=== FFForever-Away is now known as FFForever | ||
=== asac_ is now known as asac | ||
=== FFForever is now known as FFForever-Away | ||
SuperSenior | Why do many programs have a "/chrome" sub-directory where they are installed? | 01:45 |
---|---|---|
SuperSenior | I notice this more in open source applications.. | 01:45 |
uvirtbot | New bug: #386172 in postfix (main) "package postfix None [modified: /var/lib/dpkg/info/postfix.list] failed to install/upgrade: subprocess pre-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/386172 | 02:21 |
=== smultron_ is now known as smultron | ||
JDStone | i'm getting these errors in dmesg. All was working well, I shut down my server and brought it home from being at school. I couple weeks later, I plug my server in, boot it up and now I'm getting these errors. | 03:50 |
JDStone | http://pastebin.ubuntu.com/193919/ | 03:50 |
=== s_markow_ is now known as s_markow | ||
=== FFForever-Away is now known as FFForever | ||
=== s_markow_ is now known as s_markow | ||
jmarsden | JDStone: At first look, your 1TB drive /dev/sdc may be going bad?? Or the data cable connecting it isn't firmly connected at both ends? Did you open up the hardware and unplug/replug both ends of the SATA data cable? Might be worth a try. Also, could the drive have sustained a nasty physical shock during its move from school to home?? | 04:36 |
twb | What does smartd say about it? | 04:37 |
twb | Obviously also check the cabling, and if possible simply replace the data and power cables. | 04:37 |
soccerGuy | hey guys | 04:43 |
soccerGuy | i had a question for 32 bits packages on 64 bits machine | 04:44 |
jmarsden | Go ahead and ask it :) | 04:44 |
soccerGuy | woow, so i am not alone | 04:44 |
soccerGuy | thanks jmarsden:-) | 04:44 |
soccerGuy | i thought nobody is here | 04:45 |
soccerGuy | anyway my question is | 04:45 |
pschulz01 | soccerGuy: here as well. | 04:45 |
soccerGuy | cool | 04:45 |
soccerGuy | :-) | 04:45 |
pschulz01 | soccerGuy: There are 32bit library compatability layer for 64 bit machines. | 04:46 |
soccerGuy | I need to install 32 bit on my amd64, i know chroot can do this or ia32-libs | 04:46 |
soccerGuy | however for ia32libs, i need to figure otu each package and their dependency | 04:47 |
pschulz01 | I remember that the 'World of Goo' game, which was 32bit only, had some excellent instructions. | 04:47 |
soccerGuy | i see ia32-apt-get automatically download necessary libs and dependencies | 04:47 |
pschulz01 | Ooo.. I didn't know that. | 04:47 |
soccerGuy | however there is not enough documentation how to use that superb package:-( | 04:47 |
* jmarsden will install it and see :) | 04:48 | |
soccerGuy | I know that my question a little spesific:-) but I was suprised that this magical package is infamous in our Linux community | 04:49 |
pschulz01 | http://2dboy.com/forum/index.php/topic,1432.0.html | 04:49 |
soccerGuy | jmarsden, let me know how it goes! | 04:49 |
soccerGuy | and good luck! | 04:49 |
pschulz01 | sudo apt-get install ia32-libs | 04:50 |
soccerGuy | you will need that | 04:50 |
soccerGuy | pschulz01, yeah i used ia32-libs | 04:50 |
soccerGuy | but the problem is I need to locate each package and use dpkg and figure out their dependencies, thanks for suggestion though:-) | 04:50 |
jmarsden | soccerGuy: Did you read /usr/share/doc/ia32-apt-get/README.Debian ? Seems to explain what is going on reasonably well... | 04:51 |
twb | It would be MUCH better to fix the broken package that asks for ia32 libraries. | 04:51 |
jmarsden | twb: True ... I'd guessed the software package concerned could be commercial closed binary-only stuff... | 04:52 |
soccerGuy | yes I did jmarsden, but the thing i dont understand how apt-get understand which package(32 or 64) I want him to install | 04:52 |
twb | jmarsden: then all you can do is file a bug. | 04:52 |
twb | jmarsden: but it's important that the user (soccerGuy) at least knows that he should try that approach if it's open to him. | 04:53 |
soccerGuy | sorry what you mean twb? | 04:54 |
jmarsden | soccerGuy: line 11 of the README.Debian says: + Library package names are prefixed with ia32- | 04:55 |
jmarsden | So surely you can do sudo apt-get install ia32-libsomeliborother # to force installing the 32bit version. | 04:56 |
jmarsden | But what makes you think you need to figure out all the dependencies by hand... that is what apt does for you... right? | 04:56 |
soccerGuy | yes | 04:56 |
soccerGuy | it creates 2 sources list | 04:57 |
soccerGuy | etc/apt/foreign/sourcelist | 04:57 |
jmarsden | Yes. Make sure they include the repository containing the 32bit package you "need" (please do tell is what it is!) | 04:57 |
soccerGuy | and etc/apt/native/sourcelist | 04:57 |
jmarsden | and then use apt-get as normal. | 04:57 |
jmarsden | I know, I read the documentation :) | 04:57 |
soccerGuy | haha | 04:58 |
soccerGuy | sorry jmarsden | 04:58 |
jmarsden | So ... what exactly is your question or problem? | 04:58 |
soccerGuy | so if i run apt-get install ia32-apache2, will it install 32bits apache? | 04:58 |
soccerGuy | i didnt know how to use the package | 04:58 |
twb | Getting biarch in dpkg would be nice... | 04:59 |
jmarsden | Well, apache2 is not a library, so that's not quite what the docs say... | 04:59 |
soccerGuy | i thought it can download binary packages | 04:59 |
jmarsden | soccerGuy: sudo apt-get install whatever-weird-package-you-need.deb # should pull in whaetver other 32 big dependencies it needs... | 04:59 |
jmarsden | soccerGuy: So did you actually try it? Just apt-get the package you really need?? | 05:00 |
soccerGuy | i didnt try what you said, i will give a try | 05:00 |
soccerGuy | so i still need to locate the package | 05:01 |
jmarsden | soccerGuy: No, you just need to know its name -- but if you don't know that, how do you know that you "need" a 32 bit version of it??! | 05:01 |
soccerGuy | i mean if i type apt-get install apache2, i can get apache2 for 64 bits and i dont need to figure out dependencies | 05:01 |
jmarsden | What is the package you are really trying to use that is 32bit only? | 05:01 |
soccerGuy | I need to install apache2 webserver | 05:02 |
jmarsden | That is not 32bit only! | 05:02 |
soccerGuy | no, it is not 32 bit only | 05:02 |
jmarsden | Trust me the 64 bit version works fine. | 05:02 |
soccerGuy | i need to use 32 bit version for memory concern | 05:02 |
jmarsden | So... what is the real issue here? | 05:02 |
soccerGuy | real issue is ram | 05:02 |
jmarsden | Are you 100% sure the 32bit version will use significantly less RAM than the 64bit version? Where did you get that information from? | 05:03 |
soccerGuy | I got from various articles | 05:03 |
soccerGuy | I have only 256MB VPS | 05:04 |
jmarsden | Have you tried using the 64bit version and just removed all the modules you do not need, configuring apache carefully, etc? | 05:04 |
soccerGuy | yes | 05:04 |
soccerGuy | I optimize the server | 05:04 |
soccerGuy | according to their tuning documentation | 05:05 |
jmarsden | By the time you load all the relevant 32bit libs etc you might find you are not really saving much RAM... can you point me to an article suggesting the use of 32bit apache on a 64bit server to save RAM? | 05:05 |
soccerGuy | so now i am rereading that line 11 | 05:05 |
soccerGuy | sure | 05:05 |
soccerGuy | one sec | 05:05 |
infinity | soccerGuy: Whoever's telling you to use 32-bit versions of apache to save RAM is silly. | 05:07 |
jmarsden | infinity: That is my sense too, but let's read his sources to be sure :) | 05:07 |
infinity | soccerGuy: While it's technically true that the data structures are smaller, and it will save a bit of memory usage, you'll also lost all the 64-bit registers and lose a whack of performance in the process. | 05:07 |
soccerGuy | http://stackoverflow.com/questions/935443/64bit-vs-32bit-ubuntu-on-low-memory-systems-why-does-ubuntu-64bit-eat-my-ram and http://www.scribd.com/doc/363677/Benchmarks-AMD64-in-32bit-mode-vs-64bit-mode-Ubuntu | 05:07 |
soccerGuy | phew | 05:08 |
soccerGuy | you can find lots of benchmark on internet | 05:08 |
soccerGuy | anywayI still dont get how to use this packe, so you are sayin apt-get install package name will be enough | 05:09 |
jmarsden | The first one is about using a 32bit system as a whole, vs using a 64bit system as a whole. It specifically includes someone saying using a 32bit app on a 64bit system consumes extar RAM because of all the 32bit libs you load just for it... | 05:09 |
infinity | soccerGuy: The benchmarks you just showed us showed amd64 LAMP systems outperforming i386... | 05:09 |
soccerGuy | hey guys, I will show my results after i figure out how to use this package | 05:10 |
jmarsden | soccerGuy: I see nothing in those articles recommending running 32bit apache on 64bit Linux. | 05:10 |
jmarsden | OK, have fun :) | 05:10 |
infinity | soccerGuy: Anyhow. If you want to test 32-bit and 64-bit, I'd recommend testing a pure i386 install and a pure amd64 install. Doing anything bi-arch just to run a 32-bit apache will definitely never be a win. | 05:11 |
jmarsden | infinity: Agreed, but soccerGuy apparently doesn't have the RAM for doing both at once on his VPS :) | 05:11 |
soccerGuy | :-) | 05:12 |
soccerGuy | jmarsden, did you install any 32bits application by using that package, if you do please just give me an example, thats all i need | 05:12 |
soccerGuy | apache is big package, so i want to install dnsutils | 05:13 |
soccerGuy | in 32 bits | 05:13 |
jmarsden | soccerGuy: No -- you never provided me with the name of a 32bit-only application I could try out for you :) | 05:13 |
soccerGuy | can u give me command which i should run | 05:13 |
soccerGuy | dnsutils? | 05:14 |
jmarsden | dnsutils is available as a 64bit package. | 05:14 |
soccerGuy | apt-get install dnsutils install 64 bits | 05:14 |
soccerGuy | they have 32 bits too | 05:14 |
jmarsden | RIght. | 05:14 |
jmarsden | Yes. | 05:14 |
soccerGuy | how can i install 32 bits one | 05:14 |
jmarsden | If you are realy desperate, tweak your apt sources files to exclude the 64 bit one, I suppose. But this is a 100% pointless thing to be doing. | 05:15 |
infinity | You can't. | 05:15 |
infinity | We don't support multi-arch package installs. | 05:15 |
infinity | If you want random things compiled for i386 on an amd64 system, you get to build them yourself at this point. | 05:15 |
soccerGuy | according to ia32-apt-get, it can do this job, isnt it jmarsden? | 05:15 |
jmarsden | For packages which are in the 32bit world but NOT in the 64bit one, yes. | 05:16 |
jmarsden | You have not gfiven us the name of such a package yet. | 05:16 |
infinity | (You can dpkg --force-architecture, but it will drive apt insane later) | 05:16 |
soccerGuy | dnsutils isnt a package? | 05:16 |
jmarsden | It has a 64bit version. | 05:16 |
billybigrigger | ok i think i almost have my mailserver setup correctly using dovecot/postfix/ssl | 05:16 |
jmarsden | soccerGuy: You need to supply the name of something that is 32bit *only* for this to work. | 05:16 |
billybigrigger | i'm tailing my /var/log/mail.log and can see when i start thunderbird imap-login and it logs in my user...but i can't recieve mail | 05:17 |
soccerGuy | umm, jmarsden, I thought this ia32-apt-get can install 32 bits package eventough that package has 64 bits versoion, maybe i am wrong | 05:17 |
twb | soccerGuy: given the ridiculous number of filthy dependencies you seem to have, would it be easier for you to just run your proprietary ia32 app within a virtual environment? | 05:17 |
billybigrigger | i used to recieve regular mail on port 143, but now i'm trying to setup ssl so i forwarded 993 to my mailserver instead of 143, do i need to forward both ports? or just the ssl 993 port? | 05:18 |
jmarsden | twb: In 256MB total RAM in a VPS? Are you serious :) | 05:18 |
soccerGuy | I am already in virtual enviroment:-) | 05:18 |
twb | jmarsden: sorry, I didn't see those stats. | 05:18 |
twb | soccerGuy: then ask for a second VPS ;-P | 05:18 |
soccerGuy | haha twb | 05:18 |
twb | biarch is still a massive pain on apt/dpkg. | 05:18 |
twb | My usual policy is that if a stupid proprietary app wants, say, RHEL 4.2, then just give it that and leave it the hell alone. | 05:19 |
soccerGuy | yes twb, I am agree with you, but this package claim that it can figure out dependencies, thats why i am interested | 05:19 |
jmarsden | soccerGuy: ia32-apt-get is intended for (I think) cases where there is ONLY a 32bit version of something (say a flash plugin) ... if figures out the deps for that and grabs them for you. | 05:20 |
twb | soccerGuy: ia32-apt-get will be a hack; it certainly won't be perfect. This MUST be the case, because the underlying dpkg infrastructure doesn't support biarch properly. | 05:20 |
twb | soccerGuy: out of interest, what is this proprietary thing you're trying to install? | 05:21 |
jmarsden | twb: Scroll back... he wants to install 32bit apache because he thinks it will use less RAM... | 05:21 |
soccerGuy | jmarsden: you are making fun with me | 05:22 |
soccerGuy | :-) | 05:22 |
jmarsden | No, I'm serious.... you are asking us to help you do something that makes no sense at all. | 05:22 |
soccerGuy | I will prove you guys that is true once i install apache 32 bits on my server:-) | 05:22 |
jmarsden | As I said earlier, have fun :) | 05:23 |
soccerGuy | thanks guys | 05:23 |
soccerGuy | I will be digging | 05:23 |
twb | jmarsden: really? ahaha | 05:23 |
twb | jmarsden: I thought he wanted 32-bit apache because he was installing something else, like vmware-server, that wanted to run (say) a 32-bit mod_idiotic. | 05:24 |
jmarsden | Me too, at first... took a while for me to understand the reason behind the request. | 05:24 |
infinity | soccerGuy: If you're really that concerned about RAM usage, why aren't you just reinstalling the whole systrem as 32-bit? | 05:25 |
infinity | soccerGuy: (Still, the performance loss from dropping the amd64 extensions will cripple you far more than the extra RAM will help you, and I stand by that) | 05:25 |
soccerGuy | infinity: they only provide 64 bits | 05:26 |
infinity | soccerGuy: Yes, so? | 05:26 |
soccerGuy | I think I need to use chroot | 05:26 |
soccerGuy | so how can i install application 32 bits? | 05:27 |
infinity | soccerGuy: My colo host only provides CentOS. This doesn't stop me from debootstrapping Ubuntu, and doing a pivot_root install before I whack CentOS completely. :P | 05:27 |
soccerGuy | thanks for suggestion infinity | 05:27 |
soccerGuy | :-) | 05:27 |
infinity | *shrug* | 05:28 |
infinity | My contention is that if you don't understand bi-arch on Linux enough that you're asking the questions you are, what you're trying to do will only end in tears. | 05:28 |
infinity | But, I wash my hands of it, and intend to enjoy a long nap. :P | 05:28 |
soccerGuy | we will see infinity | 05:29 |
soccerGuy | we will see | 05:29 |
billybigrigger | im trying to setup SSL in Dovecot, now does the ssl_cert_file have to be a .pem file? while creating my keys it spit out a .crt and .key not a .pem | 05:43 |
jmarsden | billybigrigger: https://help.ubuntu.com/9.04/serverguide/C/dovecot-server.html | 05:56 |
billybigrigger | when i try to telnet localhost imaps i don't get * OK DOVECOT | 05:56 |
billybigrigger | jmarsden::: thanks bro, i'm reading the server guide | 05:56 |
jmarsden | telnet does not decrypt the SSL for you :) | 05:56 |
twb | Boo, telnet. Yay for netcat/socat | 05:56 |
billybigrigger | i can see in my logs, im logging in ok | 05:56 |
billybigrigger | Jun 11 22:54:01 alixandra dovecot: imap-login: Login: user=<billybigrigger>, method=PLAIN, rip=192.168.1.101, lip=192.168.1.103, TLS | 05:57 |
twb | jmarsden: he might be using it without SSL | 05:57 |
twb | Apparently not... | 05:57 |
billybigrigger | i created a self signed cert, pointed dovecot.conf to them in my /etc/ssl dir, enabled ssl, and enabled plaintext_auth | 05:57 |
billybigrigger | just like the guide says | 05:58 |
billybigrigger | forward my router from port 143 to 993 | 05:58 |
jmarsden | billybigrigger: Try openssl s_client -connect localhost:993 # instead of telnet | 05:58 |
billybigrigger | but i can't recieve mail, i can send mail, but im using my isp's smtp server for that, so never a problem there | 05:58 |
billybigrigger | booya | 05:58 |
billybigrigger | jmarsden::: that works good | 05:59 |
jmarsden | That's why I suggested it :) | 05:59 |
billybigrigger | hehe | 05:59 |
jmarsden | Now you can type IMAP commands at it to your hearts content to debug your IMAP server setup. | 05:59 |
* billybigrigger googles imap command | 06:00 | |
jmarsden | BTW if that works then you have working SSL certs already (they may be self signed, and not for your domain, etc etc but they are working for SSL at some very basic level of "Working". | 06:00 |
SuperSenior | Can I use python scripting to read and write files on Ubuntu Server 9.04? | 06:05 |
SuperSenior | well | 06:05 |
SuperSenior | working with apache of course | 06:05 |
SuperSenior | like using python in the cgi bin? | 06:05 |
billybigrigger | hmm | 06:06 |
billybigrigger | i can't seem to pass any imap commands | 06:06 |
billybigrigger | select BAD Error in IMAP command received by server. | 06:06 |
billybigrigger | list BAD Error in IMAP command received by server. | 06:06 |
jmarsden | If you don't understand the basics of IMAP why are you telnetting to an IMAP port in the first place? | 06:14 |
jmarsden | Just exit out and use whatever way of debugging your setup you are most comfortable with. | 06:14 |
jmarsden | You could use mutt or some other IMAP-capable email client if you prefer. | 06:16 |
billybigrigger | your losing me | 06:17 |
billybigrigger | im not an imap-guru :P | 06:17 |
jmarsden | Then don't try to telnet to the imap port and type IMAP commands in the first place... I didn't suggest that, you did it... | 06:18 |
jmarsden | Since the issue is not what you said it was (SSL cert files)... what *is* the actual problem? | 06:18 |
billybigrigger | i can't recieve mail | 06:18 |
jmarsden | What happens when someone sends you email -- how far does it get? Does it end up in your mailbox on the server? | 06:19 |
billybigrigger | no | 06:19 |
billybigrigger | im assuming its being bounced back | 06:19 |
jmarsden | assuming is bad. Where can I send a test email to that you think should reach you? | 06:20 |
billybigrigger | billybigrigger@thefrozencanuck.ca | 06:20 |
billybigrigger | i can send email from this pc to my hotmail account fine | 06:20 |
billybigrigger | but sending from hotmail, the mail hasn't shown up yet, it's been a good hour atleast | 06:20 |
billybigrigger | i shouldn't have to screw with my mx record should i? | 06:21 |
jmarsden | You are not troubleshooting all that well, it would seem. I just sent you a test and my server logs show: Jun 11 22:20:44 eclipse5 postfix/smtp[16633]: 0B1895685EA: to=<billybigrigger@thefrozencanuck.ca>, relay=thefrozencanuck.ca[68.146.139.247]:25, delay=4.5, delays=0.01/0.04/2.9/1.6, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as DD185916E9) | 06:21 |
jmarsden | So you received it fine, it is somewhere on the server at IP address 68.146.139.247 . | 06:22 |
billybigrigger | well then it must be somewhere else, i have been in the process of switching the mailserver from one pc to another | 06:22 |
billybigrigger | yeah | 06:22 |
billybigrigger | i have 2 mailservers behind that router | 06:22 |
billybigrigger | i've pointed the ports from cabo:143 to alixandra:993 | 06:22 |
billybigrigger | since the new server is using ssl | 06:22 |
billybigrigger | and the old one had no auth, just plaintext | 06:22 |
billybigrigger | which worked fine... | 06:22 |
jmarsden | WHich server is listening on port 25 on 68.146.139.247 | 06:23 |
billybigrigger | bah, my bad | 06:23 |
billybigrigger | i forward the wrong port, i forwarded apache to alixandra not smtp | 06:24 |
billybigrigger | smtp was forwarded to the old server | 06:24 |
jmarsden | When you fix that tell me and I'll send you another test email. | 06:25 |
billybigrigger | k | 06:26 |
billybigrigger | done a few minutes ago.... | 06:26 |
billybigrigger | now when i send from hotmail i get a Relay access denied | 06:26 |
billybigrigger | same with your test email | 06:26 |
billybigrigger | may i paste your email address here? | 06:27 |
jmarsden | Right, now my logs show: Jun 11 22:26:45 eclipse5 postfix/smtp[15577]: 106E15692DD: to=<billybigrigger@thefrozencanuck.ca>, relay=thefrozencanuck.ca[68.146.139.247]:25, delay=1.7, delays=0.01/0/1.3/0.45, dsn=5.7.1, status=bounced (host thefrozencanuck.ca[68.146.139.247] said: 554 5.7.1 <billybigrigger@thefrozencanuck.ca>: Relay access denied (in reply to RCPT TO command)) | 06:27 |
billybigrigger | hmmm | 06:27 |
billybigrigger | well i have smtp relay setup to my isp | 06:27 |
jmarsden | So your postfix config is in need of adjustment regarding smtpd_recipient_restrictions, I would think. | 06:28 |
billybigrigger | but i thought i had that configured for outgoing email.... | 06:28 |
jmarsden | smtp relay is when *you* send... | 06:28 |
billybigrigger | ya thats what i thought | 06:28 |
jmarsden | Your MX points to your server IP at 68.146.139.247 | 06:28 |
jmarsden | So fix postfix on that server to allow me to send you email :) | 06:28 |
billybigrigger | well i see smtpd_recipient_restrictions = reject_unknown_sender_domain, reject_unknown_recipient_domain, | 06:30 |
billybigrigger | and some more | 06:30 |
billybigrigger | why would a default config reject unknown sender domain? | 06:30 |
jmarsden | That's unlikely to be the problem... read the docs to understand what each restriction really does. | 06:31 |
jmarsden | You may want to check your myorigin and mydestination lines in /etc/postfix/main.cf ? | 06:32 |
billybigrigger | myorigin = /etc/mailname | 06:33 |
billybigrigger | mydestination = alixandra, localhost.localdomain, localhost, $mydomain | 06:33 |
billybigrigger | seems ok | 06:33 |
ScottK | billybigrigger: To answer your reject unknown sender domain question: http://www.postfix.org/postconf.5.html#reject_unknown_sender_domain | 06:34 |
ScottK | billybigrigger: Is $mydomain your actual domain or is that literally what is. | 06:35 |
billybigrigger | this doesn't make sense, i've copied the postfix/dovecot configs over from a working server, and changed the forwarded ports to the correct pc... | 06:35 |
billybigrigger | no $mydomain was in there already | 06:35 |
jmarsden | billybigrigger: What does hostname -d say ? | 06:35 |
billybigrigger | i just added alixandra | 06:35 |
jmarsden | So far we are missing your actual domain name :) | 06:36 |
billybigrigger | cg.shawcable.net | 06:36 |
billybigrigger | ahh | 06:36 |
jmarsden | That's not the same thing as thefrozencanuck.ca ... so fix your poxyfix config so I can send email to you ... | 06:36 |
jmarsden | s/poxyfix/postfix/ | 06:36 |
billybigrigger | try now | 06:36 |
jmarsden | Nope., still relay denied. What did you change and did you reload afterwards? | 06:37 |
billybigrigger | added alixandra.cg.shawcable.net to mydomains and restarted postfix | 06:39 |
jmarsden | You asked me to send to billybigrigger@thefrozencanuck.ca. So thefrozencanuck.ca needs to be one of the domains you accept email for... and it still isn't. | 06:40 |
billybigrigger | try now | 06:40 |
jmarsden | OK, you got it. Can you see it? | 06:41 |
billybigrigger | sent you a reply | 06:42 |
billybigrigger | that's really odd.... | 06:42 |
billybigrigger | im going to check the config for the old mailserver | 06:42 |
billybigrigger | myorigin = /etc/mailname | 06:43 |
billybigrigger | mydestination = alixandra, localhost.localdomain, localhost, $mydomain | 06:43 |
billybigrigger | thats from my oldserver | 06:43 |
billybigrigger | and incoming mail worked perfectly fine | 06:43 |
jmarsden | On the old server, hostname -d # says what? | 06:43 |
billybigrigger | nothing | 06:45 |
billybigrigger | haha | 06:45 |
jmarsden | Strange. Somewhere on that server, either in /etc/mailname or in the hostname you must have thefrozencanuck.ca for it to have worked. | 06:46 |
billybigrigger | hmmm | 06:46 |
billybigrigger | i don't recall setting that | 06:46 |
billybigrigger | but yes your right | 06:46 |
jmarsden | But you received email over SMTP into that server for user@thefrozencanuck.ca on it? Well, anwyay... now you have a working email server. | 06:47 |
ScottK | What about hostname -f? | 06:47 |
billybigrigger | cabo | 06:51 |
SuperSenior | is there any ghosting software preinstalled on ubuntu server? | 07:01 |
jmarsden | The dd command could be considered ghosting software, I suppose? | 07:04 |
jmarsden | dd if=/dev/sda of=/dev/sdc # will do an image copy of disk sda to disk sdc, for example | 07:05 |
uvirtbot | New bug: #375149 in tomcat6 "tomcat6 needs debug start mode with jpda (dup-of: 375493)" [Undecided,New] https://launchpad.net/bugs/375149 | 07:31 |
=== pschulz01 is now known as pschulz01_away | ||
snori74 | postfix logs - what rotates them? doesn't seem to be logrotate -(8.04) | 10:54 |
snori74 | hmm, found the info - in Debian/Ubuntu its syslog, not logrotate that does it for mail.log (see: http://www.ducea.com/2006/06/06/rotating-linux-log-files-part-1-syslog/) | 11:09 |
=== pschulz01_away is now known as pschulz01 | ||
peter_ | Hi, iam having 300sec delay on *some* session_start() calls in php5 using ubuntu server (virtual esx setup). Any clues? :/ I am lost on this one | 12:03 |
peter_ | never had this problem on our non-virtual debian box | 12:04 |
drurew | could someone take a look at this and hit me with ideas of how this could happen ? thanks http://paste.ubuntu.com/194251/ | 12:04 |
drurew | anyone | 12:12 |
drurew | ? | 12:12 |
Appiah_ | I've got a problem with pam_mkhomedir , it does not seam to create a homedir with pam_mount using NFS | 12:18 |
Appiah_ | I have no idea on how to debug either , i entered debug in pam-session but cant see anything about pam_mkhomedir | 12:18 |
ssm | Appiah_: pam_mkhomedir and NFS sounds tricky. I'd use autofs to mount, but I'd also use something other than pam_mkhomedir to make the actual directories | 12:37 |
Appiah_ | well in pam_mount.conf.xml it does say <mkmountpoint enable="1" remove="true"> | 12:39 |
Appiah_ | I think it's using pam_mkhomedir? either way none of them seams to work | 12:39 |
cankoy | drurew: apparently hwaddress line in interfaces is not working. And udev seems confused. Do you see any anomalies in kernel log? | 12:41 |
drurew | cankoy:http://paste.ubuntu.com/194285/ | 12:46 |
drurew | cankoy:Please complain to your hardware vendor. Switching to a random MAC. | 12:46 |
drurew | Please complain to your hardware vendor. Switching to a random MAC. | 12:46 |
soren | peter_: Oh, hi :) | 12:52 |
soren | peter_: Anders just mentioned your name a minute ago and here you are :) | 12:52 |
soren | peter_: 300s timeout sounds suspiciously like a DNS thing. | 12:52 |
peter_ | soren: hi, thanks. and happy birthday :) | 12:53 |
cankoy | drurew: I guess a new eth interface is created everytime MAC is changed (check with 'ifconfig -a'). You need to find a way to stop that, specifically forcedeth driver seems to be the problem. | 12:54 |
soren | peter_: HAhah :) Thanks :) | 12:54 |
drurew | http://xfliu.blogspot.com/2007/08/linux.html found that | 12:56 |
drurew | im gonna source a driver | 12:56 |
drurew | wish me luck | 12:56 |
drurew | :) | 12:56 |
cankoy | drurew: that looks quite old, I suggest you search ubuntuforums, launchpad bug reports, etc before patching a kernel module. | 13:01 |
drurew | you right | 13:02 |
drurew | cankoy: undoing a mac spoofing .... this is gonna be hard | 13:07 |
sommer | kirkland: sure, I'll add something to the virt section | 13:36 |
al_paun | Hi. Does anyone know how to split a internet connection let's say ip's from 192.168.1.2-192.168.1.20 to have 30% from bandwidth and rest 70% | 14:04 |
al_paun | ? | 14:04 |
magnetic | al_paun: using traffic shaping? | 14:09 |
Ng | would we expect kvm to work on 8.04? | 15:27 |
Ng | I'm starting a guest directly and kvm just seems to chomp 100% CPU and not really do anything | 15:27 |
Ng | huh, having said that, it appears to do very much the same thing on karmic | 15:32 |
ar | Hi | 16:36 |
Kirill_ | I need to have a PHP file exectuted every 10 seconds. Is the best way to do that to write a script that runs 5 times and sleeps 10 seconds at every iteration and then have a cron job run that script every minute? The script downloads a bunch of xml files and stores them locally | 16:44 |
ivoks | i'd do it with cron | 16:44 |
mathiaz | ivoks: does cron support 10 seconds run? | 16:45 |
mathiaz | ivoks: hi btw | 16:45 |
Kirill_ | mathiaz: nope, 1 minute | 16:45 |
Kirill_ | ivoks: 1 minute is the lowest denominator :( | 16:45 |
mathiaz | ivoks: IIRC cron only support the minute granularity | 16:45 |
ivoks | hi | 16:45 |
ivoks | oh, 10 seconds... right.. sorry :) | 16:46 |
Kirill_ | is it worth looking into writing a daemon? | 16:49 |
ivoks | well, technicaly, it's doable with cron :) | 16:49 |
ivoks | but that would be a wicked hack, not a solution | 16:50 |
Hecate | man cron: cron then wakes up every minute, examining all stored crontabs, checking each command to see if it should be run in the current minute. | 16:51 |
ivoks | right | 16:51 |
ivoks | so: | 16:51 |
ivoks | * * * * * sleep 1; do_somethinw | 16:52 |
ivoks | * * * * * sleep 2; do_something | 16:52 |
ivoks | * * * * * sleep 3; do_something | 16:52 |
ivoks | ... | 16:52 |
ivoks | would be a wicked hack :) | 16:52 |
Kirill_ | ivoks: are you using "wicked" as a positive is? :P | 16:52 |
Hecate | i think forking a script into background that uses an infinite loop and a sleep(10) which thus executes your command every ten seconds, would kill much less performance. | 16:53 |
Kirill_ | Hecate: thanks I'll look into it! :) | 16:56 |
Kirill_ | ivoks: if I can't get that script working I'll use that, thank you :) | 16:56 |
ivoks | :) | 16:56 |
Hecate | you're welcome | 16:57 |
troglobyte | i did the "encrypt home directory" on install of Server 9.04. Is there a way to back out of that with out re-installing? | 17:58 |
troglobyte | I found this: http://ubuntuforums.org/showthread.php?t=1135796 | 17:58 |
troglobyte | but want to confirm before I really break something | 17:59 |
mathiaz | jdstrand: hey - who sponsored ufw to debian? | 18:04 |
jdstrand | mathiaz: kees | 18:05 |
jdstrand | kees is my man ;) | 18:05 |
* jdstrand waves to kees | 18:05 | |
mathiaz | jdstrand: when was the first release of ufw available in Ubuntu? hardy? | 18:06 |
jdstrand | mathiaz: yes. See https://wiki.ubuntu.com/UbuntuFirewall for versions in Ubuntu | 18:06 |
jdstrand | (and other stuff) | 18:07 |
mathiaz | jdstrand: great - thank ya | 18:08 |
jdstrand | np | 18:08 |
maxb | troglobyte: *FIRST* you need to copy all your data out of the encrypted area, then ensure the user is not logged in, so that the encrypted layer is unmounted, and "mv .ecryptfs .ecryptfs_disabled" (as root, obviously) - "Le Rob" misspelt the name of the thing. Take note that some of the files required to mount private area are in fact stored in /var/lib/ecryptfs/USERNAME (to which ~/.ecryptfs is a symlink) | 18:10 |
troglobyte | maxb, appreciate it! | 18:13 |
diffra | stupid question about encrypted home dirs -- does root have access to them? | 18:14 |
ivoks | not if user isn't loged in | 18:14 |
maxb | but yes, when they are | 18:15 |
dinger1986 | has anyone ever heard of an opensource timesheet program | 18:15 |
Sam-I-Am | jmedina: you around? | 18:33 |
jmedina | Sam-I-Am: yeap | 18:33 |
Sam-I-Am | so i've figured out that using launchpad PPAs is near impossible | 18:34 |
Sam-I-Am | they dont allow binary uploads | 18:34 |
ivoks | lol | 18:34 |
ivoks | point of ppa is to build source | 18:34 |
Sam-I-Am | it makes my dependencies a huge mess which means each thing i'm building almost needs its own PPA | 18:34 |
Sam-I-Am | ivoks: i viewed it as a place to host source and binary packages | 18:35 |
Sam-I-Am | not compiled somewhere else where i can't monitor exactly how they're getting built | 18:35 |
Sam-I-Am | for example, i had to manually install some libraries (.deb) from jaunty on hardy... i didnt build them, they just installed fine. | 18:35 |
Sam-I-Am | however, launchpad wont know what to do | 18:36 |
Sam-I-Am | so it looks like i also need to build all those libraries | 18:36 |
Sam-I-Am | i build in chroots so my packages don't wind up having interdependencies... which means i'll need to upload all the same source dependencies for everything i'm building (or something like that) | 18:36 |
Sam-I-Am | jmedina: so if you want these packages either it'll have to wait until i can wrangle launchpad into working... or i'll put up a web server and you can just grab them there. | 18:37 |
infinity | Sam-I-Am: Having hardy packages depend on binaries from jaunty kinda defeats the whole purpose of a PPA. If you need to backport jaunty versions to make it work, then do that in the PPA as well. | 18:40 |
Sam-I-Am | infinity: thats what its looking like | 18:40 |
infinity | (Nevermind defeating the purpose of a PPA, having an older suite depend on a newer one defeats the purpose of suites...) | 18:40 |
Sam-I-Am | well, for example, theres no libcap2 in hardy | 18:40 |
Sam-I-Am | but the jaunty one installs fine | 18:40 |
infinity | And what's wrong with building against libcap1? | 18:41 |
infinity | I suspect it's just a matter of s/libcap2-dev/libcap-dev/ in your Build-Depends, and boom, it builds on hardy. | 18:42 |
Sam-I-Am | well, some things work like that | 18:42 |
Sam-I-Am | an example of one that doesnt is samba and openldap | 18:43 |
Sam-I-Am | they hork with older libraries | 18:43 |
infinity | Things that don't work like that require backporting either the code to work with older libraries, or the newer libraries to the older suites, yes. | 18:43 |
infinity | Again, that's kinda the point. | 18:43 |
infinity | Telling me that I can only use my 2003 car with gas released in 2006 isn't helpful. :) | 18:43 |
Sam-I-Am | i try to minimize backporting dependencies | 18:44 |
Sam-I-Am | thats why i'm using chroots... so something that builds find against oldlibversion doesnt magically find newlibversion and compile against it. | 18:44 |
Sam-I-Am | just talked with some folks in #launchpad ... think i figured out how i need to work this... might just be more complex than initially determined. | 18:48 |
maxb | Installing binaries built for jaunty into a hardy system is somewhat dodgy. Sometimes it'll work, yes, but each case needs careful individual verification | 18:55 |
Sam-I-Am | i usually test those first | 18:56 |
Sam-I-Am | its few and far between | 18:56 |
maxb | Generally people prefer to rebuild the jaunty source in a hardy environment (with a suitably ~suffixed version number) | 18:56 |
Sam-I-Am | yeah thats the majority of what i'm doing | 18:57 |
Sam-I-Am | except for 2 libs i just slurped from jaunty | 18:57 |
Sam-I-Am | i'll just build them from src | 18:57 |
Sam-I-Am | its just more chroots for me | 18:57 |
maxb | Do ensure you ~suffix the version even if you make no other changes | 18:57 |
maxb | Why is it more chroots? | 18:57 |
Sam-I-Am | i build every package in its own chroot | 18:58 |
maxb | why? | 18:58 |
Sam-I-Am | so it wont accidentally start depending on something it shouldnt | 18:58 |
maxb | You are aware of pbuilder, right? | 18:58 |
Sam-I-Am | like openldap for example... even if you tell it to build against gnutls, it'll toss openssl in its dependencies if the openssl dev libs happen to be there | 18:59 |
Sam-I-Am | i've heard of it... but i usually use dpkg-buildpackage | 18:59 |
maxb | You *really* want to invest the time to learn pbuilder | 18:59 |
Sam-I-Am | i build openssl against gnutls and also openssl... so those live in two different chroots | 18:59 |
Sam-I-Am | mmkay... i'll have a look at it | 19:00 |
Sam-I-Am | thanks for the tip | 19:00 |
Sam-I-Am | might simplify life :) | 19:00 |
Sam-I-Am | time for a meeting | 19:00 |
maxb | With pbuilder, you have *one* chroot per distroseries, and it installs the appropriate packages as specified by the packages Build-Depends for each build | 19:00 |
ivoks | i hate when someone doesn't even answer when you offer him help | 19:08 |
billybigrigger | can anyone here suggest a good looking, but lightweight wembail client, my server is an old pos :P | 20:05 |
billybigrigger | like 166mhz 98mb ram :P | 20:05 |
Sam-I-Am | webmail... client? | 20:08 |
Sam-I-Am | isnt that a web browser? | 20:08 |
billybigrigger | well yeah, but you need a webmail client for postfix, to be able to view it with your browser | 20:09 |
jmedina | that is really old machine | 20:14 |
billybigrigger | lol yes it is | 20:14 |
jmedina | that machine wastes a log of energy, you better drop it | 20:14 |
billybigrigger | my dad donated it to me, i had no idea how long it was sitting in his basement :P he said it hadn't been turned on in 2 or 3 years | 20:15 |
jmedina | *lot | 20:15 |
billybigrigger | i have a decent energy efficient 380w psu, amd x2 5000 cpu, 2gb ddr2 800 ram, and 2 raid disks for a new server... | 20:15 |
billybigrigger | just no case or am2 motherboard :( | 20:16 |
billybigrigger | and broke as a joke right now... | 20:16 |
billybigrigger | i was using my desktop to multi-task as a desktop/server running apache, mysql, postfix/dovecot and doubling as a desktop though just doesn't work | 20:16 |
billybigrigger | so this pold pentium will have to do for now :P serves my mail fine :P | 20:17 |
billybigrigger | but you are right about the energy consumption | 20:17 |
drurew | need an http web admin interface for a debian vps, any sujestions? | 20:29 |
jmedina | drurew: what kind of VPS? | 20:30 |
drurew | jmedina: virtual debian (from hosteurope.de) | 20:31 |
drurew | im a server noob | 20:31 |
drurew | :) | 20:31 |
jmedina | I dont know that "virtual debian" means, there is a log of virtualization products and... | 20:32 |
jmedina | drurew: so what do you want to admin from that web ui? | 20:32 |
drurew | jmedina: yeah, id like to be able to create accounts, admin mail etc | 20:33 |
jmedina | mmm | 20:33 |
jmedina | so you already have a mail system? | 20:34 |
drurew | jmedina: yeah, mail is setup, however id like to be able to admin a few different mail accounts for some friends to be able to host pages and junk | 20:36 |
drurew | :) | 20:36 |
drurew | jmedina: also things like setting up my domain etc as well as general apache2 configuration is blowing my mind | 20:37 |
jmedina | I dont know anything that does that | 20:38 |
jmedina | most web uis works for a specific configuracion | 20:38 |
jmedina | probably you can install ebox | 20:38 |
jmedina | !ebox | 20:38 |
ubottu | ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox | 20:38 |
drurew | mainly , just needing an http interface so people can login with their accounts and set things up, yeah ebox, isnt that a dist tho ? | 20:38 |
jmedina | nop, you can install packages | 20:39 |
drurew | how would sftp hold up against ebox? | 20:39 |
jmedina | dont know | 20:40 |
jmedina | I dont use ebox | 20:40 |
drurew | is it compareable? | 20:40 |
jmedina | to what | 20:42 |
drurew | ebox | 20:46 |
drurew | why dont i just install both :) | 20:46 |
billybigrigger | jmedina::: is it possible to install a virtual server os somewhere, and then make an image of it? so i can run the virtual server on this desktop, and in the future when im ready with my new server, to burn an image of the virtual server and have it up and running on the new server already configured? | 20:46 |
drurew | hey im trying to install ebox on my server, apt-get /aptitude wont let me install it because there is no verification key for the launchpad site, how do i manually add a verification key (via terminal of course) ? :) | 21:25 |
diffra | hint: apt-key add should be your friend there, but i don't know the exact instructions | 21:27 |
MaxMax | Hey guys got a question on deploying ubuntu client in a server envoirment can anyone help or am i in the wrong place | 21:28 |
tomsdale | it's a little less traffic in here - just ask your question for the naming convention and if someone knows they will reply | 21:30 |
MaxMax | ok thanks man appreciate it | 21:30 |
MaxMax | I was wondering on the following | 21:30 |
MaxMax | does Ubuntu support "UPN" for user ID"s that is a log in name of something like j.smith@123.come etc | 21:31 |
drurew | hashing it out again maxmax | 21:31 |
drurew | ? | 21:31 |
MaxMax | well yea, Tomsdale suggested i try here | 21:32 |
MaxMax | :) | 21:32 |
MaxMax | I had not got a real answer as of yet so trying again | 21:32 |
drurew | http://adsearch-winzero.blogspot.com/2007/10/userprincipalname-user-principal-name.html | 21:34 |
drurew | !upn | 21:34 |
ubottu | Sorry, I don't know anything about upn | 21:34 |
infinity | MaxMax: What problem are you trying to solve here? Mass virtual hosting? | 21:34 |
drurew | login via upn | 21:35 |
MaxMax | hi | 21:35 |
MaxMax | I want to use UPN names for users to log into a ubuntu workstation | 21:36 |
drurew | MaxMax: http://blog.scottlowe.org/tag/unix/ | 21:36 |
MaxMax | checking | 21:36 |
infinity | Oh, probably would have been helpful if you'd mentioned something about Active Directory in your original question. :) | 21:39 |
MaxMax | Well its not really AD related | 21:40 |
infinity | UPN is an AD attribute. | 21:40 |
MaxMax | Yes it is, but | 21:41 |
MaxMax | on say an XP box I can create a user account using UPN type name and not have that box as part of a AD domain. | 21:41 |
MaxMax | just have it as a stand alone Workstation | 21:42 |
MaxMax | thats wht I was trying to get ubuntu to do | 21:42 |
MaxMax | there are two parts. | 21:42 |
MaxMax | The client OS has to support UPN's if that client is ever to talk to a AD server | 21:43 |
jamesrfla | would this be a good place to ask a question regarding apache and mailman? | 21:43 |
infinity | MaxMax: Well, yes and no. When you start enabling all the AD-required bits, they somewhat take over the classic authentication and authorization methods that a UNIX/Linux system would use. | 21:44 |
infinity | MaxMax: By default, with passwd-style shadow auth, UPN usernames would be illegal. | 21:44 |
MaxMax | aH i SEE | 21:44 |
MaxMax | I think you have found the problem infinity | 21:45 |
MaxMax | So it looks like the OS does not support this | 21:45 |
MaxMax | I bet that goes back to the 70's when bell labs created unix, | 21:47 |
MaxMax | So its more a unix problem than a ubuntu problem, really on in the same but beyond your control at the moment | 21:48 |
MaxMax | one ^ | 21:48 |
infinity | MaxMax: Well, like I said, if you install and configure all the samba-related bits required to make your machine behave as an AD client, you can certainly get UPN passthrough auth to an AD master. | 21:49 |
infinity | MaxMax: But, other than "being like Windows", there's no particularly valid reason why the underlying system needs to support usernames like that. | 21:49 |
MaxMax | Yes you can, but the problem is you have to use two seperate user id's | 21:49 |
MaxMax | you will use a user id of say 123 for logging into the os and then another to auth on the smb enabled share | 21:50 |
MaxMax | no reason you got to be kidding ? | 21:50 |
MaxMax | I beg to differ, | 21:51 |
MaxMax | let me explain. | 21:51 |
MaxMax | For a home user UPN names dont ammount to a hill of beans for logging into your workstation be it windows or unix its a non issue. now.... | 21:52 |
MaxMax | if you work for a company or corporation typically they have IT standards for certain things. One of our standards is how user names are specified. in our case the users use their e-mail address to log in , like m.hello@123,com etc | 21:53 |
MaxMax | this means that users can simply log in with one user id and have access to all resources they are allowed to access | 21:54 |
MaxMax | In the corporate world this is a huge deal | 21:55 |
MaxMax | again home user its a non issue | 21:55 |
mathiaz | MaxMax: why don't you just use the login part (ie the user principal)? | 21:55 |
mathiaz | MaxMax: if you setup kerberos correctly on an Ubuntu system, kerberos will autoamtically appends the realm to your login | 21:56 |
MaxMax | Yes that will work but its not the same as the standard so hence its not do-able | 21:56 |
MaxMax | well let me put that another way. The up part would be SAY J.SMITH but ubuntu dont like the . period in the name | 21:57 |
MaxMax | it cant be used | 21:57 |
MaxMax | so the up prat does not work either | 21:57 |
MaxMax | so j.smith does not work or j.smith@123.com dont work | 21:58 |
MaxMax | jsmith would work ok but thats not standard | 21:58 |
MaxMax | I appreciate you guys taking the time to analyze this with me | 21:59 |
MaxMax | My buddy works for motorola here in the USA.. they had the same problem as I do in trying to deploy ubuntu into a corporate envoirement | 22:00 |
infinity | MaxMax: Mapping logins to unix user IDs can be done transparently with the samba PAM modules, AFAIK. | 22:01 |
infinity | MaxMax: There's no reason the GDM screen can't accept a "UPN", shove that to PAM, then have it translated to a different local username. | 22:01 |
infinity | MaxMax: If your users care deeply about what username shows up under "ps axu", then they really don't want to see how Windows represents it all internally. | 22:02 |
MaxMax | It does not have anything to do with samba Infinity Samba emulates MS SMB Protocol. Samba does not do auth in a AD envoirment | 22:02 |
MaxMax | Samba is similar to NT Lanman server thats legacy stuff dating back to nt4 win 3.1 etc | 22:03 |
infinity | MaxMax: No, but samba ships with some PAM modules to ease this sort of pain. | 22:03 |
infinity | In the end, what you're really looking for here is PAM glue. | 22:03 |
infinity | Because, you'll never have local user accounts that look the way you want. | 22:03 |
MaxMax | pam glue ? humm whats that I had not heared of it | 22:03 |
infinity | But local accounts don't matter, it's what the user types to login that matters to you. | 22:03 |
MaxMax | no local accounts do matter. they have to be able to use upn or j.smith for local login excluding any networking | 22:04 |
infinity | Local login != local accounts. | 22:05 |
infinity | "Local account" is just what you see in "ps" or when typing "whoami". And has very little to do with what you typed to authenticate to PAM. | 22:05 |
MaxMax | ok | 22:05 |
MaxMax | well what i need then is for the os to accept local accounts that use upn and for pam to accept this also | 22:06 |
infinity | I'm stuck on a tiny terminal right now, upgrading my laptop, so web browsing's a bit of a non-starter, but I'd recommend searching for things like "PAM Active Directory UPN" and seeing what you can come up with from people who've been here before. | 22:07 |
MaxMax | I have done a fair number of searches, it looks like all flavors of linux has the same problems | 22:08 |
MaxMax | Perhaps the issue really come down to the actual nix core in that this was never given a high priority from a update standpoint | 22:09 |
MaxMax | hence the pain in deployment | 22:09 |
jmedina | what is "upn"? | 22:11 |
MaxMax | UPN = Universal Principal Name | 22:11 |
jmedina | MaxMax: o_O, what are they used for? | 22:12 |
MaxMax | I would really love to be able to deply a few WS's but gosh so many road-blocks, it makes things a bit tough | 22:12 |
jmedina | kerberos? | 22:13 |
MaxMax | the term comes from AD active directory | 22:13 |
mathiaz | MaxMax: have you looked at likewise-open? | 22:13 |
MaxMax | a upn name looks like your e-mail address | 22:13 |
MaxMax | Likewise is total Junk :) | 22:14 |
MaxMax | been there it does not work as documented | 22:14 |
mathiaz | MaxMax: why? - it seems to solve the issue of integrating linux systems in AD for authentication | 22:14 |
MaxMax | well not really, if you use likewise to auth to AD your still going to have to use a different user id to log into you nix workstation | 22:15 |
MaxMax | I dont believe Likewise is even using upn names to pass to the AD controller its just using the first part of the name which would be supporetd via AD | 22:16 |
MaxMax | like accessing a network resource with like \\123 as opposed to \\123.net etc | 22:17 |
MaxMax | but likewise is not my issue | 22:17 |
MaxMax | the issue is that I cannot create a user accont with a UPN name | 22:18 |
MaxMax | If i can get past this point I will be good to go in getting some WS's deployed | 22:20 |
Sam-I-Am | maybe you're thinking about realms | 22:20 |
Sam-I-Am | user@realm | 22:20 |
Sam-I-Am | smells like kerberos | 22:20 |
MaxMax | no nothing to do with it | 22:20 |
daxroc | evening all | 22:21 |
MaxMax | hi | 22:21 |
MaxMax | let me explain | 22:21 |
MaxMax | Suppose you have a XP pc. On that xp pc you can create a user called j.monk@123.local | 22:21 |
daxroc | Are there any tools to monitor LSI hardware raid ( megaraid_mbox, megaraid_mm) | 22:22 |
MaxMax | I am trying to create a user on ubuntu that is the same as what I do on xp | 22:22 |
MaxMax | this would be a local user account | 22:22 |
Sam-I-Am | i have users here authenticating to ad with first.last format usernames... but not local users. | 22:22 |
Sam-I-Am | dont see why it wouldnt let you... | 22:23 |
MaxMax | if you could try create an account like j.smith@123.local on your ubuntu box and let me know if it works that would be real helpfull | 22:24 |
Sam-I-Am | matt.test:x:1001:1001::/home/matt.test:/bin/sh | 22:24 |
Sam-I-Am | there | 22:24 |
Sam-I-Am | worked here | 22:24 |
Sam-I-Am | adduser gets pissy unless you change the regex for valid usernames | 22:24 |
Sam-I-Am | but useradd works fine | 22:24 |
MaxMax | from the gui ? | 22:24 |
Sam-I-Am | no, from a terminal | 22:24 |
Sam-I-Am | probably runs the same script though | 22:24 |
MaxMax | try it from the gui | 22:24 |
MaxMax | like try m.test@123.net as a user id | 22:25 |
Sam-I-Am | i dont have a gui on my machines | 22:26 |
uvirtbot | New bug: #377627 in openssh (main) "package openssh-client 1:5.1p1-5ubuntu1 failed to install/upgrade: subprocess post-installation script killed with signal (segmentation fault)" [Undecided,New] https://launchpad.net/bugs/377627 | 22:26 |
maw | y0 | 22:26 |
Sam-I-Am | but theres probably a config file somewhere that tells it a list of valid formats | 22:26 |
jmedina | ubuntu server esont have GUI | 22:26 |
jmedina | doesnt | 22:26 |
MaxMax | well I was talking about the ubuntu client | 22:26 |
Sam-I-Am | look at /etc/adduser.conf | 22:26 |
maw | are there docs to show how to merge packages in the repositories? For example, if I want to test/contribute to the repositories? | 22:26 |
maw | not sure how to do that | 22:26 |
MaxMax | it dont work here | 22:27 |
Sam-I-Am | the regex is in there | 22:27 |
MaxMax | the . and @ are not supported | 22:27 |
Sam-I-Am | maw: google for contributing to ubuntu. if its an existing package you'd probably need to join the maintainers. | 22:27 |
Sam-I-Am | if its a new package then you have to go through a bit to get it in the distro first | 22:27 |
maw | ah | 22:28 |
Sam-I-Am | in the meantime you can use PPAs on launchpad.net | 22:28 |
maw | well it is Snort | 22:28 |
maw | it is already there | 22:28 |
Sam-I-Am | what are you changing? | 22:28 |
maw | but the version in the repo is not supported | 22:28 |
maw | I just want the new version updated | 22:28 |
maw | not sure who owns that task | 22:28 |
MaxMax | sam If you are able to create a user like that on the server will it allow you to login to that account ? | 22:28 |
maw | I emailed the maintainer list | 22:28 |
maw | and updated the launchpad bug | 22:28 |
Sam-I-Am | is there a newer version in a more recent release? | 22:28 |
maw | https://bugs.launchpad.net/ubuntu/+source/snort/+bug/281014 | 22:29 |
uvirtbot | Launchpad bug 281014 in snort "Please merge snort 2.8.4.1-1 (universe) from Debian experimental (main)" [Wishlist,Confirmed] | 22:29 |
Sam-I-Am | you can do a non-maintainer upload for the package usually | 22:29 |
Sam-I-Am | the maintainers will look at it | 22:29 |
* maw is Chris (in that posting) | 22:29 | |
Sam-I-Am | alternatively just build your own :) | 22:29 |
maw | ya... | 22:29 |
maw | if there is no action | 22:29 |
maw | I will remove the repo version | 22:29 |
maw | and compile from source | 22:29 |
Sam-I-Am | or you can just install the debian package | 22:29 |
Sam-I-Am | if its updated | 22:30 |
maw | debian is usually a lot slower to update things :P | 22:30 |
Sam-I-Am | so you want it to go from debian to ubuntu... | 22:30 |
mathiaz | maw: look at https://wiki.ubuntu.com/UbuntuDevelopment/Merging | 22:30 |
maw | no.. someone else suggested that | 22:30 |
maw | thanks amt | 22:30 |
maw | mathiaz | 22:30 |
Sam-I-Am | if you can install and test it on ubuntu karmic then tell the maintainers it'll be a little quicker in moving there. | 22:30 |
maw | I am using 8.04 LTS... so that would be the platform I would test on | 22:31 |
Sam-I-Am | you wont get a new package added to LTS | 22:31 |
Sam-I-Am | *maybe* in backportsd | 22:31 |
mathiaz | maw: merges are only relevant to the developement release (karmic these days) | 22:31 |
maw | is this considered a new package? | 22:31 |
Sam-I-Am | its not a security fix | 22:31 |
maw | ah I see | 22:31 |
Sam-I-Am | so it wont hit an old release | 22:31 |
Sam-I-Am | it'd go in karmic.. but nothing stops you from installing it in hardy | 22:32 |
mathiaz | maw: new versions are not available for stable releases | 22:32 |
Sam-I-Am | i backport crap all the time | 22:32 |
Sam-I-Am | from whatever to hardy LTS | 22:32 |
maw | ok | 22:32 |
maw | I was mostly interested in the process, mathiaz provided the link for me | 22:32 |
mathiaz | maw: you could work on getting a backport accepted and published: https://help.ubuntu.com/community/UbuntuBackports | 22:32 |
maw | ok, noted | 22:32 |
mathiaz | maw: but first the version has to be in the developement release | 22:33 |
maw | I see | 22:33 |
maw | well that's unfortunate as Snort2.7 is useless now | 22:33 |
maw | so anyone installing from repo has depracated software | 22:33 |
Sam-I-Am | thats how LTS works unfortunately | 22:34 |
maw | *deprecated | 22:34 |
Sam-I-Am | or any older release | 22:34 |
Sam-I-Am | but nothing stops you from taking a newer version | 22:34 |
Sam-I-Am | sometimes they Just Work other times you get to rebuild them | 22:34 |
maw | if it is known that a package is deprecated it should be dropped from the repo | 22:34 |
Sam-I-Am | if you want to see deprecated, go run rhel or centos | 22:34 |
Sam-I-Am | most of the stuff in there is EOL by upstream | 22:35 |
Sam-I-Am | openldap, dhcp, bind9, etc | 22:35 |
mathiaz | maw: the next step for merging snort is to get a debdiff prepared for the new package, attach it to bug 281014 and ask for sponsorship | 22:35 |
uvirtbot | Launchpad bug 281014 in snort "Please merge snort 2.8.4.1-1 (universe) from Debian experimental (main)" [Wishlist,Confirmed] https://launchpad.net/bugs/281014 | 22:35 |
mathiaz | maw: https://wiki.ubuntu.com/SponsorshipProcess | 22:36 |
maw | ok, thanks for pointing me in the correct direction | 22:37 |
nick125 | Good afternoon. I'm having an issue installing Ubuntu Server in VBox (9.04). It keeps locking up at the hardware discovery step. Any ideas on what to try? | 23:25 |
glen1 | nice | 23:25 |
glen1 | hmmm | 23:25 |
diffra | do any of the terminals have any error output? | 23:25 |
glen1 | not sure I only worked on ubuntu via dedicated | 23:25 |
diffra | alt+f2/3/4/5 (i'm not sure which one shows logs at the moment.) | 23:26 |
nick125 | alt+f4 shows the logs, but nothing interesting. | 23:27 |
diffra | what's the last thing it does that it's getting hung up on? | 23:28 |
nick125 | Starting PCMCIA Services..but I'm trying to verify the ISO integrity through the installer menu (yeah, I could md5sum it..but) | 23:29 |
nick125 | When I try to install, it hangs up at 2% on detecting hardware | 23:30 |
nick125 | Let me check the logs on an install attempt and see where its hanging there | 23:31 |
nick125 | ... How did I know that'd be my luck. Now I try it once I ask for help, and it appears to no longer hang | 23:33 |
diffra | it's afraid of us :) | 23:34 |
* nick125 continues on this install, in the hope he can get the hang of this enough to move his server over :) | 23:34 | |
glen1 | is it hard to set up my own email server? | 23:35 |
glen1 | or is that a bad thing if hackers wanted to ddos it lol | 23:35 |
nick125 | glen1: It's not _too_ terribly difficult to do, but it's a bit of work to maintain. | 23:36 |
glen1 | what do I have to maintain | 23:37 |
nick125 | I eventually got tired of maintaining my mail server and moved my mail over to Google Apps for Domains. | 23:37 |
diffra | glen1: ditto what he said. also, if you're wanting to do virtual domains, there's a higher level of complexity. | 23:37 |
glen1 | ahh cause Im settin up a little hosting thing to do for fun | 23:37 |
glen1 | and Im wondering about email. I know cpanel allows the user to create them but I was thinking of my dedicated server to them :D | 23:38 |
glen1 | fun stuff! | 23:38 |
diffra | things like spam filters need to be updated. keeping the smtp daemon up to date in case of bugs that could allow outside access. You should run a proactive daemon like fail2ban that blocks users from brute forcing passwords | 23:38 |
nick125 | Ugh...you won't believe how much I hate cPanel. | 23:38 |
glen1 | diffra, can I create a cron job to update everything | 23:38 |
nick125 | I had to install it a couple times for customers when I was in the hosting business. It..............sucks. | 23:39 |
diffra | i hate administering cpanel. From an enduser prospective, it's great (I use a cpanel account for my family photo gallery for instance.) | 23:39 |
glen1 | nick125, what other panels are better | 23:39 |
diffra | i think running apt via cron is discouraged. | 23:39 |
diffra | NOT LXadmin! | 23:39 |
nick125 | glen1: I found directadmin to be *marginally* better, but I'm not even sure they still develop it. | 23:39 |
glen1 | lol is that from the guy who hung himself | 23:40 |
diffra | yep. | 23:40 |
glen1 | xD | 23:40 |
glen1 | poor guy | 23:40 |
glen1 | direct admin looks cool | 23:40 |
diffra | well, the circumstances are bad, but the guy that found the exploit gave him at least 2 weeks to respond before releasing it. | 23:40 |
glen1 | jeez | 23:41 |
nick125 | I mean, DirectAdmin might be crappy...but it's cheap. cPanel is crappy _AND_ expensive. | 23:41 |
glen1 | he probably meant it as a big fuck u b4 he went | 23:41 |
glen1 | Any open sources ones? | 23:41 |
nick125 | As far as control panels go, there are a few...but when I tried them, they were a nightmare to use. | 23:42 |
nick125 | Then again, I was trying to use them on Gentoo, so that could contribute just _slightly_ to the nightmare. | 23:42 |
glen1 | hehe | 23:42 |
glen1 | how much is directadmin | 23:42 |
glen1 | sry theres a link lol | 23:42 |
glen1 | my bad | 23:42 |
glen1 | monthly license for 1 server? | 23:43 |
nick125 | ouch, it looks like they really raised the prices. | 23:43 |
glen1 | :O | 23:43 |
glen1 | what was it b4 | 23:43 |
nick125 | I remember getting VPS licenses for $5/month. | 23:44 |
glen1 | :O | 23:44 |
glen1 | its basically the same price as cpanel | 23:45 |
glen1 | cpanel price is not so bad when you have alot of users on 1 server I guess | 23:45 |
diffra | there's webmin/usermin | 23:45 |
FFForever | how can i keep people from being idiots? | 23:45 |
glen1 | shotgun to face | 23:45 |
glen1 | :P | 23:45 |
nick125 | FFForever: I have an idea, but it's illegal....so | 23:45 |
glen1 | I bookmarked webmin page | 23:45 |
FFForever | nick125, i am open to all ideas :) | 23:45 |
nick125 | Dammit glen1, you gave away my idea :P | 23:45 |
glen1 | ha | 23:46 |
nick125 | Or you could lock them in a bomb shelter, just as long as the lock to the door is on the outside. Of course, make sure it's shielded so they can't call the police. | 23:46 |
glen1 | diffra from an ease of use perspective whats the winner in the webhosting panel game haha | 23:46 |
glen1 | who are these ppl btw | 23:46 |
FFForever | this user keeps deleting his public_html folder and he wonders why his website won't load after he is done | 23:47 |
diffra | glen1: IMHO? plesk. | 23:47 |
glen1 | ill look it up | 23:47 |
glen1 | FFForever, LOL | 23:47 |
FFForever | ive had 8 tickets from him about it | 23:47 |
FFForever | i am about to not renew his monthly service contract if he keeps doing it | 23:47 |
diffra | he's not asking you to restore backups, is he? | 23:47 |
glen1 | its quite expensive | 23:47 |
nick125 | FFForever: How much is that customer paying? | 23:48 |
diffra | glen1: you didn't say cheap :) | 23:48 |
FFForever | nick125, not enough | 23:48 |
glen1 | lol | 23:48 |
glen1 | charge him | 23:48 |
diffra | cheap, easy to administer, easy for end users. Pick any 2. | 23:48 |
nick125 | FFForever: Drop him, then. Or threaten to charge him for each support instance. | 23:48 |
FFForever | i like ehcp | 23:48 |
FFForever | its free ^_^ | 23:48 |
diffra | yeah. customers like that get moved to per incident support. | 23:48 |
diffra | also, can you set the directory permissions so he can't delete it? | 23:49 |
* nick125 had a client who bought an unmanaged VPS for $6/month and expected us to manage it.. | 23:49 | |
glen1 | diffra, what two? cpanel and plesk? | 23:49 |
diffra | any 2 of the three features i listed. | 23:49 |
glen1 | oh | 23:49 |
FFForever | nick125, you sell vps's? | 23:49 |
nick125 | "I'm sorry, but this is an UNMANAGED VPS." "I'm leaving for Dreamhost!" What I wanted to say: "Don't let the door hit you in the a** on the way out." | 23:49 |
nick125 | FFForever: Used to | 23:50 |
diffra | nick125: most people don't understand unmanaged. I used to work for dotster support -- it's insane trying to reason with people. | 23:50 |
glen1 | easy to administer, easy for end users mmmm, maybe take off the later and replace with cheap haha | 23:50 |
FFForever | dotster? | 23:50 |
diffra | yeah. good guys for the most part. | 23:50 |
FFForever | How far would you be willing to go for unmanaged vps's?, nothing past i cant login? | 23:50 |
glen1 | slicehost any good? Ill be making vps's soon | 23:50 |
diffra | <3 slicehost, glen1 | 23:51 |
FFForever | glen1, i heard they are good but really pricey | 23:51 |
glen1 | whats good about it | 23:51 |
FFForever | <3 prgmr | 23:51 |
diffra | FFForever: exactly. | 23:51 |
nick125 | For a VPS, Slicehost doesn't seem that pricey. | 23:51 |
diffra | people coming from shared hosting got quite a shock. "how do i add an email account?" "well, that'll be $75..." | 23:51 |
glen1 | lol! | 23:52 |
FFForever | diffra, i would be like uhhh FU! lol | 23:52 |
glen1 | If I set up my own mail server | 23:52 |
FFForever | mail is a pita | 23:52 |
glen1 | Should I give each mailbox big storage and charge a lot | 23:52 |
diffra | slicehost: awesome support (#slicehost), awesome servers. very reliable. one of my boxes is over 400 days uptime. | 23:52 |
nick125 | diffra: That's part of the problem. Unmanaged VPSes aren't for people who don't know what they're doing. | 23:52 |
FFForever | i find community support to replace managed support is shit and slicehost should burn in hell for it | 23:53 |
nick125 | And as far as pricing goes, if I could do the entire VPS thing over again, I wouldn't have a single plan below $25/month | 23:54 |
glen1 | lol | 23:54 |
glen1 | I sometimes prefer irc support | 23:54 |
glen1 | over customer support | 23:54 |
diffra | community support and managed support are not the same thing | 23:54 |
nick125 | Why? Because script kiddies can't slip $25 on their daddy's credit card without him noticing. | 23:54 |
diffra | also, the slicehost admins are in IRC, so you can talk to them directly. | 23:54 |
FFForever | glen1, i like irc support but when ur in a room with idiots that ask HELP i cant login 40x/hour i would get pissed | 23:54 |
glen1 | nick125, Maybe soon u can have one of my vps soon lol | 23:55 |
FFForever | anyone who wants to give out free vps's im game :D | 23:55 |
nick125 | glen1: The company no longer exists...well, it does, but I assume that my partner has ran it into the ground :p | 23:55 |
glen1 | lol I would give them out to spread the word Im sure xD | 23:55 |
glen1 | http://www.gigstrate.com | 23:56 |
glen1 | Im near done | 23:56 |
glen1 | just need to get pricing and write up a few things | 23:56 |
FFForever | glen1, cool hit me up when ur giving out promo (free) lifetime accounts :D | 23:56 |
FFForever | XD | 23:56 |
nick125 | Supposely, in the first 2 months that I left the company, they were DDoSed about...10 times. | 23:56 |
glen1 | lifetime lol | 23:56 |
glen1 | lol nick125 what company? | 23:57 |
glen1 | FFForever, If I did youll have to be a whore lol "HOSTING OVER HERE!!" | 23:57 |
nick125 | glen1: atarack.com....the site doesn't even load anymore. | 23:57 |
glen1 | what did they do | 23:57 |
glen1 | does anyone else hate business people who dont have a clue | 23:57 |
FFForever | glen1, ill be a whore but i will never claim to give u sales :P | 23:57 |
glen1 | they get a degree and think they know their shit | 23:57 |
nick125 | Well...considering that I was the only person (out of two, including myself) that was somewhat people-friendly.... | 23:58 |
glen1 | haha | 23:58 |
nick125 | Let's just say that my partner pissed a lot of people off. | 23:58 |
FFForever | nick125, i am not people-friendly but i do know my stuff :D | 23:58 |
glen1 | lol irc peoples should start the next google | 23:59 |
diffra | There's a certain fun to pissing people off from the other end of the support line. | 23:59 |
glen1 | lets ddos google!!! | 23:59 |
FFForever | glen1, i am sure google gets ddosed a few times a minuet lol | 23:59 |
glen1 | jk btw theyll rape your bandwidth | 23:59 |
nick125 | diffra: But not when they toss 1gbit at your routers. | 23:59 |
diffra | I was support, not IT. What did I care? ;) | 23:59 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!