=== zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server [05:51] morning === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server [05:58] hi fabbione === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server [06:05] fabbione, i'm a volunteer developer of a network wide updates tool for ubuntu, temporarily named "nwu". Is there any chance that it is considered for being distributed in main at dapper+1? [06:06] nictuku: you need to talk with mvo [06:06] he is/was in charge of that Spec iirc [06:07] Nice. thank you === zenrox [n=zenrox@71.115.198.118] has joined #ubuntu-server === vir [n=vir@ACC91766.ipt.aol.com] has joined #ubuntu-server === neuralis_ [n=krstic@hagen.kdb.hr] has joined #ubuntu-server === IMRMooW [i=sular@Quebec-HSE-ppp211846.qc.sympatico.ca] has joined #ubuntu-server [07:22] -IMRMooW:#ubuntu-server- New game started, http://sre.servegame.com : This is a webgame based on SOLAR REALMS ELITE, a famous BBS game back in 1992 (Earth2025/BRE fans are welcome) === acehunky [n=chat_jok@221.128.139.70] has joined #ubuntu-server === ownerx [n=owner@d209-121-40-228.bchsia.telus.net] has joined #ubuntu-server [08:01] hello [08:03] is there any howto on building custom Ubuntu Server Edition distro? [08:06] acehunky: it's the same procedure as getting a custom image for desktop [08:06] there is something written up in the wiki [08:09] fabbione: through the list of packages i can see, Openoffice and other bulky packages which probably i dont need .. so finding a way to have a completely stripped down version of Ubuntu Server Edition [08:11] a server install is stripped down acehunky [08:11] its not apache or anything you have to decide what packages to install [08:20] acehunky: these packages will go away soon [08:20] yes we are aware that there is a bit of junk on CD [08:21] acehunky: i am waiting for Kamion to fix some code that generate the package list that goes on different CDs [08:21] so that we can acutally clean it properly [08:21] but it's not of a big concern at the moment [08:21] it will for sure happen way before release [08:42] ok .. fabbione: i was working on getting asterisk and related packges on server edition .. === neuralis [n=krstic@solarsail.hcs.harvard.edu] has joined #ubuntu-server === spike [n=spike@unaffiliated/spike] has joined #ubuntu-server === beezly [n=beezly@2001:630:63:16:230:1bff:feb7:2528] has joined #ubuntu-server === lbm [n=lbm@x1-6-00-13-10-7a-d1-e4.k233.webspeed.dk] has joined #ubuntu-server [12:22] hey neuralis [12:26] neuralis: ping me when you are around [12:34] fabbione: hey [12:35] neuralis: yo [12:35] fabbione: i'm in a crazy rush, need to split in a few minutes. what's up? [12:35] neuralis: i have been checking some stuff around [12:35] ok.. how long before u are back online? [12:36] 14-15hrs, but i can stick around for 10-15 minutes now if it's important [12:36] ok [12:36] i did check drbd, ganglia and i was looking at heartbeat right now [12:37] drbd is kinda of hair .. it doesn't really work on != x86* [12:37] hmm, yuck [12:37] and there is the major issue that the device can't be mounted on more than one node [12:37] GFS support is not there yet [12:37] that makes it a bit hairy imgo [12:37] imho [12:37] well [12:38] non-x86 is a much bigger problem [12:38] the only-one-mount situation is almost by design; drbd was designed for failover, not parallel use [12:38] i did test ia64 and it farts on missing ioctl [12:38] ganglia packages are utterly obsoleted [12:38] and they are lacking a lot of stuff [12:39] like the web interface [12:39] as it stands i can't take them over or consider to update them to a full new upstream release [12:39] 2.5.7 -> 3.0.x [12:39] hmm. alright. [12:40] next is heartbeat/keepalived/ipvsdam [12:40] pitti is looking into the latter [12:40] if we can find someone to package the new upstream release, do you think the server team can get a uvf exception for it? [12:40] there are no packages around.. even the debian maintainer is MIA [12:40] yeah, i meant package it from scratch [12:40] uvf exception at this point starts to be hard but it is still doable [12:40] okay, i'll ping ivoks and see if he has time to put it together [12:41] for heartbeat i found also heartbeat-2 [12:41] former in main [12:41] latter in universe [12:41] which one do we want? [12:41] i think we should stick with what's already in main [12:41] but you might know better [12:41] i'm inclined to agree, and i've never actually heard of heartbeat-2, let me see what it is [12:41] the difference in packaging is kinda of wide.. a lot of different lives here and there [12:42] ah. they just farmed out some of the functionality to the LRM and CRM: http://linux-ha.org/NewHeartbeatDesign [12:43] this close to feature freeze, i'd just say let's stick with what we have in main. heartbeat-2 doesn't introduce anything that we desperately need, and we can consider it for replacing heartbeat in dapper+1. [12:43] ok agreed [12:43] so we will work out only keepalived and ipvsadm [12:44] the rest deferred to dapper+1 [12:44] sounds good. i'll check around about ganglia, but for now it's safe to assume that's also getting deferred. [12:44] well considering we have no HPC solutions anyway.. i see very little point in pushing ganglia [12:45] it's not really a HPC monitoring solution, though -- it monitors server farms of any kind [12:45] ok [12:46] let see if we can get the new upstream version packaged in a decent way [12:47] yeah. i'll send an e-mail to ivoks in a few minutes, cc you. [12:47] ok [12:47] thanks dude [12:47] have fun [12:47] sorry for taking so much time [12:47] no problem, thanks for all your work [12:47] take care [12:48] you too === ubijtsa2 [n=anders@213.208.70.155] has joined #ubuntu-server === Nos [n=Nos-F@244-93-syr-ny.dialin.a-315.westelcom.com] has joined #ubuntu-server === shefzilla [n=blah@80.74.174.164] has joined #ubuntu-server === Nos [n=Nos-F@244-93-syr-ny.dialin.a-315.westelcom.com] has left #ubuntu-server ["Leaving"] === lionelp_ [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server === mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server === mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server === ubijtsa [n=anders@213.208.70.155] has joined #ubuntu-server === allee [n=ach@allee.exgal.mpe.mpg.de] has joined #ubuntu-server [06:04] Anyone here use openldap for nss and pam? [06:06] As root, I can getent passwd or shadow, and see my user account in ldap. I can also login as my user in ldap. However, when I am logged in, I have "I have no name!" as a username, and I cannot, as the user, getent passwd. === lbm [n=lbm@x1-6-00-13-10-7a-d1-e4.k233.webspeed.dk] has joined #ubuntu-server [06:42] Okay, next issue. [06:42] Is is possible to get chsh to work with changing the users' shell within ldap? === mgalvin [n=mgalvin@ubuntu/member/mgalvin] has joined #ubuntu-server [07:18] anybody got anything like hp ultrium storageworks 215 ? [07:19] googling gave me not even 100 results.. :/ [07:19] I found some drivers for rh9 on the hp pages, thinking of alienize 'em and see where I can get with that, but it sounds like it'll be a mess :/ [07:20] spike: what the hell is that? [07:20] Sweet, [07:21] fabbione: http://h18006.www1.hp.com/products/storageworks/ultrium215/specs.html [07:21] I got ldap user accounts working, that even chfn and chsh works with. :D [07:21] spike: does the scsi controller see it? [07:22] if so you have the best driver you can ever imagine (after modprobe st of course) [07:22] that's called tar :) [07:23] fabbione: they've got windoze on that machine atm, migrating the backup solution to linux. I'll boot a liveCD and see how it goes (that thing isnt even working with windoze but I dont really trust their admin) [07:23] fabbione: :) === spike is gonna use bacula [07:23] spike: well i don't trust windows.. [07:23] anyway tar can make tapes rock and roll [07:23] I found that thingie mentioned on some amanda ML too [07:23] i know that for experience [07:24] ok, I'll boot the livecd, see how it goes, and investigate tar and tapes [07:24] the most important thing is the block size of the device [07:24] unfortunately this is my first experience with tapes [07:24] but I had to start somewhere :) [07:24] let me see if i can find my old scrpt [07:25] fabbione: that'd be awesome, but pointers to doc would be even better. I'm referring to the usual tldp and bacula docs so far. if you have anything bookarked I'd appreciate that too. [07:25] no sorry i don't have it anymore [07:25] spike: i had this old compaq tape [07:25] you see them as stX devices [07:26] and i did use tar.. [07:26] the trick was to tell tar to use a block size = to the one on the tape device [07:26] that's all [07:26] otherwise you use tar as you would do normally [07:27] clearly with a tape you need to learn a few more tricks that stuff like amanda & co. will do for you [07:27] but otherwise there is no real difference [07:27] there is a tape util somewhere to format/erase tapes [07:27] food is here [07:27] bbl [07:27] ok, tnx a lot, have a nice dinner [07:58] Psi-Jack: Feel free to add a LdapEverywhere wiki page: 1) for login change ... 2) for ch* cmd change ... etc ;) [07:58] Psi-Jack: I will soon need a such good reference :) [07:59] allee: I think I will, since it seems not to be done, yet. And I got the information off a Debian/Ubuntu help site. The chfn/chsn ldap tools are actually in libnet-ldap-perl's package. [08:03] Psi-Jack: hmm, nothing in /usr/bin or obvious in /usr/share/doc/libnet-ldap-perl/examples [08:03] The chfn and chsh scripts are in that examples dir. [08:04] http://wiki.acm.jhu.edu/w/Central_authentication === bert_ [n=bert@c529def15.cable.wanadoo.nl] has joined #ubuntu-server === ubijtsa2 [n=ubijtsa@karlsson.force9.co.uk] has joined #ubuntu-server [09:20] Does anyone know what groups in /etc/group are used for access allowance/restrictions to various things in Ubuntu? I'm trying to migrate most non-system-related gid's to LDAP, and would like to know which can be safely moved over. [09:32] Psi-Jack: I would say only > 1000. uid/gid 100 - 999: They are dynamicly allocated so it maybe that they are different on your hosts. But all gid < 1000 are handled by postinst script for you, so I don't see the gain to move them to ldap [09:32] allee: The gain, is to setup global and localized access/restrictions on a host-per-host basis. [09:32] Psi-Jack: < 100 are static, so you can create a copy of them in ldap [09:33] Like, the cdrom, dialout, dip, lpadmin, admin, adm, etc.. === ruaok [n=robert@ppp-69-239-143-60.dsl.snlo01.pacbell.net] has left #ubuntu-server ["Leaving"] [09:34] For those that are < 100 that is. [09:35] So what you're suggesting, mostly, is to duplicate those into LDAP, but keep the <100 gid's in there still? [09:35] Psi-Jack: I don't know what guid have to be available before ldap is available, therefore I suggested a copy [09:36] Hmm, i see. That is a safe idea.. I don't know if there's any issues with doing that, because when duplicating them into LDAP, getent group shows it as well. [09:36] Psi-Jack: I would feel comfortable if the would be a way to merge files and ldap group membership [09:37] Hehe [09:37] Psi-Jack: but it's just that I have not tried (yet). Maybe it works will with just group in ldap [09:37] s/will/well/ [09:37] What I'm going to be doing, IF I CAN remember it. Is making use of /var/db and making db-hashes of /etc/hosts, /etc/groups, etc.. [09:38] And going with nsswitch of db ldap files, relying more on the less-readable bdb hashes. [09:39] What the heck.. [09:39] Why is cupsys in the dialout group? LOL [09:39] Psi-Jack: faxes? [09:40] Hmm. Does cups actually have a fax sending feature? [09:41] Psi-Jack: there are several of them :) Only real problem is that the ipp and the Frontend don't support a required-as-input attribute so one is problem for the fax# [09:41] LOL [09:41] Yeah. That's why I like Kfax. :) [09:43] Psi-Jack: I wasn't really happy with kfax either (long time ago) [09:43] Oh, it's gotten quite a bit better since probably the last time you've used it. :) [09:44] I've heart the viewer side was replaced/enhances with multipage support [09:44] excelent. So far, so good on duplication to LDAP, and removing the local user<->group associations from the group file. [09:45] There's kfax and kfaxview, now yes. [09:47] Excelent. [09:47] I just tested it out, making sure credentials would work like that properly. Logged in a fresh new login user, and tailed /var/log/messages, and it worked. [09:49] kfaxview -> no multipage found -> [ok] -> crash. Nice enhancement :) [09:49] LOL. Wow. [09:50] Heh, I don't have any faxes to try that with. heh [09:51] Heck, I don't even use faxes anymore, myself. I don't even have a rj11-based phone line anymore. I'm all VoIP. [09:52] Psi-Jack is a lucky guy :) [09:52] It's actually CHEAPER to use VoIP in many cases. [09:54] Considering that, I spend about $20/mo on 6mbit-down/1.5mbit-up cable, with bare BASIC cable from TimeWarner, and roughly $12.22 for 3 months for SkypeIN w/voicemail, and whatever amount I use for SkypeOut per month at about $0.02/min, [10:02] Hmm, dangut,. [10:04] Now I can't load up adept, or kuser, because kdesu is saying my password is wrong. :/ [10:07] Hmm. but when I add myself to the LOCAL /etc/group:admin list, I can kdesu fine again. === Psi-Jack [n=psi-jack@cpe-70-112-220-160.austin.res.rr.com] has joined #ubuntu-server [10:51] Psi-Jack: without being in /etc/group:admin, does the command 'id' list admin for your userid? === lionelp [n=lionel@ip-128.net-82-216-65.rev.numericable.fr] has joined #ubuntu-server === Psi-Jack [n=psi-jack@cpe-70-112-220-160.austin.res.rr.com] has joined #ubuntu-server === olive [n=olivier@o.o6.fr] has joined #ubuntu-server [11:24] Well, this is starting to annoy the crap out of me. === ubijtsa [n=anders@213.208.70.155] has joined #ubuntu-server [11:43] HAH! [11:43] sudo doesn't consult nss at all! That's the problem!