[02:03] moquist: thanks [02:06] LaserJock: yep [02:07] moquist: does the 2nd one include the change from the first [02:07] yes [02:07] I just kept going with the same file. diff my v.2 against whatever you have. [02:07] k,good [02:08] Any word on my moodle package yet? :) [02:08] Sorry. I shouldn't nag...I know you're busy. [02:18] yeah, problem is inlaws are here for the weekend === merriam [n=merriam@85-211-20-34.dyn.gotadsl.co.uk] has joined #edubuntu [02:20] moquist: Committed revision 4312. === jack_wyt [n=jack@124.64.107.4] has joined #edubuntu [02:23] moquist: what were you doing to test moodle? [02:23] install with mysql and install with postgresql? [02:28] moquist: I'll bbl going out for dinner [02:34] LaserJock: yes -- I installed moodle with mysql & postgresql. You then have to open a browser to http://localhost/moodle/ to complete the installation. (I forwarded localhost:80 to the remote system for that part.) === pauljw [n=paul@pool81.dial1-clec.newalb.win.net] has joined #edubuntu === pitux [n=pitux@5-95-20-190.adsl.terra.cl] has joined #edubuntu === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu === sumguy231 [n=sumguy23@c-68-52-189-249.hsd1.tn.comcast.net] has joined #edubuntu === sumguy231 [n=sumguy23@c-68-52-189-249.hsd1.tn.comcast.net] has left #edubuntu ["I'm] === Netham45 [n=netham@c-67-190-103-57.hsd1.co.comcast.net] has joined #edubuntu === raynerd [n=raynerd@79-65-51-28.dynamic.dsl.as9105.com] has joined #edubuntu === jbrefort [i=jean@pot44-1-88-172-65-1.fbx.proxad.net] has joined #edubuntu === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu === juliux [n=juliux@ubuntu/member/juliux] has joined #edubuntu === ace_suares [n=ace@fupi.suares.an] has joined #edubuntu === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu === Castigador [n=Alfredo@88.Red-80-38-9.staticIP.rima-tde.net] has joined #edubuntu === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu === PriceChild [n=pricechi@ubuntu/member/pdpc.supporter.student.PriceChild] has joined #edubuntu === sc0tt_ [n=sc0tt@cpc1-stok5-0-0-cust150.bagu.cable.ntl.com] has joined #edubuntu === Nubae [n=Nubae@19.Red-83-63-247.staticIP.rima-tde.net] has joined #edubuntu [01:12] hi there... I'm trying to set up a proxy server with some sort of filtering for students... what is recommended, Ideally I'd like something that works with Squid which I have some experience with [01:12] dansguardian [01:13] yeah I looked t that, but it set up nother firewall utility which screwed up my shorewall setup [01:13] another utility? [01:13] i dont know about shorewall, btw [01:15] oh... well, I followed guide I found, actually several, with dansguardian playing a central role [01:15] but using some other firewall tool, cant remember now... firehol maybe? [01:15] its working a treat for me... cant really say more then that :| [01:15] on a dapper system, fwiw. [01:16] ok, and what firewall are u using, or just iptables directly? [01:16] using iptables to redirect 80 -> dans -> dans into squid [01:17] oh... ok, that sounds pretty feasable... guess only need http child filtered [01:17] well, i do have a 'drop anything not on 80' rule... [01:18] ah... I'd need to remove that as this server is doing lot of stuff, including ltsp [01:18] i have a dedecated gateway [01:18] so u just apt-get installed dansguardian and modified the config file? [01:19] yes. the config doesnt need much tweaking at all [01:20] you can optionally whitelist sites like .gov.au .edu.au [01:20] um... your relevent TLD of course... [01:20] hmmm... maybe I'm better of putting this on seperate computer? [01:20] so it doesnt interfere with the server [01:20] *shrug* better i dont know... i like dedicated gateways myself [01:21] ok, well I'll give it a go... if you dont mind, can I ask you some questions as I install it? [01:22] no worries [01:22] so email doesnt go through it? [01:22] i have done squid+dans on Debian etch, but not confident. with dapper i can check against my settings (if that helps you) [01:22] yeah, I'm on feisty [01:23] through what, the gateway ? [01:23] "just dont block smtp" [01:23] k [01:25] theres 2 conf files, dansguardian.conf and dansguardianf1.conf [01:25] you want dansguardian.conf [01:26] what reporting level do u use? [01:26] 3 [01:26] so u created a custom html file [01:26] i edited the default [01:26] just rebranded basicly [01:26] ah, makes sense, what kind of info does it give if it tells u why access was denied? [01:27] hm? [01:27] # 2 = report fully <- that optoin? [01:27] yeah [01:27] it tells you the exact line it banned you on [01:28] eg "you have been denided because you tried to look up" [01:28] ah, maybe too much :-) [01:28] yep :) [01:28] 10,1 and 3 are good [01:28] 2 is good for debugging [01:28] but i use the logs for that, so i have 3 set, and look in logs [01:29] Nubae, next option is language (for me) [01:29] yeah, I just put English in [01:29] uk [01:30] just cd into the languagedir , cp -r ukenglish mycustom [01:30] customise mycustom/index.html (or whatever the files called) [01:30] then set language='mycustom' [01:30] oh, cool [01:31] its called template.html [01:32] I leave the messages dir where it is? [01:33] yea [01:34] proxy settings leave as default? Squid runs on the same server [01:34] yep [01:35] whats filter groups... dont quite understand that [01:35] dont worry about it [01:35] well, i havent [01:38] phrasefiltermode? [01:38] leave default? [01:38] i left default [01:40] i didnt change a lot, which is one thing i liked about it - blocks everything without much effort [01:40] yeah defaults look pretty good, but like knowing what its doing anyway :-) [01:41] usexforwardedfor [01:42] off [01:42] k thought cause it says something about squid... [01:43] you have dans between squid+clients, not squid between dans+clients [01:44] ah... true... have u got it running as nobody? [01:44] default [01:45] ok virusscan? [01:45] do you want it to? [01:46] well, I've clamav already installed, running with postfix [01:46] or is this not scanning email, but downloads? [01:46] downloads - dansguardian is an http proxy only [01:47] ah yes just read :-) need to be less impatient [01:47] hehe. [01:48] ok... that seems to be it then [01:48] so just turn it on and its running? [01:49] restart it, yeah [01:50] ah, it does look for messages from the custom dir [01:51] :) [01:53] /var/log/dansguardian/access.log <--- what permissions u got on this file? [01:54] -rw-r--r-- 1 dansguardian dansguardian 34K 2007-09-02 13:46 access.log [01:54] wont run for me with the default... also tells me its running as dansguardian, seems to be ignoring the setting from the config file [01:55] mines running as dansguardian too. [01:55] what do you mean 'with the default' though? [01:55] default permissions for the log file [01:56] just relsed it doesnt exist [01:56] never mind [01:57] ok [01:59] did u add anything special to squid? [02:00] um. [02:00] i've made lots of changes, i dont remember how many are dansguardian related though [02:01] ok, nevermind, I'll figure that out myself... thanks for all your help [02:01] really appreciate it [02:01] np [02:02] i can flood you config if you want [02:02] httpd_accel_host virtual [02:02] httpd_accel_with_proxy on [02:02] httpd_accel_uses_host_header on [02:02] ^^ check those settings [02:02] acl our_networks src 192.168.1.0/24 [02:02] will need attention [02:03] not sure if/what else, depends on your exact layout [02:04] oh, with dansguardian, is there already a set of filters in place, or does that need to be extensively editted? [02:05] its already got filters [02:05] look in dansguardianf1.conf at the naughtynesslimit setting [02:05] i left it on default [02:06] but it gives you some idea whats going on [02:07] ah yeah, I've got from 8-18 here [02:07] guess I'll need the lowest setting [02:08] # 50 is for young children, 100 for old children, 160 for young adults. [02:08] naughtynesslimit = 50 [02:08] is what i have [02:09] heh, where do old children end and young adults start, :-) [02:09] no idea :) [02:10] but i do know i'm using young children setting for a community centre of ages from ~15-80 [02:10] and with good use of whitelisting its the perfect setting [02:10] ok... so it blocks mostly porn content right? [02:11] yes [02:11] i'd flood you some blocking, but then people wouldnt be able to view the logs *grin* [02:11] actually... want me to pm it? so you can ee [02:11] great, thats the biggest problem... [02:11] yeah sure y not [02:12] oh, it also blocks extentions [02:14] Nubae, check your pms [02:25] are you forwarding squid to dans, or the other way round? [02:25] clients -> dans -> squid -> internet === Kamping_Kaiser browses dansguardian logs of denied access and marvels how freeking effective it is [02:27] :-) do people complain? [02:28] not really. [02:28] once i unblocked a few key TLDs and websites that 90% of our traffic goes to [02:28] for example it blocks .doc and .deb by default - nota good state of affairs [02:29] whitelist our ISP ubuntu mirror and all of a suden we can dist-upgrade again. [02:29] hep [02:30] also with .edu.au and .gov.au whitelisted people could download thier work again [02:30] you probalby get the idea anyhow :) [02:31] hehe yeah [02:32] so on the client side, nothing needs to be setup in the browser? [02:32] auto proxy? [02:32] not if you redirect port 80 on the gateway [02:32] ok, yeah doh [02:33] you'll have a line similar to `iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080` in your iptables config [02:33] yeah redirect 80 to 8080 === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu [02:36] Amaranth, hi mate [02:36] hi [02:36] :) === raynerd [n=raynerd@79-65-78-207.dynamic.dsl.as9105.com] has joined #edubuntu [02:55] hello, can anyone help with editing a live CD ? [02:56] I have an edubuntu CD, with the programs I want to use. I want to use it in class but I dont want the install option. I simply want a CD that boots without the install desktop icon or the menu install icon. [02:56] anyone know how this can be done. [02:56] ? === Nubae [n=Nubae@19.Red-83-63-247.staticIP.rima-tde.net] has left #edubuntu [] [02:57] not sure how the live cd stuff happens in ubuntu land [02:58] im using edubuntu. [02:59] same process [02:59] Been trying to do it for last few days! [02:59] but i`m a linux noob myself so .. its all a bit above me === Netham45 [n=netham@c-67-190-103-57.hsd1.co.comcast.net] has joined #edubuntu === sbalneav [n=sbalneav@S0106000b6a5631f9.wp.shawcable.net] has joined #edubuntu [03:25] Morning all [03:26] hi mate === PriceChild [n=pricechi@ubuntu/member/pdpc.supporter.student.PriceChild] has joined #edubuntu === jack_wyt [n=jack@124.64.107.4] has joined #edubuntu === jbrefort [n=jean@mar44-2-82-227-215-241.fbx.proxad.net] has joined #edubuntu === pauljw [n=paul@pool59.dial1-clec.newalb.win.net] has joined #edubuntu === joumetal [n=jouni@letku30.adsl.netsonic.fi] has joined #edubuntu === vistakiller [n=spiros@ppp151-74.adsl.forthnet.gr] has joined #edubuntu === Baby [n=miry@pdpc/supporter/silver/kavi/baby] has joined #edubuntu === SimonAnibal [n=sruiz@pool-71-120-170-158.aubnin.dsl-w.verizon.net] has joined #edubuntu === ludoRA [n=Ludovic@157.10.101-84.rev.gaoland.net] has joined #Edubuntu === ludoRA [n=Ludovic@157.10.101-84.rev.gaoland.net] has joined #Edubuntu === bddebian [n=bdefrees@c-71-224-172-103.hsd1.pa.comcast.net] has joined #edubuntu [05:11] Heya === daveice [n=david@lns-bzn-50f-62-147-186-93.adsl.proxad.net] has joined #edubuntu [05:42] Hey, does anyone know how I could completely remove the install options, those being the desktop icon and menu install icon, off the Live Cd. I want to run it with students, but dont want them to "accidently" install it! [06:19] raynerd: You've have to custom cut youre own version of the cd. === highvoltage [n=highvolt@dsl-243-55-78.telkomadsl.co.za] has joined #edubuntu [06:24] how is that done? [06:26] i mean I was told to run live CD delete all install icons off the desktop and menu bar and then copy a image of the new CD and save as an iso. [06:26] I can do the first bit but then don`t know where to go from there...how do i save the new CD image and how do i save as an iso>? [06:45] It's a rather long mastering process. === juliux [n=juliux@ubuntu/member/juliux] has joined #edubuntu [06:46] https://launchpad.net/reconstructor [06:50] sbalneav: I tried to use that earlier today and yesterday, But when i boot i get a black screen and no options. It definately takes control and boots up, but like I say, I get a short script then a black screen [06:52] I'd check on their mailing list or help forums, then. [07:08] ok :( === kabitoxz [n=kabitoxz@189.142.211.215] has joined #edubuntu === Amaranth [n=travis@ubuntu/member/Amaranth] has joined #edubuntu === pauljw is now known as oldnslow === vistakiller [n=spiros@ppp151-74.adsl.forthnet.gr] has left #edubuntu [] === john_s [n=john@c-24-17-48-60.hsd1.wa.comcast.net] has joined #edubuntu === pitux [n=pitux@pc-191-224-47-190.cm.vtr.net] has joined #edubuntu [09:10] hello all, can anyone tell me how to save the output of dmesg to a text file if I do it within a chroot environment on the thin client? I am trying to capture debug info and I can't figure out how to move it to a place where I can email it to someone === pitux [n=pitux@pc-191-224-47-190.cm.vtr.net] has joined #edubuntu === edubuntugirl [n=edubuntu@ubuntu/bot/edubuntugirl] has joined #edubuntu [09:20] john_s: if you have an USB plug, you can use an usbkey, otherwise maybe using the floppy drive [09:20] stgraber: thanks, I am trying to debug my broken usbfs automount stuff so I can't use usb [09:20] These thin clients don't have floppies either [09:21] :-) [09:21] hmm, so you have a problem :) [09:21] Yup [09:21] are you an edubuntu/ltsp guru? [09:21] please say yes! [09:21] maybe using a nfs server, but I'm not sure that the nfs kernel module is in the thin client chroot [09:22] sort of, I'm testing all new Edubuntu release and have already installed some networks [09:23] ok well briefly, I have been unable to get local usb keys to show up on users desktops [09:23] I have been working through the DebugLocalDev thing for about two weeks off and on [09:23] but not yet got it [09:24] if I go to a termianl on the thin client by doing ctrl+alt+f2 I can put the thumbdrive in and dmesg shows it getting added and it shows up in /etc/fstab [09:25] ok, so in the terminal you could manually mount it ? [09:25] are your users in the fuse group ? [09:25] but when I try the final step on the debug ssh -S /tmp/.ltspfs_socket server "/usr/sbin/ltspfsmounter /tmp add" I get a complaint from the ssh server saying authenticity of host 'server can't be established [09:25] yup [09:26] I guess that's where I fail is manually mounting it [09:26] since that's where I encounter the complaint about ssh keys [09:27] I have changed the ipaddress of the external nic since I set this server up but would that mess up the ssh key of the nic on the ltsp lan? [09:27] ok, and do you have a different result if you run this command with a logged on user ? [09:27] shouldn't be a problem if the LAN ip didn't change [09:28] when you say logged on user, you mean if I go through to the gdm desktop and then open a terminal and follow all of those steps? [09:31] when I log on and open up a terminal and run the tests I don't see anything about usb devices in dmesg and fstab doesn't show any usb devices [09:32] I mean, on your thin client open a user session, then switch to tty2 (ctrl+alt+f2) and try the ltspfs cmd [09:33] (sorry I'm doing wireless driver testing/debuging at the same time) [09:34] ok, well when I do ctrl+alt+f2 as a normal user I just get a black screen with a rapidly blinking curser in th upper left hand corner. [09:34] I appreciate your help! [09:35] so I can't seem to do anything unless I log in on tty1 [09:36] and then only as root [09:38] what's the exact ssh error you get ? [09:40] The authenticity of host 'server (192.168.0.254)' can't be established. RSA key fingerpirnt is 47:1c:55:fa:45:05:80:b0:a6:48:c1:aa:68:5a:d5:2d: are you sure you want to continue connecting? [09:41] ok, can you have a look at files in /etc/ssh/ [09:41] yes [09:41] is 192.168.0.254 specified in one of them ? [09:41] yes, shall i clear it? [09:42] no, but then it shouldn't ask this question ... [09:42] that's weird [09:42] and if you try replacing server by 192.168.0.254 in your cmd [09:43] lemme try [09:43] does it helps ? [09:43] stand by [09:44] ok well the response was different anyway [09:45] I did it by ip and it asked for root's password at 192.168.0.254 which i provided then it complained that there was no file or directory called /usr/sbin/ltspmounter (which is true but that's the nomenclature used on the debug) [09:46] I am doing this comand ssh -S /tmp/.ltspfs_socket server "/usr/sbin/ltspfsmounter /tmp add" [09:46] do you have ltspfs installed on the server ? [09:47] ummm [09:47] this is a stock edubuntu install [09:47] lemme see [09:47] (according to apt-file that's the package you need to have ltspfsmounter) [09:48] I have /usr/bin/ltspfsd is that a good indication? [09:48] should I just do apt-get from within the chroot? [09:48] dpkg -l | grep ltspfs [09:49] it's a package to install on the server itself, not the chroot [09:49] so : sudo apt-get install ltspfs on the server should do it [09:50] ltspfs is already the newest version. [09:52] as an aside all of my ubuntu based systems have been complaiing about multiverse sources lately [09:55] is it weird at all that I can't do ctrl+alt+f2 to get to tty2? [09:58] no, I usually have a debug console on tty2 here but that can be personal tweak or gutsy [09:58] ok, so not integral to debugging this problem, I guess [10:07] I know I asked this before but I`ll say again. Anyone know how to edit a live [10:07] Cd [10:13] ok [10:13] I am leaving [10:14] stgraber thanks for the help! [10:14] I'll keep plugging away === john_s [n=john@c-24-17-48-60.hsd1.wa.comcast.net] has left #edubuntu [] === bddebian2 [n=bdefrees@c-71-224-172-103.hsd1.pa.comcast.net] has joined #edubuntu === mumbles [n=mumbles@borknet.org] has left #edubuntu [] === boyam [i=boyam@166-82-81-31.quickclick.ctc.net] has joined #edubuntu === boyam [i=boyam@166-82-81-31.quickclick.ctc.net] has joined #edubuntu === wfc0d3r [n=c0d3r@203.82.39.69] has joined #edubuntu === Netham45 [n=netham@c-67-190-103-57.hsd1.co.comcast.net] has joined #edubuntu === pitux [n=pitux@pc-191-224-47-190.cm.vtr.net] has joined #edubuntu === raynerd [n=raynerd@79-65-78-207.dynamic.dsl.as9105.com] has left #edubuntu ["Konversation] === lns [n=lns@75.61.204.105] has joined #edubuntu === pitux [n=pitux@pc-191-224-47-190.cm.vtr.net] has joined #edubuntu === effie_jayx [n=valles@ubuntu/member/effie-jayx] has joined #edubuntu