[00:12] <KillMeNow> so mark, have you ever gotten apparmor to work ?
[00:14] <mark> I assume that's not me? I have not touched apparmor, ever :)
[00:21] <domas> KillMeNow: I can answer for mark
[00:22] <domas> KillMeNow: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/329489/ ;-)
[00:22] <domas> where is the USN! :)
[00:29] <KillMeNow> https://forgesvn1.novell.com/viewsvn/apparmor?view=rev&revision=1380
[00:29] <KillMeNow> that fixes the issue domas
[00:30] <domas> omg, really?
[00:30] <domas> I can follow links on bug report too!
[00:30] <mark> domas... be nice
[00:30] <KillMeNow> looks like it's a kernel patch
[00:30] <domas> how does one patch a kernel?
[00:31] <domas> make-kpkg doesn't produce vmlinux package :(
[00:31] <KillMeNow> well, i'm not sure domas...  why don't you educate us!
[00:31] <domas> I can't educate anything about kernels!
[00:31] <domas> for years I've been using default distro ones
[00:32] <domas> I quite like apparmor
[00:32] <domas> but this bug for now forced to disable it wherever it was enabled ;-)
[00:33] <domas> I like the idea of application-driven hat changing
[00:34] <KillMeNow> yep...  i've been trying to get it to work with apache, read through the documentation from the Novell website but not having much major success
[00:36] <mark> domas: it's pretty easy to build a patched kernel image
[00:37] <mark> so if you want that patch rolled out...
[00:37] <mark> a USN would be easier though ;)
[00:37] <mark> and I have a few more kernel issues to report for that as well ;)
[00:38] <domas> KillMeNow: are you going via mod_apparmor?
[00:38] <domas> I like the technology, maybe should quite the dayjob and start apparmor consulting career!
[00:39] <domas> interesting how much ahead in security macosx is.
[00:40] <KillMeNow> domas>  no, i read about mod_apparmor but apt doesn't seem to find it in the repository
[00:41] <KillMeNow> just been doing some of the basic stuff like using genprof to build profiles
[00:41] <domas> isn't ubuntu apache already with internal apparmor hooks?
[00:41] <domas> (so you can set different profiles based on request URIs)
[00:42] <KillMeNow> i really don't know TBH
[00:42] <domas> btw, "libapache2-mod-apparmor - changehat AppArmor library as an Apache module
[00:42] <domas> "
[00:42] <domas> you know, you had to ask apt to find it in repository
[00:42] <domas> it wouldn't find on itself, if you don't ask
[00:43] <KillMeNow>    yes, that is installed
[00:47] <KillMeNow> you know of any good documentation regarding getting it set up using the mod_apparmor domas?
[00:48] <domas> depends on what you want to do
[00:48] <domas> apparmor is for people who know their apps :)
[00:49] <KillMeNow> looking to add another layer of security to apache / php / mysql
[00:57] <andylockran> KillMeNow: iptables ?
[00:58]  * andylockran leaves the room, slowly
[01:02] <domas> meh, mysql security
[01:03] <domas> I'll have to give a talk on it soonish
[01:15] <KillMeNow> andylockran...  IPtables are already in place
[01:16] <KillMeNow> that's not an issue, it's the "Hey, i'm running a web app that had a security flaw which someone found and is now using"
[01:16] <KillMeNow> i want to stop them from gaining root or doing other bad nasty things to the box
[04:17] <arooni> http://pastie.org/395882 ... does that indicate a drive is bad and cant be mounted?
[04:56] <MK-BB> anyone here??
[04:58] <MK-BB> I was wondering if anyone knows how to setup a email server and using roundcube
[05:02] <MK-BB> Or other webmail client
[06:06] <MK-BB> Anyone?
[07:07] <VK7HSE> MK-BB:  http://trac.roundcube.net/wiki/Howto_Install
[07:33] <arooni> i have an amazon web services (aws) ec2 server that i'm trying to figure out why i can't ping it from anywhere.  now there are no iptables running on the server.... and FROM the server i can ping both 4.2.2.2 and google.com.  i can also ping those same places FROM the computer i'm trying to ping the server from.  ideaz?
[09:38] <Yagisan> kirkland, I was reading your post on server migration from hardy to lenny - did you want half-backed examples from main or universe ?
[09:38] <Yagisan> s/backed/baked
[09:41] <Yagisan> kirkland, if universe - then look at bug #86685 - trac is useless on amd64 servers with that. Fixed packages are here https://launchpad.net/~yagisan/+archive/ppa and there are others I'm sure.
[09:42] <Yagisan> kirkland, if main - well - hardy guests in kvm on an intrepid host display soft cpu lockup messages in the hardy guest consoles and need to be restarted
[11:10] <pteague> ok, this doesn't seem to be going well for me tonight...  i just finished installing ubuntu-server intrepid, rebooted, & it's giving me lots of segmentation faults :(
[11:31] <pteague> here's the output i'm getting - http://pastebin.com/m7bd6da05
[11:45] <pteague> figured it out...  seems as though there's some sort of a problem with either the mobo accepting the nvidia card, the particular mix of drivers, or maybe the power supply isn't getting enough power to it...
[11:47] <Yagisan> pteague, do you get that issue without the nvidia drivers ?
[11:48] <Yagisan> reading it - I'd hazard a guess that message signaled interrupts on that motherboard don't work
[11:49] <pteague> i've had this problem on both the intel atom 230 (i don't think i even got far enough to boot off the cd) & now the intel atom 330... the video card works fine on my p5k + intel e6750 core2 duo ...
[11:49] <pteague> but the other issue is that the power supply in that box is only a 200w or 250w & the power supply on my desktop is a 500w i believe
[11:51] <pteague> maybe you're right...  i'm not sure how i could be going over 200w with the mini-itx board, a laptop hard drive, a cd/dvd-rom, & the video card
[11:52] <Yagisan> depends on the video card - some of them are quite hungry
[11:52] <agentk> How do I kill a process that will not die with sudo kill -9? Reset?
[11:52] <Yagisan> but the message points at MSI
[11:52] <pteague> here's the video card - http://www.newegg.com/Product/Product.aspx?Item=N82E16814139143
[11:53] <pteague> & here's the mobo/cpu - http://www.newegg.com/Product/Product.aspx?Item=N82E16813121359
[11:54] <Yagisan> pteague, does it work with the onboard video ?
[11:55] <Yagisan> agentk, is it a zombie process ?
[11:56] <agentk> Yeah. catting two files togeather. resulting file is correct size but cat is 100% and will not die.
[11:57] <pteague> been using the atom 230 for my mythtv front end just fine...  i installed ubuntu-server just fine, but the reboot gave me those errors... turned it off, removed video card, rebooted, & ubuntu-server seems to work...  trying to get any of the 64bit guis to come up gives me a kernel panic... guessing i'm going to have to stick with 32bit
[11:58] <Yagisan> agentk, try killing it's parent process - eg bash
[11:59] <agentk> Already done that. It's not connected to a pty anymore.
[11:59] <pteague> aha... if this forum post is right it looks like my power supply is what's killing it - http://www.techspot.com/vb/topic103967.html
[11:59] <Yagisan> pteague, I'm hoping to build a mythtv box withing2 weeks - I'm going 64bit myself but not atom based (my current desktop gets rebirthed)
[12:00] <pteague> hehe, my previous desktop is my mythtv back end... unfortunately the ati card in it doesn't seem to be very useful for video playback :(
[12:01] <Yagisan> well, I was supposed to be doing it on monday - but my new pc money is now new stove money + fight the real estate for reimbursment money :/
[12:02] <Yagisan> pteague, hows your backed end working ? I'm looking at intrepid server install, then mythtv packages over it
[12:03] <Yagisan> agentk, well - if it is eating 100% cpu - a reboot will certainly kill it
[12:05] <pteague> as a backend it works great... have the hauppage pvr-500 dual tuner in it...  there seems to be an issue with the driver for that though so the 2nd tuner sometimes loses it which then requires a reboot (might be able to reload it, but i'm not sure how)
[12:05] <agentk> Yagisan: Cool. Not many choices left I think.
[12:06] <pteague> for desktop i'm guessing i should install the linux-image-386 ?
[12:06] <Yagisan> pteague, I'll have an old analogue bt878a in mine. I got crap reception most of the time so I'll mainly use it as a media playback system for the kids.
[12:07] <Yagisan> pteague, linux-generic IIRC
[12:13] <pteague> i'm hoping i used a default setup for lirc... just remembered that was the only thing i needed that i forgot to backup
[12:16] <pteague> Yagisan: you might want to check in #ubuntu-mythtv as you're setting up your hardware ... somebody there told me last month? about a network accessible tuner... looked kind of nifty, but i don't remember the price on it - might cut the price on hardware somewhat
[12:18] <Yagisan> pteague, well, I'm in .au - in a unit block with bad reception, and a body corporate that won't fix the building antenna - so, I get what I can on my rabbit ears
[12:20] <pteague> ah, i've got cable... been a while since i've had to deal with reception... i remember having issues with picking up the station firefly was on when it was first out here in the states
[12:22] <pteague> it's sad when the big city doesn't get something like that & i had to resort to trying to get a signal from a station from a podunk town an hour north of the city
[12:44] <Yagisan> pteague, I'm just unlucky - the builders either side of me have great reception
[14:33] <mase> hey guys, i have just done an apt-get purge freeradius && apt-get autoremove && apt-get install freeradius however it doesn't seem to have returned the file radiusd.conf to it's original state like it has the others. In fact it just hasn't created one. Is there any way i can instruct apt or dpkg to just do a brand new install
[15:04] <RoyK> hi all. is it possible to install ubuntu server 8.04LTS on an LVM root fs?
[15:40] <Scix> I don't quite get how autofs finds the right mountpoint for each user. how is it done? I have now upgraded to autofs5(-ldap) and is reading the ldap-automount-auto.direct document. And is there something that has to be done at the client, bedised the entries in nsswitch and the ldap configuration?
[15:40] <Scix> *ldap-utils
[15:51] <RoyK> hrmf. just tried to install ubunto on lvm, but it sets up the system with lilo, not grub
[15:51] <RoyK> this is ubuntu 8.04LTS server
[15:56] <RoyK> hm
[15:56] <RoyK> anyone_
[15:56] <RoyK> ?
[15:57] <RoyK> does grub work with root on lvm?
[16:29] <jtaji> RoyK: as long as you put /boot on a separate non-lvm partition you are golden
[16:29] <jtaji> grub might support lvm boot nowadays but separate /boot is easy
[16:30] <RoyK> I just tried - works well now after reinstalling
[16:31] <RoyK> thanks anyway
[18:02] <cellofellow> I've got a Django app that I'm looking to possibly deploy to Amazon EC2. I've noticed that vm-builder has the ability to build EC2 AMIs. Can I run those locally for development purposes before uploading to the cloud?
[21:38] <methods> where is the dhcp package ?
[21:40] <methods> there use to be a package called dhcp
[21:40] <methods> for a daemon
[21:41] <sommer> methods: dhcp3-server is probably what you're looking for
[21:41] <methods> no
[21:41] <methods> it was called dhcp
[21:41] <methods> dhcp3-server is new now
[21:42] <methods> hm
[21:42] <methods>  /etc/dhcp3/dhcpd.conf seems to have been coppied from my old config
[22:19] <fergal32> hi everybody
[22:20] <fergal32> i just setup my first ubuntu 8.10 server everything works only nis is causing problems
[22:21] <fergal32> my question is is this a problem with nix from ubuntu? cause i always have to start /usr/sbin/ypbind to get the nis daemon started
[22:21] <fergal32> anybody having the same problem?
[22:23] <fergal32> hm
[22:40] <fergal32> not much talking here :D