[00:47] <pwnguin> does anyone know WHY stunnel is off by default?
[00:49] <kees> mathiaz: there will be a meeting at UDS to pin down the final list of packages that go EOL in June.
[00:51] <pwnguin> * Added /etc/default/stunnel with a variable ENABLE.
[00:51] <pwnguin>     ENABLE=0 by default since stunnel segv on some computer when all lines
[00:51] <pwnguin>     are commented (Closes: #197663, #197615)
[00:51] <pwnguin> kees: any security reason why I stunnel might not run by default?
[00:51] <pwnguin> s/I//
[00:55] <kees> pwnguin: errrm, dunno, I haven't used it much.
[00:56] <pwnguin> well, i guess i'll file a bug and see who calls me an idiot
[00:56] <kees> heh
[00:57] <pwnguin> its handy for encrypting stuff like synergy
[00:57]  * kees nods
[00:57] <pwnguin> otherwise you're just broadcasting root passwords over the network; probably not a great idea
[00:58] <kees> I always just used SSH for synergy
[00:58] <pwnguin> ?
[00:59] <pwnguin> i guess it's not quite the same
[00:59] <kees> ssh -L something:localhost:synergy-port synergy-host
[00:59] <kees> then connected synergy to port something
[00:59] <pwnguin> well, stunnel seemed easier for windows
[01:00] <pwnguin> anyways, bug filling time, then i leave work
[01:32] <NativeAngels> can u tell me if xen server works in ubuntu server 9.04
[01:41] <foxbuntu> NativeAngels, you will likely want to look here: https://help.ubuntu.com/community/Xen
[01:41] <NativeAngels> ok
[01:44] <NativeAngels> but will it work on 9.04 foxbuntu
[01:44] <foxbuntu> NativeAngels, afaik
[01:45] <NativeAngels> ?
[01:45] <foxbuntu> NativeAngels, as far as I know
[01:48] <NativeAngels> i get a perl error when i run xm create
[01:48] <foxbuntu> NativeAngels, poastebin the error
[01:48] <foxbuntu> pastebin*
[01:50] <NativeAngels> http://paste.ubuntu.com/166418/
[01:51] <foxbuntu> NativeAngels, thought you said perl error?
[01:51] <NativeAngels> sorry
[01:52] <NativeAngels> python
[01:52] <NativeAngels> how do i fix it
[01:52] <foxbuntu> NativeAngels, sudo apt-update && sudo apt-cache policy python | pastebininit
[01:52] <foxbuntu> then give me that url
[01:54] <foxbuntu> sorry typo in that
[01:54] <foxbuntu> NativeAngels, sudo apt-update && sudo apt-cache policy python | pastebinit
[01:55] <foxbuntu> ugh
[01:56] <foxbuntu> Im on a roll tonight
[01:56] <foxbuntu> NativeAngels, sudo apt-get update && sudo apt-cache policy python | pastebinit
[01:56] <NativeAngels> http://paste.ubuntu.com/166421/
[01:56] <foxbuntu> NativeAngels, yea, as I suspected
[01:57] <NativeAngels> whats wrong
[01:57] <foxbuntu> python version
[01:57] <foxbuntu> you have 2.6 (which is default is 9.04) but xm is referencing 2.5
[01:57] <NativeAngels> how do i fix
[01:57] <foxbuntu> you likely have a bug to report on xen, but in the mean time you can probably do this:
[01:59] <foxbuntu> sudo apt-get install python2.5
[02:01] <NativeAngels> do i re run the xm create now ?
[02:01] <foxbuntu> yeah...go ahead and try it
[02:04] <NativeAngels> this is what i got foxbuntu
[02:05] <NativeAngels> http://paste.ubuntu.com/166426/
[02:06] <foxbuntu> NativeAngels, did you sudo xm?
[02:06] <NativeAngels> no
[02:06] <foxbuntu> try it with sudo
[02:07] <NativeAngels> i got exactly the same result
[02:07] <foxbuntu> ok
[02:08] <foxbuntu> sudo apt-get install python-xen-3.3
[02:09] <NativeAngels> it says already newest version
[02:10] <foxbuntu> ok
[02:10] <foxbuntu> sudo apt-get install --reinstall python-xen-3.3
[02:11] <NativeAngels> ok done foxbuntu
[02:11] <foxbuntu> retry it now
[02:12] <NativeAngels> same error as b4
[02:12] <foxbuntu> hrm
[02:12] <foxbuntu> alright
[02:14] <NativeAngels> what do i do now
[02:14] <foxbuntu> NativeAngels, uname -r
[02:15] <NativeAngels> 2.6.28-11-server
[02:16] <foxbuntu> ah
[02:17] <foxbuntu> your booted into the wrong kernel
[02:17] <durt> hey guys, does the server use sysvinit or upstart?
[02:18] <foxbuntu> NativeAngels, go through all o these steps exactly to ensure you are using the proper things: https://help.ubuntu.com/community/Xen#Install%20from%20packages%20(recommended)
[02:18] <hackeron> hey, has anyone managed to get mod_xsendfile for apache working on jaunty? - anyone have a repository or package for it?
[02:18] <NativeAngels> someone said to user 8.04lts
[02:18] <foxbuntu> NativeAngels, what?
[02:19] <NativeAngels> of ubuntu as it works on there
[02:19] <NativeAngels> xen i mean
[02:20] <foxbuntu> NativeAngels, I would go through the documentation step by step again to make sure you set it up exactly as it is documented to work
[02:20] <foxbuntu> NativeAngels, xen has its own kernel, it doesnt run on top of the normal server kernel
[02:24] <storrgie> anyone know how to setup openssh to use arcfour?
[02:27] <twb> What is arcfour?
[02:27] <storrgie> twb: http://www.psc.edu/networking/projects/hpn-ssh/theory.php
[02:27] <storrgie> im not exactly sure
[02:27] <twb> Oh, RC4.
[02:28] <storrgie> ?
[02:28] <storrgie> you know this?
[02:28] <twb> -o Cipher=foo, where foo is whatever OpenSSH calls RC4.
[02:28] <twb> That assumes OpenSSH ships with RC4 support built in.
[02:28] <twb> You can also set that in your ~/.ssh/config (per user) or /etc/ssh/ssh_config (per host).
[02:28] <storrgie> twb: not exactly sure what you mean by that
[02:29] <storrgie> ahh can I?
[02:29] <storrgie> sshd config?
[02:29] <storrgie> its no server side?
[02:29] <twb> No, it's a client-side option.
[02:29] <storrgie> this is client config?
[02:29] <storrgie> ahhhh
[02:29] <twb> The ssh server makes a number of ciphers available, and the client picks the one it prefers.
[02:29] <storrgie> whats the line in the client config
[02:29] <twb> So in theory I suppose you could instruct the server to ONLY provide RC4.
[02:29] <storrgie> so im running ubuntu 8.10 with openssh, arcfour available?
[02:29] <twb> I don't know.
[02:30] <storrgie> how would I try it?
[02:30] <twb> This works: ssh -c arcfour fs pwd
[02:30] <storrgie> fs pwd?
[02:30] <twb> fs is my file server's hostname.  pwd is a command to run on it.
[02:31] <twb> Another example would be "ssh -c arcfour mail.google.com -t mutt"
[02:32] <storrgie> twb: PM
[02:33] <storrgie> ssh -c arcfour -p 11011 -X -L 3306:127.0.0.1:3306 user@host
[02:33] <storrgie> ?
[02:34] <storrgie> it seems to work
[02:34] <storrgie> i can connect, however Im not sure how to check
[02:34] <storrgie> I would like to specify this in the ssh_config
[02:35] <storrgie> ciphers
[02:37] <storrgie> is there a good program to do visual scp?
[02:37] <giovani> storrgie: GUIs aren't supported here
[02:37] <storrgie> pwaaahaha
[02:38] <storrgie> i just didnt know if there was something that would have some ridiculous options on scp that I dont know of
[02:38] <storrgie> im copying massive data over ssh
[02:38] <storrgie> like
[02:38] <giovani> man scp ... it's amazing
[02:38] <storrgie> i would like to do 25-50 GiB a day
[02:38] <giovani> don't use scp
[02:38] <storrgie> what do you suggest?
[02:39] <benc1> I'm trying to create a boot script and getting:  warning: /etc/init.d/./ejabberd missing LSB information
[02:39] <benc1> this is the boot script: http://dpaste.com/41995/
[02:39] <benc1> any ideas?
[02:39] <giovani> storrgie: depends on the situation, explain more about it
[02:40] <storrgie> giovani: its a box in another country, 100m connection... A group of individuals generating lots of data, would like to pull down a subset of that data for daily examination
[02:40] <storrgie> ive been just sshing in to look around
[02:40] <storrgie> but I would like to mirror some myself
[02:40] <giovani> storrgie: the data is entirely new every day?
[02:40] <storrgie> typically, otherwise I would use git
[02:40] <storrgie> i like git :D
[02:41] <foxbuntu> storrgie, sounds like a good se case for rsync
[02:41] <storrgie> is that encry?
[02:41] <giovani> uh, version control is not appropriate for this
[02:41] <giovani> rsync is a file transfer mechanism
[02:41] <storrgie> if it was incrememntal changes... then yes
[02:41] <giovani> encrypt it if you like
[02:42] <giovani> how much of the data changes from day to day?
[02:42] <storrgie> with ssh?
[02:42] <giovani> 1%? 10%? 100%?
[02:42] <giovani> no, with ssl
[02:42] <storrgie> um
[02:42] <storrgie> probably need about 10G a day to be really happy
[02:42] <giovani> why would you use a shell for basic encryption?
[02:42] <storrgie> on heavy days
[02:42] <giovani> you're not answering the question
 how much of the data changes from day to day?
[02:42] <storrgie> im giving you a file size
[02:42] <storrgie> it changes daily
[02:42] <storrgie> i would need a subset
[02:43] <storrgie> probably around 10 GiB
[02:43] <giovani> ok ... once again
[02:43] <giovani> not file size
[02:43] <storrgie> 100%
[02:43] <giovani> ok
[02:43] <giovani> so use sftp or something
[02:43] <storrgie> concerns about security... is that ok to use? everyone I hear says stay away from ftp
[02:44] <giovani> sftp uses ssh
[02:44] <giovani> ftp is just a protocol
[02:44] <storrgie> ah, but then why not just use ssh transfer
[02:44] <giovani> it can be encrypted just like any other
[02:44] <giovani> it's better at some things
[02:44] <giovani> scp is better at other things
[02:44] <giovani> it depends on your needs
[02:45] <giovani> anyway, if you'd like to use scp -- go ahead
[02:45] <foxbuntu> im not sure how rsync is a bad idea, have a cron script run each day to sync up the new and remove the old from the local machine, same thing we do for mirrors at Mythbuntu
[02:45] <storrgie> think sftp would be faster for the massive amount of data we are using
[02:46] <giovani> foxbuntu: nobody said it was a bad idea -- but if there's a 100% change rate ... you're not gaining anything by using it
[02:46] <twb> Both SFTP and (typically) rsync use SSH as the encryption layer.
[02:46] <foxbuntu> giovani, no, not really but he was asking for a simple way to sync data each day
[02:46] <giovani> foxbuntu: sure ... why is rsync more simple than scp or sftp?
[02:46] <storrgie> foxbuntu: it will be fine to manually select data
[02:46] <twb> If the majority of data is unchanged, rsync will DEFINITELY be more wire-efficient than a pure SFTP/SCP copy.
[02:47] <storrgie> are there any advantages to sftp over scp
[02:47] <giovani> twb: yes, we know, but we've already established that 100% of the data changes ... so, let's move past this
[02:47] <twb> rsync will ALWAYS require more CPU and I/O time on both ends than a raw SFTP/SCP, but usually this extra cost is negligible.
[02:47] <giovani> storrgie: yes, a number
[02:47] <twb> giovani: OK, sorry, I hadn't read back that far.
[02:47] <storrgie> because im currently scp'ing and with sftp i will need to install something new, have another service, have more ports open etc.
[02:48] <giovani> storrgie: no ... no ports open, sftp uses ssh
[02:48] <twb> If your data changes completely every day, I would advocate using scp -r with compression turned on.
[02:48] <storrgie> ahh im listening
[02:49] <twb> Both scp and sftp are enabled by default when you install openssh-server on Ubuntu, though the latter, at least, can be turned off.
[02:49] <storrgie> ahh
[02:49] <twb> Note that SFTP doesn't really have anything to do with FTP or FTP/SSL.
[02:50] <storrgie> apparently sorry, one of the others is using sftp
[02:50] <storrgie> just using the places>connect to server in ubuntu desktop
[02:51] <storrgie> same transfer rate
[02:51] <storrgie> I think the major issue is my ATT DSL to the box
[02:51] <storrgie> something is really slowing it down
[02:51] <twb> Try enabling -o BatchMode=yes in your scp/sftp invocation.
[02:51] <storrgie> Another guy is on comcast gets 1.2m from the box at all times, we ATT people are getting 120K
[02:52] <twb> storrgie: change provider, then.
[02:52] <storrgie> well can I run something to jump through the hops and tell me where the issue is?
[02:52] <twb> storrgie: you want to isolate the network latency?
[02:52] <twb> storrgie: try mtr-tiny.
[02:53] <storrgie> mtr-tiny <destination>?
[02:53] <twb> Yes.
[02:53] <foxbuntu> storrgie, are you att people all on the same connectionnNNN?
[02:53] <twb> foxbuntu: NNNN?
[02:53] <foxbuntu> ugh there goes the keybord misfire again
[02:53] <twb> Heh.
[02:53] <foxbuntu> crazy arse keyboard I have...
[02:54] <storrgie> no we are on different locations around USA
[02:54] <storrgie> mtr-tiny not installed
[02:54] <storrgie> isnt mtr installed by default
[02:54] <foxbuntu> storrgie, what is your DSL down stream vs his cable down stream?
[02:55] <storrgie> 600k vs whatever comcast is
[02:55] <storrgie> with their speedboost and all that
[02:55] <foxbuntu> well that explains it :
[02:55] <foxbuntu> :)
[02:56] <foxbuntu> your DSL is slow, not the server
[02:56] <twb> Is 512kbps down normal for a US DSL line?
[02:56] <foxbuntu> I think the slowest down stream comcast offers now s 5M
[02:56] <twb> I'd have expected at least 1.5Mbps.
[02:56] <foxbuntu> twb, in some places, yes
[02:57] <twb> foxbuntu: ah, fair enough.
[02:57] <storrgie> what about FISH?
[02:57] <foxbuntu> FISH?
[02:57] <twb> In some places, .au is still using satellite and 56kbps modems :-)
[02:57] <storrgie> fish://<uname>@address:port
[02:57] <foxbuntu> oh for the xfer
[02:58] <twb> foxbuntu: I think he's talking about gvfs protocols
[02:58]  * foxbuntu got lost on the topic segway
[02:59] <storrgie> im not familiar with fish?
[02:59] <storrgie> should i drop that idea also?
[03:02] <foxbuntu> rut oh
[03:02] <foxbuntu> almost out of battery power
[03:02] <foxbuntu> brb
[03:06] <captainkirk> i recently changed my servers name from emerald2 to emerald, but when i login it still says root@emerald2:~#
[03:07] <captainkirk> where do i need to make this change?
[03:09] <p_quarles> captainkirk: sudo hostname emerald
[03:10] <captainkirk> ok... seems to have worked.... thanks
[03:15] <twb> p_quarles: that only changes it until you reboot.
[03:15] <twb> captainkirk: in general, NEVER EVER EVER change a host's name after deployment.
[03:15] <captainkirk> hmmm is that the problem here....
[03:15] <twb> captainkirk: this is especially the case if you deal with LDAP.
[03:15] <captainkirk> twb: no ldap here (yet)
[03:16] <twb> captainkirk: for a base install with no services, you need to update /etc/hosts and /etc/hostname, and run "hostname <new name>".
[03:16] <twb> But you will probaly find a large number of other places where the name is written in /etc or /var.
[03:17] <twb> A way to avoid this issue is to always give a machine a unique name (e.g. "fred"), and then assign it roles (e.g. "mail" and "www") via DNS CNAME entries.
[03:17] <twb> Then if you want to e.g. move the web server from fred to anne, you don't change fred's or anne's name, just the CNAME.
[03:18] <captainkirk> twb: server is still in testing, so i will go ahead and make the changes to the hosts files... i understand your additional comments re DNS etc... good advice
[03:18] <twb> I suggest you grep -r emerald2 /etc /var
[03:18] <twb> grep -rl, maybe
[03:22] <captainkirk> twb: this identified the ssh key only
[03:26] <durt> hey guys, does anyone know if ubuntu server use sysvinit or upstart?
[03:27] <twb> durt: upstart
[03:27] <durt> second question then, anybody successfully replace upstart with sysvinit?
[03:27] <twb> That is not supported.
[03:29] <durt> ok, third question, anybody get bootlogging (userspace) to work with upstart?
[03:30] <twb> Har har.
[03:30] <twb> Assuming you're talking about bootchart-style "tell me what is making boot so damn slow" logging
[03:31] <durt> no, I need a mechanism to log messages on boot that do not get logged to dmesg
[03:32] <twb> You mean lines like "Starting web server... apache" ?
[03:32] <durt> any message that happens before syslogd etc. starts up.
[03:34] <twb> Basically there is no mechanism for that.
[03:34] <twb> You could probably build one, with a little effort.
[03:35] <twb> Actually, console=/tmp/foo.log might work for some of it...
[03:35] <durt> with a little effort I could implement the two work-arounds but I'm being lazy :)
[03:36] <durt> console logging is one of them
[03:36] <durt> would that go in the boot: prompt?
[03:36] <twb> Yes.
[03:37] <durt> Well that sounds easy, I'll try it thanks.
[03:39] <twb> I don't actually think it'll work, though :-)
[03:50] <captainkirk> has anyone installed alfresoc onto ubuntu server?
[03:50] <captainkirk> *alfresco
[03:57] <twb> Never heard of it.
[04:13] <genii> I wonder if 372737 is also 373522
[04:14] <captainkirk> what is the command to enter to bring up the  original installation options in ubuntu server..
[04:15] <tonyyarusso> Is anyone aware of available vouchers I could use for LPI certification exams taken through Pearson VUE?
[04:20] <twb> captainkirk: what installation options?
[04:20] <captainkirk> twb: like, to install LAMP, or LDAP or postfix
[04:20] <twb> Regarding tasksel selections, I don't know.
[04:20] <twb> dpkg --get-selections will list all installed packages.
[04:21] <twb> debconf-get-selections (from debconf-utils) will list all answers to questions asked via debconf.
[04:21] <twb> Note that these will include automatically installed packages / answered questions.
[04:21] <captainkirk> twb: tasksel is the one i was looking for
[04:21] <Doble1> Hey folks, how can I see the hit/miss ratios when using webalizer to look at squid's access.log ?
[04:24] <captainkirk> twb:  ... do you have a life outside of linux ...? :P
[04:36] <twb> No.
[04:37] <tonyyarusso> People do?
[04:50] <oh_noes> Is there a script that allows me to change hostname permanently?  /foo/changehostname.sh newname ?  And it'll update nessacary files and activate it?
[04:50] <oh_noes> Saves me re-inventing the wheel
[05:04] <jasonmchristos> how do I create a network installable install package of ubuntu desktop, using a currently installed desktop as an example, and serve it via ubuntu 8.04 for network install?
[05:22] <LinuxMercedes> Ok, so I'm running Ubuntu server on a webserver, and I recently gave a friend an account.  I added both of us to a group called webmasters, and then changed the group of all the files in the /var/www directory to webmasters.  I also changed all the permissons to 755 (I know, don't need executable, per se).  He still can't write the files.  Any ideas?
[05:24] <p_quarles> LinuxMercedes: what's the output of: ls -lh /var | grep www
[05:25] <LinuxMercedes> drwxrwxr-x  9 nathan webmasters 4.0K 2009-05-07 22:28 www
[05:25] <LinuxMercedes> drwxrwxr-x  9 nathan webmasters 4.0K 2009-05-07 22:28 www
[05:25] <LinuxMercedes> drwxrwxr-x  9 nathan webmasters 4.0K 2009-05-07 22:28 www
[05:25] <LinuxMercedes> drwxrwxr-x  9 nathan webmasters 4.0K 2009-05-07 22:28 www
[05:25] <LinuxMercedes> oops
[05:26] <twb> p_quarles: -d is your friend.
[05:26] <LinuxMercedes> only one of those
[05:26] <twb> p_quarles: ls -hld /var/www/
[05:26] <LinuxMercedes> I get nothing for that
[05:26] <p_quarles> twb: yes, I knew there was a better way it wasn't occuring to me
[05:27] <twb> LinuxMercedes: what does "id" print?
[05:27] <LinuxMercedes> uid=1000(nathan) gid=1000(nathan) groups=4(adm),20(dialout),24(cdrom),25(floppy),29(audio),30(dip),44(video),46(plugdev),104(scanner),109(lpadmin),110(admin),115(sambashare),1000(nathan),1002(webmasters)
[05:28] <twb> Hm.
[05:28] <twb> LinuxMercedes: and you say that "ls -hld /var/www/" prints nothing?
[05:28] <LinuxMercedes> Uhh..no.  Let me run that
[05:29] <LinuxMercedes> It says
[05:29] <LinuxMercedes> drwxrwxr-x 9 nathan webmasters 4.0K 2009-05-07 22:28 /var/www/
[05:29] <p_quarles> I would try logging in as the other user and running touch /var/www/test -- then give us the error message if any
[05:29]  * LinuxMercedes is not new to linux, but is new to multiple users
[05:30] <LinuxMercedes> p_quarles, ok
[05:31] <LinuxMercedes> no errors...
[05:32] <LinuxMercedes> ok...it's working for me now.
[05:32] <p_quarles> LinuxMercedes: the file is there, I take it? if so, nothing's wrong
[05:32] <LinuxMercedes> yep
[05:33] <LinuxMercedes> ok, it works on my side
[05:33] <LinuxMercedes> Apparently there's something screwy going on on his side
[05:33] <p_quarles> so, what's different about the way the other person was attempting to write to this directory?
[05:33] <LinuxMercedes> or maybe there's pebkac
[05:33] <LinuxMercedes> I'm not sure
[05:33] <p_quarles> that's my first guess :)
[05:34] <LinuxMercedes> yeah
[05:34] <LinuxMercedes> Well, I'll give him the benefit of the doubt because he said he was really tired =]
[05:34] <LinuxMercedes> Thanks for helping the newb out here =]
[06:11] <wizardslovak> whats up people
[06:12] <foxbuntu> wizardslovak, the sky?
[06:12] <wizardslovak> dark here lol
[06:13] <foxbuntu> does that mean the sky is no longer up?
[06:13] <wizardslovak> lol forgot not everybody here is from place like me hihi
[06:13] <wizardslovak> yep , 1am
[06:15] <wizardslovak> so how are you
[06:16] <foxbuntu> tired
[06:16] <foxbuntu> things are not getting accomplished :(
[06:17] <wizardslovak> lol personal or linux oriented
[06:18] <genii> I wonder if there's any distinction there for him, actually
[06:18] <wizardslovak> hehee
[06:18] <genii> foxbuntu: Or her, if you are of the female persuasion
[06:20] <wizardslovak> damn tomorrow i gotta format my laptop
[06:20] <foxbuntu> genii, not a chick sorry
[06:20] <wizardslovak> i decided to use kubuntu only
[06:20] <wizardslovak> lol horny genii
[06:20] <foxbuntu> genii, also, there is not a distinction...
[06:21] <wizardslovak> i just logged into server
[06:21] <wizardslovak> and i see restart required
[06:21] <foxbuntu> wizardslovak, sounds like you grabbed a kernel update
[06:21] <genii> wizardslovak: I'm a eunuch
[06:22] <foxbuntu> heh
[06:22] <wizardslovak> hehe
[06:22] <foxbuntu> genii, Im a programmer by my own definition
[06:23] <foxbuntu> genii, http://wiki.foxmediasystems.com
[06:23] <wizardslovak> uuuuuuuuu
[06:23]  * genii makes more coffee
[06:24] <wizardslovak> genii: 2 sugars and little bit milk thx
[06:24] <genii> wizardslovak: After I make it, it's "help yourself"
[06:24] <twb> Ew, milk or sugar in coffee is Wrong
[06:24] <foxbuntu> genii, i prefer red bull thx
[06:25] <genii> twb: I agree. I don't like polluting my coffee
[06:25] <wizardslovak> hmmm
[06:25]  * genii digs up a Red Bull for foxbuntu
[06:25] <wizardslovak> then double expresso shot ;p;p
[06:26] <wizardslovak> how to check if everything works in server?
[06:26] <foxbuntu> wizardslovak, use it?
[06:26]  * foxbuntu is a smart ass
[06:27] <wizardslovak> yea i updated from 8.10 to 9.04
[06:27] <wizardslovak> just want to check if everything works
[06:27] <foxbuntu> usually the easiest way is to just check all your services
[06:27] <foxbuntu> as in...
[06:27] <foxbuntu> try it
[06:27] <wizardslovak> well webserver works
[06:27] <foxbuntu> if you run a web server, try hitting the page
[06:27] <foxbuntu> ect
[06:27] <foxbuntu> ect
[06:27] <foxbuntu> ect
[06:28] <wizardslovak> ok ok ok
[06:28] <foxbuntu> heh
[06:28] <wizardslovak> what about see what programs are running
[06:28] <foxbuntu> ps ax
[06:28] <wizardslovak> foxbuntu , u're sysadmin?
[06:28] <foxbuntu> wizardslovak, yup
[06:28] <wizardslovak> can i ask you a question?
[06:29] <foxbuntu> is it on topic fo the channel?
[06:29] <wizardslovak> well kinda
[06:29] <wizardslovak> how do you become sysadmin?
[06:30] <foxbuntu> wizardslovak, thats not on topic...if you want to chat, join #foxmediasystems
[06:35] <twb> wizardslovak: you become a sysadmin by getting REALLY drunk, and waking up chained to a rack
[06:35] <wizardslovak> lol
[06:35] <foxbuntu> twb, don't give away all of our secrets
[06:35] <wizardslovak> weird is i never got drunk in server room
[06:36] <twb> And since it's your first position, the rack probably won't even contain rackmount gear
[06:36] <foxbuntu> lol
[06:37] <wizardslovak> hmmm
[06:37] <twb> whitebox towers with razor-sharp edges that DEMAND BLOOD
[06:37] <wizardslovak> lol
[06:37] <wizardslovak> take glowes
[06:38] <tonyyarusso> twb: Good description....
[06:38] <genii> wizardslovak: I doubt they'd let you bring a bottle into most of the data centers I've seen.
[06:38]  * tonyyarusso just installed his first rackmount gear in his bedroom - is giddy
[06:38] <genii> tonyyarusso: Hehehe
[06:39] <wizardslovak> lol i used to do power lines for couple server rooms
[06:39] <wizardslovak> just amazing to be in there
[06:40] <foxbuntu> wizardslovak, I have been in some impressive data centers before
[06:40] <twb> tonyyarusso: I once knew a girl who had most of a PDP in her basement
[06:41] <wizardslovak> lol  my bedroom is my server room
[06:44] <genii> twb: PDP-9? 11?
[06:45] <twb> I don't know
[06:55] <wizardslovak> what are you people using for backup?
[06:56] <twb> wishful thinking
[06:57] <twb> Or in production, rsync with Solaris/ZFS (new) and rsnapshot (legacy).
[06:58] <wizardslovak> amanda
[07:00] <tonyyarusso> wizardslovak: Attempting to use Bacula.  That thing's crazy complicated to configure though.
[07:01] <wizardslovak> well i am reading about backups
[07:01] <tonyyarusso> Step one:  "You need them."  ;)
[07:02] <wizardslovak> i would love to have something what will backup every other day ,and replacing old file with new one
[07:02] <wizardslovak> something "configure and forget"
[07:02] <tonyyarusso> Trust me, that's not actually the configuration you want.
[07:03] <tonyyarusso> Inevitably someone will say "Hey, turns out I messed up $file three days ago.  Can you give me the backup please?"
[07:03] <tonyyarusso> To which you'll have to respond that all you have is a backup of the broken version.
[07:03] <wizardslovak> well what would be good config?
[07:05] <tonyyarusso> You need at least two copies in rotation (ie Day 1 - make copy A.  Day 2 - make copy B.  Day 3 - make copy C, delete copy A).  How many exactly and the timing of them depends on your local needs.
[07:05] <tonyyarusso> In our setup there are different rotation schemes for different directories, since some things change much more rapidly than others.
[07:06] <tonyyarusso> The best way to do it is to sit down with all of your users and find out how they are using files, and what their recovery needs would be.
[07:06] <twb> I hate rotating tapes
[07:06]  * tonyyarusso doesn't use tape anymore
[07:06] <twb> That's why I have an offsite RAID 5 array, which stores each incremental backup by using ZFS/hard links
[07:06] <tonyyarusso> Everything just goes on a TB HDD.  Ideally we should have a more redundant solution, but that's the budget for this quarter.
[07:07] <twb> tonyyarusso: ouch
[07:07] <twb> tonyyarusso: you should at least get RAID1
[07:07] <tonyyarusso> twb: It's a five-man business, so everything's pretty tiny so far.
[07:07] <tonyyarusso> Up until a few months ago there were no backups.  Baby steps.  :)
[07:07] <wizardslovak> can i well can i use usb attached hda?
[07:07] <tonyyarusso> wizardslovak: sure.
[07:08] <tonyyarusso> Ours is at least eSATA, for speed, but USB would work just as well.
[07:08] <wizardslovak> well thats just for study purposses for now
[07:08] <wizardslovak> so even dvd will  be fine
[07:08] <wizardslovak> what software do you use?
[07:08] <tonyyarusso> scrollback is your friend.
[07:09] <tonyyarusso> I even highlighted you!
[07:09] <wizardslovak> bacula
[07:09] <wizardslovak> sorry
[07:09] <genii> tonyyarusso: Making everyone work tonight, eh? ;)
[07:09] <tonyyarusso> you betcha
[07:10] <wizardslovak> what do  you use BAT or BWEN
[07:11] <wizardslovak> BWEB
[07:11] <twb> Isn't amanda/bacula kind of overkill for a five-man 1×1TB backup?
[07:12] <ajmitch> may as well start off doing it right
[07:12] <tonyyarusso> twb: Very much so, but I was advised to learn the real way now so I don't have to later.
[07:13] <tonyyarusso> Possibly by ajmitch :P
[07:13] <ajmitch> unlikely
[07:14] <ajmitch> upload all your private data to an anonymous ftp server, I say ;)
[07:14] <genii> tonyyarusso: We had a cute script one of the old guys wrote, at each login of a user it cached the ~ and at logout did a compare between actual and cached, backing up any differences. Worked pretty good
[07:14] <ajmitch> genii: sounds like it could be slow for large home directories
[07:14] <ajmitch> much like NT's roaming profiles mess
[07:15] <genii> ajmitch: At that time we limited them to 2Mb. Nowadays we took quotas off
[07:16] <wizardslovak> is it possible to set for bacula to send backed file to other computer?
[07:19] <arvind_khadri> ﻿hi, if i wanted to make the login based on domain, do i have to change workgroup to domain in ldap.conf ???
[07:19] <tonyyarusso> yes
[07:19] <tonyyarusso> wizardslovak: Bacula is a multi-level client-server setup.
[07:20] <wizardslovak> i mean instead of ,burning on cd/hda , send file over LAN to other computer
[07:28] <tonyyarusso> Yeah, so do I.
[07:28] <tonyyarusso> Soon we'll be setting it up to back up files from a client computer in Connecticut onto our server here in Minnesota.
[07:33] <arvind_khadri> tonyyarusso: ﻿hi, if i wanted to make the login based on domain, do i have to change workgroup to domain in ldap.conf ???
[07:40] <tonyyarusso> Don't know LDAP yet.
[07:58] <NativeAngels> has anyone here got xen working on ubuntu 9.04 server ed
[08:27] <plaes> hey.. I have trouble with iscsi client :P
[08:28] <plaes> basically iscsi stuff gets started before networking is up :(
[08:28] <plaes> how can I change the order of the services and set iscsi stuff depending on the networking?
[08:30] <jpds> plaes: Not sure how to do it myself, but I think "man update-rc.d" is what you're looking for.
[08:30] <soren> plaes: You need to get open-iscsi to start after rcS.d/S40networking.
[08:31] <soren> plaes: Are you using iscsi to access /usr or / or similar core parts of your filesystem?
[08:31] <kinnaz> with what command i can see what proccess has opened smt at some partition
[08:32] <jpds> kinnaz: lsof | grep /path/to/partition
[08:32] <kinnaz> jpds, tnx
[08:32] <plaes> soren: /
[08:33] <jpds> kinnaz: Might have to run it as root to see certain stuff tho.
[08:35] <soren> plaes: Then you're screwed.
[08:35] <plaes> it works manually... :)
[08:35] <soren> How?
[08:37] <plaes> soren: sorry for delays, I'm relaying for the friend who cannot use IRC :(
[08:37] <plaes> ugh.. it get's mounted under /iscsi
[08:38] <soren> "it"?
[08:40] <plaes> ugh.. dunno, the guy has something messed up..
[09:11] <plaes> soren: it was basically bug 227848 :(
[09:12] <soren> Not if he's trying to mount / using iscsi.
[09:12] <soren> Then he's got an entirely different set of problems.
[09:12] <plaes> he tried to well, this was miscommunication
[09:12] <plaes> it goes under /iscsi
[09:12] <plaes> hrm..
[09:12] <plaes> not / but /iscsi
[09:42] <kinnaz> has anyone encountered error wxport not found while sudo-ing
[09:42] <kinnaz> strange thing is i dont have any xorg installed and it seems to be related to xorg
[09:48] <soren> What's the exact error message?
[09:48] <soren> and the exact command line you're executing?
[10:06] <NativeAngels> whats the best free hosting panel
[10:31] <thefish> anyone here managed to use unionfs to create a mirror?ie two writeable branches that are *both* written to on each write.
[11:07] <twb> thefish: no.  That is not what unionfs does.
[11:08] <twb> thefish: if you want that, you need to write a different fuse driver.  But using RAID1 would be far easier.
[11:42] <thefish> twb: it needs to be per directory, i dont have the option to use volumes
[11:43] <thefish> what fuse driver?
[11:43] <twb> unionfs is a fuse driver
[11:44] <thefish> and what "other" fuse driver would you recommend
[11:44] <twb> You would have to write one.
[11:44] <thefish> haha
[11:44] <twb> It's not hard, provided you know C.
[11:44] <thefish> and you have time
[11:44] <twb> It'd only be about 100 lines long.
[11:44] <thefish> of course
[11:44] <twb> Sorry, 500 lines
[11:45] <twb> thefish: alternatively, you can pay someone to write it
[11:45] <twb> thefish: but AFAIK there is currently no way to do dir-level mirroring.
[11:46] <thefish> cool, cheers
[12:21] <kinnaz> does ubuntu 8.10 have ext4 support ?
[12:22] <kinnaz> *9 even
[12:22] <jpds> 9.04 has ext4 support.
[12:23] <kinnaz> okey
[12:23] <kinnaz> just looking at some tests, seems to give nice benefit with write speeds
[12:26] <Kamping_Kaiser> kinnaz, make sure your box doesnt hard shut down for any reason though
[12:26] <kinnaz> its "weak" like reiser ?
[12:32] <Kamping_Kaiser> it holds its buffers longer between writes (iirc 15 seconds), so you may wind up with 0 length files
[12:32] <Kamping_Kaiser> there a bug on launchpad if your interested enough ;)
[12:32] <Kamping_Kaiser> ubottu, ext4
[12:32] <Kamping_Kaiser> ubottu, your a useless bot :(
[12:38] <Kamping_Kaiser> ubottu, ext4 is a recently released filesystem, available in Ubuntu 9.04. Be careful to keep your power running though: https://bugs.launchpad.net/bugs/317781
[12:41] <jpds> Kamping_Kaiser: Yeah, but, that's been fied?
[12:41] <jpds> fixed*
[12:42] <Kamping_Kaiser> jpds, if you've got an updated kernel, yeah. kernels probably been in the archive long enough to assume people have it i guess, but its still worth a warning imo
[12:42] <Kamping_Kaiser> jpds, in my mind ext4 still needs the 'new fs' warning flag anyway ;)
[12:50] <simplexio> who runs server without ups  ?
[12:51] <Kamping_Kaiser> simplexio, people on a budget, or who havent thought about it hard.
[12:51]  * Kamping_Kaiser only just got his servers onto ups
[12:55] <simplexio> well if you dont have ups, then you shold use fs that dosent cache writes, or just disable them. assuming that you need system which dosnt loose data
[12:56] <simplexio> but agree, for some budget home server ups is needed, is recommended
[12:57] <simplexio> and if you dont happen to have ups, its much better use ext2/ext3 than ext4 or xfs. no experince from other fs
[14:31] <benc> I have a boot script that workes on 8.10 but doesn't work on Jaunty http://dpaste.com/42109/
[14:31] <benc> any ideas?
[14:31] <jpds> Why does it not work?
[14:32] <benc> when I run sudo update-rc.d /etc/init.d/ejabberd defaults 30
[14:32] <benc> I get a warning. something about lsb
[14:33] <benc> and the server is not started on boot
[14:33] <Kamping_Kaiser> whats the exact error, what exactly did you expect?
[14:33] <benc> Kamping_Kaiser: I'll run it now and paste the error. a sec
[14:33]  * Kamping_Kaiser wonders if you could be a bit more vague and hand-wavy about asking for help :\
[14:33] <Kamping_Kaiser> cheers
[14:34] <benc> you are right. sorry
[14:35] <benc> this is the warning http://dpaste.com/42112/
[14:38] <jpds> Might not be the problem but you have four '#'s for begin instead of three :)
[14:39] <benc> jpds: where?
[14:39] <benc> jpds: ok. deleting one
[14:39] <jpds> Line 5: #### BEGIN INIT INFO
[14:40] <Kamping_Kaiser> jpds, its a comment
[14:41] <Kamping_Kaiser> benc, did you see the wiki page?
[14:41] <jpds> Kamping_Kaiser: $lsbinfo{'found'} = 1 if (m/^\#\#\# BEGIN INIT INFO$/);
[14:41] <benc> jpds: now I don't get the warning but it gives me help as if it didn't perform anything: http://dpaste.com/42114/
[14:41] <Kamping_Kaiser> jpds, where did you see that? :o
[14:41] <Kamping_Kaiser> ah, theres the 2nd paste
[14:41] <jpds> benc: Try: defaults
[14:41] <benc> Kamping_Kaiser: yes but can't understand
[14:42] <jpds> Kamping_Kaiser: /usr/sbin/update-rc.d
[14:42] <benc> jpds: :)
[14:42] <benc> jpds: thanks
[14:42] <jpds> No problem at all.
[14:42] <Kamping_Kaiser> jpds, {invoke,update}-rc.d ftw
[14:43] <jpds> Kamping_Kaiser: Absolutely.
[14:43] <benc> are you still talking about my script? do I have more errors?
[14:43] <Kamping_Kaiser> benc, I'm supprised theres no ejabberd init script shipped
[14:43] <benc> Kamping_Kaiser: there is with the package but I had to build from source
[14:44] <benc> Kamping_Kaiser: and the directory structure when installing from source and from a package are different
[14:44] <soren> benc: There used to in Hardy, that's for sure. If it went missing, that's probably a bug.
[14:44] <benc> soren: there is a boot script in the package. but I'm building from source
[14:45] <benc> soren: I couldn't just copy the boot script from the package because the directory stucture is different
[14:45] <soren> benc: http://packages.ubuntu.com/karmic/amd64/ejabberd/filelist
[14:45] <soren> benc: ...very clearly shows it.
[14:45] <soren> ah
[16:08] <romme> is it possible to hide users from each other?
[16:09] <romme> i want it be difficult to discover who else is using my system for regular users
[16:11] <Kamping_Kaiser> yes, but i cant tell you how
[16:12] <Hecate> i'd rather say, it's damn near impossible, unless you want to spend hours over hours.
[16:13] <Hecate> there are a lot of different ways of figurting out, who's using the system, which are all accessible for non-root users.
[16:14] <Hecate> the only "proper" solution i can think of, would be restricting access to proc- and sys-fs and various system calls.
[16:14] <Hecate> but this would severely curtail a users freedom, or even make the system unusable.
[16:15] <Hecate> (just an educated guess, though)
[16:17] <Hecate> romme, i'm quite certain there is no perfect solution to this problem. how difficult do you want it to be, though?
[16:18] <romme> Hecate: at least i don't want him to be able to list contents of /home
[16:18] <romme> at least one problematic user
[16:19] <romme> i have a bad "policical" situation in which one particular user shouldn't know another user is hosted here
[16:19] <Hecate> does that user have shell access?
[16:19] <romme> yes
[16:20] <Hecate> that makes it quite difficult.
[16:21] <Hecate> one cannot just change the DAC permissions on /home, since you need read access to the parent folders, to have access to the subfolders, as well.
[16:21] <romme> hmmph
[16:21] <romme> i think i fould a "solution"
[16:21] <Hecate> selinux/apparmor?
[16:22] <romme> i can try moving the problematic user ouf of /home into /
[16:22] <Hecate> worth a shot.
[16:23] <Hecate> you'd still need to use ACLs to specifically deny that very user access to /home
[16:23] <romme> it all woudn't happen if i didn't share a server with my girlfriend
[16:23]  * romme reads mans on Access Control Lists
[16:24] <Hecate> so i assume, the access-restrictions should be as stealth as possible, too, in order not to offend her ...
[16:25] <Hecate> then i just hope, she's not too skilled, since there are - as i already said - plenty of ways, to determine which users have accounts/home-folders/access/etc. on/to a system.
[16:25] <Hecate> all she'd have to do is read /etc/passwd, for instance
[16:26] <Hecate> my recommendation, romme, just obfiscate the username of the user you'd like to hide.
[16:27] <Hecate> simple, yet effective. kiss. ;)
[16:27] <Hecate> http://en.wikipedia.org/wiki/KISS_principle
[16:28] <romme> no, she's not skilled. she can only use a file manager and the contents of /etc would scare her
[16:31] <dmhardison> I have been setting up a PXE cluster and two of the machines I am installing use different nic drivers than the others, can I add a flag to the kernel boot flags to tell it to load the driver for that particular nic before continuing to boot the system, I really do not want to recompile the entire kernel for this.  I have an initrd image.
[16:34] <jmedina> dmhardison: why dont you add the drivers to initrd image?
[16:35] <dmhardison> jmedina is there a simple way I can do that?
[16:35] <jmedina> dmhardison: what about reading man mkinitrd?
[16:36] <dmhardison> alright.
[16:36] <jmedina> mkinitramfs
[17:06] <dmhardison> I've added sky2 to this modules initramfs configuration file, and when I update the initrd image, it still does not add it, why!? it is in the modules directory of the system
[17:09] <fevel> how do I restart bind?
[17:15] <dmhardison> nm got it, just made a whole new image.
[17:16] <jmedina> good
[17:25] <Nafallo> kirkland: ping
[18:15] <duvnell> don't yell at me, but is there a package that contains rpm-build?
[18:15] <ivoks> nope
[18:16] <duvnell> carp and bass
[18:16] <ivoks> afaik, rpm-build is just alias for rpm --something
[18:16] <ivoks> but i could be wrong...
[18:17] <shiruken> I'm trying to install Ubuntu server, but it keeps trying to go gui and my monitor won't display that resolution
[18:17] <shiruken> how can I force into text mode?
[18:17] <duvnell> I believe you are correct sir
[18:18] <duvnell> rpm -ba works on RH.. but is unknown option on ubuntu
[18:18] <duvnell> 's rpm
[18:18] <duvnell> oh well
[18:18] <shiruken> duvnell: I use dpkg -l | grep foo
[18:18] <shiruken> for ubuntu
[18:18] <shiruken> obviously, replace "foo" with what you're looking for
[18:19] <ivoks> shiruken: ubuntu server doesn't have GUI
[18:19] <duvnell> but that only lists what's installed
[18:19] <shiruken> so does rpm -ba
[18:19] <shiruken> ivoks: then it must be a textmode vga= option
[18:19] <shiruken> hrm
[18:19] <ivoks> shiruken: when does it fail?
[18:20] <shiruken> essentially, I can get the kernel verboseness going on, but then at the end of post
[18:20] <shiruken> end of kernel post
[18:20] <shiruken> it throws it into a resolution my monitor can't handle
[18:20] <ivoks> shiruken: are you sure it's ubuntu server?
[18:20] <shiruken> I see syslogd
[18:20] <shiruken> yeah
[18:20] <ivoks> shiruken: ubuntu-server doesn't change resolution, it just starts ncurses based program
[18:20] <shiruken> ubuntu 9.04 non-server installs fine (using the gui oddly enough)
[18:21] <ivoks> shiruken: then it's not the resolution that's the problem
[18:21] <shiruken> um, it is
[18:21] <ivoks> shiruken: which monitor/vga card is that?
[18:21] <shiruken> we can go back and forth on this, I've been installing ubuntu-server for a while :)
[18:22] <shiruken> dell 19" monitor on a ati radeon x300
[18:22] <ivoks> so, once kernel finishes, your monitor reports unsupported resolution?
[18:22] <shiruken> I have alternatively, thought about install ubuntu 9.04 without X11
[18:22] <shiruken> but I couldn't figure out how to do that
[18:23] <shiruken> ivoks: yes
[18:23] <ivoks> shiruken: have you tried cltr+alt+f2?
[18:23] <shiruken> yes
[18:23] <shiruken> ctrl-alt-f1-7
[18:23] <ivoks> what does ctrl+alt+f1 shows?
[18:23] <shiruken> ctrl-alt-backspace too
[18:23] <shiruken> nope
[18:23] <shiruken> nada
[18:23] <ivoks> f2?
[18:23] <shiruken> I was hoping to get at least a console
[18:23] <shiruken> nothing
[18:24] <shiruken> just the same resolution not supported
[18:24] <ivoks> on f2 is a console in the same resolution
[18:24] <ivoks> f1 is also a console, though
[18:24] <ivoks> with ncruses program
[18:24] <ivoks> i'm puzzeld
[18:25] <shiruken> yeah, me too
[18:25] <ivoks> have you tried removing 'quite' optiong from boot arguments?
[18:25] <shiruken> yes
[18:25] <ivoks> quiet
[18:25] <shiruken> that's how I got the kernel verbose messages
[18:26] <shiruken> and can see it going then a line with syslogd in it and nothing after that
[18:26] <ivoks> does ctrl+alt+del resets the machine?
[18:26] <shiruken> I do wonder if I should set a vga= option
[18:26] <shiruken> yeah, it does
[18:26] <shiruken> though, I smash it a few times in frustration :)
[18:26] <ivoks> very strange
[18:26] <shiruken> so I could see if once would be enough
[18:27] <ivoks> maybe it needs bigger resolution than the one console has
[18:27] <shiruken> totally
[18:27] <ivoks> try vga=791
[18:27] <shiruken> I was thinking of doing that
[18:27] <shiruken> ok, I'll be back
[18:27] <ivoks> or 794
[18:28] <shiruken> or "ask"
[18:28] <ivoks> 791 is 1024x768
[18:28] <ivoks> that should work
[18:28] <shiruken> I'll try all 3 unless one works before the 3rd
[18:28] <ivoks> 794 is 1280x1024
[18:28] <shiruken> yeah, 300 is 640x480@8
[18:29] <shiruken> k, brb
[18:34] <shiruken> yeah, that worked
[18:34] <shiruken> I thought it might
[18:34] <ivoks> which one?
[18:34] <ivoks> probably both
[18:34] <shiruken> 791
[18:34] <shiruken> prolly, all 3 would
[18:34] <shiruken> but, I stop at the first one that works
[18:34] <shiruken> might want to have that as an install option
[18:35] <shiruken> in the menu, the one with expert mode, and noapic
[18:35] <ivoks> i think it is...
[18:35] <shiruken> it's not
[18:35] <ivoks> Fsomething
[18:35] <shiruken> I was kinda expecting it under f4 or f6
[18:35] <shiruken> but then, I have alot of residual learned behaviors
[18:36] <ivoks> heh
[18:37] <shiruken> thanks for the help, ah you're in Zagreb?
[18:37] <ivoks> yes
[18:38] <shiruken> cool, my friend Miro lives there, he's a programmer type
[18:38] <shiruken> anyhow, thanks for your help again
[18:38] <ivoks> Miro lastname?
[18:38] <ivoks> np
[18:38] <shiruken> Miroslav Silovic
[18:38] <ivoks> ah, don't know him
[18:39]  * shiruken nods
[18:39] <shiruken> well, zagreb is a big place
[18:39] <shiruken> ok, off to configure this server
[18:40] <ivoks> ok, take care
[18:45] <philsturgeon> hey, I have recently set up a server with a lamp stack that was auto-installed when i installed virtualmin/webmin. i have lost root access on localhost...
[18:46] <philsturgeon> when i try to log in via mysql i get...
[18:46] <philsturgeon> ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES)
[18:47] <philsturgeon> i can log in remotely, just not local :S
[18:48] <jmedina> so where is the problem?
[18:48] <jmedina> system login or mysql login?
[18:48] <jmedina> they are not the same root user
[18:49] <philsturgeon> mysql login
[18:49] <philsturgeon> i think the issue is i have several users with the same name
[18:49] <philsturgeon> i was trying to get remote logins working and i ended up writing something like GRANT AL database.* 'root'@'%'
[18:49] <philsturgeon> so i think that made a new user that can only access that db
[18:52] <philsturgeon> ahh, nope i have cleared all permissions...
[18:52] <pteague> any idea which might be better - install ubuntu-server 9.04 beta & then update or download ubuntu-server 9.04, install that, & then update?
[18:52] <philsturgeon> i tried to remove rthe duplicates and removed too many. how to insert new privlidges with no mysql access? >.<
[18:53] <pteague> root doesn't even have access?
[18:53] <philsturgeon> nope
[18:53] <philsturgeon> mega balls-up
[18:53] <jmedina> philsturgeon: can you stop mysql server?
[18:53] <pteague> ouch
[18:54] <ivoks> philsturgeon: then access from outside
[18:54] <ivoks> philsturgeon: and add root user with localhost as hostname :)
[18:55] <philsturgeon> ivoks: i lost remote too
[18:55] <ivoks> then you'll have to stop mysql
[18:55] <ivoks> dpkg-reconfigure mysql-server-5.0
[18:55] <jmedina> philsturgeon: you can reset mysql perms, but you need to stop and start mysql
[18:55] <philsturgeon> if i reconfigure i may b reak virtualmin
[18:56] <philsturgeon> jmedina: i have stopped mysql
[18:56] <ivoks> you won't breake it
[18:56] <ivoks> you'll just reset password
[18:57] <ivoks> oh, right
[18:57] <ivoks> backup first, of course :)
[18:58] <philsturgeon> jmedina: ran the command, it asked me to enter password and confirm twice in a row
[18:58] <philsturgeon> errord the 2nd time
[18:58] <philsturgeon> then gave same error ERROR 1045 (28000): Access denied for user 'root'@'localhost' (using password: YES)
[18:59] <ivoks> then the hard way
[19:00] <ivoks> http://ubuntu.flowconsult.at/en/mysql-set-change-reset-root-password/
[19:01] <philsturgeon> bah screw it, quicker to rebuild the server
[19:01] <philsturgeon> thanks anyway guys :)
[19:02] <ivoks> khm..
[19:02] <ivoks> how is it quicker?
[19:02] <philsturgeon> its a mosso cloud server installed yesterday :)
[19:02] <philsturgeon> may even have a "post virtualmin" backup
[19:04] <philsturgeon> yup, backup indeed. problem solved
[19:15] <yml> hello I have an ubuntu server in a vbox configured in bridged mode. I can ping all the computer on my subnet except the gateway
[19:15] <yml> the subnet is 192.168.1.*
[19:16] <yml> I can ping 192.168.1.11, 192.168.1.12, 192.168.1.13 but not 192.168.1.1
[19:17] <yml> where i can ping 192.168.1.1 from the host
[19:17] <yml> so I don't understand what could prevent me to ping the gatway.
[19:21] <philsturgeon> i have set up a new cloud server that has only an ip address, now i am wondering how to attach domains
[19:22] <LigHTRokHE> :|
[19:22] <LigHTRokHE> attacha domains?
[19:22] <philsturgeon> i plan to have several servers on my domain serverofdoom.co.uk
[19:23] <philsturgeon> if i use dynamic dns then i can set this domain on no-ip.org i can point a sub-domain to this ip right?
[19:23] <philsturgeon> then how to set up name servers on virtualmin?
[19:25] <LigHTRokHE> man resolv.conf
[19:25] <LigHTRokHE> =)
[19:26] <pteague> i would suggest at least 1 external DNS unless you really don't care whether visitors get strewn to the bit bucket when you go offline
[19:27] <philsturgeon> im setting the domains up with namecheap, i can use their nameservers and enter them in the config here?
[19:29] <pteague> my last place of employment surprised me...  they had all this redundant stuff, all in the same data center, & both DNS were in the data center... power died & fried something to do with the dedicated incoming power line causing brownouts... discovered both DNS were in the data center so we couldn't even reroute people to a "yes we know we're offline" page
[19:29] <pteague> yeah, should be able too
[19:30] <jmedina> philsturgeon: you can use namecheap nameservers or you can setup your own dns server with bind9, and probably you can ask your ISP to be a slave dns server for your domains
[19:31] <jmedina> pteague: read ubuntu server guide for information about setuing up a nameserver
[19:32] <pteague> jmedina: 1 of the many reasons why i left
[19:33] <jmedina> pteague: sorry, the messages was for philsturgeon
[19:33] <jmedina> pteague: that is a common case for DNS
[19:33] <pteague> :)
[19:33] <jmedina> they even add RAID1 to their servers :D
[19:35] <jmedina> a lot of redundancy.......
[19:35] <jmedina> useless
[19:42] <Hecate> jmedina, raid1 can save your butt, one day ;)
[19:42] <jmedina> Hecate: yeap, they had a server in degraded mod for a year
[19:42] <jmedina> they only ignored all the alarms from nagios jajaja
[19:43] <Hecate> well, a common raid1 doesnt save your butt twice ;)
[19:44] <Hecate> but iff ppl do no realize that, its their own fault ... natural selection.
[19:46] <celephais> Hi, i want to backup a web server + mysql daily. which solution do you suggest?
[19:46] <celephais> Pardon, i have to backup a web server + mysql on another server
[19:47] <Hecate> just the files the web server serves + the databases?
[19:47] <Hecate> or the entire box, celephais?
[19:48] <celephais> Hecate, only files served + database
[19:48] <jmedina> mysqldump + tar
[19:49] <Hecate> mysqldump --all-databases
[19:49] <Hecate> and if i were you, i'd rather use dar instead of tar
[19:49] <celephais> Hecate, how do i send it to the backup server?
[19:49] <Hecate> incremential/differential backups can save you a lot of space.
[19:50] <Hecate> piping it through ssh?
[19:50] <jmedina> rsync file user@backupserver:/backups/
[19:50] <celephais> Hecate. ok thank you. But, just to know, if i were to backup lots of server which way do you suggest?
[19:51]  * jmedina sugests bacula
[19:51] <celephais> ok thank you
[19:52] <Hecate> i dont knwo bacula, but if it concentrates most of the configuration on a single machine (to keep the amount of work caused low), it's good.
[19:52] <Hecate> configuring every server you want to back up to have it make backups regularly and upload them to a different box, causes lots of work.
[19:52] <jmedina> I use bacula to backup linux, unix and windows servers
[19:53] <jmedina> it can do incremental, differential and full backup
[19:53] <jmedina> full backup catalog
[19:53] <Hecate> particularly if you make only a tiny change to the config, which you'd have to apply to all the servers ...
[19:53] <jmedina> compresion, backup integrity checks,
[19:53] <jmedina> secure communitcation with remote servers
[19:53] <jmedina> you can encrypt your backups
[19:54] <celephais> ok , thank you all very much
[19:54] <jmedina> you only need to install a agent software in the server you want to backup
[19:55] <Hecate> that sounds like the piece of software, i've been looking for, quite a while now.
[19:55] <Hecate> jmedina, can it backup extended attributes?
[19:55] <jmedina> Hecate: sure
[19:55] <jmedina> acl,user_xattr
[19:56] <Hecate> selinux attrs?
[19:57] <jmedina> mm not sure about it
[19:57] <jmedina> I dont use selinux
[19:58] <jmedina> but you can always use post and pre backup scripts
[19:58] <Hecate> i suppose, it does support them as well.
[19:59] <Hecate> probably got ext34 ea-supoort built-in
[20:00] <jmedina> bacula 3 has much better acl support
[20:05] <Hecate> jmedina, does it store the backed up data in a (mysql|postgresql|sqlite) database? just read, that it requires on of the three.
[20:05] <jmedina> Hecate: just job records
[20:05] <Hecate> alright, thanks.
[20:05] <jmedina> data is backup in files, tapes, dvds
[20:05] <Hecate> definitely gonna drop that one down on my useful software disk-
[20:05] <Hecate> *list
[20:05] <jmedina> you can have different pools
[20:06] <jmedina> Hecate: it has a console tool
[20:06] <jmedina> in command line, gtk, and new qt based bat, witch rules
[20:07] <jmedina> you can instala bat in admin workstation and manache remote bacula
[20:07] <jmedina> good notification system
[20:07] <Hecate> stop ... you already convinced me ;)
[20:07] <jmedina> jajaja
[20:09] <jmedina> Hecate: -*10.....
[20:09] <Hecate> i beg your pardon ...
[20:09] <jmedina> sorry, I was cleaning my kb
[20:10] <Hecate> kk
[20:10] <philsturgeon> using webmin/virtualmin how can i park one domain onto another?
[20:26] <alex12> hi guys, ive recently installed ubuntu 9.04 server on a g3 dl360 server with a i5 raid card ... 2 x 72 u320 scsi disks ... and im noticing a very high iowait times doing simple tasks, the system seems very sluggish and impossible to multitask .... ive read around this may have something to do with the latest kernel running at the moment? any recommendations on understanding a very high iowait time?
[20:33] <jmedina> alex12 you can check whois doing i/o
[20:33] <jmedina> iotop
[20:33] <jmedina> iostat
[20:34] <jmedina> pidstat
[20:57] <CharlieSu> How can I enable multiverse for a single package?  I'm having trouble finding documentation for that..  Thanks in advance!
[21:01] <soren> CharlieSu: You can't.
[21:02] <CharlieSu> soren: I'm running 8.04 and would like sun-java6-jdk but that is it..  No options for that?
[21:03] <Hecate> CharlieSu, download the package from packages.ubuntu.com and install it manually.
[21:03] <CharlieSu> Sorry about htat..  did you say something?
[21:04] <soren> Why not just enable multiverse?
[21:06] <Hecate> multiverse is bad. it will fuck up your box beyond repair. it can be easily compared to the dark side of the force. no way back. ;)
[21:07] <yml> does anyone know how to disable ipv6 on 9.04 ?
[21:07] <Hecate> yml. not possible. its built-in.
[21:08] <yml> because i tried the techinic describe there http://ubuntuforums.org/showthread.php?t=87798&page=15
[21:08] <yml> without success
[21:08] <yml> Hecate: that would explaing why
[21:08] <Hecate> yml, setting a drop policy for all three netfilter chains with ip6tables will pretty much disable it.
[21:08] <Hecate> that's what i did.
[21:09] <yml> the pb for me is this
[21:09] <Hecate> ipv6 used to be a kernel module (in versions < 9.04, now with it being built-in, there's no way i know of to disable).
[21:09] <yml> On Linux hosts, functionality is limited when using wireless interfaces for bridged networking. Currently, VirtualBox supports only IPv4 over wireless. For other protocols such as IPv6 and IPX, you must choose a wired interface.
[21:10] <Roritharr> hi guys, i've got a question, is it possible to install the ubuntu server on a 2gb CF Card?
[21:10] <yml>  this is an extract from the virtualbox documentation
[21:10] <soren> CharlieSu: Why not just enable multiverse?
[21:11] <yml> In french it means that the guest computer cannot acces internet if the host has IPV6 an is connected to the network using the wifi
[21:12] <soren> Hecate: Err... Not true.
[21:12] <soren> Hecate: sysctl -w net.ipv6.conf.all.disable_ipv6=1
[21:12] <soren> Bam.
[21:13] <Hecate> ahhh.
[21:13] <Hecate> good to know, thanks.
[21:13] <soren> It can also be done on a per-interface basis, of course.
[21:13] <CharlieSu> soren: I did.. Thanks..  Do you know how to get around the sun license agreements when installing?  I'm trying to do it automated
[21:14] <yml> soren: I imagine then then I need to reboot ?
[21:15] <soren> yml: No, no.
[21:15] <soren> yml: In fact, if you do, it'll be reset.
[21:15] <soren> yml: If you want it to stick, add it to /etc/sysctl.d/ somewhere.
[21:16] <yml> soren: it doesn't seems to work : http://dpaste.com/42233/
[21:17] <soren> yml: And you claim you've set that value correctly?
[21:17] <yml> soren: i copy paste from this window
[21:17] <soren> CharlieSu: Something like: echo debconf shared/accepted-sun-dlj-v1-1 true | sudo debconf-set-selections
[21:18] <alex12> jmedina: thanks, but the problem is really bad disk i/o ...
[21:18] <soren> yml: Sorry, what?
[21:18] <alex12> only 30megs per sec
[21:18] <alex12> when a sata disk can do like 60mb/s
[21:18] <yml> I did : sudo sysctl -w net.ipv6.conf.all.disable_ipv6=1
[21:18] <yml> and then what is in the link I have posted
[21:19] <soren> *shrug* Does it still actually /do/ anything regarding ipv6?
[21:19] <soren> alex12: What are you testing, specifically.
[21:19] <soren> ?
[21:19] <yml> http://dpaste.com/42235/
[21:19] <alex12> soren: using dd .... etc
[21:19] <soren> alex12: "specifically"
[21:20] <alex12> soren: secondly im doing a big import of sql - around 10gb of data ... and its doing it dog slow,
[21:20] <alex12> and doing other tasks at the same time like installing iotop
[21:20] <alex12> is dead slow...
[21:20] <alex12> and sluggish
[21:20] <alex12> like just sshing into the box takes like 25-30secs for a response for a login prompt
[21:20] <soren> yml: Right. Does it still /do/ anything regarding ipv6?
[21:21] <soren> alex12: That could be lots of other things, though.
[21:21] <soren> alex12: DNS, for instance.
[21:21] <alex12> well right now im @ 40% io wait, some sur some sys, and rest idel ...
[21:21] <alex12> soren: sure i understand that, lets ignore the ssh slowness for now
[21:22] <alex12> just trying to figure out why other tasks while doing this sql import is sluggish, and swecondly
[21:22] <alex12> why the import is dead slow...
[21:22] <alex12> iostat only shows 3mb/s
[21:23] <Roritharr> http://www.youtube.com/watch?v=lZed9-OjR6k
[21:23] <alex12> like right now with iotop im seeing mysql being the only proces doing something
[21:23] <alex12> but top shows iowait of 50%
[21:23] <alex12> wtf?
[21:23] <alex12> and its only doing like 100-150k/s
[21:24] <soren> That does sound odd.
[21:24] <soren> alex12: Have you tried bonnie++ by any chance? On an otherwise idle system, of course.
[21:24] <alex12> bonnie/
[21:24] <alex12> ?
[21:25] <soren> alex12: Yes.
[21:25] <alex12> i havent no, ill check it out
[21:25] <alex12> what is it?
[21:25] <soren> bonnie++ - Hard drive bottleneck testing benchmark suite.
[21:26] <alex12> ill install it
[21:42] <Adri2000> no one is working on the vsftpd merge?
[21:42] <soren> Adri2000: I thought you were :)
[21:44] <Adri2000> I am :) just wanted to make sure I'm not duplicating work
[21:44] <Adri2000> comment added on MoM
[21:56] <alex12> soren: im seeing crap io on the hdd using bonnie
[21:56] <alex12> its like it spurts and splorts in iotop aswell
[21:56] <alex12> but iowait remains solid
[21:56] <alex12> this is fustrating :(
[21:59] <greenfly> alex12: what's your free memory look like?
[21:59] <greenfly> how far are you into swap?
[21:59] <alex12> nothing in swap
[22:00] <alex12> its a pure iowait issue, im finding it hard to nail
[22:00] <greenfly> yes, but swap issues become iowait issues :)
[22:00] <alex12> it
[22:00] <alex12> [21:49] * timburke (n=timburke@unaffiliated
[22:00] <greenfly> anyway I was just ruling that out
[22:00] <alex12> http://pastebin.com/m1eed6964
[22:00] <alex12> surer
[22:00] <alex12> thats my free
[22:01] <alex12> bonnies writing really slowly ....
[22:01] <alex12> im on ubuntu 9.04 with 2.6.28-11-server
[22:01] <alex12> im thinking of rolling my kernel back
[22:01] <alex12> into the stone age to see if that makes a difference
[22:02] <timburke> yes alex12?
[22:02] <alex12> ?
 [21:49] * timburke (n=timburke@unaffiliated
[22:02] <alex12> sorry, mispaste
[22:03] <greenfly> alex12: this is a sata drive, right?
[22:04] <alex12> hp dl360 g3 - i5 controller - 2 x u320 scsi drives
[22:04] <greenfly> ahh
[22:04] <greenfly> hw RAID1?
[22:05] <alex12> yeap
[22:05] <greenfly> I wonder how much that affects the throughput for just flat-out writing to disk when the cache can't help much
[22:06] <alex12> unsure
[22:06] <greenfly> ya, would be difficult to test, as well
[22:06] <alex12> i shouldnt be getting 1-2secs of no writes, then maybe 100-150K/s writes for a few secs, then maybe 1 sec of 4MB/s wrtie, then back in circles
[22:06] <alex12> io wait all this time is like 40-60%
[22:06] <greenfly> getting any interesting scsi errors in dmesg?
[22:07] <alex12> nope
[22:07] <alex12> looks clean... nothing since 20secs from boot
[22:08] <greenfly> maybe boot from, say, a knoppix 5.x cd. should have support for HP controllers and you could test IO from that and rule out the kernel revision
[22:08] <jmedina> I dont like hardwae raid, hard to debug when you dont have a linux tool
[22:09] <alex12> hrm ok ill give that a shot
[22:09] <alex12> how would i downgrade the kernel anyways?
[22:10] <greenfly> that's tougher... might have to downgrade the OS depending... but if you seem to get to that point it might be worth filing some sort of bug against the module
[22:10] <greenfly> especially if you get an older ubuntu live cd (say 8.10) and also don't see the problem
[22:10] <greenfly> then it would classify as a regression and would be easier for people to test
[22:11] <alex12> ok well im downloading knoppix and ubuntu 8.10 now
[22:12] <greenfly> also, both should have the ability to run apt-get from ramdisk so you could install bonnie if you needed to
[22:13] <alex12> ok
[22:17] <alex12> im noticing in iostat -k -x 1
[22:18] <alex12> that await is sitting around 220
[22:18] <alex12> %util is @ 100% aswell
[22:31] <jman888888> How do i install plesk?
[22:32] <jman888888> ....
[22:33] <jman888888> Ok how do i install plesk?
[22:34] <alex12> greenfly: changed some bios options, rebooted, and started the import again ...
[22:34] <jmedina> jman888888: plesk is not opensource, you better ask to plesk people as part of your support
[22:34] <alex12> iostat -x shows 6-10% util ... io wait is 1-2% ...... cached memory is slowly increasing....
[22:34] <alex12> i wonder when cached gets full ill loose all performance...
[22:35] <greenfly> alex12: I could see the import giving you half the performance you expected since it has to read in some chunks, process them, write them, then repeat
[22:35] <alex12> iotop and iostats shows writing/reading @ 4MB/s
[22:36] <alex12> i turned HT off, and set the system to "io performance"
[22:36] <alex12> rather than "memory performance"
[22:36] <alex12> whatever the f that does...
[22:36] <alex12> still reading and writing @ 3MB/s ... systems chugging away with strong user% ... low io wait @ 1-2%
[22:37] <alex12> %util in iostat is 5-10% ...
[22:37] <alex12> await is 2
[22:37] <alex12> that was like 200 before
[22:44] <alex12> ok running out of cached now...
[22:44] <alex12> er free memory i mean
[22:47] <alex12> ok wow, im getting great stuff on bonnie now
[22:47] <alex12> 30MB/s now./...
[22:48] <alex12> now great but lots better, during the mysql import ...
[22:48] <jmedina> :O
[22:48] <alex12> await is high
[22:48] <jmedina> alex12: so what changed?
[22:48] <alex12> rebooted, and changed some bios settings:
[22:48] <alex12> [22:36] <alex12> i turned HT off, and set the system to "io performance"
[22:48] <alex12> [22:36] <alex12> rather than "memory performance"
[22:48] <jmedina> :O
[22:49] <alex12> during bonnie, await in iostat is 140->400 and util is 100%
[22:49] <alex12> which is expected ...
[22:49] <alex12> while bonnie is running, everything else is bogged down....
[22:50] <alex12> must be stressing the disks hard
[22:54] <NativeAngels> hello can anyone tell me what port ssh uses on a guest machine
[22:54] <NativeAngels> for xen
[22:55] <jmedina> NativeAngels: the same when running in native, unless you change it
[22:55] <NativeAngels> hmm
[22:55] <jmedina> you can verify with "netstat -pltn | grep sshd"
[22:55] <NativeAngels> im getting timed out
[22:56] <jmedina> of course in the server
[22:56] <NativeAngels> when i ping the guest machine i get destinatin host unreachable
[22:56] <jmedina> NativeAngels: do you have access to Dom0?
[22:56] <NativeAngels> im using putty
[22:57] <NativeAngels> what do you mean
[22:59] <NativeAngels> this is the setup jmedina http://paste.ubuntu.com/167188/
[23:01] <NativeAngels> did you get that jmedina
[23:03] <jmedina> NativeAngels: connect to xen1.example.com with something like:
[23:03] <jmedina> # xm console xen1.example.com
[23:03] <jmedina> login as root
[23:04] <jmedina> and check ssh is running with
[23:04] <jmedina> netstat -plutn
[23:04] <jmedina> if not, install it
[23:05] <jman888888> Ok(JGB Was AFK) Whats a great oss Cpanel?
[23:12] <NativeAngels> this what i got after xm console jmedina http://paste.ubuntu.com/167232/
[23:12] <phaidros> something wrong with initrd or kernel modules ..
[23:13] <phaidros> does your guest have the correct /lib/modules version (same as you set in you cfg) ?
[23:13] <jmedina> NativeAngels: that is all?
[23:14] <jmedina> NativeAngels: try to kill the machine and start it again
[23:14] <jmedina> xm destroy xen1.example.com
[23:14] <jmedina> and xm create xen1.example.com -c
[23:15] <alex12> jmedina, greenfly: bonnie did well: sql1,10000M,,,31599,15,17739,8,,,52860,16,577.7,1,16,+++++,+++,+++++,+++,+++++,+++,+++++,+++,+++++,+++,+++++,+++
[23:15] <alex12> thats during a sql import :)
[23:15] <alex12> hrm ill just leave it as is then
[23:15] <alex12> maybe it was that bios option ...