LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 05-01-2006, 11:22 PM   #1
thekillerbean
Member
 
Registered: Jan 2002
Distribution: Ubuntu 12.04.2 (Precise)
Posts: 89

Rep: Reputation: 16
What default packages are installed on a Server install of Redhat 7?


Hi all.

I've Googled for the last 2 hours looking for the default set of packages installed by Red Hat 7 when the Server role is selected, but have so far come up empty. I was naive enough to think that this sort of thing might be documented by Redhat somewhere on their website! Not!

What I'm looking for is a list of default packages installed when I opt to set the machine up as a server without selecting anything else. I know I could just as easily wipe the system clean and do a test installation and run rpm -qa, but that is not an option at the moment. However, if no one has documented this before, it might be time to make it an option.

Cheers,
tkb.
 
Old 05-02-2006, 01:15 AM   #2
Simon Bridge
Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 197Reputation: 197
Quote:
I've Googled for the last 2 hours looking for the default set of packages installed by Red Hat 7 when the Server role is selected, but have so far come up empty. I was naive enough to think that this sort of thing might be documented by Redhat somewhere on their website! Not!
This is because RedHat no longer support RH7,8 or 9. So, naturally there is no information.

In RH8 or 9, anaconda will give you the information you are looking for. Dunno about RH7. Strongly suggest a more recent distribution.

Meanwhile - you can check by looking for all files called *.rpm.
 
Old 05-02-2006, 01:39 AM   #3
Simon Bridge
Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 197Reputation: 197
http://leda.law.harvard.edu/leda/man...ll/pkglist.htm
packages in the RH7 base install for the LEDA server.

http://www.linuxcdmall.com/redhat.html
gives complete package lists for RH8 and RH9 - but dosn't distinguish the different install modes.
 
Old 05-02-2006, 02:49 AM   #4
thekillerbean
Member
 
Registered: Jan 2002
Distribution: Ubuntu 12.04.2 (Precise)
Posts: 89

Original Poster
Rep: Reputation: 16
Simon, thanks for your help/suggestions.

Where did you get that list from? If Google, then I'll have to raise issues with them as to why my searches are yielding zilch!

My problem is that I am responsible for several Redhat 7 servers that were deployed a while back (think 8 years ago) and now due to the Enron debacle, SoX and Trust Domain audits are getting me down.

When these machines were first installed, the Server role was selected and nothing else was added/removed. To satisfiy SoX TD, I need to know the basic packages so that we can then audit these machines and determine what additional software has been added/removed. This is my dilemma.

Looks like the moment has come to buy some hardware that is similar to what is currently deployed and install RH7 to verify.

One last question - will running rpm -qa give a definite answer as to what was just installed? In other words, has it been known to spew false information - such as not listing all installed packages or worse still, listing some that were not actually installed?

Cheers,
tkb.
 
Old 05-02-2006, 03:18 AM   #5
Simon Bridge
Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 197Reputation: 197
Where did you get that list from? If Google, then I'll have to raise issues with them as to why my searches are yielding zilch!

Google search term: redhat 7 package list
The LEDA site is the third from the top. To be fair - google have got a lot of information about me and my search habits.

My problem is that I am responsible for several Redhat 7 servers that were deployed a while back (think 8 years ago)

<shakes head> were these old redhat servers robust or what? RH7 was the first linux I experienced ... running MSOffice and MatLab under Win4Lin. A couple-score of these were installed to the Physics Dept network at Auckland University by an old Windows admin.

Looks like the moment has come to buy some hardware that is similar to what is currently deployed and install RH7 to verify.

Yup. That would provide a baseline for the audit. Sounds like a thankless job - hope you're getting paid.

In fact - as a first estimate, I'd ahve installed to J Random Box and had a look.

One last question - will running rpm -qa give a definite answer as to what was just installed? In other words, has it been known to spew false information - such as not listing all installed packages or worse still, listing some that were not actually installed?

I think the rpm headers (or something) have to be present. However - removing the information about any package installed via rpm or up2date in the servers lifetime would require a deliberate effort. It would not report, of course, anything installed from source.

Are you anticipating that someone has been maliciously fiddling?

Last edited by Simon Bridge; 05-02-2006 at 03:21 AM.
 
Old 05-02-2006, 06:53 AM   #6
thekillerbean
Member
 
Registered: Jan 2002
Distribution: Ubuntu 12.04.2 (Precise)
Posts: 89

Original Poster
Rep: Reputation: 16
No, no. We are not worried that someone has fiddled with the machine maliciously in the past, but it is a SoX requirement to be able to tell if/when such a deed has occurs in the future. In fact, the guys doing the SoX audit want the system to report to a designated big brother whenever root logs in for whatever reason!

Leads me to yet another question - is there a way to limit what a user can do with sudo? For instance, is it possible to limit the scope of commands? For example, I want the users in the sudoers file to be able to use commands such as rm and rmdir in certain areas of the file system (such as /tmp), but not others (such as /var/log) - is this possible?

Cheers,
tkb.
 
Old 05-02-2006, 07:25 AM   #7
ioerror
Member
 
Registered: Sep 2005
Location: Old Blighty
Distribution: Slackware, NetBSD
Posts: 536

Rep: Reputation: 30
Quote:
Leads me to yet another question - is there a way to limit what a user can do with sudo? For instance, is it possible to limit the scope of commands? For example, I want the users in the sudoers file to be able to use commands such as rm and rmdir in certain areas of the file system (such as /tmp), but not others (such as /var/log) - is this possible?
You can specify arguments to commands in /etc/sudoers, e.g.

Quote:
Cmnd_Alias DELTMP = /bin/rm /tmp/*, /bin/rm /var/tmp/*
joe_bloggs some_host = DELTMP, ...
or something along those lines. You can use '!...' to disallow a command (e.g. '!/bin/rm /var/log/*'), but the user wouldn't be able to delete files in /var/log anyway unless it is specifically allowed.

Last edited by ioerror; 05-02-2006 at 07:34 AM.
 
Old 05-02-2006, 05:52 PM   #8
thekillerbean
Member
 
Registered: Jan 2002
Distribution: Ubuntu 12.04.2 (Precise)
Posts: 89

Original Poster
Rep: Reputation: 16
You guys are the best.

As you can see, I joined LinuxQuestions quite a while back but have not been very vocal in the forums as I only fiddled with Redhat Linux 5.2/6.x (got it off a magazine) for a while then stopped using it. However, I'm now taking it up whole heartedly as I venture into MythTV and other really cool things that are Linux (not to mention that at my work place Linux is extensively used) and have become quite savvy with the CLI. 'Nough said.

I'm now heading to RTFM and explore everything that I can do with that sudoers file.

Cheers,
tkb.
 
Old 05-02-2006, 05:55 PM   #9
thekillerbean
Member
 
Registered: Jan 2002
Distribution: Ubuntu 12.04.2 (Precise)
Posts: 89

Original Poster
Rep: Reputation: 16
Oh yes, I forgot to mention that tags are a really nice feature. If only everyone can start using them...

Cheers,
tkb.
 
Old 05-02-2006, 11:35 PM   #10
chrism01
Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.5, Centos 5.10
Posts: 16,301

Rep: Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037Reputation: 2037
FYI, as mentioned, those are no longer supported, so for security's sake see if you can upgrade/replace with current versions. As a by-product, you'll also be sure exactly what's on them...
 
  


Reply

Tags
default, list, package, redhat, server, sudoers


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
how to save a list of installed packages and install these packages later mandavi Ubuntu 5 09-07-2009 11:36 AM
Sort installed packages by # of dependant packages installed brianez21 Debian 1 01-18-2006 05:06 PM
apt is confused, trying to install packages that are already installed tomj88 Debian 10 09-11-2005 06:33 PM
default, irrelevant packages installed kpachopoulos Fedora - Installation 1 06-12-2005 04:38 AM
RedHat installed packages database atlesn Linux - Software 2 02-27-2004 01:41 PM


All times are GMT -5. The time now is 01:13 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration