/srv/irclogs.ubuntu.com/2009/03/29/#ubuntu-server.txt

Begs	its odd, a while after i run iptables -I INPUT -s ! 192.168.0.0/255.255.255.0 -j REJECT i stop being able to access the server using cifs from my windows box, and as soon as i delete the rule it works again	00:15
Begs	everything else works though	00:15
Deeps	may need to allow broadcast traffic too?	00:19
Begs	how do i do that, its just odd how it works fine for a while then stops?	00:21
Deeps	allow traffic to/from 255.255.255.255 as well?	00:26
Begs	so just run iptables -I INPUT -s ! 192.168.0.0/255.255.255.255 -j REJECT instead of other command	00:27
Deeps	no, the second param is the netmask, assuming you want traffic from 192.168.0.* you need it as defined earlier	00:29
Deeps	that said, broadcast traffic appears from the source anyway, so it's not that	00:29
daddy242	Does anybody know how to get rid of complaints like Does anybody know how to get rid of apparmor complaints like requested_mask="::r" denied_mask="::r" name="/lib/tls/i686/cmov/libdl-2.7.so" pid=6792 profile="null-complain-profile" namespace="default" for a sshd profile for a sshd profile	00:40
daddy242	/msg nickserv register m0v135 treymul@gmail.com	00:49
ScottK	daddy242: I'd suggest a different password next time.	00:50
Deeps	and possibly a different irc client / terminal configuration	00:50
giovani	not to mention more careful observation of 5 spaces	00:51
daddy242	good call	00:51
CppIsWeird	is there any pfsense like package for ubuntu-server?	00:52
* genii struggles with apcutils		00:58
daddy242	Does anybody know how to get rid of apparmor complaints like requested_mask="::r" denied_mask="::r" name="/lib/tls/i686/cmov/libdl-2.7.so" pid=6792 profile="null-complain-profile" namespace="default" for a sshd profile	00:58
Sam-I-Am	you can edit the apparmor profiles	02:01
Sam-I-Am	/etc/apparmor.d or somesuch	02:02
daddy242	I have done a lot of editing, the files in question have already been given read rights to sshd, but i am getting these errors due to this other profile	02:03
Sam-I-Am	did you edit the null-complain-profile ?	02:04
daddy242	no, I'm not sure what that is	02:07
daddy242	I don't even have anything like that under apparmor.d,, where would I find it	02:08
Sam-I-Am	something is telling it to gripe by default about stuff	02:10
Sam-I-Am	alternatively, just disable apparmor, its irritating and broken :P	02:10
Sam-I-Am	have you googled for that error?	02:10
daddy242	yes and I haven't been able to find anything helpful	02:12
Sam-I-Am	meh	02:14
Sam-I-Am	i guess you could make a profile to specificially consider that file in question	02:17
Sam-I-Am	question is... is apparmor breaking something or just griping?	02:17
ScottK	Sam-I-Am: What's broken about our apparmor and have you filed bugs?	02:19
Sam-I-Am	its more like the default profiles for apps	02:19
Sam-I-Am	i spent almost a day trying to figure out some weirdness with slapd only to find out it was a misconfigured apparmor profile	02:20
ScottK	There are certainly sometimes problems with them.	02:20
Sam-I-Am	turns out there was a bug filed for it already, but the subject for it was a bit misleading... nor did i realize it was apparmor at the time.	02:20
CppIsWeird	is there any package that would setup a ubuntu-server to something similar to m0n0wall or pfsense?	02:23
Sam-I-Am	hmmm, i havent seen one	02:24
giovani	CppIsWeird: nope, but firewalls in ubuntu are pretty simple: https://help.ubuntu.com/8.04/serverguide/C/firewall.html	02:58
=== UdontKnow is now known as ObiWanQueNoob
genii	Any way to send a network alert when ups kicks in?	04:06
genii	(so all the other boxes can nicely shut down when there's like 2 minutes left of power for instance)	04:07
goksu	hello I need help on installing ubuntu on HP Prolient ml350 G5	04:13
twb	genii: I guess that would be up to nut.	04:14
goksu	the installation goes just fine from ubuntu-server-64.iso. but I can not boot after install. ml350 hangs after reboot saying "attempting Boot from hard drive c:".	04:14
twb	goksu: that sounds like the MBR wasn't installed, since it refers to "drive c:" which GNU/Linux never does.	04:14
goksu	twb: how do I fix it?	04:22
twb	By installing the bootloader, I imagine	04:22
goksu	ubuntu installs well from cd. all the way to remove installation cd prompt.	04:23
twb	That's assuming I've diagnosed the error correctly, of course.	04:23
goksu	shouldnt the install cd load that too?	04:23
goksu	I am thinking along the same lines.	04:23
twb	goksu: it should	04:23
friartuck	goksu did you do custom partitioning?	04:23
goksu	I have 4 hdds. I made raid5.	04:23
twb	goksu: hardware or md raid5?	04:24
friartuck	goksu lvm raid5?	04:24
goksu	no I did not. guided with lvm.	04:24
PhotoJim	I missed the problem. what is it?	04:24
twb	PhotoJim: 14:17 <goksu> the installation goes just fine from ubuntu-server-64.iso. but I can not boot after install. ml350 hangs after reboot saying "attempting Boot from hard drive c:".	04:24
PhotoJim	twb: Thanks.	04:24
goksu	:)	04:25
PhotoJim	I had a problem with RAID1 (software) not enabling quickly enough for a successful boot. adding a rootdelay solved it. but your problem is not what mine was, alas.	04:25
goksu	so after pluging the 4 hdds. I did a raid5 from the boot F8 or F120 I guess.	04:25
goksu	no. I have not installed a software raid. because I dont know how to do that. and the raid5 install I did I did before the ubuntu cd got inside the machine.	04:26
twb	goksu: ok, so you are using hardware raid?	04:27
goksu	yes hardware raid. raid5.	04:27
friartuck	goksu did ubuntu install see 4 drives or 1?	04:28
goksu	I have 4x 146GB drives. the total now with raid5 is about 410GB. so yes I t did.	04:28
friartuck	goksu see 1 drive @410GB?	04:29
goksu	yes.	04:29
goksu	should I have done a raid5 on 3 drives and set the fourth as a hot spare?	04:30
friartuck	no.	04:31
goksu	ok. so Ubuntu installs from cd ok. but I can not boot after the cd is removed when asked.	04:32
karl86	i used the ubuntu server guide to set up postfix with tls, but mail clients are complaining that the certificate is out of date. Can anyone point me in the direction in which I am going wrong?	04:32
friartuck	goksu setting up hardware raid varies from card to card. it's fairly easy to screw up. I would check the raid card manual.	04:32
twb	I hate hardware raid	04:33
twb	Especially fakeraid	04:33
friartuck	goksu sounds like problem with raid card and not ubuntu. guessing.	04:33
goksu	friartuck: I'll go through the manual again. but shouldnt ubuntu have said so when I last installed? It even asked to removed the old swap partition and all from the previous install attempt.	04:34
genii	boot from raid5 is often problemmatic	04:34
goksu	geni: hmmm. that means not possible for ubuntu or needs workaround?	04:35
friartuck	goksu well, when hardware raid is done right...the OS thinks there is only one drive.	04:35
goksu	friartuck: yes that what I know.	04:35
goksu	till what time can I count on you guys being around?	04:36
twb	goksu: it doesn't work that way.	04:37
twb	goksu: people here are from all over the world, and they come and go individually. There's no roster.	04:37
friartuck	goksu this guy did it with guided partitioning and no lvm: http://www.cylindric.net/blog/2007/09/11/ubuntu-on-a-compaq-ml350-server maybe reinstall and try no lvm...	04:38
goksu	twb: cause yesterday I couldnt find anyone. being the weekend and all.	04:39
twb	Shrug	04:39
goksu	its good to know. :)	04:39
twb	If you need support bad enough there are people you can pay	04:40
twb	Otherwise you take what you get	04:40
friartuck	kick it	04:40
goksu	twb: what I try to do here is to get a linux server into the company. they insist on getting everything with windows. and they cant do it properly even then.	04:40
PhotoJim	goksu: commercial Linux support is available from quite a few places. there are tons of advantages to running a server on Linux versus Windows, but whether it makes sense at a given company depends on a lot of things.	04:41
goksu	ok some background. I am a civil engineer, lead planning engineer here in qatar (thats gmt+3 so 06:30 now). I have been trying to get most of my work onto the linux side.	04:42
goksu	I have already moved my two laptops to ubuntu. and what I have been trying with windows it is easier with linux. the learning curve is higher but I like to read manuals anyway. :)	04:43
genii	goksu: I did not see your Q immediately, it did not flag to me due to mis-spelling of ny nick. A usual workaround is to have a small un-raided /boot which then goes to the main system in a raid5 layout	04:43
genii	A hardware raid1 is also OK, depending.	04:44
friartuck	goksu try the install without lvm. just use regular guided. leave the raid5.	04:44
twb	genii: he's using hardware raid5, so a separate /boot shouldn't be necessary.	04:45
goksu	friartuck: I will try without lvm now.	04:45
genii	twb: Even hardware raid 5 controllers often do not allow for boot. The adaptec series has a few like this for instance	04:45
twb	genii: that's retarded	04:46
genii	I think it's an MBR issue when the data is being striped	04:46
twb	everything I hear about hardware raid makes me sad	04:46
friartuck	twb that's a shame, it makes for very fast disk access and reliability. raid is good.	04:47
twb	We bought a fancy IBM rackmount box with hotswap drives for a customer, and only later found out that you had to ask specially if you wanted the hardware raid firmware to support RAID5	04:47
twb	friartuck: I have no problem with md RAID, I use it a lot.	04:48
genii	twb: That totally sucks	04:48
genii	(the firmware issue)	04:48
twb	friartuck: but hardware RAID is like SCSI, you have to have the right kind of jewelled knife and it has to be a full moon and shit	04:48
twb	genii: I think that was also one of the stupid raids where you need a tainted driver to make it appear to the kernel as a single drive	04:49
genii	Ah, not true hardware raid then	04:49
twb	The other reason I like md raid is that I don't need to buy spare copies of the raid controller, because md raid is md raid, and any linux can read it with any kind of controller	04:49
twb	genii: bloody wacky hardware raid, at least	04:50
twb	genii: stupid IBM...	04:50
* genii throws a rock at Big Blue for twb		04:50
goksu	ok I got this from the boot setup menu F10: boot disk status: passed-disk present, boot disk ready: pass -disk ready, verify boot sector: pass-valid os boot sector present.	04:50
genii	Hm, perhaps it supports MBR	04:50
goksu	so I a am now starting the without lvm regular guided install from scratch.	04:50
twb	But sata is always hot pluggable, right, so it's TOOOOTALLY safe to just open a cheap-ass whitebox tower and add/remove drives while it's running	04:50
twb	>duck<	04:51
genii	twb: I'm moving to combination SAS/SATA so I can eventually move it all to SAS	04:51
twb	SCSI's just too expensive to justify for me.	04:52
friartuck	sata 3Gb/s are nice these days.	04:52
genii	twb: I definitely agree on the price issue	04:54
Alex_21	Yeah, the price of what?	04:54
matthew-21	Hi, could someone please tell me how to configure what port apache listens on? My isp blocks port 80.	04:54
genii	Alex_21: SCSI drives	04:54
genii	matthew-21: /etc/apache2/ports.conf	04:55
matthew-21	Thank you.	04:55
genii	np	04:56
Alex_21	Oh, Matt, use "Sudo vi /etc/apache2/ports.conf"	04:56
goksu	meanwhil I have another question.	04:56
goksu	I am running ubuntu desktop edition on my laptops.	04:56
Alex_21	Got to Ubuntu for Laptops and Desktops	04:57
Alex_21	Lol, we don't mind here, but you'll get better support over there	04:57
goksu	I have tried to install the server edition onto them from scratch because all I needed was the server apps. installation went ok but at first reboot I got kernel error.	04:57
friartuck	goksu strange, I'm running server 8.10 on a dell 810 np.	04:58
goksu	my question is: does that happen often? the server edition is geared for servers I understand but still it sould boot from a centrino 1.6 and a amd 1.6	04:59
PhotoJim	server 8.10 on a dell poweredge 2450 here at home. other than that RAID1 boot issue, which was pretty easily fixed, no problems at all.	04:59
friartuck	goksu I've installed server 7x and 8x on all kinds of old desktops with no issues.	04:59
goksu	friarduck: I have an hp compaq nx7010 centrino 1.6 and an MSI m673 amd 1.6 running on 1.5 ram.	05:00
goksu	both installe dok but no reboot. anyway. I'll ask again when I do a server install on them. :)	05:01
friartuck	goksu did you use 32-bit on those?	05:01
goksu	friartuck: I used 32 bit for the centrino. and 64 bit for the amd turion 64 1.6.	05:03
friartuck	goksu and neither booted?	05:03
friartuck	goksu here's recent post on same hardware, install worked: http://ubuntuforums.org/archive/index.php/t-1047447.html	05:04
goksu	friarduck: neither booted. I was a little surprised as one is an old but good laptop, the other one is new but not very high end.	05:04
genii	PhotoJim: I have a couple of those 2450, nice boxes	05:06
goksu	friarduck: on the web page you sent. it does not say server. I couldnt boot server editions. but the desktop editions booted without any problems.	05:06
PhotoJim	genii: I have two, but one isn't running (has CPUs but no drives or RAM). got them cheap, $50 for the pair. Very pleased so far.	05:07
goksu	I dont suspend or hibernate. they are left open 24/7.	05:07
goksu	one is anyway.	05:07
matthew-21	Is there a way to share things on an external harddrive using apacheÉ	05:07
PhotoJim	matthew-21: apache is a web server, it's not meant to be a file server. but you can do anything on an external drive that you can do on an internal one, using Linux.	05:08
friartuck	goksu that's strange. server edition should work on anything that desktop works on. I think Murphy's Law having fun with you.	05:08
PhotoJim	goksu: you could always try using the desktop alternate install CD. but in theory it shouldn't matter.	05:10
matthew-21	Yes, but my linux server really only has enough room for the os and a few packages and I am not sure how to share web files that are on my external harddrive.	05:10
PhotoJim	matthew-21: you can mount filesystems anywhere you like. apache's web content is stored at /var/www. so if you mount an external hard disk partition at /var/www, your web server is using your external drive.	05:11
friartuck	matthew-21 make a soft link (ln -s) in /var/www?	05:12
PhotoJim	That's option 2.	05:12
PhotoJim	and option 3 is to get a decent-sized hard disk. terabyte drives are $100-ish US. much smaller drives that are still really quite large are much less.	05:12
friartuck	1TB drives are freakin cheap now.	05:13
goksu	PhotoJim: I did a desktop install then added the lamp packages. I really like linux flexibility.	05:13
Alex_21	Alex_21: He only has a 10 GB Disk because that is all his web host provides	05:13
PhotoJim	goksu: Linux is really awesome. the learning curve is sometimes steep, but I admire it more and more all the time.	05:13
goksu	friartuck: I have an acer easystorage 1TB. upgraded to 4TB.	05:13
PhotoJim	friartuck: they're cheap enough that I have a pair of them on RAID1 for a home server, when I don't need a quarter of that much space. but it makes no sense to not have the space these days. I can grow into it.	05:14
Alex_21	Alex_21: That was about Matthew-21	05:14
friartuck	goksu nice.	05:15
matthew-21	énick matthew211	05:15
Alex_21	Ok, Matthew-21: where is his external drive mounted	05:15
matthew-21	woops	05:15
friartuck	PhotoJim I'm sure you will fill that volume :).	05:16
Alex_21	I'll be right back	05:16
PhotoJim	friartuck: I have a feeling you're right. :)	05:16
Alex_21	Where is a Hard Drive mounted by default	05:18
Alex_21	? Please	05:18
genii	If it's not a system drive usually somewhere under /media	05:19
friartuck	Alex_21 look in /media	05:19
PhotoJim	Alex_21: but you can arrange to have it mounted wherever you like.	05:20
friartuck	Alex_21 you type "mount" with no arguments to see what's mounted.	05:21
Alex_21	Ok	05:21
Alex_21	Thanks	05:21
island_swimmer	Is there someone named Matthew-21 or something here?	05:23
island_swimmer	Someone who was looking for help with sharing files	05:23
goksu	PhotoJim: believe me you grow into it.	05:23
island_swimmer	I am doing the same thing	05:23
island_swimmer	I was hoping to help. Maybe PM if that was ok	05:24
friartuck	goksu you in Qatar?	05:25
goksu	friarduck: yes I am.	05:26
friartuck	goksu IT jobs there?	05:26
goksu	ubuntu install is asking Activate serial ATA Raid devices yes/no. I say yes.	05:26
goksu	friarduck: yes plenty. even the government is looking for IT guys. its growing fast here. not enough qualified ppl.,	05:27
goksu	friarduck: but funny they have only one IP. the whole country goes out on one IP.	05:28
goksu	ok ubuntu instal says Select disk to partition.	05:29
friartuck	goksu strange. I was working for financial services co. when market tanked. maybe I'll head that way :). Qata nice place?	05:29
friartuck	goksu how many disks does it present?	05:29
goksu	SCSI.CCISS (-,0,0) (cciss/c0d0) - 440.3GB Compaq smart array.	05:30
friartuck	goksu I'd say your good to go.	05:30
goksu	friarduck: It is a very safe place. you leave your back on the car in a garage and come back 2 hours later and it still is there.	05:30
friartuck	goksu ha ha. nice.	05:31
goksu	ok it removes logical volumes root, swap_1 and volume group etc..	05:31
genii	Hm. Compaq	05:32
goksu	you can find anything you look for. but everything takes time.	05:32
friartuck	goksu I look for job...that's taking long time. =-O	05:32
goksu	partitions formating....	05:33
goksu	so the hdds work ok.	05:33
island_swimmer	How do I find drie that are plugged in but not mounted?	05:34
island_swimmer	Please	05:34
goksu	friarduck: you are welcome here.	05:34
goksu	THE FORMAT ÝS STUCK ON 33% sorry caps..	05:34
island_swimmer	No, that is fine. It'll pass it eventually	05:35
goksu	there are a lot of ppl who work here and come and go as needed.	05:35
island_swimmer	How do you find out what drives that are external can be mounted if they aren't	05:35
island_swimmer	? Please	05:35
island_swimmer	Lol	05:35
goksu	island_swimmer: I dont know. I plug, and it shows. try lusb	05:36
goksu	if it does not I unplug and replug. but thats obvious.	05:37
friartuck	goksu you may need to run a consistency check on the logical volume in the raid setup. it may need to be initialized or something.	05:37
friartuck	island_swimmer type "mount" to see what's mounted. look in /media for external usb drives.	05:37
goksu	friartuck: it is "installing the base system" now. so ok I guess.	05:37
island_swimmer	This is a CLI Command-Line install of Ubuntu with no other packages	05:38
island_swimmer	Except some ssh and gui tools	05:39
island_swimmer	And no it isn't moiunted at all	05:40
island_swimmer	Mounted, ... Sorry, nor is it in "/media"	05:41
island_swimmer	What can I do	05:44
island_swimmer	Lol, ... Please	05:44
friartuck	island_swimmer do "lsusb" and "mount" and post in pastebin.com	05:45
genii	island_swimmer: sudo fdisk -l should show all the partitions. Likely an external will be sdb1 sdb2 sdc1 sdc2 or so on. Also when: mount is issued it will not be shown as boing mounted anywhere. You could try after finding what partition is something like: sudo mkdir /media/sdc2 && mount /dev/sdc2 /media/sdc2 as an example	05:45
genii	If it completes successfully (in this example for second partition of sdc) then: ls /media/sdc2 would show the disk contents	05:46
genii	island_swimmer: Also if the filesystem on it is not native linux you will need to have filesystem driver for whatever it contains and also specify that in mount command like: mount -t ntfs-3g /dev/sdc2 /media/sdc2 or similar	05:49
island_swimmer	How do you get a wd's file type?	05:54
island_swimmer	It is a WD HD	05:54
island_swimmer	Western Digital	05:54
island_swimmer	Mybook	05:54
genii	island_swimmer: The: sudo fdisk -l command should have shown you that	05:57
genii	island_swimmer: eg in my case: dev/sda1 * 1 19210 154304293+ 83 Linux shows the drive is Linux (ext3)	05:58
goksu	ok Ubuntu server Install onto prolient ml350 G5 raid5 does not work. I can not reboot after installation. I still get attempting boot from hard drive (c:)	05:59
goksu	it was an install attempt with no lvm. just regular guided.	06:00
island_swimmer	It looks like SDA1 is part of the OS on the Internal Hard Disk. Is that right?	06:00
genii	goksu: As a fast guess I'd say they have some custom MBR which still says something like C: instead of the MBR being based on GRUB	06:00
genii	island_swimmer: Correct	06:00
goksu	genii: so what do I do now?	06:01
genii	goksu: Did you install grub to the mbr of the first hd ?	06:01
goksu	genii: all I did was install the cd. nothing else. so if the cd did not install then grub did not install.	06:02
island_swimmer	Well, I tried the command and it only shows my internal HD	06:02
goksu	genii: I did not specifically install grub.	06:02
island_swimmer	Is ther a package that has all the drivers for every file type on it?	06:02
genii	island_swimmer: Then it doesnt see the drive. Does it connect by ethernet wire or by usb, or firewire, or what?	06:03
island_swimmer	USB 1.1	06:03
genii	island_swimmer: There isn't a single metapackage I know of that is some "all in one" for filesystems supprt, sorry	06:03
friartuck	goksu that's strange, I think it's something with the raid/bios setup and probably not to do with ubuntu install. my guess.	06:03
island_swimmer	It is some Windows compatable one I know, but I don't know which one	06:04
genii	goksu: Can you make a single small raid1 and then the rest raid5 in bios/controller ?	06:04
island_swimmer	Is that why it won't see the drive?	06:04
genii	island_swimmer: If fdisk doesn't see it then it's something at a hardware level and not at some software level like filesystem type or such	06:05
island_swimmer	Ok	06:05
island_swimmer	I'll check	06:05
genii	goksu: If so, suggest to install /boot and grub to the raid1and the system onto the raid5.	06:06
goksu	genii: ok. if nothing else will work. bu I really did not want to have to do a raid1. :S	06:07
genii	goksu: The MBR of a raid1 will be like a normal disk but just twice, so it works with grub. The MBR of a raid 5 can vary wildly	06:08
friartuck	goksu genii I would check the system bios, that's separate from the raid setup program.	06:08
genii	friartuck: Yes, that may not be a bad idea. It could be also there is a "hidden partition" with system stuff thats causing it	06:09
friartuck	goksu genii you should be able to do one raid5 volume, I've done it a bunch of times.	06:09
friartuck	goksu genii but you have system bios program and raid card setup program to deal with.	06:10
goksu	the ml350 is brand new from the box. I dont think there is any residue in the hdds.	06:11
genii	friartuck: He has no probs making a raid5 and ubuntu seeing and installing to it. He has some other probs which seem MBR related since it refers to "drive C:" etc etc	06:11
genii	goksu: Is there some other hd in there not int he raid5 which it might be going to first and trying to boot from?	06:12
friartuck	genii agreed, but maybe there's an onboard raid conflicting with an installed raid card...or maybe bios needs to know about raid card or something.	06:12
goksu	genii there is not.	06:15
genii	goksu: There seems something on it here: http://ubuntuforums.org/archive/index.php/t-80342.html which suggests the initramfs needs to preload a driver called cpqarray	06:16
genii	It's an old thread but perhaps still relevent	06:16
genii	Although this would happen after grub	06:16
friartuck	goksu have you managed to get into system bios program?	06:18
lwizardl	Hi	06:21
goksu	friartuck: yes I think so. everything is factory default. I am rereading the manuals from the hp.com site. they dont have any manuals on the cds attached to the box. :S	06:21
genii	goksu: http://forums13.itrc.hp.com/service/forums/questionanswer.do?admit=109447627+1238304153554+28353475&threadId=1237645	06:22
lwizardl	would it be possible to build a Ubuntu Server that acts as the network firewall and also auto scans everything for malware?	06:22
genii	goksu: Same problem you have answered by their tech support	06:23
friartuck	genii goksu so you think he should boot off cd and do grub install?	06:24
genii	friartuck: Thats what I'd try, yes	06:25
goksu	genii friartuck I'll do that after I reread the manual.	06:25
goksu	genii friartuck so I do a "grub-install /dev/cciss/c0d0p1" ?? from a boot from a live cd and from terminal?	06:28
genii	goksu: I'd use the name of the drive you installed to, I think it was different than that one	06:29
friartuck	genii goksu how would he get the physical? cxdxpx?	06:30
genii	friartuck: fdisk should still list it. I'm gonna scroll up here, he mentioned disk name earlier	06:31
genii	"<goksu> SCSI.CCISS (-,0,0) (cciss/c0d0) - 440.3GB Compaq smart array."	06:31
goksu	genii friartuck so it is the same command then.	06:32
genii	the "p1" on their command is partition1. I'd try just the disk name without partiton specified	06:32
friartuck	goksu genii I agree. try grub-install /dev/cciss/c0d0	06:34
friartuck	genii goksu I've only installed grub with gentoo. just checked the docs and it leaves off the partition there too.	06:37
genii	goksu: Any joy yet?	06:50
goksu	genii nope not yet. I am looking for the desktop cd. that one was live.	06:51
* genii makes more coffee		06:52
MusicGenious	wow, lots o people	06:52
MusicGenious	anyone wanna help me set up a server?	06:53
goksu	does it matter if the desktop cd is a 32 bit or not?	06:53
friartuck	MusicGenious here's a good place to start: https://help.ubuntu.com/8.10/serverguide/C/index.html	06:53
MusicGenious	quick question, which version should i use?	06:54
MusicGenious	lts or newest release?	06:54
goksu	burning 64 bit desktop for grub-install	06:55
MusicGenious	i wish there was a puppy linux server edition but ughh nope	06:55
friartuck	goksu good idea.	06:55
MusicGenious	8.10 or 8.04?	06:55
MusicGenious	im putting it on a compaq presario sr1115cl or something	06:55
twb	14:59 <Alex_21> Oh, Matt, use "Sudo vi /etc/apache2/ports.conf"	06:56
twb	I recommend sudoedit instead, since it reduces the amount of stuff that is escalated.	06:56
friartuck	MusicGenious it's up to you. 8.10 has new packages. 8.04 has longer support.	06:56
MusicGenious	will they both allow me to set it up with a dns hostname?... and is that free?	06:57
friartuck	MusicGenious yes	06:57
MusicGenious	i know ubuntu is free, but are host names?	06:57
twb	MusicGenious: or your own network, certainly.	06:57
friartuck	MusicGenious hmmm...hostname is just the name of you machine.	06:58
MusicGenious	i want access anywhere	06:58
MusicGenious	like if im at school or wherever	06:58
twb	MusicGenious: then you probably just want to use a gratis dynamic dns service, so you will have something like musicgenious.ath.cx or musicgenious.dyndns.org	06:58
MusicGenious	cuz im running on a home network and i got the whole 192.168.x.x thing going lol	06:58
MusicGenious	will that be free?	06:59
twb	That will be zero cost.	06:59
MusicGenious	WORD!!!	06:59
twb	i.e. free of charge.	06:59
MusicGenious	and using this server will let me open and save things to it from wherever?	06:59
twb	MusicGenious: that will give your router a permanent FQDN. You would then use port forwarding to make services visible from the internet.	07:00
MusicGenious	ok, that will work, but will i be able to save files to it?	07:01
MusicGenious	like if im at school and i do some homework and i wanna upload it, will i be able to do that?	07:01
Alex_21	Thanks for your help	07:02
Alex_21	Good night	07:02
twb	MusicGenious: if you expose that service, and neither you ISP nor your school block your access, then sure.	07:03
friartuck	MusicGenious the issue is security. making a server available on the internet opens a can of worms.	07:03
twb	friartuck: good point.	07:03
MusicGenious	aka people can do whatever they want to it?	07:03
twb	MusicGenious: that depends on your security model.	07:04
friartuck	MusicGenious if you don't know about security, then yes.	07:04
twb	For example, if you enable remote ssh access via passwords instead of keys, then anyone on the internet can just keep trying passwords until they guess what yours is. Then they have full access to your system running as your user.	07:04
MusicGenious	basically heres what im using it for besides my personal use. i have friends over and we record music, and i wanna upload all of our stuff so they can access it and show family and friends and stuff, it'll save on the cost of burning a crap load of cd's lol	07:05
twb	MusicGenious: you realize that is almost certainly a violation of copyright law?	07:05
friartuck	twb looks like he's talking about originals...	07:06
MusicGenious	what is a violation of copyright law? letting people download the music ive recorded that i made myself?	07:06
MusicGenious	im not sharing other peoples music, im sharing mine	07:06
twb	MusicGenious: ah, if it's your music, that's OK.	07:06
MusicGenious	hence musical genius lol	07:06
friartuck	MusicGenious not for originals, just don't share Metallica. :)	07:06
MusicGenious	yeah or linkin park lol	07:06
MusicGenious	m shinoda isnt down with that lol	07:07
twb	Technically copyright only applies to creative works. You could argue that Metallica's albums aren't ;-P	07:07
twb	Aaaanway	07:07
friartuck	ha ha! not since black	07:07
MusicGenious	btw, if you guys are interested www.myspace.com/andyblankfield take a listen, feel free to critique lol	07:07
MusicGenious	lol	07:07
twb	friartuck: actually I think their best work was their covers album, garage inc.	07:08
friartuck	twb Cliff Burton fan?	07:08
MusicGenious	thats just me, but im trying to start a music club or whatever and make an album called collaboration generation	07:08
friartuck	Cliff'em All?	07:08
twb	friartuck: shrug	07:08
twb	friartuck: I don't know much about art.	07:08
twb	I think we've wandered off-topic.	07:09
MusicGenious	nahh im waiting for the server edition to dl	07:09
MusicGenious	btw how long should this take to set up?	07:09
goksu	ok ubuntu desktop 64 bit live cd book ok. :) pretty screen :)	07:09
twb	MusicGenious: you can do an install just using a mini.iso	07:09
MusicGenious	roughly	07:09
friartuck	twb Cliff Burton was original bass player in Metallica. Yeah, it's way off topic.	07:09
MusicGenious	its not hooked up to the internet, im using a usb adaptor at the moment	07:10
twb	MusicGenious: ah, fair enough.	07:10
MusicGenious	thats another thing, will i be able to use ndiswrapper so i can run it from wireless?	07:10
lwizardl	would it be possible to build a Ubuntu Server that acts as the network firewall and also auto scans everything for malware?	07:11
twb	MusicGenious: ndiswrapper will work as well on Ubuntu Server as it does on Ubuntu.	07:11
MusicGenious	never got it working on ubuntu lol	07:11
twb	MusicGenious: precisely.	07:11
MusicGenious	but it works on puppy linux... weird	07:11
twb	MusicGenious: I recommend you pay more attention to Linux support when purchasing hardware in future	07:12
friartuck	lwizardl take a look here: http://www.ipcop.org and here: http://www.smoothwall.org	07:12
twb	lwizardl: that depends on how you define `everything' and `malware'.	07:12
MusicGenious	lol, well its not a big deal, its just more convenient... but if i can figure this one out i should be able to build a puppy linux server edition myself lol	07:12
twb	Really, the right way to get rid of malware is to take Windows away from your users.	07:13
MusicGenious	lol	07:13
lwizardl	twb, well i have a few windows users on my desktop and i would like to make sure that they stay safe	07:13
twb	lwizardl: that's not really possible. The best you can achieve is a holding action.	07:14
lwizardl	twb, i have enough trouble with her on windows she's almost 60 years old	07:14
friartuck	lwizardl firewall from scratch is long story. ipcop and smoothwall is short story.	07:14
twb	friartuck: why not ufw?	07:14
twb	friartuck: ultimately they're all just wrappers on top of iptables	07:14
lwizardl	friartuck, i've looked at the ipcop stuff but i would like to also have Tor type setup on the same server machine	07:15
friartuck	twb true, but ipcop and smoothwall rock. ipcop has plugins for snort and all kinds of stuff. you can do it by hand...but if one is asking in a chat-room then doing by scratch is long ways off.	07:16
friartuck	lwizardl tor server on a firewall=bad practice.	07:17
goksu	genii friartuck I did a boot with livecd 64bit desktop. then did a "grub-install /dev/cciss/c0d0" (also with c0d0p1) I get message "could not find device for /boot: not found or not a block device.	07:17
twb	Routers are for routing and not services.	07:17
lwizardl	friartuck, i don't want to run a tor server for others to access i just want to have all my connections tunneled through it	07:18
twb	goksu: you need --root-directory=/mnt after mounting your root filesystem on /mnt and your boot filesystem on /mnt/boot.	07:18
twb	Does Tor use tun/tap?	07:18
goksu	twb: could we go step by step? at the terminal I do what exactly?	07:20
goksu	I am not that good with the terminal just yet. :)	07:21
twb	goksu: OK, so you should at present have partitions for the root and /boot filesystems.	07:22
friartuck	twb he just booted off live cd.	07:23
twb	friartuck: that's why he needs to mount the disks	07:23
friartuck	goksu do: sudo fdisk -l and past at pastebin.com	07:26
goksu	twb friartuck I think I need to go step by step. 1. I booted from a livecd 64bit. it booted ok. 2. at the terminal I do what? the sintax escapes me.	07:26
twb	friartuck: it would be better to get /proc/partitions	07:27
friartuck	goksu just cut and paste the output in pastebin.com and hit the send button, then copy and paste the url link in here.	07:30
goksu	http://pastebin.com/d66a1856a	07:30
goksu	thats a cool site. :)	07:31
friartuck	goksu now do: more /proc/partitions	07:32
goksu	http://pastebin.com/d707fd4ec	07:35
goksu	down below the previous post.	07:35
goksu	looks like I need to remake the raid5. I have tried 3 installations and it looks like residue from those.	07:36
friartuck	goksu well, i dunno. try: mount /dev/cciss/c0d0p1 /	07:38
friartuck	oops	07:38
twb	friartuck: er, don't mount it there	07:38
friartuck	not that	07:39
friartuck	twb does he need to make a directory in /mnt ?	07:39
twb	friartuck: I don't bother	07:40
friartuck	twb this is not a production box.	07:40
twb	friartuck: it's only a problem if it's a gentoo livecd	07:40
friartuck	goksu try: mount /dev/cciss/c0d0p1 /mnt	07:40
goksu	friartuck twb it will be a production box when it is properly mounted though.	07:41
friartuck	ha	07:41
goksu	friartuck twb I am at work this is the machine I will transfer my work load to.	07:42
friartuck	goksu if it's mounted, you should see some directories with: ls /mnt	07:43
goksu	friarduck yes it looks like it did mount. I see bin cdrom etc...	07:44
friartuck	goksu do you see boot? ls /mnt/boot	07:47
goksu	friartuck sorry for the typo. :)	07:47
goksu	friartuck ye sit is there.	07:48
goksu	I really need to work on my understanding of the linux file system :/	07:48
friartuck	twb I've only installed grub a few times with gentoo. do you think he needs: grub-install --root-directory=/mnt /dev/cciss/c0d0 ?	07:50
twb	friartuck: yes, that's right.	07:50
twb	friartuck: however check that there's something IN /mnt/boot first	07:50
twb	If that doesn't work, try adding --recheck	07:50
goksu	ok	07:50
friartuck	twb he sees boot in /mnt	07:50
twb	friartuck: well obviously, because the root directory needs an empty dir there so as to mount a separate /boot, if it is a separate filesystem	07:51
friartuck	twb he did regular guided partition. shouldn't be separate	07:52
twb	Fair enough	07:52
goksu	ls /mnt/boot has files in it. also grub.	07:52
goksu	so I go with your command line instruction?	07:52
friartuck	yeah	07:53
goksu	twb friartuck ?	07:53
goksu	ok then. :)	07:53
goksu	friartuck twb I am rebooting now. fingers crossed.	07:56
goksu	friartuck what does you nick mean?	07:57
friartuck	goksu I'm old, single, talk about religion and politics a lot, pot-belly.	07:58
friartuck	goksu friartuck is religious character in Robin Hood.	07:59
goksu	yes wel so? I am 34, working on my pot belly. :) just got married 10 months ago.	07:59
goksu	oh ok.	07:59
goksu	HOOLLYYYSHHHHH.t!! server login: ehehehe	07:59
friartuck	goksu good luck with that. installing grub is easier than woman	07:59
friartuck	goksu yay! thanks for the help twb!	08:00
twb	My workstation used to be called rocinante.	08:01
twb	I was gonna call it bucephalus, but then I thought "let's be fair, pebcak"	08:01
goksu	friartuck twb genii thank you all for your help. I could not have done it without you. :)	08:02
* genii wakes up when his name gets hightlighted		08:02
genii	Ah, got it working then	08:02
genii	goksu: Was the MBR after all then?	08:03
friartuck	genii yes, that post you found did the trick.	08:03
genii	Cool, glad to have been of some service	08:03
friartuck	goksu that was hairy. you deserve some easy installs now!	08:04
goksu	twb: rocinante?	08:05
genii	twb: Nice catch on the --root-directory=/mnt part btw (just checked backscroll)	08:05
twb	goksu: look it up	08:05
goksu	friartuck: both need plenty of patience.	08:05
goksu	friartuck: now that I have the server up. I have plenty of more work to do. I'll attack the laptops next. :)	08:06
goksu	so that was the mbr? so the /boot is the name for the mbr and grub the software we installed in it to kickstart the boot sequence of the OS?	08:07
goksu	twb friartuck genii thank you all for the help. any time you come give a heads up well go drinking on me.	08:10
friartuck	goksu ehh, not exactly. grub is installed in mbr and needs to know where /boot is.	08:10
twb	goksu: stop invoking my name, I'm trying to concentrate.	08:10
goksu	t-w/b ok then. :)	08:12
CppIsWeird	is there any package that would setup a ubuntu-server to something similar to m0n0wall or pfsense?	08:39
friartuck	CppIsWeird ipcop and smoothwall are linux equivalent to monowall and pfsense.	08:42
friartuck	CppIsWeird or you can do netfilter by hand: https://help.ubuntu.com/8.10/serverguide/C/firewall.html	08:46
btm	soren: i see your cobbler git branch hasn't seen activity in 9 months. is deploying ubuntu boxes with cobbler (hardware + virt) still on the horizon?	09:05
dei	Anyone here familiar with DNS? I'm wondering - when I use the Dig command if there should always be an Answer section	09:34
dei	well - if the server is working correctly, there should be an answer section... I assume	09:34
friartuck	dei yeah, there should be an answer. try dig @4.2.2.2 www.google.com to see how it should look.	09:41
=== asac_ is now known as asac
=== ObiWanQueNoob is now known as UdontKnow
kraut	moin	15:37
beawesomeinstead	anyone use jaunty's dovecot-postfix? it looks like postfix doesn't use Dovecot deliver properly out-of-the-box ...	16:52
cemc	beawesomeinstead: what do you mean exactly?	17:00
* giovani installs it in his jaunty vm		17:02
cemc	when you install dovecot-postfix it changes the mailbox_command in postfix/main.cf to use dovecot's deliver	17:03
beawesomeinstead	cemc: Postfix doesn't use Dovecot's deliver out-of-the-box, regarding mailbox_command is specified in main.cf. Another thing is that, as was mentioned on Ubuntu Wiki, Dovecot LDA is default LDA, however postfix still tries to lookup users in it's database (which is not specified) -- IMO, missing <local_recipient_maps = > in main.cf	17:04
cemc	default local_recipient_maps is from passwd file as far as I can tell	17:06
giovani	hmm, it installs mysql, but then maps users locally?	17:07
giovani	that's odd	17:07
cemc	huh?	17:08
beawesomeinstead	giovani: it installs mysql-common since dovecot is compiled with auth-via-mysql support	17:08
giovani	beawesomeinstead: ah ... well they should use it	17:08
beawesomeinstead	cemc: i checked, yeah, default auth db for dovecot in pas so yep, default local_recipient_maps makes sense	17:09
beawesomeinstead	*pam	17:09
beawesomeinstead	but still not sure what's wrong with mailbox_command. dovecot-postfix works smoothly after adding dovecot deliver as a service into master.cf, but...	17:11
beawesomeinstead	* and after adding local_deliver = dovecot in main.cf of course	17:13
cemc	do you get any error messages?	17:14
jpds	kees: Could you possibly look into my merge proposal for apparmor at http://tinyurl.com/c5hjlk ?	17:16
cemc	cemc: I just tried installing dovecot-postfix on my jaunty vm, and sent a mail to the local user, and it got delivered	17:17
beawesomeinstead	cemc: yep. Here is my postconf -n and error message: http://friendpaste.com/6RFbYIJKqjeQLTbAnmhD55	17:17
=== chrisadams is now known as chris_d_adams
cemc	beawesomeinstead: does that flashadmin user exists as a unix user?	17:18
beawesomeinstead	cemc: no, flashadmin is a virtual user, notice	17:19
beawesomeinstead	local_recipient_maps =	17:19
cemc	oh, I see. well, it you user virtual users, then the mailbox_command won't work. there's virtual_transport = for that, I think	17:21
cemc	you would set virtual_transport = dovecot, then define that transport in master.cf	17:23
cemc	mailbox_command is for the local delivery agent of postfix (man 5 postconf and search for mailbox_command)	17:23
beawesomeinstead	cemc: ah, a see. just for the record, in my stack i managed to get it working with <local_transport = dovecot> instead of <virtual_transport = dovecot>	17:25
beawesomeinstead	thanks for your assistance!	17:26
yann2	where is the best place to add a script that should run just after a server boots?	17:51
cemc	yann2: you could add the script to /etc/rc.local	17:53
yann2	This script is executed at the end of each multiuser runlevel.	17:55
yann2	so it gets executed how many times?	17:55
yann2	just one?	17:55
friartuck	yann2 here's a good doc: https://help.ubuntu.com/community/UbuntuBootupHowto	17:55
kees	jpds: yup, did it earlier this morning (though I changed your patch around a bit)	18:13
jpds	kees: Oh, didn't see. Awesome, thanks. :)	18:15
kees	jpds: np, thanks for the patch. :)	18:15
jpds	Does anyone know what the m in requested_mask="::mr" in apparmor is?	18:26
kees	jpds: "man apparmor.d" it means, basically, map into memory for execution (a shared library)	18:27
jpds	kees: Didn't know that manpage, thanks.	18:28
kees	np :)	18:30
kees	it's mentioned at the bottom of "man apparmor" under "SEE ALSO", though it could probably stand out better.	18:30
jpds	Yeah, I didn't look hard enough.	18:35
kees	all that said, there are still things missing from the apparmor.d manpage (just some new settings, like "deny" and "allow" prefixes) but there's a bug open for that already.	18:37
=== MusicGenious is now known as interwebs
=== interwebs is now known as xrter-1
=== xrter-1 is now known as xrter
=== xrter is now known as Xrterl
=== Xrterl is now known as xRt3r
=== xRt3r is now known as MGMT
dustin	ubuntu server edition 8.10 with gui- gnome, is it possible to build and if so how would I do it?	20:45
giovani	dustin: GUIs aren't supported in this channel, yes, you can install the ubuntu-desktop package, which will install everything the desktop would have on top of your server install -- not much point though	20:48
dustin	giovani: is there anything special I need to do to install server 8.10 on a p3 w/256ram	20:57
giovani	dustin: nope, but I highly highly doubt you want to run gnome on that machine	20:57
giovani	256 MB of ram is not enough for any serious desktop environment like kde/gnome	20:57
giovani	I'd stick to a straight server install -- no gui	20:58
dustin	it ran good as a desktop but when I installed apache with php over ubuntu 8.04 I ran into problems	20:58
giovani	what kinds of problems?	20:59
dustin	have you guys had any problems with the iso's on the ubuntu site, (I cant seem to get one to burn right)	20:59
giovani	you should be confirming that the md5 hash of the file you downloaded matches the md5s provided	21:00
dustin	php and apache didnt play well together being installed after OS	21:00
giovani	to make sure it wasn't corrupt during download	21:00
giovani	php and apache play fine together, it was probably a misconfiguration	21:00
dustin	thats Y I think that using server edition will help fix that (becouse I wont have to mesh them so I wont be the one to mess it up)	21:01
giovani	the desktop and server edition don't have any differences in the apache/php packages they offer	21:01
giovani	so that will not solve your problem	21:01
dustin	how do I test md5 b4 burning?	21:02
giovani	on linux, "md5sum filename.iso"	21:02
giovani	and then compare that number to the one provided on the download mirror	21:02
giovani	dustin: you never needed to manually pack them together, the LAMP package simply installs the same packages you would have otherwise	21:04
friartuck	dustin lamp requires configuration	21:04
dustin	well I think its time to burn this php,apache,mysql all in one book becouse that means that all the info in it is wrong :S	21:05
giovani	there's no need for a book	21:07
giovani	plenty of great documentation on the ubuntu wiki	21:07
giovani	and on google	21:07
dustin	yeah well I am one of those ppl that has a library in my living room and I buy the book then ask why the info is wrong :S	21:08
giovani	well books are not bad ... you just need the RIGHT book	21:09
giovani	which book have you been following?	21:09
dustin	I need to start looking more online before I go to barns and noble	21:09
dustin	its SAMS complete guide to php apache, and mysql all in one	21:10
dustin	ISBN: 978-0-672-32976-0 I think I am going to leave a review with a few bookstores	21:12
friartuck	l.a.m.p. you can get a full time job administering any of those initials. learning all of them takes more than a reading.	21:12
dustin	I am learning this in kindof a crash course fashion	21:13
dustin	:)	21:13
giovani	well ... most jobs involving Apache involve using it with PHP and MySQL :)	21:14
giovani	so, that's why there are books covering the topics together	21:15
giovani	even if they're basic	21:15
dustin	just out of curiosity does anyone know if there is a version of cuda for ati cards that I might be able to use to accelerate my software raid?	21:15
friartuck	giovani true that, but if the environment is large enough there will be specialist for each.	21:16
giovani	friartuck: not in most companies	21:17
giovani	most companies don't hire real specialists -- they hire generalists	21:17
dustin	instalation question: when I install on this computer(I know these #'s are small) I have ane 20gb hdd and one 40gb hdd shold I raid 20gb of both and use the rest for non critical data?	21:18
dustin	of course raid1 for the raid	21:19
friartuck	giovani the qualifier was "large". I worked at a firm that had a dedicated dns group, nothing but bind all day long.	21:19
dustin	or would this be a great waste of time	21:19
giovani	friartuck: yeah, missed that	21:20
dustin	so to raid or not to raid is it a waste of time or would I be able to use it I am going to host 5-15 websites and I dont think that I will be using dns binding	21:24
dustin	I tested the iso and it came out good so I am burning again hoping that it was just a bad disk last time	21:24
dustin	does anyone have an opinion on software raid on a system this small?	21:26
friartuck	dustin lamp like raid is not a trivial topic. it's up to you.	21:27
dustin	I just was wondering if I would see any gain by using it and if anyone else here would opt for or against it on there own system if it were this small	21:28
dustin	in other words is there any point to it or am I waisting time trying to use it (my data isnt that critical)	21:29
dustin	server edition comes with openssh correct?	21:31
giovani	dustin: not until you install it	21:34
dustin	I am just making a list of things to install and things to update while I am here	21:36
PhotoJim	dustin: it's a good idea to make a list of anything you find useful on your system. then if you reinstall or make a new system you will know what to install.	21:36
dustin	and I want to do this right this time because it is realy agrivating when it doesnt work right	21:36
PhotoJim	dustin: I discovered yesterday that debian lenny doesn't automatically install telnet, which is useful for testing network connections even ify ou don't log into remote systems with it. :)	21:37
dustin	of course I would get I/O errors now that I have advice on how to install :S	21:41
dustin	anybody here like to work with hardware errors ;)	21:41
dustin	I installed this iso on a virtual machine that matched my specs without problems and now that I have the disk I cant get the thing to go grrrr	21:43
PhotoJim	Hardware errors are a real b**ch.	21:43
dustin	especialy after you just removed a working build	21:44
dustin	*not a good working build but working just the same	21:44
PhotoJim	I had some RAM issues with my server at home for awhile. it took me awhile to figure out the problem.	21:45
PhotoJim	had some data corruption as a consequence.	21:46
dustin	well reset bios to defaults and try again :)	21:46
PhotoJim	It felt amazingly good to figure it out though.	21:46
PhotoJim	good luck.	21:46
PhotoJim	actually, I learned one thing out of my RAM troubles. my server ran amazingly well with only 192 MB of RAM.	21:46
PhotoJim	and better 192 MB of reliable RAM than 768 of dodgy :)	21:46
PhotoJim	(only one stick was bad, thankfully. so I ran at 640 a bit until I got another 256M stick.)	21:47
dustin	this server was running with 256mb ram 933mhz proc and 2 hdd newly added-- dvdrom and cdr drives for reload	21:49
mattt	is this channel for people running the server version of ubuntu, or for people running any ubuntu version in a server environment? :)	21:49
dustin	and the drives are the only change since last load	21:49
PhotoJim	mattt: I don't know for sure, but primarily 1. 2 is welcome I'm sure though.	21:50
dustin	yup we all are running or trying to get running servers	21:50
dustin	so far as I can tell anyway	21:50
dustin	photojim it was the disk ',(	21:55
PhotoJim	dustin: as in the media?	21:55
PhotoJim	as in the drive?	21:55
dustin	does anyone have a cdrom drive cleaning disk I can borrow (jk) and yes the media was the problem	21:55
dustin	I think my burner has a dirty lens or something	21:56
PhotoJim	entirely possible.	21:56
PhotoJim	laptop or desktop? laptop drives are easy to clean.	21:56
PhotoJim	desktop drives are trickier.	21:56
PhotoJim	I thought you'd tried multiple drives which is why I wasn't attributing your problem to your drive.	21:57
dustin	desktop and I have plenty of drives to try I will try different ones soon becouse I just tried to verify a known good disk and it failed the md5 test	21:58
dustin	known good as in I just built a working computer with it 2 days ago	21:59
PhotoJim	well I'm glad you figured it out.	21:59
dustin	but at least it didnt give the I/O error	21:59
PhotoJim	at least drives are cheap. if you need to replace it it isn't a huge problem.	22:00
dustin	actualy I have 5 computers I can canibalize for one	22:00
PhotoJim	yes, I've done that.	22:01
dustin	final count 3 burners 1 dvdrom and 4 cdrom drives	22:01
dustin	my family was complaining about there computers always crashing so I built them a couple that I need to mail out but so long as they are here ;D	22:03
PhotoJim	:)	22:05
PhotoJim	I have a bunch of spare drives.	22:06
PhotoJim	not worth selling.	22:06
PhotoJim	nothiing wrong with a 16x DVD burner.	22:06
PhotoJim	and the 8x in my server does fine, not worth tearing the machine apart to upgrade.	22:06
dustin	well how often do u realy use a cdrom in your server	22:06
PhotoJim	not very often.	22:07
PhotoJim	but once in awhile.	22:07
PhotoJim	people send me DVDs of stuff occasionally.	22:07
dustin	I have my desktop for gaming and media and next to it is the server that just kinda sits there looking good	22:08
dustin	brb switching desktops	22:09
dustin	that feels better	22:10
dustin	I was in kde to help walk someone through something	22:11
Supertanker	Hi, on Ubuntu 8.10 server the libpam-chroot package appears to be roken	22:51
Supertanker	broken	22:51
ivoks	best way to deal with that is to report the bug	22:52
Supertanker	How?	22:54
Supertanker	(Sorry, I haven't done many bug reports)	22:54
ivoks	https://bugs.edge.launchpad.net/ubuntu/+source/libpam-chroot	22:56
Supertanker	Thank you	22:58
mattt	Supertanker: why's it broken?	23:00
ivoks	there's a bug about that already	23:00
Supertanker	I'm loading to see if it's the same one	23:00
Supertanker	I read somewhere it was because it was linked with ld instead of gcc, or something really weird like that.	23:01
Supertanker	Yeah, same bug	23:01
ivoks	https://bugs.edge.launchpad.net/ubuntu/+source/libpam-chroot/+bug/237308	23:01
uvirtbot	Launchpad bug 237308 in libpam-chroot "libpam-chroot broken" [Undecided,Confirmed]	23:01
ivoks	i'll check it in jaunty tomorrow	23:02
ivoks	'night	23:02
Supertanker	Hah	23:03
Supertanker	Okay, I fixed that bug; now I get "Connection reset by Peer" instantly when I try to ssh to my server with the chroot'd user.	23:03
* Supertanker looks that up too		23:03
Supertanker	Thanks guys.	23:03
mattt	Supertanker: heh, i set this up the other week	23:04
mattt	Supertanker: a few notes ... make sure you mount /dev/pts and /proc	23:04
fevel	whats a good way to monitor my ubuntu gateway's traffic? I would like to check wich IP is consuming the most bandwidth	23:04
mattt	Supertanker: so, like ... mount --bind /dev/pts /chroot/dev/pts	23:04
mattt	Supertanker: and finally, make sure there is a passwd entry in the chroot for the user you're ssh'ing in w/	23:05
Supertanker	mattt, oooh, I didn't think you needed a proc or the pts	23:05
mattt	Supertanker: this is probably the best resource i found: http://chains.ch/2008/01/26/chroot-environment-on-debian/	23:06
Supertanker	Thanks	23:06
Supertanker	Eh	23:07
Supertanker	Somehow in my /chroot/dev I only have two files now: 0 and 1	23:07
Supertanker	And I can't remove them	23:07
Supertanker	:o	23:08
Supertanker	You know what, mattt?	23:08
Supertanker	In my /dev/ there's no /pts, but there's a directory called pts	23:08
Supertanker	Is that what I need?	23:08
mattt	yeah	23:09
mattt	a directory called pts under dev :)	23:09
mattt	aka /path/to/dev/pts/	23:09
Supertanker	Ah okay	23:10
mattt	Supertanker: but, i think not having /dev/pts mounted would give you a different error	23:13
Supertanker	mattt, ahh, I see	23:14
Supertanker	PTY allocation request failed on channel 0	23:14
Supertanker	Now I'm getting somewhere :P	23:14
mattt	Supertanker: ah!	23:14
mattt	that's the one :)	23:14
Supertanker	(It turns out I needed to set UsePrivledgeSeperation no in sshd_config)	23:15
mattt	ah, crappy ... the box i'm using (debian lenny) didn't require that	23:15
Supertanker	Huh	23:16
Supertanker	I have /chroot/dev/pts created and it has two files inside	23:16
Supertanker	So why am I getting that error still?	23:16
mattt	hmm	23:17
mattt	let me have a look on my box	23:17
Supertanker	Okay	23:18
mattt	Supertanker: try mount --bind /proc /path/to/chroot/proc	23:19
mattt	Supertanker: btw, those files are probably there because of the --bind, you're remounting your /dev/pts on top of that directory	23:20
Supertanker	...oh duh	23:20
* Supertanker tries		23:20
Supertanker	Nope :/	23:21
Supertanker	Yeah, I fixed that already	23:21
mattt	your user is defined in the chroot's /etc/passwd, right?	23:21
mattt	and lastly, may want to install udev in the chroot	23:21
Supertanker	Yes to the first and I'll try that in a bit for the second	23:23
mattt	wait	23:23
Supertanker	?	23:23
mattt	i just removed udev from my chroot and it still works ... sooo	23:23
mattt	the only last suggestion i have is ... to verify your /etc/security/chroot.conf file	23:24
mattt	Supertanker: what does your chroot line look like?	23:24
Supertanker	Just a sec	23:24
Supertanker	It appears to be valid	23:25
Supertanker	The last entry into the auth.log is "preparing to chroot()"	23:25
Supertanker	After saying it found the chroot_dir, etc, etc.	23:25
Supertanker	I could just try doing ./makedev generic and seeing if it's a device problem or not	23:26
mattt	sec	23:27
mattt	can you copy the line from chroot.conf?	23:27
mattt	cuz that caught me out too	23:27
Supertanker	What line?	23:27
mattt	where you define your user's chroot	23:27
Supertanker	It's just 'sentharn /chroot/home/sentharn'	23:27
mattt	that's the problem	23:28
mattt	change it to	23:28
mattt	sentharn /chroot	23:28
Supertanker	Ahhh	23:28
mattt	that wasn't clear to me either :)	23:28
Supertanker	Well we got a step closer	23:28
Supertanker	Now it doesn't kick me out	23:28
Supertanker	But it still says PTY failed	23:28
Supertanker	Oh duh	23:29
Supertanker	That's because I have no pts	23:29
* Supertanker recreates it		23:29
Supertanker	Boooh-yah!	23:29
* Supertanker hugs mattt		23:29
Supertanker	Thanks!	23:29
* mattt cheers		23:29
mattt	sweet	23:29
Supertanker	Hmmm	23:34
Supertanker	Is /proc really necessary?	23:34
Supertanker	It'd be kind of nice if I didn't have to put it in the chroot	23:34
mattt	don't think so	23:35
mattt	but then you can't ps, df, etc.	23:35
mattt	actually, try to unmount and see if you can still ssh in, not 100% sure	23:35
Supertanker	It closes the connection as soon as I log in if I try without it	23:35
Supertanker	I don't think it likes not having it much.	23:36
uvirtbot	New bug: #351275 in mysql-dfsg-5.0 (main) "AppArmor rules cause tmp table problem" [Undecided,New] https://launchpad.net/bugs/351275	23:56
=== owh is now known as owh_
=== owh_ is now known as owh

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!