[01:49] hi everyone [04:12] Hiya, can someone tell me how far away we are from the Hardy GM? [04:13] GM? [04:13] Golden Master [04:13] kgoetz: The final actual bits that make it onto the CD's that will be shipped. [04:14] * owh is trying to work out some time-lines. [04:14] owh: the last RC (i think ~20th) is intended to be the gold release. they'll only change things if they absolutely have to after that [04:14] about a week after universe freezes it should settle down though (iirc the 10th?) [04:15] Hmm. [04:15] * kgoetz looks on wiki [04:15] URL? [04:15] * owh couldn't find it. [04:16] locating ... [04:16] https://wiki.ubuntu.com/HardyReleaseSchedule [04:17] Merci [04:17] 17th is RC, 24th is gold [04:18] Crap, so much for that idea. Ah well. Thanks. [04:19] * owh was trying to figure out hardware purchases vs. release dates. [04:19] oh, heh [04:19] install with a RC, perhaps? [04:19] ajmitch: Yeah, but that will just give me kittens with bugs :) [04:19] wtf [04:20] kgoetz: Huh? [04:21] owh: sorry. deja vu [04:21] ajmitch: said that in exactly this context last release [04:21] kgoetz: What, "all over again"? [04:21] out of the blue. like that. [04:21] owh: yes [04:21] kgoetz: why is that a problem? [04:21] ajmitch: and I, we're twins :) [04:21] ajmitch: its not. its just ... disturbing [04:22] this may even be 3 releases in a row its happend [04:22] owh: there won't be many fixes going in between RC & release [04:22] kgoetz: that what has happened? [04:22] *would have to check logs* [04:22] ajmitch: you've given me deja vu [04:22] oh well [04:22] kgoetz: If you wait a bit, I have them lying around. [04:22] ajmitch: Yeah, I'm crossing my fingers for that. [04:23] all the freezes have happened now [04:23] kgoetz: Was that in #ubuntu-server, or somewhere else? [04:23] owh: i dont remember. it was #ubuntu-* . if it involved ajmitch it was probably here [04:24] it probably wasn't me [04:24] kgoetz: I have two kittens in the logs. [04:24] 20071003.ubuntu-server.txt:[11:46] jdstrand: the register_shutdown_function trickery kills kittens. [04:24] 20080111.ubuntu-server.txt:[08:59] Hows this as a disclaimer: Note that this just makes it run, we haven't done any configuration, haven't confirmed we can actually use it, that it won't fill up your hard disk or kill kittens. [04:24] Enough fun and games already :) [04:31] kgoetz: In case you care: http://www.google.com.au/search?q=kittens+site%3Airclogs.ubuntu.com [04:31] :) [04:31] i've had problems in the past setting up a static IP, does anyone know a safe way to do it? [04:31] sboysel: What do you mean by safe? [04:32] like whenever i try to do it it will sometimes mess up my ethernet connection [04:32] no internet [04:32] sboysel: That is most likely a carbon error. That is, it has nothing to do with a static IP address, but the details you use to configure it with. [04:32] i wanted static IP so i could try to set up a server [04:33] sboysel: A static address is only static if you are given it by your ISP. [04:33] does your ISP have you alocated a static ip? [04:33] no i think it's DHCP [04:34] sboysel: Then allocating a static address is a recipe for failure. [04:34] sboysel: Do you understand the concepts behind DHCP and Static IP? [04:34] no way to do it without dealing with my ISP? [04:34] not completely [04:34] sboysel: Well, there are services like dynamic dns. [04:34] DHCP finds what ever IP it can [04:34] and static always has the same one [04:35] Well no. [04:35] oh [04:35] DHCP uses an address as supplied by an appropriate DHCP server. Often run by your ISP. [04:35] Most likely the DHCP address supplied to you is not visible from the wider Internet. [04:36] right which is why i would need a domain name? [04:36] and static IP? [04:36] That means that from my workstation here, it is unlikely that I can reach your IP address. [04:36] No [04:36] Stop jumping in for a bit. [04:36] sorry [04:36] For me to get access to your computer, my computer needs to be able to "reach" your computer. [04:37] Most addresses allocated by an ISP are local to that ISP. [04:37] For example, my ISP on my satellite modem is: 10.24.7.25 [04:37] s/ISP/IP/ [04:37] That address was given to my modem by my ISP's DHCP server. [04:38] In a static world, I would allocate that same IP address, and all the other settings to my "server". [04:38] It would make my address "static". [04:38] But it would not give you access. [04:38] You cannot get to the IP address I supplied. [04:39] It is internal to the ISP's network. With me so far? [04:39] yes [04:39] why can't i access your server with a static ip? [04:39] Because the IP address is not "visible" to you. [04:40] Specifically, the 10.x.x.x network range is called "non-routing". [04:40] because it has been allocated? [04:40] There are others, like 192.168.x.x and 127.x.x.x [04:40] No, not because it has been allocated. [04:40] 192.168.0.0/16 and 172.16.0.0/12, specifically [04:40] Tah lamont. [04:41] sboysel: So. To "get" to your server, a few things need to be in place. [04:41] and it's "private address space" - it _routes_ just fine [04:41] well, other than the fact that the core doesn't accept routing advertisements for it [04:41] i have 192.168..... [04:41] lamont: Yeah, but I figured that would make it more complicated :) [04:41] within your organization, you can do whatever you want with it. [04:41] sboysel: Yes, so hold on for a bit. [04:41] and explaining what's wrong with the terms later is less confusing? [04:42] :-) [04:42] Hey, I'm all for complete explanations, but I figured baby steps would be a good idea, given the questions asked. [04:42] amen [04:42] (people still refer to "class A networks" even though they haven't existed since 1993, for example.. and then wonder why people are confused about routing...) [04:43] lamont: But we're not talking about routing here are we :) [04:43] not particularly, no. [04:44] sboysel: So, for you to have your server visible to me, the address that it has needs to be related to the server in such a way that the address is advertised on the wider Internet. I won't go into how that really works, because lamont will chew off my fingers and your head will explode. [04:44] OTOH, my ISP hands out 192.168.168.0/24 addresses, and I talk to lots of infrastructure machines on those addresses just fine... including from the big-bad-internet (via a proxy, of course) [04:44] Now, you cannot just "randomly" choose an address. [04:44] owh: hehe [04:45] not and expect that address to work... [04:45] * lamont goes back to lurking [04:45] sboysel: Given what you've told us so far, you won't actually be able to advertise your server on the net unless some specific things are done. [04:45] ok [04:46] sboysel: Simplest to achieve, but likely associated costs, is to ask your ISP for a static external IP address. It's unlikely that they'll give you one. Don't dispair. [04:46] sboysel: The second way of doing this, which millions of users use each day, is a service like dynamic dns. [04:47] which still requires a publicly routed address, and may cost money [04:47] sboysel: What happens is that you run some software on your server, which tells your dynamic dns service what your internal IP address is. [04:47] i see [04:47] lamont: I'm not sure what you're referring to. [04:48] sboysel: Now, the way the service works is that because it is external to your ISP's network, it can match your internal IP address with the IP address associated with your ISP. [04:48] like a medium [04:48] sboysel: So, you establish some form of connection to your dynamic dns, which then accepts connections on your behalf, sending them to you. [04:48] sboysel: Like a middle-man. [04:49] The final piece in the puzzle is how to advertise this. [04:49] isnt dynamic dns a web based service? [04:49] It can be, [04:49] or software i would install? [04:49] You may receive a domain name like bob.ddns.org. [04:49] oh [04:49] So, I could then surf to that address and see the stuff on your server. [04:50] owh: dyndns still requires a publicly routed address, and many ISPs will charge you for that even. [04:50] sboysel: Now, in addition to that, you could map a domain name over the top of that. [04:50] lamont: I would have thought that it would use the external ISP address and tunnel back to your server. [04:50] oh so like www.bob.org translates to bob.ddns.org [04:51] sboysel: Yup [04:51] so i have to use a Dynamic DNS web service [04:51] sboysel: Go to a terminal and type: apt-cache show ddns3-client and see what it tells you. [04:52] so there's a package in the hardy repos? [04:52] Yup [04:52] lamont: So, am I sending sboysel on a wild goose chase, or does it in fact tunnel? [04:53] all the dyndns stuff I've seen wants you to have an IP. [04:53] should i install that package? [04:53] owh: then again, I have a /24 that follows me around, so I've never actually bothered with any dynamic dns services.... [04:54] owning your own network does tend to make you lazy that way. [04:54] sboysel: No, the first step is to check what the requirements are for each of the services named. [04:54] lamont: Yeah, I'll lay claim to owning a mobile LAN :) [04:55] services being what my server is going to be doing? [04:55] Yup [04:55] maybe a file server, web server, wordpress [04:55] heh. just passed the 9-year anniversary of registering that network [04:55] all for fun nothing harcore [04:57] how should i go about setting those up? [04:58] sboysel: Well, visit http://www.dyndns.com/ and start reading. [04:58] if you dont mind me asking what services do you use your server for? [04:59] sboysel: my primary server has postfix and bind9 [04:59] sboysel: I'm not sure it's relevant, but LAMP, rsync, ssh, samba, mail, ftp, upnp to name a few. [04:59] and provides imap service to the house [05:00] Yeah, that too :) [05:00] yeah i installed LAMP, ssh, samba stuff like that [05:00] heh. I didn't even consider ssh as a service... :-) of course it's there - how else would I login?? [05:00] i was hoping to build an ftp, web server [05:00] the ftp server lives on the machine where the ubuntu mirror lives [05:01] any thoughts? [05:02] sboysel: That is outside the scope of assistance I'm willing to give you, but https://help.ubuntu.com/7.10/server/C/ will give you the server guide which will set you on your way. [05:02] apache2 (and apache2-mpm-worker, actually), and vsftpd are what I use [05:02] thank you so much guys [05:02] lamont: You could run an nmap :) [05:02] generally speaking, setting up a server and exposing it to the internet as a learning exercise is welcomed by the script kiddies, who will help you generate traffic once they compromise your machine... :-( [05:03] lamont: Also, dyndns seems to say nothing about external IP static addresses that I can see. [05:03] owh: for extra points, look at who the maintainer of nmap is. :) [05:07] lamont: That was a wild goose chase, packages.ubuntu.com/nmap -> ubuntu-core-developers -> https://launchpad.net/~ubuntu-core-dev/+members + /whois lamont ==> LaMont == ubuntu-core-developers. That's a lot of work, just to make a point :) [05:08] Ah, Denver, that explains it all >:-) [05:09] well, it also led to me noticing that there was an ubuntu upload, which means there is still a bug, and I need to upload the fix to debian and get it synced to ubuntu [05:09] lamont: So, I'm curious, how do you have a network that follows you around? I carry a vSat around which gives me the portable LAN :) [05:10] 192.0.0.0/7 --> "The swamp" [05:10] predating CIDR, they are all grandfathered, transportable networks [05:10] lamont: Yeah, I carry that one around too :) [05:11] as in I don't pay ARIN for it, and if I switch ISPs, the new ISP gets to advertise a route for me. [05:11] lamont: Hold on, you're telling me something different aren't you. [05:11] i thought 192 was scientific/research purposes [05:11] lamont: Yeah, I thought I was too quick on the [Enter] key :) [05:11] 192 was the base of "class C" (back when there were classes...) the allocation method was simple: what's the next one up. here you go. [05:12] they were in 193 somewhere when CIDR came along, and they stopped allocating from 193 [05:13] lamont: By the look of your membership page you're not that busy then :) [05:15] sboysel: Just for your information, some domestic routers/modems provide a dynamic dns client built in which might simplify your quest. I suggest you read the appropriate manual for your device(s). [05:17] yeah i think buying new hard ware is out of the question but thanks [05:17] sboysel: No, I'm saying check out the stuff you have already. [05:21] heh [05:21] some days are busier than others [05:23] of course, sometimes living in the sticks with rural internet can be, um, annoying [05:24] lamont: My solution to that was to become mobile and carry a 1M/256K satellite link around. All good :) [05:24] satellite is to laggy [05:24] No, ssh is like the 1200/75 baud days :) [05:24] heh [05:25] I'm trying to figure out if I can get screen to give me a buffered input line to make editing a little less painful :) [05:25] I have always enjoyed having people get weirded out when I'm fixing typos faster than the keystrokes are echoing back [05:25] Yeah, get's them going every time :) [05:26] s/'// [05:26] Watching an .iso download at 117KB is like watching paint dry. [05:27] 56%, 47 minutes remaining [05:28] no, 14KB/s is watching paint dry. :-( [05:29] The flip-side of course is that you can setup anywhere: http://itmaze.com.au/locations/ - http://itmaze.com.au/locations/sa/middle.of.nowhere [05:29] lamont: No, that's like growing old :) [05:30] sa *is* the middle of no where ... [05:32] kgoetz: It's not that bad. [05:33] * kgoetz rhubarb [05:34] * kgoetz suspects owh doesnt live in sa [05:34] * owh accuses kgoetz of living in sa. [05:34] * kgoetz is guilty as charged [05:34] kgoetz: I have spent many months in your fair state as the map will attest. [05:36] so i see [05:36] In fact, I was there in October to run the web site for the World Solar Challenge :) [05:36] :) [05:37] kgoetz: The give-away was a German name in an Australian TimeZone :) [05:38] 90% sa :) [05:39] owh: heh. i would have thought the massive dislike was ;) (i'm not from here, i'm actually from tassie) [05:40] kgoetz: Ah, now I know what's wrong with you :) -- just kidding. [05:41] * owh can't talk. Born in VIC, stayed a week, got on the Indian Pacific, moved to WA, then to Holland, then back to WA :) [05:41] lol [05:42] Still have scars from VIC :) [05:43] hehe [05:47] * kgoetz just realised that Sun buying MySQL might mean OO.o's db will suck less [05:48] kgoetz: Perhaps not in our lifetimes though. [05:50] owh: harsh :) [05:50] owh: do you have a ham licence? or are you just doing sat wifi? [05:50] Sat WiFi only. [05:50] ok [05:51] * kgoetz thought it was worth asking :) [05:56] I wouldn't run internet over ham radio - I really have objections to not ssh-encapsulating things, you see... [05:56] and cleartext passwords are Teh Suck. [06:01] * lamont declares bedtime [06:02] * ScottK declares lamont old and weak. [06:02] work day starts at 0600 local.. 7 hours from now. [06:03] hrm.. given a bug in the debian bts, is there a trivial way to import that to launchpad? [06:03] or is it easier to just file a new one? [06:03] OK. Mine starts at 7 and I'm two hours east of you. [06:03] yeah [06:04] You link the Debian bugs, you don't import them, so you still have to file a bug. [06:05] ScottK: win! [06:06] lamont: I've been told by senior launchpad developers that because I liked the pre-beta LP U/I better than the current one and every one KNOWS the new one is better because it has CSS instead of tables my opinions on Launchpad aren't credible. [06:06] As a result, I neither file nor comment on Launchpad bugs and really do my best not to have any opinions about it at all. [06:07] heh [06:07] Not kidding you know. [06:09] yeah [08:33] g'morning channel, anyone awake? scripting newbie could use some assistance for my server configuration :) [08:38] !ask [08:38] Please don't ask to ask a question, ask the question (all on ONE line, so others can read and follow it easily). If anyone knows the answer they will most likely answer. :-) [08:39] g'morning kgoetz :) [08:39] r u any good at bash shell scripting? [08:39] somewhat. ask in #bash if you need the pros :) [08:39] i'm reading the docs, tutorials, etc., but... [08:40] kgoetz: ty, i will [08:40] dennister: np :D [09:06] kgoetz: not having much luck so far in #bash, i'm afraid; it's like mythtv-users, where people don't want to help, they just criticize you for your questions and ask you to justify your decisions/needs forever [09:09] <_ruben> dennister: do have any specific problem/question? [09:11] _ruben: i did have a problem, but it seems like someone in #bash has come through for me after all :) "bash"-ed them too soon [09:11] <_ruben> hehe [13:10] Hi, apt-get transfers on port 80? [13:13] <_ruben> if you have http sources, yes, which is the most common (theoretically you could also have ftp or maybe even rsync sources) [13:13] <_ruben> see /etc/apt/sources.list === chuck_ is now known as zul [13:30] ofc, thanks _ruben :) [14:02] how to show the ports used in ubuntu server gutsy? [14:02] netstat -ant [14:22] imap and pop3 are needed to receive mails from yahoo.com to the mail server right? [14:22] s/and/or [14:22] as a client? [14:23] I have postfix and courier-imap installed... it was actually working before.. it can't accept emails from the outside after I changed my router.. [14:23] I port forwarded 143 and 110 already.. [14:25] did I miss something? [14:26] <_ruben> inbound 143 and 110 is to fetch from your box to a remote location .. if you can from remote locate inbound mail to your box: open port 25 (smtp) [14:36] how to check what ports are configured for postfix and courier? [15:37] mathiaz: so there is a bug in the dovecot-common.postinst in the ssl creation stuff [15:38] zul: where É [15:38] basically it checks for an ssl certificate by grep but since the line is commented out by default it never creates a ssl certifcate [15:39] mathiaz: around line 38 [15:41] zul: hum... you mean that ssl_cert_file is commented in dovecot.conf ? [15:41] yep [15:41] zul: it shouldn't matter - grep doesn't match the beginin of the line [15:41] <_ruben> hrm .. whats the 'proper' way of automagically adding network routes? putting a script in ifup.d? or is there a "nicer" way [15:42] zul: the reason why the ssl creation code is never run in the postinst is that dovecot depends on ssl-cert [15:42] mathiaz: well the check is wrong it spits out "You already have ssl certs for dovecot" when you clearly dont :) [15:42] zul: which will already generate the certificate [15:43] ssl-cert will generate the certificate for dovecot? [15:43] zul: the default certificate file set in dovecot.conf is the same as the default one generate by ssl-cert [15:43] <_ruben> ah .. found smth [15:43] zul: you can try to install ssl-cert, but not dovecot [15:44] zul: remove the default cert generated by ssl-cert and install then dovecot [15:44] zul: you should see the ssl cert creation done in the postinst [15:46] ah gotcha now [15:46] meh :) [15:53] Is there such a thing as a "debug log" in 7.10 ? I'm trying to troubleshoot a FreeRADIUS installation, and the docs keep mentioning the Debug output, but I'm not sure where to find it [16:01] JaxxMaxx: syslog maybe [16:01] JaxxMaxx: /var/log/freeradius as well [16:07] heh, people trying to access PHPMyAdmin scripts... silly kiddies. [16:26] JaxxMaxx: you might have to restart the service with a different level of verbosity [16:40] I'm guessing that init.d scripts don't take additional parms? [16:43] Hardy Heron Server on latest VMWare workstation - always freezes at partitioner (IDE or SCSI). Anyone else seen this? [16:47] zobbo: are you running the jeOS version? [16:48] good_dana: no - just bog standard server [16:49] gosh, never knew about jeOS [16:52] zobbo: might want to try that, otherwise, i do know that partitioning virtual disks takes a pretty stupid long time in my experience. [16:54] good_dana: Thanks for the feedback. I've been building images like mad for the last six months with 7.10. Not urgent to get this running. I'll drop a note in the ubuntu forums and see if anybody else has seen this. === JaxxMaxx__ is now known as JaxxMaxx_ [17:27] Does anyone know why mod-security isn't available in Gutsy? [17:28] ScatterBrain: afair, it has no upstream any more. [17:29] keescook: So it's no longer in Debian either? [17:29] wow. [17:31] ScatterBrain: http://packages.qa.debian.org/liba/libapache-mod-security.html [17:31] "removed" [17:31] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=352344 [17:31] Debian bug 352344 in ftp.debian.org "RM: libapache-mod-security -- RoM; undistributable due to licence conflict (APL/GPL)" [Normal,Open] [17:32] so, I misremembered -- it's a license issue, not an upstream-is-dead issue [17:44] thanks keescook [17:46] hi , i created a local repository for my LAN with apt-mirror, i added a puvlic key , but when i upgrade from my other pc, the packages are not verified/authenticated , what i have to do ? [17:47] i did "apt-key add" but i get the 'not authentucated' message [18:05] I have a headless server that I SSH into using putty, how would I keep a user logged into the server between SSH sessions? [18:17] Cahan: screen is probably what you're looking for [18:19] sommer, thank you, I'll check it out [18:22] heya, can anyone help me i have searched the web and i m going crazy, i have ubuntu server on a ibm blade center hooked up to the DS3400 storage via optic fiber.. how do i mount a drive from that storage im going crazy here [18:23] or any other SAS storage via FC for that matter [18:25] anyone even here? [18:27] im using ubuntu server 7.10.. just dont know how the heck to mount or make te lun wich i created via storage manager to make ubuntu SEE and format the partition [18:31] ayone? heeeeelp kinda loosing my mind [18:32] at least a hello would be nice :D anyone here ? :D [18:32] ofc [18:32] ah! [18:32] thank god :D [18:33] a human :D [18:33] any idea where could i search for this problem of mine? really keeping me going cuz i cant seem to figure out how to simply make a drive from SAS storage system visible in ubuntu [18:34] unfortunatly I have no idea, sorry [18:34] thanks.. i guess ill keep asking here the next couple days see if i can get some expert on ubuntu server.// [18:35] logist: just a stab in the dark if you run dmesg do you seee the drives? [18:36] logist: open-iscsi? [18:36] sec.. [18:36] I believe is what you want [18:36] didnt try openiscsi yet.. isnt that supposed to run over tcp/ip ethernet card? [18:37] yeah, ip based, although, if you are doing FC, hrmm, I guess it depends on if the card is supported and recognized [18:37] the blade is connected to storage via optical fiber switch.. qlogic [18:37] yeah i can see the fiber card fine.. [18:37] iirc last I dealt with FC was w/ qlogic cards and they were supported [18:37] ok terying dmesg [18:38] so I suppose you have to make available the disks as array / logical drives [18:38] the card should pick up the luns and you should be available to mount them [18:38] uf alot of text dmesg returned.. [18:39] well heres the deal.. on the other windows platform i have the storage manager up and running by wich i defined a lun, parititoned it.. set it up all that.. now just how to look if the linux box sees the lun and can use it.. well format it firstly i guess [18:40] logist: you will have to look through the dmesg to see whats going on [18:41] looking.. [18:45] [ 112.676504] QLogic Fibre Channel HBA Driver: 8.01.07-k7 [18:45] [ 112.676506] QLogic IBM FCEC - [18:45] the card is there.. [18:52] scsiadd -p returns: [18:52] Host: scsi0 Channel: 00 Id: 00 Lun: 00 [18:52] Vendor: IBM Model: 1726-4xx FAStT Rev: 0617 [18:52] Type: Direct-Access ANSI SCSI revision: 05 [18:52] Host: scsi1 Channel: 00 Id: 00 Lun: 00 [18:52] Vendor: IBM Model: 1726-4xx FAStT Rev: 0617 [18:52] Type: Direct-Access ANSI SCSI revision: 05 [18:52] Host: scsi4 Channel: 00 Id: 00 Lun: 00 [18:52] Vendor: IBM-ESXS Model: MAY2073RC Rev: T107 [18:52] Type: Direct-Access ANSI SCSI revision: 05 [18:52] Host: scsi4 Channel: 00 Id: 01 Lun: 00 [18:52] Vendor: IBM-ESXS Model: MAY2073RC Rev: T107 [18:52] Type: Direct-Access ANSI SCSI revision: 05 [18:52] Host: scsi4 Channel: 01 Id: 00 Lun: 00 [18:52] Vendor: LSILOGIC Model: Logical Volume Rev: 3000 [18:52] Type: Direct-Access ANSI SCSI revision: 02 [18:52] Host: scsi5 Channel: 00 Id: 00 Lun: 00 [18:52] Vendor: MATSHITA Model: UJDA775 DVD/CDRW Rev: CA02 [18:52] Type: CD-ROM ANSI SCSI revision: 00 [18:52] all is LUN 00 dont see the lun 01 i specified on the storage [19:02] logist: you might want to try sudo fdisk -l as well, and please use pastebin [19:04] tryed that... doesent show up... paste bin? :P [19:08] hi [19:08] does anyone know if you can set up netcat so that it always echos back? [19:10] are there any adverse effects to assigning all new users to the group "users" instead of a new group being created with the user's name (the default)? I'd like to do a systemwide quota this way [19:20] teamcobra: not that I'm aware of. We've done it that way for years. [19:27] dthacker: could you point me in direction of the easiest way to do this (I have the quota all set up, I just need to have it auto-assign all new users to the group 'user')... I've been googling, but without much success [19:29] teamcobra: how are you creating your users? [19:29] !pastebin | logist [19:29] logist: pastebin is a service to post multiple-lined texts so you don't flood the channel. The Ubuntu pastebin is at http://paste.ubuntu-nl.org (make sure you give us the URL for your paste - see also the channel topic) [19:29] sommer: ldap [19:30] teamcobra: setting the gidNumber attribute to the group's number should do it [19:30] teamcobra: oh. I was using plain old useradd. [19:30] dthacker: it'd like to have it working w/ useradd too, for kicks ;) [19:30] sommer: thanks, will look into that [19:31] np [19:31] teamcobra: for useradd you need to tweak /etc/useradd.conf [19:31] useradd -g GID assigns the primary group, or follow the blue-frog ^^ [19:31] sorry /etc/default/useradd [19:31] keep following :) [19:36] uid=30004(exe5) gid=100(users)id: failed to get groups for user `exe5': No such file or directory :/ [19:37] after doing an id on the user [19:43] lamont: Your fix for "request to update table btree:/var/spool/postfix/smtpd_scache in non-postfix directory" does not repair existing installations with the table already in the wrong place. Dunno if you meant to or not, but thought I mention it. [19:46] ScottK: correct [19:46] OK. Just checking. [19:46] I've adopted a rather hands-off policy on config files over time. [19:47] because it sucks to do otherwise. [19:47] I wanted to make sure before I fixed mine by hand. [19:47] Agreed. [19:47] even if it's a change that _MUST_ be made before the daemon will run again, you must prompt the user and get permission before changing his config file for him. [19:48] consequently, my philosophy these last few years has been to only do it when it causes the daemon to not run if I don't (warnings are left as an exercise), and make the permission check happen in preinst and fail the install if they tell me 'no'. [19:48] it's the traditional 'I WIN' approach to the problem. :-) [19:50] Heh. [19:51] Yesterday I approved a Universe Feature Freeze exception. [19:51] it makes postinst much easier to write, though: "I got here, so therefore I must have permission. kthx" [19:51] The person who asked for it was a bit cautious about it and asked me not to approve it if I wasn't sure. [19:51] Yeah. [19:52] I told him not to worry. Either the upgrade would go well and the distro would be better or it would go badly and I'd get to torture him into fixing it. Either way I win. [19:53] heh [19:53] yep [19:53] besides, it's universe. :-) [19:54] There is that. [19:56] Would someone who understands sql please look at Bug 211915 and tell me if it's really insecure or if the program is just whining? [19:56] Launchpad bug 211915 in amavisd-new "Insecure dependency when using sql for Log Reporting" [Undecided,New] https://launchpad.net/bugs/211915 [19:57] Anyone had any luck getting mod_mono working? [19:59] ScottK: what database is he using? [19:59] sommer: All I know is what's in the bug. [20:00]