[00:15] quizme: yes, I know that ... so? [00:15] jbbarnes: how is migrating data a lot of work? [00:15] giovani: you asked what ps is for... oh nm. i misread what you typed. [00:16] quizme: ps gives you the output you're asking for === root_ is now known as nilsbo [02:34] i was talking here earlier [02:34] i'll explain my situation again [02:34] i installed dovecot, and now, postfix. now, will pop3s and imaps work? [02:35] if i try to connect to my server from say another computer, from thunderbird [02:35] err, uhm [02:35] how would i go about making accounts? [02:35] and forward certain ones to one account? [02:36] linkxs: read the postfix/dovecot documentation, on their respective websites [02:36] You should try it, and see if you can't, and them ask for a solution. [02:37] well, i was going to try it and then realised that i ahven't made any accounts on the server for pop3 or imap [02:45] linkxs: Read the documentation, and try with a normal unix user account first. [02:46] simplexio, By the way, it completed the transfer successfully. I never had to even try the switch. Thanks again for all the help. (afk) [02:52] i'm trying to connect to it from LAN, and it doesn't work. [02:53] telnetting to it works [02:53] am i not specifying the settings for the server right? [02:53] i did send a message to myself ont he server, it worked, i recieved it. [02:55] how come when I try to create a ext3 partition on a 15000.0GB hard drive, the greatest partition that both fdisk and parted is 1806GB? [02:57] ycy: can you be more clear, I don't understand [02:58] ycy: I don't think many people make 15TeraByte hard drives, are you sure you have one? In the consumer marketplace I think 2 TeraByte is the biggest I have seen... [02:59] RAID [02:59] Then that is not "a hard drive"... [02:59] ok, that's not a 15TB hard drive though [03:00] lol [03:02] http://en.wikipedia.org/wiki/Disk_partitioning#PC_BIOS_partition_types [03:03] Can't see anything about upper limits there... [03:04] can anybody help me with my mail server? [03:06] !anyone [03:06] A large amount of the first questions asked in this channel start with "Does anyone/anybody..." Why not ask your next question (the real one) and find out? [03:07] ycy: if that really is a problem with the underlying MS-DOS disk label format, you could either switch to some other label format (e.g. gpt), or create a bunch of 1.8TiB partitions and make them all separate PVs for LVM. [03:08] i, uhm, did ask the question [03:08] ycy: I guess another possibility is that you accidentally used RAID1 instead of RAID5 or something... check /proc/mdstat that you genuinely have 15TiB of effective storage. [03:08] i don't want an MS-DOS disk label format [03:08] ycy: MS-DOS is what fdisk ALWAYS uses, and parted uses by default. [03:09] i want to use ext3! [03:09] ycy: ext3 is a filesystem, not a disk label format. [03:10] is it mandatory to create a disk label format? [03:10] What I am calling (per parted) "disk labels" are what you would call a "partition table" -- though it needn't be an actual table. [03:11] You *could* make the entire /dev/md1 device a LVM PV, but this is usually avoided because then other tools can think the disk is not in use. [03:11] This is assuming the RAID array is not your boot disk. [03:12] yes it's not on my boot disk [03:12] it's a RAID hardware [03:12] I only see a giant /dev/sdb [03:12] and I want to create a partition on that [03:15] You can't create a partition (i.e. /dev/sdb1) without using some kind of disk label. [03:15] All I'm saying is that you could use something other than the default ms-dos label format, if there is some kind of inherent limit in the size of its disk labels. [03:17] yeah, the MBR has a maximum partition size of 2TB afaik [03:18] So use gpt [03:19] parted -s /dev/sdb mklabel gpt && parted -s /dev/sdb mkpart 0 0 100% ext3, or so [03:20] (Except of course you WILL be using LVM here, lest baby Amithaba cry.) === lenios_ is now known as lenios [04:55] I host several websites using virtual hosts on my server [04:56] currently, because all files are grouped (read only) as www-data, php scripts can read (and write if permissions are set) to folders in other websites directories [04:56] assume /var/www/www.website.com/stuff.php can read /var/www/www.another.com/index.php [04:57] how can I restrict - or even chroot apache (like mod_chroot), per virtual host ? [04:57] I don't really mind about php scripts reading outside of /var/www, as I use AppArmor to restrict read/writes to where needed [05:05] LiraNuna: first of all ... #apache would be far more relevant ... second of all, I'm not sure that there's a good solution to your problem, presuming you're using name-based virtual hosting [05:06] sorry for asking in here, I thought it's a generic server discussion as well. [05:06] it's an ubuntu server room [05:06] this is a pretty specific, and specialized apache question -- you're more likely to get someone with an answer in #apache, that's all [05:06] yes, I use ubuntu server; I meant, I thought I'd find answer targeted for ubuntu server here [05:06] the answer won't be specific to ubuntu [05:07] I understand, I can adapt [05:07] thank you for pointing me to the right direction [05:07] anyway, I doubt there's a good solution [05:07] virtual separation is never safe [05:08] if you used ip-based hosting, you could start a separate apache process for each site ... however wasteful of resources that might be [05:08] I was hoping for an MPM that will chroot+suid [05:08] mpm-itk seems nice, but it won't chroot [05:09] have you googled on this? [05:09] of course [05:09] http://wiki.apache.org/httpd/PrivilegeSeparation [05:09] this seems highly relevant [05:09] and seems to have a bunch of solutions [05:12] hi, is anyone availiable here to help me out with a server question [05:13] whats the question? [05:13] javaTN: Don't ask to ask, just ask. See /topic [05:13] Oh sorry, i didnt know if anyone was here, thats all. [05:13] I am interested in setting up an "IPCop" like setup on my Ubuntu Server 9.04. Any way to accomplish this w/o a reformat to the IPCop distro? [05:14] sure ... [05:14] but you need to be more specific about which features you're interested in [05:14] javaTN: Add whatever applications IPCop has in it to your Ubuntu server... :) [05:14] The web based management / monitoring of traffic, etc [05:14] Thats the part that stumps me ^ [05:14] javaTN: the web-based management of what? [05:14] it's probably custom-written [05:14] feel free to ask them [05:15] For traffic monitoring in real time, check out ntop [05:15] Well, since IPCop can be managed through the web, thats what I would like to be able to take adavantage of on my ubuntu server [05:15] but manage -what- through the web was the question [05:15] javaTN: For basic server admin using the web, you can use ebox [05:15] just monitor network traffic [05:15] Try ntop :) [05:16] I just googled it, it looks actually promising to my needs! im gonna check it out right now as im SSH'd [05:17] sudo apt-get install ntop and then browse to port 3000 (I think that's the port it uses by default) [05:17] ah, i just installed [05:17] yea 3000 is default [05:17] dont know if i should be worried 'yet'... but its complaining about my eth0, but my internet is on eth1 [05:17] "Starting network top daemon: eth0: error fetching interface information: Device not found [05:17] " [05:18] Minot config tweak should handle that. [05:18] s/Minot/Minor/ [05:18] that's probably because it presumes you want to use eth0 [05:18] yeah, im reading the man. lol i hate when i dont have "defaults" as apps would like. [05:20] hmm. [05:20] Then either use eth0 as your default interface, or else edit /var/lib/ntop/init.cfg and restart it. [05:21] yeah im gonna do that, i just started it with ntop -i eth1 [05:21] im afraid if i change eth1 to eth0, then its going to complain in other applications [05:22] oh! while im in here. maybe i can make a link? i that possible? link eth0 to eth1 [05:22] no, don't do that [05:22] just reconfigure ntop ... it's simple [05:22] ok haha [05:24] ok now does ntop also provide a firewall setup? [05:24] no ... ntop is a monitoring application [05:24] the iptables firewall can be managed dozens of ways [05:25] just monitor network traffic -- that is what you said you wanted :) [05:25] yeah im sorry, but also to do a firewall *blush* [05:25] try shorewall [05:25] text file config though... [05:25] no web-based management? [05:26] im checking out this ebox too as someone mentioned [05:26] webmin has support for shorewall [05:26] * giovani goes to cry about what #ubuntu-server has become [05:26] ebox looks promising [05:26] artificialexit: webmin is totally not supported by ubuntu [05:26] but this looks like a distro [05:26] giovani: my bad... [05:26] !ebox [05:26] ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox [05:27] saweet! thanks im gonan try this now! [05:27] giovani: never use it myself just heard about it [05:28] ubottu, ok how can i do this. the guide i was linked to i think has text formatting errors. to install all ebox packages, should i do "apt-get install ebox-*" ? [05:28] Error: I am only a bot, please don't think I'm intelligent :) [05:29] lol im such an idiot for messaging a bot. shows how often i use IRC. [05:45] im confusing myself so much! ah, maybe i shouldnt go with ebox. lol [05:53] now heres my other question as far as ntop goes... how can i have eth1 input the connection (from internet world), link to eth0 (to hub)? [05:57] anyone here? [05:59] javaTN: ntop is moitoring whichever interface you ask it to monitor. It will not link things together for you. [05:59] What are you trying to do? [05:59] i think i asked that the wrong way. what i want to do is have eth1 input the internet connection [05:59] and eth0 share the connection to the network hub [06:01] So... connect the Internet hookup on eth1 and the hub on eth0. Job done. Are you wanting the server to act as a router doing NAT for the client machines on eth0 ? [06:02] no, just share the connection. [06:02] basically the purpose of me using ntop is the monitor all network activity [06:03] So the client on eth0 all have public Internet addresses? And the server will just route to them? [06:03] yeah [06:04] So... hook the Internet up on eth1, the hub and client PCs on eth0, enable routing. [06:04] internet cloud >(in from eth1) ntop server (out from eth0)> router > other computers on network [06:04] Other computers all have PUBLIC IPs, right? [06:04] Your ISP assigned you enough IP addresses you can give one to each client PC? [06:04] they are going to be LAN ip's. 192.168.64.XXX [06:05] So the client on eth0 all have public Internet addresses? And the server will just route to them? [06:05] yeah [06:05] Do not say yes if you mean no! [06:05] oh my bad. i wasnt sure what that meant exactly :-x [06:05] Then say so! [06:05] lol sorry [06:06] Do you have a hardware device (router ) between the PCs and the Internet connection? Or are you wanting the Ubuntu server to do that work? [06:06] i have a device to do that work [06:07] all i really need i guess is to route eth1 input to eth0 output on LAN. and ntop will monitor the eth1 connection [06:07] I think you are confused... you can't have two subnets with the same IP addresses in them and expect routing between them to work. [06:08] Well, you could try setting up the Server as a transparent proxy, but... I don't think that is really what you want or will be able to do... [06:08] how would it differ if i had no router and routed with the server? [06:09] Then the server would *be* your router/firewall, and the eth1 address would be your public Internet IP, and the eth0 address would be a local private LAn address, so the two would be different. Then you could set up the server to do NAT between the two networks. [06:10] oh i see [06:10] what if i did a simple masquerade between eth1 and eth0 [06:10] ? [06:10] would that do? [06:11] As long as they are different subnets, yes. NAT and "masquerade" are in essence the same thing. [06:11] subnet is the 255.255.255.0 kind of thing, right? [06:11] sorry, im still learning my way around networking [06:13] I can't spend my evening teaching you basic networking. http://en.tldp.org/HOWTO/Unix-and-Internet-Fundamentals-HOWTO/ [06:16] jmarsden, http://www.howtoforge.com/nat_iptables do you think that guide would serve my needs to get this setup? [06:17] cd howie [06:17] damn wrong keyboard [06:18] javaTN: I'm not sure, it seems fairly old, and I've never used it. First learn enough to understand what you are trying to do, and then try to do it :) [06:18] well in theory i know what i want to do, but there are limitations apparently of things unbeknownst to me. like subnet issues. [06:19] If you know what do to, then why do you need to follow a guide on howtoforge? :) OK, try it if you want. [06:19] no its not that i know what to do, i know what i want to do. === erichammond1 is now known as erichammond [09:38] I could use some help making a disk bootable. I copied two partitions (swap, and an ext3) to a replacement drive. The system naturally won't boot, so I think I need to install GRUB. I have booted from knoppix. How do I install grub to make hda2 bootable on this disk? [09:40] Once in knoppix, I believe I run grub and then issue a command to install it on hda. Is that right? [09:40] i think so [09:52] can anyone comment on the last post in this topic [09:52] http://forum.openvz.org/index.php?t=msg&goto=37264&#msg_37264 [09:52] ufw under ubuntu server [10:21] does anyone know how i can properly setup my ubuntu server as a checkpoint between my cable modem and router to monitor internet traffic on my network? [10:26] is anyone here able to assist me or link me to a guide on how to setup 9.04 ubuntu server as a NAT [10:27] You used to be able to simply aptitude install ipmasq [10:27] does thaat still work? [10:27] nowadays I guess it involves adding -t nat -A -i eth0 -o eth1 -j MASQUERADE or so. [10:27] javaTN: TIAS [10:28] now, im so confused when it comes to iptables. whats the best way to add that to the table and keep it saved? [10:28] iptables -t nat -A -i eth0 -o eth1 -j masquerade [10:28] and your done? [10:28] or add it to /etc/rc.local [10:30] twb, what do you think about firestarter? [10:31] I don't trust iptables abstraction wrappers. [10:32] ok [10:32] i just found out firestarter is gui based, which is pointless for me being on ubuntu server with no GUI. haha [10:34] what about ufw [10:35] does that do NAT? [10:37] ufw is an iptables abstraction wrapper [10:38] It *can* do arbitrary iptables rules, but only by a human writing iptables-restore segments into the appropriate file -- not by using the ufw CLI as such [10:38] oh i see [10:39] ive spent the last 3 hours of my night trying to set this NAT/web traffic analyzer up- got no where. im frusterated trying to configure my server with my router and get them to talk to each other and the internet cloud. [10:54] what exactly is a broadcast and how does it differer from the gateway? [10:58] javaTN, http://en.wikipedia.org/wiki/Broadcast_address [10:59] thanks === javaTN is now known as javaTN`afk [11:27] my machine won't turn off [11:27] sudo shutdown now yields this "recovery menu" screen or something [11:28] i end up having to do a hard power-off every time [11:28] any way to fix this? [11:33] hello [11:34] i always get 7 packages can be updated. 12 updates are security updates. but no matter how many updates i do they dont go away! [11:34] this is what i'm getting when I try to shut the machine down -> http://www.geeksquadwiki.com/gsw/images/e/ef/UbuntuReset6.jpg [11:39] foxeylady: the "recovery menu" is single-user mode [11:39] twb: ahh, thanks. [11:40] now is there any way to have it actually shut down when i tell it to do so, instead of going right into that? [11:40] I do not know why shutdown is using mode 1 instead of 0 [11:40] i think it may actually be shutting down first, and then re-booting into that [11:40] Have you asked dmesg and/or /var/log/* ? [11:41] foxeylady: if that's the case, then you have "single" in your default boot menu item [11:42] is there any way to remove the updates on the main windows? [11:42] when i enter via ssh [11:42] twb: well, if it helps tell you anything useful, if i then do a hard-powerdown and then boot up the machine, it'll give me a regular login screen [11:46] twb: does it? [11:46] BrixSat: what are main windows? [11:46] foxeylady: sorry, I still dunno what's wrong with your box. [11:49] anyone else?? [11:56] twb when i login in ssh [11:56] i always get 7 packages can be updated. 12 updates are security updates. but no matter how many updates i do they dont go away! [11:58] BrixSat: that's /etc/issue and /etc/motd, I don't know what updates it -- it was implemented after the last LTS [12:00] last lts? [12:00] BrixSat: *L*ong *T*erm *S*upport release, such as Hardy [12:01] :) [13:14] trying to set up group-based quotas for home directories mounted on nfs. how does this apply to 8.04? http://www.faqs.org/faqs/sgi/faq/admin/section-68.html [13:23] !quota [13:23] Sorry, I don't know anything about quota [13:23] hmm [13:23] shame on u, ubottu. really. [13:31] dayo: the quotas are applied on the NFS server side [13:32] That URL is a bit confusing. Certainly the rquotad stuff has to be working, but unless you have a firewall in the way, it should be automatic [13:39] twb: so, if i set up quotas on the nfs server, it applies to client logging in from a desktop? [13:41] Yep [13:41] I suspect quotad is only there so when you get "write failed!" you get a more meaningful message, like "write failed! You gots no space!" [13:42] twb: i see. ok, thanks. well time to try it out. i'll let u know how it went. [14:23] twb: i have this line in my fstab: UUID=d9089c53-5d3b-4693-879d-c81098f33ef4 /srv ext3 relatime,usrquota,grpquota I don't want to apply quota to /srv, i want to apply it to a subdirectory of /srv. how do i do that? [14:43] hello, i have a big problem.. someone can tell to me the equivalent to "dpkg --force all" in apt? [15:11] dayo: not possible [15:12] dayo: make a separate filesystem for the thing you DO want to have quotas on [15:13] dayo: this is the part where you learn that you should have used LVM when you installed your server. [15:23] twb: i tried this but it's not working: sudo quotatool -b -u testman -q 2072MB -l 2584MB -t 7days -v /srv [15:23] quotatool: Wrong options for -t, please see manpage for usage instructions! [15:23] twb: man page says number followed by seconds, minutes, days, weeks or months [15:23] :-/ [15:40] Dunno [15:42] dayo: I don't even have a quotatool, just quota and edquota [15:42] does anyone know if python is installed by default? [15:42] axio_: likely; it's a requirement for many things [15:43] axio_: but that might be python2.5-minimal rather than "batteries included" [15:56] guten tag :) [15:56] ich als newbe brauch mal hilfe zum thema Vhosts [15:56] !de | Claw6_ [15:57] Claw6_: In den meisten ubuntu-Kanälen wird nur Englisch gesprochen. Für deutschsprachige Hilfe besuchen Sie bitte #ubuntu-de, #kubuntu-de, #edubuntu-de oder #ubuntu-at. Geben Sie einfach /join #ubuntu-de ein! Danke für Ihr Verständnis. [15:57] oh yes sure [15:58] httpd (pid 4460?) not running [15:58] (13)Permission denied: make_sock: could not bind to address 0.0.0.0:80 [15:58] no listening sockets available, shutting down [15:58] Unable to open logs [16:00] hello all [16:00] i've got a software raid1 [16:00] but the problem is, that I can't boot from it [16:00] somehow /dev/md/0 is not existing on boot [16:00] it's created later [16:01] how can I bring the kernel to use /dev/md/d0 as root? [16:12] twb: and there is absolutely no way for me to add a line in fstab, underneath /srv that says /srv/home ? [16:13] You cannot have quotas for only part of a filesystem. [16:14] Nothing prevents you having a separate filesystem /srv/home [16:14] :-( [16:14] twb: yeah, i guess that's my most viable option right now [16:14] 00:13 dayo: this is the part where you learn that you should have used LVM when you installed your server. [16:15] twb: so, what i'll do is take free space from /srv and create a partition called /srv/home [16:17] twb: what would be missing from like the "python light" that you're talking about? [16:17] axio_: ask your package manager [16:17] oh, right :) [16:18] packages.ubuntu.com seems to be broken [16:18] or having problems [16:18] dpkg -l, -L [16:26] how 'bout RoR? === javaTN`afk is now known as javaTN [17:29] is it possible to have a samba server outside of a network, yet still accessable by the internal network? ie: samba > router > clients? [17:30] javaTN: sure, just like any server [17:31] the thing that baffles me is, it wont be on the same network necessairly. [17:31] cable modem > samba server > router > clients [17:36] what does it mean when an ip is typed like this: 192.168.0.0/24? whats the /24? [17:37] javaTN: CIDR range. [17:39] ScottK, so essentially a CIDR range is a range of IP addresses? [17:39] javaTN: Yes. Google knows all about it. [17:42] anyone here? [17:42] just reinstalled chatzilla not sure thisa is working [17:44] well it should tell you that you're connected [17:44] but yes, clearly it's working [17:44] yeah im just trying to join another channel and it saya that i should have identifeid myself. I have but not working? [17:47] yeah it works now thanks [17:47] :) [18:00] how do subnets masks work? i am trying to setup my server as a NAT, however should the subnet mask of the router and eth2 (output to router) be the same? [18:25] helo, i have very strange problem: lsusb gives me nothing since 20 minutes. i have 2 devices turned into hardy server. please help [18:26] but dmesg lists usb events ... [20:27] I have a md array that failed.. it's the /tmp array, but now it mounted one of the partitions as /tmp... what should be the best to unmount /tmp ? as it's busy atm ofcourse... remap it in fstab and make a temp one on the / partition ? === samferry is now known as ircd === gewt is now known as charybdis === charybdis is now known as gewt === ircd is now known as aceirc === gewt is now known as aceircdotorg === aceircdotorg is now known as gewt === aceirc is now known as ircd [23:52] I'm using jaunty and I would like to understand hot to make a permanent change to /etc/resolv.con [23:56] I read that ' If using DHCP, NetworkManager is _intended_ to replace default routes,' But I'm not using DHCP !!!