anyone run into trouble with the most recent selinux-policy updates (Centos7; selinux-policy-targeted-3.13.1-23.el7_1.13)? and by trouble I mean system dies of a stroke (invalid selinux contexts, auditd goes nuts, kernel panics)
no, not i try relabelling?
sadly, the systems are gone.. kp on boot now :) looks like it might be interplay with docker - selinux, and the system spun out of control during the kernel update yeah, p. sure the policy breaks docker, when docker is running
where are the default config dirs for php-fpm in centos 7? I'm used to seeing them in debian in /etc/php5/fpm/ usually fpm/pool.d usually with its own copy of php.ini but on centos I only see one php.ini ... ah, centos only uses a single .ini :\
oniMaker: the php-fpm package includes these files and directories, I'd say you'll find what you're looking for here: /etc/logrotate.d/php-fpm /etc/php-fpm.conf /etc/php-fpm.d /etc/php-fpm.d/www.conf /etc/sysconfig/php-fpm
pj: thanks, I see those there - I was just confused by the lack of separation I'm used to seeing
probably more specifically: /etc/php-fpm.conf /etc/php-fpm.d at a guess you can probably drop individual configs into the .d directory there.
pj: looks like it, but in this case I just need to edit that www.conf that comes by default
oniMaker: then edit it, it's marked as a config file so updates won't overwrite it.
pj: It's edited :)
does anyone have a laptop for troubleshooting - like a small netbook or laptop that they have linux on and use to troubleshoot other computers?
laptoy, yes. small? 15in.
thta's not _that_ small ;)
_shrugs_ you asked.
With network manager, instead of creating a "dispatcher.d" script to echo my options into resolv.conf, is there a legitimate way to tell network manager to add somethign like "options rotate" to the resolv.conf?
true fenrus02 no worries :)
chattr +i /etc/resolv.conf yum -y remove NetworkManager yum -y remove resolvconf Sorry, there are a lot of things I really hate, and networkmanager+resolvconf are two of the ones on my top 2 list.
erm, what is resolvconf? it's not in el7 .. or el6.
resolvconf is a debianism for mucking with /etc/resolv.conf
this isnt #debian? and debian doesnt have yum ..
picky picky! :) Shout! Shout! These are the things I wanna hate about
nm already marks the file +i too btw.
"Do as i say, not as I do" -Network Manager
how can I find out what the different colors mean in my terminal? i'm using minimal install so not sure what the default terminal is for it
(Action) agrees with sartan's hatred of network manager
nm works for wifi. for anything else . . . not so muhc.
personally I like nm for a desktop / GUI platform, not for a server. nmcli is, imo, a bolted on poorly implmenented cli interface for what is really supposed to be a gui network widget.
Hello everyone. What's a good (and preferably free) option to have real-time folder replication between several machines over my network?
Ruffus: if real-time replication is a must, pls see if gluster is appropriate for you. I *think* it does have some master-slave replication settings
Thanks mkpai. I though gluster isn't exactly reomended to be used over network, if there's "some" latency. is that correct? my actual scenario is that the machines are in different cities, the two sites being liked via site2site vpns
I have such setup, plain smb/nfs and site unique paths replication of site specific data nightly only so there is the latency of using a networked filesystem when you access remote files relating to your site
i've used sucessfully lsyncd, but somehow that solution doesn't feel robust enough, I was looking for something "muchier"
if you have shared paths there's a big locking issue and possible conflicts can happen
How would I detect and mount a SD card to USB converter? lsblk shows no new filesystems.
can I pass extra parameter to kernel then pass them to kickstart during installation??
OneM_Industries: did you run lsblk as root?
Yes. No change.
Evolution: then how to do it?
cppking: Arrfab did a couple talks about this -> http://people.centos.org/arrfab/Events/Dojo-2015/CentOS%20Install%20method%20review.pdf
Evolution: I didn't find anything related.. I think I shoud patch kickstart to do something I want add configuration in ks.cfg directly
cppking: no, you just parse /proc/cmdline cppking: google has quite a few references for it, there was a talk at rh summit a while back can't find the link now
you mean extra kernel paramter will be put in /proc/cmdline?
Hi, is there are bug on centos 7 when installing new kernel? Seems that everytime when I now install new kernel system fails to boot. "cant mount rootfs" ect... tho I got this problem with few centos 6 servers also reinstalling kernel fixed this...
have you ruled out the possibilities that during update 1) you run out of disk space, 2) you run out of memory?
Ruffus: I was misunderstood :) I am not suggesting a gluster stretched across cities. I was suggesting geo-replication. Ruffus: if you are already using lsyncd, what were the problems ? I was looking at that solution too in fact :-)
ln-: did you point those questions to me?
in rhel/centos 7 i often stumble about systems where ntpd is clearly enabled (/etc/systemd/system/multi-user.target.wants/ntpd.service exists and is ok) but it is not startet on boot. anyone seen this before?
Meier: service ntp status ? when its not started
so it dies at startup then you need to check logs /var/log/messages etc why it dies also systemd has some NTP features if they are enabled, they might clash with NTPd
Meier: do you also have chrony enabled? you can't run both at the same time.
ah i c. that's enabled in the default install?
it's usually chrony that gets installed, yes. not sure which package groups pull that in. apparently it's selected by default in the Base group. if you try to run both, one of them will fail at startup because only one can bind to the UDP 123 port.
Hey - is 6.7 released? I see it's available in the mirrors, but no announcment
si|ent: apart from the missing announcement email, it's fully usable. go on and use it.
Hello! If I type: sestatus, I get the message: SELinux status: disabled, but in /etc/selinux/config I have "SELINUX=enforcing". How else do I get selinux online? or running rather
Braden`, please paste the single line of output from the 'uname -a' command run on the server in question to the channel.
Braden`: this ^^^^^ and is this a VPS?
I've got a bright shiny US nickel that it's an OVH craptastic kernel or vz.