[00:19] how can I allow root login via SSH keys but not SSH password? [00:22] tsrk_: Since root has no password in Ubuntu, just set up the keys and you are all set :) [00:23] jmarsden, lets say (completely hypothetically of course) i had a root password. then, how would i do it? :) [00:24] First you get rid of the root pw and then proceed as above. Failing that, you set PasswordAuthentication no in sshd_config, but that would apply to all users, not just to root. [00:25] hmm, could do that, although there's some times i really want to use pws for other users [00:25] There is no good reason for a root pw on a Ubuntu machine that I know of, BTW. So... get rid of it :) [00:26] sudo usermod -p '!' root [00:26] i'd much rather type "su" than remember some random options for sudo? [00:27] And that is higher priority that a sane ssh config to do what you need... well, it is your choice. sudo su works fine if you really can't remember sudo -s [00:27] what's the difference between sudo -s and -i? [00:28] -i simulates initial login, -s uses the $SHELL and does not simulate initial login. man sudo [00:28] alright [00:28] and what about being secure at the startup console? [00:28] i guess i can block that option... but did they fix that? [00:28] Please explain how the default is insecure? [00:29] i think it used to be that with no root password, when the system was booting you could go into recovery mode and select root shell [00:31] I'll try it in a virtual machine... but if you give someone physical access to the server, security is pretty much nonexistent anyway... they can steal the machine, remove a hard drive, boot from a CDROM, etc etc... [00:32] there can be a difference between hardware security and software security [00:32] first of all they might have console access without being physically in the same location as the machine [00:32] (the case 99% of the time where i work) [00:33] also, i'll know if someone tampers with hardware, but not necessarily software [00:33] tsrk_: with serial console access, and a grub/lilo password, they shouldn't be able to boot single user [00:33] there should also be a bios password, etc [00:34] giovani, that's a good point [00:34] giovani, well, some of my machines need to be able to boot w/o a password [00:34] boot? [00:34] (there's a bios password for setup, but not boot) [00:34] you don't need a password to boot [00:34] I'm talking about modifying the bios, and modifying startup flags [00:34] this is standard stuff at every company I've ever worked at [00:34] bios and lilo/grub password for modification [00:35] will that cover everything? [00:35] clearly physical access to the box means you can pop the jumper and reset the bios [00:35] yeah [00:35] that will cover everything remote unless you have an out-of-band management system like IPMI/DRAC/iLO/etc [00:35] alright [00:36] so if all you have remote-access wise is serial console [00:36] i gotta reboot to check something, but i'll probably be back in here in a few minutes [00:36] then a boot manager and bios password are all you need [00:36] ok [00:36] thanks for the help [00:36] np [00:41] so, I haven't installed a new 9.04 server install until today [00:42] when did lilo become the default boot manager? [00:42] lilo? [00:42] or did that only happen because I put /boot on LVM and grub is presumed to be less happy with that? [00:42] pmatulis: yep [00:43] will need to try that [00:43] I thought grub supported /boot on LVM.... [00:43] nick125: it does, afaik [00:43] but not incredibly well [00:43] as in, as of the latest stable, it only supports a single vg [00:43] Ah. Well, there's a reason not to put /boot on LVM :) [00:44] not if lilo supports it perfectly [00:44] or if you use something newer than grub stable [00:44] there's nothing that should prevent a boot manager from using LVM [00:48] anyway, yeah, with some googling it appears ubuntu doesn't believe grub is capable of nicely handling LVM /boot :) [00:48] so it forces you to use lilo [00:48] good to know [01:01] tsrk_: did you figure out your no-password-for-root question? [01:02] pmatulis, yeah, thanks [01:02] tsrk_: what did you do? [01:03] just disabled root pw and set up some other security stuff instead [01:03] at the bootloader [01:04] disabled root pw? [01:04] yeah [01:04] sudo usermod -p '!' root [01:04] what do you mean? [01:04] set the encrypted pw to ! [01:04] yeah [01:04] what jmarsden said [01:04] tsrk_: ah ok, thought you said hypothetically if root had a p/w [01:04] nothing should've been there to begin with [01:05] pmatulis, yeah, i hypothetically set the root pw to ! [01:05] all of this is hypothetical [01:05] tsrk_: k, b/c i thought i had an answer for you [01:05] heh, now I'm confused [01:05] pmatulis, well lets say hypothetically that it wasn't all hypothetical, what was your answer going to be? [01:06] giovani, DW about it :P [01:06] giovani: trsk_'s 'hypothetical' server used to have a root pw, because he created one... but now he has removed it :) [01:06] tsrk_: adding these 2 lines at the end of /etc/ssh/sshd_config: [01:06] Match User root [01:06] PasswordAuthentication no [01:06] jmarsden: is it hypothetical in the sense that his imaginary friend has a problem he can't talk about? [01:06] Hi, I need to consolidate my contacts information into a central location, so I was thinking of making an address book in an ldap server since most e-mail clients can load that. Could someone teach me how to do that? [01:07] pmatulis, ah, that looks perfect! i might hypothetically have to use that :) [01:07] tonyyarusso: LDAP isn't really appropriate for a single person's contact storage [01:07] giovani: I'm open to other ideas if you have them. [01:08] Basically I want something I can load on my Linode and access from all of my computers. [01:08] Although somewhere down the line I know I'll end up using LDAP (I'm planning to do sysadmin stuff as a career), so it seemed like a reasonable idea to start learning about it now if it would work. [01:08] tonyyarusso: well, #ubuntu-server isn't really the place to learn how to share contacts [01:09] nor is it the place to design an LDAP schema [01:09] giovani: Well, they would be stored on a server running Ubuntu, so I'm not sure why not. [01:09] tonyyarusso: At the low end of the complexity scale, a simple static web page (password protected so only you can see it) could work. [01:09] jmarsden: I want something that can actually load in the address book features of for example Evolution, so it works in my e-mail client, not something I'd have to go copy and paste from. [01:10] tonyyarusso: because this is about ubuntu-specific issues ... sharing contacts isn't an issue with ubuntu [01:10] giovani: Again, if you have a better suggestion please let me know what it is. [01:10] there are dozens of contact-sharing solutions [01:10] use google [01:10] I have, and found tons [01:11] I haven't found any that suited the above description yet - they're all either manual syncing stuff or client-specific (ie Thunderbird extensions, etc.) [01:12] tonyyarusso: then you haven't googled enough [01:12] syncml, groupdav, imap extensions [01:13] syncml is a manual syncing, not a central repository. [01:13] Looking at groupdav now. [01:16] there's absolutely nothing about syncml that makes it "manual" [01:16] it's a markup standard [01:16] "Currently not. The current draft requires that the client keeps an offline cache of the server data. Indeed GroupDAV basically specifies how such a cache is to be kept in sync with a server. [01:16] !jfgi | giovani [01:16] giovani: Acronyms or statements like noob, jfgi, stfu, or rtfm are not welcome in this channel. Period. [01:16] Online access is something which should be well covered by the CalDAV protocol and is currently considered out of scope for GroupDAV. [01:17] MenZa: I don't see how that's relevant [01:17] tonyyarusso: this is seriously out-of-scope for #ubuntu-server [01:17] Generally, saying people "Haven't Googled enough" isn't exactly helpful. Remember the !CoC :) [01:17] Let's all be nice and happy and help each other. [01:18] MenZa: it's an out-of-scope question, I've made numerous efforts to point him in the direction he should be going for help -- I think it's a perfectly valid response given the situation [01:18] giovani: Then show me a better channel... Last I checked LDAP runs on Ubuntu, and you haven't come up with a better way than that, so I'm still hoping somewhere here can teach me some of the basics of ldap on Ubuntu. [01:18] You pointed me to Google. That's not help. [01:19] it helped me find the answer to your question [01:19] just because data is stored on an ubuntu server doesn't make it related to ubuntu [01:19] giovani: If you found the answer, post that instead. :) [01:19] MenZa: I have [01:19] If you found a real answer, then link it please. Your other suggestions don't match my criteria, and I stated why. [01:19] MenZa: feel free to read the conversation you're critiqing [01:19] giovani: All I'm saying is that asking people to Google is borderline to being 'nice' [01:19] tonyyarusso: they have, you've misunderstood their function [01:20] And by that, I end the discussion. [01:20] * MenZa huggles giovani and runs away. [01:20] MenZa: I disagree, particularly when it's an off-topic question [01:20] I'll re-state the desired behavior: [01:20] I open Evolution on my laptop. I go to compose a message, start typing in a contact name, and it auto-completes. [01:21] Later, I edit another contact, close that machine, and walk away. [01:21] it's out of scope for this channel, have fun [01:21] * giovani & [01:21] I get on my desktop, pull up Thunderbird, type in the second contact's name, and there it is, with the changes made earlier. [01:22] I'm running virt-manager locally to connect to kvm host remotely via ssh. When I point it to the iso, either locally or remotely, it has a problem finding it. Does anybody know what I'm doing wrong or a way around this? [01:24] tonyyarusso: Have you rejected existing tools such as conduit? Conduit is GNOME-specific, so not at all relevant in this channel... [01:25] matt_keys: You might find better help in #ubuntu-virt for virtualization-specific questions. [01:25] jmarsden: Yes. Conduit again is just a syncing tool that has to be run separately - I want to be directly modifying a central record so I don't have to deal with unnecessary middleman steps. [01:26] In short, Conduit would be functional, but inefficient and awkward. [01:28] OK. It seems to be the direction Ubuntu is moving in for exactly this kind of functionality. However... you are free to build your own tool if you insist... but #ubuntu-server is probably not a good place to expect a lesson on how to do that. You can see the Server Guide at https://help.ubuntu.com/9.04/serverguide/C/openldap-server.html for the basics of setting up OpenLDAP on Ubuntu. [01:28] jmarsden: Thanks I'll give it a shot. [02:01] tonyyarusso: I think your questions is (somewhat) on topic to be honest; Especially considering the new blueprints for centralized AA in Ubuntu (OpenLDAP/Kerberos). [02:02] baffle: Thanks. Any chance you know more about the answer? ;) [02:02] tonyyarusso: Well, a standard OpenLDAP installation will give you this. [02:02] There is some really promising talk towards centralization, but of course talk is hard to use. [02:03] tonyyarusso: Yes, I haven't really noticed much work happening to that blueprint; It seems to be targeted for Karmic, but at the way things are moving it seems to be Karmic+1 or +2.. [02:03] baffle: I've been attempting to learn about that, but finding that lots of LDAP guides are rather overwhelming, and was hoping there might be a shortcut of sorts since I have a small, specific goal. [02:03] tonyyarusso: Ofcourse, the *infrastructure* is all there right now. [02:03] tonyyarusso: I've run OpenLDAP/Kerberos auth for many years now. [02:03] * tonyyarusso bought a 4-inch think book on the subject - 'tis a slow read [02:04] tonyyarusso: Yes, I've bought the O'Reilly OpenLDAP and a few others as well. To be honest, I learned much more from just looking at the software, reading up on ASN.1 etc. [02:04] I would hope those sorts of blueprints are in place for the next LTS, which seems to be shaping up to be Karmic+1 based on Debian's move, so here's hoping. [02:04] ASN.1? [02:05] baffle: One thing that seems odd is that lots of things talk a lot about designing schemas. Aren't there some standard ones that most applications use? [02:05] tonyyarusso: Well, yes and no. [02:06] tonyyarusso: There are just guidelines. [02:06] tonyyarusso: You really have to design your own tree. [02:06] yikes [02:06] tonyyarusso: Everyone seems to do things differently. :) [02:08] tonyyarusso: Sorry, have to be away, in the middle of an incident. [02:10] * tonyyarusso goes to read more then [02:19] this is what I said about an hour ago [02:19] designing an ldap schema is all on you [02:20] this is why it's not used as a personal contact store -- and is used for reasonably sized companies that will gain immensely from the effort [02:31] giovani: Well, it works perfectly as a personal contact store. [02:32] giovani: And, to be honest, I think it is a good idea to tackle such an easy project before implementing a huge company wide directory. [02:52] baffle: it's serious overkill, so, "works perfectly" is relative -- and no question you should understand LDAP before rolling it out company wide [03:07] I don't think there are too many people who truly understand LDAP :-) [03:33] I'm running a webserver on jaunty, and whenever Apache is running (~20% CPU load, not using full bandwidth), SSH performs very slowly (i.e. I am SSHing in and commands take a relatively long time to respond) -- any suggestions? [03:37] Vigh: set up QoS on your routers. [03:38] Vigh: the large http packets are "muscling out" your low-latency ssh packets. [03:38] twb: not an option, it's running on Amazon's cloud [03:38] ask amazon or google about qos on that platform, then [03:38] I'm sure it's a widespread issue that someone else has already solved [03:39] twb: ok, will do -- thanks! [05:05] twb, how is amazon's cloud? how's pricing? [05:08] tsrk_: I've no idea. [05:12] oh :( [05:21] what do I need to do to change my server's hostname? I know I should edit /etc/hostname and /etc/hosts, anything else? [05:22] tsrk_: edit /etc/hostname and run hostname. [05:23] will hostname set /etc/hostname? [05:23] No, hostname sets the run-time value. hostname(8) is called with /etc/hostname's contents at boot. [05:23] oh, i see [05:23] tsrk_: note that some apps will be completely and utterly fucked by changing the hostname, e.g. an LDAP server [05:23] will that update /etc/hosts for me automatically? [05:24] oh really? [05:24] No, you'll need to change /etc/hosts as well, if you include a hostname in there. [05:24] the main things i'm running are openssh, proftpd, and samba [05:24] just the default ubuntu thing [05:24] OpenSSH is unlikely to care. I can't speak for ProFTPd or Samba. [05:24] ok [05:24] Incidentally, I strongly encourage you to replace proftpd with sftp (for write access) and vsftpd (for anonymous read access). [05:25] is main.tsrk.us or main a better hostname? [05:25] i use openssh's sftp, but proftpd for backup [05:25] tsrk_: /etc/hostname contains only the host name, not the FQDN [05:25] ok [05:25] so a hostname should just be "main'? [05:26] That depends on the context. [05:26] In the context of /etc/hostname, a hostname is just the name, not the FQDN. [05:26] this isn't my FQDN anyway [05:26] I would, incidentally, use a more meaningful name than "main". [05:26] it doesn't actually have an FQDN [05:26] this is just a home server [05:26] i have main and test and out [05:26] Typically I assign personal names to servers, then use DNS CNAME aliases to provide role names. [05:26] those are meaningful to me [05:27] hmm [05:27] i used to do tsrk1 tsrk2 tsrk3 [05:27] So e.g. www.lan CNAME ymir.lan [05:27] but that just got annoying [05:28] See http://www.faqs.org/rfcs/rfc1178.html -- Choosing a host name for your computer [05:35] jmarsden, thanks for the link, i read through it and it seemed interesting but i'm not sure i want to name my machines after colors :P [05:36] tsrk_: So pick some other scheme... that's just an example :) [05:36] i like to name them by what they do [05:36] because i'll be reinstalling if they ever do anything else [05:37] tsrk_: But then when you consolidate functions life is wierd, or when you have a mail/web/jabber server do you name it mailwebjabber.example.com .. and then you add mysql to it... now what? [05:38] Next week someone wants an SNPP server... do you rename mailwebjabber to mailwebjabbersnpp now? :) [05:38] on this network i only really have the capacity for one internet-facing server, so i'm calling it out. my main internal server is never above 0.05 load afaik so i feel safe calling it main [05:38] this isn't likely to get any of those servers (i don't even know what they are) [05:38] but i could safely add jabber to my "out" server [05:39] anyway, if i were to run all those services, wouldn't vms be safer? [05:39] If you have the RAM, it might be. But chroots for security-interesting services is usually safe enough. [05:40] lol @ "security-interesting" [05:40] and ram is getting pretty damn cheap these days [05:40] jmarsden: thanks for the RFC [05:41] tsrk_: Yes; I have 8GB on my home desktop here, precisely so I can play with VMs :) [05:41] twb: No problem. [05:41] i think processing power is becoming more the problem [05:42] 8gb ram is like $100 now... but processors to saturate that ram aren't cheap [05:42] although i heard there's amazing discounts if you work for intel or know someone that does [05:43] a guy i work with managed to get two 8-core nehalems for free through intel [05:43] Well, I picked up a Q9550 last week for US$169 from Microcenter :) 2.83GHz quad core with 12MB L3... that's a fair bit of CPU power for not much $$ [05:43] yeah that's pretty good [05:43] can run 3 light vms + host OS pretty well? [05:44] Yes. [05:44] i'm gonna need to switch to a laptop soon though [05:44] i'm really trying to wait till they get quad core [05:45] Maybe better to get a cheap netbook and ssh into your desktop or server(s) ... also avoids the "oops, I droped it and just blew X thousand dollars" syndrome :) [05:46] i have a lenovo s10 for now [05:46] it's decent [05:46] but i think i'll need more for college [05:46] cause i really don't want to bring a desktkop [05:48] It really irks me when a single-user laptop has enough CPU and memory to run all of .gov [05:48] tsrk_: It all depends what you'll be doing with it. Maybe leave a desktop at home on a fast Internet connection, or rent a VPS somewhere for your computationally intensive tasks? [05:48] "I upgraded my lappy from 4GiB to 8GiB so I can run two eclipse instances at once and still browse in 100 tabs in iceweasel." [05:49] Well, some people have money to spend on fancy laptops for those kinds of reasons, I suppose :) [05:49] twb, i'm just saying i need more than my s10 with 1gb of ram and 1.6ghz single-core [05:50] jmarsden, i think i'll need more local power and especially screen space [05:50] i've been looking at the lenovo T-series and they look nice [05:50] jmarsden: it just seems retarded when you could put all that power in a colo rack and just run ssh on the laptop-cum-xterm [05:50] tsrk_: Understood. Although a $200 screen for your dorm room would handle the screen space. [05:51] twb: Yes, that's definitely more the way I tend to do things. [05:51] If I could find a cellphone with HDMI that could run Debian, I'd replace my EeePC with it. [05:51] jmarsden, i really don't want to be working on stuff in my dorm room. a laptop gives me nice portability [05:52] (Apparently HDMI uptake is low due to royalty fees, and DVI-D isn't used because the connector is relatively huge.) [05:52] jmarsden: it's also a pain in the arse to lug a 3kg A4 laptop when a 500g A5 one would suffice. [05:53] twb: I think Apple has some weird mini-DVI connector to try and work around that connector issue, maybe it will eventually become a "standard"? [05:53] jmarsden: well, HDMI is backward-compatible with DVI-D [05:54] tsrk_: When I went to college (1980 to 1983), noone had computers useful for real work at all, we all used the campus mainframes :) [05:55] jmarsden, well, now they even expect me to buy maple for a basic calculus class [05:55] btw, will a netbook run that? [05:57] I think there's a few free alternatives, if you want to cause a few raised eyebrows :) [05:57] tsrk_: apps run in the server room, not on your netbook. That's the whole point. [05:57] twb, graphical ones? [05:57] jmarsden: IME it's easier to just change uni when they start demanding you learn with proprietary tools that have mature FOSS alternatives. [05:57] tsrk_: sure. [05:57] twb, i don't have that kinda bandwidth here :( [05:58] tsrk_: you don't have ISDN or ADSL1 at home? [05:58] tsrk_: Have you played with mathomatic or maxima for example? [05:58] jmarsden, i've used maxima some [05:58] it seemed somewhat useful, but a lot of the stuff i think is maple specific [05:59] i might be able to do it in maxima but it'd take extra effort [05:59] and if i'm using maple on tests etc... i should really use it all the time [05:59] That should be fine, and should run on a 1.6GHz netbook... you'd have to translate from maple, and the exta effort woudl make surfe you actually learned the underlying principles, I'd think? [05:59] jmarsden: unfortunately unis no longer test understanding [06:00] twb, yeah, i'm starting to think that this is more of a class on how to use maple than math [06:00] but i guess i'll see [06:00] this isn't for uni though [06:00] polytechnic, whatever [06:00] it's a community college (replacement for high-school class) [06:00] twb: Agreed, but that doesn't mean you should avoid understanding ... you just ahve to reconvert the courses to ensure they teach you want you really wanted to learn. [06:01] jmarsden: that being the case, there's no point going to school at all. [06:01] I can't see the value of teaching someone basic calculus with a program at that level. [06:01] twb: well, only that others recognize the degree you get at the end, basically. [06:01] jmarsden: the whole point of school is to provide regular, objective assessment, so you know what to revise [06:01] jmarsden: eh, you can just forge those [06:02] thanks for the ideas :) [06:02] I wouldn't know about that :) [06:02] Consider: do you really want to work for an employer who cares more about accreditation (in maple, not math) than about your actual competence? [06:03] I got my last job management going "hey, I think I've seen you at the local LUG. You were pretty helpful." [06:03] s/job/job by/ [06:04] twb: That's slightly unusual. More common is that you need to get past the keyword screening secretarial staff to even get your resume (never mind yourself) in front of someone capable of evaluating your actual competence. [06:04] Bleh. Such places probably have a dress code and evil shit like that [06:05] twb, those places also give you more monies [06:06] Meh. They'd have to pay a lot more for the privilege of making me dress up funny and turn up at 9AM every day [06:06] Not always... Hewlett Packard (for whom I once worked) had no timeclocks and no dress code for us techies... but the recruitment process to get in the door of their R&D dept. was... somewhat bureaucratic. [06:07] well, i'll do what it takes === Anthony_Whitford is now known as awlt [06:12] I want to expedite running vmbuilder within a corp network, so it makes sense to have a local apt-mirror to avoid being reliant on the internet. So apt-mirror provides the standard stuff, but what about my own corporate artifacts that won't reside on the internet? Can they be added to an apt-mirror, or do I need something else? (Do I need to run my own corporate PPA? Is that the right strategy?) [06:17] awlt: you mean "how can I make a private apt repo"? [06:17] I think so, yes. [06:18] i am i still connected? [06:19] awlt: it's dead easy, I just forget the command [06:19] thingy-scanpackages [06:21] dpkg-scanpackages? [06:24] ya [06:25] I still need the apt-mirror, right? There isn't a solution that is both a private apt repo and proxy? [06:26] Right, just use both together. [06:28] In theory you can make a debmirror, then copy your own debs into it and generate new a Packages file. But that's super sucky, so don't do it [06:29] I want to avoid the super sucky strategy, that is why I am asking. ;-) [06:44] is there an easy way to send e-mail form the CLI (using mailx) through a gmail account? [06:45] msmtp-mta can use gmail as its smarthost [06:45] mailx then just sees the /usr/sbin/sendmail symlink [06:45] twb, ? can you give me a link for a "howto"? [06:46] You WILL need to store the gmail password in cleartext in /etc/msmtp or ~/.netrc, or be prompted for it each time. [06:46] http://twb.ath.cx/Preferences/.msmtprc [06:47] twb, that's fine. I'm looking to test it on a local system before I deploy it. I'm concered about the cert from gmail (since they use TSL I think), and I need to be able to e-mail a list of people (the systems admin group) [06:48] aptitude install ca-certificates [06:48] twb, I don't mean to be rude/dumb, but could you give me a hand to set this up so I can write it down and get past the "pit falls"? [06:48] jeeves_Moss: start by "aptitude install msmtp-mta ca-certificates" [06:49] twb, ok, one sec. (thanks again BTW) [06:51] twb, ok, we're good. next? [06:51] Now try /usr/sbin/sendmail -oi -t -d -v Expect it to complain in some fashion; pastebin the output [06:52] it's giving me that test.msg "no such file or directory" [06:52] You need to write a file test.msg [06:53] It will contain the headers (e.g. "To: fred@example.net"), a blank line, then the message body. [06:53] ohhhh, sorry. one sec [06:54] ok, so how should the file be constructed? [06:54] 15:54 It will contain the headers (e.g. "To: fred@example.net"), a blank line, then the message body. [06:55] http://pastebin.ca/1532185 [06:56] twb, will this let me write an e-mail to a group of people from one file? [06:56] jeeves_Moss: what we are setting up is the ability for you to send arbitrary emails through your existing gmail account. [06:57] twb, I need to be able to send e-mails locally (say if a service goes down or when I cron job finished) through my gmail account [06:57] If an email is only delivered locally, then by definition it doesn't pass through gmail [06:58] If you need local delivery, msmtp will not suffice; you'll need something larger, like postfix. [06:58] For example if you want to be able to email other users on the local host, while the local host isn't connected to Internet. [06:59] twb, ok, well, I need to be able to send it through the gmail account. it's because the e-mails are actully sending a txt to a cell phone (unless there is an easier way to send a txt msg from the CLI) [06:59] jeeves_Moss: if u r looking at local email delivery system, then u need local email server. else if u just want to send an email out using existing gmail account u need to follow twd [06:59] I'm not familiar with email to SMS bridges. [06:59] !u [06:59] U is the 21st letter of the modern latin alphabet. Neither 'U' or 'Ur' are words in the English language. Nor are 'R', 'Y', 'l8', 'Ne1' or 'Bcuz'. Mangled English is hard for non-native English speakers. Please see http://geekosophical.net/random/abbreviations/ for more information. [07:00] twb, if you send an e-mail to @fido.ca then it will send the contents of the email as a text to the cell [07:00] By "a text" I presume you mean SMS? [07:01] twb, yes, sorry [07:01] twb, basically, I need to be able to send SMS messages from the CLI [07:02] Do you own or pay for service on fido.ca? [07:02] I thought gratis mail->sms bridges were extinct. [07:02] no, that's why I went the gmail is a free way of doing it [07:02] But gmail isn't fido.ca [07:02] (since all you do is send an e-mail to @fido.ca [07:03] and if it's bell, then it's @txt.bell.ca [07:04] twb, that's why I wondered how to send an e-mail through gmail from the CLI [07:05] jeeves_Moss: surely what you really mean, then, is "I need to be able to send email to N@fido.ca from the CLI." [07:05] twb, yes. [07:05] I would normally use the ISP's smarthost rather than gmail's, if only because it'll be faster. [07:06] twb, but when I tried it from my main domain, I was unable to receive it, but when I sent it from the gmail account, it worked [07:06] jeeves_Moss: that's probably because your own domain isn't set up properly to send mail [07:06] twb, this is why I thought that gmail would be the better option (or currently from testing, the only option) [07:07] twb, my mail domain works fine for regular send/receive [07:07] I doubt that. [07:07] Probably you are receiving with IMAP or POP3, and sending all mail to a smarthost relay [07:07] ok, one sec, I'll test it [07:07] i.e. you are not participating in mail directly. [07:08] So what I'm saying is, just send CLI mail using that smarthost as well. It doesn't have to be the gmail smarthost. [07:08] the mail e-mail server on our main domain is not local to this box I'm testing on. it's in Michigan, and i'm on Vancouver island [07:09] Well, anyway, it doesn't really matter what smarthost you use, the procedure is still the same. [07:09] hummm, one sec [07:09] You need to tell /etc/msmtprc or ~/.msmtprc to use the smarthost. [07:09] one sec. testing something [07:10] ok, my domain won't send to the phone, and hotmail won't send to the phone [07:12] ok, I stand corrected. I CAN send to my phone from hotmail (there's just a HUGE delay) [08:01] can anyone point me in a good direction to send e-mail through gmail from the CLI? [08:17] anyone know what happens if you boot Ubuntu with two identical, non-raided disks? [08:17] ie imaged data [08:23] pwnguin, it depends on what the first disk on the chain is, and where the boot loader is [08:32] Hi. when I run php -v it says 'with Suhosin-Patch' [08:33] but when I try and do apt-get install php5-suhosin it shows as a new install [08:33] what gives? [08:37] jeeves_Moss: lets say one's sata and the other's sata in a usb enclosure [08:38] pwnguin: I'm not sure what kind of answer you're looking for. It'll boot up and run. [08:38] pwnguin, well, once again, it depends on how you have the boot device selection [08:38] hmm [08:39] soren: if the UUID's are identical... [08:39] my netbook defaults to booting from USB, but I can choose where it boots [08:39] basically, im looking at the pitfalls of applying jwz's backup trick to Ubuntu [08:39] pwnguin: It's not going to magically pretend like they're RAID1'ed, if that's what you're asking. [08:40] soren: no, but im wondering if it will just give up or decide randomly [08:40] Decide randomly. [08:40] ..but work. [08:40] "work" [08:41] Work. [08:41] in the case of a cron rsync [08:41] it'll work, but you could randomly land on the nightly backup and miss whatever since last run [08:42] Yes, if you reboot it migt use the other disk and work with that. [08:43] thats kinda what i thought i'd do [08:45] for reference, here's the general plan, applied to OSX [08:45] http://jwz.livejournal.com/801607.html [08:45] but i think it's a non-started and I'll look at other stuff [08:46] non-starter even [08:49]