(no Subject)

Home » CentOS » (no Subject)
CentOS 19 Comments

First, why aren’t you doing a full ‘yum update’ to bring the whole system up to 6.4?

Also, are you updating these packages to get new features or bug/security fixes? CentOS tracks the updates in RHEL exactly and RHEL backports many security and bug fixes without changing the base package version numbers. You can see these with:
rpm -q –changelog package_name where the CVE numbers will be mentioned, if you are checking for some particular security issue.

If you need new features, you may have to go to newer versions found elsewhere, but be very careful about replacing any base packages in your system – it is almost always the wrong thing to do. You need to know more about Linux than the Red Hat engineers…

19 thoughts on - (no Subject)

  • One other thing regarding the OpenSSL packages in 6.4, they do not currently support TLS 1.2 and are stuck on TLS 1.0 so may be less secure. [1]

    However, Redhat is aware of this and 6.5 will be updating OpenSSL to a more recent version which will support TLS 1.2 and solve most current known security problems. [2]

    So I’d suggest stick with the 6.4 packages for now, and once 6.5 is out upgrade to those.

    (For a while the last secure cipher in current OpenSSL in CentOS/RHEL
    was RC4, however even that is now considered not so secure and should be phased out. [1])

    Also, may be worth doing a full upgrade to 6.4 then to 6.5 to ensure any other hidden security issues are not lurking due to an out of date package.

    [1] https://community.qualys.com/blogs/securitylabs/2013/03/19/rc4-in-tls-is-broken-now-what
    [2] https://www.redhat.com/about/news/archive/2013/10/latest-beta-release-of-red-hat-enterprise-linux-6-now-available

  • [root@ipa TFTPboot]# semanage fcontext -l | grep TFTP
    /tftpboot directory system_u:object_r:tftpdir_t:s0
    /tftpboot/.* all files system_u:object_r:tftpdir_t:s0
    /usr/sbin/atftpd regular file system_u:object_r:tftpd_exec_t:s0
    /usr/sbin/in\.tftpd regular file system_u:object_r:tftpd_exec_t:s0
    /var/lib/tftpboot(/.*)? all files system_u:object_r:tftpdir_rw_t:s0
    /var/lib/tftpboot/etc(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/grub(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/images(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/memdisk regular file system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/menu\.c32 regular file system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/ppc(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/pxelinux\.0 regular file system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/pxelinux\.cfg(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/s390x(/.*)? all files system_u:object_r:cobbler_var_lib_t:s0
    /var/lib/tftpboot/yaboot regular file system_u:object_r:cobbler_var_lib_t:s0

    Could someone tell me why:

    /var/lib/tftpboot(/.*)? – is using (/.*)?

    /tftpboot/.* – is using .*

    Thanks,

    Andrew

  • Hi Guys,

    i’ve CentOS 6.6 (Final) 64 bit version installed and I can not access the online repositories to install/update (pls see eror below the error), I
    tried to google this error I get a lot of links but nothing I could really solving this issue. I’ve already disabled ipv6 and also defined proxy in
    /etc/yum.conf.

    [root@myhost ~]# yum update Loaded plugins: fastestmirror, security Setting up Update Process Determining fastest mirrors
    * c6-media:
    http://mirror.CentOS.org/CentOS/6/os/x86_64/repodata/repomd.xml: [Errno 12]
    Timeout on http://mirror.CentOS.org/CentOS/6/os/x86_64/repodata/repomd.xml:
    (28, ‘connect() timed out!’)
    Trying other mirror. Error: Cannot retrieve repository metadata (repomd.xml) for repository:
    base. Please verify its path and try again

    If I try to use ‘wget’ to get ‘repomd.xml’ then it works fine.

    [root@myhost ~]# wget http://mirror.CentOS.org/CentOS/6/os/x86_64/repodata/repomd.xml
    –2015-03-09 20:05:03–
    http://mirror.CentOS.org/CentOS/6/os/x86_64/repodata/repomd.xml Connecting to xx.xx.xx.xx:80… connected. Proxy request sent, awaiting response… 200 OK
    Length: 3751 (3.7K) [text/xml]
    Saving to: “repomd.xml”

    100%[===============================================================================================================================================>]
    3,751 –.-K/s in 0s

    2015-03-09 20:05:03 (14.6 MB/s) – “repomd.xml” saved [3751/3751]

    Has anybody experienced this kind of beahviour and got it working ?

    Thank you in advance for pointers.

    Regards Ravi.

  • Hello my name is Michael I am new to (CentOS) what I would like to do is run the software as a dual boot how can I do this I have a 2TB Harddrive with 4GB DDR3 Memory Intel Core i5 processor 2300. I would like to setup a shared hosting site I no I need to install php and MySQL as such I also would like to sell domain names when I put in my search bar on my site how can i have it search for domainnames mike

  • you would need unpartitioned space on the drive to hold the CentOS
    partitions. you don’t say what other OS you wish to dualboot with, so its hard to be more specific.

    hosting and dual boot aren’t exactly compatible, a webserver would typically be a server in a datacenter, with at least one static IP
    address, and it would be always on 24/7.

    installing php and mysql is about as simple as…

    # yum install mysql-server php php-mysql

    and then configuring them per your application requirements.

    that said, the rest of your question, re: searching for domains, is outside the scope of this channel, and better would be addressed on a web application development forum.

  • I assume you’re setting up dual boot between Windows and CentOS? Its generally easier to install Windows first, then set aside unpartioned space to install CentOS on after the windows install is complete.

    I hope not on your dual-boot system — that’d be kinda an odd idea to have a shared hosting site run on a system that’s occasionally booted into Windows…

    If you’re getting started with CentOS, lets just get you running it on a system before you start trying to run a business on it.

    What?


    Jonathan Billings

  • Hi I am running windows 7 professional and the lastest CentOS7 x86 now if I wish to partition the hard since I have 2TB harddrive what volume would I need to set that at many thanks mike

  • windows 7 defaults to creating a partition on the entire disk and leaving no free unpartitioned space. that leaves you with nowhere to install anything else.

  • How much space you need is mostly up to your plans for the system. The minimum space required to install CentOS 7 is 10 gigabytes[1], although you certainly will want more. Windows 7 is going to need more space, but with 2TB, you’re could easily just split it down the middle and have plenty left over. I would suggest a separate /home partition, to make upgrading easier (see other threads[2] on this list). If you plan on running a service on the system, a separate partition for that data might also be prudent.

    Also, you appear to have a broken keyboard. I suggest checking whether any of your punctuation keypresses are generating characters.

    1. http://wiki.CentOS.org/About/Product
    2. http://lists.CentOS.org/pipermail/CentOS/2015-June/thread.html#152717


    Jonathan Billings

  • that’s not hard to fix with the gparted live CD.
    1. boot windows, defrag the partition(s).
    2. shut down windows.
    3. boot gparted live
    4. in my experience the “main” windows partition is nearest the end,
    so using gparted, shrink it enough to leave adequate space for
    CentOS. I won’t go into how to use gparted, it’s not hard, so you
    can surely figure it out (I did!:)
    5. boot windows and let it do its thing with “repairing” the disk.
    6. run your CentOS installer, being sure NOT to let it mess with
    your windows partition(s).
    7. see my other note about how to get it to dual boot with windows.

  • My other post in this thread tells you how to free up some space on the drive (after a Windows install) into which you can install CentOS. This one tells you how to install CentOS-7 into that space AND make it dual-boot with Windoze.

    The default CentOS installation(s) do not recognize the windows installation as a bootable alternative (or at least mine didn’t) and therefore do not automatically give you dual-boot capability.

    But here’s how to solve that (I’m pretty sure this works only for CentOS-7):

    1. so the first step is to go ahead and install CentOS in the free space.
    2. boot it up, run “yum update” to update any packages that have been
    updated since your CD image was made.
    3. install the epel repo for your version of CentOS (presumably you’re
    going to install CentOS-7). “yum install -y epel-release”
    4. Do “yum install ntfs-3g ntfsprogs”
    5. Then run: “grub2-mkconfig -o /boot/grub2/grub.cfg”
    and voila! you’ve now got a dual-boot CentOS-7 and Windoze!

    do not enter the quotes when typing in the recipes above. they are here only to separate the commands from my blithering.

    Note tat you’ll need to be the root user for everything from step
    2 onward.


    —- Fred Smith — fredex@fcshome.stoneham.ma.us —————————–
    “For the word of God is living and active. Sharper than any double-edged
    sword, it penetrates even to dividing soul and spirit, joints and marrow;
    it judges the thoughts and attitudes of the heart.”
    —————————- Hebrews 4:12 (niv) ——————————

  • Hi Fred sounds like you know what your doing for sure

    this is my harddrive My C: Dive NTFS 1.13TB Used 45.74GB Unused 1.09 TB System Primary

    do I need to to create two partitions one for the bootdual and the other for CentOS just asking that’s all. if I wish to use 500 GB how do I put that into a volume mike

  • well, I’ve done this before.

    just make sure the installer doesn’t touch your existing partitions… you can explicitly exclude them during the partitioning phase, then let it partition the empty space as it likes, or force it to do it your own way. You don’t NEED a separate boot partition, but it’s not a bad idea to use one.

  • problem with that step is that oos does not move _locked_ files and directories. so when one goes to next steps, of shrinking, if locked directories and files are not unlocked, one of 2 things happen, shrinking can not shrink as much as needed, or locked directories and files are lost.

    such might work, but only if one has original oos install disk and recovery disk.

    or so it is as i have found trying to set up a win7 laptop.

    ymmv.

  • Hi,

    I’ve got an LXC container running. Essentially, only core, and openssh-server installed inside the container. Got a shell with lxc-attch -n “containername”, but unable to run system-config-firewall. Any ideas, what might be wrong?

    Thanks,

    Jochen

    [root@CentOS6 /]# unset DISPLAY
    [root@CentOS6 /]# system-config-firewall Traceback (most recent call last):
    File “/usr/bin/system-config-firewall-tui”, line 29, in
    import fw_tui
    File “/usr/share/system-config-firewall/fw_tui.py”, line 34, in

    import fw_nm
    File “/usr/share/system-config-firewall/fw_nm.py”, line 30, in

    bus = dbus.SystemBus()
    File “/usr/lib/python2.6/site-packages/dbus/_dbus.py”, line 202, in __new__
    private=private)
    File “/usr/lib/python2.6/site-packages/dbus/_dbus.py”, line 108, in __new__
    bus = BusConnection.__new__(subclass, bus_type, mainloop=mainloop)
    File “/usr/lib/python2.6/site-packages/dbus/bus.py”, line 125, in __new__
    bus = cls._new_for_bus(address_or_type, mainloop=mainloop)
    dbus.exceptions.DBusException:
    org.freedesktop.DBus.Error.FileNotFound: Failed to connect to socket
    /var/run/dbus/system_bus_socket: No such file or directory

  • I have a CentOS (6.8) box running as Dom0 that uses

    xen-4.6.3-4.el6.x86_64.rpm kernel-3.18.44-20.el6.x86_64.rpm

    and friends from the virt repo.

    I can get a basic X environment (Vesa driver) when running in non-Xen mode but, when booting into the hypervisor, that fails.

    I’ve tried one suggestion, adding a nopat to the kernel invocation, but that hasn’t helpd although I’m sure the full suggestion, which I can no longer find, also mentioned an “mtrr” addition as well.

    I’m also sure believe I even saw someone get pointed to some “aftermarket”
    xorg-x11 RPMs that claimed to work better with the Xen4CentOS environment than the standard ones.

    My ability to search the interweb thing and find this info has clearly fallen to an all time low, so, does anyone on here have a better memory than I do, as regards that stuff ? (Assuming i didn’t dream it!)

LEAVE A COMMENT