Enterprise Linux ver 7 notes:

To-dos:

  • ssh configuration
    • Updating sshd_config
    • Updated public keys
  • network node manager - fuck
  • virtualization
  • firewall research:
    • enable ftp/nfs/etc for vms
  • pulp
  • puppet
  • Research:
    • btrfs - better filesystem. Apparently, better than xfs.

Questions:

  • /etc/fstab: All filesystems default to 0 0 for dump and pass number? Haven’t seen it stated anywhere, but xfs doesn’t use fsck to check/validate journal log; rather it performs journal recovery in kernel space at mount time

Minimal install extras:

bind-utils
elinks
git
lftp
perl (??)
policycoreutils-python
'virtual host'
virt-viewer
vsftpd.x86_64
xauth
nm-connection-editor

Virtualization:

Loaded up virtualization host group and virt-viewer, started libvirtd and libvirt-guests and was able to install a new host via local iso image.

Problem was that ftp isn’t visible to guests when they were booting up so they weren’t able to see the /var/ftp/pub/inst[67] directories. The fix is a lot simpler although I still like iptables:

fireawll-cmd --add-service=ftp

Firewalld:

<sigh>

Commands:

firewall-cmd –get-services:
List pre-defined services but all on one line.
firewall-cmd –add-service=ftp
Add ftp to the list of services avaiable for the active zone
firewall-cmd –get-active-zone
Displays the current/active zone
fireawll-cmd –list–all
Displays

Research:

Issues:

  • (fixed) ssh-keygen -lf shows different key fingerprint:

    # ssh-keygen -lf ./a
    1024 SHA256:+Jl4PELjHQi8cIVqTB5hS6mIBE35SEGKSxDOQpc/YIQ dkoleary@localhost (DSA)
    

    Add -E md5 to cli:

    # ssh-keygen -E md5 -lf ./a
    1024 MD5:c2:dc:f6:dc:29:2a:86:24:f4:6c:c5:d0:61:90:a5:f3 dkoleary@localhost (DSA)
    
  • (fixd) X11 forwarding wasn’t working, reporting X11 forwarding failed on channel 0. Corrected by installing xauth. yum -y install xautth

  • (fixed) ftp not available to vm guests. Fixed via firewall-cmd --add-service=ftp.