DevHeads.net

Postings by Marcin Trendota

Squashfs as rootfs

Hello.

I'm trying to add option to grub menu (amongst other options) to boot
from squashfs image. But 'root=live:/path/tofile' doesn't work. I didn't
find anything useful on the internet. Anybody can point me in right
direction?

Maybe better choice is to replace grub with isolinux?
I have working solution with iso with squashfs booting through PXE, but
i don't know how to do this in grub.

TIA

Routing(?) issue

Hello all

I have weird problem i can't understand and don't know where to look.

[root@chamber ~]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel
state UP group default qlen 1000
link/ether bc:ae:c5:02:c7:dc brd ff:ff:ff:ff:ff:ff
inet 10.0.0.200/24 brd

Change password and add user on RO filesystem

Hi everyone

I'm trying to create system with RO root filesystem, so i'm using
/etc/sysconfig/readonly-root along wih /etc/rwtab and /etc/statetab.

Apart of numerous problems with services running on RO filesystem (which
i'm constantly resolving adding entries to /etc/statetab) one thing
popped up. I'm unable to add user or change his password. Error is
'cannot lock /etc/passwd; try again later.'.

After research it turns up (at least on Fedora, but i assume same on
CentOS) some files being created in /etc. For example /etc/shadow.<pid>,
and some others with PID in name.

SCL python3 and supervisor

Hi all

Is there a possibility to run python3 application (python taken from
SCL) under supervisor? I already have one python2 application, and want
to add python3 (it's Django app if that matters). A was trying to add
LD_LIBRARY_PATH as taken from "enable" script, but it doesn't seems to
work (in log i have still python 2.7.5). Is it possible?

Squashfs as root filesystem

Hello all

I have squashfs file i want use as root filesystem for diskless machines
(PXE boot). I can't figure out how to configure it.

I was able to embed this file in initrd (builded by dracut) - but i
don't know how to mount it in /sysroot automatically, and what put in
'kernel=' commandline option.

Maybe there is another way to achieve this?
TIA

SELinux upgrade

Hello All

After recent system upgrade (this night) i lost access to two servers
through SSH, because of change in SELinux policy - i have ssh there on
different port and now it's gone.

Thanks to puppet i was able to change SSH port back to default and log
in, but is this expected behavior? I thought minor upgrade shouldn't
break up things?

Or maybe "semanage port -a -t ssh_port_t -p tcp port" isn't enough to
ensure persistency?

FirewallD and FTP passive mode

Howdy

I'm trying to run FTP server behind firewall. And i can't enable passive
mode from the Internet.

openocd

Does anybody have openocd-0.9.0 RPM for CentOS6 x86_64? I was able to
compile F23's SRPM (along with two libraries - hidapi-0.7.0 from F19 and
libusbx-1.0.14 from F19) but it gives me only "Segmentation fault".
Unfortunately i'm too inexperienced to debug it by my own (gdb and
strace didn't help me).

cron

What the heck is wrong with cron?

*/1 * * * * nobody /usr/bin/php /var/www/html/osticket/api/cron.php

in /etc/cron.d doesn't get executed at all (ran from console works of
course!). But the SAME file in /tmp runs flawlessly:

*/1 * * * * nobody /usr/bin/php /tmp/cron.php

It's CentOS7 on VPS with no SELinux.

I've noticed similiar behavior before (on bare metal server with
SELinux).

FirewallD issue

Hello everybody.

Recently i moved external interface to zone "external" on my home
server/router. And something strange is hapening.

Slow authentication on C7

Recently i've migrated our SVN server (virtual machine) from C6 to C7
(more precisely - migrated data to freshly installed virtual machine).
And we have problem with very slow authentication. Server is configured
with SSSD, user data are fetching from our LDAP server. SVN is
configured with apache (pwauth for authentication + LDAP search for
Require ldap-group).

It takes pwauth even 10 seconds to authenticate. Whet it comes to svn's
externals it could take as long as 9 minutes to _svn up_ project (when
there are no commits to fetch).