[01:02] <giovanni> hello!! there i need Help in IPTABLES rules, so i put "iptables -A INPUT -j DROP", how can i remove this rules ? :-]
[01:03] <mathiaz> giovanni: iptables -D INPUT -j DROP
[01:04] <mathiaz> giovanni: -A -> Append ; -D -> Delete
[01:04] <giovanni> danke!
[01:25] <tacone> what's the best way to detect ssh servers in the local network ?
[01:25] <mathiaz> tacone: use nmap
[01:25] <hads> nmap would be
[01:26] <tacone> server don't normally run avahi, right? :)
[01:26] <hads> nmap -p 22 192.168.0.0/24
[01:27] <tacone> ok. another quick question, may I '
[01:27] <tacone> ?
[01:27] <mathiaz> tacone: sure
[01:27] <tacone> (we're working on ssh for rapache)
[01:27] <tacone> 1 linux box may be connected to more than 1 local network at the same time, right ?
[01:28] <hads> Yup
[01:28] <tacone> I need a way to detect what the localnetworks are. I'd use ifconfig. is there a less output command ?
[01:28] <tacone> what's the best practice ?
[01:28] <hads> In a bash script or...?
[01:29] <tacone> we use python, but use shell commands very often.
[01:29] <tacone> so a shell command would be ok.
[01:30] <hads> In the shell you could use `ip`, the output may be easier to parse than ifconfig. There's probably a pythonic way to do it though.
[01:31] <mathiaz> tacone: ifconfig | grep 'inet addr' | cut -d: -f2 | cut -d\  -f1
[01:31] <tacone> ok, I'll look into ip..
[01:31] <tacone> ops
[01:31] <tacone> :)
[01:31] <tacone> thank you.
[01:31] <mathiaz> tacone: ^^ that gives a list of ip that are configured on the system
[01:32] <mathiaz> tacone: the last cut command is: cut -d\  -f1
[01:32] <tacone> right
[01:32] <mathiaz> tacone: which two spaces after \
[01:32] <tacone> right, I got it
[01:32] <tacone> copy paste never fails ;-)
[01:32] <tacone> thank you very much for your help
[01:32] <hads> Here's a snippet too; http://lists.apple.com/archives/macnetworkprog/2008/Feb/msg00071.html
[01:33] <hads> Which is just parsing output so not difference/point
[01:33] <tacone> right.
[01:33] <tacone> I'll try each :-)
[01:33] <tacone> thanks !
[06:15] <flyback> anyone tried to roll their own kernel for 6.06.2lts
[07:06] <antdedyet> testing...
[07:14] <Blaenk> hey guys why is it that when I ln -s a folder in my home directory to my htdocs folder and I access it I get a 403 forbidden error? stupid question I imagine
[07:19] <henkjan> Blaenk: access rights. apache runs as www-data. www-data has no accessrights on your home folder
[07:19] <Blaenk> henkjan: ohhh okay, how may I add them to this particular folder henkjan ?
[07:19] <Blaenk> say it's /home/me/mypictures
[07:19] <Blaenk> of course I did ln -s mypictures /path/to/htdocs but that didn't work
[07:21] <Blaenk> I would /really/ appreciate any help
[07:21] <Blaenk> mypictures is even chmod 777
[07:22] <vk5foss> Blaenk: why symlink it like that?
[07:23] <Blaenk> because I'm a noob, and that's the only way I imagined I could do it
[07:23] <vk5foss> Blaenk: read up on 'userdir' and 'public_html'
[07:23] <Blaenk> henkjan says I must give www-data access rights to the folder but I can't remember how
[07:23] <vk5foss> and *do not ever* let www-data write to your home directory
[07:23] <vk5foss> and *do not ever* set your home directory 777
[07:23] <Blaenk> it's not
[07:24]  * antdedyet wonders what the Ubuntu Server Guide looks like these days
[07:26] <Blaenk> vk5foss: where is the public_html folder?
[07:26] <Blaenk> I only see htdocs
[07:26] <Blaenk> okay so basically, all I want to do is expose a folder in my home directory to my site so that I can download things off of it (documents)
[07:26] <vk5foss> Blaenk: and basically, i'm telling you not to.
[07:27] <vk5foss> 15:53 < vk5foss> Blaenk: read up on 'userdir' and 'public_html'
[07:28] <Blaenk> ah apache2.conf
[07:28] <Blaenk> or no wait this thread's 3 years old
[07:29] <vk5foss> ~ping
[07:29] <Blaenk> where can I find the file where I put the UserDir directive?
[07:29] <vk5foss> !ping
[07:29] <ubottu> ping yourself ;-) really the diodes all down my left side are sore
[07:29] <vk5foss> !serverguide
[07:29] <ubottu> The Ubuntu server guide may be found at http://help.ubuntu.com/8.04/serverguide/C/
[07:30] <antdedyet> Blaenk: you may prefer the apache2-doc package for reference material on userdir.
[07:30] <Blaenk> so aside from being insecure, is it just not possible to do what I mentioned?
[07:31] <vk5foss> sure, its possible
[07:31] <antdedyet> Blaenk: it's not a recommended practice that you would ever want to exhibit in a public internet environment due to various concerns, basically. :)
[07:31]  * antdedyet reiterates
[07:31] <Blaenk> well honestly this directory, this server in fact is just meant for this
[07:31] <Blaenk> it's not my home computer or anything
[07:31] <Blaenk> please, if you would be so kind, how can I do this? all security risks aside
[07:32]  * vk5foss lets antdedyet handle this - i'm about to breach the CoC i suspct ...
[07:32]  * vk5foss not here
[07:32] <antdedyet> Blaenk: We don't provide the rope for anyone... :)
[07:33]  * antdedyet heads off in search of liquid refreshment... brb
=== freaky[t] is now known as fReAkY[t]
[08:29] <kraut> moin
[08:33] <flyback> how do I enable root logins
[08:46] <stka> hi
[08:49] <stka> I'm looking for thomeone who can build neu pakages for bind9 and dhcpd WITH ldap-support. I have writen a workshop for LDAP, so far I use suse but I would like to switch tu ubuntu-server, but the bind9 and the dhcpd is not linked against ldap, but I like to put the infos for dhcpd and bind9 into the ldap-tree.
[09:10] <antdedyet> stka: perhaps you will be interested in the ldap2dns and ldaptor-utils to see if they provide the functionality required for your environment
[09:11] <stka> antdedyet: are these special pakages?
[09:11] <antdedyet> both packages can be found in ubuntu 8.04.1
[09:11] <stka> ok I'll take a look
[09:12] <antdedyet> just after 3am... I may be sleeping soon.
[09:15] <stka> ok
[09:16] <stka> antdedyet: but it is not what I'm looking for. I will put all the zone-infos and configuration in the ldap-tree
[09:18] <stka> the same with dhcp. All infos about reservations ans configuration for the clients should be in the ldap tree. There are patches for bind and dhcpd but I'm no programmer, I work with networks, I tried it by my self to patch bind and dhcp but I didn't get it running :-(
[09:22] <stka> with ldap2dns there ist still a ascii file withe the zone infos. The tool generates the files. With the patched bind you can use ldap diectly without any ascii file
[09:24] <antdedyet> Just a suggestive solution that happen to be available. I personally have reserverations about ldap being able to fulfill the capacity of nameservers I manage, but that's only speculative word of mouth and light experience application with ldap (read: possible FUD)
[09:28] <antdedyet> IIRC, directory reads would probably be within reasonable range of performance of the dns servers, but writes wouldn't. Which yep ... is what you want to do. However, I'm not versed in the available patches or native ldap linkage in bind9, nor do I have enough motivation to provide a patched package yet. :)
[09:30] <stka> no problem antdedyet I'm searching for someone who is interested and can help me. Ehat I can't understand is, that none of the developers od bind puts ldap support nativ into bind9. Many admins like to put all nds and dhcp infos into ldap.
[09:34]  * antdedyet guesses that someone may have not volunteered to write ldap communicating code into bind9 yet ... not an informed opinion thru, straight outta the ether. :)
[09:36] <stka> the patch is available for bind and dhcpd, I think it's not a big deal to put this in the package
[09:38] <antdedyet> stka: but you were not able to patch it?
[09:39] <stka> patch was not the problem but I didn't get it build
[09:39] <stka> as I said, I'm no programmer
[09:42] <stka> this is the old patch http://www.venaas.no/ldap/bind-sdb/old.html I can't reache the new page http://bind9-ldap.bayour.com/
[09:44] <stka> here ist the dhcpd patch http://home.ntelos.net/~masneyb/
[12:09] <penper> hi! I'm about to order a VPS solution. If I ask them to install Ubuntu Server, will I be able to ssh into it considering that all ports are blocked by default? Thanks :)
[12:11] <ghaleb_> hello, how can I know the version of a package before I install form apt ?
[12:12] <hads> penper: If all ports are blocked then all ports are blocked so, no.
[12:12] <hads> ghaleb_: aptitude show package
[12:13] <ghaleb_> hads: I'm trying to use it :D .. still can't search for a package to get description or sth
[12:14] <penper> hads: I asked because I imagined this was a common problem with Ubuntu Server, so maybe there was a solution for it? Maybe an option I need to ask them to set during the install or something
[12:15] <ghaleb_> hads: thank you I got it :)
[12:15] <hads> penper: Ubuntu won't block ports by default
[12:15] <penper> aha, ok... thanks
=== Nafallo_ is now known as Nafallo
[12:41] <henkjan> soren: planet.ubuntu.com doesnt like the html tags in your blogpost
[12:44] <soren> henkjan: Oh, thanks for the pointer.
[12:46] <soren> henkjan: S
[12:46] <soren> henkjan: There. Should be fixed with next update. Thanks again!
[12:46] <henkjan> soren: np :)
[12:47] <henkjan> my little help to ubuntu-server :)
[14:38] <nxvl> soren: souldn't ubuntu-vm-builder be removed from the repos?
[14:41] <soren> nxvl: When vmbuilder fully replaces it, yes.
[14:41] <nxvl> oh
[14:41] <nxvl> ok
[14:41] <nxvl> :D
[14:45] <zul> soren: please add python-cheetah to the build-deps :)
[14:45] <nxvl> btw
[14:46] <nxvl> i'm quite confused about the meeting date
[14:46] <zul> which meeting date?
[14:46] <nxvl> it says Tuesday, 22nd of September
[14:46] <nxvl> zul: server team meeting
[14:46] <nxvl> we are on Tuesday and the 22nd was yesterday :S
[14:50] <zul> nxvl: mathias might have not been awake when he sent that im pretty sure its today :)
[14:51] <nxvl> :D
[15:12] <zzgvh> Hi all. I'm new here and somewhat of a ubuntu newbie too. So pls bear with me if I ask "stupid" questions. I'm struggling with kvm, trying to get a hardy server host running a number of hardy server guests. Anyone here willing/able to try help me? No use going into a long problem description if no one's listening ;-)
[15:34] <Shanix> zzgvh, try to take a look here: https://help.ubuntu.com/community/KVM
[15:35] <zzgvh> Aaanyway, I'll make a long story short. I have managed to set up a guest using ubuntu-vm-builder. It is on a static IP number using the community docs bridge setup. So my problem is that when using virt-clone I cannot connect to the clone. It would seem to me that if I can ssh to the original guest, then I should be able to ssh to the clone on the same IP, when that is the only guest running of course.
[15:37] <zzgvh> Shanix: thanks...I have been there, and it's gotten me tis far (with a lot of googling to of course) but it's HARD ;-) Lots of things seem to be much easier if you have a desktop host. I have tried that and gotten pretty far. But I really want to try run all systems as servers.
[15:40] <sommer> zzgvh: are you running the clone and the original at the same time?
[15:41] <zzgvh> Nope!
[15:42] <sommer> zzgvh: you might also check out: https://help.ubuntu.com/8.04/serverguide/C/libvirt.html
[15:42] <zzgvh> It should have the same IP as the original, but when I try to ssh or ping it ther's nobody home
[15:42] <sommer> zzgvh: it may be that the nic has a different name... eth1 instead of eth0
[15:43] <sommer> zzgvh: it should be the same, but it's worth checking I guess
[15:43] <zzgvh> how do I check...I have no access to the clone guest!
[15:44] <sommer> zzgvh: virt-viewer -c qemu+ssh://hostname
[15:44] <sommer> zzgvh: you'll need to have ssh on the host machine setup
[15:45] <sommer> zzgvh: and connect from another client, if you don't have a gui on the server
[15:45] <zzgvh> ah...ya, because the host is a server too.
[15:45] <ogra> the clone will definately name it differently since eth0 in 70-persisent-net.rules will be bound to the originals MAC
[15:46] <ogra> unless you hve the same MAC in the clone :)
[15:46] <nxvl> mathiaz: here you are
[15:46] <sommer> ah, thanks ogra
[15:46] <nxvl> mathiaz: good morning
[15:46] <zzgvh> ok, I'll try and see if I can access from a desktop machime
[15:47] <nxvl> mathiaz: i was asking here for the date of the meeting, since in your e-mail it says: Tuesday, 22nd of September
[15:47] <nxvl> we are on Tuesday and the 22nd was yesterday
[15:47] <mathiaz> nxvl: right - it's today
[15:47] <nxvl> mathiaz: :D
[15:47]  * nxvl HUGS mathiaz 
[15:48] <uvirtbot> New bug: #273425 in apache2 (main) "It's better to have a sub-directory in /var/www for default web files" [Undecided,Invalid] https://launchpad.net/bugs/273425
[16:03] <uvirtbot> New bug: #244801 in samba (main) "pam_smbpass(kscreensaver:auth): unrecognized option [missingok]" [Low,New] https://launchpad.net/bugs/244801
[16:09] <zzgvh> sommer: So I managed to get access to the clone! Thanks. I will continue looking at ogra's suggestion regarding the MACs.
[16:10] <sommer> party!
[16:35] <thefish> anyone know if there is anything like a free as in beer landscape server in the pipeline? (like spacewalk for rh)
[16:40] <uvirtbot> New bug: #273486 in ebox (universe) "Current eBox packages in intrepid don't work at all" [Undecided,New] https://launchpad.net/bugs/273486
=== jkakar_ is now known as jkakar
[16:48] <hackeron> hey, I'm using basic auth in a vanilla installation of ubuntu-server and all my passwords are truncated to 8 characters. I can have a password set to 01234567890 and login with 01234567anything - any ideas?
[16:48] <hackeron> basic auth in apache2 that is
[16:55] <zzgvh> Ok, looks like I figured this out. Thanks a bunch, I might very well be back! ;-)
[16:59] <tuxcrafter> hello everybody, why is the CONFIG_NF_CONNTRACK_SANE is not set on the 2.6.24-19-server kernel
[17:00] <tuxcrafter> compared to my debian server with kernel 2.6.22-3-686 that has the module build ...
[17:01] <tuxcrafter> is there a nice solution for this?
[17:29] <ivoks> i'm too late, right? :/
[17:31]  * tuxcrafter got to go
[17:31] <sommer> for the meeting?
[17:31] <tuxcrafter> will be back to ask again if possible
[17:31] <ivoks> sommer: yes
[17:32] <sommer> ivoks: yep, it's over :)
[17:32] <ivoks> i just can't make it at that time :/ that's still working hours here, so i'm usualy at the meetings
[17:33] <sommer> ah, meetings are awesome
[17:34] <ivoks> specially whern you are talking with someone who doesn't have a clue about what you are talking about
[17:34] <ivoks> like most of my meetings :/
[17:35] <sommer> heheh... been to a few of those meetings myself
[17:50] <nxvl> kirkland: http://tombuntu.com/index.php/2008/09/23/encrypted-private-directory-in-ubuntu-810/
[17:51] <leonel> is  postgresql 8.3.4 going it's way to  Hardy ???
[17:51] <nxvl> leonel: hardy is stable release, so i think no
[17:52] <kirkland> nxvl: cool
[17:53] <leonel> nxvl: https://wiki.ubuntu.com/StableReleaseUpdates/MicroReleaseExceptions  <-- that's why I asked  since the last postgresql  did
[17:54] <nxvl> you can always ask for an sru
[17:57] <leonel> not that I need 8.3.4   just asking  if there was a work in progress since  las time piti did it that's all
[17:58] <zul> well ask pitti then
=== andreas__ is now known as ahasenack
[19:20] <jkakar> soren: Heya!  I just noticed your blog post about vm-builder.  Is there a Bazaar branch with the code somewhere?  I didn't find a vm-builder project on Launchpad.
[19:22] <zul> launcpad.net/vmbuilder
=== frith is now known as incorrect
[19:29] <jkakar> zul: Thanks!
=== ivoks_ is now known as ivoks
[20:23] <hubuntu> hello... I have a Hardy server and have used apt to install drupal. NOw I want several instances of drupal in my server (/server/drupal1 and /server/drupal2 let's say)
[20:23] <hubuntu> it's that possible? And if so, how?
[21:02] <psufan> how do I absolutely ensure that a kernel option is always executed on bootup
[21:02] <psufan> DO NOT ARGUE, DO NOT REMOVE WHEN DOING KERNEL UPDATE, ETC ETC, F*** OFF
[21:02] <psufan> config option :)
[21:04] <antdedyet> psufan: grub's docs will provide the information you're looking for.
[21:13] <psufan> I did check those before
[21:13] <psufan> didn't do shit for me
[21:14] <mathiaz> psufan: have a look at /boot/grub/menu.lst
[21:15] <mathiaz> psufan: there is a whole section about adding kernel parameters to the grub command line
[21:17] <psufan> I do
[21:17] <psufan> and it ignores them
[21:17] <sommer> are you sure  you're placing them on the right line?
[21:19] <psufan> I placed them everyone
[21:19] <psufan> the only time it works is if I set.....
[21:19] <psufan> oh
[21:19] <psufan> damn
[21:19] <psufan> hang on
[21:19] <psufan> this might explain this and some other problems too
[21:20] <psufan> serial console bug
[21:30] <psufan> yep
[21:30] <psufan> the only time it works is if I go to the kernel line option in grub
[21:30] <psufan> and make it the first option
[21:44] <psufan> i'm just going with a stock solaris install and filesystem but thx
[21:44] <psufan> opps wrong channel
[21:45] <psufan> so anyways
[21:45] <psufan> does ubuntu use some kind of weird serial libary
[21:45] <psufan> seems to have terminal problems
[21:59] <psufan> i'm not taking ubuntu off my servers
[21:59] <psufan> the solaris is for the nas :P
[22:03] <uvirtbot> New bug: #273731 in bacula (universe) "no se que contraseña me piden y por que si es un paquete de sinapsy ¿acaso no son libres?" [Undecided,New] https://launchpad.net/bugs/273731
[22:40] <nxvl> kirkland: ping
[22:40] <kirkland> nxvl: pong
[22:40] <nxvl> kirkland: i've just send you and e-mail
[22:40] <kirkland> nxvl: i got it
[22:41] <nxvl> ok
[22:41] <nxvl> :D
[22:41] <kirkland> nxvl: i'll take a look once i'm done with this hal issue that's been driving me crazy
[22:41] <kirkland> thanks
[22:41] <nxvl> kirkland: bug number?
[22:42] <kirkland> nxvl: not sure... just a big annoying issue.  must bin in kvm group to use kvm.
[22:44] <nxvl> i'm anoyed because i can't use the arrows on kvm
[22:44] <nxvl> so i can't install a debian system to test some stuff
[22:47] <nxvl> but i remember that soren said that it's not needed to be in the kvm group to use it anymore
[22:47] <nxvl> soren: or i was dreaming?
[22:56] <kirkland> nxvl: you can try giving kvm -k option
[22:56] <kirkland> nxvl: i use -k en-us for my keyboard
[22:56] <kirkland> nxvl: i don't know what yours would be
[22:58] <nxvl> it's en-us, it's anoying to try to develop using a spanish keyboard
[22:59] <nxvl> \o/ it worked
[22:59]  * nxvl HUGS kirkland 
[23:00] <kirkland> nxvl: ;-)