Menu
▾
▴
Re: [Devil-Linux-discuss] More on heartbeat
|
From: <br...@ba...> - 2006-10-31 08:30:29
|
Hello, I'm also using heartbeat and there is a solution to work around the = generation (replay attack) problem.=20 I have inserted this comman to the ha.cf: hbgenmethod time Then the generation is not "counting up" but a timestamp is used. Since I also had some problems with false time from the hardware (old = system, dead battery) I also changed the init.script to require the = xntpd daemon to be startet before heartbeat is startet. Never since had = any problems with false generation. Mit freundlichen Gr=FCssen / Kind Regards=20 Bj=F6rn Rudner=20 ____________________________________________=20 Bj=F6rn Rudner Systemadministrator=20 baulogis GmbH Zamdorfer Strasse 100 81677 M=FCnchen=20 Telefon +49 (89) 930 839-16 Telefax +49 1805 456 987-200 16=20 Mobil +49 151 12 16 23 71=20 E-Mail br...@ba...=20 http://www.baulogis.com/ -----Urspr=FCngliche Nachricht----- Von: dev...@li... = [mailto:dev...@li...] Im Auftrag = von cdmiller Gesendet: Montag, 30. Oktober 2006 22:01 An: gs...@is...; = dev...@li... Betreff: Re: [Devil-Linux-discuss] More on heartbeat Greg Silber wrote: > More on the continuing saga of me and heartbeat. So far I have=20 > downloaded the latest testing version to get the repositioned ping,=20 > submitted a patch to link ip from the iproute2 program into /sbin and=20 > everything is cool. One more thing that is causing a problem is the=20 > order of initialization of the scripts in the rc. directories. If you = > are not using dhcp, then heartbeat and snort try to load prior to the=20 > network loading (and fail). I fixed this on my config floppies so I=20 > don't need a rebuild myself, but I thought I would put it out there in = > case you want to patch this. Anyway, I now know way too much about=20 > heartbeat, devil, etc. so send questions if you got em. >=20 > -Greg Silber Hi Greg, We use Heartbeat here on our current Devil setup (1.2.9). Have you done = anything to get around the /var/lib/heartbeat/hb_generation file getting = destroyed between reboots? Thanks, - cameron -------------------------------------------------------------------------= Using Tomcat but need to do more? Need to support web services, = security? Get stuff done quickly with pre-integrated technology to make your job = easier Download IBM WebSphere Application Server v.1.0.1 based on Apache = Geronimo http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D120709&bid=3D263057&dat=3D= 121642 _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss _________________________________________________________________________= ___ Der Inhalt dieser E-Mail ist vertraulich und ausschlie=DFlich f=FCr den = bezeichneten Adressaten (dev...@li...) = bestimmt. Wenn Sie nicht der vorgesehene Adressat dieser E-Mail oder dessen = Vertreter sein sollten, so beachten Sie bitte, dass jede Form der Kenntnisnahme, = Ver=F6ffentlichung,=20 Vervielf=E4ltigung oder Wiedergabe des Inhalts dieser E-Mail = unzul=E4ssig ist. Bitte setzen Sie sich in diesem Fall mit dem Absender der E-Mail in = Verbindung (br...@ba...). |