/srv/irclogs.ubuntu.com/2006/02/18/#ubuntu-server.txt

=== ealden [n=ealden@203.76.212.103] has joined #ubuntu-server
=== spike_ [n=spike@217.201.132.99] has joined #ubuntu-server
=== spike_ is now known as spike
nictukuinfinity, when you come back please let me know03:40
infinityI'm here.03:50
infinity(more or less)03:50
nictukuwhen you find some time, could you please check https://opensvn.csie.org/traccgi/nwu/trac.cgi/wiki  (NetworkWideUpdates)? milestone 1 is on the way03:57
infinityIs there meant to be more to the IRC quote in "other references"? :)04:00
infinityThe dangling "mvo" is a bit.. Odd04:00
nictukuah, that was "remember the nick of Michael Vogt" hehe04:01
=== infinity laughs.
infinityWhich xmlrpc/soap implementation were you planning on using?04:05
nictukucurrently it can trigger the clients to run the following tasks: cache update (apt-get update), package installation (apt-get install <pacakges>, list repositories and, the best part, list update candidates.04:05
infinityIf it's generally considered mature (and well maintained upstream), the fact that it's currently in universe is no big deal.  We can promote it if/when nwu is ready to be supported.04:05
infinityI also find it reasonably entertaining that we don't have a python xmrpc/soap extension in main, since we have the python kitchen sink in mian...04:06
infinitys/mian/main/04:06
nictukucurrently it uses SOAPpy and M2Crypto, both of which are in universe. I can remove m2crypto, maybe.04:06
nictukuindeed hehe. I spent the whole aftertoon asking me why there is no python soap in main hehe04:07
nictukuand asking in #ubuntu-* too =] 04:07
infinitypython-soappy is not only in main, it's in the default desktop.04:07
nictukuhmm04:07
nictukuby the way, is packages.ubuntu.com supposed to not accept multiple keys in the packages search form?04:08
nictukui could not search after, say, python soap04:08
infinityAs for crypto, python-pyopenssl (also in the default desktop) may work for you.04:08
infinityI dunno, I use "apt-cache search" for multiple key searches.04:09
nictukuI needed that to find dapper packages..04:09
infinityI only find packages.ubuntu.com handy to check versions of each package in each dist.04:09
nictukuyes, removing migrating from m2crypto to pyopenssl is in the todo list04:10
MarioMeyerwe would need to get python-sysinfo to main also..04:13
nictukuyeah, but it's not strictly needed for milestone104:14
nictukuinfinity, MarioMeyer, check out the "manager cli" working: http://paste.ubuntubrasil.org/1104:14
MarioMeyerthis will be great to use on server farms... :P04:15
nictukuI hope so04:16
infinitynictuku: Oh, and the reason you couldn't find an xmlrpc extension is because xmlrpclib is included in the main python package.04:16
nictukuhmm04:17
infinitySo, if you'd prefer to use basic xmlrpc instead of soap, that kills another dependency.04:17
nictukuthat would be better04:18
infinityI've never been a big fan of SOAP anyway.  Too bloated for anything I've ever needed xmlrpc for.04:18
infinityTo each their own, though.04:18
nictukuwell, I'll confess. python-soappy had a nice "/usr/share/doc/python-soappy/GettingStarted.txt.gz". That's why I used it in the first place hehe04:20
nictukuif you know of a sample code of xmlrpc + pyopenssl, I'd be interested04:21
infinityHeh.  Well, I don't mind either way.  I'll admit that I've done very little xmlrpc with python, so I have no strong opinions.04:21
nictukuah, it would be great if someone more experienced than me reviewed the architecture and security "features". MarioMeyer  had made some interesting notes and I need more of that04:39
nictukuMarioMeyer, I'll pay your honoraries when I get rich04:41
MarioMeyerhaha04:41
MarioMeyerjust pay a beer on FISL04:42
MarioMeyer:P04:42
nictuku:-)04:42
MarioMeyerinfinity, http://paste.ubuntubrasil.org/1204:47
MarioMeyeragent running on a machine ;P04:47
nictukuMarioMeyer, I updated it with the nwu list <your machine> update-candidates |wc result hehe04:50
MarioMeyerniiiice04:50
=== ajmitch__ [i=ajmitch@port169-55.ubs.maxnet.net.nz] has joined #ubuntu-server
=== oliver_savage [n=oliver_s@64.13.124.16] has joined #ubuntu-server
oliver_savageHey everyone, I just got a VPS with ubuntu running apache2, and just installed mod_python. I'm going to install postgresql shortly, are there any gotchas I should be aware of?06:24
oliver_savageanyone here using apache2?07:40
infinityYes.07:42
=== lbm [n=lbm@cpe.atm4-0-1301006.0x50a0824e.vgnxx6.customer.tele.dk] has joined #ubuntu-server
oliver_savagei've only used apach1.3 and just started using apache2, this site-enabled and sites-available directories of doing things, is it required? Is it worth using?08:08
oliver_savageer "way of doing things"...08:09
infinityIt's not "required", if you want to replace /etc/apache2 with your own configs completely, but it's definitely recommended, and makes a fair bit of sense once you get used to it.08:24
infinity(My old apache 1.3 config was pretty similar, though, with an /etc/apache/virtual directory for vhosting config snippets)08:24
oliver_savageOh, ok I was used to just defining all the virtual hosts in the httpd.conf file, I'd only ever configured one internet facing server before. I'm sniffing through the docs now. Thanks08:33
=== ubijtsa2 [n=anders@213.208.70.155] has joined #ubuntu-server
=== await [n=Alexande@adsl-70-137-160-236.dsl.snfc21.sbcglobal.net] has joined #ubuntu-server
awaitwaves to all!09:09
oliver_savagewaves back09:15
=== irvin [n=irvin@ubuntu/member/irvin] has joined #ubuntu-server
oliver_savageThis document; http://doc.ubuntu.com/ubuntu/serverguide/C/ch04s10.html, is well done.09:30
=== lionelp [n=lionel@10.21.96-84.rev.gaoland.net] has joined #ubuntu-server
oliver_savagecan anyone recommend, from experience, a fairly easy to admin, lightweight mail server for a server with no xwindows?09:38
fabbionepostfix09:47
oliver_savagethank you fabbione09:49
oliver_savageI'm putting together a step-by-step documentation for ubuntu 5.10 server on a VPS. Using apache2, mod_python, mail-server, multiple domains, most fun I've had all week.09:56
fabbionenice idea10:00
=== ubijtsa2 read something *very* nice on LKML last night
ubijtsa2libata will take over and drivers/ide will go away.. :)10:05
ubijtsa2*woohoo* <jump around for joy>10:05
maswannow if just those sata drivers beside 3ware would become stable and trouble-free.10:08
ubijtsa2maswan: in the Dell GX280 *spit* the sata (libata) drivers work fine10:09
maswanubijtsa2: Well, I've been running into evil corner cases with sata_sil lately. Onboard stuff seems fine, but you're screwed if you want pci cards for a few (>4) extra ports.10:10
ubijtsa2maswan: ah. sorry to hear that10:11
maswanWell, my current workstation needed 2.6.15 to support the sata_sis chip, but that was doable, if slightly inconvenient with breezy.10:12
=== ubijtsa2 was running a custom 2.6.15 for a good while
ubijtsa2mostly statically compiled to avoid requiring initrd10:24
ubijtsa2if the "libata drives all ?ATA" patch hits 2.6.16, I'll compile it myself for Dapper & Breezy10:26
ubijtsa2I aint gonna wait for Dapper+1 for that beauty10:26
infinityIf it actually works, we may be able to convince mdz to let it into our 2.6.15... It would solve a LOT of corner cases we have in udev and initramfs and such.10:28
ubijtsa2not to mention that all disk devices become /dev/sd*10:29
=== infinity nods.
infinityI'd welcome such a patch if it actually works, and if all the ide drivers are properly replaced and working.10:30
ubijtsa2even if mdz says no, I reckon many that know how to, will be running a kernel with that patch before long.10:30
infinityOh, I'm sure they will, I mean I'd like it in the default kernels to remove some of my headaches in some complex packages.10:31
ubijtsa2it's Alan Cox that is working on it, so when it is ready, it will be working..10:31
ubijtsa2I have lots of confidence in him :)10:32
fabbioneif all disks will become /dev/sd* it's really unlikely it will make dapper10:34
fabbioneupgrade from breezy will be hell10:35
ubijtsa2fabbione: fstab will be a bit af a pain yeah10:36
fabbioneit's not the only thing10:37
fabbionea lot of tools have /dev/hd* hardencoded10:37
fabbioneto do some really stupid tests10:37
fabbioneit's not a transition i wish to see in Dapper10:37
ubijtsa2yeah... but on the good side, getting shot of drivers/ide is a "Good Thing"10:38
fabbioneprobably10:38
fabbioneanywya it's not up to me10:38
ubijtsa2To be honest, I didn't think it'd make it into Dapper10:38
ubijtsa22.6.16 is to late to make the cut, and a backport into 2.6.15 will most likely be painful10:39
=== oliver_savage [n=oliver_s@64.13.124.16] has left #ubuntu-server ["Leaving"]
=== oliver_savage [n=oliver_s@64.13.124.16] has joined #ubuntu-server
=== bustacap [n=bustacap@ubuntu/member/bustacap] has joined #ubuntu-server
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server
spikeanybody would be able to comment what's wrong with fuse that encfs inclusion has been refused?11:45
spikeI cant remember the url, could google it out if necessary, but I read a page where they said that, without additional details or anything11:46
=== MarioMeyer [n=meyer@ubuntu/member/mariomeyer] has joined #ubuntu-server
hunger2~12:27
hungerTonio_: Why is there DB on the debian-file-icon?12:31
hungerSorry, wrong channel again!12:32
=== lapo [n=bat@host166-243.pool8546.interbusiness.it] has joined #ubuntu-server
lapohi01:05
lapolo interface won't came up on boot here, I have an all lvm setup with a /var on an lv, since I think /var is not mounted afterI have a01:11
laposorry01:12
lapoI think /var is not mounted early enough, I can see ifupdown complaining that there is not /var/run01:12
fabbionelapo: file a but http://launchpad.net/malone/01:13
lapofabbione, against what I should file the bug? init?01:13
fabbioneifupdown01:15
lapok, tnx01:15
=== allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server
=== mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server
=== ubijtsa_ [n=ubijtsa@karlsson.force9.co.uk] has joined #ubuntu-server
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== ubuntulog [i=ubuntulo@trider-g7.fabbione.net] has joined #ubuntu-server
=== Topic for #ubuntu-server: ubuntu-server discussions and support | for general support see #ubuntu | U. S. (stable) at http://tinyurl.com/b3jek | U. S. (Devel) at http://tinyurl.com/cllfu | U. S. dapper specs: http://tinyurl.com/aen9b | U. S. forums at http://tinyurl.com/b77qg | ubuntu-server@lists.u.c is up and running | searchable packages list: http://packages.ubuntu.com
=== Topic (#ubuntu-server): set by spike at Thu Jan 5 05:24:37 2006
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== spike [n=spike@unaffiliated/spike] has joined #ubuntu-server
=== christl [n=chris@chello212186104043.37.11.vie.surfer.at] has joined #ubuntu-server
=== christl [n=chris@chello212186104043.37.11.vie.surfer.at] has joined #ubuntu-server
christlanyone here using clamav?07:02
lionelpyep07:06
christlone question: is under ubuntu something similar to the debian-volatile repository?07:11
christlso, that the signatures/engine are always up-to-date07:12
lionelpto my knowledge, the answer is no07:12
lionelpsignatures are idependant, with freshclam you can get new signatures everyday07:12
lionelpthat is not the case for the engine, ok07:13
lionelpit would be a good idea... I do not know if it is planned...07:13
christlhave you ever tried the debian-repository? (with pinning .. only for clamav)07:14
lionelpi have not tried07:14
=== lionelp [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server
=== spike [n=spike@81-208-83-227.fastres.net] has joined #ubuntu-server
awaitfabbione ping08:24
=== mkrufky [n=mk@68.160.103.77] has joined #ubuntu-server
mkrufkyim trying to set up apache2 using php to access a mssql database, and i get this error: Fatal error:  Call to undefined function mssql_connect() --  all resources tell me that i must recompile php with freetds support, but I was under the impresseion that Ubuntu Just Works (tm) ...  I already have dev-freetds and sqlrelay-freetds packages installed09:00
mkrufkywhat is my next step?09:01
=== christ1 [n=chris@chello212186104043.37.11.vie.surfer.at] has joined #ubuntu-server
=== ajmitch_ [i=ajmitch@port163-136.ubs.maxnet.co.nz] has joined #ubuntu-server
=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server
=== christ1 [n=chris@chello212186104043.37.11.vie.surfer.at] has left #ubuntu-server []
=== allee [n=ach@allee.exgal.mpe.mpg.de] has left #ubuntu-server ["Konversation]
=== nictuku [n=yves@200.163.22.112] has joined #ubuntu-server
=== bert_ [n=bert@c529def15.cable.wanadoo.nl] has joined #ubuntu-server
=== tiris [n=tiris@cowbell.kne.com] has joined #ubuntu-server
=== mkrufky [n=mk@68.160.103.77] has left #ubuntu-server []
tirisanyone home?11:31
tirisI have a quick question about ubuntu server (not sure if this is the place to get it answered).11:33
spiketiris: go on11:34
tirisokay, I have installed a server and was going to use it for a fileserver...I also want to access it from outside the LAN...like at work.11:35
=== Pygi [n=mario@83-131-241-74.adsl.net.t-com.hr] has joined #ubuntu-server
tirisbut I am afraid of connecting it to the internet because I know nothing about security11:36
Pygifabbione: ping11:36
=== lbm [n=lbm@x1-6-00-13-10-7a-d1-e4.k233.webspeed.dk] has joined #ubuntu-server
Pygitiris: what's the prob?11:37
tirisany suggestions for quick reading material on tools and practices for server security for ubuntu?11:37
tiriskeep in mind that I am really new to the linux jive and really, really new to the linux-server jive11:39
spiketiris: then dont really expose a box to the net11:44
spiketiris: there's not quick reading. u can start with the debian security howto, that will apply to ubuntu as well11:45
tirisI want to learn how to safely expose the box to the net.11:45
tirisI would like to be able to access my files from work.11:45
spiketiris: sshfs sounds like ur best bet judging from what u're saying11:46
spikeit's fairly easy to secure ssh, and it seems the file sharing is limited to you11:46
spikessh daemon*11:46
tirisI am a little familiar with ssh. I know how to use it and set it up, but what vonerabilities am I opening myself to when I connect to the Internet...how easy is it for someone to get access when they are not supposed to?11:48
spiketiris: either an ssh bug, and let's say it's quite unsual, or a weak password. ssh bruteforcing is *very* common, and weak password is they way they go11:50
tirishow do I know when an unauthorized attempt was made?11:51
tirishow do I know when an unauthorized attempt was made and succeeded and what the user did while having access?11:51
spiketiris: what u can do is employ an ssh keys solution, that will prevent pwd bruteforcing totally disabling pwd based access11:53
spiketiris: /var/log/auth.log and lastlog command11:53
tiriscan you point me to a good HOWTO on this ssh keys setup?11:55
spiketiris: http://www-128.ibm.com/developerworks/library/l-keyc.html11:56
spikeas the big black line at the beginning says, it's a 3 part tutorial, read all of them, not just that one11:56
spikeat least part 1 and 2, u dont need 3 at this stage11:57
tirisokay. Thanks this should get me started. Thanks again.11:57
spiketiris: read the secure debian howto too please11:58
tiriswhat is the url?11:58
spikeu can find it urself, it's not hard11:59
spikecheck out the documentation section on debian.org, it's there11:59
tirisis it an official howto from debian?11:59
spikeyes11:59
tirisokay thanks11:59
Pygione of the good tutorials for unixes/linuxes in general is also a freebsd documentation12:00

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!