/srv/irclogs.ubuntu.com/2009/06/08/#ubuntu-server.txt

jmarsden	billybigrigger: check the MX records for mydomain.com really do point to your mailserver... dig mydomain.com mx	00:56
billybigrigger	yeah it all works	00:57
billybigrigger	it all worked before, im transfering over servers	00:57
billybigrigger	trying to setup 192.168.1.100 and 192	00:57
billybigrigger	trying to setup 192.168.1.100 and 192.168.1.103 and then just switch the ip's around on them...but when i switch ips, apache works, and the mailserver won't accept incoming mail	00:58
fbc-mx	How do I get my nfs shares to show up in the Network browser?? I have them setup already and I can manually mount them with no problems, but other users aren't very savvy. I would like to make them idiot proof.	00:58
jmarsden	You will need a public IP if you want to get email from hotmail... 192.168.. is a private IP range ?	00:58
fbc-mx	avahi deamon? or something like that?	00:58
fbc-mx	billybigrigger, or you can load ddclient get a DDNS and put your computer in your routers DMZ.	01:00
fbc-mx	billybigrigger, it's not the optimal solution.. you'll bounce mail for about an hour once a week when your provider changes your IP, but after it propagates again through DNS you should be good for another week.	01:01
billybigrigger	i haven't had an ip change for years	01:03
jmarsden	billybigrigger: So when you swap IPs for the servers, you are also changing the router's NAT settings appropriately?	01:04
FFForever	can i make openssh check ~/.ssh/authorized_keys and /root/.ssh/authorized_keys for each login?	01:07
fbc-mx	FFForever, not abosulutely sure, but I think it would be a qustion of adding another pam_module pointing to the other keys file.	01:09
fbc-mx	How do I get my nfs shares to show up in the Network browser?	01:09
giovani	FFForever: why would you check root's home dir for keys for other users?	01:21
fbc-mx	anyone? Beuller? Beuller?	01:21
giovani	network browser?	01:21
giovani	you mean some gui thing? that's not an ubuntu-server issue	01:21
fbc-mx	giovani, yeah but they don't show	01:21
=== asac_ is now known as asac
giovani	^	01:22
fbc-mx	I open up my network browser and do not see nfs shares even though I can mount them manually.	01:22
giovani	this is #ubuntu-server	01:22
giovani	you're talking about a desktop app -- ask in #ubuntu	01:23
fbc-mx	giovani, I know,,, I'm runing it on ubuntu-server	01:23
giovani	GUIs are not supported here	01:23
giovani	please go to #ubuntu for that	01:23
fbc-mx	giovani, so your saying the server does not have to announce the server? It's the desktops responsibility to detect them?	01:23
giovani	"announce"?	01:23
fbc-mx	giovani, sorry I menat annouce the service?	01:24
fbc-mx	giovani, Yeah, Like some kind of broadcast teling everyong one what it is sharing.	01:24
giovani	nope	01:24
giovani	that's a windows thing	01:24
fbc-mx	giovani, aha... ok, so then it's really not a server issue...	01:24
giovani	ask #ubuntu what you're supposed to do with that tool	01:25
giovani	it's not a server tool, so it's not supported here	01:25
bogeyd6	Anyone know how to unzip several files in a directory?	01:43
Alex_21	sudo unzip *.zip maybe	01:45
Alex_21	I have no idea	01:45
dthacker	bogeyd6: unzip *.zip?	01:46
=== scfh_ is now known as scfh
Nikilos	Hi everyone, I just installed Ubuntu Server on a really old computer of mine, and when it boots up, it gets to the command line just fine, but the text is extremely huge and I can't see what I'm typing. Is there an easy fix to this?	01:57
Alex_21	Re installl or fix the resolution on your Monitr\	01:58
Alex_21	Monitor	01:58
Nikilos	I tried reinstalling and it didn't do anything. How do I fix my resolution?	01:59
PhotoJim	just a shell login I assume. no GUI running.	02:01
PhotoJim	if so, weird problem. not seen that.	02:01
Nikilos	Right, no GUI	02:01
PhotoJim	my machines that are servers just boot into text mode, like DOS does. they would work on a CGA system.	02:01
PhotoJim	there are some paramters you can use in grub to force the kernel to boot up in different video modes. I wonder if that's your solution.	02:03
PhotoJim	I don't know t he details, but googling might help.	02:03
Nikilos	Alright, I'll try looking around. Thanks. I'll report back with results	02:04
PhotoJim	please do.	02:04
PhotoJim	parameters, even	02:05
PhotoJim	darn netbook keyboard :)	02:05
Nikilos	Netbooks rock	02:05
PhotoJim	I love mine, but the keyboard occasionally annoys :)	02:07
PhotoJim	it's not bad though	02:07
PhotoJim	everything else about it is great	02:07
Nikilos	What kind is it?	02:07
PhotoJim	AA1, 1.5 GB RAM, 160 GB SATA HD	02:08
PhotoJim	in pretty sapphire blue :)	02:08
Nikilos	Oooh, that's great	02:09
PhotoJim	yep	02:09
PhotoJim	dual boot, XP and Jaunty	02:09
PhotoJim	I use Jaunty most of the time	02:09
Alex_21	Does anyone know why eSpeak is broken in Jaunty?	02:09
Alex_21	I run an eSpeak server	02:09
Nikilos	Be riiiight back	02:10
PhotoJim	I don't, sorry	02:11
Nikilos	No idea if that worked...test test	02:14
Alex_21	Can you test it in Jaunty?	02:24
Alex_21	eSpeak I mean	02:24
PhotoJim	Nikilos: so did it work?	02:30
Nikilos	PhotoJim: I'm still in the process of trying to fix it :P	02:30
Nikilos	Well, I was able to edit my menu.lst file without problems...I think. I can't really tell since I can't see what I'm typing, but hopefully it worked	02:36
Nikilos	Great, I completely murdered my display settings	02:40
Nikilos	Would using Xubuntu as a server be practical?	02:44
PhotoJim	practical but not optimal	02:56
PhotoJim	why not ssh into it from another system on your network? I think sshd is configured to run by default on ubuntu server	02:57
Nikilos	Sorry for asking such a dumb question, but how do I do that?	03:01
PhotoJim	do you have shell access to another machine on your local area network?	03:03
Nikilos	I'm not sure. How do I check to see if I do?	03:05
PhotoJim	if they're your machines, you surely have access :)	03:06
PhotoJim	either that, or you can use a Windows machine and get the ssh client PuTTy	03:06
PhotoJim	if you have a Linux machine with a GUI like Gnome or KDE though you can just log in and open a terminal	03:06
PhotoJim	ssh is built-in	03:06
PhotoJim	(essentially)	03:06
Nikilos	OH, wow, I feel really dumb now. Yes, I do :)	03:06
PhotoJim	:)	03:06
PhotoJim	do you know what IP addresses your machines have? (in particular, your server)	03:07
Nikilos	I know what this machine's IP address is, not the server's	03:08
PhotoJim	you need to know the server's	03:09
PhotoJim	how is it getting an IP, by DHCP?	03:10
Nikilos	I have no idea, sorry. :(I have the server connected to a wireless router via an ethernet cable and I'm on my notebook right now, which it connected wirelessly	03:11
PhotoJim	what is your notebook's IP?	03:12
PhotoJim	how do you use your server if you don't know its IP, by the way? :)	03:13
Nikilos	192.168.1.2 is my notebook's IP	03:13
PhotoJim	my guess is that your server is 192.168.1.1 or 192.168.1.3... your gateway is probably .1.1 so try .1.3	03:13
PhotoJim	you're running Linux on your notebook?	03:14
Nikilos	I'm actually running OS X, but its Terminal will still work, right?	03:14
PhotoJim	it will.	03:15
Nikilos	Oh, I successfully connected	03:15
Nikilos	It was 192.168.1.3	03:15
PhotoJim	how did you connect? did you do an ssh login?	03:16
Nikilos	I used Coda's terminal and used its "Connect via SSH" option and entered in the information	03:16
PhotoJim	so you're in?	03:17
Nikilos	Yup, I was able to undo the change I made to /boot/grub/menu.lst	03:18
PhotoJim	oh, cool.	03:19
PhotoJim	ssh is a very useful tool.	03:19
Nikilos	Thanks for stepping me through this, Jim, you're a lifesaver	03:19
PhotoJim	not exactly :) but you're welcome.	03:21
PhotoJim	not dumb questions, by the way.	03:21
PhotoJim	we were all newbies once.	03:21
Nikilos	:)	03:21
PhotoJim	my server is in my basement. I almost never do a real console login. always ssh from upstairs, or even away from home. like yesterday, I sshed from 4000 km away :)	03:22
PhotoJim	today ssh is just a few feet :)	03:22
Nikilos	So how would I SSH to my server if I was not connected to my home network?	03:23
Alex_21	ssh username@192.168.x.x	03:24
PhotoJim	you'll need to port forward a port from your router to your server, and have a static IP address you can use elsewhere	03:24
Alex_21	Replace the last two with the proper values	03:24
PhotoJim	Alex_21: that won't work outside his LAN :)	03:24
Alex_21	If you don't have a static IP use DYNDNS.net	03:24
Alex_21	Ok	03:24
PhotoJim	yup, that'll work too, not quite as well but reasonably well	03:24
Alex_21	And do: ssh username@something.homelinux.net	03:25
PhotoJim	my ISP gives me 2 static IPs, so my router (which is a custom Alix Linux box) has one and my server has the other	03:25
PhotoJim	dual NICs on both, so they have separate connections to the LAN	03:25
PhotoJim	my WiFi router just does WiFi, no routing	03:25
Nikilos	Two routers would definitely complicate the situation, I assume...	03:26
Alex_21	Depends on the sicuation in the first place :)	03:27
Alex_21	It is up to you	03:27
PhotoJim	not really. my access point is set to route all traffic through 192.168.222.26, which is my router's IP	03:27
PhotoJim	works perfectly :)	03:28
PhotoJim	and it doesn't give out IP addresses by DHCP, that's disabled.	03:28
Alex_21	I have to run	03:28
Alex_21	I hope I could help	03:28
Alex_21	Thanks for your help	03:28
PhotoJim	ciao Alex	03:28
Alex_21	Good night	03:28
Nikilos	Well, I think I can figure out the rest from here. Thanks for all the help!	03:42
Nikilos	I'll most likely return sometime in the near future, though :)	03:43
PhotoJim	you're most welcome	03:48
chelehandsome	how can I mount a RAID 5 in my server?	03:50
jaypur_mb	hi, i installed apache and my internet provider blocks the access of port 80, so what port should i use at the ports.conf file and at my router?	04:18
=== s_markow_ is now known as s_markow
jmarsden	jaypur_mb: Any port you like... but usually if the ISP blocks port 80 it is because their Terms of Service forbid servers, so make sure they actually permit (not just technically but contractually/legally) use of a server on whatever port you choose.	04:57
jmarsden	Ports 81 or 8000 or 8080 would be common choices for alternative web server ports.	04:57
=== mcasadevall is now known as NCommander
Alex_21	I have ap roblem. On boot I get	06:22
Alex_21	Code: "[ 25.251737] Freeing initrd memory: 8263k freed"	06:23
Alex_21	Any ideas	06:24
Alex_21	Please	06:24
ssm	that's a normal boot line, Alex_21	06:33
Alex_21	But it is hanging for half an hour on the same line	06:34
ssm	Alex_21: does it continue to boot after the half hour pause?	06:34
Alex_21	It hasn't booted yet. It is a vannila install	06:35
ssm	Are you booting from an install cd? Is this a normal boot from disk, and a problem that's just appeared, have you done any upgrades lately, does your disk make funny noices, black smoke, anything else?	06:39
Alex_21	Nothing. It is a vanilla install and I am booting from the HD. It has software raid on it	06:45
jmarsden	Alex_21: It might be good to try doing a fresh install onto just one of the HDs, just to check that the basic hardware is OK? Then if that works, the issue is probably RAID related in some way, and you can go back and troubleshoot that? A 30+ minute delay means it's probably not going to finish that install, in my opinion.	06:47
Alex_21	It finished the install	06:48
Alex_21	This is the first power up	06:48
twb	If the delay is reproducible, I would blame nss.	06:48
twb	For example, if you have network manager installed and are running a NIS client, you will get that behaviour.	06:48
twb	Because NM retardedly tries to look in /home or something, before the network is even up.	06:49
Alex_21	I just realized something	06:49
Alex_21	The domain is assigned to this machine is not correct	06:49
ssm	twb: Network Manager has surprised me lately.... :/ I have ldap auth here...	06:52
ssm	Alex_21: DNS or NIS domain?	06:52
twb	ssm: well, with ldap you can at least bind softly.	06:52
Alex_21	I don't know the difference	06:52
twb	I dunno if/how to do that in NIS.	06:53
ssm	twb: yes, or I can add the interface to /etc/network/interfaces :) The default install gives you network after you've logged in	06:53
Alex_21	I have the domain from dyndns.com fried-rice.homelinux.net	06:54
twb	ssm: that's fucking retarded	06:54
ssm	Alex_21: then you're not running NIS, I'd guess	06:54
twb	I hate NM so much.	06:54
twb	At least wifi-radar leaves my wired nics the hell alone	06:55
ssm	twb: I'd say NM is a mixed blessing, at least :)	06:55
Alex_21	Ok. Could this be my problem. That is not resolving correctly	06:55
twb	Alex_21: boot without "quiet" (or "splash") in your kernel command line, and take a note of the text immediately before the freeze occurs.	06:56
ssm	Alex_21: not sure, that should not pause the boot process	06:56
Alex_21	Because I did have Ubuntu installed before and it worked fine. But I need Raid 1	06:56
twb	Alex_21: then boot with "single" or into a live CD, and add tracing on those files in /etc/rcS.d	06:56
Alex_21	What will that do?	06:57
ssm	I think the last line Alex_21 quoted was from the kernel freeing initrd memory, that's way before any init scripts.	06:58
twb	ssm: it can't be.	06:58
twb	ssm: if it's freeing the ramdisk memory, it has to be past the ramdisk	06:58
ssm	point	06:58
* ssm needs more coffee....		06:59
ssm	first kernel, then initrd stuff, then pivot-root and then there's a pause....	07:00
Alex_21	[ 25.244020] checking if image is initramfs ... it isn't (bad gzip magic numbers ); looks like an initrd	07:00
ssm	the next line after that in my dmesg is audit, but that's after 0.9 seconds, and the initrd message from Alex_21 was after 25 sec	07:00
Alex_21	Is what it says before the freeze	07:01
Alex_21	Code: "https://help.ubuntu.com/community/Installation/SoftwareRAID"	07:02
Alex_21	Code: "[ 25.244020] checking if image is initramfs ... it isn't (bad gzip magic numbers ); looks like an initrd" Sorry about before	07:02
Alex_21	What does this mean?	07:04
ssm	Alex_21: you could try booting from the cdrom again, in rescue mode, then do "update-initramfs -u -k all". The image should be initramfs, at least it is here, on my jaunty desktop install.	07:07
ssm	your dmesg says that the image is not a vaild initramfs image, and it therefore assumes that the format is "initrd" instead.	07:07
ssm	Alex_21: http://ubuntuforums.org/showthread.php?t=1163519 also looks related	07:09
ssm	you could try adding rootdelay=200, since your boot obviously takes a while. That's bitten me on some servers earlier	07:10
Alex_21	So I boot the disk. Then what?	07:11
Alex_21	There is no DHCP Server on the network BTW	07:11
Alex_21	I am at the Ubuntu Splash	07:11
ssm	when grub comes up, hit "e" for edit, navigate to the line that starts with "kernel", hit "e" for edit again, add "rootdelay=200" to the boot parameter list, then enter, and "b" for boot	07:11
ssm	also, remove the "splash" and "quiet' words on the grub kernel boot line	07:12
Alex_21	I mean on the CD	07:12
Alex_21	Do I go to Reque mode?	07:13
ssm	Alex_21: CD rescue mode for the "update-initramfs" trick, to see if that works, or grub menu on the hard disk for the "rootdelay" thingie	07:15
Alex_21	I have Lelo	07:16
Alex_21	Not Grub	07:17
ssm	Alex_21: if you boot from "lilo", then just add "rootdelay=200" after the default, which probably is "Linux"	07:17
ssm	Alex_21: the ubuntu install gives you lilo if you have everything in LVM, and grub if you make a /boot partition outside LVM when you install.	07:18
Alex_21	I have no idea where to edit this file for Lello	07:19
Alex_21	It was all done in LVM on top of Raid1	07:19
Alex_21	Thanks for your help	07:37
Alex_21	Good night	07:37
twb	If you boot into lilo, give up and reinstall	07:56
twb	lilo is totally NOT the right thing for LVM, though it will appear to work at first	07:56
twb	It works by remembering the block offset, so if you actually try to, you know, resize or move extents, lilo will just break.	07:57
soren	twb: ...and grub doesn't know about lvm at all. So what would you use?	08:40
twb	soren: you put /boot on a separate RAID1 array OUTSIDE LVM.	09:25
twb	(Note that current versions of Grub do understand LVM -- but Ubuntu, and everyone else, still run Grub Legacy.)	09:25
twb	Although personally I would prefer to use extlinux over grub, if it was as well-supported by d-i.	09:26
twb	And, you know, kernel-img.conf and such. Though I think that's mostly programmable; you'd mainly need to write an update-extlinux(8) script.	09:27
a_ok	say i make an initscript what is the best way to set it up in the runlevels?	09:57
soren	twb: Yes, so that renders your lilo argument moot, doesn't it?	10:04
soren	twb: You're saying not to use lilo if your kernel is on lvm, because it'll break when stuff moves around, but what you clearly actually mean is to not put your kernel on lvm.	10:07
soren	...which is completely different.	10:08
=== cjwatson_ is now known as cjwatson
twb	soren: sorry, yes, that was implied	10:30
twb	But even without LVM, lilo would be vulnerable against e.g. replacing your ext2 filesystem with another one that contains that same files.	10:31
twb	(another ext2 filesystem, that is.)	10:31
twb	That's why grub-install tends to only get run once, whereas lilo needs to be reinstalled into the MBR practically every time you upgrade your kernel.	10:31
soren	twb: s/practically //	11:04
=== scfh is now known as scfh_
=== scfh_ is now known as scfh
=== gaveen_ is now known as gaveen
ghostlines	hi all	11:49
ghostlines	does anyone have experience with recovering shredded files?	11:50
soren	ghostlines: shredded?	12:01
soren	ghostlines: As in shred(1)ded?	12:02
ghostlines	yeah	12:04
soren	I'd forget about it.	12:05
ghostlines	soren, it's possible to recover shredded files	12:48
ghostlines	http://ubuntuforums.org/showthread.php?t=707373	12:48
ghostlines	check out that thread	12:48
henriquelm	Hello there	13:11
henriquelm	My Ubuntu server is giving me a "Segmentation fault" error msg during OS boot, what should I do?	13:12
uvirtbot	New bug: #384193 in quagga (main) "BGP: Assertion `len < str_size' failed in file bgp_aspath.c, line 519, function aspath_make_str_count" [Undecided,New] https://launchpad.net/bugs/384193	13:36
=== Adri2000_ is now known as Adri2000
uvirtbot	New bug: #356164 in php5 (main) "php5 crashed with SIGSEGV in execute() (dup-of: 284661)" [Medium,New] https://launchpad.net/bugs/356164	14:25
skarufue	hello	14:27
skarufue	i have a mysql on ubuntu question	14:27
skarufue	i managed to make my old server unbootable (dont ask)	14:28
skarufue	so i set up a new one	14:28
skarufue	and everything is fine now	14:28
skarufue	except for the innoDB tables	14:28
skarufue	they arent there anymore... and i remember there was some way to fix this... but i cannot remeber how	14:29
skarufue	anyone?	14:29
Sam-I-Am	did you copy all the files over?	14:33
skarufue	yes	14:34
skarufue	but /etc/mysql restart failed	14:34
Sam-I-Am	whats the error?	14:34
skarufue	so i took out anything but the dbs	14:34
skarufue	so ibdata1 was recreated	14:37
skarufue	ill recreate the error with the original ibdata1 just a moment	14:37
kwork	should raidutils be able to manage adaptec cards ?	14:38
skarufue	well i dont see anything in the /var/log/mysql* logs	14:45
tdn	I am trying to make use of my geode aes engine by using LUKS/dmcrypt for encrypted partitions. But for some reason it does not work with the geode_aes module loaded.	14:46
skarufue	syslog gives me a series of those:	14:46
skarufue	hosting /etc/mysql/debian-start[29594]: Error : Table 'roundcubemail.cache' doesn't exist	14:46
skarufue	Jun 8 15:43:14 hosting /etc/mysql/debian-start[29594]: error : Corrupt	14:46
skarufue	Jun 8 15:43:14 hosting /etc/mysql/debian-start[29594]: roundcubemail.contacts	14:46
skarufue	Jun 8 15:43:14 hosting /etc/mysql/debian-start[29594]: Error : Table 'roundcubemail.contacts' doesn't exist	14:46
skarufue	Jun 8 15:43:14 hosting /etc/mysql/debian-start[29594]: error : Corrupt	14:46
Sam-I-Am	did your files copy correctly?	14:48
tdn	Here is terminal log of what I have tried: http://thomasdamgaard.dk/p/P1310.html	14:48
Sam-I-Am	and does mysql know about the database?	14:48
skarufue	yes	14:48
skarufue	yes	14:48
Sam-I-Am	are the indices there?	14:49
skarufue	as i recall this is something common with innodb tables when the databases are simply copied (e.g. not using mysqldump)	14:49
skarufue	indices?	14:50
Sam-I-Am	index?	14:50
skarufue	yes it say for example gallery2 db has 63 tables but i can only view 3 of them (all who are not innodb)	14:51
skarufue	(to be honest i dont get the indeces question)	14:51
Sam-I-Am	not sure if you have to regenerate any indices if the database is physically moved	14:52
Sam-I-Am	or some command that make it work on a different instance of mysql	14:52
skarufue	well the last time i think i had to read them from binary backup with some sort of offline method	14:52
skarufue	but cant remember what exactly	14:53
Sam-I-Am	maybe you need to use the same procedure?	14:53
Sam-I-Am	google might be useful :)	14:53
skarufue	yeah well i tried that a lot but its a hard search term since the internets seems to be full of people who try to restore some sort of mysql database	14:54
Sam-I-Am	can you get mysql to return a more specific error, or an error number?	14:54
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: of InnoDB though the .frm file for the table exists. Maybe you	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: have deleted and recreated InnoDB data files but have forgotten	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: to delete the corresponding .frm files of InnoDB tables, or you	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: have moved .frm files to another database?	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: See http://dev.mysql.com/doc/refman/5.0/en/innodb-troubleshooting.html	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: how you can resolve the problem.	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]:	14:58
skarufue	Jun 8 15:51:56 hosting mysqld[29526]: 090608 15:51:56090608 15:51:56 [ERROR] Cannot find table gallery/g2_User from the internal data dictionary	14:58
Sam-I-Am	have you looked at what it tells you to look at?	14:59
skarufue	yes it isnt very helpfull	15:01
skarufue	it suggest to use CHECK TABLE which ist really an option whe mysql doesnt start	15:02
Sam-I-Am	got me...	15:02
skarufue	the thing is if i move ibdata1 out of /var/lib/mysql then the server starts (and a new ibdata is created) then i see the databases but the innodb tables are empty	15:03
Sam-I-Am	http://dev.mysql.com/doc/refman/5.0/en/innodb-backup.html	15:06
Sam-I-Am	same versions, same platforms?	15:06
skarufue	yeah have binary logging turned on.. but i just realised that maybe it isnt enough to just swap out ibdata...	15:08
skarufue	ill try that	15:08
skarufue	ok	15:12
skarufue	as usually it was a file permissions fuckup	15:12
skarufue	thanks for bearing with my stupidity	15:13
skarufue	:)	15:13
jaypur_mb	hi i'd like to know a free temperature monitor to my server... does someone know?	15:48
uvirtbot	New bug: #384821 in samba (main) "samba segmentation faults" [Undecided,New] https://launchpad.net/bugs/384821	15:51
phoenixz	I have opted for home directory encryption in my ubuntu server installation which causes SSH not to be able to use ssh keys anymore.. anbody who could help me to fix this problem?	16:17
soren	kirkland: ^ :)	16:17
phoenixz	rob_p: well, in my case, I opted for home directory encryption during the ubuntu server installation. Result seems to be that SSH is not functioning correctly with keys anymore.. How can I fix this?	16:19
kirkland	phoenixz: encrypted home and ssh public key authentication are (mostly) incompatible technologies	16:21
phoenixz	kirkland: in other words.. once using encrypted home directories... you can no longer use ssh with public key authentication.. ?	16:22
kirkland	phoenixz: i say "mostly" ...	16:22
phoenixz	okay... but how could I then get them to work?	16:22
kirkland	phoenixz: there are two non-ideal work arounds	16:22
phoenixz	kirkland: oh oh...	16:22
kirkland	phoenixz: basically, encrypted-home means that you must enter a password to mount your home directory -- that's the design/definition of the feature	16:23
kirkland	phoenixz: you can ssh in with a password the first time	16:23
kirkland	phoenixz: and then subsequent ssh's via pubkey should work	16:23
kirkland	phoenixz: as long as your home dir stays mounted	16:24
kirkland	phoenixz: if you rm ~/.ecryptfs/auto-umount, it won't be unmounted on logout	16:24
kirkland	phoenixz: which is perhaps a slight security risk to your data, but will key your pubkey auth working	16:24
kirkland	phoenixz: that's option #1	16:24
kirkland	phoenixz: option #2 ...	16:24
phoenixz	kirkland: gottit..	16:24
kirkland	phoenixz: you can move your ~/.ssh/authorized_keys file out of your encrypted home directory	16:25
kirkland	phoenixz: put it in your unmounted, read-only home	16:25
kirkland	phoenixz: this will get your ssh public key auth working	16:25
kirkland	phoenixz: but your home dir will not be auto mounted on login	16:25
kirkland	phoenixz: you will need to run ecryptfs-mount-private	16:25
phoenixz	because there is data there...	16:25
phoenixz	gottit...	16:25
kirkland	phoenixz: and enter a password, and then home is mounted	16:25
kirkland	phoenixz: this is documented in various scattered places	16:25
kirkland	phoenixz: i'm going write a blog post that documents it now :-)	16:26
kirkland	soren: thanks for the pointer	16:26
phoenixz	kirkland: This is a detail that might be documented a bit clearer yeah :) maybe during installation or something :)	16:26
phoenixz	kirkland: thanks a lot!	16:26
soren	How about changing the location of the authorized_keys ?	16:26
soren	I once taught ssh to look at a fuse mountpoint that would fetch ssh keys from launchpad on the fly.	16:27
soren	I feel much better now, though.	16:27
kirkland	soren: that was option #2	16:27
soren	kirkland: Oh, I misunderstood. Sorry.	16:28
soren	huats: Hey. The changelog in your merge says that Intrepid and Karmic were merged upstream. If it's cool with you, I'll change "Karmic" to "Jaunty" and go ahead an upload?	16:28
huats	soren hey	16:29
huats	2 minutes I am on the phone	16:30
soren	huats: Sure.	16:30
soren	kirkland: I'm reading your option #2 again, and I'm not sure we're speaking about the same thing.	16:30
kirkland	soren: okay, i simply meant option #2 to convey moving ~/.ssh/authorized_keys out of $HOME	16:31
kirkland	soren: out of encrypted home, anyway	16:31
kirkland	soren: somewhere that the system can find it, unencrypted	16:31
kirkland	soren: what are you meaning?	16:32
soren	kirkland: Right. Like /var/lib/ecryptfs-workarounds/<username>/authorized_keys or something.	16:32
kirkland	soren: sure	16:32
soren	And adjust AuthorizedKeysFile in sshd_config accordingly.	16:32
kirkland	soren: i suggested unmounted $HOME, but it could be mostly anyway	16:32
kirkland	anywhere	16:32
kirkland	soren: ah, and you mean modifying the sshd_config too	16:32
soren	Right.	16:33
huats	soren: I am back	16:33
huats	hey :)	16:33
soren	o/	16:33
huats	oups	16:34
huats	indeed	16:34
huats	intrepid and jaunty were merged :)	16:34
huats	go ahead	16:34
huats	you can change that :	16:34
huats	:)	16:34
huats	(sorry for the mistake)	16:34
soren	Cool :)	16:34
soren	huats: I didn't expect you to object, but it felt wrong changing stuff that is signed by you without your consent. :)	16:34
* soren breaks		16:34
huats	btw I will send the patch I have added (that adds karmic) to upstream and debian too...	16:35
huats	sure I understand	16:35
huats	btw I have done locally the virt-manager update, are you interested ? :)	16:35
huats	I mean the merge	16:35
soren	huats: Sure, bring it on :)	16:46
huats	hehe	16:47
huats	I will	16:47
huats	I have just to deal with a last patch	16:47
huats	(I might need your opinion on it btw)	16:47
soren	Sure.	16:48
kirkland	soren: i'll document your suggested method too :-)	16:55
soren	;)	16:55
huats	soren: In fact the patch that bothers me a bit is : http://paste.ubuntu.com/190975/	17:11
huats	in fact the new interface has changed quite a bit	17:11
huats	and there is not anymore the distinction para virt/full virt (from my understanding and that has been confirmed when I have launched the application)	17:12
huats	so I am not sure this is needed...	17:12
huats	(by instance I am running it without being the kvm group)	17:13
huats	soren: I need to run	17:30
huats	I might be connected later tonight or tomorrow :)	17:30
Damir	hey guy's	17:40
Damir	anyone experiance with apache	17:40
Damir	and the mod_proxy loadbalancaing	17:40
uvirtbot	New bug: #352170 in openvpn-blacklist (main) "openvpn - openssl-vulnkey:24: DeprecationWarning: the sha module is deprecated; use the hashlib module instead import sha" [Low,Fix committed] https://launchpad.net/bugs/352170	17:40
Damir	im getting this config error: BalancerMember can not have a balancer name when defined in a location	17:41
Damir	and i'm using this config : ##custom configuration loadbalancing	17:42
Damir	<Proxy balancer://servertje>	17:42
Damir	BalancerMember http://127.0.0.1:8080/ loadfactor=100 # Balancer member 1	17:42
Damir	BalancerMember http://localhost:9090/ loadfactor=80 # Balancer member 2	17:42
Damir	</Proxy>	17:42
Damir	ProxyPass /test/ balancer://servertje/	17:42
Damir	any idea what it could be ?	17:42
rsr	hello all	19:08
rsr	I have a question... I wpuld like to know what this is: dd bs 1 if /proc/kmsg of /var/run/klogd/kmsg : I found this despite not knowing what it is referring to... Can anyone enlighten me?	19:09
_ruben	copy .. with block size 1 .. from /proc/kmsg .. to /var/log/klogd/kmsg	19:14
_ruben	looks like a "bridge" between a file within /proc and socket for klogd	19:15
rsr	yes	19:23
rsr	no problem	19:23
rsr	should I use the latest version or the LTS version for my server?	19:24
jpds	Whichever you want.	19:24
rsr	but which one is recommended for a mission criticall service? there must be a reason for LTS	19:25
rsr	another question	19:29
rsr	should I upgrade distro on a server	19:30
rsr	?	19:30
Oasisbhrnw	Hello. I just installed Ubuntu Server 9.04. During the install there was an option to turn auto-updates on, which I did. My question is, is there anyway to check when auto-updates last ran and/or is there a way to make it run manually?	19:36
jmedina	Oasisbhrnw: AFAIK, auto update wont update your system quitely, insted will download list like apt-get update	19:38
Oasisbhrnw	I just don't know how to verify it's working. I'm paranoid it's acutally not running.	19:39
sommer	Oasisbhrnw: there will be new entries in /var/log/apt/term.log	19:41
sommer	Oasisbhrnw: you can also adjust the settings in /etc/apt/apt.conf.d/50unattended-upgrades	19:42
Oasisbhrnw	K, thanks.	19:43
orudie	hi, i'm struggling with this http://www.debian-administration.org/articles/590	19:52
orudie	trying to lock user in home dir.	19:54
orudie	can someone help me with this ?	19:55
orudie	please	19:55
ghostlines	what's the prob?	19:59
orudie	well first off cant even test it with sftp user@host because i'm using ssh private key	20:00
orudie	how can i specify port with sftp user@host ?	20:01
jmedina	man scp?	20:02
orudie	jmedina-> sftp	20:02
orudie	its -o something	20:02
orudie	forgot what	20:03
jmedina	orudie: then man sftp	20:03
orudie	looking cant see	20:03
jmedina	just type: /port and there you go	20:03
jmedina	:D	20:03
jmedina	the fist match	20:04
jmedina	For example, to specify an alternate port use: sftp -oPort=24.	20:04
orudie	yup see it thanx	20:04
orudie	i didnt know how to search inside man pages lol	20:04
orudie	now i know	20:04
jmedina	¬¬	20:04
jmedina	orudie: the first thing is learn how to use man pages	20:04
jmedina	man man	20:04
orudie	:)	20:05
jmedina	use man before googling or ask in forums/chats...	20:05
orudie	good stuff	20:05
jmedina	it is easier, and most of time will save some time to you and to others	20:05
jmedina	and you look Pro :D	20:06
jmedina	orudie: then you dont know how to search in more/less?	20:06
orudie	do not know what you are asking	20:07
jmedina	Im taking about pager programs like more or less	20:08
jmedina	man uses a pager, I think by default is more unless you install less (1)	20:08
orudie	never used those	20:08
jmedina	:O	20:08
orudie	so yeah cant test within the host	20:10
jmedina	virtualize!!!!!	20:10
orudie	Failed to add the host to the list of known hosts (/home/paul/.ssh/known_hosts).	20:10
orudie	Permission denied (publickey).	20:10
orudie	but its obviously doesnt work because i can actually browse to other directories if i do su user	20:11
orudie	anything ?	20:16
orudie	anyhing anyone ?	20:20
ghostlines	what vpn solution do you guys recommend?	20:34
mathiaz	ghostlines: openvpn is a good solution and may fit your needs	20:36
ghostlines	I have experience with open-vpn, wondering if they're are any better ones	20:36
=== jason^_ is now known as jason^
jason^	has anybody installed ubuntu server on a dell r710 server? i'm getting errors like "cannot find a valid memory map"	21:41
ta3one	Greetings fellow Ubuntu affectionados! I have a question about getting mod_proxy to work - I keep getting forbidden error	21:46
ta3one	can anyone please help?	21:48
matthewmpp	Hi, I am new to server-editions. I created a user on my server with: useradd -m matthewmpp, but it never asked me for a password for matthewmpp. How do I create or change the password for this new user?	21:53
matthewmpp	ping	21:54
ta3one	hey matthew	21:56
matthewmpp	hi	21:56
ta3one	use passwd username	21:56
matthewmpp	okay	21:56
ta3one	sudo passwd username	21:56
ta3one	you can reset any password like that from the cli	21:56
matthewmpp	by using passwd username?	21:57
ta3one	yeah	21:57
ta3one	by the way, you should be using adduser	21:58
ta3one	not useradd	21:58
orudie	after following this guide http://www.debian-administration.org/articles/590 i can not figure out where they authorized_keys file with ssh key should go	21:58
orudie	had been stuck on this for many hours already	21:58
ta3one	useradd is low level utility	21:58
giovani\|work	orudie: that guide has nothing to do with ssh keys	21:59
giovani\|work	so, clearly that's not a good place to find the answer	21:59
ta3one	orudie, what are you trying to do?	21:59
ta3one	you mean like automatic logon?	21:59
orudie	giovani\|work-> yes, but i cant connect	21:59
orudie	ta3one-> lock user in directory with help of chroot	21:59
ta3one	ohh sorry, I've never done that ...	22:00
orudie	giovani\|work-> its like ssh doesnt know where to look for authorized_keys file after i followed the guide	22:00
orudie	giovani\|work-> for that particular user	22:01
orudie	where does the authorized_keys file go when using chroot in sshd_config ?	23:12
FFForever	is anyone around that has setup proftpd before?	23:15
FFForever	i keep getting ProFTPd warning: cannot start neither in standalone nor in inetd/xinetd mode. Check your configuration., and i only installed it i have not modded the default configuration	23:15
orudie	FFForever, why not use sftp ?	23:16
FFForever	orudie, because this is for a client and not me personally	23:16
FFForever	any ideas?	23:22
FFForever	bah =( Fatal: unable to load module 'mod_lang.c': Operation not permitted	23:25
FFForever	anyone around?	23:44
billybigrigger	reconfigure it?	23:44
billybigrigger	dpkg-reconfigure proftpd	23:45
billybigrigger	unless it was compiled	23:45
FFForever	it was installed via apt	23:45
FFForever	i get this http://pastebin.ca/1452500	23:46
FFForever	billybigrigger, any other ideas?	23:48
billybigrigger	sudo dpkg-reconfigure proftpd	23:51
billybigrigger	?	23:51
billybigrigger	hmm	23:51
billybigrigger	nm	23:51
FFForever	i am root	23:51
billybigrigger	didn't see root@	23:51
FFForever	ahh	23:51
billybigrigger	is it a functioning fp server?	23:52
billybigrigger	ftp?	23:52
billybigrigger	purge it and reinstall	23:52
FFForever	billybigrigger, i did that	23:53
FFForever	no luck	23:53
FFForever	i have made no modifications	23:53
jmedina	billybigrigger: why dont you set your locales?	23:55
billybigrigger	FFForever	23:55
billybigrigger	not i	23:55
billybigrigger	:P	23:55
jmedina	sorry :S	23:55
jmedina	FFForever: why dont you set your locales?	23:55
FFForever	cause i do not know how?	23:56
jmedina	for easy: apg-get install language-pack-en	23:56
jmedina	is that a virtual machine?	23:57
FFForever	yeah	23:57
jmedina	:D	23:57
FFForever	that worked...	23:57
jmedina	now try to restart proftp	23:57
FFForever	perfect	23:58
jmedina	ok	23:58
jmedina	probably a bug with proftpd init script, it is catchig local exict code not proftp daemon	23:58
jmedina	you can help sending a bug report	23:59
jmedina	probably someone else can confirm this	23:59
FFForever	i am on dialup at the moment ill so ill have to do this tomorrow	23:59
FFForever	dialup + bnc == fun	23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!