Search found 18 matches

by greatguangong
2005/06/20 08:29:28
Forum: CentOS 4 - Security Support
Topic: ssh publickey authentication -> centOS doesn't work
Replies: 3
Views: 6913

ssh publickey authentication -> centOS doesn't work

can you turn on LogLevel DEBUG and check /var/log/messages for a wealth of info that might let you pinpoint what went wrong where.

or you can post that here...
by greatguangong
2005/06/10 01:57:17
Forum: CentOS 4 - General Support
Topic: HOWTO: yum upgrade to CentOS 4.0
Replies: 67
Views: 10397

Re: HOWTO: yum upgrade to CentOS 4.0

Does anyone know why http://ftp.nara.wide.ad.jp/pub/Linux/centos/4/updates/i386/RPMS/kernel-2.6.9-11.EL.i686.rpm is not considered by yum as an update to kernel-2.6.9-5.0.5.EL?

Mirrors have not updated the repodata?
by greatguangong
2005/06/10 01:51:39
Forum: CentOS 4 - Server Support
Topic: Enabling httpd?
Replies: 8
Views: 5871

Re: Enabling httpd?

Ensure your httpd is listening on 80 netstat -an|grep 80 tcp 0 0 192.168.124.1:80 0.0.0.0:* LISTEN tcp 0 0 172.16.249.1:80 0.0.0.0:* LISTEN tcp 0 0 172.16.255.1:80 0.0.0.0:* LISTEN As edward suggested, the easiest is to drop your fw for the moment, test, and if that works...
by greatguangong
2005/06/10 01:47:22
Forum: CentOS 4 - Server Support
Topic: Can't Log In
Replies: 5
Views: 1189

Re: Can't Log In

No worries. Here's a list of tweaks to achieve 600MB install that we removed from the Base, which STILL requires >1GB ;/ The fatter ones are the iiimf* and the ttfonts* rpms. The focus of this list is size, than perfection (too much work). -acpid -apmd -anacron -aspell -aspell-en -autofs -bluez-blue...
by greatguangong
2005/06/10 01:39:42
Forum: CentOS 4 - Security Support
Topic: [question]iptables
Replies: 13
Views: 4413

Re: [question]iptables

Can't find help on blackcode's online scanner, so I don't know if they mean CLOSED is FILTERED or CLOSED as in plain CLOSED, where the OS will send back an RST packet to the origiinator. FW-ALL-F-IN-DROP-FINALLY did show dropping packets for unopened DPORT on the floor? other online scanners can nev...
by greatguangong
2005/06/09 16:56:48
Forum: CentOS 4 - Security Support
Topic: [question]iptables
Replies: 13
Views: 4413

Re: [question]iptables

These are the rules used to produce the firewalled/filtered effect. I think I have adhered faithfully to the rule "allow explicitly, drop everything else..." -A GUANGONG-IN -i all -m state --state INVALID -j LOG --log-level debug --log-prefix "FW-ALL-F-IN-DROP-INVALID " --log-tcp-sequence --log-tcp-...
by greatguangong
2005/06/09 01:14:03
Forum: CentOS 4 - Server Support
Topic: Can't get httpd to start on fresh install
Replies: 3
Views: 918

Can't get httpd to start on fresh install

That is a notice message, not an error. Please paste more from your logfiles.

Try service httpd status. as well as telnet localhost 80 (unless you specified specific IP addresses to listen to), as Commander suggested...

`netstat -an|grep 80` too
by greatguangong
2005/06/09 01:01:02
Forum: CentOS 4 - Server Support
Topic: Httpd problem
Replies: 4
Views: 989

Re: Httpd problem

More info will be nice. HTTP error code? 403? 404? 500?! ;)

Personally, 9/10 times were file perms. Others were FollowSymLinks off by default...

Muck around httpd.conf and file perms. The answers are finding you.
by greatguangong
2005/06/09 00:55:41
Forum: CentOS 4 - Server Support
Topic: Can't Log In
Replies: 5
Views: 1189

Can't Log In

It is strange you face all these quirks... It's always worked for me out of the box (safe turning off quite a dozen applications). You can install with Base category to avoid X altogether, then add whatever else that you need. I think ssh as root is disabled by default, and X should have allowed roo...
by greatguangong
2005/06/08 16:04:48
Forum: CentOS 4 - Server Support
Topic: dynamic change of pxelinux.cfg/?
Replies: 2
Views: 753

dynamic change of pxelinux.cfg/?

How is it currently done for gurus out there? Can't be manual editing of the file after installation is successful?

To change this line at /tftpboot/pxelinux.cfg/
default linux to default local

Else the box shall go into endless loops of kicstarting...

Go to advanced search