=== ealden_ [n=ealden@219.90.93.78] has joined #ubuntu-server | ||
=== fumpt [n=andrew@cephas.datawerx.net] has joined #ubuntu-server | ||
=== lamont__ [n=lamont@mix.mmjgroup.com] has joined #ubuntu-server | ||
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server | ||
=== bustacap [n=bustacap@203-206-46-153.dyn.iinet.net.au] has joined #ubuntu-server | ||
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server | ||
=== morrow [i=aw@netclue.de] has joined #ubuntu-server | ||
=== netjoined: irc.freenode.net -> brown.freenode.net | ||
=== morrow [i=aw@netclue.de] has joined #ubuntu-server | ||
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server | ||
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server | ||
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
=== bautt [n=baublys@p5088A133.dip0.t-ipconnect.de] has joined #ubuntu-server | ||
=== lionelp [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server | ||
=== Valandil [n=chrys@dslb-084-056-090-178.pools.arcor-ip.net] has joined #ubuntu-server | ||
=== ubijtsa2 [n=ubijtsa@karlsson.force9.co.uk] has joined #ubuntu-server | ||
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server | ||
ubijtsa2 | fabbione: you are in denmark? :) | 11:38 |
---|---|---|
fabbione | ubijtsa: i live in denmakr yes | 11:38 |
fabbione | denmark even | 11:38 |
=== ubijtsa2 thought fabbione lived in italy... | ||
ubijtsa2 | dunno why I had that impression... :) | 11:39 |
fabbione | common misconceptio, but i am italian | 11:39 |
ubijtsa2 | do they have problems pronouncing your name in .dk ? | 11:39 |
fabbione | usually no | 11:40 |
=== ubijtsa2 finds that even after ten years, people still can't get my name right here in .uk | ||
fabbione | i am in London as we speak | 11:41 |
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
ubijtsa2 | fabbione: not far from here then.. | 11:42 |
fabbione | dunno where "here" is :) | 11:42 |
ubijtsa2 | I live in Farnborough, so less than 50 miles away from you. | 11:43 |
ubijtsa2 | wsw out of London on the M3 motorway :) | 11:43 |
=== daq4th [n=darkness@netstation-004.cafe.zSeries.org] has joined #ubuntu-server | ||
=== ajmitch_ [i=ajmitch@port169-250.ubs.maxnet.net.nz] has joined #ubuntu-server | ||
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server | ||
=== segfault [i=carlos@prognus.com.br] has joined #ubuntu-server | ||
Xoritor | anyone here setup dovecot? | 04:26 |
ubijtsa2 | Xoritor: to do what? | 04:34 |
=== fabbione [n=fabbione@port49.ds1-van.adsl.cybercity.dk] has joined #ubuntu-server | ||
Xoritor | imap and imaps | 04:35 |
=== ubijtsa2 might have but won't fully admit it until he knows more about the question | ||
Xoritor | auth from pam | 04:35 |
Xoritor | heh | 04:35 |
ubijtsa2 | yes, I think that is the default, is it not? :) | 04:35 |
Xoritor | im having issues authenticating with the default config | 04:35 |
Xoritor | i have not really changed anything | 04:35 |
ubijtsa2 | well, the user has to exist... :) | 04:36 |
ubijtsa2 | then it is just username/passwd, same as for console login, to get to your imap account | 04:36 |
Xoritor | yep | 04:37 |
Xoritor | my user does exist | 04:37 |
Xoritor | and i am using the same info | 04:37 |
ubijtsa2 | then it should work. | 04:37 |
ubijtsa2 | hmm | 04:37 |
Xoritor | protocols = imap imaps | 04:38 |
ubijtsa2 | yep | 04:38 |
Xoritor | i only changed that to be the default | 04:38 |
Xoritor | it was empty | 04:38 |
ubijtsa2 | ssl_disable = no | 04:38 |
ubijtsa2 | ssl_cert_file = /etc/ssl/certs/dovecot.pem | 04:38 |
ubijtsa2 | ssl_key_file = /etc/ssl/private/dovecot.pem | 04:38 |
ubijtsa2 | ssl_parameters_file = /var/run/dovecot/ssl-parameters.dat | 04:38 |
ubijtsa2 | ssl_parameters_regenerate = 24 | 04:39 |
Xoritor | those are all commented out | 04:39 |
ubijtsa2 | if you want imaps you'll need to enable them, and create the cert | 04:39 |
ubijtsa2 | selfsigned is good | 04:39 |
Xoritor | yea i did that on my other machines | 04:39 |
Xoritor | they were not ubuntu though | 04:40 |
ubijtsa2 | maildir_copy_with_hardlinks = yes | 04:40 |
ubijtsa2 | (not strictly needed, but faster) | 04:40 |
ubijtsa2 | auth = default | 04:41 |
ubijtsa2 | auth_mechanisms = plain | 04:41 |
ubijtsa2 | auth_userdb = passwd | 04:41 |
ubijtsa2 | auth_passdb = pam | 04:41 |
ubijtsa2 | that should be it | 04:41 |
ubijtsa2 | it's what I use and it works (well, I use the dotfile pam module as well, but that makes no difference) | 04:42 |
Xoritor | i dont have auth_passdb | 04:43 |
Xoritor | or auth_userdb | 04:43 |
Xoritor | auth default { | 04:44 |
Xoritor | just saw a link to a wiki | 04:44 |
Xoritor | http://wiki.dovecot.org/Authentication | 04:45 |
ubijtsa2 | what version of dovecot do you have? | 04:45 |
ubijtsa2 | I have 0.99.14-1ubuntu1 | 04:46 |
Xoritor | odd it says my version is <none> | 04:47 |
ubijtsa2 | dpkg -l | grep dovecot | 04:47 |
ubijtsa2 | :) | 04:47 |
Xoritor | ii dovecot-imapd 1.0.alpha5-1 | 04:47 |
Xoritor | aah i upped to dapper | 04:47 |
Xoritor | i forgot | 04:47 |
Xoritor | dang | 04:48 |
Xoritor | thats prolly why | 04:48 |
Xoritor | its a home "test" server | 04:48 |
Xoritor | ok, never mind ill hack on it a bit | 04:48 |
Xoritor | thx | 04:48 |
ubijtsa2 | np | 04:48 |
Xoritor | im not saying i dont want your help, just that i dont want to bother you for me running dapper | 04:49 |
ubijtsa2 | well, an alpha package might well be unstable | 04:50 |
ubijtsa2 | I'll bite the bullet on dapper in late april | 04:51 |
ubijtsa2 | this box will get upgraded then | 04:51 |
Xoritor | yea | 04:51 |
Xoritor | heh | 04:51 |
Xoritor | i wanted to play with prelude .9x | 04:51 |
ubijtsa2 | no idea what that is | 04:52 |
Xoritor | intrusion detection framework | 04:52 |
ubijtsa2 | like AIDE and tripwire then | 04:52 |
Xoritor | uses other things like snort, samhain, etc... as "plugins" | 04:52 |
Xoritor | and has ssl etc... so integrate lots of systems together | 04:52 |
Xoritor | and a central place to monitor all of them | 04:53 |
ubijtsa2 | okay.. sounds useful | 04:53 |
Xoritor | pretty freakin cool actually | 04:53 |
ubijtsa2 | I installed ntop | 04:53 |
ubijtsa2 | useful tool as well | 04:53 |
Xoritor | ntop is ok, good to dissect whats going where | 04:53 |
Xoritor | so is ettercap ;-) | 04:53 |
Xoritor | heh | 04:53 |
ubijtsa2 | *grin* | 04:53 |
Xoritor | one of the things i like about prelude is that pretty much anything could be a "plugin" | 04:54 |
Xoritor | and its all distributed | 04:54 |
Xoritor | then i get to monitor from one place | 04:54 |
ubijtsa2 | that's handy | 04:54 |
Xoritor | that to me is awesome... now top it all off that all comms between nodes are ssl enc | 04:55 |
Xoritor | and only "authorized" nodes are allowed | 04:55 |
ubijtsa2 | nessus does that as well iirc | 04:55 |
=== ubijtsa2 goes to grab a tea and check gmail | ||
Xoritor | for nessus yes, but not for logs ;-) | 04:55 |
Xoritor | no more sending logs to a remote machine over un encrypted udp | 04:56 |
Xoritor | prelude-lml runs on the node and sends the logs encrypted to the monitor | 04:56 |
Xoritor | i am hoping to intgrate "alerts" into nagios | 04:57 |
Xoritor | and setup some response scripts maybe to auto firewall malicious ssh attempts | 04:57 |
Xoritor | ie... same ip logging in with users that dont exist | 04:57 |
Xoritor | over and over | 04:57 |
Xoritor | you can do stuff like that... since it uses snort, log monitoring, etc... all in one framework | 04:58 |
Xoritor | and you can do it distributed... so if someones trying to break into one system by brute force you can have all of the other systems auto-firewall them out | 04:58 |
Xoritor | and after a time clear that iptables entry | 04:58 |
ubijtsa2 | sounds very good, this will be in nubuntu I gather | 04:59 |
Xoritor | yea | 04:59 |
Xoritor | no | 04:59 |
Xoritor | no | 04:59 |
Xoritor | im doing it in regular ubuntu | 04:59 |
Xoritor | thats why i installed dapper | 04:59 |
Xoritor | heh | 05:00 |
Xoritor | has the needed version of prelude | 05:00 |
ubijtsa2 | I ment that this tool will be part of nUbuntu default install :) | 05:00 |
Xoritor | not that i am aware of | 05:00 |
Xoritor | i looked there, but didnt see it | 05:00 |
chillywilly | ello | 05:02 |
Xoritor | hello | 05:02 |
chillywilly | prelude sounds interesting | 05:05 |
chillywilly | heh, seems like everyone is using trac | 05:08 |
Xoritor | heh | 05:20 |
Xoritor | true | 05:20 |
=== spike is using trac ;) | ||
spike | Xoritor: ever played with sguil? | 05:25 |
Xoritor | no i have not | 05:26 |
Xoritor | looks like my issue with dovecot is a missing pam lib | 05:28 |
Xoritor | can someone tell me what package provides this file? /lib/security/pam_foreground.so | 05:29 |
ubijtsa2 | dpkg -S (or -s) will tell you | 05:30 |
Xoritor | its not installed | 05:30 |
Xoritor | i need to install it | 05:30 |
ubijtsa2 | or apt-cache search perhaps? | 05:30 |
ubijtsa2 | i don't think I have that file | 05:30 |
Xoritor | nope | 05:31 |
spike | packages.ubuntu.com? | 05:32 |
spike | or apt-file | 05:32 |
Xoritor | good idea | 05:32 |
spike | anyway, away to fetch a drink, brb | 05:32 |
Xoritor | got it | 05:46 |
=== soumyadip [n=soumyadi@59.93.242.96] has joined #ubuntu-server | ||
=== hunger [n=tobias@p54A642AB.dip0.t-ipconnect.de] has joined #ubuntu-server | ||
MarioMeyer | :P | 06:30 |
=== lbm [n=lbm@130.225.243.71] has joined #ubuntu-server | ||
=== Kuyaedz [n=Crister@65.106.115.194.ptr.us.xo.net] has joined #ubuntu-server | ||
Kuyaedz | anyone want to take a shot at my 'vhcs migration killed smtp' issue? | 09:37 |
=== jahor [n=jahor@klient29-25-231.a.softex.cz] has joined #ubuntu-server | ||
=== Kuyaedz [n=Crister@65.106.115.194.ptr.us.xo.net] has left #ubuntu-server [] | ||
=== Xoritor [n=xoritor@xorit.net] has joined #ubuntu-server | ||
=== meheren [n=meheren@3-35.8-67.swfla.res.rr.com] has joined #ubuntu-server | ||
=== meheren [n=meheren@3-35.8-67.swfla.res.rr.com] has left #ubuntu-server [] | ||
=== ivoks [n=ivoks@ubuntu/member/ivoks] has joined #ubuntu-server | ||
=== Florica [n=florin@82.76.53.109] has joined #ubuntu-server |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!