[00:49] <wo0f> hi, whats the best way to manage user/group permissions?
[00:49] <wo0f> is there a better cli tool than merely chmoding every time?
[00:50] <wo0f> brb
[00:51] <wo0f> back
[01:35] <Ahmuck> i'd like to move a set of raided hard drives from one server to another.  am i going to have to "re-install" evreything over again?
[02:03] <Ahmuck> i'm following this tutorial - https://help.ubuntu.com/8.10/serverguide/C/advanced-installation.html and it dead ends into a loop.  i'd like to setup partitions in the same manner that i would if i had a raided set of drives "hardware side".  is there someone that could clarify the tutorial for me?
[02:05] <sommer> Ahmuck: what do you mean by "dead ends into a loop"?
[02:05] <Ahmuck> under the formatting section
[02:05] <Ahmuck> i have a frame by frame screeshot
[02:06] <sommer> Ahmuck: what raid level are you setting up?
[02:06] <Ahmuck> raid1
[02:07] <Ahmuck> i can set up a webpage with thumbnails and screenshots of each step.  it would take about 7 min to do so
[02:07] <Ahmuck> step 3 of formating section
[02:07] <Ahmuck> after doing the above steps, your only left with one partition
[02:08] <sommer> Ahmuck: one raid partition?
[02:09] <Ahmuck> if you select / as that partition, trying to finish the raid and ubuntu complians about no swap.  the expected behavior would be after setting up the raid to start the partition manager for multiple partition setup
[02:09] <sommer> Ahmuck: ya, that's a good point
[02:09] <Ahmuck> in hardware raid array, select disks, add to array, reboot, and the array is seen as one hard drive
[02:09] <Ahmuck> is this a logic problem in the routine?
[02:10] <sommer> Ahmuck: right, software raid is slightly different... because you're raiding multiple partitions
[02:10] <Ahmuck> last night i tried setting up multiple partitions and creating a raid for each partition
[02:10] <Ahmuck> and failed at that.  anyhow, following the tutorial sent me into a loop
[02:11] <sommer> Ahmuck: that should work
[02:11] <Ahmuck> which should work?
[02:11] <sommer> a raid array for each parittion
[02:12] <sommer> basically partition one drive like you normally would, but instead use the partition as a raid device
[02:12] <sommer> then do the same for the 2nd drive... mirroring the first
[02:12] <Ahmuck> going back to software raid, is there a reason that the software raid is not seen as one drive?  doesn't the software raid portions set something on the drives so it knows.  i would expect to reboot after setting up the raid array and then bieng presented with one drive to partition
[02:13] <Ahmuck> is this a flaw in the software raid design, or is it convention to do it this way and were a bit stuck with it
[02:13] <sommer> no, from my experience it's different because you're dealing with raided partitions instead of raided drives
[02:14] <sommer> but you can raid a partition that coveres an entire drive
[02:14] <Ahmuck> u can't raid two drives and then partition it as one drive?
[02:14] <Ahmuck> that's confusing
[02:14] <sommer> no... you need to raid paritiions on two different drives
[02:14] <sommer> if that makes sense?
[02:15] <sommer> for software to use a hard drive there needs to be a partition first... which can then be raided
[02:15] <Ahmuck> k, so that's the way it is.  moving on.  i'm doing software raid and setting up on machine a.  will be changing to larger drives in three days.  i assume i can "expand" one drive onto the larger drive, and then add the second larger drive and allow the raid to populate it
[02:16] <Ahmuck> sommer: makes sense
[02:17] <sommer> Ahmuck: I'm not sure about that senario, but it may work
[02:17] <Ahmuck> or, with the server, in windows changing hardware completely is a bad idea, which is why i'm choosing software raid.  in ubuntu, i'd like to change the entire server hardware in 180 days.  am i going to be forced into a data backup and complete re-install of ubuntu server?
[02:18] <Ahmuck> such details as network cards, mobo, chips, video cards, and everything changes
[02:18] <Ahmuck> does linux care or can i just move the drives and reboot?
[02:18] <sommer> I would think that re-installing would be less of a headache if you're chaning that much hardware, but I guess I've never really tried chaning things that drastically
[02:19] <sommer> the install process doesn't take that long :-)
[02:20] <Ahmuck> well, i'd have to track changes in base configuration files
[02:20] <Ahmuck> and backup/restore those
[02:20] <Ahmuck> aonther reason i chose software raid so i could be independent of hardware raid changes
[02:21] <Ahmuck> k, last question.  must both / sections of the partitions be bootable?
[02:21] <Ahmuck> have the bootable flag set?
[02:21] <sommer> Ahmuck: nope just one
[02:21] <Ahmuck> what happens if i loose the bootable drive?
[02:22] <Ahmuck> will the other one boot so i can change drives?
[02:22] <sommer> Ahmuck: in Intrepid, that issue is solved
[02:22] <Ahmuck> nice ... thx
[02:22] <sommer> see the degraded raid section
[02:22] <Ahmuck> :DDD
[02:22] <Ahmuck> i saw that and that's what it appeared to be but i wanted to make sure
[02:23] <Ahmuck> but i do need to set one drive as bootable, correct?
[02:23] <sommer> for tracking config changes you might look into a VCS like bzr or svn... that's what I use, and it works quite well
[02:23] <Ahmuck> k, i suspect you install that first
[02:23] <sommer> Ahmuck: I do, but I'm not sure that it matters... I think grub will boot to whatever is configured regardless of the boot flag
[02:24] <Ahmuck> how does the computer know to boot?  grub?
[02:24] <Ahmuck> does it just look?
[02:24] <sommer> /boot/grub/menu.1st is the config file
[02:24] <Ahmuck> k, no flame wars, but what is considered best bzr or svn?
[02:25] <Ahmuck> i often here of git with svn, cvs
[02:25] <sommer> I like both pretty well, but for config file management it shouldn't matter much
[02:26] <Ahmuck> any interest in a frame by frame tutorail for those of us that are text challenged
[02:26] <Ahmuck> git would not do the job i suppose
[02:26] <sommer> uh there's probably something out there, but svn and bzr are breifly covered in the serverguide
[02:26] <sommer> git would work fine, I haven't used it much though
[02:27] <sommer> basically you're just looking for a tool to track versions of files, so whatever you're comfortable with is really the *best* solution
[02:27] <sommer> or at least that's how I use them :-)
[02:32] <Ahmuck> create a partition the size of each section, /, /home, /usr/local and call it a raid drive, then combine to get the raid and then format each partition and label it /, /home, etc?
[02:32] <Ahmuck> i assume that's the proceedure i follow
[02:32] <sommer> yeppers
[02:33] <Ahmuck> "use as physical volume"
[02:33] <Ahmuck> ok, i followed a tutorial if found on the web like that and failed at it last evening for some reason.  i'll try again and touch back if i fail
[02:34] <sommer> Ahmuck: sure, a word of advice... don't get frustrated when exploring new disk layouts and software, you're bound to not get it the way you want the first time :-)
[02:36] <Ahmuck> i'm doing it in virtual box, so i can do and do and do :)
[02:40] <ball> Well that's a predictable channel name :-)
[02:41] <Ahmuck> in the tutorial it needs to tell the individual to create two partitions per drive, one for / and one for swap
[02:41] <Ahmuck> anything beyond that becomes a partition tutorial, but my guess is to prevent confusion, it needs at least those two
[02:42] <sommer> Ahmuck: ya, I'll get that updated for jaunty
[02:42] <Ahmuck> is the tutorial like a wiki?
[02:42] <Ahmuck> something that can be updated?
[02:42] <Ahmuck> jaunty huh.  what is the name of the animal, i have not peeked yet
[02:42] <ball> How does Ubuntu Server differ from Ubuntu?  Does it ship without an X server?
[02:42] <Ahmuck> ball: correct
[02:43] <ball> Ahmuch: presumably everything can be configured from the command line.
[02:44] <sommer> Ahmuck: the serverguide is the "official" documentation, there's some quick instructions for submitting updates here: https://wiki.ubuntu.com/ServerTeam/GettingInvolved
[02:44] <sommer> under the maintain documentation link
[02:44] <ball> Is Jaunty to be avoided?
[02:45] <sommer> jaunty is alpha 1... so it's definitely not production ready
[02:46] <ball> Jaunty != 8.10 then?
[02:46] <ball> Oh!  Hardy, that's what I have.
[02:46] <ball> A very broken Hardy.
[02:46] <Ahmuck> Intrepid is 8.10
[02:46]  * ball looks around the study for a machine on which to try #ubuntu-server
[02:46] <Ahmuck> good hardy is 8.04.1
[02:46] <ball> So what about Intrepid?
[02:48] <Ahmuck> intrepid is out now ball
[02:48] <Ahmuck> r u still on hardy?
[02:48] <ball> Yes
[02:48] <ball> I managed to break my Hardy though.
[02:48] <Ahmuck> ah
[02:48] <ball> Okay, let me power up this Ubuntu box
[02:49] <Ahmuck> sommer: k, i get "warnings" when doing it the other way.  i'm guessing one has to create the "raided" devices and then reboot before partitioning and labeling the partitions? ... i didn't, it gave me a warning, i hit continue, and it appears to be installing ... *confused*
[02:50] <ball> Can Ubuntu-server be compiled completely from (open) source?
[02:53] <sommer> Ahmuck: try rebooting then I guess
[03:00] <ball> Aha!  found a candidate machine
[03:09] <ball> Is there a way, from the command line, of telling how much RAM a machine has?
[03:09] <ball> Linux' dmesg output seems inscrutible ;-)
[03:10] <ball> Ah found it.
[03:10] <ball> 256 Mbytes.
[03:10] <Thirtysixway> cat /proc/meminfo
[03:11] <ball> Thanks
[03:11] <ball> Is ubuntu.org down?
[03:12] <ball> Crap.  I can't seem to get anywhere.
[03:12] <Thirtysixway> ubuntu.com is up
[03:13] <ball> Thanks
[03:13] <ball> Seamonkey was having a funny five minutes.
[03:13] <pschulz01> Greetings.. has the scsi modules / userspace programs changes between 8.04 and 8.10? I used to be able to use /dev/tape/by-id/... but that doesn't seem to be working on my new 8.10 system.
[03:14] <ball> I'm wondering whether to get 8.10 or 8.04.1
[03:15] <Thirtysixway> I have 8.04 installed on my server, simply because it's supported for 5 years
[03:15] <Thirtysixway> well I mean for other reasons too but that's a good reason :p
[03:16] <ball> Ah, is that the LTS I remember hearing about?
[03:17] <Thirtysixway> Yeah, 8.04 is LTS
[03:20] <ball> Okay, fetching Ubuntu Server 8.10 via bittorrent
[03:20] <ball> If that doesn't work, I'll fall back on 8.04
[03:21] <Thirtysixway> I don't see why it wouldn't work.
[03:21] <ball> We'll see anyway, soon enough.
[03:21] <ball> Does it have a published minimum spec?
[03:23] <Thirtysixway> https://help.ubuntu.com/8.10/serverguide/C/preparing-to-install.html
[03:26] <ball> Ah good, I qualify.
[03:27] <Thirtysixway> 8.04 seems to have the same minimum requirements, also.
[03:28] <ball> Thanks
[03:28] <ball> 10% downloaded
[03:28] <ball> (of the ISO)
[03:28] <pschulz01> Anyone here familar with udev?
[03:28] <Thirtysixway> I think I have the 8.04 server cd around here somewhere.  I have so many Ubuntu cd's.
[03:31] <ball> Oh cool, I just found another Webcam
[03:39] <Thirtysixway> I kind of want to hook up a webcam to my server
[03:39] <Ahmuck> sommer: thx, i'm making lots of progress and understand better what's going on this evening because of your help
[03:40] <Thirtysixway> We have this compact florecent light that's been on since may 2006, it would be fun to have a little site going to watch it.  Sort of like that old 100 year old lightbulb
[03:40] <SpunkMeYeR> hi all...
[03:41] <SpunkMeYeR> what is the fastest command to search a file in ubuntu??
[03:41] <Ahmuck> btw, hi ball
[03:41] <Ahmuck> slocate
[03:41] <Ahmuck> oh, nm
[03:41] <SpunkMeYeR> like " locate <filename>" in rpm distro
[03:41] <Ahmuck> ah, slocate <filename> is what i use
[03:42] <ball> hello Ahmuck
[03:42] <SpunkMeYeR> thanks Ahmuck..
[03:46] <Steve[cug]> Lets say I have a user thats in multiple groups specified by the limits.conf file, is the last limit applied? smallest?
[03:46] <Steve[cug]> anyone happen to have any ideas?
[03:46] <LoveGuru> What about debian based Search .
[03:50] <ball> Steve[cug] If membership of one group grants you permission to a resource, I don't think membership of other groups would revoke that. <- this is a blatant guess.  Test it!
[03:51] <ScottK> sommer: You still around?
[03:51] <Steve[cug]> ball.....guess it's all i can do
[03:51] <Steve[cug]> :-p
[03:51] <sommer> ScottK: uh, probably for a little while longer
[03:51] <sommer> what's up?
[03:51] <LoveGuru> is "slocate filename" work with debain based distro?
[03:52] <ScottK> sommer: I was wondering if you'd be willing to do a bit more php-clamavlib work?
[03:53] <ScottK> Before it was removed from Intrepid, we got a working version for clamav 0.94.x.
[03:53] <ball> Steve[cug]: let us know what you find out.
[03:54] <ScottK> What it would need is someone to port those changes to the 0.12 version we have in Dapper so that both php4 and php5 are supported.
[03:54] <ScottK> sommer: ^^
[03:54] <sommer> ScottK: gotcha, I can take a look at it
[03:54] <ScottK> Thanks.
[03:54] <ScottK> sommer: The 0.13 version is in the PPA.
[03:55] <sommer> ScottK: so I'm clear, the clamav version in intrepid needs to be backported to dapper?
[03:55]  * sommer checking
[03:55] <ScottK> sommer: Yes.  The backported clamav for Dapper is in the PPA already.
[03:56] <sommer> ScottK: ah, so only php4 and php5 need to work with it?
[03:57]  * sommer should be able to handle that
[03:57] <ScottK> sommer: I think most of the rest will backport OK and I've got other people in mind to pick on for the other bits that need doing.
[03:59] <sommer> ScottK: I might not be able to get to it until Friday or so, but I'll let you know
[03:59] <ScottK> sommer: No rush.  There's plenty of other stuff to do yet too.
[04:14] <Ahmuck> loosing power on a box with software RAID is a bad thing?
[04:15] <Ahmuck> LoveGuru: if you have it installed, yes
[04:16] <Ahmuck> LoveGuru: not installed by default on *untu distros
[04:16] <LoveGuru> Ahmuck: thanks. i see Everyone is here but.. So bzy don't have a single second to respond :)
[04:17] <Ahmuck> ur welcome
[04:51] <SpunkMeYeR> hi guys..
[04:51] <SpunkMeYeR> i have an cgi script
[04:52] <SpunkMeYeR> but when i execute that script in my homepage, it shows me the source code
[04:52] <SpunkMeYeR> what should i do?
[04:55] <ropetin> SpunkMeYeR: what webserver are you using?  Apache?
[05:19] <SpunkMeYeR> ropetin, i running apache2
[05:29] <ropetin> SpunkMeYeR: In which case more than likely you need to set AddType correctly for the filetype
[05:29] <ropetin> Is it PHP?
[05:34] <SpunkMeYeR> not .cgi
[05:34] <SpunkMeYeR> no .cgi
[05:43] <ropetin> What language is it written in?
[05:55] <SpunkMeYeR> ropetin, it's perl
[06:39] <domas> hi!
[07:08] <ball> I'm about to burn my first Ubuntu Server CD
[07:08] <domas> gz!
[07:08] <domas> do netinstall!
[07:09] <ball> domas: Sounds newfangled and scary.  I'm just trying to get used to optical media instead of mag tape.
[07:10] <domas> haha
[07:10] <domas> didn't install from mag tape for a while :)
[07:10] <domas> (or floppies)
[07:10]  * ball hugs /dev/st0
[07:11] <ball> domas: my first Linux install was from a stack of 5.25" 1.2 Mbyte floppies
[07:11] <domas> my first linux install was from 3.5" floppies ;-)
[07:11] <domas> though did install SCO from tapes
[07:11] <domas> =)
[07:11]  * domas is a kid
[07:11]  * ball <- old fart
[07:12] <domas> I remember going 100 miles away to get SCO OS5 CD back in the day
[07:12] <ball> How does Ubuntu Server compare with other server operating systems?
[07:12] <domas> ball: free.
[07:12] <ScottK> ball: What do you have experience with?
[07:13] <domas> ball: other than that... um... lots and lots of packages that aren't ancient
[07:13] <ball> ScottK: Unix, Netware, VMS, i5/OS etc.
[07:13] <ball> Oh!  Concurrent CP/M-86
[07:13] <ball> :-)
[07:13]  * ScottK recalls CP/M.
[07:14] <domas> ball: you don't need to recompile stuff too much, unless it is something you really actively run ;-)
[07:14] <ScottK> Ideally you won't at all.
[07:14] <domas> ScottK: nah, that never happens
[07:14] <ball> Because Ubuntu uses binary packages and apt-get ?
[07:14] <ScottK> Yes.
[07:15] <domas> ScottK: ubuntu debugsyms are broken ;-(
[07:15] <domas> ddebs for hardy is a toast
[07:15] <ScottK> domas: That's one of the reasons I'm an Ubuntu developer.  I make sure it happes for the stuff I care about.
[07:15] <ball> What does it mean to be an Ubuntu developer?  You contribute code?
[07:16] <domas> ScottK: well, stuff like recursive mutex deadlocks in single-threaded apps can't be resolved without a recompile ;-)
[07:16] <ScottK> Mostly I package software.
[07:16] <ScottK> OK.
[07:16] <domas> ScottK: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/164533 ;-)
[07:16] <ScottK> I do some code as well, but mostly it's packaging, updating and integration.
[07:16] <ScottK> Right, that one isn't a problem for me.
[07:17] <domas> anyway, lack of ddebs is sad
[07:17] <ball> Damn this is taking a while to drag to Mrs. ball's PC
[07:18] <ScottK> ball: Ubuntu server is a lot like any Unix'ish system, but with a lot of good structure for package management.
[07:18] <domas> ScottK: Ubuntu sometimes seems to over-package stuff
[07:18] <ScottK> domas: No doubt.
[07:18] <domas> as in, too many local modifications
[07:18] <domas> e.g. mysql startup script will run 'CHECK TABLES' on every server restart
[07:18] <ScottK> We generally strive to keep them to a minimum.
[07:19] <hads> That's a debianism isn't it?
[07:19] <domas> yeah, thats debianism
[07:19] <ScottK> I think so.
[07:19] <domas> I don't see debian too much
[07:19] <ScottK> So Ubuntu Server is a lot like Debian on a server except less ancient.
[07:19] <domas> true :)
[07:20] <Koon> domas: there aren't so many local modifications. Most of them are either upstream patches that we baclported to the current release, or thikngs linked to the packaging (init script, etc.)
[07:20] <ScottK> It's also gotten (and will continue to get) more user friendly.
[07:20] <domas> Koon: yeah, I followed changelogs for some packages %)
[07:20] <domas> have to file one more bug
[07:20] <domas> with debian/ubuntu mods
[07:20] <Koon> domas: but that's true there are a few notable exceptions :)
[07:21] <domas> can anyone kick canonical for breaking ddebs, please? :)
[07:21] <Koon> there is also the case of FHS compiance
[07:21] <ball> I don't think I've ever used Debian
[07:21] <Koon> if you take tomcat6, I had to break it so that it fits in the right slots
[07:21] <domas> oh, are they unbroken
[07:22]  * domas can't believe own eyes
[07:22] <Koon> because "everything is one directory" is nice from upstream pov, but not from a distro pov
[07:22] <ScottK> Or you an bundle up half the universe in your Ruby on Rails app, but that doesn't make it a great idea for the masses.
[07:22] <domas> Koon: I did package internal mysql build, and got a bit of "hey, thats not a nice package!" from OS guy
[07:23] <domas> I just put it into /usr/packagename/* :)
[07:24] <ball> "not a nice package"?
[07:25] <domas> damn pedants
[07:26] <domas> oh, and I replaced start/stop script with "start: mysqld & stop: killall mysqld" :)
[07:27] <ScottK> ball: We have a lot of rules about how stuff is supposed to be done.  For the system as a whole that's a good thing.  It can make some packages more complex than they might technically need to be.
[07:28] <ball> Is it consistent though?
[07:29] <ScottK> The policy is consistent.
[07:29] <ScottK> Is every package perfect, of course not.
[07:29] <domas> well, the way I build internal packages doesn't always have to follow policies ;-)
[07:29] <ScottK> Exactly.
[07:29] <domas> on the other hand, I build them based on my own subversion/bazaar repo
[07:30] <hads> I was thinking about packaging FreeSWITCH but it would need some fairly major mods I think - it's an everything in one dir.
[07:30] <ScottK> Generally you can move stuff about as needed in debian/rules.
[07:31] <hads> It has existing debian/ which installs to /opt
[07:31] <hads> And I think it expects to be all in one dir.
[07:32] <ScottK> Right, so a bit of fun then.
[07:32] <hads> Yeah, it put me off it a little :)
[07:32] <hads> The software is fantastic, just packaging it doesn't sound like fun.
[08:53] <kraut> moin
[10:42] <jtmoney> hey guys, setting up a software RAID-1 with intrepid... after my RAID syncs (after the first boot), i get a lot of "DRDY ERR" errors of type "UNC"... i looked this error up on libata's wiki and it says it's an "Uncorrectable error - often due to bad sectors on the disk"... is this normal on a new hard drive? will ubuntu finally get all the bad sectors worked out and no longer use them?
[12:01] <ahasenack> soren: hi
[12:02] <ahasenack> soren: remember my question yesterday about ia64 port?
[12:02] <ahasenack> soren: the sources.list that guy has is of the form: "deb http://ports.ubuntu.com/ubuntu-ports/ hardy main restricted"
[12:03] <ahasenack> soren: I'm doing some tests and that url seems wrong, apparently this would be the right one: "deb http://ports.ubuntu.com/ hardy main restricted"
[12:08] <soren> ahasenack: If he's on hardy that explains why he only sees the landscape-client placeholder.
[12:08] <soren> ahasenack: landscape-client |        0.1 |         hardy | source, all
[12:08] <soren> landscape-client | 1.0.23-0ubuntu0.8.10.1 |      intrepid | source, all
[12:09] <ahasenack> sommer: oh
[12:09] <ahasenack> ahasenack: completely right
[12:10] <ahasenack> soren: somehow I forgot that lc was in main only from intrepid onwards
[12:11] <soren> :)
[12:11] <soren> ahasenack: You did say that he was running Intrepid yesterday.
[12:12] <ahasenack> soren: he did say so
[12:12] <ahasenack> soren: "I have a 8.10 install on a HP dual IA64"
[12:12] <ahasenack> soren: so maybe he is just using the wrong sources list, or sent me the wrong one
[12:12] <soren> 11:44 < ahasenack> soren: how is it maintained? We got a guy with such a machine and intrepid, and he wants to try out landscape, but he ha
[12:12] <soren> s the stub package installed (version 0.1), so I'm guessing the "real" intrepid was not ported to ia64
[12:12] <ahasenack> ^^^
[12:13] <soren> Well, the problems he was having are consistent with running Hardy.
[12:13] <ahasenack> soren: I'll find out, thanks for the help
[12:13] <soren> So he's probably just thinks he's running Intrepid, but really isn't.
[12:18] <Deeps> i have an inbound packet coming from 1.2.3.4, is it possible to use iptables (or anything, really) to rewrite the packet on entry to appear from source 2.3.4.5, and then similarly rewrite any outbound packets destined for 2.3.4.5 rewrite them to be destined for 1.2.3.4?
[12:36] <nme> Deeps: its called SNAT
[12:37] <nme> or NAT ;)
[12:39] <Deeps> nme: not having much joy with postrouting + snat
[12:41] <ivoks> iptables -A POSTROUTING -s 1.2.3.4 -j SNAT --to-source 2.3.4.5
[12:43] <ivoks> iptables -A POSTROUTING -s 2.3.4.5 -j DNAT --to-destination 1.2.3.4
[12:44] <Deeps> isnt DNAT prerouting only?
[12:45] <ivoks> my bad, PREROUTING
[12:45] <Deeps> bad arg if done postrouting, eitherway i can still ping 1.2.3.4 fine, but not 2.3.4.5
[12:46] <Deeps> http://i35.tinypic.com/dvj5mu.png
[12:46] <Deeps> if that helps
[12:46] <Deeps> basically just want the application level to see the source ip being different to what it really is
[12:47] <ivoks> well, for start, add 1.1.1.2 on the second computer
[12:48] <ivoks> or...
[12:48] <Deeps> cant, that's part of the problem, hense trying to jiggle it with iptables
[12:48] <ivoks> not
[12:48] <ivoks> iptables -A PREROUTING -s 1.1.1.1 -d 1.1.1.2 -j DNAT --to-destination 1.2.3.4
[12:50] <ivoks> iptables -A PREROUTING -s 1.2.3.4 -j DNAT --to-destination 1.1.1.2
[12:50] <ivoks> something like that...
[12:50] <ivoks> first machine should have both 1.1.1.1 and 1.1.1.2 ips
[12:51] <nme> thats wrong
[12:51] <ivoks> could be :)
[12:51] <nme> iptables -A PREROUTING -t nat ...
[12:51] <Deeps> yeah i'm using -t nat already, not that thick ;)
[12:52] <ivoks> doh...
[12:53] <Deeps> basically got an application that requires all clients to be within the same /24, but clients are on the same /8 and cant change this configuration
[12:54] <nme> those packets come to You from behind a router? isnt it same lan?
[12:55] <Deeps> same lan
[12:57] <nme> and your linux box with iptables you are setting is between those clients and the app?
[12:57] <Deeps> linux box is running the app
[12:59] <nme> and those two rules SNAT and DNAT dont solve the problem?
[12:59] <Deeps> nope
[12:59] <Deeps> -A PREROUTING -d 1.1.1.2 -j DNAT --to 1.2.3.4
[12:59] <Deeps> -A POSTROUTING -s 1.2.3.4 -j SNAT --to 1.1.1.2
[13:00] <Deeps> you'd think that would do it, but then again that might only work for routed packets
[13:00] <nme> iptables -L PREROUTING -t nat -n -v -x  <- does the rules have increasing count of packets?
[13:01] <Deeps> nope, not hitting the rule at all then
[13:02] <Deeps> Chain PREROUTING (policy ACCEPT 1011 packets, 133220 bytes)
[13:02] <Deeps> that packet count is increasing
[13:02] <Deeps> the rule pkts is still 0 though
[13:03] <Deeps> haha, silly me
[13:03] <Deeps> -t nat -I OUTPUT
[13:14] <Deeps> unfortunately, inbound connections from 1.2.3.4 still appear to be coming from 1.2.3.4
[13:14] <Deeps> rather than 1.1.1.2 :/
[13:33] <Deeps> need a nat input rule that allows snat, prerouting doesn't :/
[13:38] <CrummyGummy> Hi all, I need to install a debing-etch kernel in order to install the HPopenipmi drivers. What are the ods of me getting this right without breaking anything?
[13:45] <ivoks> CrummyGummy: almost none
[13:45] <ivoks> CrummyGummy: what's wrong with openipmi in ubuntu?
[13:47] <CrummyGummy> The hp control/admin packages don't run properly without the HP ipmi drivers.
[13:47] <CrummyGummy> :(
[13:47] <CrummyGummy> These are only compiled for Debian.
[13:57]  * CrummyGummy wishes that HP would support Ubuntu
[14:03] <joerlend_> is it possible to password protect NFS shares, or limit access based on logins?
[14:13] <joerlend_> that is, I have my users and groups in an ldap directory and I'd like to share homes for those users, but only to those users.
[14:14] <sommer> joerlend_: regular directory permissions should limit access just fine... I'd think
[14:15] <maswan> joerlend_: If you want better NFS auth than uid/gid you need to go to NFSv4.
[14:16] <joerlend_> wouldn't it be possible to recreate those users on a client machine and gain access?
[14:17] <joerlend_> maswan, what do I have to do to get that?
[14:19] <maswan> joerlend_: TBH, I don't really know. I just know that as of v4 you can have real auth and user mappings based on something else than client uids, but you need to read up on it. And then try it out too.
[14:19] <maswan> It is a new standard, so implementation is patchy here and there.
[14:21] <joerlend_> oh, ok. Yes, NFS support is implemented in the kernel?
[14:21] <maswan> Yes.
[14:22] <maswan> At least if we're talking hardy or newer. I'm not so sure on dapper.
[14:22] <joerlend_> hardy is the oldest version I'd use :)
[14:27] <nme> anyone uses openldap in intrepid?
[14:28] <joerlend_> tried with no success. There's been some changes since hardy, so the guides for it doesn't work, I think.
[14:29] <joerlend_> nme, however... I'm sure you had another question in mind?
[14:29] <nme> joerlend_: there are new docs for intrepid
[14:30] <nme> joerlend_: im unable to change debug level for slapd - it hangs during start with OPTIONS="-d anything"
[14:32] <sommer> nme: try starting slapd from a terminal, not using the start script and see what errors occur
[14:39] <nme> sommer: tried slapd -d -1, tried slapd -d 4294967295 - both start with no problems, You solved my issue anyway, I can now debug, ty!
[14:41] <sommer> nme: np
[14:43] <joerlend_> perhaps sshfs is an alternative to consider?
[14:52] <nme> joerlend_: NFS works for sure. 2 weeks ago I was experimenting on my intrepid as a server for pxe over nfs and everything went fine.
[14:53] <nme> joerlend_: if you are having issues with nfs check your firewall - in some cases it can block services like statd making them unable to start
[14:54] <maswan> joerlend_: If you need that kind of auth, probably. The NFS (up until v4 at least) auth model means that anyone that has root on a client can do anything as any user.
[15:01] <joerlend_> nme, yes, NFS works just fine, but I'd like to limit access to users in my LDAP directory.
[15:01] <joerlend_> maswan, right, meaning that a live cd is all you need to cause headaches.
[15:16] <_jmedina> maswan: not without root squash
[15:17] <domas> _jmedina: "as any user except root"
[15:17] <_jmedina> joerlend you can use nisMap entries in your directory and mount with automount, so you only mount /home/user and not /
[15:17] <_jmedina> i mean not the whole /home/
[15:18] <_jmedina> you can even use NIS netgroups and limit wich users can login in a specific system, you can limit by, user, group and ip, or a combination
[15:18] <_jmedina> I like to use that
[17:41] <opapo> I am using openldap on Ubuntu 8.04.  I can use getent on the client, but id doesn't work
[17:54] <shoot^> Guys, having real issues here. My server arbitrarily disconnects from the wireless, and doesn't reconnect itself. Its using a Static IP over DHCP. Anyone able to help?
[18:12] <opapo> I restarted nscd and id worked
[18:26] <jtmoney> hey guys, setting up a software RAID-1 with intrepid... after my RAID syncs (after the first boot), i get a lot of "DRDY ERR" errors of type "UNC"... i looked this error up on libata's wiki and it says it's an "Uncorrectable error - often due to bad sectors on the disk"... is this normal on a new hard drive? will ubuntu finally get all the bad sectors worked out and no longer use them?
[18:32] <centaur5> jtmoney: I would download the manufacturer's hard drive diagnostic utility and if it passes as defective warranty it.
[18:55] <leonel_> ScottK: I'll check what came out today  and  add to  the  previous patches
[19:15] <jtmoney> centaur5: i did... bad drive
[19:16] <jtmoney> what are the odds? i've bought two seagates... one was bad... then two hitachis... one was bad
[19:16] <jtmoney> incompetent UPS man?
[19:16] <jtmoney> :)
[19:17] <centaur5> jtmoney: I don't come across bad Seagate's very often but it does happen. Hitachi on the other hand, will they allow you to exchange for Seagate?  :)
[19:23] <jtmoney> newegg is letting me return all four and i'm buying western digital and being done with it
[19:31] <Deeps> http://www.storagereview.com/
[19:31] <Deeps> have a survey my manufacutrer and model number
[19:31] <Deeps> s/my/by/
[19:31] <Deeps> so you can see based on a larger sample what reliability for various drives are like
[19:45] <robertj> does anyone have pptpd working?
[19:48] <robertj> GRE: Bad checksum from pppd <- :(
[19:50] <Jared555> is ubuntu-server a good choice for a dedicated firewall system or should I run something like ipcop/smoothwall or even openbsd?
[20:30] <tonyyarusso> Jared555: all of the above will work just fine with a competent administrator.  Use whatever you're most comfortable with.
[20:47] <Jared555> does ubuntu server have qos functionality by default or do you have to recompile the kernel?
[21:02] <Baversjo> Hello, is there anything scponly-users can do with my server after a fresh install of scponly? What I found myself is that they cannot use SCP, no shell and they can use Tunneling. Is there anything more that they can/cannot do?
[21:05] <mathiaz> soren: I've got an open-iscsi package ready. If you wanna review it: http://people.ubuntu.com/~mathiaz/packages/
[21:05] <mathiaz> soren: it implements the ifupdown strategy we've talked about
[21:06] <soren> Whee!
[21:08] <slestak> i am reconsidering the intelligence of not setting up lvm when I configured my last intrepid machine
[21:09] <slestak> it is not a production machine, so there are not lots of ppl depeneding on it.
[21:10] <slestak> but I am considering using the machine for a backuppc host, and now want to add an lvm partition.  i have no care of / is in lvm, and i know /boot cannot be in it
[21:12] <slestak> i have extra sata drives, can i have a non-lvm root and add some pv's into a volume group for sth like /var/backuppc ?
[21:13] <ScottK> leonel_: Thanks.
[21:16] <centaur5> Jared555: If you use Ebox it has a traffic shaping module for QoS.
[21:20] <MatBoy> damn, my php does not reports errors when the settings are ok :S
[21:30] <LoveGuru> If the Settings are ok. then why php reports an error?
[22:45] <LoveGuru> Is there anyone who familiar with vsftpd server?
[22:51] <BleSS> when I install OpenLdap (slapd ldap-utils) it isn't being installed the config file '/etc/ldap/slapd.conf' by default, is it ok?
[22:51] <andymd> ok for what?
[22:52] <BleSS> I refer that if that is normal/correct
[22:52] <BleSS> because I'm supposed that should be installed a config file by default
[22:53] <andymd> I think it is ok
[22:53] <BleSS>  /etc/ldap/ldap.conf -> it's created
[22:53] <BleSS> but not slapd.conf
[22:53] <andymd> but not be oriented
[22:56] <BleSS> and this document speaks about that file (so it should be) https://help.ubuntu.com/community/OpenLDAPServer
[22:58] <BleSS> well, it is always possible come back to debian server
[23:05] <J-_> I've downloaded drupal, and installed it from the drupal website and I'm wondering if anyone else has had any problem with the SMTP module and PHPmailer? I can't get phpmailer to work. Can anyone help?