[00:50] <Elite> Hey guys
[00:54] <Noah0504> Hey.
=== hads_ is now known as hads
[01:46] <sgrover> Looking for tips.  I VPN to a remote buntu server, and want to mount some of it's directories to the local workstation.  Do I really need Samba/NFS/sshfs to do this?  If so, which would your recommend?
[01:48] <twb> sgrover: to access a remote filesystem as part of the local directory tree, you need a network filesystem.
[01:48] <twb> sgrover: that's unavoidable.
[01:49] <twb> sgrover: as you are connecting over a VPN, I presume you do not need to encrypt traffic over the network filesystem, so NFS and CIFS are valid choices.
[01:50] <twb> sgrover: in general, you should use NFS for unix-to-unix networking, and CIFS if Windows is involved.  sshfs is only for emergencies, as it is not an efficient nor featureful filesystem.
[01:50] <sgrover> twb: Thanks.  Just needed a sanity check before I began setting up Samba.  (I need to share/connect to Windows resources from that server anyways...)
[01:50] <twb> sgrover: if you already have Kerberos authentication set up, then AFS, NFSv4 or CIFS might be good choices.
[01:51] <twb> Note that in all cases, you *will* need a centralized authentication protocol (e.g. LDAP or NIS) -- or you will need to manually synchronize UIDs and GIDs between hosts.
[01:52] <twb> NIS is usually discouraged because -- though simple -- it is old, inflexible and has numerous security problems.
[01:52] <sgrover> I was going to keep it simple and avoid kerberos (for now).  For the most part, the server needs to mount a single windows share so a custom app can access files.  Me mounting the server's directories is for development purposes....
[01:52] <twb> LDAP servers are very difficult to set up if you aren't used to LDAP.  The client side is now pretty easy.
[01:53] <twb> OK, if you just need to mount CIFS (Windows share), then you can put that in /etc/fstab.
[01:53] <sgrover> I've gotten familiar with LDAP - our custom app is PHP based and uses the Active Directory server for authentication and management.
[01:53] <twb> Righto.
[01:54] <sgrover> Thanks though.  Samba it is.  Perhaps with AD authentication... we'll see.. :)
[03:11] <ball> What's an appropriate choice to serve up filespace from an Ubuntu Server to Xubuntu workstations?
[03:13] <JanC> NFS ?
[03:14] <ball> JanC: that could work, conceivably.
[03:15] <twb> ball: on a trusted network, NFS between Unix hosts is a good rule of thumb.
[03:16] <ball> twb: that was my first thought, but I didn't know if there was some modern replacement
[03:16] <twb> ball: there isn't really.
[03:16] <ball> Okay, well that answers that one :-)
[03:16] <twb> ball: all network filesystems suck badly, but the ways in which NFS sucks aren't so important for Unix on a LAN
[03:17] <ScottK> ball: Is it on a secure LAN or does it touch the internet?
[03:18] <ball> ScottK: there's a gateway to the Internet (NAS, with almost everything blocked inbound)
[03:18] <ScottK> Because once you get out on the big bad Internet, I'm a fan of SFTP.
[03:20] <twb> ScottK: that's not a filesystem, though sshfs is.
[03:20] <twb> However mounting something like /home over sshfs is not too fantastic.
[03:20] <ScottK> Yes.
[03:20] <ScottK> Most any form of remotely mounted home has some serious downsides.
[03:21] <twb> AFS is the obvious, though hairy, choice for /home over the internet.
[03:21] <twb> See e.g. hcoop.net
[03:21] <ball> okay, thanks.
[03:22] <ScottK> I've no idea how it is in Xubuntu but in Konqueror or Dolphin the fact that it's remote of SFTP is mostly hidden.
[03:22] <JanC> considering the upload speed of most internet connections, no network filesystem is useful for /home
[03:22] <twb> ScottK: that's not at the filesystem level.
[03:22] <twb> ScottK: so for example you can't cd into the SFTP directory and run "make" or "gcc"
[03:23] <twb> JanC: it depends on the usage for /home, too.
[03:23] <twb> JanC: I mean, a GNOME desktop uses /home very differently to a shell account on a VPS
[03:24] <JanC> twb: on Ubuntu (and I suppose Xubuntu) you can use gvfs-fuse and make can work fine...
[03:25] <twb> JanC: that's basically the same approach as sshfs -- but that's no longer just SFTP.
[03:25] <ScottK> twb: True.
[03:25] <ball> I'm literally failing to keep my eyes open.
[03:25] <twb> JanC: that's all I was saying by "SFTP isn't a filesystem"
[03:25] <ball> Goodnight everyone.
[03:25] <JanC> twb: of course, it's jus tused as a filesystem  ;)
[03:25] <ScottK> twb: I agree, but for a lot of use cases it's close enough.
[03:25] <twb> SFTP has locking issues -- not that NFS and AFS don't.
[03:26] <twb> YMMV, etc.
[03:26] <ScottK> It is relatively simple to get up and running too.
[03:26] <twb> ScottK: yes, definitely.
[03:26] <twb> ScottK: especially if you already use ssh everywhere
[03:27] <twb> ScottK: that, and it's easy to set up "ad hoc" mounts as necessary, without local root privileges.
[03:27] <ScottK> For my own use I have yet to hit a need for anything beyond ssh + sftp.
[03:28] <twb> JanC: have you compared gvfs-fuse to sshfs?
[03:28] <ScottK> Now I don't know if it's because I'm not using the Gnome desktop, but just some apps, but in KDE apps I can file, save as, sftp://.... and save a file from any app.  I can't do that from Gnome apps at all.
[03:29] <twb> I'd be interested to read a technical compare-and-contrast.
[03:29] <ScottK> Is that typical?
[03:29] <twb> ScottK: you're supposed to be able to do that in a full GNOME environment
[03:29] <twb> ScottK: you might need to turn on some GNOME daemons or something
[03:29]  * ScottK has no idea.
[03:29] <twb> ScottK: is gvfs-backends installed, and is the gvfs daemon process active?
[03:31] <ScottK> No to both.
[03:31] <ScottK> So that's probably it.
[03:31] <twb> ScottK: that's probably why
[03:32] <ScottK> The kid's computer has it.  Thanks to aptitude why I can see a depends that needs fixing.
[04:20] <TimReichhart> hi guys I need some help on fixing a problem with nagios3 I already posted this on the forums and it seems im not getting any help but here is the post on the forum http://ubuntuforums.org/showthread.php?t=1093018
[05:36] <uvirtbot> New bug: #341526 in mountmedia "Add support for Dell Driver Injection Disk" [Undecided,New] https://launchpad.net/bugs/341526
[05:53] <Brando753> anyone know how to get the server to work with a wifi card during install
[05:55] <Brando753> ?
[05:57] <tmart> have you seen this forum post? http://ubuntuforums.org/showthread.php?t=376283
[05:57] <tmart> not sure if it will help
[05:59] <Brando753> ill take a look
[06:03] <kirkland> ScottK: https://edge.launchpad.net/bugs/341237 is the qemu sync that awaits motu-release approval
[06:04] <uvirtbot> Launchpad bug 341237 in qemu "Please sync qemu 0.10.0-1 (universe) from Debian unstable (main)." [Medium,In progress]
[06:45] <TimReichhart> anybody help me with the issue im having with nagios3
[06:49] <TimReichhart> anybody help me with the issue im having with nagios3
[07:01] <twb> Ooh, qemu 0.10.
[07:37] <coffeedude> ttx: morning.
[07:37] <ttx> hey
[07:38] <ttx> coffeedude: anything for me ?
[07:38] <coffeedude> Hehehe. didn't expect you in so early local time.
[07:38] <ttx> didn't expect you so late local time.
[07:38] <coffeedude> Yeah.  Have the patch and testing one more local rebuild.
[07:38] <coffeedude> I don't think I'll be going to bed tonight.
[07:39] <coffeedude> I'll send you the working patch while I'
[07:39] <coffeedude> while I'm still testing.
[07:39] <ttx> sure.
[07:39] <ttx> Also if you have the blurb about new features, I could use it today.
[07:40] <coffeedude> I'm working on getting that for you as well.
[07:40] <ttx> Great.
[07:40] <ttx> There is an openssl-gpl potential link in -lsass that I need to investigate too
[07:41] <coffeedude> If you need a license exception from me to link with openssl, I can manage that.  I know the openssl vs. gnutls is always an issue.  Hadn't thought about it affecting you before now though.
[07:43] <ttx> coffeedude: yep -lsass and -rpc end up linked with openssl
[07:43] <coffeedude> you're gonna make me do something about that aren't you. :-P
[07:45] <ttx> coffeedude: yes, I'll probably need something, I admit :P
[07:46] <coffeedude> Can I add a linking exception clause for openssl to the likewise-open license files?
[07:47] <coffeedude> ttx: work in progress patch files in route to you now.
[07:48] <ttx> coffeedude: that would mean rereleasing the source tarball, right
[07:48] <coffeedude> ./sigh...Maybe not.
[07:49] <coffeedude> Let me think.
[07:50] <coffeedude> need to walk around some.....been sitting too long. be back in a few minutes.
[07:50] <ttx> coffeedude: I'm fine with a new source tarball, but that might be complicated to release on your side.
[07:50] <ttx> k
[08:02] <coffeedude> ttx: Found a few minor issues with the patches I sent you.  one more round I think.  Shouldn't take long.
[08:02] <ttx> k
=== jwstolk1 is now known as jwstolk
[09:55] <uvirtbot> New bug: #334781 in bacula (universe) "bacula 2.4.4 configuration fails" [Medium,In progress] https://launchpad.net/bugs/334781
[09:58] <twb> Sanity check: 255.255.255.252 is /30, right?
[09:58] <hads> http://krow.net/dict/subnet.html
[09:58] <ivoks> yes
[09:59] <twb> Thanks.
[09:59] <twb> I hate the bloody decimal dotted quad notation
[09:59] <ivoks> if ip is .1
[09:59] <ivoks> er... ignore last comment :)
[10:00] <twb> ivoks: actually I was going to use /31 with .2 and .3, but then I wondered if that would mean that .2 and .3 were actually the equivalent of .0 and .255 (i.e. broadcast IPs).
[10:00] <Nafallo> twb: they aren't
[10:00] <twb> This is a "network" of two machines, see.
[10:00] <ivoks> sudo apt-get install ipcalc
[10:01] <Nafallo> ehrm. well. sipcalc 192.168.0.1/31
[10:01] <hads> The cheat sheet
[10:02] <soren> twb: Interesting. I like that notation a lot.
[10:02] <twb> soren: I would prefer dotted hex.
[10:03] <twb> C0:A8:00:00/24
[10:03] <ivoks> i would prefer ipv6 :)
[10:03] <twb> ivoks: well sure
[10:04] <ivoks> everything else is just workaround
[10:04] <soren> ivoks: I disagree
[10:04] <soren> You can use that notation for other purposes than subnetting.
[10:05] <ivoks> well, i was refering only to subneting
[10:06] <soren> Example: A company I used to work for hosted mail servers for other companies. They each had their own mail server. We dedicated a /24 subnet to each customer. The mail server was always XX.YY.ZZ.25 (IIRC). That enabled us to have a firewall rule allowing access to and from port 25 on 192.168.0.25/255.255.0.255.
[10:07] <soren> ...instead of one firewall rule per customer per service.
[10:08] <soren> There's obviously no way to do that with CIDR notation.
[10:19] <twb> In /etc/syslog.conf, does *.* match *everything*, or only things that have a dot?
[10:19] <twb> I mean, I see "auth" in the default syslog.conf and it made me uncertain.
[10:21] <twb> The manpage seems to reassure me.
=== cjwatson_ is now known as cjwatson
[11:28] <mrwes> since root account is disabled, where does system mail goto?
=== cjwatson_ is now known as cjwatson
[12:27] <Jeeves_> Hi all!
[12:28] <_ruben> mrwes: check /etc/aliases
[12:28] <_ruben> g'day Jeeves_
[12:28]  * Jeeves_ needs a hint
[12:28] <Jeeves_> I edited /etc/sysctl.conf to disable ipv6 RA. However, it seems the settings are not applied when rebooting.
[12:28] <Kamping_Kaiser> Jeeves_, hey mate
[12:29] <Jeeves_> Anyone here to hit me with the cluebat?
[12:29] <Jeeves_> Kamping_Kaiser: Hi!
[12:29]  * Kamping_Kaiser smacks Jeeves_ with a cluebat (sorry , cant help with the problem though)
[12:29] <Jeeves_> :)
[12:29] <henkjan> Jeeves_: block ipv6 ra with iptables?
[12:30] <Jeeves_> henkjan: yuk
[12:31] <Jeeves_> I'm looking for a solution, not a workaround :)
[12:32] <simplexio> Jeeves_: if you add ipv6 yo kernel it will be. i think the problem ist that it load ipv6 module after you have tried to set ipv6 settings in sysctl.conf and ipv6 options arent availabe then
[12:33] <simplexio> Jeeves_: offcourse you need first check that sysctl options really work
[12:33] <Jeeves_> simplexio: Hmm. That could be something
[12:34] <Jeeves_> sysctl works, that's tested
[12:34] <simplexio> Jeeves_: in my system it compain that cant change nfs options but after boot process is ready and all nfs stuff is loaded it run sysctl without complains
[12:35] <Jeeves_> simplexio: ./rcS.d/S15module-init-tools
[12:35] <Jeeves_> simplexio: ./rcS.d/S17procps
[12:35] <simplexio> isnt there somekind rc.local tms file where you can put your own stuff that is run last in boot process ? .. add there sysctl -p
[12:35] <Jeeves_> So the options should be there
[12:35] <Jeeves_> simplexio: That's too late
[12:36] <simplexio> what ipv6 ra does ?
[12:36] <Jeeves_> When booting is completed, the box allready sent a sollicitation
[12:36] <Jeeves_> so it allready has it's RA-address
[12:36] <simplexio> well offcourse, quick hack and remove module
[12:37] <Jeeves_> 13:31 < Jeeves_> I'm looking for a solution, not a workaround :)
[12:38] <simplexio> what does that ra mean in ipv6
[12:38] <mrwes> _ruben: ahh..ok, root: administrator is already there -- thanks
[12:38] <simplexio> http://www.cyberciti.biz/tips/linux-how-to-disable-the-ipv6-protocol.html
[12:38] <simplexio> that tells just howto disable whole ipv6
[12:39] <Jeeves_> http://zhadum.org.uk/2007/03/04/taming-the-edgy-eft/
[12:39] <Jeeves_> simplexio: Router Advertisement
[12:41] <simplexio> Jeeves_: 100% way is just compile new kernel and remove ipv6 ra option from there.. im oretty sure that it there
[12:42] <Jeeves_> simplexio: Don't be silly
[12:42] <Jeeves_> I've got it now. Just add ipv6 to /etc/modules
[12:42] <Deeps> Jeeves_: #ipv6 on freenode's a good place to ask about ipv6 related stuff
[12:42] <Jeeves_> that way it gets loaded sooner
[12:42] <Deeps> people there generally tend to be quite clueful
[12:42] <Jeeves_> and sysctl works fine :)
[12:44] <henkjan> Jeeves_: please document it on the wiki ;)
[12:44] <simplexio> i usually just compile stuff that i need into kernel, and stuff that idont need i just add in modules
[12:44] <Jeeves_> henkjan: Which wiki? :)
[12:44] <Deeps> btw, what are you trying to do, accept_ra=0?
[12:44] <henkjan> Jeeves_: wiki.bit.nl :)
[12:45] <domas> Jeeves_: you can ask Jeeves!
[12:45] <simplexio> but i like to run latest and greatest kernels. so for me compiling new kernel isnt that big problem
[12:47] <henkjan> stockkernels++
[12:47] <Jeeves_> simplexio: When you administer 100+ servers, you'll soon start to love stock kernels :)
[12:49] <simplexio> :) could be, or i learn howto create on apt-mirrors and own kernel packages
[12:49] <simplexio> later is probably harder way :)
[12:50] <Jeeves_> We have our own package repository
[12:50] <Jeeves_> (and a mirror, nl.archive.ubuntu.com )
[12:50] <simplexio> but if something brakes i can only blame me
[12:50] <maswan> Jeeves_: Do you want to disable the automatic address generation?
[12:50] <Jeeves_> simplexio: I simply blame henkjan
[12:50] <Deeps> different scales have different needs
[12:51] <Jeeves_> maswan: Yes, but I allready managed to do so
[12:51] <Jeeves_> Deeps: Indeed :)
[12:51] <maswan> ah, ok
[12:51] <maswan> from our interfaces:
[12:51] <maswan>   pre-up modprobe ipv6
[12:51] <maswan>   up /sbin/sysctl -q -w net.ipv6.conf.eth0.autoconf=0
[12:51] <simplexio> and there is no right solution to problem, only bad and even more bad
[12:52] <simplexio> there has been what 3 working solutions to problem allready :) have like linux
[12:53] <maswan> this one has been working since dapper, IIRC. So we stick to it. :)
[12:53] <simplexio> add ipv6 to modules, load ipv6 first in interface before interface is up, change kernel
[12:55] <maswan> I'm not sure adding ipv6 to modules covers it always.
[12:55] <maswan> We did that for a while, and there were some kind of issue, I forget what though..
[12:55] <maswan> and yes, the inet6 interface has to come before the inet interface
[12:56] <ivoks> in jaunty, ipv6 isn't module
[12:56] <Deeps> wayhey
[12:56] <maswan> ivoks: Ah, is the autoconf disabling fixed then?
[12:57] <ivoks> maswan: i don't know; i just noticed that it's built in, not a module
[12:57] <petia> ivoks, around ? its orudie i'm at work
[12:57] <maswan> ivoks: Hm. Maybe we should try it out on some server then
[12:58] <ivoks> petia: yes
[12:58] <petia> am i interrupting,  ?
[12:58] <ivoks> no
[12:59] <cemc> ivoks: umm, so ipv6 can't be disabled in Jaunty?
[13:00] <petia> after we set up the mail server i tested it the email client and used  mail.mydomain.com as an incoming server, did it still use pop3 protocol ?
[13:00] <ivoks> cemc: i'm sure it can, appending ipv6=off or something to kernel line
[13:01] <ivoks> petia: it's impossible to tell what you have used, just based on hostname
[13:01] <ivoks> hostname doesn't define protocol
[13:02] <petia> is there a way to tell though ?
[13:02] <ivoks> one server (servers have hostnames) support lots of protocols; http, pop3, ssh, imap, smtp...
[13:02] <ivoks> petia: you should hire someone to set up mail server for you, since obviously you don't understand basic network concepts
[13:05] <ivoks> petia: hostname doesn't define protocol
[13:05] <ivoks> it's just a name
[13:05] <ivoks> it could've been mysuperserver.domain.com
[13:06] <petia> :)
[13:07] <petia> right, but maybe you could have a look and let me know which hostname i should use in the incoming server according to the way the server is set up
[13:07] <Jeeves_> cemc: Why would you want to disable ipv6?
[13:09] <^law^> guys , i just installed ubuntu server in virtual box after that i can't boot it . it shows need pae enabled, but i can't enable the pae in my virtual box it can't be checked it is disabled. what shoud i do then ? XD
[13:10] <ivoks> petia: server has only one hostname
[13:11] <ivoks> petia: it can have aliases
[13:11] <ivoks> petia: and, i repeat, hostname of the server doesn't decide what protocol your client will use
[13:11] <petia> ivoks, ok
[13:11] <ivoks> petia: in most of the cases, user that uses that client decides which protocol will be used
[13:12] <ivoks> by selecting the protocol during configuratiob
=== mdeslaur_ is now known as mdeslaur
[13:12] <petia> ivoks, well i know for sure that pop3 protocol is set up on the server, i just didnt try it yet
[13:12] <ivoks> s/b$n/
[13:12] <ivoks> then try it
[13:13] <petia> ivoks, i'm fucken scared lol
[13:13] <petia> ivoks, cuase if this shit is not gonna work my boss is gonna kill me
[13:13] <petia> ivoks, i'm about to point DNS to the new server
[13:13] <jussi01> petia: please try keep the language clean ;)
[13:14] <ivoks> petia: what did you do till now?
[13:14] <ivoks> what did you configure?
[13:14] <petia> postfix/dovecot and roundcube webmail client
=== `6og is now known as Kamping_Kaiser
[13:15] <^law^> guys , i just installed ubuntu server in virtual box after that i can't boot it . it shows need pae enabled, but i can't enable the pae in my virtual box it can't be checked it is disabled. what shoud i do then ? XD
[13:15] <cemc> Jeeves_: because I don't use it (yet) and I don't want to change all my running servers (apache, ssh, whatnot) not to listen on ipv6 too ?
[13:15] <petia> tested emails with outlook and thunderbird, howver i used mail.example.com as an incoming server
[13:15] <Jeeves_> cemc: If you don't use it, what's there to disable? :
[13:15] <petia> petia, imap is set as well, so therefore i'm not sure which protocol mail.* used
[13:16] <ivoks> you really don't get it?
[13:16] <ivoks> server serves protocols
[13:16] <petia> i understand that hostname does not define protocol
[13:16] <ivoks> client *decides* which protocol will be used
[13:16] <petia> uhu
[13:17] <petia> lol
[13:17] <petia> i think i got it
[13:17] <petia> i dont work on the client side too much dude
[13:17] <ivoks> well, you should know what your clients are using, if you want to setup server
[13:18] <ivoks> servers exists so that they could serve clients
[13:18] <ivoks> that's their whole purpose
[13:18] <petia> well if we take thunderbird for instance which is what i have on my desk
[13:18] <ivoks> ok
[13:18] <petia> in the add new email account
[13:19] <petia> it doesnt ask you if your email acount is using pop3 or imap
[13:19] <ivoks> i'm sure it does
[13:19] <petia> ok i'm in the add account wizard
[13:20] <cemc> Jeeves_: have you looked at 'netstat -nlp' with ipv6 enabled? or 'ip a' with o lot of interfaces/IPs ? and generally I like to not run stuff I don't need :) especially on servers which are low on memory ;)
[13:20] <petia> it asking, select the type of account you would like to set up : the choices i have is Email, Rss, Gmail, or newsgroup account
[13:20] <petia> i go to email
[13:20] <ivoks> petia: http://www2.cit.cornell.edu/computer/email/thunderbird/account-both.html
[13:20] <Jeeves_> cemc: ipv6 does not require much more memory :)
[13:20] <ivoks> 3rd screen
[13:20] <petia> ok now i see
[13:20] <petia> yes
[13:21] <petia> yeah
[13:21] <petia> ok
[13:21] <petia> :)
[13:26] <cemc> Jeeves_: still I believe that what you don't need it's not supposed to run ;)
[13:34] <Jeeves_> cemc: You should enter the 90's :)
[13:39] <cemc> Jeeves_: :)
[13:41] <mark> because obviously you won't ever need to communicate with those computers which get ipv6 instead of ipv4 in a few years ;)
[13:43] <cemc> mark: I did not say it needs to be removed. But if I want to, I should be able to disable it ;) especially if I won't be using it soon
[13:43] <mark> being able to disable is good
[13:44] <cemc> and I definitely will know if and when I need it, so I won't forget I disabled it :)
[13:45] <Jeeves_> cemc: Just start using it! Saves you the frouble of disabling it :)
[13:45] <cemc> ;)
=== Guest98153 is now known as tfb
=== tfb is now known as nob
=== nob is now known as nobz
=== nobz is now known as nob_z
[13:51] <nob_z> hi, who can help me with spamassassin sa-learn?
[13:58] <Jeeves_> nob_z: Whats the problem?
[13:59] <nob_z> spamassassin seems to not use the learned mails
[14:01] <nob_z> I followed the install of spamassassin+postfix-dovecot+amavisd-new in the ubuntu server guide
[14:02] <Jeeves_> nob_z: You needs at least 200 messages before bayes gets used
[14:02] <Jeeves_> 200 of both types
[14:02] <petia> ivoks, you there? the email mesages are not coming in
[14:02] <nob_z> Jeeves_, I use more than 200, around 1000, but nothing changed
[14:03] <nob_z> seems that I dont used sa-learn in the right form
[14:03] <Jeeves_> nob_z: There is a way that you can see if bayes is being used
[14:03] <Jeeves_> nob_z: sa-learn said 'xx messages read (xx used)' or something like that?
[14:04] <nob_z> Jeeves_, yes... and sa-learn --dump magic increades the number of nham nspam tokens
[14:06] <Jeeves_> nob_z: Than it's used
[14:07] <Jeeves_> nob_z: And if you run
[14:07] <Jeeves_> spamassassin --lint -D1
[14:07] <Jeeves_> ?
[14:07] <uvirtbot> New bug: #326235 in samba (main) "Winbind crashes with new samba-package (3.5)" [Low,Incomplete] https://launchpad.net/bugs/326235
[14:07] <Jeeves_> Do you see bayes-notices there
[14:07] <Jeeves_> ?
[14:07] <nob_z> trying...
[14:11] <nob_z> Jeeves_, yes, there are bayes-notices
[14:12] <nob_z> Jeeves_, sa-learn must be used as root or by every user?
[14:13] <Jeeves_> nob_z: That depends how you configured bayes
[14:13] <nob_z> where I can check it?
[14:17] <Jeeves_> /etc/spamassassin/local.cf ?
[14:17] <fevel> How can I make squid show an html page I made as homepage?
[14:20] <Jeeves_> fevel: http://www.visolve.com/squid/squid24s1/miscellaneous.php
[14:25] <ivoks> petia: yes?
[14:25] <petia> ivoks,
[14:26] <petia> ivoks, how can i change the output of this postconf | grep mydestination ? it needs to be a new domain, the old domain is still there
[14:27] <ivoks> postconf -e "mydestination=blablabla"
[14:31] <petia> ivoks, there was a file where i remember i specified the mydestination
[14:32] <ivoks> petia: postconf -e will edit it
[14:32] <ivoks> so...
[14:32] <ivoks> postconf -e "mydestination=blablabla"
[14:37] <petia> ivoks, paul@atlantalin:~$ postconf | grep mydestination
[14:37] <petia> mydestination = jpiamerica.com, localhost.jpiamerica.com, localhost
[14:37] <petia> now i have this
[14:37] <petia> which is the correct domain
[14:37] <ivoks> ok
[14:38] <ivoks> looks good
[14:38] <petia> is anything else needs to get changed when changing the domain address ?
[14:38] <petia> i mean
[14:38] <petia> when changing the domain name
[14:38] <ivoks> hm... maybe myorigin
[14:39] <petia> i think it working now :)
[14:45] <fevel> thanks Jeeves_
[14:46] <fevel> always_direct
[14:47] <Jeeves_> :)
[14:50] <kirkland> mathiaz: okay, i tested the hardy kvm-84 packages in my ppa a bit more thoroughly
[14:51] <kirkland> mathiaz: i've published an update to ~ubuntu-virt's ppa
[14:51] <mathiaz> kirkland: great. I'll give it a try then.
[14:51] <mathiaz> kirkland: have you made some progress on the kernel part?
[14:52] <kirkland> mathiaz: yes
[14:52] <kirkland> mathiaz: you can now install and run the kvm-source to get the kernel module
[14:52] <kirkland> mathiaz: it's installable now
[14:52] <kirkland> mathiaz: will require dkms, though, don't know if that's a problem for you
[14:52] <mathiaz> kirkland: awesome - well I'm running hardy - would it be?
[14:53] <kirkland> mathiaz: shouldn't be
[14:53] <mathiaz> kirkland: *a problem*
[14:53] <kirkland> mathiaz: i just reinstalled my test box with hardy amd64
[14:53] <mathiaz> kirkland: awesome - I'll give it a try once alpha6 is released
[14:53] <kirkland> mathiaz: running kvm-84 kernel and userspace
[14:53] <kirkland> mathiaz: i left it running last night, testing nested virtualization
[14:53] <kirkland> mathiaz: a virtual machine running a virtual machine
[14:54] <kirkland> (something that was just introduced in kvm-82)
[14:54] <mathiaz> kirkland: did it freak out?
[14:54] <kirkland> mathiaz: i was going to blog about that :-)
[14:54] <mathiaz> kirkland: are you able to run a bundle of guest inside a kvm guest?
[14:54] <mathiaz> kirkland: or is it just one-one
[14:55] <kirkland> mathiaz: it did not freak out
[14:55] <kirkland> mathiaz: it's been running over night
[14:55] <kirkland> mathiaz: with the guest's guest doing debuild qemu in a loop :-)
[14:56] <kirkland> mathiaz: no errors yet, on either host
[14:56] <kirkland> mathiaz: it's not one-to-one
[14:56] <ivoks> mathiaz: i think i have solution for that dovecot bug...
[14:56] <kirkland> mathiaz: basically, the first guest can modprobe kvm, and get a /dev/kvm
[14:56] <kirkland> mathiaz: the second guest isn't nearly as fast as the first
[14:56] <kirkland> mathiaz: but it's not as slow as emulation either
[14:56] <mathiaz> kirkland: oh it does qemu debuild - this is why it doesn't freak out. The guest *knows* about it and is just very gentle and peaceful...
[14:57] <kirkland> mathiaz: :-D
[14:57] <kirkland> mathiaz: i should try mysql instead
[14:57] <mathiaz> kirkland: that will bring down your mythtv setup - be careful
[14:57] <mathiaz> kirkland: !
[14:57] <mathiaz> ivoks: yes?
[14:58] <ivoks> mathiaz: i added comment to the bug
[14:58] <mathiaz> ivoks: ok  - I'll get to it then
[14:58] <kirkland> mathiaz: one note about nested virtualization ....
[14:58] <kirkland> mathiaz: it only works on amd cpus
[14:58] <mathiaz> ivoks: during my daily bug folder processing
[14:58] <ivoks> mathiaz: sure... no rush
[14:58] <mathiaz> ivoks: thanks for following up!
[14:58] <mathiaz> kirkland: awesome - that's what I have :)
[14:58] <ivoks> mathiaz: well... here's c/p: I suggest we check if dovecot.conf (minus ^protocols.* line) is different than the default one (minus ^protocols.* line) and, if it is, in preinst we copy that file into dovecot-postfix.conf and let the ucf do the rest. What do you think?
[14:59] <mathiaz> ivoks: hm - so why not always do that and get rid of dovecot-postfix.conf?
[15:00] <mathiaz> ivoks: even for the normal case?
[15:00] <ivoks> i suggested that in first place
[15:00] <ivoks> but then we would have to steal dovecot.conf from dovecot-common
[15:00] <ivoks> cjwatson said that wasn't good idea
[15:01] <cjwatson> attempting to share or move configuration files among packages is generally a recipe for creating bugs, especially if the movement is in any way conditional, yes
[15:01] <mathiaz> cjwatson: even between binary packages?
[15:02] <fevel> can I set apache to listen on the same port as my proxy? they are both on the same server
[15:02] <cjwatson> configuration files are only ever owned by binary packages
[15:02] <cjwatson> it doesn't matter if they're in the same source package
[15:02] <cjwatson> you *can* move a configuration file from one binary package to another, but it absolutely has to be unconditional, and it ought to be permanent
[15:03] <ivoks> and that's not the case here
[15:03] <cjwatson> it's also a lot of fiddly code to get right; naive approaches will fail in messy ways
[15:03]  * cjwatson has been there and done that
[15:03] <mathiaz> cjwatson: right. I think we're talking about modifing a config file from a another postinst binary package
[15:03] <cjwatson> mathiaz: absolutely forbidden
[15:03] <ivoks> right, i've myself was trying to find a sane logic for ucf stealing and i didn't come up with a good one
[15:04] <mathiaz> cjwatson: even if both binary packages are from the source package?
[15:04] <cjwatson> mathiaz: (from the policy point of view, as well as sanity)
[15:04] <cjwatson> mathiaz: yes.
[15:04] <cjwatson> that makes no real difference
[15:05] <mathiaz> cjwatson: hm - well then I know a couple of package that do that
[15:05] <cjwatson> mathiaz: if they're from the same source package, then the binary package that currently owns the file can and should take steps to expose some proper interface by which the other binary package can do what it needs to do
[15:05] <cjwatson> mathiaz: "proper interface" does not include the other package editing the configuration file
[15:05] <ivoks> like postconf
[15:05] <cjwatson> mathiaz: yes, I know of buggy packages too ;-)
[15:05] <cjwatson> but I don't think that means we should design in bugs
[15:05] <mathiaz> cjwatson: the dovecot package for example, where dovecot.conf is shipped by dovecot-common and -pop and -imap change one line to enable their respective protocoal
[15:05] <mathiaz> protocol
[15:06] <cjwatson> this really is a case that Debian and Ubuntu policy has historically been very firm about, because it IS a cause of upgrade disasters
[15:06] <cjwatson> there are plenty of ways to do this sort of thing that do not involve messing about with configuration files between packages
[15:06] <cjwatson> you just need to be creative
[15:06] <mathiaz> cjwatson: ok - thanks for the clarification
[15:06] <cjwatson> having packages include configuration files from a .d directory or similar is one traditional solution
[15:06] <mathiaz> cjwatson: I thought the rule about config file would only apply to src packages
[15:07] <ivoks> cjwatson: so, how about proposed idea; bug 339966
[15:07] <uvirtbot> Launchpad bug 339966 in dovecot "dangerous action: dovecot-postfix force-installs new conf file" [Low,Confirmed] https://launchpad.net/bugs/339966
[15:07] <ivoks> cjwatson: does that sound sane?
[15:07] <mathiaz> ivoks: well no
[15:07] <mathiaz> ivoks: oh hm yes
[15:07] <mathiaz> ivoks: probably since you're not modifying dovecot.conf but dovecot-postfix.conf
[15:08] <ivoks> right
[15:08] <cjwatson> ivoks: I haven't checked it in detail for feasibility, but it sounds like a workable approach
[15:08] <ivoks> i'll test it later today
[15:08] <cjwatson> it's basically migrating across the configuration file changes already applied by the sysadmin
[15:09] <cjwatson> this sort of bug is exactly the kind of rat's nest you get into with a poor design, btw ;-)
[15:09] <ivoks> i have to expand this a bit
[15:09] <cjwatson> but it's very difficult when it's not done right up-front of course
[15:09] <ivoks> we should copy dovecot-postfix.conf to /usr/share and check ucf on upgrades
[15:10] <ivoks> if we changed something, show the diff, if we didn't change anything, don't bother admin
[15:14] <ivoks> take care, bbl
[15:15] <mathiaz> kirkland: are you also working on improving hardy as KVM guest?
[15:16] <mathiaz> kirkland: IIRC virtio devices weren't supported in hardy
[15:16] <petia> is there such thing as a free outgoing mail server for all isps ?
[15:16] <mathiaz> kirkland: IIRC virtio *block* devices weren't supported in hardy
[15:17] <Deeps> petia: you can run your own, however open relays generally get shut down or blacklisted as spammers will find them and use them
[15:20] <kirkland> mathiaz: which bug?
[15:21] <mathiaz> kirkland: hm - I don't think there is such a bug.
[15:21] <mathiaz> kirkland: you'd better talk to dendrobates or soren about that one.
[15:21] <kirkland> mathiaz: then i'm probably not working on it :-)
[15:22] <kirkland> mathiaz: i'm living by those bugs
[15:22] <mathiaz> kirkland: hopefully you're not living *only* by those bugs
[15:22] <kirkland> mathiaz: that's all i'm eating
[15:23] <kirkland> mathiaz: i like the shiny blue ones the best
[15:23] <kirkland> mathiaz: the brown ones are kinda gross
[15:23] <kirkland> mathiaz: can vegetarians eat bugs?
[15:24] <mathiaz> kirkland: ohhhhh - don't get me started on that one
[15:24] <kirkland> mathiaz: mmmm, boiled crawfish!
[15:27] <acidborg> hi
[15:30] <soren> mathiaz: I think actually the problem with virtio devices in Hardy were on the host.
[15:30] <soren> ....and only for block devices. Network was fine.
[15:30] <soren> Well... Except when it hanged.
[15:30] <mathiaz> soren: yes - I remember network was fine.
[15:31] <mathiaz> soren: then... it was *not* fine?
[15:31] <soren> mathiaz: For most people in most situations, yes.
[15:32] <soren> For some people (like yann2), it just seemed to hang after a while. kirkland and aliguori seem to have tracked down the problem, so that should be either fixed already or be on its way to be fixed.
[15:32] <yann2> soren > mostly using SMP
[15:32] <yann2> fine with single CPU
[15:32] <soren> yann2: Ah, yes.
[15:32] <yann2> is not fixed though
[15:33] <soren> kirkland: You were working on an SRU for that, right? (removing the odd-ball patch from Debian's ancient QEMU, that is)
[15:34] <bhsx> if i install ubuntu 8.10 and use tasksel to uninstall the ubuntu-desktop, what else would i need to strip out to get a base "server" without having to DL 8.04 server edition?
[15:34] <kirkland> soren: oddball patch"es"
[15:34] <bhsx> i know there are a couple of kernel differences in server edition
[15:34] <soren> kirkland: Even better :)
[15:34] <kirkland> soren: i actually put that aside, i think trying for a bump to -84 would be far more beneficial
[15:34] <bhsx> but i'm just talking for a home server... i dont need anything major, but it's an old box, so i want to squeeze a lot out of it
[15:34] <yann2> soren > tested that one, didnt fix it
[15:35] <soren> yann2: Oh.
[15:35] <kirkland> soren: and what yann2 just said ... didn't solve his problem
[15:35] <yann2> may have fixed the rtl one
[15:35] <kirkland> soren: his problem is using SMP
[15:35] <yann2> kirkland > btw, maybe you can try to reproduce now? :)
[15:35] <soren> Shame.
[15:35] <kirkland> soren: SMP is completely broken in kvm << 79ish
[15:35] <yann2> kirkland > don't say that... how badly broken?
[15:35] <kirkland> soren: yann2: alguori explained it to me this way ....
[15:36] <soren> I found it to be racy under some circumstances, yes.
[15:36] <kirkland> in older kvm (definitely 62, probably 72 as well)
[15:36] <kirkland> cpu and io are both handled in the same thread
[15:36] <soren> The extracting I/O into a separate thread didn't go completely flawlessly.
[15:36] <kirkland> which introduces a number of race conditions
[15:37] <kirkland> most which manifest themselves by a vm sort of "hanging" until you give it some io
[15:37] <petia> where can i specify the maximum size of the file attachments for dovecot email server ?
[15:37] <kirkland> like hitting a button, or clicking in the vm
[15:37] <kirkland> there are other issues too, enough for aliguori to say that he'd have no confidence run smp on kvm-62
[15:49] <bardyr> Hey, how can i mount a software raid0 on a live cd?
[15:52] <Vog-work> bardyr: mdadm I think....
[15:52] <Jeeves_> bardyr: mdadm -a etc etc etc
[15:53] <Vog-work> http://ubuntuforums.org/showthread.php?t=408461
[15:54] <Vog-work> bardyr: that last link has everything you should need.
[15:54] <bardyr> Vog-work, thanks
[16:08] <petia> where can i specify the maximum size of the file attachments for dovecot email server ?
[16:09] <jmedina> I dont think that is controlled via dovecot, instead in the MTA, well you can use dovecot's MDA
=== tiago_ is now known as nob_z
[16:18] <Vog-work> petia: If you are using postfix I htink you can manipulate the message_size_limit parameter found in main.cf
[16:19] <Vog-work> http://muhdzamri.blogspot.com/2007/02/postfix-mailbox-size-limit-and-message.html
[16:20] <storrgie> just installed apache2 with the taskel lamp install. But i get a 403 when trying to view my index.html
[16:22] <yann2> check permissions on documentroot
[16:22] <yann2> www-data needs read access
[16:22] <Vog-work> check permissions wherever you have your web folders /var/www/ for example.  If your web user (www-data or something like that) dosen't have read or write permission it won't work
[16:26] <W8TAH> hi folks: - i did a stupid, and need some help.... when i built my ubuntu server, i configurd LVM but forgot to tell the partitioner to mount it to /data i could rebuild the box but ive already got samba configured and would rather avoid re-doing that if possible -- how do i find out what is necessary to put in /etc/fstab and whatever else i need
[16:26] <mrwes> Just installed Denyhosts and it keeps adding my login IP from my laptop to the hosts.deny file -- why?
[16:28] <mrwes> W8TAH: what device is it?
[16:29] <W8TAH> mwares there are a total of 3 drives that have LVM physical volumes on them
[16:29] <storrgie> Vog-work: yann2: its /var/www
[16:30] <W8TAH> oops - im sorry mrwes there are a total of 3 physical drives with LVM physical volumes on them
[16:31] <uvirtbot> New bug: #302148 in samba (main) "Installing wine starts winbindd as a daemon" [Low,Confirmed] https://launchpad.net/bugs/302148
[16:31] <W8TAH> im about 90% sure they are sda sdb and sdc
[16:34] <W8TAH> mrwes?
[16:34] <storrgie> who should the /var/www be owned by?
[16:35] <racecar56> u?
[16:35] <storrgie> my user?
[16:35] <storrgie> or root?
[16:35] <W8TAH> ok thanks anyway folks --
[16:35] <Vog-work> storrgie it should be owned by www-data
[16:35] <racecar56> i gtg i'll still be logged on but i won't be active for a long time
[16:36] <Vog-work> W8TAH: people work for a living while helping in the channel, responses aren't always immeadiate.
[16:37] <Vog-work> As for myself I don't know the answer to your question.
[16:44] <giovani3> W8TAH: do you see the partition in /etc/fstab?
[16:44] <W8TAH> Vog-work:  i understand that -- as do i -- i wasnt mad -- was more indicating a closure to my question -- the box is reformatting now and ive properly activated the LVM this time -- i meant no unkindness or disrespect
[16:44] <giovani3> oh ok
[16:44] <W8TAH> giovani3: it was not there thanks anyway
[16:45] <Vog-work> W8TAH: that's cool, thanks for clearing up the confusion.
[16:47] <giovani3> in the future, W8TAH
[16:47] <giovani3> you should be able to run lvdisplay, and find the missing UUID
[16:47] <petia> Deeps, i'm looking at /etc/postfix main.cf , no where i could find message_size_mimit
[16:47] <giovani3> and manually add it to /etc/fstab
[16:47] <petia> Vog-work, i'm looking at /etc/postfix main.cf , no where i could find message_size_mimit
[16:47] <giovani3> petia: it doesn't need to be in there -- you need to ADD it
[16:47] <petia> oh
[16:47] <Vog-work> petia: You can add the line yourself
[16:48] <petia> i see
[16:48] <petia> so thats for all the files in the message, or for individual files ?
[16:48] <Vog-work> The message size all together.
[16:49] <petia> so umm, lets say i want it to be 30 megabytes, what should i put message_size_mimit = 30mb
[16:49] <petia> ?
[16:49] <giovani3> what's mimit?
[16:49] <Vog-work> that config option dosen't limit the size of the attachement, it limits the size of the e-mail and any attachments added to it.
[16:49] <giovani3> you mean limit?
[16:50] <petia> yeah
[16:50] <petia> limit
[16:50] <giovani3> and no, the number is in bytes
[16:50] <petia> sorry
[16:50] <giovani3> so 30 megabytes would be 31457280
[16:50] <Vog-work> yeah postix can only parse the number in bytes
[16:51] <petia> so its
[16:51] <petia> message_size_limit = 31457280
[16:51] <giovani3> yep
[16:51] <Vog-work> yep
[16:51] <giovani3> and then restart postfix
[16:51] <thewrath> hello all
[16:52] <Vog-work> petia: there is also a another channel called #postfix if yoiu have more complicated postfix questions.
[16:52] <petia> no thats it :)
[16:53] <petia> i have questions but not postfix related
[16:53] <petia> so if i'm able to login to the mail server with wemail client and send messages in webmail, why cant i use it as outgoing smtp server ?
[16:53] <kirkland> Nafallo: ping
[16:54] <kirkland> Nafallo: when you get a chance, upgrade to screen-profiles 1.37
[16:54] <kirkland> Nafallo: and put the following in ~/.screen-profiles/status
[16:54] <kirkland> menu=0
[16:54] <kirkland> whoami=1
[16:54] <kirkland> hostname=1
[16:54] <kirkland> Nafallo: and hit F5-enter
[16:55] <Vog-work> petia: do you have it registered under dns with proper my records?
[16:55] <giovani3> petia: there are two servers you're interfacing with -- postfix is an MTA, it only does SMTP, if you want to access your mail via webmail, you use something like dovecot, whcih provides imap/pop
[16:55] <petia> i'm confiused
[16:55] <Vog-work> sorr myrecords  is supposed to read mx records
[16:55] <giovani3> you can use postfix as your outbound smtp server, you just need to configure it so that it will accept mail from you (the best way is to set up SASL) -- but these are more questions about postfix, and are best directed at #postfix
[16:56] <thewrath> i wnat to run a private home server
[16:56] <thewrath> i have ubutu server but gui is the bets
[16:56] <giovani3> thewrath: we don't support GUIs here
[16:56] <giovani3> but ubuntu enables you to install one, if you like
[16:56] <thewrath> all right
[16:56] <thewrath> i am trying ot install drbl stuff on  my server
[16:57] <thewrath> i do some imaging
[16:57] <thewrath> from http://samiux.wordpress.com/2008/10/22/howto-penguinzilla-drbl-on-ubuntu-8041/
[16:57] <thewrath> says i have to crate a /tftpboot partition in ext3
[16:57] <giovani3> how does that relate to having a GUI?
[16:57] <thewrath> i ahve not that done that before hwo i do that?
[16:58] <thewrath> the guy who works with me was hoping for me to do a gui interface
[16:58] <giovani3> well I told you, ubuntu allows you to install one
[16:58] <giovani3> but we don't recommend it, and don't support it here
[16:58] <giovani3> so it's your choice
[17:00] <mrwes> setting up a server with ONLY command line is the best way to truly learn linux --IMHO
[17:04] <thewrath> ok
[17:04] <thewrath> from http://samiux.wordpress.com/2008/10/22/howto-penguinzilla-drbl-on-ubuntu-8041/
[17:04] <thewrath> says i have to crate a /tftpboot partition in ext3
[17:04] <thewrath> i ahve not that done that before hwo i do that?
[17:09] <thewrath> any idea guys have?
[17:17] <Vog-work> thewrath: what are you hoping to do with drbl?
[17:18] <Vog-work> I'm not sure it is what you need.
[17:18] <trondkla_q> can I ask apache2 questions here? :)
[17:20] <thewrath> image the windows machines
[17:20] <thewrath> its a private server here at thes chool i help with
[17:20] <thewrath> well the school district
[17:21] <Vog-work> ok.
[17:21] <thewrath> so i just use a live ubuntu desktop cd to do the reimaging?
[17:22] <Vog-work> no.... you'll need to learn about pxe boot and other stuff.
[17:23] <Vog-work> drbl isn't a simple setup process.
[17:23] <trondkla_q> Hi, i've tried to change apache2 to UTF-8, but it's still outputting ISO-5589-1. Ive set /etc/apache2/conf.d/charset to utf-8, and added IndexOptions Charset=UTF-8 to /etc/apache2/apache2.conf
[17:23] <Vog-work> thewrath: https://wiki.edubuntu.org/SettingUpClonezillaDRBLonUbuntu I used this at a local school
[17:24] <thewrath> ok thank you Vog-work
[17:24] <thewrath> brb
[17:24] <thewrath> i assum u r there now>?
[17:24] <Vog-work> thewrath: It's a good idea to use drbl / clonezilla for what you want but you'll need to do some reading before you start configuring the server.
[17:25] <Vog-work> There might be better how to's out ther eas well.
[17:25] <bromic94_> back
=== bromic94_ is now known as thewrathjr
[17:26] <Vog-work> trondkla_q: might be a better question for #apache
[17:26] <thewrathjr> Vog-work: can you send that to me again i didnt get a chance to copy it before i moved net connections
[17:26] <trondkla_q> thanks :)
[17:27] <Vog-work> thewrathjr: https://wiki.edubuntu.org/SettingUpClonezillaDRBLonUbuntu
[17:27] <Vog-work> thewrathjr: It's a good idea to use drbl / clonezilla for what you want but you'll need to do some reading before you start configuring the server.
[17:28] <thewrathjr> yea i have been told that
[17:28] <thewrathjr> i just want to preliminary set it up
[17:28] <Vog-work> Following a how to will not tell you the whole process, like settign up the clinets.
[17:28] <thewrathjr> we have some stuff with vista nad what nto that for some reason does not want to work wtih zenworks
[17:28] <thewrathjr> how do i create that parition it talks about
[17:32] <Vog-work> http://www.users.bigpond.net.au/hermanzone/p17.htm#help_on_partitioning
[17:33] <Vog-work> thewrathjr: http://www.linux.com/feature/115208
[17:54] <bitsbam> hey all, needing some advice regarding creating temporary tables
[17:54] <petia> i just went through this tutorial https://help.ubuntu.com/8.10/serverguide/C/postfix.html , but dont get the same output shown in the example when i do telnet mail.jipamerica.com 25
[17:54] <petia> Vog-work, i'm confused
[17:55] <Deeps> !paste | petia
[17:55] <ubottu> petia: pastebin is a service to post multiple-lined texts so you don't flood the channel. The Ubuntu pastebin is at http://paste.ubuntu.com (make sure you give us the URL for your paste - see also the channel topic)
[17:55] <Deeps> what output do you get?
[17:55] <petia> Deeps, k 1 sec
[17:56] <petia> Deeps, http://pastebin.com/m65afd15d
[17:56] <petia> Deeps, i did everything on that page without any errors or problems before the section of testing it with telnet
[17:56] <Deeps> petia: indeed, thats the welcome banner, you need to send the 'ehlo' command to get the following output as described on that page
[17:57] <bitsbam> my deal is: our customers log into our website to check the conditions of their machines, each machine reports many times a day, and we use this to draw charts etc.. so the machine history is long long and we pull hundreds of thousands of records. how many is too many temporary hash tables to have on a server . Do any of you use temporary tables?
[17:57] <fevel> hey friends
[17:57] <fevel> how can I make squid redirect web access to a certain homepage whenever a browser is launched?
[17:57] <bromic94_> hey sorry i was out
[17:57] <bromic94_> i had to use the facilities and locked out of the office
=== bromic94_ is now known as thewrath
[17:58] <thewrath> how can i create a ext3 partition for drbl after i installed ubutnu server all ready
[17:58] <thewrath> also when i do sudo apt-get update i get 11 resources temp unavaiable how can i change that
[17:58] <petia> Deeps, a lot better, but slightly different
[17:58] <thewrath> never mind ont eh last question
[17:59] <petia> Deeps, can i show you ?
[17:59] <Deeps> petia: sure, pastebin away
[18:00] <Deeps> although if you're paying attention, you'll notice the guide says
[18:00] <petia> Deeps, i'll pastebin in pm ok ?
[18:00] <Deeps> "If you see the following lines among others, then everything is working perfectly."
[18:00] <Deeps> ok
[18:02] <petia> Deeps,  so in outlook how should it be configured then , i mean the outgoing smtp server
[18:02] <petia> Deeps, i should put smtp.jpiamerica.com ?
[18:02] <Deeps> yep
[18:03] <Deeps> what's up filipe_xD?
[18:03] <stanman1> hi, anyone running ubuntu-server and sbs2003 on one box?
[18:03] <thewrath> how can i create a ext3 partition for drbl after i installed ubutnu server all ready
[18:04] <filipe_xD> Deeps, fine, i'm just testing here
[18:04] <filipe_xD> Deeps, ignore this
[18:05] <ivoks> still configuring mail server?
[18:05] <Deeps> filipe_xD: k
[18:05] <petia> ivoks, working on smtp-auth atm
[18:05] <ivoks> via dovecot?
[18:05] <petia> since using our isp's smtp server is not suffecient because we are gonna run into problems when traveling
[18:05] <petia> ivoks, yeah dovecot
[18:06] <ivoks> i see you are discovering benefits of running your own mail server :)
[18:06] <petia> ivoks, :)
[18:06] <petia> its stressfull cause i get pressure from my boss, but i love working on this stuff
[18:07] <ivoks> you should've play with it in virtual system or at home
[18:07] <ivoks> deploying mail server isn't playing minesweeper
[18:08] <petia> ivoks, i think its ready, waiting for smtp domain to propagate
[18:08] <thewrath> how easy is it to do a new parition for drbl
[18:08] <ivoks> drbl?
[18:09] <thewrath> open source imaging software
[18:09] <thewrath> clonzilla?>
[18:10] <petia> how can i test if smtp server is working before the domain propagates ?
[18:11] <ivoks> connect to it and send mail
[18:12] <petia> heh
[18:12] <petia> connect via ssh ?
[18:12] <ivoks> you have thunderbird, right?
[18:12] <petia> yeah
[18:12] <thewrath>  do you know clonezilla ivoks ?
[18:12] <ivoks> set up an account in it and put your new server as incoming and outgoing server
[18:12] <ivoks> thewrath: nope
[18:13] <petia> yes thats what i am trying to do ivoks , but my isp still thinkgs smtp.jpiamerica.com is an old ip
[18:13] <ivoks> petia: well, you have an IP of that server, right?
[18:13] <petia> ivoks, i have an ip for the new server that i am trying to get working yes
[18:13] <ivoks> ip of your new server
[18:14] <ivoks> so, instead of hostname, enter IP
[18:14] <thewrath> does anyone know how to set up a second parition or what not after you installed ubuntu server?
[18:15] <ivoks> thewrath: cfdisk
[18:15] <thewrath> just run cfdisk in ssh or on the server live and follow the steps?
[18:15] <jmedina> thewrath: create the partition with fdisk or cfdisk, format the new particion with mkfs.ext3 for example
[18:15] <petia> ivoks, Relay Access Denied when trying to send mail :(
[18:15] <jmedina> create a mount point for example mkdir /newvolume, add the entries to your fstab
[18:16] <jmedina> something like
[18:16] <giovani3> petia: because you need to authenticate to your SMTP server
[18:16] <ivoks> petia: that's good
[18:16] <jmedina>  /dev/sdb1    /newvolume    ext3  defaults 0 0
[18:16] <thewrath> jmedina: i have never done this before
[18:16] <thewrath> with paritioning after install
[18:16] <petia> so i should use "this server requires authentication" ?
[18:16] <ivoks> cfdisk /dev/sda
[18:16] <ivoks> if you want to patition disk sda
[18:16] <ivoks> petia: yes
[18:17] <jmedina> thewrath: where is the new partition?
[18:17] <jmedina> a new disk, existing disk?
[18:17] <petia> ivoks, heh it worked :)
[18:17] <thewrath> same same hard drive
[18:17] <thewrath> so eya
[18:17] <thewrath> existing disk
[18:17] <petia> i love you guys
[18:18] <ivoks> petia: now try sending mail to your email
[18:18] <petia> this is awesome
[18:18] <ivoks> petia: and then, to some gmail account
[18:18] <ivoks> to see if everything works
[18:18] <petia> ok
[18:18] <petia> first thing i tried is to send to my gmail account and it worked
[18:20] <thewrath> jmedina: ?
[18:21] <ivoks> thewrath: cfdisk /dev/sda
[18:21] <jmedina> thewrath: use 'sudo cfdisk /dev/sda' and check if your disk has free space
[18:21] <thewrath> i know it does
[18:21] <petia> hmmmm, didnt work between internal accounts
[18:21] <jmedina> well then selecto free space and create a new partition
[18:22] <ivoks> petia: check /var/log/mail.log
[18:22] <thewrath> sda1 boot primary linux ext3 38502.54
[18:22] <jmedina> then write changes, you need to restart your system in order to detect new partition so you can create a new file system (format) in the new partition
[18:22] <ivoks> jmedina: ????
[18:22] <thewrath> sda5  logical linux swap / solaris 1513.46
[18:22] <ivoks> restart?
[18:22] <ivoks> in which century do you live? :D
[18:22] <jmedina> ivoks: or run partprobe
[18:23] <ivoks> jmedina: cfdisk does all that for you :)
[18:23] <jmedina> ivoks: sometimes it is not possible to the kernel detect new partitions, the /dev/file is not created
[18:23] <thewrath> ivoks: to create a new parition after running that cdisk command to see if i have space what do i do then?
[18:24] <ivoks> thewrath: i didn't understand the question
[18:24] <thewrath> i only have bootblae, delete, help, max, print, quit, type, units and write oeptions
[18:24] <jmedina> thewrath: do you have free space?
[18:24] <thewrath> yes alot
[18:24] <ivoks> then highlight free space
[18:24] <ivoks> and select new
[18:25] <ivoks> press the arrow key 'down'
[18:25] <ivoks> :)
[18:25] <jmedina> :D
[18:25] <petia> seems like the problem of receiving messages now :(
[18:25] <jmedina> thewrath: your mouse doesnt work in cfdisk
[18:25] <petia> no matter where they are coming from, messages are not received
[18:25] <thewrath> i have no optino for new
[18:25] <ivoks> petia: well, check the /var/log/mail.log
[18:25] <thewrath> i know that jmedina
[18:26] <ivoks> you'll have New, when you highlight FREE SPACE
[18:26] <jmedina> thewrath: then you dont have free space, thewrath pastebin the output of cfdisk
[18:26] <thewrath> hold on when i installed ubuntu server i installed it to take up the entire hard drive
[18:26] <thewrath> is that my issue
[18:27] <jmedina> thewrath: do you have something like "                                           Pri/Log         Free Space                                        70285.02" ?
[18:27] <thewrath> no
[18:27] <thewrath> bc i installed it to take the hard drive
[18:27] <thewrath> the entire hard drive
[18:27] <jmedina> then you dont have free space
[18:27] <ivoks> hehe
[18:27] <thewrath> how can i "re parition" it
[18:27] <thewrath> do i have to use a live ubuntu desktop cd
[18:27] <ivoks> yes
[18:27] <thewrath> ok hold on
[18:27] <ivoks> then resize filesystem
[18:27] <ivoks> and then resize partition
[18:27] <jmedina> I like minidistro parted image
[18:27] <jmedina> it is 10MB iso
[18:28] <jmedina> parted magik
[18:28] <thewrath> there should be one or somethin gont he ubuntu 8.04 install cd right or do i need a live cd?
[18:28] <Vog-work> live cd would be good
[18:29] <thewrath> okay then i might need to go and dnwoload it then
[18:30] <thewrath> where do i get that
[18:30] <thewrath> having issue with the ubuntu site to find it
[18:30] <jmedina> of course, make sure you have a backup :D
[18:30] <ivoks> petia: so, anything in logs?
[18:30] <thewrath> i have nothing the server at this point
[18:31] <petia> ivoks, can i pasten the logs to you in a pm ?
[18:31] <ivoks> petia: ok
[18:31] <thewrath> pastebin
[18:31] <thewrath> jmedina: where can i download the ubuntu live cd
[18:31] <jmedina> ubuntu.com I guess
[18:31] <ivoks> thewrath: you could use ubuntu server CD too
[18:31] <Vog-work> thewrath: www.distrowatch.com ?
[18:31] <ivoks> hm... or not?
[18:31] <ivoks> hm..
[18:31] <petia> ivoks, pm
[18:32] <thewrath> live or standard install
[18:32] <thewrath> bc i have teh instandard cds
[18:32] <thewrath> but not the live cds
[18:33] <thewrath> nvm
[18:33] <thewrath> what  am i looking for when i get into the live cd
[18:33] <jmedina> thewrath: just download ubuntu desktop
[18:34] <thewrath> i ahve it
[18:34] <thewrath> it is booting from the cd in the server now
[18:34] <thewrath> well maybe
[18:34] <thewrath> lol
[18:35] <thewrath> there we go just really slow lol
[18:36] <thewrath> i am in so i am looking for what exactlyu'
[18:36] <thewrath> parition editor?
[18:37] <thewrath> under /dev/sha1 it says unused space 34.39gb
[18:37] <ivoks> sha?
[18:37] <giovani3> new encrypted drive device ;)
[18:38] <thewrath> i meant sda
[18:38] <thewrath> i am in the prarition editor
[18:38] <thewrath> do i click on sda1 resize
[18:38] <thewrath> reduce that by 10gb
[18:38] <thewrath> and what after that?
[18:38] <ivoks> well... if it says unused space
[18:39] <ivoks> then it's free space, right?
[18:39] <thewrath> i would assume so
[18:39] <thewrath> so i want to create a new partition from it
[18:39] <giovani3> ivoks: he means the editor is evaluating the free space within the partition, not unpartitioned space
[18:39] <thewrath> how do i do that from here
[18:39] <ivoks> paste on pastebin:
[18:39] <ivoks> sudo fdisk -l /dev/sda
[18:39] <thewrath> mer?
[18:39] <thewrath> what does that do?
[18:39] <giovani3> it lists partitions
[18:39] <ivoks> lists partitions
[18:40] <thewrath> after i run taht what do you want me to do
[18:41] <ivoks> paste it on the pastebin
[18:41] <thewrath> k
[18:42] <furicle> Anybody else using iSCSI on 100bT and crud equipment?  It's running 50% slower than SMB to/from same machine. Thought it would be closer to par or slightly faster...
[18:43] <thewrath> http://pastebin.com/m6fff020c
[18:44] <ivoks> so... no free space :)
[18:45] <incorrect> I want to have a user that can change users without sudo
[18:45] <thewrath> how do i create free space
[18:45] <ivoks> first, disable journaling on sda1
[18:45] <ivoks> like this:
[18:45] <incorrect> I want to be able to deploy my software and then run a script to execute it, but i want to change user
[18:45] <ivoks> tune2fs -O^has_journal /dev/sda1
[18:45] <petia> FYI everyone : ivoks rules !
[18:45] <ivoks> :)
[18:46] <thewrath> so tune2fs -0^has_journal /dev/sda1
[18:46] <thewrath> ?
[18:46] <ivoks> right, with sudo
[18:46] <ivoks> O
[18:46] <ivoks> not 0
[18:46] <ivoks> big o
[18:47] <thewrath> so the letter
[18:47] <thewrath> good
[18:47] <thewrath> after that what do i ahve to do
[18:47] <ivoks> run parted /dev/sda
[18:47] <thewrath> ^has_journal invalid
[18:47] <uvirtbot> thewrath: Error: "has_journal" is not a valid command.
[18:48] <ivoks> sudo tune2fs -O^has_journal /dev/sda1
[18:49] <thewrath> letter or n umber
[18:49] <ivoks> letter
[18:50] <ivoks> did you backup your data? :)
[18:51] <thewrath> i did the last command
[18:51] <thewrath> now says (parted)
[18:51] <thewrath> now what
[18:51] <thewrath> lol
[18:51] <ivoks> quit parted
[18:51] <thewrath> jsut ctrl c?
[18:51] <ivoks> type quit
[18:51] <thewrath> done
[18:51] <ivoks> check filesystem:
[18:52] <ivoks> e2fsck -f /dev/sda1
[18:52] <thewrath> what shoudl it shwo
[18:52] <ivoks> (disclaimer: this worked for me every time, but you are warned to backup the data)
[18:52] <ivoks> it should start checking your partition
[18:53] <thewrath> already normalized it says
[18:53] <thewrath> which i have nothign on it
[18:53] <thewrath> lol
[18:53] <ivoks> ok then
[18:53] <thewrath> this is going to be a dedicated imaging/multicasting image server
[18:53] <ivoks> how big do you want it to be?
[18:53] <thewrath> the new one like 15gb
[18:54] <ivoks> how big is the current?
[18:54] <thewrath> used is 1.47gb
[18:54] <thewrath> unused 34.39
[18:54] <ivoks> ok
[18:55] <ivoks> so you want /dev/sda2 to be 15GB or /dev/sda1?
[18:55] <ivoks> current partition or the new one we will create
[18:56] <thewrath> create the new one
[18:56] <ivoks> resize2fs /dev/sda1 20G
[18:56] <thewrath> it needs to be named tftpboot
[18:56] <thewrath> Create a /tftpboot partition in ext3 or reiserfs in the size of 200MB per client at least,
[18:57] <ivoks> did you run resize?
[18:58] <thewrath> no not yet
[18:58] <thewrath> i was following your instructions to the t
[18:59] <ivoks> so... gparted is graphical tool?
[18:59] <ivoks> and it can do it
[18:59] <ivoks> lol... i didn't know that
[19:00] <ivoks> did you resize it?
[19:00] <ivoks> if not, don't
[19:00] <ivoks> use gparted :)
[19:00] <thewrath> how i use gparted
[19:00] <thewrath> and where is it
[19:01] <ivoks> gksudo gparted
[19:01] <thewrath> hold on i am on the phone
[19:02] <thewrath> in there
[19:02] <thewrath> found phone has speaker phone sincei  dont work here i dont know all the kool technology the school has lol
[19:03] <thewrath> need to leave soon so any thing right now to get this finshed quick or what not greatly appreciate it
[19:03] <ivoks> if you can't find your way out using gparted
[19:03] <ivoks> then i can't help you
[19:03] <ivoks> :)
[19:04] <ivoks> it has slider and what not...
[19:05] <thewrath> im in gparted and resize it and reduce it by 15 gb?
[19:06] <ivoks> right
[19:06] <uvirtbot> New bug: #312437 in samba (main) "version `GLIBC_2.8' not found (required by /lib/security/pam_smbpass.so) (dup-of: 256238)" [Undecided,New] https://launchpad.net/bugs/312437
[19:08] <thewrath> done
[19:08] <thewrath> then right click on unallocated and select new?
[19:09] <thewrath> how do i call it tftpboot?
[19:09] <ivoks> partitions can't be called
[19:09] <ivoks> they don't have names
[19:10] <thewrath> ok
[19:10] <thewrath> but am i right about righc click on unallocated and seelct new
[19:10] <ivoks> you can mount them in directory, but you can do that after you create them
[19:10] <ball> how do I get a list of the installed packages?
[19:10] <ivoks> yes
[19:10] <ivoks> dpkg -l
[19:10] <thewrath> what?
[19:10] <thewrath> oh ok
[19:10] <ball> thanks
[19:10] <thewrath> nvm
[19:11] <thewrath> ivoks:  then click on apply?
[19:11] <ivoks> yes
[19:12] <thewrath> well ivoks ty i am goign to leave
[19:12] <thewrath> and let this run over night
[19:12] <thewrath> u going to be in tomorrow?
[19:12] <thewrath> how do i mount the parition btw after i am done
[19:13] <ivoks> over night?
[19:13] <ivoks> it'll finish in couple of seconds
[19:13] <thewrath> well i have to go anyways
[19:13] <thewrath> its taking a whiel to resize stuff
[19:13] <thewrath> how do i mount the parition btw after i am done
[19:13] <thewrath> r u goign to be in here tomorrow
[19:14] <ivoks> mount /dev/sda2 /mnt/my_other_partition
[19:15] <thewrath> its done
[19:15] <thewrath> so to orrow i can do teh rest for drbl
[19:15] <thewrath> /mnt/my_other_parititon?
[19:16] <thewrath> sda3
[19:16] <thewrath> btw
[19:16] <thewrath> but i got to roll i should be back
[19:16] <thewrath> ttyl
[19:33] <loshok> asdf
[19:34] <incorrect> I need to give a user that is not root the ability to change user without needing a password
[19:34] <jmedina> incorrect: what you mean by "change user"?
[19:36] <incorrect> I want to copy on my apps as user X, then i want to start them over ssh
[19:37] <incorrect> so i would ssh su - user -c /script
[19:38] <incorrect> its just not the root user
[19:39] <incorrect> ideally i would like to restrict which users they can be
[19:39] <bromic94_> hello all
=== bromic94_ is now known as thewrath
[19:41] <ivoks> i didn't understand anything
=== giovani3 is now known as giovani2
[19:42] <thewrath> hey ivoks
[19:42] <thewrath> thanks for the hel[
[19:43] <ivoks> np
[19:45] <thewrath> *help
[19:45] <thewrath> the reason i was talking to you about the information was this link and how they worded it
[19:45] <loshok> asdf
[19:46] <loshok> sdf
[19:46] <thewrath> http://samiux.wordpress.com/2008/10/22/howto-penguinzilla-drbl-on-ubuntu-8041/ under step 1
[19:46] <thewrath> hi loshok
[19:46] <loshok> damn
[19:46] <loshok> its orudie
[19:46] <thewrath> its wat
[19:46] <ivoks> ?
[19:46] <loshok> ivoks,
[19:46] <loshok> cant send to outside emails now for some reason
[19:46] <loshok> can you please have a look at the logs ?
[19:47] <ivoks> you said you've sent it to gmail account before
[19:47] <loshok> ivoks, yeah i havent changed anything stopped working all the sudden
[19:47] <thewrath> yea
[19:47] <loshok> now get system administrator error undeliverable
[19:47] <loshok> but only when sending to outside
[19:47] <ivoks> and, what the error says?
[19:48] <ivoks> there's some meaningfull info in the message
[19:48] <loshok> http://pastebin.com/m674c2b65
[19:48] <ivoks> and who is the sender?
[19:48] <thewrath> re authenticate
[19:49] <thewrath> i used realying with xampp
[19:49] <loshok> paul@jpiamerica.com
[19:49] <ivoks> you need to authenticate
[19:49] <thewrath> ?
[19:49] <loshok> i did
[19:49] <ivoks> your server isn't open relay
[19:49] <loshok> it was working
[19:49] <ivoks> paste main.cf somewhere
[19:49] <thewrath> what mail server you using?
[19:49] <loshok> dovecot
[19:50] <ivoks> postfix
[19:51] <loshok> i am authenticated, i have that option checked in the email client
[19:51] <thewrath> close it down and do it again
[19:51] <ivoks> paste the main.cf already!
[19:51] <thewrath> soemtimes that happens
[19:51] <thewrath> lol
[19:51] <thewrath> ivoks: do you understand what it meant on that link i sent you abotu the /tftpboot parition
[19:52] <thewrath> or is that the mounted name?
[19:52] <ivoks> that's mount name
[19:52] <ivoks> not a partition
[19:52] <thewrath> ok
[19:52] <incorrect> there has got to be a way to allow a non-root user exec scripts without needing to enter a password
[19:52] <ivoks> scripts not, programs yes
[19:53] <ivoks> you can setup setuid bit
[19:53] <ivoks> and make that script executable only by some group
[19:53] <thewrath> so sudo mount /dev/sda3 /tftpboot?
[19:53] <ivoks> and in that group would be users you will grant execution of that script
[19:54] <loshok> http://pastebin.com/m2ded421e
[19:54] <ivoks> thewrath: you need to create filesystem on it
[19:54] <thewrath> yea it has ext3
[19:54] <ivoks> then just mount it
[19:54] <thewrath> with the command i said?
[19:54] <ivoks> yes
[19:54] <ScottK> lamont: Nice things said about your work on postfix-users yesterday.
[19:55] <ScottK> Actuall nice things about Ubuntu Server with Postfix generally.
[19:55] <ivoks> yay! :)
[19:55] <loshok> it worked in thunderbird but doesnt work in outlook
[19:55] <loshok> maybe it has to do with accepting the certificate
[19:56] <ivoks> i've heard this before
[19:56] <ScottK> loshok: I didn't read the backscroll but works on thunderbird not outlook makes me guess the answer is login
[19:56] <ScottK> You need it and you don't have it.
[19:56] <loshok> it worked fine before
[19:56] <loshok> i configured everything
[19:56] <loshok> authentication and stuff
[19:56] <loshok> and stopped working all the sudden
[19:57] <incorrect> that doesn't really scale
[19:57] <incorrect> must be another way
[19:57] <loshok> http://pastebin.com/m69191aea
[19:57] <loshok> scope006,
[19:57] <loshok> ScottK, http://pastebin.com/m69191aea
[19:58] <loshok> its authenticated, testing settings ok
[19:58] <ScottK> Dovecot or Cyrus for SASL?
[19:58] <loshok> send and receive
[19:59] <ivoks> dovecot
[19:59] <loshok> ivoks, any suggestions ?
[19:59]  * ScottK doesn't know the config file for dovecot.
[20:00] <loshok> please.....
[20:00] <ScottK> loshok: Are you sure you offer both login and plain for sasl?
[20:00] <loshok> ivoks,
[20:00] <loshok> ScottK, yes
[20:01] <ScottK> What do your logs say about the error?
[20:01] <loshok> maybe it has to do with the certificate
[20:01] <ivoks> i think that outlook doesn't authenticate
[20:02] <thewrath> it does
[20:02]  * ScottK wants to see logs.
[20:02] <loshok> it does
[20:02] <thewrath> there is a setting you sneed to set
[20:02] <loshok> it was working earlier
[20:02] <loshok> i set it
[20:02] <ivoks> from outlook it probably doesn't work
[20:03] <loshok> yeah but it was working earlier with outlook too
[20:03] <ScottK> If you haven't looked in the logs and found the error there, then you aren't looking in the right place for an answer.
[20:03] <loshok> i made several tests before
[20:03] <ScottK> There are quite a few reasons you could get that error message.
[20:03] <loshok> sending to internal users work, but not outside
[20:03]  * ScottK won't speculate.
[20:03] <loshok> sending to the users created by me on the server works fine in outlook
[20:04] <ivoks> for that you don't need to authenticate
[20:04] <ivoks> server must accept mail for them
[20:04] <loshok> it has to use TLS
[20:04] <ivoks> it's when you use it to send outside, then you need to authenticate
[20:04] <loshok> i dont see a setting for TLS in outlook
[20:04] <ivoks> secure or something like that
[20:05] <ivoks> http://www.rescom.psu.edu/ssl/outlookssl.htm
[20:05] <ivoks> this is for POP3
[20:05] <loshok> ivoks, thats for incoming, the problem is with outgoing
[20:05] <ivoks> you should set it for SMTP too
[20:06] <ivoks> well, open your eyes
[20:06]  * ScottK is deciding he's pleased the lack of logs save him having to spend time on this.
[20:06] <ivoks> ScottK: :)
[20:07] <ivoks> http://help.expedient.com/mailnews/ssl.shtml
[20:07] <ivoks> there
[20:07] <ivoks> sorry, it doesn't have pictures
[20:07] <ivoks> i hope you'll be ok with that
[20:08] <thewrath> lol
[20:08] <loshok> loll
[20:08] <loshok> dude
[20:08] <loshok> i have it checked already
[20:09] <loshok> i am trying everything
[20:09] <ivoks> did you enable SSL in postfix?
[20:09] <ScottK> Trying everything except providing logs.
[20:09] <loshok> hang on i'll give you logs
[20:10] <ScottK> I'll be asking for the output of postconf -n next.
[20:13] <loshok> scope006, ivoks logs http://pastebin.com/m3a60067f
[20:13] <loshok> ScottK, sorry
[20:15] <ivoks> it doesn't authenticate
[20:16] <loshok> so what should be done in autlook i'm checking the box where it says "this server requires authentication"
[20:16] <ivoks> enable smtps in postfix
[20:16] <scope006> loshok, did you need something?
[20:16] <ivoks> loshok: open /etc/postfix/master.cf
[20:17] <loshok> scope006, sorry wrong message
[20:17] <scope006> lol np
[20:17] <ivoks> loshok: find a line smtps     inet  n       -       -       -       -       smtpd
[20:17] <ivoks> loshok: and uncomment it
[20:17] <loshok> ivoks, done
[20:17] <ivoks> restart postfix
[20:18] <ivoks> and then try again
[20:18] <ivoks> which outlook version is that?
[20:18] <ScottK> Make sure you point Outlook at port 465 too.
[20:18] <ivoks> for outgoing server
[20:18] <ScottK> loshok: Where in that log is a failed attempt to send outgoing mail?
[20:19] <loshok> same
[20:19] <ivoks> gives us the log
[20:19] <ivoks> the real log
[20:19] <ivoks> what you pasted before isn't related to the problem you are talking about
[20:19] <loshok> but where can i find the other log  ?
[20:20] <ScottK> You got the correct logfile, just not the right spot in it.
[20:20] <ivoks> find the address you were sending mail for
[20:20] <ivoks> and then paste couple of lines before and couple of lines after it
[20:21] <ivoks> dovecot-postfix should solve issues like this :)
[20:22] <loshok> http://pastebin.com/md92f60f
[20:23] <ivoks> it doesn't authenticate
[20:24] <ivoks> it uses TLS, great, but doesn't authenticate
[20:24] <jmedina> what is the ubuntu virtualisation channel?
[20:25] <ivoks> loshok: you have 'broken_sasl_auth_clients = yes' in main.cf?
[20:26] <jmedina> isnt broken for old outlook clients using login instead of plain?
[20:26] <jmedina> I think it only affected outlook express before 5 version
[20:26] <loshok> ivoks, broken_sasl_auth_clients = yes
[20:26] <loshok> i have that in main.cf
[20:26] <ivoks> ok
[20:27] <loshok> ivoks, what can i do  ?
[20:28] <ScottK> loshok: Pastebin the output of postconf -n please.
[20:28] <ivoks> grep mechanisms /etc/dovecot/dovecot.conf
[20:29] <loshok> http://pastebin.com/m57a21d20
[20:30] <loshok> mechanisms = plain
[20:31] <ivoks> now... adding login there would be wise, right?
[20:31] <ivoks> Another plaintext mechanism is LOGIN. It's typically used only by SMTP servers to let Outlook clients perform SMTP authentication.
[20:31] <ivoks> http://wiki.dovecot.org/Authentication/Mechanisms
[20:32] <ivoks> add login in that line
[20:32] <ivoks> restart dovecot
[20:32] <ivoks> restart postfix
[20:32] <ivoks> and then try again
[20:33]  * ScottK headdesk.
[20:33] <ivoks> ScottK: ? :)
[20:33] <ScottK> [16:00:34] <ScottK> loshok: Are you sure you offer both login and plain for sasl?
[20:34] <ScottK> [16:00:44] <loshok> ScottK, yes
[20:34] <ivoks> :)
[20:34] <ivoks> 250-AUTH PLAIN
[20:34] <ivoks> 250-AUTH=PLAIN
[20:35] <giovani2> haha
[20:35] <ivoks> loshok: you know what to do?
[20:35] <loshok> no
[20:35] <ivoks> loshok: open /etc/dovecot/dovecot.conf
[20:35] <loshok> ok
[20:35] <ivoks> find auth default {
[20:35] <loshok> opend
[20:36] <ivoks> line ~770
[20:36] <ivoks> there should be:
[20:36] <ivoks> mechanisms = plain
[20:36] <loshok> yes i see it
[20:36] <ivoks> add login:
[20:36] <ivoks> mechanisms = plain login
[20:37] <loshok> ok i did it
[20:37] <ivoks> save
[20:37] <loshok> :) saved
[20:37] <ivoks> restart services:
[20:43] <loshok> wheew
[20:43] <ivoks> Vog-work: right, it doesn't
[20:43] <ivoks> Vog-work: we don't have anything like that
[20:43] <ivoks> Vog-work: i use rc.local for that
[20:44] <ivoks> Vog-work: maybe you should take a look at ufw
[20:44] <incorrect> in sudoers can i do wildcards?
[20:44] <Vog-work> ivoks: I would except this is a production server I need to make changes on.
[20:45] <giovani2> incorrect: wildcards on what field?
[20:45] <ivoks> loshok: point your boss to http://dovecot.org/donate.html
[20:45] <loshok> heh
[20:45] <incorrect> well i have something like /customdir/*/bin/startscript.sh
[20:45] <ivoks> Vog-work: there's something you can do
[20:46] <loshok> ivoks, you are super my friend
[20:46] <ivoks> Vog-work: /etc/network/interfaces supports pre-up pre-down etc
[20:46] <loshok> i will definetly experiment with future ubuntu server releases
[20:46] <ivoks> Vog-work: so pre-up could have 'iptables-restore /some/file/with/rules'
[20:46] <loshok> but i'll doubt i'll change anything on company's host since its working
[20:47] <ivoks> Vog-work: while pre-down could have 'iptables-save /some/file/with/rules'
[20:47] <ivoks> or, just save the rules in that file
[20:47] <ivoks> without pre-down
[20:47] <ivoks> that way you can have firewall rules per interface
[20:47] <ivoks> and common stuff can be under lo interface
[20:49] <ivoks> when i think of it... this sounds very cool and flexibile
[20:50] <ivoks> :)
[20:52] <Vog-work> os is my only other option to go and manually edit iptables.conf in /etc and restart the service from init.d
[20:54] <ivoks> ?
[20:55] <jmedina> Vog-work: you can create a rc script that loads iptables -restore
[20:56] <Vog-work> jmedina: does that address the need to save the changes I made to the config before restarting?
[20:56] <Vog-work> so... sudo iptables -A INPUT -p tcp --dport 80 -j ACCEPT
[20:56] <Vog-work> or something
[20:56] <Vog-work> sudo /etc/init.d/iptables save    would work but  it dosen't make the changes permanent
[20:57] <Vog-work> then sudo /etc/init.d/iptables restart
[20:57] <jmedina> Vog-work: if properly configured, it will run iptables-save on init 6 and 0
[20:57] <jmedina> and iptables-restore in default runleves
[20:58] <Vog-work> I don't think rebooting should be necessary....
[20:58] <Vog-work> (referriung to init level 6)
[20:58] <ivoks> reboot?
[20:58] <ivoks> am i missing something?
[20:59] <ivoks> what is it that you are trying to do?
[20:59] <Vog-work> I was under the impression init level 6 would reboot the machine
[20:59] <ivoks> you asked how to make changes permanent
[20:59] <ivoks> i guess everybody thinks of that as 'available after reboot' right?
[21:00] <Vog-work> All I'm trying to do is save changes to an iptables config and then restart the service to have the edited changes made permanant
[21:00] <ivoks> i see, now i understand what you want
[21:01] <Vog-work> The server itself being a production mail server shouldn;t be restarted in the middel of the business day. I don't think my users would be happy :)
[21:01] <ivoks> no one said you need to reboot
[21:02] <Vog-work> My misunderstanding then
[21:02] <ivoks> you just want to flush your iptables, right?
[21:02] <ivoks> with some predefined rules
[21:03] <Vog-work> just sec.... think I got it...
[21:03] <Vog-work> flush triggered a memoey....
[21:04]  * ivoks smells flushing with DROP as default policy :)
[21:07] <Vog-work> Ahhh.... a classic case of PEBKAC
[21:08] <Vog-work> I was attempting to update changes to iptables while running as a user other than root.... or sudo
[21:08]  * Vog-work needs coffee
[21:12] <Vog-work> thinks a bash script like this will make things simpler... http://pastebin.ca/1359327
[21:13] <ivoks_> modprobing is done via /etc/modules
[21:13] <ivoks_> kernel setup via /etc/sysctl.d/
[21:14] <ivoks_> take care
[21:17] <Vog-work> ivoks: good pointa
[21:22] <lex> buenas
[21:22] <lex> una ayudita
[21:23] <lex> FAIL2BAN
[21:23] <lex> PLEASE
[21:27] <MianoSM> lex is that a question?
[21:27] <MianoSM> if so, I think the answer is: to the left of your "a" key.
[21:28] <jmedina> :D
[21:32] <lex> spanish?
[21:35] <MianoSM> Full sentences are pretty neat-o too. ;)
[21:38] <pjsturgeon> anyone have trouble getting samba shares to follow symlinks in leopard?
[21:38] <giovani2> leopard?
[21:38] <giovani2> this doesn't sound ubuntu-server related
[21:39] <pjsturgeon> its on an ubuntu server, using samba and viewing in leopard
[21:39] <giovani2> heh
[21:39] <pjsturgeon> ;)
[21:39] <giovani2> well if the problem is isolated to a single leopard box ... I don't see how it's an ubuntu issue
[21:39] <giovani2> if it's a samba issue ... it belongs in #samba
[21:40] <pjsturgeon> thats the way with IRC, bouncing between chatrooms. I am setting this up on an ubuntu server and im sure im not the only mac user here
[21:40] <pjsturgeon> I have NEVER recieved a useful answer in samba IRC, and am not aware of a leopard IRC? :p
[21:40] <MianoSM> pjsturgeon: I'm pretty sure leopard and samba have had issues for the past 2 years...
[21:41] <pjsturgeon> ahh, darn
[21:41] <ScottK> giovani2: Until you know it's not related to an Ubuntu specific issue in the samba package I'd suggest it's premature to push people away.
[21:41] <MianoSM> It's been a known issue since November of 2007, possibly earlier. Sorry about that m8.
[21:42] <pjsturgeon> no worries. let me explain my setup and see if anyone has an idea of how to solve. I have a headless ubuntu box acting as an automated torrent grabber and UPnP media sharer. I have a folder that contains 3 symlinks, one to videos, one to music and one to photos all on another HDD. I also have a torrents folder on the ubuntu disk. Each of these folders is a samba share.
[21:43] <pjsturgeon> When I use a GUI to move files around between the shares, it sees it as a remote transfer and does it over the network, which is SLOW!
[21:43] <pjsturgeon> if i mount a samba share to the media folder root, I see symlinks which go nowhere. how to get around this problem?
[21:43] <MianoSM> If you were to ssh into it and move files that way....that wouldn't alleviate your problem?
[21:44] <pjsturgeon> yes indeed it would
[21:44] <pjsturgeon> but it takes me a while to do that. If 10 files have downloaded, organising them via terminal is not fun
[21:44] <Deeps> pjsturgeon: if each samba share is on a separate mount, that is why
[21:44] <Deeps> and afaik there's no way to get around that
[21:44] <Deeps> as it copies the data from the remote store to your machine, and then back again
[21:44]  * MianoSM agrees with Deeps.
[21:44] <Deeps> (Essentially)
[21:45] <Deeps> if you had a single mountpoint that you were shifting between, this issue wouldn't occur
[21:45] <pjsturgeon> bah, I should make torrents folder a symlink too and mount a samba folder directly to my 2nd HDD. That would break none of my scripts and get me under a single mount
[21:45] <pjsturgeon> its not pretty but it just might work
[21:45] <Deeps> if you're transferring between different mountpoints, as far as i know it'll always be slow
[21:46] <Deeps> rather than simply being a case of modifying the paths in the inodes
[21:46] <Deeps> as it actually involves shifting the data around
[21:46] <giovani2> yeah, there's no FXP equivalent for samba
[21:47] <Deeps> if you try with a windows box shifting data between 2 shares, it'll be slow there too i think
[21:47] <Deeps> as it still involves moving the data
[21:47] <pjsturgeon> not sure why i didnt put torrents folder on the 2nd HDD in the first place actually. nevermind, i have my solution! one of those "figure it out as you explain it" problems
[21:48] <Deeps> if you still have 3 seperate shares and mountpoints, it'll probably still be slow
[21:49] <pjsturgeon> it wont be anymore. the issue was i couldnt mount 1 to A) the media folder (containing a few  symlinks + a real folder) or B) the 2nd hard drive. if all folders are on the HDD and all have symlinks on the first drive, i can set samba to look at the 2nd HDD and problem solved :)
[21:49] <pjsturgeon> thanks anyhow guys
[21:53] <thewrath> okay i am back
[21:54] <thewrath> lol
[21:56] <Vog-work> pjsturgeon: my main problem with samba and lepoard is that when you have multiple users using one share changes one user make are not seen by a user who already has the directory open until they reconnect to the smb share.
[21:57] <Vog-work> has somehting to so with the way that lepoard chches the contents of the directory
[21:57] <Vog-work> ^^caches
[21:57] <uvirtbot> Vog-work: Error: "^caches" is not a valid command.
[21:57] <pjsturgeon> i noticed a delay on file changes, but i dont think it waits for a reconnect. they pop up after a while for me
[21:57] <pjsturgeon> haha, you invoked the bot
[21:58] <Vog-work> lucky you, I work with a bunch (200 +) of clueless technophobe reporters who can't be bothered to reconnect to see a new file recently added to the share.
[21:59] <pjsturgeon> that ius unlucky! just little old me here on a home network so its a non-issue really
[21:59] <Vog-work> Had to make a apple script to periodically reconnect to the share.
[21:59] <pjsturgeon> im sure they'll get there in they end >.<
[21:59] <pjsturgeon> if only apple bothered turning up to the interoperability meetings like the other big players
[21:59] <Vog-work> Yeah they do. BUt not without hassling me first
[21:59] <pjsturgeon> but thats a rant for another channel
[22:00] <Vog-work> lol
[22:00] <Vog-work> well... when dealing with samba and interoperability, it not like M$ shows up either...\
[22:01] <Deeps> not really in their interests to, it should be in apples
[22:02] <thewrath> when you mount a drive how do you make sure the permissions or the owner of that drive?
[22:03] <pjsturgeon> thewrath: I use a single login who owns the files anyway, but if you use "admin list" you can force all those users to act as root
[22:03] <pjsturgeon> warning, that'll only work if the disk is in a unix friendly format, lost 3 days trying to get it working on a fat 32 >.<
[22:04] <pjsturgeon> thewrath: ignore me, we arent talking samba anymore are we :$
[22:10] <thewrath> an honest answer anyone?
[22:44] <kpettit> I had some network speed issues and resolved them by changing some "ethtool" options.  Where is the proper place to put those changes for boot?  All the docs I've found point to some older sysconf directory that isn't in ubuntu 8.10
[22:49] <jmedina> kpettit: in /etc/network/interfaces, something like this:
[22:50] <jmedina> post-up ethtool -K eth1 tx off
[22:50] <jmedina> in the iface options
[22:50] <kpettit> ok
[22:51] <kpettit> thanks, I like that alot better than some of the other suggestions I've seen on the net.  Clean and simple
[22:51] <kpettit> Is ethtool options better to do as a pre or post-up?
[22:51] <jmedina> I use it in my machines, when they dont work properly, for example to change speed, or disable tcp offloading
[22:52] <jmedina> and prevent TCP bad checksums in xen enviroments
[22:52] <kpettit> man I was getting 16-32k down/up speeds from my 10MB fiber until I did that change.  It couldn't auto-negotiate correctly
[22:54] <jmedina> kpettit: I having some problems with Windows paravirtualized drivers in a fully virtualised xen enviroment
[22:56] <kpettit> sounds fun
[23:01] <thewrath> hey all
[23:04] <bitsbam> if i plug in a usb storage device, how do i know what /dev/whatever it was assigned so i can mount it?
[23:04] <bitsbam> thewrath: hey
[23:04] <jmedina> bitsbam: most of times you can use 'dmesg'
[23:05] <kpettit> you can type dmesg or tail /var/log/messages
[23:05] <bitsbam> yup, there it is, thanks kpettit
[23:05] <unit3> Hey, just backported the mysql-server-5.1 package to hardy for use in a cluster, and discovered all the NDB/Cluster stuff is missing.
[23:05] <bitsbam> jmedina: was in dmesg
[23:05] <kpettit> I usually like to "tail -f /var/log/messages" so I can see what goes on when I plug/unplug things
[23:05] <unit3> Is there some docs as to what's going on with 5.1?
[23:06] <bitsbam> kpettit: yep, going to have to add it to conky now
[23:06] <unit3> or anyone who knows?
[23:06] <jmedina> unit3: what about launchpad?
[23:06] <jmedina> I read apost about mysql 5.1 in universe in the ubuntu server blog
[23:07] <unit3> Oh, that might be what I'm looking for.
[23:07] <unit3> I'll check there.
[23:08] <unit3> hrm... just says it's available, no info on why clustering is MIA.
[23:10] <jmedina> unit3: you can file a bug in launchpad
[23:10] <unit3> Yeah, maybe the easiest. Just make my life harder, since I'm supposed to be rolling this cluster out in the next week or so. :(
[23:10] <unit3> But I'll start with that, and see if someone can let me know what's going on.
[23:11] <jmedina> https://bugs.launchpad.net/mysql-server
[23:11] <ScottK> unit3: If you're planning on production using 5.1, you're probably on shaky ground anyway.
[23:11] <ScottK> jmedina: Wrong package.  5.1 is a separate package.
[23:12] <jmedina> ScottK, you are right, I just remember that after paste
[23:12] <unit3> ScottK: I was under the impression they'd worked out the launch problems?
[23:12] <unit3> Maybe I'll just drop back to 5.0, and make sure I've got enough RAM in the systems. :P
[23:12] <ScottK> unit3: It's pretty new, so I'd want to test it pretty hard first.
[23:12] <ScottK> 5.0 is safer and more supported.
[23:13] <unit3> Yeah. Just the NDB stuff is also a lot more limited, from what I've seen.
[23:13] <unit3> Oh well, it looks like it'll be the better option for now.
[23:13] <unit3> I can look at upgrading to 5.1 once Jaunty's out and more people are using it, I guess.
[23:15] <olcafo> kpettit, I find "tail -f |dmesg" has more useful information. But that might be overkill.
=== Nicke_ is now known as Nicke