_dennister | anyone awake in here? I could really use some security-related advice b4 i take the head off this new fileserver :) | 03:09 |
---|---|---|
_dennister | oh dear...i should go on my other pc where i can pm | 03:10 |
_dennister | bbs | 03:11 |
ScottK2 | lamont: I think Bug #207526 needs to be dealt with, but I don't think the reporter has the right fix. | 04:10 |
ubotu | Launchpad bug 207526 in postfix "default main.cf.tls causes syslog warnings" [Undecided,New] https://launchpad.net/bugs/207526 | 04:10 |
lamont | ScottK2: I'll have to look at it when I'm awake tomorrow afternoon | 04:15 |
ScottK2 | Fair enough | 04:15 |
lamont | and off to bed with me | 04:20 |
ghostnob | HELP! I'm following the BIND9 tutorial on the https://help.ubuntu.com/community/BIND9ServerHowto but I don't understand where it says "Now, you can add DNS records to the bottom of the zone". my domain name is haryoh.com. Would I have to create ns.haryoh.com or use my FQDN ns? | 04:35 |
anthony | Say, does the server team publish a list of recommended books on topics such as postfix, apache, etc. for further reference? | 05:28 |
ScottK | anthony: No, but for Postfix, "The Book of Postfix" is the one you want. | 05:32 |
anthony | ScottK: You're the second or third person to say that, so I think I may be buying it tomorrow morning. | 05:32 |
anthony | unless I decide I can wait a week, and get it cheaper from Amazon. | 05:33 |
anthony | Any opinions on using Linux as your firewall versus something like a Cisco product (what we have now)? | 05:37 |
Kamping_Kaiser | my opinion is dump the cisco, but i'm probably alone on that ;) | 05:38 |
anthony | I haven't really used it yet (just getting started in this position), but from watching Bob do it I can say that it looks _extremely_ awkward. | 05:39 |
anthony | He copies and pastes a text file of update commands into the terminal to make changes. | 05:39 |
Kamping_Kaiser | bob? | 05:39 |
anthony | Sorry, my former boss, now co-worker. | 05:42 |
Kamping_Kaiser | ah right | 05:42 |
ScottK | anthony: It depends on the Cisco. I know Cisco PIX SMTP Fixup manages to lose a LOT of mail for people. | 05:51 |
anthony | no idea what model it is | 05:58 |
MajorP47 | has anyone ajaxterm in use? | 06:52 |
soren | MajorP47: Yes. | 07:05 |
MajorP47 | soren, wow ure the first | 07:05 |
MajorP47 | and it works by u? which machine u running, amd64? | 07:06 |
MajorP47 | did u have any issues on the installtion? | 07:06 |
soren | Works fine. amd64. | 07:06 |
MajorP47 | mh, not on mine | 07:07 |
MajorP47 | no problems during install? | 07:07 |
soren | This was probably a year ago, but no, not afair. | 07:07 |
MajorP47 | i cant help me... nothings solves the problem | 07:07 |
soren | WEll, then I can't help you either. | 07:08 |
MajorP47 | yes i worry about that :/ | 07:08 |
soren | Well, if nothing solves the problem, what can I do? | 07:08 |
MajorP47 | but can u say how u've inclued it in apache? | 07:08 |
MajorP47 | nothing ;) | 07:08 |
MajorP47 | but maybe give me a idea, that i think in another way | 07:09 |
soren | Can you please stop with the "u" instead of "you" thing? I just woke up and it confuses the heck out of me. | 07:09 |
soren | I don't use apache on that server. | 07:09 |
MajorP47 | ok i will no problem | 07:09 |
soren | Ok, here's an idea: | 07:10 |
MajorP47 | aha ok, did u added a mediatype? | 07:10 |
soren | Install it. | 07:10 |
soren | See if it works. | 07:10 |
MajorP47 | lol | 07:10 |
MajorP47 | i have, what u thinking.... | 07:10 |
soren | Well, you haven't even told me how it fails. How am I supposed to guess what's wrong and how to fix it? | 07:10 |
MajorP47 | do u use a proxy module for it? | 07:11 |
MajorP47 | you :( | 07:11 |
MajorP47 | :) | 07:12 |
MajorP47 | iam sorry | 07:12 |
MajorP47 | self tired ;) | 07:12 |
MajorP47 | ok well, i get a connection error status: 404 in the ajaxterm prompt | 07:12 |
MajorP47 | i even have read the tickets, but no one has the same problem | 07:13 |
MajorP47 | it must be a local access problem i guess | 07:13 |
soren | YEah, I proxy it. | 07:14 |
MajorP47 | well that could it be, i thought proxy is just for decryption but i must be more behind | 07:15 |
MajorP47 | damn now i must compile it -.- | 07:16 |
MajorP47 | brr | 07:16 |
soren | Er.. It.. | 07:17 |
soren | You can just connect directly to it. | 07:17 |
soren | I just proxy it to have it conveniently at foo.domain.com/haxorterm | 07:18 |
soren | Besides, it's a python app. You don't compile it. | 07:18 |
MajorP47 | aha ure sure? | 07:18 |
soren | See for yourself. | 07:19 |
MajorP47 | i know but i would must compile the mod_proxy ;) | 07:19 |
soren | Er.. no. | 07:19 |
soren | We provide that. | 07:19 |
MajorP47 | it runs perfectly unter my vhost, but dont work | 07:19 |
MajorP47 | nope i have compiled it myself ;) | 07:19 |
MajorP47 | btw. i use debian :> | 07:19 |
MajorP47 | but ubuntu-server is also a candidate for my next server | 07:20 |
soren | It runs perfectly, but doesn't work? | 07:20 |
MajorP47 | right | 07:20 |
MajorP47 | i see it, i can click buttons but i dont get the login prompt | 07:20 |
MajorP47 | i mean, the problem cant be by apache | 07:21 |
MajorP47 | it must be a local access problem or smt. else | 07:21 |
MajorP47 | ive also isntalled python 2.5-dbg | 07:21 |
soren | How can something run perfectly, but not work? I don't understand. | 07:21 |
MajorP47 | a good theme, which version of python u running? | 07:21 |
MajorP47 | the vhost runs perfectly, no errors ;) | 07:21 |
MajorP47 | but the ajaxprompt dont work | 07:22 |
MajorP47 | no even no python problem, did tested it with normal 2.5, dont work, well... | 07:23 |
soren | 2.5 | 07:23 |
MajorP47 | where is the bug, mhhh | 07:23 |
MajorP47 | ah well another question, are u running ssh under the standard port? | 07:24 |
soren | Yes. | 07:24 |
MajorP47 | ok... | 07:24 |
MajorP47 | i dont | 07:24 |
soren | I don't see how it matters? | 07:25 |
MajorP47 | that could even a issue | 07:25 |
MajorP47 | well there's some ssh option in ajaxterm, dont know for what exactly but it's there | 07:25 |
soren | I'm quite sure mine doesn't use ssh. | 07:26 |
soren | Or perhaps it does nowadays.. | 07:27 |
soren | Hmm.. Yes, it does. | 07:27 |
soren | Well in that case.. | 07:29 |
soren | Have you done anything to tell ajaxterm that your ssh is on a different port? | 07:29 |
MajorP47 | u see, many possibillities ;) | 07:35 |
MajorP47 | ive tried with the apache config, but dont work either | 07:36 |
soren | What have you tried? | 07:36 |
MajorP47 | ive tested it but i dont worked | 07:36 |
MajorP47 | tryed | 07:36 |
MajorP47 | ah what | 07:36 |
MajorP47 | sry | 07:36 |
MajorP47 | iam tired | 07:36 |
MajorP47 | ive tried some other apache solutions | 07:36 |
MajorP47 | iam runnig it unter a subdomain with port and ssl, thought that i have a fail there, but was not the case | 07:37 |
MajorP47 | ok will test with my default ssh port.. | 07:37 |
soren | 07:29:36 < soren> Have you done anything to tell ajaxterm that your ssh is on a different port? | 07:38 |
MajorP47 | yes i did it, but i have had on that time a failure in my vhost.conf, so that it even couldnt dont work, i will try it now again | 07:39 |
MajorP47 | ah damn wtf | 07:41 |
MajorP47 | i will install the proxy, term just runs local, that is the problem | 07:42 |
_ruben | mornin' | 07:54 |
spiekey | morning | 07:59 |
spiekey | soren: you there? | 07:59 |
soren | Always. | 07:59 |
spiekey | i have got a small tcpdump file here and i doubt that its doing a proper tcp handshake...http://i32.tinypic.com/23lgrjt.jpg | 08:18 |
spiekey | No 127 and 128 | 08:19 |
spiekey | the packets are created by ftester, a firewall testing tool. I would like to verify if the testing packets do a real tcp connection | 08:20 |
_ruben | spiekey: that the right url? no (initial) handshake at all there | 08:20 |
spiekey | damn! | 08:21 |
_ruben | hmm .. misread it slightly, but still looks strange | 08:21 |
_ruben | fin,syn,ack .. i doubt that's the first packetg | 08:21 |
_ruben | -g | 08:21 |
spiekey | it should only have [SYN] set in the first paket, right? | 08:21 |
_ruben | correct | 08:22 |
soren | It's a firewall tester. | 08:22 |
soren | It's not supposed to act properly. | 08:22 |
soren | Is it? | 08:22 |
spiekey | yes of course! | 08:22 |
spiekey | well, it should have spoof features, but also simulate proper connections | 08:22 |
soren | *shrug* I'm not familiar with ftester. | 08:23 |
_ruben | me neither | 08:26 |
spiekey | i just tested with a ssh connectionn....i should be [SYN](srouce), [SYN][ACK](dest),... right? | 08:30 |
soren | Assuming the other end does reasonable things, yes. | 08:31 |
soren | Oh. | 08:31 |
soren | Er.. Sorry, you're right. | 08:32 |
soren | Followed by [SYN](source) | 08:32 |
soren | Gha. | 08:32 |
soren | Followed by [ACK](source), I mean. | 08:32 |
=== \sh_away is now known as \sh | ||
bip_ | hello anybody can tell me something about ubuntu-server vmware-server support ? | 09:04 |
bip_ | which release is binary compatible ? | 09:04 |
bip_ | should I use LTS ? | 09:04 |
bip_ | will upciming LTS support it ? | 09:05 |
nijaba | bip_ vmware-server is available from the partner repository, and an updated version should be available soon after release of 8.04 in the same repository. | 09:09 |
bip_ | so if i must plan a vmwrae server deployement which version should i pick nijaba ? | 09:10 |
bip_ | shall i use a 8.4 alpha ? | 09:10 |
bip_ | or some other non LTS version ? | 09:10 |
_ruben | i'd go for 7.10 (gutsy) and upgrade to 8.04 (hardy / lts) when its final | 09:11 |
nijaba | bip_ if you want to deploy it today, I would not use 8.04, as vmware server for it is not yet avail | 09:11 |
bip_ | I well it s gonna be deployed in the nex weeks ... | 09:11 |
bip_ | let say it wont be in production before official release | 09:11 |
nijaba | I second _ruben proposal, adding that I would wait for the updated vmware server to be present in the repository | 09:12 |
bip_ | 7.10 can apt-get vmware-server w/out problems _ruben ? | 09:12 |
nijaba | bip_: yes | 09:12 |
bip_ | well i need the vmware-server right away | 09:12 |
nijaba | soren, use 7.10 then | 09:12 |
soren | ? | 09:12 |
bip_ | we have a box that we use just as physical host for virtual machines | 09:12 |
_ruben | must admit i havent tried installing vmware from the repos yet .. am still in the progress of installing my first ubuntu based vmware host (my other hosts are running novell sles9) | 09:12 |
nijaba | sorry, I meant so, not soren | 09:12 |
soren | nijaba: Ah. | 09:13 |
bip_ | I need to migrate those machines | 09:13 |
bip_ | and we are plannin to deploy a further vmware hosting machine | 09:13 |
_ruben | bip_: for serious vmware usage, the use of vmware esx is highly recommended .. then again, thats far from free | 09:14 |
bip_ | we are currently using debian, but I m not totally happy with tlevel of integration of debian and vmware | 09:14 |
bip_ | well I d pay the licence for ESX | 09:14 |
bip_ | but my problem is NOT the fee _ruben | 09:14 |
bip_ | my problem are vthe hardware requirements of ESX | 09:14 |
bip_ | we certanly do not have nor can afford or need that hardware | 09:15 |
_ruben | ah | 09:15 |
bip_ | we run about 12 servers here | 09:15 |
_ruben | then vmware server is the way to go | 09:15 |
nijaba | bip_: did you consider kvm? | 09:15 |
bip_ | 4 of those are already virtualized | 09:15 |
bip_ | well not really nj | 09:15 |
bip_ | nijaba, | 09:15 |
bip_ | I inherited vmware | 09:16 |
nijaba | ok | 09:16 |
bip_ | and as you mighrt know | 09:16 |
bip_ | bosse gte nervous if you say: change | 09:17 |
_ruben | hehe | 09:18 |
bip_ | we have running server ... | 09:18 |
bip_ | they have been running with vmware until now ... | 09:18 |
bip_ | now we need to redeploy em and change some/a lot of stuff ... | 09:19 |
bip_ | changing virtualization engine would add a further variable ... | 09:19 |
bip_ | I am already nervous thinking about a os switch | 09:19 |
bip_ | so how many of you run vware server in a production environement ? | 09:20 |
_ruben | we (here at the office) are using it only for internal stuff currently .. tho in a month or so i'll be playing with esx and exploring the possibilities to also use it for hosting stuff for our customers | 09:23 |
bip_ | we have it in the LAN now | 09:23 |
bip_ | i plan to virtualize some dmz hosts as well | 09:24 |
bip_ | how long have you been running that _ruben ? | 09:24 |
bip_ | there is any way i can browse the partner repo from the web ? | 09:29 |
_ruben | im guessing we started using virtualization about a year ago | 09:29 |
_ruben | yes, but i wouldnt know the url from top of my head | 09:29 |
bip_ | and was this year mostly pain free _ruben ? | 09:30 |
_ruben | yeah, most problems where (crappy) hardware related | 09:34 |
_ruben | but thats the beauty of virtualization: crappy host? get a new/better host, and move the guest without troubles and minor downtime | 09:35 |
bip_ | this year you used mostly sles 9 as host os right _ruben ? | 09:37 |
_ruben | yeah .. the switch to ubuntu has been initiated not that long ago .. only have a few live servers running ubuntu, but more to come when i have time | 09:45 |
bip_ | why are you thinking about switching to ubuntu ? something you dont like aboute suse ? something you like about ubuntu ? | 09:48 |
_ruben | bip_: both .. sles9 requires you to pay for updates and has slow release cycle .. ubuntu has a great community based support and optional commercial support and a fixed release cycle | 10:13 |
bip_ | well the cost issue I understand and my boss does as well ;-) not sure the slow release cycle is really a issue unless you must live always on the cutting edge | 10:15 |
_ruben | bip_: well .. our sles9 machines run a 2.6.5 based kernel which is pre-historical .. sles10 i heard so many bad stories about when it was released even after sp1 came out, that i didnt even bother suggesting we'd go there | 10:16 |
_ruben | and with ubuntu, i ran into a bug .. reported it at 4pm .. when i checked my mail the next day, the fix was released at like 8pm that night | 10:17 |
bip_ | oh well i have nightmares with suse too , so dont get me started ... | 10:17 |
_ruben | even though it wasnt such a big bug, it does demonstrate how 'flexible' the ubuntu way is | 10:17 |
_ruben | ok :) | 10:17 |
bip_ | how is ubuntu beahving ? | 10:17 |
_ruben | i do love suse's YaST .. but thats about it | 10:17 |
bip_ | is it deployed in production ? | 10:18 |
fromport | i've got hardware with > 2TB harddrive (hardware raid5) and i'm bitten by "parted" bug that has been there since gutsy. every distro has it glitches ;-) | 10:18 |
_ruben | bip_: other than a few initial quircks its behaving like a charm | 10:18 |
bip_ | or is it still sort of pre-production _ruben ? | 10:18 |
_ruben | bip_: i recently migrated our office firewall from sles to ubuntu .. our next 'big' steps will be replacing a loadbalancer at a colo and some new bulkmail servers | 10:19 |
bip_ | here we are tryin to standardize most production servers run debian | 10:19 |
_ruben | and im migrating some vmware hosts machines from sles to ubuntu | 10:19 |
bip_ | but some appliances sold to customers must run RHEL | 10:19 |
_ruben | when we moved to suse we actualy came from debian (woody) | 10:19 |
bip_ | I am unhappy with the way debian deals with vmware | 10:19 |
bip_ | so thi is why I m pondering adding ubuntu to the team | 10:20 |
bip_ | this | 10:20 |
_ruben | with the rather slow release cycle of vmware server, rolling your own package should be very doable | 10:21 |
_ruben | especially once you have a working base | 10:21 |
bip_ | well is sorta nightmarish ... | 10:22 |
bip_ | never works the same ... | 10:22 |
bip_ | it wasn t like that | 10:22 |
bip_ | I used to be able to just run it from tarball | 10:22 |
bip_ | but i dont know maybe vmware doent go along with some debian kernels | 10:23 |
bip_ | maybe 1.0 is plain too old ... | 10:23 |
bip_ | it s becomin a tad too scarey to keep it on production machines | 10:23 |
_ruben | vmware server 1.0 you mean? | 10:23 |
bip_ | yes | 10:23 |
_ruben | the 1.0.x branch is the current stable branch | 10:24 |
bip_ | I have that running now | 10:24 |
_ruben | 2.0 is still in beta | 10:24 |
bip_ | yeah ... | 10:24 |
_ruben | i run 1.0.2 and 1.0.4 | 10:24 |
_ruben | havent gotten around to upgrade a few older ones | 10:24 |
bip_ | but there is a 1.0.5 bei current now | 10:24 |
bip_ | anyhow do you know what happen now ? | 10:24 |
bip_ | my boss wants me tu built a replacemet email server | 10:24 |
bip_ | and told me do a vmacchine | 10:25 |
bip_ | well the vmware-console is no longer running on the server | 10:25 |
bip_ | the vmachines are running fine | 10:25 |
bip_ | but simply there is nothing listening on port 902 :( | 10:25 |
_ruben | your xinetd (or whatever superserver you use) crashed? | 10:27 |
bip_ | I don t think so ... | 10:27 |
bip_ | but i might give it a quick check ... | 10:27 |
_ruben | 902 is serviced through that | 10:27 |
bip_ | I know ... | 10:27 |
bip_ | i have been readin quite a few docs about that lately ;-) | 10:28 |
_ruben | so even if vmware craps his pants, 902 should still be avail (atleast in listening state) | 10:28 |
bip_ | it s not | 10:29 |
bip_ | i can t evene get a prompt if i do telnet localhost 902 | 10:29 |
bip_ | vmachines are up and running | 10:29 |
bip_ | but nothig is on 902 | 10:30 |
_ruben | what does sudo netstat -lnp tell you about port 902? | 10:30 |
bip_ | one sec | 10:30 |
bip_ | that shows nothing on port 902 | 10:31 |
bip_ | that service died ... | 10:32 |
_ruben | then inetd/xinetd/whatever must died or atleast have some problems | 10:32 |
bip_ | I m checkin that | 10:34 |
bip_ | but i have read the /etc/xinetd.conf file no mention about vmware is made there ... | 10:34 |
bip_ | and that file is dated about 2 years ago ... | 10:35 |
bip_ | maybe vmware console isn t managed by xinetd in debian ... | 10:36 |
_ruben | and /etc/xinetd.d/vmware-authd ? | 10:36 |
_ruben | could be, wouldnt know | 10:36 |
_ruben | do you have another vmware host on debian? if so you could compare the two | 10:36 |
bip_ | i don t have that file _ruben | 10:36 |
bip_ | no i dont have an other one here :( | 10:37 |
_ruben | i'd check the vmware package to see if it shows any traces on how vmware-authd is serviced | 10:38 |
bip_ | yeah I playing detective ... | 10:39 |
bip_ | m | 10:39 |
spiekey | howdy | 10:53 |
spiekey | what libnet package does it want? http://pastebin.ca/959330 | 10:53 |
_ruben | spiekey: im *guessing* it wants the libnet1 package | 10:57 |
spiekey | libnet1 is already the newest version. | 10:58 |
spiekey | guess again :) | 10:58 |
spiekey | libnet1-dev is also installed | 10:59 |
spiekey | http://pastebin.ca/959340 | 10:59 |
_ruben | there's also libnet0 (obsoleted) and a libnet6-1.3 | 11:00 |
spiekey | nope, still the same :-/ | 11:10 |
faulkes- | morning zul | 11:47 |
zul | morning faulkes- | 11:47 |
dthacker | happy thursday | 11:59 |
_ruben | heh | 12:07 |
sommer | hey all | 12:26 |
faulkes- | heya | 12:29 |
=== \sh is now known as \sh_away | ||
=== \sh_away is now known as \sh | ||
youngmusicorg | could someone tell me what the standard location of ldap logs is? I can't find a single reference to ldap in my logs, while slapd is running in the loglevel is 256 | 14:35 |
Kamping_Kaiser | it should log to syslog | 14:36 |
Kamping_Kaiser | unless you set a custom logfile | 14:36 |
youngmusicorg | yes, of course. How stupid of me to forget that one. | 14:37 |
Kamping_Kaiser | hehe. | 14:37 |
youngmusicorg | thanks | 14:37 |
Kamping_Kaiser | np | 14:37 |
rhineheart_m | anybody in here who would like to say about webmin? I have it in my machine.. and I'm so curious people are claiming that it's a security nightmare... | 15:09 |
youngmusicorg | I just copied my ldap database from a fedora server to a ubuntu server. Ldap works as such, but an ldapsearch -x "uid=name" gives no result. Ldap is responding, but says the entry is not there. But i can use "slapcat -a "uid=name" and get the whole entry. Any ideas? | 15:14 |
Kamping_Kaiser | odd. turning up the debug didnt help at all? | 15:17 |
youngmusicorg | well, no. According to the logs, nothing goes wrong. The entry's just not there and the server returns a code (32 No such object) | 15:18 |
Kamping_Kaiser | not sure. i wont be here long enough to help out this morning either | 15:20 |
lamont | youngmusicorg: should be in daemon.log, I expect | 15:20 |
youngmusicorg | ok, thanks for responding | 15:21 |
Kamping_Kaiser | night all! | 15:22 |
Kamping_Kaiser | i'll see you in about 8 hours :D | 15:22 |
Jeeves_ | Good night! | 15:23 |
Kamping_Kaiser | Jeeves_, :) catch you later mate | 15:23 |
=== \sh is now known as \sh_away | ||
smiley__ | Anyone care to help me understand dns servers/ | 16:51 |
smiley__ | I have 6 static ip's , and a few Domain Names | 16:52 |
smiley__ | Id like the domain names to point to my static ips | 16:52 |
smiley__ | but, am still sorting out the DNS thing | 16:52 |
sommer | smiley__: here's a good place to start: http://doc.ubuntu.com/ubuntu/serverguide/C/dns.html | 16:53 |
smiley__ | Thanks sommer, i appreciate the help. | 16:54 |
sommer | if you have specific question don't hesitate to ask :) | 16:54 |
smiley__ | So, from what i understand, I set up bing9 properly.. | 16:59 |
smiley__ | Log into the site that i got the domain from | 16:59 |
smiley__ | and change its primary dns # to that of my static ip | 16:59 |
smiley__ | And then all should be well? | 16:59 |
smiley__ | ill be back, | 16:59 |
sommer | uh, not sure what you mean by "Log into the site that i got the domain from" | 16:59 |
joebob777as7 | I followed the steps on the ubuntu server guide to set up ssl with my apache2 server now I can't go to http sites it tells me:BAD REQUEST Reason: You're speaking plain HTTP to an SSL-enabled server port. | 17:01 |
sommer | joebob777as7: do you have <VirtualHost *:80> in your virtual host? | 17:02 |
sommer | joebob777as7: if so try changint it to <VirtualHost server_IP:443> | 17:03 |
sommer | s/changint/changing/g | 17:03 |
joebob777as7 | sommer what file is that again? sorry... | 17:04 |
sommer | joebob777as7: probably /etc/apaache2/sites-available/defualt... unless you've added another config file | 17:04 |
helpme | hi all | 17:06 |
foo | hello | 17:06 |
joebob777as7 | sommer this is my default file: http://pastebin.ca/959719 | 17:06 |
helpme | i need help with a broken mdadm array | 17:06 |
CarlFK | why is postgresql-8.3 install using server_encoding LATIN1 ? | 17:06 |
helpme | it's a 4x320GB sata raid5 array built using mdadm, and i cant run it anymore | 17:07 |
sommer | joebob777as7: try changing <VirtualHost *> to <VirtualHost IP_ADDRESS:443>, replacing IP Address with the server's IP | 17:07 |
SpudDogg | Hello everyone | 17:08 |
SpudDogg | helpme: are you getting any particular errors? | 17:08 |
joebob777as7 | sommer what if i have a dynamic ip? or do you mean my lan ip? | 17:08 |
helpme | sda2 and sdc2 are saying only them are ok (sdb2 and sdd2 faulty removed), and sdb2 is saying sda2, sdb2 and sdc2 are ok (only sdd2 faulty removed), and finally sdd2 is saying everyone is ok. | 17:09 |
sommer | joebob777as7: whichever IP your clients will use to access it... on a server the IP is usually static | 17:09 |
helpme | how do i get my data back? or at least most of it? | 17:09 |
SpudDogg | helpme: hang on a second | 17:09 |
helpme | ok | 17:10 |
SpudDogg | helpme: i believe that since you're working with a software RAID, you should be able to mount those drives read-only and *possibly* get some of the information back. | 17:12 |
CarlFK | helpme: why "can't mount" ? | 17:12 |
=== zobbo_ is now known as zobbo | ||
helpme | how do i do that? in raid5, we're supposed to stripe data across disks | 17:12 |
joebob777as7 | sommer ok sorry to be a pain I would appreciate it if you would just explain a couple things.... 1. what does this tell my server to do? 2. why now if I go to domain.com does it show my root domain directory? | 17:13 |
helpme | sd{a,b,c,d}2 are 0xfd partition type (raid autodetect), data is incomplete with less than 3 disks | 17:13 |
SpudDogg | helpme: that's going to be the issue for you. i don't think there will be a way to recover ALL data unless you send the disks off to a recovery company. other than that, you should actually be able to mount those disks one at a time, read-only, and hopefully grab some of your data | 17:14 |
JaxxMaxx_ | I'm trying to reset the administration password on my MySQL installation. Removing the package and reinstalling didn't appear to blank the password. Any other recommendations? (trying to follow the steps on https://help.ubuntu.com/7.10/server/C/mysql.html ) | 17:14 |
sommer | joebob777as7: 1) it tells your server to listen in the IP Address using port 443 the HTTP SSL port 2) probably because you don't have an index.html or index.php | 17:14 |
helpme | isn't there a way to tell mdadm to salvage md array using nearly up2date partitions? | 17:15 |
joebob777as7 | sommer ok I guess I just need to learn a little more. I was setting up my web server using webmin and I had it redirecting requests to mail.domain.com go to a dir of my mail login and now it's going to my / dir... | 17:15 |
SpudDogg | helpme: this may be like profanity, but do you have access to a windows machine? | 17:16 |
helpme | w/ difficulty, y? | 17:16 |
sommer | joebob777as7: ya, I don't know much about webmin... other than it will create strange configurations at times | 17:16 |
* agile beats his head against his new dual quad core cd-less 1u servers | 17:17 | |
joebob777as7 | sommer ok thx! i'll look into it. | 17:17 |
sommer | joebob777as7: np | 17:17 |
agile | have any of you managed to make an installable thumb drive using the server iso? | 17:18 |
SpudDogg | helpme: well, i know there is raid rebuilder software for windows, but i don't think it's not going to work on ext3 filesystem anyway. still, my recommendation is to try to mount them R0, one at a time. It looks like that's going to be your best bet. | 17:18 |
helpme | they cannot be mounted, they are a linux_raid_member | 17:19 |
helpme | do you have a link? | 17:20 |
joebob777as7 | sommer what is the best way to have it so that if someone goes to http://mail.domain.com it redirects to https://mail.domain.com? | 17:20 |
SpudDogg | helpme: i know that it sounds stupid to attempt to mount a single drive from a raid, but that's what i tried to do before. i did not actually recover any data, but i did get them mounted | 17:20 |
SpudDogg | helpme: a link...hang on | 17:20 |
helpme | SpudDogg: thanks | 17:22 |
sommer | joebob777as7: mod_rewrite is what I use: http://httpd.apache.org/docs/2.2/mod/mod_rewrite.html | 17:22 |
SpudDogg | helpme: http://ubuntuforums.org/archive/index.php/t-638625.html | 17:23 |
joebob777as7 | sommer is this module installed by default or do I have to enable it? | 17:23 |
sommer | joebob777as7: ummm... I forget, but you can check to see if it's enabled by ls /etc/apache2/mods-enabled | 17:25 |
sommer | joebob777as7: if it's not enabled you can enable it by sudo a2enmod rewrite, I believe | 17:25 |
helpme | SpudDogg: i read that, but that's not my case. my drives are perfectly working, only an inconsistency in my md array | 17:29 |
joebob777as7 | sommer i think I killed it... Syntax error on line 295 of /etc/apache2/apache2.conf: Syntax error on line 2 of /etc/apache2/sites-enabled/000-default: /etc/apache2/sites-enabled/000-default:2: <VirtualHost> was not closed. | 17:33 |
sommer | joebob777as7: what's on line 2? | 17:37 |
joebob777as7 | <VirtualHost *> | 17:37 |
sommer | joebob777as7: do you have a </VirtualHost> entry? | 17:38 |
helpme | SpudDogg: i solved it! | 17:38 |
SpudDogg | helpme: really? what did you find? | 17:38 |
helpme | i read this: http://wi read this: http://www.issociate.de/board/post/479697/Help:_Re-assemble_raid-5_with_inconsistent_events..htmlww.issociate.de/board/post/479697/Help:_Re-assemble_raid-5_with_inconsistent_events..html | 17:38 |
helpme | i read this: http://www.issociate.de/board/post/479697/Help:_Re-assemble_raid-5_with_inconsistent_events..html | 17:39 |
helpme | i checked the event count , and found sd{a,b,c}2 to be closest, then (cause i knew the array layout): | 17:39 |
helpme | mdadm -A /dev/md1 --force /dev/sd{a,b,c}2 | 17:39 |
helpme | xfs_check just told me my fs was good | 17:39 |
joebob777as7 | sommer nice sorry i'll go re read the manual | 17:39 |
joebob777as7 | lol | 17:40 |
SpudDogg | helpme: glad you got it done, sorry i couldn't be more help... | 17:40 |
sommer | joebob777as7: there more familiar you are the better :-) | 17:40 |
sommer | joebob777as7: but if you have specific problems someone will probably know the answer, or where to find it | 17:40 |
joebob777as7 | ok thx again | 17:41 |
helpme | SpudDogg: no, u were helpful. thank you | 17:42 |
helpme | bye all | 17:43 |
joebob777as7 | sommer why doesn't *:443 work? why does it have to be the ip address? | 17:46 |
sommer | joebob777as7: because that will configure apache to send regular HTTP requests using port 80, I believe | 17:50 |
joebob777as7 | that's what I want I think... I want all normal requests to go to port 80 and then one set of requests to mail.domain.com to get redirected to 443... with it set to *:443 I still get the BAD REQUEST thing... | 17:52 |
sommer | joebob777as7: righ, but *:443 sends all traffic through port 443, which isn't what you want | 17:56 |
sommer | joebob777as7: what you'll need to do is setup on <VirtualHost IP_ADDRESS:80> and another <VirtualHost IP_ADDRESS:443> | 17:57 |
sommer | joebob777as7: then place your rewrite rules in the :80 virtual host | 17:58 |
joebob777as7 | sommer ok I think I get it. also in the rewrite is there a way to run something with mail. through 443? | 18:03 |
sommer | joebob777as7: not sure what you mean? | 18:05 |
joebob777as7 | I think it is just a lack of understanding on my part of the rewrite. I'll research more then ask later if I have questions. | 18:06 |
sommer | joebob777as7: okay, no problem | 18:07 |
sigger | sommer: realized I forgot to say thank you for helping me yesterday trying to help me salvage my server (mysql in particular). sooo.... Thank you! | 18:23 |
sommer | sigger: you're quite welcome | 18:23 |
sigger | nuked it and started over. headaches in locating all the little scripts and configs that needed to be saved (and did miss smbpasswd), but eventually "got 'er done" | 18:24 |
sommer | sigger: sweet, sometimes the only thing to do is knuckle down and muscle through :-) | 18:25 |
sigger | yep. gives the chance to clean house and also put some a doc together on "what to do if" | 18:26 |
sigger | s/some/ | 18:26 |
sigger | it would be fantastic if there were a script to save and restore things certain /etc/ files and maybe some other /var info. | 18:27 |
sigger | Damn Small Linux has it as part of their upgrade process | 18:28 |
sommer | sigger: I use a svn repo to store most, if not all, my configs... great for mistakes, and config history | 18:29 |
sigger | but using a svn repo requires you to drop them into the repo, no? | 18:30 |
sigger | DSL's upgrade process has a file where you list the stuff you want to save and scrapes out the users/groups/etc. Very automated. very neat. would be handy for instantiating a new server. | 18:31 |
sommer | yep, they need to be checked in, and commited when they're modified... for that I keep a checkout of the repo in my home directory | 18:31 |
sommer | sigger: that would be handy... you could make the suggestion for the next release :-) | 18:32 |
sigger | prolly not a bad idea. And the script exists, albeit DSL specific. | 18:32 |
sigger | obviously not the 28 day from now release ;) | 18:33 |
sigger | ubuntu-devel mail list the right place for that? | 18:34 |
sommer | sigger: um, probably ubuntu-devel-discuss list | 18:34 |
sigger | oops, ya that's what I meant to type. thx | 18:35 |
sommer | sigger: or create a Blue Print in Launch Pad for Intrepid | 18:35 |
sigger | that I'm not familiar with. will google | 18:35 |
sommer | sigger: ya it's in wiki.u.c somewhere | 18:36 |
nijaba | sigger: https://wiki.ubuntu.com/FeatureSpecifications | 18:55 |
sigger | thx. ya been poking around launchpad and trying to read through the many, many,many specs to make sure I don't submit something thats already there. thx | 18:56 |
=== \sh_away is now known as \sh | ||
=== \sh is now known as \sh_away | ||
dthacker-work | did bacula make the cut for inclusion in hardy? | 19:56 |
Jeeves_ | http://nl.archive.ubuntu.com/stats/cacti/ | 19:56 |
dthacker-work | Jeeves_: nice | 19:58 |
* dthacker-work is working on a zabbix config himself | 19:58 | |
sommer | is it a good idea to share an nfs mount through Samba? | 20:01 |
sommer | just wondering if there are any major issues doing that | 20:02 |
Jeeves_ | sommer: I wouldn't recommend it | 20:04 |
Jeeves_ | For locking and caching, it sounds icky | 20:04 |
sigger | I had issues when I did it once. | 20:05 |
sommer | heh, I was thinking along those lines, but wasn't sure what the results would be | 20:05 |
sigger | oh, it wasn't ubuntu though. it was knoppix, but debian based, so prolly same result | 20:05 |
sommer | ya, I'll stear clear of that idea :-) | 20:06 |
sommer | thanks | 20:06 |
sigger | np | 20:06 |
wo0f | 20:09 | |
sigger | anyone wanna have a gander at my specification for launchpad? never written one of these | 20:11 |
sigger | well if so, here it is: https://wiki.ubuntu.com/ConfigSave-ConfigLoad#preview any comments will be appreciated. | 20:14 |
sommer | sigger: looks good to me | 20:16 |
smiley__ | sigger .. looks good, great idea | 20:17 |
smiley__ | but could one not just use dd? | 20:17 |
smiley__ | i guess i understand the hardware limitation of it | 20:17 |
sigger | Only works with exact same size partition, no? picture replacing your main HD. | 20:18 |
sigger | Just thought of another use case too. Want a temporary server? run livecd and ConfigLoad with data from another server. | 20:18 |
sigger | Instant temporary server. | 20:19 |
sigger | oh and thanks smiley__ | 20:19 |
jackrazz | hey everyone I'm trying to vnc to a remote PC via a reverse ssh tunnel | 20:37 |
jackrazz | I can connect successfully via terminal, but I need a vnc_viewer connection. | 20:37 |
jackrazz | what is the vnc command to do this? | 20:37 |
jackrazz | I've use this to revserse connect | 20:37 |
jackrazz | Remote PC Command: ssh -R 55540:localhost:22 jackrazz@192.168.1.146 | 20:37 |
jackrazz | My PC comand: ssh -p 55540 alleta@localhost | 20:37 |
sigger | well its in Launchpad. Since I don't have the capacity to actually write it, I don't know how this'll work out, but its certainly worth a shot. | 20:37 |
jackrazz | I've tried vncviewer localhost:0 | 20:38 |
JaxxMaxx_ | I've used putty to set up SSH tunnels for VNC before, but I had to connect to specific localhost ports to get the connection... | 20:40 |
jackrazz | I think i'm using the wrong port (the :22) I'm tryin port 5900 now | 20:41 |
JaxxMaxx_ | Hmm. MySQL command to delete a database? I need to remake this SQL database for FreeRADIUS... | 20:54 |
sigger | drop? | 20:54 |
joebob777as7 | JaxxMaxx get mysqladministrator! you won't regret it. | 20:55 |
JaxxMaxx_ | it an apt package? Mostly I'm just trying to get FreeRadius working | 20:55 |
joebob777as7 | jackrazz why don't you use x11 forwarding? | 20:55 |
joebob777as7 | JaxxMaxx yes apt-get install mysqladmin I believe | 20:55 |
sigger | mysqladmin is in the std package if you installed LAMP ubuntu server | 20:56 |
joebob777as7 | JaxxMaxx sorry it is mysql-admin package | 20:56 |
joebob777as7 | mysql-admin - GUI tool for intuitive MySQL administration | 20:57 |
JaxxMaxx_ | I'm not sure if I put in the LAMP role on this t hing when I first installed | 20:57 |
jackrazz | joebob, I'm very new at this..sorry. I'm not sure what x11 forwarding is | 20:57 |
sigger | Jaxx, try typing mysqladmin and see what happens ;) | 20:57 |
jackrazz | I issued ssh -R 55540:localhost:22 jackrazz@192.168.1.146 on the remote pc | 20:58 |
jackrazz | and ssh -p 55540 alleta@localhost on my pc | 20:58 |
JaxxMaxx_ | ack, that looks like a GUI program, this server is headless. | 20:58 |
JaxxMaxx_ | waaay too many dependancies | 20:58 |
sigger | not GUI | 20:58 |
sigger | CLI | 20:58 |
jackrazz | I then tried vncviewer localhost:0 | 20:58 |
sigger | I just use mysql personally | 20:58 |
joebob777as7 | jackrazz if I were you I would get the free version of nomachine. That would be best easiest and it goes over port 22 by default | 20:58 |
joebob777as7 | nomachine.org | 20:58 |
JaxxMaxx_ | heh, adding the package in aptitude is adding 233MB of dependancies on this server. =] | 20:59 |
jackrazz | ok, so the ssh commands should set up the tunner. I have a terminal on the remote pc. | 20:59 |
sigger | Jaxx, anyway other option (if you have apache/php) is to use phpmysqladmin (or something like that) | 20:59 |
joebob777as7 | JaxxMaxx_ yes is gui | 20:59 |
jackrazz | I just need a viewer to the remote pc with its her remote account | 21:00 |
sigger | I now I see the hyphen in mysql-admin. mysqladmin is CLI | 21:00 |
JaxxMaxx_ | heh. | 21:00 |
JaxxMaxx_ | my aptitude can't seem to find that package. it in universe? | 21:01 |
joebob777as7 | jackrazz if you want to do X11 forwarding here is a quick and dirty guide... | 21:01 |
sigger | JaxxMaxx mysqladmin? | 21:02 |
JaxxMaxx_ | foudn kmysqladmin | 21:04 |
sigger | great | 21:04 |
JaxxMaxx_ | I don't want the kde version =] | 21:05 |
=== joerlend_ is now known as XiXaQ | ||
sigger | JaxxMaxx: mysqladmin (no hyphen, no k) not good? | 21:07 |
JaxxMaxx_ | aptitude doesn't find it, is there a way to look it up with apt-? | 21:08 |
sigger | you try typing mysqladmin? | 21:09 |
fromport | apt-cache search mysql|grep admin | 21:12 |
JaxxMaxx_ | oh, hurrr, there it is, why not just try the command..... | 21:13 |
sigger | like.... try typing mysqladmin??? ;) | 21:14 |
tesla4 | hello i just installed the x86 server version and very new to this. I want this to be a LAMP Server. I am at the command prompt and dont know what to do. | 21:14 |
JaxxMaxx_ | sorry about my confusion level, this project is beginning to exasperate me. | 21:14 |
sigger | tesla4: easiest to me is reinstall specifying to install as LAMP server | 21:15 |
tesla4 | done that | 21:15 |
fromport | tesla: "ubuntu lamp howto " in google | 21:15 |
tesla4 | is there a channel that helps on using this for beginners? | 21:20 |
sigger | tesla4, this is a good one but you need enough background to know what question you want to ask. try some googling/reading then asking specific quetsions | 21:21 |
tesla4 | i have installed this os on a windows virtual server. I would like this to be my webserver so i can get out of IIS. My question i guess is that now that i installed this and configured it for a LAMP server what next? | 21:22 |
tesla4 | how about this. I am logged in to my system and how do i assign an ip address to my server? | 21:31 |
joebob777as7 | tesla4 modify /etc/network/interfaces | 21:32 |
JaxxMaxx_ | I think the server guide listed in the chantopic has IP config information | 21:32 |
tesla4 | thanks for the link whom ever send it to me on sudo. | 21:33 |
tesla4 | when i edit the interfaces file and enter dns-nameservers 0.0.0.0 how do i add a second NS | 21:51 |
dthacker-work | tesla4: put the second nameserver on a new line below the first | 21:53 |
tesla4 | so i would add another line with dns-nameservers 1.1.1.1 | 21:54 |
dthacker-work | tesla4: like this http://paste.ubuntu-nl.org/61273/ | 21:55 |
tesla4 | I dl webmin and now i need to install it. How can i copy a file from my windoze client to my ubunto server. I tried ftp but doesnt seem to work | 22:01 |
spiekey | hi | 22:01 |
spiekey | i have trouble with vsftpd | 22:01 |
joebob777as7 | tesla4 you can mount -t cifs to mount a windows share | 22:02 |
spiekey | as a anonymous user i can upload files but not download them or delete them | 22:02 |
spiekey | any idea why? | 22:02 |
joebob777as7 | spiekey i'm sure it's an anonymous user permissions in a config file... ;) | 22:04 |
spiekey | i guess so. the unix permission look okay | 22:05 |
joebob777as7 | spiekey not sure at all. ftp is crap with unix permissions stuff. way too complicated lol. did you check the server manual? | 22:06 |
spiekey | yey! Found it! | 22:07 |
spiekey | anon_other_write_enable | 22:08 |
tesla4 | i added the lines nameserver 10.0.0.1 and nameserver 10.0.0.2 and after i save the file and try to do a ifdown eth0 it errors out and says duplicate option | 22:14 |
tesla4 | nm i found where to add the dns servers | 22:18 |
tjaalton | I'm merging nfs-utils, since it has a couple of important fixes and a ton of manpage updates.. filing a FFe as well | 22:25 |
tesla4 | i am trying to mount to a shared directory on a windows server and having no luck. I keep getting "No such File or directory" | 22:35 |
tesla4 | this is the command i use "sudo mount -t ntfs //server/share -o username=user,password=pass /mnt/server | 22:36 |
SpudDogg | ls | 23:03 |
joebob777as7 | tesla4 i think -t cifs | 23:18 |
tesla4 | i tried cifs but it keeps giving me an error | 23:26 |
tesla4 | so i ran this sudo apt-get install smbfs | 23:27 |
joebob777as7 | sudo apt-get install smbtools maybe? i think that's the package... | 23:33 |
joebob777as7 | tesla4 do you have fusesmb installed? | 23:34 |
tesla4 | dont know | 23:36 |
joebob777as7 | tesla4 sudo apt-get install fusesmb and then try to mount -t cifs | 23:49 |
tesla4 | i got it to work | 23:53 |
tesla4 | i added the username and password of the windows share and it work | 23:53 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!