/srv/irclogs.ubuntu.com/2008/03/21/#ubuntu-server.txt

J-_	If I change my SSH port on my LAMP server will it affect anything in regards to SSH? I know I'll have to connect on a different port, but will it mess anything up?	00:06
Kamping_Kaiser	no. not unless you have something that depends on it running there	00:09
J-_	I just have a basic LAMP installation going with MySQL, and PHP set up proper. Not too much.	00:17
Kamping_Kaiser	you'll be fine	00:28
J-_	Cool, thanks. =)	00:31
J-_	Is it possible to stream from an external drive on a LAMP server only and just have communication with LAN? I still want the LAMP part on the WAN side of things so others and myself can go to my website. I just don't want people streaming from my ext. drive. Why do I want the ext. drive on my server? So I don't have any cords attached to my laptop, and cna move around in my house anywhere without the ext. drive attached.	02:41
Centaur5	I hope this question doesn't upset someone but I keep reading about people that have servers running for months without rebooting. Does that mean they aren't updating kernels with security flaws or is there a secret I don't know about that prevents rebooting?	02:53
J-_	I know LVM filesystems can be live while increasing / decreasing partition size. But I don't know if that really correlates to that question. I'd figure if you're on a LVM system you want the maximum uptime possible so maybe that has something to do with it?	02:56
J-_	Mind you that's just a guess.	02:57
J-_	But I do know you can change partitions, etc.. live.	02:57
Centaur5	Interesting, well it's not too important as I am capable of rebooting cause it only takes a couple minutes. I was just curious cause I know Linux is a lot more powerful than I can comprehend. :)	02:58
soneil_	Centaur5, no, you're spot on .. kernel updates require reboots. for most uses, a scheduled reboot at 3am shouldn't be a kick in the pants	03:02
Centaur5	I'll have to research automatic rebooting after automatic updates that require it.	03:03
ernieb	im having issues installing 6.6-2 on dell 2450 -scsi raid	03:53
ernieb	i tried mylex and a perc 2	03:54
ernieb	with perc2 installer wont initiate the controller and the mylex installs but wont boot to kernel just dumps me in busybox -	04:01
ernieb	is there a known work around for either of these scsi controllers	04:06
rhineheart_m	Hello.. I'm using gutsy. My sites are running well. I just want to ask this concern. My sites are running in LAMP. When I tried to do sudo apt-get upgrade this appear in the console: The following packages will be upgraded: libmysqlclient15-dev libmysqlclient15off mysql-client mysql-client-5.0 mysql-common mysql-server mysql-server-5.0 unzip 8 upgraded, 0 newly installed, 0 to remove and...	06:18
rhineheart_m	...0 not upgraded. Need to get 43.5MB of archives. After unpacking 16.4kB of additional disk space will be used. Do you want to continue [Y/n]?. NOW.. is it alright to go ahead?	06:18
Jeeves_	rhineheart_m: It usually is	06:24
rhineheart_m	Jeeves_: thanks for that.. so is it safe? won't it destroy my existing databases?	06:25
Jeeves_	No, that should not happen.	06:25
rhineheart_m	thank you..	06:26
rhineheart_m	Is there a bandwidth tool that could be done in the console...by which you could still do even if you're remotely connected to the box?	06:33
Jeeves_	rhineheart_m: bmon	06:52
_ruben	and iftop	07:01
_ruben	Jeeves_: using http debmirror completed just fine it seems	07:01
_ruben	just fyi ;)	07:01
Jeeves_	_ruben: Hmm, ok	07:11
keithclark	Is there a ubuntu home server project still active?	07:11
_ruben	keithclark: what should such a project entail? (read: not sure what you're asking for)	07:22
keithclark	_ruben, a distro that is meant or the average home user to setup a simple server. Everything graphical and easy.	07:24
_ruben	server + graphical .. hmm .. that's pretty much a contradiction in my book	07:27
_ruben	with the upcoming release and ebox, i think ubuntu server itself would qualify tho	07:28
keithclark	_ruben, I'm not sure why that would be a contradiction. Someone like me, and they may be rare, would like to setup a simple home server without command line usage. Just simple install point click and run.	07:30
keithclark	_ruben, I've tried many things and they just confuse me. So much research and assistance needed.	07:31
keithclark	_ruben,do you see what I mean?	07:36
rhineheart_m	is bmon realtime?	07:39
_ruben	keithclark: after i said that i realised that "graphical" doesnt necesarily mean having an X server installed, a web interface would qualify as being graphical as well, which is where ebox comes in	07:40
keithclark	_ruben, exactly! Something simple.	07:41
_ruben	keithclark: havent really looked into ebox myself, since its not much use to me, but from what i've heard/read about it, it sure looks promising	07:41
keithclark	_ruben, I will look into that!	07:41
keithclark	_ruben, thanks	07:45
Jeeves_	http://releases.ubuntu.com/8.04/	08:08
_ruben	woohoo ;)	08:09
nijaba	morning	09:10
_ruben	mornin nijaba	09:15
faulkes-	yes, I'd agree, it is morning	09:19
faulkes-	I am none to happy about it though	09:19
faulkes-	nijaba: talked to the company about iscsi testing next week, they are cool with it	09:20
nijaba	morning _ruben, faulkes-	09:21
nijaba	thanks a lot faulkes-	09:21
faulkes-	np	09:21
faulkes-	nijaba: sun+ubuntu press annnouncement?	09:22
* faulkes- raises an eyebrow of interest		09:22
nijaba	faulkes-: yes?	09:22
faulkes-	very nice to see server edition getting some press	09:22
faulkes-	I forwarded it on to the upper mgmt and marketing here as well	09:22
nijaba	always nice :)	09:22
faulkes-	that should spur them on a bit more as well	09:23
_ruben	i'll be playing with iscsi in the near future as well .. waiting for certain hardware to become available though .. might take a week or 2 even :(	09:26
cjsstables	morning all. how difficult is it to setup ubuntu-server to provide network logins where network clients desktop is maintained on the server. All clients would be ubuntu clientsand there are no windows clients at all. Is there a document out there that someone could point me to?	10:30
rhineheart_m	try to read samba server for ubuntu..google it..	10:35
blue-frog	cjsstables: ubuntu + ltsp, or edubuntu	10:38
cjsstables	hey.. thanks blue frog.. Actually I have that docloaded in my browser right now and am reading it.. thanks again..	10:39
blue-frog	cjsstables: if you have never played with ltsp, edubuntu will be the easiest to start with	10:40
cjsstables	ok.. I will look at that as well.	10:51
cjsstables	basically what I really wanted to do is to have several clients loaded with ubuntu. have 5 network users that coulld sign into any of the client pcs but have all there info from the server. we are currently doing this in a mac osx environment and would like to move it to a ubuntu environmnet	10:53
cjsstables	we are a small company and no it resources so it would be selfdeveloped	10:54
=== rhineheart_m_ is now known as rhineheart_m
Kamping_Kaiser	cjsstables, theres a few ways, depending on how complex you can go	10:55
Kamping_Kaiser	cjsstables, it would be worth your while to look at the various pam modules available (apt-cache search libpam*) to see your options for authenticatin/accounting	10:56
cjsstables	well right now, I have a test environment set up that followed rrcomputer consulting server setup. We can have network users logi in to each client, but the only thing that they get to their home folder and mounts that drive, but allof their desktop settings are stored locally. we really don't want that.	10:58
cjsstables	we'dlike the desktop settings to come to be stored and maintained on the server side. Our authentication in the test environment works pretty well.	10:59
cjsstables	sorry, my typingis pittyful	11:00
Kamping_Kaiser	you could save that data on the server, but i havent tried myself	11:01
cjsstables	The authentication is user level though LDAP/Samba. I think what I'm looking for is for the client side to recognize a network logon. and then based on that have it look to the server for the desktop instead of the local client. However, the system must also be non network client aware If alocal user signs on the desktop must come from the local user configuration	11:05
Kamping_Kaiser	the network stuff is entirely posible, not sure about the un-networked stuff. i know it was a 'to impliment' item a few years ago. not sure if its done ye	11:07
cjsstables	we also tried sme-server but that gave us the same thing as we have from rrconsulting except that it wasn't afull ldap implementation	11:07
cjsstables	and it was geared towards windows clients.. which btw, works well and the desktopis saved on the server	11:10
Kamping_Kaiser	you'll have to hang around and hope someone else can help with the specifics of your question	11:11
cjsstables	ok cool...	11:11
faulkes-	morning chuck	11:32
[mbm]	'lo; anybody home?	11:32
[mbm]	fromport: I've noticed that the packets go out the domU xen interfaces but the response never comes back into the domU	11:34
fromport	i totally agree. on my firewall i have "arpwatch" running and i get an email everytime a new domU is triggered.	11:34
fromport	you also see Tx counting where as Rx stays 0	11:35
[mbm]	also noticing that running gutsy the domU's occasionally crash with 100% cpu load on all cpus, completely unresponsive to console or sysrqs	11:35
[mbm]	trying to dig through a crash dump now to figure out why	11:36
[mbm]	gdb is choking on the xen core file, which is hampering my efforts	11:36
fromport	no core-dumps here yet <knock wood>	11:36
[mbm]	seem to get them mostly from the www server	11:37
fromport	has anyone here succeeded in getting KVM to run with bridging for the guests ?	11:37
Jeeves_	fromport?	11:43
fromport	yep!	11:43
fromport	hi! long time no see/talk ;-)	11:43
Jeeves_	Indeed!	11:43
Jeeves_	You betrayed Debian as well? :)	11:44
fromport	shhttt.	11:44
Jeeves_	:P	11:44
fromport	it's simply not moving fast enough..	11:44
fromport	even though i'm running some servers on sid allready ;-)	11:44
nijaba	fromport: yes, I have bridging working here	11:44
fromport	nijaba: i followed https://wiki.ubuntu.com/KvmVirtManagerEtc & https://wiki.ubuntu.com/KvmWithBridge	11:46
fromport	but somehow i cant get the guest to get a "public" ip address.	11:46
nijaba	fromport: and?	11:46
fromport	They always seem to go through the 192.168.122.x range somehow	11:47
faulkes-	that sounds suspiciously like dnsmasq	11:48
nijaba	fromport: does it work with fixed ip?	11:48
fromport	dnsmasq not installed :-)	11:48
fromport	the br0 interface is up and running	11:48
fromport	but the virt-manager doesn't seem to detect it	11:49
[mbm]	you're using dhcp and you get a 192.168.x.x address?	11:49
[mbm]	means there's a dhcp server on your network, use tcpdump to help find it	11:50
=== \sh_away is now known as \sh
replicant_	hi, does anyone know where i can find changes introduced in hardy heron for the server version?	11:52
fromport	i'm using virt-manager, and i dont get a change to really choose for dhcp, is there ?	11:53
fromport	you have a choise of "virtual network" or "shared network"	11:53
[mbm]	oh, kvm	11:53
fromport	i think i need the "shared" but in the dropbox there is no "device" to choose from ;-)	11:53
[mbm]	belive those options roughly translate to nat or tap	11:54
nijaba	fromport: try with virt-install instead	11:55
fromport	with: kvm -m 512 -net nic -net tap -cdrom /archive/iso/linux/ubuntu/hardy-desktop-i386-alpha6.iso -boot d	12:00
fromport	i do get a bridged ip !!	12:00
=== MenZa_ is now known as MenZa
fromport	so only thing left is to convince virt-manager to use the bridging as well ;-)	12:00
nijaba	fromport: yes, I believe so	12:02
=== MenZa_ is now known as MenZa
fromport	nijaba: got it working by editting the xml files:	12:25
fromport	<interface type='bridge'> <mac address='00:16:3e:3e:eb:ee'/> <source bridge='br0'/>	12:25
fromport	vs	12:25
fromport	<interface type='network'> <mac address='00:16:3e:00:f3:fb'/> <source network='default'/>	12:25
nijaba	fromport: yep, virt-install allows to create this while virt-manager does not (yet)	12:26
nijaba	fromport: see the -w option of virt-install	12:27
\sh	window 11	12:29
\sh	grmpf	12:29
* _ruben just uses alt-q for window 11 ;)		12:30
* \sh shouldn't open so much channels ;)		12:35
[mbm]	hmm .. not much symbol information available for the -xen kernels	12:35
_ruben	only got 12 open atm	12:35
Kamping_Kaiser	_ruben, can i have some of your sanity?	12:36
_ruben	Kamping_Kaiser: rather not, its already rather rare	12:36
_ruben	and i compensate a bit by having 60 firefox tabs open	12:37
Kamping_Kaiser	:(	12:38
* Kamping_Kaiser has epiphany+ firefox stuffed with tabs, then two irc clients (me and kgoetz ) with lots of tabs. generally, little sanity		12:39
_ruben	why 2 clients?	12:40
Jeeves_	Kamping_Kaiser: Isn't it like 2 o'clock in the morning for you?	12:40
Kamping_Kaiser	Jeeves_, 11pm	12:40
Kamping_Kaiser	_ruben, because they share a base ~15-20 channels, then my home/work clients have extras on top of that	12:40
_ruben	ah	12:41
rhineheart_m	/j ubuntu	12:47
wo0f_	ahhhh	13:15
wo0f_	at last	13:15
wo0f_	ubuntu chan with resonable amount of users ;D	13:15
_ruben	the number of schizo's here make up for that	13:16
wo0f_	lol :P	13:17
dthacker	Is he talking about you, dthacker	13:17
dthacker	No, he's talking about you dthacker	13:18
wo0f_	:O	13:18
wo0f_	so why do you guys use ubuntu server rather than debian?	13:20
_ruben	fast and fixed release cycle	13:20
_ruben	debian takes ages to get new releases out	13:20
_ruben	we used debian in the past .. then switched to suse since we needed a 2.6 kernel based os and sarge was getting delayed over and over .. currently we're transitioning from suse to ubuntu	13:21
fromport	if i need something simple, but stable i'll go for debian. cutting edge -> ubuntu	13:21
wo0f_	good points	13:23
wo0f_	im finding the no-root su-do malarkly annoying atm	13:24
wo0f_	can i just enable root?	13:24
_ruben	i see it as an improvement	13:24
wo0f_	id rather use su	13:24
_ruben	on our suse machines we pretty do everything as root, which is far from recommended	13:24
wo0f_	and screen	13:24
_ruben	sudo passwd .. enter passwd twice .. and you can su	13:25
wo0f_	rather than typing sudo infront of every single operation	13:25
wo0f_	:D	13:25
wo0f_	cheers _ruben	13:25
_ruben	i like the idea of sudo actions being logged	13:28
ScottK	wo0f_: You can. It takes about a minute. Do note that the default ssh config for Debian/Ubuntu allows ssh root access. You'll want to change that.	13:28
\sh	_ruben: well, then you should take a look on sudosh2 :) http://freshmeat.net/projects/sudosh2/	13:29
wo0f_	lol ScottK	13:29
wo0f_	why would i want to do that?	13:29
ScottK	wo0f_: Why would you want to do which?	13:30
wo0f_	oh sry	13:30
wo0f_	misread that sry	13:30
\sh	wo0f_: because an opened root account is evil...and most entries to machines are coming via brute force attacks on sshd's with PermitRootLogin yes settings	13:31
_ruben	\sh: nice ;) .. but rather stick to the ubuntu-way	13:31
wo0f_	neg	13:31
wo0f_	ill just diable root access	13:31
\sh	_ruben: well, you can add this the ubuntu way...the only change: it logs everything you type, too ;)	13:31
wo0f_	i just wanted su ;]	13:32
\sh	sudo su - is not enoug?	13:32
\sh	alias su="sudo su -" is also a solution ;)	13:32
wo0f_	pardon?	13:32
\sh	enough even	13:32
wo0f_	rofl	13:32
_ruben	\sh: thats an approach i hadnt thought of	13:32
ScottK	\sh: Actually you'd rather do sudo -i in that case than sudo su.	13:32
wo0f_	innit!	13:32
\sh	ScottK: yepp	13:33
_ruben	in fact what i do here is give root a passwd, and have sudo require the root pw, this because we log on using ssh keys	13:33
rhineheart_m	what's the difference between su and -i?	13:33
ScottK	The environment variables are slightly different	13:33
wo0f_	nothing i guess	13:33
_ruben	and i create a global alias 'su=echo "do not use su, use sudo instead!"' :p	13:33
wo0f_	both make the shell root	13:33
ScottK	Most of the time sudo su will work, but sudo -i will give you a saner result in a few corner cases.	13:34
rhineheart_m	_ruben: I guess its not a good practice to give password to root	13:34
nijaba	fromport: I have update https://wiki.ubuntu.com/KvmVirtManagerEtc with instruction for bridging	13:34
ScottK	People argue about root versus sudo all the time.	13:34
ScottK	Personally, I think the main benifit of sudo is that it goes away after a while and you have to retype sudo so you don't stay root. Personally, I think it's a crutch for sloppy admins.	13:35
ScottK	YMMV of course.	13:35
wo0f_	lol	13:36
\sh	the only usage for root: If your server doesn't respond anymore and you need to boot into a root shell which is secured by a password...e.g. via iLO or another remote insight board	13:36
rhineheart_m	but once you've used it already and you entered your password as admin.. it won't ask for a password anymore.. meaning you have the root access	13:36
ScottK	rhineheart_m: That's about 98% right. There are a few differences that almost never matter.	13:37
nijaba	wo0f_: I believe sudo is essential as it brings role based tracable admin	13:37
nijaba	Ubuntu also implements a role-based administration model with no default root access. Other Linux distributions typically provide this root access but role-based administration allows for better security, error prevention and auditing. This is particularly useful on systems where more than one user might have been given root access, as in a traditional model. This default can be reversed once the user is confident that root access will be secure	13:37
nijaba	in their particular situation.	13:37
ScottK	For me the biggest difference is that to get root via ssh with sudo you need one user name and one password. With a root password you need one user name and two passwords (assuming you disable ssh root access).	13:38
rhineheart_m	But I can't still the point.. why you should not be using root account well in fact root privilege is there with sudo.... :)	13:38
rhineheart_m	*get	13:38
ScottK	It's mostly because people get root and stay root, forget, and do something silly.	13:39
\sh	rhineheart_m: the fun part: on a single user machine you are able to do whatever you want...even as root :)	13:39
ScottK	sudo reverts itself automatically.	13:39
_ruben	rhineheart_m: i know its not perfect .. but giving the users a local passwd without resorting to using ldap or smth because it wouldnt be maintainable otherwise	13:39
nijaba	rhineheart_m: because: 1/ you will not know who does a modification if multiple admin have access to the machine	13:39
ScottK	That's another difference that can be significant.	13:40
nijaba	2/ because it is dangerous to always be root if you leave the machine or type a bad command inavertantly	13:40
rhineheart_m	how about if only one person has the access to the box? is it still a good choice?	13:40
\sh	rhineheart_m: the serious part: in companies you have several admins doing different admin tasks...you don't want to give them root access, because they could destroy something which is not their area..so sudo can be configured to give other admins more rights to do tasks as root, but not to destroy other things...(this is the ideal idee behind it)	13:40
wo0f_	anyways, glad to see iv sparked off this convo:P	13:41
nijaba	rhineheart_m: that's really up to you to do a su passwd to have a root account	13:41
wo0f_	just wanted to use su :)	13:41
nijaba	but it should not be default	13:41
nijaba	wo0f_: then sudo su will work	13:41
rhineheart_m	honestly.. I gave root a pass before.. but when I encountered this issue.. I then reverse it to default... (without even knowing why did I reverse it.. for what reason or purpose LOL)	13:42
nijaba	I must admit that I sudo su quit often, if I need to walk in a hierarchy my normal user does not have visibilty on	13:42
_ruben	i already told my co-admins that they better have damn good reason ready when i see a sudo su - or sudo -i or smth similar in the logs ;)	13:43
_ruben	then again, sudosh2 would make that less an issue, but still	13:44
nijaba	rhineheart_m: having a root password is not "bad", encouraging the users to log in as root by default is, as it would be to have a simple password for root or for an account with sudo power	13:44
rhineheart_m	ScottK: I got your point actually.. so.. it is possible to configure level of root privileges to an environment where more than I admin? Like there are superadmin (could modify the system) admin (less privilege) user (very limited)?	13:45
nijaba	_ruben: the good thing with sudo su is that it is logged as well :)	13:45
_ruben	nijaba: but the commands after that arent, right?	13:45
nijaba	_ruben: in history of root only	13:45
_ruben	nijaba: ah ok, im talking syslog here	13:45
rhineheart_m	" as it would be to have a simple password for root or for an account with sudo power" <<<< what do you mean with this?	13:46
nijaba	_ruben: yes, but I have been able to trace what a sudo su did through bash_history	13:46
_ruben	nijaba: true enough	13:46
nijaba	rhineheart_m: if you have an account in the admin group with an easy password, it is as bad as having a root account with a simple pssword	13:47
nijaba	rhineheart_m: meaning it can and will be cracked by any dictionary attack	13:48
nijaba	rhineheart_m: personally I disable password login on ssh on all my machine connected to the internet	13:49
_ruben	same here	13:49
rhineheart_m	so what did you do instead?	13:49
nijaba	rhineheart_m: ssh keys	13:49
rhineheart_m	ssh keys? mmm.... can you explain a little info about it?	13:49
nijaba	rhineheart_m: and it is so much faster to logon :)	13:49
rhineheart_m	is it secured?	13:50
nijaba	rhineheart_m: take a look at ssh-keygen, ssh-copy-id	13:50
rhineheart_m	I mean.. m sure it is... in fact you chose it.. I mean.. where that ssh keys saved?	13:50
nijaba	rhineheart_m: yes, as long a the id file is kept secured and has a good passwor	13:51
_ruben	public/private key authentication .. public key on server you want to logon to .. private key you keep secure and is protected with a passphrase	13:51
nijaba	rhineheart_m: only on my laptop, that is always with me	13:51
nijaba	rhineheart_m: some people store it on a crypted USB key	13:51
nijaba	rhineheart_m: and you should never be reluctant to change it if you think it can have been compromised	13:52
rhineheart_m	what if somebody can gain access in the USB..let's say.. it's lost...and you didn'y know it is lost promptly...	13:52
nijaba	rhineheart_m: he needs one password to access the crypted file system and a second one to unlock the key	13:53
nijaba	rhineheart_m: but that would constitute a potential compromise any way, so i'd change the key ASAP anyway	13:53
rhineheart_m	uhuh! that's great.. honestly.. I've been using pass to gain access to the box remotely..	13:53
nijaba	rhineheart_m: have you looked in your log how many connection attempt you get on ssh?	13:54
rhineheart_m	yeah.. I could as well review the logs of incoming connections in my router...	13:54
nijaba	rhineheart_m: it is really scary how many zombies are trying dictionary attacks these days	13:54
nijaba	rhineheart_m: I'd say that a machine connected on the net with root root login would survive less than 10 min	13:55
rhineheart_m	really? ows!horrible	13:55
rhineheart_m	so.. where in the world I can get a guide the way you set up your ssh server to accept incoming connections?	13:56
nijaba	rhineheart_m: man sshd ?	13:58
nijaba	rhineheart_m: that's for limiting to key auth only	13:58
nijaba	rhineheart_m: man ssh-keygen and man ssh-copy-id for creating and deploying the key (you should do that part first ;))	13:59
nijaba	rhineheart_m: actually man sshd_config is more what ou need to look at	14:00
rhineheart_m	can you point me to somewhere else with a guide on this matter?	14:01
nijaba	rhineheart_m: I could write one or look for one, but I do not know one from the top of my head	14:02
Schiz0\|SD	Hey, I'm having an odd problems I can't seem to solve. I have an ubuntu 7.10 server running a few php/mysql websites. I've been having some problems with packet loss and the website timeing out A LOT. So it seems there's an etworking problem with our host. However, connecting to lcoalhost still has issues. For example, I run a caching BIND and a memcache daemon. Often, both DNS lookups say "no servers found" and memcached clients say ...	14:03
nijaba	rhineheart_m: found this, looks good : https://help.ubuntu.com/community/AdvancedOpenSSH	14:03
Schiz0\|SD	... "connection timeout to 127.0.0.1"	14:03
rhineheart_m	okay. so what are the key terms here? so that I could find it myself?	14:03
Schiz0\|SD	what would cause connections to localhost time out all of a sudden? It was working perfectly a week ago, and nothing changed. I'm guessing some sort of ip stack corruption due to the packet loss issue or somethign? But I really have no idea	14:04
nijaba	Schiz0\|SD: when you do an ifconfig, do you see interface lo ?	14:04
Schiz0\|SD	yep, it's there	14:04
Schiz0\|SD	it does connect to lcoalhost, but only randomly. As in, it doesn't work all the time	14:05
nijaba	Schiz0\|SD: can you ping localhost?	14:05
Schiz0\|SD	Yeah, I just tried and it works fine	14:05
Schiz0\|SD	althoguh, I'm getting packet loss on localhost	14:06
nijaba	Schiz0\|SD: when you say "fail to connect" what service/command are you talking about	14:06
nijaba	?	14:06
nijaba	Schiz0\|SD: Packet loss on localhost? really? that is new to me !	14:06
Schiz0\|SD	--- localhost ping statistics ---	14:07
Schiz0\|SD	30 packets transmitted, 12 received, 60% packet loss, time 29000ms	14:07
Schiz0\|SD	rtt min/avg/max/mdev = 0.036/0.052/0.060/0.011 ms	14:07
rhineheart_m	how to review again the ssh logs?	14:07
nijaba	rhineheart_m: /var/log/auth.log	14:08
Schiz0\|SD	nijaba: As for other connections, when I run "host www.google.com" it occasionally says "Server not found" The only thing in my /etc/resolv.conf is 127.0.0.1	14:08
nijaba	Schiz0\|SD: something is really wrong with your network	14:08
Schiz0\|SD	:-\	14:09
_ruben	packetloss on localhost sure is new to me as well	14:09
Schiz0\|SD	could it be some sort of ip stack corruption or something?	14:10
Schiz0\|SD	$ host efnet.org	14:10
Schiz0\|SD	;; connection timed out; no servers could be reached	14:10
Schiz0\|SD	it hsould be able to connect to bind on localhost :-\	14:10
Schiz0\|SD	I really have no idea what to do. I'm more of a php coder than a tcp/ip network tech :-X	14:11
_ruben	Schiz0\|SD: well .. it could also mean that you can reach your own dns server, but your dns server cant reach the actual dns server	14:11
Schiz0\|SD	ah	14:11
rhineheart_m	is it possible to just allow ssh access to a range of IP? like I want it to be accessible by IP in our locality?	14:11
Schiz0\|SD	that makes sense	14:11
_ruben	rhineheart_m: thats what packet filters are for	14:11
rhineheart_m	packet filters? where would I configure it?	14:12
rhineheart_m	ip tables?	14:12
nijaba	Schiz0\|SD: I would first try to find why you have packet loos on localhost, as it sounds like a much more fundamental problem	14:12
kirkland	Schiz0\|SD: out of curiosity, what is your MTU on localhost?	14:13
Schiz0\|SD	Could it be a duplex issue between some routing hardware at our host?	14:13
Schiz0\|SD	kirkland:	14:13
Schiz0\|SD	UP LOOPBACK RUNNING MTU:16436 Metric:1	14:13
kirkland	Schiz0\|SD: it clearly a problem, that you have packet loss on loopback, but you might try narrowing it down by adjusting ping's packet size	14:14
nijaba	Schiz0\|SD: localhost is not going through the hw, so it should not be related	14:14
rhineheart_m	ows.. I guess MTU should be somewhere 1300 -1500.. correct? mmm a newbie here. L)	14:14
kirkland	Schiz0\|SD: ping -s 10 localhost, ping -s 100 localhost, ping -s 1000 localhost, ping -s 10000 localhost, ping -s 65000 localhost	14:14
kirkland	rhineheart_m: not on localhost, it can be much bigger	14:14
kirkland	rhineheart_m: my MTU on localhost is also 16436	14:15
rhineheart_m	okay.. that's for etho?	14:15
Schiz0\|SD	I'm getting a some of these errors during the pings: ping: sendmsg: Operation not permitted	14:15
kirkland	rhineheart_m: yeah, eth is usually more in the 1400-1500 range	14:15
nijaba	rhineheart_m: yes, the value you gave are for ethernet	14:15
Schiz0\|SD	that would be the firewall, right?	14:15
kirkland	Schiz0\|SD: are you using any other parameters to ping?	14:15
Schiz0\|SD	Although, our firewall shouldn't touch localhost	14:15
Schiz0\|SD	nope, I just ran what you told me above, the first one	14:16
rhineheart_m	they're of the same machine...right? lo and eth?	14:16
kirkland	Schiz0\|SD: and are you running as root, or unpriv user? are you using sudo?	14:16
Schiz0\|SD	As root	14:16
rhineheart_m	so.. it might be a hardware problem.. just don't know... :)	14:16
kirkland	Schiz0\|SD: "Operation not permitted" is emitted by ping, if perhaps you try and ping flood as an unpriv user	14:16
nijaba	kirkland: I guess yo would know about flooding ;)	14:17
Schiz0\|SD	I can pastebin some output...gimmie a minute or two	14:17
kirkland	nijaba: learned a bit about it this week, nijaba ;-)	14:17
Jeeves_	Schiz0\|SD: Try iptables -F	14:17
Schiz0\|SD	uhh.	14:17
Schiz0\|SD	what's that do Jeeves_?	14:17
kirkland	Schiz0\|SD: one other thing that could cause packet loss on localhost is if localhost is getting HAMMERED by something else at the same time	14:18
Schiz0\|SD	I think my ssh connection just died	14:18
_ruben	could run a tcpdump -nvi lo as well to see that	14:18
Jeeves_	Schiz0\|SD: That flushes your firewall	14:19
Schiz0\|SD	yeah, it's not responding to anything now :-X	14:20
_ruben	iptables -F can be rather harmful when performed remotely with policies set to DROP	14:20
Schiz0\|SD	Oh. Damn.	14:20
* Schiz0\|SD just got in trouble		14:20
Jeeves_	_ruben: That's true ...	14:21
Jeeves_	Schiz0\|SD: Should I feel guilty?	14:21
Schiz0\|SD	Well. How can I fix it? or rather, how can our host fix it?	14:21
_ruben	depending on ur host, reload the firewall ruleset should do the trick	14:22
Jeeves_	Schiz0\|SD: If you're policy is indeed DROP, you need te login locally and reload the firewall	14:22
_ruben	then again, your connectivity problems might be caused by that very ruleset	14:22
Jeeves_	And sorry for missing out on this step ..	14:22
Schiz0\|SD	Well considering I'm in the US, and the server is in Sweden :-X	14:22
Schiz0\|SD	It's fine Jeeves_...I should've looked up the manpage before running it anyway :-X	14:23
Jeeves_	:/	14:24
Schiz0\|SD	Anyway, our firewall script is here: http://silenceisdefeat.org/~schiz0/iptables.rules	14:25
Schiz0\|SD	We've been using it for a while, and it's been ok	14:25
Schiz0\|SD	so I don't think that's the problem	14:25
Jeeves_	echo "Setting default DROP policies ..."	14:25
Jeeves_	# Set default policies	14:25
Jeeves_	$IPT -P INPUT DROP	14:25
Jeeves_	$IPT -P OUTPUT DROP	14:25
Jeeves_	$IPT -P FORWARD DROP	14:25
Jeeves_	Jup, that's dropping everything...	14:25
_ruben	even output filtering .. hardcore ;)	14:34
_ruben	hmm .. 'scary' :	15:05
_ruben	[271085.238264] EDAC e752x: Non-Fatal Error DRAM Controler	15:05
_ruben	[271085.238276] EDAC MC0: CE page 0xa279a, offset 0x640, grain 4096, syndrome 0x2, row 2, channel 0, label "": e752x CE	15:05
_ruben	lets run a memtest86+	15:06
ivoks	hello	15:11
mathiaz	hi ivoks !	15:11
ivoks	hi, sorry for meeting :/	15:11
ivoks	how ugly would be to add new system group (sasl) and configure dovecot to provide sasl socket by default for that group	15:12
mathiaz	ivoks: np - the earth is still round and the sun came back this morning :)	15:12
ivoks	then, have an additional binary package (from dovecot source), which, when installed, would move that socket to postfix chroot and link old path to new path	15:12
ivoks	and add postfix to sasl group	15:13
ivoks	no configs would get changed	15:13
ivoks	but it would be ugly to have /var/run/dovecot/sasl/socket linked to /var/spool/postfix/private//something	15:14
ivoks	what say you? :)	15:14
mathiaz	ivoks: that's seems complicated.	15:15
mathiaz	ivoks: I've had a quick glance at the dovecot source code	15:15
mathiaz	ivoks: and it seems that's it should be easy to modify dovecot to not break if the sasl socket doesn't exists	15:15
mathiaz	ivoks: or better - if the directory to create the sasl socket doesn't exists	15:16
ivoks	well, i'm not programmer :/	15:16
ivoks	i tried changing code so that it doesn't fail; and it didn't, but it failed with another error, at glance, unrelated to non-existing directory	15:17
ferric84	I have a ssh connection going that looks like this: ssh -l <username> -L 8088:192.168.0.100:80 lan.mysite.com. I'm trying to make sites on this lan local so I can work on them, by adding "hostname 127.0.0.1" to my hosts file, but I cannot get these to resolve in the browser... any ideas?	15:17
ivoks	but, once i reverted those changes, it started normaly	15:17
ivoks	ferric84: hosts is 'IP hostname', not 'hostname IP'	15:17
ferric84	hmmm	15:18
ferric84	arg	15:21
ferric84	now it's a cannot find server erro	15:21
ferric84	r	15:21
=== gregory is now known as tuxbox
J-_	does the normal LAMP install have wake on LAN installed or something? I just logged into the server from where it is, and it sounded like it did a fast boot up, almost like when you boot up a pc, just much more faster	16:07
ivoks_	wol is bios thing	16:08
J-_	hmm	16:08
J-_	not sure what's wrong with this server. I shall restart and see if it works.	16:09
ivoks_	bbl	16:09
J-_	In dmesg, I see: "Call Trace" is that normal?	16:11
=== nijaba is now known as nijaba[away]
=== nijaba[away] is now known as nijaba
Schiz0\|SD	To those who were helping me earlier today: Our host rebooted the server and reloaded the iptables script, so all is well.	16:38
Schiz0\|SD	As for the networking issues, the reboot seemed to help A LOT. Everything seems to be running fine now, and there's no packet loss as far as I can see	16:39
Schiz0\|SD	So I'm still not sure what the problem was :-\	16:39
J-_	In dmesg, I see: "Call Trace" is that normal for a server? It's quite repeatative.	16:45
nijaba	Schiz0\|SD: thanks for the follow up	16:48
J-_	bleh	16:56
fromport	could some operator mayby ban the pumpernickle ?	17:01
themime	ah ok thanks, ill do that. is there a way i can confirmed i did install the server version though?	17:39
themime	oops	17:39
themime	i just installed (what was supposedly ubuntu server 7.1), doesn't have sshd, apache...really any server stuff. anyway, regardless, im trying to install the server stuff i need, and this is my first time using ubuntu. i installed apache using synaptic package manager, and i thought i also installed phpBB2, but i can't find it anywhere. my past experience with phpBB2 was a tar, untaring in the appropriate folder, and configurin	17:39
themime	also, is there a way to confirm i installed the server edition of ubuntu?	17:40
fromport	all the other version start with a graphical login after bootup ;-)	17:40
fromport	so if you have the text login: -> server version	17:41
themime	i burned the right cd, and downloaded the right cd...hmm	17:41
themime	cause i do have a graphical login. and no server stuff installed	17:41
fromport	what does "dpkg -l ubuntu-desktop" show ? only confirm if has an "i" at the beginnen of the line	17:42
themime	ok, i typed in the command, what am i looking for in the response?	17:43
ivoks	any objections for upload of new bacula (closes 3-4 bugs)	17:54
ivoks	:)	17:54
fromport	themime: there should be 1 line and at the beginning there is probably an "i" or an "u"	17:58
themime	theres no ssh so i can't c/p but its more than 1 line, it looks like there was some sort of error. let me get on irc on the box itself so i can c/p	17:59
themime	er, sshd	17:59
fromport	apt-get install ssh	18:01
fromport	a server (and desktop as well) never is installed with ssh. always have to install that seperately	18:01
themime	ah ok	18:05
themime	im epic failing to get pidgin to work with irc haha	18:05
themime	theres no way this is the server edition, theres no server software on here at all	18:10
themime	and it has a gui	18:10
themime	Desired=Unknown/Install/Remove/Purge/Hold	18:13
themime	\| Status=Not/Installed/Config-f/Unpacked/Failed-cfg/Half-inst/t-aWait/T-pend	18:13
themime	\|/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad)	18:13
themime	\|\|/ Name Version Description	18:13
themime	+++-==============-==============-============================================	18:13
themime	ii ubuntu-desktop 1.79 The Ubuntu desktop system	18:13
themime	after running the dpkg -l ubuntu-desktop	18:13
fromport	ehh.. you're not supposed to use cut&paste. they will warn/ban you on certain channels :-)	18:15
fromport	just the "i" at the beginnen of the line would have been suffciant	18:15
themime	heh yea sorry, i should have used a pastebin	18:15
themime	the other stuff seemed important too	18:16
themime	so do i have desktop installed then?	18:16
fromport	could be: OR during install it has asked you to install "desktop" . if you answered yes it installed the whole ....	18:17
themime	i never remember it asking me if i wanted to install desktop	18:17
themime	is there a way to install the server and uninstall the desktop without reinstalling via cd?	18:18
fromport	just delete the graphical stuff: eg aptitude purge ubuntu-desktop	18:20
themime	did i mess up package stuff by using synaptic manager?	18:21
themime	sudo apt-get install apache didn't work, said the package didn't exist	18:21
fromport	no !	18:21
fromport	it's apache2 nowadays	18:22
fromport	apt-cache search apache2	18:22
themime	ah ok	18:22
themime	should i unstall using synaptic and reinstall with apt?	18:22
themime	the mixed managers bothers me haha	18:22
fromport	aptitude is just a graphical way to access the package system. apt-get/aptitude is from the command line.	18:23
fromport	the effects are the same, you can mix&match.	18:23
themime	why, when prompted for the "admin" password, i have to enter my user password and not the root password (like to install stuff?	18:26
peterdv	themime: The password is for sudo.	18:31
themime	which i thought was the root password	18:33
peterdv	sudo(8): ... Otherwise, sudo requires that users authenticate	18:35
peterdv	themselves with a password by default (NOTE: in the default configura‐	18:35
peterdv	tion this is the user’s password, not the root password). ...	18:35
jnkq	is ubuntu capable to be stable server?	18:35
themime	ah, man sudo, im dumb haha	18:37
* themime goes and rtfm		18:37
J-_	http://pastebin.ca/951848 any ideas? What can I do to fix this?	18:38
J-_	http://pastebin.ca/951851 Here is my syslog	18:41
ivoks	J-_: did you check if /var/run/mysqld/mysqld.sock exist?	18:41
J-_	ivoks: I just cd /var/run/mysqld, typed ls, and mysqld.sock doesn't exist.	18:43
J-_	ivoks: what can I do to fix it?	18:44
ivoks	J-_: can you start mysql?	18:44
J-_	no	18:44
J-_	I just tried to restart mysql, would that make it start?	18:44
ivoks	/etc/init.d/mysql start	18:44
J-_	ivoks: http://pastebin.ca/951848 shows still	18:45
ivoks	start i said	18:46
J-_	sane thing	18:46
J-_	same*	18:46
ivoks	and syslog?	18:46
J-_	http://pastebin.ca/951851 syslog	18:47
ivoks	you already pasted that link	18:47
J-_	yes	18:47
J-_	that was syslog says.	18:47
ivoks	i asked you to start mysql and paste syslog after that	18:47
ivoks	not something you did 15 minutes ago	18:47
ivoks	and there's more in syslog than 10 lines, so please, paste more than 10 lines	18:48
J-_	ivoks: How can I show more than 10 lines?	18:49
ivoks	tail -n 20 /var/log/syslog	18:49
J-_	ivoks: http://pastebin.ca/951887	18:56
J-_	Sorry about that. I was waiting for a reply, and didn't realize you typed something after I did, "/names" Pumpernickle is ghosting a lot.	18:57
ivoks	Can't start server: Bind on TCP/IP port: Cannot assign requested address	18:57
J-_	ivoks: What do I need to do to fix that?	18:57
ivoks	can you 'telnet localhost mysql'	18:58
ivoks	does it connect?	18:58
J-_	Trying 127.0.0.1, and it hasn't connected yet.	18:59
ivoks	ok	18:59
ivoks	paste content of /etc/hosts on pastebin	18:59
J-_	ivoks: http://pastebin.ca/951893	19:01
ivoks	do you start mysql with sudo?	19:01
ivoks	sudo /etc/init.d/mysql start	19:02
ivoks	what did you do before it stoped working?	19:02
J-_	ivoks: Yes I tried to start mysql with start. I was trying to configure my hosts, and connect from a static IP. I have the static IP configured I think, not sure if it's proper. But, I can ping google.	19:04
J-_	I also configured SSl for apache	19:05
J-_	I also installed phpmyadmin	19:06
ivoks	i'm not sure what you mean with configure your hosts	19:06
ivoks	ubuntu is basicaly plug and play when it comes to LAMP stack	19:06
J-_	I tried configuring /etc/resolv.conf, and /etc/network/interfaces	19:07
J-_	want me to pastebin both of those configs?	19:07
ivoks	paste those files	19:08
J-_	okay	19:08
J-_	ivoks: http://pastebin.ca/951902	19:12
ivoks	network is 192.168.1.0	19:14
ivoks	not 1.1	19:14
J-_	ivoks: Why the change?	19:15
J-_	My router's IP address isn't 192.168.1.0	19:16
ivoks	network isn't IP of your ruter	19:16
ivoks	that's gateway	19:16
J-_	k	19:16
ivoks	change to 0	19:17
ivoks	/etc/init.d/networking restart	19:17
J-_	Okay, I restarted networking, mysql doesn't start still.	19:19
J-_	Nothing when I telnet 127.0.0.1	19:20
ivoks	oh...	19:20
J-_	err, when I telnet mysql sorry	19:20
ivoks	you don't have loopback in interfaces?	19:21
J-_	What do I need to put in loopback?	19:21
ivoks	http://pastebin.ca/951908	19:21
ivoks	after you fix it, restart your computer, there are even more services that doesn't work	19:23
ivoks	don't work	19:23
J-_	Okay	19:24
J-_	Just heard the server beep, it's restarting. =D I'm in another room.	19:25
J-_	Okay it's restarted I'm SSH'd into it.	19:26
J-_	ivoks: It says mysql already running it after trying to start it.	19:27
ivoks	then it works	19:27
ivoks	try restarting	19:28
J-_	After trying to telnet to mysql it says, http://pastebin.ca/951914 Is that normal?	19:29
J-_	ivoks: Restarting what? the server, or networking?	19:29
ivoks	mysql	19:29
J-_	k	19:29
ivoks	that's normal	19:30
ivoks	yes, it's working	19:30
J-_	Awesome, it restarted.	19:30
ivoks	leason learned? unix machines need loopback; never remove it	19:30
J-_	ivoks: Thank you very much dude. You have the patients of a saint. =)	19:30
ivoks	heh	19:32
J-_	ivoks: Much appreciated.	19:32
ivoks	np	19:32
=== blue-frog_ is now known as blue-frog
mitesh	hi i want to make a webserver with minimum configuration	20:09
mitesh	and no additional package	20:10
mitesh	how can i start	20:10
mitesh	also can the appliance develop using Ubuntu JeOs be deployed on a real machine?	20:11
mitesh	anyone there??	20:12
fromport	mitesh: install ubuntu server , no extra's (graphical desktop etc) and add on demand what you want/need (eg aptitude install apache2 etc)	20:14
mitesh	is ubuntu server a bare minimum	20:15
mitesh	or it can still be futher stripped of	20:15
mitesh	off	20:15
fromport	jeos == normal ubuntu but only without all overhead. any application you generate/develop will run on any "real" other ubuntu (given cpu architecture etc etch_	20:16
fromport	it's a bare minimum	20:16
mitesh	fromport: ubuntu server is different from jeos	20:17
mitesh	is JeOs only for Virtual appliance?	20:17
fromport	jeos is meant for bare minumum under virtual environments (if i'm correct)	20:17
fromport	so only has the drivers needed for that environment where as ubuntu-serverhas _all_ drivers (you dont know what hardware it will run on)	20:18
mitesh	ok ... so is there a way we can stip off ubuntu-server so it may become similar to jeos	20:19
mitesh	?	20:19
fromport	how minumum would you like to go ?	20:19
fromport	why ?	20:19
mitesh	i was actually going through this link http://www.ubuntu.com/products/whatisubuntu/serveredition/jeos and then later went and read this tutorial http://www.linux-mag.com/id/4829... so i am confused as can i use feos to make a webserver which can be deployed on a machine	20:22
mitesh	as everywhere they are mentioning virtual appliance only	20:22
fromport	let me read it real quick (still working too ;-)	20:22
fromport	you cannot "copy" jeos from a virtual machine and expect it to run on a "real"machine	20:24
themime	ok, i reburned the server install, so i _know_ its the right one. how can i completely format the disk, boot disk and all	20:25
fromport	but if you develope a website (some cms & database) you could transfer that information to another machine installed with ubuntu-server	20:25
fromport	use guided partioning from the cd, it will wipe your hd clean ;-)	20:25
themime	awesome, thanks	20:26
themime	actually, before i go through with the install, is there a way to confirm the cd is the server install while booted into the livecd part	20:26
Nafallo	the server install doesn't have a live part? :-)	20:27
themime	haha, that should have been my first flag that went up. haha so fromport, i think i burned the desktop install and labeled it "server install"	20:28
themime	ok, so let me rephrase then: how do i wipe the drive clean from the server install =)	20:28
fromport	just boot the server image	20:29
themime	so a normal install	20:30
mitesh	fromport: any suggestion for my problem	20:31
fromport	themime: http://howtoforge.org/perfect_server_ubuntu7.10 looks a lot like hardy ;-)	20:31
themime	badass, thanks	20:32
mitesh	can i make a real appliance using jeos	20:32
fromport	describe " real appliance" ?	20:32
fromport	jeos is _not_ meant to run on hardware directly	20:32
fromport	only in a virtual environment	20:33
fromport	so it doenst know about 100.000 different kinds of hardware.	20:33
fromport	ubuntu-server does know a lot of different hardware and hence it's much larger/more complex that jeos	20:33
fromport	once it's running applications like apache/databases etc dont know the difference	20:34
fromport	you lost me, what are you trying to achieve ?	20:34
mitesh	real appliance one which i can thn copy on a cd and boot another machine from that cd	20:34
mitesh	i got it thats what i need to know that jeos cant be run on hardware directly	20:36
mitesh	do you have any idea about GNAP = Gentoo Network Appliance	20:36
fromport	no knowledge of gentoo* whatsoever ...	20:37
mitesh	ok thanks for the help	20:38
fromport	good luck! ;-)	20:38
mitesh	:)	20:40
themime	heh, i used to have gentoo on this laptop, never did get the wireless to connect	20:42
themime	i think the install took a full night for the _base_ install	20:44
themime	open office took like 8 hours	20:44
mitesh	yaa gentoo 1st compile everything firefox takes 48 mins to install	20:45
themime	fromport: this "perfect server" link is awesome	20:47
fromport	no other distro is so "tailor cut" for your system as gentoo. But it's not my "taste"	20:57
fromport	*bsd people who want to switch to linux are probably delighted ... :-)	20:58
fromport	emerge [this/that]	20:58
mitesh	emerge world :P	21:03
fromport	:-)	21:03
[mbm]	anyone using xen under hardy?	21:56
nxvl	why is ubuntu a partner of zimbra and zimbra isn't included on ubuntu?	22:20
foo	Isn't Zimbra paid?	22:21
nxvl	soren: around?	22:24
sommer	nxvl: he's on vacation until tues	22:30
nxvl	oh ok	22:31
nxvl	did you know something about small-bussiness-server?	22:32
nxvl	what's the state of it	22:32
nxvl	i hvae just saw it was aproved on sevilla	22:32
sommer	it's too small, and not enought businessy :-)	22:32
nxvl	heh	22:32
sommer	are you talking about a blueprint?	22:33
nxvl	yup	22:33
nxvl	https://blueprints.edge.launchpad.net/ubuntu/+spec/ubuntu-easy-business-server	22:33
sommer	ah... my opinion, the whole small business, enterprise, etc doesn't really make much sense	22:34
sommer	in the end you're really just talking about services :)	22:34
sommer	is one service small business and another enterprise?	22:34
sommer	nxvl: thinking of brining it up at UDS?	22:35
sommer	the blue print that is	22:35
sommer	nxvl: I had a thought about a LDAP management "something" would really be needed	22:38
\sh	sommer: apache directory studio, eclipse based...;)	23:09
sommer	mmm... that's interesting	23:10
\sh	sommer: and works actually	23:10
sommer	heh, that's always a plus	23:10
\sh	sommer: serious, I'm using it for ldap management ( not the apache package but the eclipse plugin in my normal eclipse setup)	23:11
\sh	you can edit all stuff you want and add new ldap objects etc.	23:11
sommer	cool... I really like the php/web plugins for eclipse	23:12
sommer	and the python, perl, ruby plugins :-)	23:12
\sh	it was build when they started to work on an apache directory server, which works too..but not so known as openldap	23:12
\sh	and full java power ;)	23:12
rhineheart_m	hello.. is modsecurity2 in the repo? is it alright to install it in gutsy?	23:13
sommer	\sh: thanks, I'll look into that	23:13
\sh	sommer: you're welcome	23:14
=== \sh is now known as \sh_away
rhineheart_m	can anybody suggest here if it is safe to follow this tutorial? http://www.howtoforge.com/apache_mod_security	23:24
dthacker	rhineheart_m: what are your concerns?	23:44
rhineheart_m	dthacker: thanks for that.. I just want to mask my http header information something like to Apache (unix)..	23:45
dthacker	rhineheart_m: I'm not sure if that tutorial will help you do that. My concern with it is that it's using 2 year old versions.	23:49
rhineheart_m	dthacker: Yeah.. I noticed it...that's why I didn't do it.. owss... are you using modsecurity2?	23:50
dthacker	rhineheart_m: no I have a low traffic site and my config is very plain.	23:51
rhineheart_m	dthacker: okay.. did you modify the way apache2 gives info in the http header request?	23:52
dthacker	rhineheart_m: no	23:52
rhineheart_m	Can anybody here tell me if this bug has been alreadu fixed and added to the repo? Bug #156748	23:54
ubotu	Launchpad bug 156748 in iperf "Thread library bug for kernel >= 2.6.21" [Unknown,Fix released] https://launchpad.net/bugs/156748	23:54
J-_	Hello, I'm having a problem with no-ip in the Dapper installation. I already set it up but, when I want to run it, "sudo no-ip -C" it says "file '/etc/no-ip.conf' is in the use of process 3723. Ending!" Can I kill -9 the process and reconfigure it?	23:56
J-_	Nevermind, I just sudo killed the process. It worked.	23:58

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!