submission rate limit advice

I've tightened or rather overtightened several postfix limits, in what
seemed like a good idea at the time...

noticed now this warning, this user is on a dynamic IP, so can't add his
IP to exception:

going by the counter "Connection rate limit exceeded: 125", what values
should I alter?

Jan 31 14:01:09 geko postfix/smtpd[24223]: warning: Connection rate limit
exceeded: 124 from[] for
service submission
Jan 31 14:03:14 geko postfix/smtpd[24340]: warning: Connection rate limit
exceeded: 125 from[

Fedora Rawhide-20180919.n.0 compose check report

No missing expected images.

Failed openQA tests: 8/132 (x86_64), 1/24 (i386), 1/2 (arm)

New failures (same test did not fail in Rawhide-20180917.n.1):

ID: 283832 Test: x86_64 Everything-boot-iso install_default
URL: <a href="" title=""></a>
ID: 283833 Test: x86_64 Everything-boot-iso install_default@uefi
URL: <a href="" title=""></a>
ID: 283838 Test: x86_64 Workstation-live-iso base_update_cli
URL: <a href="" title=""></a>
ID: 283890 Test: x86_64 universal install_kickstart_firewall_disabled
URL: <a href="" title=""></a>

Fedora 29-20180919.n.0 compose check report

No missing expected images.

Failed openQA tests: 3/132 (x86_64), 2/24 (i386), 1/2 (arm)

ID: 284048 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 284064 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 284069 Test: i386 KDE-live-iso install_default
URL: <a href="" title=""></a>
ID: 284070 Test: arm Minimal-raw_xz-raw.xz install_arm_image_deployment_upload
URL: <a href="" title=""></a>
ID: 284136 Test: x86_64 un

ssh to windows, terminal doesn't work.

I enabled ssh server on a windows desktop, and I can now ssh to it from my
ubuntu laptop, and run cmd.exe, powershell and bash (WSL) which all work
fine, except that in none of them do terminal applications work properly.
*man* shows me the the first page, and then subsequent pages are scrunched
on the last line. vim does very weird stuff. the whole window goes blank
when I delete a line, ^L brings it back, but the cursor is always off by
one line. it's unusable.

I tried asking on an MS forum, no response so far. Any ideas what to look

Semi-serious proposal: drop all optional entries from comps

Hi folks!

I am currently working on finding and removing all comps entries that
point to packages which don't exist any more.

There are quite a lot of them.

A lot of them are 'optional' entries.

While doing this extremely tedious task, it occurred to me to think:
what the hell is the *point* of these 'optional' entries any more,

In Ye Olde Days, there was an obvious point to them: they showed up in
the installer. Prior to Fedora 18, with the old anaconda UI, the
'package selection' screen gave you per-package selection within the
comps groups.

discover has no way to configure sources

I've lost the ability to configure sources in discover. Is this a
known issue, or am I missing something?

Fedora 29 compose report: 20180919.n.0 changes

===== SUMMARY =====
Added images: 2
Dropped images: 3
Added packages: 0
Dropped packages: 0
Upgraded packages: 1
Downgraded packages: 0

Size of added packages: 0 B
Size of dropped packages: 0 B
Size of upgraded packages: 14.86 MiB
Size of downgraded packages: 0 B

Size change of upgraded packages: 1.27 MiB
Size change of downgraded packages: 0 B

===== ADDED IMAGES =====
Image: Python_Classroom vagrant-libvirt i386
Path: Labs/i386/images/
Image: Python_Classroom vagrant-virtualbox i386

Crowdsourcing details of Ubuntu 18.04 Distro, Flavors & Debian derivatives

To have new better Bug#1 fixing so people can find wich for comparison
should b installed, for current and new users, of all Ubuntu distros, im
asking for crowdsourcing help of everyone working together to share
knowledge together in one spreadsheet.
At start 7 Ubuntu Flavors Compared: Kubuntu vs. Lubuntu vs. Xubuntu vs.
MATE vs. Budgie vs. Studio.

IP address used by Apache reverse proxy?

How do I find the IP address?

Would it be possible to use that IP address with a subdomain name on a virtual host configuration? I want to use the free subdomain I got from <a href="" title=""></a>. - the largest free subdomain network<> offers you a free subdomain for your website.
<a href="" title=""></a>

Koji: builds fails with "error retrieving sources"

<a href="" title=""></a>

It's not very clear what the actual error is, but I am fairly sure
that I have uploaded the correct sources for this:

$ fedpkg new-sources libguestfs-1.39.10.tar.gz
/usr/lib/python2.7/site-packages/fedora/client/ DeprecationWarning: fedora.client.bodhi has been deprecated. Please use bodhi.client.bindings instead.
File already uploaded: libguestfs-1.39.10.tar.gz
Source upload succeeded. Don't forget to commit the sources file


python2-future on fedora 30+

Hi all.

Are we ready for excluding python2-future on fedora 30+ ?

$ dnf repoquery --release rawhide --enablerepo=*-source
--disablerepo=rpmfusion* --whatrequires python2-future

Last metadata expiration check: 0:00:00 ago on ven 21 set 2018 14:41:49


httpx 0.2.0 Released

httpx version 0.2.0 has been released!

* <a href="" title=""></a>

httpx is a library for performing HTTP requests. It is simple, extensible,
fast and compliant. It supports HTTP/2.


* Non-blocking DNS resolution

* Support for DNS-over-HTTPS (aka DoH)

* Support for HTTP/2 connection coalescing (see
<a href="" title=""></a>)

Unsubscribe: <>

Qt 5 update in rawhide


I'm updating all Qt 5 packages in rawhide now. Until all this is done, you may
experience broken dependencies for packages using Qt 5.


Proposal, Adopt .editorconfig in every project

Hello fellows.

In kde software we strive to be inclusive, that means that we don't enforce
a coding style in every new project, nor do we adapt to newer styles on old

com web/php: Fix #76910: Typo in filename for tar.xz of 7.2.9 in releases json: include/

Link: <a href=";a=commitdiff;h=634a4c7c6c33993ec0a8d7460b9e3cb8019ba63c" title=";a=commitdiff;h=634a4c7c6c33993ec0a8d7460b9e3cb8019ba63c">;a=commitdiff;h=634a4c7c6c33993ec0a8d74...</a>

Fix #76910: Typo in filename for tar.xz of 7.2.9 in releases json

<a href="" title=""></a>

Changed paths:
M include/

diff --git a/include/ b/include/
index 32ceacf..e0b424f 100644
--- a/include/
+++ b/include/
@@ -92,7 +92,7 @@ $OLDRELEASES = array (
2 =>
array (
- 'filename' => 'php-7.2.89tar.xz',
+ 'filename' => 'php-7.2.9.tar.xz',
'name' => 'PHP

Heads Up: matplotlib 3 (no Python 2 support) in rawhide

We updated python-matplotlib to 3.0.0. It only supports Python 3. This
was done in Rawhide only.

The python2-matplotlib* subpackages were moved to a new SRPM,
python2-matplotlib (remains at 2.2.x), as plenty of cruft still needs
them :(

If you experience some relevant trouble (conflicts between packages,
blocked updates, unresolved deps, matplotlib not working, your plots
exploding...) please file bugs or let me know.

python2-matplotlib needs a maintainer. Volunteer at your local animal
shelter (e-mail me).

"Circular require considered harmful"

Trying to figure out how to resolve this error:

warning: loading in progress, circular require considered harmful

This is the file it is referencing:

<a href="" title=""></a>

How do I resolve the errors?

Firewall trouble with Kickstart


my goal is to install via kickstart a CentOS 7 NFS server but I fail to set the
firewall rules at installation time.
In my kickstart file I set:

# Firewall configuration
# ssh and NFS
# Ports 111 and 875 are for rquotad
firewall --enabled --ssh --service=nfs --port=111:tcp,111:upd,875:tcp,875:upd

On the installed server,  /root/anaconda-ks.cfg contains:
# Firewall configuration
firewall --enabled --port=111:tcp,111:upd,875:tcp,875:upd --service=ssh,nfs

But after install "firewall-cmd --list-all" returns:

public (active)
  target: default
  icmp-block-inversion: no

kramup / kramdown-service v1.0.0 - Live Markdown Editor and HTTP JSON API w/ Sinatra v2


I've updated the kramdown-service / kramup library and tool [1]
that lets you start your own local live markdown editor browser app and
json http api service w/ sinatra v2. Example:

Step 0 - Install the gem e.g.

$ gem install kramdown-service

Step 1 - Start the server / service e.g.

$ kramup

Step 2 - Open up the editor page in your browser e.g. use

That's it.

Enjoy. Cheers. Prost.

PS: Did you know?

Will there be a resolution to the updater freezing issue, short of waiting
for the availability of future PPA updates, if they ever come?

This is affecting a huge amount of people, it seems. Is there no way to
backport any fixes from a later version to 5.12.6, or will Plasma 5.12.7
fix this for us?

Ubuntu doesn't enter any WM except Gnome on Wayland

Hello people.

I have a machine using Ubuntu 18.04 with the kernel 4.15.0-34-generic
using all the latest updates I have tried in the past to use another WM,
but every time and install one and reboot to select it at the login
screen it seems to load, a black screen appears and then the login
screen shows agains.

Some notes:

* I have tried to use KDE, lxde, xfce, i3, and xmonad.
* Unity and Gnome without Wayland also don't work.
* When the machine had few time after the update to 18.04 it was
possible to use Unity and non-Wayland Gnome, but I never used any
other WM.
* I believe it has so

BCC to a local account

I am trying to bcc all mail to a prticular user (currently
<a href="mailto: ... at lereta dot com"> ... at lereta dot com</a>) to a local account (mrcar).

I tried to setting an entry in recipient_bcc_maps:

/mrctest\ mrcar

but that just returns "status=deferred (unknown mail transport error)"

I also tried

/mrctest\ <a href="mailto: ... at mx02 dot"> ... at mx02 dot</a>

with the same result.

Is this even possible? If it is how can I make it work.

Failed to get to installer for CentOS 7 VM under CentOS 6...

I just tried to create a CentOS 7 VM on a CentOS 6 host, but it crashes to the
dracut prompt. I am using the PXEBoot installer. I *think* it is unhappy
with the (virtual) graphics controller, but I am not sure.

The rdsosreport.txt file is available here:
<a href="" title=""></a>

SIG reports - October newsletter

I've begun to draft the October newsletter on If your
SIG would like to report anything to the broader CentOS community,
please do let me know what you'd like to say.

Or, if you'd like to edit it yourself, please go right ahead and make
your edits directly in my draft.

If there's other content you'd like to contribute to the newsletter,
please do let me know.

Apache PHP-FPM unix domain sockets questions

After looking at the documentation on and I have a few questions ...

1. I have seen examples of both "ProxyPassMatch" and "SetHandler" used to implement Unix Domain Sockets. Which is better?

2. On the wiki page it says "Using too many sockets will cause apache to give a (99)Cannot assign requested address: error"

If PHP-FPM is configured to use "ondemand" does this help avoid that problem?

3. If "ondemand" is used in PHP-FPM, is it still advisable to tweak /proc/sys/net/ipv4/tcp_tw_reuse?


(no subject)

The Fedora 29 Beta RC5 compose [1] is GO and is going to be shipped
live on Tuesday, September 25, 2018.

For more information please check the Go/No-Go meeting minutes [2] or logs [3].

Thank you to everyone who has and still is working on this release!

[1] <a href="" title=""></a>
[2] <a href="" title=""></a>
[3] <a href="" title=""></a>

Packages with cicku as admin or with commit access


In the process of orphaning a few packages lately, I noticed that the
user "cicku" (Christopher Meng) still had commit or admin privelidges
on the package. That user hasn't been active for a couple of years,
and I vaguely remember packages that he owned being orphaned. But, it
seems like packages where he was co-maintainer had no changes.

Is this desirable for inactive developers? What if their account
became compromised?

Rocky RDO Release Announcement

If you're having trouble with the formatting, this release announcement is
available online <a href="" title=""></a>

Not sure if i have a DNS or Postfix issue ?

Hi, not sure if i am looking in the wrong place:
If you want my postconf I can get it.

User sends email to <a href="mailto:ling- ... at listserv dot">ling- ... at listserv dot</a> with client.

Orphaning several nodejs-* packages

I'm planning to orphan the following packages tomorrow, as I don't use
them any more and don't have time to maintain them properly:

* nodejs-spdx-expression-parse-v2.0.2
* nodejs-aproba-v2.0.0
* nodejs-read-package-tree
* nodejs-less-3.8.1

If anyone would like to pick them up, let me know and I'll reassign

C7 and NVIDIA driver

Hi all,
I'm running C7 on i7 8700k/asus z370-a with an GTX1050.
I noticed that there are several problems installing Nvidia proprietary
driver. After one week of troubleshooting I got my solution. Hope that
can help other user.

I found this <a href="" title=""></a> but I've not
access to this content. In this content seems that the workaround is
using lightdm and mask gdm.

The case:

I tried using proprietary driver from nvidia site and from elrepo.
In all the case I got system that hungs during boot.

App version & installed?


I have upgraded from ubuntu 16.04.5 to 18.04.1, everything seems to work

I had a few apps installed before the upgrade and wanted to check if there were
newer version(s) so top start I tried

apt-cache policy app-name

I got

installed none
candidate a_version_#&sub-version#

I know I have the app installed (via apt install) as I can run it

I tried app-name --version (also -version & -v)
and get -v is not valid


returns the main version but not any sub-version numbers

searching under "Activities" offers to install but does not show the installed

this is on mo

Blocking criteria proposal for F30+: Printing

There was a bug[1] filed recently that indicated that printing was
broken on certain printers. CfP open 2019 is the 11th annual, free, Red Hat sponsored community
conference for developers, admins, DevOps engineers, testers,
documentation writers and other contributors to Open Source Linux,
middleware, virtualization, storage, cloud and mobile technologies
where FLOSS communities sync, share, and hack on upstream projects
together in the beautiful city of Brno, Czech Republic.

The CfP is now open! Ready to submit your proposal? Submit at:

Looking for ideas?

Reverse proxy

If I have a secondary web service service running on <a href="" title=""></a> and I want to create a reverse proxy on port 8001, how do I prevent users from connecting to <IP>:8000 anyway?

REMOTE_USER is not available at the time of external function call in httpd RewriteMap

I am trying to set HTTP basic auth header for an user which is already
authenticated by external application. For doing that, we have to set
base64 encoded of "username:dummy" where password is any dummy value. In
ssl config, REMOTE_USER is getting captured properly in RequestHeader(Line
5) but not in RewriteRule (Line 3). In line 3, I tried with REMOTE_USER,
LA-U:REMOTE_USER, HTTP:REMOTE_USER. But all these variables are null.

Fedora 29 Beta Bug

Hi all.

I have big bug with Fedora 29 Beta Candidate 1.5.
Live-usb just stuck boot just before start graphical mode. I am can't
understand what component causes this so can't create bugreport in

This happen on my netbook Asus 1225c with Atom N2800 and gma500

Fedora 29 Beta 1.5 compose check report

No missing expected images.

Failed openQA tests: 2/132 (x86_64), 1/24 (i386), 1/2 (arm)

ID: 283213 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 283219 Test: arm Minimal-raw_xz-raw.xz install_arm_image_deployment_upload
URL: <a href="" title=""></a>
ID: 283307 Test: i386 universal install_scsi_updates_img
URL: <a href="" title=""></a>
ID: 283323 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>

Soft failed openQA

New tool for proposed migration help


Lukasz and I wrote a new tool to attempt to help with proposed migration
(well, we did that at least a year ago). I just added it to
lp:ubuntu-dev-tools (apologies, this was done without much consultation
prior to this email). Now we need help to make this tool even better.
Your feedback is welcome.

Proposed migration is great work for new contributors wishing to work on
something, say, to get upload privileges in Ubuntu.

IPv6 fixed address using ip token

I'm about to publish a fixed IPv6 address and I understand I can use the ip
token command to lock the host part of the RA-assigned address to a fixed
value. But I can't see an obvious place to configure this. The logical
place would be in the ifcfg-<interface> file. Is there someplace else I
should set this? NetworkManager?

Vacation transport ignored

Good day Guys

Im trying to get vacationing going as per the link

<a href="" title=""></a>

Please can I ask if someone could please peer review my setup.

Its almost like postfix is ignoring the transport.

root@mail ~ # postconf |grep transport_maps
address_verify_sender_dependent_default_transport_maps =
address_verify_transport_maps = $transport_maps
empty_address_default_transport_maps_lookup_key = <>
fallback_transport_maps =
mailbox_transport_maps =
proxy_read_maps = $local_recipient_m

Fedora 29 Candidate Beta-1.5 Available Now!

According to the schedule [1], Fedora 29 Candidate Beta-1.5 is now
available for testing. Please help us complete all the validation

Alienware 17 R5 - The Final Puzzle Piece - suspend / resume

Greetings everyone!

My wife bought me an Alienware 17 R5 laptop for my birthday, and I am
loving it :) It runs Ubuntu 18.04.1 great!

I managed to get the wifi working (upgrade to the latest 4.18.5
kernel), the touchpad working (blacklist the i2c_hid module) and the
graphics working great (binary ubuntu drivers - whcih auto-blacklists
the problematic nouveau module - though this may have been a red

Schedule for Thursday's FPC Meeting (2018-09-20 16:00 UTC)

  Following is the list of topics that will be discussed in the FPC
meeting Thursday at 2018-09-20 16:00 UTC in #fedora-meeting-1 on

  Local time information (via.

Fedora 29 Beta status: RC5 incoming, purpose

Hi, folks!

So, Beta RC4 is out there and being tested (thanks for all the testing
so far). There is an RC5 coming too: here's why.

We haven't found any blockers in RC4 yet, but we did find several not-
quite-blockers that seemed bad. First of all, the Silverblue (formerly
known as Atomic Workstation) installer image build failed due to a
network blip, so RC4 does not have that image.

Disabling build options for SSE on non-capable arches ?

Hi, (this is a 4th retry, now trying devel as first try to packaging a
week ago says held by moderator, but doesn't seem to have been posted to
the list, and I don't know why...)

Audacity has had the following as part of rpm spec in the %configure

%configure \
--disable-dynamic-loading \
%ifnarch %{ix86} x86_64
--disable-sse \

Which fails on: non x86 arches:
<a href="" title=""></a>

If I remove the conditional, I get successful build, but not optimized
on x86 with SSE.

What's wrong with this conditional ?


Address verification for a single domain

Hello everyone,

In order to avoid sending backscattering I'm going to implement
Address Verification (reject_unverified_recipient). Can I skip it for
one domain? If I configure postfix like this:

smtpd_recipient_restrictions =
check_recipient_access hash:/etc/postfix/no_reject_unverified_recipient

And in /etc/postfix/no_reject_unverified_recipient:

domain.tdl OK

I won't have the rbls check for that domain. I would like to skip just
the reject_unverified_recipient check. Is it possible?


DocumentRoot in ProxyPass?

Is it possible to do something along these lines in the apache.conf files?

DocumentRoot /usr/local/www/roundcube/
ProxyPassMatch ^/(.*\.php)$ fcgi://${DocumnetRoot}$1

(that is, not have to repeat the information that is already in the configuration)

Dual Boot - wireless hardware not accessible

My nephew has a Lenovo 80K9 with a
Broadcom 4352 wireless adapter.
He is dual booting W10 and Ubuntu 18.04.
He started with Mint, then something else
and now Ubuntu. He cant get the wireless
to show up at all. In each OS there is
only ethernet.

Ive not dual booted so Im not sure this is
something normal or what. Though looking
in the mint forums a lot seem to have problems
with this adapter - which has been around a long

We did go through and install broadcom
drivers but it didnt seem to work.

new SMB plugin for packetgen

* home: <>
* bugs: <>

packetgen-plugin-smb is a new plugin for packetegen.

PacketGen provides simple ways to generate, send and capture network
packetgen-plugin-smb adds support for SMB protocol suite to packetegen.

This is the first version of this plugin. For now, it supports SMB
common header, and a couple of SMB commands (CLOSE, TRANS and

This plugin is a work in progress.

Fedora 29 Beta 1.4 compose check report

No missing expected images.

Failed openQA tests: 5/132 (x86_64), 1/24 (i386), 1/2 (arm)

ID: 282811 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 282821 Test: x86_64 KDE-live-iso desktop_browser
URL: <a href="" title=""></a>
ID: 282827 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 282830 Test: x86_64 KDE-live-iso desktop_update_graphical
URL: <a href="" title=""></a>
ID: 282833 Test: arm Minimal-raw_xz-raw.x

Reverse Proxy and Virtual Host

Hi again.

I'm attaching my httpd.conf file here; please read it and tell me if I did it correctly. I start the Apache HTTP Web Server as a service and then try to navigate to the virtual host URL, but I get MS Edge's error page about it not being able to reach the page.

Fedora 29 Candidate Beta-1.4 Available Now!

According to the schedule [1], Fedora 29 Candidate Beta-1.4 is now
available for testing. Please help us complete all the validation

Doubt on mmap :kernel-3.10.0-693.11.6.el7

We are trying to map the disk file and content is written in to specific
In meanwhile, if try to access the mmap'd content at specified offset, we
are getting NULL value. we have not called msync() yet. the mmap called
Is it possible that mmap content can differ on read after write or is this
the problem happening because read is called before the msync().


Help with multi-monitor Xorg stuff

I have an unusual use case. I wonder if anyone can help. We use a PC
with 8 HDMI outputs for powering a video wall in an operations centre.
We use two Matrox video cards, each with 4 outputs. "lspci" reports
these cards as" [AMD/ATI] Cape Verde PRO [FirePro W600]".

On an older version of CentOS 7, I used the proprietary AMD/ATI
driver. This had a utility (I roorget the name) that generated a
working xorg.conf file.

Apache httpd reverse proxy returns SSL_ERROR_RX_RECORD_TOO_LONG when HTTP redirects to HTTPS

Dear all,

I am setting up an Apache v2.4 httpd reverse proxy for another server
hosting Atlassian Confluence.

The proxy's private IP address is, its public IP address is, and a DNS A record maps the public IP to

There is a NAT in place:
- ->
- ->
which is necessary because the proxy's public IP address is used also
for other services.

Name resolution on the proxy is done via /etc/hosts, which maps to, the private IP of the Confluence

Here's /

koji download-build fails with [ERROR] koji: PermissionError: [Errno 13] Permission denied

I don't know if this is a problem with this specific version of koji,
or our Koji builders, but:

$ koji download-build nbdkit-1.7.3-1.fc30 --arch=x86_64 --arch=noarch
Downloading: nbdkit-ext2-plugin-1.7.3-1.fc30.x86_64.rpm
2018-09-19 10:14:21,056 [ERROR] koji: PermissionError: [Errno 13] Permission denied: 'nbdkit-ext2-plugin-1.7.3-1.fc30.x86_64.rpm'

$ rpm -q koji

This happens with other fc30 builds I have tried to download too.


plasma search in application launcher?


using recent KDE neon (18.04), I see two different "search" approaches
on the desktop:

There's the "plasma search" (triggered by alt+tab on my device) that
searches across a wide range of sources, including packages and running

And there's the "search" in the stock "application launcher" (start
symbol in the task bar) which apparently just searches applications

Is there any way to make the "search" in the "application launcher"
behave like the "plasma search"?

Thanks in advance,

Live images now get less packages marked as manually installed

Starting today, live images of cosmic will have most packages
marked as automatically installed instead of manually installed,
so autoremoval works correctly.

The algorithm that does the marking marks all dependencies of
manually installed metapackages as automatically installed, so
it should be entirely safe.

That said, you might want to double check images and installs
from them to see if it looks halfway sane. We can watch this
for some time and if all goes well, backport it to bionic for
the .2 point release.

Fedora Rawhide-20180917.n.1 compose check report

No missing expected images.

Failed openQA tests: 8/132 (x86_64), 1/2 (arm)

New failures (same test did not fail in Rawhide-20180916.n.0):

ID: 282135 Test: x86_64 universal install_arabic_language
URL: <a href="" title=""></a>
ID: 282169 Test: x86_64 universal install_no_swap@uefi
URL: <a href="" title=""></a>
ID: 282177 Test: x86_64 universal upgrade_2_desktop_encrypted_64bit
URL: <a href="" title=""></a>
ID: 282181 Test: x86_64 universal support_server
URL: <a href="" title=""></a>
ID: 282185 Test: x86_64 u

Fedora 29-20180918.n.0 compose check report

No missing expected images.

Failed openQA tests: 13/132 (x86_64), 2/24 (i386), 1/2 (arm)

ID: 281934 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 281936 Test: x86_64 Workstation-boot-iso memory_check
URL: <a href="" title=""></a>
ID: 281937 Test: x86_64 Workstation-boot-iso memory_check@uefi
URL: <a href="" title=""></a>
ID: 281940 Test: i386 Workstation-boot-iso memory_check
URL: <a href="" title=""></a>
ID: 281943 Test: x86_64 KDE-live-iso install_defa

Fedora 29 Beta status: RC4 incoming

Hi, folks! Just a quick mail to let everyone know where we are with F29

We managed to throw together fixes for all the currently-accepted
blockers (thanks to the dnf team for help there), so an RC4 (aka Beta-
1.4) is currently composing. Compared to RC3 it contains a newer libdnf
with a fix for <a href="" title=""></a> .

hidden grub menu feature, bootloader writing to grubenv


The more I think about the bootloader writing to grubenv, the more I'm
not a fan. I'm really suspicious of even the general case of anything
doing (over)writes outside of the file system. Is block device writing
something all UEFI firmware support? Even with Secure Boot enabled?

Setting aside the default Workstation partitioning, some valid
alternative schemes that I expect are problematic:

- On UEFI, the installer supports (against all advice) using mdadm
raid1 to sync multiple EFI System partitions. GRUB writing to grubenv
is going to write to which device?

Intent to orphan coan


I am planning to orphan the coan package in a week or so unless someone
else is interested in taking on the package.

"Coan is a software engineering tool for analysing preprocessor-based
configurations of C or C++ source code. Its principal use is to simplify a
body of source code by eliminating any parts that are redundant with
respect to a specified configuration. Dead code removal is an application
of this sort." (from the project website).

Coan is somewhat dead upstream.

Working Group IRC meeting minutes (2018-09-18)

#fedora-meeting-3: Weekly Meeting of the Modularity Working Group

Meeting started by nils at 14:00:20 UTC.

Minutes: <a href="" title=""></a>
Minutes (text): <a href="" title=""></a>
Log: <a href="" title=""></a>

Meeting summary

LinchPin v1.6.2 (Update Release) is now available

We are happy to announce the release of LinchPin v1.6.2 today!

Ask: can we limit to arguments size to uint16_t?

Now, call_info->orig_argc (passing argument size (we can ignore splat
argumens)) is int (32bit on recent systems).

Can we limit this size to 16bit (uint16_t)?
Do you have any program which have arguments size exceeds 2^16?

Machine generating code can exceed. For example:
`bitmap =, ...)`

Any opinion?


Centos7/Kde4 freeze


I have a fresh install of centos 7.4 with KDE on a laptop (latitude 5590)
connected to a DELL WD15 dockstation with an additionnal screen.
It works quite well, I have 2 screens side by side (default config), but....
If I add a second menu bar for the screen connected to the dockstation (KDE
allow for this) it is not possible anymore to start a kde session if the laptop
is not connected to the dock station (eg: at home), kde freeze and never show
any menubar. I have to use gnome to login and remove the .kde directory.

Is there a way to avoid this ?



libbson and libmongoc 1.13.0 in F29


I just update mongo-c-driver to 1.13.0

ABI/API is compatible

<a href="" title=""></a>

<a href="" title=""></a>

Warning: headers paths have changed

from /usr/include/libbson-1.0
to /usr/include/libbson-1.0/bson

from /usr/include/libmongoc-1.0
to /usr/include/libmongoc-1.0/mongoc

But a compatibility header still available in previous location, so this
change "should" not affect any dependent package.


Fedora 29-20180917.n.0 compose check report

No missing expected images.

Failed openQA tests: 3/132 (x86_64), 1/2 (arm)

ID: 281610 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 281626 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 281629 Test: x86_64 KDE-live-iso desktop_update_graphical
URL: <a href="" title=""></a>
ID: 281632 Test: arm Minimal-raw_xz-raw.xz install_arm_image_deployment_upload
URL: <a href="" title=""></a>

Soft failed openQA tests: 4

daemon.json file not found in /etc/docker dir in Ubuntu 16.04.5


I am running Ubuntu 16.04.5
Have installed 'Docker version 17.12.0-ce, build c97c6d6'

I want to modify couple of path's in daemon.json but I am unable to
locate daemon.json file under /etc/docker.
Also, I am unable to locate this file anywhere if I do 'locate *.json'

After searching I found 1 or 2 discussion where it is suggested to
create daemon.json file in /etc/docker but what should the contents in
it? And will that impact currently running docker service?


Fedora 29 compose report: 20180917.n.0 changes

===== SUMMARY =====
Added images: 3
Dropped images: 1
Added packages: 0
Dropped packages: 0
Upgraded packages: 0
Downgraded packages: 0

Size of added packages: 0 B
Size of dropped packages: 0 B
Size of upgraded packages: 0 B
Size of downgraded packages: 0 B

Size change of upgraded packages: 0 B
Size change of downgraded packages: 0 B

===== ADDED IMAGES =====
Image: Scientific vagrant-libvirt x86_64
Path: Labs/x86_64/images/
Image: Design_suite live i386
Path: Labs/i386/iso/Fedora-Design_sui

F29 hidden GRUB, problem testing and how to unhide

I've got a Fedora 29 Silverblue installation in a VM. First boot I see
the GRUB menu, and after that it's hidden. And I can't figure out how
to unhide it. Boot is failing before I get multiuser login or ssh, so
extracting information to troubleshoot/bug report isn't possible.

Repeatedly pressing or holding Esc doesn't work.
Spacebar doesn't work.
F8 doesn't work.

So now I'm stuck. Yeah, I can reinstall, and before rebooting make
sure whatever is hiding the GRUB menu is disabled, every time I do

Compiling 2.4.34 on linux against a non system openssl version


With gcc 4.3.x and apache 2.2.x I could compile apache against a non
system version
of openssl.

mpi/fortran with -Wl,--as-needed


I saw that -Wl,--as-needed would be enabled by default on Fedora 29, it
seems that we can't build a simple fortran program with this flag
either on Fedora 28 or 29 with openmpi at least.
Is this an MPI bug?

Fedora Atomic Host Two Week Release Announcement: 28.20180917.0

A new Fedora Atomic Host update is available via an OSTree update:

Version: 28.20180917.0
Commit(x86_64): 17b11d74047ded1264a57555a64ae6fc5d02a332c556679bfcf32864fc91f11e
Commit(aarch64): 95cdc6d02ed7f3645bdd513b07b2c2db9b04e91d8aae897fa88e378285a2b551
Commit(ppc64le): ca3012e5792f84499783510e5586526b9eaf8d98f535e3de0157ec7f7ad369ae

We are releasing images from multiple architectures but please note
that x86_64 architecture is the only one that undergoes automated
testing at this time.

Existing systems can be upgraded in place via e.g.

mod_macro, unix domain sockets, php-fpm pool config files

mod_macro and unix domain socket functionality in Apache are nice features, thanks to whomever put in the time and effort developing/maintaining.

We have looked for an equivalent of Apache mod_macro for php-fpm in order avoid having to create a php-fpm pool conf for each Apache virtual host using unix domain sockets.

No luck thus far.

Does anyone have techniques they use for generating large number of php-fpm pool config's utilized by Apache virtual hosts using unix domain sockets within mod_macro, instead of creating them one by one by hand?


LVM and Backups

Hey there,
I'm testing LVM snapshot to make backups and I've some questions about
snapshot lvm.

In my test case I have httpd, postgresql db and a dataset on a VM.

Running a backup I follow this steps:

1) Stop httpd
2) Create lvm snapshot on the dataset
3) Backup database
4) restart httpd (to avoid more downtime)
5) mount the snapshot and execute backup
6) umount and remove the snapshot

I think that this could be fine (if not please correct me)

Now when bacula performs the backup what happen if bacula are copying a
specified file and this specified file is modified?

Bacula will copy th

Start menu and "running" application instances?


coming from GNOME and playing with KDE neon, I feel mostly home here
right now except for one thing I didn't manage to set up myself: Is
there a way to, in the applications start menu when searching for
Firefox or Konsole, not start a new instance / window of the application
but rather bring a running instance (if there is one) to front?

Thanks in advance and all the best,

Turning off pam for Unix Authentication completely disables Passwords

In my quest to keep things simple and easy, I used to use
pam-auth-update to disable PAM from Unix logins, (this would disable the
password 'complexity' inanity, and prevents pam from automatically
re-enabling it when it updates itself.). However, with Ubuntu 18.04,
that completely disables passwords entirely. Is there a way to
re-enable traditional login?

com web/bugs: If the login redirect is to logout.php, redirect to index.php instead: www/login.php

Link: <a href=";a=commitdiff;h=88fca9dcbcc4551bc6a45b5e3a3cd3553494d15b" title=";a=commitdiff;h=88fca9dcbcc4551bc6a45b5e3a3cd3553494d15b">;a=commitdiff;h=88fca9dcbcc4551bc6a45b...</a>

If the login redirect is to logout.php, redirect to index.php instead

Changed paths:
M www/login.php

diff --git a/www/login.php b/www/login.php
index 5c15530..dc7bd38 100644
--- a/www/login.php
+++ b/www/login.php
@@ -17,7 +17,8 @@ if (isset($_POST['user'])) {

if ($logged_in === 'developer') {
if (!empty($_POST['referer']) &&
- preg_match("/^{$site_method}:\/\/". preg_quote($site_url) .'/i', $referer)) {
+ preg_match("/^{$site_method}:\/\/".

Schedule for Monday's FESCo Meeting (2018-09-17)

Hash: SHA256

Following is the list of topics that will be discussed in the
FESCo meeting Monday at 15:00UTC in #fedora-meeting-1 on

To convert UTC to your local time, take a look at
<a href="" title=""></a>

or run:
date -d '2018-09-17 15:00 UTC'

Links to all issues to be discussed can be found at:
<a href="" title=""></a>

= Discussed and Voted in the Ticket =

allow untagging of stratis modules from rawhide
<a href="" title=""></a>
DECISION (+7, 0, -0)

F30 System-Wide Change: FreeIPA Python 2 Removal
<a href="" title=""></a>

com web/bugs: search_for: We need to validate string ints with a regex, not a typecast: www/search.php

Link: <a href=";a=commitdiff;h=904b512d0682bd5edd24cba0c8e1346e92575424" title=";a=commitdiff;h=904b512d0682bd5edd24cba0c8e1346e92575424">;a=commitdiff;h=904b512d0682bd5edd24cb...</a>

search_for: We need to validate string ints with a regex, not a typecast

Changed paths:
M www/search.php

diff --git a/www/search.php b/www/search.php
index 40395f0..2ae7571 100644
--- a/www/search.php
+++ b/www/search.php
@@ -7,9 +7,8 @@ session_start();
require_once '../include/prepend.php';

// Redirect early if a bug id is passed as search string
-$search_for_id = (isset($_GET['search_for'])) ?

How to make Postfix filter spam for entries in virtual?

My postfix installation is working correctly (delivery via dovecot, spam
filtering via amavis - spamassasin).

I have some aliases in virtual, eg:

<a href="mailto: ... at mydomain dot com"> ... at mydomain dot com</a> johnDoe

However, for the emails that match an entry in virtual, amavis is not
filtering for spam (resulting in lots of spam reaching my inbox).

How can the configuration be changed so that the emails that match virtual
entries are also filtered for spam?

You can find my file here

Thank you in advance for your help!


NoScript: dropping legacy version (for SeaMonkey et al.)

Dear list,
as mozilla-noscript maintainer I'm dropping the NPAPI/legacy version
of the add-on from the package. I've never actually used it with
SeaMonkey and I don't have any free time to test it. Upstream announced
a long time ago that it will be supported only until September 2018,
when Firefox ESR 52.x becomes EOL.

Very weird problem with handling symbolic links

Hi everyone,

I just discovered something very weird on a vanilla CentOS 7
installation. If I create a link to /tmp as a normal user, it looks like
I can't remove this link anymore. Here's what this looks like:

$ mkdir test_link
$ cd test_link/
$ ln -s /tmp/ link_to_tmp
$ ls -l
total 0

mod_substitute not firing with HTTP Status Code 201?


I have a Substitute statement defined for a specific Location as:

<Location "/my/path">

    FilterChain SUBST

    ProxyPass stuff

    Substitute s|fromText|toText|n


A specific request that is handled by this Location returns with HTTP
Status Code 201. The substitution does **not** take place.

Another request handled by the same Location returns with 200, and the
substitution is executed correctly.

Is there anything in mod_substitute (or mod_filter?) that is dependent
on the HTTP Status Code?

Fedora 29-20180916.n.0 compose check report

No missing expected images.

Failed openQA tests: 5/132 (x86_64), 1/2 (arm)

ID: 281187 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 281203 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 281206 Test: x86_64 KDE-live-iso desktop_update_graphical
URL: <a href="" title=""></a>
ID: 281209 Test: arm Minimal-raw_xz-raw.xz install_arm_image_deployment_upload
URL: <a href="" title=""></a>
ID: 281253 Test: x86_64 univ

Cancelling Today's CBS Meeting

Hi Folks,

We'll be cancelling today's CBS meeting. If there are topics to discuss
in the meantime, please bring them here and we can handle things on-list
or at next week's meeting.



Google Code-in

Hi everyone,

GCi is around the corner and it is high time that we formulate a good
amount of tasks with assigned mentors to look after them. We only have 15
mentors right now and it would be great if few others in the community
could chip in as well.

Almost around 13 hours to go until the org application period ends and we
would love to see more tasks and more mentors actively participating.

I see a good start on tasks at <a href="" title=""></a>.

What does 141 mean?

I have a Kerberos authentication problem.

On one computer running Fedora 27, I run kinit to authenticate to the
Fedora servers. After I enter my passphrase, kinit returns exit status
141. Then I run "fedpkg build", and get these error messages:

Kerberos authentication fails: (-1765328352, 'Ticket expired')
Could not execute build: Could not login to <a href="" title=""></a>

On another computer also running Fedora 27, I run the exact same kinit
command. After I enter my passphrase, kinit returns exit status 0.

Build ID conflict?!?

First time I've run into this...

Working on a new package and tried to install it only to get:

Error: Transaction check error:
file /usr/lib/.build-id/67/7d4bdbbde390cc49fddb539cceb06ccb80efd6 from
install of ft8call-0.6.4-1.fc28.x86_64 conflicts with file from package
file /usr/lib/.build-id/dc/0fdb3cc1c3d70f4eee314404d00591091eb879 from
install of ft8call-0.6.4-1.fc28.x86_64 conflicts with file from package

It does build against hamlib...


Fedora Rawhide-20180916.n.0 compose check report

No missing expected images.

Failed openQA tests: 6/132 (x86_64), 2/24 (i386), 1/2 (arm)

New failures (same test did not fail in Rawhide-20180914.n.0):

ID: 280994 Test: x86_64 Server-dvd-iso install_repository_nfs_variation
URL: <a href="" title=""></a>
ID: 281003 Test: x86_64 Everything-boot-iso install_default@uefi
URL: <a href="" title=""></a>
ID: 281072 Test: x86_64 universal install_delete_partial@uefi
URL: <a href="" title=""></a>
ID: 281120 Test: i386 universal upgrade_2_desktop_32bit
URL: <a href="" title=""></a>

Fedora 29 Beta 1.3 compose check report

No missing expected images.

Failed openQA tests: 3/132 (x86_64), 1/24 (i386), 1/2 (arm)

ID: 280858 Test: x86_64 Workstation-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 280874 Test: x86_64 KDE-live-iso desktop_notifications_postinstall
URL: <a href="" title=""></a>
ID: 280877 Test: x86_64 KDE-live-iso desktop_update_graphical
URL: <a href="" title=""></a>
ID: 280880 Test: arm Minimal-raw_xz-raw.xz install_arm_image_deployment_upload
URL: <a href="" title=""></a>
ID: 280965 Test

Introduction & Joining Request

Hello everyone,

my name is Christian and I would like to be part of CentOS OpsTools SIG.

I'm a sysadmin for about 15 years now with a main focus on web application
hosting. Most of the time in a global IT environment and with the goal to
keep the systems secure, highly available and on a good performance. I
often had to use a linux distributions that the customer wanted to use, but
in the last 5 years I am in the lucky position to mainly use CentOS.

Syndicate content