[00:18] <Kapli> Also, how can i specify a root directory for a specific user?
[00:20] <ScottK> Kapli: man adduser
[00:25] <Kapli> will adduser --home restrict the user from every other directory
[00:25] <Kapli> meaning when he connects with ssh client he will be in that directory and cant go anywhere else
[00:30] <jamesrfla> Hi
[00:30] <jamesrfla> wow lots of people
[00:34] <ErikWestrup> hi there
[00:39] <Kapli> i dont want a user to go anywhere than his home directory, how to do this?
[00:40] <jamesrfla> permissions
[00:40] <jamesrfla> don't share /home
[00:43] <jamesrfla> hope that helps GTG
[00:43] <Kapli> home dont understand :S well i found something called jail will try it
[01:00] <PrivateVoid> http://www.ustream.tv/channel/the-tech-guy-at-work
[01:01] <PrivateVoid> girls dancing
[01:01] <PrivateVoid> numa numa at my house
[01:07] <ErikWestrup> PrivateVoid is that a live thingy? If so: pretty cool
[01:08] <ErikWestrup> but I hate what it's showing (numa numa)
[01:08] <PrivateVoid> yea
[01:09] <PrivateVoid> my daughter and her friends
[01:10] <PrivateVoid> milk and cereal
[01:12]  * ScottK notes the topic and is confused about the current discussion.
[01:15] <TechPepsi> does anyone use Vent?
[01:15] <TechPepsi> what needs to be in the log  in file for vent to be started?
[01:21] <Kapli> not much
[01:21] <Kapli> let me check
[01:22] <dusty> Is it a clever idea to put your gpg public key on your website? won't that mean that anyone that has that could potentially intercept the email and read it with your public key that you made available to them via your personal website ?
[01:22] <Kapli> TechPepsi: 3.0 or 2.1 ?
[01:22] <TechPepsi> 3.0
[01:23] <Kapli> well then theres basically nothing u need to do in the ini file to make it work
[01:23] <hads> dusty: That's what public keys are all about. Protect your private key and publish your public key.
[01:24] <Kapli> but u probably want to edit the name, auth if u want passworded server and the password and also edit the adminpassword
[01:24] <Kapli> i am off
[02:37] <TechPepsi> is there any irc server soft we can wget?
[02:42] <ScottK> TechPepsi: If packages.ubuntu.com weren
[02:42] <ScottK> weren't down, search it would give you a result similar to http://packages.debian.org/search?keywords=irc+server&searchon=all&suite=unstable&section=all
[02:42] <ScottK> Have a look there for something that seems right.
[02:47] <TechPepsi> why is it down?
[02:48] <TechPepsi> it's down, right now
[03:10] <ScottK> Dunno.  Just know it's not responding.
[03:52] <TechPepsi> is there irc server software that we can edit?
[03:55] <ScottK> Does UFW have an option to block outbound connections?
[04:00] <javagamer> Can anyone help me setting up a simple mail server?  I've been following https://help.ubuntu.com/community/PostfixBasicSetupHowto#Postfix%20virtual%20Aliases%20for%20separate%20domains%20and%20Linux%20system%20accounts after getting loss on several other guides and I've gottne to switching Postfix to Maildir, but when I go to test it I sent a message to fmaster (the test account) and I can see a new message in
[04:00] <javagamer> /home/fmaster/Maildir/new/, but when I log in to fmaster and type mail it says fmaster has no mail. What should I do?
[04:06] <javagamer> Woops, looks like 'mail' doesn't work with Maildir.
[04:06] <ScottK> I'm guessing configure your mail reader correctly.
[04:13] <jdstrand> ScottK: ufw the command does not, but you can add stuff in /etc/ufw/*.rules as needed
[04:14] <ScottK> jdstrand: I'm thinking that would be a good feature.
[04:14] <ScottK> It's very common in Windows firewalls.
[04:30] <hads> There is a version of 'mail' that can handle maildir. Can't remember what package provides it right now.
[04:40] <javagamer> What should I do about "warning: do not list domain javagamer.net in BOTH mydestination and virtual_alias_domains" if I want javagamer@mysite.com, comment@mysite.com, and support@mysite.com all to go to the javagamer account?
[04:43] <javagamer> It's in the mail.log, reffering to postfix
[04:48] <ScottK> javagamer is a real account?
[04:49] <javagamer> Yes, but comment and support aren't.
[04:51] <ScottK> I see
[04:52] <ScottK> IIRC make the domain virtual (remove it from mydestination) and then mess with virtual aliases or some such to get javagamer where you want it.
[04:52] <ScottK> It's been quite some time since I messed with that, so I don't recall for sure.
[04:53] <javagamer> I'll try that, thanks.
[05:15] <javagamer> I tried adding javagamer and fmaster to the aliases, but it still complained about them being unknown in the virtual user database.
[05:16] <javagamer> So I'm just not using virtual users for now
[05:24] <AndyB> Anyone able to help with an apache issue?
[05:27] <ScottK> I'm sure not me, but if you ask your actual question your odds go up.
[05:29] <AndyB> Hm, well im on Ubuntu Desktop 8.4, noone in #ubuntu could help. Im trying to install apache. I have tried both tasksel and apt-get for installing apache
[05:29] <AndyB> Task sel failed completely and crashed, while sudo apt-get install apache2 worked fine, installed, and started, said it was working, but when i open localhost in my browser i see nothing
[05:30] <AndyB> It is running, ive restarted, checked configs, nothing in error log.. no idea why its not displaying a page. netstat says nothing is bound to port 80.. but in the config file its set to Listen on 80. Anyone any idea?
[05:31] <ScottK> My second bit of advice is for patience.
[05:31] <ScottK> This is a pretty dead time of day here.
[05:31] <AndyB> I have patience. I will wait for my answer.. most likely get some sleep as its 5:30, but i will wait :)
[05:33] <javagamer> Certain it's running, when my server has problems it can go down and not come back by a restart command.  Use ps -ax to check if it's running, if not try restarting, then check the error log if it's not up.
[05:33] <javagamer> I'm far from an expert with apache and I just got my server working properly yesterday, so no guarantee that will work.
[05:34] <AndyB> hmm
[05:34] <AndyB> its returning four results for "/usr/sbin/apache2 -k start"
[05:35] <javagamer> But localhost:80 gives you nothing?
[05:35] <AndyB> Ok, ive stopped the apache, and re-ran your command, no apache processes now. restarted, got them again. and localhost:80 just times out
[05:36] <javagamer> I'm stumped, I'm sure once this gets more active someone will be able to help you.
[05:36] <AndyB> Thanks:)
[05:37] <javagamer> It wouldn't hurt to do an update with apt-get update and apt-get upgrade
[05:38] <javagamer> Does javagamer.net display anything for you?  I think my ISP is blocking port 80 :(
[05:38] <AndyB> Done :) upgrade did nothing but update did some. Going to restart apache and check
[05:39] <AndyB> No it also times out :(
[05:39] <AndyB> you forwarded the ports?
[05:39] <javagamer> Yeah, I can get it on my lan, I have a feeling it's blocked.
[05:40] <javagamer> My ISP doesn't let me host servers, so I'm switching soon as I get the chance.
[05:41] <AndyB> :) good idea
[05:41] <javagamer> Well, night.  Good luck getting apache to work.
[05:41] <AndyB> Thanks:) NIght
[05:47] <AndyB> Right well im going to get some sleep, almost 6am and i still cant fix my apache issue. If anyone could offer any advice please, please send me a /msg and ill check again after a few hours sleep.
[06:13] <ScottK> lamont: RE Bug 247322: I'm too tired to consider dealing with git.  Debiff in the bug has the basic stuff.  Over to you to do some debian/rules magic to shove them in the .deb.
[06:14] <ScottK> Oops.
[06:14] <ScottK> That would be Bug 247332.
[06:14] <ScottK> Did I mention I was tired?
[06:14] <ScottK> Off to bed.
[08:51] <TechPepsi> haha
[08:51] <TechPepsi> you are?
[08:52] <Deeps> javagamer: just run your webserver on a different port?
[12:50] <AndyB> Gah im back sorry :( Was on maybe six hours ago, anyone any idea on the apache issue?
[13:00] <javagamer> Hey AndyB
[13:00] <AndyB> Hii :)
[13:06] <javagamer> AndyB, why are you putting Apache on a desktop installation?
[13:08] <AndyB> Because i am a PHP Developer, I only want to test some of my apps on localhost before upping them to my site.
[13:09] <javagamer> Ah.
[13:11] <\sh> AndyB: what was the issue?
[13:12] <AndyB> Apache is not working
[13:12] <AndyB> Nothing in error logs, install is correct, i have restarted, reinstalled, it is running.. the process is there
[13:13] <AndyB> But nothing is listening on 80 for netstat. And localhost times out
[13:14] <\sh> AndyB: checked ports.conf that apache is really trying to listen on port 80?
[13:14] <AndyB> Yes it is
[13:14] <javagamer> This might help: http://www.spoffle.com/technical/how-to-set-up-lamp-on-ubuntu-desktop-edition/
[13:15] <javagamer> Did you start with sudo? Otherwise apache can't get port 80.
[13:15] <AndyB> Yes i did
[13:15] <\sh> AndyB: fuser -n tcp 80 does say?
[13:16] <AndyB> Nothing.. the command runs but doesnt output anything
[13:16] <\sh> AndyB: ps -ef|grep apache but gives you an output?
[13:18] <AndyB> http://paste.ubuntu.com/33614/
[13:19] <\sh> AndyB: and what gives: netstat -anp|grep apache ?
[13:20] <javagamer> AndyB: Your ps output looks just like mine.  Be sure to do sudo netstat
[13:20] <AndyB> http://paste.ubuntu.com/33616/
[13:21] <javagamer> Try adding sudo to see all processes
[13:21] <\sh> AndyB: sudo netstat -anp|grep apache pls :)
[13:21] <AndyB> http://paste.ubuntu.com/33618/
[13:21] <AndyB> Thats sudo
[13:23] <javagamer> tcp6? Is it running only on IPv6 networks?
[13:23] <AndyB> I have no idea
[13:24] <javagamer> Well, that would *might* explain why it's not working.  I'll go look for what configures it for IPv6, this is just as guess though.
[13:24] <AndyB> ill hit google too
[13:25] <javagamer> "if you run Apache on systems where IPv6 support exists, Apache gets IPv6 listening sockets by default"
[13:25] <javagamer> from http://www.linuxjournal.com/article/5451, not sure if that is/isn't backwards compatible
[13:26] <\sh> javagamer: the output is correct...
[13:26] <\sh> AndyB: so you apache is listening on port 80 :)
[13:26] <AndyB> i have no idea why its not working then:(
[13:27] <javagamer> Does it have a default page?
[13:27] <\sh> AndyB:  telnet 127.0.0.1 80 ?
[13:27] <javagamer> Look for anything in apache2/sites-enabled/
[13:27] <\sh> AndyB: and if this is not working try telnet <your real ip address of eth0> 80
[13:27] <AndyB> it has a default page in www but thats not loading
[13:27] <AndyB> and 127.0.0.1 on telnet doesnt load, hold on ill try the other
[13:28] <AndyB> Real address? as in my real ip? or my internal ip?
[13:28] <\sh> AndyB: the ip of eth0
[13:30] <AndyB> Same result
[13:33] <AndyB> It really has me confused:(
[13:34] <\sh> well past your /etc/apache2/sites-{available,enabled}/ ls output and the contents of default (when you didn't tweak the config)
[13:35] <\sh> AndyB: the standard install just works out of the box.
[13:35] <AndyB> I know :( but it doesnt. Ive tried reinstalling, and i tried tasksel for LMAp
[13:36] <\sh> AndyB: just increase the loglevel to debug or error in apache2.conf and see then...I wonder if you have no problems with the vhosts stuff
[13:37] <\sh> no namevirtualhost or something like this
[13:39] <javagamer> AndyB, unless you did apt-get purge before reinstalling, the reinstallation didn't reset your config files.
[13:40] <AndyB> I did do a purge
[13:43] <AndyB> is there any possible firewall getting in the way?
[13:43] <javagamer> Not by default
[13:44] <AndyB> Tried editing the loglevel, still nothing
[13:44] <javagamer> Try doing an nmap scan, nmap -A 127.0.0.1, that should tell you if the port is open.
[13:45] <AndyB> installing nmap
[13:46] <AndyB> Starting Nmap 4.53 ( http://insecure.org ) at 2008-08-03 13:45 IST
[13:46] <AndyB> Note: Host seems down. If it is really up, but blocking our ping probes, try -PN
[13:46] <AndyB> Nmap done: 1 IP address (0 hosts up) scanned in 2.078 seconds
[13:47] <javagamer> Can you ping yourself?
[13:47] <\sh> AndyB: did you enable ufw ?
[13:47] <AndyB> No i cannot ping myself.
[13:47] <\sh> sudo ufw disable
[13:47] <AndyB> sh: no, what is ufw?
[13:47] <\sh> sudo iptables -F is also working
[13:47] <\sh> ubuntu firewall
[13:48] <jdstrand> ufw allows ping by default
[13:48] <javagamer> Do nmap -PN -A 127.0.0.1
[13:48] <\sh> AndyB: so ping 127.0.0.1 doesn't work?
[13:48] <\sh> jdstrand: yes...at least localhost :)
[13:49] <jdstrand> though the 'disable' command is convenient to flush everything in case there are some errant iptables rules
[13:49] <AndyB> Firewall is not loaded, Javagamer: I did, and posted the results above.
[13:49] <AndyB> sh: No, Ping 127.0.0.1 doesnt work
[13:49] <javagamer> AndyB: Notice the -PN switch this time.  That makes it continue, despite not being able to ping you.
[13:51] <AndyB> looks like it will take some town
[13:51] <AndyB> **time
[13:51] <javagamer> It might, it will scan your computer and try and identify everything running on each port.
[13:57] <AndyB> Looks to be stuck on 7.58%
[13:57] <AndyB> Would a complete reinstall of ubuntu fix the issue?
[14:05] <crypted> Problem: machine refuses to connect to internet
[14:05] <crypted> Please help! :(
[14:06] <crypted> I tried everything I know of... :(
[14:08] <AndyB> just over 2 minutes. . patient
[14:49] <`ph8> hi guys, i've got a server install that appears to be suddenly dropping network connections (br0 entering disabled state intermittently?) - i'm stuck on how i could possibly debug, there doesn't appear to be any information in log files - does anyone have any ideas?
[14:53] <`ph8> ah, datacentre's fault!
[14:53] <`ph8> happy days
[14:53] <Nafallo> datacenter?
[14:54] <Nafallo> that sounds weird.
[14:54] <`ph8> in what way?
[14:54] <Nafallo> they usually don't care about network that much. rather power and space.
[14:55] <`ph8> i'm connected to a faulty switch
[14:55] <Nafallo> ah. ISP then.
[14:55] <`ph8> but i shouldn't be on that switch in the first place, hence them not realising the problem straight away
[14:55] <`ph8> sorry, my bad
[14:58] <exot> hello, how do I configure the routing table to route the traffic came by vpn to the vpn server
[14:58] <exot> Deeps, I think you will kill me ;)
[15:00] <Deeps> ?
[15:00] <Nafallo> ah. BSQ. wouldn't actually have been surprised if it had been the DC then ;-)
[15:00] <Deeps> oh, did we do this before?
[15:00] <exot> hehe many :D
[15:00] <Deeps> route add x.x.x.x/yy gw vpn.server.ip
[15:00] <Deeps> where x.x.x.x/yy is the vpn ip range
[15:00] <exot> and about dev ppp
[15:01] <Deeps> i'm assuming here that the vpn server is in the same subnet
[15:01] <`ph8> Nafallo, how did you trace that back? :)
[15:01] <exot> yes it is
[15:01] <exot> hmm .. the vpn range 192.168.10.0 . and the network 192.168.200.0
[15:01] <Nafallo> `ph8: ph8's IP, whois and contract information ;-)
[15:02] <`ph8> ahh
[15:02] <`ph8> :)
[15:02] <Nafallo> contact even
[15:04] <exot> deeps, you assumed a virtual interface holds an ip of the vpn range, right ?
[15:04] <exot> on each server
[15:06] <Deeps> no
[15:10] <exot> deeps, I get the message : route: netmask 000000ff doesn't make sense with host route
[15:15] <javagamer> Anyone here using FiOS?
[15:34] <`ph8> javagamer, fiOS?
[15:41] <javagamer> Verizon FiOS
[15:53] <ScottK> javagamer: Yes.
[15:55] <javagamer> ScottK: Do you like it? I've been considering switching to FiOS Business.
[15:55] <ScottK> That's what I have.
[15:55] <ScottK> Yes.  I like it.
[15:56] <ScottK> It's not as reliable as running a server from a well run data center, but very usable for most purposes.
[15:56] <ScottK> Certainly more reliable than the Comcast Business I used to have.
[15:58] <ScottK> lamont: Did you see my ping earlier?
[16:02] <AndyB> I got Apache to work ^^ Did a complete reinstall of ubuntu and apt-get apache2. Works great now
[16:02] <javagamer> Right now I have Optimum Online and I'm choosing to switch to FiOS for business service.  THe speed is pretty reliable, right?
[16:03] <javagamer> AndyB: Good to hear.  Reinstalls always seem to fix things.
[16:04] <ScottK> javagamer: It seems so to me, but I don't take measurements.
[16:05] <ScottK> AndyB: Do you know what went wrong the first time?
[16:05] <javagamer> ScottK: Alright, as long as it seems consistent, I know my current internet can drop to sluggish speeds at times.
[16:06] <ScottK> javagamer: Depending on where you are, I have no idea how reliable their network is nation wide ...
[16:11] <AndyB> ScottK: No idea. I tried EVERYTHING. It was running, listening on 80.. But timing out. I tried reinstalling apache, restarting, tasksel.. everything. Just a fluke error i guess.
[16:11] <ScottK> AndyB: OK.  It'd have been useful to know (for docs if nothing else), but I guess it gets written off to "Stuff happens".
[16:12] <AndyB> Yeah :) I would have liked to know. There are a few topics around on google of people with similar issues. Would have been nice to offer an answer. But i guess im just glad its working now
[16:27] <`ph8> should I be able to remove hald and dbus on a server machine? (I've converted it from desktop to server)
[16:33] <dubbers> server unable to do apt-get?
[16:40] <lamont> ScottK: now that I'm awake, yes I've seen it.
[16:41] <ScottK> lamont: OK.  Balls in your court now.
[16:41] <ScottK> Ball's
[16:41] <lamont> yeah
[16:41] <ScottK> lamont: What do you think about Russell Cocker's script?
[16:41] <lamont> I'll make sure I fetch it (and the rest) before I go wandering off to vacation for a week on monday afternoon
[16:41] <lamont> same bug?
[16:41] <ScottK> Great.
[16:41] <ScottK> No.  He mailed it to you.
[16:42] <ScottK> lamont: http://etbe.coker.com.au/2008/08/02/postfix-and-chroot/ for context.
[16:43] <lamont> I don't have his email - looking at the URL
[16:43] <ScottK> It was sent to your debian address.
[16:44] <ScottK> He cc'ed me.  I can forward.  Where's best?
[16:45] <lamont> lamont@d.o will go the same place everything else does...
[16:45] <lamont> mind you , I just went looking for mail with 'russell' in the headers...
[16:46] <ScottK> Want a message ID?
[16:46] <lamont> sure
[16:46] <ScottK> I just forwarded it to you.
[16:46] <ScottK> Message-Id: <200808021324.30065.russell@coker.com.au>
[16:47] <lamont> thanks - it wasn't in my inbox
[16:47] <ScottK> Weird.
[16:48] <lamont> well, I found the log of it passing through the mail server on Friday...
[16:48] <ScottK> ;-)
[16:49] <lamont> and got it
[17:48] <ZmAY> can someone help me, apache2 wont start, i think its something with that http://pastebin.com/d66c5aeb7
[17:48] <ZmAY> i am newbie
[18:28] <Assid> heya
[18:28] <Assid> can someone pastebin their sources.list please
[18:28] <Assid> i need 1 more alternate mirror
[18:32] <dusty> Hey can anyone point out what i'm doing wrong here: http://pastebin.ca/1091930 - this is on Ubuntu 8.04 with iptables v1.3.8, can't see the error i'm making ?
[18:51] <Deeps> sounds like the error is in line 5 of your httpd.conf
[18:51] <Deeps> oh, no, sorry, wrong paste
[19:23] <Kapli> How do I ensure my ubuntu server is up to date on everything? Is it only with apt-get update and apt-get upgrade ?
[19:30] <dusty> Hey guys, why would this iptables script lock me out of my box: http://paste.stoned-hacker.co.uk/31 i can't access ssh then ?
[20:24] <soren> ScottK: I'm replacing my homegrown virus/spam filtering magic with amavisd-new, and I'm stumbling a bit. Is it just me or is the documentation absolutely horrendous?
[20:24] <ScottK> soren: It's essentially written for Perl programmers, so by definition, yes.
[20:25] <ScottK> Any system where you have to use Perl syntax in the config file is, um, not the most transparent.
[20:25] <soren> ScottK: I'm not even sure what I'm looking at *is* the documentation.
[20:26] <soren> Example:
[20:26] <ScottK> The main trick for modifying your configs is to add whatever you want to 50-user so you don't get bothered on upgrades.
[20:26] <soren> I'm looking at /etc/amavis/conf.d/15-content_filter_mode..
[20:26] <soren> It tells me to *add* some *bypass* stuff to *enable* filtering. If that's not confusing, I don't know what is.
[20:27] <soren> ...so I'm trying to find some documentation on bypass_virus_checks_maps and bypass_spam_checks_maps and I'm just not finding any.
[20:28] <ScottK> soren: It's been a while since I"ve used it too and so I'm still getting something set up here.
[20:29] <ScottK> I think what you want is something on policy banks.
[20:37] <soren> ScottK: I see. Thanks for the pointer.
[20:39] <soren> ScottK: Perhaps you just know the answer.. I want to not quarantine spam, but just tag it, so that my users can do their own filtering.
[20:39] <ScottK> It's an interesting package.  The last maintainer upload was in July 2005.
[20:39] <soren> Since then it's been all NMU's?
[20:39] <ScottK> soren: No.  I'm in the early stages of getting an install together.  The last time I tried was on Dapper.
[20:40] <ScottK> There are two uploaders that are active, so not technically NMUs.
[20:42] <ScottK> Server Guide is very basic on the topic: https://help.ubuntu.com/8.04/serverguide/C/mail-filtering.html
[20:42] <ScottK> We should fix that for Intrepid.
[20:45] <soren> amavis' own documentation on the integration between itself and postfix is really quite good, I found.
[20:45] <soren> amavis' documentation on itself... not so much.
[20:48] <ScottK> soren: I encourage you to take good notes and push them at sommer so he can shove them into the server guide then.
[20:48] <ScottK> I plan to do the same.
[20:50] <ScottK> Actually it's the need to take good notes that's got be stopped.  I want to be methodical and that takes time ...