/srv/irclogs.ubuntu.com/2009/07/10/#ubuntu-server.txt

ByronHello all00:02
ByronI'm trying to install Ubuntu Server 2.9 and it keeps failing at the installation of the downloaded apps.00:02
Byron"An installation step failed. You can try to run the failing item again from the menu, or skip it and choose something else. The failing step is: Select and install software"00:02
Byronmd5 is good. The integrity is good. Can't install packages00:04
diffra2.9?00:04
diffraAlso, check the other terminals to look for errors.  alt+f2, f3, etc.00:05
ByronSorry, 9.0400:06
ByronNo clue where I got that from00:06
Byrondiffra: I get a lot of 'package doesn't exist'00:07
diffraHmm... and the included integrity check tool came out clean?00:09
Byrondiffra: It appears to be the same 3 packages; libnewt0.52 ext2-modules and efi-modules00:09
Byrondiffra: Yes.00:10
ByronAfter those 3 failed packages, there is this: "Falling back to the package description for console-setup-udeb"00:11
uvirtbotNew bug: #397644 in nagios3 (main) "Problem in post-install script" [Undecided,New] https://launchpad.net/bugs/39764400:26
quentusrexI need help, the new ldap-utils won't look at the config file /etc/ldap/ldap.conf00:38
quentusrexI can specify the host manually and it connects00:39
quentusrexbut if I just have the host in the config file, I get an error.00:39
KillMeNowwhat error do you get?00:40
quentusrexldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)00:40
quentusrexit's not even trying to connect to the server...00:41
KillMeNowis it localhost or on another machine?00:41
quentusrexdifferent machine00:41
KillMeNowand when you specifiy the address of the different machine manually it works?00:42
ByronSomething is off. I restarted the install as there didn't appear to be internet access to the server (which is very odd). During the Install Base System, I get this now: Warning: Failure while configuring base packages. This will be attempted 5 times.00:42
quentusrexKillMeNow: yes, when I specify the URI with the -H flag it works00:42
quentusrexbut when I leave it off and assume it will use the /etc/ldap/ldap.conf file it fails.00:42
KillMeNowthen we know that the port is open on the other end, have you tried to strace it?00:42
quentusrexKillMeNow: yes, and it all works,00:43
KillMeNowi'm not totally solid on LDAP so i'm kinda winging it...00:43
quentusrexI've tracked the problem down to the fact that it isn't trying to open the config files.00:43
KillMeNowso when you don't set it using -H and you restart the daemon while strace is running you don't see it crap?00:43
KillMeNowok permissions00:43
quentusrexI'm running it as root00:43
KillMeNowhave you verified that the user account that is running the LDAP daemon has access?00:43
quentusrexso there are no issues with permissions.00:44
KillMeNowhad to ask00:44
quentusrexI'm running the client as root :)00:44
quentusrexldapsearch -x -d8 -v00:44
quentusrexldap_initialize( <DEFAULT> )00:44
quentusrexldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)00:44
quentusrexthat's what I get...00:44
KillMeNowdid you configure the client side with like info?00:45
KillMeNowin your ldap.conf file, do you have this line?  TLS_REQCERT allow ?00:46
quentusrexnope00:47
KillMeNowtry adding it...  it might be the TLS certificate...  self-signed cert i'm guessing00:48
quentusrexthere are no certs involved.00:49
quentusrexit's wide open openldap server.00:49
KillMeNowldap_sasl_bind says to me that it's looking for TLS00:50
quentusrexbut the second half says it can't even find the server00:50
KillMeNowyes, it's trying to bring up TLS00:50
KillMeNowand it says it can't CONNECT to the other LDAP server00:51
KillMeNowwhich would be true if it's expecting a TLS cert00:51
KillMeNowhttps://help.ubuntu.com/8.10/serverguide/C/openldap-server.html00:52
KillMeNowThat's a tutorial on setting up OpenLDAP on Ubutnu00:52
KillMeNowhttp://ubuntuforums.org/showthread.php?t=119744300:52
quentusrexI followed that...00:53
quentusrexnow I'm here. :(00:53
KillMeNowthat i a current forum for issues that you're experiencing00:53
KillMeNowso you followed the TLS and SSL portion near the bottom?00:54
quentusrexI'm going to reboot...00:55
=== KillMeNow is now known as KillMeNow[A]
* KillMeNow[A] is now away - Reason : AFK for a few00:58
ruben23hi00:58
ruben23can installed ubuntu-server, hanged up and freeze on formating process00:59
ruben23i tried 2 sata HDD for isolation-same thing happens----->also during the hanged/freezing formatting--->keyboard blinks..01:00
ruben23several time i test it same thing...01:00
ruben23the object not been isolated is the memory..01:00
ruben23cant installed ubuntu-server, hanged up and freeze on formating process01:02
=== KillMeNow[A] is now known as KillMeNow
* KillMeNow is no longer away : Gone for 7 minutes 21 seconds01:05
KillMeNowruben23, did you check to make sure your sata controller is compatible?01:06
KillMeNownot the sata HDD, but the controller01:06
ruben23KillMeNow:how would i do that..how do i check..?--->actually i already used this hardware with centos..01:11
ruben23and also i have same specs with this on production using ubuntu server--->its running smooth.01:11
KillMeNowhttps://help.ubuntu.com/community/Hardware01:15
KillMeNowcheck that i suppose01:15
KillMeNowanother thing you could try is to Download the Ubuntu/Kubutnu LiveCD and try to boot up to that and see if the drives show up01:16
ruben23ok01:18
KillMeNowif you boot to the Live CD and you can see all your hardware, then it should be compatible... make sure you use the same versions01:19
ruben23ok01:21
ruben23i check its not on the ubuntu site----ubuntu liveCD..01:21
KillMeNowhttps://help.ubuntu.com/community/GettingUbuntu01:31
KillMeNowit's there Ruben2301:31
KillMeNowthat link has the instructions on how to Download the Live Desktop CD01:31
ruben23ok doing it now01:35
ruben23thnaks'01:35
ruben23 KillMeNow:by for now need to sleep01:37
KillMeNowsleep well01:37
KillMeNowhow did the reboot go Quentusrex?01:45
quentusrexnot well01:49
quentusrexcan't get ldap working at all how I want it to...01:49
KillMeNowyea i dunno partner...  is this for replication or just standard client auth type stuff?01:53
quentusrexstandard client auth01:56
quentusrexI'm just trying to get a workstation to auth to ldap01:56
quentusrexand then mount the nfs drive01:56
KillMeNowyou might temporarilly try removing the ldap_sasl_bind from both the client and the server ldap.conf01:57
KillMeNowother than that, *shrug* wish i could be more help01:58
metalfan_hi02:22
metalfan_what tool do you use to manage services started at boot?02:22
PC_Nerd101Hi,  whats the best method for adding an NTFS partition at the end of my hard drive without using gparted (gui) ?02:24
KillMeNowis there already unpartitioned space at the end of your drive?02:25
PC_Nerd101no, from memory when I installed ubutntu (8.04), I used the entire disc and set it to ext3 ( so not of course samba shares cant be accessed with windows)...  so I need part of it to be ntfs02:26
KillMeNowyea, no idea TBH...  have you tried google?02:27
PC_Nerd101yeah - everything seems to link to gparted.02:28
KillMeNowyea, dunno what to tell ya...  looks like gparted live cd is your option02:31
PC_Nerd101slight catch....  no cd drive on server02:31
KillMeNowyou can install a driver to windows to read ext2/3 formatted drives tho02:31
PC_Nerd101( from memory.. i managed to get something setup to boot from usb, but it then had to download form the net, it wouldnt let me install from usb)..... so I'm stuch...02:32
PC_Nerd101*Stuck02:32
PC_Nerd101and I prefer not to have to pay around with filesystem drivers on my machine(s).. there are 3, soon to be 4 windows machines that will share to it - and its easier to have ntfs on linux ( hey.. linux is the only real os) as oposed to maintaining 4 anoyingly configured windows machines ;)02:32
KillMeNowwell, all i can say is download the gparted live cd, run it on your system and see if you can't convert some of the space02:34
KillMeNoweither that or stuff another drive in to the box02:34
KillMeNowformat that drive to NTFS and mount it02:34
PC_Nerd101$$$ :P02:34
KillMeNowLOL02:34
PC_Nerd101I might look at booting into ubuntu on my current machien later on, and seeing if ... if I can mount the remote ext3 partition, if gpartition will allow me to partition it across the network... expect there will be network permission issues with it though.02:35
KillMeNowi would expect that to not work PC02:36
PC_Nerd101yeah - so I'm looking at having to somehow unmount the only current partition, in order to actually partition it.....02:50
PC_Nerd101perhaps a network boot or something to mount it.....   I'll check back in if I've any more questions :) - thanks :)02:50
KillMeNowyep02:50
quentusrexCan I get some help with ldap client auth?04:09
quentusrexI am trying to setup my workstation to be able to login with my ldap credentials.04:09
quentusrexI have gotten to the point of being able to see all ldap users with the command 'getent passwd'04:10
quentusrexbut I can't seem to login with it04:10
=== s_markow_ is now known as s_markow
rgreeningI'm looking for some advice regarding clustering? Anyone available or can someone point me to an expert :)05:34
rgreeningBasically, I want to set up a cluster to run a bunch of ubuntu vm's on. Like a DNS server, Mail Server, OpenNMS, etc.. all seperate vm's so I can taylor them and their usage...05:35
rgreeningI have 3 HP servers to start building the cluster.05:36
twbrgreening: are you building a cluster for fun?05:48
rgreeningnope. I have a real world need for it05:49
twbHmm, perhaps you are using "custer" loosely.05:49
rgreeningcluster can mean 3 or 4 different things05:49
twbhttp://en.wikipedia.org/wiki/Cluster_(computing)05:49
twbBy that article, what kind of cluster are we talking about?  HA?05:50
rgreeningyep. HA05:50
rgreeningso, my desire is to take the 3 servers and make a cluser (HA).05:50
twbOK, I don't know about that.  I can see that the article links to Linux-HA, which I suspect will have its own channel.05:50
rgreeningon it, I would run an arbitrary number of vm's...05:51
rgreeningtwb.. know anyone who would know about HA clustering?05:52
twbSorry, no.05:52
twbI suggest you start digging through the linux-ha community's resources.05:53
rgreeningyeah, been reading up on this all day.. still no further ahead :)05:54
twbrgreening: /join #linux-ha?05:59
ScottKrgreening: I suspect if you talk to ivoks he'll have useful advice.06:02
rgreeningScottK, twb: thanks. :)06:02
matttis there any config setting that allows you to mount all partitions w/ a particular mount option?06:06
matttto clarify, i'd rather not have to modify each partition's mount options in /etc/fstab for each box06:08
quizmehow do you increase the time before an ssh session starts to freeze up on you ?06:14
twbquizme: ssh sessions don't freeze.06:15
quizmetwb: then what do they do when they stop moving?06:15
twbquizme: try typing ^Q (Ctrl+q).  If that fixes it, you have accidentally enabled the scroll lock.06:15
quizmek06:15
twbTurn off flow conrol in your terminal emulator to avoid it in future06:15
quizmeit does it all the time06:16
quizmelike after 5 minutes06:16
quizmeif i'm idle06:16
twbquizme: ah, then perhaps you need to turn on -o ServerAliveInterval=30006:16
quizmewhat's that ?06:16
quizmeserver side ?06:17
quizmewhere do i put those options?06:17
quizmeclient ?06:17
twb~/.ssh/config, or on the command line. (client side for both)06:17
twbman 5 ssh_config06:17
quizmetyu06:18
twbActually 300 *is* five minutes..06:18
Anirban1987Can I install Roundcube on Ubuntu 9.04 server ?06:18
twbAnirban1987: ask apt-cache policy.06:18
Anirban1987twb : what is that ?06:19
twbOK, instead try packages.ubuntu.com06:19
twbAccording to http://en.wikipedia.org/wiki/RoundCube, roundcube is a PHP application.06:19
twbIn my experience if a PHP app is not available via the standard Ubuntu package archive (and often even if it is), it's so full of vulnerabilities that you would be mad to install it.06:20
twbHmm, but it appears roundcube *is* apt-gettable: http://packages.ubuntu.com/roundcube06:21
ScottKWe released Jaunty with the current roundcube believed to be secure at the time.  I don't follow it though, so no idea how it looks now.06:21
Anirban1987ScottK : The current is 0.2.2.06:22
twbIt's in universe, so security updates aren't guaranteed anyway.06:22
Anirban1987One more ques , 9.04 is named as jaunty ?06:23
twbAnirban1987: ask lsb_release --all on your server.06:23
twb(Yes.)06:23
psyferrehey folks, can anyone answer a few quick questions about using dd to backup and restore a system?07:04
psyferreI have an ubuntu server that I needed a backup for, so I used sudo dd if=/dev/sda1 ibs=4096 bs=2048 | gzip > /tmp/nms-server-dd-img.gz to dump a copy on a cifs share07:05
psyferreNow i've got my fresh machine and wanted to restore the copy, so I booted up the live cd, installed smbclient and smbfs to get to my cifs share, and then used dd if=nms-server-dd-img.gz | gunzip | dd of=/dev/sda107:07
psyferrethat didn't seem to do anything, so I thought maybe my backup had not gotten the MBR, so I installed ubuntu server, then loaded up the live cd again, and did the same thing.  Now the os gives me "Target filesystem does not have /sbin/init"07:08
psyferrecan anyone give me a shove in the right direction concerning what i'm doing incorrectly?07:08
incidenceHow do I ban IPv6 address?07:19
incidenceI have it in hosts.deny but it has no effect07:20
incidence"ALL: [::ffff:118.98.217.18/64]"07:21
howieCan anyone tell me how to geta  subdomain to point localip/box so i can vnc it?07:24
ballhowie: set up a DNS07:36
ballI think07:37
howiewell i did that07:37
howiebut07:37
howiewill that route a subdomain to different local ip?07:37
ballIf you want it to.07:38
howiei have a working bind server and web server07:38
ballbrb, baby's crying07:38
howiebasically, i have a working bind server running and I have example.com pointing to my main box. what i want to do is have example2.com point to my second box in a way that i can host both a website and other various services on the second box.07:41
howieive read that apache2 can do this with reverse proxy, but from what i understand that only works with http traffic.07:43
ballThat'll be a DNS question.07:44
howieah. so i should probably ask around in a DNS channel then07:46
howieThanks a lot for your time! :)07:46
* ball shrugs07:46
ballI'd happily answer if I had a clue about DNS in general or DNS on Ubuntu in particular07:47
sorenincidence: Which service are you trying to ban them from? hosts.deny does not apply universally.07:48
ballhello soren, you're a blast from the past.07:49
sorenI am?07:49
* ball nods07:50
sorenI wonder who *he* was.07:53
ByronHello all. I got the Ubuntu Server running smoothly at home. <insert delight>08:01
ByronOnly issue I'm having now is that when I try to go to the site I setup, all of the php files are trying to download themselves.08:02
ByronI can't access http://localhost/index.php as it tries to download rather than load in Firefox08:02
ByronIt's been a long time since I came across this issue and now I don't recall the solution.08:02
matttyou sure the php5 module is enabled?08:04
ByronI installed php5, was there something else that I needed to configure?08:05
matttcheck out /etc/apache2/mods-enabled08:05
ByronOK08:06
ByronI have php5.conf and php5.load in there08:06
matttdon't know then ;)08:06
ByronNo worries.08:07
ByronI've restarted apache to no avail08:08
ByronIt's midnight for me. I think I will find the answer in my sleep or possibly in the morning after some much needed sleep.08:09
ByronThank you matt. I will return tomorrow if I do not happen to get this resolved.08:09
matttByron: sorry i couldn't have been more help :/08:09
Byronmattt: It's not always about being the answer, it's about guidance. You helped remove one possible scenario. That's troubleshooting and that's helping.08:10
ByronSo I thank you for that, matt.08:10
ByronGood night/morning/afternoon to you all.08:11
matttgood night!08:11
NineTeen67CometHello; I've got a plethora (9+) full size (some mid some full) towers running various tasks. They live under my stairs along with extra parts, cases, tools and boxes. There is room to build something, but I'm out of ideas.08:31
NineTeen67Cometcan anyone help with an idea on what to set them all up physically... Right now they are sitting next to and on each other. I would like them much more organized than that...08:32
matttNineTeen67Comet: get a bread rack08:33
NineTeen67CometIs that slang for a style of rack or do you literally mean find a bread rack from a grocery store somewhere second hand?08:34
NineTeen67CometI've seen some racks and what not online, but they seem very expensive.08:35
NineTeen67CometI also thought about just building some wood shelves but wood here in Japan (I'm stationed in Japan) is expencive.08:35
matttNineTeen67Comet: i think they're just generic shelves, yeah ... but can obviously hold quite a lot of weight08:37
NineTeen67Cometmattt: ill look into something like that thanks for the idea...08:39
matttNineTeen67Comet: what are you doing w/ all the servers/  :)08:40
mattt?08:40
alexmNineTeen67Comet: http://www.metro.com/application/Shelving are the classic metro shelves, but there are bootlegs also available08:40
NineTeen67CometWeb server, media server (backend to MythBuntu), generic file/picture server (also stores movie covers for mythbuntu) and a couple backup specific boxes for me and the wife's main computers (rsynced nightly) ..08:41
NineTeen67CometI have to go take care of the baby (4 month old girl) . thanks mattt alexm I have the link open .. that's some stuff we have here I can try .. thanks ..08:42
kworkis there list of installed packages in file, what i could monitor to see new installed packages ?09:20
_rubenkwork: there's the output of dpkg -l ofcourse, and there's the files in /var/log/apt/09:29
kworkvar log apt isnt really userful09:30
kworkthou maybe it could be configured09:31
kworkdpkg --get-selections | awk '{if ($2 == "install") print $1}'  > /etc/apt/apt-build.list09:31
kworksomeone suggested that09:31
twbBoot-leg shelving?09:37
twbSurely boots go on shelves, no the other way around09:37
acalvoHi.12:29
acalvoHow can I test a SSL LDAP connection? I've tried with -Z, but it says it cannot contact de LDAP server, however it works without using SSL12:30
=== TeLLuS_ is now known as TeLLuS
sommeracalvo: did you turn SSL on in /etc/default/slapd?12:40
acalvoyes12:40
=== jussio1 is now known as jussi01
acalvoSLAPD_SERVICES="ldap:/// ldapi:/// ldaps:///"12:41
sommeracalvo: are you using a self-signed cert?12:41
acalvoI've set up my own CA, and then create and signed a server cert12:42
sommeracalvo: you might try adding TLS_CACERTDIR /etc/ssl/certs (or wherever your CA cert is located) to /etc/ldap/ldap.conf12:43
acalvosommer, good hint, let's see12:44
acalvostill not working12:46
sommeracalvo: you can try starting slapd in a terminal with the -1 option to see the debug output12:47
sommeracalvo: also you might make sure that port 636 is open12:48
acalvoand how do I check if the 636 port is open? I'm working inside a local lan12:48
sommeracalvo: if you haven't configured a firewall it probably is, but also the nmap -sS IPADDRESS will show you which ports are open on a host12:49
acalvosommer, thanks12:50
sommernp12:50
acalvowell12:52
acalvoit is not listed as open12:52
acalvoneither 38912:52
sommeracalvo: do you have ufw enabled?12:53
acalvobut running slapd with -d 256 shows STARTLS command12:53
acalvosommer, it's a clean install of ubuntu 9.04, just to test SSL with some services12:53
sommerand slapd is running?12:54
acalvowell, ehm.., no12:55
acalvonow it's working and it shows the ports12:55
sommeracalvo: cool, can you connect?13:03
acalvonope13:03
acalvoI'm reading again the community info13:04
acalvobut, I've followed everything that is listed there, and is not working13:04
acalvois it mandatory to have configured the ldap.conf file in order to run ldapsearch?13:10
sommeracalvo: it is if you don't want to use the "-b suffix" option13:18
sommeracalvo: there's also the ubuntu serverguide: https://help.ubuntu.com/9.04/serverguide/C/openldap-server.html13:18
acalvosommer, I'm following this guide13:19
acalvoand some others13:19
sommeracalvo: another thing to try is to add "TLS_REQCERT never" in /etc/ldap/ldap.conf... that basically disables the check of the server cert13:20
sommeracalvo: that may help narrow down the issue anyway13:20
acalvosommer, thank you so much13:20
acalvoI've just found find out the the problem is "TLS: peer cert untrusted or revoked"13:21
sommerya, using self-signed certs is a little touchy with slapd13:21
acalvosommer, so buggy, in fact13:22
sommeracalvo: I'm not sure I'd say buggy... it's more that slapd has strict protocol adherence13:22
acalvoyes, and I understand why13:22
acalvobut they should also provide an easier way to test implementation13:22
acalvounder lab enviorenments13:23
sommerheh, ya the process of learning ldap and OpenLDAP server is pretty involved13:23
acalvobut, I feel lost with their new way to store configuration13:23
acalvoI've always end up stopping the service and editing the cn\=config.ldif file13:24
acalvoehehehe13:24
sommerubuntu server team is working on a more out of the box default configuration that provides a more "ready-to-use" directory13:24
sommeracalvo: ya, the cn=config does take some getting used to... especially all the ldapadd, ldapmodify, ldapdelete options :)13:25
acalvoyes13:25
acalvoanother thing that needs to be fixed is the PAM-LDAP integration13:26
acalvothe ldap-auth-client does not work as expected13:26
sommerya, there's some work going on in that area as well13:26
acalvoyip13:26
acalvoI've they're doing such a great work13:27
acalvouf, I wrote without taking a look13:27
sommer:)13:28
acalvosommer, well, thanks for your help, now it is working13:29
sommeracalvo: no problem, glad I could help13:30
rsrHello, I am having some issues with fllash software and java. They are terribly slow and unstable when going through the proxy. I have to set up the browser to not use proxy for those sites and then things work fine. Maybe im missing a configuration?14:21
rsrI am using ubuntu server 9.04 by the way14:22
spectorsr: what kind of proxy are you using.14:22
spectorsr: and what kind of bandwidth, upload, do you have for the proxy.14:22
rsrI am using squid at the moment14:22
spectorsr: are you using windows as the client?14:23
rsryes14:23
rsrwindows and internet explorer14:23
rsrthere are 53 machines on the network14:23
spectorsr: sometimes flash does weird things with proxies. It could be many many problems. unfortunately I can't help right now, hopefully someone else will pipe up14:32
a1faflash tends not to use proxy14:32
a1faif there are socket connections within flash14:32
a1fasuch as irc client within flash14:32
rsra1fa: how come when I disable proxy things get a little better?14:34
rgreeningivoks: ping15:31
rgreeningivoks: ScottK suggested I ask you (as an expert) on a clustering/high-availability project I have.15:31
rgreeningivoks: basically, I need to run a bunch of vm's with varied purposes (DNS, E-mail, EMS, Web) and ensure they are always reachable (always being relative of course). Basically survive failure of one node in the cluster by autostart on another node...15:33
rgreeningI'm only basically familiar with clustering... so any advice would be awesome.15:34
ivokshi15:34
rgreeninghey :)15:34
ivoksok, so... you want failover?15:35
rgreeningyeah, live...15:36
rgreeningnot manual15:36
ivoksright, live migration from failed node to alive one15:36
rgreeningbut I also want to efficiently use the CPU, memory/ disk15:36
rgreeningwhich is why I think I need a cluster :)15:36
rgreeningI have 3 HP DL380G6 (brand new15:37
rgreeningeach has 4GB ram, 3x300 10k SAS disks15:37
rgreeninginternal HW RAID card for disks15:37
rgreening4xGE ports per server15:38
rgreening2.4GHz quad core CPU15:38
ivoksok15:38
ballI don't have use for a cluster, but I could benefit from a more contemporary machine.15:38
rgreeningheh15:38
ballMy Ubuntu Server box is a 500 MHz Klamath15:39
ivokshaving three servers is good setp15:39
ivoksstep15:39
ivokssince 2 aren't quite smart solution :)15:39
ByronMy continued issue is in regards to php files being downloaded rather than viewed through a browser. It appears that my /etc/apache2/httpd.conf file is empty. Is that right?15:39
ivoksByron: a2enmod php ; /etc/init.d/apache2 restart15:40
ivoksrgreening: you'll need drbd+ocfs+pacemaker15:40
ivoksrgreening: or... redhat cluster suite + drbd15:40
rgreeningcool15:41
Byronivoks: a2enmod php  -> ERROR: Module php does not exist!15:41
ByronCould have sworn it was setup last night15:41
ivoksByron: you didn't install php15:41
Byronivoks: I'll install php5 again15:41
rgreeningivoks: ocfs?15:41
ivoksrgreening: oracle cluster filesystem15:41
rgreeningah15:41
ivoksocfs215:41
Byronivoks: php5 is already the newest version15:42
rgreeningis there a reason/circumstance to prefer one over the other?15:42
ivoksByron: libapache2-mod-php5 is the name of the package15:42
ivoksrgreening: well, rhcs is pita to configure, but it's great stuff15:42
Byronivoks: That's also the newest version15:42
ivoksrgreening: pacemaker is easier, but it didn't get real attention in ubuntu until karmic15:42
ivoksrgreening: rhcs was supported clustering system in ubuntu15:43
rgreeningok, I am thinking on starting with Karmic anyway... as this setup will be in test/development for a 4 month period at least15:43
ivoksrgreening: and you'll have hard time finding documentation for both15:43
rgreeningI am all too familiar with the lack of docs... been search and researching last few days..15:44
ivoksrgreening: great... then you could help us make our cluster stack rock solid15:44
rgreening:P15:44
ivoksByron: a2enmod php515:44
rgreeninglets make a deal. You point me in the right direction when I need a course change and I'll help with the cluster packages (since it'll benefit me anyway) :)15:45
Byronivoks: Module php5 already enabled15:45
rgreeningivoks: ^ .. So, if it were you then using Karmic, oracle or red hat path?15:46
ivoksrgreening: i'd use karmic, with pacemaker-openais as cluster manager and ocfs2 as filesystem on top of drbd815:46
rgreeningok. then my path is set. :)15:47
ivoksand kvm :)15:47
rgreeningof course.15:47
ivoksyou might want to look at eucalyptus15:47
ivoksyou basicaly are asking for a cloud system15:47
rgreeningivoks: is there a need to add a cloud on top of this?15:48
rgreeningor what advantage?15:48
ivokswell, if you want load balancing...15:48
rgreeningif I am not talking ot other clouds or EC2 services15:48
rgreeninghmm...15:48
ballrgreening: you get "trendy points" for using a cloud ;-)15:48
rgreeninglol15:48
rgreeningivoks: I don't need load balancing per se but shouldn't the vm's share the CPU/memory/disk of the cluster?15:49
ivoksByron: then php is probably working15:49
rgreeningcluster...15:49
ivoksrgreening: no15:49
ivoksthere are couple of clusters15:50
ivoksone is high availability15:50
ivoksthat's what i was talking about15:50
ivoksother is hpc15:50
rgreeningok. my bad. I want HA not HPC...15:50
ivoksthat's sharing cpu/mem, but applications should be aware of that15:50
ivoksso, in HA cluster, you have to designate VMs to certain servers15:51
ball#hpc is a nice channel for those who are interested in that.15:51
ivoksand backup solutions if those servers fail15:51
rgreeningivoks: ok.15:51
ivoksso, let's say vm1 and vm2 on serverA15:51
ivoksvm3 and vm4 on serverB15:51
ivoksvm5 and vm6 on server C15:51
ivoksif serverC fails, vm5 moves to serverA and vm6 moves to serverB15:52
rgreeningok..15:52
rgreeningand this can be preconfigured/determined right?15:52
ivoksserverA doesn't know a thing about serverB or serverC15:52
Byronivoks: what would cause my php files to download rather than display?15:52
ivoksit only knows their IP addresses and where to shoot if it wants to kill them15:52
ivoksByron: browser cache?15:53
ByronThese are all fresh boots15:53
ivoksi don't get it... what can go wrong with the command 'apt-get install apache2 php5'15:53
ivoksthat's all that's needed to install apache with php15:54
rgreeningsounds reasonable ivoks.15:54
ivoksrgreening: that's fail over15:54
ivoksthen, you'll need shared storage15:55
ivoksthat can be NAS or DRBD15:55
ivoksDRBD is basicaly a RAID1 over network15:55
=== nxvl_ is now known as nxvl
ivoksversion in karmic supports having three nodes in primary-primary-primary setup15:56
rgreeningok, so I have 4xGE on each server. and I have 3x300GB 10K SAS drives in HW RAID in each server...15:56
rgreeningso I don't need an external storage array?15:56
rgreeningI can get one, if it will give a large perf boost...15:57
ivokswell, fully redundant fiber channel or 10Gb iscsi would be a better options, but let's pretend you don't have couple of hunderts of thousands of dolars :)15:57
rgreeningyou'd be correect :)15:57
rgreeninglol15:57
specto10Gb iscsi is almost never ever utilized15:58
rgreeningivoks: you are awesome btw.15:58
spectoeven with high traffic io15:58
ivoksthose might be even less than $100.000 :)15:58
ivoksspecto: right, but is faster than fiber channel15:59
spectoThe average, according to cisco, is around 800kbps, so really 1Gb is only needed, max 215:59
ivoksspecto: ?15:59
spectonote I would rather have 10Gb :P15:59
spectoivoks: I was in a super long meeting with cisco, netapp, and vmware yesterday....16:00
spectoivoks: I don't understand why they promote NFS as the best solution....16:00
ivoksand they said you need only 800kbps to you disks? :)16:00
ivoksyour16:01
ivoksi want gigabits :)16:01
spectoThey said that's the customer average16:01
spectoand mbps not kbps sorry16:01
ivoksah...16:01
ivoksok... so16:02
ivokslocal disks are still the fastest thing16:02
spectotrue that16:02
ivoksdrbd will make them slower, but that's something rgreening will have to accept if he wants high availability16:03
spectotrue, it's not too bad though if you have decent bandwidth.16:03
rgreeningivoks: 4xGE..16:04
ivoksright, he could bond ethernets to form 2Gbps link16:04
rgreeningso, do I need to seperate the drbd ports from the regular vlan ports?16:04
ivoksswitch between them is gigabit?16:05
spectorgreening: it's a good idea, or even seprate switches because you need high availability and the least amount of chatter16:05
spectoand see if you can turn on jumbo frames for just that particular vlan16:05
rgreeningyeah, I'll have a Cisco 37xx GE or 4xxx GE16:05
spectothat'll work16:05
ivoksso, keep in mind16:05
ivoksdrbd link - for block device sync; you can use the same link for ocfs2 sync16:06
=== Nicke_ is now known as Nicke
ivokscluster link - for communication between nodes16:06
ivoksand wan16:06
spectoivoks: lost me on that one :P16:07
ivokswhere exactly? :)16:07
rgreeningso, 2xGE drbd/ocfs2, 1xGE cluster link, 1xGE wan/intenet/core vlans..16:07
spectoivoks: I hadn't heard of ocfs216:07
ivoksoracle cluster file system v216:07
ivoksrgreening: right, you could use drbd/ocfs/cluster on same link16:08
ivoksrgreening: and then bond them, making them faster and allowing for failover16:08
ivoksif cable or network card dies16:08
rgreeningivoks: ok, if I bond them, they can't go to different switches though, correct...16:09
ivokssort of...16:10
spectoAnd do what my employer does, dual power supplies, dual power source, mirrored switches....16:10
rgreeningI have 2 DC PWS in each.16:10
rgreeningand a DC plant, double deisal generator as well16:10
rgreening:)16:10
ivoksyou should look at ifenslave modes16:10
rgreeningivoks: ok. cool16:10
rgreeningivoks: where are you located?16:11
spectoNice, for some reason they have 3 battery backups, 2 for each line, and a third to back the other two up, with a diesel generator as well16:11
ivokscroatia16:11
rgreeningcool16:11
spectoand the building can withstand hurricane level winds16:11
ivoksmode 2 could be interesting16:11
ivoksi think that could work with different switches16:11
rgreeningivoks: you have been such a huge help.16:11
specto(note this is the health care industry, people could die if it went down)16:11
rgreeningty ty ty ivoks :)16:12
ivoks:)16:12
ivoksXOR policy: Transmit based on the selected transmit hash policy. The default policy is a simple16:12
ivoks(source MAC address \oplus destination MAC address) % n_{slaves}16:12
* rgreening owes ivoks beers 'n food 'n stuff :)16:12
spectoivoks: how do you know so much!?16:13
ivoksor x% of your earnings on the project :)16:13
ivoksspecto: i don't, really :)16:13
* rgreening is trying to save his job/career by doing this, as well as the jobs of the rest of the office.16:13
ivokshehe16:13
rgreening:)16:13
spectoivoks: I can't remember all of that stuff off the top of my head.  Guess I better keep working on that16:13
ivokswell, i used google to find out the node number for ifenslave16:14
rgreeningivoks: I am waiting to mount the servers. I assume, a default Ubuntu Server install is the correct path.16:14
rgreeningand go from there16:14
ivoksand i've been working on cluster stack for month or two, so it would be funny if didn't know at least that16:14
ivoksrgreening: sure16:15
* mathiaz waves at ivoks 16:15
rgreeningok. I guess I need to join the server team :)16:15
ivoksmathiaz: o/16:15
rgreeninghah16:15
ivoksrgreening: but, really, if you are planing on using ha cluster only for VMs16:16
ivoksrgreening: you should invest some time in learning eucalyptus and ubuntu cloud strategy16:16
ivoksi haven't looked at it yet, so i don't know details, but it might be what you are looking for16:17
rgreeningivoks: would it still use the base stuff we already talked about?16:30
ivoksi don't know16:30
ivoksi have no idea what eucalyptus does exactly16:30
rgreeningok... hehe16:30
uvirtbotNew bug: #397699 in samba (main) "samba fixes for roaming profiles introduce regressions" [Undecided,New] https://launchpad.net/bugs/39769916:30
ivoksit's cloud :D16:30
rgreeningdo you know who the expert to ask is?16:31
ivoks...anyone deploying eucalyptus? or knows what it does?16:31
rgreeninghehe16:32
ivoksi'm sure there are16:34
ivokserichammond could give you some info about what cloud really is16:34
ivoksi see him bloging about clouds all the time16:34
ByronHow do I setup FTP on my Ubuntu 9.04 LAMP server?16:53
kim0mathiaz: Hi there .. I was looking for a Hardy preseed file to allow degraded raid1 installation .. and was told you have the needed magic .. :)16:54
ivokshttps://help.ubuntu.com/9.04/serverguide/C/ftp-server.html16:54
ByronThanks ivoks16:55
mathiazkim0: hm - hardy may be more complicated16:55
kim0mathiaz: ick .. thought so :16:55
mathiazkim0: setting up a preseeded raid installation requires the use of partman-auto-raid16:55
mathiazkim0: which is in universe for hardy: http://packages.ubuntu.com/search?keywords=partman-auto-raid16:56
mathiazkim0: that means the udeb is not on the installation media16:56
kim0mathiaz: I am rebuilding the iso anyway16:56
mathiazkim0: how do you plan to install your systems? via cdrom or network?16:56
kim0cdrom16:56
kim0I can drop in the udeb and rebuild it no problem16:56
mathiazkim0: well - if you rebuild the iso, then you have to put partman-auto-raid in the cdrom16:56
kim0and then you have the string needed in the preseed file ?16:57
mathiazkim0: http://paste.ubuntu.com/214903/16:58
kim0mathiaz: perfect thanks a lot16:58
mathiazkim0: this is working correctly for intrepid+16:58
mathiazkim0: so the preseed strings may be different with the version of partman-auto-raid in hardy16:59
mathiazkim0: I've never tested partman-auto-raid in hardy - it may be broken :/16:59
kim0oh .. hope it works then :/17:00
kim0mathiaz: that one is not degraded is it17:00
kim0it has 2 disks17:00
kim0mathiaz: do I just delete one disk and decrement the count of devices <devcount> ?17:00
mathiazkim0: right - I've never tested installing a degraded raid array17:01
mathiazkim0: I don't know if partman-auto-raid or the installer would support that use case17:01
mathiazkim0: cjwatson may have a clue on this one17:01
kim0mathiaz: okie then .. thanks again17:02
cjwatsonmathiaz: we sent him to you ;-)17:06
cjwatsonthe installer is supposed to support it17:06
cjwatsonI just don't have recipes to hand17:06
mathiazcjwatson: ah ok. I've pasted a recipe that does it a raid installation17:06
cjwatsonI think 'mdadm mdadm/boot_degraded boolean true' is the rune17:06
cjwatsonbut I don't know exactly what to do at the partman level17:07
mathiazcjwatson: I wasn't sure if the installer would actually install a degraded system - ie one of the disk is not there17:07
mathiazcjwatson: right - me neither. I've never tried to preseed a degraded install17:07
* cjwatson holds nose and looks at partman-auto-raid17:08
cjwatsonit looks as if it should let you simply by leaving out device names17:09
cjwatsonhttps://help.ubuntu.com/9.04/installation-guide/i386/preseed-contents.html and search for partman-auto-raid17:09
cjwatsonif the number of devices you give is smaller than devcount, I think it will come out degraded17:10
cjwatsonbut you may need 'mdadm mdadm/boot_degraded boolean true' to arrange for the system to boot properly afterwards17:10
cjwatsonkim0: ^-17:10
cjwatsonthis is entirely untested, and as mathiaz said you will need to include partman-auto-raid17:10
kim0cjwatson: perfect .. so I'll drop in the udeb, respin the iso, use mathiaz's recipe and if the moon-phase is right, it should work17:13
kim0that's great .. thanks folks :D17:13
kim0use the recipe with only one disk that is17:14
IllusionHello Folks, I have a question about PXEBOOT/tftpboot in Ubuntu 64 8.10 server edition. Is it possible to boot up Windows CD's (unattended). I can boot Linux images (Knoppix Live/Ubuntu Live/Gparted) without any problems but Windows kernels don't like me. Anybody has a an idea to resolve such issue's. I know it's a lot easier to use a Windows server with RIS to remote install client machines.17:26
Illusionow, the kernel won't load. It just gets stuck. Anybody has a guideline for that maybe?17:29
ivokslast time i installed windows, there was no ubuntu :)17:30
rgreeningivoks: I started a page to track my clustering work. I used the spec template, so that if in the future we need a spec to help improve some aspect of this solution for karmic (or +x) we can use it. It's located here: https://wiki.kubuntu.org/rgreening/clustering17:34
ivoksok17:34
ivoksi just managed to compile pacemaker with corosync/openais 1.017:35
ivoksthat would be a big milestone17:35
rgreeningivoks: ty again for setting me down the correct path for what I needed.17:35
ivoksnp17:35
ivokskeep an eye on https://edge.launchpad.net/~ubuntu-ha/+archive/ppa17:35
rgreeningcool. will do.17:35
ivoksthis will end up in karmic, eventually17:36
ivoksbut we use ppa for testing17:36
kim0cjwatson: mathiaz: as I try that .. I get "The installer failed to process the preconfiguration file" .. zero mention of what's actually wrong ?17:37
rgreeningyeah, we do the same for Kubuntu17:37
rgreeningivoks: I was a server guy many moons ago. Then a desktop dev... getting back to server with this cluster :P17:37
cjwatsonkim0: syslog may say17:42
cjwatsonin fact I'm pretty sure it will17:43
IllusionIs anybody able to answer my question? I hope im not impatience in your eyes.17:44
cjwatsonIllusion: I'm not sure about impatience, but I suspect the problem is simply that folks here are not by and large terribly familiar with the intricacies of Windows. Wouldn't it be better to ask somewhere Windows-oriented?17:45
Illusioncjwatson: Well yes, but since I use a linux server i guess that's not an option. Windows Servers have a RIS server for that which is Pxeboot/tftpboot in linux.17:46
ruben23hi please check my error http://pastebin.com/md3f68fe17:58
ruben23anyone can help on this17:58
spectoruben23: pastbin  >  cat /etc/apt/sources.list18:01
ruben23) specto:  http://pastebin.com/m2a2f3fc7 <-----------this is the output, this a newly installed18:04
spectoruben23: looks normal.18:06
spectoruben23: have you updated yet?18:06
spectoruben23: apt-get update18:06
=== Illusion is now known as Illusion|afk
ruben23specto: havent yet18:08
spectoruben23: do that, and then apt-get install apache218:08
ruben23i wont like to update- to not install unecessary packages18:08
ruben23apt-get update will install unecessary not needed packages right..?18:09
spectono18:10
spectoruben23: update updates the package lists18:10
spectoruben23: you must do this18:10
spectoruben23: upgrade installs updated packages, only packages that are already installed18:10
ruben23ok18:13
ruben23 specto: i got this ouput-------->  http://pastebin.com/pastebin.php18:19
ruben23is this updated..?18:19
karstedtHello, i am attempting to use apache to forward incoming traffic from different subdomains to different ports on internal server and not having much luck18:22
karstedtIve got it to redirect flow to port 8080 however i cannot seem to get it to access /var/www/ from regular domain any more18:23
spectokarstedt: sorry, don't know much about apache18:25
karstedtdo you know of something else that would do what i am looking for?18:26
spectokarstedt: I know you can do this with apache18:26
karstedtyeah, partially set up but not functioning right18:27
spectokarstedt: I use lighttpd web server, but all of it invovles changing configuration files.  Sounds like you may not have the server root or whatever apache calls it set.18:27
karstedtnot suer how to do that, DocumentRoot is set to /var/www/18:28
karstedtjust gives me back a blank page when i access it though18:28
spectoWhere are you setting it to port 8080? or are you simply doing a redirect?18:28
karstedtreverseproxy / 192.168.1.100:808018:29
karstedtwith server name media.example.com18:29
karstedtso it should foreward all traffic with media subdomain to port 8080 internally18:29
karstedtand it does that fine, however i cannot get it to direct traffic from www.example.com to /var/www/ root18:30
spectoAh I see, a proxy, couldn't help you there, no idea how apache does this.18:30
karstedtme either, ;)18:30
spectodoesn't seem like you would want to use a reverseproxy though18:30
spectoyou want to create a virtualhost18:31
karstedtit is a virtual host w/ Proxy Off18:31
karstedtso no one can piggy back off my server18:31
spectoAnyone else want to take a gander?18:32
karstedt<VirtualHost 192.168.1.100:80>18:32
karstedtServerName media.karstedthome.com18:32
karstedtProxyRequests off18:32
karstedtProxyPreserveHost on18:32
karstedtProxyPass / http://192.168.1.100:8080/18:32
karstedtProxyPassReverse / http://192.168.1.100:8080/18:32
karstedt</VirtualHost>18:32
karstedt<VirtualHost 192.168.1.100:80>18:32
karstedtDocumentRoot /var/www/18:32
karstedtServerName karstedthome.com18:32
karstedt</VirtualHost>18:32
karstedt<VirtualHost 192.168.1.100:80>18:32
karstedtDocumentRoot /var/www/18:32
karstedtServerName www.karstedthome.com18:32
karstedt</VirtualHost>18:32
specto!pastbin | karstedt18:32
ubottuSorry, I don't know anything about pastbin18:32
specto!pastebin | karstedt18:32
ubottukarstedt: pastebin is a service to post multiple-lined texts so you don't flood the channel. Ubuntu pastebin is at  http://paste.ubuntu.com | To post !screenshots use http://tinyurl.com/imagebin | !pastebinit to paste directly from  command line | Make sure you give us the URL for your paste - see also the channel topic18:32
karstedthmmm ok18:33
spectokarstedt: just don't paste configuration files here, put them on pastebin and give me the link, easier to read, no scroll-back etc18:33
karstedt!pastebin http://paste.ubuntu.com/214964/plain/18:34
ubottuError: I am only a bot, please don't think I'm intelligent :)18:34
karstedtlike that?18:34
spectojust the link18:35
karstedtok18:35
karstedtany one have ideas about how to get this accomplished?18:37
karstedtis there anything wrong with my virtual host file?18:37
spectotrying to figure it out18:38
spectoIs it just media that is doing this?18:38
karstedtmedia is the only one functioning properly atm18:39
karstedtother domains wont access /var/www/18:39
karstedtonly have one file in there atm test.php to see if its working properly or not18:39
spectoVirtualhosts generally point somewhere else, not the same location18:40
spectoWhy else would you need a virtual host?18:40
spectooh sorry was looking at the wrong conf file18:40
karstedt;)18:41
spectoinstead of putting an IP why not put *18:41
spectono port either as long as you have listen 80 in your conf18:42
karstedtill try that, i think its listening on all ports but router is only open on 8018:43
karstedtsame issue media goes where it should and www and @ jsut sit there18:44
karstedtactually @ sends to port 8080 too for some reason lol..18:44
KillMeNowhttp://articles.slicehost.com/2008/4/29/ubuntu-hardy-apache-virtual-hosts-118:45
spectohttp://httpd.apache.org/docs/2.0/mod/mod_proxy.html18:46
karstedtfirst article helped condense the code a bit with serveralias , forgot about that command however still wont access files in /var/www/18:52
karstedtand if permissions are not set right apach gives you the forbidden error so i dont think thats it18:52
spectosorry :S18:53
spectoyou could try #httpd18:54
karstedtthat file is blank idk18:55
spectokarstedt: try the #httpd channel, they might be able to help you better.18:58
karstedtok ty18:58
dsandageNetworking/Install Problem: Using 8.04.2, accross multiple machines, same result = with two NICs installed, I can recieve DHCP, and then recievce ONE ping reply, at which point I experience no further network traffic.19:17
spectodsandage: weird.19:20
dsandageAgreed.19:20
dsandageIt has done this EVERY time I have isntalled on a machine with two nic's, I only have one connected to the network even.19:21
mathiazzul: do you have any idea where debian/patches/57-fix-mysqlslowdump-config.dpatch comes from?19:21
mathiazzul: or which bug it fixes?19:21
mathiazzul: I'm refering to the mysql-dfsg-5.0 package19:22
zulmathiaz: refresh my memory can you pastebin the patch?19:22
mathiazzul: http://paste.ubuntu.com/214984/19:22
zulmathiaz: not from me afaik19:23
dsandagealso, removing secondary nic consistently resolves problem19:23
dsandagebut now I need the second nic19:25
zulmathiaz: https://bugs.edge.launchpad.net/ubuntu/+source/mysql-dfsg-5.0/+bug/18376219:27
uvirtbotLaunchpad bug 183762 in mysql-dfsg-5.0 "mysqldumpslow doesn't work" [Low,Triaged]19:27
NorthByNorthWestHi all! I installed a Ubuntu Server in my desktop in a vbox-machine... now i have bought and installed a dedicated server computer with Ubuntu Server Edition... can I simply move my virtual harddrive from my desktop to the new server and start up the virtual machine?19:30
NorthByNorthWestUbuntu server documentation doesnt seem to mention vbox in particual...19:31
spectoNorthByNorthWest: probably19:31
spectoNorthByNorthWest: :P19:31
NorthByNorthWestspecto: thanks ;)19:31
spectoNorthByNorthWest: you may need some configuration files though19:32
NorthByNorthWestThe official documentation, Chapter 17. Virtualization, lists libvirt / JeOS / Eucalyptus / OpenNebula... are they alternatives to vbox? which one to choose?19:33
spectolibvirt is a virtualization library, JeOS is a stripped down kernel for virtualization playforms, Euctalyptus is a Cloud computing platform, I would just use vbox.19:35
spectoor you could use xen, or kvm, with an ovirt or convirture front end19:36
BookmanHow would I get through to a computer behind a router, behind a router, behind a modem?19:55
happyport forwarding19:56
happyyou need to login to your router/modem through the web interface. then look for the part about "port forwarding"19:56
Bookmanhappy: yeah, I thought I tried that....still doesn't seem to work19:56
happyBookman: then you did it wrong19:57
BookmanI set my computer to be on the dmz of my first router.19:57
Bookmanmy second router is hooked to my first router via the WAN port19:57
BookmanI forwarded port 22 to my second router19:58
BookmanAnd yet it still times out when I try to access19:58
happyBookman: there are multiple reasons for that. What model is it?19:58
qman__Bookman, the outer router needs to have the inner router set as the DMZ19:59
Bookmanah.19:59
qman__then the inner router needs to forward the port to your computer19:59
BookmanDlink DIR615 is first router19:59
BookmanBelkin_Pre-N_530200 is the second router20:00
happyBookman: listen to qman__ :-)20:00
Bookmanworking20:00
=== rgreening_ is now known as rgreening
Bookmanqman__: hmmm, still no luck.  Still times out20:02
happyis ssh on?20:03
happyi mean the ssh server20:03
Bookmanyes, it worked before I added the second router20:03
happyBookman: how could you hold back info like that :-P20:03
happythis means the issue is with the second router20:04
BookmanSorry!:)20:07
BookmanOk, how to diagnose?20:07
BookmanI set my computer as the dmz on the second router still time out20:10
BookmanOk, no worries.  For what ever reason, it is working now.20:12
BookmanThanks for the tips and help!20:12
BookmanI've actually turned off the dmz on the second router and used port forwarding.  Still works and I'm pretty sure more secure20:14
=== Illusion|afk is now known as Illusion
qman__yeah, it's advisable to not use the DMZ setting whenever possible20:32
qman__also, when running an internet-facing SSH server, make sure you don't have any guessable user/password combinations, there are bots that just scan the internet for open SSH servers20:33
qman__I get lots of dictionary attacks regularly, and I don't even have a static IP20:34
qman__I configured iptables using the recent module to slow brute forcing to a crawl20:35
spectoI use denyhosts despite some others disliking it, I enjoy seeing an easy overview of blocked ips20:45
Bookmanqman__: understood.  I use denyhosts.20:45
=== Enkz is now known as Enkz|Away
Tumiei'm going to install a server21:30
Tumie:D21:30
Tumiefor the people who want to monitor their server: use ssh + conky :)21:31
jpdsTumie: What happened to Nagios/Munin?21:36
Tumiejpds: no idea :p21:36
Tumiebut conky = realtime on your desktop :)21:36
Tumiesaw an article about it, @ dutch linux magazine21:38
KillMeNowspecto:  there are brute force IPTable rules you can make that will block ssh attempts after X number of connections21:45
spectoKillMeNow: I know.21:45
KillMeNowahh ok21:45
spectoI like denyhosts because I don't want to further mangle my iptables and I like the logging for denyhosts21:46
KillMeNowi hear ya21:47
GalbadoreNeed a tarball and apt-get install expert.21:51
GalbadoreQuestion: I installed a apt-get package and installed a .tar, same package. I want to clean out the config for both. How do I accomplish this?21:52
happyGalbadore: delete the config file?21:53
happyScottK: why use port nocking when you can use spa?22:11
ScottKI don't even know what that is and I'm pretty sure I'm good with that.22:12
happyScottK spa is single packet authentication. It is a secure replacement for port knocking22:13
ScottKOK.  It sounds less scary.22:13
happylol22:13
ByronIf I have my ubuntu server behind a router, do I follow the steps to configure a static IP within the ubuntu server?22:16
KillMeNowwell, if you plan on port forwarding i would suggest it22:17
KillMeNowyou can grab it's mac address and have it DHCP using a reserved address22:17
KillMeNowi hvae one of my servers doing that from a MS DHCP server22:18
Byronthanks KillMeNow22:20
KillMeNowwelcome byron22:23
uvirtbotNew bug: #396026 in sysstat (universe) "sadc "double free or corruption"" [Undecided,New] https://launchpad.net/bugs/39602622:46
uvirtbotNew bug: #396027 in mysql-dfsg-5.0 (main) "mysql appears to be installed twice :( !" [Undecided,Invalid] https://launchpad.net/bugs/39602722:46
uvirtbotNew bug: #397876 in php5 (main) "define() not working as intended" [Undecided,New] https://launchpad.net/bugs/39787623:11
ByronKillMeNow: That worked like a charm, as expected I suppose.23:14
ByronNow I need to figure out the on-going issue with php files being downloaded.23:14
KillMeNowphp files being downloaded?23:19
sseiersendoes jaunty support hot swap PCI?23:39
sseiersenand hotswap SCSI drives?23:40
sseiersenpretty much everything as hotswap?23:40
KillMeNowno idear23:40
sseiersen:/23:40
KillMeNowi mean, i have servers right now that have hotswappable back plane for scsi drives23:40
sseiersenanyone here atm?23:40
KillMeNowbut that's probably handled by the hardware raid controller23:41
sseiersenI got HP ProLiants where everything is hot swap23:41
KillMeNowsorry sseiersen23:41
sseiersenIncluding the processors23:41
KillMeNowyea, i have Dell 1750's23:41
sseiersenYAY Dell!23:41
KillMeNownope, the proc's on my Dells aren't23:41
sseiersenIm buying a few soon23:41
KillMeNowbut the powersupplies and the drives are hot swap23:41
sseiersenMine are23:42
sseiersenI can drop in a new processor willy nilly23:42
sseiersen:]23:42
KillMeNowthat's pretty pimp23:42
sseiersenIndeed23:43
sseiersenI bought about 10 ProLiants from a government liquidation23:43
sseiersen:]23:43
KillMeNowwow, lucky you23:43
sseiersenFormer Dept of Transportation servers23:43
KillMeNowi don't have the cash reserves right now to hit the Gov't auctions23:44
KillMeNowi bought my Dell's from a mortgage company that went belly up last year23:44
sseiersenMine were $12 a pop23:44
sseiersenLove them23:44
sseiersenDual P3's23:44
sseiersenLoud as hell tho23:44
KillMeNowthey were pretty new, bought the rack, Rack mount KVM & keyboard, servers and UPS for $60023:45
KillMeNowheh, i gots the dual Xeon's23:45
sseiersennice23:45
KillMeNow3.06 ghz23:45
sseiersenI plan on buying more eventually23:46
KillMeNowbut i'll tell ya, my power bill went up over 50%23:46
sseiersen:]23:46
KillMeNowbuggers SUCK the juice23:46
sseiersenGood ol' power23:46
sseiersenMine take 60Wph23:46
KillMeNowyea, i need to throw up some solar panels23:46
sseiersenReally low23:46
KillMeNowyea, i am not sure what the 5 suck up23:46
KillMeNowi could look on the back if i were so inclined23:47
=== KillMeNow is now known as KillMeNow[A]
* KillMeNow[A] is now away - Reason : AFK for a bit23:57

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!