mIKEjONESubuntu is chrooting postfix and sasl so when I try authorizing (AUTH PLAIN) with SMTP I get this error in mail.warn "SASL authentication failure: cannot connect to saslauthd server: No such file or directory"00:24
mIKEjONESwhat can I do?00:25
lamontmIKEjONES: the trivial answer is to edit /etc/postfix/master.cf and not chroot smtpd and smtp services00:37
mIKEjONEShrm that still didn't fix it00:41
mIKEjONESis there anyway of getting more explic messages than "Feb 18 18:41:23 ubuntu postfix/smtpd[10557]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or "00:42
mIKEjONESmaybe getting a path that it's trying to use00:42
lamont-v on the end of the line in master.cf will make it more verbose... more -v will make it, um, moresop00:47
lamontremember to reload postfix after editing master.crf00:48
ScottKIf you look in the Ubuntu Server documentation for Gutsy it tells you exactly how to get the saslauthd socket into the chroot.00:49
mIKEjONESScottK, http://www.howtoforge.com/perfect_server_ubuntu7.10_p5 ?00:52
mIKEjONESI've found no official directions00:53
ScottKLet me find it.00:53
ScottKmIKEjONES: https://help.ubuntu.com/7.10/server/C/postfix.html00:54
lamontScottK: thanks00:54
ScottKNo problem.00:55
mIKEjONESthanks a lot ScottK and lamont01:04
sommerdendrobates: I'm working on documenting likewise-open, but can't seem to join my domain :-)01:45
sommerI think I'm getting the same time sync error that fabrizio was getting, even though I've synced with the DC01:46
sommerdendrobates: it's also saying it can't find the DC in dns... so maybe that's the root issue, heh01:46
=== tiborio_ is now known as tiborio
sommerdendrobates: I do get .__MSBROWSE__. when doing: nmblookup -A domain... so I believe it's working01:50
rpj8Hey guys. Is there step-by-step instruction for configging hal with a cli installation02:53
pwnguinif i wanted to find which applications ubuntu packages that use Xinput, would "apt-cache showpkg libxi6" be appropriate?03:20
pwnguinintelligent people keep claiming there's only one, but that search turns up a lot of packages03:21
pwnguinwrong channel03:28
=== Bambi_BOFH is now known as kgoetz
=== cjwatson_ is now known as cjwatson
ere4sihow much hard disk space does the basic server install need?08:50
sorenere4si: I forget the exact numbers, but I'm guessing around 350MB.08:51
ere4sithks soren08:51
sorenOf course it probably won't be very useful without some space for storage and stuff.08:52
ere4siwant a partition for the server, nfs and a seperate one for file storage08:52
spiekeywith a ldap backend...does samba then directly auth against the ldap database?09:02
sorenspiekey: In some circumstances, it can.09:07
[miles]good morning guys09:11
[miles]is there anything akin to 'chkconfig' in ubuntu please?09:11
[miles]found it09:12
achandrashekarhello.i have some ldap issues with my system and specifically with what appears to be a libnss issue.09:18
achandrashekarmy system will simply hang on boot09:19
achandrashekarand im looking to resolve it.09:19
achandrashekari have seen the bug list but need a resolution.09:19
achandrashekarany ideas?09:19
spiekeysoren: what circumstances are you thinking of?09:53
sorenspiekey: Well, you can't just take an existing ldap setup and expect samba to authenticate against it.09:53
sorenspiekey: The way linux usually does authentication is by sending your password over the wire, which is then matched against something.09:54
sorenspiekey: The way samba does it, the client generates a hash based on your password and sends *that* over the wire.09:54
sorenSo the server needs to compare it to a hash that was generated by the same algorithm.09:55
soren...which is why samba can't authenticate against /etc/passwd and /etc/shadow.09:55
sorenYou can use ldap to store the hashes from samba and thus use it as your authentication backend, but you're unlikely to be able to take an existing ldap setup and expect samba to use it for authentication.09:56
* soren -> coffee09:56
spiekeywell, yes. Of course! But still this is a "direct" connection to ehe DB, it does not use pam or whatever.... it uses the ldap information from the smb.conf to establish the ldap connection to then do its password check. Thats what i meant ;)09:57
spiekeysoren: would you be so kind and get me one too, please? with lots of sugar. ;)09:57
* soren has no sugar and if he did, he wouldn't let it anywhere near his coffee :)10:02
sorenspiekey: Yes, samba speaks ldap directly.10:03
* spiekey feels sick now10:03
spiekeysoren: By the way...whats your real job? "Just" a normal admin? :)10:04
sorenspiekey: Virtualisation specialist.10:05
sorenspiekey: For Canonical. Working on Ubuntu.10:05
sorenUntil quite recently I was "Ubuntu Server Developer".10:06
spiekeysounds cool!10:07
spiekeyVirtualisation with Opensource tools?10:08
rooneyany cluster expert?10:23
rooneyi have problems with this 2 node cluster10:24
spiekeyi try to open a udp port on BoxA and run a Nmap Scan on HostB.10:25
spiekeywhen i run my nmap scan the netctat daemon dies and nmap tells me that port is closed.10:25
spiekeyserver: nc -u -l -p 3310:25
spiekeyclient: nmap -sU -p 33 localhost10:26
spiekeyany idea why netcat dies?10:26
achandrashekarhello does anyone recall if the sudo addgroup --system nvram fixes the libnss issue with ldap-server boot issue?10:26
achandrashekarits a bug thats been around a while.10:26
achandrashekari think it is critical for ldap now.10:27
spiekeyachandrashekar: what issue?10:27
achandrashekarldap-server does not boot with libnss package installed.10:27
achandrashekarin 7.1010:28
spiekeyi can not confirm this. I did loads of gutsy installations just a few days ago.10:28
spiekeywhere does it hang exactly?10:29
ubotuLaunchpad bug 51315 in libnss-ldap "udevd: nss_ldap: failed to bind to LDAP server" [Undecided,In progress]10:30
_rubenspiekey: netcat exists after first disconnect .. perhaps nmap connects twice (first will succeed, 2nd will fail)10:30
achandrashekarthere is description10:30
spiekey_ruben: any idea how i could test my udp port then?10:31
achandrashekarbut there are other linked bugs associated with it.10:31
achandrashekaronline that is.10:31
achandrashekarand its a rather serious issue for us guys trying to use ldapserver with things like ltsp failover10:31
_rubenspiekey: you could try using xinetd or something similar instead10:33
youngmusicHey. I have some trouble starting slapd. I can start the proccess with 'sudo slapd', but when i use 'sudo /etc/init.d/slapd start' the server won't start. It doesn't give any error messages either. I have not done anything to the init script. I am changing things in slapd.conf, but that is used by the server also if i start with 'sudo slapd', so that can't be the problem, i guess. Any ideas?10:33
achandrashekarfter reboot, system fails to boot. It stops on "Starting kernel log daemon" forever10:33
spiekeyachandrashekar: i see, it is indeed a big bugid :)10:33
achandrashekaryoungmusic: that is an easier issue....take a look at /var/log/syslog10:33
achandrashekaryoungmusic: create a file slapd.pid in /var/run10:33
sorenrooney: Hmm... Our cluster expert is not around right now :(10:33
achandrashekarthen chown it10:33
achandrashekarto openldap:openldap10:34
achandrashekarrestart and you're good10:34
sorenrooney: That log is from node2?10:34
youngmusicok, thanks. The init script claims to create slapd.pid if it doesn't exist, though10:34
achandrashekarspiekey: id REALLY like to get it resolved...but not sure if that fix will work until i try at work tomorrow10:34
achandrashekaryoungmusic: i ran into it.10:35
achandrashekarbest thing you can do is open another terminal and watch the /var/log/syslog10:35
achandrashekartail-f /var/log/syslog10:35
achandrashekarand then watch the magic :)10:35
achandrashekarand OH btw....watch out for the reboot10:36
achandrashekarid check the nsswitch file....in /etc10:36
spiekeyachandrashekar: i am quite intrested in it, too. Since we need some ubuntu-ldap stuff as well. :)10:36
achandrashekarand if you have have something like this in there10:36
spiekeybut i never ran into that problem furtunatelly.10:36
achandrashekarfiles ldap10:36
achandrashekarthen when you reboot...you will be pissed :)10:37
spiekeyok, i never used that ;)10:37
achandrashekarand have rescue mode be your friend...lol10:37
rooneysoren: piff is the first node and herkules is the second10:37
achandrashekarso...if you done mind...how are bugs resolved..per se10:37
achandrashekaris there a core development group?10:38
achandrashekaror does it just follow a chain of events and priority10:38
sorenachandrashekar: Where exacly does it get stuck during boot?10:38
achandrashekarit seems that such an issue is HUGE..considering that ldap is a key component for authentication10:38
achandrashekarhere -10:38
achandrashekarone sec10:38
achandrashekarIt stops on "Starting kernel log daemon" forever.10:39
achandrashekarand Ive tried a couple of things10:39
sorenrooney: Am I correct to assume that you've done something that would cause herkules to be fenced?10:39
achandrashekarbind_policy soft nope10:39
sorenrooney: And then manually acked it?10:39
achandrashekartrying to change from S19 to S1010:39
achandrashekarin rcX.d files10:39
rooneysoren: i'm just firing up the two nodes, one after one10:40
achandrashekarand now last ill try to add up the nvram...tomorrow10:40
achandrashekarand see.10:40
rooneysoren i'm a real newbie in clustering10:40
rooneysoren: so piff waits for herkules to join10:40
rooneysoren: and after joining something happens and herkules disconnects (because piff is killing it, but i dont know why)10:41
sorenachandrashekar: Do you have klog in /etc/passwd and /etc/group?10:41
achandrashekarill have to check that tommorow as well10:41
sorenrooney: I'd look in piff's logs and see why it wants to fence it.10:41
sorenachandrashekar: Do you understand the problem?10:41
rooneyi think 'just because its there' :)10:41
sorenrooney: fencing means "shoot in the head", pretty much.10:42
sorenrooney: It ought to give you a good reason.10:42
achandrashekaris it basically that the nsswitch is looking for a network resource that isnt there?10:42
achandrashekarand hence times out???10:43
rooneysoren: herkules not a cluster member after 3 sec post_join_delay10:43
achandrashekarthat is my basic understanding of the issue.10:43
achandrashekarbut many have posted that adding nvram might do it to /etc/group10:43
achandrashekarso i figured id try and confirm in here10:43
spiekeyachandrashekar: i had that problem with group. I added the timelimit option in libnss-ldap.conf10:43
sorenachandrashekar: nsswitch defines the order in which libc will look up usernames, groups, hosts, networks, netgroups, etc., etc.10:44
rooneysoren and its no matter which one boots first, the second node dies10:44
sorenachandrashekar: If it says e.g.: "hosts: files ldap dns" and you try to look up host foo, it will look in /etc/hosts first, then in ldap and then in dns.10:44
achandrashekari see... okay10:45
sorenachandrashekar: So the reason it might be blocking somewhere is because it tries to look something up that it doesn't find in "files".10:45
soren(depending on the type of entity "files" means different things. for passwd, it's /etc/passwd, for groups, it's /etc/group, etc.)10:45
spiekeyand thats where my hint might come in handy? :))10:45
achandrashekarand that is likely in /etc/group (at least according to others)10:46
soren...so if it's getting stuck when trying to start the klog deamon, it's because it's trying to find info about a user that is not defined locally, so it needs to go looking in ldap.10:46
achandrashekarmakes sense10:46
achandrashekarthe question is which user...likely a system user10:47
sorenFor klogd, it's because it's being told to run as klog, and before it can do that it needs to lookup the corresponding uid, which involves an nss lookup.10:47
soren...specifically, it looks up the klog user (unless you've changed the defaults).10:47
sorenSo that's probably a good place to start.10:48
sorenrooney: I'd love to see the log snippet from piff  as well as your cluster conf.10:48
achandrashekarso adding that to /etc/passwd and groups will likely fix the issue.10:48
rooneysoren you can see piff's logs on the above link10:49
sorenachandrashekar: Well, the really interesting question here is how it came to be that they're not in there already.10:49
rooneyand just a minute and i'll paste cluster.conf10:49
achandrashekarill have to try and then post up tomorrow.10:49
achandrashekaryeah..this is been an issue in fiesty as well.10:49
achandrashekarwhat changed between dapper ---fiesty---?10:50
achandrashekarin terms of ldap??10:50
rooneysoren: http://paste.ubuntu-nl.org/56606/10:50
achandrashekaralot...i suspect10:50
achandrashekarthanks for the advice ill try to see what happens.10:51
rooneysoren: http://paste.ubuntu-nl.org/56607/10:51
achandrashekarits 2:51 AM here...and time for some sleep.10:51
rooneyachandrashekar: hah, good nite :)10:51
rooneysoren: Linux piff 2.6.22-14-xen #1 SMP Wed Feb 13 23:02:34 CET 2008 x86_64 GNU/Linux10:52
sorenrooney: Hang on, I need to fire up my test cluster..10:52
rooneysoren: k10:52
* soren kicks python-central10:53
spiekeyhow do i install those perl modules? Net::PcapUtils, NetPacket10:58
spiekeyoh...no :-/11:00
henkjansoren: ah, also running hardy on your desktop?11:09
sorenhenkjan: Sure. :)11:10
afiefAnybody got an easy guide on how to setup postfix? I've been wrestling with it for quite some time11:10
rooneyeasyer than the manual? :)11:14
[miles]afief, postfix is well documented with a load of how-to's by various people... it's also super easy to configure11:15
[miles]afief, what exactly do you want to achive?11:15
[miles]afief, localdelivery, going to an imap server etc... ?11:15
=== MenZa_ is now known as MenZa
rooneysoren: the same kernel&system without xen works like charm11:20
rooneysoren: i really do not understand11:20
[miles]rooney, whats the problem?11:20
rooney[miles]: 2 node cluster fails11:21
rooney[miles]: http://paste.ubuntu-nl.org/56606/ http://paste.ubuntu-nl.org/56607/11:21
[miles]rooney, your using xen?11:21
rooney[miles]: i try to :)11:21
[miles]rooney, try KVM11:22
[miles]rooney, works perfect for me11:22
rooneyit seems like that i have to choose between xen & clvm :)11:22
rooney[miles]: ok, but my projekt leader wants xen11:22
rooneyand it has to work11:22
[miles]rooney, ah11:22
[miles]I use kvm extensivly11:22
rooneyi think that it is a xen-ubuntu-amd64 issue11:22
[miles]but not xen11:22
[miles]never had any major issues with KVM11:23
rooneysame here with xen =)11:23
[miles]damn designers... waiting for a 1 line modification to something...11:24
* [miles] goes to kick some11:24
* rooney aw11:28
afief[miles]: sorry was AFK, I have postfix installed, but my php mail function doesn't seem to work:S12:00
faulkes-afief: define "php mail function doesn't seem to work"12:04
afieffaulkes-: redefining my problem: I telnet into localhost 25, try to type "mail from root@localhost" and get a "Temporary system failure" error12:09
[miles]sorry here now12:10
[miles]afief, you just want to send yeah12:10
[miles]afief, maybe best to have it relay12:11
[miles]afief, to a smart host12:11
[miles]afief, debug postfix too if it's giving you problems... also there is #postfix on freenode12:11
afief[miles]: well I don't know much about this stuff, but I'm setting this up on a VPS, that shouldn't have to relay I think12:12
[miles]it has a public IP yeah12:12
[miles]and resolves etc12:12
afief[miles]: it does12:15
[miles]afief, the you should have no problems12:15
[miles]afief, is it a panel or wot?12:15
afief[miles]: a panel?:S sorry I don't know what that is12:16
[miles]like plesk / cpanel etc12:17
[miles]or all via console?12:17
afief[miles]: no they give a root ssh login to a virtual server(slicehost.com)12:17
[miles]ah ok12:18
[miles]check your logs dude12:18
faulkes-I would have to agree, logs will give us more information12:18
afieffaulkes-: okay which logs?12:18
[miles]look in /var/log/maillog12:19
[miles]is it reciving mail and sending ok?12:19
* [miles] spins 'Tilt - Invisible' 12:20
afief[miles]: these seem to be the problematic lines in the log, alas I don't know how to fix them http://pastebin.com/m7d379f3e12:22
[miles]afief, I don't mean to be offesnsive, but:12:23
[miles]A) This is a postfix issue... not an ubuntu server issue12:23
[miles]B) If you don't know how to configure mail, you need to read thru the docs on postfix.org and learn...12:24
[miles]maybe someone will guide you thru it here, but me no... sorry12:24
afief[miles]: no problem, I just thought setting up the mail server would be more simple12:25
[miles]afief, you need to have an understanding of how mail works tho mate12:25
davidfew things are as easy as you'd wish on *nix12:26
afief[miles]: well I do know a bit about the SMTP protocol, but not on how the programs that manage mail work12:26
[miles]afief, you will be able to do a cut and paste from some tutorial im sure... just find the right setup for what you require...12:26
david(coming from other Oss)12:26
afiefdavid: usually things are easy, AFTER you figure out how to do them:)12:27
davidyeah :)12:27
davidI find that every day these days :P12:27
[miles]afief, well... I think you need to spend a bit of time reading thru the docs...12:27
davidrecently enforced linux on my family12:27
afiefdavid: well I enjoy it, I mean using Ubuntu on my desktop taught me a lot12:27
* [miles] runs corporate mail servers using postfix, dovecot, openldap etc12:27
afief[miles]: I will:) no problem there12:28
afief[miles]: but could you give me some advice on how to set my server up since I have no idea about what is good for what?12:28
davidI set up an ubuntu server just the other day, now I only need to find out what I want to do with it :N12:29
[miles]thats something I'm working on for Dovecot.. but I doubt its gonna really help you12:29
[miles]afief, the best advice I can give you is RTFM12:29
[miles]afief, cos it really applies in your case12:29
[miles]afief, and that 'logs speak volumes'12:30
afief[miles]: okay12:30
[miles]afief, take this to #postfix mate.. you will proberbly get help there12:30
afief[miles]: I'll try to figure it out myself first I think:) thanks for your advice, sorry if I came about as a stupid script kiddie12:31
[miles]not at all12:31
afief[miles]: could you point me to the manual? this page doesn't seem to help www.postfix.org/postfix-manuals.html12:33
[miles]afief, erm12:34
[miles]don't take the piss12:34
faulkes-[miles]: postfix is a server issue as we directly support it12:34
faulkes-and I think ScottK might have a word about that12:35
[miles]faulkes-, what?12:35
faulkes-<[miles]> A) This is a postfix issue... not an ubuntu server issue12:35
[miles]faulkes-, your telling me supporting configuring it is #ubuntu-server ?12:35
[miles]faulkes-, tsskk12:36
faulkes-if he is having issues with it, then yes, we are here to help him12:36
[miles]faulkes-, he aint even looked properly at the docs!12:36
faulkes-then the first step is to let him know where appropriate documentation exists12:36
[miles]faulkes-, yeah  I did ... postfix.org12:36
afieffaulkes-: I think he did help me quite a bit:) he pointed me somewhere to learn, "teach a man to fish..."12:36
faulkes-ubuntu official documentation on postfix is available at https://help.ubuntu.com/community/Servers and https://help.ubuntu.com/7.10/server/C (I may have to double check the second url)12:37
[miles]faulkes-, if he does not have the basics, it serves no purpose building him a configuration that he fails to fully understand... and if it bombs at anytime, he's not 110% sure about what it's doing12:37
* [miles] returns to programming PHP ... 12:38
faulkes-I'm not arguing the fact that pointing him to documentation so he can learn is a bad thing12:38
afief[miles]: one more question: what would be the best way to remove whatever I misses with postfix and starting from scratch?12:38
davidanyone using some webgui-based torrent solution? I was looking at rtorrent the other day12:38
[miles]david, deluge has a niffty webui12:39
[miles]afief, I'm gonna keep refering you to http://www.postfix.org/ mate, sorry, thats my take.. I use postfix extensivly.. the docs are very very good12:39
davidyou use it?12:40
faulkes-afief: sudo apt-get remove postfix would remove the postfix installation you have now12:40
david(I plan to install sthn like it on the server)12:40
afieffaulkes-: I meant the faulty configurations12:40
davidmore centralized everything :)12:40
davidI take it it watche folders etc also12:40
faulkes-afief: I was then going to suggest you re-install it and follow the official server guide (the second link I posted)12:40
afieffaulkes-: I'm reading that now:)12:41
[miles]afief, I wrote an app for here at work that gives me postfix + imap, cli admin tool, and webui in one install... now I would give it to you... however...12:41
[miles]it's for centos :-) and all the webUI is in Spanish12:41
afief[miles]: I wouldn't understand that:)12:42
faulkes-and it wouldn't be supported by anyone in the community12:42
[miles]see that12:42
[miles]faulkes-, your right... but as I wrote it, and I launch it on production servers for corp. clients.. I support it :-)12:42
afieflooks nice12:43
faulkes-which does absolutely nobody any good if he has it and you aren't around to support him12:43
[miles]and the web ui is bliss12:43
[miles]faulkes-, well.. I plan to package an Ubuntu Server version soon12:43
[miles]faulkes-, it had to be done for RHEL and CentOS first tho12:43
[miles]faulkes-, then will submit it to ubuntu see if they want it as a tool12:44
davidhmm. I'll keep looking for rtorrent solutions ;)12:44
faulkes-that would be awesome, I would speak with ScottK regarding that12:44
[miles]faulkes-, to give you an idea... on centos you do, yum install mailadmin-cli12:44
[miles]it handles all deps12:44
[miles]setups OpenLDAP, postfix, Dovecot etc12:45
[miles]then just launch mailadmin commands as shown12:45
[miles]and believe me it's working great guns atm... the bit that slowing me down is than damn web ui ...  bloody clients keep asking for new features12:45
[miles]also gotta package our special version of Horde thats tweaked to work nicer with it all12:46
* [miles] hates Horde12:46
* [miles] also hates his boss that demands Horde12:46
faulkes-I'm not saying it doesn't work, or that it doesn't provide an easy install for what you are doing12:49
[miles]I know your not12:49
faulkes-however there are specific procedures for packaging, releasing, modifying supported software within ubuntu and debian12:50
[miles]I know12:50
faulkes-and I am familiar with centos, being that my work uses it exclusively right now12:51
ScottK[miles]: You might want to start looking into Ebox as they've got a Postfix module (dunno how good it is), but Ebox in general is how Ubuntu is planning on doing server GUI ish stuff.12:52
faulkes-morning ScottK12:54
faulkes-& zul12:54
ScottKMorning faulkes-.12:54
ScottKI'm be AFK most of the day in meetings, so see you later.12:54
faulkes-later, I have UDW scheduled all afternoon so12:54
faulkes-while not server related, this may aid all server admins in emergencies, especially when dealing with PHB's12:55
[miles]right lunch12:58
[miles]hasta hora... ciao12:59
faulkes-now for the joy of installing ubuntu server on the ppc platform13:05
sorenI've never tried that. How painful is it really?13:06
faulkes-for 7.04 it appears to be fairly straight forward13:06
faulkes-for 7.10 there appears to be a number of issues, which can be worked around13:07
faulkes-just a matter of collecting all the information though13:07
faulkes-and good morning soren13:07
faulkes-looking forward to your UDW talk today13:07
faulkes-ubuntu developer week13:08
spiekeyUnder Walter Talk?13:08
spiekeyoh :)13:08
faulkes-soren: it'll get even more interesting when I fire up virtualization on it to run hardy13:09
sorenfaulkes-: There's a powerpc kvm flavour in the works.13:10
* faulkes- nods13:10
faulkes-I'm going more for speed currently so I can get a hardy instance up and running on which i can start working on bugs/triaging/docs etc..13:11
faulkes-I'm looking at starting with alot of the php bug stuff13:12
faulkes-mostly because our work uses php extensively and any attempt I would like to make to get them to convert from CentOS would require php to be solid13:13
youngmusicI want to remove an ldap database (i was just experimenting with settings first, and now i want to get a copy of the real database in place with slapadd), can i just remove all files in /var/lib/ldap?13:27
faulkes-you probably want to do a "sudo dpkg-reconfigure ldap-server" however I'm not sure if that is the appropriate way to do it13:32
youngmusicyes, removing those files was not enough, in any case.  But with dpkg-reconfigure, it will reset my config files, i suppose.13:44
faulkes-yes, that is likely13:44
faulkes-you can always cp /path/config/file ~mydir/configfile.backup13:45
youngmusicTrue. On the other hand, i have done the migration now (setting up a slave server on ubuntu for a fecora core ldap master) and the data seems to be the same on both machines. It seems that they have syncronised themselves on the moment i put them both up. I didn't think that would happen, but everything seems fine.13:47
davidtorrentflux was extremely easy to set up with ubuserver13:49
faulkes-    /who freenode/staff/*13:51
* [miles] spins 'Tiesto vs Kane - Rain Down On Me' ... nice14:20
spiekeysoren: thanks for the ML response :)15:20
afief[miles]: after over 5 hours of trying to configure postfix I just couldn't stand it anymore, installed exim4 and it just-worked(tm) after answering some simple questions... makes me feel bad about not getting postfix to work, but it gets the job done15:24
lamontafief: trying to do what with postfix?15:24
[miles]afief, I've worked over the years with both postfix and exim... exim's config file is well laid out... but I'm suprised your having so many problems with postfix... strange15:31
[miles]lamont, make it work ;-)15:32
afieflamont: currently all I want is to get the mail() function in php to work15:32
afief[miles]: I don't know... first few attempts didn't give me problems, just didn't deliver the mail, then I started getting weird problems(which is when I came here) then I couldn't even `telnet localhost 25`, which was when I threw the towel:(15:33
[miles]you sure it was not set to listen to the public IP only15:34
[miles]also be sure another mta was not running15:34
afief[miles]: yes, and I tried to login from the localhost PC too, it didn't work, the port was just closed:S15:34
afief[miles]: well, all in all I think I am where I need to get for now, when I need a more complex system, I'll read the documentation again15:35
[miles]that can happen, say if sendmail is running listening to localhost, and you slap postfix on also (actually this can happen in RHEL btw, I'm not saying Ubuntu) ... and that attempts to bind to localhost, can't but binds to the public ip15:35
lamont[miles]: postfix conflicts with all other mail transport agents, per policy, just to avoid having two trying to listen at the same time15:36
afief[miles]: could be... although I made sure to remove sendmail(yes I made quite a mess...)15:36
[miles]lamont, (actually this can happen in RHEL btw, I'm not saying Ubuntu)15:36
lamontafief: apt-get install postfix would have removed postfix for you15:36
lamonter, sendmail rather15:37
lamontafief: apt-get install postfix would have removed sendmail for you15:37
afieflamont: I did that, but there was still a sendmail file in /etc/init.d15:37
lamontafief: I wonder if maybe there was an error in mail.log and no postfix running?15:37
lamontafief: bad sendmail15:37
afieflamont: nope, no errors in there15:38
lamontI always use apt-get install --purge... :-)15:38
lamontif you could reproduce that config, I'd be very interested in steps to get to that state...15:38
* lamont hasn't ever managed to get there, you see....15:38
afiefone thing was weird though: apt-get install postfix;(insert some bad configurations here); apt-get remove postfix; rm-rf /etc/posftfix; apt-get install postfix; gives an error that /etc/postfix/postfix-script doesn't exit15:39
lamontdon't rm -rf /etc/postfix without saying 'dpkg --purge postfix'15:40
afieflamont: what's the difference?15:40
lamontthank you though.  I've been wondering how people got there.15:40
lamontafief: then dpkg knows that all the config files are nuked15:40
lamontand reinstall doesn't assume that it's gone because you wanted it gone, and actually installs the conffile.15:41
lamontin good news, postfix-script moved out of /etc/ in 2.515:41
afieflamont: should I have done that before or after apr-get remove?15:41
afief**apt-get remove15:41
lamontapt-get remove --purge is the preferred method15:42
lamontthe steps are remove then purge, fwiw15:42
afieflamont: I'll keep it in mind for the next time, thanks a lot15:44
lamontI'll see if there's a solution that postfix can manage to do in packaging too15:47
lamontit's been a long-unproducible bug report15:47
zulfor those who are in interested in virtualization stuff there is a session in #ubuntu-classroom starting real soon (tm)16:01
[miles]zul, covering what... kvm?16:01
* [miles] heads over16:01
[miles]zul, you got any of the #kvm guys in there?16:02
zuldunno but we have soren16:02
Stonekeeperhi there. Do any of you fine people know why an "apt-get install mysql" will install 3 mysql init scripts? I have this problem where mysql fails to start, thinking that the port is already in use (which it isn't). Wondered if the issue was to so with mulitple init scripts. Thanks.17:23
Stonekeeper(on 7.10 server)17:24
mathiazStonekeeper: you should have a look in /var/log/daemon.log17:25
mathiazStonekeeper: that's where the error messages for mysql are sent.17:25
Stonekeeperoh, thank you17:25
Stonekeeperthey were tturning up in syslog though17:25
Stonekeeperhmm.. yeah, it can't bind to the port. If i start it manually, it works though :/17:28
mathiazStonekeeper: did you modify the default installation of the init scripts ?17:31
nealmcbsommer: Yea for proud documentation writers!   I thought of you when I read this slogan from the famed Peter Saint-Andre "I guess you could say I put the M in RTFM"  https://stpeter.im/?p=214417:31
mathiazStonekeeper: only one init script should be turned on by default - mysql17:31
mathiazStonekeeper: the other two scripts are used when nbd clustering is setup.17:32
Stonekeeperi think the other 2 are installed by default as i haven't installed the clustering support, at least, not deliberately17:32
Stonekeeperah i think i know what is happening17:33
mathiazStonekeeper: they should be installed, but not turned on.17:34
Stonekeeperhmm.. ok. Thanks for your time mathiaz17:37
sommernealmcb: heh... that's good17:49
faulkes-qustion,hoyou typith brokkybr :)18:01
nox-HandInstalled Ubuntu-server few days ago, and wondering whether the upgrade I made to a full system is the reason its not working in apt:18:06
nox-HandCause I am rather confused about this apt error: http://pastebin.ca/91000118:06
_rubencrap .. kernel panic on one of my gutsy servers .. Kernel panic - not syncing: Fatal exception in interrupt18:09
_rubenlets see if i can find an existing LP entry for it18:09
c1|freakyis there any good tutorial for a useful encryption of a second harddisk (where important stuff is stured) for a server?18:25
_rubenjust make sure nobody steals your harddrive ;)18:31
_rubenhmm .. kernel upgrade *seems* to have fixed my kernel panic18:35
_rubencrap ... now it claims it cannot find ext3 fs on my raid volume .. *cry*18:37
_rubenguess i wont have to bother sorting out the stuff i had on this old filesytem .. perhaps i should just let it go and embrace the 1TB of free diskspace18:59
_rubenomg .. just too stupid .. its reiserfs, not ext319:01
faulkes-err, utc -5 / 17:00 == 2pm est correct?19:44
mathiazfaulkes-: 17 - 5 = 1219:46
mathiazfaulkes-: 17:00 UTC == 12:00 EST19:46
sommerfaulkes-: here's the cheat sheet I use: http://www.dxing.com/utcgmt.htm :-)19:46
sommerthough I'm they're pretty much memorized by now... heh19:48
zuldate --utc always help as well19:48
sommerheh... I was about to say you can also use google19:49
faulkes-yes, it does19:50
faulkes-I thought soren was presenting virt stuff at 17:00 utc though19:50
sorenWell, maybe you thought so..19:50
* faulkes- eyes UDW wiki page19:50
mathiazsoren: is there a way to change the boot order of a kvm guest ?19:52
sorenmathiaz: libvirt style or command line?19:53
mathiazsoren: when I install a new guest from an iso, on reboot it boots from the iso.19:53
sorenmathiaz: Using libvirt or directly from command line?19:53
mathiazsoren: There is a thread on libvirt ml about it.19:53
mathiazsoren: I'm using virsh19:53
mathiazsoren: so I guest libvirt19:54
sorenmathiaz: Right.19:54
mathiazsoren: /guess/19:54
sorenYou grab the current xml (using dumpxml), change the boot device, and define the domain again.19:54
sorenIt sees that the uuid is the same and then just replaces the current settings with your new ones.19:54
mathiazsoren: ok.19:54
mathiazsoren: there is no way to set the boot order to hd,cdrom19:55
mathiazsoren: on the first install, hd is empty so it goes to cdrom19:55
mathiazsoren: on reboot it boots from the hd.19:55
mathiazsoren: I was able to do that with vmware-server.19:55
sorenI think you can specify multiple boot tags.19:56
soren<boot dev='hd' /><boot dev='cdrom' />19:56
sorenshould do it.19:57
mathiazsoren: I'll try that.19:57
sommeranyone else tried likewise-open?20:02
sommeror had DNS errors trying to join a domain?20:03
mathiazsommer: what is the exact error you have ?20:06
sommermathiaz: it's a three liner:20:06
sommerFailed to contact DC when trying to synchronize local system clock!20:06
sommerNone of the domain controllers listed in DNS could be contacted, or there are no DCs listed in DNS20:06
sommerFAILED [Error code: 0008000e]20:07
sommerthere are some bugs that seem to related to the error, so I guess I could reply and ask how/if they fixed the issue20:07
sommerseems like dendrobates was talking to someone not long ago about a similar issue, but I didn't really pay attention :(20:08
mathiazsommer: you could try to run domain in debug mode20:09
mathiazsommer: are you using the gui or the cli ?20:09
sommermathiaz: cli20:09
sommermathiaz: do you mean the AD domain in debug?20:09
dendrobatessommer: are you using AD as your dns server?20:09
sommerdendrobates: yep20:09
mathiazsommer: nope. domain-cli20:10
sommermathiaz: ah20:10
mathiazsommer: you can increase the logging level.20:10
sommersure one sec20:10
dendrobatessommer: are you using the fqdn of the domain in the command?20:10
dendrobatessommer: you can't use the netbios name.20:10
sommerdendrobates: yep fqdn20:11
sommerfull command: sudo domainjoin-cli --log . join frog.org Administrator20:11
sommeralso tried FROG.org and other variations with no dice20:12
mathiazsommer: could you add the option --log-level debug ?20:12
sommermathiaz: doesn't like --log-level debug20:13
dendrobatessommer: so the name of the machine is frog.org.20:13
sommerdendrobates: the name of the AD domain is frog.org20:14
dendrobatessommer: you can't use the ad domain name, that is the netbios name.  You must use the fqdn of the server.20:14
zulis there a reason why we keep the php5.ini memoy limit low?20:14
sommerdendrobates: ahhhhh... one sec20:15
mathiazzul: what is the default from upstream ?20:15
zulgimme a sec.20:16
mathiazzul: is there a mention of the memory limit in the changelog ?20:19
sommerdendrobates: same error using: sudo domainjoin-cli --log . join servyserv.frog.org Administrator20:20
zulmathiaz: yes reading through it https://bugs.edge.launchpad.net/ubuntu/+source/php5/+bug/14887120:20
ubotuLaunchpad bug 148871 in php5 "Lower memory limit for php5" [Medium,Fix released]20:20
sommerthe DC is running in a qemu instance... fyi20:20
mathiazsoren: awesome - setting boot hd, then boot cdrom works as expected :)20:21
dendrobatessommer: domainjoin-cli --log /tmp/join.log --loglevel verbose join <ad domain> <admin name> <admin pw>20:21
faulkes-hmmm, ubuntu ppc is err, hmmm "interesting"20:21
zulmathiaz: yeah leave it as it is, its intentional https://bugs.edge.launchpad.net/ubuntu/+source/php5/+bug/14887120:21
ubotuLaunchpad bug 148871 in php5 "Lower memory limit for php5" [Medium,Fix released]20:21
dendrobatessommer: I need to see the log.20:21
sommerdendrobates: sure... one sec20:23
sommerdendrobates: http://paste.ubuntu-nl.org/56661/20:24
sorenmathiaz: Cool!20:25
mathiazsoren: if I shutdown a guest using poweroff in the guest, the host doesn't stop the guest.20:26
sorenzul, mathiaz: What's the issue with php's memory_limit?20:26
sorenI forget what the default on_shutdown is..20:26
zulpeople are complaining that it is too low but they can adjust it themselves20:26
mathiazsoren: the guest console says that the system is halted, but virsh list report that the host is still running20:26
mathiazsoren: ok. I can adjust the behavior with the on_shutdown option. thks.20:27
sorensommer: No, that's not the name of it, apparantly.20:27
sommersoren: the domain?20:27
sorenmathiaz: No, that's not the name of it, apparantly.20:27
sorensommer: Not for you. Sorry :)20:28
sommersoren: heh20:28
sorenmathiaz: It's on_poweroff, and it's always "destroy".20:28
mathiazsoren: hum... it doesn't get destroyed.20:31
mathiazsoren: I'm using create instead of define - could this be the reason ?20:31
sorenmathiaz: That shouldn't matter, no.20:31
sorenmathiaz: "shouldn't" is the keyword.20:31
sorenmathiaz: It might, but it shouldn't :)20:32
dendrobatessommer: do you have admin access on the AD server?20:32
sommerdendrobates: yep20:32
mathiazsoren: right. I've got the same result using create.20:34
mathiazsoren: should I file a bug ?20:34
sorenYes, please.20:34
dexemwhat's the status of ebox? do you think it will be able to be accepted as an exception?20:34
sorenzul: ^^20:34
dexemO:-) Just to know... I don't want to create pressure :P20:35
zuldexem: im working with javier from ebox its getting there and I sent a couple of patches to him today20:35
zuldexem: we'll have another set of eyes look at the packages once he incorperates the changes20:36
dexemok :) you had time to review the new packages, great :)20:36
dexemaham nice20:36
zuldexem: yes this would be my second review :)20:37
dendrobatessommer: is the ad server using itself for dns?20:39
dendrobatessommer:  set the dns of the nic to
sommerdendrobates: um... probably not, changing20:39
dendrobatesif it is using another dns server, it will mot find the correct records.20:40
dendrobatessommer: is this a production AD server?20:40
sommerdendrobates: nope, it's a test qemu instance20:41
sommersetup to work on documenting likewise-open for the server guide20:41
dendrobatessommer: after you change dns fo rthe nic,m you need to restart networking from the command line, which I forgot how to do, or reboot.20:42
sommerdendrobates: okay, will do20:42
dendrobatessommer: you should be able to go into the dns control panel on AD and see the fqdn, and a bunch of entries under it, that corespond to the services that have been auto registered.20:43
dexemzul: ops! I can't answer you directly... anyway, thanks, no problem :) I'm continuously asking javier about it... he nearly hates me :)  (we work together, but in different areas :P)20:43
zulgood to know20:44
Runithardhello, how do I list attached IDE devices?20:49
RunithardI'm trying to mount a drive.... and I'm not sure if it's plugged in20:49
sommerdendrobates: changed AD servers dns to use itself and received the same error.  here's the output: http://paste.ubuntu-nl.org/56664/20:52
Runithardok........... bringing down box...20:53
dendrobatessommer: have you looked at AD's dns entry?20:53
sommerdendrobates: is there something spedific I should look for?20:54
sommerthere's an A record for the domain, the AD server, and the client20:54
sommerdendrobates: all under the frog.org zone20:55
dendrobatessommer: yeah, you should be able to expand the the fqdn of the AD server and see some SRV records underneath it.20:55
sommerdendrobates: checking20:55
sommerdendrobates: yep there are some under _msdcs > dc, domains, etc20:57
sommerdendrobates: SRV records for _ldap, _kerberos, and friends20:58
dendrobatessommer: cool.  are those directly under frog.org?20:58
sommerdendrobates: yes20:59
sommerdendrobates: there are no SRV records at the same level as the A records... but I'm not sure there should be21:00
dendrobatessommer ok, use forg.org as the domain21:00
sommerdendrobates: there was a vast amount of ouput that time21:01
sommerdendrobates: heh and a SUCCESS message at the end :-)21:01
dendrobatessommer: you are joined.21:01
sommersweet, so I guess it was the using itself for dns issue21:02
sommerI'll be sure and document that.21:02
sommerdendrobates: thanks for your help21:03
dendrobatessommer: on most AD instances, it should just work.21:03
dendrobatessommer: I will be pussing a new version later this week with better error codes, and likewise has someone writing official docs.21:04
dendrobatespushing, perhaps.21:04
faileasI might be picking up a used dual proc server in the coming weeks. Wondering if i should use the generic kernel, or is there a SMP kernel i should use?21:04
sommerdendrobates: ah, so should something be added to a troubleshooting section?21:04
sommerdendrobates: manpages for the domainjoin-cli command would be nice :-)21:05
dendrobatessommer: yeah, all the responses will change.  and I have asked for manpages.21:05
sommerdendrobates: cool, I'll keep it fairly simple then, and double check it before SF21:06
sommershweet... ssh works with domain users!21:10
dendrobatessommer: so far I cannot get kerberos based ssh to work.21:12
sommerdendrobates: mmm... I've haven't used kerberos much myself21:13
sommermaybe something with the AD implementation?21:14
sommerthe domain\user thing is sort of awkward as well21:14
mathiazsommer: you can try user@domain21:15
mathiazsommer: it should also work21:15
sommermathiaz: doesn't seem to work from a gutsy non-domain host21:16
sommerssh 'frog\user'@host.frog.org works though21:17
sommerI don't think the domain\user thing is really too big a deal... seem more of a training issue to me21:19
faulkes-well, this should be fun, ubuntu server ppc -> qemu -> hardy install21:20
mathiazsommer: is ssh -l user@domain host working ?21:22
Nafallocause if you do @ -l shouldn't be there :-)21:22
Nafalloshould it?21:23
faileasfaulkes-: o021:23
faileasfaulkes-: not worried about the HUGE performance hit? ;p21:23
* Nafallo ponders21:24
Nafalloright... tired :-)21:24
mathiazNafallo: well - if you're in a kerberos environement (such as AD) you should be able to use user@domain to specify which user you want21:24
Nafalloyea. just read up a bit :-)21:24
sommermathiaz: nope, no dice21:24
Nafallo/and/ read who was typing what ;-)21:25
jdstrandhas anyone tried OSX (powerpc) under kvm/libvirt?21:26
faulkes-user@domain is also common in stuff like radius21:27
sommermathiaz: it may be something with my setup21:29
sommerI just realized I had ufw configured... it did join the domain eventually :-)21:30
mathiazsommer: domainjoin-cli should take care of setting up your machine as a kerberos client.21:30
sommermathiaz: does it need restarted?21:30
mathiazsommer: however you may need to change the configuration of openssh client.21:30
mathiazsommer: and may be enable a couple of options.21:30
sommermathiaz: ah, gotcha21:31
mathiazsommer: likewise-open should cache your kerberos ticket, which can be used by any application such as openssh client.21:31
mathiazsommer: this is what dendrobates was refering to.21:31
mathiazsommer: you should be able to authenticate to the AD domain once, and then be able to login on any kerberized service.21:32
sommermathiaz: makes sense, I just have the one machine connected to the domain21:32
sommercool stuff though21:32
mathiazsommer: yes - you should try to add a second machine to your domain. This is when things gets really interesting.21:33
jdstrandmathiaz: ssh can be a little trickier (haven't done it on hardy with likewise).  sometimes you need to add to ssh_config 'GSSAPIAuthentication yes'21:34
jdstrandmathiaz: does likewise setup /etc/krb5.conf?21:34
mathiazjdstrand: yes.21:35
sommerare the other binaries lwi* the same as or similar to those that come with samba?21:42
mathiazsommer: what do you mean ?21:44
sommermathiaz: the likewise-open package has other executables lwinet, lwimsg, lwiinfo21:44
sommermathiaz: they seem very similar to samba to me21:45
mathiazsommer: correct.21:45
mathiazsommer: likewise-open is based on samba code, mainly winbindd.21:45
sommerso there's not much sense in documenting them?21:45
mathiazsommer: I think they should be documented21:46
mathiazsommer: there isn't any man page yet - that should be fixed soon.21:46
mathiazsommer: you may wanna wait for the man page.21:46
sommermathiaz: cool, I could write up some of the more common options21:46
mathiazsommer: but the commands are similar to the ones in samba.21:46
sommerwhenever the man pages arrives... heh21:47
frame45foo: Thanks for the email22:34
frame45foo: ? can I run the desktop edition w/o a keyboard / monitor?22:34
faulkes-wouldn't be much of a desktop without them now would it ;)22:39
faulkes-however, the answer is yes, you can22:39
frame45do you have to do anything special it get it to work without them?22:43
faulkes-I guess my question would be, what is it you are trying to achieve by having a headless desktop?22:45
faulkes-however, in general, no, you do not need to do anything special22:46
frame45making my magic pumpkin server of course!22:46
frame45I am wanting a file / FTP server that I can connect to from work or a friends house.22:46
frame45I would like to be able to access my files on my ubuntu laptop or my friend's computer via http.22:47
faulkes-frame45: basicly you would need to install the appropriate server components from the repositories and configure them as you require23:04
faulkes-if you are doing remote access, I would further suggest you use sftp/scp (winscp for windows) instead of ftp23:05
faulkes-as it is far more secure23:05
mindframe-why won't my swap work?  swapon: /dev/mapper/klx-swap_1: Invalid argument23:15
mok0mindframe-: what does ls -l /dev/mapper/klx-swap_1 say?23:27
mindframe-brw-rw---- 1 root disk 254, 2 2008-02-18 09:08 /dev/mapper/klx-swap_123:34
mindframe-mok0, ^23:35
ScottKlamont: I see 2.5.1 is released and announced...23:45
mok0mindframe-: how about swapon -s ?23:45
lamontScottK: yeah.  I've even merged it in git, I just need to upload it.23:46
lamontbeen working on going through the bugs one more time to find template-changing bugs, so I can do one spam-o-gram to the translators23:47
mindframe-mok0, lists nothing23:49
mok0mindframe-: I have swap on an lvm partition, and it works ok23:50
mindframe-mok0, i have my swap encrypted with dmcrypt... but it was working after initial install23:51
mindframe-i have vm.swapiness set to 0 for a while23:51
mok0mindframe-: hmm, can you turn that off again?23:51
mok0mindframe-: the encryption I mean23:52
mindframe-turn encryption off? or swappiness?23:52
mok0mindframe-: how about lvdisplay (as root)... Can you see the swap logical partition?23:54
mok0logical volume23:54
mindframe-i think i'm missing a line in /etc/crypttab23:54
mok0mindframe-: my /etc/fstab uses the UUID to mount the swap23:55
mindframe-same here23:55
mindframe-its just not mounting23:55
mindframe-let me make sure uuid is correct23:55
mok0mindframe-: that's weird23:56
mindframe-should lvm uuid and fstab uuid match?23:56
mok0mindframe-: yes23:56
mindframe-thats odd because my root uuid's do not match23:57
mok0mindframe-: try this: blkid23:58
mok0mindframe-: the uuid you get for your swap should match the one from fstab23:59
mok0mindframe-: perhaps that crypt thing changed the uuid?23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!