logs archiveIRC Archive / Freenode / #centos / 2015 / July / 3 / 1
gagalicious
how do i prevent other users running as my pxe clients from being able to do sudo / root stuff?
diskless
sobukus: ok
Evolution
gagalicious: by properly configuring sudo and restricting it to specific host/user
sobukus
gagalicious: I mean, remember Knoppix? A liveCD with webbrowser and office ... easily runnable on machines with less than 1G of RAM.
gagalicious
how do i prevent other users running as my pxe clients from being able to change into a user with sudo group access and thereafter try to do sudo / root stuff? my pxe client users are top programmer/hackers. they can brute force password into my linux user in their sudo group.
sobukus
I only fear that modern websites with firefox just fill up any amount of RAM
gagalicious: Someone with physical access to the machine is root if she wants to.
Evolution
gagalicious: if you're asking that question, you won't be able to stop them.
gagalicious: and you don't need to brute force if you have physical access.
gagalicious
sobukus: i intend to dig a 9ft hole and place server there, thereafter pour cement over it.
Evolution
some things you manage with policy. some things you manage with tech.
gagalicious
Evolution: hmm... yeah i remember how they used to... secure server...
Evolution: a lot of work and money on security
         

sobukus
gagalicious: One big step forward would be if the users really are logged into the client machines, not into the server (classical thin clients that only give you display and input devices).
gagalicious
i just installed a new server... 500GB disk with only 4GB of disk used. i would like to "image back" for "restore" of this image. i did dd if=/dev/sdd conv=sync,noerror bs=64K | gzip -c > freshimage.img ... it took 45GB+ as file space. does anyone have a solution that can gimme a backup image of 4GB only? what's taking the rest of the 41GB for dd? i only need the useful binary data of the whole server that's all. can that be done?
orev
gagalicious: was there anything else on that disk before? dd will binary dump everything if there's a file there or not. you'd need to zero out the free space to get a good compression ratio
and make sure you're not making the image of the disk on the same disk you're imaging...
kaos01
is there a easy way to tell if my disk is using fc,scsi or fcoe ?
or my best bet is greping lspci, dmesg output
and possibly dmidecode
and lsmod and try to tell by driver/module
orev
man, I hate gpg2 with this pinentry crap
vook
Anyone happen to know if netatalk is capable of encrypting all data transmitted? If not, I'm looking for suggestions of a seamless encrypted filesystem for both Mac and Linux (seamless for the Mac users that is).
Ryein
any scripts exist that help setup raid and move partitions?
oh there is a GUI installer and a Text installer
CaptWho
can Windoze "Remote Desktop" be configured to work with centos?
PryMar56
CaptWho, freerdp
CaptWho
PryMar56 - I just found xrdp, any experience with that?
xrdp is awesome! easy to install and works great.
hoherd
vook: it is not safe. also, Apple has abandoned AFP in favor of SMB, i would advise against implementing it. plus its abandonment is a symbol of its usefulness. see http://appleinsider.com/articles/13/06/11/apple-shifts-from-afp-file-sharing-to-smb2-in-os-x-109-mavericks
macopython
What is the keyboard shortcut to launch terminal in CentOS7 ?
What is the keyboard shortcut to launch a terminal in CentOS7 ?
stephenm
Hi, I'm not too familiar with RHEL systems but I am studying for RHEL 7 RHCSA. The book I am using to study suggest to install basic server and I remember seeing that in the previous RHEL versions but I don't see it in RHEL 7.
Was it removed or just renamed
TommyC
basic server?
stephenm
Sorry during the installation process. I understand that the partitioning has changed from RHEL 6 to RHEL 7 but there are a couple other changes in the installation.
TommyC
stephenm: Indeed.
So you need partitioning help?
stephenm
No I'm talking about the type of server that you would install from the DVD image.
I would normally choose a minimal install but I am trying to follow the book that I am using.
Basic server use to be an option in RHEL 6/6.5 that you could install with but I don't see it in the software install from the RHEL 7 installation.
wolfy
stephenm: I suggest reading https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Installation_Guide/index.html
stephenm
thx wolfy
wolfy
stephenm: more precisely, https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Installation_Guide/sect-package-selection-x86.html covers what you were looking for
         

stephenm
OK but basically there is no longer anything call "Basic Server" like there was in installs before RHEL 7 had. Also doesn't look like you can install individual packages like before either during the install.
Haris
I have an error while installing puppet 3.8.1 on on 6.4. Its giving dep error for ruby -> http://pastebin.ca/3044605 . when I run yum update on this server, I don't see ruby being updated in the process
wolfy
@current Haris
centbot
Current releases are 5.11, 6.6, and 7.1 (1503). You can determine your current release by running 'rpm -q centos-release'. Please understand that this channel is only able to support what is current.
Haris
yes, I know. I understand
yum update is not going to solve my problem
though
corretion
Correction: this is on the latest centos
I confused this with another window, I have open
this is on CentOS Linux release 7.1.1503 (Core)
running yum update on 7.1.1503. don't have ruby in the list of pkgs to be updated
hifi
Haris: you're installing puppet from puppetlabs repos, not centos problem
also you're mixing epel with it as well which also provides some version of puppet
Haris
let me try with disabled epel
same error. with disabled epel, in yum transaction, I get error for 3 deps, rather than 1
RemiFedora
Haris, trying to install el6 package on el7... bad idea
hifi
oh, true
Haris
good point
wrong puppet release rpm. my! bad
hifi
you could just install puppet from epel though
if you already use epel
Haris
version difference is sharp
although I have no cutting edge need, at this time
vendor published yum repos' are proving to be 'somewhat' PITN, for OS
mysql has one, puppet has one, others are coming up with them
OS maintainers+
jasem_
hi
i need some help wtih vino-preferences
how can i set global configuration for all users
i want to allow sharing and require password for login
and must confirm each access
Haris
need to have a consistent terminal setting, on both the server side, and the client side
I'm using a terminal type that doesn't exist at the server end. it re-sizes the putty window on my/client end, when I run screen
terminal type/setting(s)
Ryein
no matter what i do centos will not start the install
carbonator
Ryein: and more info maybe?
Ryein
ive downloaded like 5 different ISOs
burnt them with imgburn and tried to install
carbonator
Ryein: checksums verified? where does it stop?
Ryein
the 6.6 netinstall seems to get me to the point where i check the boot media and it is successful but then tells me I have no disk in the drive
another Live ISO I get to the black loading screen with the spinning circle and then the circle disappears and it just sits there
wolfy
looks like incompatible or defective hardware
Ryein
I bet I can download an ubuntu iamge and it will work first time
wolfy
should that tell US anything ?
Ryein
how would it be hardware if I can install another distro on the hardware?
wolfy
" incompatible or"
carbonator
Ryein: also, different distro, different drivers
Ryein
I have another version working on the hardware
but i found out to setup raid you need the graphical installer
wolfy
yeah, the text installer is castrated
carbonator
when it comes to the worst, one could config raid via kickstart
Ryein
carbonator, yeah true just was hoping to avoid the hassle
kexmex
Hey guys. I think CPU is high due to Leap second. What to do?
TommyC
Fix time.
« prev 1 2 3 4 5 next »