5 In-Reply-To: References: Message-ID: <1144691742.20728.14.camel@prophead.corp.publichost.com> On Mon, 2006-04-10 at 10:33 -0700, Bret Stern wrote: > Anybody using Fedora 5? That was on my "list of things to do this weekend", but I decided to go to the Long Beach Grand Prix instead. I'll try to get at it this week. > Any major problems? I've not heard of any biggies with the latest release. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Swap memory error: You lose your mind" - ---------------------------------------------------------------------- From jkinz at kinz.org Mon Apr 10 17:56:41 2006 From: jkinz at kinz.org (Jeff Kinz) Date: Mon, 10 Apr 2006 13:56:41 -0400 Subject: Reversing email contents Message-ID: <20060410135641.A18661@redline.comcast.net> Hi all, I've inherited the job of coordinating games/practices and fields for our local soccer league. (yeah!) I'm getting emails with 30 emails in reverse order within them, typical Outlook format. In order to understand the issues + needs of the teams sequestered within these emails it would be a lot easier if the discussion were in the order it happened in. Does anyone happen to have a tool, of any sort, that can reverse the oder of the emails within one email ? I know this is a long shot but I'm ever hopeful. They say you can find anything on the internet.. :-) -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail From jkinz at kinz.org Mon Apr 10 18:00:02 2006 From: jkinz at kinz.org (Jeff Kinz) Date: Mon, 10 Apr 2006 14:00:02 -0400 Subject: Fedora 5 In-Reply-To: <1144691742.20728.14.camel@prophead.corp.publichost.com>; from rstevens@vitalstream.com on Mon, Apr 10, 2006 at 10:55:42AM -0700 References: <1144691742.20728.14.camel@prophead.corp.publichost.com> Message-ID: <20060410140002.B18661@redline.comcast.net> On Mon, Apr 10, 2006 at 10:55:42AM -0700, Rick Stevens wrote: > On Mon, 2006-04-10 at 10:33 -0700, Bret Stern wrote: > > Anybody using Fedora 5? > > That was on my "list of things to do this weekend", but I decided to > go to the Long Beach Grand Prix instead. I'll try to get at it this > week. > > > Any major problems? > > I've not heard of any biggies with the latest release. I'm seeing some grumbling on #fedora irc channel on freenode. some people are having severe issues and other are acknowledging those issues. I'm using centos these days so I haven't followed these issues closely. If you would like I can send you a copy of the irc chat log to search through. -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail From harold at hallikainen.com Mon Apr 10 18:55:17 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Mon, 10 Apr 2006 11:55:17 -0700 (PDT) Subject: more on bogged down server Message-ID: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> Last week, I was out of town for the week and, of course, my FC4 system slowed down to a crawl, and eventually I could not get into it at all. I just bought and installed a "Web Power Switch" (under $100 at http://www.digital-loggers.com/lpc.html), so I will always (I hope) be able to reboot the system from anywhere. I also reduced the number of clients (I think that was the term) in httpd.conf from 150 to 50. Based on Rick's suggestion, I also added this to /etc/sysctl.conf: # below lines added 4/8/06 to try to prevent system bog downs due to httpd. hh net.ipv4.tcp_fin_timeout = 1 net.ipv4.tcp_max_syn_backlog = 2048 net.ipv4.tcp_syn_retries = 3 net.ipv4.tcp_tw_recycle = 1 net.ipv4.tcp_tw_reuse = 1 My web server has a lot of large files that will take a while for people to download. I suspect Apache is starting another thread for each of these, and keeping it open a long time. As more and more requests come in, the load just keeps getting bigger. Here's a recent top: Cpu(s): 98.3% us, 1.7% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si Mem: 1027640k total, 1013188k used, 14452k free, 8292k buffers Swap: 2031608k total, 244252k used, 1787356k free, 224352k cached PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 19089 apache 16 0 45120 17m 4780 S 17.0 1.8 0:04.59 httpd 14416 apache 24 0 60736 31m 4904 R 3.7 3.1 13:02.87 httpd 18425 apache 21 0 59872 30m 2996 R 3.7 3.0 2:58.17 httpd 8965 apache 25 0 59724 31m 4800 R 3.3 3.2 30:11.74 httpd 10263 apache 25 0 60896 32m 4664 R 3.3 3.2 17:42.99 httpd 10268 apache 25 0 60620 27m 4512 R 3.3 2.7 17:12.99 httpd 13121 apache 25 0 59540 31m 4648 R 3.3 3.2 15:00.67 httpd 13585 apache 25 0 51556 12m 4508 R 3.3 1.3 13:09.44 httpd 13802 apache 25 0 51364 19m 4504 R 3.3 1.9 13:28.15 httpd 14613 apache 25 0 60684 18m 4508 R 3.3 1.8 12:32.11 httpd 14682 apache 25 0 51284 10m 2960 R 3.3 1.0 13:36.44 httpd 14852 apache 25 0 51332 16m 4992 R 3.3 1.6 10:08.87 httpd 14853 apache 25 0 51144 18m 4620 R 3.3 1.9 11:20.88 httpd 14935 apache 25 0 51656 18m 5352 R 3.3 1.9 10:52.20 httpd 15134 apache 25 0 51360 18m 5364 R 3.3 1.8 10:00.45 httpd 15138 apache 21 0 51200 17m 5336 R 3.3 1.8 10:33.49 httpd 15504 apache 20 0 60708 20m 4512 R 3.3 2.0 10:24.10 httpd 15876 apache 20 0 51028 10m 4528 R 3.3 1.1 8:41.13 httpd 15877 apache 23 0 60520 20m 5448 R 3.3 2.1 5:43.60 httpd 16331 apache 20 0 60328 32m 5516 R 3.3 3.2 5:19.84 httpd 16633 apache 25 0 60420 32m 5408 R 3.3 3.2 5:15.28 httpd 17859 apache 25 0 60016 32m 5520 R 3.3 3.3 2:27.50 httpd 18089 apache 25 0 60040 32m 5512 R 3.3 3.3 3:17.04 httpd 18426 apache 21 0 59588 32m 5292 R 3.3 3.2 0:36.13 httpd 18503 apache 25 0 59800 32m 5460 R 3.3 3.3 0:57.90 httpd Notice that a lot of those httpd processes have been running quite a while. My concern now is that while everything seems to be working, I think I'm missing some incoming mail. Here's something from /var/log/maillog: Apr 10 11:46:48 sujan sendmail[2316]: rejecting connections on daemon MTA: load average: 33 So... what do I do? THANKS! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From j.refugio.rodriguez at metztli-it.com Mon Apr 10 20:00:48 2006 From: j.refugio.rodriguez at metztli-it.com (J. Refugio Rodriguez) Date: Mon, 10 Apr 2006 13:00:48 -0700 (PDT) Subject: Fedora 5 In-Reply-To: Message-ID: <20060410200048.54393.qmail@web514.biz.mail.mud.yahoo.com> Bret Stern wrote: Anybody using Fedora 5? Any major problems? Corrupted 2nd ISO image has stopped my fresh installation several times. I have tried downloading that particular image from three(3) different mirrors and onto (two different file systems) and the corruption problem persists. Perhaps the DVD image does not "limp" from the same extreme ...but that will be next. Trying to upgrade an older installation (Fedora 3) will hang on the first ISO image on an oldie dual booting Dell laptop. Regards. Jose R. Rodriguez http://www.metztli-it.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From riegersteve at gmail.com Mon Apr 10 20:04:46 2006 From: riegersteve at gmail.com (Steve Rieger) Date: Mon, 10 Apr 2006 13:04:46 -0700 Subject: more on bogged down server In-Reply-To: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> Message-ID: <443ABA5E.4030205@gmail.com> Harold Hallikainen wrote: > Last week, I was out of town for the week and, of course, my FC4 system > slowed down to a crawl, and eventually I could not get into it at all. I > just bought and installed a "Web Power Switch" (under $100 at > http://www.digital-loggers.com/lpc.html), so I will always (I hope) be > able to reboot the system from anywhere. > > I also reduced the number of clients (I think that was the term) in > httpd.conf from 150 to 50. > > ... > > My web server has a lot of large files that will take a while for people > to download. I suspect Apache is starting another thread for each of > these, and keeping it open a long time. As more and more requests come in, > the load just keeps getting bigger. Here's a recent top: > let me guess, i make a request for a file to your apache, apache looks for the file, loads it into ram, then loads it into swap then starts piping it to me. thats the typical issue with large files, and at the end of the day you have three copies of the same file in seperate locations, (not for very long, but long enough to eat up all the swap and ram) can you post your fstab and httpd.conf please. (remove the private stuff) thanx From bret_stern at machinemanagement.com Mon Apr 10 20:10:53 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Mon, 10 Apr 2006 13:10:53 -0700 Subject: Fedora 5 Install - Very Nice Message-ID: I downloaded and installed the Fedora Core 5. I installed on a Dell Poweredge 2450 with two 733 cpu's and 512 mg ram, and 28 gigs of scsi disks. Install completed without any hitches. The boot process is very quick. Two notable items are corrected. 1. Fedora 4 install complained about "No sound devices found" - Fedora 5 had no such errors after intall. 2. Fedora 4 would lock under run level 5 X windows. - Fedora 5 does not lock up runnig X. Nice look, and things are placed well. Bret Stern Machine Management From harold at hallikainen.com Mon Apr 10 20:30:29 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Mon, 10 Apr 2006 13:30:29 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <443ABA5E.4030205@gmail.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <443ABA5E.4030205@gmail.com> Message-ID: <43268.207.177.227.29.1144701029.squirrel@sujan.hallikainen.org> > Harold Hallikainen wrote: >> Last week, I was out of town for the week and, of course, my FC4 system >> slowed down to a crawl, and eventually I could not get into it at all. I >> just bought and installed a "Web Power Switch" (under $100 at >> http://www.digital-loggers.com/lpc.html), so I will always (I hope) be >> able to reboot the system from anywhere. >> >> I also reduced the number of clients (I think that was the term) in >> httpd.conf from 150 to 50. >> > >> ... >> >> My web server has a lot of large files that will take a while for people >> to download. I suspect Apache is starting another thread for each of >> these, and keeping it open a long time. As more and more requests come >> in, >> the load just keeps getting bigger. Here's a recent top: >> > > let me guess, i make a request for a file to your apache, apache looks > for the file, loads it into ram, then loads it into swap then starts > piping it to me. > > thats the typical issue with large files, and at the end of the day you > have three copies of the same file in seperate locations, (not for very > long, but long enough to eat up all the swap and ram) > > can you post your fstab and httpd.conf please. > (remove the private stuff) I don't think the problem is ram usage, but cpu usage. httpd seems to just take whatever is available. Here's another top: Cpu(s): 98.3% us, 1.7% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si Mem: 1027640k total, 1008720k used, 18920k free, 14632k buffers Swap: 2031608k total, 124k used, 2031484k free, 565744k cached PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 2410 apache 25 0 60784 35m 5388 R 16.6 3.5 12:57.67 httpd 2414 apache 25 0 60156 34m 5644 R 16.6 3.5 2:57.02 httpd 3239 apache 25 0 59916 34m 5544 R 16.6 3.4 0:29.36 httpd 4082 apache 25 0 59660 33m 4580 R 16.6 3.3 1:37.42 httpd 2411 apache 25 0 60664 34m 4908 R 16.3 3.5 10:28.03 httpd 2415 apache 25 0 60752 35m 5532 R 15.6 3.5 8:40.28 httpd Here's /etc/fstab: /dev/VolGroup00/LogVol00 / ext3 defaults 1 1 LABEL=/boot /boot ext3 defaults 1 2 /dev/devpts /dev/pts devpts gid=5,mode=620 0 0 /dev/shm /dev/shm tmpfs defaults 0 0 /dev/proc /proc proc defaults 0 0 /dev/sys /sys sysfs defaults 0 0 /dev/VolGroup00/LogVol01 swap swap defaults 0 0 /dev/hdc /media/cdrom auto pamconsole,exec,noauto,managed 0 0 As requested, here's httpd. It's what comes with FC4 with a few changes. Changes are generally marked hh. Sorry that it's so big! # # Based upon the NCSA server configuration files originally by Rob McCool. # # This is the main Apache server configuration file. It contains the # configuration directives that give the server its instructions. # See URL:http://httpd.apache.org/docs-2.0/ for detailed information about # the directives. # # Do NOT simply read the instructions in here without understanding # what they do. They're here only as hints or reminders. If you are unsure # consult the online docs. You have been warned. # # The configuration directives are grouped into three basic sections: # 1. Directives that control the operation of the Apache server process as a # whole (the 'global environment'). # 2. Directives that define the parameters of the 'main' or 'default' server, # which responds to requests that aren't handled by a virtual host. # These directives also provide default values for the settings # of all virtual hosts. # 3. Settings for virtual hosts, which allow Web requests to be sent to # different IP addresses or hostnames and have them handled by the # same Apache server process. # # Configuration and logfile names: If the filenames you specify for many # of the server's control files begin with "/" (or "drive:/" for Win32), the # server will use that explicit path. If the filenames do *not* begin # with "/", the value of ServerRoot is prepended -- so "logs/foo.log" # with ServerRoot set to "/etc/httpd" will be interpreted by the # server as "/etc/httpd/logs/foo.log". # ### Section 1: Global Environment # # The directives in this section affect the overall operation of Apache, # such as the number of concurrent requests it can handle or where it # can find its configuration files. # # # Don't give away too much information about all the subcomponents # we are running. Comment out this line if you don't mind remote sites # finding out what major optional modules you are running ServerTokens OS # # ServerRoot: The top of the directory tree under which the server's # configuration, error, and log files are kept. # # NOTE! If you intend to place this on an NFS (or otherwise network) # mounted filesystem then please read the LockFile documentation # (available at ); # you will save yourself a lot of trouble. # # Do NOT add a slash at the end of the directory path. # ServerRoot "/etc/httpd" # # ScoreBoardFile: File used to store internal server process information. # If unspecified (the default), the scoreboard will be stored in an # anonymous shared memory segment, and will be unavailable to third-party # applications. # If specified, ensure that no two invocations of Apache share the same # scoreboard file. The scoreboard file MUST BE STORED ON A LOCAL DISK. # #ScoreBoardFile run/httpd.scoreboard # # PidFile: The file in which the server should record its process # identification number when it starts. # PidFile "/var/run/httpd.pid" # # Timeout: The number of seconds before receives and sends time out. # TimeOut 300 # # KeepAlive: Whether or not to allow persistent connections (more than # one request per connection). Set to "Off" to deactivate. # KeepAlive on # # MaxKeepAliveRequests: The maximum number of requests to allow # during a persistent connection. Set to 0 to allow an unlimited amount. # We recommend you leave this number high, for maximum performance. # MaxKeepAliveRequests 100 # # KeepAliveTimeout: Number of seconds to wait for the next request from the # same client on the same connection. # KeepAliveTimeout 15 ## ## Server-Pool Size Regulation (MPM specific) ## # prefork MPM # StartServers: number of server processes to start # MinSpareServers: minimum number of server processes which are kept spare # MaxSpareServers: maximum number of server processes which are kept spare # MaxClients: maximum number of server processes allowed to start # MaxRequestsPerChild: maximum number of requests a server process serves StartServers 8 MinSpareServers 5 MaxSpareServers 20 # MaxClients 150 - changed 4/8/06. hh MaxClients 50 MaxRequestsPerChild 100 # worker MPM # StartServers: initial number of server processes to start # MaxClients: maximum number of simultaneous client connections # MinSpareThreads: minimum number of worker threads which are kept spare # MaxSpareThreads: maximum number of worker threads which are kept spare # ThreadsPerChild: constant number of worker threads in each server process # MaxRequestsPerChild: maximum number of requests a server process serves StartServers 2 # MaxClients 150 - changed 4/8/06. hh MaxClients 50 MinSpareThreads 25 MaxSpareThreads 75 ThreadsPerChild 25 MaxRequestsPerChild 0 # # Listen: Allows you to bind Apache to specific IP addresses and/or # ports, in addition to the default. See also the # directive. # # Change this to Listen on specific IP addresses as shown below to # prevent Apache from glomming onto all bound IP addresses (0.0.0.0) # #Listen 12.34.56.78:80 Listen *:80 Listen *:8080 # # Dynamic Shared Object (DSO) Support # # To be able to use the functionality of a module which was built as a DSO you # have to place corresponding `LoadModule' lines at this location so the # directives contained in it are actually available _before_ they are used. # Statically compiled modules (those listed by `httpd -l') do not need # to be loaded here. # # Example: # LoadModule foo_module modules/mod_foo.so # LoadModule access_module modules/mod_access.so LoadModule auth_module modules/mod_auth.so LoadModule auth_anon_module modules/mod_auth_anon.so LoadModule auth_dbm_module modules/mod_auth_dbm.so LoadModule auth_digest_module modules/mod_auth_digest.so LoadModule ldap_module modules/mod_ldap.so LoadModule auth_ldap_module modules/mod_auth_ldap.so LoadModule include_module modules/mod_include.so LoadModule log_config_module modules/mod_log_config.so LoadModule env_module modules/mod_env.so LoadModule mime_magic_module modules/mod_mime_magic.so LoadModule cern_meta_module modules/mod_cern_meta.so LoadModule expires_module modules/mod_expires.so LoadModule deflate_module modules/mod_deflate.so LoadModule headers_module modules/mod_headers.so LoadModule usertrack_module modules/mod_usertrack.so LoadModule unique_id_module modules/mod_unique_id.so LoadModule setenvif_module modules/mod_setenvif.so LoadModule mime_module modules/mod_mime.so LoadModule dav_module modules/mod_dav.so LoadModule status_module modules/mod_status.so LoadModule autoindex_module modules/mod_autoindex.so LoadModule asis_module modules/mod_asis.so LoadModule info_module modules/mod_info.so LoadModule dav_fs_module modules/mod_dav_fs.so LoadModule vhost_alias_module modules/mod_vhost_alias.so LoadModule negotiation_module modules/mod_negotiation.so LoadModule dir_module modules/mod_dir.so LoadModule imap_module modules/mod_imap.so LoadModule actions_module modules/mod_actions.so LoadModule speling_module modules/mod_speling.so LoadModule userdir_module modules/mod_userdir.so LoadModule alias_module modules/mod_alias.so LoadModule rewrite_module modules/mod_rewrite.so # LoadModule proxy_module modules/mod_proxy.so # LoadModule proxy_ftp_module modules/mod_proxy_ftp.so # LoadModule proxy_http_module modules/mod_proxy_http.so # LoadModule proxy_connect_module modules/mod_proxy_connect.so LoadModule cache_module modules/mod_cache.so LoadModule suexec_module modules/mod_suexec.so LoadModule disk_cache_module modules/mod_disk_cache.so LoadModule file_cache_module modules/mod_file_cache.so LoadModule mem_cache_module modules/mod_mem_cache.so LoadModule cgi_module modules/mod_cgi.so # # Load config files from the config directory "/etc/httpd/conf.d". # Include conf.d/*.conf # # ExtendedStatus controls whether Apache will generate "full" status # information (ExtendedStatus On) or just basic information (ExtendedStatus # Off) when the "server-status" handler is called. The default is Off. # #ExtendedStatus On ### Section 2: 'Main' server configuration # # The directives in this section set up the values used by the 'main' # server, which responds to any requests that aren't handled by a # definition. These values also provide defaults for # any containers you may define later in the file. # # All of these directives may appear inside containers, # in which case these default settings will be overridden for the # virtual host being defined. # # # If you wish httpd to run as a different user or group, you must run # httpd as root initially and it will switch. # User/Group: The name (or #number) of the user/group to run httpd as. # . On SCO (ODT 3) use "User nouser" and "Group nogroup". # . On HPUX you may not be able to use shared memory as nobody, and the # suggested workaround is to create a user www and use that user. # NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET) # when the value of (unsigned)Group is above 60000; # don't use Group #-1 on these systems! # User apache Group apache # # ServerAdmin: Your address, where problems with the server should be # e-mailed. This address appears on some server-generated pages, such # as error documents. e.g. admin at your-domain.com # ServerAdmin harold at hallikainen.com # # ServerName gives the name and port that the server uses to identify itself. # This can often be determined automatically, but we recommend you specify # it explicitly to prevent problems during startup. # # If this is not set to valid DNS name for your host, server-generated # redirections will not work. See also the UseCanonicalName directive. # # If your host doesn't have a registered DNS name, enter its IP address here. # You will have to access it by its address anyway, and this will make # redirections work in a sensible way. # ServerName sujan.hallikainen.org # # UseCanonicalName: Determines how Apache constructs self-referencing # URLs and the SERVER_NAME and SERVER_PORT variables. # When set "Off", Apache will use the Hostname and Port supplied # by the client. When set "On", Apache will use the value of the # ServerName directive. # UseCanonicalName on # # DocumentRoot: The directory out of which you will serve your # documents. By default, all requests are taken from this directory, but # symbolic links and aliases may be used to point to other locations. # # DocumentRoot "/var/www/html" DocumentRoot "/home/harold/public_html" # # Disable autoindex for the root directory, and present a # default Welcome page if no other index page is present. # Options -Indexes ErrorDocument 403 /error/noindex.html # # UserDir: The name of the directory that is appended onto a user's home # directory if a ~user request is received. # # The path to the end user account 'public_html' directory must be # accessible to the webserver userid. This usually means that ~userid # must have permissions of 711, ~userid/public_html must have permissions # of 755, and documents contained therein must be world-readable. # Otherwise, the client will only receive a "403 Forbidden" message. # # See also: http://httpd.apache.org/docs/misc/FAQ.html#forbidden # # # UserDir is disabled by default since it can confirm the presence # of a username on the system (depending on home directory # permissions). # # UserDir "disable" # # To enable requests to /~user/ to serve the user's public_html # directory, use this directive instead of "UserDir disable": # UserDir public_html # # DirectoryIndex: sets the file that Apache will serve if a directory # is requested. # # The index.html.var file (a type-map) is used to deliver content- # negotiated documents. The MultiViews Option can be used for the # same purpose, but it is much slower. # DirectoryIndex index.html index.htm index.xhtml index.shtml index.php index.php4 index.php3 index.cgi # # AccessFileName: The name of the file to look for in each directory # for access control information. See also the AllowOverride directive. # AccessFileName .htaccess # # The following lines prevent .htaccess and .htpasswd files from being # viewed by Web clients. # Order allow,deny Deny from all # # TypesConfig describes where the mime.types file (or equivalent) is # to be found. # TypesConfig "/etc/mime.types" # # DefaultType is the default MIME type the server will use for a document # if it cannot otherwise determine one, such as from filename extensions. # If your server contains mostly text or HTML documents, "text/plain" is # a good value. If most of your content is binary, such as applications # or images, you may want to use "application/octet-stream" instead to # keep browsers from trying to display binary files as though they are # text. # DefaultType text/plain # # The mod_mime_magic module allows the server to use various hints from the # contents of the file itself to determine its type. The MIMEMagicFile # directive tells the module where the hint definitions are located. # # MIMEMagicFile /usr/share/magic.mime MIMEMagicFile conf/magic # # HostnameLookups: Log the names of clients or just their IP addresses # e.g., www.apache.org (on) or 204.62.129.132 (off). # The default is off because it'd be overall better for the net if people # had to knowingly turn this feature on, since enabling it means that # each client request will result in AT LEAST one lookup request to the # nameserver. # HostNameLookups Off # # EnableMMAP: Control whether memory-mapping is used to deliver # files (assuming that the underlying OS supports it). # The default is on; turn this off if you serve from NFS-mounted # filesystems. On some systems, turning it off (regardless of # filesystem) can improve performance; for details, please see # http://httpd.apache.org/docs-2.0/mod/core.html#enablemmap # #EnableMMAP off # # EnableSendfile: Control whether the sendfile kernel support is # used to deliver files (assuming that the OS supports it). # The default is on; turn this off if you serve from NFS-mounted # filesystems. Please see # http://httpd.apache.org/docs-2.0/mod/core.html#enablesendfile # #EnableSendfile off # # ErrorLog: The location of the error log file. # If you do not specify an ErrorLog directive within a # container, error messages relating to that virtual host will be # logged here. If you *do* define an error logfile for a # container, that host's errors will be logged there and not here. # ErrorLog "/var/log/httpd/error_log" # # LogLevel: Control the number of messages logged to the error_log. # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. # LogLevel warn # # The following directives define some format nicknames for use with # a CustomLog directive (see below). # LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined LogFormat "%h %l %u %t \"%r\" %>s %b" common LogFormat "%{Referer}i -> %U" referer LogFormat "%{User-agent}i" agent # # The location and format of the access logfile (Common Logfile Format). # If you do not define any access logfiles within a # container, they will be logged here. Contrariwise, if you *do* # define per- access logfiles, transactions will be # logged therein and *not* in this file. # # CustomLog logs/access_log common CustomLog logs/access_log combined # # If you would like to have agent and referer logfiles, uncomment the # following directives. # #CustomLog logs/referer_log referer #CustomLog logs/agent_log agent # # If you prefer a single logfile with access, agent, and referer information # (Combined Logfile Format) you can use the following directive. # #CustomLog logs/access_log combined # # Optionally add a line containing the server version and virtual host # name to server-generated pages (error documents, FTP directory listings, # mod_status and mod_info output etc., but not CGI generated documents). # Set to "EMail" to also include a mailto: link to the ServerAdmin. # Set to one of: On | Off | EMail # ServerSignature on # # Aliases: Add here as many aliases as you need (with no limit). The format is # Alias fakename realname # # Note that if you include a trailing / on fakename then the server will # require it to be present in the URL. So "/icons" isn't aliased in this # example, only "/icons/". If the fakename is slash-terminated, then the # realname must also be slash terminated, and if the fakename omits the # trailing slash, the realname must also omit it. # # We include the /icons/ alias for FancyIndexed directory listings. If you # do not use FancyIndexing, you may comment this out. # Alias /icons/ "/var/www/icons/" # # This should be changed to the ServerRoot/manual/. The alias provides # the manual, even if you choose to move your DocumentRoot. You may comment # this out if you do not care for the documentation. # # 05/23/05: This is now provided via a separate package called httpd-manual # which comes with an own manual alias #Alias /manual "/var/www/manual" # Location of the WebDAV lock database. DAVLockDB /var/lib/dav/lockdb # # ScriptAlias: This controls which directories contain server scripts. # ScriptAliases are essentially the same as Aliases, except that # documents in the realname directory are treated as applications and # run by the server when requested rather than as documents sent to the client. # The same rules about trailing "/" apply to ScriptAlias directives as to # Alias. # # ScriptAlias /cgi-bin/ "/var/www/cgi-bin/" ScriptAlias /cgi-bin/ "/home/harold/public_html/cgi-bin/" # # Additional to mod_cgid.c settings, mod_cgid has Scriptsock # for setting UNIX socket for communicating with cgid. # #Scriptsock logs/cgisock # # Redirect allows you to tell clients about documents which used to exist in # your server's namespace, but do not anymore. This allows you to tell the # clients where to look for the relocated document. # Example: # Redirect permanent /foo http://www.example.com/bar # # Directives controlling the display of server-generated directory listings. # # # FancyIndexing is whether you want fancy directory indexing or standard. # VersionSort is whether files containing version numbers should be # compared in the natural way, so that `apache-1.3.9.tar' is placed before # `apache-1.3.12.tar'. # IndexOptions FancyIndexing VersionSort NameWidth=* # # AddIcon* directives tell the server which icon to show for different # files or filename extensions. These are only displayed for # FancyIndexed directories. # AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip AddIconByType (TXT,/icons/text.gif) text/* AddIconByType (IMG,/icons/image2.gif) image/* AddIconByType (SND,/icons/sound2.gif) audio/* AddIconByType (VID,/icons/movie.gif) video/* AddIcon /icons/binary.gif .bin .exe AddIcon /icons/binhex.gif .hqx AddIcon /icons/tar.gif .tar AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip AddIcon /icons/a.gif .ps .ai .eps AddIcon /icons/layout.gif .html .shtml .htm .pdf AddIcon /icons/text.gif .txt AddIcon /icons/c.gif .c AddIcon /icons/p.gif .pl .py AddIcon /icons/f.gif .for AddIcon /icons/dvi.gif .dvi AddIcon /icons/uuencoded.gif .uu AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl AddIcon /icons/tex.gif .tex AddIcon /icons/bomb.gif core AddIcon /icons/back.gif .. AddIcon /icons/hand.right.gif README AddIcon /icons/folder.gif ^^DIRECTORY^^ AddIcon /icons/blank.gif ^^BLANKICON^^ # # DefaultIcon is which icon to show for files which do not have an icon # explicitly set. # DefaultIcon /icons/unknown.gif # # AddDescription allows you to place a short description after a file in # server-generated indexes. These are only displayed for FancyIndexed # directories. # Format: AddDescription "description" filename # #AddDescription "GZIP compressed document" .gz #AddDescription "tar archive" .tar #AddDescription "GZIP compressed tar archive" .tgz # # ReadmeName is the name of the README file the server will look for by # default, and append to directory listings. # # HeaderName is the name of a file which should be prepended to # directory indexes. ReadmeName README.html HeaderName HEADER.html # # IndexIgnore is a set of filenames which directory indexing should ignore # and not include in the listing. Shell-style wildcarding is permitted. # IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t # # AddEncoding allows you to have certain browsers (Mosaic/X 2.1+) uncompress # information on the fly. Note: Not all browsers support this. # Despite the name similarity, the following Add* directives have nothing # to do with the FancyIndexing customization directives above. # AddEncoding x-compress Z AddEncoding x-gzip gz tgz # # DefaultLanguage and AddLanguage allows you to specify the language of # a document. You can then use content negotiation to give a browser a # file in a language the user can understand. # # Specify a default language. This means that all data # going out without a specific language tag (see below) will # be marked with this one. You probably do NOT want to set # this unless you are sure it is correct for all cases. # # * It is generally better to not mark a page as # * being a certain language than marking it with the wrong # * language! # # DefaultLanguage nl # # Note 1: The suffix does not have to be the same as the language # keyword --- those with documents in Polish (whose net-standard # language code is pl) may wish to use "AddLanguage pl .po" to # avoid the ambiguity with the common suffix for perl scripts. # # Note 2: The example entries below illustrate that in some cases # the two character 'Language' abbreviation is not identical to # the two character 'Country' code for its country, # E.g. 'Danmark/dk' versus 'Danish/da'. # # Note 3: In the case of 'ltz' we violate the RFC by using a three char # specifier. There is 'work in progress' to fix this and get # the reference data for rfc1766 cleaned up. # # Danish (da) - Dutch (nl) - English (en) - Estonian (et) # French (fr) - German (de) - Greek-Modern (el) # Italian (it) - Norwegian (no) - Norwegian Nynorsk (nn) - Korean (kr) # Portugese (pt) - Luxembourgeois* (ltz) # Spanish (es) - Swedish (sv) - Catalan (ca) - Czech(cz) # Polish (pl) - Brazilian Portuguese (pt-br) - Japanese (ja) # Russian (ru) - Croatian (hr) # AddLanguage da .dk AddLanguage nl .nl AddLanguage en .en AddLanguage et .et AddLanguage fr .fr AddLanguage de .de AddLanguage he .he AddLanguage el .el AddLanguage it .it AddLanguage ja .ja AddLanguage pl .po AddLanguage kr .kr AddLanguage pt .pt AddLanguage nn .nn AddLanguage no .no AddLanguage pt-br .pt-br AddLanguage ltz .ltz AddLanguage ca .ca AddLanguage es .es AddLanguage sv .se AddLanguage cz .cz AddLanguage ru .ru AddLanguage tw .tw AddLanguage zh-tw .tw AddLanguage hr .hr # # LanguagePriority allows you to give precedence to some languages # in case of a tie during content negotiation. # # Just list the languages in decreasing order of preference. We have # more or less alphabetized them here. You probably want to change this. # LanguagePriority en da nl et fr de el it ja kr no pl pt pt-br ltz ca es sv tw # # ForceLanguagePriority allows you to serve a result page rather than # MULTIPLE CHOICES (Prefer) [in case of a tie] or NOT ACCEPTABLE (Fallback) # [in case no accepted languages matched the available variants] # ForceLanguagePriority Prefer Fallback # # Specify a default charset for all pages sent out. This is # always a good idea and opens the door for future internationalisation # of your web site, should you ever want it. Specifying it as # a default does little harm; as the standard dictates that a page # is in iso-8859-1 (latin1) unless specified otherwise i.e. you # are merely stating the obvious. There are also some security # reasons in browsers, related to javascript and URL parsing # which encourage you to always set a default char set. # AddDefaultCharset ISO-8859-1 # # Commonly used filename extensions to character sets. You probably # want to avoid clashes with the language extensions, unless you # are good at carefully testing your setup after each change. # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets for # the official list of charset names and their respective RFCs # AddCharset ISO-8859-1 .iso8859-1 .latin1 AddCharset ISO-8859-2 .iso8859-2 .latin2 .cen AddCharset ISO-8859-3 .iso8859-3 .latin3 AddCharset ISO-8859-4 .iso8859-4 .latin4 AddCharset ISO-8859-5 .iso8859-5 .latin5 .cyr .iso-ru AddCharset ISO-8859-6 .iso8859-6 .latin6 .arb AddCharset ISO-8859-7 .iso8859-7 .latin7 .grk AddCharset ISO-8859-8 .iso8859-8 .latin8 .heb AddCharset ISO-8859-9 .iso8859-9 .latin9 .trk AddCharset ISO-2022-JP .iso2022-jp .jis AddCharset ISO-2022-KR .iso2022-kr .kis AddCharset ISO-2022-CN .iso2022-cn .cis AddCharset Big5 .Big5 .big5 # For russian, more than one charset is used (depends on client, mostly): AddCharset WINDOWS-1251 .cp-1251 .win-1251 AddCharset CP866 .cp866 AddCharset KOI8-r .koi8-r .koi8-ru AddCharset KOI8-ru .koi8-uk .ua AddCharset ISO-10646-UCS-2 .ucs2 AddCharset ISO-10646-UCS-4 .ucs4 AddCharset UTF-8 .utf8 # The set below does not map to a specific (iso) standard # but works on a fairly wide range of browsers. Note that # capitalization actually matters (it should not, but it # does for some browsers). # # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets # for a list of sorts. But browsers support few. # AddCharset GB2312 .gb2312 .gb AddCharset utf-7 .utf7 AddCharset utf-8 .utf8 AddCharset big5 .big5 .b5 AddCharset EUC-TW .euc-tw AddCharset EUC-JP .euc-jp AddCharset EUC-KR .euc-kr AddCharset shift_jis .sjis # # AddType allows you to add to or override the MIME configuration # file mime.types for specific file types. # AddType application/x-tar .tgz # # AddHandler allows you to map certain file extensions to "handlers": # actions unrelated to filetype. These can be either built into the server # or added with the Action directive (see below) # # To use CGI scripts outside of ScriptAliased directories: # (You will also need to add "ExecCGI" to the "Options" directive.) # #AddHandler cgi-script .cgi AddHandler cgi-script .cgi .pl # # For files that include their own HTTP headers: # #AddHandler send-as-is asis # # For server-parsed imagemap files: # AddHandler imap-file map # # For type maps (negotiated resources): # (This is enabled by default to allow the Apache "It Worked" page # to be distributed in multiple languages.) # AddHandler type-map var # Filters allow you to process content before it is sent to the client. # # To parse .shtml files for server-side includes (SSI): # (You will also need to add "Includes" to the "Options" directive.) # AddOutputFilter INCLUDES .shtml # # Action lets you define media types that will execute a script whenever # a matching file is called. This eliminates the need for repeated URL # pathnames for oft-used CGI file processors. # Format: Action media/type /cgi-script/location # Format: Action handler-name /cgi-script/location # # # Customizable error responses come in three flavors: # 1) plain text 2) local redirects 3) external redirects # # Some examples: #ErrorDocument 500 "The server made a boo boo." #ErrorDocument 404 /missing.html #ErrorDocument 404 "/cgi-bin/missing_handler.pl" #ErrorDocument 402 http://www.example.com/subscription_info.html # Alias /error/ "/var/www/error/" # # The following directives modify normal HTTP response behavior to # handle known problems with browser implementations. # BrowserMatch "Mozilla/2" nokeepalive BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0 BrowserMatch "RealPlayer 4\.0" force-response-1.0 BrowserMatch "Java/1\.0" force-response-1.0 BrowserMatch "JDK/1\.0" force-response-1.0 # # The following directive disables redirects on non-GET requests for # a directory that does not include the trailing slash. This fixes a # problem with Microsoft WebFolders which does not appropriately handle # redirects for folders with DAV methods. # BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully BrowserMatch "^WebDrive" redirect-carefully BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully BrowserMatch "^gnome-vfs" redirect-carefully # # Allow server status reports, with the URL of http://servername/server-status # Change the ".your-domain.com" to match your domain to enable. # # # SetHandler server-status # Order deny,allow # Deny from all # Allow from .your-domain.com # # # Allow remote server configuration reports, with the URL of # http://servername/server-info (requires that mod_info.c be loaded). # Change the ".your-domain.com" to match your domain to enable. # # # SetHandler server-info # Order deny,allow # Deny from all # Allow from .your-domain.com # # # Proxy Server directives. Uncomment the following lines to # enable the proxy server: # # #ProxyRequests On # # # Order deny,allow # Deny from all # Allow from .your-domain.com # # # Enable/disable the handling of HTTP/1.1 "Via:" headers. # ("Full" adds the server version; "Block" removes all outgoing Via: headers) # Set to one of: Off | On | Full | Block # #ProxyVia On # # To enable the cache as well, edit and uncomment the following lines: # (no cacheing without CacheRoot) # #CacheRoot "/etc/httpd/proxy" #CacheSize 5 #CacheGcInterval 4 #CacheMaxExpire 24 #CacheLastModifiedFactor 0.1 #CacheDefaultExpire 1 #NoCache a-domain.com another-domain.edu joes.garage-sale.com # # End of proxy directives. # Where do we put the lock and pif files? LockFile "/var/lock/httpd.lock" CoreDumpDirectory "/etc/httpd" # HH include file for virtual hosts include conf/vhost.conf # # Each directory to which Apache has access can be configured with respect # to which services and features are allowed and/or disabled in that # directory (and its subdirectories). # # Note that from this point forward you must specifically allow # particular features to be enabled - so if something's not working as # you might expect, make sure that you have specifically enabled it # below. # Options FollowSymLinks AllowOverride None Options Indexes Includes FollowSymLinks ExecCGI AllowOverride Options FileInfo AuthConfig Allow from all Order allow,deny Options Indexes MultiViews AllowOverride None Allow from all Order allow,deny Options ExecCGI AddHandler cgi-script .cgi AllowOverride None Allow from all Order allow,deny alias /Usage/ "/var/www/usage/" -- FCC Rules Updated Daily at http://www.hallikainen.com From rstevens at vitalstream.com Mon Apr 10 20:53:47 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 10 Apr 2006 13:53:47 -0700 Subject: Reversing email contents In-Reply-To: <20060410135641.A18661@redline.comcast.net> References: <20060410135641.A18661@redline.comcast.net> Message-ID: <1144702427.20728.21.camel@prophead.corp.publichost.com> On Mon, 2006-04-10 at 13:56 -0400, Jeff Kinz wrote: > Hi all, I've inherited the job of coordinating games/practices and > fields for our local soccer league. (yeah!) > > I'm getting emails with 30 emails in reverse order within them, typical > Outlook format. > > In order to understand the issues + needs of the teams sequestered within > these emails it would be a lot easier if the discussion were in the > order it happened in. > > Does anyone happen to have a tool, of any sort, that can reverse the > oder of the emails within one email ? Very difficult to say, Jeffers. It rather depends on the format of the messages inside the message. If they have complete headers you might be able to split them up either on the mime boundaries or by going between "From " headers, and you might also be able to use formail on them. If they're simply cut-and-pastes of the text in a message, you may be out of luck as you probably have no consistent, unambiguous splits between the messages. YOU may be able to do it, but humans are much better pattern recognizers than computers are. > I know this is a long shot but I'm ever hopeful. They say you can find > anything on the internet.. :-) Take a good look at the message and what formail has to offer. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Sarchasm: The gulf between the author of sarcastic wit and the - - reader...who doesn't get it. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Mon Apr 10 21:05:29 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 10 Apr 2006 14:05:29 -0700 Subject: more on bogged down server In-Reply-To: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> Message-ID: <1144703129.20728.33.camel@prophead.corp.publichost.com> On Mon, 2006-04-10 at 11:55 -0700, Harold Hallikainen wrote: > Last week, I was out of town for the week and, of course, my FC4 system > slowed down to a crawl, and eventually I could not get into it at all. I > just bought and installed a "Web Power Switch" (under $100 at > http://www.digital-loggers.com/lpc.html), so I will always (I hope) be > able to reboot the system from anywhere. > > I also reduced the number of clients (I think that was the term) in > httpd.conf from 150 to 50. > > Based on Rick's suggestion, I also added this to /etc/sysctl.conf: > > # below lines added 4/8/06 to try to prevent system bog downs due to > httpd. hh > net.ipv4.tcp_fin_timeout = 1 > net.ipv4.tcp_max_syn_backlog = 2048 > net.ipv4.tcp_syn_retries = 3 > net.ipv4.tcp_tw_recycle = 1 > net.ipv4.tcp_tw_reuse = 1 > > > My web server has a lot of large files that will take a while for people > to download. I suspect Apache is starting another thread for each of > these, and keeping it open a long time. As more and more requests come in, > the load just keeps getting bigger. Which is exactly why http is not a good choice for downloads. You should modify the download links to "ftp://" to force FTP downloads. > Here's a recent top: > > Cpu(s): 98.3% us, 1.7% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si > Mem: 1027640k total, 1013188k used, 14452k free, 8292k buffers > Swap: 2031608k total, 244252k used, 1787356k free, 224352k cached > > PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND > 19089 apache 16 0 45120 17m 4780 S 17.0 1.8 0:04.59 httpd > 14416 apache 24 0 60736 31m 4904 R 3.7 3.1 13:02.87 httpd > 18425 apache 21 0 59872 30m 2996 R 3.7 3.0 2:58.17 httpd > 8965 apache 25 0 59724 31m 4800 R 3.3 3.2 30:11.74 httpd > 10263 apache 25 0 60896 32m 4664 R 3.3 3.2 17:42.99 httpd > 10268 apache 25 0 60620 27m 4512 R 3.3 2.7 17:12.99 httpd > 13121 apache 25 0 59540 31m 4648 R 3.3 3.2 15:00.67 httpd > 13585 apache 25 0 51556 12m 4508 R 3.3 1.3 13:09.44 httpd > 13802 apache 25 0 51364 19m 4504 R 3.3 1.9 13:28.15 httpd > 14613 apache 25 0 60684 18m 4508 R 3.3 1.8 12:32.11 httpd > 14682 apache 25 0 51284 10m 2960 R 3.3 1.0 13:36.44 httpd > 14852 apache 25 0 51332 16m 4992 R 3.3 1.6 10:08.87 httpd > 14853 apache 25 0 51144 18m 4620 R 3.3 1.9 11:20.88 httpd > 14935 apache 25 0 51656 18m 5352 R 3.3 1.9 10:52.20 httpd > 15134 apache 25 0 51360 18m 5364 R 3.3 1.8 10:00.45 httpd > 15138 apache 21 0 51200 17m 5336 R 3.3 1.8 10:33.49 httpd > 15504 apache 20 0 60708 20m 4512 R 3.3 2.0 10:24.10 httpd > 15876 apache 20 0 51028 10m 4528 R 3.3 1.1 8:41.13 httpd > 15877 apache 23 0 60520 20m 5448 R 3.3 2.1 5:43.60 httpd > 16331 apache 20 0 60328 32m 5516 R 3.3 3.2 5:19.84 httpd > 16633 apache 25 0 60420 32m 5408 R 3.3 3.2 5:15.28 httpd > 17859 apache 25 0 60016 32m 5520 R 3.3 3.3 2:27.50 httpd > 18089 apache 25 0 60040 32m 5512 R 3.3 3.3 3:17.04 httpd > 18426 apache 21 0 59588 32m 5292 R 3.3 3.2 0:36.13 httpd > 18503 apache 25 0 59800 32m 5460 R 3.3 3.3 0:57.90 httpd > > > Notice that a lot of those httpd processes have been running quite a while. Yup. > My concern now is that while everything seems to be working, I think I'm > missing some incoming mail. Here's something from /var/log/maillog: > > Apr 10 11:46:48 sujan sendmail[2316]: rejecting connections on daemon MTA: > load average: 33 You aren't missing mail, but you're not receiving it in a timely manner. A load average of 33 on a web server is pretty bad unless it's getting just bloody hammered. Undoubtedly, HTTP downloads are the main culprit here, and conversion to FTP would be a big help. > So... what do I do? You have to reduce your load somehow. Ideally, you should create an anonymous FTP download directory and move all of the downloadable files to it. The download directory also is used as the home directory for the anonymous FTP user (user "ftp"). I actually use a completely separate filesystem entirely for that. The filesystem is mounted so that only root has write access. Modify your vsftpd.conf file to permit anonymous downloads only and start up vsftpd. Make sure you also set the "force chroot for anonymous users" option. Then change your links on your web pages to use "ftp://"-style links pointed at the anonymous download directory paths for the downloadable files. FTP is the protocol to use for large file downloads. HTTP just isn't efficient for that, as you've now found out (the hard way, I might add). ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - All generalizations are false. - ---------------------------------------------------------------------- From David.Mackintosh at xdroop.com Mon Apr 10 21:09:00 2006 From: David.Mackintosh at xdroop.com (David Mackintosh) Date: Mon, 10 Apr 2006 17:09:00 -0400 Subject: Reversing email contents In-Reply-To: <20060410135641.A18661@redline.comcast.net> References: <20060410135641.A18661@redline.comcast.net> Message-ID: <20060410210900.GA13848@xdroop.com> On Mon, Apr 10, 2006 at 01:56:41PM -0400, Jeff Kinz wrote: > I'm getting emails with 30 emails in reverse order within them, typical > Outlook format. > > In order to understand the issues + needs of the teams sequestered within > these emails it would be a lot easier if the discussion were in the > order it happened in. > > Does anyone happen to have a tool, of any sort, that can reverse the > oder of the emails within one email ? The traditional internet method is to demand that everyone bottom-post from now on, thus triggering a flameware, and guaranteeing future flamewars when new users join the discussion or list unaware of either the "convention" or the dissent over said "convention". -- /\oo/\ / /()\ \ David Mackintosh | Public Key: dave at xdroop.com | http://www.xdroop.com/dave/gpg.html $ gpg --recv-keys --keyserver subkeys.pgp.net 4C032504 Mystery attachment? http://xdroop.dhs.org/space/GPG -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From riegersteve at gmail.com Mon Apr 10 21:47:20 2006 From: riegersteve at gmail.com (Steve Rieger) Date: Mon, 10 Apr 2006 14:47:20 -0700 Subject: more on bogged down server In-Reply-To: <1144703129.20728.33.camel@prophead.corp.publichost.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> Message-ID: <443AD268.4030704@gmail.com> > You have to reduce your load somehow. Ideally, you should create an > anonymous FTP download directory and move all of the downloadable files > to it. The download directory also is used as the home directory for > the anonymous FTP user (user "ftp"). I actually use a completely > separate filesystem entirely for that. The filesystem is mounted so > that only root has write access. > > Modify your vsftpd.conf file to permit anonymous downloads only > and start up vsftpd. Make sure you also set the "force chroot for > anonymous users" option. Then change your links on your web pages to > use "ftp://"-style links pointed at the anonymous download directory > paths for the downloadable files. > > FTP is the protocol to use for large file downloads. HTTP just isn't > efficient for that, as you've now found out (the hard way, I might add). > as the man said, dont use http for this, if you must then i suggest that you have a separate partition for your large files and make fstab read as such (example) /dev/web / ext3 defaults,directio 1 1 add the directio comment and the file will not go to ram, nor to swap. this will speed up things, but you should hand the downloads over to a different method (not http). From jkinz at kinz.org Tue Apr 11 00:43:51 2006 From: jkinz at kinz.org (Jeff Kinz) Date: Mon, 10 Apr 2006 20:43:51 -0400 Subject: Reversing email contents In-Reply-To: <20060410210900.GA13848@xdroop.com>; from David.Mackintosh@xdroop.com on Mon, Apr 10, 2006 at 05:09:00PM -0400 References: <20060410135641.A18661@redline.comcast.net> <20060410210900.GA13848@xdroop.com> Message-ID: <20060410204351.C18661@redline.comcast.net> On Mon, Apr 10, 2006 at 05:09:00PM -0400, David Mackintosh wrote: > The traditional internet method is to demand that everyone > bottom-post from now on, thus triggering a flameware, and > guaranteeing future flamewars when new users join the discussion or > list unaware of either the "convention" or the dissent over said > "convention". Buh, buh, but these are soccer Mom's! and Dads! Exposing them to the naked traditions of the internet would be, would be... (Here, our hero's voice breaks completely, barely holding himself together he forges onward...) Oh my God! The carnage, the slaughter..... the humanity.... Have you NO mercy in your soul? -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail From fta7wmt at netvigator.com Tue Apr 11 03:02:47 2006 From: fta7wmt at netvigator.com (fta7wmt at netvigator.com) Date: Tue, 11 Apr 2006 11:02:47 +0800 Subject: Problem of tcp wrapper Message-ID: <20060411030247.FQMQ29872.wmail03dat.netvigator.com@mail.netvigator.com> Hi All, I would like to ask tcp wrapper question if i need to set restriction of dovecot daemon, what is the name of daemon should i set in hosts.deny. Regards lstar From harold at hallikainen.com Mon Apr 10 22:53:12 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Mon, 10 Apr 2006 15:53:12 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <443AD268.4030704@gmail.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> Message-ID: <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> > >> You have to reduce your load somehow. Ideally, you should create an anonymous FTP download directory and move all of the downloadable files to it. The download directory also is used as the home directory for the anonymous FTP user (user "ftp"). I actually use a completely separate filesystem entirely for that. The filesystem is mounted so that only root has write access. >> Modify your vsftpd.conf file to permit anonymous downloads only and start up vsftpd. Make sure you also set the "force chroot for anonymous users" option. Then change your links on your web pages to use "ftp://"-style links pointed at the anonymous download directory paths for the downloadable files. >> FTP is the protocol to use for large file downloads. HTTP just isn't efficient for that, as you've now found out (the hard way, I might add). > > as the man said, dont use http for this, > > if you must then i suggest that you have a separate partition for your large files and make fstab read as such (example) > > /dev/web / ext3 defaults,directio 1 1 > > add the directio comment and the file will not go to ram, nor to swap. this will speed up things, but you should hand the downloads over to a different method (not http). > THANKS! I'll see what I can do about moving stuff to ftp. Most of the large files are on phpwiki. I suppose I could slowly go through the pages and change the download files (mostly scanned pdfs) from http:// to ftp:// . Any problem with having the ftp download directory being the same as the http root directory? That way I would not have to move anything, just change the protocol prefix on the links. Here's another top. It looks like 98.6% of ram is being used, along with 100% of the processor. Not much swap space is being used. It kinda seems like Apache just tries to use as much RAM and CPU as is available. I guess this would be ok if my DSL could send the data out faster (I'm sure that's why these threads live so long). But, it doesn't seem like it should 7% or more of the CPU to a byte from the drive to the ethernet. Maybe ftp's just more efficient at this? Cpu(s): 99.7% us, 0.3% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si Mem: 1027640k total, 1013636k used, 14004k free, 7032k buffers Swap: 2031608k total, 368k used, 2031240k free, 284780k cached Cpu(s): 99.7% us, 0.3% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si Mem: 1027640k total, 1013636k used, 14004k free, 7032k buffers Swap: 2031608k total, 368k used, 2031240k free, 284780k cached PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 2414 apache 25 0 60892 35m 5644 R 6.6 3.6 14:29.37 httpd 3231 apache 25 0 51028 25m 5480 R 6.6 2.6 8:13.30 httpd 3683 apache 25 0 60700 35m 5404 R 6.6 3.5 7:50.11 httpd 4082 apache 25 0 60672 34m 4580 R 6.6 3.4 13:18.66 httpd 4577 apache 25 0 50072 24m 5320 R 6.6 2.5 1:03.57 httpd 4578 apache 25 0 50488 25m 5392 R 6.6 2.5 4:14.42 httpd 4592 apache 25 0 60196 34m 5168 R 6.6 3.4 5:02.36 httpd 2411 apache 25 0 60664 34m 4908 R 5.3 3.5 22:12.54 httpd 4548 apache 25 0 50352 23m 3804 R 4.3 2.4 4:32.46 httpd 2410 apache 25 0 60916 35m 5388 R 3.3 3.5 24:34.60 httpd 2412 apache 22 0 51012 25m 5508 R 3.3 2.6 8:35.88 httpd 2415 apache 25 0 60752 35m 5532 R 3.3 3.5 20:26.07 httpd 2417 apache 23 0 60528 35m 5556 R 3.3 3.5 33:19.76 httpd 3239 apache 25 0 61024 35m 5544 R 3.3 3.6 12:13.21 httpd 3365 apache 25 0 50832 25m 5596 R 3.3 2.6 6:40.87 httpd 3379 apache 25 0 60068 34m 5480 R 3.3 3.5 4:07.17 httpd 3923 apache 25 0 60640 34m 4660 R 3.3 3.4 9:40.94 httpd 4482 apache 25 0 59580 34m 5428 R 3.3 3.4 0:29.00 httpd 4848 apache 24 0 49892 24m 4868 R 3.3 2.4 0:40.70 httpd 4989 apache 25 0 50028 22m 2964 R 3.3 2.2 2:05.30 httpd 5380 apache 25 0 49644 22m 2952 R 3.3 2.2 0:07.94 httpd 4826 apache 25 0 59936 33m 4712 R 3.0 3.4 2:45.52 httpd 4582 apache 15 0 45420 20m 5532 S 0.3 2.0 0:03.01 httpd 5431 harold 16 0 2020 1036 796 R 0.3 0.1 0:00.05 top Again, THANKS to all for the help! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From riegersteve at gmail.com Tue Apr 11 05:45:10 2006 From: riegersteve at gmail.com (Steve Rieger) Date: Mon, 10 Apr 2006 22:45:10 -0700 Subject: more on bogged down server In-Reply-To: <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> Message-ID: <443B4266.1030204@gmail.com> > THANKS! I'll see what I can do about moving stuff to ftp. Most of the > large files are on phpwiki. I suppose I could slowly go through the pages > and change the download files (mostly scanned pdfs) from http:// to ftp:// > . Any problem with having the ftp download directory being the same as the > http root directory? That way I would not have to move anything, just > change the protocol prefix on the links. > > Here's another top. It looks like 98.6% of ram is being used, along with > 100% of the processor. Not much swap space is being used. It kinda seems > like Apache just tries to use as much RAM and CPU as is available. I guess > this would be ok if my DSL could send the data out faster (I'm sure that's > why these threads live so long). But, it doesn't seem like it should 7% or > more of the CPU to a byte from the drive to the ethernet. Maybe ftp's just > more efficient at this? > one more question before you go redoing the whole server you have apache, mod_ssl, mod_perl mod_php (with all extensions) get rid of mod_perl, it will cut down apache's size by a good 30%, remove all the php extensions you can. get a php caching package, (zend comes to mind) and last but not least, if you do use ftp remember to put htaccess and DirectoryIndex deny all over the place, -- -- Steve Rieger 310-339-4355 (cell) 3394355 at gmail.com (pager) http://fhs.lyon.k12.nv.us/steve%20rieger.htm From robotics20002000 at yahoo.co.in Tue Apr 11 06:29:29 2006 From: robotics20002000 at yahoo.co.in (B.E Ramu Ram) Date: Tue, 11 Apr 2006 07:29:29 +0100 (BST) Subject: Redhat-install-list Digest, Vol 26, Issue 10 In-Reply-To: <20060410214728.41CA473A8E@hormel.redhat.com> Message-ID: <20060411062929.57273.qmail@web8708.mail.in.yahoo.com> Hi Please find the attachment in the mail which describes about the the Samba services. The attachement is in Word formate. Thankyou Ramu redhat-install-list-request at redhat.com wrote: Send Redhat-install-list mailing list submissions to redhat-install-list at redhat.com To subscribe or unsubscribe via the World Wide Web, visit https://www.redhat.com/mailman/listinfo/redhat-install-list or, via email, send a message with subject or body 'help' to redhat-install-list-request at redhat.com You can reach the person managing the list at redhat-install-list-owner at redhat.com When replying, please edit your Subject line so it is more specific than "Re: Contents of Redhat-install-list digest..." Today's Topics: 1. iptables problem (lstar) 2. Re: kermit configuration file (Rick Stevens) 3. Re: iptables problem (Rick Stevens) 4. Fedora 5 (Bret Stern) 5. Re: Fedora 5 (Rick Stevens) 6. Reversing email contents (Jeff Kinz) 7. Re: Fedora 5 (Jeff Kinz) 8. more on bogged down server (Harold Hallikainen) 9. Re: Fedora 5 (J. Refugio Rodriguez) 10. Re: more on bogged down server (Steve Rieger) 11. Fedora 5 Install - Very Nice (Bret Stern) 12. Re: more on bogged down server (Harold Hallikainen) 13. Re: Reversing email contents (Rick Stevens) 14. Re: more on bogged down server (Rick Stevens) 15. Re: Reversing email contents (David Mackintosh) 16. Re: more on bogged down server (Steve Rieger) ---------------------------------------------------------------------- Message: 1 Date: Sat, 11 Mar 2006 00:23:39 +0800 From: "lstar" Subject: iptables problem To: Message-ID: <001101c6445e$fdba2fd0$0a00a8c0 at lstar> Content-Type: text/plain; charset="big5" Hi All, I would like to ask an " iptables" question which port should i block if i need to restrict access samba services? I have search the information from knowledgebase of redhat offical web site. it found following port a.. Port 137 (UDP) - NetBIOS name service and nmbd b.. Port 138 (UDP) - NetBIOS datagram service c.. Port 139 (TCP) - File and printer sharing and smbd d.. Port 389 (TCP) - for LDAP (Active Directory Mode) e.. Port 445 (TCP) - NetBIOS was moved to 445 after 2000 and beyond, (CIFS) f.. Port 901 (TCP) - for SWAT Should I port all above port to restrict the access to samba services or any specific port also enough ? Regards lstar -------------- next part -------------- An HTML attachment was scrubbed... URL: https://www.redhat.com/archives/redhat-install-list/attachments/20060311/f0bac271/attachment.html ------------------------------ Message: 2 Date: Mon, 10 Apr 2006 10:08:14 -0700 From: Rick Stevens Subject: Re: kermit configuration file To: Getting started with Red Hat Linux Message-ID: <1144688894.20728.3.camel at prophead.corp.publichost.com> Content-Type: text/plain On Sat, 2006-04-08 at 09:16 -0700, Bob Kinney wrote: > > --- Rick Stevens wrote: > > > On Mon, 2006-03-13 at 07:51 -0800, Bob Kinney wrote: > > > > > > > > > > > > > On Sun, 2006-02-19 at 15:46 -0800, Bob Kinney wrote: > > > > > I've searched high and low for an answer to this; hopefully somebody > > here > > > > can > > > > > help. > > > > > > > > > > I'm trying to get kermit to read two commands from a .mykermrc file in > > my > > > > home > > > > > directory: > > > > > > > > > > SET LINE /dev/ttyS0 > > > > > SET CARRIER-WATCH OFF > > > > > > > > > > I also have an identical .kermrc. > > > > > > > > > > For some reason, the SET LINE command does not work. > > > > > > > > > > [bob at micron ~]$ kermit > > > > > /var/lock > > > > > C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 > > > > > Copyright (C) 1985, 2003, > > > > > Trustees of Columbia University in the City of New York. > > > > > Type ? or HELP for help. > > > > > (/home/bob/) C-Kermit>show file > > > > > > > > > > Transfer mode: automatic > > > > > File patterns: automatic (SHOW PATTERNS for list) > > > > > File scan: on 49152 > > > > > Default file type: binary > > > > > File names: converted > > > > > Send pathnames: off > > > > > Receive pathnames: auto > > > > > Match dot files: no > > > > > Wildcard-expansion: kermit > > > > > File collision: backup > > > > > File destination: disk > > > > > File incomplete: auto > > > > > File bytesize: 8 > > > > > File character-set: ascii > > > > > File default 7-bit: ascii > > > > > File default 8-bit: latin1-iso > > > > > File UCS bom: on > > > > > File UCS byte-order: little-endian > > > > > Computer byteorder: little-endian > > > > > File end-of-line: lf > > > > > File eof: length > > > > > File download-directory: (none) > > > > > Send move-to: (none) > > > > > Send rename-to: (none) > > > > > Receive move-to: (none) > > > > > Receive rename-to: (none) > > > > > Initialization file: /home/bob/.kermrc > > > > > Root set: (none) > > > > > Disk output buffer: 32768 (writes are buffered, blocking) > > > > > Stringspace: 500000 > > > > > Listsize: 102400 > > > > > Longest filename: 255 > > > > > Longest pathname: 4096 > > > > > Last file sent: (none) > > > > > Last file received: (none) > > > > > > > > > > Also see: > > > > > SHOW PROTOCOL, SHOW XFER, SHOW PATTERNS, SHOW STREAMING, SHOW > > > > CHARACTER-SETS > > > > > (/home/bob/) C-Kermit>show comm > > > > > > > > > > Communications Parameters: > > > > > Line: /dev/tty, speed: unknown, mode: remote, modem: generic > > > > > Parity: none, duplex: full, flow: none, handshake: none > > > > > Carrier-watch: off, close-on-disconnect: off > > > > > Lockfile directory: /var/lock > > > > > Typical port device name: /dev/ttyS0 > > > > > > > > > > Modem signals unavailable > > > > > > > > > > Type SHOW DIAL to see DIAL-related items. > > > > > Type SHOW MODEM to see modem-related items. > > > > > > > > > > (/home/bob/) C-Kermit> > > > > > > > > > > > > > > > If I rename .kermrc to hide it, the CARRIER-WATCH line changes to the > > > > > system default of "auto". > > > > > > > > > > > > > > > Using FC3 on kernel 2.6.12-1.1381_FC3. > > > > > > > > > > Anyone have any advice? > > > > > > > > First, swap the "SET CARRIER-WATCH OFF" and the "SET LINE /dev/ttyS0" > > > > lines. You have to turn off carrier watch before swapping to a line > > > > without carrier. > > > > > > > > > > Thanks for the advice Rick. I tried it, without success. This seems to > > > be something that broke between RH9 and FC3 distros. I had it working on > > > RH9, but I did FC3 as a fresh install. > > > Hmmm...here's a clue: When invoking kermit as a non-root user, I get this: > > [bob at micron ~]$ kermit > /var/lock > C-Kermit 8.0.209, 17 Mar 2003, for Red Hat Linux 8.0 > Copyright (C) 1985, 2003, > Trustees of Columbia University in the City of New York. > Type ? or HELP for help. > (/home/bob/) C-Kermit>set line /dev/ttyS0 > /var/lock > Sorry, write access to UUCP lockfile directory denied. > > > What's /var/lock look like? > > [bob at micron ~]$ ll -d /var/lock > drwxrwxr-x 10 root lock 4096 Apr 8 11:01 /var/lock > [bob at micron ~]$ ll /var/lock > total 64 > drwx------ 2 root root 4096 Aug 9 2004 iptraf > drwx------ 2 root root 4096 Sep 27 2005 lvm > drwxrwsr-x 2 root mailman 4096 Mar 21 2005 mailman > drwxr-xr-x 2 root root 4096 Apr 8 11:05 mrtg > drwxr-xr-x 2 rpm rpm 4096 Feb 20 03:22 rpm > drwxr-xr-x 2 root root 4096 Apr 7 20:22 subsys > drwxr-xr-x 2 uucp uucp 4096 Oct 14 2004 uucp > drwxrwxrwt 2 root root 4096 Feb 13 2005 xemacs > [bob at micron ~]$ > > What would be the security-conscious way to allow non-root users to access > the serial port? Should I add myself to the "lock" group, or give universal > write access to /var/lock? A better plan? Either would work. The more restrictive thing (the least impact on security) is to add yourself to the lock group. I can't recall if kermit runs as the invoking user or as a user in and of itself. If it's the latter, then add the user kermit runs as to the lock group. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - When in doubt, mumble. - ---------------------------------------------------------------------- ------------------------------ Message: 3 Date: Mon, 10 Apr 2006 10:12:39 -0700 From: Rick Stevens Subject: Re: iptables problem To: Getting started with Red Hat Linux Message-ID: <1144689159.20728.8.camel at prophead.corp.publichost.com> Content-Type: text/plain On Sat, 2006-03-11 at 00:23 +0800, lstar wrote: > Hi All, > I would like to ask an " iptables" question > which port should i block if i need to restrict access samba services? > I have search the information from knowledgebase of redhat offical web > site. it found following port > * Port 137 (UDP) - NetBIOS name service and nmbd > * Port 138 (UDP) - NetBIOS datagram service > * Port 139 (TCP) - File and printer sharing and smbd > * Port 389 (TCP) - for LDAP (Active Directory Mode) > * Port 445 (TCP) - NetBIOS was moved to 445 after 2000 and > beyond, (CIFS) > * Port 901 (TCP) - for SWAT > Should I port all above port to restrict the access to samba services > or any specific port also enough ? To block Samba, UDP 137 and 138 and TCP 139 and 445 are all you need to block. TCP 445 is not used just for Samba (anything using LDAP will use that port including local logins if you use LDAP to authenticate), and swat is an admin tool which you _may_ wish to block. The actual Samba protocol is over the first four I mentioned. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - BASIC is the Computer Science version of `Scientific Creationism' - ---------------------------------------------------------------------- ------------------------------ Message: 4 Date: Mon, 10 Apr 2006 10:33:12 -0700 From: "Bret Stern" Subject: Fedora 5 To: Message-ID: Content-Type: text/plain; charset="iso-8859-1" Anybody using Fedora 5? Any major problems? ------------------------------ Message: 5 Date: Mon, 10 Apr 2006 10:55:42 -0700 From: Rick Stevens Subject: Re: Fedora 5 To: Getting started with Red Hat Linux , bret_stern at machinemanagement.com Message-ID: <1144691742.20728.14.camel at prophead.corp.publichost.com> Content-Type: text/plain On Mon, 2006-04-10 at 10:33 -0700, Bret Stern wrote: > Anybody using Fedora 5? That was on my "list of things to do this weekend", but I decided to go to the Long Beach Grand Prix instead. I'll try to get at it this week. > Any major problems? I've not heard of any biggies with the latest release. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Swap memory error: You lose your mind" - ---------------------------------------------------------------------- ------------------------------ Message: 6 Date: Mon, 10 Apr 2006 13:56:41 -0400 From: Jeff Kinz Subject: Reversing email contents To: Redhat install List Message-ID: <20060410135641.A18661 at redline.comcast.net> Content-Type: text/plain; charset=us-ascii Hi all, I've inherited the job of coordinating games/practices and fields for our local soccer league. (yeah!) I'm getting emails with 30 emails in reverse order within them, typical Outlook format. In order to understand the issues + needs of the teams sequestered within these emails it would be a lot easier if the discussion were in the order it happened in. Does anyone happen to have a tool, of any sort, that can reverse the oder of the emails within one email ? I know this is a long shot but I'm ever hopeful. They say you can find anything on the internet.. :-) -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail ------------------------------ Message: 7 Date: Mon, 10 Apr 2006 14:00:02 -0400 From: Jeff Kinz Subject: Re: Fedora 5 To: Getting started with Red Hat Linux Message-ID: <20060410140002.B18661 at redline.comcast.net> Content-Type: text/plain; charset=us-ascii On Mon, Apr 10, 2006 at 10:55:42AM -0700, Rick Stevens wrote: > On Mon, 2006-04-10 at 10:33 -0700, Bret Stern wrote: > > Anybody using Fedora 5? > > That was on my "list of things to do this weekend", but I decided to > go to the Long Beach Grand Prix instead. I'll try to get at it this > week. > > > Any major problems? > > I've not heard of any biggies with the latest release. I'm seeing some grumbling on #fedora irc channel on freenode. some people are having severe issues and other are acknowledging those issues. I'm using centos these days so I haven't followed these issues closely. If you would like I can send you a copy of the irc chat log to search through. -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail ------------------------------ Message: 8 Date: Mon, 10 Apr 2006 11:55:17 -0700 (PDT) From: "Harold Hallikainen" Subject: more on bogged down server To: redhat-install-list at redhat.com Message-ID: <42708.207.177.227.29.1144695317.squirrel at sujan.hallikainen.org> Content-Type: text/plain;charset=iso-8859-1 Last week, I was out of town for the week and, of course, my FC4 system slowed down to a crawl, and eventually I could not get into it at all. I just bought and installed a "Web Power Switch" (under $100 at http://www.digital-loggers.com/lpc.html), so I will always (I hope) be able to reboot the system from anywhere. I also reduced the number of clients (I think that was the term) in httpd.conf from 150 to 50. Based on Rick's suggestion, I also added this to /etc/sysctl.conf: # below lines added 4/8/06 to try to prevent system bog downs due to httpd. hh net.ipv4.tcp_fin_timeout = 1 net.ipv4.tcp_max_syn_backlog = 2048 net.ipv4.tcp_syn_retries = 3 net.ipv4.tcp_tw_recycle = 1 net.ipv4.tcp_tw_reuse = 1 My web server has a lot of large files that will take a while for people to download. I suspect Apache is starting another thread for each of these, and keeping it open a long time. As more and more requests come in, the load just keeps getting bigger. Here's a recent top: Cpu(s): 98.3% us, 1.7% sy, 0.0% ni, 0.0% id, 0.0% wa, 0.0% hi, 0.0% si Mem: 1027640k total, 1013188k used, 14452k free, 8292k buffers Swap: 2031608k total, 244252k used, 1787356k free, 224352k cached PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 19089 apache 16 0 45120 17m 4780 S 17.0 1.8 0:04.59 httpd 14416 apache 24 0 60736 31m 4904 R 3.7 3.1 13:02.87 httpd 18425 apache 21 0 59872 30m 2996 R 3.7 3.0 2:58.17 httpd 8965 apache 25 0 59724 31m 4800 R 3.3 3.2 30:11.74 httpd 10263 apache 25 0 60896 32m 4664 R 3.3 3.2 17:42.99 httpd 10268 apache 25 0 60620 27m 4512 R 3.3 2.7 17:12.99 httpd 13121 apache 25 0 59540 31m 4648 R 3.3 3.2 15:00.67 httpd 13585 apache 25 0 51556 12m 4508 R 3.3 1.3 13:09.44 httpd 13802 apache 25 0 51364 19m 4504 R 3.3 1.9 13:28.15 httpd 14613 apache 25 0 60684 18m 4508 R 3.3 1.8 12:32.11 httpd 14682 apache 25 0 51284 10m 2960 R 3.3 1.0 13:36.44 httpd 14852 apache 25 0 51332 16m 4992 R 3.3 1.6 10:08.87 httpd 14853 apache 25 0 51144 18m 4620 R 3.3 1.9 11:20.88 httpd 14935 apache 25 0 51656 18m 5352 R 3.3 1.9 10:52.20 httpd 15134 apache 25 0 51360 18m 5364 R 3.3 1.8 10:00.45 httpd 15138 apache 21 0 51200 17m 5336 R 3.3 1.8 10:33.49 httpd 15504 apache 20 0 60708 20m 4512 R 3.3 2.0 10:24.10 httpd 15876 apache 20 0 51028 10m 4528 R 3.3 1.1 8:41.13 httpd 15877 apache 23 0 60520 20m 5448 R 3.3 2.1 5:43.60 httpd 16331 apache 20 0 60328 32m 5516 R 3.3 3.2 5:19.84 httpd 16633 apache 25 0 60420 32m 5408 R 3.3 3.2 5:15.28 httpd 17859 apache 25 0 60016 32m 5520 R 3.3 3.3 2:27.50 httpd 18089 apache 25 0 60040 32m 5512 R 3.3 3.3 3:17.04 httpd 18426 apache 21 0 59588 32m 5292 R 3.3 3.2 0:36.13 httpd 18503 apache 25 0 59800 32m 5460 R 3.3 3.3 0:57.90 httpd Notice that a lot of those httpd processes have been running quite a while. My concern now is that while everything seems to be working, I think I'm missing some incoming mail. Here's something from /var/log/maillog: Apr 10 11:46:48 sujan sendmail[2316]: rejecting connections on daemon MTA: load average: 33 So... what do I do? THANKS! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com ------------------------------ Message: 9 Date: Mon, 10 Apr 2006 13:00:48 -0700 (PDT) From: "J. Refugio Rodriguez" Subject: Re: Fedora 5 To: bret_stern at machinemanagement.com, Getting started with Red Hat Linux Message-ID: <20060410200048.54393.qmail at web514.biz.mail.mud.yahoo.com> Content-Type: text/plain; charset="iso-8859-1" Bret Stern wrote: Anybody using Fedora 5? Any major problems? Corrupted 2nd ISO image has stopped my fresh installation several times. I have tried downloading that particular image from three(3) different mirrors and onto (two different file systems) and the corruption problem persists. Perhaps the DVD image does not "limp" from the same extreme ...but that will be next. Trying to upgrade an older installation (Fedora 3) will hang on the first ISO image on an oldie dual booting Dell laptop. Regards. Jose R. Rodriguez http://www.metztli-it.com -------------- next part -------------- An HTML attachment was scrubbed... URL: https://www.redhat.com/archives/redhat-install-list/attachments/20060410/db2e2f19/attachment.html ------------------------------ Message: 10 Date: Mon, 10 Apr 2006 13:04:46 -0700 From: Steve Rieger Subject: Re: more on bogged down server To: Getting started with Red Hat Linux Message-ID: <443ABA5E.4030205 at gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Harold Hallikainen wrote: > Last week, I was out of town for the week and, of course, my FC4 system > slowed down to a crawl, and eventually I could not get into it at all. I > just bought and installed a "Web Power Switch" (under $100 at > http://www.digital-loggers.com/lpc.html), so I will always (I hope) be > able to reboot the system from anywhere. > > I also reduced the number of clients (I think that was the term) in > httpd.conf from 150 to 50. > > ... > > My web server has a lot of large files that will take a while for people > to download. I suspect Apache is starting another thread for each of > these, and keeping it open a long time. As more and more requests come in, > the load just keeps getting bigger. Here's a recent top: > let me guess, i make a request for a file to your apache, apache looks for the file, loads it into ram, then loads it into swap then starts piping it to me. thats the typical issue with large files, and at the end of the day you have three copies of the same file in seperate locations, (not for very long, but long enough to eat up all the swap and ram) === message truncated === --------------------------------- Jiyo cricket on Yahoo! India cricket Yahoo! Messenger Mobile Stay in touch with your buddies all the time. -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: How do I set permissions to Samba shares.doc Type: application/msword Size: 27136 bytes Desc: 457397653-How do I set permissions to Samba shares.doc URL: From rstevens at vitalstream.com Tue Apr 11 07:43:43 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 11 Apr 2006 00:43:43 -0700 Subject: Redhat-install-list Digest, Vol 26, Issue 10 In-Reply-To: <20060411062929.57273.qmail@web8708.mail.in.yahoo.com> References: <20060411062929.57273.qmail@web8708.mail.in.yahoo.com> Message-ID: <1144741423.20728.43.camel@prophead.corp.publichost.com> On Tue, 2006-04-11 at 07:29 +0100, B.E Ramu Ram wrote: > Hi > Please find the attachment in the mail which describes about the > the Samba services. The attachement is in Word formate. <> Please do NOT reply to message digests! If you want to reply to a message, either reply to a SINGLE message or post a new message. Just send a new message to "redhat-install-list at redhat.com" and put in an appropriate subject line. If you want, you can paste in the _relevant_ data from the digest. We've all seen the messages and we don't need the digest reposted. Also NEVER "attach" anything you post here. Either paste the content into the message body or give a URL where we can look at it if we wish. Anyone that opens a mail message from an unknown person with an attachment is a fool and just asking for a virus infection. That, and the vast majority of us scrub attachments anyway. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Always remember you're unique, just like everyone else. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Tue Apr 11 07:55:05 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 11 Apr 2006 00:55:05 -0700 Subject: Problem of tcp wrapper In-Reply-To: <20060411030247.FQMQ29872.wmail03dat.netvigator.com@mail.netvigator.com> References: <20060411030247.FQMQ29872.wmail03dat.netvigator.com@mail.netvigator.com> Message-ID: <1144742105.20728.53.camel@prophead.corp.publichost.com> On Tue, 2006-04-11 at 11:02 +0800, fta7wmt at netvigator.com wrote: > Hi All, > I would like to ask tcp wrapper question > if i need to set restriction of dovecot daemon, what is the name of daemon should i set in hosts.deny. It's rather difficult to block it using host.allow or host.deny primarily because it _is_ a daemon. It's far easier to set up access restrictions from iptables. If you want to block access to dovecot's services, you must first figure out _which_ of dovecot's services you want to block (it does both IMAP and POP3). You then put rules in iptables to block or permit access. The easiest way to set that up is to use /usr/bin/system-config-securitylevel. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Microsoft Windows: Proof that P.T. Barnum was right - ---------------------------------------------------------------------- From rstevens at vitalstream.com Tue Apr 11 08:23:06 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 11 Apr 2006 01:23:06 -0700 Subject: more on bogged down server In-Reply-To: <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> Message-ID: <1144743786.20728.81.camel@prophead.corp.publichost.com> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: > > > >> You have to reduce your load somehow. Ideally, you should create an > anonymous FTP download directory and move all of the downloadable files > to it. The download directory also is used as the home directory for > the anonymous FTP user (user "ftp"). I actually use a completely > separate filesystem entirely for that. The filesystem is mounted so > that only root has write access. > >> Modify your vsftpd.conf file to permit anonymous downloads only and > start up vsftpd. Make sure you also set the "force chroot for > anonymous users" option. Then change your links on your web pages to > use "ftp://"-style links pointed at the anonymous download directory > paths for the downloadable files. > >> FTP is the protocol to use for large file downloads. HTTP just isn't > efficient for that, as you've now found out (the hard way, I might > add). > > > > as the man said, dont use http for this, > > > > if you must then i suggest that you have a separate partition for your > large files and make fstab read as such (example) > > > > /dev/web / ext3 defaults,directio 1 1 > > > > add the directio comment and the file will not go to ram, nor to swap. > this will speed up things, but you should hand the downloads over to a > different method (not http). > > > > THANKS! I'll see what I can do about moving stuff to ftp. Most of the > large files are on phpwiki. I suppose I could slowly go through the pages > and change the download files (mostly scanned pdfs) from http:// to ftp:// > . Any problem with having the ftp download directory being the same as the > http root directory? That way I would not have to move anything, just > change the protocol prefix on the links. Well, I would rather not have anonymous FTP sessions chrooting to my web server pages, but that's up to you. Just realize that you may be opening some security holes. Make sure the anonymous FTP user doesn't have ANY form of write access to the files (make sure they're owned by someone other than "ftp" and group "ftp") and make sure the directories are owned by a secure user and have 755 permissions ("rwxr-xr-x"). > Here's another top. It looks like 98.6% of ram is being used, along with > 100% of the processor. Not much swap space is being used. It kinda seems > like Apache just tries to use as much RAM and CPU as is available. I guess > this would be ok if my DSL could send the data out faster (I'm sure that's > why these threads live so long). But, it doesn't seem like it should 7% or > more of the CPU to a byte from the drive to the ethernet. Maybe ftp's just > more efficient at this? Yes, FTP is much more adept at this. You also have to remember that you have an entire copy of Apache running for each connected user. If you were to do a "vmstat 3", you'll probably see a hell of a lot of context switches going on (the stuff under the "cs" column), and that's where your CPU is going. A context switch occurs when the system switches from executing one program to another. There are conditions where the system spends all its time switching and not doing anything else (we lovingly call this the "scratching the process itch"). As another poster has commented, strip your apache down as much as possible. If you aren't using it, kill off mod_perl (it's a huge resource hog), optimize and precompile your PHP stuff (using zend). But your best thing is FTP. Also note that residential DSL is generally optimized to have a big incoming pipe (for downloads FROM the net TO you) and a much smaller pipe going the other way. And the upload pipe is usually time- multiplexed...you share the upload bandwidth with other users. So, rather than sending a lot of data to a client, you can only send a little bit, then the system switches to another task, sends a tiny bit there, switches to yet another and so on and so on. This is obviously not the best scenario for running an FTP or Wiki site. FTP will help (since it's a lighter process and the protocol is optimized for sending lots of data), but a large part of your problem is likely the DSL connection itself, and I can't help much with that except tell you to see if your DSL provider can give you a symmetrical DSL connection (a.k.a. "business DSL")--and that'll probably cost you more. That's why there are companies that offer co-location, managed servers or web hosting services. They have high speed, bidirectional pipes to the internet and you (usually) don't get bottlenecked at the network pipe, which is what you're experiencing. Sorry I can't help more than that. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - I don't suffer from insanity...I enjoy every minute of it! - ---------------------------------------------------------------------- From akelly at corisweb.org Tue Apr 11 08:26:52 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Tue, 11 Apr 2006 10:26:52 +0200 Subject: Reversing email contents In-Reply-To: <20060410204351.C18661@redline.comcast.net> References: <20060410135641.A18661@redline.comcast.net> <20060410210900.GA13848@xdroop.com> <20060410204351.C18661@redline.comcast.net> Message-ID: <1144744013.2717.2.camel@fedora.at.home> On Mon, 2006-04-10 at 20:43 -0400, Jeff Kinz wrote: > > > Buh, buh, but these are soccer Mom's! and Dads! > Exposing them to the naked traditions of the internet would be, would > be... > > (Here, our hero's voice breaks completely, barely holding himself > together he forges onward...) > > Oh my God! The carnage, the slaughter..... the humanity.... > > Have you NO mercy in your soul? > > > Right, I've seen this behavior before. Jeff Kinz, Jeff Kinz... that name seems very familiar to me. Did you post briefly, years ago, to misc.writing? Andy From rstevens at vitalstream.com Tue Apr 11 08:32:17 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 11 Apr 2006 01:32:17 -0700 Subject: Reversing email contents In-Reply-To: <20060410204351.C18661@redline.comcast.net> References: <20060410135641.A18661@redline.comcast.net> <20060410210900.GA13848@xdroop.com> <20060410204351.C18661@redline.comcast.net> Message-ID: <1144744338.20728.91.camel@prophead.corp.publichost.com> On Mon, 2006-04-10 at 20:43 -0400, Jeff Kinz wrote: > On Mon, Apr 10, 2006 at 05:09:00PM -0400, David Mackintosh wrote: > > > The traditional internet method is to demand that everyone > > bottom-post from now on, thus triggering a flameware, and > > guaranteeing future flamewars when new users join the discussion or > > list unaware of either the "convention" or the dissent over said > > "convention". > > > > > Buh, buh, but these are soccer Mom's! and Dads! > Exposing them to the naked traditions of the internet would be, would > be... > > (Here, our hero's voice breaks completely, barely holding himself > together he forges onward...) > > Oh my God! The carnage, the slaughter..... the humanity.... > > Have you NO mercy in your soul? > Frankly, no. ;-) If you want, you can always use my smart-assed comment: "Sir, you must excuse me from putting this in these terms, but there are some people who should not be allowed near technology, and to be honest, you're one of them." Or the far more succinct, far less subtle and brutally honest: "On the Internet, life's tough. Wear a cup." Thhhhpt! ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - We are born naked, wet and hungry. Then things get worse. - ---------------------------------------------------------------------- From jkinz at kinz.org Tue Apr 11 12:01:44 2006 From: jkinz at kinz.org (Jeff Kinz) Date: Tue, 11 Apr 2006 08:01:44 -0400 Subject: Reversing email contents In-Reply-To: <1144744013.2717.2.camel@fedora.at.home>; from akelly@corisweb.org on Tue, Apr 11, 2006 at 10:26:52AM +0200 References: <20060410135641.A18661@redline.comcast.net> <20060410210900.GA13848@xdroop.com> <20060410204351.C18661@redline.comcast.net> <1144744013.2717.2.camel@fedora.at.home> Message-ID: <20060411080144.D18661@redline.comcast.net> On Tue, Apr 11, 2006 at 10:26:52AM +0200, Andrew Kelly wrote: > > Right, I've seen this behavior before. > > Jeff Kinz, Jeff Kinz... that name seems very familiar to me. Did you > post briefly, years ago, to misc.writing? No, never, but if I had it would have been to post to misc.really.really.really.really.really.really.bad.writing. :-) -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail From akelly at corisweb.org Tue Apr 11 12:31:44 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Tue, 11 Apr 2006 14:31:44 +0200 Subject: Reversing email contents In-Reply-To: <20060411080144.D18661@redline.comcast.net> References: <20060410135641.A18661@redline.comcast.net> <20060410210900.GA13848@xdroop.com> <20060410204351.C18661@redline.comcast.net> <1144744013.2717.2.camel@fedora.at.home> <20060411080144.D18661@redline.comcast.net> Message-ID: <1144758704.2717.93.camel@fedora.at.home> On Tue, 2006-04-11 at 08:01 -0400, Jeff Kinz wrote: > On Tue, Apr 11, 2006 at 10:26:52AM +0200, Andrew Kelly wrote: > > > > Right, I've seen this behavior before. > > > > Jeff Kinz, Jeff Kinz... that name seems very familiar to me. Did you > > post briefly, years ago, to misc.writing? > > No, never, but if I had it would have been to post to > misc.really.really.really.really.really.really.bad.writing. :-) Ah, OK. Then I'm DEFinitely sitting too close to the microwave repeater. Quality humor, Jeff and misc.writing all compute, but that fourth variable seems to have been turned to Timmy. [Cue Steve Martin] " References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> Message-ID: <40262.192.168.1.1.1144759871.squirrel@sujan.hallikainen.org> > On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >> > >> >> You have to reduce your load somehow. Ideally, you should create an >> anonymous FTP download directory and move all of the downloadable files >> to it. The download directory also is used as the home directory for >> the anonymous FTP user (user "ftp"). I actually use a completely >> separate filesystem entirely for that. The filesystem is mounted so >> that only root has write access. >> >> Modify your vsftpd.conf file to permit anonymous downloads only and >> start up vsftpd. Make sure you also set the "force chroot for >> anonymous users" option. Then change your links on your web pages to >> use "ftp://"-style links pointed at the anonymous download directory >> paths for the downloadable files. >> >> FTP is the protocol to use for large file downloads. HTTP just isn't >> efficient for that, as you've now found out (the hard way, I might >> add). >> > >> > as the man said, dont use http for this, >> > >> > if you must then i suggest that you have a separate partition for your >> large files and make fstab read as such (example) >> > >> > /dev/web / ext3 defaults,directio 1 1 >> > >> > add the directio comment and the file will not go to ram, nor to swap. >> this will speed up things, but you should hand the downloads over to a >> different method (not http). >> > >> >> THANKS! I'll see what I can do about moving stuff to ftp. Most of the >> large files are on phpwiki. I suppose I could slowly go through the >> pages >> and change the download files (mostly scanned pdfs) from http:// to >> ftp:// >> . Any problem with having the ftp download directory being the same as >> the >> http root directory? That way I would not have to move anything, just >> change the protocol prefix on the links. > > Well, I would rather not have anonymous FTP sessions chrooting to my > web server pages, but that's up to you. Just realize that you may be > opening some security holes. Make sure the anonymous FTP user doesn't > have ANY form of write access to the files (make sure they're owned by > someone other than "ftp" and group "ftp") and make sure the directories > are owned by a secure user and have 755 permissions ("rwxr-xr-x"). > >> Here's another top. It looks like 98.6% of ram is being used, along with >> 100% of the processor. Not much swap space is being used. It kinda seems >> like Apache just tries to use as much RAM and CPU as is available. I >> guess >> this would be ok if my DSL could send the data out faster (I'm sure >> that's >> why these threads live so long). But, it doesn't seem like it should 7% >> or >> more of the CPU to a byte from the drive to the ethernet. Maybe ftp's >> just >> more efficient at this? > > Yes, FTP is much more adept at this. You also have to remember that > you have an entire copy of Apache running for each connected user. If > you were to do a "vmstat 3", you'll probably see a hell of a lot of > context switches going on (the stuff under the "cs" column), and that's > where your CPU is going. A context switch occurs when the system > switches from executing one program to another. There are conditions > where the system spends all its time switching and not doing anything > else (we lovingly call this the "scratching the process itch"). > > As another poster has commented, strip your apache down as much as > possible. If you aren't using it, kill off mod_perl (it's a huge > resource hog), optimize and precompile your PHP stuff (using zend). But > your best thing is FTP. > > Also note that residential DSL is generally optimized to have a big > incoming pipe (for downloads FROM the net TO you) and a much smaller > pipe going the other way. And the upload pipe is usually time- > multiplexed...you share the upload bandwidth with other users. So, > rather than sending a lot of data to a client, you can only send a > little bit, then the system switches to another task, sends a tiny bit > there, switches to yet another and so on and so on. This is obviously > not the best scenario for running an FTP or Wiki site. > > FTP will help (since it's a lighter process and the protocol is > optimized for sending lots of data), but a large part of your problem is > likely the DSL connection itself, and I can't help much with that except > tell you to see if your DSL provider can give you a symmetrical DSL > connection (a.k.a. "business DSL")--and that'll probably cost you more. > That's why there are companies that offer co-location, managed servers > or web hosting services. They have high speed, bidirectional pipes to > the internet and you (usually) don't get bottlenecked at the network > pipe, which is what you're experiencing. > > Sorry I can't help more than that. > As usual, you're a tremendous help! It's interesting that this problem did not appear until last week (when I was out of town). I wonder if maybe yum did an update on Apache for me and made it take a lot of cpu time. Does Apache normally take everything it can get, but, ideally, for a short period of time? Looking at my Apache logs, I see that most of my traffic is from search engines. Most of my files are pretty small, but there are a few pdfs that are large image files. So far I do not have a robots.txt, but am thinking of adding one to decrease the load due to search engines. I'd like stuff to be indexed, but maybe either decrease the frequency of indexing or tell them to not index the pdfs (which have ocr text in the background). I've only spent about 5 minutes looking at info about robots.txt so far, but do you think that could help? THANKS! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From jkinz at kinz.org Tue Apr 11 14:02:43 2006 From: jkinz at kinz.org (Jeff Kinz) Date: Tue, 11 Apr 2006 10:02:43 -0400 Subject: more on bogged down server In-Reply-To: <40262.192.168.1.1.1144759871.squirrel@sujan.hallikainen.org>; from harold@hallikainen.com on Tue, Apr 11, 2006 at 05:51:11AM -0700 References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759871.squirrel@sujan.hallikainen.org> Message-ID: <20060411100243.E18661@redline.comcast.net> On Tue, Apr 11, 2006 at 05:51:11AM -0700, Harold Hallikainen wrote: > > It's interesting that this problem did > not appear until last week (when I was out of town). Failures seem to mostly work this way. Physicists are currently trying to find a particle called the "Higgs Boson" whose field causes all other particles passing through it to have mass. So the entire Universe owes its mass to this particle. Its informal name is the "God Particle". http://www.wired.com/wired/archive/12.04/grid_pr.html I have a theory that there is a another particle, a "uon",(U), which has a field that emits an extraordinary failure force (EFF). IT has the characteristic of causing other particles to fail at the worst possible time. So you see, you've been hit by the universal EFF-U particle. :) -- Jeff Kinz, Emergent Research, Hudson, MA. Speech Recognition Technology was used to create this e-mail From stuart at sjsears.com Tue Apr 11 15:12:14 2006 From: stuart at sjsears.com (Stuart Sears) Date: Tue, 11 Apr 2006 16:12:14 +0100 Subject: Fedora 5 In-Reply-To: References: Message-ID: <443BC74E.5000003@sjsears.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bret Stern wrote: > Anybody using Fedora 5? > > Any major problems? Working fine for me (using it to send this now) I think it depends on what you want to use it for. I had a few issues with sound and video on my laptop on my first install, which caused me to roll back to FC4. Reinstalled yesterday and everything's peachy now. Stuart - -- Stuart Sears RHCA RHCX To err is human, to forgive is Not Company Policy. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFEO8dOamPtx1brPQ4RApFPAJ0Y1adye8EjraR1RgSLCpoF0WZOlACfYhky aaokfUPVxYzJDE+TJbucVpU= =lcbJ -----END PGP SIGNATURE----- From bret_stern at machinemanagement.com Tue Apr 11 16:38:25 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Tue, 11 Apr 2006 09:38:25 -0700 Subject: Fedora 5 ssh / putty / Windows client Message-ID: If you used Putty (from Windows) to connect to Fedora 4 as a ssh remote login, something changed in the default ssh configuration of Fedora 5. I cannot connect to Fedora 5 (out of the box) like with Fedora 4. I'm feeling lazy..so.. Any ssh user using putty from windows connecting to Fedora 5, can you advise/share the changes in etc/ssh_config file to let putty connect? Bret From riegersteve at gmail.com Tue Apr 11 17:41:08 2006 From: riegersteve at gmail.com (Steve Rieger) Date: Tue, 11 Apr 2006 10:41:08 -0700 Subject: Fedora 5 ssh / putty / Windows client In-Reply-To: References: Message-ID: <443BEA34.30400@gmail.com> Bret Stern wrote: > If you used Putty (from Windows) to connect to Fedora 4 > as a ssh remote login, something changed in the default > ssh configuration of Fedora 5. > > I cannot connect to Fedora 5 (out of the box) like with > Fedora 4. > > I'm feeling lazy..so.. > Any ssh user using putty from windows connecting to Fedora 5, > can you advise/share the changes in etc/ssh_config file to > let putty connect? > > Bret > > did you copy your keys to the new puter do you use passwords or keys for authent do you log in as root or as a user -- -- Steve Rieger 310-339-4355 (cell) 3394355 at gmail.com (pager) http://fhs.lyon.k12.nv.us/steve%20rieger.htm From bret_stern at machinemanagement.com Tue Apr 11 18:30:13 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Tue, 11 Apr 2006 11:30:13 -0700 Subject: Fedora 5 ssh / putty / Windows client In-Reply-To: Message-ID: It seems I made a mistake in this post. My ip address was the problem. I can now connect to Fedora 5 with Putty. I thought I checked and double checked before posting. Regrets, Bret > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com]On Behalf Of Bret Stern > Sent: Tuesday, April 11, 2006 8:38 AM > To: redhat-install-list at redhat.com > Subject: Fedora 5 ssh / putty / Windows client > > > > If you used Putty (from Windows) to connect to Fedora 4 > as a ssh remote login, something changed in the default > ssh configuration of Fedora 5. > > I cannot connect to Fedora 5 (out of the box) like with > Fedora 4. > > I'm feeling lazy..so.. > Any ssh user using putty from windows connecting to Fedora 5, > can you advise/share the changes in etc/ssh_config file to > let putty connect? > > Bret > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe From harold at hallikainen.com Tue Apr 11 15:20:57 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Tue, 11 Apr 2006 08:20:57 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> Message-ID: <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> > >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >>> > >>> >> You have to reduce your load somehow. Ideally, you should create an >>> anonymous FTP download directory and move all of the downloadable files >>> to it. The download directory also is used as the home directory for >>> the anonymous FTP user (user "ftp"). I actually use a completely >>> separate filesystem entirely for that. The filesystem is mounted so >>> that only root has write access. >>> >> Modify your vsftpd.conf file to permit anonymous downloads only and >>> start up vsftpd. Make sure you also set the "force chroot for >>> anonymous users" option. Then change your links on your web pages to >>> use "ftp://"-style links pointed at the anonymous download directory >>> paths for the downloadable files. >>> >> FTP is the protocol to use for large file downloads. HTTP just >>> isn't >>> efficient for that, as you've now found out (the hard way, I might >>> add). >>> > >>> > as the man said, dont use http for this, >>> > >>> > if you must then i suggest that you have a separate partition for >>> your >>> large files and make fstab read as such (example) >>> > >>> > /dev/web / ext3 defaults,directio 1 1 >>> > >>> > add the directio comment and the file will not go to ram, nor to >>> swap. >>> this will speed up things, but you should hand the downloads over to a >>> different method (not http). >>> > >>> >>> THANKS! I'll see what I can do about moving stuff to ftp. Most of the >>> large files are on phpwiki. I suppose I could slowly go through the >>> pages >>> and change the download files (mostly scanned pdfs) from http:// to >>> ftp:// >>> . Any problem with having the ftp download directory being the same as >>> the >>> http root directory? That way I would not have to move anything, just >>> change the protocol prefix on the links. >> >> Well, I would rather not have anonymous FTP sessions chrooting to my >> web server pages, but that's up to you. Just realize that you may be >> opening some security holes. Make sure the anonymous FTP user doesn't >> have ANY form of write access to the files (make sure they're owned by >> someone other than "ftp" and group "ftp") and make sure the directories >> are owned by a secure user and have 755 permissions ("rwxr-xr-x"). >> >>> Here's another top. It looks like 98.6% of ram is being used, along >>> with >>> 100% of the processor. Not much swap space is being used. It kinda >>> seems >>> like Apache just tries to use as much RAM and CPU as is available. I >>> guess >>> this would be ok if my DSL could send the data out faster (I'm sure >>> that's >>> why these threads live so long). But, it doesn't seem like it should 7% >>> or >>> more of the CPU to a byte from the drive to the ethernet. Maybe ftp's >>> just >>> more efficient at this? >> >> Yes, FTP is much more adept at this. You also have to remember that >> you have an entire copy of Apache running for each connected user. If >> you were to do a "vmstat 3", you'll probably see a hell of a lot of >> context switches going on (the stuff under the "cs" column), and that's >> where your CPU is going. A context switch occurs when the system >> switches from executing one program to another. There are conditions >> where the system spends all its time switching and not doing anything >> else (we lovingly call this the "scratching the process itch"). >> >> As another poster has commented, strip your apache down as much as >> possible. If you aren't using it, kill off mod_perl (it's a huge >> resource hog), optimize and precompile your PHP stuff (using zend). But >> your best thing is FTP. >> >> Also note that residential DSL is generally optimized to have a big >> incoming pipe (for downloads FROM the net TO you) and a much smaller >> pipe going the other way. And the upload pipe is usually time- >> multiplexed...you share the upload bandwidth with other users. So, >> rather than sending a lot of data to a client, you can only send a >> little bit, then the system switches to another task, sends a tiny bit >> there, switches to yet another and so on and so on. This is obviously >> not the best scenario for running an FTP or Wiki site. >> >> FTP will help (since it's a lighter process and the protocol is >> optimized for sending lots of data), but a large part of your problem is >> likely the DSL connection itself, and I can't help much with that except >> tell you to see if your DSL provider can give you a symmetrical DSL >> connection (a.k.a. "business DSL")--and that'll probably cost you more. >> That's why there are companies that offer co-location, managed servers >> or web hosting services. They have high speed, bidirectional pipes to >> the internet and you (usually) don't get bottlenecked at the network >> pipe, which is what you're experiencing. >> >> Sorry I can't help more than that. >> > > > As usual, you're a tremendous help! It's interesting that this problem did > not appear until last week (when I was out of town). I wonder if maybe yum > did an update on Apache for me and made it take a lot of cpu time. Does > Apache normally take everything it can get, but, ideally, for a short > period of time? > > Looking at my Apache logs, I see that most of my traffic is from search > engines. Most of my files are pretty small, but there are a few pdfs that > are large image files. So far I do not have a robots.txt, but am thinking > of adding one to decrease the load due to search engines. I'd like stuff > to be indexed, but maybe either decrease the frequency of indexing or tell > them to not index the pdfs (which have ocr text in the background). I've > only spent about 5 minutes looking at info about robots.txt so far, but do > you think that could help? > > THANKS! > > Harold Following up on my own post, the large pdfs are all in a single directory, so I've put that in my new robots.txt file. I'll watch top through today to see if that helps. Again, most of my traffic seems to be search engines (my content is popular, but not THAT popular), so I don't think there'll be a problem with real users getting the large files (I just read on one of my mailing lists of a user downloading a 3M file successfully). At least that's my hope! We'll see. On suggested changes in my httpd.conf, I do have a few perl scripts. If I take out mod-perl, does Apache just hand it over to perl for processing instead of doing some (or all) of it itself? The perl scripts that are called by apache are pretty small and should execute quickly. Same with the php stuff. I think they may take a lot of resources, but only for a very short period of time. I think my major problem is those large pdfs being sucked up by search engines. By stopping those, I hope I'll speed up stuff for everyone. It IS interesting that I've had this stuff up for months and months on this server and only recently started having problems. We'll see how it goes. I REALLY appreciate all the help on this list! Harold From fta7wmt at netvigator.com Wed Apr 12 05:59:45 2006 From: fta7wmt at netvigator.com (fta7wmt at netvigator.com) Date: Wed, 12 Apr 2006 13:59:45 +0800 Subject: Problem of CUPS service Message-ID: <20060412055945.ORUG16842.wmail01dat.netvigator.com@mail.netvigator.com> Dear All, I want to ask some questions of printer configuration. I have config a local printer connect to station A and share to public. Then, I add the share printer to station B by - system-config-printer - double-click the "Browsed queues" and found the print queue of station A. - right-click the share printer and set as default. - Apply and exit. After above config, I try to test the printer as command : lpr < abc.txt. However, I cannot find the job in station A with command "lpq". On the other hand, I use web access http://localhost:631 to click the "print test page". I can find the job in print queue of station A. What is the problem of command "lpr < abc.txt" Or any problem in configuration. Regards Lstar From rstevens at vitalstream.com Wed Apr 12 18:27:08 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 12 Apr 2006 11:27:08 -0700 Subject: Fedora 5 ssh / putty / Windows client In-Reply-To: References: Message-ID: <1144866428.20728.118.camel@prophead.corp.publichost.com> On Tue, 2006-04-11 at 11:30 -0700, Bret Stern wrote: > It seems I made a mistake in this post. My ip address > was the problem. I can now connect to Fedora 5 with Putty. > I thought I checked and double checked before posting. Forty lashes with a wet linguini noodle for you, Bret! :-D > > Regrets, > Bret > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com]On Behalf Of Bret Stern > > Sent: Tuesday, April 11, 2006 8:38 AM > > To: redhat-install-list at redhat.com > > Subject: Fedora 5 ssh / putty / Windows client > > > > > > > > If you used Putty (from Windows) to connect to Fedora 4 > > as a ssh remote login, something changed in the default > > ssh configuration of Fedora 5. > > > > I cannot connect to Fedora 5 (out of the box) like with > > Fedora 4. > > > > I'm feeling lazy..so.. > > Any ssh user using putty from windows connecting to Fedora 5, > > can you advise/share the changes in etc/ssh_config file to > > let putty connect? > > > > Bret > > > > _______________________________________________ > > Redhat-install-list mailing list > > Redhat-install-list at redhat.com > > https://www.redhat.com/mailman/listinfo/redhat-install-list > > To Unsubscribe Go To ABOVE URL or send a message to: > > redhat-install-list-request at redhat.com > > Subject: unsubscribe > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If your broker is so damned smart...why is he still working? - ---------------------------------------------------------------------- From rstevens at vitalstream.com Wed Apr 12 18:29:13 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 12 Apr 2006 11:29:13 -0700 Subject: Problem of CUPS service In-Reply-To: <20060412055945.ORUG16842.wmail01dat.netvigator.com@mail.netvigator.com> References: <20060412055945.ORUG16842.wmail01dat.netvigator.com@mail.netvigator.com> Message-ID: <1144866553.20728.121.camel@prophead.corp.publichost.com> On Wed, 2006-04-12 at 13:59 +0800, fta7wmt at netvigator.com wrote: > Dear All, > > I want to ask some questions of printer configuration. > I have config a local printer connect to station A and share to public. > Then, I add the share printer to station B by > - system-config-printer > - double-click the "Browsed queues" and found the print queue of station A. > - right-click the share printer and set as default. > - Apply and exit. > After above config, I try to test the printer as command : lpr < abc.txt. However, I cannot find the job in station A with command "lpq". > On the other hand, I use web access http://localhost:631 to click the "print test page". > I can find the job in print queue of station A. > > What is the problem of command "lpr < abc.txt" Yes, the command would be "lpr abc.txt" (without the "<"). Other valid commands would be: cat abc.txt | lpr lpr -P name-of-printer abc.txt ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Do you suffer from long-term memory loss?" "I don't remember" - - -- Chumbawumba, "Amnesia" (TubThumping) - ---------------------------------------------------------------------- From rstevens at vitalstream.com Wed Apr 12 18:37:36 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 12 Apr 2006 11:37:36 -0700 Subject: more on bogged down server In-Reply-To: <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> Message-ID: <1144867056.20728.129.camel@prophead.corp.publichost.com> On Tue, 2006-04-11 at 08:20 -0700, Harold Hallikainen wrote: > > > >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: > >>> > > >>> >> You have to reduce your load somehow. Ideally, you should create an > >>> anonymous FTP download directory and move all of the downloadable files > >>> to it. The download directory also is used as the home directory for > >>> the anonymous FTP user (user "ftp"). I actually use a completely > >>> separate filesystem entirely for that. The filesystem is mounted so > >>> that only root has write access. > >>> >> Modify your vsftpd.conf file to permit anonymous downloads only and > >>> start up vsftpd. Make sure you also set the "force chroot for > >>> anonymous users" option. Then change your links on your web pages to > >>> use "ftp://"-style links pointed at the anonymous download directory > >>> paths for the downloadable files. > >>> >> FTP is the protocol to use for large file downloads. HTTP just > >>> isn't > >>> efficient for that, as you've now found out (the hard way, I might > >>> add). > >>> > > >>> > as the man said, dont use http for this, > >>> > > >>> > if you must then i suggest that you have a separate partition for > >>> your > >>> large files and make fstab read as such (example) > >>> > > >>> > /dev/web / ext3 defaults,directio 1 1 > >>> > > >>> > add the directio comment and the file will not go to ram, nor to > >>> swap. > >>> this will speed up things, but you should hand the downloads over to a > >>> different method (not http). > >>> > > >>> > >>> THANKS! I'll see what I can do about moving stuff to ftp. Most of the > >>> large files are on phpwiki. I suppose I could slowly go through the > >>> pages > >>> and change the download files (mostly scanned pdfs) from http:// to > >>> ftp:// > >>> . Any problem with having the ftp download directory being the same as > >>> the > >>> http root directory? That way I would not have to move anything, just > >>> change the protocol prefix on the links. > >> > >> Well, I would rather not have anonymous FTP sessions chrooting to my > >> web server pages, but that's up to you. Just realize that you may be > >> opening some security holes. Make sure the anonymous FTP user doesn't > >> have ANY form of write access to the files (make sure they're owned by > >> someone other than "ftp" and group "ftp") and make sure the directories > >> are owned by a secure user and have 755 permissions ("rwxr-xr-x"). > >> > >>> Here's another top. It looks like 98.6% of ram is being used, along > >>> with > >>> 100% of the processor. Not much swap space is being used. It kinda > >>> seems > >>> like Apache just tries to use as much RAM and CPU as is available. I > >>> guess > >>> this would be ok if my DSL could send the data out faster (I'm sure > >>> that's > >>> why these threads live so long). But, it doesn't seem like it should 7% > >>> or > >>> more of the CPU to a byte from the drive to the ethernet. Maybe ftp's > >>> just > >>> more efficient at this? > >> > >> Yes, FTP is much more adept at this. You also have to remember that > >> you have an entire copy of Apache running for each connected user. If > >> you were to do a "vmstat 3", you'll probably see a hell of a lot of > >> context switches going on (the stuff under the "cs" column), and that's > >> where your CPU is going. A context switch occurs when the system > >> switches from executing one program to another. There are conditions > >> where the system spends all its time switching and not doing anything > >> else (we lovingly call this the "scratching the process itch"). > >> > >> As another poster has commented, strip your apache down as much as > >> possible. If you aren't using it, kill off mod_perl (it's a huge > >> resource hog), optimize and precompile your PHP stuff (using zend). But > >> your best thing is FTP. > >> > >> Also note that residential DSL is generally optimized to have a big > >> incoming pipe (for downloads FROM the net TO you) and a much smaller > >> pipe going the other way. And the upload pipe is usually time- > >> multiplexed...you share the upload bandwidth with other users. So, > >> rather than sending a lot of data to a client, you can only send a > >> little bit, then the system switches to another task, sends a tiny bit > >> there, switches to yet another and so on and so on. This is obviously > >> not the best scenario for running an FTP or Wiki site. > >> > >> FTP will help (since it's a lighter process and the protocol is > >> optimized for sending lots of data), but a large part of your problem is > >> likely the DSL connection itself, and I can't help much with that except > >> tell you to see if your DSL provider can give you a symmetrical DSL > >> connection (a.k.a. "business DSL")--and that'll probably cost you more. > >> That's why there are companies that offer co-location, managed servers > >> or web hosting services. They have high speed, bidirectional pipes to > >> the internet and you (usually) don't get bottlenecked at the network > >> pipe, which is what you're experiencing. > >> > >> Sorry I can't help more than that. > >> > > > > > > As usual, you're a tremendous help! It's interesting that this problem did > > not appear until last week (when I was out of town). I wonder if maybe yum > > did an update on Apache for me and made it take a lot of cpu time. Does > > Apache normally take everything it can get, but, ideally, for a short > > period of time? > > > > Looking at my Apache logs, I see that most of my traffic is from search > > engines. Most of my files are pretty small, but there are a few pdfs that > > are large image files. So far I do not have a robots.txt, but am thinking > > of adding one to decrease the load due to search engines. I'd like stuff > > to be indexed, but maybe either decrease the frequency of indexing or tell > > them to not index the pdfs (which have ocr text in the background). I've > > only spent about 5 minutes looking at info about robots.txt so far, but do > > you think that could help? > > > > THANKS! > > > > Harold > > > Following up on my own post, the large pdfs are all in a single directory, > so I've put that in my new robots.txt file. I'll watch top through today > to see if that helps. Again, most of my traffic seems to be search engines > (my content is popular, but not THAT popular), so I don't think there'll > be a problem with real users getting the large files (I just read on one > of my mailing lists of a user downloading a 3M file successfully). At > least that's my hope! We'll see. > > On suggested changes in my httpd.conf, I do have a few perl scripts. If I > take out mod-perl, does Apache just hand it over to perl for processing > instead of doing some (or all) of it itself? mod_perl essentially puts a perl interpreter in Apache. If you have a LOT of perl stuff, it makes sense. If you only have a few perl things, cgi-bin should be enough. > The perl scripts that are > called by apache are pretty small and should execute quickly. Same with > the php stuff. I think they may take a lot of resources, but only for a > very short period of time. I think my major problem is those large pdfs > being sucked up by search engines. By stopping those, I hope I'll speed up > stuff for everyone. Yeah. My guess is you can leave the mod_perl in there. It doesn't hurt to Zend your PHP stuff, however. > It IS interesting that I've had this stuff up for months and months on > this server and only recently started having problems. We'll see how it > goes. > > I REALLY appreciate all the help on this list! Check with your ISP to see if they changed the polling intervals or any other parameter having to do with your transmission pipe. Sometimes they add a lot of new clients onto your ring, so they shorten your poll time to accommodate the new users. My ISP did that to me on my cable modem and I raised holy hell with them. My poll period was down to 5-10mS! Ridiculous! I told them I wasn't paying $40 a month for farking 9600-baud dialup speeds. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Change is inevitable, except from a vending machine. - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Wed Apr 12 19:44:12 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Wed, 12 Apr 2006 13:44:12 -0600 (MDT) Subject: more on bogged down server In-Reply-To: <1144867056.20728.129.camel@prophead.corp.publichost.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> Message-ID: <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> On Wed, April 12, 2006 12:37 pm, Rick Stevens said: > On Tue, 2006-04-11 at 08:20 -0700, Harold Hallikainen wrote: >> > >> >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >> >>> > >> I REALLY appreciate all the help on this list! Me too. Even when I haven't asked for it and something comes across . . . > > Check with your ISP to see if they changed the polling intervals or > any other parameter having to do with your transmission pipe. Sometimes > they add a lot of new clients onto your ring, so they shorten your > poll time to accommodate the new users. My ISP did that to me on my > cable modem and I raised holy hell with them. My poll period was down > to 5-10mS! Ridiculous! I told them I wasn't paying $40 a month for > farking 9600-baud dialup speeds. Okay, so how do I tell if that's my problem? My ISP changed our DSL link to a different piece of hardware and the speed went from 6896 to 640k, the Qwest default. They've fixed that, but it still appears that my downloads, though much faster, are still not what they were before the move, even though the older equipment only allowed me to train at 6896 instead of 7168, which is what I'm trained at now. Karl > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - Change is inevitable, except from a vending machine. - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From harold at hallikainen.com Wed Apr 12 20:13:33 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Wed, 12 Apr 2006 13:13:33 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> Message-ID: <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> > On Wed, April 12, 2006 12:37 pm, Rick Stevens said: >> On Tue, 2006-04-11 at 08:20 -0700, Harold Hallikainen wrote: >>> > >>> >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >>> >>> > >>> I REALLY appreciate all the help on this list! > > Me too. Even when I haven't asked for it and something comes across . . . > >> >> Check with your ISP to see if they changed the polling intervals or >> any other parameter having to do with your transmission pipe. Sometimes >> they add a lot of new clients onto your ring, so they shorten your >> poll time to accommodate the new users. My ISP did that to me on my >> cable modem and I raised holy hell with them. My poll period was down >> to 5-10mS! Ridiculous! I told them I wasn't paying $40 a month for >> farking 9600-baud dialup speeds. > > Okay, so how do I tell if that's my problem? My ISP changed our DSL link > to > a different piece of hardware and the speed went from 6896 to 640k, the > Qwest default. They've fixed that, but it still appears that my downloads, > though much faster, are still not what they were before the move, even > though the older equipment only allowed me to train at 6896 instead of > 7168, > which is what I'm trained at now. > > Karl Still learning how all this stuff works (thanks especially to the list). Communications speeds still seem ok (my DSL is 6M down and something less up). My server just seems to be bogging down. If communications were slow, I guess a lot of httpd processes would start to slowly send the data out, or is there a buffer somewhere that can handle that more efficiently? If we were I/O bound, it doesn't seem like that'd result in a large cpu load. Looking at top, even if there is just one instance of httpd, it will go to 100% CPU, or very close to that. I'm assuming it's SUPPOSED to do that, just not for very long. When there are lots of instances of httpd, the %CPU in top for each drops, but they add up to near 100%, and the total %cpu is close to 100%. But, I guess that's ok. If the load were exactly 100%, the load average would show up as 1.00, right? Now, it's running about 20. sendmail stopped accepting connections at 12. As mentioned yesterday, I've added robots.txt and told the search engines to not search the directory with the huge pdfs (which is where I'm thinking most of the traffic is coming from). I've also put the crawl-delay in robots.txt at 60 seconds to avoid those once a second requests. But, stuff is still piling up (they may not have read robots.txt yet). I'm running version 2.0.something of httpd that ships with FC4. I see there's now version 2.2 available. It's supposed to handle large files better, among other things. I guess I'll give that a try. Others have suggested more config file changes (getting rid of mod-perl, etc.) to make httpd more efficient. I'll keep working on it. Meanwhile, off to restart httpd so I can get mail again... Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From harold at hallikainen.com Wed Apr 12 14:59:58 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Wed, 12 Apr 2006 07:59:58 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> Message-ID: <51377.207.177.227.29.1144853998.squirrel@sujan.hallikainen.org> > >> >>> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >>>> > >>>> >> You have to reduce your load somehow. Ideally, you should create >>>> an >>>> anonymous FTP download directory and move all of the downloadable >>>> files >>>> to it. The download directory also is used as the home directory for >>>> the anonymous FTP user (user "ftp"). I actually use a completely >>>> separate filesystem entirely for that. The filesystem is mounted so >>>> that only root has write access. >>>> >> Modify your vsftpd.conf file to permit anonymous downloads only and >>>> start up vsftpd. Make sure you also set the "force chroot for >>>> anonymous users" option. Then change your links on your web pages to >>>> use "ftp://"-style links pointed at the anonymous download directory >>>> paths for the downloadable files. >>>> >> FTP is the protocol to use for large file downloads. HTTP just >>>> isn't >>>> efficient for that, as you've now found out (the hard way, I might >>>> add). >>>> > >>>> > as the man said, dont use http for this, >>>> > >>>> > if you must then i suggest that you have a separate partition for >>>> your >>>> large files and make fstab read as such (example) >>>> > >>>> > /dev/web / ext3 defaults,directio 1 >>>> 1 >>>> > >>>> > add the directio comment and the file will not go to ram, nor to >>>> swap. >>>> this will speed up things, but you should hand the downloads over to a >>>> different method (not http). >>>> > >>>> >>>> THANKS! I'll see what I can do about moving stuff to ftp. Most of the >>>> large files are on phpwiki. I suppose I could slowly go through the >>>> pages >>>> and change the download files (mostly scanned pdfs) from http:// to >>>> ftp:// >>>> . Any problem with having the ftp download directory being the same as >>>> the >>>> http root directory? That way I would not have to move anything, just >>>> change the protocol prefix on the links. >>> >>> Well, I would rather not have anonymous FTP sessions chrooting to my >>> web server pages, but that's up to you. Just realize that you may be >>> opening some security holes. Make sure the anonymous FTP user doesn't >>> have ANY form of write access to the files (make sure they're owned by >>> someone other than "ftp" and group "ftp") and make sure the directories >>> are owned by a secure user and have 755 permissions ("rwxr-xr-x"). >>> >>>> Here's another top. It looks like 98.6% of ram is being used, along >>>> with >>>> 100% of the processor. Not much swap space is being used. It kinda >>>> seems >>>> like Apache just tries to use as much RAM and CPU as is available. I >>>> guess >>>> this would be ok if my DSL could send the data out faster (I'm sure >>>> that's >>>> why these threads live so long). But, it doesn't seem like it should >>>> 7% >>>> or >>>> more of the CPU to a byte from the drive to the ethernet. Maybe ftp's >>>> just >>>> more efficient at this? >>> >>> Yes, FTP is much more adept at this. You also have to remember that >>> you have an entire copy of Apache running for each connected user. If >>> you were to do a "vmstat 3", you'll probably see a hell of a lot of >>> context switches going on (the stuff under the "cs" column), and that's >>> where your CPU is going. A context switch occurs when the system >>> switches from executing one program to another. There are conditions >>> where the system spends all its time switching and not doing anything >>> else (we lovingly call this the "scratching the process itch"). >>> >>> As another poster has commented, strip your apache down as much as >>> possible. If you aren't using it, kill off mod_perl (it's a huge >>> resource hog), optimize and precompile your PHP stuff (using zend). But >>> your best thing is FTP. >>> >>> Also note that residential DSL is generally optimized to have a big >>> incoming pipe (for downloads FROM the net TO you) and a much smaller >>> pipe going the other way. And the upload pipe is usually time- >>> multiplexed...you share the upload bandwidth with other users. So, >>> rather than sending a lot of data to a client, you can only send a >>> little bit, then the system switches to another task, sends a tiny bit >>> there, switches to yet another and so on and so on. This is obviously >>> not the best scenario for running an FTP or Wiki site. >>> >>> FTP will help (since it's a lighter process and the protocol is >>> optimized for sending lots of data), but a large part of your problem >>> is >>> likely the DSL connection itself, and I can't help much with that >>> except >>> tell you to see if your DSL provider can give you a symmetrical DSL >>> connection (a.k.a. "business DSL")--and that'll probably cost you more. >>> That's why there are companies that offer co-location, managed servers >>> or web hosting services. They have high speed, bidirectional pipes to >>> the internet and you (usually) don't get bottlenecked at the network >>> pipe, which is what you're experiencing. >>> >>> Sorry I can't help more than that. >>> >> >> >> As usual, you're a tremendous help! It's interesting that this problem >> did >> not appear until last week (when I was out of town). I wonder if maybe >> yum >> did an update on Apache for me and made it take a lot of cpu time. Does >> Apache normally take everything it can get, but, ideally, for a short >> period of time? >> >> Looking at my Apache logs, I see that most of my traffic is from search >> engines. Most of my files are pretty small, but there are a few pdfs >> that >> are large image files. So far I do not have a robots.txt, but am >> thinking >> of adding one to decrease the load due to search engines. I'd like stuff >> to be indexed, but maybe either decrease the frequency of indexing or >> tell >> them to not index the pdfs (which have ocr text in the background). I've >> only spent about 5 minutes looking at info about robots.txt so far, but >> do >> you think that could help? >> >> THANKS! >> >> Harold > > > Following up on my own post, the large pdfs are all in a single directory, > so I've put that in my new robots.txt file. I'll watch top through today > to see if that helps. Again, most of my traffic seems to be search engines > (my content is popular, but not THAT popular), so I don't think there'll > be a problem with real users getting the large files (I just read on one > of my mailing lists of a user downloading a 3M file successfully). At > least that's my hope! We'll see. > > On suggested changes in my httpd.conf, I do have a few perl scripts. If I > take out mod-perl, does Apache just hand it over to perl for processing > instead of doing some (or all) of it itself? The perl scripts that are > called by apache are pretty small and should execute quickly. Same with > the php stuff. I think they may take a lot of resources, but only for a > very short period of time. I think my major problem is those large pdfs > being sucked up by search engines. By stopping those, I hope I'll speed up > stuff for everyone. > > It IS interesting that I've had this stuff up for months and months on > this server and only recently started having problems. We'll see how it > goes. > > I REALLY appreciate all the help on this list! > > Harold > I'm still trying to figure out what changed on this server that is getting overloaded. I had started Webmin and its bandwidth monitoring a little before I first noticed the problem. So I turned that off last night. I've also added robots.txt disallowing the directory where all the large pdfs are and setting crawl-delay to 60, hoping to reduce the load from search engines. I notice, running top, that httpd seems to take all the cpu cycles. If just one instance of httpd is running, it will maybe take 98% of the cpu. If a bunch are running, it seems to divide out so it takes close to 100% total. I see in the Apache documentation that there's a config called RLimitCPU, but it appears to limit the number of CPU seconds, not percentage of cycles. Is there some way to keep httpd from taking over the system, or is, perhaps, this not a problem. THANKS! Harold -- From rstevens at vitalstream.com Wed Apr 12 20:42:43 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 12 Apr 2006 13:42:43 -0700 Subject: more on bogged down server In-Reply-To: <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> Message-ID: <1144874563.20728.131.camel@prophead.corp.publichost.com> On Wed, 2006-04-12 at 13:13 -0700, Harold Hallikainen wrote: > > On Wed, April 12, 2006 12:37 pm, Rick Stevens said: > >> On Tue, 2006-04-11 at 08:20 -0700, Harold Hallikainen wrote: > >>> > > >>> >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: > >>> >>> > > >>> I REALLY appreciate all the help on this list! > > > > Me too. Even when I haven't asked for it and something comes across . . . > > > >> > >> Check with your ISP to see if they changed the polling intervals or > >> any other parameter having to do with your transmission pipe. Sometimes > >> they add a lot of new clients onto your ring, so they shorten your > >> poll time to accommodate the new users. My ISP did that to me on my > >> cable modem and I raised holy hell with them. My poll period was down > >> to 5-10mS! Ridiculous! I told them I wasn't paying $40 a month for > >> farking 9600-baud dialup speeds. > > > > Okay, so how do I tell if that's my problem? My ISP changed our DSL link > > to > > a different piece of hardware and the speed went from 6896 to 640k, the > > Qwest default. They've fixed that, but it still appears that my downloads, > > though much faster, are still not what they were before the move, even > > though the older equipment only allowed me to train at 6896 instead of > > 7168, > > which is what I'm trained at now. > > > > Karl > > > Still learning how all this stuff works (thanks especially to the list). > Communications speeds still seem ok (my DSL is 6M down and something less > up). My server just seems to be bogging down. If communications were slow, > I guess a lot of httpd processes would start to slowly send the data out, > or is there a buffer somewhere that can handle that more efficiently? If > we were I/O bound, it doesn't seem like that'd result in a large cpu load. > > Looking at top, even if there is just one instance of httpd, it will go to > 100% CPU, or very close to that. I'm assuming it's SUPPOSED to do that, > just not for very long. When there are lots of instances of httpd, the > %CPU in top for each drops, but they add up to near 100%, and the total > %cpu is close to 100%. But, I guess that's ok. If the load were exactly > 100%, the load average would show up as 1.00, right? > > Now, it's running about 20. sendmail stopped accepting connections at 12. > As mentioned yesterday, I've added robots.txt and told the search engines > to not search the directory with the huge pdfs (which is where I'm > thinking most of the traffic is coming from). I've also put the > crawl-delay in robots.txt at 60 seconds to avoid those once a second > requests. But, stuff is still piling up (they may not have read robots.txt > yet). > > I'm running version 2.0.something of httpd that ships with FC4. I see > there's now version 2.2 available. It's supposed to handle large files > better, among other things. I guess I'll give that a try. Others have > suggested more config file changes (getting rid of mod-perl, etc.) to make > httpd more efficient. > > I'll keep working on it. Meanwhile, off to restart httpd so I can get mail > again... Have you done the "vmstat 3" thing yet to see if you have context switching going nuts? ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If Windows isn't a virus, then it sure as hell is a carrier! - ---------------------------------------------------------------------- From harold at hallikainen.com Wed Apr 12 20:55:06 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Wed, 12 Apr 2006 13:55:06 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <1144874563.20728.131.camel@prophead.corp.publichost.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> <1144874563.20728.131.camel@prophead.corp.publichost.com> Message-ID: <54326.207.177.227.29.1144875306.squirrel@sujan.hallikainen.org> > On Wed, 2006-04-12 at 13:13 -0700, Harold Hallikainen wrote: >> > On Wed, April 12, 2006 12:37 pm, Rick Stevens said: >> >> On Tue, 2006-04-11 at 08:20 -0700, Harold Hallikainen wrote: >> >>> > >> >>> >> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: >> >>> >>> > >> >>> I REALLY appreciate all the help on this list! >> > >> > Me too. Even when I haven't asked for it and something comes across . >> . . >> > >> >> >> >> Check with your ISP to see if they changed the polling intervals or >> >> any other parameter having to do with your transmission pipe. >> Sometimes >> >> they add a lot of new clients onto your ring, so they shorten your >> >> poll time to accommodate the new users. My ISP did that to me on my >> >> cable modem and I raised holy hell with them. My poll period was >> down >> >> to 5-10mS! Ridiculous! I told them I wasn't paying $40 a month for >> >> farking 9600-baud dialup speeds. >> > >> > Okay, so how do I tell if that's my problem? My ISP changed our DSL >> link >> > to >> > a different piece of hardware and the speed went from 6896 to 640k, >> the >> > Qwest default. They've fixed that, but it still appears that my >> downloads, >> > though much faster, are still not what they were before the move, even >> > though the older equipment only allowed me to train at 6896 instead of >> > 7168, >> > which is what I'm trained at now. >> > >> > Karl >> >> >> Still learning how all this stuff works (thanks especially to the list). >> Communications speeds still seem ok (my DSL is 6M down and something >> less >> up). My server just seems to be bogging down. If communications were >> slow, >> I guess a lot of httpd processes would start to slowly send the data >> out, >> or is there a buffer somewhere that can handle that more efficiently? If >> we were I/O bound, it doesn't seem like that'd result in a large cpu >> load. >> >> Looking at top, even if there is just one instance of httpd, it will go >> to >> 100% CPU, or very close to that. I'm assuming it's SUPPOSED to do that, >> just not for very long. When there are lots of instances of httpd, the >> %CPU in top for each drops, but they add up to near 100%, and the total >> %cpu is close to 100%. But, I guess that's ok. If the load were exactly >> 100%, the load average would show up as 1.00, right? >> >> Now, it's running about 20. sendmail stopped accepting connections at >> 12. >> As mentioned yesterday, I've added robots.txt and told the search >> engines >> to not search the directory with the huge pdfs (which is where I'm >> thinking most of the traffic is coming from). I've also put the >> crawl-delay in robots.txt at 60 seconds to avoid those once a second >> requests. But, stuff is still piling up (they may not have read >> robots.txt >> yet). >> >> I'm running version 2.0.something of httpd that ships with FC4. I see >> there's now version 2.2 available. It's supposed to handle large files >> better, among other things. I guess I'll give that a try. Others have >> suggested more config file changes (getting rid of mod-perl, etc.) to >> make >> httpd more efficient. >> >> I'll keep working on it. Meanwhile, off to restart httpd so I can get >> mail >> again... > > Have you done the "vmstat 3" thing yet to see if you have context > switching going nuts? > I guess I have to read about vmstat 3. I dunno what it means, but here's some output: vmstat 3 procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu---- r b swpd free buff cache si so bi bo in cs us sy id wa 8 0 25068 159440 15576 456728 0 2 188 52 378 95 94 1 5 0 9 0 25068 159320 15576 456856 0 0 43 0 358 73 100 0 0 0 8 0 25068 159200 15584 456984 0 0 43 25 350 74 100 0 0 0 8 0 25068 159080 15584 457112 0 0 43 0 348 74 100 0 0 0 8 0 25068 159020 15588 457196 0 0 28 17 356 72 100 0 0 0 8 0 25068 159020 15592 457196 0 0 0 17 352 66 100 0 0 0 8 0 25068 159020 15592 457196 0 0 0 0 354 72 100 0 0 0 8 0 25068 159020 15600 457196 0 0 0 19 350 73 100 0 0 0 8 0 25068 159020 15608 457196 0 0 0 31 355 76 100 0 0 0 8 0 25068 159020 15608 457196 0 0 0 0 350 72 100 0 0 0 8 0 25068 159020 15616 457196 0 0 0 31 354 73 100 0 0 0 procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu---- r b swpd free buff cache si so bi bo in cs us sy id wa 9 0 25068 159020 15616 457196 0 0 0 0 353 71 100 0 0 0 8 0 25068 159020 15624 457196 0 0 0 27 352 77 100 0 0 0 8 0 25068 159020 15624 457196 0 0 0 28 359 77 100 0 0 0 8 0 25068 159020 15632 457196 0 0 0 17 349 76 100 0 0 0 9 0 25068 150320 15640 457300 0 0 35 17 361 90 96 4 0 0 9 1 25068 137820 15748 458000 0 0 269 0 419 206 87 13 0 0 10 0 25068 129764 15928 461872 0 0 1348 211 629 630 93 7 0 0 10 0 25068 128296 15932 462000 0 0 43 55 355 77 99 1 0 0 10 0 25068 127876 15932 462128 0 0 43 0 350 72 99 1 0 0 10 0 25068 127632 15936 462252 0 0 41 39 353 73 100 0 0 0 10 0 25068 127508 15936 462252 0 0 0 0 355 66 100 0 0 0 procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu---- r b swpd free buff cache si so bi bo in cs us sy id wa 11 0 25068 126336 15956 462476 0 0 79 23 350 77 100 0 0 0 10 0 25068 126032 15960 462604 0 0 43 27 356 77 100 0 0 0 10 0 25068 125912 15960 462732 0 0 43 0 351 74 100 0 0 0 10 0 25068 125792 15964 462860 0 0 43 24 351 74 100 0 0 0 10 0 25068 125672 15964 462988 0 0 43 217 365 82 100 0 0 0 10 0 25068 125552 15972 463116 0 0 43 20 353 78 100 0 0 0 10 0 25068 125296 15988 463128 0 0 7 36 385 82 100 0 0 0 10 0 25068 125060 15988 463256 0 0 43 0 354 71 99 1 0 0 10 0 25068 124632 15996 463384 0 0 43 39 349 73 99 1 0 0 10 0 25068 124264 15996 463512 0 0 43 0 355 73 100 0 0 0 10 0 25068 124204 16004 463584 0 0 24 28 350 76 100 0 0 0 procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu---- r b swpd free buff cache si so bi bo in cs us sy id wa 11 0 25068 123960 16012 463712 0 0 43 21 356 76 100 0 0 0 10 0 25068 123720 16016 463936 0 0 76 0 353 75 100 0 0 0 10 0 25068 123360 16020 464320 0 0 128 21 350 72 100 0 0 0 10 0 25068 123120 16020 464576 0 0 85 0 357 76 100 0 0 0 10 0 25068 122812 16044 464832 0 0 92 21 366 79 100 0 0 0 10 0 25068 122568 16052 464960 0 0 43 73 362 82 100 0 0 0 10 0 25068 122336 16052 465216 0 0 85 0 356 70 100 0 0 0 10 0 25068 122216 16060 465344 0 0 43 32 349 74 100 0 0 0 12 0 25068 122156 16060 465420 0 0 25 0 357 72 100 0 0 0 I restarted httpd about an hour ago. top now reports a load average of 10.06 9.06 8.16 Thanks! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From tpotter at techmarin.com Wed Apr 12 21:03:48 2006 From: tpotter at techmarin.com (Ted Potter) Date: Wed, 12 Apr 2006 14:03:48 -0700 Subject: more on bogged down server In-Reply-To: <51377.207.177.227.29.1144853998.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <51377.207.177.227.29.1144853998.squirrel@sujan.hallikainen.org> Message-ID: <5ce05200604121403o1cc0cch97b8c198b0053d16@mail.gmail.com> On 4/12/06, Harold Hallikainen wrote: > > > > >> > >>> On Mon, 2006-04-10 at 15:53 -0700, Harold Hallikainen wrote: > >>>> > > >>>> >> You have to reduce your load somehow. Ideally, you should create > >>>> an > >>>> anonymous FTP download directory and move all of the downloadable > >>>> files > >>>> to it. The download directory also is used as the home directory for > >>>> the anonymous FTP user (user "ftp"). I actually use a completely > >>>> separate filesystem entirely for that. The filesystem is mounted so > >>>> that only root has write access. > >>>> >> Modify your vsftpd.conf file to permit anonymous downloads only and > >>>> start up vsftpd. Make sure you also set the "force chroot for > >>>> anonymous users" option. Then change your links on your web pages to > >>>> use "ftp://"-style links pointed at the anonymous download directory > >>>> paths for the downloadable files. > >>>> >> FTP is the protocol to use for large file downloads. HTTP just > >>>> isn't > >>>> efficient for that, as you've now found out (the hard way, I might > >>>> add). > >>>> > > >>>> > as the man said, dont use http for this, > >>>> > > >>>> > if you must then i suggest that you have a separate partition for > >>>> your > >>>> large files and make fstab read as such (example) > >>>> > > >>>> > /dev/web / ext3 defaults,directio 1 > >>>> 1 > >>>> > > >>>> > add the directio comment and the file will not go to ram, nor to > >>>> swap. > >>>> this will speed up things, but you should hand the downloads over to a > >>>> different method (not http). > >>>> > > >>>> > >>>> THANKS! I'll see what I can do about moving stuff to ftp. Most of the > >>>> large files are on phpwiki. I suppose I could slowly go through the > >>>> pages > >>>> and change the download files (mostly scanned pdfs) from http:// to > >>>> ftp:// > >>>> . Any problem with having the ftp download directory being the same as > >>>> the > >>>> http root directory? That way I would not have to move anything, just > >>>> change the protocol prefix on the links. > >>> > >>> Well, I would rather not have anonymous FTP sessions chrooting to my > >>> web server pages, but that's up to you. Just realize that you may be > >>> opening some security holes. Make sure the anonymous FTP user doesn't > >>> have ANY form of write access to the files (make sure they're owned by > >>> someone other than "ftp" and group "ftp") and make sure the directories > >>> are owned by a secure user and have 755 permissions ("rwxr-xr-x"). > >>> > >>>> Here's another top. It looks like 98.6% of ram is being used, along > >>>> with > >>>> 100% of the processor. Not much swap space is being used. It kinda > >>>> seems > >>>> like Apache just tries to use as much RAM and CPU as is available. I > >>>> guess > >>>> this would be ok if my DSL could send the data out faster (I'm sure > >>>> that's > >>>> why these threads live so long). But, it doesn't seem like it should > >>>> 7% > >>>> or > >>>> more of the CPU to a byte from the drive to the ethernet. Maybe ftp's > >>>> just > >>>> more efficient at this? > >>> > >>> Yes, FTP is much more adept at this. You also have to remember that > >>> you have an entire copy of Apache running for each connected user. If > >>> you were to do a "vmstat 3", you'll probably see a hell of a lot of > >>> context switches going on (the stuff under the "cs" column), and that's > >>> where your CPU is going. A context switch occurs when the system > >>> switches from executing one program to another. There are conditions > >>> where the system spends all its time switching and not doing anything > >>> else (we lovingly call this the "scratching the process itch"). > >>> > >>> As another poster has commented, strip your apache down as much as > >>> possible. If you aren't using it, kill off mod_perl (it's a huge > >>> resource hog), optimize and precompile your PHP stuff (using zend). But > >>> your best thing is FTP. > >>> > >>> Also note that residential DSL is generally optimized to have a big > >>> incoming pipe (for downloads FROM the net TO you) and a much smaller > >>> pipe going the other way. And the upload pipe is usually time- > >>> multiplexed...you share the upload bandwidth with other users. So, > >>> rather than sending a lot of data to a client, you can only send a > >>> little bit, then the system switches to another task, sends a tiny bit > >>> there, switches to yet another and so on and so on. This is obviously > >>> not the best scenario for running an FTP or Wiki site. > >>> > >>> FTP will help (since it's a lighter process and the protocol is > >>> optimized for sending lots of data), but a large part of your problem > >>> is > >>> likely the DSL connection itself, and I can't help much with that > >>> except > >>> tell you to see if your DSL provider can give you a symmetrical DSL > >>> connection (a.k.a. "business DSL")--and that'll probably cost you more. > >>> That's why there are companies that offer co-location, managed servers > >>> or web hosting services. They have high speed, bidirectional pipes to > >>> the internet and you (usually) don't get bottlenecked at the network > >>> pipe, which is what you're experiencing. > >>> > >>> Sorry I can't help more than that. > >>> > >> > >> > >> As usual, you're a tremendous help! It's interesting that this problem > >> did > >> not appear until last week (when I was out of town). I wonder if maybe > >> yum > >> did an update on Apache for me and made it take a lot of cpu time. Does > >> Apache normally take everything it can get, but, ideally, for a short > >> period of time? > >> > >> Looking at my Apache logs, I see that most of my traffic is from search > >> engines. Most of my files are pretty small, but there are a few pdfs > >> that > >> are large image files. So far I do not have a robots.txt, but am > >> thinking > >> of adding one to decrease the load due to search engines. I'd like stuff > >> to be indexed, but maybe either decrease the frequency of indexing or > >> tell > >> them to not index the pdfs (which have ocr text in the background). I've > >> only spent about 5 minutes looking at info about robots.txt so far, but > >> do > >> you think that could help? > >> > >> THANKS! > >> > >> Harold > > > > > > Following up on my own post, the large pdfs are all in a single directory, > > so I've put that in my new robots.txt file. I'll watch top through today > > to see if that helps. Again, most of my traffic seems to be search engines > > (my content is popular, but not THAT popular), so I don't think there'll > > be a problem with real users getting the large files (I just read on one > > of my mailing lists of a user downloading a 3M file successfully). At > > least that's my hope! We'll see. > > > > On suggested changes in my httpd.conf, I do have a few perl scripts. If I > > take out mod-perl, does Apache just hand it over to perl for processing > > instead of doing some (or all) of it itself? The perl scripts that are > > called by apache are pretty small and should execute quickly. Same with > > the php stuff. I think they may take a lot of resources, but only for a > > very short period of time. I think my major problem is those large pdfs > > being sucked up by search engines. By stopping those, I hope I'll speed up > > stuff for everyone. > > > > It IS interesting that I've had this stuff up for months and months on > > this server and only recently started having problems. We'll see how it > > goes. > > > > I REALLY appreciate all the help on this list! > > > > Harold > > > > > I'm still trying to figure out what changed on this server that is getting > overloaded. I had started Webmin and its bandwidth monitoring a little > before I first noticed the problem. So I turned that off last night. I've > also added robots.txt disallowing the directory where all the large pdfs > are and setting crawl-delay to 60, hoping to reduce the load from search > engines. I notice, running top, that httpd seems to take all the cpu > cycles. If just one instance of httpd is running, it will maybe take 98% > of the cpu. If a bunch are running, it seems to divide out so it takes > close to 100% total. I see in the Apache documentation that there's a > config called RLimitCPU, but it appears to limit the number of CPU > seconds, not percentage of cycles. Is there some way to keep httpd from > taking over the system, or is, perhaps, this not a problem. > > THANKS! > > Harold Since I know very little about this I will open my mouth. If I understand correctly your server was working fine at one point and then "suddenly" broke Can you try to simulate the problem from the lan side ? that is take it off the WAN (internet) and "attack" your server from the lan clients in order to watch the server respond. I thought apache would only spawn a new server process if it ran out of muscle from the current request and there is a config limit you can set - I am guessing here. Another (not so fun) idea - turn off EVERYTHING but the apache server and see how the box does then. Silly idea but - check your hardware - is memory broken ? HD got a bad sector and is spinning away mindlessly ? network connection OK at the proper speed duplex etc..... disk space OK ? I vote for the lan tests myself, you can exercise control over the bandwidth. a few months back I suddenly could not call up certain sites - drove myself nuts until I went it and re-configure the router - there appeared to be nothing wrong with the router and even the bandwidth speed tests were fine - but once I did the reconfigure the problem went away - go figure. hth > > -- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- Ted Potter tpotter at techmarin.com From rstevens at vitalstream.com Thu Apr 13 00:40:22 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 12 Apr 2006 17:40:22 -0700 Subject: more on bogged down server In-Reply-To: <54326.207.177.227.29.1144875306.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> <1144874563.20728.131.camel@prophead.corp.publichost.com> <54326.207.177.227.29.1144875306.squirrel@sujan.hallikainen.org> Message-ID: <1144888822.20728.141.camel@prophead.corp.publichost.com> On Wed, 2006-04-12 at 13:55 -0700, Harold Hallikainen wrote: > > > > Have you done the "vmstat 3" thing yet to see if you have context > > switching going nuts? > > > > I guess I have to read about vmstat 3. I dunno what it means, but here's > some output: > > vmstat 3 > procs -----------memory---------- ---swap-- -----io---- --system-- > ----cpu---- > r b swpd free buff cache si so bi bo in cs us sy > id wa > 8 0 25068 159440 15576 456728 0 2 188 52 378 95 94 1 > 5 0 > 9 0 25068 159320 15576 456856 0 0 43 0 358 73 100 0 > 0 0 > 8 0 25068 159200 15584 456984 0 0 43 25 350 74 100 0 > 0 0 > 8 0 25068 159080 15584 457112 0 0 43 0 348 74 100 0 > 0 0 > 8 0 25068 159020 15588 457196 0 0 28 17 356 72 100 0 > 0 0 > 8 0 25068 159020 15592 457196 0 0 0 17 352 66 100 0 > 0 0 > 8 0 25068 159020 15592 457196 0 0 0 0 354 72 100 0 > 0 0 > 8 0 25068 159020 15600 457196 0 0 0 19 350 73 100 0 > 0 0 > 8 0 25068 159020 15608 457196 0 0 0 31 355 76 100 0 > 0 0 > 8 0 25068 159020 15608 457196 0 0 0 0 350 72 100 0 > 0 0 > 8 0 25068 159020 15616 457196 0 0 0 31 354 73 100 0 > 0 0 > procs -----------memory---------- ---swap-- -----io---- --system-- > ----cpu---- > r b swpd free buff cache si so bi bo in cs us sy > id wa > 9 0 25068 159020 15616 457196 0 0 0 0 353 71 100 0 > 0 0 > 8 0 25068 159020 15624 457196 0 0 0 27 352 77 100 0 > 0 0 > 8 0 25068 159020 15624 457196 0 0 0 28 359 77 100 0 > 0 0 > 8 0 25068 159020 15632 457196 0 0 0 17 349 76 100 0 > 0 0 > 9 0 25068 150320 15640 457300 0 0 35 17 361 90 96 4 > 0 0 > 9 1 25068 137820 15748 458000 0 0 269 0 419 206 87 13 > 0 0 > 10 0 25068 129764 15928 461872 0 0 1348 211 629 630 93 7 > 0 0 > 10 0 25068 128296 15932 462000 0 0 43 55 355 77 99 1 > 0 0 > 10 0 25068 127876 15932 462128 0 0 43 0 350 72 99 1 > 0 0 > 10 0 25068 127632 15936 462252 0 0 41 39 353 73 100 0 > 0 0 > 10 0 25068 127508 15936 462252 0 0 0 0 355 66 100 0 > 0 0 > procs -----------memory---------- ---swap-- -----io---- --system-- > ----cpu---- > r b swpd free buff cache si so bi bo in cs us sy > id wa > 11 0 25068 126336 15956 462476 0 0 79 23 350 77 100 0 > 0 0 > 10 0 25068 126032 15960 462604 0 0 43 27 356 77 100 0 > 0 0 > 10 0 25068 125912 15960 462732 0 0 43 0 351 74 100 0 > 0 0 > 10 0 25068 125792 15964 462860 0 0 43 24 351 74 100 0 > 0 0 > 10 0 25068 125672 15964 462988 0 0 43 217 365 82 100 0 > 0 0 > 10 0 25068 125552 15972 463116 0 0 43 20 353 78 100 0 > 0 0 > 10 0 25068 125296 15988 463128 0 0 7 36 385 82 100 0 > 0 0 > 10 0 25068 125060 15988 463256 0 0 43 0 354 71 99 1 > 0 0 > 10 0 25068 124632 15996 463384 0 0 43 39 349 73 99 1 > 0 0 > 10 0 25068 124264 15996 463512 0 0 43 0 355 73 100 0 > 0 0 > 10 0 25068 124204 16004 463584 0 0 24 28 350 76 100 0 > 0 0 > procs -----------memory---------- ---swap-- -----io---- --system-- > ----cpu---- > r b swpd free buff cache si so bi bo in cs us sy > id wa > 11 0 25068 123960 16012 463712 0 0 43 21 356 76 100 0 > 0 0 > 10 0 25068 123720 16016 463936 0 0 76 0 353 75 100 0 > 0 0 > 10 0 25068 123360 16020 464320 0 0 128 21 350 72 100 0 > 0 0 > 10 0 25068 123120 16020 464576 0 0 85 0 357 76 100 0 > 0 0 > 10 0 25068 122812 16044 464832 0 0 92 21 366 79 100 0 > 0 0 > 10 0 25068 122568 16052 464960 0 0 43 73 362 82 100 0 > 0 0 > 10 0 25068 122336 16052 465216 0 0 85 0 356 70 100 0 > 0 0 > 10 0 25068 122216 16060 465344 0 0 43 32 349 74 100 0 > 0 0 > 12 0 25068 122156 16060 465420 0 0 25 0 357 72 100 0 > 0 0 > > > I restarted httpd about an hour ago. top now reports a load average of > 10.06 9.06 8.16 Hmmm. Well, you're not going nutsy with the context switches (that's the "cs" column). You aren't swapping ("si" and "so"). You also aren't bogged down in disk I/O ("bi" and "bo") and you're not getting swamped with interrupts ("in"). To be truthful, I'd expect more interrupt activity because of network I/O so you may still be throttled back by your ISP. I can't be sure. You are spending a ridiculous amount of time in userspace, so that's an indicator that SOMETHING changed in your web config. I'd go look at the yum logs and see if something you use in your site (mod_perl, perl, PHP, etc.) got updated and consequently broke. You might even try an strace of a couple of the web processes to see what the hell they're doing. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - To understand recursion, you must first understand recursion. - ---------------------------------------------------------------------- From mnair at iusb.edu Thu Apr 13 13:49:24 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Thu, 13 Apr 2006 09:49:24 -0400 Subject: Storage space partition Message-ID: I have just completed the installation of Linux and configured the storage array as RAID5. The total capacity of the storage is about 600Gb. I am trying to decide on the factors that I should consider when partitioning it. I only have one server that is connect to my SAN. The main fact that I am trying to debate is what if the partition that I am using to store my sql data runs out of space, will storing part of my data on another partition decrease the performance? In which case is it better to just leave it as one large partition? I would appreciate you any comments or suggestions.. Thanks ../Murli -------------- next part -------------- An HTML attachment was scrubbed... URL: From bob at bobcatos.com Thu Apr 13 14:01:29 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Thu, 13 Apr 2006 09:01:29 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060413140129.GA10106@bobcat.bobcatos.com> On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > I have just completed the installation of Linux and configured the > storage array as RAID5. The total capacity of the storage is about > 600Gb. I am trying to decide on the factors that I should consider when > partitioning it. I only have one server that is connect to my SAN. The > main fact that I am trying to debate is what if the partition that I am > using to store my sql data runs out of space, will storing part of my > data on another partition decrease the performance? In which case is it > better to just leave it as one large partition? I would appreciate you > any comments or suggestions.. > > Thanks ../Murli Make one partition on the SAN, then make it a physical volume for LVM. Then divide it up into logical volumes. Logical volumes are easily resized. It also has a snapshot capability which helps for backups. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From harold at hallikainen.com Thu Apr 13 14:39:08 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Thu, 13 Apr 2006 07:39:08 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <1144888822.20728.141.camel@prophead.corp.publichost.com> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> <1144874563.20728.131.camel@prophead.corp.publichost.com> <54326.207.177.227.29.1144875306.squirrel@sujan.hallikainen.org> <1144888822.20728.141.camel@prophead.corp.publichost.com> Message-ID: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> > On Wed, 2006-04-12 at 13:55 -0700, Harold Hallikainen wrote: > > >> > >> > Have you done the "vmstat 3" thing yet to see if you have context >> > switching going nuts? >> > >> >> I guess I have to read about vmstat 3. I dunno what it means, but here's >> some output: >> >> vmstat 3 >> procs -----------memory---------- ---swap-- -----io---- --system-- >> ----cpu---- >> r b swpd free buff cache si so bi bo in cs us sy >> id wa >> 8 0 25068 159440 15576 456728 0 2 188 52 378 95 94 1 >> 5 0 >> 9 0 25068 159320 15576 456856 0 0 43 0 358 73 100 >> 0 >> 0 0 >> 8 0 25068 159200 15584 456984 0 0 43 25 350 74 100 >> 0 >> 0 0 >> 8 0 25068 159080 15584 457112 0 0 43 0 348 74 100 >> 0 >> 0 0 >> 8 0 25068 159020 15588 457196 0 0 28 17 356 72 100 >> 0 >> 0 0 >> 8 0 25068 159020 15592 457196 0 0 0 17 352 66 100 >> 0 >> 0 0 >> 8 0 25068 159020 15592 457196 0 0 0 0 354 72 100 >> 0 >> 0 0 >> 8 0 25068 159020 15600 457196 0 0 0 19 350 73 100 >> 0 >> 0 0 >> 8 0 25068 159020 15608 457196 0 0 0 31 355 76 100 >> 0 >> 0 0 >> 8 0 25068 159020 15608 457196 0 0 0 0 350 72 100 >> 0 >> 0 0 >> 8 0 25068 159020 15616 457196 0 0 0 31 354 73 100 >> 0 >> 0 0 >> procs -----------memory---------- ---swap-- -----io---- --system-- >> ----cpu---- >> r b swpd free buff cache si so bi bo in cs us sy >> id wa >> 9 0 25068 159020 15616 457196 0 0 0 0 353 71 100 >> 0 >> 0 0 >> 8 0 25068 159020 15624 457196 0 0 0 27 352 77 100 >> 0 >> 0 0 >> 8 0 25068 159020 15624 457196 0 0 0 28 359 77 100 >> 0 >> 0 0 >> 8 0 25068 159020 15632 457196 0 0 0 17 349 76 100 >> 0 >> 0 0 >> 9 0 25068 150320 15640 457300 0 0 35 17 361 90 96 4 >> 0 0 >> 9 1 25068 137820 15748 458000 0 0 269 0 419 206 87 13 >> 0 0 >> 10 0 25068 129764 15928 461872 0 0 1348 211 629 630 93 7 >> 0 0 >> 10 0 25068 128296 15932 462000 0 0 43 55 355 77 99 1 >> 0 0 >> 10 0 25068 127876 15932 462128 0 0 43 0 350 72 99 1 >> 0 0 >> 10 0 25068 127632 15936 462252 0 0 41 39 353 73 100 >> 0 >> 0 0 >> 10 0 25068 127508 15936 462252 0 0 0 0 355 66 100 >> 0 >> 0 0 >> procs -----------memory---------- ---swap-- -----io---- --system-- >> ----cpu---- >> r b swpd free buff cache si so bi bo in cs us sy >> id wa >> 11 0 25068 126336 15956 462476 0 0 79 23 350 77 100 >> 0 >> 0 0 >> 10 0 25068 126032 15960 462604 0 0 43 27 356 77 100 >> 0 >> 0 0 >> 10 0 25068 125912 15960 462732 0 0 43 0 351 74 100 >> 0 >> 0 0 >> 10 0 25068 125792 15964 462860 0 0 43 24 351 74 100 >> 0 >> 0 0 >> 10 0 25068 125672 15964 462988 0 0 43 217 365 82 100 >> 0 >> 0 0 >> 10 0 25068 125552 15972 463116 0 0 43 20 353 78 100 >> 0 >> 0 0 >> 10 0 25068 125296 15988 463128 0 0 7 36 385 82 100 >> 0 >> 0 0 >> 10 0 25068 125060 15988 463256 0 0 43 0 354 71 99 1 >> 0 0 >> 10 0 25068 124632 15996 463384 0 0 43 39 349 73 99 1 >> 0 0 >> 10 0 25068 124264 15996 463512 0 0 43 0 355 73 100 >> 0 >> 0 0 >> 10 0 25068 124204 16004 463584 0 0 24 28 350 76 100 >> 0 >> 0 0 >> procs -----------memory---------- ---swap-- -----io---- --system-- >> ----cpu---- >> r b swpd free buff cache si so bi bo in cs us sy >> id wa >> 11 0 25068 123960 16012 463712 0 0 43 21 356 76 100 >> 0 >> 0 0 >> 10 0 25068 123720 16016 463936 0 0 76 0 353 75 100 >> 0 >> 0 0 >> 10 0 25068 123360 16020 464320 0 0 128 21 350 72 100 >> 0 >> 0 0 >> 10 0 25068 123120 16020 464576 0 0 85 0 357 76 100 >> 0 >> 0 0 >> 10 0 25068 122812 16044 464832 0 0 92 21 366 79 100 >> 0 >> 0 0 >> 10 0 25068 122568 16052 464960 0 0 43 73 362 82 100 >> 0 >> 0 0 >> 10 0 25068 122336 16052 465216 0 0 85 0 356 70 100 >> 0 >> 0 0 >> 10 0 25068 122216 16060 465344 0 0 43 32 349 74 100 >> 0 >> 0 0 >> 12 0 25068 122156 16060 465420 0 0 25 0 357 72 100 >> 0 >> 0 0 >> >> >> I restarted httpd about an hour ago. top now reports a load average of >> 10.06 9.06 8.16 > > Hmmm. Well, you're not going nutsy with the context switches (that's > the "cs" column). You aren't swapping ("si" and "so"). You also aren't > bogged down in disk I/O ("bi" and "bo") and you're not getting swamped > with interrupts ("in"). To be truthful, I'd expect more interrupt > activity because of network I/O so you may still be throttled back by > your ISP. I can't be sure. > > You are spending a ridiculous amount of time in userspace, so that's an > indicator that SOMETHING changed in your web config. I'd go look at the > yum logs and see if something you use in your site (mod_perl, perl, PHP, > etc.) got updated and consequently broke. You might even try an strace > of a couple of the web processes to see what the hell they're doing. > strace sounds interesting. I'll have to read up on it. Meanwhile, is there some way to take a pid out of top and see what url(s) httpd is working on? Prior to making the trip to Arkansas when this problem first appeared, I DID do an update to gallery, the photo gallery program. Looking at httpd logs, I see search engines calling the slideshow, which is pretty processor intensive. So, I've added gallery to my disallow list in robots.txt . Also, looking through gallery config last night, I found there's an option that improves cpu usage by about 90% by only updating dynamic pages every 15 minutes instead of recreating them on the fly. I'll see how these two changes help. It's also been suggested that I mess with this on the LAN, removing WAN requests. I'll try that out this weekend to see if I can duplicate the cpu loading with some known url request. THANKS to all! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From mnair at iusb.edu Thu Apr 13 15:06:35 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Thu, 13 Apr 2006 11:06:35 -0400 Subject: Storage space partition Message-ID: The way I have it now is one virtual disk of size 652GB. Is this equivalent to what you call LVM ? When logical volumes are resized, I presume it does not affect the already existing data in the volume being resized? Can you point to a source where I can read a little more about this? I am doing this for the first time. Thanks for your comments... Cheers ../Murli -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Thursday, April 13, 2006 10:01 AM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > I have just completed the installation of Linux and configured the > storage array as RAID5. The total capacity of the storage is about > 600Gb. I am trying to decide on the factors that I should consider when > partitioning it. I only have one server that is connect to my SAN. The > main fact that I am trying to debate is what if the partition that I am > using to store my sql data runs out of space, will storing part of my > data on another partition decrease the performance? In which case is it > better to just leave it as one large partition? I would appreciate you > any comments or suggestions.. > > Thanks ../Murli Make one partition on the SAN, then make it a physical volume for LVM. Then divide it up into logical volumes. Logical volumes are easily resized. It also has a snapshot capability which helps for backups. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe From mhammerton at gmail.com Thu Apr 13 15:23:50 2006 From: mhammerton at gmail.com (Mark Hammerton) Date: Thu, 13 Apr 2006 11:23:50 -0400 Subject: installing red hat from one cd Message-ID: <310b80f10604130823g7082e984x527ddcca850c719a@mail.gmail.com> i am trying to fit the redhat es 4 amd64 on to one bootable i reduced the size of the mounted all cds and cp them over with cp -a /media/cdrom/* /RHEL/CD1 and so forth for all five cds. i then copied over all of the RPMS into the the /RHEL/CD1/Redhat/RPMS/ folder and reduced the size, finally it is small enough to fit on one cd and it fits my needs for a minimal install. however when i try to boot the cd it boots asks for language, and so forth then it asks for installation media i press cdrom but it just says the cd is not a red hat cd and i cant continue. it says red hat enterprise linux at the top of the screen. this is the command i used to create the image i burnt to cd i used cd /RHEL/CD1 then mkisofs -o file.iso -b isolinux/isolinux.bin -c isolinux/boot.cat -no-emul-boot -boot-load-size 4 -boot-info-table -R -J -v -T /RHEL/CD1 is there anything i am missing on the single cd or in the way i make the iso -------------- next part -------------- An HTML attachment was scrubbed... URL: From bob at bobcatos.com Thu Apr 13 15:34:06 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Thu, 13 Apr 2006 10:34:06 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060413153406.GA13363@bobcat.bobcatos.com> If you please, we prefer bottom posting. See http://en.wikipedia.org/wiki/Top-posting I'll reorder this. On Thu, Apr 13, 2006 at 11:06:35AM -0400, Nair, Murlidharan T wrote: > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Thursday, April 13, 2006 10:01 AM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > > I have just completed the installation of Linux and configured the > > storage array as RAID5. The total capacity of the storage is about > > 600Gb. I am trying to decide on the factors that I should consider > when > > partitioning it. I only have one server that is connect to my SAN. > The > > main fact that I am trying to debate is what if the partition that I > am > > using to store my sql data runs out of space, will storing part of my > > data on another partition decrease the performance? In which case is > it > > better to just leave it as one large partition? I would appreciate > you > > any comments or suggestions.. > > > > Thanks ../Murli > > Make one partition on the SAN, then make it a physical volume for > LVM. Then divide it up into logical volumes. Logical volumes are > easily resized. It also has a snapshot capability which helps for > backups. > > Cheers, > -- > Bob McClure, Jr. > _______________________________________________ > > The way I have it now is one virtual disk of size 652GB. Is this > equivalent to what you call LVM ? No. Your "virtual disk" is the way your SAN presents a "physical disk" to the world. Establish one partition on that. (You don't really have to do that when using LVM, but this extends to the more general case.) Then establish LVM on that. > When logical volumes are resized, I > presume it does not affect the already existing data in the volume being > resized? As long as you are making it bigger, no. After you have resized the LV, you will still need to resize the filesystem with (assuming ext2/3 fs) resize2fs. If making it smaller, resize the filesystem first, then reduce the size of the LV. Back up your data in case you make a mistake. "man resize2fs" and "man lvresize" for more info. Can you point to a source where I can read a little more about > this? I am doing this for the first time. http://en.tldp.org/HOWTO/LVM-HOWTO/index.html > Thanks for your comments... > Cheers ../Murli Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From rstevens at vitalstream.com Thu Apr 13 17:32:47 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 13 Apr 2006 10:32:47 -0700 Subject: more on bogged down server In-Reply-To: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> References: <42708.207.177.227.29.1144695317.squirrel@sujan.hallikainen.org> <1144703129.20728.33.camel@prophead.corp.publichost.com> <443AD268.4030704@gmail.com> <44765.207.177.227.29.1144709592.squirrel@sujan.hallikainen.org> <1144743786.20728.81.camel@prophead.corp.publichost.com> <40262.192.168.1.1.1144759880.squirrel@sujan.hallikainen.org> <46259.207.177.227.29.1144768857.squirrel@sujan.hallikainen.org> <1144867056.20728.129.camel@prophead.corp.publichost.com> <43394.207.173.117.242.1144871052.squirrel@ourldsfamily.com> <54071.207.177.227.29.1144872813.squirrel@sujan.hallikainen.org> <1144874563.20728.131.camel@prophead.corp.publichost.com> <54326.207.177.227.29.1144875306.squirrel@sujan.hallikainen.org> <1144888822.20728.141.camel@prophead.corp.publichost.com> <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> Message-ID: <1144949567.20728.153.camel@prophead.corp.publichost.com> On Thu, 2006-04-13 at 07:39 -0700, Harold Hallikainen wrote: > > On Wed, 2006-04-12 at 13:55 -0700, Harold Hallikainen wrote: > > > > > >> > > >> > Have you done the "vmstat 3" thing yet to see if you have context > >> > switching going nuts? > >> > > >> > >> I guess I have to read about vmstat 3. I dunno what it means, but here's > >> some output: > >> > >> vmstat 3 > >> procs -----------memory---------- ---swap-- -----io---- --system-- > >> ----cpu---- > >> r b swpd free buff cache si so bi bo in cs us sy > >> id wa > >> 8 0 25068 159440 15576 456728 0 2 188 52 378 95 94 1 > >> 5 0 > >> 9 0 25068 159320 15576 456856 0 0 43 0 358 73 100 > >> 0 > >> 0 0 > >> 8 0 25068 159200 15584 456984 0 0 43 25 350 74 100 > >> 0 > >> 0 0 > >> 8 0 25068 159080 15584 457112 0 0 43 0 348 74 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15588 457196 0 0 28 17 356 72 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15592 457196 0 0 0 17 352 66 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15592 457196 0 0 0 0 354 72 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15600 457196 0 0 0 19 350 73 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15608 457196 0 0 0 31 355 76 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15608 457196 0 0 0 0 350 72 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15616 457196 0 0 0 31 354 73 100 > >> 0 > >> 0 0 > >> procs -----------memory---------- ---swap-- -----io---- --system-- > >> ----cpu---- > >> r b swpd free buff cache si so bi bo in cs us sy > >> id wa > >> 9 0 25068 159020 15616 457196 0 0 0 0 353 71 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15624 457196 0 0 0 27 352 77 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15624 457196 0 0 0 28 359 77 100 > >> 0 > >> 0 0 > >> 8 0 25068 159020 15632 457196 0 0 0 17 349 76 100 > >> 0 > >> 0 0 > >> 9 0 25068 150320 15640 457300 0 0 35 17 361 90 96 4 > >> 0 0 > >> 9 1 25068 137820 15748 458000 0 0 269 0 419 206 87 13 > >> 0 0 > >> 10 0 25068 129764 15928 461872 0 0 1348 211 629 630 93 7 > >> 0 0 > >> 10 0 25068 128296 15932 462000 0 0 43 55 355 77 99 1 > >> 0 0 > >> 10 0 25068 127876 15932 462128 0 0 43 0 350 72 99 1 > >> 0 0 > >> 10 0 25068 127632 15936 462252 0 0 41 39 353 73 100 > >> 0 > >> 0 0 > >> 10 0 25068 127508 15936 462252 0 0 0 0 355 66 100 > >> 0 > >> 0 0 > >> procs -----------memory---------- ---swap-- -----io---- --system-- > >> ----cpu---- > >> r b swpd free buff cache si so bi bo in cs us sy > >> id wa > >> 11 0 25068 126336 15956 462476 0 0 79 23 350 77 100 > >> 0 > >> 0 0 > >> 10 0 25068 126032 15960 462604 0 0 43 27 356 77 100 > >> 0 > >> 0 0 > >> 10 0 25068 125912 15960 462732 0 0 43 0 351 74 100 > >> 0 > >> 0 0 > >> 10 0 25068 125792 15964 462860 0 0 43 24 351 74 100 > >> 0 > >> 0 0 > >> 10 0 25068 125672 15964 462988 0 0 43 217 365 82 100 > >> 0 > >> 0 0 > >> 10 0 25068 125552 15972 463116 0 0 43 20 353 78 100 > >> 0 > >> 0 0 > >> 10 0 25068 125296 15988 463128 0 0 7 36 385 82 100 > >> 0 > >> 0 0 > >> 10 0 25068 125060 15988 463256 0 0 43 0 354 71 99 1 > >> 0 0 > >> 10 0 25068 124632 15996 463384 0 0 43 39 349 73 99 1 > >> 0 0 > >> 10 0 25068 124264 15996 463512 0 0 43 0 355 73 100 > >> 0 > >> 0 0 > >> 10 0 25068 124204 16004 463584 0 0 24 28 350 76 100 > >> 0 > >> 0 0 > >> procs -----------memory---------- ---swap-- -----io---- --system-- > >> ----cpu---- > >> r b swpd free buff cache si so bi bo in cs us sy > >> id wa > >> 11 0 25068 123960 16012 463712 0 0 43 21 356 76 100 > >> 0 > >> 0 0 > >> 10 0 25068 123720 16016 463936 0 0 76 0 353 75 100 > >> 0 > >> 0 0 > >> 10 0 25068 123360 16020 464320 0 0 128 21 350 72 100 > >> 0 > >> 0 0 > >> 10 0 25068 123120 16020 464576 0 0 85 0 357 76 100 > >> 0 > >> 0 0 > >> 10 0 25068 122812 16044 464832 0 0 92 21 366 79 100 > >> 0 > >> 0 0 > >> 10 0 25068 122568 16052 464960 0 0 43 73 362 82 100 > >> 0 > >> 0 0 > >> 10 0 25068 122336 16052 465216 0 0 85 0 356 70 100 > >> 0 > >> 0 0 > >> 10 0 25068 122216 16060 465344 0 0 43 32 349 74 100 > >> 0 > >> 0 0 > >> 12 0 25068 122156 16060 465420 0 0 25 0 357 72 100 > >> 0 > >> 0 0 > >> > >> > >> I restarted httpd about an hour ago. top now reports a load average of > >> 10.06 9.06 8.16 > > > > Hmmm. Well, you're not going nutsy with the context switches (that's > > the "cs" column). You aren't swapping ("si" and "so"). You also aren't > > bogged down in disk I/O ("bi" and "bo") and you're not getting swamped > > with interrupts ("in"). To be truthful, I'd expect more interrupt > > activity because of network I/O so you may still be throttled back by > > your ISP. I can't be sure. > > > > You are spending a ridiculous amount of time in userspace, so that's an > > indicator that SOMETHING changed in your web config. I'd go look at the > > yum logs and see if something you use in your site (mod_perl, perl, PHP, > > etc.) got updated and consequently broke. You might even try an strace > > of a couple of the web processes to see what the hell they're doing. > > > > > strace sounds interesting. I'll have to read up on it. Meanwhile, is there > some way to take a pid out of top and see what url(s) httpd is working on? Yeah, try "lsof -p ". That will list all of the open files that process has open. > Prior to making the trip to Arkansas when this problem first appeared, I > DID do an update to gallery, the photo gallery program. Looking at httpd > logs, I see search engines calling the slideshow, which is pretty > processor intensive. So, I've added gallery to my disallow list in > robots.txt . Also, looking through gallery config last night, I found > there's an option that improves cpu usage by about 90% by only updating > dynamic pages every 15 minutes instead of recreating them on the fly. I'll > see how these two changes help. They should. Remember that any current robot probes won't be aborted by adding the robots.txt. > It's also been suggested that I mess with this on the LAN, removing WAN > requests. I'll try that out this weekend to see if I can duplicate the cpu > loading with some known url request. Good deal. > THANKS to all! Hope we fix this! ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Microsoft is a cross between The Borg and the Ferengi. - - Unfortunately they use Borg to do their marketing and Ferengi to - - do their programming." -- Simon Slavin - ---------------------------------------------------------------------- From rstevens at vitalstream.com Thu Apr 13 17:34:36 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 13 Apr 2006 10:34:36 -0700 Subject: installing red hat from one cd In-Reply-To: <310b80f10604130823g7082e984x527ddcca850c719a@mail.gmail.com> References: <310b80f10604130823g7082e984x527ddcca850c719a@mail.gmail.com> Message-ID: <1144949677.20728.156.camel@prophead.corp.publichost.com> On Thu, 2006-04-13 at 11:23 -0400, Mark Hammerton wrote: > i am trying to fit the redhat es 4 amd64 on to one bootable i reduced > the size of the mounted all cds and cp them over with > cp -a /media/cdrom/* /RHEL/CD1 > and so forth for all five cds. > i then copied over all of the RPMS into the the /RHEL/CD1/Redhat/RPMS/ > folder and reduced the size, finally it is small enough to fit on one > cd and it fits my needs for a minimal install. > however when i try to boot the cd it boots asks for language, and so > forth then it asks for installation media i press cdrom but it just > says the cd is not a red hat cd and i cant continue. it says red hat > enterprise linux at the top of the screen. > this is the command i used to create the image i burnt to cd > i used cd /RHEL/CD1 > then > > mkisofs -o file.iso -b isolinux/isolinux.bin -c isolinux/boot.cat > -no-emul-boot -boot-load-size 4 -boot-info-table -R -J -v -T /RHEL/CD1 > > > is there anything i am missing on the single cd or in the way i make > the iso The installer knows what the ID is of the CD. If they don't match, it whines. > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - LOOK OUT!!! BEHIND YOU!!! - ---------------------------------------------------------------------- From mnair at iusb.edu Thu Apr 13 17:53:35 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Thu, 13 Apr 2006 13:53:35 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Thursday, April 13, 2006 11:34 AM To: Getting started with Red Hat Linux Subject: Re: Storage space partition If you please, we prefer bottom posting. See http://en.wikipedia.org/wiki/Top-posting I'll reorder this. On Thu, Apr 13, 2006 at 11:06:35AM -0400, Nair, Murlidharan T wrote: > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Thursday, April 13, 2006 10:01 AM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > > I have just completed the installation of Linux and configured the > > storage array as RAID5. The total capacity of the storage is about > > 600Gb. I am trying to decide on the factors that I should consider > when > > partitioning it. I only have one server that is connect to my SAN. > The > > main fact that I am trying to debate is what if the partition that I > am > > using to store my sql data runs out of space, will storing part of my > > data on another partition decrease the performance? In which case is > it > > better to just leave it as one large partition? I would appreciate > you > > any comments or suggestions.. > > > > Thanks ../Murli > > Make one partition on the SAN, then make it a physical volume for > LVM. Then divide it up into logical volumes. Logical volumes are > easily resized. It also has a snapshot capability which helps for > backups. > > Cheers, > -- > Bob McClure, Jr. > _______________________________________________ > > The way I have it now is one virtual disk of size 652GB. Is this > equivalent to what you call LVM ? No. Your "virtual disk" is the way your SAN presents a "physical disk" to the world. Establish one partition on that. (You don't really have to do that when using LVM, but this extends to the more general case.) Then establish LVM on that. > When logical volumes are resized, I > presume it does not affect the already existing data in the volume being > resized? As long as you are making it bigger, no. After you have resized the LV, you will still need to resize the filesystem with (assuming ext2/3 fs) resize2fs. If making it smaller, resize the filesystem first, then reduce the size of the LV. Back up your data in case you make a mistake. "man resize2fs" and "man lvresize" for more info. Can you point to a source where I can read a little more about > this? I am doing this for the first time. http://en.tldp.org/HOWTO/LVM-HOWTO/index.html > Thanks for your comments... > Cheers ../Murli Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe If I need to add additional disks and combine the space from those new disks to the LVs that I had previously created, can that be done easily? Does creating the virtual disk format the disk as well? Or do I have to do that separately? Cheers ../Murli From bob at bobcatos.com Thu Apr 13 18:15:31 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Thu, 13 Apr 2006 13:15:31 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060413181531.GA21249@bobcat.bobcatos.com> On Thu, Apr 13, 2006 at 01:53:35PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Thursday, April 13, 2006 11:34 AM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > If you please, we prefer bottom posting. See > > http://en.wikipedia.org/wiki/Top-posting > > I'll reorder this. > > On Thu, Apr 13, 2006 at 11:06:35AM -0400, Nair, Murlidharan T wrote: > > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > McClure > > Jr > > Sent: Thursday, April 13, 2006 10:01 AM > > To: Getting started with Red Hat Linux > > Subject: Re: Storage space partition > > > > On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > > > I have just completed the installation of Linux and configured the > > > storage array as RAID5. The total capacity of the storage is about > > > 600Gb. I am trying to decide on the factors that I should consider > > when > > > partitioning it. I only have one server that is connect to my SAN. > > The > > > main fact that I am trying to debate is what if the partition that I > > am > > > using to store my sql data runs out of space, will storing part of > my > > > data on another partition decrease the performance? In which case is > > it > > > better to just leave it as one large partition? I would appreciate > > you > > > any comments or suggestions.. > > > > > > Thanks ../Murli > > > > Make one partition on the SAN, then make it a physical volume for > > LVM. Then divide it up into logical volumes. Logical volumes are > > easily resized. It also has a snapshot capability which helps for > > backups. > > > > Cheers, > > -- > > Bob McClure, Jr. > > _______________________________________________ > > > > The way I have it now is one virtual disk of size 652GB. Is this > > equivalent to what you call LVM ? > > No. Your "virtual disk" is the way your SAN presents a "physical > disk" to the world. Establish one partition on that. (You don't > really have to do that when using LVM, but this extends to the more > general case.) Then establish LVM on that. > > > When logical volumes are resized, I > > presume it does not affect the already existing data in the volume > being > > resized? > > As long as you are making it bigger, no. After you have resized the > LV, you will still need to resize the filesystem with (assuming ext2/3 > fs) resize2fs. If making it smaller, resize the filesystem first, > then reduce the size of the LV. Back up your data in case you make a > mistake. "man resize2fs" and "man lvresize" for more info. > > Can you point to a source where I can read a little more about > > this? I am doing this for the first time. > > http://en.tldp.org/HOWTO/LVM-HOWTO/index.html > > > Thanks for your comments... > > Cheers ../Murli > > Cheers, > -- > Bob McClure, Jr. > _______________________________________________ > > If I need to add additional disks and combine the space from those new > disks to the LVs that I had previously created, can that be done easily? Yes. Actually you will be adding the additional "physical" (though they may well be virtual on the SAN) disks to the "volume group". And LVM will allocate new space as it sees fit - it's all in the same pool. > Does creating the virtual disk format the disk as well? Or do I have to > do that separately? If you mean the SAN's virtual disk, it is now ready to partition with fdisk or equivalent. If you mean the LVM volume group, you still need to create logical volumes, which will need to have mke2fs make filesystems (what you probably mean by "formatting") on each of them, just like a partition. > Cheers ../Murli Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From Travis.R.Waldher at boeing.com Thu Apr 13 19:44:29 2006 From: Travis.R.Waldher at boeing.com (Waldher, Travis R) Date: Thu, 13 Apr 2006 12:44:29 -0700 Subject: more on bogged down server In-Reply-To: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> Message-ID: > > > strace sounds interesting. I'll have to read up on it. Meanwhile, is there > some way to take a pid out of top and see what url(s) httpd is working on? > > Prior to making the trip to Arkansas when this problem first appeared, I > DID do an update to gallery, the photo gallery program. Looking at httpd > logs, I see search engines calling the slideshow, which is pretty > processor intensive. So, I've added gallery to my disallow list in > robots.txt . Also, looking through gallery config last night, I found > there's an option that improves cpu usage by about 90% by only updating > dynamic pages every 15 minutes instead of recreating them on the fly. I'll > see how these two changes help. Gallery - is in gallery2? http://gallery.menalto.com/ From harold at hallikainen.com Thu Apr 13 19:53:14 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Thu, 13 Apr 2006 12:53:14 -0700 (PDT) Subject: more on bogged down server In-Reply-To: References: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> Message-ID: <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> > > >> >> >> strace sounds interesting. I'll have to read up on it. Meanwhile, is > there >> some way to take a pid out of top and see what url(s) httpd is working > on? >> >> Prior to making the trip to Arkansas when this problem first appeared, > I >> DID do an update to gallery, the photo gallery program. Looking at > httpd >> logs, I see search engines calling the slideshow, which is pretty >> processor intensive. So, I've added gallery to my disallow list in >> robots.txt . Also, looking through gallery config last night, I found >> there's an option that improves cpu usage by about 90% by only > updating >> dynamic pages every 15 minutes instead of recreating them on the fly. > I'll >> see how these two changes help. > > Gallery - is in gallery2? > http://gallery.menalto.com/ > Yes, that's what I'm running, gallery2. I had been running gallery1 for years, but it was a pain to update several virtual domains. Gallery2 lets me have a single set of code that all the domains use. Some users are complaining about the usability of it versus gallery1, but I'm hoping it's just learing curve. I restarted httpd a few hours ago when the load had gotten up to about 15. It's now worked its way up to 3.58. I still see Google asking for stuff out of gallery. I guess they haven't read the robots.txt yet. lsof looks like a neat utility! Unfortunately, it's not installed on this machine. I tried installing it, and it wanted libc.so.6 . I was kind of hoping yum would take care of all the dependencies, but I guess not this one. So... off hunting for libc.so.6! THANKS! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From rstevens at vitalstream.com Thu Apr 13 22:11:23 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 13 Apr 2006 15:11:23 -0700 Subject: more on bogged down server In-Reply-To: <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> References: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> Message-ID: <1144966284.20728.177.camel@prophead.corp.publichost.com> On Thu, 2006-04-13 at 12:53 -0700, Harold Hallikainen wrote: > > > > > >> > >> > >> strace sounds interesting. I'll have to read up on it. Meanwhile, is > > there > >> some way to take a pid out of top and see what url(s) httpd is working > > on? > >> > >> Prior to making the trip to Arkansas when this problem first appeared, > > I > >> DID do an update to gallery, the photo gallery program. Looking at > > httpd > >> logs, I see search engines calling the slideshow, which is pretty > >> processor intensive. So, I've added gallery to my disallow list in > >> robots.txt . Also, looking through gallery config last night, I found > >> there's an option that improves cpu usage by about 90% by only > > updating > >> dynamic pages every 15 minutes instead of recreating them on the fly. > > I'll > >> see how these two changes help. > > > > Gallery - is in gallery2? > > http://gallery.menalto.com/ > > > > > Yes, that's what I'm running, gallery2. I had been running gallery1 for > years, but it was a pain to update several virtual domains. Gallery2 lets > me have a single set of code that all the domains use. Some users are > complaining about the usability of it versus gallery1, but I'm hoping it's > just learing curve. > > I restarted httpd a few hours ago when the load had gotten up to about 15. > It's now worked its way up to 3.58. I still see Google asking for stuff > out of gallery. I guess they haven't read the robots.txt yet. > > lsof looks like a neat utility! Unfortunately, it's not installed on this > machine. I tried installing it, and it wanted libc.so.6 . I was kind of > hoping yum would take care of all the dependencies, but I guess not this > one. So... off hunting for libc.so.6! It's the glibc RPM, Harold. You HAVE been updating glibc, right? ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Dyslexics of the world: UNTIE! - ---------------------------------------------------------------------- From bret_stern at machinemanagement.com Fri Apr 14 04:41:32 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Thu, 13 Apr 2006 21:41:32 -0700 Subject: Dual NIC Cards Message-ID: I have dual network cards in a new box i'm putting together. Fedora 4 Both cards are set to activate on boot, but only one starts on boot. The other will start manually. One card has a static ip. One card gets assigned an ip address (dhcp) Can both cards have the same hostname? (go ahead have fun with that question) I've heard you can only have a gateway address on one nic card. Is this correct? Bret From karlp at ourldsfamily.com Fri Apr 14 05:18:49 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Thu, 13 Apr 2006 23:18:49 -0600 (MDT) Subject: Dual NIC Cards In-Reply-To: References: Message-ID: <11345.198.60.114.90.1144991929.squirrel@webmail.ourldsfamily.com> On Thu, April 13, 2006 10:41 pm, Bret Stern said: > > I have dual network cards in a new box > i'm putting together. Fedora 4 Me, too. > > Both cards are set to activate on boot, but > only one starts on boot. The other will start > manually. Mine both start on boot. > > One card has a static ip. > One card gets assigned an ip address (dhcp) I assigned static IPs to both. That may be why one of yours doesn't start. Is the one that starts the static or DHCP assigned nic? > > Can both cards have the same hostname? > (go ahead have fun with that question) They have to have the same hostname. I don't see an option in the gui setup to give a different hostname for each card. > > I've heard you can only have a gateway address > on one nic card. Is this correct? Yes, it's correct. HTH (maybe to much brevity? but at 11:15pm, my brain is running on 3 cells) Karl > > Bret > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From karlp at ourldsfamily.com Fri Apr 14 05:23:02 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Thu, 13 Apr 2006 23:23:02 -0600 (MDT) Subject: IPTables outbound Message-ID: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> I turn off the outbound traffic for all my network except my mail/web server at 11:30pm each night to encourage the boys to go to bed. However, I've noticed that if their link is up at the time it goes down, they stay online. Is there something I can do that's a bit more 'annoying' to them? If I get on the gateway router and reboot it, they are gone, but that's not something I have been able to automate. Cisco doesn't like remote control... One thought is to take eth1 down, which is the internal gateway on the 10.0.0.0 network. The outside network is 172.20.20.0 which is eth0 and the Cisco gateway. Thoughts? -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From harold at hallikainen.com Fri Apr 14 14:54:16 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 14 Apr 2006 07:54:16 -0700 (PDT) Subject: more on bogged down server In-Reply-To: <1144966284.20728.177.camel@prophead.corp.publichost.com> References: <56236.207.177.227.29.1144939148.squirrel@sujan.hallikainen.org> <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> <1144966284.20728.177.camel@prophead.corp.publichost.com> Message-ID: <61938.207.177.227.29.1145026456.squirrel@sujan.hallikainen.org> > On Thu, 2006-04-13 at 12:53 -0700, Harold Hallikainen wrote: >> > >> > >> >> >> >> >> >> strace sounds interesting. I'll have to read up on it. Meanwhile, is >> > there >> >> some way to take a pid out of top and see what url(s) httpd is >> working >> > on? >> >> >> >> Prior to making the trip to Arkansas when this problem first >> appeared, >> > I >> >> DID do an update to gallery, the photo gallery program. Looking at >> > httpd >> >> logs, I see search engines calling the slideshow, which is pretty >> >> processor intensive. So, I've added gallery to my disallow list in >> >> robots.txt . Also, looking through gallery config last night, I found >> >> there's an option that improves cpu usage by about 90% by only >> > updating >> >> dynamic pages every 15 minutes instead of recreating them on the fly. >> > I'll >> >> see how these two changes help. >> > >> > Gallery - is in gallery2? >> > http://gallery.menalto.com/ >> > >> >> >> Yes, that's what I'm running, gallery2. I had been running gallery1 for >> years, but it was a pain to update several virtual domains. Gallery2 >> lets >> me have a single set of code that all the domains use. Some users are >> complaining about the usability of it versus gallery1, but I'm hoping >> it's >> just learing curve. >> >> I restarted httpd a few hours ago when the load had gotten up to about >> 15. >> It's now worked its way up to 3.58. I still see Google asking for stuff >> out of gallery. I guess they haven't read the robots.txt yet. >> >> lsof looks like a neat utility! Unfortunately, it's not installed on >> this >> machine. I tried installing it, and it wanted libc.so.6 . I was kind of >> hoping yum would take care of all the dependencies, but I guess not this >> one. So... off hunting for libc.so.6! > > It's the glibc RPM, Harold. You HAVE been updating glibc, right? > Well, I've relied on the daily yum update the system does on its own. I'm probably doing something wrong here, but I just tried this: [root at sujan yum.repos.d]# yum update glibc Setting up Update Process Setting up repositories Reading repository metadata in from local files Could not find update match for glibc No Packages marked for Update/Obsoletion [root at sujan yum.repos.d]# So, I guess I'm doing something wrong! As a temporary fix for my server bogging down, I found a script that watches the system load and emails when a specified load is exceeded. I modified it to also run /sbin/service httpd restart when the 15 minute average load exceeds 12 (when sendmail stops accepting connections). That seems to have helped keep the system running. The 15 minute average load is currently 0.10 . I tried messing with the system a little on the LAN last night, including running the gallery slideshow, and could not duplicate the problem of lots of huge httpd threads remainging running forever. I'll mess with this some more over the weekend, ideally with lsof running. As a side note, yumex seems to have also stopped working. It asks for the root password, but never appears on the screen. More stuff to troubleshoot! THANKS for all the help! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From mnair at iusb.edu Fri Apr 14 15:46:24 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 11:46:24 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Thursday, April 13, 2006 2:16 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Thu, Apr 13, 2006 at 01:53:35PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Thursday, April 13, 2006 11:34 AM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > If you please, we prefer bottom posting. See > > http://en.wikipedia.org/wiki/Top-posting > > I'll reorder this. > > On Thu, Apr 13, 2006 at 11:06:35AM -0400, Nair, Murlidharan T wrote: > > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > McClure > > Jr > > Sent: Thursday, April 13, 2006 10:01 AM > > To: Getting started with Red Hat Linux > > Subject: Re: Storage space partition > > > > On Thu, Apr 13, 2006 at 09:49:24AM -0400, Nair, Murlidharan T wrote: > > > I have just completed the installation of Linux and configured the > > > storage array as RAID5. The total capacity of the storage is about > > > 600Gb. I am trying to decide on the factors that I should consider > > when > > > partitioning it. I only have one server that is connect to my SAN. > > The > > > main fact that I am trying to debate is what if the partition that I > > am > > > using to store my sql data runs out of space, will storing part of > my > > > data on another partition decrease the performance? In which case is > > it > > > better to just leave it as one large partition? I would appreciate > > you > > > any comments or suggestions.. > > > > > > Thanks ../Murli > > > > Make one partition on the SAN, then make it a physical volume for > > LVM. Then divide it up into logical volumes. Logical volumes are > > easily resized. It also has a snapshot capability which helps for > > backups. > > > > Cheers, > > -- > > Bob McClure, Jr. > > _______________________________________________ > > > > The way I have it now is one virtual disk of size 652GB. Is this > > equivalent to what you call LVM ? > > No. Your "virtual disk" is the way your SAN presents a "physical > disk" to the world. Establish one partition on that. (You don't > really have to do that when using LVM, but this extends to the more > general case.) Then establish LVM on that. > > > When logical volumes are resized, I > > presume it does not affect the already existing data in the volume > being > > resized? > > As long as you are making it bigger, no. After you have resized the > LV, you will still need to resize the filesystem with (assuming ext2/3 > fs) resize2fs. If making it smaller, resize the filesystem first, > then reduce the size of the LV. Back up your data in case you make a > mistake. "man resize2fs" and "man lvresize" for more info. > > Can you point to a source where I can read a little more about > > this? I am doing this for the first time. > > http://en.tldp.org/HOWTO/LVM-HOWTO/index.html > > > Thanks for your comments... > > Cheers ../Murli > > Cheers, > -- > Bob McClure, Jr. > _______________________________________________ > > If I need to add additional disks and combine the space from those new > disks to the LVs that I had previously created, can that be done easily? Yes. Actually you will be adding the additional "physical" (though they may well be virtual on the SAN) disks to the "volume group". And LVM will allocate new space as it sees fit - it's all in the same pool. > Does creating the virtual disk format the disk as well? Or do I have to > do that separately? If you mean the SAN's virtual disk, it is now ready to partition with fdisk or equivalent. If you mean the LVM volume group, you still need to create logical volumes, which will need to have mke2fs make filesystems (what you probably mean by "formatting") on each of them, just like a partition. > Cheers ../Murli Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe Hi!! I am in the last stages on my installation. My server can see the SAN and everything seems ok. Here is a list of what I plan to do with some question. I would really appreciate if you could tell me if I am doing something incorrect or is there anything that I have missed. 1. Creating a disk partition for LVM as follows fdisk /dev/emcpowera Where options chosen are t = 8e which is the linux lvm partition and w to write it. 2. Create a volume group descriptor at the start of the disk pvcreate /dev/emcpowera 3. Creat a volume group vgcreate bioVG /dev/emcpowera 4. Activate the volume group vgchange -a y bioVG 5. Find the total PE size Vgdisplay bioVG | grep "Total PE" 6. I need to create three logical volumes of specific size. Do I use lvcreate for this? lvcreate -L 200G -nmysqlLV bioVG lvcreate -L 200G -nworkspaceLV bioVG lvcreate -L 20G -nwebservicelLV bioVG The rest is unallocated and is free to use at later stages. 7. When and how do we create a file system (analogous to using mkfs)? 8. Mount the volumes I have created as follows mount /dev/bioVG/mysqlLV sqlhome mount /dev/bioVG/workspaceLV workspace mount /dev/bioVG/webserviceLV webservice Thanks for your help. Cheers ../Murli From bob at bobcatos.com Fri Apr 14 17:17:11 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 12:17:11 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414171711.GB1840@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > Hi!! > > I am in the last stages on my installation. My server can see the SAN > and everything seems ok. Here is a list of what I plan to do with some > question. I would really appreciate if you could tell me if I am doing > something incorrect or is there anything that I have missed. > > 1. Creating a disk partition for LVM as follows > > fdisk /dev/emcpowera > > Where options chosen are t = 8e which is the linux lvm partition and w > to write it. > > > 2. Create a volume group descriptor at the start of the disk > > pvcreate /dev/emcpowera You are using the whole disk rather than the partition, but that's okay. > 3. Creat a volume group > > vgcreate bioVG /dev/emcpowera > > 4. Activate the volume group > > vgchange -a y bioVG > > 5. Find the total PE size > > Vgdisplay bioVG | grep "Total PE" > > 6. I need to create three logical volumes of specific size. Do I use > lvcreate for this? Yes, precisely. > lvcreate -L 200G -nmysqlLV bioVG > > lvcreate -L 200G -nworkspaceLV bioVG > > lvcreate -L 20G -nwebservicelLV bioVG > > The rest is unallocated and is free to use at later stages. > > > 7. When and how do we create a file system (analogous to using mkfs)? When? As soon as you have run lvcreate. How? The same way as with partitions. Your logical volumes have names, /dev/bioVG/mysqlLV, /dev/bioVG/workspaceLV, /dev/bioVG/webservicelLV. See the format: /dev// ? Now, just use mke2fs this way: mke2fs -j /dev/bioVG/mysqlLV and so on, assuming you want ext3 filesystems. > 8. Mount the volumes I have created as follows > > mount /dev/bioVG/mysqlLV sqlhome > mount /dev/bioVG/workspaceLV workspace > mount /dev/bioVG/webserviceLV webservice Well, you will probably want to make fstab entries like /dev/bioVG/mysqlLV /sqlhome ext3 defaults 1 2 /dev/bioVG/orkspaceLV /workspace ext3 defaults 1 2 /dev/bioVG/webserviceLV /webservice ext3 defaults 1 2 The mount points must be fully pathed (from /). Then you can (the first time) mount /sqlhome mount /workspace mount /webservice > Thanks for your help. > > Cheers ../Murli Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From rstevens at vitalstream.com Fri Apr 14 18:02:07 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Fri, 14 Apr 2006 11:02:07 -0700 Subject: Dual NIC Cards In-Reply-To: <11345.198.60.114.90.1144991929.squirrel@webmail.ourldsfamily.com> References: <11345.198.60.114.90.1144991929.squirrel@webmail.ourldsfamily.com> Message-ID: <1145037727.20728.202.camel@prophead.corp.publichost.com> On Thu, 2006-04-13 at 23:18 -0600, karlp at ourldsfamily.com wrote: > On Thu, April 13, 2006 10:41 pm, Bret Stern said: > > > > I have dual network cards in a new box > > i'm putting together. Fedora 4 > > Me, too. I have machines with up to 6. > > Both cards are set to activate on boot, but > > only one starts on boot. The other will start > > manually. > > Mine both start on boot. > > > > > One card has a static ip. > > One card gets assigned an ip address (dhcp) > > I assigned static IPs to both. That may be why one of yours doesn't start. > Is the one that starts the static or DHCP assigned nic? > > > > > Can both cards have the same hostname? > > (go ahead have fun with that question) > > They have to have the same hostname. I don't see an option in the gui setup > to give a different hostname for each card. Ah, fertile ground for misunderstandings. You must keep in mind that there are differences between hostnames, nodenames and FQDNs (fully qualified domain names). A machine can only have one hostname (as displayed by "hostname" or "uname -n"), and is the true hostname. By default, it's "localhost" or the FQDN "localhost.localdomain". A machine _may_ have a nodename under NIS/NIS+ and is set and displayed by the "domainname" command. Unless you run NIS/NIS+, you needn't worry about this, and if you do run it, 95 times out of 100 you'll set it to be the same as the hostname. Now, each IP address on the machine _may_ have a FQDN associated with it, but it's not required. Each FQDN can have a number of DNS aliases associated with it (called CNAMEs in DNS parlance). Confused yet? > > I've heard you can only have a gateway address > > on one nic card. Is this correct? > > Yes, it's correct. Uhm, this must be clarified. There is only one _default_ gateway, and that is the "route of last resort". In other words, if you try to send traffic to a node that is not on a network directly connected to one of your NICs (as determined by the IP address/netmask combination) AND you don't have a route forcing traffic for the remote node's network through one of your NICs, THEN the traffic goes out the default gateway. If you do have a route for the network, it goes out the NIC that has that route. As an example, assume a machine with two NICs. eth0 has an IP of 192.168.0.2. eth1 has an IP of 10.0.0.2. The default gateway is 192.168.0.1 (obviously on eth1). Now, let's say you try to ping 10.24.1.1. The traffic will go out eth0, since the default gateway (actually, the default route) is on eth0. However, you really want any traffic for 10.0.0.0/8 to go out on eth1. You set up a static route: route add -net 10.0.0.0 netmask 255.0.0.0 dev eth1 Now, any traffic for the 10.0.0.0/8 network will go out eth1. You can repeat that for as many networks (or hosts, if the netmask is /32) as you wish on each NIC (well, up to some practical limit). ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If this is the first day of the rest of my life... - - I'm in BIG trouble! - ---------------------------------------------------------------------- From Travis.R.Waldher at boeing.com Fri Apr 14 18:05:19 2006 From: Travis.R.Waldher at boeing.com (Waldher, Travis R) Date: Fri, 14 Apr 2006 11:05:19 -0700 Subject: more on bogged down server In-Reply-To: <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> Message-ID: > -----Original Message----- > From: Harold Hallikainen [mailto:harold at hallikainen.com] > Sent: Thursday, April 13, 2006 12:53 PM > To: Getting started with Red Hat Linux > Subject: RE: more on bogged down server > > > > > > Gallery - is in gallery2? > > http://gallery.menalto.com/ > > > > > Yes, that's what I'm running, gallery2. I had been running gallery1 for > years, but it was a pain to update several virtual domains. Gallery2 lets > me have a single set of code that all the domains use. Some users are > complaining about the usability of it versus gallery1, but I'm hoping it's > just learing curve. > > I restarted httpd a few hours ago when the load had gotten up to about 15. > It's now worked its way up to 3.58. I still see Google asking for stuff > out of gallery. I guess they haven't read the robots.txt yet. > > lsof looks like a neat utility! Unfortunately, it's not installed on this > machine. I tried installing it, and it wanted libc.so.6 . I was kind of > hoping yum would take care of all the dependencies, but I guess not this > one. So... off hunting for libc.so.6! > > THANKS! > > Harold Start searching the forums at gallery.menalto.com. Gallery2 has performance issues handling auto-generating thumbnails IIRC. I run Gallery2 on my website and it's performance is BAD if I don't go in and tell it to generate the thumbnails. I imagine the CPU on my host providers computer was/is throttling up when I let thumbnails auto-generate, since I don't have command line access I can't confirm. Either way, it was a recognized problem. Gallery 2.1 promises performance increases. You may want to try an upgrade. From karlp at ourldsfamily.com Fri Apr 14 18:15:43 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 14 Apr 2006 12:15:43 -0600 (MDT) Subject: Dual NIC Cards In-Reply-To: <1145037727.20728.202.camel@prophead.corp.publichost.com> References: <11345.198.60.114.90.1144991929.squirrel@webmail.ourldsfamily.com> <1145037727.20728.202.camel@prophead.corp.publichost.com> Message-ID: <46569.207.173.117.242.1145038543.squirrel@ourldsfamily.com> On Fri, April 14, 2006 12:02 pm, Rick Stevens said: > On Thu, 2006-04-13 at 23:18 -0600, karlp at ourldsfamily.com wrote: >> On Thu, April 13, 2006 10:41 pm, Bret Stern said: >> > >> > I have dual network cards in a new box >> > i'm putting together. Fedora 4 >> >> Me, too. > > I have machines with up to 6. Bragger... > >> > Both cards are set to activate on boot, but >> > only one starts on boot. The other will start >> > manually. >> >> Mine both start on boot. >> >> > >> > One card has a static ip. >> > One card gets assigned an ip address (dhcp) >> >> I assigned static IPs to both. That may be why one of yours doesn't start. >> Is the one that starts the static or DHCP assigned nic? >> >> > >> > Can both cards have the same hostname? >> > (go ahead have fun with that question) >> >> They have to have the same hostname. I don't see an option in the gui >> setup >> to give a different hostname for each card. > > Ah, fertile ground for misunderstandings. You must keep in mind that > there are differences between hostnames, nodenames and FQDNs (fully > qualified domain names). > > A machine can only have one hostname (as displayed by "hostname" or > "uname -n"), and is the true hostname. By default, it's "localhost" or > the FQDN "localhost.localdomain". > > A machine _may_ have a nodename under NIS/NIS+ and is set and displayed > by the "domainname" command. Unless you run NIS/NIS+, you needn't worry > about this, and if you do run it, 95 times out of 100 you'll set it to > be the same as the hostname. > > Now, each IP address on the machine _may_ have a FQDN associated with > it, but it's not required. Each FQDN can have a number of DNS aliases > associated with it (called CNAMEs in DNS parlance). > > Confused yet? I'm not, but then I've done this though no where near as well, or as much, as you. That's why I left my original response short. I'm leaning on you... > >> > I've heard you can only have a gateway address >> > on one nic card. Is this correct? >> >> Yes, it's correct. > > Uhm, this must be clarified. There is only one _default_ gateway, and > that is the "route of last resort". In other words, if you try to send > traffic to a node that is not on a network directly connected to one of > your NICs (as determined by the IP address/netmask combination) AND you > don't have a route forcing traffic for the remote node's network through > one of your NICs, THEN the traffic goes out the default gateway. If you > do have a route for the network, it goes out the NIC that has that > route. > > As an example, assume a machine with two NICs. eth0 has an IP of > 192.168.0.2. eth1 has an IP of 10.0.0.2. The default gateway is > 192.168.0.1 (obviously on eth1). > > Now, let's say you try to ping 10.24.1.1. The traffic will go out eth0, > since the default gateway (actually, the default route) is on eth0. > However, you really want any traffic for 10.0.0.0/8 to go out on eth1. > You set up a static route: > > route add -net 10.0.0.0 netmask 255.0.0.0 dev eth1 > > Now, any traffic for the 10.0.0.0/8 network will go out eth1. You > can repeat that for as many networks (or hosts, if the netmask is /32) > as you wish on each NIC (well, up to some practical limit). Okay Rick, You're being nice. In the 'old days' when Kalum (Grendel) was around (anyone find him?) you would have responded, "Uh Karl, you've been smoking something" to which I would have to reply, "I've never started" and "what do you suggest?" and you'd say something like "I've got some great...." and then catch yourself not wanting to give out too much info... Ahhhh, the 'good' old days. Yes Rick, you're going soft. You're right on, but soft. 8^} Karl ....and sorry to the rest of the list for wasting bandwidth. At least I bottom-posted. > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - If this is the first day of the rest of my life... - > - I'm in BIG trouble! - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From rstevens at vitalstream.com Fri Apr 14 18:17:53 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Fri, 14 Apr 2006 11:17:53 -0700 Subject: Dual NIC Cards In-Reply-To: <1145037727.20728.202.camel@prophead.corp.publichost.com> References: <11345.198.60.114.90.1144991929.squirrel@webmail.ourldsfamily.com> <1145037727.20728.202.camel@prophead.corp.publichost.com> Message-ID: <1145038673.20728.204.camel@prophead.corp.publichost.com> On Fri, 2006-04-14 at 11:02 -0700, Rick Stevens wrote: > On Thu, 2006-04-13 at 23:18 -0600, karlp at ourldsfamily.com wrote: > > On Thu, April 13, 2006 10:41 pm, Bret Stern said: > > > > > > I have dual network cards in a new box > > > i'm putting together. Fedora 4 > > > > Me, too. > > I have machines with up to 6. > > > > Both cards are set to activate on boot, but > > > only one starts on boot. The other will start > > > manually. > > > > Mine both start on boot. > > > > > > > > One card has a static ip. > > > One card gets assigned an ip address (dhcp) > > > > I assigned static IPs to both. That may be why one of yours doesn't start. > > Is the one that starts the static or DHCP assigned nic? > > > > > > > > Can both cards have the same hostname? > > > (go ahead have fun with that question) > > > > They have to have the same hostname. I don't see an option in the gui setup > > to give a different hostname for each card. > > Ah, fertile ground for misunderstandings. You must keep in mind that > there are differences between hostnames, nodenames and FQDNs (fully > qualified domain names). > > A machine can only have one hostname (as displayed by "hostname" or > "uname -n"), and is the true hostname. By default, it's "localhost" or > the FQDN "localhost.localdomain". > > A machine _may_ have a nodename under NIS/NIS+ and is set and displayed > by the "domainname" command. Unless you run NIS/NIS+, you needn't worry > about this, and if you do run it, 95 times out of 100 you'll set it to > be the same as the hostname. > > Now, each IP address on the machine _may_ have a FQDN associated with > it, but it's not required. Each FQDN can have a number of DNS aliases > associated with it (called CNAMEs in DNS parlance). > > Confused yet? > > > > I've heard you can only have a gateway address > > > on one nic card. Is this correct? > > > > Yes, it's correct. > > Uhm, this must be clarified. There is only one _default_ gateway, and > that is the "route of last resort". In other words, if you try to send > traffic to a node that is not on a network directly connected to one of > your NICs (as determined by the IP address/netmask combination) AND you > don't have a route forcing traffic for the remote node's network through > one of your NICs, THEN the traffic goes out the default gateway. If you > do have a route for the network, it goes out the NIC that has that > route. > > As an example, assume a machine with two NICs. eth0 has an IP of > 192.168.0.2. eth1 has an IP of 10.0.0.2. The default gateway is > 192.168.0.1 (obviously on eth1). DOH! That should read "(obviously on eth0)." That's what happens when your boss is talking to you while you compose responses! > > Now, let's say you try to ping 10.24.1.1. The traffic will go out eth0, > since the default gateway (actually, the default route) is on eth0. > However, you really want any traffic for 10.0.0.0/8 to go out on eth1. > You set up a static route: > > route add -net 10.0.0.0 netmask 255.0.0.0 dev eth1 > > Now, any traffic for the 10.0.0.0/8 network will go out eth1. You > can repeat that for as many networks (or hosts, if the netmask is /32) > as you wish on each NIC (well, up to some practical limit). > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - If this is the first day of the rest of my life... - > - I'm in BIG trouble! - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - IGNORE that man behind the keyboard! - - - The Wizard of OS - ---------------------------------------------------------------------- From mnair at iusb.edu Fri Apr 14 18:44:35 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 14:44:35 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 1:17 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > I encountered some problem when I did used vgcreate. I am appending below the screen output of what I did and the errors I got. Is there something that I missed? [root at bioinformatics ~]# fdisk /dev/emcpowera Device contains neither a valid DOS partition table, nor Sun, SGI or OSF disklabel Building a new DOS disklabel. Changes will remain in memory only, until you decide to write them. After that, of course, the previous content won't be recoverable. The number of cylinders for this disk is set to 85113. There is nothing wrong with that, but this is larger than 1024, and could in certain setups cause problems with: 1) software that runs at boot time (e.g., old versions of LILO) 2) booting and partitioning software from other OSs (e.g., DOS FDISK, OS/2 FDISK) Warning: invalid flag 0x0000 of partition table 4 will be corrected by w(rite) Command (m for help): m Command action a toggle a bootable flag b edit bsd disklabel c toggle the dos compatibility flag d delete a partition l list known partition types m print this menu n add a new partition o create a new empty DOS partition table p print the partition table q quit without saving changes s create a new empty Sun disklabel t change a partition's system id u change display/entry units v verify the partition table w write table to disk and exit x extra functionality (experts only) Command (m for help): t No partition is defined yet! Command (m for help): p Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System Command (m for help): n Command action e extended p primary partition (1-4) p Partition number (1-4): 1 First cylinder (1-85113, default 1): 1 Last cylinder or +size or +sizeM or +sizeK (1-85113, default 85113): Using default value 85113 Command (m for help): t Selected partition 1 Hex code (type L to list codes): 8e Changed system type of partition 1 to 8e (Linux LVM) Command (m for help): p Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/emcpowera1 1 85113 683670141 8e Linux LVM Command (m for help): w The partition table has been altered! Calling ioctl() to re-read partition table. Syncing disks. [root at bioinformatics ~]# [root at bioinformatics ~]# pvcreate /dev/emcpowera Physical volume "/dev/emcpowera" successfully created [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Volume group "bio01VG" successfully created [root at bioinformatics ~]# vgdisplay bio01VG Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Volume group "bio01VG" doesn't exist [root at bioinformatics ~]# vgchange -a y bio01VG Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Unable to find volume group "bio01VG" From bob at bobcatos.com Fri Apr 14 19:06:28 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 14:06:28 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414190628.GA15682@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 02:44:35PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 1:17 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > > > > I encountered some problem when I did used vgcreate. I am appending > below the screen output of what I did and the errors I got. > Is there something that I missed? > > > > [root at bioinformatics ~]# fdisk /dev/emcpowera > Device contains neither a valid DOS partition table, nor Sun, SGI or OSF > disklabel > Building a new DOS disklabel. Changes will remain in memory only, > until you decide to write them. After that, of course, the previous > content won't be recoverable. That's normal. > The number of cylinders for this disk is set to 85113. > There is nothing wrong with that, but this is larger than 1024, > and could in certain setups cause problems with: > 1) software that runs at boot time (e.g., old versions of LILO) > 2) booting and partitioning software from other OSs > (e.g., DOS FDISK, OS/2 FDISK) > Warning: invalid flag 0x0000 of partition table 4 will be corrected by > w(rite) That's reasonable. > Command (m for help): m > Command action > a toggle a bootable flag > b edit bsd disklabel > c toggle the dos compatibility flag > d delete a partition > l list known partition types > m print this menu > n add a new partition > o create a new empty DOS partition table > p print the partition table > q quit without saving changes > s create a new empty Sun disklabel > t change a partition's system id > u change display/entry units > v verify the partition table > w write table to disk and exit > x extra functionality (experts only) > > Command (m for help): t > No partition is defined yet! > > Command (m for help): p > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > > Command (m for help): n > Command action > e extended > p primary partition (1-4) > p > Partition number (1-4): 1 > First cylinder (1-85113, default 1): 1 > Last cylinder or +size or +sizeM or +sizeK (1-85113, default 85113): > Using default value 85113 > > Command (m for help): t > Selected partition 1 > Hex code (type L to list codes): 8e > Changed system type of partition 1 to 8e (Linux LVM) > > Command (m for help): p > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > Command (m for help): w > The partition table has been altered! > > Calling ioctl() to re-read partition table. > Syncing disks. > [root at bioinformatics ~]# All that is good and normal. > [root at bioinformatics ~]# pvcreate /dev/emcpowera > Physical volume "/dev/emcpowera" successfully created > > [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Volume group "bio01VG" successfully created Okay, now I'm not sure what is going on. It is more common for linux to identify the drives as /dev/sda, /dev/sdb, etc. rather than /dev/emcpowera. What might be more useful would be to run fdisk -l # That's ell as in list. and see what drives show up. Is it possible that /dev/emcpowera is the physical SAN disk(s) and that /dev/sdb and /dev/sdc are the virtual disks created by the SAN? If so, the latter should be partitioned and pvcreated. Also note that you created the partition and then ignored it. Had you used the partition, it would have been called /dev/emcpowera1 when you ran pvcreate. Rick Stevens, feel free to jump in here. I'm operating from very recent and limited experience with a SAN. > [root at bioinformatics ~]# vgdisplay bio01VG > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Volume group "bio01VG" doesn't exist > > [root at bioinformatics ~]# vgchange -a y bio01VG > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Unable to find volume group "bio01VG" Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From harold at hallikainen.com Fri Apr 14 19:09:26 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Fri, 14 Apr 2006 12:09:26 -0700 (PDT) Subject: more on bogged down server In-Reply-To: References: <58889.207.177.227.29.1144957994.squirrel@sujan.hallikainen.org> Message-ID: <63946.207.177.227.29.1145041766.squirrel@sujan.hallikainen.org> > >> -----Original Message----- >> From: Harold Hallikainen [mailto:harold at hallikainen.com] >> Sent: Thursday, April 13, 2006 12:53 PM >> To: Getting started with Red Hat Linux >> Subject: RE: more on bogged down server >> >> >> > >> > Gallery - is in gallery2? >> > http://gallery.menalto.com/ >> > >> >> >> Yes, that's what I'm running, gallery2. I had been running gallery1 > for >> years, but it was a pain to update several virtual domains. Gallery2 > lets >> me have a single set of code that all the domains use. Some users are >> complaining about the usability of it versus gallery1, but I'm hoping > it's >> just learing curve. >> >> I restarted httpd a few hours ago when the load had gotten up to about > 15. >> It's now worked its way up to 3.58. I still see Google asking for > stuff >> out of gallery. I guess they haven't read the robots.txt yet. >> >> lsof looks like a neat utility! Unfortunately, it's not installed on > this >> machine. I tried installing it, and it wanted libc.so.6 . I was kind > of >> hoping yum would take care of all the dependencies, but I guess not > this >> one. So... off hunting for libc.so.6! >> >> THANKS! >> >> Harold > > Start searching the forums at gallery.menalto.com. Gallery2 has > performance issues handling auto-generating thumbnails IIRC. I run > Gallery2 on my website and it's performance is BAD if I don't go in and > tell it to generate the thumbnails. I imagine the CPU on my host > providers computer was/is throttling up when I let thumbnails > auto-generate, since I don't have command line access I can't confirm. > Either way, it was a recognized problem. > > Gallery 2.1 promises performance increases. You may want to try an > upgrade. > Thanks! I'm running Gallery version = 2.1 core 1.1.0 . Under site administration - performance, it says " Performance Tuning Acceleration Improve your Gallery performance by storing entire web pages in the database. This can considerably reduce the amount of webserver and database resources required to display a web page. The tradeoff is that the web page you see may be a little bit out of date, however you can always get the most recent version of the page by forcing a refresh in your browser (typically by holding down the shift key and clicking the reload button). Partial Acceleration Partial acceleration gives you roughly 10-25% performance increase, but some forms of dynamic data (like view counts) will not get updated right away. All content that appears in blocks (like the random image block, any sidebar blocks, etc) will always be updated. Full Acceleration Full acceleration gives roughly a 90% performance increase, but no dynamic data (random image block, other sidebar blocks, number of items in your shopping cart, view counts, etc) will get updated until the saved page expires. You can additionally specify when saved pages expire. Setting a longer expiration time will reduce the load on your server, but will increase the interval before users see changes. Lower expiration times mean that users will see more current data, but they will place a higher load on your server. I've set everyone to "full acceleration" and have pages expire in 15 minutes. This and adding crawl-delay and disallowing crawls of the gallery and my wiki upload area (large pdfs) SEEMS to have solved the problem. Just in case, though, I'm still running a cron job once an hour to restart httpd if the 15 minute load is over 12. Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From mnair at iusb.edu Fri Apr 14 19:33:47 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 15:33:47 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 3:06 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 02:44:35PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 1:17 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > > > > [root at bioinformatics ~]# pvcreate /dev/emcpowera > Physical volume "/dev/emcpowera" successfully created > > [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Volume group "bio01VG" successfully created Okay, now I'm not sure what is going on. It is more common for linux to identify the drives as /dev/sda, /dev/sdb, etc. rather than /dev/emcpowera. What might be more useful would be to run fdisk -l # That's ell as in list. and see what drives show up. Is it possible that /dev/emcpowera is the physical SAN disk(s) and that /dev/sdb and /dev/sdc are the virtual disks created by the SAN? If so, the latter should be partitioned and pvcreated. Also note that you created the partition and then ignored it. Had you used the partition, it would have been called /dev/emcpowera1 when you ran pvcreate. Rick Stevens, feel free to jump in here. I'm operating from very recent and limited experience with a SAN. > [root at bioinformatics ~]# vgdisplay bio01VG > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Volume group "bio01VG" doesn't exist > > [root at bioinformatics ~]# vgchange -a y bio01VG > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Unable to find volume group "bio01VG" I just noticed that the partition it created was called emcpowera1. Here is part of the output ======================================================== Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/emcpowera1 1 85113 683670141 8e Linux LVM Command (m for help): w The partition table has been altered! Calling ioctl() to re-read partition table. Syncing disks. ======================================================== I assumed that it would create the partition with the same name so when I did a pvcreate I used pvcreate /dev/emcpowera I am thinking of doing a pvremove I ran the test here is what I got ================================================================== [root at bioinformatics /]# pvremove -t -v /dev/emcpowera Test mode: Metadata will NOT be updated. /dev/cdrom: open failed: Read-only file system Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Labels on physical volume "/dev/emcpowera" successfully wiped Test mode: Wiping internal cach ================================================================== Then I can start back with pvcreate correct? Also will there be any consequences of running vgcreate on /dev/emcpowera that used dev/sbd ? If so how can I fix it? Thanks for your time ../Murli From bob at bobcatos.com Fri Apr 14 19:43:20 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 14:43:20 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414194320.GA18013@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 03:33:47PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 3:06 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Fri, Apr 14, 2006 at 02:44:35PM -0400, Nair, Murlidharan T wrote: > > > > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > McClure > > Jr > > Sent: Friday, April 14, 2006 1:17 PM > > To: Getting started with Red Hat Linux > > Subject: Re: Storage space partition > > > > On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > > > > > > > > > [root at bioinformatics ~]# pvcreate /dev/emcpowera > > Physical volume "/dev/emcpowera" successfully created > > > > [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Volume group "bio01VG" successfully created > > Okay, now I'm not sure what is going on. It is more common for linux > to identify the drives as /dev/sda, /dev/sdb, etc. rather than > /dev/emcpowera. What might be more useful would be to run > > fdisk -l # That's ell as in list. > > and see what drives show up. Is it possible that /dev/emcpowera is > the physical SAN disk(s) and that /dev/sdb and /dev/sdc are the > virtual disks created by the SAN? If so, the latter should be > partitioned and pvcreated. > > Also note that you created the partition and then ignored it. Had you > used the partition, it would have been called /dev/emcpowera1 when you > ran pvcreate. > > Rick Stevens, feel free to jump in here. I'm operating from very > recent and limited experience with a SAN. > > > [root at bioinformatics ~]# vgdisplay bio01VG > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Volume group "bio01VG" doesn't exist > > > > [root at bioinformatics ~]# vgchange -a y bio01VG > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Unable to find volume group "bio01VG" > > > I just noticed that the partition it created was called emcpowera1. Here > is part of the output > ======================================================== > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > Command (m for help): w > The partition table has been altered! > > Calling ioctl() to re-read partition table. > Syncing disks. > ======================================================== > I assumed that it would create the partition with the same name so when > I did a pvcreate I used > pvcreate /dev/emcpowera > > I am thinking of doing a pvremove I ran the test here is what I got > ================================================================== > [root at bioinformatics /]# pvremove -t -v /dev/emcpowera > Test mode: Metadata will NOT be updated. > /dev/cdrom: open failed: Read-only file system > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Labels on physical volume "/dev/emcpowera" successfully wiped > Test mode: Wiping internal cach > ================================================================== > Then I can start back with pvcreate correct? Also will there be any > consequences of running vgcreate on /dev/emcpowera that used dev/sbd ? > If so how can I fix it? > > Thanks for your time ../Murli Did you run "fdisk -l"? I wanted to see if /dev/sdb or /dev/sdc showed up. If either sdb or sdc are synonyms for emcpowera, it would be better to use it/them just because it's more customary and will result in fewer surprises. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From mnair at iusb.edu Fri Apr 14 19:46:03 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 15:46:03 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 3:43 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 03:33:47PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 3:06 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Fri, Apr 14, 2006 at 02:44:35PM -0400, Nair, Murlidharan T wrote: > > > > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > McClure > > Jr > > Sent: Friday, April 14, 2006 1:17 PM > > To: Getting started with Red Hat Linux > > Subject: Re: Storage space partition > > > > On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > > > > > > > > > [root at bioinformatics ~]# pvcreate /dev/emcpowera > > Physical volume "/dev/emcpowera" successfully created > > > > [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Volume group "bio01VG" successfully created > > Okay, now I'm not sure what is going on. It is more common for linux > to identify the drives as /dev/sda, /dev/sdb, etc. rather than > /dev/emcpowera. What might be more useful would be to run > > fdisk -l # That's ell as in list. > > and see what drives show up. Is it possible that /dev/emcpowera is > the physical SAN disk(s) and that /dev/sdb and /dev/sdc are the > virtual disks created by the SAN? If so, the latter should be > partitioned and pvcreated. > > Also note that you created the partition and then ignored it. Had you > used the partition, it would have been called /dev/emcpowera1 when you > ran pvcreate. > > Rick Stevens, feel free to jump in here. I'm operating from very > recent and limited experience with a SAN. > > > [root at bioinformatics ~]# vgdisplay bio01VG > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Volume group "bio01VG" doesn't exist > > > > [root at bioinformatics ~]# vgchange -a y bio01VG > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Unable to find volume group "bio01VG" > > > I just noticed that the partition it created was called emcpowera1. Here > is part of the output > ======================================================== > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > Command (m for help): w > The partition table has been altered! > > Calling ioctl() to re-read partition table. > Syncing disks. > ======================================================== > I assumed that it would create the partition with the same name so when > I did a pvcreate I used > pvcreate /dev/emcpowera > > I am thinking of doing a pvremove I ran the test here is what I got > ================================================================== > [root at bioinformatics /]# pvremove -t -v /dev/emcpowera > Test mode: Metadata will NOT be updated. > /dev/cdrom: open failed: Read-only file system > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Labels on physical volume "/dev/emcpowera" successfully wiped > Test mode: Wiping internal cach > ================================================================== > Then I can start back with pvcreate correct? Also will there be any > consequences of running vgcreate on /dev/emcpowera that used dev/sbd ? > If so how can I fix it? > > Thanks for your time ../Murli Did you run "fdisk -l"? I wanted to see if /dev/sdb or /dev/sdc showed up. If either sdb or sdc are synonyms for emcpowera, it would be better to use it/them just because it's more customary and will result in fewer surprises. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe Here is the output of fdisk -l Disk /dev/sda: 36.3 GB, 36364615680 bytes 64 heads, 32 sectors/track, 34680 cylinders Units = cylinders of 2048 * 512 = 1048576 bytes Device Boot Start End Blocks Id System /dev/sda1 1 31 31728 de Dell Utility /dev/sda2 32 7748 7902208 83 Linux /dev/sda3 * 7749 7848 102400 83 Linux /dev/sda4 7849 34680 27475968 5 Extended /dev/sda5 7849 8872 1048560 83 Linux /dev/sda6 8873 10920 2097136 82 Linux swap /dev/sda7 10921 14925 4101104 83 Linux /dev/sda8 14926 19915 5109744 83 Linux /dev/sda9 19916 34630 15068144 83 Linux Disk /dev/sdb: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sdb1 1 85113 683670141 8e Linux LVM Disk /dev/sdc: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sdc1 1 85113 683670141 8e Linux LVM Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes 255 heads, 63 sectors/track, 85113 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/emcpowera1 1 85113 683670141 8e Linux LVM Cheers ../Murli From bob at bobcatos.com Fri Apr 14 20:02:41 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 15:02:41 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414200241.GA18456@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 03:46:03PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 3:43 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > On Fri, Apr 14, 2006 at 03:33:47PM -0400, Nair, Murlidharan T wrote: > > > > > > -----Original Message----- > > From: redhat-install-list-bounces at redhat.com > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > McClure > > Jr > > Sent: Friday, April 14, 2006 3:06 PM > > To: Getting started with Red Hat Linux > > Subject: Re: Storage space partition > > > > On Fri, Apr 14, 2006 at 02:44:35PM -0400, Nair, Murlidharan T wrote: > > > > > > > > > -----Original Message----- > > > From: redhat-install-list-bounces at redhat.com > > > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob > > McClure > > > Jr > > > Sent: Friday, April 14, 2006 1:17 PM > > > To: Getting started with Red Hat Linux > > > Subject: Re: Storage space partition > > > > > > On Fri, Apr 14, 2006 at 11:46:24AM -0400, Nair, Murlidharan T wrote: > > > > > > > > > > > > > > > > > [root at bioinformatics ~]# pvcreate /dev/emcpowera > > > Physical volume "/dev/emcpowera" successfully created > > > > > > [root at bioinformatics ~]# vgcreate bio01VG /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdb > > > not /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdc > > > not /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdb > > > not /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdc > > > not /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdb > > > not /dev/emcpowera > > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using > /dev/sdc > > > not /dev/emcpowera > > > Volume group "bio01VG" successfully created > > > > Okay, now I'm not sure what is going on. It is more common for linux > > to identify the drives as /dev/sda, /dev/sdb, etc. rather than > > /dev/emcpowera. What might be more useful would be to run > > > > fdisk -l # That's ell as in list. > > > > and see what drives show up. Is it possible that /dev/emcpowera is > > the physical SAN disk(s) and that /dev/sdb and /dev/sdc are the > > virtual disks created by the SAN? If so, the latter should be > > partitioned and pvcreated. > > > > Also note that you created the partition and then ignored it. Had you > > used the partition, it would have been called /dev/emcpowera1 when you > > ran pvcreate. > > > > Rick Stevens, feel free to jump in here. I'm operating from very > > recent and limited experience with a SAN. > > > > > > > > I just noticed that the partition it created was called emcpowera1. > Here > > is part of the output > > ======================================================== > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > > 255 heads, 63 sectors/track, 85113 cylinders > > Units = cylinders of 16065 * 512 = 8225280 bytes > > > > Device Boot Start End Blocks Id System > > /dev/emcpowera1 1 85113 683670141 8e Linux > LVM > > > > Command (m for help): w > > The partition table has been altered! > > > > Calling ioctl() to re-read partition table. > > Syncing disks. > > ======================================================== > > I assumed that it would create the partition with the same name so > when > > I did a pvcreate I used > > pvcreate /dev/emcpowera > > > > I am thinking of doing a pvremove I ran the test here is what I got > > ================================================================== > > [root at bioinformatics /]# pvremove -t -v /dev/emcpowera > > Test mode: Metadata will NOT be updated. > > /dev/cdrom: open failed: Read-only file system > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > > not /dev/emcpowera > > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > > not /dev/emcpowera > > Labels on physical volume "/dev/emcpowera" successfully wiped > > Test mode: Wiping internal cach > > ================================================================== > > Then I can start back with pvcreate correct? Also will there be any > > consequences of running vgcreate on /dev/emcpowera that used dev/sbd ? > > If so how can I fix it? > > > > Thanks for your time ../Murli > > Did you run "fdisk -l"? I wanted to see if /dev/sdb or /dev/sdc > showed up. If either sdb or sdc are synonyms for emcpowera, it would > be better to use it/them just because it's more customary and will > result in fewer surprises. > > Cheers, > -- > Bob McClure, Jr. Bobcat Open Systems, Inc. > bob at bobcatos.com http://www.bobcatos.com > The best things in life aren't things. > > _______________________________________________ > > Here is the output of fdisk -l > > Disk /dev/sda: 36.3 GB, 36364615680 bytes > 64 heads, 32 sectors/track, 34680 cylinders > Units = cylinders of 2048 * 512 = 1048576 bytes > > Device Boot Start End Blocks Id System > /dev/sda1 1 31 31728 de Dell Utility > /dev/sda2 32 7748 7902208 83 Linux > /dev/sda3 * 7749 7848 102400 83 Linux > /dev/sda4 7849 34680 27475968 5 Extended > /dev/sda5 7849 8872 1048560 83 Linux > /dev/sda6 8873 10920 2097136 82 Linux swap > /dev/sda7 10921 14925 4101104 83 Linux > /dev/sda8 14926 19915 5109744 83 Linux > /dev/sda9 19916 34630 15068144 83 Linux > > Disk /dev/sdb: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdb1 1 85113 683670141 8e Linux LVM > > Disk /dev/sdc: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdc1 1 85113 683670141 8e Linux LVM > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > > Cheers ../Murli Okay, I somewhat expected that. Your SAN appears to be showing your machine multiple variants of the same device. I don't know what your SAN hardware is, but my sole experience is with HP's MSA-1500 with MSA-20 and MSA-30 shelves. On it, we had to go into "Selective Storage Presentation" to keep linux from seeing 16 or more devices, most of which were bogus. Otherwise, every time you run "vgscan" or anything related, it's going to see multiple instances of the real virtual (?) disk. Once you get that sorted out, I'd run pvcreate on the partition, /dev/sdb1, rather than the whole drive /dev/sdb. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From mnair at iusb.edu Fri Apr 14 20:09:41 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 16:09:41 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 4:03 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition > > > > > > > > > > > > > Here is the output of fdisk -l > > Disk /dev/sda: 36.3 GB, 36364615680 bytes > 64 heads, 32 sectors/track, 34680 cylinders > Units = cylinders of 2048 * 512 = 1048576 bytes > > Device Boot Start End Blocks Id System > /dev/sda1 1 31 31728 de Dell Utility > /dev/sda2 32 7748 7902208 83 Linux > /dev/sda3 * 7749 7848 102400 83 Linux > /dev/sda4 7849 34680 27475968 5 Extended > /dev/sda5 7849 8872 1048560 83 Linux > /dev/sda6 8873 10920 2097136 82 Linux swap > /dev/sda7 10921 14925 4101104 83 Linux > /dev/sda8 14926 19915 5109744 83 Linux > /dev/sda9 19916 34630 15068144 83 Linux > > Disk /dev/sdb: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdb1 1 85113 683670141 8e Linux LVM > > Disk /dev/sdc: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdc1 1 85113 683670141 8e Linux LVM > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > > Cheers ../Murli Okay, I somewhat expected that. Your SAN appears to be showing your machine multiple variants of the same device. I don't know what your SAN hardware is, but my sole experience is with HP's MSA-1500 with MSA-20 and MSA-30 shelves. On it, we had to go into "Selective Storage Presentation" to keep linux from seeing 16 or more devices, most of which were bogus. Otherwise, every time you run "vgscan" or anything related, it's going to see multiple instances of the real virtual (?) disk. Once you get that sorted out, I'd run pvcreate on the partition, /dev/sdb1, rather than the whole drive /dev/sdb. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe If I run pvremove it should put it back to the original state correct? Here is the output of the test run [root at bioinformatics /]# pvremove -t -v /dev/emcpowera Test mode: Metadata will NOT be updated. /dev/cdrom: open failed: Read-only file system Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Labels on physical volume "/dev/emcpowera" successfully wiped Test mode: Wiping internal cache From bob at bobcatos.com Fri Apr 14 20:34:00 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 15:34:00 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414203400.GA19285@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 04:09:41PM -0400, Nair, Murlidharan T wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure > Jr > Sent: Friday, April 14, 2006 4:03 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > > > > > > > > > > > > > > > > > > Here is the output of fdisk -l > > > > Disk /dev/sda: 36.3 GB, 36364615680 bytes > > 64 heads, 32 sectors/track, 34680 cylinders > > Units = cylinders of 2048 * 512 = 1048576 bytes > > > > Device Boot Start End Blocks Id System > > /dev/sda1 1 31 31728 de Dell Utility > > /dev/sda2 32 7748 7902208 83 Linux > > /dev/sda3 * 7749 7848 102400 83 Linux > > /dev/sda4 7849 34680 27475968 5 Extended > > /dev/sda5 7849 8872 1048560 83 Linux > > /dev/sda6 8873 10920 2097136 82 Linux swap > > /dev/sda7 10921 14925 4101104 83 Linux > > /dev/sda8 14926 19915 5109744 83 Linux > > /dev/sda9 19916 34630 15068144 83 Linux > > > > Disk /dev/sdb: 700.0 GB, 700079669248 bytes > > 255 heads, 63 sectors/track, 85113 cylinders > > Units = cylinders of 16065 * 512 = 8225280 bytes > > > > Device Boot Start End Blocks Id System > > /dev/sdb1 1 85113 683670141 8e Linux LVM > > > > Disk /dev/sdc: 700.0 GB, 700079669248 bytes > > 255 heads, 63 sectors/track, 85113 cylinders > > Units = cylinders of 16065 * 512 = 8225280 bytes > > > > Device Boot Start End Blocks Id System > > /dev/sdc1 1 85113 683670141 8e Linux LVM > > > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > > 255 heads, 63 sectors/track, 85113 cylinders > > Units = cylinders of 16065 * 512 = 8225280 bytes > > > > Device Boot Start End Blocks Id System > > /dev/emcpowera1 1 85113 683670141 8e Linux > LVM > > > > > > Cheers ../Murli > > Okay, I somewhat expected that. Your SAN appears to be showing your > machine multiple variants of the same device. I don't know what your > SAN hardware is, but my sole experience is with HP's MSA-1500 with > MSA-20 and MSA-30 shelves. On it, we had to go into "Selective > Storage Presentation" to keep linux from seeing 16 or more devices, > most of which were bogus. Otherwise, every time you run "vgscan" or > anything related, it's going to see multiple instances of the real > virtual (?) disk. > > Once you get that sorted out, I'd run pvcreate on the partition, > /dev/sdb1, rather than the whole drive /dev/sdb. > > Cheers, > -- > Bob McClure, Jr. Bobcat Open Systems, Inc. > bob at bobcatos.com http://www.bobcatos.com > The best things in life aren't things. > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > > If I run pvremove it should put it back to the original state correct? Yes, I think so. > Here is the output of the test run > > [root at bioinformatics /]# pvremove -t -v /dev/emcpowera > Test mode: Metadata will NOT be updated. > /dev/cdrom: open failed: Read-only file system > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb > not /dev/emcpowera > Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc > not /dev/emcpowera > Labels on physical volume "/dev/emcpowera" successfully wiped > Test mode: Wiping internal cache You know you're using the "-t" option to test only. But, yes, other than that, it should do The Right Thing. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From Jack.Allen at McKesson.com Fri Apr 14 20:35:38 2006 From: Jack.Allen at McKesson.com (Allen, Jack) Date: Fri, 14 Apr 2006 16:35:38 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Nair, Murlidharan T Sent: Friday, April 14, 2006 4:10 PM To: Getting started with Red Hat Linux Subject: RE: Storage space partition -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 4:03 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition > > > > > > > > > > > > > Here is the output of fdisk -l > > Disk /dev/sda: 36.3 GB, 36364615680 bytes > 64 heads, 32 sectors/track, 34680 cylinders > Units = cylinders of 2048 * 512 = 1048576 bytes > > Device Boot Start End Blocks Id System > /dev/sda1 1 31 31728 de Dell Utility > /dev/sda2 32 7748 7902208 83 Linux > /dev/sda3 * 7749 7848 102400 83 Linux > /dev/sda4 7849 34680 27475968 5 Extended > /dev/sda5 7849 8872 1048560 83 Linux > /dev/sda6 8873 10920 2097136 82 Linux swap > /dev/sda7 10921 14925 4101104 83 Linux > /dev/sda8 14926 19915 5109744 83 Linux > /dev/sda9 19916 34630 15068144 83 Linux > > Disk /dev/sdb: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdb1 1 85113 683670141 8e Linux LVM > > Disk /dev/sdc: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/sdc1 1 85113 683670141 8e Linux LVM > > Disk /dev/emcpowera: 700.0 GB, 700079669248 bytes > 255 heads, 63 sectors/track, 85113 cylinders > Units = cylinders of 16065 * 512 = 8225280 bytes > > Device Boot Start End Blocks Id System > /dev/emcpowera1 1 85113 683670141 8e Linux LVM > > > Cheers ../Murli Okay, I somewhat expected that. Your SAN appears to be showing your machine multiple variants of the same device. I don't know what your SAN hardware is, but my sole experience is with HP's MSA-1500 with MSA-20 and MSA-30 shelves. On it, we had to go into "Selective Storage Presentation" to keep linux from seeing 16 or more devices, most of which were bogus. Otherwise, every time you run "vgscan" or anything related, it's going to see multiple instances of the real virtual (?) disk. Once you get that sorted out, I'd run pvcreate on the partition, /dev/sdb1, rather than the whole drive /dev/sdb. Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe If I run pvremove it should put it back to the original state correct? Here is the output of the test run [root at bioinformatics /]# pvremove -t -v /dev/emcpowera Test mode: Metadata will NOT be updated. /dev/cdrom: open failed: Read-only file system Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdb not /dev/emcpowera Found duplicate PV XKollgX4GsBzbFyJsK13JS62S3P4b0Vr: using /dev/sdc not /dev/emcpowera Labels on physical volume "/dev/emcpowera" successfully wiped Test mode: Wiping internal cache ============================================================================ ====== When using a SAN and there are multiple paths to it, you will see multiple sdX entries for the true storage. This means you could access /dev/sda and see the exact same things if you access /dev/sdb as an example if the SAN had been configure to allow access to 1 LUN. With EMC's Navisphere and PowerPath installed, there will also be a /dev/emcpowera. This is what you want to either partition and or make the whole things a Physical Volume in LVM. When you run the pvcreate command, or many of the other LVM related command it scans the /dev directory and reads each block device it find to see if it is part of a Volume Group and/or can be used by LVM. This is why you are getting the duplicate messages and the message about the cdrom. To keep this from happening you have to edit /etc/lvm/lvm.conf. There are some pretty good comments that explains things. The main idea is to exclude the /dev/sd* and /dev/cdrom names and only use the /dev/emcpower* names. This is a little brief in the scheme of things, but I hope it helps. I can try to give more detail if needed. Talk 2 U later. Jack Allen From bob at bobcatos.com Fri Apr 14 20:58:47 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 15:58:47 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414205847.GA20651@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 04:35:38PM -0400, Allen, Jack wrote: > > > When using a SAN and there are multiple paths to it, you will see > multiple sdX entries for the true storage. This means you could access > /dev/sda and see the exact same things if you access /dev/sdb as an example > if the SAN had been configure to allow access to 1 LUN. With EMC's > Navisphere and PowerPath installed, there will also be a /dev/emcpowera. > This is what you want to either partition and or make the whole things a > Physical Volume in LVM. When you run the pvcreate command, or many of the > other LVM related command it scans the /dev directory and reads each block > device it find to see if it is part of a Volume Group and/or can be used by > LVM. This is why you are getting the duplicate messages and the message > about the cdrom. > > To keep this from happening you have to edit /etc/lvm/lvm.conf. > There are some pretty good comments that explains things. The main idea is > to exclude the /dev/sd* and /dev/cdrom names and only use the /dev/emcpower* > names. Why would you prefer to use /dev/emcpower* rather than /dev/sd*? Seems the latter would yield fewer surprises, even if it's exactly equivalent. Just curious. > This is a little brief in the scheme of things, but I hope it helps. > I can try to give more detail if needed. > > Talk 2 U later. > Jack Allen Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From mnair at iusb.edu Fri Apr 14 21:06:35 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 17:06:35 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 4:59 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 04:35:38PM -0400, Allen, Jack wrote: > > > When using a SAN and there are multiple paths to it, you will see > multiple sdX entries for the true storage. This means you could access > /dev/sda and see the exact same things if you access /dev/sdb as an example > if the SAN had been configure to allow access to 1 LUN. With EMC's > Navisphere and PowerPath installed, there will also be a /dev/emcpowera. > This is what you want to either partition and or make the whole things a > Physical Volume in LVM. When you run the pvcreate command, or many of the > other LVM related command it scans the /dev directory and reads each block > device it find to see if it is part of a Volume Group and/or can be used by > LVM. This is why you are getting the duplicate messages and the message > about the cdrom. > > To keep this from happening you have to edit /etc/lvm/lvm.conf. > There are some pretty good comments that explains things. The main idea is > to exclude the /dev/sd* and /dev/cdrom names and only use the /dev/emcpower* > names. Why would you prefer to use /dev/emcpower* rather than /dev/sd*? Seems the latter would yield fewer surprises, even if it's exactly equivalent. Just curious. > This is a little brief in the scheme of things, but I hope it helps. > I can try to give more detail if needed. > > Talk 2 U later. > Jack Allen Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe I am doing this for the first time. Since the device is identified as emcpowera I figured that is the what I need to use. I am absolutely new to this. Thanks so much for taking to time to reply to my questions. I shall let you know as things move along. Cheers ../Murli From Jack.Allen at McKesson.com Fri Apr 14 21:20:34 2006 From: Jack.Allen at McKesson.com (Allen, Jack) Date: Fri, 14 Apr 2006 17:20:34 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 4:59 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 04:35:38PM -0400, Allen, Jack wrote: > > > When using a SAN and there are multiple paths to it, you will see > multiple sdX entries for the true storage. This means you could access > /dev/sda and see the exact same things if you access /dev/sdb as an example > if the SAN had been configure to allow access to 1 LUN. With EMC's > Navisphere and PowerPath installed, there will also be a /dev/emcpowera. > This is what you want to either partition and or make the whole things a > Physical Volume in LVM. When you run the pvcreate command, or many of the > other LVM related command it scans the /dev directory and reads each block > device it find to see if it is part of a Volume Group and/or can be used by > LVM. This is why you are getting the duplicate messages and the message > about the cdrom. > > To keep this from happening you have to edit /etc/lvm/lvm.conf. > There are some pretty good comments that explains things. The main idea is > to exclude the /dev/sd* and /dev/cdrom names and only use the /dev/emcpower* > names. Why would you prefer to use /dev/emcpower* rather than /dev/sd*? Seems the latter would yield fewer surprises, even if it's exactly equivalent. Just curious. @@@@@@@@@@ Because if you use the /dev/dsb/sda and that path becomes inaccessible you will not be able to use the disk. This is the whole purpose of EMC's PowerPath. The /dev/emcpower* are pseudo devices and the software will determine which path can be used. The PowerPath software also does load balancing between the path. There can be many more than 2 paths. You could have 2 FC HBAs that each are connected to a FC Switch, then each FC Switch has 2 paths to the SAN, 2 for each SAN SP (Storage Processor). This would give 4 paths to each LUN. So if the SAN has presented 4 LUNs the system would see 16 /dev/sd* entries and the PowerPath software would create /dev/emcpowera through /dev/emcpowerd. This would hold true even if the /dev/sd* started at say /dev/sdc. @@@@@@@@@ > This is a little brief in the scheme of things, but I hope it helps. > I can try to give more detail if needed. > > Talk 2 U later. > Jack Allen Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. =========================================================== See answers and comments above between @@@@@@@@@@. Talk 2 U later. Jack Allen From bob at bobcatos.com Fri Apr 14 21:32:06 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 14 Apr 2006 16:32:06 -0500 Subject: Storage space partition In-Reply-To: References: Message-ID: <20060414213206.GA22528@bobcat.bobcatos.com> On Fri, Apr 14, 2006 at 05:20:34PM -0400, Allen, Jack wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr > Sent: Friday, April 14, 2006 4:59 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > > On Fri, Apr 14, 2006 at 04:35:38PM -0400, Allen, Jack wrote: > > > > > > When using a SAN and there are multiple paths to it, you will see > > multiple sdX entries for the true storage. This means you could access > > /dev/sda and see the exact same things if you access /dev/sdb as an > example > > if the SAN had been configure to allow access to 1 LUN. With EMC's > > Navisphere and PowerPath installed, there will also be a /dev/emcpowera. > > This is what you want to either partition and or make the whole things a > > Physical Volume in LVM. When you run the pvcreate command, or many of the > > other LVM related command it scans the /dev directory and reads each block > > device it find to see if it is part of a Volume Group and/or can be used > by > > LVM. This is why you are getting the duplicate messages and the message > > about the cdrom. > > > > To keep this from happening you have to edit /etc/lvm/lvm.conf. > > There are some pretty good comments that explains things. The main idea is > > to exclude the /dev/sd* and /dev/cdrom names and only use the > /dev/emcpower* > > names. > > Why would you prefer to use /dev/emcpower* rather than /dev/sd*? > Seems the latter would yield fewer surprises, even if it's exactly > equivalent. Just curious. > @@@@@@@@@@ > Because if you use the /dev/dsb/sda and that path becomes inaccessible you > will not be able to use the disk. This is the whole purpose of EMC's > PowerPath. The /dev/emcpower* are pseudo devices and the software will > determine which path can be used. The PowerPath software also does load > balancing between the path. There can be many more than 2 paths. You could > have 2 FC HBAs that each are connected to a FC Switch, then each FC Switch > has 2 paths to the SAN, 2 for each SAN SP (Storage Processor). This would > give 4 paths to each LUN. So if the SAN has presented 4 LUNs the system > would see 16 /dev/sd* entries and the PowerPath software would create > /dev/emcpowera through /dev/emcpowerd. This would hold true even if the > /dev/sd* started at say /dev/sdc. > @@@@@@@@@ Okay, that makes sense. I didn't realize the significance of /dev/sdb and /dev/sdc. > > This is a little brief in the scheme of things, but I hope it helps. > > I can try to give more detail if needed. > > > > Talk 2 U later. > > Jack Allen > > Cheers, > -- > Bob McClure, Jr. > =========================================================== > See answers and comments above between @@@@@@@@@@. > > Talk 2 U later. > Jack Allen Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. From mnair at iusb.edu Fri Apr 14 22:14:02 2006 From: mnair at iusb.edu (Nair, Murlidharan T) Date: Fri, 14 Apr 2006 18:14:02 -0400 Subject: Storage space partition Message-ID: -----Original Message----- From: redhat-install-list-bounces at redhat.com [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr Sent: Friday, April 14, 2006 5:32 PM To: Getting started with Red Hat Linux Subject: Re: Storage space partition On Fri, Apr 14, 2006 at 05:20:34PM -0400, Allen, Jack wrote: > > > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Bob McClure Jr > Sent: Friday, April 14, 2006 4:59 PM > To: Getting started with Red Hat Linux > Subject: Re: Storage space partition > > > On Fri, Apr 14, 2006 at 04:35:38PM -0400, Allen, Jack wrote: > > > > > > When using a SAN and there are multiple paths to it, you will see > > multiple sdX entries for the true storage. This means you could access > > /dev/sda and see the exact same things if you access /dev/sdb as an > example > > if the SAN had been configure to allow access to 1 LUN. With EMC's > > Navisphere and PowerPath installed, there will also be a /dev/emcpowera. > > This is what you want to either partition and or make the whole things a > > Physical Volume in LVM. When you run the pvcreate command, or many of the > > other LVM related command it scans the /dev directory and reads each block > > device it find to see if it is part of a Volume Group and/or can be used > by > > LVM. This is why you are getting the duplicate messages and the message > > about the cdrom. > > > > To keep this from happening you have to edit /etc/lvm/lvm.conf. > > There are some pretty good comments that explains things. The main idea is > > to exclude the /dev/sd* and /dev/cdrom names and only use the > /dev/emcpower* > > names. > > Why would you prefer to use /dev/emcpower* rather than /dev/sd*? > Seems the latter would yield fewer surprises, even if it's exactly > equivalent. Just curious. > @@@@@@@@@@ > Because if you use the /dev/dsb/sda and that path becomes inaccessible you > will not be able to use the disk. This is the whole purpose of EMC's > PowerPath. The /dev/emcpower* are pseudo devices and the software will > determine which path can be used. The PowerPath software also does load > balancing between the path. There can be many more than 2 paths. You could > have 2 FC HBAs that each are connected to a FC Switch, then each FC Switch > has 2 paths to the SAN, 2 for each SAN SP (Storage Processor). This would > give 4 paths to each LUN. So if the SAN has presented 4 LUNs the system > would see 16 /dev/sd* entries and the PowerPath software would create > /dev/emcpowera through /dev/emcpowerd. This would hold true even if the > /dev/sd* started at say /dev/sdc. > @@@@@@@@@ Okay, that makes sense. I didn't realize the significance of /dev/sdb and /dev/sdc. > > This is a little brief in the scheme of things, but I hope it helps. > > I can try to give more detail if needed. > > > > Talk 2 U later. > > Jack Allen > > Cheers, > -- > Bob McClure, Jr. > =========================================================== > See answers and comments above between @@@@@@@@@@. > > Talk 2 U later. > Jack Allen Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com The best things in life aren't things. _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe I finally finished it. I removed the volume like I mentioned before using pvremove then recreated it using pvcreate and this time used pvcreate /dev/emcpowera1 which was the name given to the partition. I also added the following filter to lvm.conf filter = [ "a/sda[1-9]$/", "a/sda[1-9][0-5]$/" "r/sd.*/", "a/.*/" ] I am so relieved. Thank you all for your help and comments. They were indeed very helpful. Now I am going for a well deserved game of Tennis !! Cheers always!! Murli From bret_stern at machinemanagement.com Sat Apr 15 01:47:55 2006 From: bret_stern at machinemanagement.com (Bret Stern) Date: Fri, 14 Apr 2006 18:47:55 -0700 Subject: Dual NIC Cards In-Reply-To: <1145038673.20728.204.camel@prophead.corp.publichost.com> Message-ID: > -----Original Message----- > From: redhat-install-list-bounces at redhat.com > [mailto:redhat-install-list-bounces at redhat.com]On Behalf Of Rick Stevens > Sent: Friday, April 14, 2006 10:18 AM > To: Getting started with Red Hat Linux > Subject: Re: Dual NIC Cards > > > On Fri, 2006-04-14 at 11:02 -0700, Rick Stevens wrote: > > On Thu, 2006-04-13 at 23:18 -0600, karlp at ourldsfamily.com wrote: > > > On Thu, April 13, 2006 10:41 pm, Bret Stern said: > > > > > > > > I have dual network cards in a new box > > > > i'm putting together. Fedora 4 > > > > > > Me, too. > > > > I have machines with up to 6. > > > > > > Both cards are set to activate on boot, but > > > > only one starts on boot. The other will start > > > > manually. > > > > > > Mine both start on boot. > > > > > > > > > > > One card has a static ip. > > > > One card gets assigned an ip address (dhcp) > > > > > > I assigned static IPs to both. That may be why one of yours > doesn't start. > > > Is the one that starts the static or DHCP assigned nic? > > > > > > > > > > > Can both cards have the same hostname? > > > > (go ahead have fun with that question) > > > > > > They have to have the same hostname. I don't see an option in > the gui setup > > > to give a different hostname for each card. > > > > Ah, fertile ground for misunderstandings. You must keep in mind that > > there are differences between hostnames, nodenames and FQDNs (fully > > qualified domain names). > > > > A machine can only have one hostname (as displayed by "hostname" or > > "uname -n"), and is the true hostname. By default, it's "localhost" or > > the FQDN "localhost.localdomain". > > > > A machine _may_ have a nodename under NIS/NIS+ and is set and displayed > > by the "domainname" command. Unless you run NIS/NIS+, you needn't worry > > about this, and if you do run it, 95 times out of 100 you'll set it to > > be the same as the hostname. > > > > Now, each IP address on the machine _may_ have a FQDN associated with > > it, but it's not required. Each FQDN can have a number of DNS aliases > > associated with it (called CNAMEs in DNS parlance). > > > > Confused yet? > > > > > > I've heard you can only have a gateway address > > > > on one nic card. Is this correct? > > > > > > Yes, it's correct. > > > > Uhm, this must be clarified. There is only one _default_ gateway, and > > that is the "route of last resort". In other words, if you try to send > > traffic to a node that is not on a network directly connected to one of > > your NICs (as determined by the IP address/netmask combination) AND you > > don't have a route forcing traffic for the remote node's network through > > one of your NICs, THEN the traffic goes out the default gateway. If you > > do have a route for the network, it goes out the NIC that has that > > route. > > > > As an example, assume a machine with two NICs. eth0 has an IP of > > 192.168.0.2. eth1 has an IP of 10.0.0.2. The default gateway is > > 192.168.0.1 (obviously on eth1). > > DOH! That should read "(obviously on eth0)." That's what happens when > your boss is talking to you while you compose responses! > So you only assign a gateway entry to ONE of the nic cards? > > > > Now, let's say you try to ping 10.24.1.1. The traffic will go out eth0, > > since the default gateway (actually, the default route) is on eth0. > > However, you really want any traffic for 10.0.0.0/8 to go out on eth1. > > You set up a static route: > > > > route add -net 10.0.0.0 netmask 255.0.0.0 dev eth1 > > > > Now, any traffic for the 10.0.0.0/8 network will go out eth1. You > > can repeat that for as many networks (or hosts, if the netmask is /32) > > as you wish on each NIC (well, up to some practical limit). > > > > ---------------------------------------------------------------------- > > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > > - VitalStream, Inc. http://www.vitalstream.com - > > - - > > - If this is the first day of the rest of my life... - > > - I'm in BIG trouble! - > > ---------------------------------------------------------------------- > > > > _______________________________________________ > > Redhat-install-list mailing list > > Redhat-install-list at redhat.com > > https://www.redhat.com/mailman/listinfo/redhat-install-list > > To Unsubscribe Go To ABOVE URL or send a message to: > > redhat-install-list-request at redhat.com > > Subject: unsubscribe > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - IGNORE that man behind the keyboard! - > - - The Wizard of OS - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe From rstevens at vitalstream.com Mon Apr 17 17:51:54 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 17 Apr 2006 10:51:54 -0700 Subject: Dual NIC Cards In-Reply-To: References: Message-ID: <1145296314.20728.216.camel@prophead.corp.publichost.com> On Fri, 2006-04-14 at 18:47 -0700, Bret Stern wrote: > > > > > I've heard you can only have a gateway address > > > > > on one nic card. Is this correct? > > > > > > > > Yes, it's correct. > > > > > > Uhm, this must be clarified. There is only one _default_ gateway, and > > > that is the "route of last resort". In other words, if you try to send > > > traffic to a node that is not on a network directly connected to one of > > > your NICs (as determined by the IP address/netmask combination) AND you > > > don't have a route forcing traffic for the remote node's network through > > > one of your NICs, THEN the traffic goes out the default gateway. If you > > > do have a route for the network, it goes out the NIC that has that > > > route. > > > > > > As an example, assume a machine with two NICs. eth0 has an IP of > > > 192.168.0.2. eth1 has an IP of 10.0.0.2. The default gateway is > > > 192.168.0.1 (obviously on eth1). > > > > DOH! That should read "(obviously on eth0)." That's what happens when > > your boss is talking to you while you compose responses! > > > > So you only assign a gateway entry to ONE of the nic cards? Actually, you define a single _default_ gateway for the entire machine. It will automatically assign itself to one of the NICs, depending on which NIC is "closest" to the gateway machine. This is why the "GATEWAY=" parameter is in /etc/sysconfig/network and not in one of the /etc/sysconfig/network-scripts/ifcfg-ethX files. If you have specific routes you want to force through specific interfaces, then you can create those in /etc/sysconfig/network-scripts/route-ethX files. > > > > > > Now, let's say you try to ping 10.24.1.1. The traffic will go out eth0, > > > since the default gateway (actually, the default route) is on eth0. > > > However, you really want any traffic for 10.0.0.0/8 to go out on eth1. > > > You set up a static route: > > > > > > route add -net 10.0.0.0 netmask 255.0.0.0 dev eth1 > > > > > > Now, any traffic for the 10.0.0.0/8 network will go out eth1. You > > > can repeat that for as many networks (or hosts, if the netmask is /32) > > > as you wish on each NIC (well, up to some practical limit). ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - grasshopotomaus: A creature that can leap to tremendous heights... - - ...once. - ---------------------------------------------------------------------- From mhammerton at gmail.com Mon Apr 17 23:03:08 2006 From: mhammerton at gmail.com (Mark Hammerton) Date: Mon, 17 Apr 2006 19:03:08 -0400 Subject: need help with boot cd Message-ID: <310b80f10604171603xc3530f9l7c9de9c2c00e0615@mail.gmail.com> i finally created a boot cd that will boot up and it uses the ks.cfg file on the cd so it does a complete install with out me beiing there. however after i install it instructs me to reboot and when i go to reboot it doesnt come grub starts to load and but nothing is install except a few folders under the root directory but no files or any of the packages are install before i reboot i checked the red hat installation screen and go this off of it *not all packages in hdlist had order tag File descriptor 3 left open the file descriptor on list from 1 until 31 No volume groups found these ar eth errors that i see on the screen from. can anyone help me out as to what they think my problem may be. everything would be greatly appreciated -------------- next part -------------- An HTML attachment was scrubbed... URL: From mhammerton at gmail.com Thu Apr 20 19:40:28 2006 From: mhammerton at gmail.com (Mark Hammerton) Date: Thu, 20 Apr 2006 15:40:28 -0400 Subject: Stripping down red hat cds Message-ID: <310b80f10604201240s104649edsb15db64058b9428a@mail.gmail.com> I wanted to created a single RHEL v4 CD {down from 5cds} during the installation i know which packages i need however i want to know which rpms would i need to keep such as including and fixing dependeencies so i can do a base instal from one cd or one jump drive. I can show you the ks.cfg file so you can see which pacages i need -- my LAN is your LAN -------------- next part -------------- An HTML attachment was scrubbed... URL: From rstevens at vitalstream.com Thu Apr 20 20:26:37 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 20 Apr 2006 13:26:37 -0700 Subject: Stripping down red hat cds In-Reply-To: <310b80f10604201240s104649edsb15db64058b9428a@mail.gmail.com> References: <310b80f10604201240s104649edsb15db64058b9428a@mail.gmail.com> Message-ID: <1145564797.2349.5.camel@prophead.corp.publichost.com> On Thu, 2006-04-20 at 15:40 -0400, Mark Hammerton wrote: > I wanted to created a single RHEL v4 CD {down from 5cds} during the > installation i know which packages i need however i want to know which > rpms would i need to keep such as including and fixing dependeencies > so i can do a base instal from one cd or one jump drive. > > I can show you the ks.cfg file so you can see which pacages i need This is not a trivial thing. It's not merely a matter of stripping out RPMs you don't want. The installer knows what the layout of the CDs are (which RPMs are on which CD), the SHA1 or MD5 checksum of the discs, etc.). You have to bugger that database as well or the installer (a.k.a. "anaconda") will reject your CD. I'd suggest a "google" search on "remaster Red Hat CDs". Here is one link to a relevant article...note that you'll have to check the message archive to find his actual scripts. https://www.redhat.com/archives/anaconda-devel-list/2006-January/msg00018.html ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - When you don't know what to do, walk fast and look worried. - ---------------------------------------------------------------------- From harold at hallikainen.com Sun Apr 23 02:24:54 2006 From: harold at hallikainen.com (Harold Hallikainen) Date: Sat, 22 Apr 2006 19:24:54 -0700 (PDT) Subject: manual modem dial, then ppp? Message-ID: <35826.24.234.204.74.1145759094.squirrel@sujan.hallikainen.org> I'm still meesing with ppp and my cellphone. Various attempts at using wvdial and kppp have not worked. wvdial returns error 8 (and we've discussed it on this list quite a bit in the past, and I did not get it to work). Kppp seems to get hung up in waiting for responses from the modem. It sits there forever saying "waiting for ok." GKTerm seems to work fine. I can dial into my machine. It asks for username and password. I enter them and am given a shell prompt. I can use pine for email, though GKTerm seems to throw an extra newline into the screen now and then, giving a pretty messy screen. So... since manual dialing (using atdt through my keyboard), logging in, etc. seems to work, I wonder if there's a way I can do that and then set up a ppp link. Is there something at the shell prompt I can type to say "start sending me ppp" (kinda like slirp in the old days)? Similarly, is there something I do on my laptop (running FC4) to say "start running ppp now?" This is all running through a USB to EIA232 adaptor to my cellphone at 14.4kbps (kinda slow, but it works!). Also, by the way, I can use my wife's Windoze machine with the USB to cellphone connection, and it seems to work fine. Ideas? THANKS! Harold -- FCC Rules Updated Daily at http://www.hallikainen.com From fta7wmt at netvigator.com Sun Apr 23 09:35:40 2006 From: fta7wmt at netvigator.com (lstar) Date: Sun, 23 Apr 2006 17:35:40 +0800 Subject: dovecot services problem Message-ID: <000f01c666b9$493c4f70$0a00a8c0@lstar2> Hi All, I would like to block the pop3 services. In dovecot configuration, I modify the statement 'protocol pop3 pop3s imap imaps' After restart the service, I use nmap to deterfine which port is open. I found that port 110,143,993 and 995 also open. If i need to restrict some domain cannot access pop3 services, I should set the iptables to block all above ports. Or I only need to block 110 port that 's ok On the other hand, if i want to use tcp wrapper to block pop3 services for some of domain , how can i modify the host.deny Regards lstar -------------- next part -------------- An HTML attachment was scrubbed... URL: From karlp at ourldsfamily.com Sun Apr 23 18:59:00 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Sun, 23 Apr 2006 12:59:00 -0600 (MDT) Subject: Fedora Core 5 Dual Head In-Reply-To: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> Message-ID: <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> When I turn on Dual Head for X.org, it looks like the second monitor has a bad horizontal sync setting. With FC4, it worked out of the box, first try. I've edited xorg.conf to no avail as system-config-display messes things up rather than making it easier. On FC4, I could probe the monitor and it would come back correctly. No such option here, or am I running the wrong app? One very annoying little side affect is that the bottom panel is now in the middle of the screen and one I added to the side is about 1/3rd of the way off the right edge. I can't get those to behave either... Help anyone? Karl From rstevens at vitalstream.com Mon Apr 24 18:31:54 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 24 Apr 2006 11:31:54 -0700 Subject: manual modem dial, then ppp? In-Reply-To: <35826.24.234.204.74.1145759094.squirrel@sujan.hallikainen.org> References: <35826.24.234.204.74.1145759094.squirrel@sujan.hallikainen.org> Message-ID: <1145903514.3635.53.camel@prophead.corp.publichost.com> On Sat, 2006-04-22 at 19:24 -0700, Harold Hallikainen wrote: > I'm still meesing with ppp and my cellphone. Various attempts at using > wvdial and kppp have not worked. wvdial returns error 8 (and we've > discussed it on this list quite a bit in the past, and I did not get it to > work). Kppp seems to get hung up in waiting for responses from the modem. > It sits there forever saying "waiting for ok." Ok, that seems like an easy one. Bring up kppp, select your modem and click on "Edit...". In the next box, click on the "Modem" tab and then click on the "Modem Commands..." button. In the next screen, enter "V1" in the "Initialization string 2" box and click "Save". That forces the modem to use verbose response codes as opposed to numeric ones. > GKTerm seems to work fine. I can dial into my machine. It asks for > username and password. I enter them and am given a shell prompt. I can use > pine for email, though GKTerm seems to throw an extra newline into the > screen now and then, giving a pretty messy screen. That's usually caused by the EOL handling or wrapping. Try turning off line wrap in your GKTerm preferences. > So... since manual dialing (using atdt through my keyboard), logging in, > etc. seems to work, I wonder if there's a way I can do that and then set > up a ppp link. Is there something at the shell prompt I can type to say > "start sending me ppp" (kinda like slirp in the old days)? Similarly, is > there something I do on my laptop (running FC4) to say "start running ppp > now?" You can try running either pppd or ipppd. I've never done that but it may work for you. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Doctor! My brain hurts!" "It will have to come out!" - ---------------------------------------------------------------------- From rstevens at vitalstream.com Mon Apr 24 18:36:09 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 24 Apr 2006 11:36:09 -0700 Subject: Fedora Core 5 Dual Head In-Reply-To: <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> Message-ID: <1145903769.3635.57.camel@prophead.corp.publichost.com> On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: > When I turn on Dual Head for X.org, it looks like the second monitor has a > bad horizontal sync setting. With FC4, it worked out of the box, first try. > I've edited xorg.conf to no avail as system-config-display messes things up > rather than making it easier. On FC4, I could probe the monitor and it would > come back correctly. No such option here, or am I running the wrong app? Which video card are you using, Karl? If it's nVidia, did you install a new binary driver and if so, try using their config tool. > One very annoying little side affect is that the bottom panel is now in the > middle of the screen and one I added to the side is about 1/3rd of the way > off the right edge. I can't get those to behave either... That's definitely either a vsync issue or a resolution issue. To be honest, I'm just now getting a machine up to run FC5 (haven't had the time until now), so I'll be in a better position to answer FC5 issues later. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - You possess a mind not merely twisted, but actually sprained. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Mon Apr 24 18:46:42 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 24 Apr 2006 11:46:42 -0700 Subject: dovecot services problem In-Reply-To: <000f01c666b9$493c4f70$0a00a8c0@lstar2> References: <000f01c666b9$493c4f70$0a00a8c0@lstar2> Message-ID: <1145904403.3635.68.camel@prophead.corp.publichost.com> On Sun, 2006-04-23 at 17:35 +0800, lstar wrote: > Hi All, > I would like to block the pop3 services. > In dovecot configuration, I modify the statement 'protocol pop3 pop3s > imap imaps' Did you disable pop3 and pop3s in your dovecot config? > After restart the service, I use nmap to deterfine which port is open. > I found that port 110,143,993 and 995 also open. Yes, port 110 is POP3, and 995 is POP3S. 143 is IMAP and 993 is IMAPS. > If i need to restrict some domain cannot access pop3 services, I > should set the iptables to block all above ports. > Or I only need to block 110 port that 's ok > On the other hand, if i want to use tcp wrapper to block pop3 services > for some of domain , how can i modify the host.deny You can do either. If you want to block POP3 access, you can add lines like -A INPUT -s 0/0 -p tcp -m tcp --dport 110 -j DROP -A INPUT -s 0/0 -p tcp -m tcp --dport 995 -j DROP to /etc/sysconfig/iptables to block POP3/POP3S access, or you can use pop3 : ALL pop3s : ALL to /etc/hosts.deny. Personally, I prefer an iptables solution. It's implemented in the IP stack--not userspace--and it will block access even if a given application was NOT built with tcpwrappers support. The "DROP" option is also nice since the machine won't respond with an "access denied" packet...it simply throws the probes in the bit bucket. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Do you know how to save five drowning lawyers? No? GOOD! - ---------------------------------------------------------------------- From rstevens at vitalstream.com Mon Apr 24 20:52:12 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 24 Apr 2006 13:52:12 -0700 Subject: FC5 X86_64 Installation on HP Pavilion ZV6130US Laptop (blind post) Message-ID: <1145911932.3635.78.camel@prophead.corp.publichost.com> If anyone else out there is having problems with Anaconda crashing during a GUI install of FC5 on the above laptop, make sure you go into the BIOS of the machine and set the video system to use the sideport memory ONLY! If you have the system set up to use either system memory or system memory+sideport, anaconda (well, python actually) will have a problem and crash. Once the system is installed, you can go back to using system-only or system+sideport memory. System-only memory is needed if you use nVidia's binary video driver. Just thought I'd toss that one into the pile. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Microsoft is a cross between The Borg and the Ferengi. - - Unfortunately they use Borg to do their marketing and Ferengi to - - do their programming." -- Simon Slavin - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Mon Apr 24 22:47:57 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Mon, 24 Apr 2006 16:47:57 -0600 (MDT) Subject: Fedora Core 5 Dual Head In-Reply-To: <1145903769.3635.57.camel@prophead.corp.publichost.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> Message-ID: <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> On Mon, April 24, 2006 12:36 pm, Rick Stevens said: > On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: >> When I turn on Dual Head for X.org, it looks like the second monitor has a >> bad horizontal sync setting. With FC4, it worked out of the box, first >> try. >> I've edited xorg.conf to no avail as system-config-display messes things >> up >> rather than making it easier. On FC4, I could probe the monitor and it >> would >> come back correctly. No such option here, or am I running the wrong app? > > Which video card are you using, Karl? If it's nVidia, did you install > a new binary driver and if so, try using their config tool. ATI. It worked flawlessly on FC4. . . > >> One very annoying little side affect is that the bottom panel is now in >> the >> middle of the screen and one I added to the side is about 1/3rd of the way >> off the right edge. I can't get those to behave either... > > That's definitely either a vsync issue or a resolution issue. Solved that. Middle mouse button, drag to edge of screen, let go of mouse button. Duh. > > To be honest, I'm just now getting a machine up to run FC5 (haven't had > the time until now), so I'll be in a better position to answer FC5 > issues later. > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - You possess a mind not merely twisted, but actually sprained. - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From rstevens at vitalstream.com Mon Apr 24 23:08:58 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Mon, 24 Apr 2006 16:08:58 -0700 Subject: Fedora Core 5 Dual Head In-Reply-To: <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> Message-ID: <1145920138.3635.105.camel@prophead.corp.publichost.com> On Mon, 2006-04-24 at 16:47 -0600, karlp at ourldsfamily.com wrote: > On Mon, April 24, 2006 12:36 pm, Rick Stevens said: > > On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: > >> When I turn on Dual Head for X.org, it looks like the second monitor has a > >> bad horizontal sync setting. With FC4, it worked out of the box, first > >> try. > >> I've edited xorg.conf to no avail as system-config-display messes things > >> up > >> rather than making it easier. On FC4, I could probe the monitor and it > >> would > >> come back correctly. No such option here, or am I running the wrong app? > > > > Which video card are you using, Karl? If it's nVidia, did you install > > a new binary driver and if so, try using their config tool. > > ATI. It worked flawlessly on FC4. . . Hmmmm. Well, FC5 uses a much later kernel. Wonder if there's an issue with ATI's driver and it. > >> One very annoying little side affect is that the bottom panel is now in > >> the > >> middle of the screen and one I added to the side is about 1/3rd of the way > >> off the right edge. I can't get those to behave either... > > > > That's definitely either a vsync issue or a resolution issue. > > Solved that. Middle mouse button, drag to edge of screen, let go of mouse > button. Duh. Ugnh! I misunderstood you...I thought it was at the margin of the screen, but the screen was mucked up. > > > > > To be honest, I'm just now getting a machine up to run FC5 (haven't had > > the time until now), so I'll be in a better position to answer FC5 > > issues later. And my laptop is being a right bitch about doing FC5. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If at first you don't succeed, quit. No sense being a damned fool! - ---------------------------------------------------------------------- From fta7wmt at netvigator.com Tue Apr 25 01:59:32 2006 From: fta7wmt at netvigator.com (fta7wmt at netvigator.com) Date: Tue, 25 Apr 2006 9:59:32 +0800 Subject: dovecot services problem Message-ID: <20060425015932.DLRW15870.hmail01dat.netvigator.com@mail.netvigator.com> Dear Rick Thank you for your reply I try to restrict the pop3 services with your suggestion. I can block the service by iptables, but I cannot ensure the hosts.deny is work on restrict the pop3 services. After I configure the hosts.deny and I try to telnet ip 110, I still can access the POP3 services. How can I test the pop3 service with hosts.deny ? On Sun, 2006-04-23 at 17:35 +0800, lstar wrote: > Hi All, > I would like to block the pop3 services. > In dovecot configuration, I modify the statement 'protocol pop3 pop3s > imap imaps' Did you disable pop3 and pop3s in your dovecot config? > After restart the service, I use nmap to deterfine which port is open. > I found that port 110,143,993 and 995 also open. Yes, port 110 is POP3, and 995 is POP3S. 143 is IMAP and 993 is IMAPS. > If i need to restrict some domain cannot access pop3 services, I > should set the iptables to block all above ports. > Or I only need to block 110 port that 's ok > On the other hand, if i want to use tcp wrapper to block pop3 services > for some of domain , how can i modify the host.deny You can do either. If you want to block POP3 access, you can add lines like -A INPUT -s 0/0 -p tcp -m tcp --dport 110 -j DROP -A INPUT -s 0/0 -p tcp -m tcp --dport 995 -j DROP to /etc/sysconfig/iptables to block POP3/POP3S access, or you can use pop3 : ALL pop3s : ALL to /etc/hosts.deny. Personally, I prefer an iptables solution. It's implemented in the IP stack--not userspace--and it will block access even if a given application was NOT built with tcpwrappers support. The "DROP" option is also nice since the machine won't respond with an "access denied" packet...it simply throws the probes in the bit bucket. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Do you know how to save five drowning lawyers? No? GOOD! - ---------------------------------------------------------------------- _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe From rstevens at vitalstream.com Tue Apr 25 16:36:38 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 25 Apr 2006 09:36:38 -0700 Subject: dovecot services problem In-Reply-To: <20060425015932.DLRW15870.hmail01dat.netvigator.com@mail.netvigator.com> References: <20060425015932.DLRW15870.hmail01dat.netvigator.com@mail.netvigator.com> Message-ID: <1145982998.3635.133.camel@prophead.corp.publichost.com> On Tue, 2006-04-25 at 09:59 +0800, fta7wmt at netvigator.com wrote: > Dear Rick > Thank you for your reply > I try to restrict the pop3 services with your suggestion. > I can block the service by iptables, but I cannot ensure the hosts.deny is work on restrict the pop3 services. > After I configure the hosts.deny and I try to telnet ip 110, I still can access the POP3 services. > How can I test the pop3 service with hosts.deny ? I don't know if dovecot comes compiled with tcpwrapper support. If it is NOT compiled with tcpwrapper, then it won't even consult hosts.allow or hosts.deny. You'd have to rebuild dovecot with tcpwrapper enabled to make it go. That's one of the problems with tcpwrapper...the program MUST be compiled with tcpwrapper and linked against its library or it doesn't work. iptables, however, blocks packets at the IP protocol stack long before applications could even see them. In other words, iptables works at kernel level and will work with ANY application, while tcpwrapper works at application level and demands the cooperation of the application to operate. That's why I prefer iptables. It ALWAYS works with ALL applications-- even if it's a bit more difficult to configure than tcpwrappers. > > On Sun, 2006-04-23 at 17:35 +0800, lstar wrote: > > Hi All, > > I would like to block the pop3 services. > > In dovecot configuration, I modify the statement 'protocol pop3 pop3s > > imap imaps' > > Did you disable pop3 and pop3s in your dovecot config? > > > After restart the service, I use nmap to deterfine which port is open. > > I found that port 110,143,993 and 995 also open. > > Yes, port 110 is POP3, and 995 is POP3S. 143 is IMAP and 993 is IMAPS. > > > If i need to restrict some domain cannot access pop3 services, I > > should set the iptables to block all above ports. > > Or I only need to block 110 port that 's ok > > On the other hand, if i want to use tcp wrapper to block pop3 services > > for some of domain , how can i modify the host.deny > > You can do either. If you want to block POP3 access, you can add lines > like > > -A INPUT -s 0/0 -p tcp -m tcp --dport 110 -j DROP > -A INPUT -s 0/0 -p tcp -m tcp --dport 995 -j DROP > > to /etc/sysconfig/iptables to block POP3/POP3S access, or you can use > > pop3 : ALL > pop3s : ALL > > to /etc/hosts.deny. > > Personally, I prefer an iptables solution. It's implemented in the IP > stack--not userspace--and it will block access even if a given > application was NOT built with tcpwrappers support. The "DROP" option > is also nice since the machine won't respond with an "access denied" > packet...it simply throws the probes in the bit bucket. > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - Do you know how to save five drowning lawyers? No? GOOD! - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - We look for things. Things that make us go! - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Tue Apr 25 20:52:52 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Tue, 25 Apr 2006 14:52:52 -0600 (MDT) Subject: Fedora Core 5 Dual Head In-Reply-To: <1145920138.3635.105.camel@prophead.corp.publichost.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> <1145920138.3635.105.camel@prophead.corp.publichost.com> Message-ID: <32909.207.173.117.242.1145998372.squirrel@webmail.ourldsfamily.com> On Mon, April 24, 2006 5:08 pm, Rick Stevens said: > On Mon, 2006-04-24 at 16:47 -0600, karlp at ourldsfamily.com wrote: >> On Mon, April 24, 2006 12:36 pm, Rick Stevens said: >> > On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: >> >> When I turn on Dual Head for X.org, it looks like the second monitor >> has a >> >> bad horizontal sync setting. With FC4, it worked out of the box, first >> >> try. >> >> I've edited xorg.conf to no avail as system-config-display messes >> things >> >> up >> >> rather than making it easier. On FC4, I could probe the monitor and it >> >> would >> >> come back correctly. No such option here, or am I running the wrong >> app? >> > >> > Which video card are you using, Karl? If it's nVidia, did you install >> > a new binary driver and if so, try using their config tool. >> >> ATI. It worked flawlessly on FC4. . . > > Hmmmm. Well, FC5 uses a much later kernel. Wonder if there's an issue > with ATI's driver and it. > I've now tried an nVidia card with the same results. Okay, not the same. much worse. ATI at least powers both monitors if I don't have dual head on. With it on, the cursor shows up, but the rest of the screen is messed up. With nVidia, the screen goes to block characters, flashing, no GUI at all. No mouse pointer, nothing. I've got a newer 9250 series nVidia card to try later if I have time so I guess we'll see how that goes. >> >> One very annoying little side affect is that the bottom panel is now in >> >> the >> >> middle of the screen and one I added to the side is about 1/3rd of the >> way >> >> off the right edge. I can't get those to behave either... >> > >> > That's definitely either a vsync issue or a resolution issue. >> >> Solved that. Middle mouse button, drag to edge of screen, let go of mouse >> button. Duh. > > Ugnh! I misunderstood you...I thought it was at the margin of the > screen, but the screen was mucked up. Nope, I'm messed up. Drat. > >> >> > >> > To be honest, I'm just now getting a machine up to run FC5 (haven't had >> > the time until now), so I'll be in a better position to answer FC5 >> > issues later. > > And my laptop is being a right bitch about doing FC5. Sounds like X.org has some issues about keeping back-compatible drivers/driver-interpreters in a useful state. Have fun with the laptop. I just ordered a new PC for work and the vendor is installing FC4 on it. I guess I'll be giving up the GUI updater in favor of the command-line yum, which I'm using more on FC5 anyway. Karl > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - If at first you don't succeed, quit. No sense being a damned fool! - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From karlp at ourldsfamily.com Tue Apr 25 20:54:34 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Tue, 25 Apr 2006 14:54:34 -0600 (MDT) Subject: FC5 X86_64 Installation on HP Pavilion ZV6130US Laptop (blind post) In-Reply-To: <1145911932.3635.78.camel@prophead.corp.publichost.com> References: <1145911932.3635.78.camel@prophead.corp.publichost.com> Message-ID: <32914.207.173.117.242.1145998474.squirrel@webmail.ourldsfamily.com> On Mon, April 24, 2006 2:52 pm, Rick Stevens said: > If anyone else out there is having problems with Anaconda crashing > during a GUI install of FC5 on the above laptop, make sure you go into > the BIOS of the machine and set the video system to use the sideport > memory ONLY! If you have the system set up to use either system memory > or system memory+sideport, anaconda (well, python actually) will have > a problem and crash. > > Once the system is installed, you can go back to using system-only or > system+sideport memory. System-only memory is needed if you use > nVidia's binary video driver. > > Just thought I'd toss that one into the pile. [ anyone got a match? But please, no A&M engineering students. ] KLP > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - "Microsoft is a cross between The Borg and the Ferengi. - > - Unfortunately they use Borg to do their marketing and Ferengi to - > - do their programming." -- Simon Slavin - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From rstevens at vitalstream.com Tue Apr 25 21:42:39 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 25 Apr 2006 14:42:39 -0700 Subject: FC5 X86_64 Installation on HP Pavilion ZV6130US Laptop (blind post) In-Reply-To: <32914.207.173.117.242.1145998474.squirrel@webmail.ourldsfamily.com> References: <1145911932.3635.78.camel@prophead.corp.publichost.com> <32914.207.173.117.242.1145998474.squirrel@webmail.ourldsfamily.com> Message-ID: <1146001359.3635.145.camel@prophead.corp.publichost.com> On Tue, 2006-04-25 at 14:54 -0600, karlp at ourldsfamily.com wrote: > On Mon, April 24, 2006 2:52 pm, Rick Stevens said: > > If anyone else out there is having problems with Anaconda crashing > > during a GUI install of FC5 on the above laptop, make sure you go into > > the BIOS of the machine and set the video system to use the sideport > > memory ONLY! If you have the system set up to use either system memory > > or system memory+sideport, anaconda (well, python actually) will have > > a problem and crash. > > > > Once the system is installed, you can go back to using system-only or > > system+sideport memory. System-only memory is needed if you use > > nVidia's binary video driver. > > > > Just thought I'd toss that one into the pile. > > [ anyone got a match? But please, no A&M engineering students. ] Heheheh! You know how them Aggies are! (he smartly says as a USC alum). Oh, and that caveat also holds true for ATI chipsets--make sure it's on sideport only during install. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - A day for firm decisions!!! Well, then again, maybe not! - ---------------------------------------------------------------------- From rstevens at vitalstream.com Tue Apr 25 22:04:11 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Tue, 25 Apr 2006 15:04:11 -0700 Subject: Fedora Core 5 Dual Head In-Reply-To: <32909.207.173.117.242.1145998372.squirrel@webmail.ourldsfamily.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> <1145920138.3635.105.camel@prophead.corp.publichost.com> <32909.207.173.117.242.1145998372.squirrel@webmail.ourldsfamily.com> Message-ID: <1146002652.3635.166.camel@prophead.corp.publichost.com> On Tue, 2006-04-25 at 14:52 -0600, karlp at ourldsfamily.com wrote: > On Mon, April 24, 2006 5:08 pm, Rick Stevens said: > > On Mon, 2006-04-24 at 16:47 -0600, karlp at ourldsfamily.com wrote: > >> On Mon, April 24, 2006 12:36 pm, Rick Stevens said: > >> > On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: > >> >> When I turn on Dual Head for X.org, it looks like the second monitor > >> has a > >> >> bad horizontal sync setting. With FC4, it worked out of the box, first > >> >> try. > >> >> I've edited xorg.conf to no avail as system-config-display messes > >> things > >> >> up > >> >> rather than making it easier. On FC4, I could probe the monitor and it > >> >> would > >> >> come back correctly. No such option here, or am I running the wrong > >> app? > >> > > >> > Which video card are you using, Karl? If it's nVidia, did you install > >> > a new binary driver and if so, try using their config tool. > >> > >> ATI. It worked flawlessly on FC4. . . > > > > Hmmmm. Well, FC5 uses a much later kernel. Wonder if there's an issue > > with ATI's driver and it. > > > > I've now tried an nVidia card with the same results. Okay, not the same. > much worse. ATI at least powers both monitors if I don't have dual head on. > With it on, the cursor shows up, but the rest of the screen is messed up. > With nVidia, the screen goes to block characters, flashing, no GUI at all. > No mouse pointer, nothing. > > I've got a newer 9250 series nVidia card to try later if I have time so I > guess we'll see how that goes. > > >> >> One very annoying little side affect is that the bottom panel is now in > >> >> the > >> >> middle of the screen and one I added to the side is about 1/3rd of the > >> way > >> >> off the right edge. I can't get those to behave either... > >> > > >> > That's definitely either a vsync issue or a resolution issue. > >> > >> Solved that. Middle mouse button, drag to edge of screen, let go of mouse > >> button. Duh. > > > > Ugnh! I misunderstood you...I thought it was at the margin of the > > screen, but the screen was mucked up. > > Nope, I'm messed up. Drat. > > > > >> > >> > > >> > To be honest, I'm just now getting a machine up to run FC5 (haven't had > >> > the time until now), so I'll be in a better position to answer FC5 > >> > issues later. > > > > And my laptop is being a right bitch about doing FC5. > > Sounds like X.org has some issues about keeping back-compatible > drivers/driver-interpreters in a useful state. > > Have fun with the laptop. I just ordered a new PC for work and the vendor is > installing FC4 on it. I guess I'll be giving up the GUI updater in favor of > the command-line yum, which I'm using more on FC5 anyway. Got the laptop up last night. I couldn't get an upgrade to work (lots of weird crashes). The machine wasn't doing anything anyway, so I nuked it and did a fresh install which went flawlessly. BTW, gang, you'll have better luck burning your CDs for FC5 if you don't burn them at high speed. Several of the CDs are pushing the 700MB barrier pretty hard (685-688 MB) and you may have issues burning them at high speed due to edge flutter on the media. Remember, CDs are burned starting at the center and working out towards the edge. The faster you spin it, the more the media flutters out at the edge. You'll probably also have better luck using TAO mode instead of DAO. So: 1) Use good 700MB media (TDK, Memorex, etc.) 2) Burn at a lower speed (I'd suggest no faster than 16-32X) 3) Use TAO mode Or, in cdrecord parlance: cdrecord dev=ATA:1,0,0 speed=16 -tao name-of-image.iso And by all means, use the mediacheck facility of the installer. I'd recommend booting the installer with either "ide=nodma" or "hdX=nodma" where "hdX" is the device name of your CD drive and check the media before you try an install. The time you spend there will really keep you from ripping your hair out. These are really full CDs and even with the things I mentioned above, you may have problems with the media. "Perseverance: When you're too damned stubborn to say 'I quit!'" ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If this is the first day of the rest of my life... - - I'm in BIG trouble! - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Wed Apr 26 01:27:05 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Tue, 25 Apr 2006 19:27:05 -0600 (MDT) Subject: Fedora Core 5 Dual Head In-Reply-To: <1146002652.3635.166.camel@prophead.corp.publichost.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> <1145920138.3635.105.camel@prophead.corp.publichost.com> <32909.207.173.117.242.1145998372.squirrel@webmail.ourldsfamily.com> <1146002652.3635.166.camel@prophead.corp.publichost.com> Message-ID: <22352.198.60.114.90.1146014825.squirrel@webmail.ourldsfamily.com> On Tue, April 25, 2006 4:04 pm, Rick Stevens said: > On Tue, 2006-04-25 at 14:52 -0600, karlp at ourldsfamily.com wrote: >> On Mon, April 24, 2006 5:08 pm, Rick Stevens said: >> > On Mon, 2006-04-24 at 16:47 -0600, karlp at ourldsfamily.com wrote: >> >> On Mon, April 24, 2006 12:36 pm, Rick Stevens said: >> >> > On Sun, 2006-04-23 at 12:59 -0600, karlp at ourldsfamily.com wrote: >> >> >> When I turn on Dual Head for X.org, it looks like the second monitor >> >> has a >> >> >> bad horizontal sync setting. With FC4, it worked out of the box, >> first >> >> >> try. >> >> >> I've edited xorg.conf to no avail as system-config-display messes >> >> things >> >> >> up >> >> >> rather than making it easier. On FC4, I could probe the monitor and >> it >> >> >> would >> >> >> come back correctly. No such option here, or am I running the wrong >> >> app? >> >> > >> >> > Which video card are you using, Karl? If it's nVidia, did you >> install >> >> > a new binary driver and if so, try using their config tool. >> >> >> >> ATI. It worked flawlessly on FC4. . . >> > >> > Hmmmm. Well, FC5 uses a much later kernel. Wonder if there's an issue >> > with ATI's driver and it. >> > >> >> I've now tried an nVidia card with the same results. Okay, not the same. >> much worse. ATI at least powers both monitors if I don't have dual head >> on. >> With it on, the cursor shows up, but the rest of the screen is messed up. >> With nVidia, the screen goes to block characters, flashing, no GUI at all. >> No mouse pointer, nothing. >> >> I've got a newer 9250 series nVidia card to try later if I have time so I >> guess we'll see how that goes. >> >> >> >> One very annoying little side affect is that the bottom panel is now >> in >> >> >> the >> >> >> middle of the screen and one I added to the side is about 1/3rd of >> the >> >> way >> >> >> off the right edge. I can't get those to behave either... >> >> > >> >> > That's definitely either a vsync issue or a resolution issue. >> >> >> >> Solved that. Middle mouse button, drag to edge of screen, let go of >> mouse >> >> button. Duh. >> > >> > Ugnh! I misunderstood you...I thought it was at the margin of the >> > screen, but the screen was mucked up. >> >> Nope, I'm messed up. Drat. >> >> > >> >> >> >> > >> >> > To be honest, I'm just now getting a machine up to run FC5 (haven't >> had >> >> > the time until now), so I'll be in a better position to answer FC5 >> >> > issues later. >> > >> > And my laptop is being a right bitch about doing FC5. >> >> Sounds like X.org has some issues about keeping back-compatible >> drivers/driver-interpreters in a useful state. >> >> Have fun with the laptop. I just ordered a new PC for work and the vendor >> is >> installing FC4 on it. I guess I'll be giving up the GUI updater in favor >> of >> the command-line yum, which I'm using more on FC5 anyway. > > Got the laptop up last night. I couldn't get an upgrade to work (lots > of weird crashes). The machine wasn't doing anything anyway, so I nuked > it and did a fresh install which went flawlessly. > Excellent. As for my attempt at using the nVidia 9250... That's a Radeon 9250 and X wouldn't come up at all, so I'm back to the nv driver for an older card that at least does one monitor nicely. So far, dual head isn't an option on FC5. Karl From akelly at corisweb.org Wed Apr 26 10:52:20 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Wed, 26 Apr 2006 12:52:20 +0200 Subject: Mostly off topic, Evolution question Message-ID: <1146048740.2749.35.camel@localhost.localdomain> Hi all, please forgive how off topic this posting is; I have a query for the multi-booters on the list. Have any of you any experience with sharing data between distributions with high similarities? The specific scenario I'm after is this: I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last half year or so using FC4 exclusively and was pretty much very pleased with it all. FC5, however, seems nearly a step backwards and I'm not at all sure I want to use it much longer. But I'd like to keep it through a fair shakedown phase, maybe see if any coming updates brighten things up. Parallel, though, I'd like to test drive Ubuntu as a potential replacement. Right, nuff background. What I'm after is sharing a single evolution instance between FC5 and Ubuntu, so that I won't lose my mind trying to keep track of which mail might be where. Eventually I'll put up a dovecot server or something somewhere and migrate everything "off site", but for now I'm curious if I can share data in this way considering Gnome and Evolution are pretty standard on both sides. If I were to, say, move my .evolution folder to a separate partition and mount it in my home dir in both Distros, what are the chances that within a week I'd have munged my mail beyond repair? Anybody out there done anything like this? Andy From rstevens at vitalstream.com Wed Apr 26 16:47:39 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 09:47:39 -0700 Subject: Mostly off topic, Evolution question In-Reply-To: <1146048740.2749.35.camel@localhost.localdomain> References: <1146048740.2749.35.camel@localhost.localdomain> Message-ID: <1146070060.3635.199.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > Hi all, > please forgive how off topic this posting is; I have a query for the > multi-booters on the list. > > Have any of you any experience with sharing data between distributions > with high similarities? The specific scenario I'm after is this: > > I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last > half year or so using FC4 exclusively and was pretty much very pleased > with it all. FC5, however, seems nearly a step backwards and I'm not at > all sure I want to use it much longer. But I'd like to keep it through a > fair shakedown phase, maybe see if any coming updates brighten things > up. Parallel, though, I'd like to test drive Ubuntu as a potential > replacement. Right, nuff background. > > What I'm after is sharing a single evolution instance between FC5 and > Ubuntu, so that I won't lose my mind trying to keep track of which mail > might be where. Eventually I'll put up a dovecot server or something > somewhere and migrate everything "off site", but for now I'm curious if > I can share data in this way considering Gnome and Evolution are pretty > standard on both sides. > > If I were to, say, move my .evolution folder to a separate partition and > mount it in my home dir in both Distros, what are the chances that > within a week I'd have munged my mail beyond repair? > > Anybody out there done anything like this? I have. While I can't speak to Evolution specifically, it does work with Mozilla/Thunderbird and I've not had any issues regarding corrupted mailboxes. Since the data regarding the account is kept in the .evolution (or .mozilla or .firefox) directory (logins, mail paths, etc.), it should work fine unless Evolution itself changes the way it stores things. All bets are off then! BTW, a standard practice is to create an entirely separate "/home" partition for user home directories. Obviously, this gets mounted as "/home" on all of your distros so the users have a consistent home directory regardless of which one is booted. You must synchronize the passwd, shadow and group files of course, unless you're using NIS, NIS+ or LDAP for authentication. What specific problems are you having with FC5? I find it hard to believe you consider it a "step backward". Beyond some upgrade issues with the installer, FC5 is pretty good. There are a lot of inherent differences "under the hood" between it and FC4, so perhaps you're still trying to get used to those, but I'd hardly call it a step back. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - To understand recursion, you must first understand recursion. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Wed Apr 26 16:59:40 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 09:59:40 -0700 Subject: Fedora Core 5 Dual Head In-Reply-To: <22352.198.60.114.90.1146014825.squirrel@webmail.ourldsfamily.com> References: <11387.198.60.114.90.1144992182.squirrel@webmail.ourldsfamily.com> <13607.198.60.114.90.1145818740.squirrel@webmail.ourldsfamily.com> <1145903769.3635.57.camel@prophead.corp.publichost.com> <39175.207.173.117.242.1145918877.squirrel@ourldsfamily.com> <1145920138.3635.105.camel@prophead.corp.publichost.com> <32909.207.173.117.242.1145998372.squirrel@webmail.ourldsfamily.com> <1146002652.3635.166.camel@prophead.corp.publichost.com> <22352.198.60.114.90.1146014825.squirrel@webmail.ourldsfamily.com> Message-ID: <1146070780.3635.211.camel@prophead.corp.publichost.com> On Tue, 2006-04-25 at 19:27 -0600, karlp at ourldsfamily.com wrote: > On Tue, April 25, 2006 4:04 pm, Rick Stevens said: [snip] > > > > Got the laptop up last night. I couldn't get an upgrade to work (lots > > of weird crashes). The machine wasn't doing anything anyway, so I nuked > > it and did a fresh install which went flawlessly. > > > > Excellent. As for my attempt at using the nVidia 9250... That's a Radeon > 9250 and X wouldn't come up at all, so I'm back to the nv driver for an > older card that at least does one monitor nicely. So far, dual head isn't an > option on FC5. I'm hoping to get FC5 up on my Opteron at home this weekend. It's got an ATI RV350 AQ [Radeon 9600] card in it. It supports dual head so I'll have a go at that. My Athlon at home is a Shuttle X machine. I've got an ATI card in the AGP slot which is what I'm running on. The mobo has a dual-head nVidia built in (not sure which model it is). I'll have a go at FC5 on that machine, too. I may be able to advise you then on both ATI and nVidia dual-headedness stuff at that point. And I thought I was going to have a nice, quiet weekend. Oh, btw, FC5 on the Athlon 64 laptop is pretty smooth...once you get cpuspeed to stop racheting down the processor when it's on the AC adapter. Quick hack to /etc/cpuspeed.conf and a cpuspeed restart and all is good: [root at golem2 ~]# cat /proc/cpuinfo processor : 0 vendor_id : AuthenticAMD cpu family : 15 model : 47 model name : AMD Athlon(tm) 64 Processor 3200+ stepping : 2 cpu MHz : 2000.000 cache size : 512 KB fpu : yes fpu_exception : yes cpuid level : 1 wp : yes flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx mmxext fxsr_opt lm 3dnowext 3dnow pni lahf_lm bogomips : 3996.65 TLB size : 1024 4K pages clflush size : 64 cache_alignment : 64 address sizes : 40 bits physical, 48 bits virtual power management: ts fid vid ttp tm st 4K bogomips on an $800 64-bit laptop. Ahhhhh! ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If it's stupid and it works...it ain't stupid! - ---------------------------------------------------------------------- From brad.mugleston at comcast.net Wed Apr 26 17:33:48 2006 From: brad.mugleston at comcast.net (brad.mugleston at comcast.net) Date: Wed, 26 Apr 2006 11:33:48 -0600 (MDT) Subject: Strange Directory Message-ID: Been trying to clean up my hard drive and I have a directory labled "all-20050412" in my home directory and it's got a lot of dll files in it. There is a README file that indicated it's there to help play different sound files. It says it shoudl be loaded in /usr/local/lib/codecs but I don't have such a directory. If I make the directory and move everything there will what ever player needs it be able to find it? Also, do I move just the files or the directory? Thanks Brad Mugleston, KI0OT There are 10 types of people in this world. Those that understand binary and those that don't. From vlaurenz at advance.net Wed Apr 26 18:13:18 2006 From: vlaurenz at advance.net (Vito Laurenza) Date: Wed, 26 Apr 2006 14:13:18 -0400 Subject: RHEL4 Kickstart Partition Question In-Reply-To: References: Message-ID: <444FB83E.4080203@advance.net> Hello all, I am trying to specify the number of bytes per inode on a partion in my kickstart config. I am familiar with the mkfs.ext3 flag --bytes-per-inode. Is there a way to pass this flag through kickstart? I've noticed in my googling that in older versions of kickstart (as late as RH 8) there was a flag to the 'part' option (--bytes-per-inode=) which allowed this. It seems like this flag was removed in later versions of kickstart. Is there anyway that I can have this functionality with kickstart and RHEL4? Thanks in advance, Vito :::: Vito Laurenza :: Systems Administrator :: Advance Internet :: 201.793.1807 :: vlaurenz at advance.net From rstevens at vitalstream.com Wed Apr 26 18:15:58 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 11:15:58 -0700 Subject: Strange Directory In-Reply-To: References: Message-ID: <1146075358.3635.219.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 11:33 -0600, brad.mugleston at comcast.net wrote: > Been trying to clean up my hard drive and I have a directory > labled "all-20050412" in my home directory and it's got a lot of > dll files in it. > > There is a README file that indicated it's there to help play > different sound files. It says it shoudl be loaded in > /usr/local/lib/codecs but I don't have such a directory. If I > make the directory and move everything there will what ever player > needs it be able to find it? Also, do I move just the files or > the directory? Did you install a multimedia player such as Totem, Xine, mplayer or Ogle from a tarball? It sounds like Xine or Ogle to me. If so, then the odds are that they expect things in /usr/local/lib, so: # mv all-20050412 /usr/local/lib/codecs should do it. If you installed a player from an RPM, the odds are that the codecs want to go in /usr/lib/codecs. It's best to fire up the player and go through its config info. That should tell you where it wants the codecs. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Duct Tape + Magic Marker = Label Maker! - ---------------------------------------------------------------------- From rstevens at vitalstream.com Wed Apr 26 18:38:15 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 11:38:15 -0700 Subject: RHEL4 Kickstart Partition Question In-Reply-To: <444FB83E.4080203@advance.net> References: <444FB83E.4080203@advance.net> Message-ID: <1146076695.3635.226.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 14:13 -0400, Vito Laurenza wrote: > Hello all, > > I am trying to specify the number of bytes per inode on a partion in my > kickstart config. I am familiar with the mkfs.ext3 flag > --bytes-per-inode. Is there a way to pass this flag through kickstart? > > I've noticed in my googling that in older versions of kickstart (as late > as RH 8) there was a flag to the 'part' option (--bytes-per-inode=) > which allowed this. It seems like this flag was removed in later > versions of kickstart. Is there anyway that I can have this > functionality with kickstart and RHEL4? I'm afraid not. You could boot in rescue mode and partition the drive there, specifying your bytes per inode. Then you'd modify your kickstart file to NOT reformat the existing partitions on install. I know that sort of defeats the purpose of simple installs via kickstart, but if you're bound and determined to force a non-automatic byte-per- inode setting, that's what you'd have to do. Why was it removed? That's a question you'd have to ask the Red Hat gang. I suspect that a number of people got into trouble with wasting large amounts of disk space by dedicating, say, 16KB to an inode. > > Thanks in advance, > Vito > > :::: Vito Laurenza > :: Systems Administrator > :: Advance Internet > :: 201.793.1807 > :: vlaurenz at advance.net > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - God is real...........unless declared integer or long - ---------------------------------------------------------------------- From MGasparri at turismo-pecom.com.ar Wed Apr 26 18:52:51 2006 From: MGasparri at turismo-pecom.com.ar (Mauro Gasparri) Date: Wed, 26 Apr 2006 15:52:51 -0300 Subject: RHEL 4 and HP dx5150 Message-ID: I'm having problems when installing Red Hat Enterprise Linux 4 ES Update 3 on HP dx5150 (Athlon64, SATA disk, ATI chipset). Everything goes right on the graphical setup wizard, but before beginning copying the files (just after formatting /boot partition), I receive this message: install exited abnormally sending termination signals...done disabling swap... etc etc etc you may safely reboot your system I tryed: - Basic install - Full install - linux noprobe - linux nofb - linux acpi=off - linux ide=nodma Fedora Core 4 works perfect. Please, any help would me appreciated. Best regards, Mauro Gasparri mgasparri at turismo-pecom.com.ar ************************************************************************ TURISMO PECOM Sistema de Gesti?n de Calidad Certificado ISO 9001:2000 Visite nuestra p?gina WEB http://www.turismo-pecom.com.ar ************************************************************************ NOTA DE CONFIDENCIALIDAD Este mensaje (y sus anexos) es confidencial y puede contener informaci?n (i) de propiedad exclusiva de Turismo Pecom SACFI; o (ii) amparada por el secreto profesional. Si usted ha recibido este fax o e-mail por error, por favor comun?quelo inmediatamente v?a fax o e-mail y tenga la amabilidad de destruirlo; no deber? copiar el mensaje ni divulgar su contenido a ninguna persona. Muchas gracias. ************************************************************************ -------------- next part -------------- An HTML attachment was scrubbed... URL: From karlp at ourldsfamily.com Wed Apr 26 20:18:27 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Wed, 26 Apr 2006 14:18:27 -0600 (MDT) Subject: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <1146070060.3635.199.camel@prophead.corp.publichost.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> Message-ID: <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> On Wed, April 26, 2006 10:47 am, Rick Stevens said: > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last >> half year or so using FC4 exclusively and was pretty much very pleased >> with it all. FC5, however, seems nearly a step backwards and I'm not at >> all sure I want to use it much longer. But I'd like to keep it through a >> fair shakedown phase, maybe see if any coming updates brighten things >> up. Parallel, though, I'd like to test drive Ubuntu as a potential >> replacement. Right, nuff background. snip > What specific problems are you having with FC5? I find it hard to > believe you consider it a "step backward". Beyond some upgrade issues > with the installer, FC5 is pretty good. There are a lot of inherent > differences "under the hood" between it and FC4, so perhaps you're still > trying to get used to those, but I'd hardly call it a step back. I'm using it now and have found the enhancements are nice, like a gui updater/software installer, etc. One major drawback may be easier to solve, but it's a potential show-stopper: Gnome apps hang. I click on cancel, or OK and sometimes it that window just stops responding. Along with it, the menu bar at the top quits reacting. Sometimes it happens when I click on Applications, or System, etc. on the menu bar and it stops working. Gnome-terminal, if open, keeps working, but if I bring up a new window, it stays black and never shows a command prompt. The other show-stopper is Xorg itself. There's no option to probe a monitor or video card with FC5, so I have to guess settings based on inadequate manufacturer's docs. It also doesn't do Dual Head (another currently open thread) which I've struggled with... There's my 2 main complaints about FC5. Another minor one is that VMWare Workstation won't compile. I've switched to VMWare Server Beta, and it works, but I have to go through vmware-config.pl several times before it 'takes'. . . The last issue I can think of (I'm really on a roll, aren't I?) is USB usage. It works fine for my scanner; better than FC4 did actually, BUT Palm still doesn't work at all. I've not tried KDE, which I actually got to work ONCE with FC4... Enough yet? Stop... Karl From rstevens at vitalstream.com Wed Apr 26 20:18:36 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 13:18:36 -0700 Subject: RHEL 4 and HP dx5150 In-Reply-To: References: Message-ID: <1146082717.3635.229.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 15:52 -0300, Mauro Gasparri wrote: > > I'm having problems when installing Red Hat Enterprise Linux 4 ES > Update 3 on HP dx5150 (Athlon64, SATA disk, ATI chipset). > > Everything goes right on the graphical setup wizard, but before > beginning copying the files (just after formatting /boot partition), I > receive this message: > > install exited abnormally > sending termination signals...done > disabling swap... > etc > etc > etc > you may safely reboot your system > > I tryed: > > - Basic install > - Full install > - linux noprobe > - linux nofb > - linux acpi=off > - linux ide=nodma > > Fedora Core 4 works perfect. > > Please, any help would me appreciated. Try "linux noapic" and see how that works. It's not uncommon for the BIOS to muck up the APIC routing. You should also see if there's a BIOS update for the machine. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - To understand recursion, you must first understand recursion. - ---------------------------------------------------------------------- From MGasparri at turismo-pecom.com.ar Wed Apr 26 20:53:20 2006 From: MGasparri at turismo-pecom.com.ar (Mauro Gasparri) Date: Wed, 26 Apr 2006 17:53:20 -0300 Subject: RHEL 4 and HP dx5150 In-Reply-To: <1146082717.3635.229.camel@prophead.corp.publichost.com> Message-ID: No luck with "linux noapic". Also no update for BIOS. It's courious, but both on HP and Red Hat web sites, it says that RHEL 4 is certified for HP dx5150. Tryed disabling APIC from BIOS also. When I go to install log (via Ctrl+Alt+3), y see: formatting / as ext3 formatting /boot as ext3 error reading swap label on /dev/VolGroup00: [Errno 21] Is a directory error reading xfs label on /dev/VolGroup00: [Errno 21] Is a directory error reading jfs label on /dev/VolGroup00: [Errno 21] Is a directory Tryed with another hard disk, with no success. The problem is when /boot is finishing format, between that and the begginning of file copy. Regards, Mauro Gasparri mgasparri at turismo-pecom.com.ar Rick Stevens Sent by: redhat-install-list-bounces at redhat.com 26/04/2006 17:20 Please respond to Getting started with Red Hat Linux To Getting started with Red Hat Linux , MGasparri at turismo-pecom.com.ar cc Subject Re: RHEL 4 and HP dx5150 On Wed, 2006-04-26 at 15:52 -0300, Mauro Gasparri wrote: > > I'm having problems when installing Red Hat Enterprise Linux 4 ES > Update 3 on HP dx5150 (Athlon64, SATA disk, ATI chipset). > > Everything goes right on the graphical setup wizard, but before > beginning copying the files (just after formatting /boot partition), I > receive this message: > > install exited abnormally > sending termination signals...done > disabling swap... > etc > etc > etc > you may safely reboot your system > > I tryed: > > - Basic install > - Full install > - linux noprobe > - linux nofb > - linux acpi=off > - linux ide=nodma > > Fedora Core 4 works perfect. > > Please, any help would me appreciated. Try "linux noapic" and see how that works. It's not uncommon for the BIOS to muck up the APIC routing. You should also see if there's a BIOS update for the machine. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - To understand recursion, you must first understand recursion. - ---------------------------------------------------------------------- _______________________________________________ Redhat-install-list mailing list Redhat-install-list at redhat.com https://www.redhat.com/mailman/listinfo/redhat-install-list To Unsubscribe Go To ABOVE URL or send a message to: redhat-install-list-request at redhat.com Subject: unsubscribe ************************************************************************ TURISMO PECOM Sistema de Gesti?n de Calidad Certificado ISO 9001:2000 Visite nuestra p?gina WEB http://www.turismo-pecom.com.ar ************************************************************************ NOTA DE CONFIDENCIALIDAD Este mensaje (y sus anexos) es confidencial y puede contener informaci?n (i) de propiedad exclusiva de Turismo Pecom SACFI; o (ii) amparada por el secreto profesional. Si usted ha recibido este fax o e-mail por error, por favor comun?quelo inmediatamente v?a fax o e-mail y tenga la amabilidad de destruirlo; no deber? copiar el mensaje ni divulgar su contenido a ninguna persona. Muchas gracias. ************************************************************************ -------------- next part -------------- An HTML attachment was scrubbed... URL: From rstevens at vitalstream.com Wed Apr 26 21:01:59 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 14:01:59 -0700 Subject: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> Message-ID: <1146085319.3635.244.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: > On Wed, April 26, 2006 10:47 am, Rick Stevens said: > > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last > >> half year or so using FC4 exclusively and was pretty much very pleased > >> with it all. FC5, however, seems nearly a step backwards and I'm not at > >> all sure I want to use it much longer. But I'd like to keep it through a > >> fair shakedown phase, maybe see if any coming updates brighten things > >> up. Parallel, though, I'd like to test drive Ubuntu as a potential > >> replacement. Right, nuff background. > > snip > > > What specific problems are you having with FC5? I find it hard to > > believe you consider it a "step backward". Beyond some upgrade issues > > with the installer, FC5 is pretty good. There are a lot of inherent > > differences "under the hood" between it and FC4, so perhaps you're still > > trying to get used to those, but I'd hardly call it a step back. > > I'm using it now and have found the enhancements are nice, like a gui > updater/software installer, etc. One major drawback may be easier to solve, > but it's a potential show-stopper: Gnome apps hang. I click on cancel, or OK > and sometimes it that window just stops responding. Along with it, the menu > bar at the top quits reacting. Sometimes it happens when I click on > Applications, or System, etc. on the menu bar and it stops working. > Gnome-terminal, if open, keeps working, but if I bring up a new window, it > stays black and never shows a command prompt. Hmmmm...interesting. I'm not experiencing any of that. I really suspect a video driver issue here. Have you tried refreshing X? Try "CTRL-ALT-F1" to get to a non-GUI console, then "ALT-F7" to go back to GUI. If that doesn't help, try restarting X. You know, the old "CTRL-ALT-BACKSPACE" then logging in again. > > The other show-stopper is Xorg itself. There's no option to probe a monitor > or video card with FC5, so I have to guess settings based on inadequate > manufacturer's docs. Have you tried running "ddcprobe" or "X -probeonly"? For example, "ddcprobe" results in this on one of my machines: [root at prophead ~]# ddcprobe Videocard DDC probe results Description: Intel Corporation Intel(r)845G/845GL/845GE/845GV Graphics Controller Memory (MB): 7 Monitor DDC probe results ID: PNR5780 Name: Planar PL170 Horizontal Sync (kHZ): 24-80 Vertical Sync (HZ) : 49-75 Width (mm): 340 Height(mm): 270 It won't work on all monitors, but it does on a lot. > It also doesn't do Dual Head (another currently open > thread) which I've struggled with... Well, we don't know that yet. Xorg says it does, and I believe them. The Fedora list archives show others have it working as well. > There's my 2 main complaints about FC5. Another minor one is that VMWare > Workstation won't compile. I've switched to VMWare Server Beta, and it > works, but I have to go through vmware-config.pl several times before it > 'takes'. . . Hmmm. Does it work on FC4 under the same kernel? FC4 and FC5's current kernels are the same, 2.6.16-1.2096_FC[4|5] > The last issue I can think of (I'm really on a roll, aren't I?) is USB > usage. It works fine for my scanner; better than FC4 did actually, BUT Palm > still doesn't work at all. I've not tried KDE, which I actually got to work > ONCE with FC4... Enough yet? Stop... Palm and Linux have always been problematical. That being said, I've gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just fine via both USB and bluetooth on both FC4 and FC5. It does take a bit of fiddling, but it works. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - If Bill Gates got a dime for every time Windows crashes... - - ...oh, wait. He does. THAT explains it! - ---------------------------------------------------------------------- From rstevens at vitalstream.com Wed Apr 26 21:06:11 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 14:06:11 -0700 Subject: RHEL 4 and HP dx5150 In-Reply-To: References: Message-ID: <1146085572.3635.249.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 17:53 -0300, Mauro Gasparri wrote: > > No luck with "linux noapic". Also no update for BIOS. It's courious, > but both on HP and Red Hat web sites, it says that RHEL 4 is certified > for HP dx5150. > > Tryed disabling APIC from BIOS also. > > When I go to install log (via Ctrl+Alt+3), y see: > > formatting / as ext3 > formatting /boot as ext3 > error reading swap label on /dev/VolGroup00: [Errno 21] Is a > directory > error reading xfs label on /dev/VolGroup00: [Errno 21] Is a directory > error reading jfs label on /dev/VolGroup00: [Errno 21] Is a directory Oh, you're using LVM. It looks suspiciously like a disk configuration issue here with the LVM volume groups. The system is trying to locate the disk labels on VolGroup00 and isn't finding them. Therefore it can't format the new filesystems since it doesn't know where they are. > Tryed with another hard disk, with no success. Can you try it WITHOUT using LVM just as a test and see how that goes? ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - A squeegee, by any other name, wouldn't sound as funny. - ---------------------------------------------------------------------- From MGasparri at turismo-pecom.com.ar Wed Apr 26 21:23:44 2006 From: MGasparri at turismo-pecom.com.ar (Mauro Gasparri) Date: Wed, 26 Apr 2006 18:23:44 -0300 Subject: RHEL 4 and HP dx5150 In-Reply-To: <1146085572.3635.249.camel@prophead.corp.publichost.com> Message-ID: Same problem without using LVM, grrrrrrrrrr. But no "error reading", obviously. I feel lost. Mauro Gasparri Rick Stevens 26/04/2006 18:07 Please respond to rstevens at vitalstream.com To Getting started with Red Hat Linux , MGasparri at turismo-pecom.com.ar cc Subject Re: RHEL 4 and HP dx5150 On Wed, 2006-04-26 at 17:53 -0300, Mauro Gasparri wrote: > > No luck with "linux noapic". Also no update for BIOS. It's courious, > but both on HP and Red Hat web sites, it says that RHEL 4 is certified > for HP dx5150. > > Tryed disabling APIC from BIOS also. > > When I go to install log (via Ctrl+Alt+3), y see: > > formatting / as ext3 > formatting /boot as ext3 > error reading swap label on /dev/VolGroup00: [Errno 21] Is a > directory > error reading xfs label on /dev/VolGroup00: [Errno 21] Is a directory > error reading jfs label on /dev/VolGroup00: [Errno 21] Is a directory Oh, you're using LVM. It looks suspiciously like a disk configuration issue here with the LVM volume groups. The system is trying to locate the disk labels on VolGroup00 and isn't finding them. Therefore it can't format the new filesystems since it doesn't know where they are. > Tryed with another hard disk, with no success. Can you try it WITHOUT using LVM just as a test and see how that goes? ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - A squeegee, by any other name, wouldn't sound as funny. - ---------------------------------------------------------------------- ************************************************************************ TURISMO PECOM Sistema de Gesti?n de Calidad Certificado ISO 9001:2000 Visite nuestra p?gina WEB http://www.turismo-pecom.com.ar ************************************************************************ NOTA DE CONFIDENCIALIDAD Este mensaje (y sus anexos) es confidencial y puede contener informaci?n (i) de propiedad exclusiva de Turismo Pecom SACFI; o (ii) amparada por el secreto profesional. Si usted ha recibido este fax o e-mail por error, por favor comun?quelo inmediatamente v?a fax o e-mail y tenga la amabilidad de destruirlo; no deber? copiar el mensaje ni divulgar su contenido a ninguna persona. Muchas gracias. ************************************************************************ -------------- next part -------------- An HTML attachment was scrubbed... URL: From rstevens at vitalstream.com Wed Apr 26 22:30:51 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Wed, 26 Apr 2006 15:30:51 -0700 Subject: RHEL 4 and HP dx5150 In-Reply-To: References: Message-ID: <1146090652.3635.286.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 18:23 -0300, Mauro Gasparri wrote: > > Same problem without using LVM, grrrrrrrrrr. But no "error reading", > obviously. But where did it die without LVM? What did the F3 console say? > > I feel lost. Hmmmm. This is weird. It sure looks like an incompatiblity with a previous LVM installation. Oh, and Mauro, we prefer bottom posting on this list (post your responses AFTER what you're responding to). This is the opposite of what Outlook does. Think of this: Outlook format: I answer: Because it reads more logically. You ask: Why use bottom posting? Bottom posted format (our preferred way): You ask: Why use bottom posting? I answer: Because it reads more logically. See? > > > On Wed, 2006-04-26 at 17:53 -0300, Mauro Gasparri wrote: > > > > No luck with "linux noapic". Also no update for BIOS. It's courious, > > but both on HP and Red Hat web sites, it says that RHEL 4 is > certified > > for HP dx5150. > > > > Tryed disabling APIC from BIOS also. > > > > When I go to install log (via Ctrl+Alt+3), y see: > > > > formatting / as ext3 > > formatting /boot as ext3 > > error reading swap label on /dev/VolGroup00: [Errno 21] Is a > > directory > > error reading xfs label on /dev/VolGroup00: [Errno 21] Is a > directory > > error reading jfs label on /dev/VolGroup00: [Errno 21] Is a > directory > > Oh, you're using LVM. It looks suspiciously like a disk configuration > issue here with the LVM volume groups. The system is trying to locate > the disk labels on VolGroup00 and isn't finding them. Therefore it > can't format the new filesystems since it doesn't know where they are. > > > Tryed with another hard disk, with no success. > > Can you try it WITHOUT using LVM just as a test and see how that goes? ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Jimmie crack corn and I don't care...what kind of lousy attitude - - is THAT to have, huh? -- Dennis Miller - ---------------------------------------------------------------------- From geg1 at earthlink.net Wed Apr 26 22:42:47 2006 From: geg1 at earthlink.net (Gregory E. Garland) Date: Wed, 26 Apr 2006 18:42:47 -0400 Subject: RHEL 4 and HP dx5150 In-Reply-To: Message-ID: > Same problem without using LVM, grrrrrrrrrr. But no "error reading", obviously. > > I feel lost. > Just a wild idea, but are you using a 64-bit version of RHEL? I had all sorts of bizarre errors when trying to install the 32-bit version on my HP with an Athlon 64. -------------- next part -------------- An HTML attachment was scrubbed... URL: From wralphie at comcast.net Thu Apr 27 00:02:54 2006 From: wralphie at comcast.net (jludwig) Date: Wed, 26 Apr 2006 20:02:54 -0400 Subject: Strange Directory In-Reply-To: References: Message-ID: <200604262002.55118.wralphie@comcast.net> On Wednesday 26 April 2006 1:33 pm, brad.mugleston at comcast.net wrote: > Been trying to clean up my hard drive and I have a directory > labled "all-20050412" in my home directory and it's got a lot of > dll files in it. > > There is a README file that indicated it's there to help play > different sound files. It says it shoudl be loaded in > /usr/local/lib/codecs but I don't have such a directory. If I > make the directory and move everything there will what ever player > needs it be able to find it? Also, do I move just the files or > the directory? > > Thanks > > Brad Mugleston, KI0OT > > There are 10 types of people in this world. Those that > understand binary and those that don't. > DLL's are MicroScat dynamic overlay files. These are used by the wine interpeter to run MicroScat programs. These are usually in a hidden directory used by wine and can/will/might be specific to a given user. -- Some people have convictions. Some people have opinions I think I'll have a cheeseburger! From karlp at ourldsfamily.com Thu Apr 27 01:11:44 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Wed, 26 Apr 2006 19:11:44 -0600 (MDT) Subject: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <1146085319.3635.244.camel@prophead.corp.publichost.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> Message-ID: <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> On Wed, April 26, 2006 3:01 pm, Rick Stevens said: > On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: >> On Wed, April 26, 2006 10:47 am, Rick Stevens said: >> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last >> >> half year or so using FC4 exclusively and was pretty much very pleased >> >> with it all. FC5, however, seems nearly a step backwards and I'm not at >> >> all sure I want to use it much longer. But I'd like to keep it through >> a >> >> fair shakedown phase, maybe see if any coming updates brighten things >> >> up. Parallel, though, I'd like to test drive Ubuntu as a potential >> >> replacement. Right, nuff background. >> >> snip >> >> > What specific problems are you having with FC5? I find it hard to >> > believe you consider it a "step backward". Beyond some upgrade issues >> > with the installer, FC5 is pretty good. There are a lot of inherent >> > differences "under the hood" between it and FC4, so perhaps you're still >> > trying to get used to those, but I'd hardly call it a step back. >> >> I'm using it now and have found the enhancements are nice, like a gui >> updater/software installer, etc. One major drawback may be easier to >> solve, >> but it's a potential show-stopper: Gnome apps hang. I click on cancel, or >> OK >> and sometimes it that window just stops responding. Along with it, the >> menu >> bar at the top quits reacting. Sometimes it happens when I click on >> Applications, or System, etc. on the menu bar and it stops working. >> Gnome-terminal, if open, keeps working, but if I bring up a new window, it >> stays black and never shows a command prompt. > > Hmmmm...interesting. I'm not experiencing any of that. I really > suspect a video driver issue here. Have you tried refreshing X? Try > "CTRL-ALT-F1" to get to a non-GUI console, then "ALT-F7" to go back to > GUI. If that doesn't help, try restarting X. You know, the old > "CTRL-ALT-BACKSPACE" then logging in again. That's how I have to get it back. I just wish it wasn't necessary. If I wanted that type of aggravation, I'd install Bill. > >> >> The other show-stopper is Xorg itself. There's no option to probe a >> monitor >> or video card with FC5, so I have to guess settings based on inadequate >> manufacturer's docs. > > Have you tried running "ddcprobe" or "X -probeonly"? For example, > "ddcprobe" results in this on one of my machines: > > [root at prophead ~]# ddcprobe > > Videocard DDC probe results > Description: Intel Corporation Intel(r)845G/845GL/845GE/845GV Graphics > Controller > Memory (MB): 7 > > Monitor DDC probe results > ID: PNR5780 > Name: Planar PL170 > Horizontal Sync (kHZ): 24-80 > Vertical Sync (HZ) : 49-75 > Width (mm): 340 > Height(mm): 270 > > It won't work on all monitors, but it does on a lot. I have now. I'll have to switch monitors to get the settings on the other one. > >> It also doesn't do Dual Head (another currently open >> thread) which I've struggled with... > > Well, we don't know that yet. Xorg says it does, and I believe them. > The Fedora list archives show others have it working as well. I've used Dual Head on FC4 very nicely. It's great. FC5, using the same xorg.conf file doesn't work. One monitor, the second one (Monitor1), has garbage on the screen and isn't usable. The problem is always Monitor1 regardless of which monitor I use. > >> There's my 2 main complaints about FC5. Another minor one is that VMWare >> Workstation won't compile. I've switched to VMWare Server Beta, and it >> works, but I have to go through vmware-config.pl several times before it >> 'takes'. . . > > Hmmm. Does it work on FC4 under the same kernel? FC4 and FC5's current > kernels are the same, 2.6.16-1.2096_FC[4|5] See above. FC4 worked like a charm. > >> The last issue I can think of (I'm really on a roll, aren't I?) is USB >> usage. It works fine for my scanner; better than FC4 did actually, BUT >> Palm >> still doesn't work at all. I've not tried KDE, which I actually got to >> work >> ONCE with FC4... Enough yet? Stop... > > Palm and Linux have always been problematical. That being said, I've > gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just > fine via both USB and bluetooth on both FC4 and FC5. It does take a bit > of fiddling, but it works. I'll have to fiddle with the USB owner issues again and see if FC5 works better than RH8.0 which is the last time I got serious. Interesting that Ubuntu works out of the box with no twiddling. Karl From micros50 at computer.net Thu Apr 27 01:45:30 2006 From: micros50 at computer.net (mylar) Date: Wed, 26 Apr 2006 21:45:30 -0400 Subject: FC3 printers and Cups Message-ID: <1146102329.8627.1766.camel@manhattan.ruffe.edu> I recently installed a HP USB printer on a FC3 box. it works fine. I originally tried to configure it using the system-config-printers gui and had problems. So I configured it via the cups browser interface and all is well. Additionally I wanted to share the printer across a network so I hand edited the cupsd.conf file by hand adding the "BrowseAddress", "Listen" address, and I removed a few printers that were no longer in existence. Everything works fine except when the machine reboots. Some application takes the liberty of auto-editing and changing the cupsd.conf file back to what it was before I edited it. This causes my printer shares to dissapear from the network. Googling around the net someone told me that the problem is "system-config-printer" and that I should remove "system-config-printer" if I want to maintain a hand edited version of "cupsd.conf". But, when I try to remove the rpm I get a dependency issue stating that "system-config-printer" is needed by "hal-cups-utils". Not being sure what "hal-cups-utils" is or does I refrained from removing system-config-printer for now. Googling around on the web all I could find ways that hal-cups-utils is a "hallified version of cups-utils"... whatever that means. So, can anyone help me out ?? What would "is system-config-printer" the cause of my problem ?? What is "hal-cups-utils" ?? Do I need it ?? Help !! I'm getting tired of re-editing "cupsd.conf" every single day ... Thanks in advance... mylar From MGasparri at turismo-pecom.com.ar Thu Apr 27 02:58:59 2006 From: MGasparri at turismo-pecom.com.ar (Mauro Gasparri) Date: Wed, 26 Apr 2006 23:58:59 -0300 Subject: RHEL 4 and HP dx5150 In-Reply-To: <1146090652.3635.286.camel@prophead.corp.publichost.com> Message-ID: redhat-install-list-bounces at redhat.com wrote on 26/04/2006 19:30:51: > On Wed, 2006-04-26 at 18:23 -0300, Mauro Gasparri wrote: > > > > Same problem without using LVM, grrrrrrrrrr. But no "error reading", > > obviously. > > But where did it die without LVM? What did the F3 console say? > It died in the same place. The console does not give a lot of relevant info. Obviously, I've tried my set of CD's on other computer and worked perfectly. > > > > I feel lost. > > Hmmmm. This is weird. It sure looks like an incompatiblity with > a previous LVM installation. > > Oh, and Mauro, we prefer bottom posting on this list (post your > responses AFTER what you're responding to). This is the opposite of > what Outlook does. Think of this: > > Outlook format: > I answer: Because it reads more logically. > You ask: Why use bottom posting? > > Bottom posted format (our preferred way): > You ask: Why use bottom posting? > I answer: Because it reads more logically. > > See? > My mistake! > > > > > > On Wed, 2006-04-26 at 17:53 -0300, Mauro Gasparri wrote: > > > > > > No luck with "linux noapic". Also no update for BIOS. It's courious, > > > but both on HP and Red Hat web sites, it says that RHEL 4 is > > certified > > > for HP dx5150. > > > > > > Tryed disabling APIC from BIOS also. > > > > > > When I go to install log (via Ctrl+Alt+3), y see: > > > > > > formatting / as ext3 > > > formatting /boot as ext3 > > > error reading swap label on /dev/VolGroup00: [Errno 21] Is a > > > directory > > > error reading xfs label on /dev/VolGroup00: [Errno 21] Is a > > directory > > > error reading jfs label on /dev/VolGroup00: [Errno 21] Is a > > directory > > > > Oh, you're using LVM. It looks suspiciously like a disk configuration > > issue here with the LVM volume groups. The system is trying to locate > > the disk labels on VolGroup00 and isn't finding them. Therefore it > > can't format the new filesystems since it doesn't know where they are. > > > > > Tryed with another hard disk, with no success. > > > > Can you try it WITHOUT using LVM just as a test and see how that goes? > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - Jimmie crack corn and I don't care...what kind of lousy attitude - > - is THAT to have, huh? -- Dennis Miller - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > ************************************************************************ TURISMO PECOM Sistema de Gesti?n de Calidad Certificado ISO 9001:2000 Visite nuestra p?gina WEB http://www.turismo-pecom.com.ar ************************************************************************ NOTA DE CONFIDENCIALIDAD Este mensaje (y sus anexos) es confidencial y puede contener informaci?n (i) de propiedad exclusiva de Turismo Pecom SACFI; o (ii) amparada por el secreto profesional. Si usted ha recibido este fax o e-mail por error, por favor comun?quelo inmediatamente v?a fax o e-mail y tenga la amabilidad de destruirlo; no deber? copiar el mensaje ni divulgar su contenido a ninguna persona. Muchas gracias. ************************************************************************ -------------- next part -------------- An HTML attachment was scrubbed... URL: From bob at bobcatos.com Thu Apr 27 03:40:46 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Wed, 26 Apr 2006 22:40:46 -0500 Subject: FC3 printers and Cups In-Reply-To: <1146102329.8627.1766.camel@manhattan.ruffe.edu> References: <1146102329.8627.1766.camel@manhattan.ruffe.edu> Message-ID: <20060427034045.GA12361@bobcat.bobcatos.com> On Wed, Apr 26, 2006 at 09:45:30PM -0400, mylar wrote: > I recently installed a HP USB printer on a FC3 box. it works fine. I > originally tried to configure it using the system-config-printers gui > and had problems. So I configured it via the cups browser interface and > all is well. Additionally I wanted to share the printer across a network > so I hand edited the cupsd.conf file by hand adding the "BrowseAddress", > "Listen" address, and I removed a few printers that were no longer in > existence. Everything works fine except when the machine reboots. Some > application takes the liberty of auto-editing and changing the > cupsd.conf file back to what it was before I edited it. This causes my > printer shares to dissapear from the network. I probably won't be able to help you because I had the opposite results on FC4. I changed printers (parallel interface), reconfigured with the CUPS browser interface, and couldn't get it or another printer to work right. I reconfigured with system-config-printers and all was sweetness and light. > Googling around the net someone told me that the problem is > "system-config-printer" and that I should remove "system-config-printer" > if I want to maintain a hand edited version of "cupsd.conf". But, when I > try to remove the rpm I get a dependency issue stating that > "system-config-printer" is needed by "hal-cups-utils". Not being sure > what "hal-cups-utils" is or does I refrained from removing > system-config-printer for now. Googling around on the web all I could > find ways that hal-cups-utils is a "hallified version of cups-utils"... > whatever that means. > > So, can anyone help me out ?? What would "is system-config-printer" the > cause of my problem ?? What is "hal-cups-utils" ?? Do I need it ?? Help > !! I'm getting tired of re-editing "cupsd.conf" every single day ... > > Thanks in advance... > > mylar Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com Jesus wasn't (and isn't) politically correct. Send complaints to root at universe.gov. From karlp at ourldsfamily.com Thu Apr 27 04:50:13 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Wed, 26 Apr 2006 22:50:13 -0600 (MDT) Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> Message-ID: <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last >> Palm and Linux have always been problematical. That being said, I've >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just >> fine via both USB and bluetooth on both FC4 and FC5. It does take a bit >> of fiddling, but it works. > > I'll have to fiddle with the USB owner issues again and see if FC5 works > better than RH8.0 which is the last time I got serious. Interesting that > Ubuntu works out of the box with no twiddling. Okay, I just added my loginname to /etc/group behind uucp and now it syncs flawlessly first time, every time. Man if it was this easy on RH8/FC3/FC4, I'd have been a lot happier all along... KLP From karlp at ourldsfamily.com Thu Apr 27 04:55:27 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Wed, 26 Apr 2006 22:55:27 -0600 (MDT) Subject: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> Message-ID: <25127.198.60.114.90.1146113727.squirrel@webmail.ourldsfamily.com> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >>> >>> The other show-stopper is Xorg itself. There's no option to probe a >>> monitor >>> or video card with FC5, so I have to guess settings based on inadequate >>> manufacturer's docs. >> >> Have you tried running "ddcprobe" or "X -probeonly"? For example, >> "ddcprobe" results in this on one of my machines: >> >> [root at prophead ~]# ddcprobe >> >> Videocard DDC probe results >> Description: Intel Corporation Intel(r)845G/845GL/845GE/845GV Graphics >> Controller >> Memory (MB): 7 >> >> Monitor DDC probe results >> ID: PNR5780 >> Name: Planar PL170 >> Horizontal Sync (kHZ): 24-80 >> Vertical Sync (HZ) : 49-75 >> Width (mm): 340 >> Height(mm): 270 >> >> It won't work on all monitors, but it does on a lot. > > I have now. I'll have to switch monitors to get the settings on the other > one. > >> >>> It also doesn't do Dual Head (another currently open >>> thread) which I've struggled with... >> >> Well, we don't know that yet. Xorg says it does, and I believe them. >> The Fedora list archives show others have it working as well. > > I've used Dual Head on FC4 very nicely. It's great. FC5, using the same > xorg.conf file doesn't work. One monitor, the second one (Monitor1), has > garbage on the screen and isn't usable. The problem is always Monitor1 > regardless of which monitor I use. > Okay, I twiddled with the X output log to see why X won't even come up with an nVidia card. It says there's a resource already in use. I finally figured out that it's the PCI:3,0,0 (?) line, so I removed that but still Monitor1 fails to even come up. At least on ATI it showed GUI with a valid mouse pointer, but no viewable anything else. Yes, it does sound like a driver, but I've installed ATI drivers with no success... I'm hoping an update works for both the gnome freezing thing and dual head... Karl From redhat at buglecreek.com Thu Apr 27 15:35:16 2006 From: redhat at buglecreek.com (redhat at buglecreek.com) Date: Thu, 27 Apr 2006 09:35:16 -0600 Subject: Remote Control Powerstrips Message-ID: <1146152116.7559.260083232@webmail.messagingengine.com> I was following a thread on the list a while ago and a few people made some recommendations for remote control power strips. Some how I lost the thread. There are so many out there, it would be nice to hear from some people who actually used them. I would like it to have the following features if possible: secure web interface, secure command line interface (ssh), rack mountable. I would prefer not to use telnet. Depending on where these are placed on the infrastructure the web interface may not be an option, so a secure command line menu would be good. Thanks From rstevens at vitalstream.com Thu Apr 27 16:28:25 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 27 Apr 2006 09:28:25 -0700 Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> Message-ID: <1146155305.3635.306.camel@prophead.corp.publichost.com> On Wed, 2006-04-26 at 22:50 -0600, karlp at ourldsfamily.com wrote: > On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: > > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: > >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: > >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: > >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last > >> Palm and Linux have always been problematical. That being said, I've > >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just > >> fine via both USB and bluetooth on both FC4 and FC5. It does take a bit > >> of fiddling, but it works. > > > > I'll have to fiddle with the USB owner issues again and see if FC5 works > > better than RH8.0 which is the last time I got serious. Interesting that > > Ubuntu works out of the box with no twiddling. > > Okay, I just added my loginname to /etc/group behind uucp and now it syncs > flawlessly first time, every time. Man if it was this easy on RH8/FC3/FC4, > I'd have been a lot happier all along... I changed the permissions on /dev/ttyUSB in the hotplug stuff instead of adding my username to the uucp group. End result is the same. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Tempt not the dragons of fate, since thou art crunchy and taste - - good with ketchup. - ---------------------------------------------------------------------- From rstevens at vitalstream.com Thu Apr 27 16:39:46 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 27 Apr 2006 09:39:46 -0700 Subject: Remote Control Powerstrips In-Reply-To: <1146152116.7559.260083232@webmail.messagingengine.com> References: <1146152116.7559.260083232@webmail.messagingengine.com> Message-ID: <1146155986.3635.313.camel@prophead.corp.publichost.com> On Thu, 2006-04-27 at 09:35 -0600, redhat at buglecreek.com wrote: > I was following a thread on the list a while ago and a few people made > some recommendations for remote control power strips. Some how I lost > the thread. There are so many out there, it would be nice to hear from > some people who actually used them. I would like it to have the > following features if possible: secure web interface, secure command > line interface (ssh), rack mountable. I would prefer not to use telnet. > Depending on where these are placed on the infrastructure the web > interface may not be an option, so a secure command line menu would be > good. We have about 40 APC strips in use. We've also played with ones from DataSpec and Liebert. They're all pretty similar. We do prefer ones that report not only total amperage but also amperage per outlet. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - "Daddy, why doesn't this magnet pick up this floppy disk?" - ---------------------------------------------------------------------- From micros50 at computer.net Thu Apr 27 17:02:24 2006 From: micros50 at computer.net (mylar) Date: Thu, 27 Apr 2006 13:02:24 -0400 Subject: FC3 printers and Cups In-Reply-To: <20060427034045.GA12361@bobcat.bobcatos.com> References: <1146102329.8627.1766.camel@manhattan.ruffe.edu> <20060427034045.GA12361@bobcat.bobcatos.com> Message-ID: <1146157343.6750.53.camel@manhattan.ruffe.edu> On Wed, 2006-04-26 at 23:40, Bob McClure Jr wrote: > On Wed, Apr 26, 2006 at 09:45:30PM -0400, mylar wrote: > > I recently installed a HP USB printer on a FC3 box. it works fine. I > > originally tried to configure it using the system-config-printers gui > > and had problems. So I configured it via the cups browser interface and > > all is well. Additionally I wanted to share the printer across a network > > so I hand edited the cupsd.conf file by hand adding the "BrowseAddress", > > "Listen" address, and I removed a few printers that were no longer in > > existence. Everything works fine except when the machine reboots. Some > > application takes the liberty of auto-editing and changing the > > cupsd.conf file back to what it was before I edited it. This causes my > > printer shares to dissapear from the network. > > I probably won't be able to help you because I had the opposite > results on FC4. I changed printers (parallel interface), reconfigured > with the CUPS browser interface, and couldn't get it or another > printer to work right. I reconfigured with system-config-printers and > all was sweetness and light. > Also, the fact that the printer I have installed is a USB printer, I am wondering if that may have anything to do with it... However, I do have a USB printer installed on a FC1 box and have no problems with it for years. mylar From karlp at ourldsfamily.com Thu Apr 27 18:16:28 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Thu, 27 Apr 2006 12:16:28 -0600 (MDT) Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <1146155305.3635.306.camel@prophead.corp.publichost.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> <1146155305.3635.306.camel@prophead.corp.publichost.com> Message-ID: <36012.207.173.117.242.1146161788.squirrel@ourldsfamily.com> On Thu, April 27, 2006 10:28 am, Rick Stevens said: > On Wed, 2006-04-26 at 22:50 -0600, karlp at ourldsfamily.com wrote: >> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: >> > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: >> >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: >> >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: >> >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >> >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the >> last >> >> Palm and Linux have always been problematical. That being said, I've >> >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just >> >> fine via both USB and bluetooth on both FC4 and FC5. It does take a >> bit >> >> of fiddling, but it works. >> > >> > I'll have to fiddle with the USB owner issues again and see if FC5 works >> > better than RH8.0 which is the last time I got serious. Interesting that >> > Ubuntu works out of the box with no twiddling. >> >> Okay, I just added my loginname to /etc/group behind uucp and now it syncs >> flawlessly first time, every time. Man if it was this easy on RH8/FC3/FC4, >> I'd have been a lot happier all along... > > I changed the permissions on /dev/ttyUSB in the hotplug stuff instead of > adding my username to the uucp group. End result is the same. I did that first and had no luck. KLP From rstevens at vitalstream.com Thu Apr 27 19:05:57 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 27 Apr 2006 12:05:57 -0700 Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <36012.207.173.117.242.1146161788.squirrel@ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> <1146155305.3635.306.camel@prophead.corp.publichost.com> <36012.207.173.117.242.1146161788.squirrel@ourldsfamily.com> Message-ID: <1146164757.3635.335.camel@prophead.corp.publichost.com> On Thu, 2006-04-27 at 12:16 -0600, karlp at ourldsfamily.com wrote: > On Thu, April 27, 2006 10:28 am, Rick Stevens said: > > On Wed, 2006-04-26 at 22:50 -0600, karlp at ourldsfamily.com wrote: > >> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: > >> > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: > >> >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: > >> >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: > >> >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > >> >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent the > >> last > >> >> Palm and Linux have always been problematical. That being said, I've > >> >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work just > >> >> fine via both USB and bluetooth on both FC4 and FC5. It does take a > >> bit > >> >> of fiddling, but it works. > >> > > >> > I'll have to fiddle with the USB owner issues again and see if FC5 works > >> > better than RH8.0 which is the last time I got serious. Interesting that > >> > Ubuntu works out of the box with no twiddling. > >> > >> Okay, I just added my loginname to /etc/group behind uucp and now it syncs > >> flawlessly first time, every time. Man if it was this easy on RH8/FC3/FC4, > >> I'd have been a lot happier all along... > > > > I changed the permissions on /dev/ttyUSB in the hotplug stuff instead of > > adding my username to the uucp group. End result is the same. > > I did that first and had no luck. Really? Gee, I just modified: KERNEL=="ttyUSB*", GROUP="uucp", MODE="0660" to KERNEL=="ttyUSB*", GROUP="uucp", MODE="0666" in "/etc/udev/rules.d/50-udev.rules". Yes, it removes a tiny bit of security, but it works for a lot of stuff without having to whonk /etc/group or anything. Besides, I'm a lazy cuss! :-D ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - A day for firm decisions!!! Well, then again, maybe not! - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Thu Apr 27 21:07:44 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Thu, 27 Apr 2006 15:07:44 -0600 (MDT) Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <1146164757.3635.335.camel@prophead.corp.publichost.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> <1146155305.3635.306.camel@prophead.corp.publichost.com> <36012.207.173.117.242.1146161788.squirrel@ourldsfamily.com> <1146164757.3635.335.camel@prophead.corp.publichost.com> Message-ID: <36448.207.173.117.242.1146172064.squirrel@ourldsfamily.com> On Thu, April 27, 2006 1:05 pm, Rick Stevens said: > On Thu, 2006-04-27 at 12:16 -0600, karlp at ourldsfamily.com wrote: >> On Thu, April 27, 2006 10:28 am, Rick Stevens said: >> > On Wed, 2006-04-26 at 22:50 -0600, karlp at ourldsfamily.com wrote: >> >> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: >> >> > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: >> >> >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: >> >> >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: >> >> >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: >> >> >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent >> the >> >> last >> >> >> Palm and Linux have always been problematical. That being said, >> I've >> >> >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work >> just >> >> >> fine via both USB and bluetooth on both FC4 and FC5. It does take a >> >> bit >> >> >> of fiddling, but it works. >> >> > >> >> > I'll have to fiddle with the USB owner issues again and see if FC5 >> works >> >> > better than RH8.0 which is the last time I got serious. Interesting >> that >> >> > Ubuntu works out of the box with no twiddling. >> >> >> >> Okay, I just added my loginname to /etc/group behind uucp and now it >> syncs >> >> flawlessly first time, every time. Man if it was this easy on >> RH8/FC3/FC4, >> >> I'd have been a lot happier all along... >> > >> > I changed the permissions on /dev/ttyUSB in the hotplug stuff instead of >> > adding my username to the uucp group. End result is the same. >> >> I did that first and had no luck. > > Really? Gee, I just modified: > > KERNEL=="ttyUSB*", GROUP="uucp", MODE="0660" > > to > > KERNEL=="ttyUSB*", GROUP="uucp", MODE="0666" > > in "/etc/udev/rules.d/50-udev.rules". Yes, it removes a tiny bit of > security, but it works for a lot of stuff without having to whonk > /etc/group or anything. Besides, I'm a lazy cuss! :-D No more lazy than me. I've been in Unix for years and /etc/group is where I'm more comfortable. I didn't do it the way you said. I did it from a HOWTO on the 'net and they didn't have me in 50-udev.rules. I lost it somewhere. I try not to keep things around that don't work. Nothing as frustrating as finding an old piece of paper with an email or web page on it telling me how to do something wrong. KLP > > ---------------------------------------------------------------------- > - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - > - VitalStream, Inc. http://www.vitalstream.com - > - - > - A day for firm decisions!!! Well, then again, maybe not! - > ---------------------------------------------------------------------- > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe > -- karl _/ _/ _/ _/_/_/ ____________ __o _/ _/ _/ _/ _/ ____________ _-\<._ _/_/ _/ _/_/_/ (_)/ (_) _/ _/ _/ _/ ...................... _/ _/ arl _/_/_/ _/ earson KarlP at ourldsfamily.com --- Senior Consulting Sys/DB Analyst http://consulting.ourldsfamily.com --- My Thoughts on Terrorism In America right after 9/11/2001: http://www.ourldsfamily.com/wtc.shtml --- A right is not what someone gives you; it's what no one can take from you. -Ramsey Clark --- From rstevens at vitalstream.com Thu Apr 27 21:37:05 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Thu, 27 Apr 2006 14:37:05 -0700 Subject: USB Palm, Was: Re: FC5 Step Backwards: WAS: Mostly off topic, Evolution question In-Reply-To: <36448.207.173.117.242.1146172064.squirrel@ourldsfamily.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <34965.207.173.117.242.1146082707.squirrel@webmail.ourldsfamily.com> <1146085319.3635.244.camel@prophead.corp.publichost.com> <20395.198.60.114.90.1146100304.squirrel@webmail.ourldsfamily.com> <25097.198.60.114.90.1146113413.squirrel@webmail.ourldsfamily.com> <1146155305.3635.306.camel@prophead.corp.publichost.com> <36012.207.173.117.242.1146161788.squirrel@ourldsfamily.com> <1146164757.3635.335.camel@prophead.corp.publichost.com> <36448.207.173.117.242.1146172064.squirrel@ourldsfamily.com> Message-ID: <1146173825.3635.352.camel@prophead.corp.publichost.com> On Thu, 2006-04-27 at 15:07 -0600, karlp at ourldsfamily.com wrote: > On Thu, April 27, 2006 1:05 pm, Rick Stevens said: > > On Thu, 2006-04-27 at 12:16 -0600, karlp at ourldsfamily.com wrote: > >> On Thu, April 27, 2006 10:28 am, Rick Stevens said: > >> > On Wed, 2006-04-26 at 22:50 -0600, karlp at ourldsfamily.com wrote: > >> >> On Wed, April 26, 2006 7:11 pm, karlp at ourldsfamily.com said: > >> >> > On Wed, April 26, 2006 3:01 pm, Rick Stevens said: > >> >> >> On Wed, 2006-04-26 at 14:18 -0600, karlp at ourldsfamily.com wrote: > >> >> >>> On Wed, April 26, 2006 10:47 am, Rick Stevens said: > >> >> >>> > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > >> >> >>> >> I have FC5 on a laptop, as well as the newest Ubuntu. I spent > >> the > >> >> last > >> >> >> Palm and Linux have always been problematical. That being said, > >> I've > >> >> >> gotten my old Handspring Prism, Tapwave Z2 and Tungsten E2 to work > >> just > >> >> >> fine via both USB and bluetooth on both FC4 and FC5. It does take a > >> >> bit > >> >> >> of fiddling, but it works. > >> >> > > >> >> > I'll have to fiddle with the USB owner issues again and see if FC5 > >> works > >> >> > better than RH8.0 which is the last time I got serious. Interesting > >> that > >> >> > Ubuntu works out of the box with no twiddling. > >> >> > >> >> Okay, I just added my loginname to /etc/group behind uucp and now it > >> syncs > >> >> flawlessly first time, every time. Man if it was this easy on > >> RH8/FC3/FC4, > >> >> I'd have been a lot happier all along... > >> > > >> > I changed the permissions on /dev/ttyUSB in the hotplug stuff instead of > >> > adding my username to the uucp group. End result is the same. > >> > >> I did that first and had no luck. > > > > Really? Gee, I just modified: > > > > KERNEL=="ttyUSB*", GROUP="uucp", MODE="0660" > > > > to > > > > KERNEL=="ttyUSB*", GROUP="uucp", MODE="0666" > > > > in "/etc/udev/rules.d/50-udev.rules". Yes, it removes a tiny bit of > > security, but it works for a lot of stuff without having to whonk > > /etc/group or anything. Besides, I'm a lazy cuss! :-D > > No more lazy than me. I've been in Unix for years and /etc/group is where > I'm more comfortable. I didn't do it the way you said. I did it from a HOWTO > on the 'net and they didn't have me in 50-udev.rules. I lost it somewhere. I > try not to keep things around that don't work. Nothing as frustrating as > finding an old piece of paper with an email or web page on it telling me how > to do something wrong. Heheheh! That's one of the nice things about Linux...there's several ways of attacking the same problem. I chose to bugger the way the devices are presented, you chose to give the user higher privileges. The end result is that the user can access the ttyUSB* ports, although my solution allows ANY user to access them--which may not be the right solution for everyone. My machines are under close control so I'm not worried. And I will have a go at the dual head stuff. Hang in there. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - We are born naked, wet and hungry. Then things get worse. - ---------------------------------------------------------------------- From akelly at corisweb.org Fri Apr 28 08:56:54 2006 From: akelly at corisweb.org (Andrew Kelly) Date: Fri, 28 Apr 2006 10:56:54 +0200 Subject: Mostly off topic, Evolution question In-Reply-To: <1146070060.3635.199.camel@prophead.corp.publichost.com> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> Message-ID: <1146214614.2751.36.camel@localhost.localdomain> On Wed, 2006-04-26 at 09:47 -0700, Rick Stevens wrote: > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > > Hi all, > > please forgive how off topic this posting is; I have a query for the > > multi-booters on the list. > > > > Have any of you any experience with sharing data between distributions > > with high similarities? The specific scenario I'm after is this: > > > > I have FC5 on a laptop, as well as the newest Ubuntu. I spent the last > > half year or so using FC4 exclusively and was pretty much very pleased > > with it all. FC5, however, seems nearly a step backwards and I'm not at > > all sure I want to use it much longer. But I'd like to keep it through a > > fair shakedown phase, maybe see if any coming updates brighten things > > up. Parallel, though, I'd like to test drive Ubuntu as a potential > > replacement. Right, nuff background. > > > > What I'm after is sharing a single evolution instance between FC5 and > > Ubuntu, so that I won't lose my mind trying to keep track of which mail > > might be where. Eventually I'll put up a dovecot server or something > > somewhere and migrate everything "off site", but for now I'm curious if > > I can share data in this way considering Gnome and Evolution are pretty > > standard on both sides. > > > > If I were to, say, move my .evolution folder to a separate partition and > > mount it in my home dir in both Distros, what are the chances that > > within a week I'd have munged my mail beyond repair? > > > > Anybody out there done anything like this? > > I have. While I can't speak to Evolution specifically, it does work > with Mozilla/Thunderbird and I've not had any issues regarding > corrupted mailboxes. Since the data regarding the account is kept in > the .evolution (or .mozilla or .firefox) directory (logins, mail paths, > etc.), it should work fine unless Evolution itself changes the way it > stores things. All bets are off then! Assuming I could then keep the two instances of Evolution in sync, then even a change in storage methodology should fly on both wings (so to speak), as long as the both updated before accessing data. Pretty low probability scenario, though. > > BTW, a standard practice is to create an entirely separate "/home" > partition for user home directories. Obviously, this gets mounted as > "/home" on all of your distros so the users have a consistent home > directory regardless of which one is booted. You must synchronize the > passwd, shadow and group files of course, unless you're using NIS, NIS + > or LDAP for authentication. I thought about that, but it's a laptop we're dealing with and nobody gets to touch it but me (mine mine mine), so I'm the only user. Still, it was worth the thought. But in the end I opted not to because it's possible I'll have distinct settings in certain apps, based on the distro. I didn't want to risk things like .bashrc getting mooshed back and forth. > What specific problems are you having with FC5? I find it hard to > believe you consider it a "step backward". Beyond some upgrade issues > with the installer, FC5 is pretty good. There are a lot of inherent > differences "under the hood" between it and FC4, so perhaps you're still > trying to get used to those, but I'd hardly call it a step back. Well, along with the issues already addressed by Karl, my primary point of frustration at the moment is the broken session management in Gnome. I like to boot with certain apps open in certain workspaces and it was easy in FC4 to set things up, and then save the session at logout. Subsequent boots gave you what you'd set up and everything was groovy. FC5 lets me save automatically on logout, or not at all. So I either have to shut down with exactly what I want to see at next boot, or set it up from scratch each boot. It's a gnome thing, so I don't know why it's suddenly broken in 5 when it worked in 4 (and works in Ubuntu). So far most of my additional complaints are petty and based on the assumptions that FC makes for me. Bad defaults. Not many show stoppers, but a lot of annoyances. Things like displaying folder contents as large icons rather than in a proper list, the annoyance of SELinux settings, an updater that still can't hold a candle to apt. And stupid things that should work without any thinking involved, but either don't or require effort to set up. I should be able to hang a monitor on my laptop, and it should bloody well light up when I push the button, even if only using dumb values like a resolution of 800x600. Firefox should be able to install a flash plugin without any special theatrics, an Adobe Reader rpm should pop in and work instantly, Totem should be pre-loaded with a hand full of standard codecs, the installer should by now be able to detect and fire up a centrino wifi, the display should be found at install on a laptop, etc. and so forth. I've pulled over a GB of updates in the 3 or 4 weeks I've been test driving FC5, I find that a little harsh. You know, I can't really point my finger and say "and that is why I moved to ", but all in all I'm having to do too much to be able to carry on with my day as I did before moving to FC5. Hmm, and I guess that I'm quietly pissed that my RHCE is about to expire and that I have to vomit up nearly a grand to keep it all from having been a waste of time, even though the underlying tech is relatively unchanged. Andy From rstevens at vitalstream.com Fri Apr 28 17:08:39 2006 From: rstevens at vitalstream.com (Rick Stevens) Date: Fri, 28 Apr 2006 10:08:39 -0700 Subject: Mostly off topic, Evolution question In-Reply-To: <1146214614.2751.36.camel@localhost.localdomain> References: <1146048740.2749.35.camel@localhost.localdomain> <1146070060.3635.199.camel@prophead.corp.publichost.com> <1146214614.2751.36.camel@localhost.localdomain> Message-ID: <1146244120.18405.12.camel@prophead.corp.publichost.com> On Fri, 2006-04-28 at 10:56 +0200, Andrew Kelly wrote: > On Wed, 2006-04-26 at 09:47 -0700, Rick Stevens wrote: > > On Wed, 2006-04-26 at 12:52 +0200, Andrew Kelly wrote: > > > Hi all, > > > please forgive how off topic this posting is; I have a query for the > > > multi-booters on the list. > > > > > > Have any of you any experience with sharing data between > distributions > > > with high similarities? The specific scenario I'm after is this: > > > > > > I have FC5 on a laptop, as well as the newest Ubuntu. I spent the > last > > > half year or so using FC4 exclusively and was pretty much very > pleased > > > with it all. FC5, however, seems nearly a step backwards and I'm not > at > > > all sure I want to use it much longer. But I'd like to keep it > through a > > > fair shakedown phase, maybe see if any coming updates brighten > things > > > up. Parallel, though, I'd like to test drive Ubuntu as a potential > > > replacement. Right, nuff background. > > > > > > What I'm after is sharing a single evolution instance between FC5 > and > > > Ubuntu, so that I won't lose my mind trying to keep track of which > mail > > > might be where. Eventually I'll put up a dovecot server or something > > > somewhere and migrate everything "off site", but for now I'm curious > if > > > I can share data in this way considering Gnome and Evolution are > pretty > > > standard on both sides. > > > > > > If I were to, say, move my .evolution folder to a separate partition > and > > > mount it in my home dir in both Distros, what are the chances that > > > within a week I'd have munged my mail beyond repair? > > > > > > Anybody out there done anything like this? > > > > I have. While I can't speak to Evolution specifically, it does work > > with Mozilla/Thunderbird and I've not had any issues regarding > > corrupted mailboxes. Since the data regarding the account is kept in > > the .evolution (or .mozilla or .firefox) directory (logins, mail > paths, > > etc.), it should work fine unless Evolution itself changes the way it > > stores things. All bets are off then! > > Assuming I could then keep the two instances of Evolution in sync, then > even a change in storage methodology should fly on both wings (so to > speak), as long as the both updated before accessing data. Pretty low > probability scenario, though. When I say "the way it stores things", I mean the actual file formats and such. If they change it, they usually provide a "migration" tool that will convert from old to new, but usually not vice-versa. That means that both of your Evolution instances must expect the same file formats or one will break. As an example, I've just converted one of my old FC4 machines to FC5 via a full reinstall. I saved all my old ".mozilla" files on separate media, reinstalled (and that's a new version of Firefox and Mozilla), reinstalled the files and everything's fine. That's roughly the same as booting a different OS using a separate file system. > > > > > BTW, a standard practice is to create an entirely separate "/home" > > partition for user home directories. Obviously, this gets mounted as > > "/home" on all of your distros so the users have a consistent home > > directory regardless of which one is booted. You must synchronize the > > passwd, shadow and group files of course, unless you're using NIS, NIS > + > > or LDAP for authentication. > > I thought about that, but it's a laptop we're dealing with and nobody > gets to touch it but me (mine mine mine), so I'm the only user. Still, > it was worth the thought. But in the end I opted not to because it's > possible I'll have distinct settings in certain apps, based on the > distro. I didn't want to risk things like .bashrc getting mooshed back > and forth. Well, in that case, you _could_ put the files you wish to share (e.g. "~/.evolution") on a separate filesystem and set up symlinks to in the home directories on both distributions. > > What specific problems are you having with FC5? I find it hard to > > believe you consider it a "step backward". Beyond some upgrade issues > > with the installer, FC5 is pretty good. There are a lot of inherent > > differences "under the hood" between it and FC4, so perhaps you're > still > > trying to get used to those, but I'd hardly call it a step back. > > Well, along with the issues already addressed by Karl, my primary point > of frustration at the moment is the broken session management in Gnome. > I like to boot with certain apps open in certain workspaces and it was > easy in FC4 to set things up, and then save the session at logout. > Subsequent boots gave you what you'd set up and everything was groovy. > FC5 lets me save automatically on logout, or not at all. So I either > have to shut down with exactly what I want to see at next boot, or set > it up from scratch each boot. It's a gnome thing, so I don't know why > it's suddenly broken in 5 when it worked in 4 (and works in Ubuntu). > So far most of my additional complaints are petty and based on the > assumptions that FC makes for me. Bad defaults. > Not many show stoppers, but a lot of annoyances. > > Things like displaying folder contents as large icons rather than in a > proper list, the annoyance of SELinux settings, an updater that still > can't hold a candle to apt. And stupid things that should work without > any thinking involved, but either don't or require effort to set up. > > I should be able to hang a monitor on my laptop, and it should bloody > well light up when I push the button, even if only using dumb values > like a resolution of 800x600. Firefox should be able to install a flash > plugin without any special theatrics, an Adobe Reader rpm should pop in > and work instantly, Totem should be pre-loaded with a hand full of > standard codecs, the installer should by now be able to detect and fire > up a centrino wifi, the display should be found at install on a laptop, > etc. and so forth. > > I've pulled over a GB of updates in the 3 or 4 weeks I've been test > driving FC5, I find that a little harsh. > > You know, I can't really point my finger and say "and that is why I > moved to ", but all in all I'm having to do too much > to be able to carry on with my day as I did before moving to FC5. > > Hmm, and I guess that I'm quietly pissed that my RHCE is about to expire > and that I have to vomit up nearly a grand to keep it all from having > been a waste of time, even though the underlying tech is relatively > unchanged. I haven't really beaten on FC5 yet so I can't speak to those issues. I intend to flog the merciless hell out of it this weekend and may have data to report. I hope in the meantime that you post on the fedora-list and those folk should be able to help. ---------------------------------------------------------------------- - Rick Stevens, Senior Systems Engineer rstevens at vitalstream.com - - VitalStream, Inc. http://www.vitalstream.com - - - - Millihelen, adj: The amount of beauty required to launch one ship. - ---------------------------------------------------------------------- From karlp at ourldsfamily.com Sat Apr 29 01:09:44 2006 From: karlp at ourldsfamily.com (Karl Pearson) Date: Fri, 28 Apr 2006 19:09:44 -0600 Subject: Gnome FC5 Error Message-ID: <4452BCD8.5000901@ourldsfamily.com> I mentioned in a previous email some issues with running gnome-session as my default X-win manager for FC5. The major problem it seems is when I run gnome-terminal. I have tried xfce, which is quite nice but lacking of some features I prefer. So, I'm back to KDE, which isn't a bad alternative to Gnome. I use Lineakd for mapping my keyboard and I have a key assigned to "gnome-terminal --geometry 80x60". Even in KDE when I use it, g-term comes up but it remains black. So I ran it in konsole and here's the error message: (gnome-terminal:7589): Gdk-CRITICAL **: gdk_gc_get_colormap: assertion `GDK_IS_GC (gc)' failed I'm wondering if this is why gnome-panel dies, too, after gnome-terminal fails to come up. I've CTRL-ALT F1 and logged in as root and killed gnome-panel with no success. It starts back up, as it should, but doesn't get displayed in X. This is a show-stopper for me. I can't use FC5 without gnome-terminal and other gnome apps. I have specific programming needs at work which gnome-terminal meets flawlessly, when working. konsole is a poor substitute, but can be used. xterm is preferrable but I've not learned how to control CTRL-H vs DEL, etc. I hope this solveable Fedora folks listening? I'm on too many lists and don't need another one, so don't plan to cross-post this to a fedora list. Karl From bob at bobcatos.com Sat Apr 29 02:02:14 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Fri, 28 Apr 2006 21:02:14 -0500 Subject: Gnome FC5 Error In-Reply-To: <4452BCD8.5000901@ourldsfamily.com> References: <4452BCD8.5000901@ourldsfamily.com> Message-ID: <20060429020213.GB25094@bobcat.bobcatos.com> On Fri, Apr 28, 2006 at 07:09:44PM -0600, Karl Pearson wrote: > I mentioned in a previous email some issues with running gnome-session > as my default X-win manager for FC5. The major problem it seems is when > I run gnome-terminal. I have tried xfce, which is quite nice but lacking > of some features I prefer. So, I'm back to KDE, which isn't a bad > alternative to Gnome. > > I use Lineakd for mapping my keyboard and I have a key assigned to > "gnome-terminal --geometry 80x60". Even in KDE when I use it, g-term > comes up but it remains black. So I ran it in konsole and here's the > error message: > > (gnome-terminal:7589): Gdk-CRITICAL **: gdk_gc_get_colormap: assertion > `GDK_IS_GC (gc)' failed > > I'm wondering if this is why gnome-panel dies, too, after gnome-terminal > fails to come up. I've CTRL-ALT F1 and logged in as root and killed > gnome-panel with no success. It starts back up, as it should, but > doesn't get displayed in X. > > This is a show-stopper for me. I can't use FC5 without gnome-terminal > and other gnome apps. I have specific programming needs at work which > gnome-terminal meets flawlessly, when working. konsole is a poor > substitute, but can be used. xterm is preferrable but I've not learned > how to control CTRL-H vs DEL, etc. I can't help with gnome*. I've been using AfterStep, and sometimes IceWM, and plain old xterms. Here's something on the CTRL-H vs DEL problem: http://www.ibb.net/~anne/keyboard.html > I hope this solveable Fedora folks listening? I'm on too many lists and > don't need another one, so don't plan to cross-post this to a fedora list. It's a dirty rotten shame that the list that might likely have your answer is so busy you can't wade through all of it. I don't have the time for it, so I settle for this list or Google. > Karl > > _______________________________________________ > Redhat-install-list mailing list > Redhat-install-list at redhat.com > https://www.redhat.com/mailman/listinfo/redhat-install-list > To Unsubscribe Go To ABOVE URL or send a message to: > redhat-install-list-request at redhat.com > Subject: unsubscribe Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com Jesus wasn't (and isn't) politically correct. Send complaints to root at universe.gov. From karlp at ourldsfamily.com Sat Apr 29 04:12:40 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Fri, 28 Apr 2006 22:12:40 -0600 (MDT) Subject: Gnome FC5 Error In-Reply-To: <20060429020213.GB25094@bobcat.bobcatos.com> References: <4452BCD8.5000901@ourldsfamily.com> <20060429020213.GB25094@bobcat.bobcatos.com> Message-ID: <20057.198.60.114.90.1146283960.squirrel@webmail.ourldsfamily.com> On Fri, April 28, 2006 8:02 pm, Bob McClure Jr said: > On Fri, Apr 28, 2006 at 07:09:44PM -0600, Karl Pearson wrote: >> I mentioned in a previous email some issues with running gnome-session >> as my default X-win manager for FC5. The major problem it seems is when >> I run gnome-terminal. I have tried xfce, which is quite nice but lacking >> of some features I prefer. So, I'm back to KDE, which isn't a bad >> alternative to Gnome. >> >> I use Lineakd for mapping my keyboard and I have a key assigned to >> "gnome-terminal --geometry 80x60". Even in KDE when I use it, g-term >> comes up but it remains black. So I ran it in konsole and here's the >> error message: >> >> (gnome-terminal:7589): Gdk-CRITICAL **: gdk_gc_get_colormap: assertion >> `GDK_IS_GC (gc)' failed >> >> I'm wondering if this is why gnome-panel dies, too, after gnome-terminal >> fails to come up. I've CTRL-ALT F1 and logged in as root and killed >> gnome-panel with no success. It starts back up, as it should, but >> doesn't get displayed in X. >> >> This is a show-stopper for me. I can't use FC5 without gnome-terminal >> and other gnome apps. I have specific programming needs at work which >> gnome-terminal meets flawlessly, when working. konsole is a poor >> substitute, but can be used. xterm is preferrable but I've not learned >> how to control CTRL-H vs DEL, etc. > > I can't help with gnome*. I've been using AfterStep, and sometimes > IceWM, and plain old xterms. Here's something on the CTRL-H vs DEL > problem: > > http://www.ibb.net/~anne/keyboard.html Thanks for the link. If I have to twiddle with an app that much, where another one works 'out of the box' I usually go with the latter. I have enough to worry about keeping 30 something of "Bill's" OS going to have to tweek everything I do when I'm upgrading/installing new REAL computer OSes. > >> I hope this is solveable. Fedora folks listening? I'm on too many lists and >> don't need another one, so don't plan to cross-post this to a fedora list. > > It's a dirty rotten shame that the list that might likely have your > answer is so busy you can't wade through all of it. I don't have the > time for it, so I settle for this list or Google. I get email from the Ubuntu list. I can delete 300 emails every 5 - 6 hours faster than anyone I know... I use procmail to filter out replies to any questions I post. That makes life easier. Karl From bob at bobcatos.com Sat Apr 29 13:25:28 2006 From: bob at bobcatos.com (Bob McClure Jr) Date: Sat, 29 Apr 2006 08:25:28 -0500 Subject: Gnome FC5 Error In-Reply-To: <20057.198.60.114.90.1146283960.squirrel@webmail.ourldsfamily.com> References: <4452BCD8.5000901@ourldsfamily.com> <20060429020213.GB25094@bobcat.bobcatos.com> <20057.198.60.114.90.1146283960.squirrel@webmail.ourldsfamily.com> Message-ID: <20060429132528.GA15501@bobcat.bobcatos.com> On Fri, Apr 28, 2006 at 10:12:40PM -0600, karlp at ourldsfamily.com wrote: > > On Fri, April 28, 2006 8:02 pm, Bob McClure Jr said: > > > > > > > >> I hope this is solveable. Fedora folks listening? I'm on too many lists and > >> don't need another one, so don't plan to cross-post this to a fedora list. > > > > It's a dirty rotten shame that the list that might likely have your > > answer is so busy you can't wade through all of it. I don't have the > > time for it, so I settle for this list or Google. > > I get email from the Ubuntu list. I can delete 300 emails every 5 - 6 hours > faster than anyone I know... I use procmail to filter out replies to any > questions I post. That makes life easier. Yeah, but who answers those posts? Anyone with a real life? > Karl Cheers, -- Bob McClure, Jr. Bobcat Open Systems, Inc. bob at bobcatos.com http://www.bobcatos.com Jesus wasn't (and isn't) politically correct. Send complaints to root at universe.gov. From karlp at ourldsfamily.com Sat Apr 29 14:10:48 2006 From: karlp at ourldsfamily.com (karlp at ourldsfamily.com) Date: Sat, 29 Apr 2006 08:10:48 -0600 (MDT) Subject: Gnome FC5 Error In-Reply-To: <20060429132528.GA15501@bobcat.bobcatos.com> References: <4452BCD8.5000901@ourldsfamily.com> <20060429020213.GB25094@bobcat.bobcatos.com> <20057.198.60.114.90.1146283960.squirrel@webmail.ourldsfamily.com> <20060429132528.GA15501@bobcat.bobcatos.com> Message-ID: <24246.198.60.114.90.1146319848.squirrel@webmail.ourldsfamily.com> On Sat, April 29, 2006 7:25 am, Bob McClure Jr said: > On Fri, Apr 28, 2006 at 10:12:40PM -0600, karlp at ourldsfamily.com wrote: >> >> On Fri, April 28, 2006 8:02 pm, Bob McClure Jr said: >> > >> > >> > >> >> I hope this is solveable. Fedora folks listening? I'm on too many lists >> and >> >> don't need another one, so don't plan to cross-post this to a fedora >> list. >> > >> > It's a dirty rotten shame that the list that might likely have your >> > answer is so busy you can't wade through all of it. I don't have the >> > time for it, so I settle for this list or Google. >> >> I get email from the Ubuntu list. I can delete 300 emails every 5 - 6 hours >> faster than anyone I know... I use procmail to filter out replies to any >> questions I post. That makes life easier. > > Yeah, but who answers those posts? Anyone with a real life? Of course not. That's why they know so much. People with real lives don't live on the PC, like me.. Rick... Some others... Karl