| tchough | i have two machines that do not have matching uid/gids... i wish to use nfs but have the uids match up properly... are there any options for this that work in ubuntu that do not involve setting up NIS? | 00:16 |
|---|---|---|
| === rdw200169 is now known as rdw200169`afk | ||
| PhotoJim | there are ways to renumber users... I had the same problem getting a MacBook to work with my Linux network | 00:50 |
| PhotoJim | I did it once... but I'm no expert at it. but if you google it the solution is out there. | 00:50 |
| PhotoJim | the thing to remember is that not only do you have to change the users' UIDs and the groups' GIDs, you have to change the owner of any files owned by them | 00:51 |
| PhotoJim | there are commands that can do that | 00:52 |
| mat1211 | Hi, how do I change the home directory of a user? | 00:59 |
| mattt | mat1211: usermod | 00:59 |
| twb | mat1211: permanently, or temporarily? | 00:59 |
| mat1211 | when you say permenently, do you mean there is no way to change it back? or just that it doesn't go back on reboot. | 00:59 |
| twb | mat1211: no, I mean as opposed to "I need $HOME to be /tmp/tmp.a72bce for the next program | 01:00 |
| twb | " | 01:00 |
| mat1211 | nah, I just want to change the home dirs for certain user accounts, permenently unless I change them back that is. | 01:02 |
| mat1211 | but was unable to find out how on google. | 01:02 |
| mattt | mat1211: usermod will change the home directory in /etc/passwd, but you would need to manually move the directory itself | 01:04 |
| mat1211 | I see, and how do I do these things, I am trying to set the users up on my external hd so I can properly give them quotas. | 01:05 |
| mat1211 | so every new user I create has a home dir of lets say "/var/homes/users/username" | 01:09 |
| mat1211 | is this possible? | 01:13 |
| mattt | mat1211: that's possible, sure | 01:18 |
| mat1211 | How could I do this? | 01:18 |
| mattt | mat1211: take a look at /etc/default/useradd | 01:18 |
| mat1211 | is useradd a file that I need to open with an editor? | 01:19 |
| mattt | correct | 01:19 |
| twb` | Sure you don't want /etc/adduser.conf? | 01:20 |
| mattt | twb`: ah, i use useradd ... but i guess if adduser is your preference then yes :P | 01:21 |
| twb` | useradd is wrong, it's low-level | 01:21 |
| twb` | adduser is what sysadmins should use on Debian/Ubuntu | 01:21 |
| twb` | I mean, unless you *want* to remember to populate stuff from /etc/skel or whatever the differences actually are. | 01:21 |
| mattt | twb`: quite new to debian/ubuntu myself, will make a note of that ... tnx. | 01:22 |
| twb` | mattt: just to be clear: adduser is a wrapper on top of useradd that does extra stuff | 01:24 |
| mattt | twb`: i come from a red hat background, where useradd is typically used | 01:32 |
| mattt | twb`: but thanks for pointing this out | 01:32 |
| mat1211_ | How can I change a single users home dir? my old admin user can't create users anymore. | 01:52 |
| mat1211_ | ? | 01:55 |
| PhotoJim | sorry, I've never done that. I keep my home directories at /home because that's what standard *nix filesystems look like. | 01:56 |
| mat1211_ | shame, this is getting annoying lol | 02:01 |
| infinity | mat1211_: I'm sure there's some standard CLI way to edit home directories, but I can never remember what it is. | 02:02 |
| twb | usermod -d /home/f/r/fred fred | 02:02 |
| infinity | mat1211_: On the other hand, I'd just do "sed -i -e 's,/home/username,/var/spool/username,' /etc/passwd", because I'm evil that way. | 02:02 |
| twb | You probably also want -m. | 02:03 |
| infinity | twb: Oh, right, usermod. I always forget about that one. BSDisms... | 02:03 |
| twb | infinity: that's definitely not for newbies | 02:03 |
| twb | infinity: also, sed -i won't work on BSD :-) | 02:03 |
| infinity | twb: Sure, but this isn't bsd-server, it's ubuntu-server, and it totally works there. :) | 02:03 |
| infinity | twb: (The less evil suggestion than sed would be "vipw" which, of course, still requires understanding the file...) | 02:04 |
| mat1211 | I've changed my default home directory, and now I can now longer add users. it says pam authorization failed, account expired or something like that. What can I do? | 02:44 |
| twb | mat1211: log in as a different user. | 02:44 |
| mat1211 | they are all set as old home dir, but I might be able to fix this. | 02:45 |
| friartuck | mat1211 you can switch to root with sudo su - | 02:45 |
| twb | friartuck: please use sudo -i. | 02:45 |
| friartuck | twb thx, what's the difference? | 02:46 |
| infinity | Absolutely none. | 02:46 |
| twb | friartuck: one less fork, and it is easier to lock down. | 02:46 |
| twb | "sudo su - fred" requires you have sudo access as root; sudo -u fred -i requries only sudo access to fred. | 02:47 |
| friartuck | twb nice, thx | 02:47 |
| infinity | Sure, from an /etc/sudoers perspective, one is easier to configure than the other. | 02:47 |
| infinity | If you already have root, though, both are effectively the same. *shrug* | 02:47 |
| infinity | (One login shell is the same as the next) | 02:48 |
| mat1211 | what would I do while in the root user? | 02:48 |
| twb | From an aesthetic perspective, using "sudo su -" is like saying "ssh rsh". | 02:48 |
| infinity | twb: I'm not sure how much aesthetics matter here. :) | 02:48 |
| mat1211 | that I couldn't do from the other admin one? lol | 02:49 |
| twb | infinity: well this isn't CentOS... | 02:49 |
| infinity | twb: (Most of it's finger/muscle memory from other similar commands, too) | 02:49 |
| infinity | twb: For instance, "chroot /chroot/foo su -" maps nicely in my brain with "sudo su -" | 02:49 |
| twb | Ew. | 02:49 |
| mat1211 | cause when I create a user in root it still says account has expired. lol I think I broke it. | 02:50 |
| twb | I guess I don't use login shells within a chroot. | 02:50 |
| infinity | twb: Best way to get a prisitine environment. *shrug* | 02:50 |
| infinity | twb: If you use tools like schroot/dchroot, you use login shells in the chroot, it's just cleverly hidden from you. | 02:50 |
| twb | infinity: normally I use ssh :-) | 02:51 |
| mat1211 | ? | 02:51 |
| twb | And pbuilder over sbuild | 02:51 |
| infinity | My turn to say "ew"? :) | 02:51 |
| infinity | Anyhow, back to lp-buildd hacking. | 02:51 |
| friartuck | mat1211 did you change root login? home dir? | 02:52 |
| infinity | Or maybe time to realise it's a weekend for a few more hours and watch a movie or something. | 02:52 |
| mat1211 | ? what's that | 02:52 |
| mattt | mat1211: talk us through what you did exactly? | 02:54 |
| === smultron_ is now known as smultron | ||
| mat1211 | sorry, I was afk. But to change the default home dir, I typed. sudo vi /etc/adduser.conf and then changed the dhome var | 03:18 |
| mat1211 | but now I cannot create users. | 03:21 |
| mat1211 | and I don't know what I can do to fix it. | 03:22 |
| twb | mat1211: what did you change DHOME to ? | 03:27 |
| mat1211 | I changed it to /var/www/tb/users | 03:29 |
| mat1211 | why? does that change anything? | 03:31 |
| twb | Does that directory exist? | 03:35 |
| mat1211 | yes it exists | 03:37 |
| twb | Does it have the same owner, group and permissions as /home? | 03:38 |
| twb | Incidentally, *why* do you want users to be created with home directories there? It violates the FHS. | 03:38 |
| mat1211 | ? I'm not sure. I want to create users on my external harddrive, because it will make setting up quotas easier, I think. | 03:41 |
| mat1211 | and what permitions are on home? | 03:41 |
| twb | mat1211: ask stat(1) | 03:42 |
| twb | mat1211: I think you would do better to simply mount the external hard drive as /home, or to make /home/foo/public_html a symlink into /var/www. | 03:43 |
| Iceman_B^Ltop | PhotoJim: concerning the disabling a login: "chsh <username>" then appoint /sbin/nologin | 03:43 |
| mat1211 | hmm maybe, but I am also storing other files on the harddrive, I'll try that though. | 03:44 |
| PhotoJim | Iceman_B^Ltop: that sure looks right. :) | 03:45 |
| Iceman_B^Ltop | I found the notes a friend typed up when he was here, thought I'd share it | 03:45 |
| twb | mat1211: then perhaps you should have used LVM on that external hard disk, and assigned separate volumes (and filesystems) to its various data storage roles. | 03:45 |
| mat1211 | I probably should have, yes. | 03:46 |
| mat1211 | I'll go over the harddrive and fix it up. | 03:46 |
| === lamont` is now known as lamont | ||
| === dug_ is now known as dug_1 | ||
| === dug_1 is now known as dug_ | ||
| === twb` is now known as twb | ||
| _coredump_ | moinsen | 08:16 |
| ^law^ | guys,i forgot where is th epath of sun jdk location, | 08:51 |
| ^law^ | hmm i installed it a week ago | 08:52 |
| Kamping_Kaiser | installed via packages/ | 08:53 |
| Kamping_Kaiser | ? | 08:53 |
| ^law^ | ya | 08:54 |
| ^law^ | hmm can't find it | 08:54 |
| Kamping_Kaiser | dpkg -l |grep java to find the package name | 08:54 |
| Kamping_Kaiser | dpkg -L packagename to find where all the files went | 08:54 |
| Kamping_Kaiser | dpkg -l |grep jre may be better btw | 08:55 |
| ^law^ | oooh thx | 08:56 |
| Kamping_Kaiser | np | 08:56 |
| ^law^ | i found it now | 08:56 |
| ^law^ | :) | 08:56 |
| Kamping_Kaiser | :) | 08:56 |
| ^law^ | r those line work 4 others? | 08:57 |
| Kamping_Kaiser | yeah | 08:57 |
| ^law^ | u knw i often 4got where the programs installed | 08:57 |
| Kamping_Kaiser | please use actual words :| | 08:57 |
| ^law^ | sorry :) | 08:58 |
| Kamping_Kaiser | thanks ;) | 08:58 |
| twb | It's better to use dpkg -l *java* than dpkg -l | grep java | 08:59 |
| Kamping_Kaiser | whyso? | 09:00 |
| twb | Because it's eagerly evaluated | 09:00 |
| twb | Oh actually, I guess dpkg -l alone defaults to only installed packages. Grr. | 09:00 |
| twb | Personally I use aptitude search ~i~njava, possibly with an -F %p if I only want the package names | 09:01 |
| ^law^ | guys, if i wanna install maven , i only need to install maven2 package? | 09:06 |
| ^law^ | ? | 09:07 |
| DawnLight | hello. i'm trying to understand the apache2 configuration for mailman in hardy. the example apache configuration file has AddHandler cgi-script .cgi in <Directory /usr/lib/cgi-bin/mailman/> but the files there don't have .cgi extensions so how does it work? | 09:12 |
| rst-uanic | I think that all files in /usr/lib/cgi-bin are handled as cgi scripts | 09:14 |
| DawnLight | is that in some config? | 09:15 |
| DawnLight | or build-time | 09:15 |
| DawnLight | yes | 09:16 |
| DawnLight | it is in the deafult config file | 09:16 |
| rst-uanic | :) | 09:18 |
| DawnLight | thanks | 09:23 |
| DawnLight | why is the "mailman" list shown in the listinfo page? | 09:26 |
| uvirtbot | New bug: #347250 in likewise-open5 (universe) "Upgrade from Likewise-Open 4 should be mentioned in Debian.NEWS" [Wishlist,In progress] https://launchpad.net/bugs/347250 | 10:42 |
| cjwatson | twb: if you're going to use "dpkg -l *java*", then that should be "dpkg -l '*java*'", otherwise you'll get pretty surprising results when a file in your current directory happens to contain the substring 'java' ... | 11:05 |
| uvirtbot | New bug: #356149 in mailman (main) "Debconf questions to set passwords" [Undecided,New] https://launchpad.net/bugs/356149 | 11:06 |
| jussi01 | Hrm, is there a reason you guys have a different bot? | 11:13 |
| jussi01 | is it just for the bug reporting? | 11:13 |
| twb | cjwatson: yeah, sorry about that. | 11:14 |
| twb | But really, what kind of silly person would have a java file ;-P | 11:14 |
| twb | Java is for embedded systems programming. Embedded systems with 16GiB of RAM... | 11:14 |
| uvirtbot | New bug: #356187 in samba (main) "SIGSEGV on printing" [Undecided,New] https://launchpad.net/bugs/356187 | 12:21 |
| === UdontKnow is now known as udk | ||
| mat1211_ | how do I check the permissions and owners of a folder? | 13:05 |
| jpds | mat1211_: ls -l path/to/folder | 13:06 |
| mat1211_ | thx | 13:08 |
| mat1211_ | How can I extract a .rar file and keep the directory structure? | 13:26 |
| jpds | unrar e <rar file> | 13:28 |
| Appiah | unrar x i belive | 13:29 |
| Appiah | just typ unrar or man unrar to see all the options | 13:29 |
| Appiah | x Extract files with full path. | 13:30 |
| Appiah | e Extract files to current directory. | 13:30 |
| Appiah | http://www.edenwaith.com/support/guitar/help/man/unrar.html | 13:30 |
| * jpds points to manpages.ubuntu.com | 13:35 | |
| === zoopster1 is now known as zoopster | ||
| twb | The interface is different for unrar and unrar-nonfree | 14:23 |
| * twb goes back to sleep | 14:24 | |
| bn43 | Hi I'm running an ubuntu server for a charity where there are serious bandwidth constraints - they are using a 3g card. therefor I have setup ntop to see who's downloading the most but cannot produce reports as ntop resets on reconnection. I have read that there is no way around this. Is this true? | 15:46 |
| bn43 | oh can someone recommend a monitoring tool - not to show were someone went but just a means of accounting on bandwidth - without stepping on privacy | 15:47 |
| bn43 | anyone pls? | 15:50 |
| bn43 | oh can someone recommend a monitoring tool - not to show were someone went but just a means of accounting on bandwidth - without stepping on privacy | 15:56 |
| zul | mrtg | 16:00 |
| friartuck | bn43 cacti | 16:01 |
| bn43 | friartuck: interesting - google did not bring up cacti as bandwidth monitoring - is there a howto I can go to? | 16:02 |
| bn43 | zul: howto? | 16:02 |
| zul | bn43: mrtg.org | 16:02 |
| bn43 | I want to be able to compile a report at the end of each week on each ip - ntop does not keep history, do these? | 16:02 |
| friartuck | bn43 http://www.cacti.net . no, mrtg and cacti won't do that per se. but you can monitor each switch port and find out who is connected there and basically get that info. | 16:04 |
| bn43 | ok I'll look in | 16:06 |
| bn43 | thank you for the responses | 16:06 |
| dthacker__ | why doesn't the bacula director package drop the default bacula-dir.conf in the /etc/bacula file? | 16:06 |
| === udk is now known as UdontKnow | ||
| === rgreening_ is now known as rgreening | ||
| tieuvinhlong | hello | 18:02 |
| tieuvinhlong | are you there? | 18:03 |
| tieuvinhlong | alo | 18:03 |
| Iceman_B^Ltop | how can I force Samba to disallow changes in filenames, AND writes to files that are open in a linux process? Eg. rTorrent? | 19:14 |
| orudie | with disabled password logons, is there a way to login with Filezilla FTP client ? | 19:19 |
| giovani | orudie: what do you mean? blank passwords? | 19:26 |
| giovani | that would probably depend on the ftp server and how it interacts with system passwords | 19:27 |
| ivoks_ | orudie: you've put /bin/false as a shell? | 19:27 |
| ivoks_ | or /bin/true | 19:28 |
| orudie | i'm talking about connection with SFTP when PasswordAuthentication no in sshd_config ivoks_ , giovani | 19:29 |
| ivoks_ | then you are using sftp, not ftp? | 19:29 |
| orudie | yes ivoks_ sftp | 19:30 |
| orudie | but i figured it out already :) | 19:30 |
| giovani | I don't get why people use sfto | 19:30 |
| giovani | sftp* | 19:30 |
| ivoks_ | it depends on your client | 19:30 |
| orudie | yeah filizilla interracts with pageant.exe | 19:31 |
| ivoks_ | giovani: they don't trust their isp? | 19:31 |
| orudie | i didnt know that | 19:31 |
| giovani | ivoks_: uh ... use scp instead | 19:31 |
| ivoks_ | giovani: that's sftp | 19:32 |
| ivoks_ | http://en.wikipedia.org/wiki/SSH_file_transfer_protocol | 19:32 |
| ivoks_ | not ftp-ssl, sftp | 19:32 |
| giovani | no, scp is not sftp | 19:32 |
| giovani | they're different protocols | 19:32 |
| tieuvinhlong | use ssh | 19:32 |
| giovani | tieuvinhlong: they both use ssh | 19:32 |
| tieuvinhlong | ssh protocol | 19:32 |
| ivoks_ | giovani: it's implemented by the same library | 19:33 |
| tieuvinhlong | oh. | 19:33 |
| tieuvinhlong | yes | 19:33 |
| tieuvinhlong | yeah | 19:33 |
| RoAkSoAx | hello guys! where can i find detailed information about the integration of eucalyptus into ubuntu and amazon ec2 related stuff? | 19:33 |
| ivoks_ | sftp has more features anyway | 19:33 |
| uvirtbot | New bug: #320470 in mailman (main) "duplicate Mime-Version header " [Undecided,Fix released] https://launchpad.net/bugs/320470 | 19:36 |
| cjwatson | giovani: scp is an awful protocol | 19:41 |
| cjwatson | giovani: it's not extensible and the bugs in it result in silly quoting requirements | 19:42 |
| cjwatson | giovani: though it's a shame that the scp client is closer to what people often want despite the worse protocol. In principle it would be possible to reimplement the scp client on top of the sftp protocol, which would be the best of both worlds. I started work on that a while back but it's very much a back-burner project | 19:43 |
| ivoks_ | cjwatson: doesn't openssh do that? | 19:43 |
| cjwatson | ivoks_: no | 19:44 |
| ivoks_ | even though use type in scp, it does sftp? | 19:44 |
| ivoks_ | no? ok... | 19:44 |
| cjwatson | "use type in scp"? EPARSE | 19:44 |
| ivoks_ | :) | 19:44 |
| ivoks_ | s/use/you/ | 19:44 |
| cjwatson | no, scp works by sshing to the remote host and running scp there in a special mode | 19:44 |
| cjwatson | inspired by rcp | 19:44 |
| RoAkSoAx | sommer, how can i contribute with the server guide, specially with clustering related? | 19:59 |
| Davedan | can I have several subdomains each pointing to a different ip? | 20:00 |
| jpds | Yes. | 20:01 |
| Davedan | jpds: even if my domain is hosted on godaddy for example? | 20:02 |
| RoAkSoAx | o/ jpds how you doing today! | 20:02 |
| jpds | Davedan: Depnds on your setup, I've never used GoDaddy. | 20:02 |
| jpds | RoAkSoAx: Hey there, not too bad, thanks. | 20:02 |
| Davedan | jpds: thanks | 20:03 |
| RoAkSoAx | Davedan, you would just have to add more entries in godaddy. CNAME or IN A entries. | 20:03 |
| Davedan | RoAKSoAx: so I have 2 subdomains on godaddy each one pointing a diffrent IP. How does my apache on ubuntu knows to trust the traffic? | 20:09 |
| sommer | RoAkSoAx: here's a link with some quick instructions for getting the xml source: https://wiki.ubuntu.com/ServerTeam/KnowledgeBase#Documentor%20resources | 20:12 |
| sommer | RoAkSoAx: basically feel free to work on the sections you'd like and submit a patch :-) | 20:12 |
| giovani | Davedan: I don't know what you mean by "trust the traffic" -- if there are two IPs, you need to tell Apache (and Ubuntu) to listen on those two IPs, and then you'll configure two IP-based virtual hosts, one for each site you want | 20:14 |
| RoAkSoAx | sommer, well i was actually thinking on adding sections such as installation and configuration of Heartbeat V1/V2, Keepalived for healthchecking, LVS based clusters, and DRBD integration with Heartbeat | 20:14 |
| sommer | RoAkSoAx: sure, sounds good to me | 20:14 |
| RoAkSoAx | sommer, ok great! | 20:15 |
| sommer | RoAkSoAx: if you have any questions about the xml files just let me know | 20:16 |
| Davedan | giovani: I'm trying to solve js cross domain limitations and wonder if it possible using subdomains. I want domainA have sub.domainA and point it to the ip on my server. What I'm asking if there is no bad logic with this | 20:16 |
| Davedan | giovani: let's say a client owns domainA and wants to make xmlhttprequest to a different IP | 20:17 |
| === ivoks_ is now known as ivoks | ||
| giovani | Davedan: that isn't an apache, or ubuntu question | 20:25 |
| giovani | that's a browser cross domain security question | 20:25 |
| macman_ | hi all | 21:01 |
| macman_ | do i have to have ubuntu server installed to a network boot ? | 21:01 |
| ivoks | to do a network boot? | 21:02 |
| macman_ | yes | 21:03 |
| ivoks | on another machine | 21:03 |
| ivoks | ? | 21:03 |
| macman_ | i want to install ubuntu on another computer | 21:03 |
| === mogul218_ is now known as mogul218 | ||
| macman_ | the computer has cdrom access and i don't have a floppy to boot it up .. what are my options ? | 21:03 |
| macman_ | has no cdrom access* | 21:03 |
| ivoks | network boot | 21:03 |
| ivoks | usb boot | 21:03 |
| macman_ | it has no usb eaither | 21:03 |
| ivoks | maybe it doesn't have usb boot? | 21:04 |
| ivoks | err... network | 21:04 |
| macman_ | when i go into the bios i have cdrom , network etc .. | 21:04 |
| orudie | macman_, just stick a cd rom in temporarly | 21:22 |
| ivoks | oh, sorry | 21:24 |
| ivoks | forgot about you :) | 21:24 |
| ivoks | macman_: setup dhcp-server with tftpd on that other machine (which has some form of unix/linux) | 21:25 |
| ivoks | there should be something like that for windows too | 21:25 |
| ivoks | and then follow https://wiki.koeln.ccc.de/index.php/Ubuntu_PXE_Install | 21:25 |
| orudie | ivoks, is surprisingly polite on mondays ! | 21:26 |
| ivoks | f... of. | 21:26 |
| ivoks | :) | 21:26 |
| orudie | :P | 21:26 |
| ivoks | so, how's your mail server? | 21:27 |
| orudie | sold ! | 21:27 |
| orudie | incoming, outgoing, mail filter, antivirus | 21:27 |
| orudie | no complaints | 21:27 |
| ivoks | great | 21:27 |
| orudie | thanx bro | 21:27 |
| ivoks | still getting some spam? | 21:27 |
| orudie | 1 - 2 a day, before was like 1 - 2 every 10 minutes | 21:28 |
| ivoks | implement graylisting | 21:28 |
| orudie | on some email accounts | 21:28 |
| ivoks | it's very easy with postgrey | 21:28 |
| ivoks | greylisting, that is | 21:29 |
| orudie | i actually dont think i would touch it unless I think i have to | 21:29 |
| ivoks | it might kill those 1-2 spams | 21:29 |
| ivoks | and it's one line change | 21:30 |
| orudie | oh yeah :) ? | 21:30 |
| orudie | what can i do then ? | 21:30 |
| ivoks | yeah... but there are some side effects | 21:30 |
| orudie | what kind | 21:30 |
| orudie | ? | 21:30 |
| orudie | see i rather not touch it bro | 21:30 |
| ivoks | it's the nature of how greylisting works | 21:31 |
| ivoks | it returns temp reject to the other server | 21:31 |
| ivoks | and then the other server will try resending that mail in 5-10 minutes | 21:31 |
| ivoks | and if it tries that, from same ip, from same From, to same To, it will pass | 21:31 |
| ivoks | otherwise it will get temp reject again | 21:32 |
| orudie | my box was hacked last week, did I tell you ? | 21:32 |
| ivoks | :) | 21:32 |
| orudie | not as bad as my other one a few months ago | 21:32 |
| orudie | at least this time i was able to see what the guy did | 21:32 |
| ivoks | hacked your ubuntu server? | 21:33 |
| orudie | thats why i was asking about SFTP earlier | 21:33 |
| orudie | yeah man | 21:33 |
| orudie | my company's server | 21:33 |
| ivoks | weak password? | 21:33 |
| orudie | yeah | 21:33 |
| ivoks | hopefully, not for admin account | 21:34 |
| orudie | and I didnt even know about it , cause I had to teach another guy here how to create / add email accounts through terminal | 21:34 |
| orudie | so he created those 10 email accounts for all employees | 21:34 |
| ivoks | username test, password test | 21:35 |
| orudie | and one of them was u/n jorge / jorge123 | 21:35 |
| ivoks | right? :) | 21:35 |
| ivoks | orudie: install john | 21:35 |
| orudie | user jorge password jorge123 | 21:35 |
| ivoks | john the ripper will test your accounts and passwords | 21:35 |
| ivoks | it would've found jorge/jorge123 | 21:36 |
| orudie | i disabled password logins for all acounts | 21:36 |
| ivoks | that doesn't change a thing | 21:36 |
| ivoks | those people still use username/password for accessing their mail | 21:36 |
| ivoks | and one could abuse your smtp server if you have smtp-auth | 21:36 |
| orudie | yeah, that account is gone though with all the files from the system | 21:36 |
| ivoks | install john | 21:37 |
| orudie | apt-get install john ? | 21:37 |
| ivoks | run it and check passwords | 21:37 |
| ivoks | yes | 21:37 |
| orudie | john --test ? | 21:38 |
| ivoks | sudo john /etc/shadow | 21:38 |
| orudie | its gonna run for a whil ? | 21:39 |
| orudie | while ? | 21:39 |
| Noble | Anyone got a link or some info on how I can intercept or reroute stuff that gets sent to my servers NIC on spesific ports? | 21:39 |
| ivoks | orudie: yes, let it run for a while | 21:40 |
| === RoAk is now known as RoAkSoAx | ||
| orudie | k i only got 20 minutes though, gotta get out of here ivoks :) | 21:40 |
| ivoks | orudie: then kill it | 21:40 |
| ivoks | orudie: it will start every night and check | 21:40 |
| ivoks | orudie: if you uncomment lines in /etc/cron.d/john | 21:41 |
| orudie | Loaded 1 password hash (FreeBSD MD5 [32/32]) | 21:42 |
| orudie | ivoks | 21:42 |
| ivoks | ? | 21:42 |
| orudie | thats what it told me | 21:42 |
| ivoks | you have only one user? | 21:42 |
| orudie | no man | 21:42 |
| orudie | i have 10 | 21:42 |
| ivoks | you copied them from another unix system? | 21:43 |
| orudie | but only 1 user can login with SSH if that has anything to do with it | 21:43 |
| orudie | no | 21:43 |
| orudie | created manually here | 21:43 |
| ivoks | can they read mails? | 21:43 |
| mrwes | Hey if I'm sending email via smtp with username and password in my /etc/denyhosts.conf should that file have 644 perms? | 21:43 |
| mrwes | I"m thinking 600 | 21:43 |
| orudie | yeah | 21:44 |
| orudie | mail is working fine | 21:44 |
| ivoks | orudie: try john --format=DES /etc/shadow | 21:44 |
| ivoks | mrwes: i didn't quite understand your question | 21:44 |
| orudie | whats that gonna do ? | 21:45 |
| ivoks | mrwes: what does smtp has with /etc/denyhosts.conf? | 21:45 |
| ivoks | orudie: it will take passwords in DES format, instead of MD5 | 21:45 |
| orudie | No password hashes loaded | 21:46 |
| mrwes | ivok: I'm sending the denyhosts report to my internet hotmail account and in the denyhosts.conf file I have my password and username to that email account and I just noticed the conf file is 644 perms | 21:46 |
| ivoks | could paste send me on pm one of those user accounts you've created? | 21:46 |
| ivoks | from /etc/shadow | 21:47 |
| mrwes | therefore readable by others correct? | 21:47 |
| ivoks | notice that you shouldn't do that if you don't trust me | 21:47 |
| mrwes | heh | 21:47 |
| orudie | i can try john on my other ubuntu box | 21:47 |
| orudie | ok? | 21:47 |
| ivoks | sure | 21:47 |
| orudie | dont want to mess with this 1 too much | 21:48 |
| ivoks | mrwes: if you entered username and password, you should have it word readable | 21:48 |
| orudie | ivoks, wanna connect to my terminal ? | 21:48 |
| orudie | ivoks, i'll make you a user name | 21:49 |
| mrwes | ivoks, I don't understand that.... | 21:49 |
| orudie | ivoks, we can connect with screen -x | 21:49 |
| ivoks | mrwes: typo :) | 21:49 |
| ivoks | mrwes: you shouldn't have it world readable | 21:49 |
| mrwes | ahh...OK that's what I'm thinking! | 21:50 |
| mrwes | heh | 21:50 |
| ivoks | orudie: i'm not into sharing terminal thing :) | 21:50 |
| ivoks | orudie: that's like sharing your wife | 21:50 |
| ivoks | :D | 21:50 |
| mrwes | hrmm...perk | 21:50 |
| orudie | i'm not THAT attached to it | 21:50 |
| orudie | and i'm not married yet, but I see where you are coming from | 21:50 |
| ivoks | orudie: well, you just stared :) | 21:50 |
| orudie | ivoks, just started you mean ? | 21:51 |
| ivoks | right | 21:51 |
| ivoks | it's 22:50 | 21:51 |
| ivoks | time to close the lid | 21:51 |
| mrwes | thank ivoks | 21:51 |
| orudie | you going to bed ? | 21:51 |
| ivoks | 'night | 21:52 |
| orudie | bye ivoks | 21:53 |
| dthacker__ | is the bacula-console-qt packge the same thing as Bacula's "Bat" utility? | 21:54 |
| ivoks | yes | 21:54 |
| dthacker__ | thank you | 21:55 |
| orudie | i have my bosse's laptop in front of me ivoks | 21:57 |
| uvirtbot | New bug: #356599 in openssh (main) "ssh public key not working" [Undecided,New] https://launchpad.net/bugs/356599 | 22:15 |
| uvirtbot | New bug: #354850 in mysql-dfsg-5.0 (main) "amarock" [Undecided,Incomplete] https://launchpad.net/bugs/354850 | 22:41 |
| orudie | ivoks left ? | 23:12 |
| renatokrause | Good evening, I am writing a page in init.d from / etc / init.d / skeleton. I have some doubts. Anyone know this part? | 23:49 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!