| === WaVeR` is now known as _BOFH_ | ||
| === gouki_ is now known as gouki | ||
| AtomicSpark | oh hi | 02:18 |
|---|---|---|
| jjesse | oh hi back | 02:18 |
| AtomicSpark | did the ubuntu update server project ever get started? | 02:18 |
| jjesse | dont' knwo | 02:20 |
| AtomicSpark | hmm. well if one had many ubuntu clients, would be nice to have them point to your local server. like how microsoft does wsus or whatever. | 02:20 |
| jjesse | agreed, but i wouldn't be the best person to help out | 02:20 |
| AtomicSpark | well ubuntu is working on network policies "tool kit". so many it will get better in time. | 02:22 |
| AtomicSpark | maybe the new policies plus openldap server, it could be a good replacement for AD. | 02:24 |
| === Shkodra is now known as ghost | ||
| === ghost is now known as ShKoDrAnI | ||
| === ShKoDrAnI is now known as ghost | ||
| === ghost is now known as ShKoDrAnI | ||
| Kamping_Kaiser | AtomicSpark, past an httpd server + local mirror, what would you expect the update server to do? | 03:03 |
| AtomicSpark | well i'm just seeing if i can cut down on bandwidth. other then that a server that could know what the clients need and update them (not just security fixes) would be nice. | 03:08 |
| AtomicSpark | i could just write a cron script to update the computer, but that would tell me if/when/how it was updated. | 03:09 |
| === lamont` is now known as lamont | ||
| AtomicSpark | !troll | 04:40 |
| ubottu | Factoid troll not found | 04:40 |
| AtomicSpark | :| | 04:40 |
| reya276 | anyone in? | 06:34 |
| Kamping_Kaiser | !anyone | 06:35 |
| ubottu | A large amount of the first questions asked in this channel start with "Does anyone/anybody..." Why not ask your next question (the real one) and find out? | 06:35 |
| reya276 | Kamping_Kaiser: having an issue with postfix | 06:36 |
| reya276 | I upgraded to hardy and postfix is not working | 06:36 |
| reya276 | so I set out to reinstalling and reconfiguring following this guide https://help.ubuntu.com/community/PostfixBasicSetupHowto but things are not working like it did before | 06:37 |
| Kamping_Kaiser | what does "Not working" mean? | 06:38 |
| reya276 | meaning that when I create a user by doing sudo useradd -m -s /bin/bash <username> it does not at the Maildir since I instructed postfix to do so | 06:40 |
| Kamping_Kaiser | any errors? | 06:41 |
| * Kamping_Kaiser didnt realise postfix made maildirs | 06:41 | |
| * Kamping_Kaiser afk. | 06:41 | |
| pteague | ok, i don't think this is good - "The ext3 file system creation in partition #2 of SCSI1 (0,0,0) (sda) failed." | 08:39 |
| uvirtbot | New bug: #230750 in openssh (main) "package openssh-server 1:4.7p1-8ubuntu1.1 failed to install/upgrade: Unterprozess pre-installation script gab den Fehlerwert 255 zurück (dup-of: 230003)" [Undecided,New] https://launchpad.net/bugs/230750 | 09:31 |
| mathiaz | zul: re bug 176015 - have you looked into the debian package ? | 09:35 |
| uvirtbot | Launchpad bug 176015 in quagga "BGP MD5 support regression" [Undecided,Confirmed] https://launchpad.net/bugs/176015 | 09:35 |
| mathiaz | zul: I've synced the package for intrepid, and there is an updated patch in Debian. | 09:36 |
| mathiaz | zul: it may be worth looking into the debian package. | 09:36 |
| zul | mathiaz: no I took the patch from the mailing list in the bug report but I can do that as well | 09:39 |
| kraut | moin | 09:50 |
| mathiaz | zul: It's probably the same patch. | 09:55 |
| * delcoyote hi | 09:55 | |
| zul | mathiaz: basically it is | 09:55 |
| zul | I just have to update the bug report with the new patch | 09:56 |
| uvirtbot | New bug: #231212 in nut (main) "UPS services does not autostart during boot." [Undecided,Invalid] https://launchpad.net/bugs/231212 | 10:46 |
| chalcedony | HELP! I upgraded from Feisty to Gutsy with "do-release-upgrade", it finished Gutsy and restarted, I got the gui screen and tried to update aptitude, 0 % upgraded etc. I tried running "do-release-upgrade" but got an error: System Error: E: Unable to correct problems, you have held broken packages. I told someone that I could not open a file to paste the error into. He misunderstood me, he told me to do control+alt+f(1-9) and coltrol+alt+f | 12:10 |
| Kamping_Kaiser | GUI? doesnt sound like a server question to me | 12:15 |
| chalcedony | Kamping_Kaiser i'd ask the president if he were here. | 12:19 |
| * Kamping_Kaiser doesnt get it | 12:21 | |
| royalshelter | hi, there, can anyone help me with my wireless settings? I have installed gnome-core, but how can I get to internet via wireless? | 12:33 |
| royalshelter | hi | 12:36 |
| soren | royalshelter: Ask in #ubuntu. | 12:51 |
| Kamping_Kaiser | is my ubuntu mirror lacking Packages.gz because ubuntu no longer uses it? | 13:12 |
| Kamping_Kaiser | or is my mirror bust? | 13:12 |
| Kamping_Kaiser | looks like my mirror. wonder if its a debmirror option... hm. | 13:14 |
| === c1|freaky is now known as c1|freaky-ut3 | ||
| nyarla | any chance to see the debian openSSL update applied to dapper? seems critical as far as security is concerned (http://lists.debian.org/debian-security-announce/2008/msg00152.html) | 13:51 |
| Deeps | dapper isn't affected | 13:51 |
| nyarla | I know hardy was patched a few days ago | 13:51 |
| Deeps | hardy was affected, dapper isn't | 13:52 |
| Deeps | http://www.ubuntu.com/usn/usn-612-1 | 13:52 |
| nyarla | good, thanks | 13:52 |
| Deeps | that said | 13:52 |
| Deeps | if you're using any kind of key based authentication on your dapper system | 13:52 |
| Kamping_Kaiser | not *directly* affected | 13:52 |
| Deeps | if any of those keys were generated on an affected system | 13:53 |
| Deeps | then those keys are to be considerred compromised and need to be regenerated | 13:53 |
| nyarla | i use ssh, apache, postfix/docevot, vsftp, freenx all with SSL configured | 13:54 |
| nyarla | i dont catch it. If the openssl in dapper doent need update, why would i have to recreate all the keys? | 13:54 |
| Kamping_Kaiser | did you read what Deeps said ? :| | 13:55 |
| Kamping_Kaiser | if you use keybaed auth and have a key from an affected system that key needs to be considred compromised | 13:55 |
| nyarla | ok ok sorry, I read too fast.My own keys are clean then, i'll watch for foreign ones | 13:56 |
| Kamping_Kaiser | interesting point. | 13:58 |
| Kamping_Kaiser | wonder if/when a backport of ssh will hit dapper with the blacklist stuff | 13:58 |
| Deeps | 07:22:25 < evad> Oh cool, the new Debian SSH rejects authentication from broken keys | 13:59 |
| Deeps | dunno if that's relevant | 13:59 |
| Kamping_Kaiser | the new ssh in ubuntu does to. the question is if dapper gets the new ssh :) | 14:00 |
| Deeps | ah yes, i see new ssh update | 14:00 |
| * Deeps upgrades | 14:00 | |
| nyarla | just curious : how easy would it be to break a weak key? is it just theoretical or are such tools in the wild already? | 14:01 |
| Kamping_Kaiser | nyarla, theres only 65,536 posable keys. for everyone. | 14:02 |
| Kamping_Kaiser | so 20 min~ to generate the keys, then 3x65,536 to brute the server (max) | 14:02 |
| Deeps | 65k? where did you get that number from? | 14:02 |
| Deeps | have a read through http://wiki.debian.org/SSLkeys | 14:03 |
| Kamping_Kaiser | Deeps, the only entropy is a 16bit pid | 14:04 |
| Kamping_Kaiser | i read it 2 days ago, i havent updated my reading yet | 14:04 |
| Kamping_Kaiser | 3 days ago now actually :| | 14:04 |
| Deeps | fair enough | 14:04 |
| Deeps | nyarla: you'll want to have a read through http://wiki.debian.org/SSLkeys to see just how serious it is | 14:05 |
| Deeps | although chances are you're in the clear anyway | 14:05 |
| Kamping_Kaiser | wow. that page is *huge* now. | 14:06 |
| Deeps | yeaah heh | 14:06 |
| Kamping_Kaiser | no one added ntp. interesting. (wonder if no one uses ntp+ssl :)) | 14:07 |
| nyarla | readin it. What a mess :( | 14:07 |
| Kamping_Kaiser | i have to crash blokes. (should have done it already :]) | 14:08 |
| Kamping_Kaiser | enjoy your reading. back in 12 hours ;) | 14:08 |
| Deeps | nn | 14:08 |
| foolano | mathiaz: http://public.warp.es/anste/ | 14:22 |
| yoandy | Hi, how can i make postfix do a copy of a mail based on sender and recipient ("and", both at same time), | 16:02 |
| ivoks | copy to where? | 16:04 |
| ivoks | always_bcc=somebackupaccount | 16:05 |
| ivoks | and then do procmail rules :) | 16:05 |
| ivoks | bye | 16:05 |
| _ruben | odd .. when i install linux-xen meta package the -xen kernel isnt added to grub | 16:07 |
| yoandy | ivoks, mmmm that could work, but if there is a "more direct" way, i would prefer it since this will be done on a heavy traffic postfix server | 16:09 |
| === giovani2 is now known as giovani | ||
| yoandy | ivoks, | 16:16 |
| yoandy | ivoks, that could work, but if there is a "direct/better performance" way, i would prefer it since this will be done on a heavy traffic postfix server | 16:17 |
| ivoks | you still didn't tell where do you want a copy | 16:24 |
| yoandy | ivoks, to other mailbox | 16:26 |
| ivoks | if both criterias (destination and source) are true? | 16:29 |
| yoandy | ivoks, yes, for example: if sender=a@domain.net and recipient=b@domain.org then bccto=d@domain.com | 16:29 |
| ivoks | you have to do that trough procmail | 16:29 |
| ivoks | user procmail as delivery agent | 16:29 |
| ivoks | and then create rule in /etc/procmailrc | 16:29 |
| ivoks | or you can use whatever delivery agent you want... | 16:30 |
| yoandy | ivoks, ok, let me read some doc... about delivery agents :), thanks! | 16:31 |
| ivoks | np | 16:32 |
| yoandy | ivoks, its possible using postfix builtin delivery agent? | 16:38 |
| ivoks | i don't know... maybe | 16:38 |
| yoandy | ok, lets keep reading :) | 16:38 |
| JustineC | Hi. I've installed a *minimal* ubuntu for server use. I'm coming from SysVInit-land, and upstart's a bit new ... | 17:11 |
| JustineC | How do I start/stop iptables? according to apt-get, iptables is installed, but there's no entry in /etc/rc.d or /etc/init.d. | 17:11 |
| Deeps | iptables doesn't "run" in that sense | 17:13 |
| Deeps | if the module is loaded, it's running | 17:13 |
| Deeps | simply using the command line tool 'iptables' will ensure any required modules are loaded | 17:13 |
| JustineC | Deeps: so there's no ubuntu analogue of "service iptables stop"? | 17:14 |
| Deeps | i think ufw might be what you're looking for | 17:14 |
| Deeps | but to my knowledge, no, out of the box, there isnt any scripts to set/replace default firewall rules | 17:15 |
| Deeps | iptables-restore and iptables-save are tools that perform that general functionality | 17:15 |
| JustineC | Deeps I don't want to set/replace, I want to disable. E.g., as necessary to install shorewall ... | 17:16 |
| JustineC | AND, your suggestion: "ufw disable" does the trick. | 17:16 |
| JustineC | --> Firewall stopped and disabled on system startup | 17:16 |
| JustineC | Now I just have to figure out the docs enough so I know that I should know that ! ;-) | 17:16 |
| === c1|freaky-ut3 is now known as c1|freaky | ||
| Deeps | rmmod iptables would entirely disable iptables | 17:18 |
| JustineC | removing the mod from the kernel, sure. How is rmmod's "disable iptables" different from "ufw disable"? | 17:19 |
| Deeps | no idea, i've never uesd ufw | 17:20 |
| JustineC | Deeps: Ok. It's a "big explore" then :-) | 17:21 |
| uvirtbot | New bug: #231428 in openssh (main) "package openssh-client 1:4.7p1-8ubuntu1.2 failed to install/upgrade: subprocess post-installation script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/231428 | 18:01 |
| reya276 | Can anyone help me solve an smtp authentication issue | 18:09 |
| reya276 | how come I'm trying to connect to telnet localhost 25 and it does not work? | 18:23 |
| InsomniaCity | have you configured it to only listen on certain IPs? is it running? | 18:24 |
| reya276 | I do not know | 18:27 |
| reya276 | how can I find out | 18:27 |
| InsomniaCity | well, I've never done it - I'd suggest googling for a tutorial | 18:27 |
| InsomniaCity | or hang around here... Deeps will know all about it :) | 18:28 |
| giovani | reya276: which MTA are you running? | 18:34 |
| reya276 | postfix | 18:34 |
| giovani | if you run "sudo netstat -ad | grep -i postfix" ... what do you get? (if it's more than 2 lines, use a pastebin service instead of pasting it to the channel | 18:36 |
| giovani | err | 18:36 |
| reya276 | nothing | 18:37 |
| reya276 | nothing came back | 18:38 |
| giovani | "sudo netstat -ad | grep -i 25" | 18:38 |
| reya276 | http://www.pastebin.org/36630 | 18:39 |
| giovani | is postfix even running ...? | 18:39 |
| giovani | there should've been a LISTEN line there | 18:39 |
| reya276 | I belive so | 18:39 |
| giovani | "ps aux | grep -i postfix" | 18:40 |
| reya276 | http://www.pastebin.org/36631 | 18:40 |
| giovani | oh, you know what, I bet netstat resolved the port | 18:41 |
| giovani | "sudo netstat -ad | grep -i smtp" | 18:41 |
| reya276 | http://www.pastebin.org/36632 | 18:42 |
| giovani | yup ... there it is | 18:43 |
| giovani | and two established connections | 18:43 |
| giovani | well ... assuming you did "telnet localhost 25" ... and it's not responding, I'd assume the process is b0rked, I'd restart postfix | 18:44 |
| cycom | hey guys, shouldn't there be something in the topic about the ssl keys? | 18:44 |
| giovani | sudo /etc/init.d/postfix restart | 18:44 |
| reya276 | I have restarted postfix countless of times | 18:44 |
| giovani | cycom: no ops here to do so ... I'd have a hard time believing someone didn't know about it by now ... and visits this irc channel | 18:45 |
| reya276 | krusty@krusty:~$ sudo /etc/init.d/postfix restart | 18:45 |
| reya276 | * Stopping Postfix Mail Transport Agent postfix [ OK ] | 18:45 |
| reya276 | * Starting Postfix Mail Transport Agent postfix [ OK ] | 18:45 |
| giovani | reya276: so ... try telneting now | 18:45 |
| cycom | giovani: *shrug* better safe than sorry, no? | 18:45 |
| giovani | cycom: yeah, if there was an op here ... we could have em do it | 18:46 |
| reya276 | nope all I get is Trying 127.0.0.1... | 18:46 |
| cycom | giovani: also, I was under the impression initially that it was JUST debian systems affected because every channel I was in had 'debian openssl vuln' and 'Debian users must read this!' etc. | 18:47 |
| cycom | I read it anyhow, and SUPRISE! | 18:47 |
| giovani | cycom: well ... there are very few bugs that affect debian and not ubuntu | 18:47 |
| giovani | considering ubuntu still relies on debian for most patches | 18:47 |
| cycom | giovani: newbies running ubuntu-server might not know that though ;) | 18:48 |
| cycom | but that's exactly why I read it. | 18:48 |
| giovani | cycom: well ... that's a general user education problem ... not specific to the ssl issue | 18:48 |
| giovani | ubuntu released a security notification | 18:48 |
| giovani | every admin should be subscribed | 18:48 |
| cycom | yeah, but like I said, doesn't help newbies, or people messing around with home server boxes that aren't subscribed | 18:49 |
| giovani | cycom: ... there's not a solution for that | 18:49 |
| giovani | agreed -- adding it to the topic here would be not a bad idea -- but it hardly comes close to solving/addressing that problem in general | 18:49 |
| giovani | oh ... it's on the topic in #ubuntu ... case closed | 18:50 |
| giovani | no "newbie" is coming to #ubuntu-server, and not #ubuntu | 18:50 |
| giovani | reya276: honestly, I have no idea what's going on there ... sounds like you may have some odd network config ... maybe restrictions on which ips can connect ... you could try discussing this in #postfix | 18:50 |
| reya276 | doing so now | 18:51 |
| cycom | giovani: heh. you never know. also, they might not read the whole topic | 18:51 |
| reya276 | but telnet should work, or atleast come back with some kind of error but it just stays there | 18:51 |
| giovani | cycom: I think you're nit-picking now | 18:51 |
| giovani | reya276: not always | 18:51 |
| cycom | giovani: I'm in an 80x24 terminal using irssi. I can't even SEE the end of the topic without typing /topic | 18:52 |
| giovani | cycom: ... that's your issue, isn't it? it's in the topic ... what else do you want them to do? | 18:52 |
| cycom | put it at the beginning in here, that's all | 18:52 |
| giovani | people can't obsess over catering to every possible configuration | 18:52 |
| mralphabet | cycom: I leared about it by reading xkcd.com . . . what sysadmin doesn't read xkcd.com? | 18:53 |
| cycom | It's a massive security flaw. I think it should be on the front page, so to speak | 18:53 |
| mralphabet | call cnn? | 18:53 |
| mralphabet | everybody panic? | 18:53 |
| giovani | cycom: sent out to all security mailing lists ... period | 18:53 |
| mralphabet | are we the nanny state? | 18:54 |
| giovani | any sysadmin is going to be doing daily apt-get updates | 18:54 |
| giovani | it'd be impossible to be separated from this issue for this long and give a shit about security | 18:54 |
| cycom | *sigh* so we should just assume everyone knows, and if they don't, that's their problem? | 18:55 |
| giovani | no ... | 18:56 |
| giovani | it's been broadcasted to every mailing list, it's discussed on every tech news site, it's on slashdot, it's in the topic of #ubuntu and #debian | 18:56 |
| giovani | that doesn't sound like "assuming everyone knows" | 18:56 |
| cycom | where do you see it in the topic in #debian? | 18:57 |
| Deeps | sounds like a good argument against making ubuntu server follow the same philosophy as the desktop | 18:57 |
| giovani | Deeps: what? | 18:57 |
| Deeps | administering servers requires a lot more clue than managing your own desktop | 18:57 |
| Deeps | casual desktop users dont care about being on mailing lists, reading tech sites, being on irc and/or reading topics | 18:58 |
| giovani | cycom: the first item: "openssl vulnerability: /msg dpkg dsa1571" | 18:58 |
| cycom | giovani: EXACTLY. | 18:58 |
| cycom | giovani: the first item. | 18:58 |
| mralphabet | cycom: we could require everybody register a phone number when they download ubuntu so that canonical can call you with security warnings. | 18:58 |
| cycom | I'm just saying, don't bury it at the end. the more places where it's posted here, the less likely it is someone will miss it. | 18:58 |
| Deeps | i dunno what all the fuss, given that | 18:59 |
| Deeps | 18:46:01 < giovani> cycom: yeah, if there was an op here ... we could have em do it | 18:59 |
| giovani | cycom: I'm not arguing against putting it as the first item ... so stop bitching ... first item or last ... it's in the topic ... I think you're trying to make an argument where there's no reason for it ... first item versus last (the last is more visible to me actually) doesn't have anything to do with this | 18:59 |
| Deeps | no ops are around to do the relevant rask | 18:59 |
| cycom | I'm just concerned by the argument that 'everyone must know by now.' | 18:59 |
| giovani | that was not the argument | 18:59 |
| giovani | that was the final straw after 5 examples of how it's been spread | 19:00 |
| giovani | it was ... after all of this effort, it's likely that anyone who knows shit would know by now | 19:00 |
| Deeps | tbh, i dont know any 'real' server admins that weren't aware of this within hours of it hitting the debian mailing list (Assuming suitable timezone) | 19:00 |
| giovani | exactly ... and not many "newbie" admins are using key-based ssh authentication, which is going to be the main attack vector | 19:01 |
| Deeps | if you're having fun in your bedroom playing with ubuntu server and dont care to keep up to date on what's going on, you'll get hit by apt-get upgrading your stuff for you | 19:01 |
| giovani | AND ... everyone does apt-get updates ... and if you don't there are MAJOR problems with YOU, not with the information release | 19:01 |
| cycom | *shrug* | 19:02 |
| giovani | if we had an op here, I'd think it was a fine idea to put it in the topic ... nobody argued that point with you | 19:02 |
| mralphabet | cycom: I charge you with sending a personal message to everybody that joins this channel | 19:02 |
| cycom | I've worked with people who didn't update unless something was broken | 19:02 |
| giovani | cycom: then you know what? this would be a perfect life lesson for them | 19:02 |
| cycom | mralphabet: sure, pass the buck to someone else. lazy bastard. | 19:02 |
| giovani | sometimes people refuse to ever change their behavior until it causes massive problems | 19:02 |
| Deeps | cycom: i've worked with crack whores too, doesn't make their way of doing things right (no really, she was a whore and she spent most of her money on blow) | 19:02 |
| mralphabet | hah, I'm not the one having a problem with the current state of affairs ;) | 19:03 |
| cycom | giovani: they got it in the form of a major outage when 20 different code revisions of cisco switch didn't talk so well with one another. | 19:03 |
| Deeps | there's a reason sysadmins get paid more than desktop users | 19:03 |
| giovani | cycom: obviously not ... because then they would be updating their system regularly, and your point would be moot | 19:03 |
| Deeps | you're required a suitable amount of education and clue to do the job properly | 19:04 |
| cycom | I didn't say they LEARNED from the lesson. | 19:04 |
| Deeps | and thats the fault of giovani? | 19:04 |
| Deeps | lol | 19:04 |
| cycom | Deeps: but not to get the job :) | 19:04 |
| cycom | Deeps: no, I didn't say it was. | 19:04 |
| mralphabet | then it sounds like this mythical sysadmin that hasn't heard about the problem yet is due for another life lesson. | 19:04 |
| Deeps | what is your point? cuz this discussion seems to have degenerated very quickly | 19:04 |
| Deeps | you're citing examples of how not to administer a server | 19:05 |
| mralphabet | Deeps: I think it degenerated long, long, long ago | 19:05 |
| Deeps | it's sorta like the windows desktop user not running windows update, a stateful firewall nor an anti virus | 19:05 |
| Deeps | and using IE5 to browse porn + crack sites | 19:05 |
| reya276 | giovani: the folks at #postfix said I'm missing saslauthd | 19:05 |
| Deeps | and blaming it on #microsoft for not having it in the topic "OMG USE WU+FW+AV!" | 19:05 |
| giovani | reya276: and that's preventing you from opening a tcp connection? | 19:06 |
| reya276 | giovani: so I'm trying to install it but I get an error stating package is not found | 19:06 |
| cycom | I'm not BLAMING anyone, I'm just citing examples of why it's a good idea to put things like this in places where everyone is nearly certain to see them | 19:06 |
| Deeps | and it was agreed, to a certain degree | 19:07 |
| cycom | but again, I was told I was nit-picking for the idea that it should be at the beginning of the topic, rather than at the end. | 19:07 |
| reya276 | giovani: oh they said is part of Cyrus-SSL | 19:08 |
| Deeps | i personally dont think an irc topic is a suitable place to be learning about security vulnerabilities | 19:08 |
| Deeps | but then i dont give a rats ass eitherway | 19:08 |
| cycom | If there was a problem with your house's locks and your neighborhood was like the internet, don't you think you'd want that information first, rather than last? | 19:09 |
| Deeps | i think i'd want to be on the locks newsletter | 19:09 |
| Deeps | to ensure that i'm up to date on all manner of lock related issues | 19:09 |
| Deeps | i wouldn't expect it to be on a big billboard outside my house | 19:10 |
| Deeps | nor at the start nor the end of the billboard | 19:10 |
| reya276 | giovani: how can I install that package "cyrus-ssl" | 19:10 |
| Deeps | sorry, on the big billboard in the backallie of the neighbourhood where few people dare to roam due to the freaks that reside in there | 19:10 |
| Deeps | backallies* | 19:10 |
| AtomicSpark | so we discussed yesterday about an ubuntu update server and i was suggested to look into making my own local repo mirror or something. how do i go about doing that? | 19:11 |
| mralphabet | reya276: how would you normally find / install a package? | 19:13 |
| mralphabet | AtomicSpark: apt-mirror? | 19:14 |
| AtomicSpark | sure something like that. so when my clients update, they all can connect to local server instead of going over the internet | 19:14 |
| mralphabet | http://www.howtoforge.com/local_debian_ubuntu_mirror | 19:14 |
| mralphabet | ^^ first link from google | 19:14 |
| uvirtbot | mralphabet: Error: "^" is not a valid command. | 19:14 |
| mralphabet | uvirtbot: go fly a kite ;) | 19:15 |
| uvirtbot | mralphabet: Error: "go" is not a valid command. | 19:15 |
| mralphabet | hah | 19:15 |
| AtomicSpark | lol | 19:16 |
| AtomicSpark | 25GB or space? mm ill pass. | 19:16 |
| reya276 | ok I think I will start from scratch here, how can I delete my entire postfix setup with config files and all | 19:16 |
| AtomicSpark | reya276, sudo apt-get purge postfix | 19:17 |
| AtomicSpark | it will warn you if it cannot remove a folder. this usually only happens if you create a file, such as a backup of the default settings. | 19:17 |
| reya276 | dpkg - warning: while removing postfix, directory `/var/lib/postfix' not empty so not removed. | 19:18 |
| reya276 | I want to start from scratch as if I did nothing | 19:18 |
| reya276 | because somewhere along the line I did something wrong | 19:19 |
| reya276 | I should be able to connect to telnet localhost 25 and I can't | 19:19 |
| AtomicSpark | reya276, thats the error i was expecting | 19:21 |
| AtomicSpark | oh wait. no it isn't. | 19:21 |
| AtomicSpark | go to /var/lib/postfix and tell me what's in there | 19:21 |
| stickystyle | AtomicSpark: if 25GB is a little much for a full mirror, look into apt-proxy also. that way you cache packages once, rather than mirror everything. | 19:22 |
| reya276 | AtomicSpark: prng_exch smtpd_scache.db smtp_scache.db | 19:22 |
| AtomicSpark | stickystyle, it would make more sense if i had 100+ clients, but 3? :P | 19:22 |
| AtomicSpark | reya276, using smtp must of created those files. apt-get wont remove anything that's not from the original program. its a safety thing. | 19:23 |
| reya276 | AtomicSpark: can I remove them | 19:24 |
| AtomicSpark | reya276, well i'm not sure what they store. i assume email. | 19:24 |
| reya276 | AtomicSpark: at this point I don't care I just want to start from scratch | 19:25 |
| AtomicSpark | reya276, if i was you, i would copy them into a backup folder. just to be sure. | 19:26 |
| AtomicSpark | that way you can move them out of that folder and start from scratch but still have them for when you do a fresh install. | 19:26 |
| AtomicSpark | or something. | 19:26 |
| AtomicSpark | so do like "sudo mv /var/lib/postfix /var/lib/postfix.backup | 19:27 |
| reya276 | I'm using this guide https://help.ubuntu.com/community/Postfix | 19:27 |
| reya276 | AtomicSpark: ok done | 19:27 |
| reya276 | AtomicSpark: how do I remove those things | 19:28 |
| AtomicSpark | you shouldn't have a folder called postfix in there now since you did a move. | 19:28 |
| AtomicSpark | technically you renamed that folder. | 19:28 |
| reya276 | oh ok is gone | 19:28 |
| AtomicSpark | so now you should reinstall postfix. i would use tasksel, so it goes right into the configuration. not sure if apt-get does that. | 19:29 |
| reya276 | Is this a good guide to follow https://help.ubuntu.com/community/Postfix | 19:29 |
| AtomicSpark | probably (still loading for me) there is also the official server guide https://help.ubuntu.com/8.04/serverguide/C/postfix.html | 19:30 |
| AtomicSpark | need to be careful with community docs. they're sometimes outdated. they should specify what version the wrote it to. | 19:31 |
| AtomicSpark | oh wait. it says at bottom :P | 19:31 |
| JustineC | I installed Hardy today. Want to install the right kernel sources. Which to use? "linux-source-2.6.24" or "linux-source"? | 20:43 |
| Centaur5 | linux-source is just a dummy package that will install the newest source | 20:45 |
| JustineC | Centaur5 Whereas linux-source-2.6.24 provides a specific version? | 20:46 |
| JustineC | Which is newer (iiuc, 'linux-source)? | 20:46 |
| JustineC | According to apt-cache, "linux-source-2.6.24" & "linux-source" provide "2.6.24-16.30 - linux-source-2.6 linux-source" and "2.6.24.16.18 -" respectively. | 20:46 |
| JustineC | (a little confused about numbering conventions) | 20:46 |
| Centaur5 | The package with the higher number is newer | 20:48 |
| JustineC | Centaur5: Yes, that's obvious. So which is "higher" ? (2.6.24-16.30 ) or (2.6.24.16.18)? The hyphen might make a difference. | 20:50 |
| Centaur5 | I guess I've never seen a linux-image or source file without a hyphen. According to my sources 2.6.24-17.31 is newest. | 20:52 |
| JustineC | Centaur5: Assuming its a typo in the pkg info then, (linux-source-2.6.24) is the newest. I.e., "linux-source-2.6.24" provides newer kernel source than "linux-source". | 20:55 |
| JustineC | i mean ((2.6.24-16.30 ) | 20:55 |
| Centaur5 | from what I understand is that linux-source will always grab the newest version which would be the linux-source-2.6.24 and then it will also update you to the newest source when a new one is released. | 20:56 |
| Nafallo | linux-source depends on linux-source-2.6.24, which Provides: linux-source, linux-source-2.6 | 20:56 |
| Nafallo | linux-source will hence provide the newest kernel, as would linux-source-2.6.24 | 20:57 |
| JustineC | Nafallo: Ok. Despite the different "Provides" info, then, right? | 20:58 |
| Nafallo | linux-source depends on linux-source-2.6.24... | 20:58 |
| Nafallo | basically, in hardy linux-source you can install either. if you dist-upgrade to intrepid though, linux-source needs to be installed to pull in the new linux-source-$whatever | 20:59 |
| Nafallo | hope that helps | 21:00 |
| JustineC | Nafallo: Ok. Go it. Thanks. | 21:00 |
| reya276 | Ubuntu wiki is extremely slow | 21:00 |
| reya276 | trying to load this page and is taking for ever https://help.ubuntu.com/community/UsingTheTerminal?action=show&redirect=BasicCommands | 21:01 |
| reya276 | every other site id working great | 21:01 |
| reya276 | I hope nothing happened to their servers | 21:01 |
| Nafallo | reya276: I can replicate | 21:03 |
| reya276 | is there anyway to create a Maildir with sub directories cur,new,tmp when you do sudo adduser <username> | 22:13 |
| reya276 | meaming so that it creates it under the added user home dir | 22:14 |
| giovani | reya276: you could script that up into your own add-user script | 22:15 |
| giovani | do you really want to use system users as mail users? that's a less-common setup these days | 22:15 |
| reya276 | yes because we only have like 4 employess | 22:15 |
| reya276 | employees | 22:15 |
| giovani | ok | 22:15 |
| giovani | if it's only 4 ... then jsut do it manually | 22:16 |
| giovani | it's taken youmore time asking than it would've to do it :) | 22:16 |
| reya276 | the issue is that when I create the user and then add the Maildir manually it says that the user does not own the dir | 22:16 |
| giovani | you need to use the chown command | 22:17 |
| giovani | read its manpage | 22:17 |
| giovani | to understand how to use it | 22:17 |
| giovani | in this case, "sudo chown -R user:group ./Maildir/" probably suffices | 22:17 |
| reya276 | ok thanks | 22:22 |
| reya276 | I was actually doing it one by one | 22:22 |
| reya276 | chown helpdesk /home/helpdesk/Maildir/cur etc... | 22:22 |
| giovani | the manual has wonderful things to learn :) -- -R is your friend | 22:23 |
| JanC | AFAIK some mail delivery agents will create proper Maildirs for you if they don't exist too | 22:39 |
| reya276 | E: Could not get lock /var/cache/apt/archives/lock - open (11 Resource temporarily unavailable) | 22:50 |
| reya276 | E: Unable to lock the download directory | 22:50 |
| reya276 | how can I fix this? | 22:50 |
| reya276 | through teminal | 22:50 |
| giovani | you are running apt already | 22:54 |
| giovani | quit/kill the process that's runnung -- only one can at a time | 22:54 |
| reya276 | I think so and the process did not finish | 22:54 |
| reya276 | I do not know what is the process | 22:54 |
| reya276 | how can I find out | 22:55 |
| giovani | ps aux | grep -i apt | 22:56 |
| reya276 | root 9349 0.0 0.0 1772 480 ? S 17:34 0:00 sh -c yes Yes | apt-get -y --force-yes -f install spamassassin 2>&1 2>/dev/null | 22:58 |
| reya276 | root 9351 0.0 0.7 17368 14780 ? S 17:34 0:01 apt-get -y --force-yes -f install spamassassin | 22:58 |
| reya276 | giovani: how in the world can you tell what is what from there | 22:59 |
| giovani | uh, you see that apt-get is running there | 23:00 |
| giovani | you shouldn't have done that | 23:00 |
| giovani | > /dev/null | 23:00 |
| reya276 | ok | 23:00 |
| giovani | that's why you lost control | 23:00 |
| giovani | sudo kill -9 9349 | 23:00 |
| reya276 | ok | 23:01 |
| reya276 | done | 23:01 |
| reya276 | now if I try to install again I should be able to? | 23:01 |
| giovani | should be ... if not ... sudo kill -9 9351 | 23:01 |
| giovani | just to make sure that got killed as well | 23:01 |
| reya276 | ok | 23:02 |
| giovani | I don't know why you think you should've forced that, and sent the output to /dev/null ... who told you to run that? | 23:03 |
| reya276 | oh I found it on a webpage | 23:07 |
| reya276 | dude honestly I don't know jack about linux. or Ubuntu, just learning | 23:08 |
| reya276 | so every bit of info you can throw at me would be truly appreciated | 23:09 |
| giovani | well ... lesson number one ... don't run random commands without first understanding what they do | 23:09 |
| reya276 | so I got my telnet and postfix to receive email, but now having issue with the relay | 23:09 |
| reya276 | sending out emails :-( | 23:09 |
| reya276 | got yah | 23:09 |
| reya276 | giovani: thanks for all your help, but I'm calling it quits for today | 23:29 |
| giovani | reya276: no problem ... mail servers aren't the easiest to set up -- take a break :) | 23:30 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!