logs archiveIRC Archive / Freenode / #centos / 2015 / July / 25 / 1
Benjamin__
im a noob
about once a year the server gets hacked and i re-install everything
then forget it exists
the auto updates will help stop it happened again and again
racooper
set it so you get the logwatch reports mailed to you nightly. and make sure it's in your server monitoring system@
you *do* set root's email alias to send to you, right?
TrevorH
Benjamin__: you know what cron is?
Benjamin__
TrevorH no
TrevorH
man cron
Benjamin__
logwatch reports?
en1gmaa
where are the settings in nautilus for list view
i hate having to change that everytime
Doyle
Hi folks. I'm running a script remotely via SSH with the -tt switch to allow sudo without tty. For some reason my session drops while waiting for longer running tasks to complete
Is there a way to keep the session alive until the job completes? I'd like to see the output
racooper
Benjamin__, yum info logwatch. it's handy for a stand-alone server that you aren't monitoring through other means. by default it sends a report to root nightly.
         

Doyle
nohup
??
racooper
Doyle, write the output to a logfile in the script?
B_rake
screen?
TrevorH
also ServerAliveInterval 300
Doyle
racooper, yea, that's a thought. I think I'll do that also
Then I can cat the results remotely
sartan
when running ssh user@server /script is it possible to have the prompt be 'more interactive' e.g. progress bars for yum updates?
just ssh -t ?
AndyCap
sartan: yeah
sartan
i'm writing a ghettoansible sort of thing
mlhess
For mixed file usage, what do people prefer. gluster or ceph.
B_rake
mlhess: I haven't personally used gluster, but I administer 2 ceph clusters in production and 1 in beta, so far I've been rather impressed with the healing capabilities, however it does pose some issues, it prefers features found in the latest kernels, throughput isn't much to write home about even with the hw we've thrown at it
mlhess
B_rake I have a sample gluster config here that is working. throughput is slow as well.
B_rake
Moving from 3.18 kernel to 4.0.4 increased throughput up about 40Gb/s on each box
TrevorH
wtf sort of link do you have if you can _improve_ by 40Gbps
B_rake
Each storage box has dual 40Gb/s nics
TrevorH
bonded?
B_rake
yeah
TrevorH
interesting
tessier
(Action) is playing with gluster
There's a #gluster which is pretty helpful by the way
I'm working towards being able to deploy VM images on gluster
sartan: gluster seems easier to use than ceph. Performance should be limited by the network more than anything else in either case.
mlhess
tessier I get about a 70% drop off in throughput via gluster.
Doyle
Got it. -tt -o TCPKeepAlive=yes
maybe not. Timed out, Killed by signal 9
         

TrevorH
also ServerAliveInterval 300?
B_rake
Doyle you could start it in a screen and just come back and look at the screen later
Doyle
I'm trying to use pssh to run a script across many hosts and getback some output
But the script takes longer than 60s so I get a timeout
TrevorH
signal 9 is kill
B_rake
with force
anonymouz666
hello. Still talking about custom KS, after boot and read the ks, I got the following error after "Reached target Basic System": Warning: Could not boot Warning: /dev/root does not exist
Starting Dracut Emergency Shell...
where could be the error?
B_rake
I just read above Doyle, does redirecting the output not work for what you're wanting?
Doyle
ya with force. I think it might be the pssh timeout... trying with timeout disabled.
TrevorH
anonymouz666: it can't find the installation source media
PryMar56
anonymouz666, is it baremetal setup? if so, describe your NIC
Doyle
B_rake, well, I've setup the script to echo results, but I'm going to tee them to a log file also now. The problem is that the session dies, killing the script. I could just run the job with a &, and get the log after
TrevorH
and how you created whatever you're booting from
Doyle
Yes, pssh -t 0 fixed it.
I've learned again!!
anonymouz666
the source media is specified in grub, right?
I set a bogus keyword in ks.cfg just to be sure it was reading
it is being read
TrevorH
how are you booting?
anonymouz666
After I created the whole structure a make the ISO. Then, I opened the virtualbox and selected that ISO to boot from.
TrevorH
the CentOS 7 iso is special and needs creating correctly
anonymouz666
you mean the makeiso command?
TrevorH
it has to be able to boot on both UEFI and legacy BIOS systems
can you not just point your ks to a network location and leave the DVD unmodified?
chances are that it's your DVD creation that is wrong
anonymouz666
mkisofs -o custom.iso -b isolinux.bin -c boot.cat -no-emul-boot -V 'CentOS 7 x86_64' -boot-load-size 4 -boot-info-table -R -J -v -T isolinux/
this is the command I am using, make sense?
TrevorH
I have no idea but I know that most utilities that create usb sticks try to modify the centos iso as they do it and muck it up which is why there's a special wiki page saying what utilities work and what do not
anonymouz666
you mean that my custom KS could get the source media from network instead dvd/
could be an option, yes
TrevorH
I mean you could retrieve your ks from the network and not need to modify the DVD at all
I think your DVD is not booting because you have modified it and not created it correctly
Doyle
Hey, does https://aws.amazon.com/marketplace/pp/B00O7WM7QW/ref=srh_res_product_title?ie=UTF8&sr=0-2&qid=1437774100854 not include iptables?
B_rake
I'm not sure without downloading the image and opening it, do you have a running instance?
TrevorH
I think something similar was reported a few days ago and it was said that it would be corrected on the next spin
that one seems quite old, is it the latest?
B_rake
is iptables on the default c7 minimal or did it get removed in favor of firewalld?
MerlinTHP
firewalld is based on iptables.
sekhmet
B_rake: The "minimal" install might not actually have either by default
(also what MerlinTHP said)
(even with firewalld installed, you can still switch to the old-style bare-bones iptables interface, if you like)
TrevorH
the lack of firewalld was reported a day or three ago in #centos-devel for a different image and the comment was "we should fix that"
wouldn't hurt if there was a bug on bugs.centos.org as a reminder...
B_rake
Aye, thanks sekhmet and MerlinTHP, so firewalld is essentially a fancier tool for the same tables, chains, etc that we all know and love
fenrus02
while firewalld is active, you can run "iptables-save" to see what it did :)
B_rake
right, I got ya
MerlinTHP
Made a mess, mainly.
TrevorH
the most complicated ruleset known to man
replaces the old 6 line iptables-save output with 600 new ones
fenrus02
it's down to 600 lines? huh. improvement over last time i looked at it.
MerlinTHP
The half dozen default zones is somewhat unneccessary, one feels.
en1gma
im following a guide for centos 7 and am brand new to centos. i dont understand this command 'usermod -a -G video [LOGIN]' am i supposed to change or put something in where it says [LOGIN]
TrevorH
yes, the username you want to add to the video group
en1gma
dont it get the username already because it knows who i am when i am typing the command?
also do i need to keep the brackets there too?
Thermi
en1gma: user and group operations are privileged on Linux. Only administrators can execute them. Therefore, the details for the command have to be explicitely entered.
« prev 1 2 3 4 next »