When ssh'ing into a CentOS 8 machine via ssh and xterm, slow logouts usually occur. The fix is to not include ssh -X or ssh -Y.
Consult Virtual Box running CentOS8 Stream notes if dnf updates are slow
Fix php for phpmyadmin:
dnf install php-gd php-ldap php-mysqlnd php-pecl-mcrypt php-pecl-zip
Also comment out the cookie validity setting in config.inc.php
Secure the mariadb
Fix php.ini from known good config
Configure $HOME/.vimrc as the following:
autocmd FileType * setlocal formatoptions-=c formatoptions-=r formatoptions-=o
# python3 -m pip install --upgrade pip
# python3 -m pip install dictor
# python3 -m pip install wheel
# python3 -m pip install httplib2
# python3 -m pip install PyMySQL
PyMySQL v0.9.3 has been upgraded to v1.0.2 and requires modification to "connect" statement.
Other fixes:
Disable WiFi
LAN connection with
# nmcli radio wifi off
-
For migrating a system from a different OS, take note of this info first:
Get inventory of users
/
* Check that PHP is working correctly, localhost/index.php tries to open a file
* check httpd.conf
* /
Clear all history from Firefox before testing phpmyadmin
-
MySQL / MariaDB Database and users
export MySQL databases with mysqldump
list of installed perl modules
Copy the following to accessible location for restore after upgrade
users' $HOME
crons should be in each user's $HOME/crontab
various processing log files from /var/tmp/
/etc/ssh/*key* or possibly the entire directory contents (this may prevent man-in-the-middle attack messages but testing needed)
/etc/hosts
/etc/httpd/conf/httpd.conf
Samba users, passwords, shares (for security cameras)
/etc/samba/smb.conf
/var/lib/samba/private/passdb.tbd
/var/lib/samba/private/secrets.tbd
Make sure service is running and will start at boot.
Check output with: testparm -v
nxclient-3.5.0-7.x86_64.rpm
nxnode-3.5.0-9.x86_64.rpm
nxserver-3.5.0-11.x86_64.rpm
skype-4.3.0.37-fedora.i586.rpm
verify services that should be installed/running in chkconfig
Note firewall rules
Below is copied from CentOS 7 Migration Notes so modify as needed.
Must-Have functionality:
Customize MATE Desktop displays
Adjust System > Preferences > Look and Feel > Appearance
Under Fonts tab, set all to size 8
Click Details, set resolution to 96 dpi, Smoothing Grayscale, Hinting Slight, Subpixel order RGB
Firefox has large bullets for password masking. Theme setting?
-
Set up gnome-terminal preferences
General: Font Monospace 9, No terminal bell
Colors: Use colors from system theme
Scrolling: unlimited
Edit > Keyboard Shortcuts > Reset and Clear > F2
-
Change setting on screensaver
System Monitor (needs mate-system-monitor and mate-applets RPMs):
Right-click top panel > Add to Panel
In the "Find an item to add to the panel:" search box, enter "System Monitor" and click Add
Moving display of current CPU usage should appear
Database work:
Setup ddclient:
Setup duckdns:
crontab is
~/duckdns/duck.sh >/dev/null 2>&1
Setup ydns:
crontab is
~/ydns/updater.sh -V -u <snip> -p <snip> -H juckins.ydns.eu >>~/ydns/updater.log 2>&1
Firewall notes:
rsync /var/www/html/
Restore and test crons
Backup /etc/selinux/config and change from enforcing to permissive
Restore /etc/hosts from previous machine as needed
Then, edit the network connections and make sure the "Ethernet" tab for the active connection, such as enp0s3, has the "Device" set to that interface. Reboot to test.
Download sample .png, .gif, .jpg images and test /usr/bin/display for any errors
Install Oracle Java (note, this is not the default CentOS, it will not auto-update)
Install X2Go
Restore Thunderbird profile
Restore Firefox profile
Restore VirtualBox and all machines
Test ASMAD for processing end-to-end
SSH issues
Cannot ssh to yourself passwordlessly with default /etc/ssh/sshd_config
Comment out the following line, like this:
#AuthorizedKeysFile .ssh/authorized_keys
This allows you to NX into the CentOS7 machine
Update to openssh seems to require RSA keys now and authorized_keys file instead of DSA keys and authorized_keys2 file
Set "PermitRootLogin no"
But MATE does not work, tried KDE with dnf group install "KDE Plasma Workspaces" and seems to work better but still no icons on the screen
But need to configure custom desktop to use /etc/X11/xinit/Xsession mate-session
Also tried /usr/bin/startxfce4 but still general odd behavior
-
systemctl restart sshd.service
User accounts at remove machines connecting to the new machine will need their $HOME/.ssh/known_hosts either rebuilt or offending entries removed
Update GRUB and splash screen
My saved splash images with varying resolutions are in /root/downloads/splash
As of CentOS 7.2 cannot get custom splash image to appear at boot (with UEFI)
cd /etc/default
cp grub grub.YYYYMMDD
vi grub
remove "rhgb quiet" from the GRUB_CMDLINE_LINUX call
add "vga=0x317" to the GRUB_CMDLINE_LINUX call for better screen resolution (try 0x34b for 1920x1200x8 or 0x34c for 1920x1200x16, or vga=ask to see all available resolutions)
comment out this line: GRUB_TERMINAL_OUTPUT="console"
add this line: GRUB_BACKGROUND="/boot/grub2/splash.png"
For VM/BIOS-based installs, as root: grub2-mkconfig -o /boot/grub2/grub.cfg (Dell XPS 8930)
For UEFI-based installs, as root: grub2-mkconfig -o /boot/efi/EFI/centos/grub.cfg
-
-
-
-
-
Tried part about making a special font
Tried installing all grub2* rpms
Tried 640x480 small splash image
GRUB_CMDLINE_LINUX_DEFAULT="video=1024x768"
GRUB_GFXMODE=1024x768
GRUB_GFXPAYLOAD_LINUX=keep
Set default GRUB entry
If GRUB2 no longer finds other OS to boot (such as Windows 10) use SourceForge Boot Repair Disk
Install ClamAV
Set up local printer(s)
-
RPM #1: brhl2170wlpr-2.0.2-1.i386.rpm
RPM #2: cupswrapperHL2170W-2.0.2-1.i386.rpm
Use 'lpstat' and 'lpq' to ensure it's a known destination printer
-
dnf install cups
service cups start
systemctl enable cups
Use System > Administration > Print Settings
Or use web browser:
# dnf install httpd
# /bin/systemctl start httpd.service
# dnf install system-config-firewall
# firewall-config (or System > Administration > Firewall)
# systemctl enable httpd
-
Firewall Notes
firewall-cmd --get-active-zones
firewall-cmd --zone=public --add-port=8080/tcp --permanent
firewall-cmd --reload
Managing runlevel settings
# systemctl isolate graphical.target
# systemctl set-default graphical.target
# systemctl isolate multi-user.target
# systemctl set-default multi-user.target
After machine has been running for a few days, don't forget to use "alpine" and check for local email from crons that indicate any errors or failures.