/srv/irclogs.ubuntu.com/2006/02/02/#ubuntu-server.txt

=== ealden_ [n=ealden@219.90.93.78] has joined #ubuntu-server
=== fumpt [n=andrew@cephas.datawerx.net] has joined #ubuntu-server
=== lamont__ [n=lamont@mix.mmjgroup.com] has joined #ubuntu-server
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server
=== bustacap [n=bustacap@203-206-46-153.dyn.iinet.net.au] has joined #ubuntu-server
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server
=== morrow [i=aw@netclue.de] has joined #ubuntu-server
=== netjoined: irc.freenode.net -> brown.freenode.net
=== morrow [i=aw@netclue.de] has joined #ubuntu-server
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
=== bautt [n=baublys@p5088A133.dip0.t-ipconnect.de] has joined #ubuntu-server
=== lionelp [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server
=== Valandil [n=chrys@dslb-084-056-090-178.pools.arcor-ip.net] has joined #ubuntu-server
=== ubijtsa2 [n=ubijtsa@karlsson.force9.co.uk] has joined #ubuntu-server
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server
ubijtsa2	fabbione: you are in denmark? :)	11:38
fabbione	ubijtsa: i live in denmakr yes	11:38
fabbione	denmark even	11:38
=== ubijtsa2 thought fabbione lived in italy...
ubijtsa2	dunno why I had that impression... :)	11:39
fabbione	common misconceptio, but i am italian	11:39
ubijtsa2	do they have problems pronouncing your name in .dk ?	11:39
fabbione	usually no	11:40
=== ubijtsa2 finds that even after ten years, people still can't get my name right here in .uk
fabbione	i am in London as we speak	11:41
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
ubijtsa2	fabbione: not far from here then..	11:42
fabbione	dunno where "here" is :)	11:42
ubijtsa2	I live in Farnborough, so less than 50 miles away from you.	11:43
ubijtsa2	wsw out of London on the M3 motorway :)	11:43
=== daq4th [n=darkness@netstation-004.cafe.zSeries.org] has joined #ubuntu-server
=== ajmitch_ [i=ajmitch@port169-250.ubs.maxnet.net.nz] has joined #ubuntu-server
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== segfault [i=carlos@prognus.com.br] has joined #ubuntu-server
Xoritor	anyone here setup dovecot?	04:26
ubijtsa2	Xoritor: to do what?	04:34
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server
Xoritor	imap and imaps	04:35
=== ubijtsa2 might have but won't fully admit it until he knows more about the question
Xoritor	auth from pam	04:35
Xoritor	heh	04:35
ubijtsa2	yes, I think that is the default, is it not? :)	04:35
Xoritor	im having issues authenticating with the default config	04:35
Xoritor	i have not really changed anything	04:35
ubijtsa2	well, the user has to exist... :)	04:36
ubijtsa2	then it is just username/passwd, same as for console login, to get to your imap account	04:36
Xoritor	yep	04:37
Xoritor	my user does exist	04:37
Xoritor	and i am using the same info	04:37
ubijtsa2	then it should work.	04:37
ubijtsa2	hmm	04:37
Xoritor	protocols = imap imaps	04:38
ubijtsa2	yep	04:38
Xoritor	i only changed that to be the default	04:38
Xoritor	it was empty	04:38
ubijtsa2	ssl_disable = no	04:38
ubijtsa2	ssl_cert_file = /etc/ssl/certs/dovecot.pem	04:38
ubijtsa2	ssl_key_file = /etc/ssl/private/dovecot.pem	04:38
ubijtsa2	ssl_parameters_file = /var/run/dovecot/ssl-parameters.dat	04:38
ubijtsa2	ssl_parameters_regenerate = 24	04:39
Xoritor	those are all commented out	04:39
ubijtsa2	if you want imaps you'll need to enable them, and create the cert	04:39
ubijtsa2	selfsigned is good	04:39
Xoritor	yea i did that on my other machines	04:39
Xoritor	they were not ubuntu though	04:40
ubijtsa2	maildir_copy_with_hardlinks = yes	04:40
ubijtsa2	(not strictly needed, but faster)	04:40
ubijtsa2	auth = default	04:41
ubijtsa2	auth_mechanisms = plain	04:41
ubijtsa2	auth_userdb = passwd	04:41
ubijtsa2	auth_passdb = pam	04:41
ubijtsa2	that should be it	04:41
ubijtsa2	it's what I use and it works (well, I use the dotfile pam module as well, but that makes no difference)	04:42
Xoritor	i dont have auth_passdb	04:43
Xoritor	or auth_userdb	04:43
Xoritor	auth default {	04:44
Xoritor	just saw a link to a wiki	04:44
Xoritor	http://wiki.dovecot.org/Authentication	04:45
ubijtsa2	what version of dovecot do you have?	04:45
ubijtsa2	I have 0.99.14-1ubuntu1	04:46
Xoritor	odd it says my version is <none>	04:47
ubijtsa2	dpkg -l \| grep dovecot	04:47
ubijtsa2	:)	04:47
Xoritor	ii dovecot-imapd 1.0.alpha5-1	04:47
Xoritor	aah i upped to dapper	04:47
Xoritor	i forgot	04:47
Xoritor	dang	04:48
Xoritor	thats prolly why	04:48
Xoritor	its a home "test" server	04:48
Xoritor	ok, never mind ill hack on it a bit	04:48
Xoritor	thx	04:48
ubijtsa2	np	04:48
Xoritor	im not saying i dont want your help, just that i dont want to bother you for me running dapper	04:49
ubijtsa2	well, an alpha package might well be unstable	04:50
ubijtsa2	I'll bite the bullet on dapper in late april	04:51
ubijtsa2	this box will get upgraded then	04:51
Xoritor	yea	04:51
Xoritor	heh	04:51
Xoritor	i wanted to play with prelude .9x	04:51
ubijtsa2	no idea what that is	04:52
Xoritor	intrusion detection framework	04:52
ubijtsa2	like AIDE and tripwire then	04:52
Xoritor	uses other things like snort, samhain, etc... as "plugins"	04:52
Xoritor	and has ssl etc... so integrate lots of systems together	04:52
Xoritor	and a central place to monitor all of them	04:53
ubijtsa2	okay.. sounds useful	04:53
Xoritor	pretty freakin cool actually	04:53
ubijtsa2	I installed ntop	04:53
ubijtsa2	useful tool as well	04:53
Xoritor	ntop is ok, good to dissect whats going where	04:53
Xoritor	so is ettercap ;-)	04:53
Xoritor	heh	04:53
ubijtsa2	grin	04:53
Xoritor	one of the things i like about prelude is that pretty much anything could be a "plugin"	04:54
Xoritor	and its all distributed	04:54
Xoritor	then i get to monitor from one place	04:54
ubijtsa2	that's handy	04:54
Xoritor	that to me is awesome... now top it all off that all comms between nodes are ssl enc	04:55
Xoritor	and only "authorized" nodes are allowed	04:55
ubijtsa2	nessus does that as well iirc	04:55
=== ubijtsa2 goes to grab a tea and check gmail
Xoritor	for nessus yes, but not for logs ;-)	04:55
Xoritor	no more sending logs to a remote machine over un encrypted udp	04:56
Xoritor	prelude-lml runs on the node and sends the logs encrypted to the monitor	04:56
Xoritor	i am hoping to intgrate "alerts" into nagios	04:57
Xoritor	and setup some response scripts maybe to auto firewall malicious ssh attempts	04:57
Xoritor	ie... same ip logging in with users that dont exist	04:57
Xoritor	over and over	04:57
Xoritor	you can do stuff like that... since it uses snort, log monitoring, etc... all in one framework	04:58
Xoritor	and you can do it distributed... so if someones trying to break into one system by brute force you can have all of the other systems auto-firewall them out	04:58
Xoritor	and after a time clear that iptables entry	04:58
ubijtsa2	sounds very good, this will be in nubuntu I gather	04:59
Xoritor	yea	04:59
Xoritor	no	04:59
Xoritor	no	04:59
Xoritor	im doing it in regular ubuntu	04:59
Xoritor	thats why i installed dapper	04:59
Xoritor	heh	05:00
Xoritor	has the needed version of prelude	05:00
ubijtsa2	I ment that this tool will be part of nUbuntu default install :)	05:00
Xoritor	not that i am aware of	05:00
Xoritor	i looked there, but didnt see it	05:00
chillywilly	ello	05:02
Xoritor	hello	05:02
chillywilly	prelude sounds interesting	05:05
chillywilly	heh, seems like everyone is using trac	05:08
Xoritor	heh	05:20
Xoritor	true	05:20
=== spike is using trac ;)
spike	Xoritor: ever played with sguil?	05:25
Xoritor	no i have not	05:26
Xoritor	looks like my issue with dovecot is a missing pam lib	05:28
Xoritor	can someone tell me what package provides this file? /lib/security/pam_foreground.so	05:29
ubijtsa2	dpkg -S (or -s) will tell you	05:30
Xoritor	its not installed	05:30
Xoritor	i need to install it	05:30
ubijtsa2	or apt-cache search perhaps?	05:30
ubijtsa2	i don't think I have that file	05:30
Xoritor	nope	05:31
spike	packages.ubuntu.com?	05:32
spike	or apt-file	05:32
Xoritor	good idea	05:32
spike	anyway, away to fetch a drink, brb	05:32
Xoritor	got it	05:46
=== soumyadip [n=soumyadi@59.93.242.96] has joined #ubuntu-server
=== hunger [n=tobias@p54A642AB.dip0.t-ipconnect.de] has joined #ubuntu-server
MarioMeyer	:P	06:30
=== lbm [n=lbm@130.225.243.71] has joined #ubuntu-server
=== Kuyaedz [n=Crister@65.106.115.194.ptr.us.xo.net] has joined #ubuntu-server
Kuyaedz	anyone want to take a shot at my 'vhcs migration killed smtp' issue?	09:37
=== jahor [n=jahor@klient29-25-231.a.softex.cz] has joined #ubuntu-server
=== Kuyaedz [n=Crister@65.106.115.194.ptr.us.xo.net] has left #ubuntu-server []
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server
=== meheren [n=meheren@3-35.8-67.swfla.res.rr.com] has joined #ubuntu-server
=== meheren [n=meheren@3-35.8-67.swfla.res.rr.com] has left #ubuntu-server []
=== ivoks [n=ivoks@ubuntu/member/ivoks] has joined #ubuntu-server
=== Florica [n=florin@82.76.53.109] has joined #ubuntu-server

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!