| === fernando [n=fernando@unaffiliated/musb] has joined #ubuntu-server | ||
| === fujin [i=aj@unaffiliated/fujin] has joined #ubuntu-server | ||
| === YourMomsHero [n=cirish@phx1.redefining-it.net] has left #ubuntu-server [] | ||
| === stevenrushing_ [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| stevenrushing_ | howdy howdy, anyone about? | 01:37 |
|---|---|---|
| Burgundavia | on my way out | 01:43 |
| stevenrushing_ | aaaa | 01:43 |
| stevenrushing_ | have a moment? | 01:43 |
| stevenrushing_ | =) | 01:43 |
| Burgundavia | if it is quick | 01:43 |
| stevenrushing_ | how do you access outside of your user folder in server? | 01:44 |
| stevenrushing_ | i can't access outside. i can't login as root. i can sudo things, but can't get out of my folder | 01:44 |
| stevenrushing_ | (maybe that is quick, not sure. =) | 01:44 |
| Burgundavia | root is disabled | 01:45 |
| Burgundavia | if you mean how do you move around, you use cd | 01:45 |
| stevenrushing_ | i get cd | 01:45 |
| Burgundavia | right | 01:45 |
| Burgundavia | and it tells you don't have permission to view anything outside /home? | 01:45 |
| stevenrushing_ | but it won't let me see anything outside my user folder... | 01:46 |
| stevenrushing_ | right | 01:46 |
| Burgundavia | you cannot ls the folders? | 01:46 |
| stevenrushing_ | =) thank you very much | 01:47 |
| stevenrushing_ | sorry to waste your time. =) | 01:47 |
| === YourMomsHero [n=cirish@phx1.redefining-it.net] has joined #ubuntu-server | ||
| stevenrushing_ | lalala a few moments of someone's time? =) simple stuff mostly | 01:58 |
| stevenrushing_ | as Burgundavia has discovered =) | 01:58 |
| === Scunizi [n=Scunizi@ip72-197-240-36.sd.sd.cox.net] has joined #ubuntu-server | ||
| === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| === sahafeez [n=sahafeez@ip68-6-223-156.sd.sd.cox.net] has joined #ubuntu-server | ||
| === infinity2 [n=adconrad@cerberus.0c3.net] has joined #ubuntu-server | ||
| === player2 [n=ksluder@144.126.12.138] has joined #ubuntu-server | ||
| player2 | :sigh: Darwin sucks | 03:30 |
| player2 | back to ubuntu... | 03:31 |
| player2 | has anyone ever successfully configured pam_ldap and libnss-ldap to talk to a Mac OS X Server OpenLDAP server? | 03:31 |
| player2 | `ldapsearch -x uid=diradmin |grep dn` gives me 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu' | 03:33 |
| player2 | but `ldapsearch -D 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu` fails with 'user not in database' | 03:33 |
| === stevenrushing_ [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| stevenrushing_ | needing some help making my server accessable outside my network if possible... | 03:53 |
| === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server | ||
| === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has left #ubuntu-server [] | ||
| === tcarter [n=tcarter@c-71-56-89-70.hsd1.ga.comcast.net] has joined #ubuntu-server | ||
| === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-server | ||
| === h4wk0 [n=h4wk@89.241.234.81] has joined #ubuntu-server | ||
| === arturaz [n=arturaz@2002:57f7:4d58:0:0:0:0:3] has joined #ubuntu-server | ||
| === Ansjovis [n=Taurus@ip385.pitecom.riksnet.se] has joined #ubuntu-server | ||
| === Ansjovis [n=Taurus@ip385.pitecom.riksnet.se] has left #ubuntu-server [] | ||
| === cy_ [n=haha@unaffiliated/cy/x-000000001] has joined #ubuntu-server | ||
| cy_ | hello | 12:17 |
| cy_ | is there a way to install ubuntu-server when i only have ssh access to a started rescue system ? | 12:17 |
| h4wk0 | Explain further | 12:21 |
| cy_ | well.. i have a debian system installed on a server.. now i can reboot it into a rescue system (where i can mount my original system lets say under /mnt/debian) .. i would now like to install ubuntu-server from there on.. | 12:22 |
| cy_ | the live system is also based on debian, so there is "debootstrap" present.. | 12:22 |
| cy_ | also: http://ubuntuforums.org/archive/index.php/t-125936.html ... is a question im asking myself too.. | 12:30 |
| === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| === Nafallo [n=nafallo@ubuntu/member/nafallo] has joined #ubuntu-server | ||
| === rainbow` [n=ra1nb0w@host86-232-dynamic.4-87-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| === cy_ pokes you all with a stick | ||
| pipes | ouch | 01:03 |
| cy_ | omg | 01:04 |
| cy_ | youre alife! :D | 01:04 |
| cy_ | alive* | 01:04 |
| cy_ | i always get that wrong | 01:04 |
| pipes | kinda, as alive as one can be after a few bottles of wine | 01:04 |
| pipes | as to your question. I really dont know =\ | 01:05 |
| Kamping_Kaiser | with specifiying a range of ports in iptables is it '50-100' or '50 - 100' (spaces or not) | 01:05 |
| pipes | 1-2 afaik | 01:05 |
| pipes | no spaces | 01:05 |
| Kamping_Kaiser | bugger. oh well | 01:05 |
| Kamping_Kaiser | cy_, install ubuntu, then strip out the packages you dont need (should be 5 min job with debfoster) | 01:06 |
| cy_ | debfoster ? mhhhhhhh | 01:07 |
| cy_ | yeah i am debootstrapping atm | 01:07 |
| cy_ | doing a cross install using this tutorial: http://ftp.ubuntulinux.org/ubuntu/dists/warty/main/installer-i386/current/doc/manual/en/apcs03.html .. seems kinda out-dated .. but we'll see | 01:07 |
| cy_ | urm | 01:11 |
| cy_ | any way to select grub as default bootloader and not lilo ? | 01:11 |
| Kamping_Kaiser | install it should do | 01:13 |
| cy_ | yeah i just noticed | 01:14 |
| cy_ | *g | 01:14 |
| cy_ | thanks tho :) | 01:14 |
| Kamping_Kaiser | :) | 01:14 |
| cy_ | ok | 01:28 |
| cy_ | it worked | 01:28 |
| cy_ | hurray! *g* | 01:28 |
| cy_ | # apt-cache search ubuntu-server | 01:28 |
| cy_ | edubuntu-server - edubuntu servers | 01:28 |
| cy_ | ubuntu-serverguide - The Ubuntu Server Guide | 01:28 |
| cy_ | but no server package :( | 01:29 |
| Kamping_Kaiser | its probalby the -base and -minimal seeds, plus a few extras | 01:40 |
| === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has left #ubuntu-server [] | ||
| === jsgotangco [n=jsg123@ubuntu/member/jsgotangco] has joined #ubuntu-server | ||
| === tcarter [n=tcarter@c-71-56-89-70.hsd1.ga.comcast.net] has joined #ubuntu-server | ||
| === ampache [n=charliej@72.24.69.50] has joined #ubuntu-server | ||
| === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
| === coNP_ [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
| === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
| === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
| ampache | Is this the right channel to discuss php web app packaging | 05:34 |
| mralphabet | try ubuntu-motu | 06:33 |
| mralphabet | well that's not the right channel | 06:34 |
| ampache | Ubuntu mentoring front desk pointed me here that's why I ask | 06:34 |
| mralphabet | I was right, just typed it wrong | 06:36 |
| mralphabet | try #ubuntu-motu | 06:37 |
| ampache | k thanks | 06:37 |
| === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| === gnilor [n=gnilor@d51A5D5AD.access.telenet.be] has joined #ubuntu-server | ||
| === ampache [n=charliej@72.24.69.50] has left #ubuntu-server ["Ex-Chat"] | ||
| === ra1nb0w [n=ra1nb0w@host86-232-dynamic.4-87-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| === kupesoft [n=dave@CPE00119583e9ae-CM0013718cb08a.cpe.net.cable.rogers.com] has joined #ubuntu-server | ||
| === coNP_ [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
| === williubu [n=willi@ip51cfad89.direct-adsl.nl] has joined #ubuntu-server | ||
| williubu | Hello to everyone! | 08:42 |
| === rainbow` [n=ra1nb0w@host109-160-dynamic.56-82-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| williubu | Ive installed on a Notebook in free partion hda3 ubuntu-server feisty 7.04 | 08:43 |
| williubu | installation a usual with no problems, | 08:43 |
| williubu | but after restarting, loading grup from mbr, system hangs and shows "Int14: CR2 ..." | 08:44 |
| williubu | but if i select the old ubuntu dapper on hda7, no problems at all. | 08:44 |
| williubu | Ive check in /boot/grub/menu.lst and cant detect any errors. | 08:45 |
| williubu | Any ideas ? | 08:45 |
| === williubu [n=willi@ip51cfad89.direct-adsl.nl] has left #ubuntu-server ["Verlassend"] | ||
| === E-Jey [n=ad@84-245-25-41.dsl.cambrium.nl] has joined #ubuntu-server | ||
| === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-server | ||
| === h4wk0 [n=h4wk@84.13.255.104] has joined #ubuntu-server | ||
| === qman [n=qman@24-231-215-111.dhcp.bycy.mi.charter.com] has joined #ubuntu-server | ||
| qman | hello everyone, I was hoping to get some suggestions...I'm trying to set up a ubuntu box as a router/firewall, DNS, and DHCP server for my network, but I'm having a nightmare just trying to get it working. My biggest problem is with firewall software. See, iptables is rather confusing, and I just can't find any firewalling software (or software interface) that's simple enough and works. | 10:30 |
| qman | I found some software I liked, called shorewall, but I can't get it working | 10:30 |
| qman | No matter what I do, once I start the firewall, no packets will go in our out any interfaces | 10:31 |
| qman | So, I was hoping someone here could suggest something else that would be more simple to set up than iptables. | 10:32 |
| \sh | qman, firewalls are concepts, what you mean is an easy way to maintain a packet filter | 10:33 |
| qman | yes, that's what I mean | 10:33 |
| qman | sorry for the incorrect terms | 10:33 |
| \sh | qman, try fwbuilder | 10:33 |
| \sh | but it shouldn't be run on your packet filter server | 10:33 |
| qman | I did try fwbuilder, but there are so many options, I couldn't figure out how to use it | 10:34 |
| qman | the machine I'm working with has four interfaces | 10:34 |
| qman | three different internal networks, and the internet | 10:35 |
| \sh | qman, don't you have someone who has a clue about network security? because without the knowledge, you are lost anyways,even with a gui...you break more things then you fix | 10:36 |
| \sh | first read something about iptables | 10:36 |
| \sh | on http://www.netfilter.org/ there are lot of examples and good howtos how to manage netfilter/iptables | 10:37 |
| qman | well, I do know a lot about networking, and I have set up iptables before with some simple filtering rules | 10:37 |
| qman | but only on a system with one interface | 10:37 |
| \sh | try it at home with your local box, to succeed with some easy things, e.g. nat | 10:37 |
| \sh | then try to make it big, with more then one interface :) | 10:37 |
| \sh | or buy some good things from securecomputing or cisco, even when cisco is crap in things like packetfilters and FW concepts | 10:38 |
| qman | well, I guess the major problem is that I have more than two sides | 10:39 |
| \sh | qman, so try to work on the first interface (e.g. the internet one) and then work up to the next three | 10:40 |
| qman | shorewall simplified it fairly well, but it doesn't do me any good if it doesn't run | 10:40 |
| slackwarelife | qman: you can use arno iptables: http://rocky.eld.leidenuniv.nl/ (there is a pkg build for Ubuntu/Debian). I use it on my Slackware Server ;) | 10:49 |
| slackwarelife | the config file is well comment | 10:50 |
| \sh | slackwarelife, it won't give him any help....if he has trouble to understand what's going on when he configure 4 interfaces in different ways with different rules, a gui won't help...he should start with the frontnetwork and work up to the other network interfaces | 10:51 |
| qman | I understand how it works, at the packet level | 10:52 |
| qman | I just don't understand how to actually configure the software | 10:52 |
| qman | to do what I want it to do | 10:52 |
| === kupesoft_ [n=dave@CPE00119583e9ae-CM0013718cb08a.cpe.net.cable.rogers.com] has joined #ubuntu-server | ||
| \sh | qman, that's what I meant.. | 10:55 |
| \sh | fwbuilder is quite easy to understand, when you know how netfilter works in general and how the packets flow between the interfaces | 10:56 |
| qman | well, the problem with fwbuilder I had, was that I couldn't figure out where to put which rules so that they would be applied correctly | 10:57 |
| qman | none of the presets had any relevancy to my goal, so there was no starting ground to go from | 10:57 |
| qman | for example | 10:58 |
| qman | if I wanted to block traffic from "group 1" to "group 2", would I put the rule in the "group 1" tab, or the "group 2" tab? the software made it possible to do either, and neither seemed more correct | 10:59 |
| === Nafallo [n=nafallo@ubuntu/member/nafallo] has joined #ubuntu-server | ||
| === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server | ||
| qman | all the documentation on the fwbuilder site seems to be beyond that level, and I couldn't find any help in that regard | 11:01 |
| \sh | you deny in group 2 that traffic flows from group 1 | 11:01 |
| \sh | or you deny traffic to go group2 in group1 depends what you really want...if you want a deny all all rule in group2 and opening up for special services, then deny all all in group 2 is better then deny all all to group2 in group1, just because it clutter up your rules a lot when you have to let other services go to group2 from group1..but this you have to decide. | 11:03 |
| qman | so it can go either way, even if it makes no effective difference? | 11:04 |
| qman | that clears up a lot of the confusion | 11:05 |
| \sh | qman, it makes an effective difference, not that you will see it in the first place, but depends on your network traffic...and depends if you want clean rules on different interfaces | 11:05 |
| qman | aside from the rules themselves, I didn't understand what the difference was if I denied traffic on it's way out of group 1, or on it's way in to group 2, given that I use specific source and destination of the groups themselves | 11:07 |
| \sh | the packet will stay a bit longer in the kernel ip packet queue | 11:08 |
| qman | ok | 11:08 |
| \sh | which can take cpu cycles | 11:08 |
| qman | so, performance wise, it's probably better to deny it sooner, but otherwise, doesn't really affect traffic | 11:09 |
| \sh | depending on your nettraffic | 11:09 |
| qman | ok, that really helps | 11:10 |
| qman | that was one of the big things I just couldn't rationalize | 11:10 |
| \sh | performance wise it's better to use a specialized appliance for this....but the sooner the better...if you don't need any services going to group2 you should block directly on the internet iface | 11:10 |
| qman | well, the box is almost 2GHz, I've only got a 5M/512k internet connection, and the priority is small business, so performance isn't critical | 11:12 |
| qman | ok, so now, the only thing left to really clear up, is the way fwbuilder associates an interface with a group and a network | 11:14 |
| qman | and I think this pdf should answer that | 11:14 |
| === peanutb [n=paulb@c-71-231-82-231.hsd1.or.comcast.net] has joined #ubuntu-server | ||
| peanutb | has anyone gotten a working asterisk install with the asterisk web config? | 11:16 |
| Burgundavia | which web config? | 11:16 |
| peanutb | i was thinking the digium one, but anything that works. | 11:17 |
| Burgundavia | there are two major ones, the digium one and the freepbx one | 11:19 |
| peanutb | which is easier to install? | 11:21 |
| peanutb | and has the most features? | 11:21 |
| foo | peanutb: Go install Trixbox and be done with it. | 11:40 |
| foo | ;) | 11:40 |
| peanutb | ok | 11:41 |
| peanutb | thanks | 11:41 |
| === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server | ||
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!