[00:08] <yann2> I am trying to setup an AD caching server, using kerberos and samba. The kerberos setup is done, the machine is part of the domain; how can i get samba to make it act as a domain controller? any link to a good documentation would be much appreciated
[00:10] <XiXaQ> this is cool stuff, I think :)
[00:10] <XiXaQ> never used thiese kinds of stuff before, so thiese technologies still have the new-smell. :)
[00:18] <yann2> well I think it's quite tough :/
[00:19] <XiXaQ> tough is synonymous with cool in norwegian slang :)
[00:19] <XiXaQ> have you used many similar tools before?
[00:21] <yann2> well I've used samba for file sharing :P and got kerberos to work ^^
[00:21] <yann2> else, no
[00:21] <yann2> aaactually
[00:21] <yann2> automount, I think I've done this before
[00:21] <yann2> solaris actually uses automount by default - it's a very neat setup
[00:22] <yann2> be sure to have root in /root and you should be safe - it's not uncommon
[00:23] <yann2> as far as I understood automount enables you to spread user homes accross several servers, it's nice :)
[00:36] <lukehasnoname> the irc logs are down
[00:37] <lukehasnoname> or something is wrong
[00:37] <XiXaQ> I'm not entirely clear on what kerberos really is :)
[00:38] <XiXaQ> yann2, but that sounds like a useful feature...
[00:38] <yann2> lukehasnoname > url of the irclogs?
[00:39] <yann2> lukehasnoname > depending on the bot I may be able to do something
[00:39] <yann2> http://logs.ubuntu-eu.org/freenode/2008/  < this? :/
[00:39] <yann2> *opening a ticket*
[00:40] <yann2> ah no seems fine - which logs lukehasnoname ?
[00:40] <lukehasnoname> irclogs.ubuntu.com
[00:40] <XiXaQ> the thing that's catching my attention at the moment, is the limit on 16 groups per user on ldap? That limit will easily be reached if you're going to base limitations on applications on that, such as who can run system monitor, etc.
[00:41] <yann2> right that's not me :) I'm off to bed, good night
[00:41] <yann2> XiXaQ > there is a limit of 14 groupes per user on NFS v3...
[00:41] <yann2> very, very, very painful in some cases
[00:43] <XiXaQ> yann2, 14? Are you sure? I read about that just a few hours ago. I was recently certain the limit is 16?
[00:43] <yann2> I am speaking of NFS not ldap
[00:43] <yann2> could be 16 :)
[00:43] <XiXaQ> but you're right. It was NFS. :)
[00:44] <yann2> well then I can confirm, and I think that's for nfs v3 only
[00:44] <XiXaQ> oh... But the applications will be local to the system, so that's probably not too important anyway..
[00:47] <XiXaQ> I wonder how I can disallow users to run applications in their homes?
[00:48] <yann2> can't :)
[00:48] <`6og> mount with noexec for a start.
[00:48] <`6og> but ultimately, you cant
[00:48] <yann2> ah :] anyway, good night
[00:48] <`6og> yann2, aw, you beat me to it :p
[00:48] <`6og> later mate
[00:48] <XiXaQ> what does that mean?
[00:48] <XiXaQ> if I mount /home with noexec, then files on that partition can't be executed?
[00:49] <`6og> they cant be run as executables. its still posible to run shell scripts with `sh scriptname` though (iirc)
[00:52] <XiXaQ> ah.
[01:23] <paul68> can someone help me out with the following problem I have this setup isp dlink router 192.168.0.1 eth1 192.168.0.10 server eth1 192.168.1.22 linksys ap. I can ping from my laptop which is attached to my dlink towards eth1 but not able to go futher. I cannot ping from my server my laptop which has ip 192.168.0.1 the server is not able to access the internet either what can I do to solve this
[02:59] <teddy__> I have chosen ubuntu-server as my server distro of choice..it used to be gentoo, and centos...
[03:01] <teddy__> ubuntu-server boots faster than any server distro i have seen.  Ubuntu-server is amazingly fast on the bootup.  However many installs in ubuntu-server do not complete fully, and require a lot of wwork to get them working.
[03:13] <XiXaQ> teddy__, examples?
[11:28] <kraut> moin
[11:32] <slytherin> Hi all. I was wondering what kind of updates to java stack would people like to have on server side. Is struts update and jsf addition, something that people are interested in?
[13:17] <sidewalk> is there any way to upgrade ubuntu server with something else than do-release-upgrade?
[13:18] <Deeps> you could alter your sources.list and dist-upgrade, but it's not recommended
[13:20] <sidewalk> i want to do a upgrade remotely
[13:20] <sidewalk> and the open ports to the machine are limited
[13:23] <sidewalk> where can i find documentation on it?
[13:30] <sidewalk> no links?
[13:30] <Deeps> ubuntu homepage
[13:30] <Deeps> click on server
[13:30] <Deeps> explains how to do a command line upgrade
[13:31] <Deeps> and it can be done over ssh
[13:31] <Deeps> which requires a single tcp port, by default port 22
[13:32] <Deeps> sorry, get ubuntu has a link to 'how to upgrade'
[13:33] <sidewalk> when running that script, "do-release-upgrade" it wants to open a new ssh port, which i cannot access
[13:35]  * Deeps has a try
[13:35] <Deeps> at what stage does it ask you to open a new ssh port?
[13:35] <maswan> sidewalk: nah, it opens a new ssh port which you can connect to if something goes wrong with the normal ssh
[13:36] <Deeps> ah, a failsafe sshd, smart
[13:36] <sidewalk> therefor i would like an alternate way of upgrading
[13:36] <maswan> sidewalk: I've never had something go wrong with it, so I've never connected to that other sshd
[13:36] <sidewalk> okey
[13:36] <sidewalk> then im with you :-)
[13:37] <sidewalk> lets hope nothing goes wrong :P
[13:37] <maswan> (I've mostly just upgraded dapper->hardy though, I haven't tried intrepid yet)
[13:38]  * Deeps cancels upgrade
[13:38] <sidewalk> im doing 7.10 ow
[15:21] <lilliz[]> Hi I have a ubuntu server 6.06 on a harddisk that I had to switch to another hardware, seems to boot ok but the NICs are not operativ is there some way to add drivers for it later ?
[15:21] <lilliz[]> Its basically the same hardware except that there might be a diffrent nic
[16:13] <TwelveGauge> I'm trying to configure the DNS server for my website. I'm behind a router, do I use the local machine IP address or use my ISP IP address? Didn't have much luck using the ISP IP address.
[16:16] <Deeps> are you running the dns server on your local machine?
[16:16] <Deeps> if so, and you're behind a router/firewall/nat gateway, ensure port 53 (tcp + udp) is allowed and forwarded to the machine
[16:17] <TwelveGauge> yeah
[16:17] <TwelveGauge> they were open and forwarded but dig domain got nothing
[16:18] <TwelveGauge> configured it using my ISP adress
[16:18] <TwelveGauge> should I use the local machine IP?
[16:18] <TwelveGauge> for forwarding maybe?
[16:20] <Deeps> on the machine, do dig @localhost domain
[16:21] <Deeps> if that doesn't work, the issue isn't network related, but rather your configuration of your dns server
[16:21] <TwelveGauge> ok... thanks.
[16:22] <Deeps> if you want more detailed help, gimme the domain in question and your wan ip
[16:28] <TwelveGauge> I gotta reconfigure everything. started over from scratch since it wasn't working.
[16:28] <TwelveGauge> but thanks
[16:56] <XiXaQ> for a mailserver, what's the best way to prevent spam? Spamhaus.org is one option. Is it expensive? Are there other such services that can be used? This will be a small mail system.
[17:16] <paul68> can someone help me out with a routing problem on my server
[17:58] <zoopster> paul68: just ask a question and someone may be able to help
[20:12] <stiv2k> uhh
[20:13] <stiv2k> well, I swapped out the hard drive from my old machine into a new one
[20:13] <stiv2k> and it boots perfectly but I notice that there's no eth0 anymore
[20:13] <stiv2k> the chip is intel 82801db networking
[20:13] <stiv2k> i cant really remember how to configure networking on command line
[20:14] <stiv2k> and furthermore why its gone like that
[20:19] <stiv2k> i think the driver might be e100 im not sure
[20:35] <stiv2k> anyone???
[20:36] <ScottK> stiv2k: Is the network card eth1 now then?
[20:36] <stiv2k> no
[20:36] <stiv2k> ScottK, ifconfig only shows lo
[20:37] <stiv2k> im sure the driver is e100 btw
[20:37] <stiv2k> ScottK, im stuck, I don't know how to make it recognize the chip
[20:42] <ScottK> I'm not sure.  When I've moved hard drives it's always just worked for me.
[20:42] <stiv2k> ScottK, I think it has nothing to do w/ moving the hard drives but rather something with 8.10 and e100
[20:43] <stiv2k> http://www.trap17.com/forums/installing-drivers-ubuntu-hardy-heron-t59623.html
[20:43] <stiv2k> http://www.ubuntugeek.com/fix-for-intel-cards-with-broken-eeprom-e100-driver.html
[20:43] <stiv2k> ScottK, ^
[20:44]  * ScottK dunno.
[20:45] <stiv2k> ScottK, where can I find more information about this so it hopefully gets resolved/
[20:45] <stiv2k> ??
[20:47] <ajmitch> stiv2k: does 'ifconfig -a' show anything more?
[20:47] <stiv2k> hold
[20:47] <stiv2k> ajmitch, I swapped in another LAN card so that it works in the meantime
[20:48] <stiv2k> but the e100 is built in so
[20:48] <stiv2k> its always there
[20:48] <stiv2k> ajmitch, ifconfig -a shows it now
[20:49] <ajmitch> ok, so it's detected but the interface isn't configured & up
[20:49] <stiv2k> ajmitch, when I try to bring it up it says no such device
[20:50] <ajmitch> bringing it up with ifup, or ifconfig?
[20:50] <stiv2k> ifup
[20:50] <ajmitch> ifup only goes from configured interfaces in /etc/network/interfaces
[20:50] <stiv2k> ajmitch, what do you suggest
[20:51]  * ajmitch can't recall if udev still has a list of mac-device name mappigns
[20:52] <ajmitch> but you could just put in the appropriate interface entry with whatever its new device name is in /etc/network/interfaces & bring it up
[20:52]  * ajmitch hasn't had to reconfigure networking for a few releases
[20:53] <stiv2k> ajmitch, i tried that
[20:53] <stiv2k> hold
[20:54] <stiv2k> wtf!!!
[20:55] <ajmitch> something's working now?
[20:55] <stiv2k> um
[20:56] <stiv2k> i dont think so
[20:56] <stiv2k> i configured eth1 to be exactly like eth0
[20:56] <stiv2k> then I said ifup eth1
[20:56] <stiv2k> and changed the network cable over to that device
[20:56] <stiv2k> From 192.168.1.118 icmp_seq=30 Destination Host Unreachable
[20:56] <stiv2k> and by configured I mean I configured it to be static ip
[20:57] <ajmitch> if they're exactly the same, with the same IP address & both interfaces up,  you'll have problems
[20:57] <stiv2k> well only one of them is connected to the network
[20:57] <stiv2k> does it still matter?
[20:57] <stiv2k> should I make the ip different then
[20:57] <ajmitch> it'd help
[20:57] <stiv2k> alright
[20:59] <stiv2k> ok
[20:59] <stiv2k> now they are both connected to the network
[20:59] <stiv2k> on different ips
[21:00] <stiv2k> if I ping the one that's known to work...
[21:00] <stiv2k> http://stiv2k.info/phpsysinfo/
[21:00] <stiv2k> oops
[21:00] <stiv2k> 64 bytes from 192.168.1.10: icmp_seq=1 ttl=64 time=0.973 ms
[21:00] <stiv2k> and the other one (eth1)
[21:00] <stiv2k> From 192.168.1.118 icmp_seq=2 Destination Host Unreachable
[21:00] <stiv2k> ajmitch, so it doesn't seem to be working at all