/srv/irclogs.ubuntu.com/2008/04/16/#ubuntu-server.txt

Invisionfree	kirkland: I'm on my livecd, help me CHROOT into my server install?	00:00
jdstrand	kirkland: putting on my sysadmin hat, I am not sure there is a sane default	00:00
jdstrand	we don't have a server that we can target our authentication/authorization lookups against	00:01
jdstrand	as such, it's all manual	00:01
Invisionfree	kirkland: I'm on my livecd, help me CHROOT into my server install? Please?	00:02
kirkland	jdstrand: i was thinking we should allow users with uid<N to fallback locally	00:02
kirkland	Invisionfree: are you at a command prompt?	00:02
Invisionfree	Terminal, and by the time you tell me what to type I will be :P	00:02
jdstrand	kirkland: right, I understand, but what is 'N'-- some people may want to override some groups/users for some reason	00:03
kirkland	Invisionfree: do you know the device that has your / partition?	00:03
Invisionfree	hda1	00:03
kirkland	jdstrand: at the very least 0/root	00:03
kirkland	jdstrand: i don't there's ever a case where root would ONLY exist in LDAP	00:03
jdstrand	kirkland: no, that is true	00:03
kirkland	Invisionfree: mount /dev/hda1 /mnt	00:03
kirkland	Invisionfree: chroot /mnt	00:03
jdstrand	kirkland: but, you can't get that fine-grained with libc/nss lookups, only pam	00:04
kirkland	jdstrand: i know, i know, inadvisable to login as root	00:04
kirkland	jdstrand: perhaps users in the admin group?	00:05
kirkland	jdstrand: we specify those in pam	00:05
jdstrand	kirkland: yeah, pam_krb5 has a minimum_uid setting	00:05
jdstrand	eg account sufficient pam_krb5.so minimum_uid=1001	00:05
jdstrand	I'm checking pam_ldap now, but am almost 100% it has it too	00:05
kirkland	jdstrand: that's kinda the opposite, though	00:05
* kirkland smacks kirkland, nevermind		00:06
* Invisionfree smacks kirkland for the hell of it		00:06
Invisionfree	:D	00:06
jdstrand	kirkland: man pam_ldap-- ignore_unknown_user	00:10
bipolar	is it pam or nss thats causing the issue on boot?	00:23
Invisionfree	Help	00:54
Invisionfree	bipolar?	00:54
bipolar	hmm?	00:55
Invisionfree	The following packages have unmet dependencies:	00:55
Invisionfree	libsasl2-modules-gssapi-heimdal: Depends: libsasl2-modules (= 2.1.22.dfsg1-12) but 2.1.22.dfsg1-9ubuntu2 is to be installed	00:55
Invisionfree	E: Broken packages	00:55
Invisionfree	How do I fix that?	00:55
bipolar	how did you get there?	00:55
Invisionfree	A Debian shell script to install ldap	00:55
bipolar	umm.... what shell script?	00:56
Invisionfree	http://noc.cluenet.org/distconf2.allinone.sh	00:56
bipolar	that script calls other scripts. it must be part of a package you downloaded.	00:57
Invisionfree	How do I get that version it needs?	00:58
bipolar	it probbly doesn't work on ubuntu	00:58
Invisionfree	..	00:58
Invisionfree	All it needs is a different version, why the hell wouldn't it?	00:58
Deeps	ubuntu packages aren't always exact replicas of the debian packages with different numbers on them	00:59
bipolar	Invisionfree: are you running gutsy?	01:00
Invisionfree	Yes.	01:00
bipolar	Invisionfree: the first thing I would try is running 'apt-get -f install' just to see if it can clean itself up.	01:01
Invisionfree	I did, no solve.	01:01
bipolar	libsasl2-modules-gssapi-heimdal may be broken	01:04
bipolar	packages.ubuntu.org says exactly the same thing apt is telling you	01:04
bipolar	it requres libsasl2-modules (= 2.1.22.dfsg1-12) but ubuntu has libsasl2-modules (2.1.22.dfsg1-9ubuntu2)	01:05
bipolar	I would remove that package, unless you absolutly need it.	01:05
Invisionfree	I absolutely need it.	01:05
bipolar	I'm afriaid your screwed	01:06
Deeps	would rebuilding it from the source package (And modifying it's dependancy manually) resolve this?	01:06
Deeps	or at least, get past the dependancy issue (while potentially creating new issues down the line)	01:07
bipolar	it's strange, the universe package looks newer then the non-universe one.	01:08
Invisionfree	bipolar:	01:08
Invisionfree	E: Version '2.1.22.dfsg1-12' for 'libsasl2-modules' was not found	01:08
bipolar	yes, because 2.1.22.dfsg1-9ubuntu2 is what is available	01:08
Invisionfree	How can I get that version then..	01:09
bipolar	You would need to download the source package, modify it's config file, and recompile	01:10
bipolar	that version is not in the repositories	01:11
bipolar	which is strange.	01:11
bipolar	Maybe you could download the deb, and install it manualy	01:13
bipolar	tell dpkg to ignore dependancys	01:14
bipolar	Invisionfree: here is someone else with the same issue: http://ubuntuforums.org/showthread.php?t=599141	01:15
bipolar	Invisionfree: and there is already a bug reported for this issue: https://bugs.launchpad.net/ubuntu/+source/cyrus-sasl2-heimdal/+bug/157035	01:16
ubotu	Launchpad bug 157035 in cyrus-sasl2-heimdal "libsasl2-modules-gssapi-heimdal not installable" [Undecided,Fix released]	01:16
bipolar	looks like it's fixed for Hardy	01:17
nullbnx	ok so im working on getting a wap setup... iv followed a few guides and am stuck... i can connect to the network, and when i try to ping to the outside world, dns resolves the ip address but no ping	01:19
nullbnx	any ideas?	01:19
Deeps	is IP forwarding enabled?	01:21
Deeps	is WAP a wireless access point? if so, do you need to NAT wireless clients (have you got appropriate rules in iptables for this?)	01:22
nullbnx	if dns works but not the ping... ip tables? bridge?	01:23
nullbnx	yes ip fowarding is	01:23
nullbnx	i have these ip table rules....	01:23
* Deeps hopes he pastebins		01:23
Deeps	you can dump nice output using iptables-save (if no args specified it outputs on stdout)	01:24
nullbnx	k just a sec	01:25
nullbnx	http://pastebin.com/dbc2e250	01:26
Deeps	ok, which is your lan interface, which is your external interface, and is your wireless point a wireless card in your linux machine, or an external wap connected within your lan?	01:29
nullbnx	eth0 is the lan connected to the internet; ath0 is the wap (in this linux machine)	01:30
Deeps	and eth1?	01:30
Deeps	actually nm, eth0 always matches first	01:31
Deeps	from a wireless client, can you ping a) the ip assigned to ath0, b) the ip assigned to eth0?	01:32
nullbnx	i can ping 10.1.1.1 which is the network setup by ath0	01:32
nullbnx	not 192.168.1.44 the ip address assigned to eth0	01:32
nullbnx	but when i ping (for example www.google.com); it resolves the ip address, just no return ping	01:34
Deeps	what's your nameserver ip?	01:34
Deeps	same as ath0?	01:34
nullbnx	nameserver is 192.168.1.1; the network assigned to eth0	01:35
Deeps	what OS on the wireless client?	01:36
nullbnx	ubuntu desktop	01:36
nullbnx	same thing happens with windows though	01:37
nullbnx	tested both	01:37
Deeps	my thought was that it was possible that dns was being cached from an earlier state	01:37
nullbnx	no, i thought that too, but google has so many different addresses that it changes per each ping almost...	01:38
nullbnx	so i dont know what is stopping me	01:38
Deeps	what's the output of route -n	01:38
Deeps	from what you've told me, unless i'm being dense, it should look like:	01:39
Deeps	192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0	01:39
Deeps	10.1.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ath0	01:39
Deeps	0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 eth0	01:39
nullbnx	yup	01:40
nullbnx	exactly except on eth0 flags = UG; Metric = 100	01:40
Deeps	you dont have any other routes for destination 0.0.0.0?	01:41
Deeps	ok, double check that "cat /proc/sys/net/ipv4/ip_forward" returns 1	01:42
Deeps	and possibly cat /proc/sys/net/ipv4/ip_dynaddr" also returns 1, if your WAN ip isn't static	01:42
nullbnx	2nd command returns 0	01:43
nullbnx	1st command returns 0	01:43
Deeps	ok, if the 1st returns 0, then that's definately your problem, you dont have IP forwarding enabled (the first thing i asked ;)	01:44
Deeps	echo 1 > /proc/sys/net/ipv4/ip_forward	01:44
Deeps	and try your pings again	01:44
nullbnx	hold on a sec, this is what i did to enable it... (i thought i had it on, oops)	01:44
nullbnx	nano /etc/sysctl.conf	01:45
nullbnx	net.ipv4.conf.forwarding=1	01:45
Deeps	that'll enable it at startup	01:46
Deeps	so if you've not rebooted, you still need to enable it now	01:46
Deeps	either through /proc/sys	01:46
nullbnx	and i restarted... any idea why that didnt work?	01:46
Deeps	or through calling sysctl	01:46
Deeps	oh	01:47
Deeps	oh, that looks like the ipv6 forwarding	01:47
Deeps	in ipv6, its net.ipv6.conf.forwarding, in ipv4, it's net.ipv4.ip_forward	01:47
Deeps	although you can do the conf route too, you need to specify the interface(s) you want to enable forwarding on	01:48
nullbnx	minus the .conf and foward instead of fowarding?	01:48
Deeps	cd /proc/sys/net/ipv4	01:48
Deeps	see the files that exist in there	01:48
Deeps	follows the same hierarchy as the sysctl calls	01:49
Deeps	i suspect net.ipv4.ip_forward=1 and net.ipv4.conf.all.forwarding=1 both do the same thing	01:49
nullbnx	just a sec, let me see if those changes changes fixed the problem	01:50
Deeps	if echo 1 > /proc/sys/net/ipv4/ip_forward	01:50
Deeps	has resolved your problem, then that was definately it	01:50
nullbnx	sure did	01:52
nullbnx	so how do i make those changes permanent?	01:52
nullbnx	cool worked	01:52
Deeps	modify your /etc/sysctl.conf to contain net.ipv4.ip_forward=1	01:52
Deeps	instead of net.ipv4.conf.forwarding=1	01:52
nullbnx	so how do i make those changes permanent?	01:52
Deeps	save the file?	01:52
Deeps	ctrl+x i think, Y, enter	01:53
nullbnx	and thats it?	01:53
Deeps	pretty much	01:53
nullbnx	with that setup i have for ipconfig, does that allow everything through without any restrictions? im pretty new to ipconfig...	01:54
Deeps	iptables?	01:54
nullbnx	sorry, yea	01:55
Deeps	http://pastebin.com/m53f1d0d0	01:56
Deeps	i've removed the 'eth1' entries	01:56
Deeps	i'm not sure what that is, but having a second masquerade rule isn't going to be matched against anyway	01:56
Deeps	urrr	01:57
Deeps	mistakes in there	01:57
Deeps	http://pastebin.com/m5c04e4f9	01:57
Deeps	line 19: should be -o ath0 and not -d ath0	01:57
nullbnx	ic k	01:58
nullbnx	so will those rules allow anything other than port 80 through?	01:59
Deeps	those rules will allow everything, and log port 80	01:59
Deeps	twice	01:59
nullbnx	ahh yea, so i need to delete line 16 also then	02:00
Deeps	if you only want it logged once, and then the connection dropped:	02:01
Deeps	http://pastebin.com/pastebin.php?diff=m55773a4e	02:01
Deeps	i guess	02:01
nullbnx	well i want everything fowarded through so i can use it like it were attached to any other server	02:02
nullbnx	btw, i really appreciate the assistance	02:02
Deeps	then remove the DROP line	02:02
Deeps	line 17	02:02
nullbnx	k	02:03
Deeps	when dumping traffic, 2 easy ways to do it is with -j DROP or -j REJECT	02:03
Deeps	DROP silently drops the packets, resulting in a timeout	02:03
Deeps	REJECT dumps the traffic and responds with an icmp unreachable	02:03
Deeps	so the other machine knows fairly quickly that the connection cant be made	02:04
nullbnx	ok so when i start closing the ports up to secure it, use one of the two...	02:04
Deeps	the approach i tend to take is drop all, accept specific ports that i want	02:05
nullbnx	is there a good guide to getting all that setup?	02:05
Deeps	no idea	02:06
Deeps	i went from getting a chat like this to google to giving this chat, heh.	02:06
nullbnx	i want everything between the wap --> clients open and then close things off between the server and the internet	02:07
nullbnx	so you just googled all this?	02:07
Deeps	no, when i was in your position i spent a lot of time on google	02:07
Deeps	finding and reading guides	02:07
nullbnx	ohh ok	02:08
nullbnx	i was going to say, thats pretty impressive if you did, lol	02:08
Deeps	hell, i still do, trying to work out routing between multiple links	02:08
nullbnx	so... http://pastebin.com/m5c04e4f9 will allow all the traffic between the wap & client?	02:08
Deeps	yep	02:09
Deeps	the best approach is to play around	02:10
Deeps	worst that can happen is you prevent any traffic from reaching the machine	02:10
nullbnx	sweet... so whats the basics to disabling ports, if lets say i wanted to disable ports on eth0? or even easier to allow just a select number of ports?	02:10
nullbnx	yea	02:10
Deeps	given that it's local, hook up and keyboard + monitor and undo it	02:10
Deeps	well you want to drop all traffic coming into eth0	02:11
Deeps	but still allow inbound traffic with state related,established, otherwise you wont get any replies from remote machines when you make requests	02:11
Deeps	(like you've done with clients behind ath0)	02:11
Deeps	(only it's not forwarding data now, its incoming data to that machine)	02:12
Deeps	and then to allow specific ports, -I INPUT -p <tcp/udp> --dport <portnum[:endportnum]>	02:12
nullbnx	so with my iptables now everything is being fowarded to ath0 and skipping eth0?	02:13
Deeps	eg -I INPUT -p tcp --dport 1000:2000 would allow input to ports 1000-2000 inclusive	02:13
Deeps	no, if a wireless client requests, say, a webpage	02:13
Deeps	wifi client [request] -> ath0 -[nat]-> eth0 -> [interweb]	02:14
Deeps	[interweb responds] -> eth0 -[nat, state related/established]-> ath0 -> wireless client	02:14
Deeps	[interweb tries to create new connection] -> eth0 -> [if there's a service running on the target port, it handles it, if not, it rejects the request]	02:15
Deeps	in your current state	02:15
nullbnx	k, so if lets say [client outside network] ---ssh request--> [eth0 responds by default]	02:16
Deeps	indeed	02:16
Deeps	in your current setup, anyone able to reach the machine will be able to get a response from ssh	02:17
Deeps	oh, be careful, if you set a root password on your machine (instead of using sudo), it's worth updating yor /etc/ssh/sshd_config to reflect PermitRootLogin no (defaults to yes)	02:18
Deeps	your*	02:18
nullbnx	gotcha, so the basics are that if a wireless client makes a request, it can get that specific request back...	02:18
Deeps	yep.	02:18
nullbnx	so lets say i just want to only allow specific ports period to eth0, which command would i use in iptables?	02:19
Deeps	02:11:09 < Deeps> well you want to drop all traffic coming into eth0	02:19
Deeps	02:11:27 < Deeps> but still allow inbound traffic with state related,established, otherwise you wont get any replies from remote machines when you make requests	02:20
Deeps	02:11:49 < Deeps> (like you've done with clients behind ath0)	02:20
Deeps	02:12:06 < Deeps> (only it's not forwarding data now, its incoming data to that machine)	02:20
Deeps	02:12:49 < Deeps> and then to allow specific ports, -I INPUT -p <tcp/udp> --dport <portnum[:endportnum]>	02:20
nullbnx	ahh ok, i thought that was a little different	02:20
Deeps	http://pastebin.com/m2439a18e	02:21
Deeps	things i've changed: your default INPUT policy to REJECT	02:21
Deeps	added a rule to allow tcp/22 from anywhere	02:21
Deeps	and allowing all established traffic already back in	02:22
nullbnx	so if i send a request out for something, it all can come back... except for ssh, which can recieve also	02:23
nullbnx	just trying to get this straight	02:23
Deeps	that said, i dont think you can set polciy to reject	02:23
Deeps	so you probably wanna change that to DROP	02:24
Deeps	that's correct	02:24
Deeps	means ssh can listen for new connections	02:24
Deeps	while any other random ports cant, they can only listen for established connections already	02:24
nullbnx	will this setup cause any complications if... i run a file server off of that box, just for the wireless clients?	02:25
Deeps	shouldn't do	02:25
nullbnx	k so change :INPUT REJECT to :INPUT DROP	02:25
Deeps	yep	02:25
Deeps	you can dump all of that in a file btw (remove the line numbers)	02:25
Deeps	and then iptables-restore < /path/to/file	02:25
Deeps	to have your rules replaced entirely	02:25
Deeps	iptables-save > /path/to/file to see what the file should look like	02:26
nullbnx	if you don't mind me asking, what are you using your box for?	02:27
Deeps	which one?	02:27
Deeps	heh	02:27
Deeps	most closely matched to you, i've got one routing my adsl connection	02:28
nullbnx	haha	02:28
Deeps	usb adsl modem, 2 10/100 ethernet nics	02:28
nullbnx	then you set a server behind that?	02:29
Deeps	no, that is the server	02:29
Deeps	server has the usb adsl modem plugged into it, so my wan ip presents itself on atm0	02:30
Deeps	my local lan is on eth0, and the flat downstairs is on eth1	02:30
Deeps	the box doesn't do much eles	02:31
nullbnx	icic, so what kinda servers are you running?	02:31
Centaur5	I know this is slightly off topic but I was wondering if anyone could tell me from your experience which hardware raid has been faster 5 or 10?	02:31
Deeps	mrtg graphing, simple web serving from there	02:31
Deeps	nullbnx: got a few boxes online that i used to host services on for friends and family	02:32
Deeps	currently sitting idle as i cant think of anything to do with them anymore	02:32
nullbnx	lol ic	02:33
nullbnx	well i appreciate the help	02:33
Deeps	no problem	02:34
* Kamping_Kaiser puts his ubuntu mirror on a diet		02:34
nullbnx	im thinking about putting my removable (usb) hard drive on the server and using samba to share it	02:34
Kamping_Kaiser	wonder how much room i'll have after this :D	02:34
Deeps	gl	02:34
nullbnx	any advice?	02:35
Deeps	guides on how to use samba are on ubuntu.com :)	02:35
nullbnx	haha i know how to do that	02:35
Deeps	most of the problems you'll encounter have already been resolved on ubuntuforums.org	02:35
nullbnx	i think ill remove all permissions other than read after mounting the hard drive (other than read) so i dont risk someone removing anything	02:35
nullbnx	hmmm oops, xorg crashed on me	02:39
nullbnx	do you need to restart before iptables become active?	02:40
Deeps	you never need to restart	02:41
Deeps	unless you've installed a new kernel (and even that has ways around it)	02:41
Deeps	you can either apply the rules manually, or you can apply the through iptables-restore as i explained earlier	02:42
nullbnx	so the new iptables should be good to go?	02:42
nullbnx	i applied the tables in the .conf, and thats it?	02:42
Deeps	in which conf?	02:42
nullbnx	iptables.conf	02:42
Deeps	there's an iptables.conf?	02:42
nullbnx	/etc/iptables.conf	02:43
Deeps	ok, you've created that yourself	02:43
nullbnx	yea, i was just following a guide	02:43
Deeps	ok, well then i'd recommend finishing that guide as to how to apply the rules	02:44
Deeps	if you've used the same format as would be generated by using iptables-save, you can apply the rules with iptables-restore < /etc/iptables.conf	02:44
nullbnx	i found what looks to be a pretty good guide, im going to read a whole bunch... i appreciate the help	02:47
Deeps	Good plan! A well written guide will do more for you than I can. :)	02:48
nullbnx	you checked out 8.04 yet?	02:48
Deeps	nope, i dont do well with beta software, barely have the patience for stuff that's considerred stable, heh	02:49
nullbnx	lol	02:50
nullbnx	im just wondering how secure 8.04 will be when it first comes out...	02:50
nullbnx	has me a little worried, i might upgrade my lappy but not the server	02:50
Kamping_Kaiser	not sure if this usb port is USB 1.1 or 2 :S. deleting 40gb at 40mb/s will take a while	02:51
Deeps	wouldn't worry about that kind of thing, security is rarely a concern with new releases, stability on the other hand...	02:51
Deeps	that and the upgrade process	02:51
Deeps	i kid, ubuntu's been through many upgrade cycles now, i'd expect the gutsy->hardy upgrade to be as smooth as a baby's bottom	02:52
Deeps	..within a month of release, at least, heh.	02:52
Kamping_Kaiser	heh	02:52
nullbnx	yea... do you have any other recommendations for the server security other than iptables n no root ssh	02:53
nullbnx	hah, well i was reading around, seems like they got it well setup bc so many brave souls tried the beta & upgrading	02:53
Deeps	dont run lots of random daemons that you dont need, if you do run them, have them bind only to interfaces that need them (ie, if it's only that machine, bind to localhost, if it's only for wireless clients, to ath0's ip, etc.)	02:54
Deeps	have a strong secure password, dont give shell access to anyone you cant trust until you've learnt to harden up the machine	02:55
Deeps	make sure you apt-get update + upgrade regularly	02:55
Deeps	dont forget to lock your machine when you're not at it ;)	02:55
Deeps	dont leave root shells lying around ;)	02:55
nullbnx	lol, i knew #2, 3, 4, 5	02:55
nullbnx	ill have to look into bind	02:55
Deeps	bind has 2 meanings	02:56
nullbnx	pretty easy to setup bind?	02:56
Deeps	bind, the application	02:56
lamont	ScottK: you around?	02:56
Deeps	or binding to interfaces, where an application picks what IPs to accept connections on	02:56
nullbnx	is there a quick and easy way to do that?	02:57
Deeps	eg, chances are your ssh server is listening for connections on 0.0.0.0:22 (and ::22 if you have ipv6 enabled), ie, all interfaces	02:57
ScottK	lamont: Yes.	02:57
lamont	I'm looking at the delta between 2.5.2-rc{1,2}....	02:57
Deeps	however, if you need, say, an snmp daemon, but only for local logging/monitoring purposes, you'd configure it to only listen on 127.0.0.1 (localhost)	02:57
ScottK	OK.	02:57
Deeps	each application has it's own configuration file	02:58
nullbnx	ic	02:58
Deeps	sudo netstat -anp will show you all applications that are running, sockets that they're using, sockets that they're listening on	02:58
lamont	if we pulled the warn_if_reject check back into 2.5.1-ubuntu, is it worth separating out the qmgr fix that's there as well?	02:58
lamont	my life would be easier if Wietse just released 2.5.2	02:59
ScottK	lamont: I don't know. I was aware of the warn if reject one because it was discussed on the ML.	02:59
* ScottK just got back into down and just downloaded 1749 new mails.		02:59
lamont	heh	02:59
nullbnx	deeps, well iv only got ssh and named available to all..., so prolly not a huge problem	03:01
ScottK	lamont: Without looking, I'd say upload the RC and we'll deal with it.	03:01
nullbnx	deeps, prolly don't need named to the outside either	03:01
ScottK	lamont: Then if it's not released before we do, just SRU to the final.	03:01
lamont	I really don't want an RC in the LTS...	03:01
lamont	the alternative is to upload a 2.5.1 that happens to have a few backported fixes.	03:02
lamont	bzr commit -m'[LJ, trivial] dist-upgrade'	03:02
lamont	my favorite commit ever	03:02
ScottK	Yeah, and then if 2.5.2 happens to make it, we go with it, if not, oh well.	03:02
* lamont will stare at the diff en toto, and then maybe poke you again in a bit.		03:03
ScottK	K	03:03
nullbnx	what would be the purpose of running a dns server on a home server?	03:08
=== thesyko is now known as lilsyko
Nafallo	nullbnx: learning	03:09
nullbnx	Nafallo, haha other than that...	03:09
Nafallo	nullbnx: and well... the "because I can" thing is usually a strong one as well :-)	03:10
nullbnx	Nafallo, haha, so no real use running named in a network that looks like this...	03:10
Nafallo	nullbnx: well... caching would be good I guess :-)	03:11
Nafallo	depends on if you use to go to the same addresses a ot.	03:11
Nafallo	lot even	03:11
nullbnx	[internet] <---> [dsl modem] <----> [ubunut server (home network) w/ named] <----> [wireless clients]	03:12
nullbnx	(named was installed during installation by accident and im debating shutting it down	03:12
nullbnx	)	03:12
Nafallo	:-P	03:13
Deeps	from my lan:	03:14
Deeps	chocha.truman.lan has address 192.168.1.49	03:14
Deeps	49.1.168.192.in-addr.arpa domain name pointer chocha.truman.lan.	03:14
Deeps	forward and reverse dns created automatically by dhcpd when it assigns the client's IP	03:14
Deeps	reverse dns is almost entirely asthetic, forward proves useful if i want to connect to another machine, e.g. one not using NetBIOS	03:14
Deeps	can connect to it's name rather than trying to work out it's ip	03:15
nullbnx	yea, so no real point...	03:15
nullbnx	i have dhcp set up also, and that takes care of everything internally	03:16
nullbnx	what does bind9 do?	03:18
Deeps	dns	03:20
Deeps	what you're calling named	03:20
Deeps	(that's the user it runs as )	03:20
nullbnx	ok thats what i thought, how do stop it from starting during boot?	03:21
nullbnx	i know i can stop it by /etc/init.d/bind9 stop	03:21
Deeps	update-rc.d	03:29
Deeps	update-rc.d -f bind9 remove	03:29
nullbnx_	can you setup wpa on a wap?	03:32
Deeps	i dont see why not	03:32
nullbnx_	hopefully this works...	03:33
AnthonyC	hello?	03:35
nullbnx_	heyt	03:36
AnthonyC	hello I am having trouble with an Ubuntu mysql server	03:36
AnthonyC	I am getting a "cannot connect to remote server" error upon attempting to connect remotely to it	03:37
AnthonyC	I can ping it and access it locally, but not remotely	03:37
AnthonyC	there is no firewaill between the 2 LAN'd machines	03:37
AnthonyC	any suggestions?	03:37
nullbnx_	do you connect through a cable/dsl modem/router?	03:38
AnthonyC	no, they are on a LAN	03:38
AnthonyC	TCP/IP, same subnet	03:38
AnthonyC	can ping each other	03:39
nullbnx_	and your sure that you dont have iptables (the default ubuntu firewall) blocking you?	03:39
AnthonyC	no, the only firewall is the NAT router itself	03:39
AnthonyC	between the servers and the internet	03:40
nullbnx_	hmmmm not to sure then....	03:40
nullbnx_	how would i be able to monitor what computers are connecting through my server?	03:43
AnthonyC	by IP? try netstat	03:44
AnthonyC	see the man page	03:44
AnthonyC	also try snort	03:44
AnthonyC	for logging	03:44
nullbnx_	thanks =)	03:47
nullbnx_	netstat by itself doesnt show it...	03:47
nullbnx_	my computer is a access points other pcs connect through, im trying to figure out which pcs (by ip) are connecting	03:48
lamont	ScottK: 214933: sounds like 'fix released' to me... :)	04:49
jords	can anyone recommend me a CLI download accelerator that allows you to use http basic authentication? Axel is great apart from that last point... can't find anything on how to to the authentication with it	04:57
sls	Hi, how can I grant sudo access to LDAP users?	05:07
sls	I have Ubuntu with Likewise, and can log in fine, bu must log in as local account to do admin activities. This is inconvenient.	05:08
sls	There must be a way to add some group to sudoers.	05:08
sls	.	05:08
sls	?	05:08
rhineheart_m	hello.. how to make ubuntu to fuse two separate networks?	06:29
=== SinTux is now known as Syntux
kraut	moin	08:08
n6rej	anyone had any experience with IRC proxys?	09:06
* Kamping_Kaiser waves		09:06
Kamping_Kaiser	no i havent, but hello	09:06
n6rej	lol hiya kamping	09:06
n6rej	yeah, i'm using U!	09:07
n6rej	I can't imagine that its that hard to setup... I hope	09:07
kraut	n6rej: in which case?	09:08
n6rej	I don't get though how connecting to the server via SSH would hep?	09:08
kraut	like a bouncer or a web-proxy?	09:08
n6rej	kraut: hiya... yeah bouncer	09:08
kraut	n6rej: google: irssi-proxy	09:08
n6rej	I want the folks on my lan to access IRC via the lan-server	09:08
kraut	then it's more a kind of a web-proxy	09:08
kraut	then you need squid	09:08
kraut	or any other http-proxy. squid isn't the best soloution	09:09
Kamping_Kaiser	irc over squid?	09:09
n6rej	kraut: whats the diff between irssi and squid?	09:09
kraut	Kamping_Kaiser: sure	09:09
n6rej	they will be using either chatzilla or some other irc client	09:09
kraut	Kamping_Kaiser: nearly every protocol is able to tunnel over a web-proxy	09:09
n6rej	kraut: its a mixed OS envirorment, NIX, OSX and PC	09:09
kraut	n6rej: squid is a http-proxy and irssi-proxy is a proxy module for your irssi client	09:09
kraut	n6rej: that's no problem, just have a look on squid	09:10
n6rej	kk, what is irssi client? IRC?	09:10
kraut	just google for it!	09:10
n6rej	k I will	09:10
Kamping_Kaiser	kraut, i'm not sure why you'd tunnel something like irc over squid though, its not like you can filter it (past the 'can cant' ACL levels)	09:10
kraut	Kamping_Kaiser: irc over http-proxy is like icq over http-proxy. it works!	09:11
n6rej	kraut: would they use a regular irc client if I use squid?	09:12
Kamping_Kaiser	kraut, hm	09:12
kraut	n6rej: yes, you just need to configure your irc-client to use the http-proxy	09:12
n6rej	kk	09:13
n6rej	!squid	09:13
ubotu	Sorry, I don't know anything about squid - try searching on http://ubotu.ubuntu-nl.org/factoids.cgi	09:13
kraut	and the http-proxy, in this case squid, need to allow irc from your internal lan.	09:13
kraut	it's called ACLs	09:13
n6rej	ah, ok	09:13
kraut	it must be described in their docu	09:13
kraut	EOD, need to work	09:13
n6rej	!irssi	09:27
ubotu	Irssi is a terminal based IRC client. See https://help.ubuntu.com/community/Irssi for help.	09:27
kraut	!squid	09:30
ubotu	Sorry, I don't know anything about squid - try searching on http://ubotu.ubuntu-nl.org/factoids.cgi	09:30
kraut	stupid bot	09:30
n6rej	kraut: lol yeah.	09:32
n6rej	kraut: i'm carefully looking everything over... I don't want to proxy EVERYTHING just IRC	09:32
kraut	that's also possible with squid	09:32
n6rej	and I don't want the IRC channel kept open all the time, only when called from the clients	09:33
kraut	just have a look on the ACLs	09:33
kraut	you could permit only IRC from your internal network with them and disallow anything else	09:33
kraut	anyhow, you'll run into the problem, that irc-servers will reject you, when you connect to often from the same ip	09:33
n6rej	kraut: no thats just it... I don't want it messing with anything but IRC	09:33
Kamping_Kaiser	ubotu, Squid is an industrial strength web proxy. Its flexability is matched only by the scaryness of its configuration file.	09:34
n6rej	kraut: I'm on a dynamic ip	09:34
kraut	n6rej: you could allow or dissallow everything with the ACLs of squid	09:34
n6rej	lol yeah I bet	09:34
kraut	n6rej: sure, but you've got only one IP for all of your users	09:34
n6rej	kraut: so squid will act like a firewall right?	09:34
kraut	no	09:34
kraut	or yes	09:34
n6rej	kraut: yeah, normally only 1 or 2 of us use the lan at a time	09:34
kraut	is a point of voiew	09:34
kraut	then it's ok	09:35
kraut	just read the squid-docu	09:35
n6rej	well I have a FW already, I don't want it mucking with any of that lol	09:35
n6rej	I am	09:35
kraut	it's not a firewall, it's a proxy	09:35
kraut	a firewall is more a concept and a proxy will fit into such a concept	09:35
n6rej	well, everything is nat'd and stealthed, even the server.	09:36
kraut	stealth is a mystery	09:36
n6rej	kraut: i love it... tech's try to access my system without permission and they get freaked cause they fall into a black hole.	09:37
n6rej	then they go uh... ah.. mmm... your computer is off	09:38
n6rej	LOL	09:38
kraut	...	09:38
kraut	as i say, stealth is a mystery	09:38
kraut	your tech's are to stupid to understand the mechanism	09:38
n6rej	kraut: yep. But it keeps me safe. :D	09:38
kraut	depends	09:38
n6rej	first they gotta get through the stealth, then the nat, then onto my systems	09:39
n6rej	by that time they've left a trail a mile long	09:39
kraut	there are still easier ways to get into your system	09:39
n6rej	?	09:39
n6rej	I used to run Engarde on my server... nothing gets through that without permission.	09:40
kraut	there is allways a way, believe me	09:40
n6rej	oh i'm sure.. well.. with Engarde their used to be a 100k reward if you could crack it... nobody ever has that I know of.	09:40
n6rej	most of the time access is through front-ends not the server stuff	09:41
n6rej	as far as I know they still use the NSA kernel	09:41
\sh	guys, did anyone tested latest ubuntu-server iso on vmware, with guided partitioning? grub is failing on vmware (i386) somehow for this...	09:49
_ruben	\sh: hardy beta jeos with guided worked fine on vmware for me	09:57
nijaba	\sh: which version of vmware are you talking about?	10:09
nijaba	\sh: server, ESX, workstation?	10:09
popey	a friend installed hardy ubuntu-server over a remote connection, and at the end it asked if he wanted to install additional software. He chose to install ssh, so it went off and got the ssh packages and installed them, however it also wanted to remove a load of other stuff, which apparently barfed grub up so he had to reinstall again and choose not to install ssh that time	10:15
popey	he says the cd he used was a beta one from march - would this be a known issue _or_ what package should he search for bugs in, or what package should he file bugs against?	10:16
soren	How did he install over a remote connection?	10:17
popey	HP ILO	10:17
soren	Ah.	10:17
soren	shrug	10:17
popey	Good answer	10:17
soren	Do you think you could get him to try with a recent CD?	10:17
popey	a daily?	10:18
popey	he used the most recent beta	10:18
soren	It's not inconceivable that after the installer did an apt-get update, it wanted to remove a stack of things due to new dependencies, conflicts, whatever.	10:18
soren	popey: Really? Has it been that long? Hm..	10:19
popey	he laughs and says that's pretty much exactly what happened, but would have been nice if grub had been left alone so that he at least had a bootable system :)	10:19
popey	17th march or thereabouts he said	10:19
popey	(the cd release)	10:19
popey	20080318.1 was the cd he used	10:21
soren	Hm... Well, if it's not too much trouble, if he could try with a daily that would be lovely.	10:22
popey	I'll ask him. Thanks for the quick response.	10:22
soren	Any time :)	10:23
\sh	nijaba, vmware-server v1.0.3	10:27
\sh	_ruben, I used the normal ubuntu-server iso, not the jeos ones	10:27
nijaba	\me needs to fix his server console to test this...	10:27
_ruben	\sh: ah, havent played with those .. only hardy jeos guided partitioning and gutsy server custom partitioning	10:31
\sh	_ruben, well, I'm redoing the installation now, and providing some logs for colin to investigate...	10:33
_ruben	ah	10:41
_ruben	hmm .. 48MB/s on linear reads from software raid10 (7200rpm sata)	10:48
n6rej	ok, i'm really stupid tonight :(	11:12
n6rej	I can't figure out how to add ctrlproxy to inetd	11:12
n6rej	the dev said ctrlproxy --inetd but that doesn't seem to do anything that I can see	11:13
PecisDarbs	n6rej: don't you have just add entry to inetd or xinetd.conf file?	11:45
n6rej	PecisDarbs: i thought so but its not starting :(	11:45
n6rej	PecisDarbs: http://pastebin.com/d2141524d	11:45
PecisDarbs	n6rej: you use inetd or xinetd?	11:47
n6rej	PecisDarbs: openbsd-inetd	11:47
PecisDarbs	try to debug it, see what is response when you poke that port	11:51
n6rej	PecisDarbs: how do you poke a port?	11:51
PecisDarbs	n6rej: just telnet localhost port_ctrlproxy_uses	11:54
n6rej	PecisDarbs: got it!... the silly port was declared by ircd	11:54
PecisDarbs	for example, usually admins test smtp server with telnet mail.example.com 25	11:54
PecisDarbs	see? :)	11:54
PecisDarbs	easy	11:55
n6rej	PecisDarbs: yeah,... so now I just have to figure out what its talkign to me about :D	11:55
\sh	_ruben, the bugger was an old iso file, which wasn't overwritten by wget ... grmpf...so nothing's wrong with -server iso phew	11:55
_ruben	\sh: ouch :p	11:57
PecisDarbs	anyone here how played with BIND DNSSec?	11:57
PecisDarbs	it's getting me mad, slowly :)	11:58
PecisDarbs	how/have/s	11:58
* n6rej would love to tie bind to a tree and shoot it!		11:58
PecisDarbs	why	11:58
PecisDarbs	he is such a nice fella :)	11:58
n6rej	hahah :P	11:58
n6rej	he gives me nightmares lol	11:58
PecisDarbs	seriously	11:58
PecisDarbs	what kind of? :)	11:58
n6rej	yeah	11:59
n6rej	OMG	11:59
n6rej	lol	11:59
n6rej	i'd rather program in VB then touch bind	11:59
PecisDarbs	usually nighmares with BIND == wrong syntax again, ups	11:59
PecisDarbs	smells like really spoiled relationship	11:59
n6rej	PecisDarbs: i think bind is the only process that has given me fits all my *nix life	11:59
n6rej	yep	11:59
n6rej	but I started with *nix 5.0 so bind was really nasty then	12:00
n6rej	no I take that back, there is one worse.... sendmail!	12:00
PecisDarbs	but it is a past, shouldn't we let it slip away? :)	12:00
n6rej	lol	12:00
n6rej	probably... but i'm an old dog	12:00
n6rej	right now my cage is really rattled lol	12:01
n6rej	stupid ctrlproxy stopped	12:01
n6rej	hmmmmmmmmm.... says no configuration found maybe i'd like to run one with --init lol	12:02
PecisDarbs	anybody nows why Bind on Hardy pratically misbehaves when using DNSSec?	13:16
ScottK	So marked -->[23:49] <lamont> ScottK: 214933: sounds like 'fix released' to me... :)	13:18
ScottK	PecisDarbs: You'll need to give some actual specifics about the problems you're seeing if you want help.	13:19
lamont	g'morning ScottK	13:19
PecisDarbs	dnssec-enable is enabled, ksk un zsk is created, deployed, zone signed and included in configuration, i also configured so dnssec stuff would log in seperate file	13:20
PecisDarbs	so far so good	13:20
PecisDarbs	but	13:20
PecisDarbs	whatever I do, log keeps silent, while normal.log which I created for rest of stuff in same dir grows and grows, so no permission involved, already checked it hundred times	13:21
ScottK	Heya lamont.	13:21
ScottK	PecisDarbs: What if you don't configure it to log to a separate file. Is it in the normal log?	13:22
PecisDarbs	ScottK: no difference, I tried to push dnssec stuff also in normal.log, but nohing appears there, other categories have lot of log material there	13:22
PecisDarbs	I set permissions to 777 while testing, checked out apparmor settings many times - nothing to cling on	13:24
sommer	PecisDarbs: it's probably because of apparmor, take a look at the logging section here: http://doc.ubuntu.com/ubuntu/serverguide/C/dns-troubleshooting.html	13:24
PecisDarbs	apparmor don't impact network, right?	13:25
sommer	PecisDarbs: at least inregards to log information to another file	13:25
sommer	if the bind apparmor profile is in enforce mode it will need to be configured for the new log file	13:25
PecisDarbs	I already did that	13:26
PecisDarbs	what one or two * means in apparmor conf?	13:27
PecisDarbs	non-recursive and recursive?	13:27
sommer	PecisDarbs: not sure what you mean by two '*'s ?	13:29
PecisDarbs	/etc/bind/* un /var/cache/bind/** for example	13:29
PecisDarbs	in /etc/apparmor.d/usr.sbin.named	13:30
sommer	PecisDarbs: mmm... mine doesn't have that, one sec while I update	13:31
PecisDarbs	ok	13:31
nijaba	\sh: I just installed the latest hardy server x86 iso on vmware server with no issue. Did you use some particular settings?	13:33
nijaba	\sh: and which iso did you use?	13:33
sommer	PecisDarbs: you might also check out this page: https://wiki.ubuntu.com/DebuggingApparmor	13:34
\sh	nijaba, as I said, it was a problem with an old iso image...because wget doesn't overwrite a file which exists already with the same nam	13:36
\sh	e	13:36
PecisDarbs	btw, it is possible that AppArmor blocks BIND DNSSec check? It would be kinda stupid, but....	13:36
nijaba	\sh: hmm... I did not see that. anyway, that force me to put my vmware server in a working state, so that time was not lost :)	13:37
sommer	PecisDarbs: I wouldn't think so, if it did there would be messages in /var/log/syslog, that should alert you	13:39
PecisDarbs	yep, I think so too	13:39
PecisDarbs	damn :(	13:39
PecisDarbs	ok, let's try aa-complain mode	13:40
mvo	what is your opnion about how the upgrader should deal with file overwrite problems? on the desktop we run with --force-overwrite. we don't do this on the server currently assuming the admin might want to know about these sorts of things. is that a sensible/valid decision?	14:16
ScottK	I'd say so.	14:17
ScottK	Is there a way to run the upgrader without force-overwrite?	14:18
mvo	that is the current default for the server upgrade (no --force-overwrite). there is currently no way to disable it on the desktop	14:20
mvo	but the logs will give you hints what packages are wrong	14:20
ScottK	For future consideration, you might want to have no --force-overwrite as the desktop default for upgrades to the development release. That's when we'd want such problems exposed.	14:22
mvo	hm, maybe some middle ground, like a way to collect the overwrite and offer to report bugs about them, but carry on with the upgade	14:24
ScottK	I think that's reasonable.	14:28
ScottK	My theory is that we should strive to make the upgrader un-needed. To the extent we can, apt-get dist-upgrade should just work.	14:29
ScottK	I don't think we'll get there, but it's a direction to head.	14:30
* delcoyote hi		14:30
mvo	ScottK: I agree, the less quirks code there is in there, the better.	14:42
ScottK	So making such problems more obvious to people who upgrade prior to release (or maybe prior to RC) is a good thing.	14:43
spiekey	hey	15:20
spiekey	i just plugged in my USB to Serial Adapter: http://pastebin.ca/987395	15:21
spiekey	i used to came up as /dev/ttyUSB1 on my other linux boxes	15:21
spiekey	any idea where i can find that device?	15:21
seisen	how are you hard drivers show as, ie hda, sda, etc...	15:27
spiekey	huh?	15:28
faulkes-	serial, not usb memory	15:28
faulkes-	spiekey: check the output of dmesg	15:28
faulkes-	tail /var/log/dmesg - it should usually show you if it registered the device and where	15:29
spiekey	faulkes-: have a look at my pastebin ;)	15:29
spiekey	ah! Stupid USB Hub! :P	15:36
=== JaxxMaxx__ is now known as JaxxMaxx_
=== JaxxMaxx__ is now known as JaxxMaxx_
=== JaxxMaxx__ is now known as JaxxMaxx_
ccvp	is the 8.04 thats essentially available now	15:58
ccvp	same thing that will be on the 8.04 iso's in 9 days? its essentially official, but just not by the "countdown logo" rofl	15:58
ccvp	?	16:00
ScottK	ccvp: Changes are still being uploaded, but the difference between today and the final are likely to be small, but significant at least for the packages that are changed.	16:00
=== JaxxMaxx__ is now known as JaxxMaxx_
ccvp	im wondering if its something to not	16:01
ccvp	really worry about	16:01
ccvp	so i dont waste putting 7.10 on a vmware now	16:01
ccvp	and then just rm'ing it later, to do 8.04	16:01
ScottK	I'm running 8.04 on several serves now and it's fine for me. No guarantees. No reason your couldn't upgrade the vmware image rather than redoing it, is there?	16:03
ccvp	hello, after installing vmware on XP, what type of settings do I need to do to vmwar workstatio n6, so when ubuntu is booted in it, it will yank a host address, off of our 192.168.1.0/24	16:05
ccvp	oops	16:05
jjesse	ccvp: if you need ubuntu to grab a network ip address it would have to be setup as NAT	16:13
ccvp	ok	16:13
=== mathiaz_ is now known as mathiaz
mathiaz	jcastro: Hi - I'm thinking about running an Server Team introduction session during the UbuntuOpenWeek - what about Tuesday at 19:00 UTC ?	16:33
jcastro	mathiaz: that sounds excellent	16:38
jcastro	mathiaz: anything else in mind?	16:38
jcastro	mathiaz: plenty of slots left, so we could do as many as you want.	16:38
mathiaz	jcastro: well - I though about doing something on virtualization	16:39
mathiaz	jcastro: and how to use virtualization to do development work	16:39
jcastro	that sounds great too	16:39
jcastro	I would love to see a ufw one as well, since it's new	16:39
mathiaz	jcastro: what's the target audience of the Ubuntu Open Week ?	16:39
mathiaz	jcastro: I'll update the wiki page with a session of the Server Team then	16:40
jcastro	mathiaz: same as always	16:40
jcastro	mathiaz: if you want to have multiple sessions of the same topic, you can do that as well	16:40
jcastro	there is plenty of room and the people who are only available during certain days are already scheduled	16:40
mathiaz	jcastro: right - and the always is ???	16:40
mathiaz	jcastro: in february, it was named Ubuntu Developer Week	16:41
mathiaz	jcastro: and it's Ubuntu Open Week	16:41
mathiaz	jcastro: so I guess it's targeted at potential contributor	16:41
jcastro	this is a normal open week, not a developer week	16:41
jcastro	right	16:41
jcastro	and users.	16:41
jcastro	developer week was specifically for potential developers, open week is for everyone on any topic	16:41
jcastro	so user-oriented sessions are welcome	16:42
zul	maybe how to setup kvm	16:55
jcastro	mathiaz: mind if I move you an hour later for the intro, celso would like to do PPAs right after 'merging packages'	16:58
mathiaz	jcastro: wfm	16:59
jcastro	ta	16:59
=== JaxxMaxx__ is now known as JaxxMaxx_
rlanham	I was in the middle of an apt-get upgrade and SSH timed out, is there way to view the status?	17:30
kraut	!raid	17:38
ubotu	Tips and tricks for RAID and LVM can be found on https://help.ubuntu.com/community/RaidConfigurationHowto and http://www.tldp.org/HOWTO/LVM-HOWTO - For software RAID, see https://help.ubuntu.com/community/FakeRaidHowto	17:38
kraut	!recover	17:38
ubotu	Some tools to recover lost data are listed and explained at https://help.ubuntu.com/community/DataRecovery - Recovering deleted files on !ext3 filesystems can be virtually impossible, although a method that might work in some cases is described at http://www.xs4all.nl/~carlo17/howto/undelete_ext3.html	17:38
kraut	!raidrecover	17:38
ubotu	Sorry, I don't know anything about raidrecover - try searching on http://ubotu.ubuntu-nl.org/factoids.cgi	17:38
kraut	grr	17:38
kraut	is there any quick howto, to recover a disk in a raid1 array?	17:38
kraut	!rebuild	17:40
ubotu	Sorry, I don't know anything about rebuild - try searching on http://ubotu.ubuntu-nl.org/factoids.cgi	17:40
kraut	nobody here or what!?	17:46
JaxxMaxx__	Gah, so bad, in here thrice now...	18:00
JaxxMaxx__	How would I go about using CVS to grab the latest source files for a particular package? trying to upgrade freeradius to 2.0.3 but the download .gz has something wrong in the changelog file, can't make a package with dpkg-buildpackage	18:01
JaxxMaxx__	the mailing list says the problem is in one line of the changelog file, and fixed in CVS	18:02
kraut	JaxxMaxx_: nobody will help you here, just feel safe and leave the channel...	18:04
sommer	mathiaz: is winbindd no longer part of the samba server tasksel?	18:06
nijaba	sommer: it was yesterday	18:06
nijaba	sommer: it is part of the iso check, and I found it when I check samba install	18:06
sommer	hrmm... I did pgrep winbindd, and didn't find it	18:07
nijaba	sommer: I belive I did the same. let me check, I still have the vm	18:07
sommer	woops, false alarm... I actaully typed pgrep windbindd	18:07
sommer	there's no such thing as windbind :)	18:08
nijaba	sommer: to tell you the truth, I did do the same mistake yesterday :)	18:08
sommer	the worste part is I mistyped it twice... doh	18:08
sommer	kraut: not sure if this helps, but it may point you in the right direction: http://currents.soest.hawaii.edu/docs/doc/ubuntu_docs/thirdparty_html/ubuntu_raid.html	18:11
* sommer has been meaning to learn software raid1 and friends		18:12
mathiaz	sommer: nijaba: FYI there are new isos to tests	18:13
nijaba	mathiaz: why? did we change anything?	18:13
sommer	mathiaz: does the iso.qu.u.c take a little longer to update?	18:13
JaxxMaxx__	that's a pretty negative attitude, kraut. having a tough problem that's stumping these folks?	18:13
mathiaz	apparently iso.q.u.c has been updated yet	18:14
mathiaz	nijaba: sommer see #u-d	18:14
mathiaz	nijaba: sommer I've just asked about this	18:14
sommer	mathiaz: ah, party	18:14
nijaba	mathiaz: can you summarize I was not on that channel and I think I missed the best part of it	18:16
nijaba	mathiaz: or /msg paste	18:16
sommer	I synced at about 8:45am, do you know when it was released?	18:16
sommer	or, actually I can check the md5	18:17
mathiaz	nijaba: slangasek is going to update iso.qa.u.c	18:17
mathiaz	nijaba: the isos were rebuilt earlier today and iso.qa.u.c wasn't updated	18:17
nijaba	mathiaz: ok, thanks. Updating my isos	18:19
sommer	mathiaz: cool, I've been testing 20080416, but logged my tests under 20080415	18:19
JaxxMaxx__	blargh. hurray for dpkg-buildpackage. this thing has dozens of dependancies...	18:35
Lucutious	I am trying to set up a new Ubuntu server to act as a webserver, and I'll be using it in conjunction with dyndns. Is there anyone who is able to help me set up the mailserver, or perhaps point me to a link that will help?	18:39
sommer	Lucutious: postfix is pretty easy to setup, here's a link to the server guide: http://doc.ubuntu.com/ubuntu/serverguide/C/email-services.html	18:42
JaxxMaxx__	how do I get screen to show me the scrollback?	18:47
pr0le	pg-up?	18:49
marcreichelt	hi there!	18:53
marcreichelt	I want to use Apache2 under Ubuntu with IPv6	18:54
marcreichelt	e.g. I just want to access localhost via http://[::1]/	18:54
marcreichelt	how may I do that under Ubuntu?	18:54
marcreichelt	it seems to be deactivated :-(	18:54
blue-frog_	have you installed apache?	19:00
marcreichelt	yes	19:00
marcreichelt	;)	19:00
marcreichelt	http://localhost/ is working normally	19:00
marcreichelt	but http://[::1]/ not	19:00
blue-frog_	how's your /etc/hosts ?	19:01
marcreichelt	just fine	19:01
marcreichelt	one line for 127.0.0.1 localhost	19:01
blue-frog_	look at your logs then. it is working	19:02
marcreichelt	ping6 ip6-localhost does work normally	19:02
marcreichelt	hmm, no unnormal log entries	19:04
marcreichelt	wget can't connect, too	19:04
blue-frog_	you have somethin with http://localhost?	19:05
marcreichelt	yes	19:05
blue-frog_	what have you doneafter installing apache then?	19:05
marcreichelt	oh, moment - Apache2 not running ;)	19:05
marcreichelt	but the behaviour was as before	19:06
marcreichelt	hmm - it runs now	19:07
marcreichelt	seems my server was down all the time I tested	19:07
marcreichelt	amazing	19:07
marcreichelt	at least, thanks for your attention ;)	19:07
marcreichelt	ok, I have detected the problem now	19:08
marcreichelt	http://ip6-localhost/ does work, but http://[::1]/ does not	19:09
blue-frog_	not logical	19:09
blue-frog_	is it still running?	19:10
marcreichelt	yes	19:10
blue-frog_	what's the entry in E/tc/hosts for ::1 ?	19:10
marcreichelt	::1 ip6-localhost ip6-loopback	19:11
marcreichelt	funnily, a "ping ip6-loopback" does work	19:11
blue-frog_	exactly? no * in fron or else?	19:11
marcreichelt	no	19:11
marcreichelt	and "ping6 ip6-localhost" too	19:11
blue-frog_	what's the error message for http://[::1)	19:13
Lucutious	Ok, I'm feeling kind of stupid. This is my first time using any type of OS other than windows, but I catch on fairly quickly. I installed ubuntu server, and now I come up with a prompt. What I was told, is that I could remotely administer the system, like from my other computer, to install things such as SMF or other stuff	19:13
Lucutious	Is there anyone that can assist a newbie? I've been reading the documentation, but I fear either I'm making it too hard, or it's out of my grasp.	19:13
blue-frog_	Lucutious: SMF? you can ssh into your server	19:14
Lucutious	and that's from a telnet connection, or do I need a seperate ssh application?	19:14
marcreichelt	blue-frog_: using "wget http://[::1]" the output is "Connection refused."	19:14
blue-frog_	Lucutious: the other waty is to install the desktop and control it vian vnc.	19:14
blue-frog_	http://[::1] does what in firefox?	19:15
marcreichelt	connection refused ;)	19:15
Lucutious	a desktop sure would be nice, I wasn't quite prepared for a command prompt type system, thought it would at least have some sort of gui	19:15
blue-frog_	have you fiddled with the apache conf?	19:15
marcreichelt	maybe a bit, yes	19:16
marcreichelt	I have some VirtualHosts	19:16
marcreichelt	the funny thing is:	19:16
blue-frog_	Lucutious: command prompt is command prompt, if your computer has an internet connection, then sudo apt-get install ubuntu-desktop will get you GUI	19:17
=== mvo_ is now known as mvo
marcreichelt	if I insert "Listen [::1]:80" into /etc/apache2/ports.conf and restart Apache2, I get the following error:	19:17
marcreichelt	Syntax error on line 1 of /etc/apache2/ports.conf:	19:18
marcreichelt	Listen setup failed	19:18
marcreichelt	is this normal?	19:19
marcreichelt	I am downloading Ubuntu 7.10 server to test it in an emulator	19:24
* faulkes- grumbles at the igb driver		19:25
faulkes-	anyone play with the quad-ethernet intel cards before?	19:32
faulkes-	igb module	19:32
Lucutious	blue-frog_: Sorry for the delay, had to step away. I issued that command you gave me, but it tells me that I'm not in the sudoers file, and that the incident is being reported.	19:35
maxownz	hey all	19:37
maxownz	is there a way to disable getting updates or scanning the mirror during installation?	19:37
blue-frog_	Lucutious: what user have you created during installation?	19:38
Lucutious	the username is mike	19:39
blue-frog_	maxownz: if you presse escape you may have the entire installation menu and you may ve able to skip update/scanning that way	19:39
blue-frog_	Lucutious: is the one you are logged wiht now?	19:40
Lucutious	Yes.	19:40
blue-frog_	well if you are not in the sudoers, ther's nothing you can do	19:40
Lucutious	at least, I think so	19:40
blue-frog_	do you remember if you were asked for a root password then ?	19:41
Lucutious	I booted the machine and it came up with a login prompt. I used mike and the password I created, and this is where I'm at	19:41
Lucutious	Ohh yes, I have a root password as well - can you tell me how to log off mike so I can try as root?	19:41
blue-frog_	su	19:42
blue-frog_	lucutious you sure you have installed ubuntu?	19:42
maxownz	blue-frog_: isn't there a way to disable my network card so it'll skip it altogether?	19:44
Lucutious	my first answer is yes I'm sure but now I'm not so sure. Liek I said it's my first time doing anything other than windows. I got the 7.10 somethign server version, burned the iso, checkeed the md3 checksum, and booted and ran the setup	19:44
blue-frog_	marcreichelt: it must be something you changed when doing your virtual hosts. I have a default apache installation and it connects to [::1]	19:44
Lucutious	it rebooted, and this is where I'm at. I'm going to reboot so I'm at a clear screen, it's entirely possible i fubar'd something	19:44
marcreichelt	hmm, okay	19:45
blue-frog_	maxownz: not sure but I think that when I tried without a card it tried as well.	19:45
blue-frog_	Lucutious: no need to reboot, you 're not in windows	19:46
Lucutious	Ok	19:46
blue-frog_	type su and press enter	19:46
Lucutious	and by the way, i sincerely appreciate your help blue-frog_	19:46
blue-frog_	enter your root password	19:46
Lucutious	Hmm says my password is incorrect. I bet I somehow mis-typed it when i installed	19:47
blue-frog_	type groups	19:47
Lucutious	says:	19:48
Lucutious	mike adm dialout cdrom floppy audio dip video plugdev scanner lpadmin	19:48
blue-frog_	Lucutious: somehow your install is borched	19:49
Lucutious	I'd bet a dollar it was user error :-)	19:49
Lucutious	ok, so let me ask this... Do i need to use the server version, or do you thing the regular version would work?	19:50
blue-frog_	use the regular version and then install whatever server program you want	19:50
Lucutious	does the regular version come with the LAMP set?	19:51
blue-frog_	no	19:51
blue-frog_	but it is nothing to install	19:51
Lucutious	buggar, so I'll have to install them individually	19:51
Lucutious	nothing for you, learning process for me :-) - but	19:51
Lucutious	that's a good thing	19:51
blue-frog_	Lucutious: it's as easy as your abc	19:52
blue-frog_	with ubuntu gui (gnome desktop) comes a GUI apps installer programm (synaptic)	19:52
Lucutious	Awesome, I'm going to burn that regular version now so I can get the install going. You mind if I stay here and ask you if I run into snags that I can't fix? (I really do use google and other search tools before asking)	19:53
blue-frog_	one thing before you move an ear	19:53
Lucutious	Shoot	19:53
blue-frog_	do you have internet connection on this p right now?	19:53
blue-frog_	pc	19:53
Lucutious	yes	19:54
blue-frog_	reboot this pc in recovery mode ( I assume your are talking from another pc?	19:54
Lucutious	it's behind a router right now though, dunno if you'll be able to get in	19:54
Lucutious	ya	19:54
blue-frog_	I will not get in	19:54
blue-frog_	you will work	19:54
maxownz	if i did ALT + CTL + F2 during the installation and got this shell how do i get out of it and back to the GUI installer?	19:54
blue-frog_	F1?	19:55
maxownz	i type EXIT and then it just shoots me back to "Please press Enter to activate this console"	19:55
blue-frog_	or F4 try them all up to 7	19:55
maxownz	i want to deactivate this console	19:55
Lucutious	hmm now it has me logged in as root	19:55
mvo	mathiaz: will you chair the server meeting tonight? I was wondering if I can add a agenda item. the IS team brought it up, I wonder if we should run the upgrader with --force-overwrite in server mode or not. currently we don't and the upgrade will fail on file-overwrite problems. on the desktop we do run with --force-overwrite	19:56
blue-frog_	dunno if you have network up Lucutious. try ping grc.com	19:56
Lucutious	got a good ping	19:56
blue-frog_	good	19:57
sommer	maxownz: hit alt+f1 to go back to the installer	19:57
maxownz	sommer: THANK YOU	19:57
Lucutious	lol how do you stop it - again, used to the windows 4-pings thing	19:57
sommer	maxownz: np	19:57
blue-frog_	Lucutious: cat /etc/sudoers	19:57
maxownz	i'm trying to no scan the mirrors	19:57
maxownz	takes forever since i don't have an internet connection	19:57
maxownz	i was trying to open the shell and turn off my etho1	19:57
blue-frog_	ctrl c Lucutious	19:58
Lucutious	blue-frog_: Thanks. Ok I did that, I believe it spit out the contents of the sudoers file	19:59
blue-frog_	juste the end	19:59
Lucutious	down in the user privledge specification, mike is not listed - only root	19:59
blue-frog_	do you have %admin ALL...	19:59
Lucutious	no	19:59
Lucutious	says	19:59
Lucutious	root ALL=(ALL) ALL	19:59
blue-frog_	yes somehow your install is weird. nevermind we'll fix it	20:00
Lucutious	and that's it	20:00
blue-frog_	Lucutious: onward to install a desktop	20:00
blue-frog_	apt-get install ubuntu-desktop	20:00
Lucutious	ok, following those prompts now	20:01
marcreichelt	blue-frog_: can you copy me the default apache.conf and the default VirtualHost configuration please?	20:02
blue-frog_	marcreichelt: /usr/share/doc/apache2.2-common/examples/apache2/apache2.conf.gz	20:04
marcreichelt	oh, thanks :)	20:05
marcreichelt	hmm, this is not the default configuration	20:07
mathiaz	mvo: I will chair the meeting - please add your item to https://wiki.ubuntu.com/ServerTeam/Meeting and I'll make sure we discuss it :)	20:08
blue-frog_	marcreichelt: are yuo using this server in prod right now§?	20:09
marcreichelt	no ;)	20:10
marcreichelt	but my real server (on Debian) works with IPv6	20:10
marcreichelt	I mean locally	20:10
blue-frog_	marcreichelt: remove the conf files and sudo apt-get install --reinstall apache2	20:11
mvo	mathiaz: great, thanks	20:11
mvo	mathiaz: added	20:11
marcreichelt	okay	20:11
blue-frog_	Lucutious: where you at?	20:12
Lucutious	blue-frog_it's downloading still	20:15
Lucutious	Says 15m left	20:15
blue-frog_	ctrl z	20:15
blue-frog_	bg %1	20:16
blue-frog_	like this it is continuing in the background	20:16
marcreichelt	blue-frog_: this does not work	20:16
blue-frog_	marcreichelt: what does not work?	20:17
marcreichelt	the config files are not reinstalled	20:17
blue-frog_	marcreichelt: sudo apt-get remove --purge apache2	20:17
blue-frog_	marcreichelt: then sudo apt-get install apache2	20:17
blue-frog_	Lucutious: you have the prompt now?	20:18
marcreichelt	nothing ;)	20:18
marcreichelt	apache2 is a meta package	20:18
marcreichelt	maybe apache2-common	20:19
blue-frog_	marcreichelt: oh yes ok common and/or prefork/mpmworker	20:19
Lucutious	blue-frog_ no, it went back to downloading, but now it only says 2 minutes kleft	20:20
Lucutious	left*	20:20
blue-frog_	marcreichelt: dpkg -l apa* will tell you what is installed	20:20
Lucutious	bandwith really fluctuating from 200k to 2 meg or so	20:21
blue-frog_	Lucutious: ctrl Z then bg %1 went back to downloading ?	20:21
Lucutious	yes. I'll try again	20:22
Lucutious	wait - it's donw downloading lol	20:22
Lucutious	preconfiguring packages	20:22
Lucutious	i think it's just sitting, no prompt	20:23
blue-frog_	Lucutious: yes just tried myself, it does not what it should do with apt-get	20:24
blue-frog_	ctrl alt F2 gives you another prompt then?	20:24
Lucutious	no ctrl alt f2 cleared the screen	20:25
blue-frog_	it's another console	20:25
Lucutious	ohh	20:26
blue-frog_	getent group \| grep admin	20:26
Lucutious	just a blinking cursor ><	20:26
Lucutious	typed it, pressed enter, still just blinking	20:26
blue-frog_	addgroup -system admin	20:26
marcreichelt	blue-frog_: no, connection refused	20:27
marcreichelt	it's not the Apache :-/	20:27
blue-frog_	marcreichelt: sorry really don't knw what to do for you	20:27
marcreichelt	:-(	20:27
Lucutious	blue-frog_ I've typed what you said, but ever since the ctrl alt f2 it's just a blinking curser, blank screen	20:28
blue-frog_	Lucutious: addgroup -system admin done? (adding a system group -id lower than 1000- named admin)	20:28
blue-frog_	ok good	20:28
Lucutious	Yes I typed that, but like I said it's just a blinbking curser on a blank screen	20:29
blue-frog_	usermod -aG admin mike (adding mike to newly created admin group)	20:29
Lucutious	ok typed that	20:30
blue-frog_	visudo	20:30
Lucutious	can't see what I'm typing either	20:30
blue-frog_	now at the end of that file, you will add	20:30
Lucutious	blue-frog_ I can't see anything buddy	20:31
blue-frog_	what do you mean can't see?	20:31
Lucutious	It's just a blank screen, with blinking curser in upper left hand side. I type, and it changes nothing.	20:31
Lucutious	it's been that way ever since you had me ctrl alt f2	20:31
blue-frog_	ah	20:31
blue-frog_	thought you had a prompt, not only ther cursor	20:32
Lucutious	nope, just blinking cursor	20:32
blue-frog_	ctrl alt F then, we will wait	20:32
blue-frog_	F1	20:32
Lucutious	ok	20:33
* faulkes- slams head against desk		20:37
marcreichelt	blue-frog_: thanks for your help	20:41
blue-frog_	ty but I did nothing in the end.	20:42
marcreichelt	I think the problem will be gone when I install Kubuntu 8.04 ;)	20:43
blue-frog_	marcreichelt: ah possibly as I am talking to you from hardy. didn't think about that before you mention it	20:44
Lucutious	Ok blue-frog_ it says [1] STOPPED	20:44
Lucutious	and I'm back to a command prompt	20:44
blue-frog_	Lucutious: ok try bg %1	20:44
Lucutious	[1] STOPPED apt-get install ubuntu-desktop	20:46
Lucutious	i assume that means it's done installing	20:47
blue-frog_	no	20:47
blue-frog_	we interrupted the process with ctrl z	20:47
blue-frog_	bg %1 is supposed to make it run in background	20:47
blue-frog_	but apparently apt-get is a bit weird with all that	20:48
blue-frog_	type jobs	20:48
Lucutious	ahh	20:48
Lucutious	[1] STOPPED apt-get install ubuntu-desktop	20:48
blue-frog_	type bg (alone)	20:49
Lucutious	[1]+ apt-get install ubuntu-desktop &	20:50
Lucutious	[1]+ STOPPED apt-get install ubuntu-desktop	20:50
blue-frog_	fg	20:50
blue-frog_	to try to make it run in foreground	20:51
Lucutious	now it's spamming my screen	20:51
blue-frog_	good	20:51
Lucutious	I suppose it's finishing installing	20:51
blue-frog_	we're going to let it go like that then, try ctrl alt F2, you might have a decent prompt now	20:51
Lucutious	kk	20:52
Lucutious	nope, blank screen blinking cursor again	20:52
blue-frog_	well might be ony one tty in recovery mode.. going to try with a virtual machine to see	20:52
blue-frog_	ctrl alt F1 then	20:53
Lucutious	kk	20:53
blue-frog_	Lucutious: sorry about that, yes indeed only one tty in recovery mode	20:54
faulkes-	hrmm, wednesday	21:03
faulkes-	meeting in an hour?	21:04
mathiaz	faulkes-: yes	21:05
Lucutious	blue-frog_: My friend, I need to thank you for all your help thus far. It seems it's still installing, and my son just got home and informed me he lost his glasses. Gotta love 6-year olds, I have to go look for them	21:06
Lucutious	I'll probably return, but again, Thank you for everything	21:06
=== blue-frog__ is now known as blue-frog
blue-frog	Lucutious: http://pastebin.com/d1d24408d	21:07
faulkes-	mathiaz: guess I better send my alcohol engineer out for "office supplies" then	21:07
blue-frog	Lucutious: the installation of ubuntu-desktop might as well have created the admin group by the way	21:08
Lucutious	Awesome, I'll keep that up for when I return. I'll re-post so you can see, think your client was ghosted.	21:08
Lucutious	blue-frog_: My friend, I need to thank you for all your help thus far. It seems it's still installing, and my son just got home and informed me he lost his glasses. Gotta love 6-year olds, I have to go look for them	21:08
Lucutious	I'll probably return, but again, Thank you for everything	21:08
blue-frog	will be in bed by then :)	21:09
blue-frog	Lucutious: if in trouble, download 8.04 alternate and install from there	21:10
Lucutious	blue-frog - setup finished, back at command prompt - how do I start the gui then?	21:12
Lucutious	(wife still getting dressed)	21:12
blue-frog	reboot to be on the safe side (eventhough init 2 should do the trick)	21:12
nxvl	does anyone is specting problems with gmail's imap?	21:13
blue-frog	Lucutious: btw re boot is reboot on command line :)	21:13
balzac	hello	21:25
nullbnx	ok so im trying to setup my wap (which works perfectly) to have a wep encryption... im trying to use wpa, but i cant seem to get my /etc/network/interfaces configed correctly	22:28
nullbnx	anyone on with any experience?	22:29
balzac	hello	22:37
Steven	hi, i've access to a server via ssh, i needed php 5.2.3 and since it was running edgy i upgraded it to gutsy, tre upgrade process complained about update-grub missing, so i installed grub package	22:43
sergevn	Steven: how did you upgrade to gutsy? wich commands?	22:44
Steven	(the machine was using lilo as bootloader), then i installed grub, and now it isn't booting anymore	22:44
sergevn	Steven: also you need to go edgy>feisty>gutsy, noet edgy>gutsy	22:44
Steven	something similar to do-upgrade-...	22:44
sergevn	apt-get upgrade	22:44
sergevn	or	22:44
Steven	sergevn: yes i've done two updates	22:44
sergevn	apt-get dist-upgrade	22:45
sergevn	major difference	22:45
Steven	neither	22:45
balzac	Steven: you need to get back to where you can boot your machine	22:45
balzac	that's more of a general #ubuntu problem than one specific to #ubuntu-server	22:46
balzac	there are lots more people in #ubuntu than here	22:46
Steven	balzac: wait a sec :P	22:46
dlee	hi, what's the best irc server app?	22:46
dlee	i see ircd, ircd-hybrid, ircru, and bahamut	22:46
Steven	upgraded with sudo do-release-upgrade, the server does not boot anymore, but i can boot with a rescue cd the housing company provide, now i need to install lilo again.. can you help me?	22:47
balzac	I'm a newbie	22:47
sergevn	dlee: irssi or xchat	22:47
balzac	but you'll find more action in #ubuntu	22:47
dlee	sergevn: server, not client	22:48
sergevn	dlee: sorry, it's late :)	22:48
balzac	I'd use whatever freenode is using	22:48
dlee	balzac: how do you find out?	22:48
balzac	well, I suppose each server is different, correct?	22:48
balzac	lemme google	22:48
blueyed	Is somebody using OpenVZ and agrees on bug 218411?	22:48
ubotu	Launchpad bug 218411 in vzctl "DEF_OSTEMPLATE should be Ubuntu" [Wishlist,New] https://launchpad.net/bugs/218411	22:48
balzac	http://www.ircd-hybrid.org/ <--- most popular irc server on efnet...	22:50
balzac	http://freenode.net/hyperion.shtml	22:51
balzac	dlee, that should be it right there	22:52
dlee	balzac: thanks	22:52
balzac	you can find dancer-ircd in the ubuntu repositories	22:53
balzac	hyperion is forked from that, so it's probably close enough	22:53
balzac	i'm using hardy heron, btw	22:53
balzac	not sure about your version and repositories	22:53
Steven	sergevn: can you help me, please?	22:54
dlee	balzac: i'll be using hardy or gutsy	22:55
balzac	well, you can see dancer is forked from hybrid, hyperion is forked from dancer	22:55
balzac	not sure which one is really most widely used but freenode is hyperion	22:55
balzac	I'm trying to figure out ebox	22:57
balzac	It's a struggle so far	22:57
dlee	balzac: what's ebox?	22:57
balzac	ebox is the new interface for networking services	22:58
balzac	it should be an integral part of ubuntu server soon	22:58
balzac	you can configure squid and firewall rules	22:58
balzac	http://ebox-platform.com/installation-guide/	22:58
balzac	looks good for securing an ubuntu server	22:59
sergevn	Steven: yeah sure	22:59
sergevn	Steven: lets switch to #ubuntu	22:59
balzac	but networking can't be simplified very much. it's a struggle because I'm not a networking guy.	22:59
balzac	there's no action at all in #ebox or #squid	23:00
balzac	ubuntu-server is pretty quiet	23:00
owh	balzac: That would be because we were all just in a meeting :)	23:01
balzac	what was on the agenda?	23:01
owh	balzac: https://wiki.ubuntu.com/ServerTeam/Meeting	23:02
balzac	hopefully, making things easier for a newb	23:02
owh	balzac: Actually we were making sure you have a distribution to boot in a fortnight or so :)	23:02
balzac	cool	23:02
Cahan	is there a seperate bug tracker for server variant or should I just post it in the main bug tracker?	23:05
owh	Cahan: Post it in the normal bug tracker.	23:14
Cahan	kk	23:15
Lucutious	Is there any voice -chat help available for me to get this box running?	23:30
Lucutious	Even if I have to pay	23:30
Lucutious	Like phone, ventrilo, something	23:30
nealmcb	Lucutious: both free and paid help are described at http://www.ubuntu.com/support	23:33
user1	using linux,i have some friends sharing my internet. i have 30k vacant and 3 friends. is there a way that i define the combine band limit for 3 users combined as 30 k . not 10k for each. that way if 2 are online they can share 15k each. and if all 3 are online. they will be spreaded 10k each in managed behaviour. any way.i have a dlink switch. and in futer i may take a fourth one and give him a dedicated 20k limit alone. so i need control?c@	23:41
nealmcb	Lucutious: see also ebox	23:42
nealmcb	!ebox	23:42
ubotu	ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See the plans for Hardy at https://wiki.ubuntu.com/EboxSpec	23:42
nealmcb	Lucutious: though you would want to use that on hardy (now in beta) not gutsy...	23:43
Lucutious	!ebox	23:47
ubotu	ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See the plans for Hardy at https://wiki.ubuntu.com/EboxSpec	23:47
user1	using linux,i have some friends sharing my internet. i have 30k vacant and 3 friends. is there a way that i define the combine band limit for 3 users combined as 30 k . not 10k for each. that way if 2 are online they can share 15k each. and if all 3 are online. they will be spreaded 10k each in managed behaviour. any way.i have a dlink switch. and in futer i may take a fourth one and give him a dedicated 20k limit alone. so i need control?	23:51
nealmcb	user1: sounds more like a question for the maker of your dlink switch, since any bandwidth shaping would be done there, unless you want to make a linux box into a switch	23:55
Tuv0k	I told him the same thing in ubntu+1	23:55
user1	nealmcb ya. but is it possible in linux?	23:56
nealmcb	everything is possible in linux :-) but you'd want to find the right channel - this is for servers, not networks	23:56
Deeps	nealmcb: ubuntu servers can be used as primitive network routers too, y'know ;-)	23:57
user1	nealmcb Tuv0k by wondershaper or ebox. or any other, what i have in mind is 30k for 3 users. if all are online 10k is given to each. if 2 are online 15k to each. 1 then 30k to him. and other 4th user gets 20k seperat dedi bandwidth.. how can i do it?	23:57
Tuv0k	!spam	23:57
ubotu	Unsure how you should behave on this channel? See (in a private message with the bot, /msg ubotu <keyword>): !AskTheBot, !CoC, !Guidelines, !Offtopic, !Language, !Attitude, !Repeat, !Enter, !Paste, !NickSpam, !PM, !English - And most importantly, use common sense...	23:57
Deeps	user1: You'll want to read through the information in http://lartc.org/	23:57
Deeps	user1: You wont find anyone in here willing to write your configuration for you, but if you read through the information available at that site, and understand how it works, you'll be able to write your own rules in no time. :-)	23:58
Tuv0k	great link	23:58

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!