/srv/irclogs.ubuntu.com/2009/06/12/#ubuntu-server.txt

=== FFForever-Away is now known as FFForever
=== asac_ is now known as asac
=== FFForever is now known as FFForever-Away
SuperSenior	Why do many programs have a "/chrome" sub-directory where they are installed?	01:45
SuperSenior	I notice this more in open source applications..	01:45
uvirtbot	New bug: #386172 in postfix (main) "package postfix None [modified: /var/lib/dpkg/info/postfix.list] failed to install/upgrade: subprocess pre-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/386172	02:21
=== smultron_ is now known as smultron
JDStone	i'm getting these errors in dmesg. All was working well, I shut down my server and brought it home from being at school. I couple weeks later, I plug my server in, boot it up and now I'm getting these errors.	03:50
JDStone	http://pastebin.ubuntu.com/193919/	03:50
=== s_markow_ is now known as s_markow
=== FFForever-Away is now known as FFForever
=== s_markow_ is now known as s_markow
jmarsden	JDStone: At first look, your 1TB drive /dev/sdc may be going bad?? Or the data cable connecting it isn't firmly connected at both ends? Did you open up the hardware and unplug/replug both ends of the SATA data cable? Might be worth a try. Also, could the drive have sustained a nasty physical shock during its move from school to home??	04:36
twb	What does smartd say about it?	04:37
twb	Obviously also check the cabling, and if possible simply replace the data and power cables.	04:37
soccerGuy	hey guys	04:43
soccerGuy	i had a question for 32 bits packages on 64 bits machine	04:44
jmarsden	Go ahead and ask it :)	04:44
soccerGuy	woow, so i am not alone	04:44
soccerGuy	thanks jmarsden:-)	04:44
soccerGuy	i thought nobody is here	04:45
soccerGuy	anyway my question is	04:45
pschulz01	soccerGuy: here as well.	04:45
soccerGuy	cool	04:45
soccerGuy	:-)	04:45
pschulz01	soccerGuy: There are 32bit library compatability layer for 64 bit machines.	04:46
soccerGuy	I need to install 32 bit on my amd64, i know chroot can do this or ia32-libs	04:46
soccerGuy	however for ia32libs, i need to figure otu each package and their dependency	04:47
pschulz01	I remember that the 'World of Goo' game, which was 32bit only, had some excellent instructions.	04:47
soccerGuy	i see ia32-apt-get automatically download necessary libs and dependencies	04:47
pschulz01	Ooo.. I didn't know that.	04:47
soccerGuy	however there is not enough documentation how to use that superb package:-(	04:47
* jmarsden will install it and see :)		04:48
soccerGuy	I know that my question a little spesific:-) but I was suprised that this magical package is infamous in our Linux community	04:49
pschulz01	http://2dboy.com/forum/index.php/topic,1432.0.html	04:49
soccerGuy	jmarsden, let me know how it goes!	04:49
soccerGuy	and good luck!	04:49
pschulz01	sudo apt-get install ia32-libs	04:50
soccerGuy	you will need that	04:50
soccerGuy	pschulz01, yeah i used ia32-libs	04:50
soccerGuy	but the problem is I need to locate each package and use dpkg and figure out their dependencies, thanks for suggestion though:-)	04:50
jmarsden	soccerGuy: Did you read /usr/share/doc/ia32-apt-get/README.Debian ? Seems to explain what is going on reasonably well...	04:51
twb	It would be MUCH better to fix the broken package that asks for ia32 libraries.	04:51
jmarsden	twb: True ... I'd guessed the software package concerned could be commercial closed binary-only stuff...	04:52
soccerGuy	yes I did jmarsden, but the thing i dont understand how apt-get understand which package(32 or 64) I want him to install	04:52
twb	jmarsden: then all you can do is file a bug.	04:52
twb	jmarsden: but it's important that the user (soccerGuy) at least knows that he should try that approach if it's open to him.	04:53
soccerGuy	sorry what you mean twb?	04:54
jmarsden	soccerGuy: line 11 of the README.Debian says: + Library package names are prefixed with ia32-	04:55
jmarsden	So surely you can do sudo apt-get install ia32-libsomeliborother # to force installing the 32bit version.	04:56
jmarsden	But what makes you think you need to figure out all the dependencies by hand... that is what apt does for you... right?	04:56
soccerGuy	yes	04:56
soccerGuy	it creates 2 sources list	04:57
soccerGuy	etc/apt/foreign/sourcelist	04:57
jmarsden	Yes. Make sure they include the repository containing the 32bit package you "need" (please do tell is what it is!)	04:57
soccerGuy	and etc/apt/native/sourcelist	04:57
jmarsden	and then use apt-get as normal.	04:57
jmarsden	I know, I read the documentation :)	04:57
soccerGuy	haha	04:58
soccerGuy	sorry jmarsden	04:58
jmarsden	So ... what exactly is your question or problem?	04:58
soccerGuy	so if i run apt-get install ia32-apache2, will it install 32bits apache?	04:58
soccerGuy	i didnt know how to use the package	04:58
twb	Getting biarch in dpkg would be nice...	04:59
jmarsden	Well, apache2 is not a library, so that's not quite what the docs say...	04:59
soccerGuy	i thought it can download binary packages	04:59
jmarsden	soccerGuy: sudo apt-get install whatever-weird-package-you-need.deb # should pull in whaetver other 32 big dependencies it needs...	04:59
jmarsden	soccerGuy: So did you actually try it? Just apt-get the package you really need??	05:00
soccerGuy	i didnt try what you said, i will give a try	05:00
soccerGuy	so i still need to locate the package	05:01
jmarsden	soccerGuy: No, you just need to know its name -- but if you don't know that, how do you know that you "need" a 32 bit version of it??!	05:01
soccerGuy	i mean if i type apt-get install apache2, i can get apache2 for 64 bits and i dont need to figure out dependencies	05:01
jmarsden	What is the package you are really trying to use that is 32bit only?	05:01
soccerGuy	I need to install apache2 webserver	05:02
jmarsden	That is not 32bit only!	05:02
soccerGuy	no, it is not 32 bit only	05:02
jmarsden	Trust me the 64 bit version works fine.	05:02
soccerGuy	i need to use 32 bit version for memory concern	05:02
jmarsden	So... what is the real issue here?	05:02
soccerGuy	real issue is ram	05:02
jmarsden	Are you 100% sure the 32bit version will use significantly less RAM than the 64bit version? Where did you get that information from?	05:03
soccerGuy	I got from various articles	05:03
soccerGuy	I have only 256MB VPS	05:04
jmarsden	Have you tried using the 64bit version and just removed all the modules you do not need, configuring apache carefully, etc?	05:04
soccerGuy	yes	05:04
soccerGuy	I optimize the server	05:04
soccerGuy	according to their tuning documentation	05:05
jmarsden	By the time you load all the relevant 32bit libs etc you might find you are not really saving much RAM... can you point me to an article suggesting the use of 32bit apache on a 64bit server to save RAM?	05:05
soccerGuy	so now i am rereading that line 11	05:05
soccerGuy	sure	05:05
soccerGuy	one sec	05:05
infinity	soccerGuy: Whoever's telling you to use 32-bit versions of apache to save RAM is silly.	05:07
jmarsden	infinity: That is my sense too, but let's read his sources to be sure :)	05:07
infinity	soccerGuy: While it's technically true that the data structures are smaller, and it will save a bit of memory usage, you'll also lost all the 64-bit registers and lose a whack of performance in the process.	05:07
soccerGuy	http://stackoverflow.com/questions/935443/64bit-vs-32bit-ubuntu-on-low-memory-systems-why-does-ubuntu-64bit-eat-my-ram and http://www.scribd.com/doc/363677/Benchmarks-AMD64-in-32bit-mode-vs-64bit-mode-Ubuntu	05:07
soccerGuy	phew	05:08
soccerGuy	you can find lots of benchmark on internet	05:08
soccerGuy	anywayI still dont get how to use this packe, so you are sayin apt-get install package name will be enough	05:09
jmarsden	The first one is about using a 32bit system as a whole, vs using a 64bit system as a whole. It specifically includes someone saying using a 32bit app on a 64bit system consumes extar RAM because of all the 32bit libs you load just for it...	05:09
infinity	soccerGuy: The benchmarks you just showed us showed amd64 LAMP systems outperforming i386...	05:09
soccerGuy	hey guys, I will show my results after i figure out how to use this package	05:10
jmarsden	soccerGuy: I see nothing in those articles recommending running 32bit apache on 64bit Linux.	05:10
jmarsden	OK, have fun :)	05:10
infinity	soccerGuy: Anyhow. If you want to test 32-bit and 64-bit, I'd recommend testing a pure i386 install and a pure amd64 install. Doing anything bi-arch just to run a 32-bit apache will definitely never be a win.	05:11
jmarsden	infinity: Agreed, but soccerGuy apparently doesn't have the RAM for doing both at once on his VPS :)	05:11
soccerGuy	:-)	05:12
soccerGuy	jmarsden, did you install any 32bits application by using that package, if you do please just give me an example, thats all i need	05:12
soccerGuy	apache is big package, so i want to install dnsutils	05:13
soccerGuy	in 32 bits	05:13
jmarsden	soccerGuy: No -- you never provided me with the name of a 32bit-only application I could try out for you :)	05:13
soccerGuy	can u give me command which i should run	05:13
soccerGuy	dnsutils?	05:14
jmarsden	dnsutils is available as a 64bit package.	05:14
soccerGuy	apt-get install dnsutils install 64 bits	05:14
soccerGuy	they have 32 bits too	05:14
jmarsden	RIght.	05:14
jmarsden	Yes.	05:14
soccerGuy	how can i install 32 bits one	05:14
jmarsden	If you are realy desperate, tweak your apt sources files to exclude the 64 bit one, I suppose. But this is a 100% pointless thing to be doing.	05:15
infinity	You can't.	05:15
infinity	We don't support multi-arch package installs.	05:15
infinity	If you want random things compiled for i386 on an amd64 system, you get to build them yourself at this point.	05:15
soccerGuy	according to ia32-apt-get, it can do this job, isnt it jmarsden?	05:15
jmarsden	For packages which are in the 32bit world but NOT in the 64bit one, yes.	05:16
jmarsden	You have not gfiven us the name of such a package yet.	05:16
infinity	(You can dpkg --force-architecture, but it will drive apt insane later)	05:16
soccerGuy	dnsutils isnt a package?	05:16
jmarsden	It has a 64bit version.	05:16
billybigrigger	ok i think i almost have my mailserver setup correctly using dovecot/postfix/ssl	05:16
jmarsden	soccerGuy: You need to supply the name of something that is 32bit only for this to work.	05:16
billybigrigger	i'm tailing my /var/log/mail.log and can see when i start thunderbird imap-login and it logs in my user...but i can't recieve mail	05:17
soccerGuy	umm, jmarsden, I thought this ia32-apt-get can install 32 bits package eventough that package has 64 bits versoion, maybe i am wrong	05:17
twb	soccerGuy: given the ridiculous number of filthy dependencies you seem to have, would it be easier for you to just run your proprietary ia32 app within a virtual environment?	05:17
billybigrigger	i used to recieve regular mail on port 143, but now i'm trying to setup ssl so i forwarded 993 to my mailserver instead of 143, do i need to forward both ports? or just the ssl 993 port?	05:18
jmarsden	twb: In 256MB total RAM in a VPS? Are you serious :)	05:18
soccerGuy	I am already in virtual enviroment:-)	05:18
twb	jmarsden: sorry, I didn't see those stats.	05:18
twb	soccerGuy: then ask for a second VPS ;-P	05:18
soccerGuy	haha twb	05:18
twb	biarch is still a massive pain on apt/dpkg.	05:18
twb	My usual policy is that if a stupid proprietary app wants, say, RHEL 4.2, then just give it that and leave it the hell alone.	05:19
soccerGuy	yes twb, I am agree with you, but this package claim that it can figure out dependencies, thats why i am interested	05:19
jmarsden	soccerGuy: ia32-apt-get is intended for (I think) cases where there is ONLY a 32bit version of something (say a flash plugin) ... if figures out the deps for that and grabs them for you.	05:20
twb	soccerGuy: ia32-apt-get will be a hack; it certainly won't be perfect. This MUST be the case, because the underlying dpkg infrastructure doesn't support biarch properly.	05:20
twb	soccerGuy: out of interest, what is this proprietary thing you're trying to install?	05:21
jmarsden	twb: Scroll back... he wants to install 32bit apache because he thinks it will use less RAM...	05:21
soccerGuy	jmarsden: you are making fun with me	05:22
soccerGuy	:-)	05:22
jmarsden	No, I'm serious.... you are asking us to help you do something that makes no sense at all.	05:22
soccerGuy	I will prove you guys that is true once i install apache 32 bits on my server:-)	05:22
jmarsden	As I said earlier, have fun :)	05:23
soccerGuy	thanks guys	05:23
soccerGuy	I will be digging	05:23
twb	jmarsden: really? ahaha	05:23
twb	jmarsden: I thought he wanted 32-bit apache because he was installing something else, like vmware-server, that wanted to run (say) a 32-bit mod_idiotic.	05:24
jmarsden	Me too, at first... took a while for me to understand the reason behind the request.	05:24
infinity	soccerGuy: If you're really that concerned about RAM usage, why aren't you just reinstalling the whole systrem as 32-bit?	05:25
infinity	soccerGuy: (Still, the performance loss from dropping the amd64 extensions will cripple you far more than the extra RAM will help you, and I stand by that)	05:25
soccerGuy	infinity: they only provide 64 bits	05:26
infinity	soccerGuy: Yes, so?	05:26
soccerGuy	I think I need to use chroot	05:26
soccerGuy	so how can i install application 32 bits?	05:27
infinity	soccerGuy: My colo host only provides CentOS. This doesn't stop me from debootstrapping Ubuntu, and doing a pivot_root install before I whack CentOS completely. :P	05:27
soccerGuy	thanks for suggestion infinity	05:27
soccerGuy	:-)	05:27
infinity	shrug	05:28
infinity	My contention is that if you don't understand bi-arch on Linux enough that you're asking the questions you are, what you're trying to do will only end in tears.	05:28
infinity	But, I wash my hands of it, and intend to enjoy a long nap. :P	05:28
soccerGuy	we will see infinity	05:29
soccerGuy	we will see	05:29
billybigrigger	im trying to setup SSL in Dovecot, now does the ssl_cert_file have to be a .pem file? while creating my keys it spit out a .crt and .key not a .pem	05:43
jmarsden	billybigrigger: https://help.ubuntu.com/9.04/serverguide/C/dovecot-server.html	05:56
billybigrigger	when i try to telnet localhost imaps i don't get * OK DOVECOT	05:56
billybigrigger	jmarsden::: thanks bro, i'm reading the server guide	05:56
jmarsden	telnet does not decrypt the SSL for you :)	05:56
twb	Boo, telnet. Yay for netcat/socat	05:56
billybigrigger	i can see in my logs, im logging in ok	05:56
billybigrigger	Jun 11 22:54:01 alixandra dovecot: imap-login: Login: user=<billybigrigger>, method=PLAIN, rip=192.168.1.101, lip=192.168.1.103, TLS	05:57
twb	jmarsden: he might be using it without SSL	05:57
twb	Apparently not...	05:57
billybigrigger	i created a self signed cert, pointed dovecot.conf to them in my /etc/ssl dir, enabled ssl, and enabled plaintext_auth	05:57
billybigrigger	just like the guide says	05:58
billybigrigger	forward my router from port 143 to 993	05:58
jmarsden	billybigrigger: Try openssl s_client -connect localhost:993 # instead of telnet	05:58
billybigrigger	but i can't recieve mail, i can send mail, but im using my isp's smtp server for that, so never a problem there	05:58
billybigrigger	booya	05:58
billybigrigger	jmarsden::: that works good	05:59
jmarsden	That's why I suggested it :)	05:59
billybigrigger	hehe	05:59
jmarsden	Now you can type IMAP commands at it to your hearts content to debug your IMAP server setup.	05:59
* billybigrigger googles imap command		06:00
jmarsden	BTW if that works then you have working SSL certs already (they may be self signed, and not for your domain, etc etc but they are working for SSL at some very basic level of "Working".	06:00
SuperSenior	Can I use python scripting to read and write files on Ubuntu Server 9.04?	06:05
SuperSenior	well	06:05
SuperSenior	working with apache of course	06:05
SuperSenior	like using python in the cgi bin?	06:05
billybigrigger	hmm	06:06
billybigrigger	i can't seem to pass any imap commands	06:06
billybigrigger	select BAD Error in IMAP command received by server.	06:06
billybigrigger	list BAD Error in IMAP command received by server.	06:06
jmarsden	If you don't understand the basics of IMAP why are you telnetting to an IMAP port in the first place?	06:14
jmarsden	Just exit out and use whatever way of debugging your setup you are most comfortable with.	06:14
jmarsden	You could use mutt or some other IMAP-capable email client if you prefer.	06:16
billybigrigger	your losing me	06:17
billybigrigger	im not an imap-guru :P	06:17
jmarsden	Then don't try to telnet to the imap port and type IMAP commands in the first place... I didn't suggest that, you did it...	06:18
jmarsden	Since the issue is not what you said it was (SSL cert files)... what is the actual problem?	06:18
billybigrigger	i can't recieve mail	06:18
jmarsden	What happens when someone sends you email -- how far does it get? Does it end up in your mailbox on the server?	06:19
billybigrigger	no	06:19
billybigrigger	im assuming its being bounced back	06:19
jmarsden	assuming is bad. Where can I send a test email to that you think should reach you?	06:20
billybigrigger	billybigrigger@thefrozencanuck.ca	06:20
billybigrigger	i can send email from this pc to my hotmail account fine	06:20
billybigrigger	but sending from hotmail, the mail hasn't shown up yet, it's been a good hour atleast	06:20
billybigrigger	i shouldn't have to screw with my mx record should i?	06:21
jmarsden	You are not troubleshooting all that well, it would seem. I just sent you a test and my server logs show: Jun 11 22:20:44 eclipse5 postfix/smtp[16633]: 0B1895685EA: to=<billybigrigger@thefrozencanuck.ca>, relay=thefrozencanuck.ca[68.146.139.247]:25, delay=4.5, delays=0.01/0.04/2.9/1.6, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as DD185916E9)	06:21
jmarsden	So you received it fine, it is somewhere on the server at IP address 68.146.139.247 .	06:22
billybigrigger	well then it must be somewhere else, i have been in the process of switching the mailserver from one pc to another	06:22
billybigrigger	yeah	06:22
billybigrigger	i have 2 mailservers behind that router	06:22
billybigrigger	i've pointed the ports from cabo:143 to alixandra:993	06:22
billybigrigger	since the new server is using ssl	06:22
billybigrigger	and the old one had no auth, just plaintext	06:22
billybigrigger	which worked fine...	06:22
jmarsden	WHich server is listening on port 25 on 68.146.139.247	06:23
billybigrigger	bah, my bad	06:23
billybigrigger	i forward the wrong port, i forwarded apache to alixandra not smtp	06:24
billybigrigger	smtp was forwarded to the old server	06:24
jmarsden	When you fix that tell me and I'll send you another test email.	06:25
billybigrigger	k	06:26
billybigrigger	done a few minutes ago....	06:26
billybigrigger	now when i send from hotmail i get a Relay access denied	06:26
billybigrigger	same with your test email	06:26
billybigrigger	may i paste your email address here?	06:27
jmarsden	Right, now my logs show: Jun 11 22:26:45 eclipse5 postfix/smtp[15577]: 106E15692DD: to=<billybigrigger@thefrozencanuck.ca>, relay=thefrozencanuck.ca[68.146.139.247]:25, delay=1.7, delays=0.01/0/1.3/0.45, dsn=5.7.1, status=bounced (host thefrozencanuck.ca[68.146.139.247] said: 554 5.7.1 <billybigrigger@thefrozencanuck.ca>: Relay access denied (in reply to RCPT TO command))	06:27
billybigrigger	hmmm	06:27
billybigrigger	well i have smtp relay setup to my isp	06:27
jmarsden	So your postfix config is in need of adjustment regarding smtpd_recipient_restrictions, I would think.	06:28
billybigrigger	but i thought i had that configured for outgoing email....	06:28
jmarsden	smtp relay is when you send...	06:28
billybigrigger	ya thats what i thought	06:28
jmarsden	Your MX points to your server IP at 68.146.139.247	06:28
jmarsden	So fix postfix on that server to allow me to send you email :)	06:28
billybigrigger	well i see smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain,	06:30
billybigrigger	and some more	06:30
billybigrigger	why would a default config reject unknown sender domain?	06:30
jmarsden	That's unlikely to be the problem... read the docs to understand what each restriction really does.	06:31
jmarsden	You may want to check your myorigin and mydestination lines in /etc/postfix/main.cf ?	06:32
billybigrigger	myorigin = /etc/mailname	06:33
billybigrigger	mydestination = alixandra, localhost.localdomain, localhost, $mydomain	06:33
billybigrigger	seems ok	06:33
ScottK	billybigrigger: To answer your reject unknown sender domain question: http://www.postfix.org/postconf.5.html#reject_unknown_sender_domain	06:34
ScottK	billybigrigger: Is $mydomain your actual domain or is that literally what is.	06:35
billybigrigger	this doesn't make sense, i've copied the postfix/dovecot configs over from a working server, and changed the forwarded ports to the correct pc...	06:35
billybigrigger	no $mydomain was in there already	06:35
jmarsden	billybigrigger: What does hostname -d say ?	06:35
billybigrigger	i just added alixandra	06:35
jmarsden	So far we are missing your actual domain name :)	06:36
billybigrigger	cg.shawcable.net	06:36
billybigrigger	ahh	06:36
jmarsden	That's not the same thing as thefrozencanuck.ca ... so fix your poxyfix config so I can send email to you ...	06:36
jmarsden	s/poxyfix/postfix/	06:36
billybigrigger	try now	06:36
jmarsden	Nope., still relay denied. What did you change and did you reload afterwards?	06:37
billybigrigger	added alixandra.cg.shawcable.net to mydomains and restarted postfix	06:39
jmarsden	You asked me to send to billybigrigger@thefrozencanuck.ca. So thefrozencanuck.ca needs to be one of the domains you accept email for... and it still isn't.	06:40
billybigrigger	try now	06:40
jmarsden	OK, you got it. Can you see it?	06:41
billybigrigger	sent you a reply	06:42
billybigrigger	that's really odd....	06:42
billybigrigger	im going to check the config for the old mailserver	06:42
billybigrigger	myorigin = /etc/mailname	06:43
billybigrigger	mydestination = alixandra, localhost.localdomain, localhost, $mydomain	06:43
billybigrigger	thats from my oldserver	06:43
billybigrigger	and incoming mail worked perfectly fine	06:43
jmarsden	On the old server, hostname -d # says what?	06:43
billybigrigger	nothing	06:45
billybigrigger	haha	06:45
jmarsden	Strange. Somewhere on that server, either in /etc/mailname or in the hostname you must have thefrozencanuck.ca for it to have worked.	06:46
billybigrigger	hmmm	06:46
billybigrigger	i don't recall setting that	06:46
billybigrigger	but yes your right	06:46
jmarsden	But you received email over SMTP into that server for user@thefrozencanuck.ca on it? Well, anwyay... now you have a working email server.	06:47
ScottK	What about hostname -f?	06:47
billybigrigger	cabo	06:51
SuperSenior	is there any ghosting software preinstalled on ubuntu server?	07:01
jmarsden	The dd command could be considered ghosting software, I suppose?	07:04
jmarsden	dd if=/dev/sda of=/dev/sdc # will do an image copy of disk sda to disk sdc, for example	07:05
uvirtbot	New bug: #375149 in tomcat6 "tomcat6 needs debug start mode with jpda (dup-of: 375493)" [Undecided,New] https://launchpad.net/bugs/375149	07:31
=== pschulz01 is now known as pschulz01_away
snori74	postfix logs - what rotates them? doesn't seem to be logrotate -(8.04)	10:54
snori74	hmm, found the info - in Debian/Ubuntu its syslog, not logrotate that does it for mail.log (see: http://www.ducea.com/2006/06/06/rotating-linux-log-files-part-1-syslog/)	11:09
=== pschulz01_away is now known as pschulz01
peter_	Hi, iam having 300sec delay on some session_start() calls in php5 using ubuntu server (virtual esx setup). Any clues? :/ I am lost on this one	12:03
peter_	never had this problem on our non-virtual debian box	12:04
drurew	could someone take a look at this and hit me with ideas of how this could happen ? thanks http://paste.ubuntu.com/194251/	12:04
drurew	anyone	12:12
drurew	?	12:12
Appiah_	I've got a problem with pam_mkhomedir , it does not seam to create a homedir with pam_mount using NFS	12:18
Appiah_	I have no idea on how to debug either , i entered debug in pam-session but cant see anything about pam_mkhomedir	12:18
ssm	Appiah_: pam_mkhomedir and NFS sounds tricky. I'd use autofs to mount, but I'd also use something other than pam_mkhomedir to make the actual directories	12:37
Appiah_	well in pam_mount.conf.xml it does say <mkmountpoint enable="1" remove="true">	12:39
Appiah_	I think it's using pam_mkhomedir? either way none of them seams to work	12:39
cankoy	drurew: apparently hwaddress line in interfaces is not working. And udev seems confused. Do you see any anomalies in kernel log?	12:41
drurew	cankoy:http://paste.ubuntu.com/194285/	12:46
drurew	cankoy:Please complain to your hardware vendor. Switching to a random MAC.	12:46
drurew	Please complain to your hardware vendor. Switching to a random MAC.	12:46
soren	peter_: Oh, hi :)	12:52
soren	peter_: Anders just mentioned your name a minute ago and here you are :)	12:52
soren	peter_: 300s timeout sounds suspiciously like a DNS thing.	12:52
peter_	soren: hi, thanks. and happy birthday :)	12:53
cankoy	drurew: I guess a new eth interface is created everytime MAC is changed (check with 'ifconfig -a'). You need to find a way to stop that, specifically forcedeth driver seems to be the problem.	12:54
soren	peter_: HAhah :) Thanks :)	12:54
drurew	http://xfliu.blogspot.com/2007/08/linux.html found that	12:56
drurew	im gonna source a driver	12:56
drurew	wish me luck	12:56
drurew	:)	12:56
cankoy	drurew: that looks quite old, I suggest you search ubuntuforums, launchpad bug reports, etc before patching a kernel module.	13:01
drurew	you right	13:02
drurew	cankoy: undoing a mac spoofing .... this is gonna be hard	13:07
sommer	kirkland: sure, I'll add something to the virt section	13:36
al_paun	Hi. Does anyone know how to split a internet connection let's say ip's from 192.168.1.2-192.168.1.20 to have 30% from bandwidth and rest 70%	14:04
al_paun	?	14:04
magnetic	al_paun: using traffic shaping?	14:09
Ng	would we expect kvm to work on 8.04?	15:27
Ng	I'm starting a guest directly and kvm just seems to chomp 100% CPU and not really do anything	15:27
Ng	huh, having said that, it appears to do very much the same thing on karmic	15:32
ar	Hi	16:36
Kirill_	I need to have a PHP file exectuted every 10 seconds. Is the best way to do that to write a script that runs 5 times and sleeps 10 seconds at every iteration and then have a cron job run that script every minute? The script downloads a bunch of xml files and stores them locally	16:44
ivoks	i'd do it with cron	16:44
mathiaz	ivoks: does cron support 10 seconds run?	16:45
mathiaz	ivoks: hi btw	16:45
Kirill_	mathiaz: nope, 1 minute	16:45
Kirill_	ivoks: 1 minute is the lowest denominator :(	16:45
mathiaz	ivoks: IIRC cron only support the minute granularity	16:45
ivoks	hi	16:45
ivoks	oh, 10 seconds... right.. sorry :)	16:46
Kirill_	is it worth looking into writing a daemon?	16:49
ivoks	well, technicaly, it's doable with cron :)	16:49
ivoks	but that would be a wicked hack, not a solution	16:50
Hecate	man cron: cron then wakes up every minute, examining all stored crontabs, checking each command to see if it should be run in the current minute.	16:51
ivoks	right	16:51
ivoks	so:	16:51
ivoks	* * * * * sleep 1; do_somethinw	16:52
ivoks	* * * * * sleep 2; do_something	16:52
ivoks	* * * * * sleep 3; do_something	16:52
ivoks	...	16:52
ivoks	would be a wicked hack :)	16:52
Kirill_	ivoks: are you using "wicked" as a positive is? :P	16:52
Hecate	i think forking a script into background that uses an infinite loop and a sleep(10) which thus executes your command every ten seconds, would kill much less performance.	16:53
Kirill_	Hecate: thanks I'll look into it! :)	16:56
Kirill_	ivoks: if I can't get that script working I'll use that, thank you :)	16:56
ivoks	:)	16:56
Hecate	you're welcome	16:57
troglobyte	i did the "encrypt home directory" on install of Server 9.04. Is there a way to back out of that with out re-installing?	17:58
troglobyte	I found this: http://ubuntuforums.org/showthread.php?t=1135796	17:58
troglobyte	but want to confirm before I really break something	17:59
mathiaz	jdstrand: hey - who sponsored ufw to debian?	18:04
jdstrand	mathiaz: kees	18:05
jdstrand	kees is my man ;)	18:05
* jdstrand waves to kees		18:05
mathiaz	jdstrand: when was the first release of ufw available in Ubuntu? hardy?	18:06
jdstrand	mathiaz: yes. See https://wiki.ubuntu.com/UbuntuFirewall for versions in Ubuntu	18:06
jdstrand	(and other stuff)	18:07
mathiaz	jdstrand: great - thank ya	18:08
jdstrand	np	18:08
maxb	troglobyte: FIRST you need to copy all your data out of the encrypted area, then ensure the user is not logged in, so that the encrypted layer is unmounted, and "mv .ecryptfs .ecryptfs_disabled" (as root, obviously) - "Le Rob" misspelt the name of the thing. Take note that some of the files required to mount private area are in fact stored in /var/lib/ecryptfs/USERNAME (to which ~/.ecryptfs is a symlink)	18:10
troglobyte	maxb, appreciate it!	18:13
diffra	stupid question about encrypted home dirs -- does root have access to them?	18:14
ivoks	not if user isn't loged in	18:14
maxb	but yes, when they are	18:15
dinger1986	has anyone ever heard of an opensource timesheet program	18:15
Sam-I-Am	jmedina: you around?	18:33
jmedina	Sam-I-Am: yeap	18:33
Sam-I-Am	so i've figured out that using launchpad PPAs is near impossible	18:34
Sam-I-Am	they dont allow binary uploads	18:34
ivoks	lol	18:34
ivoks	point of ppa is to build source	18:34
Sam-I-Am	it makes my dependencies a huge mess which means each thing i'm building almost needs its own PPA	18:34
Sam-I-Am	ivoks: i viewed it as a place to host source and binary packages	18:35
Sam-I-Am	not compiled somewhere else where i can't monitor exactly how they're getting built	18:35
Sam-I-Am	for example, i had to manually install some libraries (.deb) from jaunty on hardy... i didnt build them, they just installed fine.	18:35
Sam-I-Am	however, launchpad wont know what to do	18:36
Sam-I-Am	so it looks like i also need to build all those libraries	18:36
Sam-I-Am	i build in chroots so my packages don't wind up having interdependencies... which means i'll need to upload all the same source dependencies for everything i'm building (or something like that)	18:36
Sam-I-Am	jmedina: so if you want these packages either it'll have to wait until i can wrangle launchpad into working... or i'll put up a web server and you can just grab them there.	18:37
infinity	Sam-I-Am: Having hardy packages depend on binaries from jaunty kinda defeats the whole purpose of a PPA. If you need to backport jaunty versions to make it work, then do that in the PPA as well.	18:40
Sam-I-Am	infinity: thats what its looking like	18:40
infinity	(Nevermind defeating the purpose of a PPA, having an older suite depend on a newer one defeats the purpose of suites...)	18:40
Sam-I-Am	well, for example, theres no libcap2 in hardy	18:40
Sam-I-Am	but the jaunty one installs fine	18:40
infinity	And what's wrong with building against libcap1?	18:41
infinity	I suspect it's just a matter of s/libcap2-dev/libcap-dev/ in your Build-Depends, and boom, it builds on hardy.	18:42
Sam-I-Am	well, some things work like that	18:42
Sam-I-Am	an example of one that doesnt is samba and openldap	18:43
Sam-I-Am	they hork with older libraries	18:43
infinity	Things that don't work like that require backporting either the code to work with older libraries, or the newer libraries to the older suites, yes.	18:43
infinity	Again, that's kinda the point.	18:43
infinity	Telling me that I can only use my 2003 car with gas released in 2006 isn't helpful. :)	18:43
Sam-I-Am	i try to minimize backporting dependencies	18:44
Sam-I-Am	thats why i'm using chroots... so something that builds find against oldlibversion doesnt magically find newlibversion and compile against it.	18:44
Sam-I-Am	just talked with some folks in #launchpad ... think i figured out how i need to work this... might just be more complex than initially determined.	18:48
maxb	Installing binaries built for jaunty into a hardy system is somewhat dodgy. Sometimes it'll work, yes, but each case needs careful individual verification	18:55
Sam-I-Am	i usually test those first	18:56
Sam-I-Am	its few and far between	18:56
maxb	Generally people prefer to rebuild the jaunty source in a hardy environment (with a suitably ~suffixed version number)	18:56
Sam-I-Am	yeah thats the majority of what i'm doing	18:57
Sam-I-Am	except for 2 libs i just slurped from jaunty	18:57
Sam-I-Am	i'll just build them from src	18:57
Sam-I-Am	its just more chroots for me	18:57
maxb	Do ensure you ~suffix the version even if you make no other changes	18:57
maxb	Why is it more chroots?	18:57
Sam-I-Am	i build every package in its own chroot	18:58
maxb	why?	18:58
Sam-I-Am	so it wont accidentally start depending on something it shouldnt	18:58
maxb	You are aware of pbuilder, right?	18:58
Sam-I-Am	like openldap for example... even if you tell it to build against gnutls, it'll toss openssl in its dependencies if the openssl dev libs happen to be there	18:59
Sam-I-Am	i've heard of it... but i usually use dpkg-buildpackage	18:59
maxb	You really want to invest the time to learn pbuilder	18:59
Sam-I-Am	i build openssl against gnutls and also openssl... so those live in two different chroots	18:59
Sam-I-Am	mmkay... i'll have a look at it	19:00
Sam-I-Am	thanks for the tip	19:00
Sam-I-Am	might simplify life :)	19:00
Sam-I-Am	time for a meeting	19:00
maxb	With pbuilder, you have one chroot per distroseries, and it installs the appropriate packages as specified by the packages Build-Depends for each build	19:00
ivoks	i hate when someone doesn't even answer when you offer him help	19:08
billybigrigger	can anyone here suggest a good looking, but lightweight wembail client, my server is an old pos :P	20:05
billybigrigger	like 166mhz 98mb ram :P	20:05
Sam-I-Am	webmail... client?	20:08
Sam-I-Am	isnt that a web browser?	20:08
billybigrigger	well yeah, but you need a webmail client for postfix, to be able to view it with your browser	20:09
jmedina	that is really old machine	20:14
billybigrigger	lol yes it is	20:14
jmedina	that machine wastes a log of energy, you better drop it	20:14
billybigrigger	my dad donated it to me, i had no idea how long it was sitting in his basement :P he said it hadn't been turned on in 2 or 3 years	20:15
jmedina	*lot	20:15
billybigrigger	i have a decent energy efficient 380w psu, amd x2 5000 cpu, 2gb ddr2 800 ram, and 2 raid disks for a new server...	20:15
billybigrigger	just no case or am2 motherboard :(	20:16
billybigrigger	and broke as a joke right now...	20:16
billybigrigger	i was using my desktop to multi-task as a desktop/server running apache, mysql, postfix/dovecot and doubling as a desktop though just doesn't work	20:16
billybigrigger	so this pold pentium will have to do for now :P serves my mail fine :P	20:17
billybigrigger	but you are right about the energy consumption	20:17
drurew	need an http web admin interface for a debian vps, any sujestions?	20:29
jmedina	drurew: what kind of VPS?	20:30
drurew	jmedina: virtual debian (from hosteurope.de)	20:31
drurew	im a server noob	20:31
drurew	:)	20:31
jmedina	I dont know that "virtual debian" means, there is a log of virtualization products and...	20:32
jmedina	drurew: so what do you want to admin from that web ui?	20:32
drurew	jmedina: yeah, id like to be able to create accounts, admin mail etc	20:33
jmedina	mmm	20:33
jmedina	so you already have a mail system?	20:34
drurew	jmedina: yeah, mail is setup, however id like to be able to admin a few different mail accounts for some friends to be able to host pages and junk	20:36
drurew	:)	20:36
drurew	jmedina: also things like setting up my domain etc as well as general apache2 configuration is blowing my mind	20:37
jmedina	I dont know anything that does that	20:38
jmedina	most web uis works for a specific configuracion	20:38
jmedina	probably you can install ebox	20:38
jmedina	!ebox	20:38
ubottu	ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox	20:38
drurew	mainly , just needing an http interface so people can login with their accounts and set things up, yeah ebox, isnt that a dist tho ?	20:38
jmedina	nop, you can install packages	20:39
drurew	how would sftp hold up against ebox?	20:39
jmedina	dont know	20:40
jmedina	I dont use ebox	20:40
drurew	is it compareable?	20:40
jmedina	to what	20:42
drurew	ebox	20:46
drurew	why dont i just install both :)	20:46
billybigrigger	jmedina::: is it possible to install a virtual server os somewhere, and then make an image of it? so i can run the virtual server on this desktop, and in the future when im ready with my new server, to burn an image of the virtual server and have it up and running on the new server already configured?	20:46
drurew	hey im trying to install ebox on my server, apt-get /aptitude wont let me install it because there is no verification key for the launchpad site, how do i manually add a verification key (via terminal of course) ? :)	21:25
diffra	hint: apt-key add should be your friend there, but i don't know the exact instructions	21:27
MaxMax	Hey guys got a question on deploying ubuntu client in a server envoirment can anyone help or am i in the wrong place	21:28
tomsdale	it's a little less traffic in here - just ask your question for the naming convention and if someone knows they will reply	21:30
MaxMax	ok thanks man appreciate it	21:30
MaxMax	I was wondering on the following	21:30
MaxMax	does Ubuntu support "UPN" for user ID"s that is a log in name of something like j.smith@123.come etc	21:31
drurew	hashing it out again maxmax	21:31
drurew	?	21:31
MaxMax	well yea, Tomsdale suggested i try here	21:32
MaxMax	:)	21:32
MaxMax	I had not got a real answer as of yet so trying again	21:32
drurew	http://adsearch-winzero.blogspot.com/2007/10/userprincipalname-user-principal-name.html	21:34
drurew	!upn	21:34
ubottu	Sorry, I don't know anything about upn	21:34
infinity	MaxMax: What problem are you trying to solve here? Mass virtual hosting?	21:34
drurew	login via upn	21:35
MaxMax	hi	21:35
MaxMax	I want to use UPN names for users to log into a ubuntu workstation	21:36
drurew	MaxMax: http://blog.scottlowe.org/tag/unix/	21:36
MaxMax	checking	21:36
infinity	Oh, probably would have been helpful if you'd mentioned something about Active Directory in your original question. :)	21:39
MaxMax	Well its not really AD related	21:40
infinity	UPN is an AD attribute.	21:40
MaxMax	Yes it is, but	21:41
MaxMax	on say an XP box I can create a user account using UPN type name and not have that box as part of a AD domain.	21:41
MaxMax	just have it as a stand alone Workstation	21:42
MaxMax	thats wht I was trying to get ubuntu to do	21:42
MaxMax	there are two parts.	21:42
MaxMax	The client OS has to support UPN's if that client is ever to talk to a AD server	21:43
jamesrfla	would this be a good place to ask a question regarding apache and mailman?	21:43
infinity	MaxMax: Well, yes and no. When you start enabling all the AD-required bits, they somewhat take over the classic authentication and authorization methods that a UNIX/Linux system would use.	21:44
infinity	MaxMax: By default, with passwd-style shadow auth, UPN usernames would be illegal.	21:44
MaxMax	aH i SEE	21:44
MaxMax	I think you have found the problem infinity	21:45
MaxMax	So it looks like the OS does not support this	21:45
MaxMax	I bet that goes back to the 70's when bell labs created unix,	21:47
MaxMax	So its more a unix problem than a ubuntu problem, really on in the same but beyond your control at the moment	21:48
MaxMax	one ^	21:48
infinity	MaxMax: Well, like I said, if you install and configure all the samba-related bits required to make your machine behave as an AD client, you can certainly get UPN passthrough auth to an AD master.	21:49
infinity	MaxMax: But, other than "being like Windows", there's no particularly valid reason why the underlying system needs to support usernames like that.	21:49
MaxMax	Yes you can, but the problem is you have to use two seperate user id's	21:49
MaxMax	you will use a user id of say 123 for logging into the os and then another to auth on the smb enabled share	21:50
MaxMax	no reason you got to be kidding ?	21:50
MaxMax	I beg to differ,	21:51
MaxMax	let me explain.	21:51
MaxMax	For a home user UPN names dont ammount to a hill of beans for logging into your workstation be it windows or unix its a non issue. now....	21:52
MaxMax	if you work for a company or corporation typically they have IT standards for certain things. One of our standards is how user names are specified. in our case the users use their e-mail address to log in , like m.hello@123,com etc	21:53
MaxMax	this means that users can simply log in with one user id and have access to all resources they are allowed to access	21:54
MaxMax	In the corporate world this is a huge deal	21:55
MaxMax	again home user its a non issue	21:55
mathiaz	MaxMax: why don't you just use the login part (ie the user principal)?	21:55
mathiaz	MaxMax: if you setup kerberos correctly on an Ubuntu system, kerberos will autoamtically appends the realm to your login	21:56
MaxMax	Yes that will work but its not the same as the standard so hence its not do-able	21:56
MaxMax	well let me put that another way. The up part would be SAY J.SMITH but ubuntu dont like the . period in the name	21:57
MaxMax	it cant be used	21:57
MaxMax	so the up prat does not work either	21:57
MaxMax	so j.smith does not work or j.smith@123.com dont work	21:58
MaxMax	jsmith would work ok but thats not standard	21:58
MaxMax	I appreciate you guys taking the time to analyze this with me	21:59
MaxMax	My buddy works for motorola here in the USA.. they had the same problem as I do in trying to deploy ubuntu into a corporate envoirement	22:00
infinity	MaxMax: Mapping logins to unix user IDs can be done transparently with the samba PAM modules, AFAIK.	22:01
infinity	MaxMax: There's no reason the GDM screen can't accept a "UPN", shove that to PAM, then have it translated to a different local username.	22:01
infinity	MaxMax: If your users care deeply about what username shows up under "ps axu", then they really don't want to see how Windows represents it all internally.	22:02
MaxMax	It does not have anything to do with samba Infinity Samba emulates MS SMB Protocol. Samba does not do auth in a AD envoirment	22:02
MaxMax	Samba is similar to NT Lanman server thats legacy stuff dating back to nt4 win 3.1 etc	22:03
infinity	MaxMax: No, but samba ships with some PAM modules to ease this sort of pain.	22:03
infinity	In the end, what you're really looking for here is PAM glue.	22:03
infinity	Because, you'll never have local user accounts that look the way you want.	22:03
MaxMax	pam glue ? humm whats that I had not heared of it	22:03
infinity	But local accounts don't matter, it's what the user types to login that matters to you.	22:03
MaxMax	no local accounts do matter. they have to be able to use upn or j.smith for local login excluding any networking	22:04
infinity	Local login != local accounts.	22:05
infinity	"Local account" is just what you see in "ps" or when typing "whoami". And has very little to do with what you typed to authenticate to PAM.	22:05
MaxMax	ok	22:05
MaxMax	well what i need then is for the os to accept local accounts that use upn and for pam to accept this also	22:06
infinity	I'm stuck on a tiny terminal right now, upgrading my laptop, so web browsing's a bit of a non-starter, but I'd recommend searching for things like "PAM Active Directory UPN" and seeing what you can come up with from people who've been here before.	22:07
MaxMax	I have done a fair number of searches, it looks like all flavors of linux has the same problems	22:08
MaxMax	Perhaps the issue really come down to the actual nix core in that this was never given a high priority from a update standpoint	22:09
MaxMax	hence the pain in deployment	22:09
jmedina	what is "upn"?	22:11
MaxMax	UPN = Universal Principal Name	22:11
jmedina	MaxMax: o_O, what are they used for?	22:12
MaxMax	I would really love to be able to deply a few WS's but gosh so many road-blocks, it makes things a bit tough	22:12
jmedina	kerberos?	22:13
MaxMax	the term comes from AD active directory	22:13
mathiaz	MaxMax: have you looked at likewise-open?	22:13
MaxMax	a upn name looks like your e-mail address	22:13
MaxMax	Likewise is total Junk :)	22:14
MaxMax	been there it does not work as documented	22:14
mathiaz	MaxMax: why? - it seems to solve the issue of integrating linux systems in AD for authentication	22:14
MaxMax	well not really, if you use likewise to auth to AD your still going to have to use a different user id to log into you nix workstation	22:15
MaxMax	I dont believe Likewise is even using upn names to pass to the AD controller its just using the first part of the name which would be supporetd via AD	22:16
MaxMax	like accessing a network resource with like \\123 as opposed to \\123.net etc	22:17
MaxMax	but likewise is not my issue	22:17
MaxMax	the issue is that I cannot create a user accont with a UPN name	22:18
MaxMax	If i can get past this point I will be good to go in getting some WS's deployed	22:20
Sam-I-Am	maybe you're thinking about realms	22:20
Sam-I-Am	user@realm	22:20
Sam-I-Am	smells like kerberos	22:20
MaxMax	no nothing to do with it	22:20
daxroc	evening all	22:21
MaxMax	hi	22:21
MaxMax	let me explain	22:21
MaxMax	Suppose you have a XP pc. On that xp pc you can create a user called j.monk@123.local	22:21
daxroc	Are there any tools to monitor LSI hardware raid ( megaraid_mbox, megaraid_mm)	22:22
MaxMax	I am trying to create a user on ubuntu that is the same as what I do on xp	22:22
MaxMax	this would be a local user account	22:22
Sam-I-Am	i have users here authenticating to ad with first.last format usernames... but not local users.	22:22
Sam-I-Am	dont see why it wouldnt let you...	22:23
MaxMax	if you could try create an account like j.smith@123.local on your ubuntu box and let me know if it works that would be real helpfull	22:24
Sam-I-Am	matt.test:x:1001:1001::/home/matt.test:/bin/sh	22:24
Sam-I-Am	there	22:24
Sam-I-Am	worked here	22:24
Sam-I-Am	adduser gets pissy unless you change the regex for valid usernames	22:24
Sam-I-Am	but useradd works fine	22:24
MaxMax	from the gui ?	22:24
Sam-I-Am	no, from a terminal	22:24
Sam-I-Am	probably runs the same script though	22:24
MaxMax	try it from the gui	22:24
MaxMax	like try m.test@123.net as a user id	22:25
Sam-I-Am	i dont have a gui on my machines	22:26
uvirtbot	New bug: #377627 in openssh (main) "package openssh-client 1:5.1p1-5ubuntu1 failed to install/upgrade: subprocess post-installation script killed with signal (segmentation fault)" [Undecided,New] https://launchpad.net/bugs/377627	22:26
maw	y0	22:26
Sam-I-Am	but theres probably a config file somewhere that tells it a list of valid formats	22:26
jmedina	ubuntu server esont have GUI	22:26
jmedina	doesnt	22:26
MaxMax	well I was talking about the ubuntu client	22:26
Sam-I-Am	look at /etc/adduser.conf	22:26
maw	are there docs to show how to merge packages in the repositories? For example, if I want to test/contribute to the repositories?	22:26
maw	not sure how to do that	22:26
MaxMax	it dont work here	22:27
Sam-I-Am	the regex is in there	22:27
MaxMax	the . and @ are not supported	22:27
Sam-I-Am	maw: google for contributing to ubuntu. if its an existing package you'd probably need to join the maintainers.	22:27
Sam-I-Am	if its a new package then you have to go through a bit to get it in the distro first	22:27
maw	ah	22:28
Sam-I-Am	in the meantime you can use PPAs on launchpad.net	22:28
maw	well it is Snort	22:28
maw	it is already there	22:28
Sam-I-Am	what are you changing?	22:28
maw	but the version in the repo is not supported	22:28
maw	I just want the new version updated	22:28
maw	not sure who owns that task	22:28
MaxMax	sam If you are able to create a user like that on the server will it allow you to login to that account ?	22:28
maw	I emailed the maintainer list	22:28
maw	and updated the launchpad bug	22:28
Sam-I-Am	is there a newer version in a more recent release?	22:28
maw	https://bugs.launchpad.net/ubuntu/+source/snort/+bug/281014	22:29
uvirtbot	Launchpad bug 281014 in snort "Please merge snort 2.8.4.1-1 (universe) from Debian experimental (main)" [Wishlist,Confirmed]	22:29
Sam-I-Am	you can do a non-maintainer upload for the package usually	22:29
Sam-I-Am	the maintainers will look at it	22:29
* maw is Chris (in that posting)		22:29
Sam-I-Am	alternatively just build your own :)	22:29
maw	ya...	22:29
maw	if there is no action	22:29
maw	I will remove the repo version	22:29
maw	and compile from source	22:29
Sam-I-Am	or you can just install the debian package	22:29
Sam-I-Am	if its updated	22:30
maw	debian is usually a lot slower to update things :P	22:30
Sam-I-Am	so you want it to go from debian to ubuntu...	22:30
mathiaz	maw: look at https://wiki.ubuntu.com/UbuntuDevelopment/Merging	22:30
maw	no.. someone else suggested that	22:30
maw	thanks amt	22:30
maw	mathiaz	22:30
Sam-I-Am	if you can install and test it on ubuntu karmic then tell the maintainers it'll be a little quicker in moving there.	22:30
maw	I am using 8.04 LTS... so that would be the platform I would test on	22:31
Sam-I-Am	you wont get a new package added to LTS	22:31
Sam-I-Am	maybe in backportsd	22:31
mathiaz	maw: merges are only relevant to the developement release (karmic these days)	22:31
maw	is this considered a new package?	22:31
Sam-I-Am	its not a security fix	22:31
maw	ah I see	22:31
Sam-I-Am	so it wont hit an old release	22:31
Sam-I-Am	it'd go in karmic.. but nothing stops you from installing it in hardy	22:32
mathiaz	maw: new versions are not available for stable releases	22:32
Sam-I-Am	i backport crap all the time	22:32
Sam-I-Am	from whatever to hardy LTS	22:32
maw	ok	22:32
maw	I was mostly interested in the process, mathiaz provided the link for me	22:32
mathiaz	maw: you could work on getting a backport accepted and published: https://help.ubuntu.com/community/UbuntuBackports	22:32
maw	ok, noted	22:32
mathiaz	maw: but first the version has to be in the developement release	22:33
maw	I see	22:33
maw	well that's unfortunate as Snort2.7 is useless now	22:33
maw	so anyone installing from repo has depracated software	22:33
Sam-I-Am	thats how LTS works unfortunately	22:34
maw	*deprecated	22:34
Sam-I-Am	or any older release	22:34
Sam-I-Am	but nothing stops you from taking a newer version	22:34
Sam-I-Am	sometimes they Just Work other times you get to rebuild them	22:34
maw	if it is known that a package is deprecated it should be dropped from the repo	22:34
Sam-I-Am	if you want to see deprecated, go run rhel or centos	22:34
Sam-I-Am	most of the stuff in there is EOL by upstream	22:35
Sam-I-Am	openldap, dhcp, bind9, etc	22:35
mathiaz	maw: the next step for merging snort is to get a debdiff prepared for the new package, attach it to bug 281014 and ask for sponsorship	22:35
uvirtbot	Launchpad bug 281014 in snort "Please merge snort 2.8.4.1-1 (universe) from Debian experimental (main)" [Wishlist,Confirmed] https://launchpad.net/bugs/281014	22:35
mathiaz	maw: https://wiki.ubuntu.com/SponsorshipProcess	22:36
maw	ok, thanks for pointing me in the correct direction	22:37
nick125	Good afternoon. I'm having an issue installing Ubuntu Server in VBox (9.04). It keeps locking up at the hardware discovery step. Any ideas on what to try?	23:25
glen1	nice	23:25
glen1	hmmm	23:25
diffra	do any of the terminals have any error output?	23:25
glen1	not sure I only worked on ubuntu via dedicated	23:25
diffra	alt+f2/3/4/5 (i'm not sure which one shows logs at the moment.)	23:26
nick125	alt+f4 shows the logs, but nothing interesting.	23:27
diffra	what's the last thing it does that it's getting hung up on?	23:28
nick125	Starting PCMCIA Services..but I'm trying to verify the ISO integrity through the installer menu (yeah, I could md5sum it..but)	23:29
nick125	When I try to install, it hangs up at 2% on detecting hardware	23:30
nick125	Let me check the logs on an install attempt and see where its hanging there	23:31
nick125	... How did I know that'd be my luck. Now I try it once I ask for help, and it appears to no longer hang	23:33
diffra	it's afraid of us :)	23:34
* nick125 continues on this install, in the hope he can get the hang of this enough to move his server over :)		23:34
glen1	is it hard to set up my own email server?	23:35
glen1	or is that a bad thing if hackers wanted to ddos it lol	23:35
nick125	glen1: It's not _too_ terribly difficult to do, but it's a bit of work to maintain.	23:36
glen1	what do I have to maintain	23:37
nick125	I eventually got tired of maintaining my mail server and moved my mail over to Google Apps for Domains.	23:37
diffra	glen1: ditto what he said. also, if you're wanting to do virtual domains, there's a higher level of complexity.	23:37
glen1	ahh cause Im settin up a little hosting thing to do for fun	23:37
glen1	and Im wondering about email. I know cpanel allows the user to create them but I was thinking of my dedicated server to them :D	23:38
glen1	fun stuff!	23:38
diffra	things like spam filters need to be updated. keeping the smtp daemon up to date in case of bugs that could allow outside access. You should run a proactive daemon like fail2ban that blocks users from brute forcing passwords	23:38
nick125	Ugh...you won't believe how much I hate cPanel.	23:38
glen1	diffra, can I create a cron job to update everything	23:38
nick125	I had to install it a couple times for customers when I was in the hosting business. It..............sucks.	23:39
diffra	i hate administering cpanel. From an enduser prospective, it's great (I use a cpanel account for my family photo gallery for instance.)	23:39
glen1	nick125, what other panels are better	23:39
diffra	i think running apt via cron is discouraged.	23:39
diffra	NOT LXadmin!	23:39
nick125	glen1: I found directadmin to be marginally better, but I'm not even sure they still develop it.	23:39
glen1	lol is that from the guy who hung himself	23:40
diffra	yep.	23:40
glen1	xD	23:40
glen1	poor guy	23:40
glen1	direct admin looks cool	23:40
diffra	well, the circumstances are bad, but the guy that found the exploit gave him at least 2 weeks to respond before releasing it.	23:40
glen1	jeez	23:41
nick125	I mean, DirectAdmin might be crappy...but it's cheap. cPanel is crappy _AND_ expensive.	23:41
glen1	he probably meant it as a big fuck u b4 he went	23:41
glen1	Any open sources ones?	23:41
nick125	As far as control panels go, there are a few...but when I tried them, they were a nightmare to use.	23:42
nick125	Then again, I was trying to use them on Gentoo, so that could contribute just _slightly_ to the nightmare.	23:42
glen1	hehe	23:42
glen1	how much is directadmin	23:42
glen1	sry theres a link lol	23:42
glen1	my bad	23:42
glen1	monthly license for 1 server?	23:43
nick125	ouch, it looks like they really raised the prices.	23:43
glen1	:O	23:43
glen1	what was it b4	23:43
nick125	I remember getting VPS licenses for $5/month.	23:44
glen1	:O	23:44
glen1	its basically the same price as cpanel	23:45
glen1	cpanel price is not so bad when you have alot of users on 1 server I guess	23:45
diffra	there's webmin/usermin	23:45
FFForever	how can i keep people from being idiots?	23:45
glen1	shotgun to face	23:45
glen1	:P	23:45
nick125	FFForever: I have an idea, but it's illegal....so	23:45
glen1	I bookmarked webmin page	23:45
FFForever	nick125, i am open to all ideas :)	23:45
nick125	Dammit glen1, you gave away my idea :P	23:45
glen1	ha	23:46
nick125	Or you could lock them in a bomb shelter, just as long as the lock to the door is on the outside. Of course, make sure it's shielded so they can't call the police.	23:46
glen1	diffra from an ease of use perspective whats the winner in the webhosting panel game haha	23:46
glen1	who are these ppl btw	23:46
FFForever	this user keeps deleting his public_html folder and he wonders why his website won't load after he is done	23:47
diffra	glen1: IMHO? plesk.	23:47
glen1	ill look it up	23:47
glen1	FFForever, LOL	23:47
FFForever	ive had 8 tickets from him about it	23:47
FFForever	i am about to not renew his monthly service contract if he keeps doing it	23:47
diffra	he's not asking you to restore backups, is he?	23:47
glen1	its quite expensive	23:47
nick125	FFForever: How much is that customer paying?	23:48
diffra	glen1: you didn't say cheap :)	23:48
FFForever	nick125, not enough	23:48
glen1	lol	23:48
glen1	charge him	23:48
diffra	cheap, easy to administer, easy for end users. Pick any 2.	23:48
nick125	FFForever: Drop him, then. Or threaten to charge him for each support instance.	23:48
FFForever	i like ehcp	23:48
FFForever	its free ^_^	23:48
diffra	yeah. customers like that get moved to per incident support.	23:48
diffra	also, can you set the directory permissions so he can't delete it?	23:49
* nick125 had a client who bought an unmanaged VPS for $6/month and expected us to manage it..		23:49
glen1	diffra, what two? cpanel and plesk?	23:49
diffra	any 2 of the three features i listed.	23:49
glen1	oh	23:49
FFForever	nick125, you sell vps's?	23:49
nick125	"I'm sorry, but this is an UNMANAGED VPS." "I'm leaving for Dreamhost!" What I wanted to say: "Don't let the door hit you in the a** on the way out."	23:49
nick125	FFForever: Used to	23:50
diffra	nick125: most people don't understand unmanaged. I used to work for dotster support -- it's insane trying to reason with people.	23:50
glen1	easy to administer, easy for end users mmmm, maybe take off the later and replace with cheap haha	23:50
FFForever	dotster?	23:50
diffra	yeah. good guys for the most part.	23:50
FFForever	How far would you be willing to go for unmanaged vps's?, nothing past i cant login?	23:50
glen1	slicehost any good? Ill be making vps's soon	23:50
diffra	<3 slicehost, glen1	23:51
FFForever	glen1, i heard they are good but really pricey	23:51
glen1	whats good about it	23:51
FFForever	<3 prgmr	23:51
diffra	FFForever: exactly.	23:51
nick125	For a VPS, Slicehost doesn't seem that pricey.	23:51
diffra	people coming from shared hosting got quite a shock. "how do i add an email account?" "well, that'll be $75..."	23:51
glen1	lol!	23:52
FFForever	diffra, i would be like uhhh FU! lol	23:52
glen1	If I set up my own mail server	23:52
FFForever	mail is a pita	23:52
glen1	Should I give each mailbox big storage and charge a lot	23:52
diffra	slicehost: awesome support (#slicehost), awesome servers. very reliable. one of my boxes is over 400 days uptime.	23:52
nick125	diffra: That's part of the problem. Unmanaged VPSes aren't for people who don't know what they're doing.	23:52
FFForever	i find community support to replace managed support is shit and slicehost should burn in hell for it	23:53
nick125	And as far as pricing goes, if I could do the entire VPS thing over again, I wouldn't have a single plan below $25/month	23:54
glen1	lol	23:54
glen1	I sometimes prefer irc support	23:54
glen1	over customer support	23:54
diffra	community support and managed support are not the same thing	23:54
nick125	Why? Because script kiddies can't slip $25 on their daddy's credit card without him noticing.	23:54
diffra	also, the slicehost admins are in IRC, so you can talk to them directly.	23:54
FFForever	glen1, i like irc support but when ur in a room with idiots that ask HELP i cant login 40x/hour i would get pissed	23:54
glen1	nick125, Maybe soon u can have one of my vps soon lol	23:55
FFForever	anyone who wants to give out free vps's im game :D	23:55
nick125	glen1: The company no longer exists...well, it does, but I assume that my partner has ran it into the ground :p	23:55
glen1	lol I would give them out to spread the word Im sure xD	23:55
glen1	http://www.gigstrate.com	23:56
glen1	Im near done	23:56
glen1	just need to get pricing and write up a few things	23:56
FFForever	glen1, cool hit me up when ur giving out promo (free) lifetime accounts :D	23:56
FFForever	XD	23:56
nick125	Supposely, in the first 2 months that I left the company, they were DDoSed about...10 times.	23:56
glen1	lifetime lol	23:56
glen1	lol nick125 what company?	23:57
glen1	FFForever, If I did youll have to be a whore lol "HOSTING OVER HERE!!"	23:57
nick125	glen1: atarack.com....the site doesn't even load anymore.	23:57
glen1	what did they do	23:57
glen1	does anyone else hate business people who dont have a clue	23:57
FFForever	glen1, ill be a whore but i will never claim to give u sales :P	23:57
glen1	they get a degree and think they know their shit	23:57
nick125	Well...considering that I was the only person (out of two, including myself) that was somewhat people-friendly....	23:58
glen1	haha	23:58
nick125	Let's just say that my partner pissed a lot of people off.	23:58
FFForever	nick125, i am not people-friendly but i do know my stuff :D	23:58
glen1	lol irc peoples should start the next google	23:59
diffra	There's a certain fun to pissing people off from the other end of the support line.	23:59
glen1	lets ddos google!!!	23:59
FFForever	glen1, i am sure google gets ddosed a few times a minuet lol	23:59
glen1	jk btw theyll rape your bandwidth	23:59
nick125	diffra: But not when they toss 1gbit at your routers.	23:59
diffra	I was support, not IT. What did I care? ;)	23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!