Profile Details

Toggle Sidebar
Loading cover... Drag cover to reposition
Recent updates
  • Arnaud Forster
    Arnaud Forster started a new discussion, Reinstall basic foundations

    Reinstall basic foundations

    Hello all,
    I'm still looking for the reason but a part of my /var/lib/ folders have been deleted. So my system works but many services not .. is there a way to reinstall the basic system without touching the data of the userss (flexshares) ?
    Thanks for your help

  • Arnaud Forster

    Thanks so much Ben for your help :)
    Kind Regards

  • Arnaud Forster

    If i may ..
    I'm trying to mount a cifs folder from openmediavault to send my backup from clearos. I can mount it but as soon as I create a new folder, the owner is the user 1000 which is unknow and I can't go futther ... maybe if someone knows the syntax to make this mount ... I'm using the following :

    //openmediavault/share1 /mnt/backup cifs ,auto,username=backup,password=<aPassword>,iocharset=utf8,sec=ntlm 0 0

    thanks

  • Arnaud Forster

    thanks very much Ben :)

  • Arnaud Forster

    looking for cifs-utils in COS7

    Hello all,
    It seems that the "yum install cifs-utils --enablerepo=clearos-core" is not available anymore .. do you know how can I install this package under the last ClearOS ?
    Thanks for your help

  • Hello Nick,
    Thanks for your answer. I did what you said and everything went right, thanks :)
    :D

  • Mount flexshare from other COS server

    Hello all,
    I'm migrating my ClearOS server 6.3 to a new 7.2 one. I installed the new one on a new machine. Now, I'd like to transfert the datas from my old /flexshares to the new machine. So I'm trying to make a mount -t cifs //my-old/datas /mnt/transert -o username=... but I always get the following error :

    mount: //my-old/datas/ is write-protected and will be mounted in read-only
    mount: impossible to mount //my-old/datas/ in read-only

    Does anyone habe an idea howto mount it ?
    thanks :)

  • Arnaud Forster
    Arnaud Forster replied to a discussion, System hacked ?

    Hello Nick,
    Yes, the logs come from my clearos system ; the arp -n came from my workstation. Can't make a new one yet because the computer is halted .. I'll see tomorrow .. but my knowledges are here limited ...:(
    Thanks for your help :)

  • Arnaud Forster
    Arnaud Forster started a new discussion, System hacked ?

    System hacked ?

    Hello all,
    I've a problem on my network and here my knowledges are limited so ...
    First we have been blocked by spamhaus project using the XBL tool. It seems a computer of my newtork sent some spam 3 days ago. the problem for me is to know which one ... so I began to have a look on the my COS logs files and I discovered I could not start the intrusion and detection components !
    in my logs, I've the following :

    pr 18 08:50:01 srv-cos systemd: Starting Session 11429 of user root.
    Apr 18 08:50:01 srv-cos systemd: Started Session 11430 of user root.
    Apr 18 08:50:01 srv-cos systemd: Starting Session 11430 of user root.
    Apr 18 08:50:01 srv-cos systemd: Started Session 11428 of user root.
    Apr 18 08:50:01 srv-cos systemd: Starting Session 11428 of user root.
    Apr 18 08:50:01 srv-cos arpwatch: bogon 192.168.0.120 d4:ae:52:9f:57:c9
    Apr 18 08:50:31 srv-cos systemd: Stopping SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Apr 18 08:50:31 srv-cos snortsam: /etc/rc.d/init.d/snortsam: ligne 15 : [: = : opérateur unaire attendu
    Apr 18 08:50:31 srv-cos snortsam: Stopping snortsam: [ÉCHOUÉ]
    Apr 18 08:50:31 srv-cos systemd: Stopped SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Apr 18 08:50:32 srv-cos arpwatch: bogon 192.168.0.120 d4:ae:52:9f:57:c9
    Apr 18 08:50:33 srv-cos systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Apr 18 08:50:33 srv-cos snortsam: /etc/rc.d/init.d/snortsam: ligne 15 : [: = : opérateur unaire attendu
    Apr 18 08:50:33 srv-cos snortsam: Starting snortsam: ... delaying[ OK ]
    Apr 18 08:50:33 srv-cos systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Apr 18 08:51:02 srv-cos arpwatch: bogon 192.168.0.120 d4:ae:52:9f:57:c9
    Apr 18 08:51:03 srv-cos systemd: Stopping SYSV: Snort Network Intrusion Detection System...
    Apr 18 08:51:04 srv-cos systemd: Stopped SYSV: Snort Network Intrusion Detection System.
    Apr 18 08:51:06 srv-cos systemd: Starting SYSV: Snort Network Intrusion Detection System...
    Apr 18 08:51:06 srv-cos systemd: Started SYSV: Snort Network Intrusion Detection System.
    Apr 18 08:51:21 srv-cos systemd: Stopping SYSV: Snort Network Intrusion Detection System...
    Apr 18 08:51:21 srv-cos systemd: Stopped SYSV: Snort Network Intrusion Detection System.
    Apr 18 08:51:21 srv-cos systemd: Starting SYSV: Snort Network Intrusion Detection System...
    Apr 18 08:51:21 srv-cos systemd: Started SYSV: Snort Network Intrusion Detection System.

    it seems the the IP adress is used by another system because when I do a #arp -n on my ClearOS server, I don't get the same mac address as the one on the log ...
    #arp -n : 192.168.100.120 ether 3c:d9:2b:58:33:5d C eth6

    I dont know here if got my system hacked ... and what to do ..

    Thanks for your help

  • Hello Nick :)
    Yes but I was thinking, as these are 2 physicals interfaces, having 2 different ip adress in the same subnet could do the trick.. as you said ClearOS will be lost with that solution ...
    As I already migrated my old ISA server, I have now 2 separate ClearOS in my network in the same subnet. Of course, each one is connected to its own wan subnet and dont even know about the other :) Maybe I did not think enough :)
    Well, if I want to use 2 differents subnet as I'm planning to do, I'll have to change the IP address of the call center and all my phones, so I need to be sure it's going to work or my collegues are going to kill me :) (or maybe they will be happy not being disturbed anymore ;) )
    Thanks :)