/srv/irclogs.ubuntu.com/2009/07/23/#ubuntu-server.txt

Kira	I installed the kubuntu-desktop and ubuntu-desktop packages on my Jaunty server. Now the graphical desktop environment shows up every time the computer boots up.	00:56
Kira	How do I disable it properly?	00:56
Kira	(I want to have access to the graphical desktop environments when I feel extremely lazy)	00:57
Kira	but I don't want it to show up automatically at boot time.	00:57
twb	Kira: remove gdm/kdm from the list of services started at boot.	01:01
twb	rcconf provides a simple checkbox ui to do this.	01:01
Kira	sounds great. Thanks	01:14
Kira	How about X server though?	01:14
Kira	Shall I/do I need to disable it?	01:14
Kira	be back later	01:16
=== Pici` is now known as Pici
mathiaz	kirkland: hey - does every source file need to have copyright and license notice?	01:41
mathiaz	kirkland: is this something archive admins would use to reject a new package?	01:41
mathiaz	kirkland: example: http://revu.ubuntuwire.com/report.py/legal?upid=6399	01:42
kirkland	mathiaz: here's my take	01:43
kirkland	mathiaz: every file should have a copyright header	01:43
kirkland	mathiaz: but upstream doesn't always do it that way	01:43
kirkland	mathiaz: if upstream is friendly, and trying to get this packaged for ubuntu, then i'd probably ask them to make sure they have a copyright header in every file, and give them a list of the files missing that stuff	01:43
kirkland	mathiaz: on the other hand, upstream is often inactive, or uninterested in this sort of thing	01:44
kirkland	mathiaz: and blocking on that is a little juvenile	01:44
kirkland	mathiaz: the thing to be certain is of the copyrights and licenses that are present	01:44
mathiaz	kirkland: ok - I'm still asking for modification on the package	01:44
mathiaz	kirkland: I may well ask for updates to the copyright file	01:45
kirkland	mathiaz: yeah	01:45
mathiaz	kirkland: I may well ask for proper updates of copyright statements	01:45
kirkland	mathiaz: it's poor form for a project not to have copyright headers in place	01:45
Kira	I'm back.	01:46
mathiaz	kirkland: unrelated question - do you know of libraries that use a camel case naming scheme for their libraries?	01:47
Kira	So, back to the desktop environment issue. Beside gdm/kdm do I also need to do something about X server?	01:47
mathiaz	kirkland: ex: libOpenDRIMCommon0	01:47
twb	Kira: you do not.	01:55
twb	Kira: an unfortunately all too common :-(	01:55
twb	Oops, bad completion.	01:55
twb	kirkland: an unfortunately all too common :-(	01:55
kirkland	mathiaz: hmm, not off the top of my head	01:58
artillerytx	how would ubuntu server perform on a uverse connection	01:58
kirkland	mathiaz: and i don't see any in /lib	01:58
Kira	Hmm	01:58
Kira	What's that "laptop-mode" I see in rcconf?	01:58
twb	There should be an update-rcconf.* script that adds descriptions	01:58
Kira	Aaah	02:00
Kira	That's what I get for skipping the man page before using an application, heh.	02:00
axisys	how do I swtich a ubuntu server to static ip ?	02:21
mathiaz	kirkland: Has the reboot action disappeared in the latest version of libvirt (backport to hardy)?	02:24
mathiaz	kirkland: I'm seeing this error while trying to define a new guest: http://paste.ubuntu.com/225499/	02:24
twb	axisys: edit /etc/network/interfaces	02:25
mathiaz	kirkland: this is with libvirt 0.6.1-0ubuntu5.1~rc1ppa1	02:25
kirkland	mathiaz: https://bugs.edge.launchpad.net/ubuntu/+source/libvirt/+bug/368962	02:27
uvirtbot	Launchpad bug 368962 in libvirt "[Jaunty] Can't reboot kvm virtual machines using virsh" [Undecided,New]	02:27
kirkland	mathiaz: maybe?	02:27
kirkland	mathiaz: there are two duplicates, filed by marc tardif	02:27
kirkland	mathiaz: sorry, this one was filed by cr3	02:27
kirkland	mathiaz: i see 2 dupes	02:28
mathiaz	kirkland: yes - this is it.	02:28
nick_schembri	axisys, is anyone helping you?	02:29
kirkland	mathiaz: confirm it, assign to soren, bug him till he fixes it :-)	02:31
mathiaz	kirkland: does this mean that vm instances cannot be rebooted in UEC?	02:34
kirkland	mathiaz: hmm, i'm not sure	02:34
mathiaz	kirkland: well - since UEC uses libvirt and kvm it shouldn't support reboot an instance	02:35
axisys	nick_schembri: i got help from twb	02:37
axisys	nick_schembri: thanks..	02:37
mathiaz	kirkland: hm - well - a reboot from inside the guest works as expected	02:37
axisys	twb: thanks a lot	02:37
twb	Yes, yes. Quiet now, unless you need help. I'm busy.	02:38
kirkland	mathiaz: so it's just virsh	02:38
kirkland	mathiaz: or through libvirt, rather	02:39
kirkland	mathiaz: from the host	02:39
nick_schembri	axisys: cool	02:42
axisys	nick_schembri: thanks a lot	02:50
cef	Re: Reboots. Inside the guest, do you have acpid installed?	04:18
cef	ahh nm	04:19
cef	sigh wish someone would get around to reassigning my bug from vm-builder to debootstrap.. sigh	04:22
twb	cef: you can't?	04:26
twb	cef: ah, you're a luv dude. I wondered where I recognized your name from.	04:27
cef	twb: indeed	04:28
twb	(Apart from, y'know, Magic Knight Rayearth.)	04:28
twb	Apparently that was "Clef"	04:29
cef	oh and yeah.. I think I can add another project, but I dunno if I can remove it from the current one.. will give it a shot	04:29
ajmitch	you can only mark it as invalid on the current one, you can't remove it	04:29
cef	and yeah, it tells me there is no debootstap project on ubuntu so I can't assign it to it.. it's suggesting pbuilder.. hrm	04:31
ajmitch	which bug?	04:31
cef	yet I can see bugs against debootstrap in launchpad.	04:32
cef	https://bugs.launchpad.net/ubuntu/+source/vm-builder/+bug/392377	04:32
uvirtbot	Launchpad bug 392377 in vm-builder "building vm image on text console causes gettys to stop respawning" [Undecided,New]	04:32
cef	turns out i can reproduce that using just debootstrap.. (as in the bug report)	04:33
cef	so nothing to do with vm-builder	04:33
ajmitch	ok, changed it	04:33
ajmitch	I was wrong, you can change the package of a bug task, but can't remove the task altogether :)	04:34
cef	bbk	04:39
rose_	hello ! i am having problmes with samba, smbd and nmbd doesn't start	04:53
rose_	somebody can helo me?	04:53
twb	!somebody	05:02
ubottu	A large amount of the first questions asked in this channel start with "Does anyone/anybody..." Why not ask your next question (the real one) and find out?	05:02
twb	rose_: you need to collect information about why it isn't starting	05:02
twb	rose_: e.g. checking logfiles.	05:02
rose_	hi, thanks a lot...in the log.nmbd i got Failed to open nmb socket on interface 172.17.2.1 for port 137. Error was Cannot assign requested address	05:18
rose_	also this one ERROR: Failed when creating subnet lists. Exiting.	05:21
rose_	when i do smbclient i got Error connecting to 172.19.0.72 (Connection refused)	05:24
rose_	Connection to 172.19.0.72 failed (Error NT_STATUS_CONNECTION_REFUSED)	05:24
dpreacher	hello people, can someone help me with understanding the following lines...	05:37
dpreacher	Jul 23 09:23:33 <kern.notice> server101 kernel: [4218043.008816] type=1503 audit(1248321213.176:1194): operation="inode_permission" requested_mask="::r" denied_mask="::r" fsuid=104 name="/proc/26271/net/if_inet6" pid=26273 profile="/usr/sbin/named"	05:37
dpreacher	this is IST. so its july 23rd already. its 10 am right now, so this was about 37 mins. ago roughly	05:38
dpreacher	these are messages from dmesg that have been logged into /var/log/messages but dmesg itself now is having > 500 of these lines and does so every boot.	05:39
dpreacher	thanks for your inputs in advance	05:39
cef	dpreacher: if that PID belongs to the named process (which afaik is what the line does tell us), then it seems like it's trying to do something with ipv6, and the apparmor profile isn't allowing it (it seems) ?? hope that's right	05:52
dpreacher	where would i look in on a ubuntu server 8.10 to find out relevant apparmor audits. If i'm not mistaken it comes default.	05:53
dpreacher	cef^	05:54
dpreacher	apparmor is novel/suse stuff right cef?	05:54
cef	not sure myself.. going to look on a machine here.. dunno if I'll be able to find in time (about to walk into a meeting.. damn meetings!)	05:54
dpreacher	oh man	05:54
dpreacher	you be prepared for your meeting cef	05:54
dpreacher	work's important. but thanks for offering to help and the clue	05:55
cef	no probs	05:56
cef	probably need to find out anyway, since the new dns server I'm building for work has apparmor on it. ;)	05:57
cef	oh fun.. never want to see a segfault on boot of a vm machine.. sigh	05:57
rose_	Hi ...I am new in ubuntu and i have been spend 2 week trying to install something and everythink is a research and a bag or something, I just fonish to install a new samba server but the windows machine can't see it...	05:59
rose_	I got some errors as por example when i try to connect with smbclient i got Connection to 172.19.0.72 failed (Error NT_STATUS_CONNECTION_REFUSED)..i google a lot but i can't find the solution...somebody can help me ?	06:00
dpreacher	cef hi again	06:33
dpreacher	i saw that apparmor has enforced policy profiles for /usr/sbin/named do you know how to see the policy enforced or to disable it atleast	06:34
dpreacher	thanks cef	06:34
dpreacher	oh oops, you were to be in meeting	06:34
dpreacher	please take a look if you are back cef	06:34
=== FFForever-Away is now known as FFForever
rose_	i dont understand why nobody responde me, maybe because i dont speak well english but unfortunately where are not to much forum online in ubuntu	06:47
dpreacher	hey rose_ don't worry about your english. maybe its an unsolved question for others as well. no one speaks perfect english generally speaking	06:49
rose_	thanks	06:50
dpreacher	rose_ google results for your problem http://www.google.co.in/search?q=Error+NT_STATUS_CONNECTION_REFUSED	06:52
dpreacher	you might try out some things suggested in top 3 results and get back here with your progress. rose_	06:52
rose_	thanks I was googling all day and I can't find nothing	07:00
cef	rose_: also make sure you can ping all the ip addresses listed in those error messages. if an interface is down or it's getting confused about an IP, that might help	07:04
cef	dpreacher: just got back.. ugh.. but yes.. just looking now..	07:04
* cef wonders why kvm is now buggy.. damn package update borking things!		07:04
dpreacher	TIA cef	07:06
cef	dpreacher: /etc/apparmor.d/ contains all the apparmor profiles. specifically 'usr.sbin.named' contains the apparmor details for the named process	07:07
dpreacher	cool. looking into it . thanks cef	07:08
cef	looking at it myself	07:08
cef	dpreacher: do you have ipv6 in use? eg: either in bind or on your network?	07:09
dpreacher	nowhere	07:09
dpreacher	cef relevant to inet6 i see the following line in usr.bin.named profile	07:12
dpreacher	/proc/net/if_inet6 r,	07:12
dpreacher	read only i suppose cef	07:12
cef	yup.. seems that way.. so not sure why apparmor is complaining	07:13
dpreacher	will it be enough to comment out that line and try...with an apparmor reload	07:13
dpreacher	as far as possible i'd want to avoid rebooting the server	07:13
cef	might make it just as bad.. but might want to check the man pages for apparmor (incl. apparmor.d and related executables)	07:14
dpreacher	ok...	07:14
sbeattie	no, you'll want to add "/proc/1-9*/net/if_inet6 r," to the usr.bin.named profile, restart apparmor (to reload the policies) and then restart named.	07:14
dpreacher	sbeattie is it advisable to enforce policies for ipv6 which am not using at all. in fact i even disabled ipv6 related features that were enabled on bind	07:15
sbeattie	bah, sorry, "/proc/[1-9]*/net/if_inet6 r,"	07:15
=== rgreening_ is now known as rgreening
cef	sbeattie: it's got '/proc/*/net/if_inet6 r,' already	07:16
cef	actually, it has on my machine.. not sure about dpreacher's	07:16
dpreacher	cef i'll check	07:17
cef	dpreacher: you'll need both btw.	07:17
sbeattie	cef: and you're still seeing the audit messages after restarting apparmor and named?	07:17
dpreacher	not cef me	07:17
dpreacher	sbeattie	07:17
sbeattie	ah, sorry, didn't read scrollback too closely, sorry.	07:18
=== FFForever is now known as FFForever-Away
sbeattie	what my guess is is that the resolver library is looking to see whether or not ipv6 is enabled by the os, to determine whether to support ipv6 in named or not, but really that's a swag.	07:19
cef	dpreacher: on mine, the '/proc/net/if_inet6 r,' entry has a similar one (the one I posted before) under it	07:19
sbeattie	regardless, it should be reasonably safe to allow read only access to such /proc entries.	07:20
cef	dpreacher: if it's not there on yours, that would explain things.. what version of ubuntu/bind9 ??	07:20
dpreacher	cef sbeattie gimme some time...brb thanks for your answers	07:20
cef	dpreacher: np	07:20
* cef puts any further learning of apparmor by himself on hold for a bit. :P		07:21
cef	back to kicking broken kvm/libvirt packages for the moment sigh	07:22
=== mitch is now known as Guest26705
Guest26705	hi to everyone...am an ubuntu newbie...	07:34
Guest26705	i had a hard time fixing my domain...could anybody help me...?	07:34
Guest26705	hello anybody der?	07:36
_ruben	try asking more specific questions	07:39
dpreacher	cef sbeattie http://dpaste.com/70286/ my usr.bin.named file contents	08:05
sbeattie	dpreacher: right, you'll want to add either the line cef suggested or the one I suggested (they both will cover the rejections you're seeing) and then restart apparmor and named.	08:07
dpreacher2	am bak sbeattie do i follow this command "(11:45:34)<sbeattie>bah, sorry, "/proc/[1-9]*/net/if_inet6 r," " the /proc command as it is?	08:09
=== dpreacher2 is now known as dpreacher
dpreacher	sbeattie do i follow this command "(11:45:34)<sbeattie>bah, sorry, "/proc/[1-9]*/net/if_inet6 r," " the /proc command as it is? did you get this msg?	08:11
sbeattie	dpreacher: yes, add "/proc/[1-9]*/net/if_inet6 r," (no quotes) to your usr.bin.named, restart apparmor (to reload your policy) and then restart named.	08:12
dpreacher	ok thanks. wish named luck	08:12
sbeattie	(the named restart may not be neccesary if it's doing it over and over)	08:13
dpreacher	i don't need to replace any existing line but add this line, right? sbeattie	08:13
sbeattie	dpreacher: correct	08:13
dpreacher	how are service reload and service restart different?	08:14
dpreacher	which one do i use in app armors case?	08:14
dpreacher	sbeattie^	08:14
sbeattie	dpreacher: sorry, was looking elsewhere; service reload and service restart should do the same thing for the apparmor initscript; but if you want to be cautious, do reload.	08:33
dpreacher	sbeattie i figured out reload would be safer as i understand it re-reads the configs only	08:34
dpreacher	sbeattie whats the service name for named? bind?	08:35
dpreacher	i get unrecognized service	08:36
cef	bind9]	08:36
cef	err - that ]	08:36
cef	so bind9 even	08:36
sbeattie	what cef said.	08:36
sbeattie	(eventually. :-) )	08:36
cef	damn typos	08:36
* cef goes off and shoots his fingers for being adventurous		08:37
dpreacher	cef its still safer to practice and iron out your typos here	08:38
cef	well, better than a few programmers I know who consistently misspell words, and so they have all these misspelled function names in their code.	08:39
dpreacher	function ristert()	08:40
dpreacher	:p	08:40
cef	worse is when they misspell a word so badly, that the misspelled version is actually another valid function name	08:40
cef	dpreacher: I really hope that's not the bug that kvm currently has.. I'd really be tempted to LART the programmer responsible rather hard	08:41
* dpreacher wonders whats LART		08:42
* dpreacher so far has been stuck with RTFM...havin ppl shout it at him in other channels		08:42
cef	involves a piece of timber and a hitting motion. ;)	08:42
cef	oh fun.. and there goes my KVM machine crashing again sigh	08:43
cef	at this rate, I'll never get it into production. sigh	08:43
cef	and now, to see if this crashes again.. sigh	08:52
twb	cef: but it's still better than openvz or vmware-server or virtualbox, right?	08:52
cef	twb: err.. if it crashes 3 times in a day.. possibly not. I personally blame the last kvm update.. it's all gone pear-shaped since then	08:53
cef	couldn't even force a reboot of the kvm host machine via software. :(	08:53
twb	Don't tell my boss, then	08:54
yann2	what host/guest versions are you using cef, with what version of kvm?	08:54
twb	I'm trying to get some actual, you know, VT-capable hardware so I can try KVM instead of this bloody annoying openvz/vmware shite	08:54
cef	yann2: jaunty all round.. everything up to date.. kvm pkg 1:84dfsg-0ubuntu12.3	08:55
cef	which updated sometime this month, and in the process the 'reboot' command in virsh went with it.	08:56
yann2	mmh... I'm using Hardy all round with the libvirt and kvm backport, not released yet, but seems fine so far	08:56
yann2	what's your problem wth the reboot command?	08:57
cef	yeah I suspect the latest kvm update borked things	08:57
cef	yann2: 'reboot vmname' in virsh no longer works.	08:57
yann2	I heard there were issues with the latest kernel	08:57
cef	gives an error. 'shutdown' doesn't actually shutdown either, but at least destroy works.. though it managed to take out 2 VM's instead of just one.	08:58
cef	yeah.. might be it and I've only now started to hit the problems.. ho hum.. oh amd64 too	08:59
cef	(all round)	08:59
yann2	cef > for shutdown to actually work you do need to define ACPI for the VM	09:04
yann2	and regarding the destroy, from my experience it is quite likely you cloned a VM and forgot to change the UUID	09:05
cef	yann2: replaced the ram in the machine as a precaution.. as that is relatively new to that machine. just made sure all the VM's and the host are up to date package wise.	09:05
yann2	you should dumpxml both vms who got shut and compare :)	09:05
cef	yann2: def not.. all built with vmbuilder. will check for ACPI though, as that may be a vmbuilder bug	09:06
* cef has spent a lot oof time learning all of vmbuilder's bugs.... err features... ;)		09:06
yann2	I still use the ubuntu-vm-builder bash version, works alright :)	09:07
cef	wel.. ok.. the latest issue i found is not a problem with vmbuilder but with debootstrap, but still	09:08
cef	specifically: install jaunty on jaunty using debootstrap, and your text getty's stop respawning. fun fun fun!	09:09
dpreacher3	cef sbeattie...another big problem...i think	09:10
dpreacher3	bind9 restart got stuck at * Stopping domain name service... bind9	09:11
dpreacher3	atleast over 20 minutes	09:11
cef	dpreacher3: you did that as root, yes?	09:11
dpreacher3	sudo	09:11
cef	same thing, yup	09:11
cef	hrmmm .. weird. did you kill it?	09:11
dpreacher3	yep...n when i did ctrl-c i got Crndc: recv failed: operation canceled	09:11
cef	yup for whatever reason, rndc could not contact the bind9 server (rndc tells bind what to do)	09:12
dpreacher3	other than this, i was not involved with the bind9 setup assignment, but i noticed that for the few times that we had to restart server initially, bind9 esp. rndc used to be stuck for like almost 10 mins. before it said it gave up n then server continued shutting down	09:13
cef	just kill 'named' (eg: killall named) then start the bind9 service	09:13
dpreacher3	ours is a test setup that we're aiming to make production ready as we learn things along	09:13
dpreacher3	will try that	09:13
dpreacher3	sudo killall ?	09:13
cef	well if apparmor was blocking ipv6 stuff, it's possible that rndc could not actually communicate with named, hence the problem	09:14
cef	yup	09:14
dpreacher3	k k ye possible cef	09:14
cef	dpreacher3: you might want to try 'sudo rndc status' - this should query the named service and give you some useful stats. if it doesn't, then it's a useful test to resolve the issue	09:15
dpreacher3	oh no! i just killed named	09:16
cef	'sudo service bind9'	09:16
dpreacher3	no start stop?	09:16
cef	then try the rndc command I showed	09:16
cef	err start yes	09:16
cef	sorry	09:16
cef	I tend not to use 'service' and call the scripts directly	09:17
dpreacher3	is service command part of insserv/chkconfig?	09:17
cef	no	09:17
cef	so start worked?	09:19
rose_	Hi, I am getting this error somebody know why? Failed to open nmb socket on interface 172.17.2.1 for port 137	09:23
dpreacher3	no cef	09:25
=== ejat is now known as e-jat
dpreacher3	cef sudo service rndc status	09:25
dpreacher3	$rndc: unrecognized service	09:25
cef	dpreacher3: start bind9 first with 'sudo service bind9 start', then run 'sudo rndc status' (not a service)	09:27
dpreacher3	k cef	09:27
dpreacher3	so i gotta kill bind9 again? i just started it	09:27
cef	rndc talks to the bind9 service (process called 'named') and is used to shut the service down - if rndc doesn't work, you get the issues you've described (can't shut down, etc)	09:28
cef	nah, just run the rndc command	09:28
cef	rose_: can you ping 172.17.2.1 ?	09:29
rose_	yes	09:29
rose_	i can ping	09:29
dpreacher3	is port 137 blocked?	09:29
dpreacher3	rose_	09:30
dpreacher3	is there a way to restart rndc cef. seems to be still stuck to even show the status	09:30
rose_	no in my server	09:30
cef	rose_: only thing I can think of is that something is is already using that port, or it's not got permission to do that	09:30
cef	dpreacher3: just ctrl-C it. it's just a standard program.	09:31
dpreacher3	sudo rndc status	09:31
dpreacher3	^Crndc: recv failed: operation canceled	09:31
uvirtbot	dpreacher3: Error: "Crndc:" is not a valid command.	09:31
rose_	the address 172.17.2.1 is a vlan and i can access with this port to this vlan apparently?	09:32
cef	dpreacher3: btw: that should just return a few lines of text telling you the status of the named process. the fact that it's failing either means you've got a very paranoid firewall setup on the machine, or something is weird with named's config	09:32
cef	dpreacher3: do you have a firewall enabled?	09:33
dpreacher3	nope cef	09:33
dpreacher3	oops	09:33
dpreacher3	dont tell anyone	09:33
dpreacher3	unless ubuntu server puts up one	09:33
cef	dpreacher3: hrm.. not even ufw?	09:34
cef	can do	09:34
dpreacher3	bind9 works fine as it is...just that rndc stucks	09:34
cef	yeah but rndc is the manageemnt tool for bind9	09:34
cef	try 'sudo ufw status'	09:34
cef	(once again, not a service)	09:35
dpreacher3	my colleague mentions that we had to remove ufw coz of the insserv errors that i'm hunting down a solution for	09:35
cef	rose_: that IP (172.17.2.1).. it's the IP of an interface on the machine running nmb?	09:36
rose_	yes is in the interfaz	09:37
cef	dpreacher3: ahh ok.. you only need to use 'sudo ufw disable' to turn it off.	09:37
dpreacher3	now its sudo ufw nomore	09:37
dpreacher3	cef	09:37
rose_	?	09:37
cef	rose_: hrm.. ok..	09:37
rose_	you mean ufw disable	09:38
cef	rose_: sounds like dpreacher3 has completely removed the package	09:38
dpreacher3	yes rose_	09:39
dpreacher3	cef. serious errors with it n some other package	09:39
cef	rose_: for you, try 'sudo netstat -tunap\|grep 137'	09:39
dpreacher3	installations were failing	09:39
cef	dpreacher3: very odd	09:39
rose_	ok, i will	09:39
dpreacher3	oh man! i know i gotta be patient...but cef can we take up ufw another day. i need to understand why is rndc so problematic now	09:40
cef	rose_: if you get any output, then something else (which you should see the name of) is listening on port 137, which is why nmb won't start	09:40
cef	dpreacher3: ok.. rndc is supposed to talk to named, usually on port 953 @ 127.0.0.1 (or the ipv6 version)	09:41
dpreacher3	well its talking foul language and getting censored now	09:42
dpreacher3	cef	09:42
cef	dpreacher3: does 'sudo netstat -tunap\|grep 953' show anything?	09:42
dpreacher3	checking	09:42
dpreacher3	whats tunap?	09:42
dpreacher3	sounds fishy	09:42
cef	t = tcp, u = udp, n = don't resolve names, a = all, p = show PID/program names	09:43
cef	they're options to netstat	09:43
cef	-panut would work, as would -utapn - I just remember them as -tunap	09:44
twb	Is the default just TCP?	09:45
twb	I've only used -nap	09:45
dpreacher3	cef thanks for the wonderful command	09:46
cef	dpreacher3: no probs.	09:47
cef	dpreacher3: does it show anything for 953?	09:47
dpreacher3	showin ya	09:47
dpreacher3	cef http://dpaste.com/70323/	09:48
rose_	Yes, now is ok, but when i do smbclient i got session "request to 172.19.0.72 failed (Not listening for calling name)"	09:48
cef	dpreacher3: those middle 3 entries are hung it seems. they will eventually time out. but it's like there is a firewall in there somewhere, or your bind config has locked it out somehow	09:50
cef	dpreacher3: I don't know why they are hung, but they are the result of trying to shut down the bind9 service and that rndc command I gave you. they shouldn't do that.	09:51
dpreacher3	who do i blame now?	09:51
cef	dpreacher3: do you have a file called /etc/bind/rndc.key ?	09:51
cef	(don't pastebin it)	09:51
dpreacher3	ok i wont	09:52
cef	but it exists?	09:52
dpreacher3	yes it exists	09:52
dpreacher3	secret stuff	09:52
cef	yup.. ok that's good.. that's what it's supposed to have in it..	09:53
cef	dpreacher3: do you know if you are running apparmor in 'enforce' or 'complain' mode?	09:53
dpreacher3	so is rndc needed for bind9. my impression was that it required only for remote control of bind9	09:53
dpreacher3	would sudo service apparmor status tell me that?	09:54
cef	dpreacher3: it's used for local control as well	09:55
sbeattie	sudo apparmor_status will tell you that.	09:55
dpreacher3	thanks sbeattie	09:55
cef	I can only guess that apparmor might be blocking the connection from/to rndc for whatever reason, which is why it's failing	09:56
dpreacher3	its in enforce mode	09:56
dpreacher3	cef	09:57
cef	dpreacher3: what version of ubuntu is this you're running bind9 on?	09:57
dpreacher3	ubuntu server 8.10 64 bit	09:57
sbeattie	if it is, rejections ought to be showing up in dmesg\|syslog	09:57
dpreacher3	what do i grep for	09:57
cef	sbeattie: yup. makes sense.	09:57
dpreacher3	i showed the audit message in the morning	09:58
dpreacher3	that cef pointed was a problem with named policy	09:58
dpreacher3	of apparmor	09:58
dpreacher3	other than that, what else could i filter out	09:58
cef	sbeattie: might be related to his apparmor profile for named (as earlier) not being complete (for whatever reason)	09:58
sbeattie	"dmesg \| tail" will show you the last messages out of the kernel, including an apparmor rejections.	09:59
cef	ok, I've gotta go.. it's almost 7pm here and I'm getting hungry. that, and I have to lock up work. good luck with it dpreacher3	10:00
cef	rose_: good luck with your issue too.	10:00
dpreacher3	thanks cef	10:00
dpreacher3	have a good evening	10:00
rose_	ok, have good evening and thanks for your help	10:00
dpreacher3	what time is it there rose_ ?	10:00
rose_	im in australia here is 19:00 and u?	10:01
dpreacher3	sbeattie hold on checkin the tail	10:01
dpreacher3	sbeattie http://dpaste.com/70327/ cud u infer anything from it	10:03
=== dpreacher3 is now known as dpreacher
jorgenpt	Where's the locale settings set? I installed ubuntu using debootstrap from a live cd, and things are locale-less. (locale shows LANG=, and the rest is POSIX or blank. :)	10:04
jorgenpt	I can just pop it into /etc/environment, but I wonder what the "ubuntu way" is. (Since systems with only PATH in /etc/environment still have sane locale-settings)	10:05
sbeattie	dpreacher: the last 3 lines are reporting the you reloaded the apparmor policies for mysql and named (twice) and the lines before that are the rejections you fixed by editing the named profile.	10:06
dpreacher	ok...so things are swell you mean sbeattie	10:07
sbeattie	yes, at least as far as apparmor's confiment of named is concerned; if it was blocking something else, you'd see additional audit events.	10:07
dpreacher	ok so apparmor is released...gotta catch someone else	10:08
dpreacher	sbeattie we'd tried reinstalling bind9 packages but nothing changed with that	10:09
dpreacher	i'd put in chkconfig which added insserv and made the life of that server hell	10:10
dpreacher	rose_ india 14:40	10:10
dpreacher	sbeattie, if i'm absolutely sure that we don't need or use ipv6 then do you think we need /proc/[1-9]*/net/if_inet6 r, policy or only a ipv4 relevant policy will be fine. more importantly, i feel this is coz of named listening on port 953 tcp6	10:19
dpreacher	how can i make it stop listening on ipv6 tcp and listen only on ipv4. sbeattie	10:19
sbeattie	I'm not particularly clueful on bind9 configuration, alas.	10:21
sbeattie	dpreacher2: looks like (based on the named manpage from jaunty) you ought to be able to add "-4" to the OPTIONS variable in /etc/default/bind9 to make it use ipv4 only.	10:25
dpreacher2	oh i see	10:25
dpreacher2	sbeattie a bind9 restart should work right? added the -4 into options section	10:34
sbeattie	yeah, it shou;d/	10:35
sbeattie	sorry, time for me to crash.	10:35
dpreacher2	ok...hope to see you again	10:36
dpreacher2	thanks sbeattie	10:37
rose_	hi, i finnaly could to see the server from windows client...but now, when i try to access from run (windows) \\server that show me a window that I need to ingress my user and password, i did but don't work	10:40
rose_	still the windows conitnua asking me for the user and password	10:41
dpreacher	if console-kit-daemon is related to UnifiedLoginUnlock which is a feature for GUI logins, what is it doing on ubuntu server edition. anyone any ideas? thanks as always	11:00
uvirtbot	New bug: #403428 in mysql-dfsg-5.0 (main) "package mysql-server-5.0 5.1.30really5.0.75-0ubuntu10.2 failed to install/upgrade: subprocess post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/403428	11:06
dpreacher	can someone tell me please how to close a tcp connection. a hanging one.	11:07
uvirtbot	New bug: #400542 in samba (main) "matchname: host name/address mismatch: ::ffff:127.0.0.1 != localhost" [Undecided,Incomplete] https://launchpad.net/bugs/400542	11:16
error404notfound	i have installed xserver-xorg on JeOS. How can i start x? seems like startx is not a command	11:18
uvirtbot	New bug: #403381 in bacula (universe) "jaunty->karmic server upgrade results in two versions of postgresql installed" [High,Fix released] https://launchpad.net/bugs/403381	11:35
TeLLuS	error404notfound: startx is in packet xinit, maybe you want to install the packet xorg instead?	12:21
rose_	Hi somebody know why Windows client can see Samba Ldap but can not connect with ldap password?	12:21
shivek	Hi Everyone !	15:40
shivek	I have a problem with ddclient. Can anyone help ? !	15:41
shivek	I've configured ddclient, but my websites ip does not updates or it updates to my local ip (192. one) so my website becomes unavailable.	15:54
Scix	8.04.3 don't detect a SATA RAID1 on a HP ProLiant ML110, but the two disks as two standalone disks. Anyone who knows why?	16:23
_ruben	probably not (real) hardware raid (but so-called fakeraid)	16:24
Scix	any workaround?	16:24
Scix	realy need this array to work	16:24
Scix	9.04 finds it, but the installer skips the partitioning steps :S	16:26
Faust-C	Scix, maybe look into the hardware compat list and see if there are any issues etc	16:31
biczd	hi	16:32
Gen1	hi	16:32
biczd	hello	16:37
biczd	someone can help me to install a wifi card?	16:38
=== FFForever-Away is now known as FFForever
=== biczd is now known as brembo
=== brembo is now known as biczd
mtaht4	I have upgraded my ubuntu server from 7.10 to 9.04. The upgrades went well (all over ssh!), but I'm having trouble getting postfix to work now with dovecot authentication. The relevant error in syslog appears to be " fatal: no SASL authentication mechanisms " . A leftover part from my previous configuration seems to be saslauthd, is that required for dovecot's sasl to work, or is it in the way?	17:17
RoyK	mtaht4: I think #dovecot might be a better place to ask	17:26
mtaht4	trying #postfix now	17:26
uvirtbot`	New bug: #403429 in mysql-dfsg-5.0 (main) "package mysql-server-5.0 5.1.30really5.0.75-0ubuntu10.2 failed to install/upgrade: le sous-processus post-installation script a retourn? une erreur de sortie d'?tat 127" [Undecided,Incomplete] https://launchpad.net/bugs/403429	17:31
=== FFForever is now known as FFForever-Away
mtaht4	RoyK:	17:59
mtaht4	RoyK: The answer turned out to be postfix was setup to use, in /etc/postfix/main.cf to use just "auth", when dovecot was using "dovecot-auth"	18:00
alexm	mtaht4: make sure you have libsasl2 package installed	18:00
mtaht4	solution:	18:00
mtaht4	smtpd_sasl_path = private/dovecot-auth	18:00
mtaht4	in main.cf	18:00
mtaht4	I don't know if ubuntu 9.04 is defaulting to the right or wrong things here, this was a major series of upgrades	18:01
mtaht4	on my part	18:01
RoyK	ubuntu is probably defaulting to that, but did you let the installer overwrite that file?	18:01
mtaht4	main.cf seemed to be modified by the installer	18:02
mtaht4	the dovecot-postfix.conf file I used was the installer's	18:02
mtaht4	After I let this upgrade shake down for a week or two I will upgrade another box and see what happens	18:03
RoyK	ok	18:04
resno	Dns is not resolving when using analog. Looking for a little help.	18:08
resno	!help	18:31
ubottu	Please don't ask to ask a question, simply ask the question (all on ONE line, so others can read and follow it easily). If anyone knows the answer they will most likely reply. :-)	18:31
=== giovani\|work is now known as giovani\|home
artillerytx	Hey guys im installing server on my dell poweredge and it couldn't find the network controller any ideas	20:19
_ruben	dell uses fairly standard hardware for its nics, never had a problem with 'em	20:20
_ruben	which poweredge and which ubuntu server version?	20:20
artillerytx	9.04 poweredge 1750	20:21
artillerytx	and this thing is also super super loud is there a fan management program i could download	20:21
artillerytx	it looks like its downloading stuff from the net im not sure what it was talking about	20:22
_ruben	no experience with 1750's .. and the fans are usualy only loud when starting up .. for a cold boot (having had its power cable disconnected) it takes a fair time to spin down, subsequent boots (without unplugging the power) should have failry quick spindowns	20:23
_ruben	unless its a older machine	20:24
_ruben	those are just plain noisy :)	20:24
artillerytx	haha well its probly old its got a dual 2.8 xenon in it	20:24
artillerytx	im not sure what you mean by old	20:25
artillerytx	or consider i mean	20:25
_ruben	ah, then you might be out of luck noise-wise .. and a slim chance the nic's too old as well, tho not very likely	20:25
_ruben	well .. our sc1425 (recently discontinued) / pe860 / pe2950 /etc are fairly quite .. we some old towers which are noisy as hell .. then again sc420 towers aint really that noisy	20:26
artillerytx	yeah i was just looking for a server to run a couple sites	20:26
_ruben	at home i just use a mini-itx mobo with a dual core atom processor and ssd disk .. fits in a shoebox :)	20:28
artillerytx	yeah i wasn't sure if that would work good or not... this was only $125	20:29
_ruben	not bad .. the ssd alone was like double that ammount :)	20:29
artillerytx	haha yeah those things are amazing... hey how do i check to see if my computer is seeing the network	20:30
artillerytx	first time installing linux server	20:30
_ruben	"ip l" should show the adapters (links) .. "ip a" should show any configured ip addresses	20:33
_ruben	"dmesg \| grep eth" tends to give some insights as well	20:33
artillerytx	the dmesg tell sme driver 'sd' needs updating and sr	20:34
_ruben	that's related to the scsi subsystem	20:34
artillerytx	im not getting a router ip for the inet either	20:35
artillerytx	yeah its telling me network is unreachable	20:35
_ruben	no dhcp server on the network? cable plugged in the wrong nic?	20:36
artillerytx	its getting a connection	20:37
artillerytx	im not sure what to do	20:39
artillerytx	hey guys im trying to install 9.04 and im getting a no network interfaces detected any ideas ?	22:00
artillerytx	i can't tell if its the server or if its ubuntu just not having the driver	22:05
jmedina	hi	23:53

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!