[01:41] <PyroSama> Hey I just installed ubuntu server on a computer and didnt configure the networking on it
[01:41] <PyroSama> And I'm clueless how to do it
[01:42] <PyroSama> Where is the configuration file that I need to modify?
[01:43] <fujin_> vi /etc/network/interfaces
[01:43] <fujin_> man 5 interfaces iirc
[01:43] <fujin_> there should be a little header at the top of the file which tells you the manpage
[01:43] <PyroSama> Thank you :)
[01:43] <fujin_> but generally,
[01:43] <fujin_> auto <interface>
[01:43] <fujin_> iface <interface> inet static
[01:43] <fujin_> address <address>
[01:43] <fujin_> netmask <netmask>
[01:43] <fujin_> gateway <gateway>
[01:43] <fujin_> should suffice for a static configuration
[01:44] <PyroSama> Ok :)
[02:01] <MrProper_> afternoon all
[03:25] <chowmeined> Will the sparc version of ubuntu server run on something as old as an ultrasparc IIi?
[03:25] <kgoetz> if its 64 bit (which iirc it is) you migh be lucky
[03:25] <kgoetz> but i wouldnt count on it
[03:26] <chowmeined> yea it is 64bit
[03:26] <chowmeined> ok, im running debian sparc on it now
[03:26] <chowmeined> i guess ill stick with that
[03:26] <kgoetz> not sure how different ubuntu+debian sparc is
[03:29] <kgoetz> chowmeined: what is the server in question? a sunblade? (asking from intrest)
[03:29] <chowmeined> an ultra 10
[03:29] <chowmeined> its more of a workstation.. but i use it as a server
[03:30] <kgoetz> nice. i dont have any 10's. got a 5 running
[03:32] <chowmeined> its kind of slow but im the only one who uses it and its very stable
[03:32] <kgoetz> wish i had a sparc running as my workstation, but the only likely candidate is in my rack waiting to be used as a buildd
[03:33] <chowmeined> oh, i dont use it as my workstation, i just meant the model was designed as a workstation, it has some special 3d card in it
[03:35] <kgoetz> yeah. same deal with me, but the fancy cards are in the ultra5's not the fast systems :( (all my sparces were made as workstations)
[04:47] <kgoetz> hi all. http://pastebin.ca/756106 these instructions tell me to edit master.cf for adding dspam into postfix. anyone know a way that doesnt involve master.cf ?main instead?)
[07:51] <kraut> moin
[08:26] <zul> ls
[10:21] <AnRkey> what early warning systems work well with ubuntu? I need something to warn me when services go down
[10:30] <heatxsink> what should I be googling for when looking for information on extending the installation of ubuntu on boxes?  I have to a tedious roll out, and I was wondering if there was a way of extending the current ubuntu installation
[10:32] <Kamping_Kaiser> 'extending'?
[10:34] <heatxsink> essentially I'd like to add a number of users by default, make a few config tweaks on a LAMP server setup and go
[10:34] <heatxsink> minimize prompting
[10:35] <Kamping_Kaiser> is all the hardware the same?
[10:35] <heatxsink> i mean I could bash script the whole thitng
[10:35] <heatxsink> ya
[10:35] <heatxsink> all of the hardware is identical
[10:35] <Kamping_Kaiser> look at mondo
[10:35] <heatxsink> coool will do
[10:37] <heatxsink> so I just image the configuration?
[10:40] <Kamping_Kaiser> you make the system once, then image it multiple times. all systms are *exactly* the same
[10:50] <ivoks> or FAI
[10:51] <ivoks> or do your own install CD with custom preseeding
[10:51] <Kamping_Kaiser> yeah. or preseed.
[10:51] <Kamping_Kaiser> FAI or preseeding is pretty full on though
[10:55] <spiekey> hi
[10:56] <spiekey> whats steps do i need get a normal ubuntu-desktop (as in 7.10) when i currently have a 6-06 server whithout X
[10:57] <spiekey> upgrade to 7.10 server and then install gnome?
[10:57] <Kamping_Kaiser> hm. easier to backup and start again imo
[10:58] <spiekey> hehe, okay :)
[10:58] <Kamping_Kaiser> you would have to go 6.06 -> 6.10 -> 7.04 -> 7.10 -> install ubuntu-desktop  -> remove extra server packages
[10:59] <spiekey> ok, that sucks :)
[11:00] <Kamping_Kaiser> pretty much, but its the only way for Canonical to sanely support upgrades
[11:02] <zul> if they are the same hard drives you could just dd them
[12:35] <spiekey> i should be able to install ubuntu-7.10-dvd-i386.iso on a AMD XP machine, right?
[12:45] <oly-> spiekey, yes that should be fine thats what i use
[12:46] <varek> how can i disable conntrack ?
[12:54] <spiekey> how do you enable root login for gnome?
[12:54] <spiekey> by a command line way if possible
[12:58] <avatar_> sudo passwd root
[12:58] <AnRkey> spiekey, you wanna login to gnome with root?
[13:00] <spiekey> AnRkey: yes
[13:01] <AnRkey> just remember anything you open will just run
[13:01] <AnRkey> normally logging in to a gnome with root is not a good idea
[13:02] <AnRkey> i would suggest using gksudo for the apps you want to run as root
[13:05] <spiekey> i do understand, but the areca software has problems with that
[13:11] <_ruben> X as root .. yuck
[13:11] <_ruben> X on server .. yuck
[13:11] <_ruben> X as root on server .. damn scary
[13:12] <spiekey> this is only for backup recover reasons
[13:12] <spiekey> mabe i will never need it, but i still need to document the way how a recover works
[13:47] <XiXaQ> _ruben, why is x on server yuck?
[13:53] <spiekey> XiXaQ: well, whats the point?
[13:53] <spiekey> why would you ever need X for server services?
[13:53] <XiXaQ> for a terminal server, for instance?
[13:54] <spiekey> ok, that would make sense ;)
[13:54] <XiXaQ> using either xrdp or nx. Is there any reason not to run x on a server in that case?
[13:55] <XiXaQ> because I do that; first I install ubuntu server, with lamp, mailserver and ssh server, then install ubuntu-desktop and nx. Is there any reason not to do so?
[13:57] <spiekey> i dont know a reason why i need X for LAMP
[13:57] <spiekey> ssh is all i need.
[13:59] <XiXaQ> yes, but I need to have both a terminal server and a lamp/mail server. The question is wether or not I need to separate them into different VMs or not.
[14:00] <spiekey> well, i would seperate it since users work on a terminal server..i would be scared because of local exploits and local services misconfiguration
[14:04] <_ruben> indeed
[14:04] <_ruben> the X protocol isnt one of the most secure ones
[14:08] <_ruben> but i'd indeed seperate the terminal server from the lamp/mail server .. and i even prefer seperate lamp and mail servers
[14:09] <oly-> doesnt nx encrypt the x connection using ssh if you use that, should make it a lot more secure ?
[14:09] <XiXaQ> but this is just for a couple of users. It seems like a waste to separate them like that.
[14:09] <XiXaQ> oly-, it does.
[14:10] <oly-> so the X protocol not being that secure is not so much an issue if you use nx for the connections
[14:12] <XiXaQ> spiekey, do you mean that users could run the exploits accidentally?
[14:12] <XiXaQ> an unprivileged user could gain access to lamp or mail features?
[14:17] <_ruben> accidentally or on purpose, does that really make a difference?
[14:21] <XiXaQ> well, if they have to do it on purpose, then it's not a problem.
[17:24] <PyroSama> How do I add a network device to my server?
[17:26] <sommer> PyroSama: do you mean a network card?
[17:27] <PyroSama> Yes
[17:28] <sommer> PyroSama: it should be auto detected you can configure it in /etc/network/interfaces
[17:28] <PyroSama> It doesnt show up under ifconfig and I have it configured in interfaces
[17:28] <PyroSama> When I restart networking it tells me there is no eth0
[17:29] <sommer> is it listed if you do a dmesg | grep -i net ?
[17:29] <PyroSama> Let me check
[17:31] <PyroSama> Yes it does.
[17:32] <sommer> PyroSama: do you have the nic's module loaded?
[17:33] <sommer> you might also see if you have any dhcp client processes running, if so try stopping them and restart networking.
[17:34] <PyroSama> How do I know if I have the nic's module loaded?
[17:34] <PyroSama> And how do I see if I have any dhcp client proccesses running?
[17:36] <sommer> to check dhcp do ps -ef | grep dhcp
[17:36] <PyroSama> k
[17:36] <sommer> what model of nic is it?  you should be able to google to find out which driver module your card uses then do an lsmod and see if it's listed.
[17:38] <PyroSama> Above command returned root 'string of numbers' tty1 then something about grep dhcp
[17:38] <PyroSama> Not sure of the model
[17:39] <sommer> you should be good about dhcp then... the model should be on the card, or at least the manufacturer
[17:40] <PyroSama> Integrated into the board and no chips near the port bear any names that are known for producing ethernet chip sets.
[17:41] <sommer> ah... I thought you were adding a secondary nic or something.  Do lspci | grep -i net to see the info about your nic.
[17:46] <PyroSama> Sis 900
[17:49] <PyroSama> Na this system is an os I installed on one computer then moved the hdd to another.
[17:50] <PyroSama> The system its in now has no cdrom or ability to add one nor will it boot to usb so I installed on one system and moved it over
[17:50] <PyroSama> So now I have to get drivers working ><
[18:06] <sommer> PyroSama: I think the module is named sis900 so you might try lsmod | grep -i sis and see what you get.
[18:06] <sommer> if it doesn't return anything try modprobe sis900
[18:06] <PyroSama> Ok
[18:09] <PyroSama> lsmod brings up info about sis630 and sis900
[18:09] <PyroSama> modprobe displays nothing and just drops me to the next line
[18:10] <sommer> that's expected
[18:10] <sommer> try sudo ifup eth0
[18:10] <PyroSama> So it seems that the chipset is an sis900
[18:10] <PyroSama> Ok 1 sec
[18:11] <PyroSama> error about device not existing
[18:12] <sommer> any errors if you do dmesg?
[18:12] <PyroSama> ifup eth0 | dmesg?
[18:13] <mralphabet> just a dmesg
[18:13] <sommer> no... just do "dmesg" by itself to check the last output.
[18:13] <PyroSama> floppy0 errors :P
[18:14] <sommer> mmmMMM... I'm running out of ideas, try rebooting maybe?
[18:14] <PyroSama> Should modprobe have installed the driver or something?
[18:15] <PyroSama> From what it looks like it doesnt have the device associated with eth0
[18:15] <sommer> modprobe should load the driver into memory... after doing that I believe you should see something at the end of dmesg about the new hardware
[18:16] <sommer> you're sure the nic is enabled in BIOS?  and the hardware is working fine?
[18:18] <PyroSama> Not 100%
[18:18] <PyroSama> This is a modified laptop motherboard that could have suffered damage through its life
[18:20] <sommer> ah... you might try adding another nic if you can.
[18:22] <PyroSama> No pci no pcmcia
[18:22] <PyroSama> USB though
[18:23] <sommer> you can get USB nics that will work with Linux for a resonable amount.
[19:04] <PyroSama> sommer: when I dmesg | grep eth0 it shows sis900 after a reboot
[19:04] <PyroSama> However there still seems to be an issue with eth0
[19:04] <ivoks_> there's no good sis network card
[19:05] <PyroSama> It's what I'm suck with unfortuantely
[19:05] <PyroSama> Shouldnt eth0 show up under ifconfig?
[19:06] <mralphabet> do cat /etc/network/interfaces
[19:06] <soren> PyroSama: ifconfig by default only shows configured interfaces.
[19:06] <ivoks_> soren: well... :)
[19:07] <soren> er... Interfaces marked as UP, anyway.
[19:07] <soren> Which - in the good old days - was almost the same.
[19:07] <ivoks_> but in better days... :D
[19:08] <PyroSama> cat interfaces showes the contents of interfaces
[19:08] <ivoks_> really?!
[19:08] <PyroSama> Has my static config for eth0
[19:08] <PyroSama> Yeah
[19:08] <ivoks_> hm... how come...
[19:08] <PyroSama> Character for character dump of it
[19:08] <PyroSama> Dunno
[19:08] <PyroSama> I'm clueless in all of this ><
[19:08] <soren> That's kind of what cat does.
[19:08] <ivoks_> what does 'man cat' do?
[19:08] <PyroSama> Let me check
[19:09] <PyroSama> Brings up the manual for cat
[19:10] <ivoks_> suggestion: when someone tells you to do some command
[19:10] <ivoks_> if you don't know what it does, check with manual
[19:10] <ivoks_> don't just copy paste... it could get you in trouble...
[19:10] <PyroSama> ivoks_ try dd if=/dev/zero of=/dev/hda
[19:10] <ivoks_> now... we are interested in output of 'cat /etc/network/interfaces'
[19:11] <ivoks_> PyroSama: you mean like this:
[19:11] <PyroSama> It output the contents of interfaces
[19:12] <PyroSama> auto eth0
[19:12] <PyroSama> iface eth0 inet static
[19:12] <PyroSama> address 192.168.1.210
[19:12] <PyroSama> netmask 255.255.255.0
[19:12] <PyroSama> broadcast 192.168.1.255
[19:12] <PyroSama> network 192.168.1.0
[19:13] <ivoks_> looks ok
[19:15] <ivoks_> unmute
[19:17] <oly-> no gateway ?
[19:21] <PyroSama> Gate way is set aswell
[19:22] <PyroSama> But that doesnt really matter when there is no device configured at eth0
[19:28] <PyroSama> Is there something I have to do to tell something that sis900 is eth0?
[19:42] <PyroSama> How do I tell it to use address assigned by a dhcp server?
[19:42] <ivoks> dhclient eth0
[22:02] <tepsipakki> hmm, seems to be a lot going on about puppet
[22:03] <tepsipakki> it was evaluated at HUT and turned down because it was pretty similar to cfengine. They both have a syntax language of their own to do things
[22:04] <tepsipakki> instead, we improved the in-house applications to also do pull operations
[22:04] <Kamping_Kaiser> its a cfengine replacement, so i'm not supprised it works the same ;)
[22:05] <tepsipakki> yeah :)
[22:05] <tepsipakki> our solution uses a patched rsync (all but one in included in 3.0.0pre) over ssh
[22:06] <tepsipakki> and it has pretty powerful inheritance support etc
[22:06] <fujin_> cfengine is shit compared to puppet
[22:06] <fujin_> ;]
[22:06] <tepsipakki> I'd love to demonstrate it if someone is interested
[22:06] <tepsipakki> one other tool is the metadata-database, currently called "lkprop"
[22:07] <Kamping_Kaiser> fujin_, in what way
[22:07] <fujin_> every single way you could think of
[22:07]  * Kamping_Kaiser has used cfengine (its a hardcore learning curve), and heard lots about puppet
[22:07] <fujin_> actually, how about I throw you the curve ball
[22:07] <fujin_> wait on
[22:07] <fujin_> how about
[22:07] <fujin_> native resource bastraction type identifiers.
[22:08] <fujin_> That'll do it.
[22:08] <tepsipakki> which is where every data comes from. It's the only place we put host or other data in, everything else is generated from that data
[22:08] <fujin_> s/babstraction/abstraction/
[22:09] <tepsipakki> we have 557 hosts hooked up, seven different architectures
[22:09] <Kamping_Kaiser> pc+unix?
[22:09] <tepsipakki> well, unix+linux
[22:09] <fujin_> you're doing it wrong! :D
[22:10] <tepsipakki> some windows as well, but most of them are in their beloved AD
[22:10] <tepsipakki> when a new workstation comes in, you only need o add the mac-address, hostname and group it belongs to
[22:11] <fujin_> wow, that's lots
[22:11] <fujin_> I have a defautl class which does my hackery
[22:11] <fujin_> and all it requires is apt-get install puppet
[22:11] <Kamping_Kaiser> tepsipakki, is this a configuratino tool, or a domain controller?
[22:11] <fujin_> at a later point you can tell the puppetmaster which classes to include on that node, a specific firewall, a resource/server configuration
[22:12] <tepsipakki> then in a few minutes that data has been spread out everywhere, and after netbooting the installer you just need to wait 30min and you have a machine up and running
[22:13] <tepsipakki> Kamping_Kaiser: well, the configuration is elsewhere, but that's where the inheritance patterns really shine
[22:13] <tepsipakki> like, there's a hierarchy that has hostdep, and hostgroup directories
[22:13] <fujin_> sounds terribly tedious
[22:14] <tepsipakki> hostdep has all the hosts, and the configurations that they only have
[22:14] <tepsipakki> it isn't :)
[22:15] <fujin_> http://rafb.net/p/UoSVHT48.html
[22:15] <tepsipakki> hostgroup has stuff like all/all which goes to every host, and ubuntu/workstation which is synced to all ubuntu workstations, obviously
[22:16] <tepsipakki> fujin_: yes, and is it fun to maintain such rules?
[22:16] <fujin_> there's no maintaining done :)
[22:16] <tepsipakki> or write
[22:16] <fujin_> if by maintaining you mean adding new functionality
[22:16] <fujin_> then yes
[22:16] <fujin_> well then
[22:17] <fujin_> yes, it's much more fun than writing ridiculous cfengine configs
[22:17] <tepsipakki> sure
[22:17] <tepsipakki> but why write those at first place :)
[22:17] <fujin_> because they do what I want?
[22:17] <fujin_> would you propose I wrote a bash script to manage all of my systems?
[22:17] <tepsipakki> no
[22:18] <fujin_> spent countless hours desigining a system which is hard to learn that no one else will ever be interested in?
[22:18] <tepsipakki> I'm just trying to show the differences, poorly I guess :)
[22:18] <fujin_> aye, indeed
[22:18] <tepsipakki> heh
[22:19] <fujin_> so, you use cfengine and rsync
[22:19] <fujin_> ?
[22:19] <tepsipakki> no cfengine
[22:19] <tepsipakki> rsync yes
[22:20] <tepsipakki> but the system is called rfist :)
[22:20] <tepsipakki> (yes, the guy who wrote it has a strange sense of humor)
[22:20] <fujin_> it's purely rsync?
[22:21] <tepsipakki> well yes, but the inheritance patterns are what makes it cool
[22:22] <tepsipakki> oh, and those files aren't synced on top of old ones, instead in /alt/root
[22:23] <tepsipakki> then there is another tool on the host that actually commits the changes, and backs up the old ones
[22:27] <fujin_> so, it's modified rsync?
[22:27] <fujin_> that's just dirty, I can't believe you're promoting it as a good thing
[22:28] <fujin_> if I inherited that solution, it'd be up there in my top 5 things of things to change
[22:28] <tepsipakki> fujin_: as I said, all but one patch is already in rsync-3.0.0pre1-> and the last patch is still in consideration
[22:28] <tepsipakki> under
[22:29] <tepsipakki> and available in patches/
[22:29] <tepsipakki> support for '--omit-dir-changes'
[22:30] <tepsipakki> I understand your concern about it, and that's why those are actively being pushed upstream
[22:30] <fujin_> so what do you have to do to prepare a box
[22:32] <tepsipakki> the most simple ones only have to have the hostname, architecture (like @ubuntu7, here it's actually 7.04), ip- and mac-address
[22:33] <tepsipakki> those are for classroom workstations, for example (we have ~200 of those)
[22:33] <tepsipakki> and updating those to a newer version only means changing the arch
[22:33] <tepsipakki> of course the real job is done elsewhere
[22:34] <tepsipakki> I mean when preparing a new release
[22:38] <tepsipakki> fujin_: http://pastebin.com/d1d64fc80
[22:38] <tepsipakki> that's what my workstation data looks like
[22:39] <tepsipakki> first is the actual data on the "database" (yes, it's a flat-text file)
[22:39] <tepsipakki> and the rest shows all the data, inherited or not
[22:40] <fujin_> so you install what on a client
[22:40] <fujin_> I assume you're doing initial provisioning with ghost, or similar
[22:40] <tepsipakki> no, debian-installer
[22:41] <fujin_> I see
[22:41] <fujin_> haven't played with that
[22:41] <fujin_> we're using generic server cd's and just apt-get installing puppet after
[22:41] <fujin_> the next step would be to either use d-i or make our own cd's
[22:41] <tepsipakki> there is a script that builds a tarball of the most critical tools and a preliminary version of the data which would be rfisted in place
[22:42] <tepsipakki> and that tarball is then extracted at a certain point. there is a udeb which has a script and some hooks to various parts of the installation
[22:43] <tepsipakki> fujin_: are you attending UDS?
[22:44] <fujin_> What's UDS?
[22:44] <tepsipakki> heh, I take that as a no :)
[22:44] <tepsipakki> Ubuntu Development Summit
[22:44] <fujin_> no, I don't believe so.
[22:44] <fujin_> I'm in new zealand
[22:46] <tepsipakki> ok, in that case stay put and wait for a public release ;)
[22:46] <tepsipakki> but if what you have now works for you..
[22:47] <tepsipakki> ok, shower time ->
[22:47] <ajmitch> NZ isn't that far from boston :)
[22:49] <Kamping_Kaiser> resizing roots space on a drive while the partition is online is a  Real Bad Idea, correct?
[22:51]  * Kamping_Kaiser wants to reclaim some of the 10gb on /home/ for users (read: me)
[22:56] <Kamping_Kaiser> afk
[22:56] <close2__> hello, i would like to create a password-protected 7z file
[22:56] <fujin_> lol
[22:56] <fujin_> and what does this have to do with ubuntu servers?
[22:56] <close2__> sorry didn't finish
[22:56] <fujin_> did man p7zip not answer your question?
[22:56] <close2__> if i try: 7zr a dummy.7z -p /data/system/
[22:57] <close2__> i get an E_FAIL error
[22:57] <close2__> an strace shows, that 7zr tries to readlink/open  a lot of files (INF, TXT, ex_....) but finally gives up
[22:58] <close2__> creating normal 7z files work
[22:58] <fujin_> That's because you're doing it wrong
[22:58] <close2__> ..
[22:59] <fujin_> 7z a -pPASSWORD archive.7z file
[22:59] <close2__> same error
[22:59] <close2__> no wait
[22:59] <fujin_> I just did it, it works
[22:59] <close2__> same error
[23:00] <close2__> i have ubuntu-server gg
[23:00] <close2__> i had this working with ubuntu-server ff
[23:00] <fujin_> heh
[23:00] <fujin_> I doubt it's a problem with 7z
[23:01] <close2__> what ubuntu-server version do you have?
[23:01] <fujin_> multiple
[23:01] <fujin_> edgy and feisty mostly
[23:01] <fujin_> I don't plan on running gutsy for some time
[23:01] <fujin_> what version of 7zip is in gg?
[23:01] <close2__> 4.51 beta
[23:02] <fujin_> might be that then
[23:03] <fujin_> I just did it with a folder
[23:03] <fujin_> 7z a -pTEST /var/www
[23:03] <fujin_> 7z a -pTEST www.7z /var/www
[23:03] <fujin_> rather
[23:03] <close2__> FYI: the strace is available on: http://christian.delta64.com/strace
[23:04] <fujin_> what's 7zr?
[23:05] <close2__> the 7z executable (it's apparently the 7z only version), but I tried p7zip-full as well
[23:05] <fujin_> no, it's 7z
[23:05] <fujin_> although i can see 7zr aswell
[23:05] <fujin_> I don't know what it is ;)
[23:06] <close2__> from man 7zr:  7zr is a stand-alone executable. 7zr handles less archive formats  than 7z,  but does not need any others.
[23:06] <close2__> i will ask in #ubuntu, if the "normal" version really has a broken 7z and file a bug if necessary
[23:09] <fujin_> using a beta, complaining about bugs
[23:09] <fujin_> soudns awesome
[23:10] <close2__> well, I just did aptitude install 7z with the standard repositories
[23:10] <close2__> i will file a bug for ubuntu-server as well
[23:11] <fujin_> cool
[23:12] <fujin_> feisty doesn't appear to be affected, nor edgy
[23:12] <fujin_> mm, life on the bleeding edge. I'm glad I have a test cycle, *and* that I don't use 7z.
[23:13] <close2__> gutsy fixed some serious bugs (kernel panics...)
[23:14] <close2__> and I would appreciate any ideas on how to password protect an archive which needs to be readable on a windows machine.
[23:15] <close2__> for daus
[23:17] <fujin_> good luck on that
[23:17] <fujin_> use GPG?
[23:18] <close2__> are there gui-interface for windows?
[23:18] <close2__> seems easier