[00:05] <billybigrigger> how can i backup my mysql db's without a root mysql user?
[00:26] <giovani> billybigrigger: backing up your mysql db doesn't require a root user
[00:36] <Lord_Devi> What might cause apache2 to not be able to "reliably determine the server's FQDN"? My FQDN is resolving/working fine. hostname -f shows the correct resolving ubuntu01.example.lan..
[00:36] <Lord_Devi> I don't understand why apache couldn't find it if hostname -f can. I would prefer to avoid adding the ServerName directive to my apache2.conf..
[00:39] <giovani> unless the .len tld is resolvable ... that's not a FQDN
[00:40] <giovani> however, you might want to set servername in the apache config
[00:40] <giovani> s/len/lan/
[00:40] <Lord_Devi> the .lan is resolvable though. I use it for everything..
[00:40] <giovani> ok, so set servername
[00:41] <Lord_Devi> There is a working bind9 server up, configured to serve example.lan/192.168.156.0/24
[00:41] <Lord_Devi> Yeah that worked fine, but I shouldn't have to..
[00:41] <giovani> I don't know why you think you shouldn't have to
[00:42] <Lord_Devi> Well it's a symtom of something else being broken I think. I've never had to do that before with 8.04
[00:42] <giovani> it's possible that apache is sanity checking the hostname against internet tlds to determine if it's a FQDN
[00:42] <Lord_Devi> hrmm.. maybe. That's still new behaviour
[00:43] <Lord_Devi> Oh well I guess I can just deal with having ANOTHER file I have to edit to set up servers..
[00:43] <giovani> new doesn't necessarily mean a bug
[00:43] <Lord_Devi> Just already have like 30+ configs I need to localize for these installs, Iike to keep that down as much as I can
[00:43] <Lord_Devi> Oh well thanks for the input giovani, it's appreciated.
[00:44] <Lord_Devi> Do you know if there would be any problems with setting ServerName to localhost?
[00:44] <Lord_Devi> ..rather than the FQDN
[00:45] <giovani> localhost should be fine
[00:45] <Lord_Devi> Well one way to find out.. Thanx
[00:53] <Lord_Devi> Ah very nice, seems to work like a charm.
[01:07] <bin10101> hey guys
[01:08] <bin10101> I am running ubuntu server in a Virtualbox VM for development....I created a small VM with LAMP
[01:09] <bin10101> i have two ethernet connections for ubuntu server 9.04 in a VirtualBox VM.  Even if I set both connections to NAT, one is defined as eth0 and the other as vibr0.  I can't seem to get vibr0 to work in any configuration.  Is this a limitation of ubuntu server?  It seems to give eth0 to the main ethernet and vibr to all others.
[01:09] <bin10101> I expected to see eth0 and eth1
[01:11] <bin10101> I also tried to setup the vibr0 in the /etc/network/interfaces as auto vibr0 iface vibr0 inet dhcp and that failed to work as well....anyone else see this behavior?
[01:12] <bin10101> is there a way to make vibr0 become eth1?
[01:16] <bin10101> sorry...been typing it wrong in chat....make that virbr0
[01:18] <bin10101> i checked it was right in the /etc/network/interfaces
[01:19] <bin10101> looks like if eth0 is turned off that virbr0 will not work :(
[01:26] <giovani> virbr is probably "VIRtual BRidge"
[01:27] <bin10101> i am trying a reinstall with the emulated nics being different
[01:31] <bin10101> see if I can get it to see both eth0 and eth1
[01:38] <bin10101> that is so bizarre
[01:39] <giovani> this sounds like a virtualbox problem
[01:39] <giovani> try asking them
[01:39] <bin10101> why would does the install ask for the main nic
[01:39] <giovani> huh?
[01:39] <giovani> it wants to know which nic to use ... obviously
[01:39] <giovani> for internet access
[01:40] <bin10101> it could set them both at inet dhcp and you would still get to the same internet
[01:40] <giovani> but there's no advantage to that
[01:40] <bin10101> well I guess one of them would fail
[01:40] <giovani> that complicates things for no gain during an install
[01:41] <bin10101> but both Nics have different MAC addresses....wonder why its deciding to have one eth0 and the virtual bridge?
[01:41] <bin10101> http://www.riccardoriva.com/archives/693 I see here that you can have multiple nics...wonder why this isn't working
[01:42] <giovani> of course you can have multiple nics
[01:44] <bin10101> does ubuntu-server uses just the MAC address to determine uniqueness in the nic, right?
[01:44] <giovani> uh
[01:44] <giovani> I don't know what you mean by "determine the uniqueness of the nic"
[01:44] <giovani> nics are hardware devices, the computer doesn't need to use a MAC to know that there's two
[01:44] <bin10101> well the actuall machine I am using only has one nic
[01:44] <bin10101> okay
[01:45] <giovani> I've recommended that you talk to the virtualbox folks a number of times
[01:45] <bin10101> both are emulated nics
[01:45] <giovani> why don't you do that?
[01:45] <bin10101> k.
[02:00] <billybigrigger> is anyone aware of a way to get my phpmyadmin/mysql back to stock?
[02:00] <billybigrigger> ie, clear all db's, users, and start fresh?
[02:01] <billybigrigger> i've tried apt-get purge mysql-server and phpmyadmin
[02:01] <billybigrigger> then apt-get install mysql-server and phpmyadmin, but my db's are all still there with the same users
[02:06] <ajmitch> billybigrigger: there's a debconf setting for mysql-server-5.0 that controls whether databases are wiped on a purge
[02:07] <ajmitch> the easy way to change that may be to dpkg-reconfigure mysql-server-5.0, and see if it asks that question about it
[02:09] <billybigrigger> just asked me for a password with dpkg-reconfigure
[02:18] <billybigrigger> ok new question
[02:18] <billybigrigger> all my mysql locale settings are ending with _ci
[02:18] <billybigrigger> and its displaying some wierd stuff for characters
[02:19] <billybigrigger> err for collation
[02:19] <billybigrigger> what should i be using?
[02:21] <stickystyle> ci means 'case insensitive'
[02:22] <stickystyle> The weird stuff may be a an issue of some UTF-8 chars in a latin1 encoded field.
[02:23] <stickystyle> very common.
[02:24] <billybigrigger> so _ci is fine to use
[02:24] <stickystyle> yes
[02:24] <billybigrigger> roger, thanks
[02:24] <stickystyle> np
[02:26] <billybigrigger> also...
[02:27] <billybigrigger> im trying to install roundcube...its a webmail frontend...anywho....
[02:28] <billybigrigger> its root dir is /var/www/webmail, and it needs to be able to write to /var/www/webmail/temp and /logs
[02:29] <billybigrigger> what would be the best way about giving the correct perms...chown'ing it to the webserver or chmod'ing it so that anyone can write to it?
[02:29] <stickystyle> chown or chgrp to the www-data user or group
[02:30] <billybigrigger> thanks again :P
[02:34] <billybigrigger> anyone here use roundcube?
[02:35] <twb> !anyone
[02:35] <twb> Oh, sorry.
[02:36] <Znuff> Hi there.
[02:36] <Znuff> I'm not really sure how SELinux works, but isn't this SELinux related? [2603183.964203] audit(1242955897.392:147): type=1503 operation="inode_permission" requested_mask="rw::" denied_mask="rw::" name="/home/mysql/ibdata1" pid=20006 profile="/usr/sbin/mysqld" namespace="default"
[02:38] <twb> Znuff: selinux is off by default on Ubuntu.
[02:39] <Znuff> that's what I knew
[02:39] <Znuff> and I'm pretty sure I haven't enabled it :-/
[02:40] <Znuff> twb, why would I be getting audit messages in my dmesg if I don't have selinux enabled?
[02:45] <twb> Presumably, they are from some other subsystem.
[02:45] <twb> For example, apparmour seems to be installed by default...
[02:45] <Znuff> yup, so it was
[02:45] <Znuff> ^^
[02:46] <Znuff> ow
[02:46] <Znuff> ^version
[02:46] <cef> yup.. apparmor generates audit entries in your logs
[02:46] <Znuff> holy s*
[02:46] <Znuff> update to supybot o.O
[02:49] <Znuff> thanks twb & cef
[03:06] <billybigrigger> who's familiar with apache's virtual hosts?
[03:06] <billybigrigger> im trying to setup a subdomain for /var/www/webmail
[03:07] <billybigrigger> i want to set it up as webmail.mydomain.com
[03:07] <billybigrigger> not www.mydomain.com/webmail
[03:07] <billybigrigger> now the apache doc's aren't clear as where to put this virtual host file or what to name it
[03:07] <billybigrigger> anyone?
[03:30] <cef> billybigrigger: 'man a2ensite'
[03:32] <cef> billybigrigger: gives you the help for the wrappers used by apache2ctl that help manage sites. very useful.
[04:08] <billybigrigger> cef
[04:08] <billybigrigger> a2ensite webmail.mydomain.com
[04:08] <billybigrigger> ?
[04:09] <billybigrigger> hehe not much of a man page
[04:09] <billybigrigger> does that create the file in sites-available?
[04:09] <billybigrigger> or do i have to create the file?
[04:10] <billybigrigger> ie i have nothing in sites-available, a2ensite webmail.mydomain.com will create the file, and input the correct vhost data, and then sym link it to sites-enabled?
[04:10] <billybigrigger> or is all a2ensite do is sym link an already created file?
[04:20] <cef> no, you need to create the file in sites-available
[04:20] <cef> using a2ensite will then enable that site
[04:20] <cef> (sorry, stepped away from the keyboard.. work does that to you)
[04:20] <billybigrigger> ahh
[04:21] <billybigrigger> hehe
[04:21] <billybigrigger> hmm
[04:21] <cef> I tend to copy the default file and then edit that
[04:21] <billybigrigger> i see lots of examples in apaache docs that explain multiple domains for 1 ip, or 1 domain for multiple IP's
[04:21] <billybigrigger> i just want to add a bloody subdomain
[04:21] <cef> as everything is pretty much there and you can tweak it however you like. esp if 90% of the time they're the same details
[04:21] <billybigrigger> ok, ill edit the default then
[04:21] <cef> no, copy the default
[04:22] <billybigrigger> yeah, my bad
[04:22] <billybigrigger> thats what i meant :P
[04:22] <cef> then edit it with your settings, then run 'a2en filename'
[04:22] <billybigrigger> ok, 1 more question that apache docs aren't too clear on...does the name of the file have to be subdomain.domain.com or can it be ilovecheese
[04:22] <billybigrigger> ?
[04:23] <cef> though making the filename something that'll identify what it is in it is useful. doesn't have to be the domain name
[04:23] <cef> yes, it can be 'ilovecheese' or even 'ihavenopants' if you like
[04:23] <cef> and yeah, 'a2ensite fillename' even. oops
[04:24] <billybigrigger> ok
[04:24] <billybigrigger> so using the domain or subdomain is usefull for identifcation only
[04:24] <billybigrigger> thanks
[04:24] <cef> same deal for modules too, but they're usually auto-created by packages, and you can a2enmod and a2dismod them by name.
[04:24] <cef> no probs
[04:25] <billybigrigger> ok
[04:25] <cef> whatever is in the '-available' of each (sites and mods) are available to be used, but only what is symlinked in the '-enabled' are in use.
[04:27] <billybigrigger> right
[04:28] <billybigrigger> ok now this submdomain could be as simple as adding ServerName subdomain.domain.com and DocumentRoot /var/www/webmail inside of <VirtualHost></VirtualHost> tags correct?
[04:29] <billybigrigger> or it can be as elaborate as the default
[04:29] <billybigrigger> ?
[04:31] <billybigrigger> dammit, after a2ensite, it still doesn't work
[04:34] <billybigrigger> or can i do this right in my httpd.conf?
[04:37] <cef> did you reload apache?
[04:38] <billybigrigger> yes
[04:38] <billybigrigger> the a2ensite doesnt work
[04:38] <cef> hrm weird. pastebin the contents of the file
[04:38] <billybigrigger> and adding a vhost in apache2/httpd.conf after a restart doesn't work either
[04:38] <billybigrigger> which file?
[04:38] <cef> the site file
[04:38] <billybigrigger> http://guide.opendns.com/?url=webmail.thefrozencanuck.ca
[04:39] <billybigrigger> err
[04:39] <billybigrigger> http://pastebin.com/f6846476a
[04:40] <cef> <VirtualHost *:80> should be <VirtualHost webmail.thefrozencanuck.ca:80>
[04:40] <billybigrigger> oh
[04:41] <billybigrigger> can i remove directory / and directory /var/www and create one for /var/www/webmail since thats the docroot?
[04:41] <cef> yup
[04:42] <billybigrigger> will keeping them hurt anything?
[04:42] <billybigrigger> or is this config only for webmail.
[04:42] <billybigrigger> like the default config in sites-enabled still overrides this config correct as 000-default is loaded first?
[04:43] <billybigrigger> and do i have to do anything with my domain provider? ie godaddy where i purchased the domain...do i have to link this subdomain somewhere or is it all done through apache?
[04:45] <billybigrigger> here's the updated file
[04:45] <billybigrigger> http://pastebin.com/f546dd67d
[04:45] <billybigrigger> do i have to run a2ensite again?
[04:45] <billybigrigger> it should already be enabled, just an apache2 force-reload eh?
[04:47] <cef> just reload
[04:47] <cef> or restart
[04:48] <billybigrigger> are vhosts handled all by apache? theres nothing i have to do in godaddy's domain manager correct?
[04:48] <cef> afaik correct
[04:48] <billybigrigger> hmmm
[04:48] <billybigrigger> well still not working
[04:49] <cef> you should just need to point the subdomain at that machine though
[04:49] <cef> eg: give it a CNAME or A record)
[04:49] <billybigrigger> wtf
[04:49] <billybigrigger> mail.tfc.ca
[04:49] <billybigrigger> works
[04:49] <billybigrigger> but webmail does
[04:49] <billybigrigger> i have a CNAME for mail that points to @
[04:50] <cef> do you have a cname for webmail?
[04:50] <billybigrigger> no
[04:50] <billybigrigger> why do mail.tfc.ca take me to /var/www/webmail though?
[04:50] <cef> well, how can the dns name resolve? you need a CNAME (or A) record
[04:51] <cef> possibly a config issue
[04:51] <billybigrigger> i changed mail to webmail
[04:51] <billybigrigger> i had a cname for mail, not webmail
[04:51] <billybigrigger> but mail pointed to /var/www/webmail, does this make sense to you?
[04:52] <billybigrigger> http://mail.thefrozencanuck.ca/
[04:52] <billybigrigger> haha, wierd
[04:52] <cef> it means you have a config that has changed the docroot to that...
[04:52] <billybigrigger> ???
[04:52] <billybigrigger> where
[04:52] <billybigrigger> all configs i have setup where for webmail to /var/www/webmail
[04:53] <billybigrigger> s/where/were
[04:53] <cef> yeah, your www. points to webmail now too
[04:53] <billybigrigger> hmmm
[04:53] <cef> put defaults and webmail sites files on pastebin
[04:54] <billybigrigger> http://pastebin.com/f1c46a366 <---default
[04:54] <billybigrigger> http://pastebin.com/f6672cc99 <---webmail
[04:55] <billybigrigger> maybe i should have left the directory / and /var/www in my webmail config and just added a directory for /var/www/webmail
[04:55] <billybigrigger> ???
[04:55] <billybigrigger> im lost haha
[04:59] <cef> no it looks like it might be because you don't give the default a 'servername', or because webmail.tfc.ca isn't in the /etc/hosts file and it thinks it's the default.
[04:59] <cef> I've seen someone have this issue before but I don't know what fixed it (work intervened)
[05:00] <billybigrigger> ok
[05:00] <billybigrigger> i will give default the servername of www.tfc.ca or just tfc.ca?
[05:00] <billybigrigger> i don't think i have either webmail. or tfc.ca in /etc/hosts
[05:01] <billybigrigger> http://pastebin.com/f2f8a4155
[05:04] <billybigrigger> ok
[05:04] <billybigrigger> adding servername to default got my index.html page back
[05:04] <billybigrigger> now webmail.thefrozencanuck.ca doesn't work
[05:05] <tonyyarusso> Is Jamie or Kees around?  I'm wondering if there's any response yet to the SSH vulnerability discussed on http://news.zdnet.co.uk/security/0,1000000189,39653852,00.htm ?
[05:05] <twb> tonyyarusso: the SHA-1 vulnerability?
[05:06] <twb> tonyyarusso: try #ubuntu-hardened?
[05:06] <tonyyarusso> twb: I think this is a separate thing actually.
[05:06] <twb> That seems to be the security team's channel.
[05:06] <tonyyarusso> fair enough
[05:13] <billybigrigger> cef::: added webmail.thefrozencanuck.ca   /var/www/webmail to /etc/hosts
[05:13] <billybigrigger> correct?
[05:14] <billybigrigger> bah
[05:14] <billybigrigger> stupid ass subdomains...who thought this would be so bloody hard
[05:15] <tonyyarusso> billybigrigger: um, no...
[05:15] <tonyyarusso> billybigrigger: subdomains go in your apache config, not /etc/hosts.  /etc/hosts does name resolution for machines.
 no it looks like it might be because you don't give the default a 'servername', or because webmail.tfc.ca isn't in the /etc/hosts file and it thinks it's the default.
[05:16] <billybigrigger> i don't know, im reaching right now...so im trying any and all suggestions
[05:16] <billybigrigger> i can't get this to work for the life of me
[05:17] <billybigrigger> is there anything im missing besides my .../sites-available/webmail.tfc.ca
[05:17] <billybigrigger> ?
[05:17] <billybigrigger> do i need to call that config in httpd.conf somewhere?
[05:17] <billybigrigger> like a subdomain should be simple, i want webmail.tfc.ca to point to /var/www/webmail
[05:18] <billybigrigger> create the config in .../sites-available then a2ensite webmail.tfc.ca and then reload apache...correct?
[05:20] <tonyyarusso> billybigrigger: okay, sites-available should have stuff about the subdomain, and /etc/hosts should have IP addresses - could you pastebin your configs?
 http://pastebin.com/f1c46a366 <---default
 http://pastebin.com/f6672cc99 <---webmail
[05:22] <billybigrigger> thats my /sites-available dir
[05:25] <billybigrigger> aparrently it doesn't resolve...and the httpd guys are telling me to make it resolve hehe
[05:26] <KurtKraut> What were the boot scripts afected by the change from bash to dash that happened in Ubuntu some time ago? Only those located in /etc/init.d ?
[05:26] <twb> KurtKraut: why do you ask?
[05:28] <tonyyarusso> billybigrigger: Is 68.146.139.247 the correct IP address for webmail.thefrozencanuck.ca ?
[05:28] <billybigrigger> yes
[05:28] <billybigrigger> do i need a CNAME or an A record for webmail? maybe thats my problem
[05:29] <KurtKraut> twb: I'm willing to request the same migration from dash to bash to other distros and I've realised that most scripts placed on /etc/init.d call /bin/bash directly instead of /bin/sh.
[05:29] <billybigrigger> ohhh
[05:29] <tonyyarusso> billybigrigger: I'm reasonably certain you want an A record for this.
[05:29] <billybigrigger> im about to get a boot from #httpd...hehe chalk that up as #2 for the day :P
[05:29] <billybigrigger> ok
[05:29] <billybigrigger> i think thats my problem...
[05:29] <billybigrigger> i have a CNAME for webmail to my ip
[05:30] <billybigrigger> ie....webmail @
[05:30] <KurtKraut> twb: In other to understand better the impact on making such change, I'd like to know if there other scripts related to boot that are not located in /etc/init.d that would impact on boot performance by this sort of change
[05:30] <tonyyarusso> billybigrigger: The usual wisdom is "If you don't know why you need a CNAME, you don't want a CNAME."
[05:30] <twb> KurtKraut: well, I believe Debian recently (as in, the last twelve months) fixed that issue.
[05:30] <billybigrigger> tonyyarusso::: cause i have cnames that where set when i got the domain for www and ftp....so i assumed a cname for webmail would work for webmail.mydomain.com
[05:30] <billybigrigger> :P
[05:30] <twb> KurtKraut: stuff like RHEL is simply fucked; they have a LOT more bashisms in their code.
[05:31] <twb> KurtKraut: and they have no convention of actually, you know, making packages that adhere to a comprehensive integration policy.
[05:31] <KurtKraut> twb: I see. Bu do you know what scripts are run at boot besides those located in /etc/init.d?
[05:32] <twb> KurtKraut: that depends on many things.  But I suspect you want the system to do more than just boot.
[05:32] <billybigrigger> tonyyarusso::: why did you ask about my ip address?
[05:32] <billybigrigger> tonyyarusso::: and also should the host be webmail.tfc.ca or just webmail?
[05:32] <tonyyarusso> billybigrigger: Because you mentioned that it wasn't resolving.
[05:32] <billybigrigger> tonyyarusso::: ahh
[05:33] <tonyyarusso> billybigrigger: the full thing.
[05:33] <billybigrigger> tonyyarusso::: k, well i added it
[05:33]  * billybigrigger waits
[05:33] <billybigrigger> soab
[05:33] <billybigrigger> webmail.thefrozencanuck.ca now points to thefrozencanuck.ca
[05:33] <billybigrigger> it points to /var/www
[05:33] <KurtKraut> twb: what I'm trying to test/measure is the impact of the migration from bash to dash on boot. And what I want to know at the moment is how many *boot* scripts declare they need precisely bash instead of /bin/sh
[05:33] <billybigrigger> not /var/www/webmail
[05:34] <twb> KurtKraut: OK, what you want to do is get the checkbashisms(1) script and run it over, basically, all of /etc/.
[05:35] <KurtKraut> twb: that sounds great. Thanks
[05:35] <twb> KurtKraut: from the list it emits, it should be obvious which files AREN'T used during boot.
[05:35] <twb> KurtKraut: note that checkbashisms will not report on e.g. /etc/sysconfig/networking, because those files don't have shebangs -- but I bet they are sourced by a sh script.
[05:36] <twb> The other obvious thing to do, is just make sh -> dash, and see what breaks when you reboot.
[05:36] <KurtKraut> twb: this would be the step 2 of my experiment, seing what breaks
[05:37] <KurtKraut> twb: but the first data I want to collect is how many scripts right at the begining say they need bash to run instead of /bin/sh, that would in theory and in a ideal world, mean that they don't have bashisms
[05:38] <billybigrigger> i want to strangle all the smartasses in #httpd
[05:38] <twb> KurtKraut: oh, then try something like grep -rn /etc '^#!.*bash' | grep :1:
[05:39] <twb> Oops, swap the pattern and /etc around, etc.
[05:41] <KurtKraut> twb: what a curious result. In Ubuntu, only 9 files found. In Mandriva, 290.
[05:42] <twb> KurtKraut: culturally, Debian packages are encouraged to avoid bash and bashisms.
[05:42] <twb> I don't think policy actually REQUIRES them to avoid bash shebangs...
[05:46] <KurtKraut> twb: those data were really helpful. Thanks a lot for your help and commands.
[05:47] <twb> KurtKraut: no worries.
[05:48] <ScottK> In Ubuntu the default /bin/sh is dash, so we've been trying to get rid of bashisms for some time.
[05:51] <a_ok> what script or process is supposed to make /var/run/apache2?
[05:56] <ScottK> a_ok: Generally the init script should handle that.
[05:56] <ScottK> I'm not sure specifically about apache2
[06:47] <unewbie> i installed squid and i want to authenticate with ncsa, my users still can connect to internet and never authenticate with ncsa. what could be wrong? i use 8.04.2
[06:48] <unewbie> i followed some tutorials to edit my squid.conf and it's still no result
[06:51] <unewbie> !squid
[06:51] <unewbie> !ncsa
[07:02] <unewbie> anyone?
[07:05] <jmarsden_> NCSA?  The people that brought us the Mosaic browser in 1993?  http://www.ncsa.uiuc.edu/Projects/mosaic.html ?
[07:07]  * jmarsden would suggest not using a discontinued and very very old browser...?  Or is the NCSA you refer to something else?
[07:07] <cef> I think he means an auth mechanism
[07:08] <cef> what's the MS one?
[07:08] <cef> ntlm?
[07:09] <jmarsden> cef: Yes, but that means he got only one out of 4 letters correct in the acronym, which is pretty poor spelling?
[07:09] <cef> jmarsden: I've seen worse.. ;)
[07:11] <jmarsden> Maybe something like http://www.opensourcehowto.org/how-to/squid/squid-with-ntlm-authentication.html would help, then?
[07:12] <cef> wow, NSCA also made a httpd server. never knew that
[07:13] <jmarsden> Yes, wasn't that the one the pile of patches turned into "a patchy" server, which became Apache?
[07:14] <cef> probably
[07:15] <jmarsden> I ran that, back in about 1994 or so, on NetBSD :)
[07:15] <cef> ahh back then, I was still running a BBS.. those were the days
[07:20] <unewbie> it's solved
[07:21] <jmarsden> unewbie: Are you really using NCSA ?  The web server or the Mosaic browser?
[07:22] <unewbie> i put the http_access allow ncsa_users exactly below the acl ncsa_users proxy_auth REQUIRED
[07:22] <unewbie> i used ncsa module at /usr/lib/squid/ncsa_auth
[07:22] <cef> hrm! there ya go (??)
[07:23] <unewbie> thanks guys
[07:23] <unewbie> :)
[07:27] <cef> oh bah..it's just a module that reads any ncsa compliant passwd file (eg: htpasswd)
[07:28] <jmarsden> Yes... squid "NCSA" auth is what most of us would call "Basic Auth"
[07:28] <cef> yup
[08:09] <unewbie> i'm thinking using ldap authentication
[08:09] <unewbie> any advice?
[08:29] <jmarsden> unewbie: If you have to authenticate using LDAP before you can think, you are in deep trouble :)
[08:31] <jmarsden> I need to go to sleep... but if you already have an LDAP server set up and working, it probably makes sense to use it for Squid auth too.  If not... it's a fair amount of work to set one up.
[09:15] <unewbie> jmarsden: thanks for the advice
[09:16] <unewbie> looks like i need someone to teach me to install and configure openldap :D
[13:13] <heath|work> Hello. I keep reading articles at HowToForge.com and most of them say to disabled app armor to run thing in a chroot jail, but is this really necessary?
[13:41] <infekteddeath> anyone familiar with ispconfig
[13:41] <infekteddeath> 3
[13:43] <infekteddeath> i need help with setting up ispconfig3 and godaddy
[13:43] <infekteddeath> am i talking to ghosts
[13:43] <infekteddeath> hell?
[13:44] <infekteddeath> hello?
[13:45] <ScottK> infekteddeath: Ubuntu doesn't (last i looked) ship an ispconfig package, so this may not be the best place to ask.
[13:50] <timedout_> does this channel deal with just the software side of servers?
[13:50] <ewook> it deals with the content of the inhabitants brains more or less
[13:51] <ewook> and I doubt that's limited to software only.
[13:51] <ewook> :)
[13:53] <timedout_> alright
[13:54] <timedout_> well i'm looking at picking up a multiprocessor server, supposedly rated at 550mhz
[13:55] <timedout_> would that be the same effectively as having a single 2.2ghz processor?
[13:55] <timedout_> and would ubuntu run on such a server?
[13:56] <ScottK> How much RAM?
[13:56] <timedout_> 3.5GB
[13:57] <ScottK> It's not the same as a single 2.2ghz processor.  In some ways it will be better, in some ways worse.
[13:58] <ScottK> Do you know if the BIOS is from before 2000 or after?
[14:00] <ScottK> timedout_: If it's before 2000 (and thus won't use acpi), Hardy is the last release it will run on.  If it's new enough to use ACPI, then it should run on any Ubuntu release.
[14:01] <ewook> timedout_: i'd say that there isn't that much value in a old PIII with that low frequency.
[14:01] <ewook> and ScottK is right.
[14:01] <timedout_> thanks
[14:01] <timedout_> ewook: it's bascially just for learning purposes
[14:01] <ScottK> It's fine for that.
[14:01] <ewook> timedout_: for learning it's neat :)
[14:02] <ScottK> I have an old dual PIII 450 machine that I use for backups (new hard drives).
[14:04] <timedout_> anyone know of some resources for finding used network components? servers, routers, switches, etc
[14:04] <timedout_> other than craigslist
[14:04] <ScottK> Ebay?
[14:39] <jetole> has anyone install cacti on 9.04
[14:39] <jetole> ?
[14:39] <jetole> I seem to have an issue where it is not showing graphs on the main page but if I click on the missing graph like object it shows graphs
[14:45] <jetole> ah screw it. I am re installing from source
[15:06] <RoAkSoAx> ivoks, heya master... have some good new for you :)
[15:07] <ivoks> RoAkSoAx: do you?
[15:07] <ivoks> RoAkSoAx: i can't merge anything now... i'm at the airport
[15:09] <RoAkSoAx> ivoks, not merge related... last night I've talked with horms, the heartbeat Debian mantainer (i think hi's also upstream??)... and well he said something that will make our lives easier
[15:10] <ivoks> what?
[15:10] <ivoks> horms was at last uds, iirc
[15:10] <RoAkSoAx> ivoks, they are waiting for final test on heartbeat / pacemaker / openais to get them in Debian archives.
[15:10] <ivoks> oh, nice...
[15:11] <RoAkSoAx> ivoks, and they are going to create a debian-ha group to maintain heartbeat / pacemaker / openais ... and I also said we had the same project, and that now we can work close together
[15:12] <ivoks> great
[15:12] <ivoks> i was expecting something like that
[15:12] <RoAkSoAx> ivoks, yep, I'll email you my conversation
[15:13] <ivoks> great
[15:13] <\sh> ivoks: on your way to pretty barcelona? :)
[15:13] <jpds> Today? I hope not.
[15:14] <ivoks> \sh: yep
[15:14] <RoAkSoAx> ivoks, done :)
[15:14] <ivoks> \sh: i'm in bonn
[15:14] <\sh> ivoks: WHAT? just drive 300km down to KA and visit me ;)
[15:14] <ivoks> :D
[15:14] <ivoks> \sh: if only you said that 3 hours ago :)
[15:15] <\sh> ivoks: and it's cologne/bonn airport ;) it's more cologne then bonn ;)
[15:15] <ivoks> \sh: i doubt i'll make it to you and back in 60 minutes, without a car
[15:15] <ivoks> \sh: i know it as Koeln :)
[15:15] <\sh> ivoks: yeah...well hopefully next year I'm able to attend another UDS myself..
[15:16] <RoAkSoAx> ivoks, and here are the packages that might go to Debian archives: http://packages.vergenet.net/experimental/
[15:16] <\sh> ivoks: drink some "kölsch" beer ;) (1. reissdorf 2. Früh 3. Sion) ;)
[15:16] <RoAkSoAx> those are apt-gettable so we can test them
[15:17] <ivoks> RoAkSoAx: great job!
[15:17] <ivoks> \sh: on my way back, maybe :)
[15:17] <\sh> .oO(dojotoolkit package looks like it's ready for upload...just a few lintian messages to fix)
[15:19] <RoAkSoAx> ivoks, so anyways... as you said, our cluster stack should be around as heartbeat / pacemaker /openais as long as Debian supports it
[15:20] <\sh> guys...any status on mysql-cluster for karmic?
[15:20] <ivoks> what's wrong with it?
[15:21] <ivoks> time to go...
[15:21] <ivoks> take care guys
[15:22] <RoAkSoAx> ivoks, have a good flight
[15:22] <ivoks> thanks
[15:22] <\sh> ivoks: give a hug to ogra from me, pls :)
[15:23] <ivoks> hehe
[15:26] <aljosa> anybody using rabbitmq on ubuntu intrepid? is there an apt repository?
[15:26] <teddy__> I need to do RAID 1 with 9.04..Do I need the Ubuntu-server standard or the alternate?
[15:41] <teddy__> To answer my own question, either Server Edition or alternate will do RAID 1. User Server Edition...
[15:48] <heath|work> Hello. I keep reading articles at HowToForge.com and most of them say to disabled app armor to run thing in a chroot jail, but is this really necessary?
[15:59] <hkais> hello
[15:59] <hkais> is there a hook, there I can hook in on every user logoff (forced by timeout, or manually by userrequest)?
[16:05] <radovan> hkais: http://thedaneshproject.com/posts/how-to-set-default-session-timeout-in-linux/
[16:05] <radovan> hkais: worth trying
[16:08] <jpds> heath|work: Pardon?
[16:55] <zanberdo> I have mysql 5.0.51a installed on ubuntu server 8.04. when I attempt to stop mysql using /etc/init.d/mysql stop I get the message * Stopping MySQL database server mysqld [fail]. I'm trying to track down why it's failing and how to fix it
[16:55] <zanberdo> note: I have asked at #mysql and they recommend that I ask here.
[16:55] <zanberdo> also note: /var/log/mysql/mysql.err and mysql.log are both 0 byte files
[16:55] <zanberdo> also note: syslog makes no mention of mysql
[16:56] <zanberdo> correction: /var/log/mysql.err and /var/log/mysql.log are 0 bytes. there are no files in /var/log/mysql/
[17:01] <w3wsrmn> zanberdo: on ubuntu, mysql logs to /var/log/syslog by default
[17:02] <zanberdo> right, so I've read. sadly, I'm getting no data in syslog
[17:02] <zanberdo> relating to mysql
[17:02] <zanberdo> it's clearly running
[17:10] <genii> zanberdo: This sometimes happens if for instance the pid file is bypassed. If you manually ran the mysqld directly for instance instead of using the init.d method. In this type of case you have to manually kill the process and start it properly from the init script.
[17:11] <zanberdo> genii, thanks for the suggestion. No, I did not start it manually, though I suppose I will kill the pid's and see if I can start it again.
[17:19] <jeiworth> hi all, having a little problem with cups on my server, i activated remote administration throuh cupsctl --remote-admin but when i try to login, all i get is a measly 403 forbidden :( any ideas where i can fix it, or what i have to put into the cupsd.conf file to make it work? this is before even the login page is shown
[17:19] <jeiworth> maybe it has to do with the installed apache server?
[17:21] <jeiworth> or that i am in a different subnet....hmmm
[17:23] <radovan> jeiworth: have you tried to restart the service?
[17:23] <radovan> cups have apache style configuration file, so maybe you should check there
[17:27] <jmedina> it is documented in ubuntu server guide
[17:27] <jeiworth> radovan: hmm coming to think of it, i didnt restart it after the cupsctl command, i thought cupsctl would take care of that for me, let me check
[17:27] <jmedina> the thing about cups
[17:32] <jeiworth> well, appears to be the subnet, if i access from a virtual machine in the same subnet i can configure it
[17:40] <dayo> i'm looking for a tool that let's me send a popup msg to all systems on my lan, e.g. "Rebooting proxy in 5 minutes. Please stand by."  any ideas?
[17:41] <jmedina> dayo: what kind of systems?
[17:42] <dayo> jmedina: ubuntu desktops and laptops. 8.04
[17:48] <jmedina> dayo: so you want to send this messages when you reboot your proxy (squid)?
[17:48] <jmedina> if so, you can redirect your users to a mainteinance web page
[17:49]  * jmedina loves virtualization (cero downtime)
[17:49] <dayo> jmedina: that was just an example. sometimes i need to let all my users know things like "The ISP is here. Expect about 20mins downtime, while we install the new router"  stuff like that
[17:50] <jmedina> mmm then I dont know
[17:51] <jmedina> we use internal IM with jabber, I can send broadcast messages
[17:51] <jmedina> or you can try something like this:
[17:52] <jmedina> autologin with ssh and something like: "logger -t adminmessage -p local7.emerg "The ISP is here....!!!:"
[17:53] <jmedina> by default most syslog daemons logs emerg messages to everything
[17:53] <jmedina> for example, KDE launches a little window with the message, not sure about gnome
[17:54] <jmedina> then you can use something like parallel ssh connections and automatic login using rsa keys
[17:57] <radovan> dayo: http://www.manpagez.com/man/1/xmessage/
[17:57] <alienseer23> when I install postgress with apt, there is not /etc/postgres/* directory, and nothing works...I am stuck here, asking for direction, why would this happen, how to fix it?
[18:02] <alienseer23> could postgres have used another directory for the config files for some reason?
[18:16] <chemfun> 'lo all.  if you could bear with me...I haven't used IRC for about a half decade
[18:17] <chemfun> I was sent here by #ubuntu
[18:17] <chemfun> I'm the tech guy at a school.  Really new to linux.  I purchased 4 Asus eee PC 4G.  Hated the native OS so I installed Ubuntu and followed the instructions to get the Kernel that works best with the eee pc's.  I'd love to be able to use our server (2003) to allow the students to login with their windows username.  I discovered the activedirectoryhowto on the wiki.  Unfortunately it states...
[18:17] <chemfun> ...that I need ubuntu server to connect to AD.  Is there a way that I can connect to AD with Ubuntu Desktop, or is there an easy way to configure the server to have a x windows environment?
[18:17] <chemfun> I've currently got server installed on my test eee box, but before I blow away another, I'd like to ask those that know more than I.
[18:17] <chemfun> I was told that desktop and server are the same, but server has some extra packages installed
[18:18] <radovan> AD is ldap
[18:18] <chemfun> Could anyone point me towards a wiki that would explain what to install to get a GUI environment to talk to my server2003 box?
[18:18] <radovan> login go throug PAM, so you need to update your pam config
[18:19] <chemfun> or....is it possible to have an eee pc talk with the server via wifi at boot so that they can login with their AD username and pwd?
[18:19] <radovan> http://ldots.org/ldap/
[18:19] <radovan> section 2 is interesting one
[18:20] <chemfun> looking at it
[18:21] <radovan> afaik there is no exact howto do it. maybe google will help you, but AD is ldap.
[18:21] <chemfun> without creating users on each eeepc will they be able to log in?
[18:21] <chemfun> or would it be easier to create users on a box and image the other comptuers?
[18:22] <radovan> yes, they will be able to log in
[18:22] <chemfun> sweet
[18:22] <chemfun> second question, if you've got time
[18:23] <radovan> yes?
[18:23] <chemfun> once logged in, would I be able to connect them to their windows home folder on the server, or would I need a separate NFS share that would be publicly accessed?  Did that make sense?
[18:24] <radovan> you san use existing samba share, but i'm not sure single sign on will work, so they may need to authenticate to samba share
[18:24] <radovan> or you can use nfs on windows, but generally that's not a good idea
[18:25] <radovan> implementation really sux :)
[18:25] <chemfun> why?
[18:25] <chemfun> :)
[18:25] <radovan> windows implementation of course
[18:25] <chemfun> right
[18:25] <radovan> i've tryed it and had performance issues
[18:26] <chemfun> Maybe I'm working at it backwards...I've already created a share for them on the windows box
[18:26] <chemfun> I don't know a lot about samba
[18:26] <chemfun> or linux for that matter
[18:26] <chemfun> We've got a linux firewall with dansguardian, but I only know enough to be dangerous
[18:27] <chemfun> I'll keep digging.  Thanks for the pointers
[18:27] <radovan> no prob :)
[18:32] <yeason> does anybody know if there is a good irc-services package for ngircd? I'm not having luck finding one
[18:42] <j0nr> Hi all, question: I have just set up apache/mysql/php to enable a simple webserver. /var/www/ is the web root. So if I put index.html in there it gets displayed to the web. But sometimes you want things higher up than that, i.e. on other hosted sites, the web root is not accessible by the public and youu have a public_html folder where the public acessible info goes...how do I make a folder within /var/www/ be the default 'public_html'?
[18:43] <j0nr> is it something like editing /etc/apache/sites-available/default and adjusting the root directory?
[18:45] <maxb> Erm
[18:45] <maxb> That's a slightly weird thing to do
[18:46] <maxb> Put the things which are not part of the website somewhere other than /var/www
[18:47] <stickystyle1> j0nr:  If your looking for per-user public_html folders (which is the only place I know of that dir name being used) you need to look into mod_userdir for apache
[18:48] <j0nr> ok, but somethings are part of the website... maybe I am just confused (n00b)... I am trying to install gallery software... the frontend of it is in a sub-directory of the webroot as it is viewable by the public, but the data for it, i.e. the raw images, are stored outside the document root...think I am answering my own question a bit...
[18:48] <j0nr> i can just tell it where they are in relation to  '/'
[18:48] <j0nr> this is just because its my own server rather than a hosted one
[18:48] <j0nr> ok no worries... :)
[18:50] <stickystyle1> for gallery, the standard place to store the data (i.e. photos) files is /var/lib/gallery2/g2data/  and that is something that you set in the config.php
[18:51] <stickystyle> FWIW, gallery is already in the repos so you don't have to manage all this yourself.
[18:51] <stickystyle> under 'gallery2'
[18:51] <bin1010> howdy all
[18:52] <bin1010> I got the two nic thing to work
[18:52] <bin1010> thanks for the help
[18:53] <bin1010> how do I tell ubuntu server to do certain requests on one nic and all the others on another?
[18:53] <bin1010> can someone just point me in right direction?  Not sure what to search for as far as effective keywords...keep getting #$@#Q!!#.  Thanks
[18:55] <jmedina> bin1010: what do you exactly want to do?
[18:57] <bin1010> I am using one nic mainly for incoming requests on local network and the other nic for internet.  Sometimes when the server makes a request like for aptitude update, it has to wait for some timeout before it gets the information it seeks.  I want to go ahead and tell server for most requests uses nic 2 and only use nic 1 for these specific things.
[18:57] <bin1010> did that make sense?
[18:59] <stickystyle> bin1010:  which nic is your default gateway?
[18:59] <bin1010> good question...hold on
[18:59] <stickystyle> and it sounds more like a DNS resolution issue.
[19:00] <bin1010> well one nic can see a local network just fine....but it can't get to the internet at all.  The other is hooked directly to our internet infrastructure
[19:00] <jmedina> or probably both interfaces connected to same switch and same broadcast domain
[19:03] <stickystyle> bin1010:  does this computer serve as a gateway/firewall for computers on the the LAN side?
[19:04] <bin1010> ip addresses are 192.168.56.101...thats the local network guy....and the other is 10.0.2.15 which has the ability to get to internet.
[19:04] <bin1010> no...no gateway/firewall
[19:05] <bin1010> i am using it as local web development environment...so I only allow connections to it via the local network NIC
[19:05] <bin1010> connections to the machine work greate
[19:06] <stickystyle> but apt-get updates take a while to get going?
[19:08] <bin1010> yes. it hangs for a time, then goes...kindof like a timeout
[19:09] <bin1010> remember when firefox had a similar problem...it would hang on a socket drop
[19:09] <stickystyle> The DNS server(s) set in /etc/resolv.conf, are they on the internet or local?
[19:10] <bin1010> the one it is pointed to is the one that can get to the internet....I just use the boxes ip address to check the webpage...sorry
[19:10] <stickystyle> BTW, there is no 'timeout' type thing with having more than one NIC.  You have a set of routes that the computer tries, and then the default gateway.
[19:10] <bin1010> okay....cool  That's much better ;)
[19:11] <stickystyle> To expand upon that, if your DNS server is not on those predefined set of routes (which it sounds like it is not) then the computer will always use the default gateway interface.
[19:12] <bin1010> that makes sense
[19:12] <stickystyle> I'm leaning towards a DNS issue if you haven't noticed ;)
[19:12] <bin1010> is see that
[19:12] <bin1010> LOL
[19:13] <bin1010> yes...the local network NIC will not be able to get to the DNS server in resolv.conf
[19:16] <bin1010> so that is the problem...but there is no way for me to get that NIC to that DNS server or even the gateway...they are really setup for the internet nic
[19:16] <bin1010> sorry the DNS and Gateway are setup for the "internet"nic...
[19:17] <stickystyle> that sounds like a valid setup from what you have described so far.
[19:18] <bin1010> but wont both nics try to use those settings?
[19:20] <bin1010> sorry for my ignorance...I am more of a developer than a linux admin.  I can get around most things, but I still get lost/confused on occasion. :)
[19:20] <stickystyle> Yes, the OS will handle which NIC to use for a particular request.
[19:20] <stickystyle> No worries.
[19:20] <bin1010> sweet...thanks
[19:22] <stickystyle> how many DNS servers do you have in resov.conf ?
[19:22] <bin1010> just one
[19:24] <stickystyle> Just for fun... change it to '4.4.4.2' (that is verizion's DNS server), we won't leave it on that but just for testing lets see what happens.
[19:25] <stickystyle> Whoops.  I meant to type 4.2.2.2
[19:26] <stickystyle> He'll be back :)
[19:41] <tadeu_> guys, i just create a .iso with remastersys, when i boot it the boot process stop in "configuring network interfaces", any idea ?
[19:42] <tadeu_> "ctrl+c" does not work.. the boot just keeps stuck
[20:28] <slestak> i have just picked up likewise open for my workstation.  I have a primo setup I dont want to lose.  I figured our winbind usermap, so when I log in as AD username, it appropriately comes in as the local user, but I think that is a bandaid.
[20:29] <ivoks> sommer: here? :)
[20:29] <slestak> is it safe to cp -R ~ to the ad users homedir, chown it all, and expect gnome settings and seuch to be safe?  Think gconf will have a conniption?
[20:32] <RoAkSoAx> ivoks, heya master... any news on the HA track for the UDS?
[20:33] <ivoks> RoAkSoAx: i haven't checked
[20:33] <RoAkSoAx> you already in barcelona?
[20:33] <ivoks> yes
[20:33] <RoAkSoAx> awesome
[20:33] <RoAkSoAx> I wish I can attend to an UDS someday :(
[20:33] <RoAkSoAx> hahaha
[20:34] <ivoks> work hard and you might :D
[20:35] <RoAkSoAx> indeed
[20:35] <RoAkSoAx> I think they have not scheduled the HA talk just yet
[21:03] <hkais> radovan: thx! I will give it a try
[21:05] <WebcamWonder> Question: I tried shutdown -F, touch /forcefsck on separate occasions. Neither triggered a fsck on the reboot, any ideas how to do so?
[21:17] <Artemis> hello
[21:18] <Artemis> hello
[21:18] <Artemis> exit
[21:19] <Mendrinos> hi, I have installed through aptitude mysql-server-5.1.13
[21:20] <Mendrinos> but I cannot find php5-mysql for the version of 5.1.13
[21:20] <Mendrinos> as a result
[21:20] <Mendrinos> to have a php mysql client 5.0.x and not in the same version of the db server
[21:21] <Mendrinos> does anyone know how to upgrade php mysql client to 5.1.13?
[23:21] <phaze74> Hi. I have my own private repository and I'm trying to permanently remove a package. I'm running "reprepro -b . remove jaunty packageName" and it looks like it succeeds. But when I do an apt-get update and an apt-cache search on one of my servers I can still see the package. Is there something I'm missing?
[23:23] <phaze74> Anyone?