setting up vncserver on Fedora 16

Posted by jmrodri on January 27, 2012

Updated to reflect /etc/systemd, thanks for all the helpful comments.

The change to systemd from SysVinit caused a bit of an issue for vncserver configuration. In the past I would edit

/etc/sysconfig/vncservers

, with systemd the process is quite different.

For our example I will setup vncserver to have display :3 running at a resolution of 1600×900. If you want a different number simply replace it with the number of choice.

sudo yum install tigervnc-server
sudo cp /lib/systemd/system/vncserver@.service /etc/systemd/system/vncserver@:3.service

Next you will need to edit the service file with the username you want vncserver to run under and any vnc options you want.

sudo vi /etc/systemd/system/vncserver@:3.service

The file will look something like this when you open it:

# comment redacted
[Unit]
Description=Remote desktop service (VNC)
After=syslog.target network.target

[Service]
Type=forking
ExecStart=/sbin/runuser -l  -c "/usr/bin/vncserver %i"
ExecStop=/sbin/runuser -l  -c "/usr/bin/vncserver -kill %i"

[Install]
WantedBy=multi-user.target

Change <USER> with the username you want to run vncserver under. For our case let’s use kdr.

Next add the vnc options you want after the %i. Since we want it to run at a resolution of 1600×900 we will add -geometry 1600x900.

ExecStart=/sbin/runuser -l kdr -c "/usr/bin/vncserver %i -geometry 1600x900"
ExecStop=/sbin/runuser -l kdr -c "/usr/bin/vncserver -kill %i"

Save the file and enable the service:

sudo systemctl enable vncserver@:3.service

Now configure the password you want to use to connect to vnc. Run this
as the user you setup in the *.service file above i.e. kdr.

vncpasswd
Password:
Verify:

We now have vncserver setup with a username and a password, and enabled in the system. Two more things to check. First thing is verify you have the port open. The vnc display number will map to 5900 series of ports. Since we chose 3 vncserver will listen on port 5903. If you choose 1, it’ll be 5901, etc.

Let’s see if iptables is configured to listen to this port:

sudo iptables --list | grep 5903

Nope, let’s update iptables:

sudo vi /etc/sysconfig/iptables

Add this to the file:

-A INPUT -p tcp -m state --state NEW -m tcp --dport 5903 -j ACCEPT

Save the file, then restart iptables and verify that the port is active.

sudo systemctl restart iptables.service

sudo iptables --list | grep 5903
ACCEPT     tcp  --  anywhere             anywhere             state NEW tcp dpt:5903

Ok FINALLY we can start up vncserver.

sudo systemctl start vncserver@:3.service

Test it out by connecting with vncviewer host.example.com:3.
Enter the password you used for vncpasswd.

ENJOY!

Piracy bills are ludicrous

Posted by jmrodri on January 19, 2012

Honorable Senator Hagan,

I sincerely doubt that American economy is affected by $58 billion a year due to piracy. That is precisely the problem I have with all piracy bills, their ludicrous claims of lost revenue. These numbers are calculated as if all the pirated material was going to be acquired legally by all. Most of the people that pirate would never have purchased the material to begin with especially at the prices the owners use to calculate the inflated numbers.

The real problem is that the piracy sites are out of American jurisdiction, if you want to prevent piracy then you need to make the content more easily accessible. It used to be a time when people were pirating music left and right. But once the music industry allowed the sale of music online at a price consumers are willing to pay, it has become EASIER to acquire the music legally than through other means. For less than a $1 people can get their music fix right then and there legally.

If the movie industry made their movies easier to acquire at a cheaper price, I bet piracy would go down tremendously. But they are greedy machines trying to squeeze every penny out of something including paying Congress to do their bidding. Just look at what the studios do to cable companies and Netflix. The movie industry should be focused on getting their content out to the masses, because if people can get the latest movies from Netflix, cable or for any of their devices cheaply, they won’t have to pirate them. This legislation is, in my opinion, going after the wrong thing.

It is a shame that you support this horrible bill, come re-election time, I’ll be voting for the OTHER candidate.

Sincerely,
jesus rodriguez

January 19, 2012

Dear Friend,

Thank you for contacting me to express your concerns regarding the Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act of 2011, more commonly referred to as the PROTECT IP Act of 2011. I appreciate hearing your thoughts on this important issue.

On May 12, 2011, the Preventing Real Online Threats to Economic Creativity and Theft of Intellectual Property Act of 2011 (S. 968) was introduced in the Senate and referred to the Committee on the Judiciary. This bill would allow the Attorney General, or an intellectual property rights owner who has been harmed by an Internet site dedicated to infringing activities (ISDIA), also known as a rogue website, to take action against that site. A site would be designated as an ISDIA if their sole purpose is to facilitate copyright infringement, or promote or sale of counterfeited American works.

A recent study suggests that copyright piracy alone costs the American economy as much as $58 billion a year and countless jobs. I strongly support the goal of reducing the theft of intellectual property that is so important to North Carolina’s economy, including our budding film industry, which is why I and 40 of my bipartisan cosponsors originally cosponsored this legislation last July.

As with all proposed legislation, legitimate concerns have been raised about some of the specific provisions in this bill. I believe that supporters and opponents of the bill, all of whom agree, after all, on the need to combat the theft of American intellectual property, should work together to address those concerns. As you may know, the Senate is scheduled to begin consideration of this legislation later this month, and I intend to approach the debate and amendment process with an open mind. Through a full and robust debate, I believe we can improve the legislation, ultimately reaching an agreement that will protect intellectual property without limiting innovation and creativity or creating unintended consequences.

Again, thank you for contacting my office. It is truly an honor to represent North Carolina in the United States Senate, and I hope you will not hesitate to contact me in the future should you have any further questions or concerns.

Sincerely,

Kay R. Hagan

STOP SOPA

Posted by jmrodri on January 18, 2012

Write your Congressman, visit wikipedia to find their contact information.

tito shows up at FUDCon

Posted by jmrodri on January 14, 2012

Had a good presentation on tito this morning at FUDCon:Blacksburg. Pretty good turnout. You can get the slides here: tito slides

Candlepin 0.5.5 released

Posted by jmrodri on December 8, 2011

It’s that time again, another release of Candlepin and associated projects available for your enjoyment. With this release we have subscription-manager in Fedora as well as a debut build of Thumbslug.

For more information on Candlepin, please visit: http://candlepinproject.org/

Features & Enhancements

subscription-manager

added support for host registration and guest association when host can not register itself
virt-who work to handle ESX guests
subscription-manager available in fedora

candlepin

build modified to use the tito hotness instead of bunch of disjoint bash scripts
disable manifest rules import
added support for host registration and guest association when host can not register itself

thumbslug

added appropriate init scripts to run as a service
uses Candlepin CRL
thumbslug talks to akamai
created puppet module for katello

Bugs fixed

subscription-manager

705883	Fix error dialog modal issues.
719743	Improved text output for successful pool subscription
740788	Getting error with quantity subscribe using subscription-assistance page.
746259	Don’t allow the user to pass in an empty string as an activation key
746732	Only use fallback locales for dates we need to parse
749332	Normalize the error messages for not being registered
749636	Client should not support users entering activation keys and existing consumer ids
752572	add interval logging statements back in on rhsmcertd startup
753093	The available subscriptions count does not show correctly in Subscription Manager GUI
754821	Default org of “Unknown” was not marked for gettext
755031	Unregister before attempting to run a second registration
755035	Migration script should work on RHEL 5.7 and up.
755130	add extra whitespace to classic warning
755541	Enhanced the message in the katello plugin to debug when the backend system does not support environments.
756173	Unexpected behavior change in subscription-manager unregister
756507	do not use output from “getlocale” as input for “setlocale”
758471	install-num-migrate-to-rhsm threw traceback when no instnum was found.
759199	rhsmcertd is logging the wrong value for certFrequency

candlepin

753093	The Available Subscriptions count do not show correctly in Subscription Manager GUI
754841	Implement DELETE /pools/id.
754843	Fix legacy virt bonus pools missing pool_derived.
755677	Activation Keys should not check quantity on unlimited pools
756628	Translate missing rule errors.
758462	ensure job detail isn’t null, skip it.

thumbslug

759607

update url for subscriptions handler

Download & Setup

Make sure you read over the Candlepin Setup Guide, which is located at https://fedorahosted.org/candlepin/wiki/Setup.

As well as the Headpin Install Guide which can be found at https://fedorahosted.org/candlepin/wiki/headpin/Install

Just give me the bits already! You can get the various bits at the urls below.

Candlepin:
http://repos.fedorapeople.org/repos/candlepin/candlepin/

Thumbslug:
http://repos.fedorapeople.org/repos/candlepin/thumbslug/

Headpin:
http://repos.fedorapeople.org/repos/katello

Subscription Manager:
http://repos.fedorapeople.org/repos/candlepin/subscription-manager/

Veterans Day 2011

Posted by jmrodri on November 11, 2011

Thanks to all that serve and have served, especially those in my family.
It is because of you we enjoy the freedom we have.

RIP Reina

Posted by jmrodri on October 31, 2011

Reina aka “Bubba“

December 21, 1996 – October 31, 2011

Happy Birthday Marco

Posted by jmrodri on October 12, 2011

Today, Marco turns 8. Happy Birthday, Marco. Tonight’s dinner choice? Chuck E. Cheese!

Happy Birthday Adan

Posted by jmrodri on September 29, 2011

Since we were traveling on Adan’s birthday, I didn’t get a chance to make the obligatory birthday blog post. On September 29th, Adan turned 10. I can’t believe he’s a decade old already. I told him ‘you realize today is the last day you will be a single digit old’. It didn’t seem to phase him.

Candlepin 0.4.16 released.

Posted by jmrodri on September 15, 2011

Another sprint gone by and another release of Candlepin for your enjoyment. Candlepin 0.4.16 is ready. You can get the bits at:

http://repos.fedorapeople.org/repos/candlepin/candlepin/

Make sure you read over the Setup Guide, which is located at
https://fedorahosted.org/candlepin/wiki/Setup

For more information on Candlepin, please visit our project page.