Re: cisco ise
by Patrick O'Callaghan
On Tue, 2020-04-28 at 16:45 +0000, david richyad wrote:
> cisco ise helps safeguard your business. It lets you control access throughout your network, see the user and device details, and stop/contain any threats. You can also use it to enforce security policies throughout your network. As a result, it helps prevent any technical issues and strengthens your cybersecurity measures. In short, you can manage your network security with more ease. Everything can be handled in one place, as opposed to needing multiple different applications open at once.
>
> https://www.fieldengineer.com/blogs/cisco-ise-deployment-guide
Does this have anything to do with Fedora? Advertising is not
acceptable on this list.
poc
1 week, 5 days
SATA optical drives
by David Fletcher
I'm currently running FC5, will probably upgrade to F7 in a couple of months.
Unfortunately my CD/DVD rewriter appears to have died, before it's
even seen a dual layer disk :'(
SATA hard drives run without problems for me, but now that SATA
optical drives are starting to appear in the shops, would it be OK to
buy one of these and get rid of another wide ribbon cable?
Is anybody already running them with Fedora?
Thanks for any advice/experiences.
Dave F
1 week, 5 days
Apache and umask for document root
by Alex
Hi,
I've set up a virtual host for a joomla website and having some
permissions problems. I've seen numerous configurations online about
how to set umask for the apache user, but none have worked, including
creating a systemd file
(/etc/systemd/system/multi-user.target.wants/httpd.service) with the
following:
[Unit]
Description=The Apache HTTP Server
After=network.target remote-fs.target nss-lookup.target
[Service]
Type=notify
Environment=LANG=C
Umask=0006
ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND
ExecReload=/usr/sbin/httpd $OPTIONS -k graceful
# Send SIGWINCH for graceful stop
KillSignal=SIGWINCH
KillMode=mixed
PrivateTmp=true
[Install]
WantedBy=multi-user.target
The problem is that the files are owned by the joomla user, but also
need to have access (both read and write) to be able to modify some
files within the document root.
Does anyone have any suggestions on how to set umask for the apache user?
I'm also interested in recommended permissions settings for the joomla
document root.
Thanks,
Alex
10 months, 1 week
[FC8] ssh and CAC card???
by Todd Denniston
From what I understood, the change to openssh listed in:
rpm -q --changelog openssh |less
as:
"* Wed Jun 20 2007 Tomas Mraz <tmraz(a)redhat.com> - 4.5p1-7
- experimental NSS keys support
- correctly setup context when empty level requested (#234951)
"
was supposed to allow the Common Access Card (CAC) to work with the shipped
Fedora 8 ssh.
As per NSS usual, everything is undocumented, i.e., `ssh-add --help` does not
help at all, and `man ssh-add` points to `ssh-add -s reader`
# ssh-add -s 0
Enter passphrase for smartcard:
SSH_AGENT_FAILURE
Could not add card: 0
# ssh-add -s 1
Enter passphrase for smartcard:
SSH_AGENT_FAILURE
Could not add card: 1
So does anyone know how to use the possible functionality, or are we reduced
to reading the source?
--
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane)
Harnessing the Power of Technology for the Warfighter
10 months, 4 weeks
Changing date with procmail
by Michael A. Peters
Anyone know of a procmail recipe to change the date on incoming
messages?
If the date is in the future by more than 24 hours - I'd like to just
change it to the current date.
If the date is in the past by more than two weeks - I'd like to just
change it to the current date.
I'd like to do it in procmail - if someone knows how.
I've done some searching, still have some to do.
Found some stuff on extracting the date, but not on modifying it if
necessary.
12 months
F33 just pretends to print
by Michael Hennebry
I have a Brother HL-L2360DL that I'd thought I'd finally managed to install.
I had to go to the Brother website to get a script to run.
The instructions for the script had the wrong name for it.
None of the default options for Brother printers came close.
The CUPS adminstration "web" pages say the right things:
Idle, accepting jobs, two completed jobs.
Nothing actually prints. Not even a test page.
The printer never comes out of deep sleep.
How do I fix this?
It worked with Centos 7, but I do not know what I did.
In my experience, there is no such thing as a small problem when it comes to
installing a printer on Linux:
Either it just works or it requires a mighty effort.
I am getting mighty tired of mighty efforts.
BTW how do I change the default from single- to double-sided?
--
Michael hennebry(a)web.cs.ndsu.NoDak.edu
"Sorry but your password must contain an uppercase letter, a number,
a haiku, a gang sign, a heiroglyph, and the blood of a virgin."
-- someeecards
1 year, 1 month
Improper shutdown, now Kernel panic.
by murph nj
Hi all:
I've got an odd problem that I was hoping for some help on.
The laptop was previously working fine, I am running F30, updated regularly.
I've got an Acer laptop that has been shutting down suddenly. (I
suspect a bad battery, working on that.)
After a sudden shutdown last night, I now get a kernel panic on boot
right after "Starting Switch Root..."
I was able to boot from a USB stick, and was able to read the journal,
but I didn't see anything obvious to help.
I was able to get all of my data off of the (encrypted) disks, so
that's not a problem, but I don't want to just give up, and wash and
reload too quickly.
Any suggestions?
Thanks,
--murph
1 year, 4 months
LUKS on shutdown.
by murph nj
I'm having an issue shutting down. Fedora 34, just updated to 35, same
problem. (It was around in 33 as well, I've been putting up with it.) I
know that there is another list for beta versions, but this issue was there
in the current version as well.
Somewhere around 1 out of every 10 shutdowns, the system goes down to
"[ OK ] Reached target System Shutdown", but then,
"[ *** ] a stop job is running for Cryptography setup for luks-<cycle
through LUKS volumes>"
It typically goes for about 1/2 hour if I don't get fed up, and hold the
power button down.
I just saw after that 1/2 hour:
[Time] Timed out starting System Reboot
Forcibly Rebooting: job timed out.
audit: type=1334.........
I still had to power it off. On reboot, it seems OK.
I haven't found anything interesting in /var/log/messages regarding it.
Any suggestions to further troubleshooting?
Thanks,
--murph
1 year, 6 months
NFS mount lockups since about a month ago
by Terry Barnaby
Hi,
I use NFS mount (defaults so V4) /home directories with a simple server
over Gigabit Ethernet all running Fedora33. This has been working fine
for 25+ years through various Fedora versions. However in the last month
or so all of the client computers are getting KDE GUI lockups every few
hours that last for around 40 secs. /home is not accessible during this
time and it feels/looks to be an NFS lockup issue. There are no "NFS
server no responding" or such like messages in either the servers or
clients /var/log/messages and the network communications seems fine.
1. Have there been some changes to NFS recently in the kernel ?
2. Any idea where to begin to try and debug this ?
Terry
1 year, 7 months