[01:37] <stevenrushing_> howdy howdy, anyone about?
[01:43] <Burgundavia> on my way out
[01:43] <stevenrushing_> aaaa
[01:43] <stevenrushing_> have a moment?
[01:43] <stevenrushing_> =)
[01:43] <Burgundavia> if it is quick
[01:44] <stevenrushing_> how do you access outside of your user folder in server?
[01:44] <stevenrushing_> i can't access outside.  i can't login as root.  i can sudo things, but can't get out of my folder
[01:44] <stevenrushing_> (maybe that is quick, not sure.  =)
[01:45] <Burgundavia> root is disabled
[01:45] <Burgundavia> if you mean how do you move around, you use cd
[01:45] <stevenrushing_> i get cd
[01:45] <Burgundavia> right
[01:45] <Burgundavia> and it tells you don't have permission to view anything outside /home?
[01:46] <stevenrushing_> but it won't let me see anything outside my user folder...
[01:46] <stevenrushing_> right
[01:46] <Burgundavia> you cannot ls the folders?
[01:47] <stevenrushing_> =)  thank you very much
[01:47] <stevenrushing_> sorry to waste your time.  =)
[01:58] <stevenrushing_> lalala a few moments of someone's time?  =)  simple stuff mostly
[01:58] <stevenrushing_> as Burgundavia has discovered  =)
[03:30] <player2> :sigh: Darwin sucks
[03:31] <player2> back to ubuntu...
[03:31] <player2> has anyone ever successfully configured pam_ldap and libnss-ldap to talk to a Mac OS X Server OpenLDAP server?
[03:33] <player2> `ldapsearch -x uid=diradmin |grep dn` gives me 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu'
[03:33] <player2> but `ldapsearch -D 'uid=diradmin,cn=users,dc=wloyx,dc=loyola,dc=edu` fails with 'user not in database'
[03:53] <stevenrushing_> needing some help making my server accessable outside my network if possible...
[12:17] <cy_> hello
[12:17] <cy_> is there a way to install ubuntu-server when i only have ssh access to a started rescue system ?
[12:21] <h4wk0> Explain further
[12:22] <cy_> well.. i have a debian system installed on a server.. now i can reboot it into a rescue system (where i can mount my original system lets say under /mnt/debian) .. i would now like to install ubuntu-server from there on..
[12:22] <cy_> the live system is also based on debian, so there is "debootstrap" present..
[12:30] <cy_> also: http://ubuntuforums.org/archive/index.php/t-125936.html  ... is a question im asking myself too..
[01:03] <pipes> ouch 
[01:04] <cy_> omg
[01:04] <cy_> youre alife! :D
[01:04] <cy_> alive*
[01:04] <cy_> i always get that wrong
[01:04] <pipes> kinda, as alive as one can be after a few bottles of wine 
[01:05] <pipes> as to your question. I really dont know =\
[01:05] <Kamping_Kaiser> with specifiying a range of ports in iptables is it '50-100' or '50 - 100' (spaces or not)
[01:05] <pipes> 1-2 afaik
[01:05] <pipes> no spaces 
[01:05] <Kamping_Kaiser> bugger. oh well
[01:06] <Kamping_Kaiser> cy_, install ubuntu, then strip out the packages you dont need (should be 5 min job with debfoster)
[01:07] <cy_> debfoster ? mhhhhhhh
[01:07] <cy_> yeah i am debootstrapping atm
[01:07] <cy_> doing a cross install using this tutorial: http://ftp.ubuntulinux.org/ubuntu/dists/warty/main/installer-i386/current/doc/manual/en/apcs03.html  .. seems kinda out-dated .. but we'll see
[01:11] <cy_> urm
[01:11] <cy_> any way to select grub as default bootloader and not lilo ?
[01:13] <Kamping_Kaiser> install it should do
[01:14] <cy_> yeah i just noticed
[01:14] <cy_> *g
[01:14] <cy_> thanks tho :)
[01:14] <Kamping_Kaiser> :)
[01:28] <cy_> ok
[01:28] <cy_> it worked
[01:28] <cy_> hurray! *g*
[01:28] <cy_> # apt-cache search ubuntu-server
[01:28] <cy_> edubuntu-server - edubuntu servers
[01:28] <cy_> ubuntu-serverguide - The Ubuntu Server Guide
[01:29] <cy_> but no server package :(
[01:40] <Kamping_Kaiser> its probalby the -base and -minimal seeds, plus a few extras
[05:34] <ampache> Is this the right channel to discuss php web app packaging
[06:33] <mralphabet> try ubuntu-motu
[06:34] <mralphabet> well that's not the right channel
[06:34] <ampache> Ubuntu mentoring front desk pointed me here that's why I ask
[06:36] <mralphabet> I was right, just typed it wrong
[06:37] <mralphabet> try #ubuntu-motu
[06:37] <ampache> k thanks
[08:42] <williubu> Hello to everyone!
[08:43] <williubu> Ive installed on a Notebook in free partion hda3 ubuntu-server feisty 7.04
[08:43] <williubu> installation a usual with no problems, 
[08:44] <williubu> but after restarting, loading grup from mbr, system hangs and shows "Int14: CR2 ..."
[08:44] <williubu> but if i select the old ubuntu dapper on hda7, no problems at all.
[08:45] <williubu> Ive check in /boot/grub/menu.lst and cant detect any errors.
[08:45] <williubu> Any ideas ?
[10:30] <qman> hello everyone, I was hoping to get some suggestions...I'm trying to set up a ubuntu box as a router/firewall, DNS, and DHCP server for my network, but I'm having a nightmare just trying to get it working. My biggest problem is with firewall software. See, iptables is rather confusing, and I just can't find any firewalling software (or software interface) that's simple enough and works.
[10:30] <qman> I found some software I liked, called shorewall, but I can't get it working
[10:31] <qman> No matter what I do, once I start the firewall, no packets will go in our out any interfaces
[10:32] <qman> So, I was hoping someone here could suggest something else that would be more simple to set up than iptables.
[10:33] <\sh> qman, firewalls are concepts, what you mean is an easy way to maintain a packet filter 
[10:33] <qman> yes, that's what I mean
[10:33] <qman> sorry for the incorrect terms
[10:33] <\sh> qman, try fwbuilder
[10:33] <\sh> but it shouldn't be run on your packet filter server
[10:34] <qman> I did try fwbuilder, but there are so many options, I couldn't figure out how to use it
[10:34] <qman> the machine I'm working with has four interfaces
[10:35] <qman> three different internal networks, and the internet
[10:36] <\sh> qman, don't you have someone who has a clue about network security? because without the knowledge, you are lost anyways,even with a gui...you break more things then you fix
[10:36] <\sh> first read something about iptables
[10:37] <\sh> on http://www.netfilter.org/ there are lot of examples and good howtos how to manage netfilter/iptables
[10:37] <qman> well, I do know a lot about networking, and I have set up iptables before with some simple filtering rules
[10:37] <qman> but only on a system with one interface
[10:37] <\sh> try it at home with your local box, to succeed with some easy things, e.g. nat
[10:37] <\sh> then try to make it big, with more then one interface :)
[10:38] <\sh> or buy some good things from securecomputing or cisco, even when cisco is crap in things like packetfilters and FW concepts
[10:39] <qman> well, I guess the major problem is that I have more than two sides 
[10:40] <\sh> qman, so try to work on the first interface (e.g. the internet one) and then work up to the next three
[10:40] <qman> shorewall simplified it fairly well, but it doesn't do me any good if it doesn't run
[10:49] <slackwarelife> qman: you can use arno iptables: http://rocky.eld.leidenuniv.nl/ (there is a pkg build for Ubuntu/Debian). I use it on my Slackware Server ;)
[10:50] <slackwarelife> the config file is well comment
[10:51] <\sh> slackwarelife, it won't give him any help....if he has trouble to understand what's going on when he configure 4 interfaces in different ways with different rules, a gui won't help...he should start with the frontnetwork and work up to the other network interfaces
[10:52] <qman> I understand how it works, at the packet level
[10:52] <qman> I just don't understand how to actually configure the software
[10:52] <qman> to do what I want it to do
[10:55] <\sh> qman, that's what I meant..
[10:56] <\sh> fwbuilder is quite easy to understand, when you know how netfilter works in general and how the packets flow between the interfaces
[10:57] <qman> well, the problem with fwbuilder I had, was that I couldn't figure out where to put which rules so that they would be applied correctly
[10:57] <qman> none of the presets had any relevancy to my goal, so there was no starting ground to go from
[10:58] <qman> for example
[10:59] <qman> if I wanted to block traffic from "group 1" to "group 2", would I put the rule in the "group 1" tab, or the "group 2" tab? the software made it possible to do either, and neither seemed more correct
[11:01] <qman> all the documentation on the fwbuilder site seems to be beyond that level, and I couldn't find any help in that regard
[11:01] <\sh> you deny in group 2 that traffic flows from group 1
[11:03] <\sh> or you deny traffic to go group2 in group1 depends what you really want...if you want a deny all all rule in group2 and opening up for special services, then deny all all in group 2 is better then deny all all to group2 in group1, just because it clutter up your rules a lot when you have to let other services go to group2 from group1..but this you have to decide. 
[11:04] <qman> so it can go either way, even if it makes no effective difference?
[11:05] <qman> that clears up a lot of the confusion
[11:05] <\sh> qman, it makes an effective difference, not that you will see it in the first place, but depends on your network traffic...and depends if you want clean rules on different interfaces
[11:07] <qman> aside from the rules themselves, I didn't understand what the difference was if I denied traffic on it's way out of group 1, or on it's way in to group 2, given that I use specific source and destination of the groups themselves
[11:08] <\sh>  the packet will stay a bit longer in the kernel ip packet queue
[11:08] <qman> ok
[11:08] <\sh> which can take cpu cycles
[11:09] <qman> so, performance wise, it's probably better to deny it sooner, but otherwise, doesn't really affect traffic
[11:09] <\sh> depending on your nettraffic
[11:10] <qman> ok, that really helps
[11:10] <qman> that was one of the big things I just couldn't rationalize
[11:10] <\sh> performance wise it's better to use a specialized appliance for this....but the sooner the better...if you don't need any services going to group2 you should block directly on the internet iface 
[11:12] <qman> well, the box is almost 2GHz, I've only got a 5M/512k internet connection, and the priority is small business, so performance isn't critical
[11:14] <qman> ok, so now, the only thing left to really clear up, is the way fwbuilder associates an interface with a group and a network
[11:14] <qman> and I think this pdf should answer that
[11:16] <peanutb> has anyone gotten a working asterisk install with the asterisk web config?
[11:16] <Burgundavia> which web config?
[11:17] <peanutb> i was thinking the digium one, but anything that works.
[11:19] <Burgundavia> there are two major ones, the digium one and the freepbx one
[11:21] <peanutb> which is easier to install?
[11:21] <peanutb> and has the most features?
[11:40] <foo> peanutb: Go install Trixbox and be done with it.
[11:40] <foo> ;)
[11:41] <peanutb> ok
[11:41] <peanutb> thanks