Archive

Archive for the ‘Linux and Open Source’ Category

OpenVPN, NetworkManager & SELinux denial

June 21st, 2009 Patrick No comments

If you get an avc denial from selinux when you initiate an openvpn link in NetworkManager then here is a solution:

# chcon -t cert_t /your/certificates/dir/*

Credits go to the most helpful folks in the #fedora-selinux irc channel on freenode.

NFSv4 on CentOS 5.3 and Fedora 11

May 21st, 2009 Patrick 4 comments

To save the Community the trouble of figuring out how to make this work, here are the steps I used to mount nfsv4 shares on Fedora 11 from a CentOS 5.3 server.

When a line starts with “#” or “as root” that means that you have to execute the command as root.

On the *SERVER* side:

1) as root edit /etc/idmapd.conf:

change Nobody-{User,Group} to nfsnobody
change Domain to <your.fully.qualified.domain.name>

2) create directory with exports

# mkdir /nfs4exports/share

3) as root edit /etc/fstab and add nfs4 exports

/somedirectory/youwanttoshare  /nfs4exports/share    none    bind    0 0

4) activate nfsv4 binds

# mount -a

5) as root edit /etc/exports

Replace 192.168.0.0 below with your IP network.

/nfs4exports 192.168.0.0/255.255.255.0(rw,insecure,no_subtree_check,nohide,fsid=0)
/nfs4exports/share 192.168.0.0/255.255.255.0(rw,insecure,no_subtree_check,nohide)

6) reload exported filesystems

# exportfs -rv

7) stop & disable services

# service nfs stop
# service nfslock stop
# service portmap stop

8) disable unnecessary services

# chkconfig –level 345 nfslock off

9) as root edit /etc/sysconfig/nfs

Use the settings below and leave all other settings as they are.

MOUNTD_NFS_V1=”no”
MOUNTD_NFS_V2=”no”
RPCNFSDARGS=”-N 2 -N 3 -U”

10) start required services

# service portmap start
# service rpcidmapd start
# service nfs start

# chkconfig –level 345 portmap on
# chkconfig –level 345 rpcidmapd on
# chkconfig –level 345 nfs on

On the *CLIENT* side (the Fedora 11 box):

1) as root edit /etc/idmapd.conf:

change Nobody-{User,Group} to nfsnobody
change Domain to <your.fully.qualified.domain.name>

2) create share directories

Off course you can choose the location yourself.

# mkdir /mnt/share

3) as root edit /etc/fstab

Replace <host> below with the hostname or IP address of your CentOS box.

<host>:/share   /mnt/share   nfs4    rsize=8192,wsize=8192,timeo=14,intr,user

4) start required services

# service rpcidmapd start
# chkconfig –level 345 rpcidmapd on

5) mount the bunch

# mount -a

The share will also automatically show up in Nautilus where you can click on it to mount it.

Changelog:
Nov 1, 2009: fixed s/rpcbind/rpcidmapd/ typo in client section based on feedback from Mathiaz and Deadpan110 (thanks!)

Fedora 11 Leonidas Release Counter

May 5th, 2009 Patrick No comments

Categories: Linux and Open Source Tags:

Ejecting X

January 10th, 2009 Patrick No comments

Imagine the removal of X in favor of Wayland…. Some background info at Phoronix. Wayland git repository available here. Some Twitter chat on the subject here and here.

Categories: Linux and Open Source Tags:

Open Source Firmware for Broadcom BCM43xx WiFi chipsets

January 10th, 2009 Patrick No comments

Yesterday Francesco Gringoli announced on the bcm43xx-dev mailing list that his group has developed working Open Source firmware for the Broadcom BCM43xx WiFi chipsets.

The firmware along with the instructions to build it from the assembly code using the tools developed by the b43 community can be found here

Given the troubles I had when trying to get the Broadcom WiFi in an Acer Ferrari laptop to work I fully concur with John Linville’s response on the mailing list: “I hereby declare this to be Fully Awesome! (TM)”

Categories: Linux and Open Source Tags: