=== dendrobates is now known as dendro-away [02:01] dendro-away: there is a history of the desktop people not really caring about large deployments [02:01] dendro-away: basically, I think the server team will need to push this [02:04] I could use a little practical advice on satisfying a client requirement for a site with a handful of Ubuntu servers and routers. I'm going on vacation, and they would like some kind of procedure to, essentially, shut down and restart everything. I'm hesistant to give them a procedure to follow at the consoles or over SSH, even if it's just running a script. Is there a more elegant way? [02:05] A more elegant way to type "reboot"? [02:06] I don't really want them to touch the consoles. I'd rather give them some application they can run from their desktop that will invoke an automatic shutdown script on each machine. [02:06] They are really not technical people. [02:07] Maybe even one of the open source monitoring/management packages with a Web interface? [02:07] So, I guess you get to write a big GUI button that, on the backend, does an ssh trigger that... Reboots. [02:07] Yeah. I suppose that would be simple enough. OK. [02:08] If you have VB or C#, should take about 3 minutes. [02:08] 4, if you fuss over the size of the button. [02:08] I don't really code, but I'll see what I can scrape together. Heh. [03:20] hey guys [03:21] does anyone know of a way to measure network throughput at any given time? [03:21] basically to measure how much data your computer is sending at any one point [03:21] or recieving [03:21] ?? [03:34] jetole: iptraf [03:35] nealmcb: thanks [03:35] also iftop, ntop, mrtg, cricket [03:35] cacti... [03:35] iptstat [03:36] well I will look at iftop and cricket but I want a way to poll it on the command line, something I can use to pipe into mysql [03:36] ifconfig :-) [03:37] or the ip command [03:37] well I will look into ip but I didn't know I could get that from ifconfig [03:37] is there anything in /proc/net ? [03:37] * jetole has some RTFM to do [03:38] Innatech: I would imagine but I don't know where [03:38] cat /proc/net/dev [03:38] that looks promising [03:38] then feed it through awk when you decide what you want. [03:39] /proc/net/dev looks like it tells me a total of data sent [03:39] as opposed to how much data is travelling at the moment [03:39] hrrrm. [03:39] Well, watch it and do math. [03:40] * nealmcb wonders if iptables can tell you [03:40] probably can. [03:40] well I have asked in #iptables and they suggested bwmon which I havn't compiled yet [03:41] they just mentioned that a few mins ago [03:42] * jetole is still looking into this [03:43] I found a few perl scripts that just track /proc/dev/net and update an env variable with the throughput at a user defined interval [03:43] >shrug< [03:43] hmmm [03:43] maybe [03:43] err, /proc/net/dev that is. [03:44] I would tend to think there is a more native way [03:48] jetole: how about ifstat [03:49] it watches /proc/net/dev like everything else, but it's cleaned up for you. [03:51] * jetole looks [03:54] also bwm-ng [03:54] again, it just watches proc [03:55] ifstat looks good so far [03:56] ethstats is another option [03:56] ;P [03:56] * jetole will look at both those but ifstat seems good as well [04:03] jetole: there's something called ftm you can try if you prefer to use the netfilter packer counters. It might be cheaper than scraping ethstats. [04:04] ethstats doesn't seem too interesting, from what I have seen it won't do a single dump... [04:04] and I want to monitor only every 5 mins so a single command that can be cron tab'd will do [04:04] ifstat seems to do that [04:05] yeah - ifstat is very clean and reminds me of iostat [04:05] jetole: thanks for both the question and followup :-) [04:06] no prob, I really wanted to know [04:06] ;) [04:06] and I am still looking into it [04:20] actually right now I am looking at writting a little c script that reads in and out on one interface and posts it to the mysql [06:26] moin === dendro-away is now known as dendrobates [12:51] is it safe for production server to upgrade from feisy to gusty? [12:51] generally [12:51] yes, if you take precautions [12:52] Kamping_Kaiser: the key softwares are postfix [12:52] Kamping_Kaiser: i guess everthing can go smoothly [12:53] Kamping_Kaiser: it is wise to catch up the latest release, right? [12:53] qiyong, if theres no backports, minimal universe and no external packages the upgrade should be fairly painless [12:53] even if it's a production server [12:53] qiyong, not necesarily. it works. [12:53] if you need a functionality from gutsy, upgrade. otherwise, stay where you are. [12:54] Kamping_Kaiser: 2.3 postfix doesn't work with milter, so i'd upgrade to 2.4 postfix with gusty [12:54] Kamping_Kaiser: if i stay with feisty, then years later [12:55] when feisty and feisty upgrade are no longer supported, problem comes then [12:55] Kamping_Kaiser: in terms of backports, there maybe some from ubuntu security repos [12:55] qiyong, when hardy comes out, you can upgrade to that via gutsy and its a supported update still [12:55] nothing else [12:56] -security is fine. the -backports repository is what i was thinking about [12:56] qiyong: Postfix 2.3 works with milters that do not modify the body of the message. [12:56] Kamping_Kaiser: still i have to jump to gusty in order to get on to hardy, even i don't actully use gusty [12:57] qiyong, sure. [12:57] ScottK: actually, it just simply doesn't work [12:57] qiyong: Maybe for your milter, but I used dkim-milter with it just fine. [12:58] ScottK: i tried the one for sendmail [12:58] qiyong: I've upgraded several servers from Feisty to Gutsy with no significant problem. [12:58] ScottK: that encourages me [12:58] so i'd upgrade in the weekend [12:58] qiyong: Do you use clamav? [12:59] if something broken, i have time to fix [12:59] ScottK: yes, i was trying to use clamav via milter [12:59] Ah. That was actually a clamav-milter config issue, not a Postfix limitation. [13:00] It's (I think) fixed in Gutsy. [13:00] The one small caution I would give you (that's not in the release notes, read those) is Bug #172925 [13:00] Launchpad bug 172925 in postfix "postfix upgrade does not add 'retry' service" [Medium,In progress] https://launchpad.net/bugs/172925 [13:00] ScottK: clamav-milter was broken in feisty, right? [13:00] For using with Postfix. [13:03] I believe, but have not tested, it'd work just fine with Sendmail. [13:05] sure, it's designed for sendmail [13:05] the bug you show me means every postfix upgrade would be borken? [13:05] ScottK: [13:06] oh, a postfix reload is ok? [13:06] s/oh/or/ [13:06] qiyong: Postfix works just fine, just doesn't have the new retry service. [13:07] That's why it wasn't noticed during development. [13:07] But you run the script mentioned in the but and all is well. [13:07] is the retry in some conf file, like master.cf? [13:07] Yes. [13:08] dendrobates and lamont`: We really ought to add Bug #172925 to the Gutsy release notes. [13:08] Launchpad bug 172925 in postfix "postfix upgrade does not add 'retry' service" [Medium,In progress] https://launchpad.net/bugs/172925 [13:09] ScottK: it wouldn't hurt me, i never touch my master.cf [13:09] qiyong: No, it wouldn't hurt you. [13:09] :) [13:09] * Nafallo is scared of sendmail [13:10] qiyong: Additionally, if you did run the upgreade script, it makes the master.cf change for you, so you still don't have to touch it manually. [13:10] * Nafallo rather makes postfix deliver mails into a postgresql db ;-) [13:10] * ScottK doesn't fear Sendmail, he just thinks his life is complicated enough already without it. [13:10] * ScottK goes to the fridge for another cold, dead, wet fish. [13:10] I had to deal with it in my last job :-P [13:12] postgresql or dead fish? [13:12] sendmail [13:12] and mysql [13:13] Ah. Even scarier. [13:13] I can't avoid mysql however much I try :-/ [13:13] at least my current work run exim. [13:13] on centos... [13:14] with cpanel :-P [13:15] That sounds, um, limiting. [13:16] indeed. [13:16] <-- wonders whats wrong with mysql ? [13:16] oh well. gives me money to play with my own toys ;-) [13:17] is not as fun and good as postgresql [13:17] how so ? [13:17] just curious, always used mysql just wonder if i should look into postgres [13:17] personal preference more then anything. [13:18] I used mysql, tried postgresql, and was blown away. [13:18] it really fits me much better. [13:18] aha, always liked mysql cuz its very easy to setup and administer with the mysql-admin and mysql-query-browser [13:19] postgresql vs mysql on google gives a pretty list ;-) [13:19] does postgres do clustering and replication type features as well ? [13:49] yes [14:50] hmm [14:50] anyone played with Cobalt RaQ 4 and Ubuntu yet? ;-) [14:53] Cobalt? is that hardware still around? [14:53] yes :-) [14:54] picked one up from work ;-) [14:54] just need some replacement memory and fans now :-) [14:54] and well, replace the OS ;-) [14:55] succes on that one! [14:58] I thought about Strongbolt, but I think I rather run Ubuntu :-) [15:53] anyone ever had a problem with installing from cd-rom getting stuck, then to check the integrity to be ok, then it still hangs, ive swapped 3 different cd-roms and have tried 2 different disks [15:55] does anyone have a recommendation on a dynamic dns service? [15:56] sommer, dyndns is fairly common. hasnt fsked up on me to badly yet [15:56] Kamping_Kaiser: thx I was using them, but all of the sudden my account has been dropped [15:56] !tell rodpod about ask [15:57] sommer, probably 30 days without IP change [15:57] Kamping_Kaiser: that's what I'm thinking, but I know I logged in the last time they sent the email [15:57] must not have updated correctly... garrr [15:58] sommer, never dealt with the email - i usually have a blackout at least once every 30 days and get a new IP from that :\ [15:58] just wondering if anyone is using another service? [15:58] * Kamping_Kaiser needs another UPS or two :( [15:58] Kamping_Kaiser: ah... ya, all I really use is for is ssh access from work to home. [15:59] sommer, me to, with the occasional link to a file over http (like the idea i put in here a few days ago) [16:00] Kamping_Kaiser: I'm not sure I caught that idea? [16:01] sommer, well, in short it was to provide a default template for using apache vhosts on ubuntu-server by shipping a /etc/apache2/sites-available/template (or similar). http://k-k.homelinux.net:81/~kgoetz/apache2-vhost-template.txt is the link, the .txt is so lighhtttpd doesnnt try and server it as binary :\ [16:01] i've been kicking it around in my mind from various angles for the last few days trying to work out how practical it is === away is now known as stickystyle [16:03] Kamping_Kaiser: ah... I think I remember now. Doesn't the default config use a vhost? [16:03] two key issues i noticed were the amount of doco that could need changing, and the requirement to have a DNS server to use it [16:03] sommer, yes, but its not very easy to wokr out from there how to DIY vhosts [16:03] sommer: My usual answer is that if you think dydns will help you, you're probably trying to solve the wrong problem. [16:04] sommer: there is a 'long term dns' option for dyndns [16:04] ScottK: heh... seems simple enough [16:04] sommer: so that it doesn't require being touched every 30 days [16:04] mralphabet: ya... I just haven't ponied up the cash [16:05] sommer: If you actually need a static presence on the net, then it's virutally always better to open the wallet and get an actual static IP IMO. [16:05] sommer: cash? o0 I've never yad to pay for mine [16:05] s/yad/had [16:05] mralphabet: really I thought you needed to pay for not having to update? [16:06] ScottK: agreed, but so far my needs have been quite small [16:06] sommer: I've never paid [16:06] mralphabet: awesome I'll do more digging on thier siete [16:06] site rather [16:08] mralphabet: are you using a ddns update client? [16:08] sommer: I'm looking too, I remember two different kinds of dyndns services, a short term and long term configuration. short term had to be touched fairly often, long term just sat there [16:09] sommer: I am now, a buffalo router using ddwrt, but I wasn't for . . .2 years? or so. Still never had the issue [16:10] mralphabet: ah... I think I tried configuring my wireless ap to do the update, but I don't think I ever got it working correctly [16:11] sommer: this is from an email a few years ago, "This hostname deletion is due to an idle timeout on all Dynamic DNS [16:11] hostnames; they are deleted after 35 days without updates. We are sending [16:11] you this notification to avoid confusion about the deletion of your host, [16:11] and to let you re-create the host at your earliest convenience. Hosts with [16:11] static IP addresses should be in the Static DNS system, which does not have [16:11] a 35 day timeout." [16:11] at that point the "static dns system" was a selectable option [16:11] mralphabet: ah... I'm with ya [16:12] I'll probably just create another account [16:13] sommer: and looking at the page, I go to Account > My Hosts > Hostname > and configure the name [16:15] sommer: https://www.dyndns.com/support/kb/static_dns_end_of_life.html [16:15] well, there's my answer [16:15] my router apparently is keeping the updates going [16:16] mralphabet: ah... thanks for the link. [16:16] wish i kept my IP for 30 days at a time :( [16:16] I'll probably take a serious look at purchasing an account [16:16] i coudl point some/one of my domains home [16:17] * mralphabet hasn't had an IP change in months [16:17] * mralphabet should power cycle his modem more often [16:18] * Kamping_Kaiser wonders why you would reboot a modem [16:19] Hi, I have trouble getting postfix/SMTP AUTH working wiht mysql. It seems that there is not even a connection attempt to the database. I have postfix/courier/saslauthd running on Ubuntu Gutsy. Anybody here who might want to help?! Thanks in advance! [16:20] mneisen: does it work if you tell postfix to not chroot the daemon? (or if you link the socket into the same place under /var/spool/postfix? [16:20] lamont`: Let me try. [16:22] lamont`: how would i do that, btw? [16:23] there's a column in /etc/postfix/master.cf for 'chroot' or such. save master.cf and change all those to the not-chroot value [16:23] * lamont` doesn't remember which way the switch is [16:23] then restart postfix [16:23] its the middle column [16:25] well, thats the way i know how to do it. [16:26] trouble is: does "-" in a column mean yes or no? [16:26] since there is no single "y" in this column in my master.cd [16:26] master.cf [16:29] # service type private unpriv chroot wakeup maxproc command + args [16:29] # (yes) (yes) (yes) (never) (100) [16:29] that pair of lines is the meaning, and the default [16:29] - == yes for chroot [16:29] so make 'em all 'n' :0) [16:32] well, changed that to "n" for smtp and smtps - no luck. [16:44] lamont`: I just found, that a problem I thought was solved is still there: [16:44] warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2: Permission denied [16:45] Can you give me a hint what is wrong? [16:45] mneisen: That's what you get if sasldb2 isn't in the chroot. [16:46] Did you restart or reload Postfix? [16:46] Yes, I did. [16:46] well, I did a restart. [16:46] Which? [16:46] OK [16:46] :-D [16:47] ScottK: But i do not want to use sasldb2 [16:47] I have my user data in a mysql db. [16:47] check your file /etc/postfix/sasl/smtp.conf [16:47] OK. Well it's trying to use saslbd2. [16:47] or is it that the sasldb2 just have to be there. [16:47] ? [16:48] Dunno. I actually use sasldb2, so I want it there. [16:48] Does /etc/sasldb2 actually exist on your system? [16:48] leonel: my smtpd.conf is here: http://paste.ubuntu-nl.org/47236/ [16:48] ScottK: I have an sasldb2 in /etc. [16:49] mneisen: Then your postfix is almost certainly still looking in the chroot. [16:50] well, I edited the master.cf and put the "n" in the lines defining smtp and smtps. [16:50] mneisen: remove saslauthd from the pwcheck methos [16:50] mneisen: remove saslauthd from the pwcheck method [16:50] leonel: Thanks for the tip. [16:50] because you are not using saslauthd really [16:51] ok. [16:51] but still the same. [16:52] restarted postfix ? [16:52] ScottK: Now i did /etc/init.d/postfix stop && /ect/init.d/postfix start - still the same. [16:53] OK. That's odd then. [16:53] Just what I think ... :-D [16:54] ScottK: BTW, i have the sasldb2 in /var/spool/postfix/etc, so even *if* postfix were still running chrooted, it should find what it needs. === dendrobates is now known as dendro-away [16:55] sasldb2 is used when you are not using libsasl2-modules-sql [16:55] OK Then it's another issue [16:56] ii libsasl2-modules-sql 2.1.22.dfsg1-9ubuntu2 Pluggab[...] [16:56] it is installed. [16:57] and in smtpd.conf (with auxprop and sql) it should select the right backend. [16:57] but it does not. [16:59] it is not even logging anything, afaics. Where should the whole thingy log into: mail.info? [17:00] well, its logging a bit, but i wanted something more. [17:00] mail.log and syslog [17:01] i just get: warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2: Permission denied [17:01] whoppsie, that could be it. [17:01] wrong perms? [17:02] I don't have /etc/sasldb2 .. [17:02] well, I would rather not, either. [17:03] But i have to go by the errors i get, sadly. :-D [17:04] ok, now i have postfix configured to authenticate against /etc/sasldb2 [17:04] great! [17:04] but not what i want. === stickystyle is now known as stickystyle|Away [17:05] It's a start [17:06] hi [17:06] ScottK: :- [17:06] :-D [17:06] well, how do i change the auth backend if not by /etc/postfix/sasl/smtpd.conf [17:06] ? [17:07] there is where youcontrol that [17:07] so i thought. [17:07] with postconf :) [17:07] but it does not seem to work. [17:07] ivoks: :-D [17:07] *everythin* else is optional [17:07] postconf is the only tool [17:07] begining and the end of the whole mankind [17:08] ivoks: well, then shoot. [17:08] what? [17:08] mneisen: You might have a look at http://www.postfix-book.com/download/smtpauth_mysql_database.sql.gz [17:08] what is the right 'postconf -e' line to change SMTP AUTH backend to use mysql? [17:08] ScottK: thanks for the link. [17:08] mneisen: none [17:08] for AUTH you can use sasl or dovecot [17:09] and then sasl or dovecot uses mysql/ldap/whatever [17:09] yeah, right. But it does not in my case, unfortunately. [17:09] it uses sasl, all right. [17:09] but sadly with the BDB sasldb2 backend. [17:09] then set up sasl [17:10] dovecot does have an example in dovecot.conf for mysql auth [17:10] ivoks: that's what I try to do. [17:10] ivoks: thanks for the hint. do you have an URL? [17:10] you mean bank account number? :) [17:11] i don't have an url, there are examples in dovecot.conf, provided by dovecot-common package [17:11] ok. [17:56] bye === stickystyle|Away is now known as away === away is now known as stickystyle === dendro-away is now known as dendrobates === dendrobates is now known as dendro-away === dendro-away is now known as dendrobates === stickystyle is now known as away === away is now known as stickystyle [19:35] heya.. having a noob issue. I'm sure most of you have seen this before :) === mathiaz_ is now known as mathiaz [19:46] lonecrow: I've seen it. [19:47] You're going to need a net some duct tape and a pound of chewing gum! [19:51] just kidding... [19:55] sommer == mcgyver? === ember_ is now known as ember [19:58] mralphabet: he's actually my uncle. Uncle Mac I call him. [20:01] . . . [20:01] you're right that's not true, you caught me... heh [20:04] * sommer wonders what lonecrow's question is [20:05] heh [20:31] sorry lol [20:32] I had to go afk stopped what I was typing mid way [20:32] I installed ubuntu with lamp and postresql.. [20:33] it boots up and gives me an error with apache2 saying I don't have a fqdn. I remember fixing this in the past by adding somerthing to /etc/hosts but I dont know what. Its just a pc wth dhcp turned on for right now [20:34] my hosts has 127.0.0.1 localhost which is right but then 127.0.1.1 mycomputername [20:34] in the apache2.conf I dont see anything that says "servername=" anywhere should I add it? [20:46] please help.. shouldn't this type of thing work after the install? [20:47] I don't have a servername directive in my conf and it works [20:48] I've done this install like so many different ways. I've installed bare bones and then apt-get install apache2 and it still gives same error. [20:48] lonecrow: are you talking about the "Could not determine the server's fully qualified domain" message that you get where restarting/reloading apache2 [20:48] ? [20:49] yes [20:49] I've fixed this before in a the past I just forget where... [20:50] I've looked it up and can't find any fix for it, nor does it say in the ubuntu website page for apache2 [20:51] its really not much of an error, just kind of a 'by the way'. It's normally cleared up with ServerName in your apache2.conf file. you may want to check the output of $hostname --fqdn [20:52] ServerName www.example.com [20:52] no '=' sign. [20:54] I'm betting that hostnanme --fqdn does not spit out a true fqdn. since apache first looks for ServerName, then trys to determine the fqdn itself. [20:54] and if it cannot it lets you know. [20:55] http://httpd.apache.org/docs/2.0/mod/core.html#servername [20:57] Oh no = sign ok thanks [20:57] yeah there is no www just the name of the computer for now [20:59] ok that worked.. :) thanks.. now I'm getting install:cannot change owner and or group of /var/lock/apache2 [20:59] then permission denied make_sock couldn't bind to 80 etc.. which is probbly due to the first error. [21:00] this is a standard lamp install of gutsy .. wtf set the root username and password its all good.. [21:01] Did you try restarting it without using sudo? e.g. $sudo /etc/init.d/apache2 start that is the kind of error you get when you try to start/restart as a normal user. [21:03] no I used sudo [21:03] or not [21:03] doh [21:03] me so smart [21:04] thanks guys :) [21:04] :-D It happens, don't worry. [21:10] coffeedude, you around? [21:19] Hello [21:19] hello