Fedora Repositories

Software repository locations and YUM configuration settings


The Unofficial Fedora FAQ:

http://www.fedorafaq.org/


Fedora Core Extras:

Update to the latest version of yum and add a file (e.g. fedora-extras.repo) in your /etc/yum.repos.d directory with following content:

[extras]
name=Fedora Extras - $releasever - $basearch
baseurl=http://download.fedora.redhat.com/pub/fedora/linux/extras/$releasever/$basearch/
gpgcheck=1
gpgkey=http://download.fedora.redhat.com/pub/fedora/linux/extras/RPM-GPG-KEY-Fedora-Extras

[extras-testing]
name=Fedora Extras Test Updates - $releasever - $basearch
baseurl=http://download.fedora.redhat.com/pub/fedora/linux/extras/testing/$releasever/$basearch/
gpgcheck=1
gpgkey=http://download.fedora.redhat.com/pub/fedora/linux/extras/RPM-GPG-KEY-Fedora-Extras
enabled=0

[extras-debug]
name=Fedora Extras - $releasever - $basearch - Debugging packages
baseurl=http://download.fedora.redhat.com/pub/fedora/linux/extras/$releasever/$basearch/debug/
gpgcheck=1
gpgkey=http://download.fedora.redhat.com/pub/fedora/linux/extras/RPM-GPG-KEY-Fedora-Extras
enabled=0

Livna:
Main site: http://rpm.livna.org
GPG Key: http://rpm.livna.org/RPM-LIVNA-GPG-KEYFedora Core 4 Repositories: http://rpm.livna.org/fedora/4/To use with YUM: rpm -ivh http://rpm.livna.org/livna-release4.rpm
To use with APT, add to /etc/apt/sources.list:
rpm http://rpm.livna.org/ fedora/4/i386 lvn
rpm-src http://rpm.livna.org/ fedora/4/i386 lvn

Making NFS and IPTABLES work and play well together

This document is a short and specific paraphrase of Chris Lowth's execellent paper, Configuring NFS under Linux for Firewall control.

The problem with setting up IPTABLES to allow for NFS is that NFS uses the SunRPC mechanism which generates random ports for some of its components. The solution is to fix those ports so that they become trackable with IPTABLES. Chris uses this table to summerize the situation:

Daemon Name	RPM	Standard Port	Suggested Port	What to Change
portmap	portmap	111	111	Nothing
rpc.statd	nfs-utils	Random	4000	Edit /etc/init.d/nfslock
rpc.nfsd	nfs-utils	2049	2049	Nothing
rpc.lockd	nfs-utils & kernel	Random	4001	Edit /etc/modules.conf
rpc.mountd	nfs-utils	Random	4002	Create or Edit /etc/sysconfig/nfs
rpc.rquotad	quota	Random	4003	Install "quota" package version 3.08 or later and edit /etc/rpc and /etc/services

These are the specific changes I made in the Red Hat Enterprise Linux 3 Advanced Server environment to get NFS and IPTABLES to work together.

1. Create the /etc/sysconfig/nfs file with these two lines:
   STATD_PORT="4000"
MOUNTD_PORT="4002"
   
   
   
2. Edit the /etc/rc.d/init.d/nfslock file to add this blockimmediately after the existing if block to set ${STATDARG}:
   if [ -n ${STATD_PORT} ]; then
STATDARG="${STATDARG} -p ${STATD_PORT}"
fi
   
   
   
3. Add this line to the /etc/modules.conf file:
   options lockd nlm_udpport=4001 nlm_tcpport=4001
   
   
   
4. Verify the version of the quota package is 3.08-1 or higher:
   rpm -qa grep -i quota
   
   
   
5. Verify this line is in the /etc/rpc file:
   rquotad 1000011 rquotaprog quota rquota
   
   
   
6. Add these two lines to the /etc/services file:
   rquotad 4003/tcp
rquotad 4003/udp
   
   
   
7. Add these lines to the /etc/sysconfig/iptables file:
   -A RH-Firewall-1-INPUT -m tcp -p tcp --dport 111 -j ACCEPT
-A RH-Firewall-1-INPUT -m udp -p udp --dport 111 -j ACCEPT
-A RH-Firewall-1-INPUT -m tcp -p tcp --dport 2049 -j ACCEPT
-A RH-Firewall-1-INPUT -m udp -p udp --dport 2049 -j ACCEPT
-A RH-Firewall-1-INPUT -m tcp -p tcp --dport 4000:4003 -j ACCEPT
-A RH-Firewall-1-INPUT -m udp -p udp --dport 4000:4003 -j ACCEPT
   
   
   
8. Finally, restart everything and verify that you can nfs mount an exported directory from the server.
   

Resources

• Configuring NFS under Linux for Firewall control by Chris Lowth.
  
• Red Hat Enterprise Linux 3 System Administration Guide.
  

A fire drill in June

I work for the Minerals Management Service, a federal agency outside of New Orleans. Today is the second day of summer. Today the temperature is 84 degrees. Today we had a fire drill.

What sadistic idiot decided a good test of safety would be to put 600 people on an open concrete parking lot in the New Orleans summer heat? If you live and work outside of the government, you hear stories and jokes about the anal adherence to arcane rules and regulations. Guess what. It's true. A govenment employee told me that normally the mandated yearly fire drill occurs in the more temperature-friendly month of March, but some fascilities incident prevented its timely occurrence this year. So they made us march down the stairs and stand in the parking lot on June 22.

My first introduction to government red tape happened on my second day at work. I brought in some personal articles including a fan. A co-worker stopped me while I was pulling it from its box. Fans and heaters require special permission to use. It took three months and a note from my doctor to get permission to plug in that fan.

The incident with the fan was a silly example of government arcania. The fire drill was a dangerous one. I understand the need for laws and rules in conducting the business of govenment. We are accountable to the tax payers. Still, that requirement should not mean the complete banishment of common sense.

Audio Visual Tips and Links

How to place a subwoofer:

http://www.polkaudio.com/home/faqad/advice.php?article=subsetup

Polk Audio "Polk University" FAQ:

http://www.polkaudio.com/home/faqad/index.php

Custom YUM Repository

FedoraNEWS.org: How to Build Custom Yum Repository

http://fedoranews.org/contributors/tony_smith/yum/

FedoraNEWS.org: How to make a local yum repository mirror

http://fedoranews.org/contributors/hal_canary/yum/

WebMO: Creating a Redhat YUM Repository

http://www.webmo.net/support/yum_repository.html

WebMO: Creating a Redhat Apt Repository

http://www.webmo.net/support/apt_repository.html

Linux Tips

Linux Tips

Gnome Photo Printer: a nifty little app

http://hardware.newsforge.com/article.pl?sid=05/02/03/0620241&tid=127&tid=130

CLI Magic: Wait or sleep?

http://enterprise.linux.com/article.pl?sid=05/03/25/1216215

CLI Magic: Lynx

http://enterprise.linux.com/article.pl?sid=05/01/24/209205


CLI Magic: Html Tidy

http://enterprise.linux.com/article.pl?sid=05/02/14/1553217

Linux.com: ImageMagick: A graphics wizard for the command line

http://applications.linux.com/article.pl?sid=05/03/29/1525217

NewsForge: Advanced image editing from the command line with ImageMagick

http://software.newsforge.com/article.pl?sid=05/04/29/1358220

Digital Video on Linux

Links to pages on digital video processing on Linux

Introduction to DVD Backup

http://kavlon.org/index.php/dvdbackup

DVD Ripping and Transcoding with Linux

http://www.bunkus.org/dvdripping4linux/single/

Gentoo Forums: Howto author AVI->DVD with menus using Linux only!

http://forums.gentoo.org/viewtopic-t-117709.html

Linux Journal: GNU/Linux DVD Player Review

http://www.linuxjournal.com/article/5644

DVDAuthor

http://dvdauthor.sourceforge.net/

James Tappin: Some thoughts on DVD authoring

http://www.tappin.me.uk/Linux/dvd.html

Cinelerra

http://cvs.cinelerra.org/index.html

Jarod Wilson's Fedora Myth(tv)ology

http://wilsonet.com/mythtv/fcmyth.php