[00:21] mathiaz: Brian Murray suggested that I might want to make a SRU proposal for bug #296952, regarding Ubuntu 8.04. While preparing (and testing) the debdiff I of course ran into bug #323755. Think this would be a good time to suggest a SRU for that bug as well? [00:21] Launchpad bug 296952 in mysql-dfsg-5.0 "mysqlhotcopy failed on table with hyphen in name" [Undecided,Fix released] https://launchpad.net/bugs/296952 [00:21] Launchpad bug 323755 in mysql-dfsg-5.0 "server-cert.pem expired: "Not After : Jan 27 08:54:13 2009 GMT" - ssl related test suites fails because of expired certificates" [Undecided,Confirmed] https://launchpad.net/bugs/323755 [00:21] New bug: #373012 in mysql-dfsg-5.0 (main) "package mysql-server-5.0 5.0.67-0ubuntu6 failed to install/upgrade: subprocess post-installation script returned error exit status 14" [Undecided,New] https://launchpad.net/bugs/373012 [00:22] andol: yes [00:23] mathiaz: Ok, will do. [01:10] I have an ubuntu lamp server and I would like it to display pertinent information directly to me when I login. For example... serious apache/mysql errors.... penetration attempts.... etc. Is this possible / a good idea? === jes_ is now known as XiXaQ [01:13] marksman: if you generate that stuff periodically and then display it, prolly not so bad. on the other hand, if the system is under load and simply logging in fires off a bunch of regex, you might have problems if the server is under load [01:14] and i repeated myself there.. [01:14] marksman: you might just install logwatch and have it emailed to you daily [01:14] that just emails all logfiles? [01:15] no. you should 'apt-cache show logwatch' [01:19] Hi, does the 9.04 server give you an interface for managing samba or do you still need to manually edit conf files? [01:22] fbc-mx, the repos are the same as regualr ubuntu [01:22] basically you can install a gui if you need [01:22] but one is not provided as default [01:22] because, it is the SERVER edition [01:23] darthanubis, how would I go about locating a text based gui? [01:23] search synaptic [01:23] or apt-cache [01:23] google [01:23] etc. [01:23] text based gui? [01:24] uh? ssh? [01:24] foxbuntu, yeah like aptitude.. [01:24] :P [01:24] fbc-mx, sorry, Im not adding anything here...I am just feeling a little puncy so I am pulling your chain [01:25] foxbuntu, it's still a gui.. even if it's not running under gnome... and and it better than digging into conf files when all your interested in are results. Sometime you don't have the time to learn every setting in a conf and just want a gui to do the basics. [01:26] a gui will often break something while fixing another, i dont use them if possible [01:26] fbc-mx, to an extent yes [01:28] fbc-mx, what are you trying to accomplish on your server? [01:28] fbc-mx, other than a "text based gu" [01:28] s/gu/gui [01:29] foxbuntu, just basic management.. rights controls etc... [01:29] fbc-mx, then you might consider ebox [01:30] foxbuntu, I have to have a working Ubuntu samba server by Monday or my name is MUDD. I opened my big mouth at a management meeting and mentioned that a linux server would increase the uptime of the server, due to downtime cause by getting the windows server os infected all the time. So now I gotta make this happen. [01:31] what is the recommended way to go about trying ebox? install u-server via iso and then ebox is the next package you install? [01:31] fbc-mx: if the os is getting infected all of the time, you have other problems ftr [01:31] mikegriffin, that would be one way [01:31] fbc-mx: you might just try swat? [01:31] foxbuntu: might there be a better way? [01:32] fbc-mx: do not use swat apparently [01:32] mikegriffin, not really, you could do it in a VM to keep it contained while yo try it [01:32] i just didnt know if there was an image that set stuff up in a way specifically for ebox [01:33] ebox can find the existing stuff generally if it is pretty stock i guess [01:33] fbc-mx, being a windows consultant to pay the bills, if you have lots of down time and infections in your file server, you have other security issues in your infrastructure that need plugged [01:33] mikegriffin, the Windows guy is a jerk and doesn't know what he should and doesn't want to put the work into tightening up network security. So I proposed a linux solution the just works. [01:34] foxbuntu, ebox looks right up my alley though... [01:34] fbc-mx, yeah...should be what you need [01:34] fbc-mx, but your also likely going to need ldap+kerbros support setup for samba [01:35] fbc-mx, webmin [01:35] darthanubis, no no [01:35] lol [01:35] but a gui other than that is a-ok [01:35] darthanubis, webmin != good [01:35] is ebox an ubuntu thing? i dont see it on debian testing [01:35] fbc-mx, you said you did not care how stuff works [01:35] mikegriffin, yes...the the ubuntu-server management app [01:35] it does the job [01:36] foxbuntu, I typed "sudo shutdown now" and I get a recovery menu on ubuntu server.. Is there some new special command to get this done? [01:36] fbc-mx, yup, on servers you need to do sudo shotdown -P now [01:36] what would be the diff between -h and -P ? [01:37] mikegriffin, man shutdown :) [01:37] darthanubis, No, I do. How ever I don't have the time right now to dig into it. I need a solution STAT. No like4 or 5 days after I read enough howto's to figure it out. [01:37] foxbuntu, right [01:37] i did, sorry [01:37] fbc-mx, webmin works [01:37] NOW [01:37] darthanubis: webmin works like windows 'works' [01:37] you don't ahve to learn anything [01:37] mikegriffin, but it works [01:38] darthanubis: add a redirectperm in apache through webmin [01:38] mikegriffin, the guy is lazy [01:38] i gave a lazy option [01:38] windows is for the lazy [01:38] we agree [01:38] ebox seems more intuitive [01:38] * foxbuntu can see this is going to take a turn for the worse and returns to productive things [01:38] ha, thanks fox [01:38] later guys [01:38] prescient [01:39] nice [01:40] darthanubis, I'm using webmin manage our hosted company webserver. So I'm quite familiar with it. However it just does too much. I wish I could like remove the plugins I will never use and it will only customize with the left over plugings and not continue to suggest option for plugins that aren't even installed. [01:40] it does that [01:40] it called modules [01:40] and they don't all have to be installed or used [01:43] darthanubis, yes, but I remove modules, and webmin continues to give me options for modules that aren't installed. I forgot what happened one time but I think I recall making a change to a domain, and it asked me if I wanted to sync it with a service the server wasn't even running, and the plugin wasn't even installed.. Which is why I shy away from webmin. webmin to me is like a lazy webmasters tool. For someone who knows the rope, but chooses a nic [01:43] e interface to do the work for you. [01:44] I seem to never have these nightmare experiences that others have? [01:46] darthanubis, you're perfect! [01:46] heh [01:47] :-P [01:47] ah man [01:47] your over... [01:47] foxbuntu, what are you doing out of the ubuntu-mythtv channel? [01:47] get back where you belong [01:48] darthanubis, Im never out of there :P [01:48] ;) [01:53] foxbuntu, darthanubis , mikegriffin , well wish me luck. I think that I will crowned network guru after this coup, and the network guy will be demoted to some paper pusher job. [01:54] fbc-mx, gl... [02:02] foxbuntu, how do I make ubuntu server scan for a new NIC and set it up in the interfaces file? [02:10] fbc-mx: the nic should be present, checked ifconfig -a ? [02:16] mikegriffin, I thoguth maybe a modprobe but, I wouldn't even know where to start trying to identify which driver goes with which card. [02:17] mikegriffin, yeah it is it's just not setup... I never knew that ifconfig-a would show me interface that weren't setup... kewl.. I learn somethign new every day. [02:28] so i added a bad rule to ufw, how can i see a rule list so i can remove it? [02:28] does ufw store that list some place? [02:29] storrgie: sudo ufw status # shoudl show 6you what it is doing. Then use sudo ufw delete whatever to delete the bad rule [02:30] http://pastebin.com/m6d347ffe [02:31] does it store these in a file [02:31] its not in /etc/ufw [02:31] storrgie: /var/lib/ufw/user*rules [02:32] storrgie: what was the command you used to add this errant rule? [02:32] lawl [02:32] umm [02:32] well i want to add a port range [02:33] specifically 56000-57000 [02:33] allow all of them [02:33] i dont remember... it did break it... like a bawsss [02:33] storrgie: you don't have it in your command history? [02:33] i did it 2 days ago [02:33] this box has been neglected [02:33] Unless you type a lot it may well still be in your command history :) [02:34] do you know how to do port range? [02:34] oh i bet it is [02:34] i just dont want to hit up a billion times [02:34] history | grep ufw [02:34] ummm [02:34] i think i was a diff user [02:34] one moment [02:34] anyway while i look [02:34] do you know how to do port ranges [02:35] man ufw suggests port ranges use a colon separator, so sudo ufw allow 56000:57000/tcp # looks reasonable to me [02:35] storrgie: man ufw [02:35] it requires the extended syntax [02:36] $ sudo ufw allow proto tcp from any to any port 56000:57000 [02:36] http://pastebin.com/m435b2233 [02:36] ohh [02:36] ok lemme try that [02:36] (assuming you want tcp, if not, omit 'proto tcp' [02:36] if i do will it do both? [02:37] yes [02:37] so [02:37] i deleted that line in user.rules [02:37] but when i do ufw status i get the same bad port error [02:37] do i need to bounce ufw? [02:37] storrgie: what version of ufw are you using? [02:38] 0.23.2 [02:38] (actually, 'ufw allow 56000:57000/tcp' does work on jaunty) [02:38] well [02:39] storrgie: can you paste your user.rules and user5.rules files? [02:39] lemme show you my user.rules [02:40] err user6.rules [02:40] http://pastebin.com/m563e4f6e [02:40] storrgie: ok, now do: [02:40] ok now im getting status not loaded [02:40] $ sudo ufw disable [02:40] $ sudo ufw enable [02:41] jdstrand: now its fine i think [02:41] just need to add the range rule [02:42] storrgie: when you edit user.rules by hand, you need to flush the rules and reload them by disabling and enabling [02:42] generally, editing user.rules is not recommended, but if you have to, you can [02:42] ahh [02:42] ok lemme show u my new rules [02:43] http://pastebin.com/mc61beaa [02:43] storrgie: that is what you want, no? [02:43] i believe.... [02:43] scared! [02:43] im gonna enable [02:45] storrgie: did it work? [02:45] i believe so... [02:45] storrgie: sudo ufw status [02:45] yea its outputting fine [02:45] ok good [02:45] it doesnt show me the default [02:46] should my default be deny? [02:46] storrgie: that is the default policy, yes [02:46] storrgie: sudo ufw status verbose [02:46] excellent [02:46] thanks bud! [02:46] adding ranges was pissing me off.. [02:47] sure, np [02:47] I'll be sure to add a testcase for :56000:57000 and test on intrepid [02:47] ever use fail2ban? [02:47] im in intrepid :D [02:47] * jdstrand nods [02:47] 8.10 right? [02:48] im on an OVH box, so custom kernel [02:48] yes, 8.10 is intrepid [02:48] and no, I don [02:48] t use fail2ban [02:48] ahh ok [04:14] whoever told me to use mpd... is now my favorite person in the world [04:14] mpd is simply the best thing I've ever seen in my life [04:15] so if that person is here right now. Thanks =P === mcasadevall is now known as NCOmmander === NCOmmander is now known as NCommander === lamont` is now known as lamont [04:23] could anybody help me getting .citadel to come up on my server [04:26] hello people [04:31] i need someone to help me with email server [04:33] you having problems with a email server also [04:44] not problem [04:44] TimReichhart: i want to install and configure email server for my web site [04:44] im trying to do the same thing [04:45] I have been on this thing for almost a week now [04:48] well hopefully someone will come [04:48] Hi folks, I have just installed squid on Ubuntu, following the ubuntu server guide, and I haven't changed any of the config other than the http_port and the visible_hostname, but when I try to browse from my PC using the proxy, I recieve an error "Access Denied - Access control configuration prevents your request from being allowed at this time." even though I am on a 10.x.x.x network and 10.0.0.0/8 is in the ACL allow list by default. [04:48] i host my web site on my own server [04:49] Doble: what are you trying to do>?? [04:50] just set up a really basic proxy [04:50] caching and eventually bandwidth control [04:50] hmmm [04:52] Doble: check this https://help.ubuntu.com/8.04/serverguide/C/squid.html [04:54] Doble: by default, squid does not allow connections from anything but the localhost (i.e. the lo interface). [04:54] Doble: this is to avoid sysadmins accidentally exposing the service to an untrusted network. [04:54] Doble: if you examine the squid config file, you will see (commented out) examples referring to (IIRC) "our_networks". [04:55] grep -v ^\# squid.conf, that will help [04:55] mikegriffin: pah [04:55] egrep -v '^[[:space:]]*($|#)' is the full one. [04:56] BTW, you don't need to escape the octothorpe if it is preceded by a non-blank character. [04:56] uuu people showed finally [04:58] thanks, I am doing what I should have done to begin with and reading Squid's user guide :) I will be back in a few minutes once i've read through the first few pages [04:59] Doble: not if you figure it out [05:00] email server anyone? [05:09] i got php installed , what to do so i can use phpmyadmin on it? [05:11] what do you people think of this? http://www.howtoforge.com/virtual-users-domains-postfix-courier-mysql-squirrelmail-ubuntu8.10 [05:13] using a mysql backend for postfix is usually overkill [05:13] use system accounts when you can [05:15] whats he difference btw using system accounts vs mysql accounts [05:21] using an sql backend requires some sort of intermediary authentication such as sasl but has more flexibility for large scaling [05:22] well i will host probably 5-10 email accounts on my web site [05:22] no more [05:37] twb: thanks, I'm still having some trouble, I've added an ACL, and allowed it, and even tried commenting out the "deny all" ACL at the bottom, but I still get an access denied error [05:41] twb: nevermind, I had a stray space in one of my ACLs - looks like it's working now! [05:47] what MX priority? [05:48] wizardslovak: http://lmgtfy.com/?q=mx+record [05:50] lol nice [05:50] problem is i want to mae MX on domain name and it asks me for mx priority ( default is 10) should i leave it or change it? [05:51] one of those will likely work [05:51] night everybody [05:51] ok so i will leave 10 [05:51] night mike [05:51] damn it [06:04] is ispconfig good to use? [06:04] difference btw webmin and ispconfig [06:14] !webmin [06:14] webmin is no longer supported in Debian and Ubuntu. It is not compatible with the way that Ubuntu packages handle configuration files, and is likely to cause unexpected issues with your system. See !ebox instead. [06:23] !ebox [06:23] ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox [06:24] Is there a small "Powered by Ubuntu Server" badge somewhere for me to stick on Web pages? [06:25] check google images [06:26] I did, but I've not found anything appropriate. [06:26] ok so now i am f$%^&d [06:26] ? [06:27] i was trying to install ispconfig , and now i cant see my website again [06:27] how can i remove it? [06:28] i tried apt-get remove ispconfig but it says "couldnt find package ispconfig" [06:33] did you install it via apt? :) === mattt_ is now known as mattt [06:36] ok i used uninstall.php [06:36] i dont have it nomore [06:36] but still i cannot see my website [06:37] www.wizzy.us [06:37] before i installed it it worked fine [06:37] should i restart server or somethin? [06:38] no idea [06:38] damn [06:38] but if ispconfig is anything like plesk ... good luck :) [06:38] plesk?? [06:38] it's similar to ispconfig i believe [06:38] hmm [06:38] lets you config all your web hosting through an admin panel [06:39] so you dont really know how to help me [06:39] nope [06:39] can i check if apache is running [06:39] sure [06:39] try 'apache2ctl status' [06:40] (provided you're using apache2) [06:40] give me sec trying to reset server [06:40] damn i am always stupid enought to try everything [06:40] and then something is fucked [06:41] language [06:41] sorry [06:41] w3m: Can't load http://localhost:80/server-status. [06:41] :) [06:41] /etc/init.d/apache2 start [06:42] http://pastebin.com/m131d2739 [06:43] ok i see apache config has something wrong [06:43] oh [06:43] sorry [06:43] ?? [06:44] you need to use sudo [06:44] 'sudo /etc/init.d/apache2 start' [06:44] "apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1 for ServerName" [06:47] so what do you think? [06:47] i think my domain name has been changed [06:47] whats the default apache config file? === RoAk is now known as RoAkSoAx [06:48] hmm, check under /etc/apache2/sites-enabled [06:49] nothing [06:49] i opened it with nano [06:51] its folder with 000-default and 000-ispconfig.conf [06:51] ok what if i remove 000-ispconfig [06:51] then apache should read from wizzy.us [06:52] i mean from 000-default [06:53] ?? [06:53] then i would need to point apache to read from 000-default [06:55] sorry, not familiar w/ ispconfig, so i don't know what changes it could have made [06:56] wizardslovak: try moving 000-ispconfig.conf out of the way (ie. to /root or /tmp) and then restart [06:56] ok i removed it [06:56] command /etc/init.d/apache2 restart?? [06:57] pache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1 for ServerName [06:57] apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1 for ServerName [06:57] as i thought [06:57] i need to change apache config file maybe [06:59] can you do this for me [06:59] i am reading apache2.conf [06:59] netstat -na | grep :80 | grep LISTEN [07:00] error grep:80 command not found [07:00] try again [07:00] :) [07:00] "grep:80" [07:01] tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN [07:01] seems to be running then [07:01] dude, try wizzy.us, it's working [07:01] lol [07:01] how come? [07:01] I'm going to bed. [07:02] nite ball [07:02] ball: night [07:02] ok i see [07:02] in apache2.conf [07:02] there is " [07:02] Include the virtual host configurations: [07:02] Include /etc/apache2/sites-enabled/ [07:03] correct [07:03] so that mean by removing 000-ispconfig , apache read other file which is 00-default [07:03] which is right one ;p [07:03] well [07:03] it would have still read 00-default [07:03] but it would have read it AFTER 000-ispconfig [07:04] i removed it [07:04] right, but before you removed it [07:04] i know [07:04] uuu [07:04] i feel better [07:04] whats stored in /tmp [07:05] i se i got used 11mb out of 471 [07:05] typically tmp files [07:05] hey, gotta jet, brb [07:05] * mattt is afk [07:05] sure [07:08] that email how tos are pretty tough [07:23] how to add repository? [07:32] I need to allow a nonroot user access to bind to port 80 -- what options do I have in Ubuntu server 8.04? [07:33] oh_noes, sudo? [07:33] oh_noes: the program that binds to port 80 must be setuid (or via sudo), and then immediately relinquish its privileges after binding. [07:34] hmmm ebox doesnt work with 8.10 [07:34] Or, you could set up mod_proxy or mod_rewrite and connect it to the user's high-port binding. [07:34] I think nginx can do that easily, too. [07:35] I dont want to grant the program sudo/root rights though. 100% on root user, except now with ability to bind to port 80 [07:35] What is this program? [07:35] and it needs to be done at the OS level, without application changes [07:36] just a custom java app. [07:36] Why does it need port 80, specifically? [07:36] because it's a web server? [07:36] oops, -? [07:36] Web servers aren't required to use port 80. [07:37] because the business has a requirement to run it on port 80, I have the IT requirement to ensure its nto running as root [07:37] Then we come back to16:38 Or, you could set up mod_proxy or mod_rewrite and connect it to the user's high-port binding. [07:37] in solaris it's just a matter of priv_netaddr access .. i was hoping something identical existed in debian stack [07:37] You run a simple service on port 80 that just redirects requests to the java app [07:38] oh_noes: proxy it. Or if you have a decent router between server and Internet, do the port mapping in the router instead. [07:38] I'm not aware of anything like that, but that doesn't mean it doesn't exist. [07:38] hrmm, I wonder if apache2 can handle the data piping, similar to mod_jkk [07:38] I'd say DNAT is overkill for this [07:39] DNAT is getting outside the scope of the initial requirements, obviously we want to random custom java on our servers as non-root [07:39] I just didnt think ubuntu would have such a hard time handle it [07:40] since we got here people ill ask [07:40] did anyone installed email server on ubuntu?? [07:41] wizardslovak, i'm sure theres an email server on ubuntu somewhere in the world [07:41] oh_noes, the other option is no one here has bothered to do whatyou need. [07:42] i know i need someone to guid me thru [07:42] hello. samba question, please. even though i've auto home directories configured, they seem to not appear in the list. if i don't set 'browseable = no' the homes share is visible. help? 'smbclient -L SERVA': http://pastebin.com/f2f9e6da5 testparm: http://pastebin.com/f64286115 [07:43] have you followed the guide on the wiki(s)? [07:43] DawnLight: home directories are only visible to the users that own them. Dunno if that helps... [07:45] twb: "The browseable flag for auto home directories will be inherited from the global browseable flag, not the [homes] browseable flag. This is useful as it means setting browseable = no in the [homes] section will hide the [homes] share but make any auto home directories visible." [07:45] so they're supposed to be visible [07:47] Does anyone have any experience installing ehcp? [07:48] * Nafallo doesn't even know what it is [07:48] nxvl: This bit from the changelog needs to go: + - Don't fail to run iptables-save if iptables module isn't loaded. [07:48] nxvl: That's what this patch did: + * Droped 0903-autoload-module-in-iptables-save.diff, fixed upstream [07:48] its a new web host control panel for Ubuntu [07:49] ah [07:49] http://www.howtoforge.com/instaling_ehcp_on_debian_ubuntu#comment-3886 [07:49] Never heard of it. [07:49] its actually pretty nice [07:49] clean layout [07:49] soren: right i forgor to change that in the changelog [07:49] forgot* [07:50] soren: you want me to prepare a new patch? [07:50] Nafallo can you tell me how I could add these to my sources.list http://www.ehcp.net/?q=node/389 [07:50] I went to the url but its just directories? [07:51] when I do install for ehcp it tells me my sources.list file contains very few sources [07:51] ??? [07:51] I dont know what they mean by that [07:51] nxvl: Nah, that seems to be the only problem, so I'll just do it for you. [07:52] ar: sorry, I can't. I got to run. [07:52] nxvl: I just need to test-build it, and I'll upload. Thanks for doing it! [07:52] ok np thank you [07:52] * nxvl HUGS soren [07:52] soren: yeah, it was quite a lot of work, some patches didn't applied, so i needed to re-do them [07:52] anyone know how to add http://www.ehcp.net/?q=node/389 to source.list ? [07:52] soren: plus dig into changelogs to find out about that patch [07:52] soren: but i'm happy to help :D [07:53] nxvl: Yeah, sorry I didn't tell you. I forgot all about submitting that stuff upstream. [07:53] ar: man sources.list may offer some clues ... although that is a slightly odd-looking URL for a repository [07:53] soren: the issue was that the upstream changelog isn't in the source [07:53] soren: so i needed to go into the web page and start openning one by one the changelogs [07:54] soren: i noticed that it was included in the source, i saw some bits of the patch, and some other quite different [07:54] yeah agree jmarsden, I thought maybe it would be text I could copy and past into the source.list but its directories [07:54] ar, and i'd suggest you use a file in sources.list.d instead of editing the real thing [07:54] strange [07:54] soren: so i went to the changelogs just to be sure [07:54] nxvl: Yeah, the patch changed quite a bit while I was discussing it with upstream. that's the way it goes sometimes :) [07:54] how come Kamping_Kaiser? [07:54] soren: plus the DM didn't document some changes that i noticed in some files [07:55] soren: i can imagine [07:55] not wise to edit the source.list file? [07:55] ar, so if you screw up you can remove one file to remove the repo, instead of trying to fix a key system file [07:56] ar: That URL is just a page with an example sources.list on it... it is not a repo at all, from what I can see. [07:56] i installed ebox , and it doesnt connect [07:57] Gotcha Kamping thank you :) [07:57] ar, :) [07:57] jmarsden so I would just open a file and copy the text in a new file as Kamping mentioned? [07:57] ar: Well, only if those examples are exactly what you need for your system... [07:58] how to find directory?? [07:58] What is it that you want from a new repo anyway? What software are you looking for? [07:58] find /directory [07:58] ehcp says It's need for their web host control panel [07:59] ar: Seem dubious to me... that is just an example Intrepid /etc/apt/sources.list file [07:59] lol ok, thanks jmarsden! [08:00] You might want to edit your /etc/apt/sources.list and uncomment a few repositories that are currently commented, maybe?? is that what ehcp is wanting? [08:01] Am I allowed to paste here? [08:01] !pastebin [08:01] pastebin is a service to post multiple-lined texts so you don't flood the channel. The Ubuntu pastebin is at http://paste.ubuntu.com (make sure you give us the URL for your paste - see also the channel topic) [08:02] This is what it says here http://pastie.org/470901 [08:03] The thing is these are intrepid source.list files Im running Hardy? [08:03] ar: So it just wants to see a few more lines in the sources.list, so go ahead and edit yours and uncomment some (reasonable) ones. [08:04] I'd suggest making sure you -security in there, as a start. But really, that message is not an error, just "advice" you can ignore if you want to. [08:04] jmarsden theres nothing commented out in the source file http://pastie.org/470903 [08:05] ar: Looks fine to me, ehcp is warning you about nothing important, just ignore the warning :) [08:06] :) ok thanks Jmarsden [08:10] hi, in the smb.conf does uncomment mean remove the ; ? [08:12] arvind_khadri: Yes, or the # -- whichever is at the start of the line you need to uncomment. [08:13] jmarsden: ; in this case [08:15] jmarsden: is it compulsory to enable cups in smb.conf to enable printing on a shared network [08:16] arvind_khadri: I don't know, but I don't think so... I'd read the Samba docs to find out. [08:18] nxvl: Uploaded. [08:25] hey, anyone able to tell me real fast how to put a directory via ftp? [08:25] tells me not a plain file, and cant find an option in 'man ftp' [08:28] how to reinstall apache, in a way that the /etc/apache2 directory and it's contents is recreated [08:29] all I get I reinstall is empty httpd.conf [08:29] all I get if I reinst.... [08:30] ha1331: httpd.conf is empty by default. [08:30] ha1331: Look at apache2.conf instead. [08:31] sorenno, that's what I'm saying... no other configs than empty httpd.conf [08:32] need to reinstall it in a manner that the /etc/apache2 is re-created [08:34] ha1331: http://people.ubuntu.com/~soren/apache2-etc.tar.gz is a clean /etc/apache2 directory (from Jaunty( [08:41] reid: FTP has no recursive put. [08:42] reid: some clients implement it client-side by repeatedly calling PUT on files and CD/MKDIR(?) on dirs [08:42] Failing that you can make an archive, e.g. tar --lzma -cf foo.tar.lzma foo; ftp -c put foo.tar.lzma fs [08:44] when i install ebox , i still be able to control server over ssh ?? [09:09] Hello, my postfix is complaining about greets to it's own hostname. -> http://ubuntuforums.org/showthread.php?p=7230610#post7230610 I don't understand it. [09:15] how do i make a windows machine logon to DC which runs samba [09:17] sluimers: it sounds like the problem is that your machine doesn't know if it's name is "mail.mydomainname.com" or "mydomainname.com" [09:18] sluimers: probably your /etc/hostname, /etc/hosts and DNS records do not match. [09:18] twb: how do i make a windows machine logon to DC which runs samba?? [09:18] arvind_khadri: I don't know of care. [09:19] arvind_khadri: I don't know oR care. [09:19] twb: where do i look ? [09:19] arvind_khadri: I've no idea. [09:19] both /etc/hostname and /etc/hosts say mydomainname.com [09:23] that's correct right? [09:23] hi, I'm using bind9 to forward *.ldnm.lan to 127.0.0.1, and having trouble getting it to work. I have the code/some debug commands at http://ubuntuforums.org/showthread.php?t=1151382 [09:23] my MX (Mail Exchange) should go to mail.mydomainname.com [09:23] I mean goes to [09:24] sluimers: to be honest, I'm not too sure. [09:24] ... they should all match mydomainname.com? [09:24] It's making me so confused [09:25] sluimers: I think the easiest way to fix the issue is to add an option to postfix that says "expect mail. sometimes". [09:25] where to use mail.mydomainname.com and where I should use mydoainname.com [09:25] sluimers: you'll have to talk to #postfix of wait for someone else here, to know how to do that. [09:55] how do i make a windows machine logon to DC which runs samba === jwstolk1 is now known as jwstolk [10:46] hi, I'm using bind9 to forward *.ldnm.lan to 127.0.0.1, and having trouble getting it to work. I have the code/some debug commands at http://ubuntuforums.org/showthread.php?t=1151382 [11:08] What other php.ini file do I need to edit to enable more than 2mb upload to my apache/gallery .. ? I've got /etc/php5/cli/php.ini at 12M upload size and still it tells me 2mb max (in drupal) .. help? [11:33] NineTeen67Comet: that's not the one [11:35] clue is in the path (cli) [11:35] real path is /path/to/your/website/.htaccess :) [11:36] :) [11:36] Kamping_Kaiser: okay I'll look around in ./drupal .. [11:36] no [11:36] I didn't think the cli portion of php was the issue .. [11:36] you need /etc/php5/apache2/php.ini [11:37] (assuming you use mod-php) [11:37] Chipzz: that sounds much more familure .. [11:37] if you edit /etc/php5/apache2/php.ini, you'll have anoying questions on upgrade [11:37] and apache needs a restart for that setting to take effect [11:37] (not reload, restart) [11:37] if you add /etc/php5/conf.d/my_cool.ini you'll avoid that anoying question [11:38] Hi, I have installed squirrelmail, what are my usrname and password? [11:38] in both cases you'll impose some config to all of your sites [11:38] Where can I can find them? [11:38] so, having it in .htaccess is the best thing to do [11:38] ivoks: if I add my own .ini what info does it need? Basically just the maximum file size line? [11:38] and how can I edit/add/remove new usernames and passwords? [11:38] but sure, just ignore me and do what Chipzz told you; then come back in couple of months and ask us the same question :) [11:38] NineTeen67Comet: yes [11:39] ivoks: that assumes you have AllowOverride All on in your vhost [11:39] Chipzz: sure [11:39] ivoks: tssssk [11:39] sluimers, usually the same logins available via your imap server [11:39] ivoks: Chipzz I'll have to see what my .config says about AllowOverride .. [11:39] ivoks: I'ld say my solution is a lot more correct than yours :P [11:39] Chipzz: why is that? [11:39] ivoks: and no, he will not come back [11:40] ivoks: give me one reason why my suggestion wouldn't stick? [11:40] hint: there is none [11:40] he will, once he answers 'Yes, overwrite package's conffile' [11:40] i didn't say it wouldn't work [11:40] *sigh* [11:40] * Chipzz hands ivoks a gun [11:40] it's just that smart people came up with .d directories [11:40] now shoot yourself in the foot [11:40] which enable you to have custom changes [11:41] ivoks: /etc/php5/conf.d/ is NOT meant for what you are suggesting [11:41] https://help.ubuntu.com/9.04/serverguide/C/samba-ldap.html is this fine for ldap configuration ? [11:41] Chipzz: ? [11:41] ivoks: it's meant for php extensions to drop their .ini files in [11:42] doh... [11:42] so, /etc/apache2/conf.d is of the same case? [11:42] not for making your own modifications [11:42] /etc/amavis/conf.d also? [11:42] /etc/modprobe.d/ also? [11:43] I would say it is, yes [11:43] Chipzz: if you don't understand it, don't put up a claim [11:43] Kamping_Kaiser, where can I see those logins available via my imap server? [11:43] ivoks: I was about to say the same thing about you [11:43] yes, extensions can put their .ini files [11:43] but it is also for custom files [11:44] like all other packages [11:44] ivoks: your argument is fundamentally broken. Since you're talking about different software packages, with different rules about parsing init-files, you can't make the comparison [11:44] i have ubuntu 8.04 , just installed samba and want to use ldap for authentication, how do i set it up ? [11:44] sluimers, depends how you configured it. couriers default is using pam, so anyone with a user account has an imap login [11:44] because right now, I'm able to receive and send mail through mutt, but that is simply because no loginname nor password is being asked [11:45] i give up [11:45] any linux user account? [11:45] ivoks: when you have 2 lines with the same setting, but a different value, different software may decide differently on which line wins [11:45] what should i know, i only package stuff :) [11:45] sluimers, what do you mean "any linux user account" [11:45] some software only looks at the first line, some looks at the last line [11:45] I tried using user:myname password:mylinuxpassword, but that doesn't work [11:46] so I call bullshit on your argument [11:46] Chipzz: those that look only one line don't have .d directories [11:46] by design they don't have them [11:46] others, by design, have them [11:46] all those written in etc/passwd [11:46] what crack are you on, exactly? [11:47] sluimers, auth.log will show you attempted logins [11:47] assuming your using pam for logins... [11:47] the existance of .d directories has nothing to do with what you say, rather with the ability of the software to cope with include directorives in their conf files [11:47] I again call bullshit on your argument [11:49] user root, user myname, user getmail? [11:50] ivoks: what you're saying shows a very poor understanding. I can have one config file with 2 lines with the same setting. that does not relate to having a .d directory at all, it is a completely orthogonal issue [11:50] so it's myname? but I tried myname, I tried the linux password of myname, it doesn't get me into squirrelmail [11:51] what I am referring to is how those issues are resolved. ie, first-match-wins or last-match-wins [11:51] sluimers, so fix your setup [11:59] how do i populate ldap db ?? [12:00] ldapvi :) [12:00] Jeeves_, :) [12:01] Jeeves_: was that for me ?? i cant use it here... am actually using webmin as the front end ? [12:03] arvind_khadri, then stop asking questions you dont want answers too. [12:03] !tell arvind_khadri about webmin [12:03] arvind_khadri, please see my private message [12:12] Kamping_Kaiser: by i cant use it here i meant that i couldnt find that command on auto complete [12:13] arvind_khadri, so install it [12:14] Kamping_Kaiser: ok got it, i have a Windows server with all the users, how do i replicate the stuff on this machine ? [12:14] no idea. [12:28] Kamping_Kaiser: ldapsearch -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase={1}hdb , i get invalid credentials [12:40] Is there a way to purge spam mail from amavis on ubuntu-server ... if so what do I need to type in! [12:54] Kamping_Kaiser: you there? [12:55] yes, but i dont use any of that software [13:04] Hello there [13:07] New bug: #346980 in system-config-printer (main) "Crash after searching network printer with Samba (dup-of: 368273)" [Medium,Triaged] https://launchpad.net/bugs/346980 [13:08] New bug: #350697 in system-config-printer (main) "adding printer via samba crashes when looking for network printer (dup-of: 368273)" [Medium,Triaged] https://launchpad.net/bugs/350697 [13:13] is it possible to upgrade from ubuntu server 8.10 32bits to 8.10 64bits? [13:13] afaik no === jes_ is now known as XiXaQ [14:04] how can I verify if someone changed the password for the default user? [14:04] I am logged in as a user with root access through sudo [14:13] hi, i get invalid credentials even if i enter the correct password in ldap [14:14] fevel: passwd -S [14:14] thanks [14:15] theres also chage [14:15] fevel: but you need sudo for it, right? [14:15] yes [14:16] err, you don't :) [14:16] both worked [14:16] chage -l username [14:16] for chage you do [14:16] uyes [14:16] arvind_khadri: what do you do, exactly? [14:18] ivoks: am following the community documentation and setting up ldap, where i need to do ldapadd [14:18] how do you run ldapadd? [14:21] could you paste the command you are running? === asac_ is now known as asac [14:40] hi [14:40] I'm trying to get coredumps to work (apache2.2.8 and ubuntu8.04lts) [14:41] already tried this: CoreDumpDirectory /tmp/apache2-gdb-dump in apache2.conf [14:41] # mkdir -p /tmp/apache2-gdb-dump [14:41] # chown www-data:www-data /tmp/apache2-gdb-dump [14:41] # chmod 0777 /tmp/apache2-gdb-dump [14:41] # echo 2 > /proc/sys/fs/suid_dumpable and # ulimit -c unlimited [14:41] but dont get dumps :-( [14:42] any hints? === Nicke_ is now known as Nicke === MohammadBoozary is now known as Mohammad[B] [15:29] quick Q. about apt-get updating a server... Do I need to script this in so that I do an apt-get upgrade every week for security upgrades? I dont get informed when there are new updates like you do with Desktop edition. Or is there a way to get informed on server without actually scripting an upgrade? [15:38] finite9, https://help.ubuntu.com/community/AutomaticSecurityUpdates ? === MohammadBoozary is now known as Mohammad[B] [16:20] What would be some benefits to running a ubuntu server vs. a debian server? [16:21] dmcoe, Ubuntu > debian > windows [16:21] dmcoe, heh...sorry don't have a good answer for you, someone else might [16:21] foxbuntu: lol, thanks :-P [16:23] dmcoe: You might want to check out http://www.ubuntu.com/products/whatisubuntu/serveredition it has lots of info specific to -server. Although I don't know if there is somehwere on there any debian vs ubuntu type thing. [16:24] dmcoe: newer kernel, predictive support cycle [16:24] dmcoe: some newer services (dovecot for imap/pop comes to mind) [16:26] ivoks, thansk for the suggestions. I'll work with drbd later on since I will have to go in a few mins. Btw... could you also check qemu? [16:27] RoAkSoAx: nxvl told you errors in qemu [16:27] ivoks, let me see :) [16:28] ivoks, oh yeah! didn't see the email... thanks :) [16:28] what was the name of that fire... thing [16:28] ivoks, firebug [16:29] that was uploaded [16:29] ivoks, btw, I have set up this wiki page... https://wiki.ubuntu.com/4nDr3s/Mentorship . there is a task list that I think it would help me... just leave some feedback about it,and if you agree so that we can work that way [16:31] heh, you are your own mentor :) [16:31] ivoks, well i always have questions.. and guidance... that's way i thought that it would be better to track all those things based on what the mentor wikipage says :) [16:31] RoAkSoAx: for other merges, surbscribe me first [16:32] RoAkSoAx: so i could take a look at it, and i'll surbscribe main or universe sponsors [16:32] ivoks, ok cool [16:32] RoAkSoAx: do you know how drbd works? [16:32] er... dpatch [16:33] ivoks, dpatch-edit-patch new.dpatch and then mamke the changes in the files and that's about it? [16:33] dmcoe, http://polishlinux.org/choose/comparison/?distro1=Ubuntu&distro2=Debian [16:33] RoAkSoAx: also debian/patches/list [16:33] RoAkSoAx: you need to add your patch in the list [16:33] foxbuntu: awesome site!! Thanks! [16:34] RoAkSoAx: it's also wise to apply other patches before creating your own [16:34] RoAkSoAx: dpatch-edit-patch -a (iirc) [16:34] cause you might be editing a file that some other patch changes [16:38] RoAkSoAx, are you trying to patch lirc? [16:38] oh sorry nvm === MohammadBoozary is now known as Mohammad[B] [16:38] * foxbuntu is half blind this morning [16:40] somebody know if 8.04 has any load test tool (for make a stress test)? [16:40] what kind of test do you wanna make? [16:41] a fair amount of different tests can be easily done with the tools you have at hand. [16:42] I need a hard disk test (I ran hdparm but I need other alternative), cpu load and memory === dendrobates_ is now known as dendrobates [16:43] stres [16:43] Kamusin, cpu load: dd if=/dev/urandom of=/dev/null bs=1K [16:43] er, stress [16:43] will only utilize a single core, though [16:43] ivoks, ok awesome [16:44] I have a dual core CPU but it's ok :) [16:44] ivoks, now i really gtg... talk you later.. i'll do the changes later on take care :) [16:45] Kamusin, memory: perl -e '$MEM = "\x00"; while(1) { $MEM .= $MEM; }' [16:45] crashme is also nice [16:46] apt-cache show crashme | grep -A2 WARNING [16:47] I will search crashme :) [16:47] thank's ivoks :) [16:47] Kamusin: try stress [16:49] ivoks, ohh that's what I need! [16:49] sweet, a complete test is just all I need , ivoks you are god [16:52] hi, I'm using bind9 to forward *.ldnm.lan to 127.0.0.1, and having trouble getting it to work. I have the code/some debug commands at http://ubuntuforums.org/showthread.php?t=1151382 [16:55] can you be a dns for 127.0.0.1/8 at all? [16:59] skiquel: ? [17:02] ivoks: be a dns? [17:02] * skiquel is very noobish [17:12] hello === ScottK2 is now known as ScottK [17:13] skiquel: you want to resolve hostnames to 127.0.0.1? [17:13] I'm trying to set up a PDC with LDAP and SAMBA, I've looked lots of tutorials, but none seems to help a lot with ubuntu [17:13] is there any good tutorial to start with? [17:13] what are the issues you are having? [17:15] morning people [17:15] ivoks: yeah [17:15] skiquel: why? :) [17:15] i can't get www.ldnm.lan / *.ldnm.lan to resolve to 127.0.0.1 [17:15] skiquel: you want to do that for other computers, or only for your? [17:15] because we need subdomains. [17:17] has anyone set up ubuntu server as a PDC with samba 3.3.2, openldap 2.4.15, smbldap-tools 0.9.5-1? [17:17] acalvo: what issues do you have? [17:17] acalvo: http://tuxjm.net/docs/cursos/Samba+OpenLDAP+PAM+NSS-4Ubuntu/html/ in Spanish, easy examples for easy copy & paste :D [17:17] acalvo: you know, we can't help you if you don't tell us where the problem is [17:18] ivoks: sorry, didn't saw that your last message was for me [17:18] does anyone know how to setup simple email server? [17:18] skiquel: so, 'dig @ip_of_dns_server ldnm.lan' doesn't work? [17:18] wizardslovak: ubuntu 9.04 - sudo apt-get install dovecot-postfix [17:19] 8.10 [17:19] then fire up your browser and visit help.ubuntu.com [17:19] everything seems to be working, I am able to log in using pam-ldap and nss-ldap, but whenever trying to join the domain, it creates the LDAP entry for the machine, asks to add the user and says no trusted relationship between the machine and the domain [17:19] jmedina, thanks, but it's a bit outdated [17:20] if i will upgrade to 9.04 , will all my settings stay? [17:20] wizardslovak: https://help.ubuntu.com/8.10/serverguide/C/email-services.html [17:20] (although I'll follow it again) [17:20] wizardslovak: they should, yes [17:20] acalvo: well I only use 8.04 LTS for production [17:21] jmedina, mm touché, maybe I should move to 8.04 instead... [17:22] how to backup 8.10? [17:22] ivoks: that seems to be forwarding [17:22] wizardslovak: what do you want to backup? [17:22] to 127.0.0.1 [17:22] skiquel: great, then it works :) [17:22] skiquel: that's what you wanted [17:22] well i want to back up all my settings/website in case upgrade will go wrong [17:22] wizardslovak: you have a web server? [17:23] yes [17:23] just upgrade [17:23] ivoks: =] but apache isn't showing anything? [17:23] wizardslovak: if you haven't added any programs outside of ubuntu, you won't have a single issue [17:23] i got :ebox [17:23] wizardslovak: eh... [17:24] that could be a problem [17:24] skiquel: so? are we talking about dns or web? [17:24] well i am not using it anyways [17:24] skiquel: do you understand what you have done? [17:24] well I'm not sure if my issue is DNS or not [17:24] i will probably remove it [17:24] skiquel: you've created a domain xyz.lan [17:24] ivoks: not at all [17:25] skiquel: which points to localhost [17:25] acalvo: that works for some customer installations without problems, acalvo if you really need something from jaunty then troubleshout, which it is a little hard because a lot of components [17:25] kk :) [17:25] skiquel: that means that when i ask your dns server about xyz.lan [17:25] skiquel: it will tell me that it's on my own machine [17:25] skiquel: 127.0.0.1 [17:25] but pinging it [17:25] 127.x.x.x always points to your local machine [17:25] its an unknown host [17:26] is that normal? [17:26] skiquel: yes if you don't use that server as a DNS for your machine [17:26] jmedina, I know, I was setting up a test server, and I need to move my current LDAP to a PDC, so it's kind of a playbox... [17:26] skiquel: does your /etc/resolv.conf shows 'nameserver ip_of_your_dns_server'? [17:27] is ip_of_dns_server my local ip? [17:27] it's ip of your DNS [17:27] im doing this all from a laptop, no other computers [17:27] the one with bind, the one you configured [17:27] skiquel: then yes, IP of your laptop [17:28] atm its pointing to my gateway (router admin ip) [17:28] skiquel: notice how setting up bind for task like that was pointless [17:28] skiquel: you could easily just add xyz.lan to /etc/hosts as an alias to 127.0.0.1 [17:28] ivoks, thanks [17:28] :D [17:28] what's your iQ? [17:28] what's your day job? [17:29] are you from canonical [17:29] 1) 5 2) sysadmin 3) no [17:29] actually, no, i'm CTO [17:29] :D [17:30] nice [17:30] ivoks, i'm back [17:31] RoAkSoAx: great ;) [17:31] ivoks, give me just a sec and i'll start working on drb [17:31] d [17:31] RoAkSoAx: you have 30 minutes, cause i have to leave then [17:32] ivoks, k, i'll fix the qemu changelog and i'll start working on drbd [17:33] RoAkSoAx: one by one [17:33] RoAkSoAx: and since this isn't server related, we could talk about it in ubuntu-motu [17:33] whats command for upgrade? [17:33] wizardslovak: do-release-upgrade [17:33] apt-get dist-upgrade? [17:34] ap-get release-upgrade [17:34] wizardslovak: no; do-release-upgrade [17:36] yann@yann-work:~$ sudo do-release-upgrade [17:36] sudo: do-release-upgrade: command not found [17:36] yann2: install update-manager-core [17:36] yannn "do-release-upgrde" [17:36] only no sudo no tnothing [17:36] wizardslovak: of course sudo :D [17:37] you can't update without root privileges [17:37] i didnt put sudo but i asked me for sudo password anyway [17:37] I wonder if this is going to make my notifications work, never got that [17:37] wizardslovak: nice, i didn't know that's possible [17:37] me neighter [17:38] re [17:38] what's the package for the notifications? [17:38] notifications? [17:39] yeah, the cool jaunty notifications (sorry, desktop :( ) [17:39] notify-osd [17:40] now move to #ubuntu :) [17:41] jmedina, thanks for your how-to (muchas gracias), but it seems that I've everything correctly... however, once logged using PAM-LDAP, I can't create files nor directories [17:42] acalvo: is nss working fine? [17:42] jmedina, ok... how to check nss? [17:42] acalvo: what error do you get? [17:42] acalvo: it is in the howto :D [17:42] ahahahah [17:42] getent passwd [17:42] getent group [17:42] getent passwd ldapuser [17:42] oh I had ubuntu-desktop uninstalled, good that's gonna be fine now :] [17:43] oh [17:43] yes [17:43] it is working [17:43] acalvo: ok [17:44] so what is the problem when you create files? [17:44] jmedina, no privileges [17:44] acalvo: why? [17:44] jmedina, oh, my bad... [17:44] acalvo: can you test from a logged in user [17:44] id [17:45] test@ESCI-PDC:/$ id uid=1001(test) gid=513(Domain Users) groups=513(Domain Users) [17:46] looks fine [17:46] You might not want that hyphen in your machine name btw [17:46] jmedina, ok, it was my bad [17:46] I've used smbldap-useradd -m -P test [17:46] s/ [17:46] s/-m/-a [17:46] genii: why not the "-" in hostnames? [17:46] :D [17:47] jmedina: I've found it's caused me grief previously [17:48] genii: I never have problems even with real TLD domains/hosts [17:48] acalvo: good so what s netx? [17:48] next [17:48] jmedina, well, stuck in the same prob [17:48] when joining the domain [17:48] which one? [17:48] it _seems_ to work [17:48] finally, it asks my to add a user (if I want) [17:48] I say "yes" [17:49] and then it says "no trusted relationship between the machine and the domain" [17:49] acalvo: have you used the procedure described in my howto? [17:49] I'm going thru right now :D [17:49] acalvo: check tha you use create machine scripts in smb.conf [17:50] well al lthat /usr/sbin/smblda-comandssss [17:50] yes yes [17:50] acalvo: try to increase samba log level [17:50] I've used the community how-to from Ubuntu [17:51] and try again, you might find more info in /var/log/samba/ [17:51] we should change topic to: [17:52] 'First time unix/linux admin? Discover the coolest feature ever: logs in /var/log!' === MohammadBoozary is now known as Mohammad[B] [17:52] jmedina, let' see... however, one step I didn't do was adding the WINS server in the wxp machine [17:53] ivoks: sounds good :D [17:53] Hi! [17:53] I need to configure my ubuntu server 8.04 to act as a router. I have set it up using ipmasq and dnsmasq. It works fine with no configuration, but now I want to set up some forwarding rules. Where do I start? I don't find any useful examples out there. [17:53] acalvo: it is not really needed, but windows netbios resolutions works in strange forms [17:53] ivoks, becoming a BOFH is not easy ;) [17:54] more when you have a lot of "Computer Browsers" machines in your network [17:54] ipmasq? [17:54] what is that? [17:55] acalvo: it is good to use WINS, so you avoid a lot of broadcast [17:55] jmedina, hope so! [17:55] jmedina, I don't really know. Some guide from back in time told me to install it. [17:55] acalvo: if you use DHCP you can send wins address to clients, and also the node type [17:55] jmedina, And it actually does some routing. :) [17:56] jmedina, I hope to do that in the production environment [17:56] acalvo: [17:56] do you see your user and machine account with pdbedit -L [17:56] ? [17:56] yes [17:57] johey: well if ipmasq dont provide fort forwardgint features you need to change to something else [17:57] I like shorewall, probably using ufw you can do that, Im not sure [17:58] y [17:58] jmedina, It does I think, but I can't find out how. And the manual is quite thin. It seems like I should set up the rules using iptables. [17:58] wizardslovak: d [17:58] :) [17:59] sorry i forgot that i am on konv and in shell it asked for something [17:59] I know I had it working for some years ago using webmin. Is that still an option? [17:59] I think webmin used to use shorewall as a backend. [18:00] ! webmin [18:00] webmin is no longer supported in Debian and Ubuntu. It is not compatible with the way that Ubuntu packages handle configuration files, and is likely to cause unexpected issues with your system. See !ebox instead. [18:00] jmedina, well, it seems to join the domain correctly [18:00] now it asks me to add a user [18:00] johey: try ebox [18:00] but it already exists [18:00] !ebox [18:00] ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox [18:00] is it fine? [18:00] Alrite! I've never heard about it. Thanks! [18:01] i just got it yesterday [18:01] pretty good tho [18:01] johey: ebox-project.org [18:01] jmedina, ignore my last comment, you've it in your how-to, and now it worked... [18:01] or not... :) [18:01] ivoks: ebox-platform.com ;) [18:01] ebox-platform.com [18:01] jmedina, so rebooting [18:02] hm... new buttons in google interface [18:02] johey: if you wan to intall it you need to get their web into repos [18:03] So I can't install it using the guide in !ebox? [18:04] i think you can [18:04] i did it true repos [18:06] acalvo: so ? [18:07] jmedina, it worked, but I couldn't get to the romaing profile [18:07] I'm checking if there is any permissions/settings bad [18:08] acalvo: check the logs :D [18:09] jmedina, yes!! [18:09] what are osolete packages [18:09] acalvo: where are you from? [18:10] jmedina, but, why you didn't set any logon variables? like logon path, logon drive, logon home... [18:10] jmedina, spain :) [18:10] acalvo: becasuse I store that info in ldap entries [18:10] I dont enable them globally [18:11] instead in smbldap-tools config [18:11] jmedina, ok... [18:12] aand not all the users need logon drive/path [18:12] jmedina, aha... [18:12] still can't get to the profile path [18:12] acalvo: how is configured? [18:12] is the config shown in pdbedit -Lv user ? [18:13] yes [18:13] it is shown [18:13] and the directory exists [18:13] ok update upgraded and ebox still works ;p;p [18:13] but it seems to not map the user and group of the directory [18:13] it shows 1000 1000 [18:13] drwx------ 2 1000 1000 4,0K 2009-05-07 19:02 acalvo [18:15] how is parent dir? [18:15] drwxrwxrwx 3 root root 4,0K 2009-05-07 19:15 profiles [18:15] how can i recreate the profile dir? [18:15] kirkland: are you running your mythtv on jaunty? [18:15] and what is acalvo uid/gid? [18:16] uid=1008(acalvo) gid=513(Domain Users) groups=513(Domain Users) [18:16] kirkland: I'm looking into bug 326768 [18:16] Launchpad bug 326768 in mysql-dfsg-5.0 "mysqld_safe thinks mysqld has crashed when it hasn't" [Undecided,Confirmed] https://launchpad.net/bugs/326768 [18:16] acalvo: any acalvo entry in /etc/passwd? [18:16] kirkland: and I'm not sure if the proposed fix is a good one [18:16] jmedina, no... [18:16] kirkland: do you have issue when booting the mythtv backend? [18:16] who is 1000 uid? [18:17] acalvo: could you plase pastebin pdbedit -Lv acalvo output? [18:17] jmedina, don't know... [18:17] Q: On ubuntu server 7.1, "apt-get update" previously has worked fine, but now returns errors on all packages. There is a 404 on 91.189.88.45, but I can ping that directly. [18:17] jmedina, http://pastebin.com/d14b1a82 [18:18] robert-b: update your repos [18:19] how? or is there a doc online describing what's happened? [18:19] mathiaz: i'm running frontends on jaunty, no backend though [18:19] mathiaz: yeah, i was looking at that with superm1 [18:19] kirkland: where you able to reproduce it? [18:19] mathiaz: i don't have jaunty on a backend [18:21] acalvo: plase now: smbldap-usershow acalvo [18:21] robert-b: Use old-releases now that it's EOL [18:21] jmedina, http://pastebin.com/d3d9d8f1d (i've recreated it) [18:24] robert-b, please see https://wiki.ubuntu.com/Releases [18:24] acalvo: Im not sure if profile dir already existed, could you try to remove the profile dir and logout/login again, so it is automatically created [18:25] jmedina, so, if I log off from win xp and log in againt, it should recreate the dir? [18:25] acalvo: yeap [18:25] I've tried removing the user, deleting the dir, relogin... [18:25] and it is not working [18:25] acalvo: plase relogin to check new permisions [18:25] moreover, now it gets the correct group (Domain Users) but it shows the id number for the user [18:26] drwx------ 2 acalvo Domain Users 4,0K 2009-05-07 19:15 acalvo [18:26] ups [18:26] not now [18:26] ok, relogin' [18:28] acalvo: for roaming profiles with osers with more than 2 GB files you should consider Folder Redirection [18:28] that will imporove login times [18:29] jmedina, ok, I'll try to set up later [18:29] once I get the test system and the wxp test machine working [18:29] weird, it does not get my profile, but I can reach it thru \\servername\profiles\user [18:31] I don't get it [18:31] it recreates the dir successfully [18:31] but it says it can not access it [18:32] jmedina, if I try to join the domain from the ubuntu machine using net rpc join -U user, it says could not open domain: NT_STATUS_ACCESS_DENIED [18:34] uf, gotta go [18:34] hope to catch you tomorrow here! [18:34] :) [18:34] ok [18:34] thanks a lot jmedina [18:39] is the quagga maintainer here? ipv6 bgp md5 does not work [18:44] robert-b: Please do not message me, I assist in public channel only. I mean by "use old-releases" is that 7.10 is now out of support. When this happens, the repositories are frozen and moved to old-releases.ubuntu.com so this is what you require to put for and release which you are still using past it's End Of Life [18:49] genii: so I add that to /etc/apt/sources.list , correct? [18:51] robert-b: Rather than add it... you replace whatever says something like: gb.archive.ubuntu.com with it [18:51] But otherwise, yes [18:53] genii: yes, I see it, for me is us.archive.ubuntu.com [18:54] genii: there are about 19 or 20 repositories in this file, none of them seem to work anymore [18:55] robert-b: Gutsy (7.10) is past it's End-Of-Life [18:55] robert-b: All repositories which began with us.archive.ubuntu.com will no longer work for it. Only for releases which are still currently being supported [18:56] genii: my goal was to perform a distribution upgrade, am I doing the right thing here? [18:57] robert-b: If you put the old-releases repos, then follow the upgrade method outlined for 7.10 to 8.04 on the ubuntu upgrade page, you should be fine. [18:58] robert-b: See https://help.ubuntu.com/community/HardyUpgrades#Network%20Upgrade%20for%20Ubuntu%20Servers%20(Recommended) for the 7.10->8.04 on servers [19:01] genii: ok, I see that. Is the correct syntax "deb http://old-releases.ubuntu.com/ gutsy" [19:01] robert-b: Yes [19:03] genii: do I add anything after that, such as universe, main, multiverse and so on? [19:04] robert-b: I'm not sure if all former repositories are included when it becomes archived. Probably most of them, though. If you add all and then can't fetch package list for some, comment those out (would be my suggestion) [19:05] genii: ok. The only one that confuses me is gutsy-updates [19:13] genii: upgrades are going to be incremental? Step through each version one at a time? [19:14] robert-b: The usual thing is Long-Term-Support versions can go to next Long-Term-Support version. But otherwise, yes, incrementally [19:15] genii: ok, thanks. [19:16] hey, can i preview virtualmin websites? on cPanel I can access sites via http://domain.com/~user [19:18] virtualmin? [19:18] virtualmin is to WHM what webmin is to cPanel [19:19] virtual host management, etc [19:19] well I really dont know webmin [19:19] I know whm/cpanel [19:19] with cpanel documentroot is /home/user/public_html [19:20] so you need virtualmin use same path if you want to preview with /~user/ [19:20] it uses the same path [19:20] and of course you need to enable and setup userdir module [19:20] i assume its rewrite trickery [19:20] ahh [19:36] jmedina: when trying to enable this apache complains about my lack of tld server name then says it cant bind to 0.0.0.0:80 [19:37] philsturgeon: is that the error or what you think it says? [19:37] the error [19:37] mmm [19:37] I dont think apache gives such a error [19:42] ahh no worries I got it in the end [19:42] thanks for pointing me to userdir [19:42] Usually it says something like can't determine hostname, using 127.0.01 or so on [19:43] idea for server team: why don't add pentaho bi suite (community edition) on ppa or other repository? [19:44] danielsan474: you can start contributing packaging it [19:44] danielsan474: use lanchpad, how is called "blue prints"? [19:46] jmedina, thank you. [19:46] I'll post or try to do a blue print request for that [19:57] hello, do you guys think a 32bit and 64bit install of ubuntu on the same machine could share a single /boot partition? [19:58] <_ruben> never tried, but might very well be possible [20:00] oops probably not. the kernel and initrd files don't include the arch in their filenames, so I guess the names would clash [20:02] that's too bad really [20:02] I would install a 64bit OS with virtualization support [20:02] then run a 32bit virtualized ubuntu [20:03] you get mixed enviroments without rebooting [20:03] evenin all [20:04] well never mind, actually I probably need to reinstall on my laptop because of package breakage I haven't found a way to fix, so I'd take the opportunity to switch to 64bits [20:06] I have my / and /home on separate logical volumes, so it's not too painful an operation [20:09] something weird happened to my scrollkeeper package: scrollkeeper-update called from postinstall scripts started segfaulting, preventing me from installing any further gnome packages [20:10] i tried purging and reinstalling scrollkeeper, but that didn't help, now the package refuses to be configured and spits out a weird error [20:11] drbobb: #ubuntu is the channel for desktop support. [20:11] ScottK: I know, but when I was there nobody seemed to know what I was talking about [20:12] Well that doesn't magically make it on topic for here. [20:14] ScottK: feel free to ignore my ranting then [20:24] but for the unlikely case that someone here might be able to make sense out of it, the error message is: [20:24] I/O error : Attempt to load network entity http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd === RoAk is now known as RoAkSoAx [21:18] New bug: #373406 in krb5 (main) "Sync krb5 1.7dfsg~beta1-3 (main) from Debian unstable (main)." [Wishlist,Confirmed] https://launchpad.net/bugs/373406 [21:37] kirkland: byobu - nice... :) [21:38] mathiaz: :-) welcome back [21:41] mathiaz: you already knew this word from your vast travels around the Orient? [21:41] kirkland: actually no - :) [21:41] kirkland: I haven't made my way to Japan... [21:41] kirkland: ... yet [21:48] soren: server-karmic-automated-kvm-testing - is this targeting kvm itself or any server related packages? [21:49] soren: ie testing of the kvm package or using kvm to automate package testing? [21:50] Hi [21:50] I want to find out why my server was restarted [21:50] just run a $cat syslog | grep reboot [21:51] found out the time the server was started again with that [21:51] but just before that point of time there is no trace of a shutdown command in the syslog [21:51] does this explicity tell me that the power was cut? [21:56] ZipmaO: it would be a good probable cause... problems with the power, or a hard reset or something [21:57] mathiaz: KVM itself. [21:57] ok cemec [21:57] mathiaz: I see how I should have made that clearer. :) [21:57] Nice, think I remember your name from this channel BTW [21:58] There is no trace of a explicit shutdown command from user, process or cron job.. guess I'll go for that as an answer [21:59] ZipmaO: is it hot in the server room? perhaps a thermal shutdown? [21:59] soren: great - it doesn't cover the same ideas as server-karmic-automate-pkg-testing-in-the-cloud [21:59] maybe a busted fan [21:59] Nah, no thermal problem [21:59] mathiaz: Nope. [22:00] I's hosted at a firends apartment, I'll ask him if they've had any power problems [22:01] However, I know that it probably not is software-related [22:01] thank's for the answers [22:21] kees: wiki.ubuntu.com doesn't list dapper as being a supported release [22:21] kees: until when is dapper supported? [22:24] mathiaz: dapper is no longer supported on the desktop [22:24] mathiaz: server it still is though [22:24] mathiaz: at least that's my understanding [22:27] kirkland: wouldn't dapper be supported on the desktop for another month or so? [22:28] ajmitch: ah, i guess you're right ... 6.06 [22:28] ajmitch: the 06 got me [22:29] yeah, the 6 week delay, though it still means another 2 years & a month of server support [22:30] so for the next LTS, will there be an easy way for server admins to see what is supported for 3 years vs 5? [22:30] * ajmitch isn't sure if it's done on a strict package by package basis or not [22:34] I need some help with installing postfix on ubuntu 8.10 i have been following the guide on ubuntu help but i am having issues, can someone please help me? [22:39] ajmitch: The other interesting case is that for Hardy, Ubuntu desktop is LTS, but Kubuntu is not. [22:40] * ScottK is curious about what's supported on that after October. [22:45] ajmitch: I've generally gone with the wag of ubuntu-desktop? 3 yrs. ubuntu-standard? 5 yrs. neither but still in main? hrm... good question [22:47] lamont: it's not something I need to worry about too much at the moment, but others will [22:48] yeah [22:48] and my version is nothing like canon [22:48] * ajmitch is still mostly running debian on servers [22:54] Things that are supported after oct for 6.06 server: http://people.ubuntu.com/~ubuntu-archive/seeds/ubuntu-server.dapper/server [22:55] from https://lists.ubuntu.com/archives/ubuntu-server/2007-July/000541.html [23:20] New bug: #372737 in samba (main) "Samba Chokes Randomly " [Undecided,Incomplete] https://launchpad.net/bugs/372737