logs archiveIRC Archive / Freenode / #centos / 2015 / November / 20 / 1
tang^
oh wait, looks like I will have to restart before c7 sees this change
kiakli
hi
tang^
well, that was a bit confusing but I did manage it
neat...
thanks for the tips racooper and wN
wN
tang^: yep. there is also a #lvm
tang^
oh cool
I probably won't need more than a gentle reminder from now on, though. unless I start getting out of control on our SAN
webdev232424
Hello. I see that nginx is 1.6 now and that 1.6 is not supported anymore by nginx. Is there a problem with supporting mainline on centos or atleast the newest stable version?
I mean, if it exists, will i get into trouble using newest version of nginx? (the nginx guys recommend this)
or will i run into libraries it needs that are not updated blabla...
TwistedFruit
webdev232424: That sort of thing is part of the justification for Docker.
webdev232424
If anyone has a repo with newest nginx gimme the link!
Bahhumbug
nginx have their own repos.
         

webdev232424
Idk what docker is
Bahhumbug, i saw that the latest vs was 1.7 in that repo
TwistedFruit
webdev232424: https://hub.docker.com/_/nginx/
Bahhumbug
Their packages will not, however, be supported here. That being said, they package their $current
webdev232424
Bahhumbug, hmm, ok, thanks. Is anyone using the package docker provides in production here? Can i expect to run into problems? I probably won't /always/ update to latest.
ahmednitul
hello, i'd like to forward all ports of a linux server to a connected vpn user, say the vpn user has a dhcp ip: 192.168.1.2 and i want to forward all ports of eth0 to this ip, except for SSH (22) so I can still access the server, anyone can provide me simple instructions please?
hello, i'd like to forward all ports of a linux server to a connected vpn user, say the vpn user has a dhcp ip: 192.168.1.2 and i want to forward all ports of eth0 to this ip, except for SSH (22) so I can still access the server, anyone can provide me simple instructions please? thanks in advance.
webdev232424
ahh. docker bundles everything
or a lot of stuff i guess
did they just fix installation on linux? lol
Maybe there is some private repo shipping nginx mainline i can marginally trust?
Bahhumbug
I already told you where to get $current
And you should also read
@backports
centbot
Please see https://access.redhat.com/security/updates/backporting/ for information on backporting of security fixes and features in CentOS and RHEL
webdev232424
Bahhumbug, but that was some thing names docker
*named
Bahhumbug
@lmgtfy nginx package repo
centbot
webdev232424
there was a lot of people having problems with it in the comments
Bahhumbug
sigh
@lmgtfy webdev232424 nginx package repo
centbot
webdev232424
I can try ofcourse but then i have to install docker first, figure out how it works, etc etc
thats why i asked for a simple repo
Bahhumbug
No, you do not. Docker has jack all to do with installing $current.
webdev232424
ok. then i am confused
how do i get mainline then?
cos google doesnt give any centos mainline repo's.
Bahhumbug
Define 'mainline'.
We don't ship it. EPEL does.
@epel
centbot
EPEL: Extra Packages for Enterprise Linux. This can now be directly installed by 'yum --enablerepo=extras install epel-release'
Bahhumbug
if you want latest and greatest you will use nginx's own repos.
         

webdev232424
Bahhumbug, already told you. nginx official's latest centos provide 1.7
and mainline is what the nginx guys call their releases. their other branch is called stable.
even though they still recommend mainline.
epel ships 1.8.
so now you know.
Bahhumbug
Now I know I am sick of going down this rabbit hole. Have fun with your issue.
webdev232424
haha
i suppose i should have gone archlinux. you guys are insane. and backporting is the wrong philosophy i think. bugfixes aren't the only reason people upgrade important server software.
ok bai.
Bahhumbug
'webdev'. With numbers. What can possibly go wrong?
huwenfeng
Hi my friends: I want some software to do things like this : I want to scan my list of servers to check if there are unneeded open ports to the world. any software to recommend?
Bahhumbug
nmap
huwenfeng
Bahhumbug: Yes, but nmap is just a single tool. Anything like a solution? I mean, something with UI, configuration etc...
Bahhumbug
There is an X11 frontend for nmap. I don't know what you mean by 'configuration' in this context.
huwenfeng
Bahhumbug: Oh, maybe like configure like "check list A server every 5 minutes", "check List A only tcp ports", "report newly opened ports" Maybe what I need is a security solution.
a solution to keep my own servers in safe...
Bahhumbug: Any recommendation? keep my server under my control, and if anything weired happened, i could know it.
Bahhumbug
You can easily script that.
But that's only a single aspect. YOu likely want something like AIDE as well.
sdgathman
huwenfeng: nessus is a solution that scans for a laundry list of vulnerabilities.
huwenfeng
sdgathman: Yes, maybe I should use OpenVAS
itadder
heya anyone here used hamachi before on centos server?
Psi-Jack
itadder: Now, that's not in any CentOS repos. OpenVPN and StrongSwan are, however.
itadder
oh
I wanted a easy solution
I should head to bed
it almost 11
my brain is shot
but
but something in me want to figure it out
Psi-Jack
Sorry, Hamachi's not going to be supported here, as it pertains not to CentOS.
itadder
fair enough
is strongswan or open vpn easy to setup
Psi-Jack
OpenVPN is pretty easy.
itadder
okay I will have to try this weekend
BryanWB
is there a compelling reason i should use firewalld on centos7 rather than iptables?
i don't see an obvious benefit but i am likely missing something
itadder
I got it work
it was a setting in my bridge
Logos01
BryanWB: If you love hand-writing xmlfiles and don't care about how your firewall shapes your packets, then firewalld may be right for you.
<_<
BryanWB
Logos01: hmm, i hate writing xml files by hand, but creating them python is easier than writing python code that parses iptables rules
Logos01
BryanWB: I'm not a fan of firewalld, if you couldn't tell. It feels far too ... desktop-ey.
fenrus02
it's meant to be used for a desktop-os. dbus driven and all.
BryanWB
Logos01: heh, i appreciate the info
i actually like dbus not networkmanager tho
fenrus02
nm works well for wifi. switching ssid's without nm is a giant pita.
BryanWB
oh sure, just don't want it on my servers :)
Logos01
NM is generally more of a hazard than a boon on severs, IMO
fenrus02
i've no use for nm on wired links. ymmv.
Logos01
Especially since it will automatically reload the network services if you change a config file in /etc/sysconfig/network-scripts
Which can be quite disruptive since it gives you no good way to *stage* things like re-ip'ing hosts.
« prev 1 2 3 4 next »