/srv/irclogs.ubuntu.com/2008/06/24/#ubuntu-server.txt

mathiaz	owh: virtualbox is in universe	00:06
mathiaz	owh: usually it gets updated a few days after a kernel is released	00:07
owh	Yeah, but the kernel modules are still at 2.6.22-14	00:07
owh	What got me into this issue was that vmware kernel modules were not available, but the kernel was automagically updated, so there is a borked dependency somewhere.	00:08
owh	And then I started looking for alternatives to vmware.	00:08
bonbonthejon	starting a few days ago, I started receiving ATA errors. Has this happened for anyone else?	01:01
=== MatBoy_ is now known as MatBoy
zul	bonbonthejon: probably means one of your drives if dying	01:32
emgent	morning	01:33
bonbonthejon	zul: I've had it happen on two separate machines	01:33
bonbonthejon	seems like it would be a driver bug	01:33
zul	bonbonthejon: could be open a bug in launchpad with as much information as possible	01:34
bonbonthejon	thanks	01:35
iandev	router di-604 configured to port forward external IP to 192.168.0.50. apache running on port 80. typing in firefox 192.168.0.50 gives me 'it works apache page'. typing external IP gives me as well. but when checking through http://canyouseeme.org it says port 80 is closed. ehat is the matter?	01:39
iandev	is there someone tha could help me out?	01:39
ScottK	It means your router isn't actually forwarding port 80 to that address.	02:16
uvirtbot	New bug: #242537 in openvpn (main) "Please sync openvpn 2.1~rc7-5 (main) from Debian unstable (main)." [Wishlist,New] https://launchpad.net/bugs/242537	02:47
=== chmac7 is now known as chmac
servernoob	is there an easy way to reinstall LAMP in one setting like build-essential as opposed to individual packages?	04:14
servernoob	leave	04:17
=== shelbyscates is now known as haym
=== eclipse_mint is now known as eclipse_mint\|awa
=== eclipse_mint\|awa is now known as eclipse_mint
=== sourcode is now known as sourcode[0]
=== sourcode[0] is now known as sourcode
jussi01	Hei all, looking for a recomendation for a mailserver	08:23
weesyz	default i thought userdir was suppose to be enabled(13)Permission denied: file permissions deny server access: /home/$	08:23
ikonia	jussi01: as in an MTA	08:24
weesyz	i have to chmod each file for publuc_html is able to be seen by web users	08:24
jussi01	ikonia: Im looking to replace horde...	08:24
ikonia	jussi01: isn't that webmail ?	08:25
jussi01	ikonia: yeah, but it also allows imap connections	08:25
ikonia	jussi01: ok - so you dont want a mail server, you want an imap server and a webmail client/application	08:25
jussi01	(or maybe im all confused)	08:25
jussi01	ikonia: yep, that one	08:26
ikonia	jussi01: well for imap I can speak highly of dovecot and courier for mainstream use, they are very good and straight forward to use.	08:26
jussi01	!info dovecot	08:26
ubottu	Package dovecot does not exist in hardy	08:26
ikonia	jussi01: for webmail, there are tons of clients, squriellmail seems to be main choice	08:27
ikonia	jussi01: dovecot-imapd and	08:27
jussi01	!info dovecot-imapd	08:27
ubottu	dovecot-imapd (source: dovecot): secure IMAP server that supports mbox and maildir mailboxes. In component main, is optional. Version 1:1.0.10-1ubuntu5.1 (hardy), package size 614 kB, installed size 1016 kB	08:27
ikonia	jussi01: dovecot-pop3d for pop3	08:27
jussi01	ikonia: ahh, thank you very much	08:28
jussi01	how secure is that squiriellmail	08:28
jussi01	?	08:28
ikonia	jussi01: it's a solid server	08:28
ikonia	jussi01: no more / less than your apache config	08:28
jussi01	ikonia: ahh, ok then. thanks again.	08:28
ikonia	jussi01: there is basiclly one setup option (temp attatcment space) thats critical to setup right	08:28
jussi01	!find squiriel	08:28
ubottu	Package/file squiriel does not exist in hardy	08:28
ikonia	squirrelmail	08:29
jussi01	ikonia: package name?	08:29
jussi01	ok	08:29
jussi01	:D	08:29
jussi01	!info squirrelmail	08:29
ubottu	squirrelmail (source: squirrelmail): Webmail for nuts. In component universe, is optional. Version 2:1.4.13-2ubuntu1 (hardy), package size 585 kB, installed size 3624 kB	08:29
jussi01	ikonia: once again, thanks. /me runs off to sort out some stuff :)	08:30
ikonia	thats fine, shout if your having issues setting it up	08:30
jussio1	ikonia: you around?	08:58
ikonia	I am	08:59
ikonia	hello	08:59
jussio1	ikonia: hei :)	08:59
ikonia	hello	08:59
jussio1	ikonia: how does one access/start squirrelmail?	08:59
ikonia	jussio1: it's basiclly a website	09:00
jussio1	ikonia: yeah, whats the deafult address?	09:00
ikonia	jussio1: so in your apache available/enabled sites you should see the sub directory for it	09:00
jussio1	ahh	09:00
ikonia	jussio1: I'm guessing /squirrelmail	09:00
ikonia	check what's in your apache-enabled sites	09:00
ikonia	I've not got it installed on an ubuntu box to check, but if you change the site in apache-enabled you can set the URL to what every you want	09:01
jussio1	ikonia: again, thanks. I should be able to sort it out, havent played with this for a while :)	09:04
ikonia	don't worry everyone gets rusty	09:04
ikonia	I'm working from memory here	09:04
=== eclipse_mint is now known as eclipse_mint\|awa
=== eclipse_mint\|awa is now known as eclipse_mint
RockHound	Hi everyone ... I am really about to through everything out the window with my startTLS problem that I am having here ever since I switched to 8.04 ...	12:09
RockHound	does anyone have a working setup with TLS enabled working without a flaw?	12:09
RockHound	LDAP setup that	12:09
RockHound	is	12:09
sommer	RockHound: do you have a specific error?	12:12
RockHound	sommer: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/240387 ... I described it pretty much in detail there ...	12:14
uvirtbot	Launchpad bug 240387 in php5 "php5-ldap TLS (start_tls) quirks" [Undecided,Incomplete]	12:14
RockHound	And I am pulling my hair out (of what is left) by now	12:14
RockHound	sommer: it seems not specific to php5-ldap but to any service using ldap sporadically ...	12:14
RockHound	it is preventing some webapps to work which are critical ...	12:15
RockHound	sommer: maybe it is just me ... but all of this worked without a hickup on gentoo	12:16
RockHound	and I am at the end of my knowledge ...	12:17
sommer	RockHound: can you post an example php script to that bug... I can probably do some testing today, but I haven't seen this issue myself	12:18
RockHound	phpldapadmin is the perfect example	12:18
RockHound	with TLS set to true of course	12:18
RockHound	sommer: the thing is, if it would not work at all, I would know where to look, but this on and off working is impossible to track for me	12:21
RockHound	it could have something to do with x64 aswell	12:22
sommer	RockHound: mmm, not sure... it'll be later today before I'll have a chance, but someone else may take a look sooner	12:32
RockHound	sommer: it is wierd that noone else has this issue or reported it at the very least ... thanks for your help on this	12:33
RockHound	sommer: I think I have found something	13:16
RockHound	sommer: I have turned off authnz-ldap apache authentication and that seems to do the trick ... of course now all my administrative pages are out in the open but at least the scripts run with startTLS ... so it seems to be a combination of starttls with apache authnz-ldap config and the php script itself using starttls ...	13:21
sommer	RockHound: that's interesting, can you add a comment to the bug?	13:25
RockHound	done	13:25
RockHound	;-)	13:25
sommer	sweet thx	13:25
uvirtbot	New bug: #242632 in openipmi (main) "Please merge openipmi 2.0.13-1 (main) from Debian unstable (main)" [Wishlist,In progress] https://launchpad.net/bugs/242632	13:26
RockHound	I spoke too soon!!	13:26
RockHound	fsck	13:26
RockHound	now it works again ... pfft	13:27
zul	meeting today isnt it?	14:05
zul	hey foolano	14:05
sommer	zul: yep yep	14:05
foolano	hi	14:06
=== sommer is now known as sommer_
=== sommer_ is now known as sommer
uvirtbot	New bug: #242666 in openssh (main) "seahorse asks for passphrase for plain `ssh-add -l'" [Undecided,New] https://launchpad.net/bugs/242666	15:20
kraut	moin	15:54
nealmcb	server team meeting now in #ubuntu-meeting ....	16:01
kraut	thanks for the info	16:02
real	hi.. i just installed ubuntu server 8.04 i installed xorg and fluxbox but i cant start X i got no monitor configure.. when i do a dpkg-reconfigure xserver-xorg i only can configure my keyboard	16:24
real	any idea?	16:25
wright395	hello	16:25
wright395	I am trying to decided if I need the server edition of ubuntu to host a phpbb3 forum or if i can do it with the standard desktop version	16:26
wright395	i am very unfamiliar with ubuntu and am not quite sure what each version is capable of	16:27
real	hi.. i just installed ubuntu server 8.04 i installed xorg and fluxbox but i cant start X i got no monitor configure.. when i do a dpkg-reconfigure xserver-xorg i only can configure my keyboard	16:27
genioreal	hi.. i just installed ubuntu server 8.04 i installed xorg and fluxbox but i cant start X i got no monitor configure.. when i do a dpkg-reconfigure xserver-xorg i only can configure my keyboard	16:28
genioreal	any idea?	16:28
real	this is a fake templated used to pre-seed the debconf database. If ur seeing this, something is probably worng. DUmmy template	16:31
real	i get that	16:31
ivoks	we are at tge meeting now, so be patient...	16:32
wright395	tge?	16:34
ivoks	the	16:34
wright395	oh	16:34
GleepGlop	i did a dumb thing	16:46
GleepGlop	I ran usermod -p newpassword myusername without quotes on the password	16:46
GleepGlop	now I cannot login	16:46
wright395	the ppl who can help are in a meeting atm	16:50
GleepGlop	oh, thanks.	16:51
GleepGlop	at least my smb password works. i can archive my data and reinstall just in case	16:51
ivoks	boot in rescue mode	16:53
ivoks	and change your password	16:54
GleepGlop	oh, yeah, i forgot about that.	16:54
GleepGlop	what would my password be if I didnt use the quotes	16:55
GleepGlop	assuming newpassword is what I wanted it to be	16:55
soren	ivoks: The patch command strikes me as a rather fragile.	17:00
ivoks	soren: it is... :/	17:01
=== sommer is now known as sommer_
ivoks	soren: 'there are still some issues'	17:01
wright395	ivoks is your meeting over?	17:02
ivoks	yes...	17:02
mathiaz	ScottK: I've got a plan for that	17:03
mathiaz	ScottK: re upstream mailing list	17:03
wright395	ok, i just wasnt sure if you had seen my question or just didnt know	17:03
soren	ivoks: Ok, I just wasn't sure what that was referring to.	17:03
ivoks	wright395: you don't need server version	17:03
mathiaz	ScottK: following upstream ml can be discouraging as there is a lot of traffic not so interesting	17:03
mathiaz	ScottK: my idea is to mine the ml archive and highlight thread that have the ubuntu name in it	17:04
soren	ivoks: You might just want to ask upstream if they could add a dovecot.conf.d sort of thing..	17:04
wright395	ok	17:04
wright395	thanks	17:04
ivoks	wright395: server version has special kernel which isn't very suitable for desktops, so... if you are running desktop, just install server-related packages	17:04
soren	ivoks: That would make it sooo easy.	17:04
wright395	oh	17:04
wright395	where can i get those from?	17:04
ivoks	soren: yeah, but dovecot.conf has very hiearchy	17:04
mathiaz	ScottK: at least it should help in seeing upstreaming issues on ubuntu	17:04
soren	ivoks: Yeah, I know.	17:05
mathiaz	ScottK: most of us are on the -dev ml, but we should be on the -users ml	17:05
soren	ivoks: I still think they might be mergeable, though.	17:05
ivoks	wright395: you mentioned it - phpbb3	17:05
wright395	oh, but I thought you had to install the database software to host it	17:05
wright395	phpbb = a forum	17:05
ivoks	soren: hm... override settings from dovecot.conf?	17:06
ivoks	soren: i'll talk with them about that...	17:06
ivoks	wright395: i don't know what phpbb3, but if it needs sql, you'll have to install it	17:07
soren	ivoks: Yeah, something like that. Alternatively, perhaps augeas could be useful?	17:07
=== sommer_ is now known as sommer
ivoks	soren: perhaps, but should we wait for it? it doesn't seem it will be in before 9.04	17:10
soren	ivoks: augeas? Why?	17:10
ivoks	soren: that was the impression i got from nikolas	17:10
wright395	thanks for your help	17:11
wright395	i hope it can help me	17:11
soren	I don't see why. It's mostly packaged already.	17:11
ivoks	i'll have to finally take a look at that tool	17:11
=== sommer is now known as sommer_
=== sommer_ is now known as sommer
kees	zul, mathiaz: we need to fix bug 219914.	17:44
uvirtbot	Launchpad bug 219914 in apache2 "mod_disk_cache enabled globally by default" [Undecided,Confirmed] https://launchpad.net/bugs/219914	17:44
kees	based on research, it seems that it was a mistake to enable disk_cache, but that the best fix would be to provide a saner disk_cache.conf file default	17:44
mathiaz	kees: well - what would you put in disk_cache.conf ?	17:46
mathiaz	kees: I mentionned it in my comment - either we put nothing and rely on the sysadmin to put explicit path	17:46
mathiaz	kees: or we enable / by default	17:47
mathiaz	kees: I don't see another option	17:47
mathiaz	kees: not putting anything would mean that the sysadmin would have to enable disk_cache and configure the path	17:47
kees	mathiaz: we should remove the "CacheEnable" line, so that it doesn't override other configs	17:47
kees	mathiaz: right, but enabling / is wrong. :P	17:48
mathiaz	kees: ok - so we enable nothing	17:48
ogra	cant you default to /tmp t least ?	17:49
kees	mathiaz: right. in fact, strictly speaking, mod_disk_cache is a backend used by mod_cache, and CacheEnable isn't even a disk_cache directive	17:49
ogra	or /var/cache or so	17:49
kees	ogra: the "/" is the URL part	17:49
zul	kees: for hardy and intrepid?	17:49
kees	CacheRoot is already set, which is sane for the disk_cache backend	17:49
ogra	kees, oh, ok, then i misunderstood	17:50
kees	zul: yeah, but it's really only critical for hardy since it's the dapper->hardy upgrade that triggers this	17:50
mathiaz	kees: and this is because the upgrade enable disk_cache by default	17:51
kees	mathiaz: right, but only when mod_proxy was enable in Dapper	17:52
mathiaz	kees: it seems that there are two issues here - one is how to upgrade from _proxy	17:52
mathiaz	kees: and the other one is the default configuration of disk_cache	17:52
mathiaz	kees: speaking of 1., it seems that disk_cache should not be enable when upgrading	17:53
kees	mathiaz: agreed. I think we solve both by not enabling "/"	17:53
mathiaz	kees: only http_proxy	17:53
kees	mathiaz: I would agree	17:53
mathiaz	kees: should be enabled	17:53
kees	mathiaz: based on looking at the configs from dapper and the debian report: http://bugs.debian.org/407171	17:53
mathiaz	kees: then for 2., if we remove CacheEnable, then a2enmod disk_cache wouldn't produce a workable configuration	17:54
kees	mathiaz: I don't agree with that. a2enmod disk_cache does set up and configure disk_cache. It's just that mod_cache itself has no configuration.	17:55
kees	CacheEnable is not a mod_disk_cache directive, and I think therefore should not be in the default mod_disk_cache.conf	17:55
kees	http://httpd.apache.org/docs/2.2/mod/mod_cache.html#cacheenable	17:55
* kees has a conference call to attend, back in a bit.		17:56
mathiaz	kees: the reason why mod_cache has not configuration files is that you need to specify a cache backend to enable cachig	18:00
uvirtbot	New bug: #240109 in quagga (main) "[Hardy] Upgrade fails - error re: no file handle for X :0 on Nvidia card" [High,Triaged] https://launchpad.net/bugs/240109	18:02
zul	mathiaz: could we have a configuration file for it and in the configuration file we have CacheOn Off ?	18:08
ScottK	mathiaz: I'm back at my desk now (during the meeting it was via my phone).	18:17
ScottK	Also many of our users go straight to upstream to ask for help.	18:17
ScottK	In many cases the questions are very distro specific.	18:17
nandersson	mathiaz, I'm curious. Does the Red Hat FreeIPA-project affect the identity-management blueprint in any way?	18:41
nandersson	it seems like Red Hat are doing what you intend to do under the identity-management blueprint. It looks quite complete to me	18:42
likuidkewl	We are having an issue with services crashing and managaing to force a hard reboot of the box with Ubuntu 8.04 Server x64, since we run LTSP we thought it may be the users not loggin out but alas that was not it as we still noted out TOP avg's growing steadily from the last time of reboot. We are not averaging 3% on 2 Dual Core Xeons with 8GB of ram. I have pasted the first days worth of messages here : http://paste.ubuntu.com	18:45
kees	mathiaz: I'm okay with a user needing to specific where to do URL caching. I don't think that's something that should have a default (especially an unsafe one)	18:46
likuidkewl	As of right now we have 5 users logged in and this is the TOP output: load average: 3.04, 3.07, 3.06	18:46
likuidkewl	Here is the memory information: Mem: 8191332 7912416 278916 0 189956 5819008	18:47
=== c1\|freaky_ is now known as c1\|freaky
kees	zul, mathiaz	18:50
kees	er	18:50
kees	trying again....	18:50
kees	zul, mathiaz: could one of you work up a possible SRU for the apache2 issue, since the 8.04.1 is soon/happening, etc? I have to sort out other things at the moment.	18:51
mathiaz	nandersson: yes - I've looked at the FreeIPA project and it's quiet similar to what we're trying to do	19:04
mathiaz	nandersson: the interesting part is the user interface	19:05
mathiaz	nandersson: I'd like to see if we can replace FDS with openldap	19:05
mathiaz	nandersson: I don't know which implementation of kerberos they're using - if MIT that's great as this is what we support in main currently	19:05
nandersson	mathiaz, I'm quite sure they are using MIT	19:10
nandersson	mathiaz, I think Samba4 is using Heimdal	19:10
mathiaz	nandersson: correct - samba4 is using heimdal for now, but they plan to push all their changes to upstream	19:11
mathiaz	nandersson: as of now they compile a specific version of heimdal, but their goal is to not have to do it	19:12
nandersson	mathiaz: of course the best would be to have a GUI that is DS-agnostic. i.e you can use whatever server	19:12
mathiaz	nandersson: IIUC they've written a specific plugin so that heimdal KDC behaves the correct way for AD	19:12
mathiaz	nandersson: if that is true, then porting to MIT would be the next step	19:13
mathiaz	nandersson: the GUI is based on turbogears	19:13
nandersson	mathiaz: But it also seems that FreeIPA is not a drop-in-replacement for Active Directory	19:13
mathiaz	nandersson: oh no	19:13
mathiaz	nandersson: I don't think that's their goal	19:13
nandersson	mathiaz: Because Windows-clients need to install MIT in order to be compliant	19:13
nandersson	mathiaz: No I don't think so either - there they've got Likewise Open	19:14
nandersson	mathiaz: sorry - my bad. Likewise open is in order to auth to AD	19:14
mdave7	hi guys, could anybody help with an odd boot-time issue i'm having?	19:27
mdave7	getting a lot of errcode 530's from various init.d scripts and "invalid user" errors. its' like the passwd file is messed but it isn't.	19:30
ScottK	dendrobates: The wiki page for the amavisd-dkim spec is done, so back to you for approval.	19:38
ScottK	I hope you enjoy the Use Case.	19:39
=== docta_v_ is now known as docta_v
bdmurray	zul: Can you elaborate on Step 3 of the test case in bug 227410?	19:49
uvirtbot	Launchpad bug 227410 in bacula "[SRU] catalog Backup fails because .my.cnf is not read" [Medium,In progress] https://launchpad.net/bugs/227410	19:49
osmosis	whats the virsh command to halt a domain ?	20:20
soren	osmosis: virsh shutdown foo	20:27
osmosis	soren: destroy did the trick. shutdown wasnt responding.	20:27
osmosis	Not sure what it wasnt responding. Looks like domain utilization for that domain went through the roof.	20:28
soren	osmosis: In case acpi is not enabled for a domain, shutdown will do the same as destroy.	20:29
osmosis	right	20:29
soren	If acpi is enabled, it will send an acpi powerdown event instead.	20:29
osmosis	i think i just turned on acpi recently	20:29
soren	...if acpid is not installed in the guest, that will do nothing.	20:29
soren	If it is installed, it will shutdown nicely.	20:29
jjesse_	destroy sounds so "final"	20:29
soren	So:	20:29
soren	What you want to do is to have acpid installed and enable acpi for the domain.	20:29
soren	jjesse_: Yeah, the terminology is a bit of an acquired taste.	20:30
osmosis	yah, i ran some command before that I thought was destroy, and it ended up deleting my xml config too!	20:30
=== jjesse_ is now known as jjesse
osmosis	i think that was undefine	20:30
soren	Right.	20:31
ScottK	mathiaz: I was rather hoping you were going to send the mail about Recommends and MIR.	21:41
* ScottK is a bit busy with stuff just now.		21:41
mathiaz	ScottK: I can do it	21:44
mathiaz	ScottK: done :)	21:48
uvirtbot	New bug: #242773 in dovecot (main) "New dovecot upstream 1.1.1 release for Intrepid" [Undecided,New] https://launchpad.net/bugs/242773	21:49
lukehasnoname	when is/was the debian import freeze	21:50
mathiaz	lukehasnoname: thursday - https://wiki.ubuntu.com/IntrepidReleaseSchedule	21:51
jedi1	hi	21:51
jedi1	has anyone installed sound drivers in ubuntu server?	21:51
lukehasnoname	thanks. Is there some notification for package requests on launchpad that it comes through debian first?	21:52
jedi1	I compiled alsa sources, I think I have kernel module for soundcard running	21:52
jedi1	but still can get no sound	21:52
ivoks	why would you compile drivers?	21:55
ivoks	they are already in kernel	21:55
jedi1	hmm it wasn't working out of box after installing alsa from repo	21:55
jedi1	so I decided to try compiling all of alsa manually	21:56
trappist	when I start slapd with the init script, there's no indication that anything's gone wrong, but there's no slapd process. any ideas what's up?	21:56
ivoks	trappist: check logs	21:56
jedi1	I thought it would work after I run alsaconf (used that on debian) but it wasn't in ubuntu repo	21:56
ivoks	trappist: and report a bug about init script	21:57
jdstrand	is anyone here up on ruby? I am trying to run some test suites to verify security patches, but am having some problems getting into ruby build system	21:57
trappist	ivoks: the only log I can find is in syslog, and I don't see anything interesting: @(#) $OpenLDAP: slapd 2.3.30 (Mar 5 2008 15:05:23) $ ^Ibuildd@terranova:/build/buildd/openldap2.3-2.3.30/debian/build/servers/slapd	21:57
jedi1	anyone does that seem ok ?	21:57
jedi1	http://rafb.net/p/9N5EbA51.html	21:57
ivoks	jedi1: try starting alsamixer	21:57
jedi1	ivoks already did that, I put everything on 100% there	21:57
ivoks	so, sound card is recognized	21:58
ivoks	did you unmute it?	21:58
sommer	trappist: try running slapd from console with debugging: sudo slapd -u openldap -g openldap -f /etc/ldap/slapd.conf -d -1	21:58
jedi1	ivoks, did ths amixer set Master 100% unmute	21:58
jedi1	*this	21:58
ivoks	and which audio card is that?	21:59
trappist	sommer: thanks, that gives me something to look at	21:59
ivoks	do you have more than one sound cards?	21:59
jedi1	hda_intel	21:59
jedi1	just one	21:59
jedi1	integrated on mobo	21:59
ivoks	triple check your speakers and cables :D	22:01
jedi1	ivoks hmm I try that, tho it worked on windows last time	22:01
jedi1	uhh lol	22:02
jedi1	it works now	22:02
ivoks	it was the cable, right?	22:02
jedi1	hmm wrong slot	22:03
ivoks	there you go...	22:03
jedi1	interesting tho it works on windows	22:03
jedi1	thanks ivoks	22:03
ivoks	np	22:03
ivoks	too bad you compiled drivers and created a mess in kernel :D	22:03
jedi1	just modules so not a real problem	22:04
trappist	sommer: I get "alock package is unstable" and "bi_db_open failed", which google says is permissions on /var/lib/ldap, which look correct. but the contents of that dir are mostly 600 owned by root:root, and I'm chowning it all to openldap. any ideas?	22:05
ericmza	don't know if this topic belongs here, but - I'd like to know what others are doing to resolve the Ruby vulnerability for Gutsy	22:05
ivoks	so... (offtopic) symbian goes open source	22:05
ivoks	trappist: you started openldap as root, bad thing	22:05
trappist	ivoks: I'm just running the init script (as root)	22:06
sommer	trappist: sudo chown openldap.openldap /var/lib/ldap/*	22:06
sommer	trappist: did you do a slapadd recently?	22:06
ivoks	trappist: but at some point in past, you started it as a root	22:06
trappist	sommer: yeah I did chown it	22:06
sommer	does it work now?	22:07
ivoks	jdstrand: ericmza looked like right guy for ruby, but he left too soon :D	22:07
ivoks	or too early	22:07
trappist	ivoks, sommer: I'm trying to set up openldap, so I've got a script that clobbers that whole directory and restarts openldap whenever I make a change. and chowns it.	22:07
jdstrand	ivoks: thanks	22:07
jedi1	yup ivoks, nice thing of Nokia, tho I'm not sure if symbian can compare to linux if open moko and android are getting some nice phones with them	22:08
trappist	sommer: my script stops slapd, kills the contents of /var/lib/ldap, chowns it, does a slapadd and restarts it.	22:08
sommer	trappist: do another chown openldap.openldap after the slapadd	22:08
ivoks	jedi1: symbian will be open sourced in next couple of years, i also think that will be too late	22:09
trappist	sommer: ah!	22:09
trappist	sommer: I think that did the trick	22:09
sommer	trappist: you could also try doing slapadd -u openldap -g openldap -l you_file.ldif	22:09
ivoks	but, sudenly, my phone doesn't feel so bad anymore :D	22:09
trappist	shoulda thought of that myself	22:09
trappist	sommer: I'll do that too, thanks	22:09
sommer	trappist: np	22:10
ivoks	sommer: ldap master of science	22:10
ivoks	;)	22:10
sommer	trappist: you might also look into ldapadd... lets you make changes without stopping slapd :)	22:10
ivoks	all that hanging with howard finally pays of :D	22:10
sommer	ivoks: heh... not even close, I've just borked slapd enough times :)	22:10
jedi1	ivoks I just wonder why nokia won't switch to android, I heard that someone already installed it on n95	22:11
trappist	sommer: yeah that's for later :) I'm trying to get it set up now, and I'm constantly screwing it up, so once I get it right I'll start using those other tools	22:11
sommer	ivoks: heheh... I did pick up some stuff	22:11
ivoks	jedi1: they buyed trolltech and now symbian... it would be too bad to just drop it...	22:12
jedi1	ivoks: but still would be easier to use qt on openmoko or android than symbian	22:13
trappist	sommer: but, slapadd is not impressed with my options. the man page says -g and -u aren't what we thought they were.	22:13
jedi1	but I guess that nokia knows what they're doing	22:14
sommer	trappist: heh, I could have been wrong about them... trust the man pages	22:14
trappist	sommer: am I missing auth info in my data, or in slapd.conf? ... SASL(-13): user not found: no secret in database	22:14
trappist	I get that when I ldapsearch	22:14
sommer	trappist: I was probably thinking of ldapadd	22:15
trappist	works if I ldapsearch -x	22:15
sommer	trappist: right that error means it's looking for sasl, which you may not have configured	22:16
sommer	I usually just use -x	22:16
trappist	yeah I haven't, but I should before I roll this out	22:16
trappist	trying to come up with an address book solution I can use from anywhere	22:16
trappist	sommer: is it possible to auth against ldap itself, and not use a sasl db? I've got an entry with a uid, cn, userPassword etc. If I bind anonymously it all works, but if I try to auth with that info I get invalid dn syntax.	22:26
jedi1	bye	22:40
sommer	trappist: it is possible, how are you trying to auth?	22:45
trappist	sommer: at the moment I'm not. but I'm going to have to soon, and I'd like to auth against an ldap user database.	22:46
sommer	trappist: just configure what ever app it is to look for the correct uid, and you should be good to go	22:48
trappist	ok	22:48
trappist	got kontact working beautifully with it so far :)	22:49
osmosis	how does wget file resume work?	22:51
ivoks	wget -c	22:54
ivoks	--help is wonder-switch	22:54
trappist	sommer: I say "ldapadd -D 'uid=trappist,dc=linuxkungfu,dc=org' -f contact.ldif", I get a password prompt, I enter my password, and I get user not found: no secret in database. where I'm pretty sure it's in there. any idea where I've gone wrong?	22:56
trappist	sommer: this is pretty much my whole db: http://linuxkungfu.org/tmp/init.ldif	22:57
nxvl	kees: i have just send you an e-mail	23:35
nxvl	kees: i have just uploaded a new version of augeas with the changes you send me	23:36
nxvl	kees: send me an e-mail if you find some more issues please!	23:37
=== dan_ is now known as dantalizing
zul	mathiaz: no I was getting some dental work done	23:58

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!