[05:11] <Judge> Are there any programs out there that assist in maintaining log files on a server
[05:11] <Judge> I've been searching for one, but haven't had any luck.
[07:18] <foo> Anyone going to Linuxworld by any chance? 
[07:31] <wintermu1e> I'm having issues getting a usb2 wireless card to work on feisty server, but works fine on feisty desktop
[07:31] <wintermu1e> the desktop is using the uhci usb2 driver, while the server is using ehci
[07:32] <wintermu1e> are there an known issues with this?
[07:51] <Burgundavia> wintermu1e: likely you need the restricted modules, which may not be instlaled by default
[07:57] <wintermu1e> Burgundavia: actually, the CVS rt73 (what the card uses) works fine on the desktop.  I believe this is actually a USB issue, since its not in /proc/bus/usb/devices
[07:57] <wintermu1e> I've compared the kernel configs of the two and they don't seem to be different wrt to usb though
[08:20] <wintermu1e> hmm, wtf, those weren't usb2.0 ports
[11:01] <ajmitch> hi stephanbuys 
[11:01] <stephanbuys> ajmitch, good evening
[01:09] <stephanbuys> dendrobates, ping
[01:20] <dendrobates> stephanbuys:pong
[01:21] <stephanbuys> dendrobates, hi there
[01:21] <dendrobates> stephanbuys: hi
[01:21] <stephanbuys> dendrobates, I thought it might be easier to discuss all of the auth stuff in the channel?
[01:22] <dendrobates> stephanbuys: works for me.
[01:22] <stephanbuys> dendrobates, it seems that we have a lot of the same problems we are trying to solve
[01:23] <stephanbuys> dendrobates, this morning I discussed debconf and the configuration of the modules of interest with ajmitch
[01:23] <dendrobates> stephanbuys, almost certainly
[01:23] <dendrobates> 
[01:23] <stephanbuys> it turns out his authtool already supports debconf (kerberos is configured through it)
[01:24] <stephanbuys> and I'm actively trying to solve things like AD authentication at the moment :-)
[01:24] <dendrobates> stephanbuys; I am looking at AD ad well.
[01:24] <stephanbuys> dendrobates, then we _have_ to talk :-)
[01:25] <dendrobates> stephanbuys: we are so behind other distros at this point, the task seems daunting.
[01:25] <stephanbuys> I would much rather use a _sane_ debconf backend for authtool and be sure the config files are not clobbered than use our current template file clobbers everything approach
[01:25] <stephanbuys> hehe
[01:26] <dendrobates> Yeah, it seemed like the best approach to me as well.
[01:26] <rbrunhuber> Hello, does anybody know if it is possible to install ubuntu on a ich7r fakeraid level 5 setup?
[01:26] <stephanbuys> dendrobates, although - looking at something like RedHat ES 5.0's authconfig, its not real rocket science
[01:27] <dendrobates> the first thing I want to fix are the horrible libpam-ldap and libnss-ldap.
[01:27] <stephanbuys> dendrobates, it does not seem to me that even RedHat uses something "intelligent" like debconf. they  basically just clobber the config files
[01:27] <stephanbuys> agreed. 
[01:27] <stephanbuys> debconf for those packages dont even work
[01:27] <dendrobates> True, I think we can do better.
[01:27] <stephanbuys> check https://bugs.launchpad.net/ubuntu/+source/libnss-ldap/+bug/70146
[01:27] <ubotu> Launchpad bug 70146 in libnss-ldap "[SRU]  libnss-ldap for edgy-proposed: Problem with LDAPS" [High,Fix committed]  
[01:28] <dendrobates> we have the openssl issue as well.
[01:28] <stephanbuys> ubotu, snap :-)
[01:28] <ubotu> Sorry, I don't know anything about snap :-) - try searching on http://bots.ubuntulinux.nl/factoids.cgi
[01:28] <stephanbuys> o - darn - a bot
[01:29] <rbrunhuber> dendrobates: More support with all those libpam* things would be greatly appreciated. 
[01:29] <stephanbuys> dendrobates, if I can recommend anything I would ask you consult the templates in the latest version of authtool (link provided on your whiteboard) and check the templates
[01:29] <rbrunhuber> dendrobates: from my site I always fight with this.
[01:30] <stephanbuys> we found those libnss and libpam configs to be sane and to work out of the box
[01:31] <dendrobates> rbrunhuber: I worked as a ldap architect for years, so I know the padl tools well, I should be able to help.
[01:32] <dendrobates> stephanbuys, How do you handle the /etc/pam.d/* files?
[01:32] <rbrunhuber> dendrobates: after struggling a while it is happily running now.But I'll never touch it in years :-)
[01:32] <stephanbuys> dendrobates, good question. I was meant to ping soren about that
[01:33] <dendrobates> Is soren working on this?
[01:33] <stephanbuys> dendrobates, but I will happily support pam through that mechanism in authtool
[01:33] <stephanbuys> dendrobates, ajmitch suggested I consult with soren about it
[01:33] <stephanbuys> dendrobates, to give you an idea it seems that RHES just overwrites the pam config files with their authconfig tool
[01:33] <stephanbuys> (also written in python btw)
[01:34] <dendrobates> and gpl'd, so we  could use parts if we wanted.
[01:34] <stephanbuys> correct :-)
[01:34] <dendrobates> I was thing a separate app, that could be called by any package. 
[01:35] <dendrobates> pam.d configs are too complicated for debconf, imho
[01:35] <stephanbuys> dendrobates, something like authtool ?
[01:35] <stephanbuys> authtool already has command-line and gtk interfaces
[01:36] <dendrobates> perhaps, but I was thinking lower level, sort of like what we do with inetd.
[01:38] <dendrobates> it could be a part of the authtool, but it seems like it should be able to be called separately
[01:38] <stephanbuys> dendrobates, enlighten me to the inetd mechanism please :-)
[01:40] <dendrobates> I think its inetd-confg.  It is used by packages that need to add lines to the inetd.conf, so they can't clobber the file.
[01:40] <stephanbuys> dendrobates, ah - ok 
[01:41] <stephanbuys> I get the gist. Basically something like a configuration api
[01:41] <dendrobates> we should never let packages directly edit /etc/pam.d/*
[01:41] <dendrobates> yes.
[01:41] <stephanbuys> ok
[01:41] <dendrobates> But it is tricky.  There are hundreds of use cases.
[01:42] <dendrobates> I don't think it can be done before gutsy, but I may be wrong.
[01:42] <stephanbuys> hmm - is there a blueprint for this yet?
[01:43] <dendrobates> No, it's just an idea bouncing around in my head.  
[01:44] <stephanbuys> dendrobates, ok - I'll make a blueprint for it - perhaps its something we can look at
[01:45] <dendrobates> I have a couple of very good programmers looking for something to do, may I can point them at this.
[01:46] <dendrobates> I have to step away for a little while. I'll be back in a few.
[01:47] <stephanbuys> dendrobates, ok - I have a question re password expiration
[01:47] <dendrobates> ask it before I go.
[01:48] <stephanbuys> dendrobates, I was wondering on how you plan to handle things like password complexity and password expiration
[01:48] <stephanbuys> complexity can be managed with pam
[01:48] <stephanbuys> (another feature for this tool)
[01:48] <stephanbuys> but password expiration seems to be something that is catered for in shadow only
[01:48] <dendrobates> but, a user could go around pam and set their password directly .
[01:49] <stephanbuys> ok, so that remains a problem
[01:49] <stephanbuys> as far as password expiration is concerned libnss should cater for shadow via ldap (although I have not tested it)
[01:49] <dendrobates> openldap, supports expiration, via the rfc. openldap supports comlpex passwords through overlays.
[01:50] <stephanbuys> which should (in theory) obsolete the need to libpam-ldap
[01:50] <stephanbuys> dendrobates, ah - ok
[01:50] <dendrobates> no we always need pam-ldap
[01:50] <stephanbuys> dendrobates, then it becomes a matter of catering for client support 
[01:50] <dendrobates> we have another problem.
[01:50] <stephanbuys> the client (whether server or workstation) needs to notify the user of password expiration
[01:51] <dendrobates> nss-ldap and pam-ldap are linked to openldap2.1 from 2004.  the server is openldap 2.3.
[01:51] <stephanbuys> ugh
[01:51] <dendrobates> that means we do not have full functionality in our clients.
[01:52] <stephanbuys> thats a pretty big problem :-)
[01:52] <dendrobates> this is because of openssl.  
[01:52] <dendrobates> in openldap 2.4, gnutls will be supported. but it is in alpha now.
[01:53] <stephanbuys> :-(
[01:53] <dendrobates> redhat and novell, are not of the same opinion as Debian and have no problem linking to an openldap that is linked to openssl.
[01:54] <dendrobates> so we have to do what we can and test to see just what is broken.
[01:55] <stephanbuys> dendrobates, ugh - so one step at a time I guess. 
[01:56] <dendrobates> yep
[01:56] <stephanbuys> if nothing else I think we should cover some robust and sensible settings in the config of the tools through debconf
[01:56] <dendrobates-afk> true.
[01:57] <dendrobates-afk> be back after I get some breakfast.  Still a little jet lagged, so I woke up at 4:30, and went straight to work so as not to disturb the family.
[03:55] <ScottK> If there is anyone here who is familiar with mysql source at all, Bug 105225 is probably an easy bugfix.
[03:55] <ubotu> Launchpad bug 105225 in mysql-dfsg-5.0 "'flush tables with read lock' causes mysql server to deadlock" [Undecided,Fix released]  https://launchpad.net/bugs/105225
[03:55] <ScottK> This is for a Dapper SRU.
[03:58] <nealmcb> reminder: server team meeting in #ubuntu-meeting in one hour....
[04:10] <nealmcb> https://wiki.ubuntu.com/ServerTeam/Meeting
[04:15] <stiV> hi everyone ... i have a problem with some packages and an automatic installation that is being initiated by a bash-script that is being called in /etc/rc.local. when i start the script "by hand" in a normale console (or via ssh), everything works fine. that packages are being installed, no questions are asked (i adapted the /var/cache/debconf/config.dat for that) and everything works fine. but when the script is being start
[04:16] <stiV> and postfix, postfix-policyd and clamav fail to install (--configure fails)
[04:16] <stiV> is there any way to "simulate" an in- and output device?
[04:16] <stiV> the script, that installs everything is being called from the script that is being started bei rc.local
[04:17] <stiV> . /root/postinstall-slave.sh > /root/install.log 2>&1
[04:18] <stiV> i already tried to set "DEBCONF_FRONTEND=noninteractive" and i also had to set "DEBIAN_FRONTEND=noninteractive" because update-inetd uses that variable, but nothing helps
[04:18] <stiV> i'm out of ideas here ...
[04:19] <stiV> there are many other packages that are being installed, and they all work (i had to adapt some of them, like ssl-cert)
[04:35] <nealmcb> stiV: looks like the end of your first line was truncated
[04:36] <nealmcb> after "is being start"
[04:36] <stiV> i can see everything, but here is the rest: "(...) being started automatically, it has no input or output target"
[04:37] <stiV> thx
[04:40] <nealmcb> stiV: why are you installing things on every boot?  what commands are you using to do the installations? 
[04:41] <nealmcb> and exactly what error messages are you getting?
[04:50] <miles> hello all
[04:50] <miles> i got a question about static ip's....
[04:50] <stiV> it's a onetime boot script for an automatic installation of many machines
[04:51] <miles> i edited /etc/network/interfaces and set my appropriate interface card to be static, however, it is still pulling dhcp
[04:51] <miles> is there something i am missing?
[04:52] <stiV> is it using dhcp even after you did /etc/init.d/networking restart ???
[04:53] <miles> yes, it was fine yesterday, i came in today, couldnt find the server, so i connected locally, and it was pulling dhcp
[04:53] <miles> we got a dhcp server on the network...some dummy set up the network that way here
[04:53] <miles> im trying to ssh into the server right now to double check that file
[04:54] <miles> yes this is my file right here
[04:55] <miles> auto eth0
[04:55] <miles> #iface eth0 inet dhcp
[04:55] <miles> iface eth0 inet static
[04:55] <miles> address 192.168.2.118
[04:55] <miles> netmask 255.255.255.0
[04:55] <miles> network 192.168.2.0
[04:55] <miles> broadcast 192.168.2.225
[04:55] <miles> gateway 192.168.2.1
[04:55] <miles> sorry to flood
[04:55] <miles> i just commented out eth0 being dhcp, maybe i should just delete that line altogether?
[04:55] <dendrobates> Ubuntu Server team meeting in 5 minutes in #ubuntu-meeting
[04:56] <stiV> try to use only address netmask and gateway, everything else is clear from that parameters
[04:57] <miles> k, will try, thanks
[04:58] <miles> yea...the ip switched to the static one, but this happened yesterday as well...just wait and see i guess
[04:58] <lionel> miles: restarting networking does not stop dhcp client (yes, it could be a bug). reboot your server to get everything clear or kill it by hand
[05:03] <miles> rebooted, seems to be fine, thanks
[05:19] <nealmcb> miles: cool - and I'm glad to have learned something along the way :-) - thanks lionel
[05:20] <miles> loves linux <----
[05:20] <miles> esp. ubuntu
[05:59] <miles> d
[06:00] <miles> why did it say i left this server?
[06:02] <stiV> * [miles]  has quit IRC (Remote closed the connection)
[06:02] <miles> i didnt do that though...interesting
[06:08] <ZummiG777> Question: I have a couple of Dell PowerEdge 2400 systems with Perc 2/Si RAID controllers.  I read there that Perc 3 and below were no longer officially supported.  Is this true, and if so is there a method to enable the older drivers?
[06:08] <miles> I installed apache2 via apt-get, and im having trouble locating document root, does anyone know the default folder?
[06:09] <stiV> miles: /var/www
[06:09] <ZummiG777> miles: It is usually /var/www
[06:10] <miles> ahhh....yes, i was looking in /srv/www
[06:10] <miles> htanks
[06:10] <miles> thanks
[06:21] <miles> clea
[06:23] <soren> miles: Not you. [miles] 
[06:24] <soren> miles: "[miles] " != "miles"
[06:26] <miles> o..my bad
[06:27] <miles> im in the process of setting up a lamp stack, got all the components, i have a test.php page, when i go to the url, my browser tries to download the file rather than interpret it
[06:27] <miles> im guessing i need to config php.ini and tell it where server root is?
[06:27] <mralphabet> is php installed?
[06:28] <miles> yes
[06:28] <mralphabet> then your http config probably doesn't know about it
[06:28] <miles> yea i was thinking that might be the second option
[06:28] <mralphabet> php doesn't care where your document root is
[06:31] <miles> see, now i am use to configuring apache via httpd.conf, but since switching to ubuntu-server, its kind of different to me
[06:32] <miles> i am supposed to modify apache2.conf, correct?
[06:32] <stiV> jep /etc/apache2/apache2.conf is the thing you seek ;)
[06:33] <miles> yea looking at it now...
[06:33] <miles> is the php "on/off" switch in that file or in mods-enabled folder?
[06:34] <mralphabet> go to /etc/apache2/
[06:34] <mralphabet> do "grep -R -i php *"
[06:34] <mralphabet> you should get stuff on the mods-enabled folder
[06:35] <mralphabet> if not, php is not installed right
[06:35] <mralphabet> if so, restart apache
[06:35] <mralphabet> and do your test again
[06:35] <miles> yea i got that stuff
[06:35] <miles> i also renamed test.php to index.php
[06:35] <miles> restarting apache...
[06:37] <miles> nope, going to index.php makes firefox open up a "save as" dialog for the file
[06:38] <miles> i DL'd the lampp stack via tasksel
[06:39] <miles> you know, im running subversion on the same apache server, is that a possible interference?
[07:05] <miles> is anyone here running a lamp server?
[07:05] <miles> that can assist me in configuring php5
[07:12] <stiV> !lamp
[07:12] <ubotu> LAMP is an acronym for Linux-Apache-MySQL-PHP. However, the term is often used for setups using alternative but different software, such as Perl or Python instead of PHP, and Postgres instead of MySQL. For help with setting up LAMP on Ubuntu, see  https://help.ubuntu.com/community/ApacheMySQLPHP - See also the Server CD installation process (different in Edgy+)
[07:13] <miles> im downloading xampp, taking a look at their config files and going from there, ill check out that link right now, thanks a lot
[07:15] <miles> ahhhhhh thanks a lot stiV, i used tasksel to get the stack, but i guess it doesnt get the libapache2-mod-php5 package for you
[07:15] <miles> everything works fine now
[07:15] <lousygarua> after installing mediawiki thru synaptic - how can i create antoher wiki on the same server?
[07:17] <lousygarua> i can d/l the medaiwiki tarball and start from there but if mediawiki updates it won't auto-update all of my wiki's from apt-get update
[08:57] <miles> can someone tell me how to enable samba-swat?
[09:35] <miles> !swat
[09:35] <ubotu> samba is is the way to cooperate with Windows environments. Links with more info: https://wiki.ubuntu.com/MountWindowsSharesPermanently and http://help.ubuntu.com/ubuntu/serverguide/C/windows-networking.html - Samba can be administered via the web with SWAT
[09:36] <miles> does anyone know how to enable swat?
[09:37] <Nafallo> I think you need to call FBI and tip them or something like that.
[09:38] <miles> srs?
[09:39] <Nafallo> never mind me :-)
[09:49] <lionel> miles: apt-get install swat ? :)
[09:49] <lionel> miles: it is not enabled after that?
[09:50] <miles> woops
[09:50] <miles> there
[09:50] <miles> yea swat is installed
[09:50] <miles> i dont know about enabled...it is in the inetd.conf
[09:50] <miles> file
[09:51] <lionel> miles: try to point your browser to http://server:901
[09:52] <miles> i switched my ports.conf to listen on port 901 for apache
[09:52] <miles> apache stuff shows up when i do that
[09:53] <miles> when i enable "Listen 901" in ports.conf (apache) i can at least run nmap on localhost and it says port 901 samba-swat is open
[09:53] <miles> that i my logic behind doing that
[09:53] <miles> otherwise, http://localhost:901 cant be reached
[09:53] <fernando> hi mathiaz. After fixing watch files, I need to upload to revu?
[09:53] <lionel> apache should not liste on port 901
[09:53] <miles> yea...
[09:55] <lionel> fernando: I think a debdiff attached on launchpad is the best place
[09:55] <miles> i have swat listed in /etc/services and /etc/inetd.conf
[09:55] <fernando> lionel, ok
[09:55] <lionel> did you try to kill -HUP inetd ?
[09:56] <miles> no, but i ahve rebooted the machine
[09:56] <miles> and still nothin
[09:56] <miles> everything online says make sure inetd.conf is set up
[09:56] <miles> which it is...i dont realy know what inetd.conf is, so im going to go read up on it
[09:56] <miles> !inetd
[09:56] <ubotu> Sorry, I don't know anything about inetd - try searching on http://bots.ubuntulinux.nl/factoids.cgi
[09:57] <miles> !inetd.conf
[09:57] <ubotu> Sorry, I don't know anything about inetd.conf - try searching on http://bots.ubuntulinux.nl/factoids.cgi
[09:57] <miles> sorry for the spam
[11:55] <fernando> 15:00 UTC is my lunch time  =(
[11:55] <ajmitch> it's 3AM for me