David Mackintosh (david.macki...@xdroop.com)

On Tue, Oct 14, 2008 at 11:13:18PM +0100, Karanbir Singh wrote:

> And Just to remind everyone that no, this is still not a general
> conversation about stuff list.

How off-topic is it to ask precisely what is on-topic for this list
if questions and discussions of the included components belong on the
support mechanisms for those individual parts, and the rest (ie anaconda
and friends) probably belongs in the upstream vendor's forums?

What does that leave?  The color of the logo?

(I like the blue.)

Strictly speaking, yes; however in practice, the number of bots (or,
indeed, external users who are not me) who the magic web page to hit
(my actual page is not named as the example on the web page is!)
before attacking the ssh connection is zero; therefore since the goal
was to prevent stupid robots from brute-forcing my ssh and filling my
logs, it isn't necessary.  

I mean, strictly speaking you'd next have to insist on a proper SSL
connection to the web server, otherwise you are at risk of someone
sniffing the username and password used in the .htaccess process.
And then after that, you'd have to insist on some kind of security on
the remote system to ensure that your passwords are not being
captured.  Etc, etc.  

This is what I do.

http://wiki.xdroop.com/space/Linux/Limited+SSH+Access

This is pretty much what I do.  I also keep stock "reference" images
for each OS I support and copy from the reference image every time I
need to deploy a new VM.

I like the idea of Xen, but the documentation is a little thin
especially when it comes to installing useful things like Windows
VMs; I don't have the time to solve the problem properly, and I hope
that in a year or two I can change this.

On Tue, Feb 12, 2008 at 10:26:54AM -0800, Tim Alberts wrote:
> So how do I do this?

edit /etc/sysctl.conf

> option routers 10.0.0.1 10.0.0.2;

Not as far as I know.

On Wed, Jan 30, 2008 at 12:17:22PM -0500, Ed Donahue wrote:
> I use this one, works great and easy to setup
> http://rfxnetworks.com/bfd.php

This is how I deal with them: deny by default unless you know the
"secret handshake".

http://wiki.xdroop.com/space/Linux/Limited+SSH+Access

On Fri, Nov 23, 2007 at 08:59:43AM -0500, Scott Ehrlich wrote:
> Creating database bugs...
> The 'bugs' database could not be created. The error returned was:
>
> Access denied for user ''@'localhost' to database 'bugs'

I've seen this problem before, but I can't find my notes on it.

Try creating a user "bugs@localhost" instead just creating a user
"bugs" -- to mysql, they are different.

I get messages like this with my fetchmail -- the cause has been either
the mail provider on the remote end is using a default, self-signed and unmaintained
certificate (ie when you install Sendmail, you get some self-signed certs
generated that are useless beyond the scope of your own private use); in
other cases I have been referring to the computer by a name which differs from
that which the certificate was created with.

In this case I suspect a combination of the two.  It looks like the
service provider got a default cert set up with the system referring to
itself as 'localhost', which is naturally different form the name
'mail.mydomain.com' which is how you are referring to it.

In practice this is probably nothing to worry unduly about unless you
are paying extra for verified TLS-secured mail transmission.  The expired,
mismatched-name cert will be used to encrypt the mail transmission just as
well as a "proper" cert will.

Last I checked, cyrus-imapd could not provide reliable service when the datastore
was on NFS.

No, unfortunately this is an engineering environment where 4.x is required
for compatibility with their toolset.  I'm sure 5.x is in their future
in the next year, but for today we need 4.x.

Anyone had any success with or hints for a system based on the Asus
P5B-VM DO board, or the Intel Q965 (with its associated Intel GMA
3000 VGA chip) in general?  

I had to put pci=nommconf in order to get the installer (CentOS 4.5)
and the installed system to boot, but I can't get the graphics to work.

Following the instructions at the Intel website
http://www.intellinuxgraphics.org/install.html ends with a compilation error:

# cd drm/linux-core/
# make
make -C /lib/modules/2.6.9-55.0.9.ELsmp/source SUBDIRS=`pwd` DRMSRCDIR=`pwd` modules
make[1]: Entering directory `/usr/src/kernels/2.6.9-55.0.9.EL-smp-x86_64'
  CC [M]  /root/intel/drm/linux-core/drm_agpsupport.o
In file included from /root/intel/drm/linux-core/drmP.h:168,
                 from /root/intel/drm/linux-core/drm_agpsupport.c:34:
/root/intel/drm/linux-core/drm_compat.h:114: warning: static declaration of 'kcalloc' follows non-static declaration
include/linux/slab.h:103: warning: previous declaration of 'kcalloc' was here
/root/intel/drm/linux-core/drm_agpsupport.c: In function `drm_agp_populate':
/root/intel/drm/linux-core/drm_agpsupport.c:531: warning: implicit declaration of function `phys_to_gart'
/root/intel/drm/linux-core/drm_agpsupport.c: In function `drm_agp_init_ttm':
/root/intel/drm/linux-core/drm_agpsupport.c:643: error: structure has no member named `bridge'
make[2]: *** [/root/intel/drm/linux-core/drm_agpsupport.o] Error 1
make[1]: *** [_module_/root/intel/drm/linux-core] Error 2
make[1]: Leaving directory `/usr/src/kernels/2.6.9-55.0.9.EL-smp-x86_64'
make: *** [modules] Error 2

For those who end up here as the result of an internet search: my
problem in this case was that I installed i386 rpms on a x86_64
system, which explains why php couldn't load the modules even though
they were there.  

Two long hours with yum and rpm, removing and re-installing various
parts, and I have a happy user community.

So honestly this problem was of my own making.  Nothing to see here.

On Fri, Sep 28, 2007 at 12:48:23PM -0400, Ignacio Vazquez-Abrams wrote:
> On Fri, 2007-09-28 at 12:24 -0400, David Mackintosh wrote:
> > Ahh, I didn't know you could ldd modules. But I still cannot see a problem:
>
> Did you run it on a system exhibiting the problem?

Yes, I did.