[00:02] <zul> mathiaz: dang, i must have forgot about it
[03:41] <Kalamansi> !server configuration
[03:44] <Kalamansi> !server
[03:44] <ubotu> Ubuntu Server Edition is a release of Ubuntu designed especially for server environments, including a server-specific !kernel and no !GUI. The install CD contains many server applications. Current !LTS version is 6.06. For more info see https://help.ubuntu.com/community/ServerFaq/ - The #ubuntu-server channel provides specific support
[05:07] <Kalamansi> hello
[05:08] <Kalamansi> how to setup file server? so that workstations pc2 xp and pc3 win98 can save and download their files to the pc1 server ubuntu.. thanks
[05:13] <CarlFK> Kalamansi: ask in #ubuntu - that's a fairly common thing
[05:14] <CarlFK> Kalamansi: install sama will be step 1
[05:14] <Kalamansi> CarlFK : sama?
[05:14] <CarlFK> sorry samba
[05:14] <Kalamansi> CarlFK : thanks.
[05:14] <Kalamansi> CarlFK : which server? with GUI or CLI?
[05:15] <CarlFK> step 2: configure samba to do what you want :)
[05:15] <CarlFK> um, there is only one server
[05:15] <Kalamansi> i mean in console without x right?
[05:16] <CarlFK> for home use, doesn't really matter
[05:16] <Kalamansi> which you prefer anyway? like more secured
[05:16] <CarlFK> the less you install on a box the more secure it is
[05:16] <CarlFK> so install u-server, install samba.
[05:17] <Kalamansi> u-server?
[05:17] <Kalamansi> ubuntu CLI?
[05:17] <CarlFK>  Ubuntu Server
[05:17] <Kalamansi> which server? 7.10 CLI?
[05:17] <CarlFK> what ever is current stable
[05:18] <CarlFK> 710 sounds like it
[05:18] <Kalamansi> okay ill do 7.10
[05:18] <Kalamansi> without x window CarlFK?
[05:18] <CarlFK> right
[05:19] <CarlFK> no X, no games, no bit torrent, no email, no wine, no browser, no k-recipes, no music palyer, no tv recorder...
[05:19] <CarlFK> :)
[05:20] <CarlFK> listing all the things you should not install is going to take much longer than listing the things to install
[05:21] <Kalamansi> CarlFK : thanks ill install 7.10 without x now
[05:22] <Kalamansi> CarlFK : server for internet sharing must have no x window too?
[05:22] <Kalamansi> CarlFK and internet sharing server ubuntu must be separate from file server ubuntu too?
[05:24] <CarlFK> must? no.   but that is the most likely box to be hacked, so best to have as little on it as posible
[05:25] <Kalamansi> CarlFK : what i mean is, i have to use two box. one for internet sharing (without x window?) and two for fileserver.
[05:27] <CarlFK> you don't have to
[05:27] <Kalamansi> why CarlFK?
[05:28] <CarlFK> because you can put everything on one box
[05:28] <Kalamansi> CarlFK : is that okay? what if workstations will upload files?my internet will slow for that?
[05:30] <CarlFK> it will be fine
[05:33] <Kalamansi> with 4 nics?
[05:33] <Kalamansi> CarlFK with 4 nics?
[05:34] <CarlFK> yup
[05:35] <Kalamansi> okay thanks CarlFK
[05:36] <CarlFK> again:  that is the most likely box to be hacked, so best to have as little on it as posible
[05:36] <Kalamansi> meaning no updates to be downloaded right?
[05:36] <CarlFK> you should worry abut that more than speed
[05:36] <CarlFK> no
[05:36] <Kalamansi> once you installed ubuntu no updates to download
[05:36] <CarlFK> no
[05:36] <Kalamansi> ok i got you
[05:36] <CarlFK> updates come out now and then.  apply them
[05:36] <Kalamansi> so no updates and upgrades
[05:37] <CarlFK> no no...'
[05:37] <Kalamansi> okay all no
[05:37] <Kalamansi> noted
[05:37] <CarlFK> I wouldn't put files on it
[05:37] <CarlFK> well
[05:37] <Kalamansi> okay all "no" . noted
[05:37] <CarlFK> everything is a fiel...
[05:37] <Kalamansi> fiel?
[05:37] <CarlFK> I wouldn't put personal files on it
[05:38] <Kalamansi> ok
[05:38] <CarlFK> assume it is going to be hacked, and everything copied and deleted
[05:38] <CarlFK> so the firewall / routing config should be the only thing you care about
[05:39] <CarlFK> get it working, make a copy of the configs, apply updates
[05:39] <Kalamansi> CarlFK : "firewall" im not good in CLI. but in GUI i use firestarter...what else? what firewall apps to install in CLI?
[05:39] <CarlFK> but assume that some day the box will be hacked, and you should just wipe the drives and start over
[05:40] <Kalamansi> CarlFK : what is the example apps of "firewall" and "routing" ?
[05:40] <CarlFK> well, that gets sticky.  if you are good with something, that is better than making a mistake trying to be better
[05:40] <Kalamansi> my understand about firewall is - firestarter
[05:41] <Kalamansi> for routing - its like installing dhcp internet sharing
[05:41] <CarlFK>  "firewall" and "routing"  are both just iptables settings
[05:41] <Kalamansi> i see. thats my weakness..i am not good in typos script
[05:41] <CarlFK> i think firestarter just helps you configure rules for iptables
[05:41] <Kalamansi> CarlFK : in GUI, yes.
[05:42] <CarlFK> install u-desktop, install firestarter, and whatever else you need
[05:42] <CarlFK> set it up, get it working
[05:43] <Kalamansi> CarlFK : do you have samples of "firewall" and "routing" script?
[05:43] <CarlFK> make a copy of whatever you would need to save time setting it up again
[05:44] <Kalamansi> CarlFK but you said before dont install x window?
[05:45] <CarlFK> http://dpaste.com/33825/
[05:45] <Kalamansi> im done installing and running firestarter before.. internet is very slow to pc2 and pc3. so i tried installing ubuntu without X, internet seems fast in pc2 win98 and pc3 winxp wotkstation
[05:46] <CarlFK> it is a trade off between "best" and "done"
[05:47] <CarlFK> best will be to spend 6 years in college becoming an expert at OS and networking. but you probably don't need to put that much effort into it. :)
[05:48] <Kalamansi> CarlFK : hehe yeah. i hate school. i learn noob tutorials in my bestfriend's ebook. setting up windows then setting up linux
[05:49] <Kalamansi> CarlFK but demonoin is down..my only source of tutorials...
[05:49] <Kalamansi> CarlFK its like 24 hours tutorials setting something
[05:50] <CarlFK> set up whatever is easiest.  just assume it will be hacked, so make sure you have backups, or just figure it out again if you have to
[06:23] <sigma> has anyone here used kolab on a ubuntu server?
[06:26] <Kalamansi> CarlFK hehe reinstall 7.10 again. something wrong.hang up dvd hehehe
[06:45] <alternate_nick> what is "news" for in /var/log/?
[06:45] <alternate_nick> exit
=== nijaba_ is now known as nijaba
=== Kigh is now known as k
=== k is now known as k|
=== k| is now known as k
=== k is now known as ki
=== ki is now known as kh
[12:56] <kraut> moin
[12:57] <kh> aloha.
[13:00] <hsn_> can someone give me comparsion of ubuntu vs sles? Which is easier to update and maintain? We plan to run ibm db2 server on it
=== kh is now known as kaii
[13:07] <ScottK> hsn_: You're pretty unlikely to get an opinion here that ubuntu-server isn't wonderful.  Canoncial does provide db2 packages in their 'partner' repository, so there are db2 packages for the distro.
=== \sh_away is now known as \sh
[13:10] <hsn_> ubuntu server is maintained 18months and new version is every 6 months. Can i skip versions during updates?
[13:10] <_ruben> no .. only exception is lts -> lts
[13:10] <_ruben> im currently in the progress of migrating from sles9 to ubuntu actually
[13:11] <_ruben> sles sure has some nice features, like yast and stuff like that .. but the fixed release schedule for one is a big plus for ubuntu
[13:12] <_ruben> one thing i hate about suse is that install and update sources are seperate
[13:14] <ScottK> hsn_: The next release (sched for April) will be LTS, so you'll be able to upgrade directly from that to the next LTS release in ~2 years.
[13:15] <hsn_> LTS is normal version or some versions comes with 2 flavours (normal / lts)?
[13:15] <_ruben> ScottK: what determines if a certain release will be LTS? just the ~2 years ?
[13:15] <ScottK> It's the normal release.  It's called LTS when Canoncial decides they'll give it extra support.
[13:15] <_ruben> hsn_: its identical to any other release, just with longer support
[13:17] <ScottK> Upgrades tend to be easier on Debian derived systems.  I upgraded a laptop Dapper -> Edgy -> Feisty -> Gutsy over the weekend and while it took a while (mostly due to slow ancient hardware) there were no technical issues with the upgrades.
[13:17] <_ruben> and with debian based systems the upgrade can be done 'online' .. with suse/sles it requires booting from the new version's installation media
[13:19] <avatar_> updating is so easy with apt
[13:19] <_ruben> sudo do-release-upgrade is all there is to it ;)
[13:29] <hsn_> i am using kubuntu on desktop with adept package manager, server version comes just with aptitude?
[13:30] <_ruben> aptitude / apt-get and co / and possibly more tools ..
[13:32] <kraut> http://www.osnews.com/images/comics/wtfm.jpg
[13:32] <hsn_> server and destkop version share same .deb repo?
[13:32] <avatar_> hsn_: yes
[13:33] <avatar_> hsn_: server install is just a plain ubuntu install without the ubuntu-desktop metapackage
[13:34] <ScottK> It's also got a kernel better tuned for server work.
[13:34] <ScottK> Although I've yet to notice a significant difference.
[13:34] <ScottK> Adept is a gui front end for apt-get, so it's the same under the GUI.
[13:37] <_ruben> kraut: hehehe
[13:41] <hsn_> can i browse/search via web available packages?
[13:41] <_ruben> http://packages.ubuntu.com ;)
[13:49] <kaii> roxx ..
[13:49] <kaii> i use this when i miss specific files
[14:50] <ScottK> mathiaz: I'm pretty sure they turned the auto expire thing back on (bugs at least have a countdown displayed).  In any case it could come back at any time so I think bugs we don't want expired shouldn't get marked incomplete.
[14:50] <mathiaz> ScottK: It's just a message.
[14:51] <mathiaz> ScottK: I don't the janitor actually runs. I've come accross bugs that were marked expired for more than 60 days and hadn't been touched by LP.
[14:52] <ScottK> mathiaz: OK.  But we've no idea when it'll come back on, so we shouldn't assume it wont
[14:52] <mathiaz> ScottK: right.
[15:08] <Schiz0> Hey. I'm running a MySQL and apache server. The load is always around 1-1.5, which is fine. But every so often the load shoots up to like 15, and I'm wondering what's causing that. When it's high, I run "top" to try and see what's going on, but all it has is a MySQL process at the top of the list.
[15:09] <mathiaz> Schiz0: It may be related an sql query run by the server. Does it happen at regular times ?
[15:09] <mathiaz> Schiz0: you may wanna check the slowquery log also
[15:09] <Schiz0> It doesn't seem to happen regularly. But it is in fact a MySQL query (or series of them) doing that?
[15:10] <Schiz0> The code we run isn't too optimized, so I guess that would cause the problem. I'll check the slowquery log, thanks
[15:47] <zul> mathiaz: grrr....freaking mysql man pages
[15:48] <mathiaz> zul: I think it's temporary.
[15:48] <mathiaz> zul: may be mysql-doc hasn't been published yet.
[15:49] <zul> im pretty sure..
[15:49] <zul> it has
[16:05] <zul> mathiaz: should mysql-docs be built for amd64 as well?
=== think3r is now known as think3r_
[16:10] <mathiaz> zul: it's architecture indenpendant IIRC
=== think3r_ is now known as tardi
=== ember_ is now known as ember
=== tardi is now known as think3r
[16:21] <mathiaz> zul: ok - I've seen another bug for mysqld.8 man page
[16:23] <ScottK> leonel: Is the clamav CVE list for Dapper something you'll have time for soon?
[16:23] <zul> mysql-client looks like its not getting removed
[16:26] <soren> mathiaz, zul: What's the problem with the mysql-docs?
[16:26] <mathiaz> soren: the old version of mysql-doc ships mysqld.8, which is now provided in mysql-server-5.0
[16:26] <mathiaz> soren: a new mysql-doc package has been uploaded that doesn't ship mysqld.8
[16:26] <soren> mathiaz: You know what to do then?
[16:32] <leonel> ScottK:  Yes I'll start  past  noon   MST
[16:32] <leonel> ScottK:  do you need it  sooner ?
[16:33] <ScottK> leonel: No.  When you can get to it is fine.
=== \sh is now known as \sh_away
[17:27] <luckyone> how do you set the reply to address in ~/.muttrc?
[17:28] <luckyone> soren: did you study in Prague during the Fall of 2002?
[17:31] <soren> luckyone: I've never even been to Prague :)
[17:31] <luckyone> soren: cool - one of my friends from prague uses a similar alias
[17:31]  * luckyone uses *friends* liberally
[17:32] <soren> my_hdr is probably what you're looking for (in muttrc)
[17:33] <luckyone> I did my_hdr Reply-to: a@b.c with no luck
[17:34] <soren> luckyone: my_hdr "Reply-to: foo@bar.baz" ?
[17:38] <luckyone> soren: I think I found it on the wiki
[17:38] <soren> OK.
[17:38] <luckyone> set realname="First Last"
[17:38] <luckyone> set from="a@b.c"
[17:38] <luckyone> set use_from=yes
[17:47] <soren> Eh?
[17:47] <soren> luckyone: That doesn't set a reply-to header.
[17:47] <faulkes-> looks like a mutt config
[17:47] <soren> Yes?
[17:50] <leonel> ScottK: looking at  dapper's changelog  IIRC  we put some patches in may 2007 or Jun and there's nothing patched since  Jan 6 2007  or  there was no patches  to dapper ??
[17:55] <ScottK> leonel: That's correct
[17:56] <ScottK> leonel: clamav 0.8x is basically unsupportable.  I'm trying to make a case to copy our backport into updates so everyone gets it.
[17:56] <ScottK> leonel: You're CVE list is the key point I think to getting it accepted.  There's no other way.
[17:57] <leonel> I've already got the CVE list   that affects  clamav  since 88.2  but I need to check one by one  which  are  only for  0.91 or 92 for the code change
[17:57] <ScottK> K.  I appreciate the effort.
[17:58] <leonel> there are 22 cve's  but I think most of them  are for  newer versions  I'll let you know latter   Got to go to the doctor ( eyes exam )  in 30 minutes
[17:59] <ScottK> Thanks and no rush.
[18:03] <luckyone> soren: really?
[18:03] <luckyone> it populates it on my client
[18:17] <zul> mathiaz: i was able to reproduce it :)
[18:30] <CygnusX1> Hello.  Would anyone happen to have working snort with inline startup scripts for Ubuntu Server 7.10?
[18:36] <faulkes-> not me and I don't recall seeing anything being done with it
[18:36] <faulkes-> but then again, I'm new here so
[18:44] <Schiz0> http://imgs.xkcd.com/comics/real_programmers.png
[18:52] <soren> luckyone: It just sets the "From: " header. If you don't set use_from, it'll leave it to the MTA to set one for you. Reply-to is an entirely different header.
=== ember_ is now known as ember
[19:44] <pteague> has the upgrade issue with raid devices been fixed?
[19:45] <soren> Which one is that?
[19:51] <pteague> when upgrading between 1 version & the next the drives in the raid array end up with different UUID numbers (or was it their /dev/sd[a-z] ?) causing all sorts of problems with the raid array...  i finally got mine set up again, but it had to completely rebuild 1 of the drives (apparently because it was in a different position than it had been before)
[19:54] <Schiz0> I'm using Ubuntu server 7.10, and I'm trying to optimize apache22. The apache performance Tuning manual says this: "On some operating systems, mmap does not scale as well as read(2) when the number of CPUs increases."  Is this true for Ubuntu 7.10?
[20:00] <soren> pteague: UUID's should never, ever change.
[20:00] <soren> pteague: Device nodes are free to do so, however.
[20:08] <zul> mathiaz: just using replaces doesnt work
[20:08] <mathiaz> zul: what's the error ?
[20:08] <pteague> ok, then that must have been it... because simply scanning /proc/partitions for MD superblocks must have put them in the wrong order or something because it wouldn't auto build the md0 device after the upgrade from feisty to gutsy... i had to re-add them which sort of worked, but 1 drive was 'missing'... from what i can tell 1 of the drives that used to be at the beginning was now at the end & i had to have it re-add that disk & a
[20:08] <pteague> t that point it had to rebuild it... not a nice easy upgrade
[20:10] <mok0> sorenn, the mac_addr trick solved my kvm problems completely! We have now deployed a couple of virtual servers in testing for production!
[20:10] <zul> mathiaz: whoops i think i might have made a mistake ill get back to you
[20:10] <soren> mok0: I'm *very* happy to hear that.
[20:10] <soren> mok0: Awesome!
[20:10] <mok0> soren: definetly cool!
[20:12] <mok0> soren: we have a jabber server on one of them; it works like a charm
[20:12] <zul> mathiaz: trying to overwrite manpages again
[20:13] <soren> zul: Error message?
[20:13] <zul>  trying to overwrite `/usr/share/man/man1/mysql_config.1.gz', which is also in package mysql-doc-5.0
[20:14] <soren> And it has "Replaces: mysql-doc-5.0"?
[20:14] <soren> That doesn't add up.
[20:15] <zul> Replaces: mysql-doc-5.0 (<< 5.0.56-0ubuntu1)
[20:16] <zul> thats with straight dpkg -i
[20:17] <soren> zul: -> #ubuntu-devel
[21:40] <akincer> Ok, so what are the odds of me getting folks to discuss the (ill-informed) rejection of Bacula?
[21:41] <mathiaz> akincer: Did you reply to the thread on the ubuntu-server mailing list ?
[21:41] <akincer> Yep. So far, no one has addressed my question. That was at 9:16AM EST
[21:43] <akincer> There seems to be quite a bit of lack of understanding of the security issue? Mainly, a lack that it really isn't an issue at all with the latest packages and some thought
[21:44] <mathiaz> akincer: you may wanna ask zul about this
[21:44] <akincer> Will zul be in the meeting tomorrow?
[21:45] <mathiaz> akincer: you could also look at the MainInclusionRequirement document (https://wiki.ubuntu.com/UbuntuMainInclusionRequirements)
[21:46] <mathiaz> akincer: this is the criteria that are used to evaluate a MainInclusionReport.
[21:46] <mathiaz> akincer: zul should be in the meeting tomorrow.
[21:46] <ScottK> akincer: If you want to get listend to, I'd suggest toning it down a bit.
[21:46] <akincer> Well it was rejected on a security issue that isn't.
[21:47] <ScottK> In your opinion.
[21:47] <mathiaz> akincer: it's worth noting that the rejection is not on the MIR itself, rather on whether it was worth spending time to write a MIR.
[21:47] <ScottK> You aren't responsible for Ubuntu security, so you may have a different set of requirements.
[21:47] <mathiaz> akincer: if a MIR is written, it still has to be accepted by the MIR reviewer - and that's not the server team.
[21:47] <ScottK> Showing up and calling people idiots isn't likely to get you reasoned dialogue.
[21:48] <akincer> I'm pretty sure I didn't call anyone an idiot
[21:50] <akincer> If challenging the veracity of a conclusion WRT package decisions in Ubuntu is some taboo, then I'd be pretty disappointed
[21:50] <mathiaz> akincer: If you're available tomorrow for the meeting and able to attend, it's worth discussing this item.
[21:51] <mathiaz> akincer: Could you add an item to the Meeting agenda ?
[21:51] <akincer> Unless there is a fire I have to put out, I'll be there
[21:51] <mathiaz> akincer: great ! Your views are welcomed.
[21:51] <akincer> I've never added an item before. Where does one do that?
[21:52] <mathiaz> akincer: on the wiki page: https://wiki.ubuntu.com/ServerTeam/Meeting
[21:52] <akincer> Ahh, I gotcha. I'll add it now
[21:53] <mathiaz> akincer: I'd also suggest to have a quick look at https://wiki.ubuntu.com/UbuntuMainInclusionRequirements to remember what are the critiria used for inclusion into main.
[21:58] <akincer> I will before I put it on the agenda
[22:07] <akincer> mathiaz: I'm going to read up and try my best to understand the decision, but I really think this is going to be a case of splitting hairs. Similar to how Mysql was (for a time) packaged to install with no password set. The solution there was to require a password to be set on installation. Makes sense. A similar approach could, I believe, be taken to remove the security "issue" with Bacula
[22:11] <mathiaz> akincer: FYI, the decision is not final. It's perfectly ok to discuss it during the meeting and change our mind on it.
[22:12] <freakyy> hi all. what is a good groupware server?
[22:14] <akincer> I added the item. I'll make sure to be as well prepared as possible to give my point of view on the matter.
[22:14] <luckyone> freakyy: opencrx
[22:14] <mathiaz> akincer: excellent - I think zul should be around als.
[22:14] <freakyy> thx ill have a look at it
[22:15] <luckyone> freakyy: version 2.0 will have everything imaginable
[22:15] <akincer> Is that 6PM EST for the meeting?
[22:15] <akincer> my UTC converson sucks
[22:15] <freakyy> ok thank you
[22:15] <freakyy> :))
[22:16] <mathiaz> akincer: EST == UTC - 5 these days
[22:17] <akincer> 3PM it is
[22:17] <akincer> I need sleep
[22:17] <mathiaz> akincer: it's 4PM EST
[22:17] <akincer> It's the simple math that will get ya
[22:17] <akincer> see what I mean
[22:18] <akincer> Somehow in my head 21 - 5 = 15
[22:18] <akincer> See ya then, gotta go
[22:19] <mathiaz> see you tommorow akincer
[22:55] <freakyy> luckyone: why is it better than eGroupware?
=== ember_ is now known as ember