/srv/irclogs.ubuntu.com/2008/10/21/#ubuntu-server.txt

sandstrom	I'm about to setup the firewall for my server. Do you recommend ufw or iptables?	00:12
tonyyarusso	Isn't ufw essentially just another frontend to iptables?	00:15
tonyyarusso	Looks like it, yeah. So as far as security, it doesn't matter.	00:15
uvirtbot`	New bug: #286678 in samba (main) "Samba transfer of multiple files very slow" [Undecided,New] https://launchpad.net/bugs/286678	00:23
osmosis	does linux support AHCI RAID?	00:23
=== golb_ is now known as golb
zul	nijaba: yeah something like that but it has to be a built smarter because afaik xen is not configured in the -generic kernels	02:07
kraut	moin	07:43
BlueT_	moin	07:53
scuser	hi all, does any one know how to force a linux box not to use simple bind when trying to login ?	08:12
uvirtbot`	New bug: #286828 in samba (main) "CIFS share broken after upgrade from 8.04 -> 8.10" [Undecided,New] https://launchpad.net/bugs/286828	08:12
scuser	hi all, does any one know how to force a linux box not to use simple bind when trying to login ?	08:29
RockHound	scuser: you are still at it?	08:37
scuser	RockHound: yes :'(	08:37
RockHound	have you asked in other chats? openldap, kerberos etc?	08:37
scuser	RockHound: I'm trying at ubuntu and openldap but in vain	08:38
RockHound	scuser: maybe you should rethink how you phrase the question	08:44
scuser	RockHound: simply now I found that I need to let the client know somehow how to bind, I think the user to bind and the method but I don't know how or where to configure this	08:46
scuser	RockHound: the client now try to use simple bind and the server deny this and I want the client to use another method other than simple bind. This is the question now	08:48
RockHound	again: which tools / services are you asking your question for? No one here can read your mind of what your setup looks like.	08:48
scuser	RockHound: I'm using ubuntu 8.04 I have installed kerberos 5, slapd and ldap-utils as my client those are the tools I've installed	08:50
scuser	RockHound: In the startup of the system I want the system to contact ldap server to get the user info so I get it a ticket and I want the system to use it when It's trying to connect to ldap not to use simple bind as this is risky and insecure	08:51
soren	scuser: I think you'll have more luck if you ask how to get it to "do X" rather than ask how to get it to "not do Y".	08:58
soren	scuser: The answer to the latter is always simple: Turn the machine off. :)	08:59
RockHound	soren: ;)	09:02
RockHound	scuser: to get a helpful answer, rephrasing the question to get a precise and accurate short description of what you want to do. I am sure that the openldap chat can help you then.	09:03
scuser	ok thanks a lot :)	09:04
RockHound	and googling for kerberos, sasl, ldap, pam should really show you something	09:04
uvirtbot`	New bug: #286851 in php5 (main) "CVE-2008-3658,2008-3659,2008-3660" [Undecided,New] https://launchpad.net/bugs/286851	09:12
=== uvirtbot` is now known as uvirtbot
scuser	hi all, does anyone know how to make a script that runs automatically and renews a kerberos ticket in certain time every day?	10:06
nijaba	scuser: cron would allow you to run such a script on a regular basis. now I have no clue what the kerberos ticket renewal would look like	10:12
scuser	nijaba: It's just using kinit command to get a new ticket after the old one expires	10:13
nijaba	scuser: then you should be set to add it to your user's cron	10:13
scuser	nijaba: so what packages I have to install to have a cron and add my script to it?	10:15
nijaba	scuser: nothing, should be installed by default. see http://manpages.ubuntu.com/manpages/hardy/en/man1/crontab.html	10:15
phaidros	hi, where is the correct place to report a failing ubuntu mirror? (debian.charite.de doesn't have /ubuntu anymore)	10:15
henkjan	phaidros: #ubuntu-mirrors	10:17
phaidros	henkjan: thx	10:17
nijaba	phaidros: see also http://www.ubuntu.com/getubuntu/mirror/4	10:17
=== golb_ is now known as golb
scuser	nijaba: I can't find cron.allow or cron.deny and I can't find any crontab for any user on my system how can I add a crontab for a user and add scripts to it?	10:39
nijaba	scuser: crontab -e should add it for you, IIRC	10:39
scuser	nijaba: and what to write in that file?	10:40
hads	man crontab will show you	10:40
wo0f	yo	12:02
wo0f	how easy is it to set up Ubuntu Terminal Services?	12:02
wo0f	is there just a meta package and gui interface?	12:02
RockHound	wo0f: take a look at ltsp	12:20
gabryfan82	I am A server for only apache and php, i use gmail (google apps), i should used the php mail function, what MTA I use, what configure this?	12:59
gabryfan82	thank's	12:59
gabryfan82	thank's	13:01
gabryfan82	I am A server for only apache and php, i use gmail (google apps), i should used the php mail function, what MTA I use, what configure this?	13:01
gabryfan82	I am A server for only apache and php, i use gmail (google apps), i should used the php mail function, what MTA I use, what configure this?	13:03
henkjan	gabryfan82: try postfix	13:03
gabryfan82	ok i try this	13:03
gabryfan82	now	13:03
gabryfan82	apt-get install postfix	13:04
gabryfan82	I HOW CONFIGURE THIs?	13:04
gabryfan82	only local?	13:05
henkjan	please, don't use CAPS	13:05
gabryfan82	yes sorry	13:05
gabryfan82	only local?	13:05
gabryfan82	i how configure this?	13:05
gabryfan82	only local?ù	13:05
henkjan	i suppose you wan't to send mail from the server	13:05
henkjan	do you want to use a smarthost (smtp server from your provider)	13:06
henkjan	else choose internet	13:06
gabryfan82	only server -> user don't user -> server	13:06
gabryfan82	site internet?	13:06
gabryfan82	msarthost use ssl?	13:06
gabryfan82	for gmail?	13:07
henkjan	don't use smarthost	13:07
henkjan	use internet site	13:08
gabryfan82	ok	13:08
gabryfan82	i try this	13:08
gabryfan82	function on NAT also?	13:09
henkjan	that should also work behind nat	13:12
gabryfan82	dont work	13:13
gabryfan82	how configure php?	13:13
henkjan	wiki.ubuntu.com	13:13
henkjan	and search	13:13
gabryfan82	ok thank's	13:13
ScottK	Any documentation on which Sun boxen are supported by the sparc port?	13:14
zul	modern sparc	13:15
ScottK	zul: Is a 4800 modern (I've no idea about Sparc. Just it's come up somewhere else)	13:16
ScottK	I don't even know if that's Sparc or x86 actually.	13:16
zul	no idea	13:18
henkjan	4800 looks like sparc highend (max 12 cpus)	13:18
RockHound	http://en.wikipedia.org/wiki/Sun_Fire	13:26
ScottK	Thanks.	13:33
sandstrom	Trying to setup an SSH tunnel, using Localforward 3305 localhost:3306. but it doesn't work	13:46
sandstrom	I've setup sshd to allow AllowTcpForwarding yes	13:47
sandstrom	any suggestions?	13:47
_ruben	hmm .. what was that command again to map dm-X names to /dev/mapper/Y names ?	14:58
=== sme2k8 is now known as andre
=== andre is now known as Guest59742
Helder_Geocrete	Hey	15:49
Helder_Geocrete	need some advice here on a new server	15:49
Helder_Geocrete	anyone?	15:49
ScottK	!ask \| Helder_Geocrete	15:50
ubottu	Helder_Geocrete: Please don't ask to ask a question, ask the question (all on ONE line, so others can read and follow it easily). If anyone knows the answer they will most likely answer. :-)	15:50
Helder_Geocrete	the question is simple...I need to install a new server on this new company i'm working on...and they want to use a MWSBS 2003 /2008. But i'm more inclined to use a linux distro, in this case, ubuntu... So i need to know more about the USE distro... in comparison to MSWSBS 2003/2008	15:52
Helder_Geocrete	thanks in advance :)	15:53
ScottK	What functionality are you interested in?	15:53
=== Guest59742 is now known as sme2k8
Helder_Geocrete	active directory (seems I cannot find it in USE), mail server features, file server and security...	15:55
Helder_Geocrete	ps: newbie in ubuntu...	15:55
Helder_Geocrete	:$	15:55
Koon	Helder_Geocrete: Full Active Directory features are not available, we can do a NT4 PDC at best, or a AD domain member afaict	15:57
Koon	Helder_Geocrete: for the other features see the Server Guide	15:58
Koon	http://doc.ubuntu.com/ubuntu/serverguide/C/	15:59
Koon	that should give you information on how to set up things	16:00
Helder_Geocrete	well, i'm mostly interested in member login /authentication, printer server and file server...so maybe it will do the trick	16:01
Helder_Geocrete	thanks for the info :)	16:02
thefish	Helder_Geocrete: thats all NT4 domain stuff anyway, samba does that but be aware that you wont have the nice windows GUIs to do it all (you also wont have to deal with SBS)	16:02
Helder_Geocrete	well...the gui's aren't the problem...i like some hardcoding from time to time :)	16:03
brewmaster	has anyone ever gotten a "413 Request Entity Too Large" error for "/!svn/vcc/default" in subversion?	16:03
Helder_Geocrete	thanks for the info once again...be going now	16:04
brewmaster	i'm using Apache/2.2.4 (Ubuntu) DAV/2 SVN/1.4.4	16:04
=== trashguy_ is now known as trashguy
kirkland	mathiaz: intrepid amd64 server manual installation to raid1 on kvm disks succeeded	17:11
mathiaz	kirkland: great - let's see if raid0 and raid5 are working	17:12
mathiaz	kirkland: it may just be an issue with partman-auto-raid that gets stuck	17:12
kirkland	mathiaz: let me check booting degraded right quite	17:12
kirkland	quick	17:12
kirkland	mathiaz: boot degraded continues to work, great	17:14
kirkland	mathiaz: in all of my tests, i have one large / filesystem, and one small swap	17:18
mathiaz	kirkland: right - for raid0 and raid5 you'll have to create another partition for /boot	17:19
kirkland	mathiaz: right	17:19
nijaba	nealmcb: A quote for you "It's not about who votes, but about whom is counting the votes" - attributed to Joseph Stalin	17:19
nealmcb	nijaba: yup - very true. I've got something like that on a t-shirt	17:36
nealmcb	if there are any django, setuptools, xml, or windows gurus out there who want to help us do a world-class audit of the election this year in Boulder CO, check out http://neal.mcburnett.org/blog/2008/10/18/electionaudits-software-help-audit-election/	17:40
mdz	kirkland: bug 284107 has a request for your input	17:51
uvirtbot	Launchpad bug 284107 in partman-target "Filesystem on iSCSI should have the _netdev option in /etc/fstab" [Medium,Confirmed] https://launchpad.net/bugs/284107	17:51
mdz	kirkland: dendrobates seems to say that it's not necessary yet	17:52
kirkland	mdz: i'll add a comment there, but here's the skinny...	17:52
kirkland	mdz: when we rsync with debian open-iscsi for jaunty, there will be some significant improvements in terms of the boot procedures, including a blip of code in the init script that says:	17:53
kirkland	log_daemon_msg "Mounting network filesystems"	17:53
kirkland	MOUNT_RESULT=1	17:53
kirkland	if mount -a -O _netdev >/dev/null 2>&1; then	17:53
kirkland	MOUNT_RESULT=0	17:53
kirkland	break	17:54
kirkland	fi	17:54
kirkland	log_end_msg $MOUNT_RESULT	17:54
kirkland	mdz: we don't currently have that code in intrepid (and I'm not proposing we add it)	17:54
kirkland	mdz: however, if we do add _netdev to iscsi fstab entries, it could help us on upgrades from intrepid -> jaunty	17:54
kirkland	mdz: otherwise, we'll need some logic to figure out what fstab entries are iscsi and need _netdev added at upgrade time	17:55
kirkland	mdz: https://bugs.edge.launchpad.net/ubuntu/+source/partman-target/+bug/284107 updated accordingly	17:59
uvirtbot	Launchpad bug 284107 in partman-target "Filesystem on iSCSI should have the _netdev option in /etc/fstab" [Medium,Confirmed]	17:59
zul	mathiaz: are you handling that bacula bug?	18:01
mathiaz	zul: yes	18:03
zul	k	18:03
mathiaz	zul: I've already answered	18:03
mathiaz	zul: I'm able to boot a AMI	18:03
mathiaz	zul: but not able to log into it	18:03
zul	cool	18:03
mdz	kirkland: ok, so there's no point at all in changing it for Intrepid unless we add the new init script code as well, which we aren't going to do	18:07
kirkland	mdz: fair enough	18:08
mdz	kirkland: I was just echoing back my understanding of what you said :-)	18:12
kirkland	mdz: yes, that is my recommendation	18:12
kirkland	mdz: i will be syncing/merging open-iscsi and working on it for Jaunty when the archive opens	18:13
kirkland	mdz: but I don't think it's worth change it for Intrepid now	18:13
kirkland	mathiaz: verified lvm install works	18:15
kirkland	mathiaz: RAID0 isn't working so well	18:15
mathiaz	kirkland: does it get stuck?	18:15
kirkland	mathiaz: if i have a separate /boot partition, yeah gets stuck	18:15
mathiaz	kirkland: where?	18:16
kirkland	mathiaz: if i don't have a separate /boot partition, it finishes, but it's not bootable	18:16
mathiaz	kirkland: well - it's normal;	18:16
mathiaz	kirkland: grub doesn't support raid0 AFAICT	18:16
kirkland	mathiaz: okay, but the hang isn't normal	18:17
mathiaz	kirkland: could you run a ps -ef in the vm during install?	18:17
mathiaz	kirkland: agreed. I've seen the same thing.	18:17
mathiaz	kirkland: are you testing on an intrepid host?	18:17
mathiaz	kirkland: and are you doing a manual partition of raid0?	18:17
kirkland	mathiaz: intrepid host, yest	18:17
mathiaz	kirkland: ok - I was thinking it may be an issue with the virtualization stack	18:18
kirkland	mathiaz: manually partitioned, sda1 = 2G, sda2 = 128M, sdb1 = 2G, sdb2 = 128M	18:18
mathiaz	kirkland: as we're using more then one block device to do that experiment	18:18
kirkland	mathiaz: sda1+sdb1 = raid0 of 4G, with /	18:18
kirkland	mathiaz: sda2 = /boot	18:18
kirkland	MatBoy: sdb2 = swap	18:18
mathiaz	kirkland: ok - so if you don't put /boot on a separate partition the installer proceed correctly?	18:19
kirkland	mathiaz: it completes	18:19
mathiaz	kirkland: ok	18:20
mathiaz	kirkland: http://people.ubuntu.com/~mathiaz/intrepid-i386-raid5-ps-ef.png	18:20
mathiaz	kirkland: this is the output of ps -ef when the installer is stuck	18:20
kirkland	mathiaz: hmm, 07root_on_raid is mine....	18:20
kirkland	mathiaz: i've tested the crap out of that on raid1	18:20
kirkland	mathiaz: let me look at that code again	18:21
mathiaz	kirkland: the fact that the install completes when you have /boot on the same partition may point to an issue with boot	18:21
mathiaz	kirkland: you don't have a process fstab.d/hostboot?	18:21
mathiaz	kirkland: I think that's where the problem may be	18:22
mathiaz	kirkland: both raid{0,5} install are stuck with the same processes running	18:22
mathiaz	kirkland: both installs have /boot on a raid1 array in order to be able to boot	18:22
mathiaz	kirkland: I'm gonna head out. Could you investigate this raid install problem?	18:31
kirkland	mathiaz: yeah	18:31
erichammond1	mathiaz: just saw your question of long time ago: I am able to boot vmbuilder EC2 image but not connect to it.	18:31
mathiaz	kirkland: great - I may check back later	18:31
mathiaz	erichammond1: right - it seems that we need to get the kernel modules somehow.	18:32
mathiaz	erichammond1: zul knows more about it	18:32
erichammond1	mathiaz: Been working with him over email, but our communication loop is pretty slow. We might have different work hours.	18:33
zul	erichammond: hey	18:33
erichammond1	zul: 'lo!	18:33
mathiaz	erichammond1: I think there is a small pond between both of you	18:34
zul	erichammond1: im working on it now and already have a solution and just trying to clear some stuff up	18:34
zul	mathiaz: nah just a border	18:34
erichammond1	zul: nice, look forward to it.	18:34
erichammond1	I'm on the US West coast, but basically keep Hawaii hours :)	18:34
zul	and different timezones	18:35
mathiaz	hm - right - anyway I'm off for now. see ya later	18:35
zul	erichammond1: check your /msgs	18:36
=== _shoot^ is now known as shoot^
ivoks	hi all	19:08
ivoks	sorry, i didn't make it for the meeting :/	19:08
=== _backenfutter is now known as backenfutter
jcastro	looking for -server sessions: https://wiki.ubuntu.com/UbuntuOpenWeek/Prep	19:45
=== MenZa_ is now known as MenZa
cyris\|	i need to install some ldap tools that will allow me to do some queries against an ldap server. isn't their a package called openldap-tools or something that will give me ldapsearch?	20:29
henkjan	cyris\|: there is a package ldap-utils	20:31
sommer	kirkland: I keep getting a grub error 17 when trying to install raid5 using the latest iso... just fyi	21:04
kirkland	sommer: hey, i'm working an issue related in #ubuntu-installer, at the moment	21:04
kirkland	sommer: also, see bug 287112	21:05
uvirtbot	Launchpad bug 287112 in mdadm "intrepid installer hangs when installing to raid0 or raid5" [High,In progress] https://launchpad.net/bugs/287112	21:05
kirkland	that's just been sponsored, not on the iso yet	21:05
kirkland	glad to hear someone else is testing this ;-)	21:05
sommer	kirkland: ah cool, just wanted to make sure	21:05
kirkland	sommer: what does your partitioning look like?	21:06
sommer	kirkland: 3 6.5G ide drives, with one 12.5G partition on the raid array	21:06
kirkland	sommer: raid5 on / ?	21:06
sommer	kirkland: yep	21:07
kirkland	sommer: and where's /boot?	21:07
sommer	kirkland: on the same partition, it wouldn't let me create multiple on the raid array... or did I miss configure something?	21:07
kirkland	sommer: oh, that's a problem....	21:07
kirkland	sommer: we may need to add something to the documentation	21:07
kirkland	sommer: /boot can't be on a RAID0 or a RAID5 device	21:08
kirkland	sommer: must be on it's own partition, or a RAID1	21:08
sommer	kirkland: ooohhh... I figured it may be something like that	21:08
kirkland	sommer: when I use a RAID5, I usually create /boot on my RAID1 devices	21:08
kirkland	sommer: but that's what's broken, at the moment	21:08
sommer	kirkland: the serverguide is frozen, I asked the other day to correct a typo and was denied	21:09
kirkland	sommer: bummer	21:09
kirkland	sommer: sorry, i should have thought about that	21:09
sommer	kirkland: ya, could we add something to the release notes?	21:09
kirkland	sommer: let's put an agenda item for the server guide to discuss raid5/raid1 best practices	21:09
kirkland	sommer: yeah, it'll need to go there	21:09
sommer	kirkland: sounds good	21:10
kirkland	sommer: i wouldn't say it's "common knowledge", but a lot of system admins understand the raid5 limitation of grub/bootloaders	21:10
sommer	kirkland: heh, most of my experience is with hardware raid5 :)	21:10
sommer	kirkland: the whole disk formating filesystem thing can get complicated pretty quick :)	21:11
* sommer is just going to use fat32 from now on		21:12
kandjar	hi	22:51
kandjar	I'm having an issue with my ubuntu server, I can't seem to forward X11 app	22:53
kandjar	through ssh	22:53
kandjar	anyone?	22:55
sommer	kandjar: do you have a gui installed?	22:56
kandjar	no	22:58
kandjar	not on the server	22:59
kandjar	do I need to have a X server on the server box?	22:59
kandjar	I m only logging through ssh to it	22:59
sommer	isn't that what you're trying to do?	22:59
kandjar	I m trying to ssh to the server	23:00
kandjar	using ssh -X or -Y	23:00
kandjar	and having the display redirected to my remote client	23:00
sommer	the server's display?	23:00
kandjar	basically, I m log on a client machine	23:01
kandjar	and I'm trying to get: 'ssh -X server xlogo' working	23:01
trashguy	whats wrong with plain old SSH	23:02
kandjar	?	23:02
kandjar	I have some xapp I wanna run :)	23:02
sommer	I'm not sure what that is, but without a gui on the server the only thing to display is console	23:02
kandjar	I m remotely logged on the server	23:02
soundray	sommer, trashguy: haven't you heard of X11 forwarding?	23:06
sommer	yes, but the machine you're forwarding needs a gui... at least when I've done it	23:07
sommer	since by default ubuntu-server has no gui...	23:08
sommer	by default anyway	23:08
soundray	sommer: that's what I'm wondering. I regularly forward a machine that doesn't have a full GUI installation -- but it must have some base X packages that kandjar is missing.	23:09
nikkolay	hi guys. I need to move some instalation, but i need to backup a few mysql db... can i copy the /var/lib/mysql to the new server?	23:16
nikkolay	or that doesn't work?	23:17
sommer	nikkolay: I'd use mysqldump	23:18
nikkolay	ok	23:22
trashguy	soundray, X11 on a server?	23:22
nikkolay	maybe something like: mysqldump --all-databases > /home/nikko/bakcups/mysql.sql	23:22
nikkolay	?	23:22
trashguy	what kind of insanity is this	23:22
soundray	trashguy: not everything that you cannot immediately relate to is insanity	23:26
soundray	trashguy: I'll give you an example, if you're interested	23:26
trashguy	I can see	23:26
trashguy	no reasoning of waisting server resources on x	23:26
soundray	That's the point, there is no wasting of resources	23:27
trashguy	unless you are doing some sort of thin client thing and the soul purpose is centralized desktop etc	23:27
soundray	I'm running CPU intensive processes on a remote cluster. It outputs images to a filesystem local to the cluster.	23:28
trashguy	okay	23:28
soundray	To view those images, I log into the login server of the cluster with X forwarding enabled and launch a viewer that displays selected sections from 3D or 4D image volumes.	23:28
soundray	The graphical output is forwarded through an encrypted tunnel to be displayed locally on my (full) X server.	23:29
soundray	The remote machine needs only basic X functionality installed, e.g. xauth	23:30
trashguy	i did something similar with a render cluster	23:30
trashguy	i just set up webdav to remotely open the images	23:30
soundray	which, btw, was what was missing on kandjar's server. Now it's installed -- problem fixed	23:30
soundray	trashguy: doesn't that mean that you have to transfer the entire file before it can be displayed?	23:33
trashguy	yes	23:34
trashguy	i can see	23:34
soundray	That would be a clear disadvantage for my scenario	23:34
trashguy	yes	23:34
trashguy	i agree	23:34
trashguy	majority of the people i see running x is to avoid command line though	23:34
soundray	Burn them at the stake!	23:36
soundray	:)	23:36
trashguy	i been using freebsd to long im a cli nazi	23:36
trashguy	^^	23:36
uvirtbot	trashguy: Error: "^" is not a valid command.	23:36
trashguy	Zimbra doesn't play nice	23:37
trashguy	with FreeBSD	23:37
trashguy	so here I am ;)	23:37
soundray	Content management?	23:38
trashguy	Exchange alternative	23:38
soundray	Oh, groupware	23:38
soundray	trashguy: do you have a suggestion for calendar and todo lists that works well on the command line?	23:40
soundray	A PIM application?	23:41
trashguy	soundray, not somuch on CLI	23:54
trashguy	i been inundated by the bras on how much they loved outlook at their old jobs	23:54
trashguy	s/bras/brass/	23:54
soundray	trashguy: I'll try 'when'	23:56
trashguy	we are currently using oracle calendar	23:57
trashguy	it iwll be nice when that is gone and I have one less solaris machine to deal with ^^	23:58

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!