=== fernando [n=fernando@unaffiliated/musb] has joined #ubuntu-server === fujin [i=aj@unaffiliated/fujin] has joined #ubuntu-server === YourMomsHero [n=cirish@phx1.redefining-it.net] has left #ubuntu-server [] === stevenrushing_ [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server [01:37] howdy howdy, anyone about? [01:43] on my way out [01:43] aaaa [01:43] have a moment? [01:43] =) [01:43] if it is quick [01:44] how do you access outside of your user folder in server? [01:44] i can't access outside. i can't login as root. i can sudo things, but can't get out of my folder [01:44] (maybe that is quick, not sure. =) [01:45] root is disabled [01:45] if you mean how do you move around, you use cd [01:45] i get cd [01:45] right [01:45] and it tells you don't have permission to view anything outside /home? [01:46] but it won't let me see anything outside my user folder... [01:46] right [01:46] you cannot ls the folders? [01:47] =) thank you very much [01:47] sorry to waste your time. =) === YourMomsHero [n=cirish@phx1.redefining-it.net] has joined #ubuntu-server [01:58] lalala a few moments of someone's time? =) simple stuff mostly [01:58] as Burgundavia has discovered =) === Scunizi [n=Scunizi@ip72-197-240-36.sd.sd.cox.net] has joined #ubuntu-server === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server === sahafeez [n=sahafeez@ip68-6-223-156.sd.sd.cox.net] has joined #ubuntu-server === infinity2 [n=adconrad@cerberus.0c3.net] has joined #ubuntu-server === player2 [n=ksluder@144.126.12.138] has joined #ubuntu-server [03:30] :sigh: Darwin sucks [03:31] back to ubuntu... [03:31] has anyone ever successfully configured pam_ldap and libnss-ldap to talk to a Mac OS X Server OpenLDAP server? [03:33] `ldapsearch -x uid=diradmin |grep dn` gives me 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu' [03:33] but `ldapsearch -D 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu` fails with 'user not in database' === stevenrushing_ [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server [03:53] needing some help making my server accessable outside my network if possible... === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has joined #ubuntu-server === stevenrushing [n=stevenru@user-10cm7r7.cable.mindspring.com] has left #ubuntu-server [] === tcarter [n=tcarter@c-71-56-89-70.hsd1.ga.comcast.net] has joined #ubuntu-server === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-server === h4wk0 [n=h4wk@89.241.234.81] has joined #ubuntu-server === arturaz [n=arturaz@2002:57f7:4d58:0:0:0:0:3] has joined #ubuntu-server === Ansjovis [n=Taurus@ip385.pitecom.riksnet.se] has joined #ubuntu-server === Ansjovis [n=Taurus@ip385.pitecom.riksnet.se] has left #ubuntu-server [] === cy_ [n=haha@unaffiliated/cy/x-000000001] has joined #ubuntu-server [12:17] hello [12:17] is there a way to install ubuntu-server when i only have ssh access to a started rescue system ? [12:21] Explain further [12:22] well.. i have a debian system installed on a server.. now i can reboot it into a rescue system (where i can mount my original system lets say under /mnt/debian) .. i would now like to install ubuntu-server from there on.. [12:22] the live system is also based on debian, so there is "debootstrap" present.. [12:30] also: http://ubuntuforums.org/archive/index.php/t-125936.html ... is a question im asking myself too.. === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server === Nafallo [n=nafallo@ubuntu/member/nafallo] has joined #ubuntu-server === rainbow` [n=ra1nb0w@host86-232-dynamic.4-87-r.retail.telecomitalia.it] has joined #ubuntu-server === cy_ pokes you all with a stick [01:03] ouch [01:04] omg [01:04] youre alife! :D [01:04] alive* [01:04] i always get that wrong [01:04] kinda, as alive as one can be after a few bottles of wine [01:05] as to your question. I really dont know =\ [01:05] with specifiying a range of ports in iptables is it '50-100' or '50 - 100' (spaces or not) [01:05] 1-2 afaik [01:05] no spaces [01:05] bugger. oh well [01:06] cy_, install ubuntu, then strip out the packages you dont need (should be 5 min job with debfoster) [01:07] debfoster ? mhhhhhhh [01:07] yeah i am debootstrapping atm [01:07] doing a cross install using this tutorial: http://ftp.ubuntulinux.org/ubuntu/dists/warty/main/installer-i386/current/doc/manual/en/apcs03.html .. seems kinda out-dated .. but we'll see [01:11] urm [01:11] any way to select grub as default bootloader and not lilo ? [01:13] install it should do [01:14] yeah i just noticed [01:14] *g [01:14] thanks tho :) [01:14] :) [01:28] ok [01:28] it worked [01:28] hurray! *g* [01:28] # apt-cache search ubuntu-server [01:28] edubuntu-server - edubuntu servers [01:28] ubuntu-serverguide - The Ubuntu Server Guide [01:29] but no server package :( [01:40] its probalby the -base and -minimal seeds, plus a few extras === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has left #ubuntu-server [] === jsgotangco [n=jsg123@ubuntu/member/jsgotangco] has joined #ubuntu-server === tcarter [n=tcarter@c-71-56-89-70.hsd1.ga.comcast.net] has joined #ubuntu-server === ampache [n=charliej@72.24.69.50] has joined #ubuntu-server === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server === coNP_ [n=conp@unaffiliated/conp] has joined #ubuntu-server === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server [05:34] Is this the right channel to discuss php web app packaging [06:33] try ubuntu-motu [06:34] well that's not the right channel [06:34] Ubuntu mentoring front desk pointed me here that's why I ask [06:36] I was right, just typed it wrong [06:37] try #ubuntu-motu [06:37] k thanks === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server === gnilor [n=gnilor@d51A5D5AD.access.telenet.be] has joined #ubuntu-server === ampache [n=charliej@72.24.69.50] has left #ubuntu-server ["Ex-Chat"] === ra1nb0w [n=ra1nb0w@host86-232-dynamic.4-87-r.retail.telecomitalia.it] has joined #ubuntu-server === kupesoft [n=dave@CPE00119583e9ae-CM0013718cb08a.cpe.net.cable.rogers.com] has joined #ubuntu-server === coNP_ [n=conp@unaffiliated/conp] has joined #ubuntu-server === williubu [n=willi@ip51cfad89.direct-adsl.nl] has joined #ubuntu-server [08:42] Hello to everyone! === rainbow` [n=ra1nb0w@host109-160-dynamic.56-82-r.retail.telecomitalia.it] has joined #ubuntu-server [08:43] Ive installed on a Notebook in free partion hda3 ubuntu-server feisty 7.04 [08:43] installation a usual with no problems, [08:44] but after restarting, loading grup from mbr, system hangs and shows "Int14: CR2 ..." [08:44] but if i select the old ubuntu dapper on hda7, no problems at all. [08:45] Ive check in /boot/grub/menu.lst and cant detect any errors. [08:45] Any ideas ? === williubu [n=willi@ip51cfad89.direct-adsl.nl] has left #ubuntu-server ["Verlassend"] === E-Jey [n=ad@84-245-25-41.dsl.cambrium.nl] has joined #ubuntu-server === Burgundavia [n=corey@ubuntu/member/burgundavia] has joined #ubuntu-server === h4wk0 [n=h4wk@84.13.255.104] has joined #ubuntu-server === qman [n=qman@24-231-215-111.dhcp.bycy.mi.charter.com] has joined #ubuntu-server [10:30] hello everyone, I was hoping to get some suggestions...I'm trying to set up a ubuntu box as a router/firewall, DNS, and DHCP server for my network, but I'm having a nightmare just trying to get it working. My biggest problem is with firewall software. See, iptables is rather confusing, and I just can't find any firewalling software (or software interface) that's simple enough and works. [10:30] I found some software I liked, called shorewall, but I can't get it working [10:31] No matter what I do, once I start the firewall, no packets will go in our out any interfaces [10:32] So, I was hoping someone here could suggest something else that would be more simple to set up than iptables. [10:33] <\sh> qman, firewalls are concepts, what you mean is an easy way to maintain a packet filter [10:33] yes, that's what I mean [10:33] sorry for the incorrect terms [10:33] <\sh> qman, try fwbuilder [10:33] <\sh> but it shouldn't be run on your packet filter server [10:34] I did try fwbuilder, but there are so many options, I couldn't figure out how to use it [10:34] the machine I'm working with has four interfaces [10:35] three different internal networks, and the internet [10:36] <\sh> qman, don't you have someone who has a clue about network security? because without the knowledge, you are lost anyways,even with a gui...you break more things then you fix [10:36] <\sh> first read something about iptables [10:37] <\sh> on http://www.netfilter.org/ there are lot of examples and good howtos how to manage netfilter/iptables [10:37] well, I do know a lot about networking, and I have set up iptables before with some simple filtering rules [10:37] but only on a system with one interface [10:37] <\sh> try it at home with your local box, to succeed with some easy things, e.g. nat [10:37] <\sh> then try to make it big, with more then one interface :) [10:38] <\sh> or buy some good things from securecomputing or cisco, even when cisco is crap in things like packetfilters and FW concepts [10:39] well, I guess the major problem is that I have more than two sides [10:40] <\sh> qman, so try to work on the first interface (e.g. the internet one) and then work up to the next three [10:40] shorewall simplified it fairly well, but it doesn't do me any good if it doesn't run [10:49] qman: you can use arno iptables: http://rocky.eld.leidenuniv.nl/ (there is a pkg build for Ubuntu/Debian). I use it on my Slackware Server ;) [10:50] the config file is well comment [10:51] <\sh> slackwarelife, it won't give him any help....if he has trouble to understand what's going on when he configure 4 interfaces in different ways with different rules, a gui won't help...he should start with the frontnetwork and work up to the other network interfaces [10:52] I understand how it works, at the packet level [10:52] I just don't understand how to actually configure the software [10:52] to do what I want it to do === kupesoft_ [n=dave@CPE00119583e9ae-CM0013718cb08a.cpe.net.cable.rogers.com] has joined #ubuntu-server [10:55] <\sh> qman, that's what I meant.. [10:56] <\sh> fwbuilder is quite easy to understand, when you know how netfilter works in general and how the packets flow between the interfaces [10:57] well, the problem with fwbuilder I had, was that I couldn't figure out where to put which rules so that they would be applied correctly [10:57] none of the presets had any relevancy to my goal, so there was no starting ground to go from [10:58] for example [10:59] if I wanted to block traffic from "group 1" to "group 2", would I put the rule in the "group 1" tab, or the "group 2" tab? the software made it possible to do either, and neither seemed more correct === Nafallo [n=nafallo@ubuntu/member/nafallo] has joined #ubuntu-server === slackwarelife [n=slackwar@host73-195-dynamic.58-82-r.retail.telecomitalia.it] has joined #ubuntu-server [11:01] all the documentation on the fwbuilder site seems to be beyond that level, and I couldn't find any help in that regard [11:01] <\sh> you deny in group 2 that traffic flows from group 1 [11:03] <\sh> or you deny traffic to go group2 in group1 depends what you really want...if you want a deny all all rule in group2 and opening up for special services, then deny all all in group 2 is better then deny all all to group2 in group1, just because it clutter up your rules a lot when you have to let other services go to group2 from group1..but this you have to decide. [11:04] so it can go either way, even if it makes no effective difference? [11:05] that clears up a lot of the confusion [11:05] <\sh> qman, it makes an effective difference, not that you will see it in the first place, but depends on your network traffic...and depends if you want clean rules on different interfaces [11:07] aside from the rules themselves, I didn't understand what the difference was if I denied traffic on it's way out of group 1, or on it's way in to group 2, given that I use specific source and destination of the groups themselves [11:08] <\sh> the packet will stay a bit longer in the kernel ip packet queue [11:08] ok [11:08] <\sh> which can take cpu cycles [11:09] so, performance wise, it's probably better to deny it sooner, but otherwise, doesn't really affect traffic [11:09] <\sh> depending on your nettraffic [11:10] ok, that really helps [11:10] that was one of the big things I just couldn't rationalize [11:10] <\sh> performance wise it's better to use a specialized appliance for this....but the sooner the better...if you don't need any services going to group2 you should block directly on the internet iface [11:12] well, the box is almost 2GHz, I've only got a 5M/512k internet connection, and the priority is small business, so performance isn't critical [11:14] ok, so now, the only thing left to really clear up, is the way fwbuilder associates an interface with a group and a network [11:14] and I think this pdf should answer that === peanutb [n=paulb@c-71-231-82-231.hsd1.or.comcast.net] has joined #ubuntu-server [11:16] has anyone gotten a working asterisk install with the asterisk web config? [11:16] which web config? [11:17] i was thinking the digium one, but anything that works. [11:19] there are two major ones, the digium one and the freepbx one [11:21] which is easier to install? [11:21] and has the most features? [11:40] peanutb: Go install Trixbox and be done with it. [11:40] ;) [11:41] ok [11:41] thanks === coNP [n=conp@unaffiliated/conp] has joined #ubuntu-server