=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server | ||
=== mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server | ||
=== Unfun [n=Unfun@c-24-5-74-223.hsd1.ca.comcast.net] has joined #ubuntu-server | ||
Unfun | Hello all | 03:57 |
---|---|---|
Unfun | Anyone know if it's possible to get ServerWorks HT1000 SATA controller working on ubuntu-server 5.1 | 03:57 |
Unfun | ? | 03:57 |
=== pabs_ [n=pabs@c-68-61-247-219.hsd1.mi.comcast.net] has joined #ubuntu-server | ||
=== irvin is away: I'm busy | ||
pabs_ | can anyone assist me with " 500 OOPS: could not bind listening IPv4 socket" error with vsftpd? | 05:55 |
maswan | pabs_: probably, the local ftp port that vsftpd wants to listen on is already busy | 06:00 |
maswan | perhaps an old ftpd process? | 06:00 |
pabs_ | ya your right | 06:02 |
pabs_ | I killed all vsftpd processes | 06:02 |
pabs_ | and i think im running@ | 06:02 |
pabs_ | :-D !!! | 06:02 |
pabs_ | i was actually trying to connect locally | 06:03 |
pabs_ | and got that error | 06:03 |
pabs_ | man o man that was chore getting that up and running tonite | 06:04 |
pabs_ | im new to linux :) | 06:04 |
pabs_ | maswan thanks for your help man | 06:04 |
pabs_ | appreciate it | 06:04 |
maswan | enjoy! | 06:06 |
=== infinity [n=adconrad@loki.0c3.net] has joined #ubuntu-server | ||
=== Unfun [n=Unfun@c-24-5-74-223.hsd1.ca.comcast.net] has joined #ubuntu-server | ||
=== ubijtsa_ [n=ubijtsa@213.208.70.155] has joined #ubuntu-server | ||
=== ubijtsa2 [n=anders@213.208.70.155] has joined #ubuntu-server | ||
=== fabbione [n=fabbione@82.109.136.125] has joined #ubuntu-server | ||
=== lionelp [n=lionel@10.21.96-84.rev.gaoland.net] has joined #ubuntu-server | ||
=== ubijtsa2 [n=anders@213.208.70.155] has joined #ubuntu-server | ||
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server | ||
=== beezly [n=beezly@2001:630:63:16:230:1bff:feb7:2528] has joined #ubuntu-server | ||
=== beezly [n=beezly@2001:630:63:16:230:1bff:feb7:2528] has joined #ubuntu-server | ||
spike | I'm running out of ideas and resources..., so, anybody with cisco experience? | 11:10 |
maswan | Well, some of ther smaller switches are just overpriced, I avoid the rest? | 11:11 |
spike | I'm having an hard time setting up a vpn between a pix 501 and a cisco vpn client | 11:16 |
maswan | never touched vpns | 11:18 |
fabbione | spike: good luck! | 11:19 |
fabbione | pix 501 sucks | 11:19 |
fabbione | and it also depends what cisco vpn client you are using | 11:20 |
fabbione | because they have 2/3 different ones according to the vpn concentrator | 11:20 |
spike | fabbione: cisco vpn client 4.8.0 | 11:21 |
fabbione | spike: i lost my CCO account when cisco has been hacked | 11:21 |
fabbione | didn't even bother to reenable it | 11:21 |
spike | the thing is, it's a weird test bed, I get the vpn, but then cant ping/access what's on the other side | 11:21 |
spike | but the more I check ACLs and stuff, the more it looks fine | 11:22 |
fabbione | did you check that the client is setting default gw over the vpn? | 11:22 |
fabbione | iirc there is a setting on server side to force such a thing | 11:22 |
fabbione | or a client option | 11:22 |
fabbione | that you don't want the users to be able to override | 11:22 |
fabbione | hence you set it on the server | 11:22 |
fabbione | anyway cisco vpn are extremely easy to hack :) | 11:22 |
spike | fabbione: yes, gw is over vpn. the option should be split-tunnel | 11:25 |
spike | but yes, the packets get to the pix, so that's not the prob | 11:25 |
spike | I can see them all with show capture | 11:26 |
spike | the problem is accessing boxes on over the vpn, packets stop at incoming interface and never reach the other one | 11:26 |
spike | fabbione: so it must be something ACL related, that would sound obvious, but I've just got one (test bed for a specific scenario), so, mh, I'm kinda sure I got it right | 11:27 |
=== allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server | ||
=== allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server | ||
=== beezly [n=beezly@2001:630:63:16:230:1bff:feb7:2528] has joined #ubuntu-server | ||
=== ealden [n=ealden@203.76.213.188] has joined #ubuntu-server | ||
ealden | MarioMeyer: ping | 01:17 |
=== beezly [n=beezly@2001:630:63:16:230:1bff:feb7:2528] has joined #ubuntu-server | ||
=== mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server | ||
=== spike [n=spike@212.19.104.81] has joined #ubuntu-server | ||
MarioMeyer | ealden, pong | 05:19 |
=== spike [n=spike@212.19.104.81] has joined #ubuntu-server | ||
=== spike [n=spike@212.19.104.81] has joined #ubuntu-server | ||
=== fabbione [n=fabbione@82.109.136.125] has joined #ubuntu-server | ||
=== spike [n=spike@212.19.104.81] has joined #ubuntu-server | ||
=== spike [n=spike@host198-132.pool82189.interbusiness.it] has joined #ubuntu-server | ||
=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server | ||
=== Unfun [n=Unfun@h-67-102-19-42.snfccasy.covad.net] has joined #ubuntu-server | ||
=== hunger [n=tobias@p54A644E2.dip0.t-ipconnect.de] has joined #ubuntu-server | ||
Unfun | Hello | 08:26 |
Unfun | Anyone in here? | 08:26 |
spike | yeah, but all dead | 08:26 |
fabbione | yup | 08:26 |
=== lionelp [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server | ||
Unfun | I just bought a brand new dual core amd 1U server and i can't get ubuntu-server to recognize the HT1000 ServerWorks SATA controller | 08:27 |
Unfun | Is there a driver in the works or no? | 08:27 |
spike | fabbione: so far nobody flamed me for the apache post, but I havent got a reply either :) | 08:28 |
fabbione | Unfun: you will need to try dapper CD's | 08:28 |
Unfun | http://www.siliconmechanics.com/i4442/opteron-server.php | 08:28 |
fabbione | i don't think .12 does support it | 08:28 |
Unfun | How unstable is dapper? | 08:28 |
fabbione | spike: i have been feeling really bad today | 08:28 |
fabbione | Unfun: quite unstable | 08:28 |
Unfun | I may just install on a usb drive | 08:29 |
Unfun | compile a kernel | 08:29 |
fabbione | spike: so were the other 2 apache maintainers... | 08:29 |
spike | fabbione: oh, doh, sorry to hear about that | 08:29 |
Unfun | Then copy it over | 08:29 |
fabbione | spike: we got some kind of food poisoning or something.. | 08:29 |
spike | eeewww, that sux | 08:29 |
fabbione | yes | 08:30 |
fabbione | we are not going too well these days | 08:30 |
fabbione | doing even | 08:30 |
spike | fabbione: then it must be that that made you you define hw "desperate" instead of "disparate" ;) | 08:31 |
fabbione | possibly | 08:31 |
spike | and it must be my lack of sleep that makes me double words... | 08:32 |
spike | anyway | 08:32 |
spike | fabbione: btw, I solved that vpn issue :) | 08:32 |
fabbione | ah nice | 08:32 |
spike | as of 2 days playing with cisco stuff, I dont definitely like it... | 08:32 |
fabbione | i don't like their firewalls/vpn solutions | 08:33 |
fabbione | i don't mind switches and midrange routers | 08:33 |
spike | expecially traffic analysis, not really comparable with iptables logging / tcpdump | 08:34 |
spike | both debug and capture miss useful features | 08:34 |
spike | I'm running IOS 6.3, tho, something better might be available in 7.0 | 08:34 |
fabbione | yeah probably more bugs | 08:35 |
spike | eheheh | 08:36 |
=== allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server | ||
spike | what it is really scaring is default licences wont support aes, so u're stuck to DES | 08:36 |
fabbione | useless | 08:37 |
fabbione | is it at least 3DES? | 08:37 |
fabbione | perhaps one day i will show you how to hack the vpn client :) | 08:38 |
spike | fabbione: ehehe, I'll keep waiting for that day :) | 08:38 |
fabbione | spike: eheh | 08:39 |
fabbione | i am off now | 08:39 |
fabbione | cya tomorrowq | 08:39 |
=== jbwiv [n=jbwiv@shell3.sea5.speakeasy.net] has joined #ubuntu-server | ||
jbwiv | hey guys, what is the status of ubuntu-server? Is it ready for use, or should I stand by? I've got a Suse server that just got hacked, and thinking about either Debian or Ubuntu... | 08:51 |
lionelp | hey jbwiv | 08:53 |
lionelp | you can start using Ubuntu as a server | 08:53 |
lionelp | some improvement will occur on the next release, but there is since the breezy release (5.10) a server release | 08:54 |
jbwiv | lionelp: will I need to wipe and reinstall in the next release | 08:55 |
Unfun | No | 08:55 |
jbwiv | or can I apt-get dist-upgrade? | 08:55 |
lionelp | absolutely no ! | 08:56 |
lionelp | yeah, just dist-upgrade | 08:56 |
jbwiv | good, good | 08:56 |
jbwiv | does apache by default run chrooted? | 08:56 |
jbwiv | in the server version? | 08:56 |
lionelp | no | 08:56 |
lionelp | it is the classical install, like the Debian one | 08:56 |
jbwiv | lionelp: is there a package that will do this easily? Ah...ok. Is harden and bastille available via apt? | 08:57 |
=== ubijtsa [n=ubijtsa@karlsson.force9.co.uk] has joined #ubuntu-server | ||
lionelp | jbwiv: a package to easily do that is planed but not yet available | 08:57 |
lionelp | yes, harden and bastille are available via apt | 08:58 |
jbwiv | lionelp: ok, is harden and bastille available, as it is in debian? | 08:58 |
jbwiv | ok, thanks ;) | 08:58 |
lionelp | you can check it on http://packages.ubuntu.com | 08:58 |
jbwiv | lionelp: one last question... | 08:58 |
lionelp | no pb :) | 08:58 |
spike | jbwiv: just in case: it's technically a *very* poor countermeasure, but mounting /tmp noexec stops 99% of the attacks, since they're as poor as the countermeasure itself | 08:58 |
jbwiv | what would you argue is the reason to go with ubuntu server in it's current state, as opposed to debian? | 08:58 |
spike | hey ubijtsa | 08:59 |
lionelp | jbwiv: not to be obliged to wait three years for a new release :) | 08:59 |
jbwiv | spike: heh...here's what I faced this morning: wwrun 20533 1 0 Feb16 ? 00:00:00 /tmp/.tmp/public_html/s | 09:00 |
jbwiv | > 67.15.63.112 53 | 09:00 |
lionelp | on the next release (Dapper, that will be available in april), some meta packages and a support for 5 years will be available | 09:00 |
spike | jbwiv: that in a few months u'll have chances to seamlessly get lots of server related improvements | 09:00 |
ubijtsa | lo spike | 09:00 |
jbwiv | woops...well, you get the picture. | 09:00 |
jbwiv | exploit running out of tmp on the suse box ;) | 09:00 |
spike | out ot /tmp ? | 09:00 |
jbwiv | spike: yep | 09:00 |
jbwiv | so, you're advice is wise ;) | 09:01 |
spike | that doesnt look out of /tmp to me.. | 09:01 |
jbwiv | mounting noexec | 09:01 |
spike | aaah, ok | 09:01 |
jbwiv | /tmp/.tmp/public_html/s | 09:01 |
spike | out of tmp, I read it as , not in /tmp | 09:01 |
ubijtsa | hmm.. /tmp should probably be mounted nodev, noexec | 09:01 |
spike | yep | 09:01 |
jbwiv | the command was /tmp/.tmp/public_html/s > 67.15.63.112 53 | 09:01 |
spike | yes yes, sorry, just misunderstood ur comment "out of tmp" | 09:01 |
jbwiv | only way I caught it is the damned thing was DOS'ing my firewall | 09:01 |
jbwiv | ah, ok | 09:01 |
jbwiv | so, guys, what you're telling me is that ubuntu-server is ready for use, regardless, right? It doesn't seem to be very buzzy in terms of community and portal, but I may be not looking in the right place. That was my only concern. I use it on the desktop ;) | 09:02 |
spike | indeed, I brought up to attention that more than once, but they said "it's ok to run it within the ubuntu framework" | 09:03 |
spike | jbwiv: it's ready, just not super-accessoried 'till april | 09:04 |
spike | jbwiv: but you wont lose anything compared to debian, and have a huge gain in a few months without reinstalling | 09:04 |
jbwiv | spike: done deal then...thanks! | 09:04 |
jbwiv | by the way...very glad to see this project in existance! | 09:05 |
=== anto9us [n=anthony@cpc3-ptal1-5-1-cust83.swan.cable.ntl.com] has joined #ubuntu-server | ||
spike | I'm off, c u guys | 09:17 |
ubijtsa | I am seeing some _really_ bizarre things in kde 3.5.1 | 09:34 |
ubijtsa | xkb is b0rked to the point I have had to disable it.. no keymaps available etc.. | 09:35 |
=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server | ||
jbwiv | quit | 10:01 |
=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server | ||
=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!