/srv/irclogs.ubuntu.com/2008/03/22/#ubuntu-server.txt

=== Bidou` is now known as Bidou
=== c_schmitz is now known as c_schmitz|away
ghostnob_hi everyone03:00
sommer yo03:01
ghostnob_hi sommer03:02
ghostnob_I saw some of your works on ubuntu mail list environment...03:03
sommerheh, hope they were good works03:03
ghostnob_yeah... I want to join but I don't what I want to do yet.. they are all interesting projects...03:04
sommerah, I'03:04
ghostnob_I'm a web developer and I love scripting especially using linux is awesome since I started 200503:04
sommerI03:04
sommerI've found that it's best to start with what you like03:05
sommernew keyboard... keep hitting, enter when I'm not ready... heh03:05
ghostnob_ok.. I'm thinking of packaging OR mysql03:05
ghostnob_ahh03:05
sommerhave you checked into MOTU yet?03:06
sommerthat's probably the best place to start with regards to packaging03:06
ghostnob_ok.. I've been looking into that since thanks for telling me.. I will surely do that for the sake of mentoring... lol03:07
sommerserver's a great place to start as well though!03:07
ghostnob_cool03:08
sommeranother thing upcoming is the upgrade from dapper to hardy, so help with testing is greatly appreciated :-)03:11
sommerbut again, it's really a matter of what you'd like to do03:11
ghostnob_thanks sommer... sorry I was seting my evolution mail...03:16
sommerheh, not a problem, I'm just hangin out03:16
ghostnob_one quick question:03:19
sommersure03:19
ghostnob_I'm trying to set my ubuntu server as the main mail server; and I want to be able to transfer exchange server 2000 to it. do you thing it's possible...? i know it's dumb...03:20
Kamping_Kaiseryes its posible, but may be a bit of work03:21
sommerheh, ya kind of depends on how you use your exchange server03:22
sommerIMHO the biggest functionality lack between exchange and Open Source solutions for email is shared calendering03:23
sommerthere are Open Source shared calendars, but as far as shared calendars integrated with email, it's not as integrated as exchange03:24
ghostnob_ok... gotcha..03:24
ghostnob_one last question... sorry I ask questions alot..03:25
Kamping_Kaiserease of integration isnt huge either, but thats partly because people spend their time making good stand alone apps, not easy to ingtegrate ones.03:25
ghostnob_I use comcast, but I want to be able to access my computer from outside or work; how do you think I can do it.03:25
sommerKamping_Kaiser: I concur03:25
sommerghostnob_: ssh03:26
sommerat least if your workstation is linux :-)03:26
ghostnob_ok.. so it's possible...... yeh!03:26
Kamping_Kaiseryou could putty if its not03:27
sommerjust need to open port 22, but you should limit access to only the users needed03:27
ghostnob_as long as I know my IP or do I need to create a new IP for it?03:27
ghostnob_ok..03:27
sommeryou can port map through your firewall to your workstation03:28
sommerit's a good idea to make sure you have a strong password though03:28
ghostnob_ok...03:28
ghostnob_i'm good at that03:28
ghostnob_because there is something I'm trying to do and if it works, that would be awesome and I will definitely owe you guys... lol03:29
ghostnob_but now the problem might be the router. I use a linksys router. do you think it's a problem?03:30
Kamping_Kaiserif it can forward ports, you should be ok03:30
sommeryeppers03:30
ghostnob_ok.. it's the one with the speedbooster... lol03:31
ghostnob_I will do everything and create users' access to the port...03:31
ghostnob_I'll start tonight though if you guys are still online, I will surely exercise your ideas and tutorials...03:32
sommerI'll probably be around for a while03:33
ghostnob_ok..03:33
Kamping_Kaiser'tonight' is a very relative concept...03:33
sommerheh, crazy globalization03:33
Kamping_Kaiserhehe03:33
ghostnob_have you ever noticed that it's difficult to remote desktop to a windows machine.. lol03:33
ghostnob_I hate windows...03:33
ghostnob_hehe03:34
sommernot really, have you seen the rdesktop package?03:34
sommerbut I agree with the windows comment :-)03:34
ghostnob_not really... let me check...03:35
* Kamping_Kaiser hasnt tried remote desktop on anything (unless xdmcp counts)03:35
sommerheh, rdesktop is a RDP client for linux... good stuff03:35
ghostnob_I don't think I have rdesktop03:35
sommersudo apt-get install rdesktop, should get you there03:36
ghostnob_ok... one momnet03:36
sommerthat's the cli, there are gnome and kde integrated apps as well03:37
ghostnob_I use gnome, I can't find it anywhere... I know I already installed it...03:37
sommerdo you have gnome-rdp?03:38
Kamping_Kaiseralso tsclient does it iiirc03:38
sommertsclient is the one I've used03:38
sommerya03:38
Kamping_Kaiserwonder how easy it would be to create a copy of the server used at a place i volunteer at. it would be a good test upgrade system03:40
ghostnob_i don't think I do... let apt-get it03:40
ghostnob_I'm installing it now..03:41
ghostnob_so what does VNC do...?03:42
sommerbasically the same thing as windows terminal server03:42
sommerit allows access to a gui through a network protocol03:43
Kamping_Kaiseras oposed to vpn, which i keep confusing it with ;)03:43
sommerheh, ya not quite the same thing... but can be similar03:44
ghostnob_cool.. I thought as much..03:44
ghostnob_is it compulsory for me to provide a domain, because I'm just trying to connect to my laptop...03:44
sommeryou shoud be able to supply that once you connect, if necessary03:46
ghostnob_I can't connect, it's showing some procedures of connecting03:48
sommerare you on the local LAN?03:53
ghostnob_yeah...03:53
ghostnob_but my laptop is not... my laptop is wireless but on my network...03:53
sommerand it's a win desktop?  if so have you enabled remote administration?03:53
ghostnob_yeah...03:54
sommerya, that's a different port, which I wouldn't advise opening03:54
sommeryou can tunnel the RDP port through SSH though03:55
ghostnob_ok...03:55
dthackerrdesktop is wonderful if you have to windows..03:55
ghostnob_cool...03:55
sommerya, best over VPN or on a LAN though03:55
ghostnob_so, do I have to open port for my laptop? I can connect to my other windows computers anyway03:56
sommerat leat that's the only times I've used or enabled it :-)03:56
sommera VPN is probably the best, most secure way to go03:57
ghostnob_ok...03:57
sommerI'd check your linksys for a vpn option03:58
sommerthen it's all encrypted and all good03:59
ghostnob_ok....03:59
ghostnob_I want to get disconnected for a second, I'll be back.. ok04:02
sommersure04:02
ghostnob__hi04:04
ghostnob__I'm back04:04
sommercool04:06
[mbm]anyone running xen servers with hardy?04:07
dthackernot me04:10
dthackerI'm a big chicken04:10
[mbm]noticing that it doesn't quite work04:11
ghostnob__not me either04:16
[mbm]hmm, was hoping someone would know how to fix it04:16
ghostnob__I don't run XEN server.. you sound like a lazy chicken with a weak egg... do things by writing codes and package things not using a third party thing... lol04:16
ghostnob__well, let's know..04:16
[mbm]huh?04:17
ghostnob__what's the problem, maybe I can help04:17
[mbm]didn't even understand your last comment04:17
[mbm]hoping that wasn't intended as some sort of insult04:18
ghostnob__nope... just some technical humor.. lol04:19
ghostnob__I'm still learning too.. but I learn through solving problems...04:20
[mbm]I'm not asking someone to hold my hand; specifically I'm asking why the xen networking stack is broken on the domUs04:20
[mbm]the tx path (domU -> dom0) works, but the rx path doesn't04:21
[mbm]seems to be a glitch in the xennet code somewhere04:21
ghostnob__uhmmm04:26
ghostnob__let me see...04:26
ghostnob__what is your result when you <ipconfig>04:27
ghostnob__sorry, <ifconfig>04:28
[mbm]let's get past the basics - hardy doesn't configure the initramfs for xenblk or xennet which have moved to modules in the hardy release (previously they were compiled into the kernel), so the first step is to fix the ramdisk to load the xen modules; that gets you the virtual networking interfaces04:30
[mbm]the interfaces appear normal apart from the fact the data you send out through the interface essentially gets routed to /dev/null04:30
[mbm]I've run tcpdump on both ends of the virtual interface and watched the packets go mising04:31
ghostnob__try disabling your firewall, create a domU with a MAC, that could also cause a huge problem...04:32
[mbm]there is no firewall04:32
[mbm]the mac is hardcoded04:32
[mbm]hardy's xennet is broken04:32
[mbm]thre's already a bug filed against it04:32
ghostnob__ok04:32
ghostnob__one second04:32
ghostnob__sorry talking to my girlfriend online... ok.. sometimes a manual configuration can help...04:35
ghostnob__I remembered I have this links in my bookmarks maybe they will help...04:36
ghostnob__http://lkml.org/lkml/2007/10/13/22704:36
ghostnob__http://www.ussg.iu.edu/hypermail/linux/kernel/0710.1/2002.html04:36
[mbm]not really related04:38
[mbm]fwiw - https://bugs.launchpad.net/ubuntu/+source/xen-3.2/+bug/20401004:38
ubotuLaunchpad bug 204010 in xen-3.2 "networking not working" [Undecided,New]04:38
ghostnob__http://kerneltrap.org/mailarchive/linux-kernel/2007/10/13/33716104:38
ghostnob__well, the little i know of XEN are thos things... I wish I could help more....04:39
nxvlScottLij: is there any reason why zimbra isn't included in ubuntu yet, or is a matter of noone packaging it?05:38
nxvlScottK: is there any reason why zimbra isn't included in ubuntu yet, or is a matter of noone packaging it?05:39
nxvlScottLij: sorry :$05:39
ScottKnxvl: Dunno.  I thought it had proprietary bits, but I've never really looked into it.05:44
miteshhow can one futher stripp off ubuntu server06:53
fromportmitesh: what are you trying to achieve ? why would you want to strup it further ? do you have space problems ?07:44
J-_I'm currently looking into setting up an HP officejet 6200 printer on my 6.06 LAMP server. What do I need to install to get it working proper, there's no GUI on the server, and I want to be able to configure the server through the webpage-like interface.07:45
Kamping_KaiserJ-_, cups UI doesnt help?07:46
fromportis it connected via USB or ethernet ?07:46
J-_USB07:47
fromportinstall cupsys07:47
fromportand install webmin: http://www.dth.net/new_machine/webmin07:47
Kamping_Kaiserno, dont install webmin07:48
Kamping_Kaiserffs. why do people insist on recomending it07:48
J-_hmm, okay I won't07:48
Kamping_Kaisercups and hp's driver both come with a web UI07:48
J-_Should I install cupsys>07:48
fromportkamping: please tell us why not to install it07:48
J-_?07:48
Kamping_Kaiser!webmin07:48
ubotuwebmin is no longer supported in Debian and Ubuntu. It is not compatible with the way that Ubuntu packages handle configuration files, and is likely to cause unexpected issues with your system. See !ebox instead.07:49
Kamping_KaiserJ-_, yes you should07:49
fromportkamping: if you want to install ebox it will install apache2 and the lot:  69 newly installed packages07:50
fromportthat's MADNASS07:50
fromportmadness07:50
Kamping_Kaiseri think both are crazy. tbh.07:51
fromporti dont want to install a postgress database just to configure my machine with the aid of UI07:51
J-_Kamping_Kaiser: Will <server internal ip>:631 work after installing CUPS?07:52
fromportJ: https://help.ubuntu.com/community/HOWTO-enable-cups-browsing07:52
fromportgoogle is your friend ;-)07:53
J-_=\ I've looked into this a bit, plus, some #u-o discussion, and it seems too hard to follow... Plus that tutorial leaves CUPS unprotected.07:55
fromportmayby seek help @ #u-cups (if it exists?)07:57
J-_Nope, doesn't.07:57
* J-_ tries the tutorial. =(07:59
J-_Ah, great. Adminstrative commands are disabled, and I have no GUI to make a user. =\08:03
miteshfromport: can i optimize it even futher as best for my need.. suppose i want to run a http server only, thn what will be the best configuration for it.. rempving the unwanted thing ..08:36
Kamping_Kaiseryou could use something like debfoster to remove unused packages, but you'll find the system extreemaly unflexible08:38
Kamping_Kaiser*inflexable08:38
miteshcan i do some thing like travel the dependencies og a http server and keep only it and stipp off the rest?08:40
Kamping_Kaiseryou could write yourself a bash script to do it. or look at debfoster ...08:41
miteshok is there anything close to http://www.gentoo.org/proj/en/base/embedded/gnap-userguide.xml this in ubuntu see the goal part..08:42
J-_hmmm, I used the tutorial, added group, and the user to the group, set the group in cupsd.conf and still doesn't work...08:42
J-_maybe I should to make a shadow user? i think it is08:43
Kamping_Kaisermitesh, is that question related to what you just asked, or is it a second question?08:43
miteshyou can relate it suppose you have a space constraint08:44
miteshand want to set up a server for less than 13 mb08:44
Kamping_Kaiser*laugh*08:45
mitesh?08:45
Kamping_Kaisersetup a server in < 13 mb.08:46
fromportmitesh: you clearly dont know what you're talking about.08:47
Kamping_Kaiserafk dinner08:47
Kamping_Kaiserback in 6008:47
miteshembedded systems08:47
fromportyou are talking on #ubuntu-server08:48
fromportthings that have multiple cpu's terabytes of storage and connected with 10GE08:48
fromporthttps://wiki.ubuntu.com/EmbeddedUbuntu08:49
fromportubuntu != gentoo. if you want/are used to do it the gentoo way: use gentoo08:50
fromport:-)08:50
fromporta fairly minimum ubunserver install is around 400 megabyte08:50
fromportit has around 250 packages installed which you can see with " dpkg -l "08:51
fromportif you're brave enough and know what you are doing you could purge a few of those.08:51
fromportif you use aptitude you can search/look for packages and it dependancies08:52
fromportgood luck!08:52
J-_!info hotplug09:45
ubotuPackage hotplug does not exist in gutsy09:45
J-_!info hotplug=utils09:45
ubotuPackage hotplugutils does not exist in gutsy09:45
J-_argh09:45
=== c_schmitz|away is now known as c_schmitz
st_ironhi11:24
=== c_schmitz is now known as c_schmitz|away
=== c_schmitz|away is now known as c_schmitz
XiXaQwhen I install a web application, it's available in http://localhost/appname. Where is that configured?14:34
XiXaQI mean, the webapp configuration. I'd like to have them in /home instead, because the root partition is very small.14:35
XiXaQwell, for other reasons too.14:35
J-_Does GoDaddy serve Canada as well?14:37
mralphabetyes14:37
J-_Cool14:38
J-_I just noticed no mention of Canadian Currency. =)14:38
mralphabethmm . . .perhaps i should say "I believe so"14:39
J-_What if I have a dynamic IP? My router has a Domain name setting I can use,,(wrt54gs)14:59
J-_err14:59
J-_probably a stupid question, but, I don't know14:59
J-_When I buy a domain name, do I have to contact my ISP and configure it with my DNS?15:00
J-_there we go15:00
J-_backwards, but I didn't get any answers in #u-o15:00
Kamping_Kaiserdepends on your arangement with your isp15:00
Kamping_Kaiserdo you have a static IP?15:00
J-_No, Dynamic15:00
Kamping_Kaiseryou need one to have a domain15:01
J-_serious? =\15:01
Kamping_Kaiseryes.15:01
mralphabetwell, "to have a domain hosted at your house"15:01
mralphabetyou could just use something like dyndns.org15:02
Kamping_Kaisertrue15:02
J-_Wouldn't my router take care of that though since there's an option to type in a Domain in?15:02
mralphabetwhich is what that field in your router is made for15:02
Kamping_Kaiserunles it referes to your network domain, not internet domain15:03
J-_There's a Host Name, and Domain Name15:03
Kamping_Kaisersounds internal to me, but we'd need more info15:04
mralphabetnod, that sounds like the internal side15:04
mralphabetthere should be something somewhere else that refers to dyndns or a similar service15:04
=== malakhi_ is now known as malakhi
=== MenZa_ is now known as MenZa
Kirokhmm I need a new network naming scheme... any suggestions16:00
mralphabetI use superman villians16:10
KirokGood idea, I'd go gods or mythology but they seem overused16:11
mralphabetat work we use mountain ranges, dog breeds, LOTR characters16:11
KirokIts a home network so its not a big deal, I was using 300 characters but ran out of names16:12
mralphabetevery time I reboot a server and I have to comment it, I put in "<server name> has been bad and Superman taught him a lesson!"16:12
mralphabetok, not really, but I thought it was funny16:12
Kirokheh yeah, you can have epic battles if theres an outage16:13
mralphabetheh, exactly16:14
peterdvPlanets are also a frequent topic used. Personally I find the Periodic Table funny. One of our servers ra (IP .88) appears to be more stable than the element itself ....16:20
KirokYeah there all good I've considered some of them I just wanted to see what everyone else was using16:20
davebvhi! I am fighting with ubuntu hardy and ebox16:31
mralphabetmake love, not war16:32
davebvmay somebody please give me a hand?16:32
davebvhehe, I am fighting softly16:32
davebvI have a problem, I installed ebox in a virtual machine16:32
davebvwith virtualbox, and ubuntu JEOS (and then, installed ubuntu-desktop)...16:33
davebvand when I try to enable the "users and groups" module, it gives me an error: http://paste.ubuntu-nl.org/60560/16:34
davebvnobody?16:36
KirokSorry no idea, pretty cryptic message with just trace information16:38
Kirokits worked in the past I take it16:38
davebvI think it worked in other installation (not in a virtual machine)16:39
davebvcould it be something like the -virtual kernel is doing something strange?16:39
KirokI mean it could be, theres some interaction with Apache so it might be work checking that or looking up the line numbers and see what there doing16:41
davebvit seems to complex  for my knowledge hehe16:44
davebvI'll give a try with another kernel and see what happens, if it works, I'll fill a bug, if it does not... I don't know then hehe16:44
KirokSorry I couldn't be of more help, maybe someone else will see and reply16:46
davebvno problem, thank you anyway16:48
davebvit works with generic kernel16:56
ivokswhat's the problem?16:57
davebvI tried to enable the "users and groups" module in ebox, in a virtual machine with ubuntu JEOS installed and the linux-virtual kernel running16:58
faulkes-I prefer to name my servers after alcohol or drinking related topics16:58
davebvand it failed with this error http://paste.ubuntu-nl.org/60560/16:58
ivoksah, ebox...16:58
davebvbut this module enables ok with generic kernel16:58
ivoksi don't see how this could be related to kernel16:59
faulkes-have to agree, I can't see how it would be a kernel issue, just based on the stacktrace16:59
davebvme neither16:59
davebvbut the point is that the error does not occur with the generic kernel, and it happens with the virtual kernel17:00
faulkes-what version of ubuntu?17:00
faulkes-interesting17:01
davebvhardy JEOS17:01
faulkes-zul (Chuck Short) has been doing the ebox work for hardy17:01
faulkes-so you might wish to see if you can poke at him17:01
faulkes-only thing I can think of is maybe it's a apparmor or selinux issue but that is just a wild guess17:02
davebvno idea hehe17:02
davebvmaybe some apache module not build quite right for virtual kernel?17:02
ivoksi will stop using linux if apache compiles with some kernel library :)17:03
ivoksor apache17:03
davebvhahaha17:03
davebvI didn't mean that17:03
davebvxD17:03
ivoksfaulkes-: apparmor makes sense17:04
faulkes-ivoks: neither are more forte so, I just figured they might be culprits17:07
themimei just ran apt-get install vim-full, it looks like its installing some gnome stuff....is it doing a full gnome install?18:30
Nafallodependencies and dependencies of dependencis etc...18:31
themimedoes that include a full gnome install >.<18:32
Nafalloyou tell me. why would you need the vim-full metapackage to start with?18:33
themimehttp://www.howtoforge.com/perfect_server_ubuntu7.10_p318:33
themimecause it says so18:33
Nafalloehrm18:33
* Nafallo goes to make a webpage that tell people to kill their families :-P18:36
sommerlol, only if it's in a nice way18:37
themimehaha, i assumed this site knew what he was talking about18:40
themimehow do i undo the install?18:40
=== slide23 is now known as slide
slideCan anyone point me to guides or something to help me secure my server? I've been recently and just reinstalled and want to make sure it doesnt happen again19:31
SeamusHello, anyone tried doing an LTS upgrade yet?19:35
SeamusI'm running a 6.06 server with vmware, samba, apache2, and sendmail.19:38
SeamusI was wondering if there are any upgrade issues.19:38
fromporti've heard a lot of problems with an upgrade. I did it with my laptop, i ended up doing a fresh install20:45
|Nemesis|2|noooobs20:51
|Nemesis|2|Laughing Out Loud20:51
kadakashi, has anyone run uTorrent on Ubuntu Server ?20:55
=== slide23 is now known as slide
slideCan anyone point me to guides or something to help me secure my server? I've been recently and just reinstalled and want to make sure it doesnt happen again21:01
lamontkadakas: rtorrent is more common, I think21:21
lamontslide: there are a number of books and howtos available...21:21
lamontgenerally, you want to start with an ubuntu-server install, and then only install services that you actually need, etc.21:22
lamontand each of those has different considerations to take into account in securing it.21:22
lamontand many would add "never install php"21:22
* lamont wanders off again21:23
Nafallolamont: :-)21:43
lamontNafallo: well, it does seem to be the most popular vector for hacking most linux boxen21:49
Nafallolamont: I work with managed hosting dude... ;-)21:51
Nafalloso I can confirm :-)21:52
lamontof course, the first question to answer before we can help slide out much, other than generally, is "how did they compromise your box?"21:54
lamontwhich, I rather expect, is gone without any forensic trail, with the reinstall21:54
eliaskatebuenas tardes, alguien sabe donde puedo buscar la manera de configurar shorewall para una pc con 2 placas de red22:21
eliaskate una recibe internet, y la idea es que la otra se encargue de filtrar inet actuando como un firewall para el resto de la red22:22
Nafalloeliaskate: english channel, sorry.22:25
eliaskatealright22:26
eliaskateno problem22:26
eliaskatei need to configure a sigle pc, who has 2 networks interfaces, one of them its pluged to the internet, the other one y conect to another pc22:27
eliaskateand i'am trying to navigate from the other pc22:27
eliaskatebut it doesn't work22:27
eliaskateany idea?22:28
Nafalloforwarding turned on?22:28
Nafallosnat in the NAT netfilter?22:29
eliaskatelet me check22:36
eliaskateip_forward enabled22:37
eliaskatednat configured in shorewall22:37
olieHi I have recently setup a ubuntu 7.10 server with apache2 ssl. The problem is that when apache starts it asks me for my pass phrase for ssl and at the same time i get a login prompt which just fucks both ssl pass phrase and the login up. Is there a way to get the server to wait for me to enter the pass phrase before continue with the booting sequense ?22:38
Kirokolie: Take a look at http://www.debianadmin.com/install-and-configure-apache2-with-php5-and-ssl-support-in-debian-etch.html and http://www.ronanchilvers.com/notes/ssl.html it shouldn't do that22:42
KirokOh crap, should have read your question. Maybe boot into single user mode and try to fix it22:42
oliehow could it fix it ? im not sure what is wrong, I have followed a simular guide as the second link you pasted22:45
KirokI mean it works fine for me, so I don't know the first guide is good up until the SSL point then I moved to the second22:46
KirokDid you sign the certificates?22:46
oliei did a self signing thing, no CA signing22:48
KirokI mean passphrases are just used for private keys22:48
oliehmm.. not sure what you mean, i followed this guide: https://help.ubuntu.com/7.10/server/C/httpd.html#https-configuration22:50
olieI saw that some other guides uses apache2-ssl-certficate or something simular to generate a certificate but i couldn't find that script so i did it like that guide said instead22:52
KirokYeah the guide you have wants you to enter the passphrase I didn't want that... all I can suggest is restart apache and enter the passphrase then22:54
olieI have tried to login using another terminal, which works, but i can't restart apache i get a error saying someting about a file already in use or something22:56
Kiroktry sudo /etc/init.d/apache2 force-reload or have you tried that22:56
Kirokor try to killall then restart22:56
oliekilling it and restarting it works, thanks... but it will be a hassle to do that every time i boot the server22:59
KirokI mean the passphrase can be removed with something like openssl rsa -in ca.key -out ca-new.key23:03
KirokOh and then make the replaces in the apache virtualhost site config23:07
olieah ok, great thanks23:09
themimewhat is this asking in laymans terms -> "Continue installing libc-client without Maildir support"23:40
themimeok, i know what maildir is now, just read about it, but how do i know if i need it or not?23:50

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!