[06:02] <twb> Are the guy(s) who are packaging Zimbra's server component in here?
[06:02] <twb> I want a one-sentence status update, but ICBF digging out the emails.
[06:04] <ScottK> It's unlikely
[06:32] <drurew> hey people im lookiing for a free xchange similar server with a client ....open xchange wold have been something I would have used had it not been for the limmeted amount of users (and the crazy price).unison has some interesting server side software however its eula is not by any means opensources...even if it uses opensource components. Does anyone have any sujestions ?
[06:32]  * twb grovels through its IMAP archive
[06:45] <poningru> drurew, yeah dude use something like zimbra open source
[06:45] <drurew> yeah ima try that out
[06:45] <drurew> thanks guyys
[06:46] <twb> drurew: the FOSS clones of Exchange are Scalix and Zimbra.  They are both utterly, utterly shit.
[06:47] <twb> Unless you consider calendaring and resource booking to be MUST HAVE features, just use postfix.
[06:47] <drurew> i thought unison to be promising
[06:47] <drurew> yeah they are to any buisness
[06:47] <twb> They aren't critical to my business, because I get by with just postfix.
[06:48] <drurew> ....im trying to build a free buisness linux baised on debian and ubuntu / kde
[06:48] <drurew> im in germany ....so yeah ... the more collaboritive controlling you have the more a boss would like the system
[06:49] <drurew> its lame but its true
[06:51] <twb> I don't dispute that.
[06:51] <drurew> twb: got any other ideas?
[06:51] <twb> Given today's choices, I would probably go with Zimbra, or keep an existing Exchange server.
[06:52] <twb> Zimbra includes postfix, whereas Scalix includes sendmail.
[06:52] <drurew> yeah well the point is the linux alternative
[06:52] <twb> Some guys are working on making proper Zimbra/Ubuntu integration, but right now you need to install non-standard versions of all the Zimbra components (like postfix and apache), or jump through extra hoops to avoid doing so.
[06:52] <twb> That's my biggest problem with Zimbra at the moment.
[06:53] <drurew> i thought that unison was doing that too..
[06:53] <drurew> their ads are a load of crap if you ask me
[06:54] <twb> I'm not familiar with Unison, sorry.
[06:54] <twb> I try to stick pretty strictly to FOSS solutions, not just linux-based ones.
[06:54] <twb> Linux is a pretty sucky platform for proprietary software, because its heterogeneity makes deployment of binaries a massive pain in the arse.
[06:55] <twb> That's why you get vendors that say "works only on RHEL 3.2 exactly"
[06:57] <drurew> scalix=xandros eh
[06:57] <drurew> hmmmm
[06:57] <drurew> me no liky
[07:00] <drurew> FOSS is nice and good, but there is no way I will use a doze box to host anything ....so it has to be a linux alternative
[07:00] <drurew> !opengroupware
[07:00] <drurew> !groupware
[07:01] <drurew> if the oopenxchange components are opensource...then Ill just have to build it without using the debs provided by novell
[07:09] <drurew> !OGo
[07:18] <drurew> does anyone know where the opengroupware.org debs are ?
[08:04] <twb> ScottK: FYI, apparently the ZCS (Zimbra) packaging guy I talked to was Brian Thomason.
[08:16] <jtimberman> Google Apps for Domains > Zimbra.
[08:16] <twb> jtimberman: is Google Apps AGPL'd?
[08:16] <jtimberman> If I never set up another mail server infrastructure again I'll die happy.
[08:16] <jtimberman> twb: I don't care. I don't have to manage it. :)
[08:16] <twb> I do not support helping Google become the next evil empire.
[08:18] <twb> Sometimes it feels like that puts me in the vast minority :-(
[08:19] <jtimberman> twb: I've set up and managed a variety of solutions for a variety of infrastructures and companies over the years. Companies want Exchange primarily for calendaring. I'd rather replace the Microsoft Machine with the Google Machine to fit that business requirement.
[08:20] <twb> Well, if you choice is *between* evil empires.
[08:20] <jtimberman> Its like USA elections, you have to choose the lesser of two evils :).
[08:21] <twb> You don't have to.
[08:21] <jtimberman> The benefit of Google in this case is that Linux desktop users can use it.
[08:21] <twb> You have a consitutional right to form your own government.
[08:21] <jtimberman> heh.
[08:21] <twb> Here in .au we have slightly different counting, which I think means that my voting for the Greens isn't ENTIRELY useless.
[08:22] <jtimberman> Not when the prevailing opinion is that voting third (or other) party is "Throwing Your Vote Away"
[08:22] <twb> jtimberman: in .us, the way votes are counted means that is *literally* true, IIUC
[08:23] <jtimberman> http://en.wikipedia.org/wiki/Electoral_college
[08:24] <jtimberman> but anyway, OT political debate aside, when it comes to delivering a solution for a customer, Google Apps > Exchange > rolling something on Linux, because all the solutions on Linux (like Zimbra) suck (sadly). Again, the biggest issue is calendaring.
[08:24] <twb> Right.
[08:25] <twb> But if I can trick my customers into suffering with Zimbra, it might get more mindshare and eventually suck less than Google/MS
[08:25] <twb> Of course calendaring would be SNAFUd immediately in my own organization because almost everyone uses mutt
[08:25] <jtimberman> haha.
[08:25] <jtimberman> mutt ftw.
[08:26] <jtimberman> well, not entirely, i use mail.app ;)
[08:26] <twb> Which hasn't stopped $bosses pushing for zimbra internally...
[08:26] <jtimberman> thats better than pushing for exchange, like the bosses at a previous company.
[08:26] <jtimberman> though before htat was IBM, so Lotus Notes. Which == ugh.
[08:26] <twb> We're a FOSS dev/sysadmin house, and before that a Solaris dev/sysadmin house.
[08:27] <twb> Even $bosses know to avoid Microsoft.
[08:27] <twb> Though we do maintain Notes for one international customer (har har).
[08:27] <twb> I'm glad I'm not on that project
[08:27] <jtimberman> hehe. @ IBM I was on a Solaris/Linux sysadmin team that hated Notes. One guy set up a POP3 over the domino protocols.
[08:27] <_ruben> we have exchange2k3 setup that has been upgraded from pre exchange5.5 install in an nt4 environment (back then) by a clueless admin .. joy!
[08:28] <jtimberman> anyway, sorry the zimbra packaging sucks, old job deployed it on RHEL 4 (closed source version) and called it "good enough"
[08:29]  * jtimberman departs
[09:43] <artillerytx> Hello guys
[09:44] <artillerytx> I am getting a reply from my server thats its a read only file system
[09:44] <_ruben> your disks probably had a big hickup, and the system remounted readonly to prevent dataloss
[09:45] <artillerytx> yeah cause all my sites are having a problem connection
[09:45] <artillerytx> should i do a restart?
[09:45] <artillerytx> connecting
[09:45] <_ruben> reboot usualy works just fine for me
[09:45] <artillerytx> k
[09:46] <artillerytx> just sudo reboot?
[09:48] <artillerytx> crap i can't do it remotely
[09:48] <_ruben> i perform reboots remotely 99% of th time
[09:49] <artillerytx> its giving me a bash: /sbin/shutdown: Input/output error
[09:49] <artillerytx> when i do shutdown -r
[09:49] <\sh> artillerytx, your remote insight board is your friend
[09:50] <artillerytx> what
[09:51] <artillerytx> what does that mean
[09:51] <_ruben> i/o error .. your disk(s) is/are in bad shape
[09:51] <\sh> artillerytx, that you have a remote console via network
[09:52] <_ruben> drac/ilo/remote kvm .. nice features of anything bigger than utter entry level servers have
[09:52] <artillerytx> well this has never happened before
[09:52] <artillerytx> i hope the HD isn't going out
[09:52] <\sh> _ruben, entry level server are using peppercon cards (eRIC e.g.) nowadays..cheap, but works in 90% of the time
[09:53] <artillerytx> so did you say how i could fix it or did i miss that part
[09:55] <_ruben> artillerytx: if even the reboot commands wont work due to disk issues, there's not much left other than power cycling the box
[09:55] <artillerytx> manually
[09:55] <_ruben> by whatever means available :)
[09:56] <artillerytx> yeah can't do that right now gotta wait till the morning
[09:56] <artillerytx> man that sucks
[09:56] <artillerytx> get a really bad feeling in my stomach hearing my HD might be failing
[09:57] <_ruben> server and single harddisk doesnt go well together in my book :)
[09:57] <artillerytx> yeah
[09:57] <artillerytx> i need to get another drive but im not hosting very many files
[09:57] <artillerytx> i didn't think this would happen
[09:58] <artillerytx> but who predicts this i guess
[10:01] <_ruben> never expect harrdisks to last forever
[10:49]  * soren_ lunches
[10:53] <rags> It took a long time to execute a Sudo command...so I used an strace and discovered it's hangs while writing to the log...syslogd seems to be running fine, as I get the normal logs...Only sudo hangs...any ideas?
[11:15] <rags> ok, it works after I add a "loghost" line to the hosts file....
[11:16] <rags> but y is this ever needed....
[12:07] <johe> does someone has an idea how to check if an fs is read_only with no root permissions?
[12:18] <cjwatson> johe: do you mean intrinsically read-only (e.g. iso9660), or just mounted read-only at the moment?
[12:19] <cjwatson> or indeed intrinsically read-write but on a read-only medium ...
[12:20] <johe> cjwatson, sometimes on of our root fs / on some servers just turns into read only
[12:20] <cjwatson> so you mean mounted read-only at the moment, I guess
[12:20] <cjwatson> look in /proc/mounts
[12:21] <cjwatson> this normally happens when there are errors on the filesystem, though; you should look in syslog, and check whether there is some problem you need to address
[12:21] <cjwatson> I would advise against brushing it under the carpet and trying to ignore it
[12:21] <johe> cjwatson, okay thx
[12:22] <johe> cjwatson, well we first need to know
[12:23] <johe> thats why i will trim nagios to show me, but i didint know how to look
[12:23] <johe> doing with touch would only work with root, or changes to 100 servers, now way :-)
[12:39] <acalvo> hi
[12:42] <acalvo> I want to monitor remotly the load of some servers
[12:42] <acalvo> how can I do that?
[12:42] <acalvo> I remeber that several years ago I've done it with gkrellm
[12:42] <acalvo> (or something simliar)
[12:43] <_ruben> snmp is a commonly used protocol for that .. cacti is a nice frontend for it .. but there's tons of alternatives available
[12:43] <acalvo> oh, I didn't know it
[12:44] <acalvo> so I guess there is some kind of daemon that enables acces thru SNMP protocol, right?
[12:44] <acalvo> or I've to install some other software?
[12:48] <zul> mofnin
[13:19] <rpinto> Hi there everybody
[13:20] <rpinto> The Ubuntu server at my place just hangs and stops responding and on the
[13:20] <rpinto> console the following message is seen looping
[13:20] <rpinto> Sep 25 11:51:57 ubuntu kernel: [ 1298.605672] unregister_netdevice:
[13:20] <rpinto> waiting for ppp0 to become free. Usage count = 1
[13:20] <rpinto> Sep 25 11:52:07 ubuntu kernel: [ 1302.497456] unregister_netdevice:
[13:20] <rpinto> waiting for ppp0 to become free. Usage count = 1
[13:20] <rpinto> The Ubuntu server at my place just hangs and stops responding and on the console the following message is seen looping  Sep 25 11:51:57 ubuntu kernel: [ 1298.605672] unregister_netdevice: waiting for ppp0 to become free. Usage count = 1 Sep 25 11:52:07 ubuntu kernel: [ 1302.497456] unregister_netdevice: waiting for ppp0 to become free. Usage count = 1
[13:20] <rpinto> any fixes for this?
[13:21] <rpinto> ive tried to find somthing but nothing's available
[13:21] <rpinto> no help
[13:21] <rpinto> if anybody knows a solution to this kindly enlighten me :)
[13:22] <rpinto> it seems to be a bug in the kernel
[13:24] <rpinto> guys please help.. this server is hanging atleast 2wice a day
[13:24] <rpinto> it's the ubuntu 8.04 LTS version
[13:25] <cjwatson> #ubuntu-kernel might be able to help more with kernel problems
[14:19] <Fenix|work> Greetings and Salutations
[14:20] <Fenix|work> A quick question.  How do I bridge two network adapters together (on the same network) to double the available bandwidth to my server?
[15:27] <smoser> soren, welcome back. at some point i'd like for you to read and agree/disagree (i'd prefer agree) with bug 414997
[15:39] <soren> smoser: I'm fine with whatever you want to do.
[15:40] <smoser> then i say i'm closing it.
[15:40] <smoser> soren, you have plans for a vmbuilder trunk -> karmic ?
[15:40] <smoser> i know you're likely swamped right now, so i understand if youv'e other things with priority over me. just please at sometime we do need that.
[15:46] <soren> smoser: Yes, I have such plans.
[15:52] <zul> smoser: for your ec2-ami-tools patch do you just want to hang on to it until we get feedback from amazon?
[15:54] <smoser> zul, do you think we should ? personally, this fixes a major issue in those tools, i can't believe that they're going to release an update quickly. even if they did a.) the patch might not  be relavant (fixed elsewhere) b.) we're not going to pick it up
[15:55] <smoser> so in short, we need it fixed, and this is a reasonable fix (i think). so i think we should take it.
[15:55] <zul> smoser: okies Ill fix it right now then
[15:55] <smoser> (above references bug 439788 for those playing along at home)
[16:04] <joe-mac> it's a bit worrisome that i didn't get notified of a raid rebuild, yet MAILADDR is set and a test e-mail sends fine from the cli. i see mdadm monitor running int he process table: /sbin/mdadm --monitor --pid-file /var/run/mdadm/monitor.pid --daemonise --scan --syslog. anybody know why?
[16:06] <ball> Anyone here use an HP ML110 or ML115?
[16:13] <Fenix|work> Greetings and salutations!
[16:16] <ball> hello Fenix
[16:17] <Fenix|work> Hey there ball
[16:17] <Fenix|work> How does one add X to ubuntu-server?
[16:18] <smoser> Fenix|work, that depends. you want x server or x clients ?
[16:19] <Fenix|work> I want to remotely connect to this server using xming
[16:19] <Fenix|work> so I guess I'd need x server
[16:21] <smoser> Fenix|work, probably just the clients for that. you only need an x server if you're running x on the machine locally (ie, monitor output)
[16:22] <Fenix|work> ok, I see.  A bit backward logically but yeah.  I don't plan on using X locally, just remotely
[16:23] <Fenix|work> I'd like to be able to have the gnome interface remotely though.
[16:24] <smoser> Fenix|work, : sudo apt-get install ubuntu-desktop^
[16:25] <smoser> that'll get you loads of stuff. but will definitely get you gnome-session and the like
[16:26] <Fenix|work> ubuntu-desktop is a meta package... out of curiousity, how do I go about uninstalling it if I ever needed to? :)
[16:32] <skrite> you can uninstall ubuntu-desktop without hurting anything
[16:32] <skrite> or did you mean uninstall everything that is a dependancy of ubuntu-desktop?
[16:36] <smoser> i think he meant the latter
[16:36] <smoser> i'm checking somethign on that.
[16:37] <Fenix|work> I did mean the latter.
[16:38]  * soren dines
[16:38] <ball> hello jono
[16:39] <jono> heya ball :)
[16:39] <smoser> Fenix|work, sudo apt-get remove <meta-package>
[16:40] <smoser> then, apt will tell you, that 'apt-get autoremove' will remove all the stuff that was automatically installed but no longer needed.
[16:40] <Fenix|work> ok, pretty stright forward
[16:40] <smoser> and just for the record, i realize that gnome-session package might get you what you need
[16:40] <smoser> and is significantly smaller (footprint ~ 500M compared to 2G)
[16:41] <Fenix|work> ah well, already half way through the other
[16:41] <Fenix|work> :)
[16:41] <Fenix|work> you're just saving me 1.5GB on a 1.5TB drive :)
[16:41] <smoser> if your still downloading just ctrl-c
[16:41] <Fenix|work> yeah
[16:41] <Fenix|work> good point
[16:42] <smoser> if you're configuring i wouldnt do that :)
[16:42] <Fenix|work> if it doesn't work, can always do the other
[16:42] <smoser> well -desktop is probably more well supported
[16:42] <Fenix|work> now just trying to configure xming :)
[17:13] <Fenix|work> smoser, I don't think gnome-session is enough.  I don't show anything on $DISPLAY and can't launch xterm as it doesn't exist.
[17:15] <smoser> well, you'll have to connect to that remote system with something that is going to forward X11, or otherwise set your display
[17:16] <smoser> in openssh client, you use '-X'
[17:16] <smoser> ie: ssh -X my-host.com
[17:16] <smoser> i dont know how you'd do it in putty
[17:16] <smoser> but i do see that you'll probably want stuff more than in gnome-session as it doesn't even get you gnome-terminal
[17:21] <smoser> note, that i did verify 'apt-get install gnome-session' and then ssh -XC host and run 'gnome-session'
[17:21] <smoser> that worked inside a Xephyr x11 server
[17:22] <smoser> but i really woudl suggest the -desktop for you. -session is bare
[17:23] <Fenix|work> bare is quite fine... getting it to work is an issue
[17:23] <Fenix|work> :)
[17:26] <smoser> Fenix|work, well however you would normally connect to a remote syttem for your mingx then do that. it should work.
[17:26] <Fenix|work> yeah, I'm going through that now.  Never used Xming before
[17:45] <Fenix|work> ok... gnome-session wasn't enough
[17:46] <Fenix|work> however... gnome-core x11-server-utils gnome-utils xinit is
[17:54] <pmatulis> Fenix|work: i'm interested in what packages you needed to install to get a remote X session going.  can you post the final list?
[17:54] <Fenix|work> sure.
[17:54] <Fenix|work> how do I list my installed packages? :)
[17:54] <pmatulis> dpkg -l 'expression'
[17:55] <pmatulis> dpkg -l '*gnome*' for instance
[17:58] <rrittenhouse> What would the (smartest) way to upgrade PHP to a newer version on my Live Ubuntu Hardy server LTS server? Are there any PPA's?
[17:58] <Fenix|work> well the easiest way would be apt-get install gnome-core x11-server-utils gnome-utils xinit and see what comes up as deps.
[17:58] <Fenix|work> at least that way it'll show you ALL the packages.
[17:59] <pmatulis> Fenix|work: good enough, thanks
[17:59] <Fenix|work> I had already installed gnome-session so I don't know if that would have been installed with gnome-core
[18:10] <|rt|> is there a list of things coming in karmic server anywehre?
[18:22] <pmatulis> |rt|: yes
[18:23] <rrittenhouse> Is there any (good) way to upgrade the php version on my hardy LTS box?
[18:23] <pmatulis> rrittenhouse: you mean you want to use a backport?
[18:23] <pmatulis> |rt|: https://wiki.ubuntu.com/KarmicKoala/TechnicalOverview
[18:24] <|rt|> pmatulis: thanks
[18:24] <|rt|> i figured it was somewhere on the wiki
[18:24] <pmatulis> |rt|: not server-only however
[18:24] <|rt|> ah well it's a start
[18:24] <rrittenhouse> pmatulis, However. I just need a newer version because I launched a drupal install and im running into php issues with php 5.2.4
[18:26] <pmatulis> rrittenhouse: http://packages.ubuntu.com/hardy-backports/allpackages does not list any PHP backport
[18:27] <pmatulis> rrittenhouse: you're stuck with what you have
[18:27] <rrittenhouse> pmatulis, nice. Damn LTS I should have just went with the most recent version at the time :D
[18:27] <rrittenhouse> thanks
[18:27] <pmatulis> rrittenhouse: you're welcome
[18:28] <rrittenhouse> pmatulis, Actually, Is there any way to ask for a backport or maybe even a PPA?
[18:28] <rrittenhouse> with the MOTU folks
[18:29] <og01_> right im trying to setup self certified ssl on my apache2 server running on my home machine behind proxy. I've followed the instructions in https://help.ubuntu.com/9.04/serverguide/C/certificates-and-security.html and https://help.ubuntu.com/9.04/serverguide/C/httpd.html and also taken advice from http://ubuntuforums.org/showthread.php?t=4466 .  everything works as expected when trying to access the webserver from the local network (a
[18:30] <og01_> ps. im using desktop ubuntu release - but i thought it more a server question
[18:30] <ScottK> php backport isn't going to happen.
[18:31] <ScottK> It's got far too many rdepends to test properly
[18:31] <pmatulis> !info php5 hardy
[18:32] <joe-mac> is mdadm.conf simply not used by mdadm in the default config>?
[18:32] <joe-mac> i didn't get notified of a degraded array, that's pretty bvad
[18:35] <artillerytx> Hey guys how do you check your drives to make sure everything is working correctly no bad sectors ?
[18:35] <pmatulis> fsck i guess
[18:37] <rrittenhouse> ScottK, Are there any PPA's available? I just launched a website on Ubuntu Server (hardy) hoping that the PHP version was a sane choice but when its put under load its having issues.
[18:37] <ScottK> No idea.
[18:38] <rrittenhouse> alright.. thanks
[18:38]  * ScottK boggles a bit at php and sane in the same sentence.
[18:38] <rrittenhouse> hahah
[18:38] <rrittenhouse> I'll just have to set up a new server and move our entire site over to a jaunty box :D
[18:38] <rrittenhouse> It happens I suppose.
[18:49] <pmatulis> rrittenhouse: fyi, https://launchpad.net/ubuntu/+ppas?name_filter=php5&show_inactive=on
[18:59] <joe-mac> rrittenhouse: what kind of issues?
[19:04] <artillerytx> my server is telling me its a read only file system and when i try and do anything it says Input/output error
[19:04] <artillerytx> how can i check what is happening
[19:14] <joe-mac> artillerytx: couple of choices. easiest is usually mount -o remount,rw /
[19:15] <joe-mac> because you can't write any tmp files a lot of utilities won't be able to work, and if you can't remount read-write, then you'll have to boot a rescue environment and examine the logs on the system
[19:15] <artillerytx> Yeah
[19:15] <artillerytx> I have rebooted it hoping that it would fix it but it worked for a little while and its back to read only
[19:17] <rrittenhouse> joe-mac, With Drupal were having issues where having session cookies that randomly disappear (its inconsistent and happens in all browsers) and I've read that the issue could be with PHP 5.2.4
[19:17] <joe-mac> artillerytx: boot to a rescue environment and do a fsck -y
[19:17] <joe-mac> rrittenhouse: i c.
[19:17] <artillerytx> joe-mac: how do i boot into a rescue environment
[19:18] <joe-mac> grab an ubuntu cd and choose rescue
[19:18] <artillerytx> k i guess i need to hook up a monitor and keyboard to the server
[19:20] <michazoet> hi to all
[19:21] <michazoet> someone awake to answer an LDAP question?
[19:21] <ScottK> !ask | michazoet
[19:24] <michazoet> Ok ;-)
[19:25] <rrittenhouse> I'm assuming I can install a PPA of PHP 5.3.* for hardy and run with that, right?
[19:25] <michazoet> i have an ubuntu hardy server with a configured LDPA Server. root can see the ldpa users with "getent passwd". Other user do not see them with getent passw. two weeks ago this was working... Does someone know how to fix this? seems to be a permission problem
[19:25] <ScottK> rrittenhouse: Who's PPA are you installing from?
[19:26] <rrittenhouse> ScottK, The only one I can find is this one: 5.3.* for Hardy: https://launchpad.net/~bd808/+archive/php5.3
[19:26] <michazoet> LDPA=LDAP ...
[19:26] <ScottK> rrittenhouse: Whos' this bd808 and do you trust him to have root on your box?
[19:26] <artillerytx_> hey joe-mac had to switch computers
[19:26] <rrittenhouse> ScottK, I have no clue and not really. That is the issue.
[19:27] <rrittenhouse> ScottK, But it seems that theres no better option with Ubuntu Server
[19:27] <ScottK> rrittenhouse: Yes.  This is exactly the issue.  I certainly wouldn't install it.
[19:27] <ScottK> rrittenhouse: I have a suggestion ....
[19:27] <artillerytx_> joe-mac so i go to rescue a broken system
[19:27] <ScottK> download the source from his PPA and diff it with the Ubuntu pacakge for it from a later release.
[19:28] <rrittenhouse> true...
[19:28] <ScottK> rrittenhouse: One thing you do know is that the binaries in the PPA were built from that source.
[19:29] <ScottK> So if you can understand the source changes (if any), then it's reasonably safe.  You might also evaluate it and upload it to your own PPA so you don't add his PPA's keyring to your apt's trusted list.
[19:29] <rrittenhouse> ScottK, True. It suppository came from the debian unstable php 5.3
[19:29] <jgjones> Hello all
[19:29]  * genii thinks about Debian suppositories and winces
[19:29] <ScottK> rrittenhouse: If you were to do it that way, it would be reasonably safe from a security perspective.
[19:29] <jgjones> Just a quick question - eucalyptus-cloud - anyone got experience with it?
[19:29] <ahasenack> michazoet: if root sees the ldap users with "getent passwd" but a normal user doesn't, that points to a local configuration file being mode 0600 or something that prevents normal users from reading it
[19:29] <joe-mac> yes artillerytx
[19:29] <ahasenack> michazoet: also, make sure to stop nscd before any debugging
[19:30] <ahasenack> michazoet: a likely candidate for the problem is /etc/ldap.conf, or whatever nss_ldap's config file is nowadays
[19:30] <rrittenhouse> ScottK, Yeah I understand. I'm just hoping after all of this work the PHP version is the issue! :D Thanks for the suggestions.
[19:30] <ahasenack> michazoet: or perhaps even /etc/nsswitch.conf, but then local users wouldn't even see local users (and not just ldap users)
[19:31] <artillerytx> joe-mac: am i supposed to go all the way through this like i am setting up the server again ?
[19:31] <joe-mac> it asks some questions yea
[19:31] <joe-mac> then it will try to auto mount your partitions but you don't really want to
[19:31] <joe-mac> idk the ubuntu rescue environment eats it
[19:31] <artillerytx> its not going to wipe my drives right?>
[19:32] <joe-mac> no, it will not wipe your drives
[19:32] <michazoet> ahasenack, I checked that already... and nscd is not installed on this server
[19:32] <ahasenack> michazoet: then strace the regular user running getent passwd
[19:32] <artillerytx> what is usually the standard root file system called
[19:32] <michazoet> ahasenack, nice idea!
[19:33] <ahasenack> michazoet: might also be that your ldap server doesn't allow anonymous searches, and then when running as root you have a password in nss_ldap's configuration file
[19:33] <artillerytx> joe-mac: so tell do not use root file system?
[19:33] <joe-mac> correcty, start a shell in the installer environment
[19:34] <joe-mac> then you figure out which disk your root partition is on and run fsck -y on that partition
[19:34] <artillerytx> okay i have the shell open
[19:34] <artillerytx> how can i see the partitions
[19:34] <joe-mac> fdisk -ls
[19:35] <artillerytx> k so /dev/sda1 is probly the root then
[19:36] <joe-mac> probably
[19:36] <joe-mac> unless that's your /boot
[19:36] <artillerytx> yeah it has a star that says its the boot
[19:36] <TuxRacer-SV> Hi to all  o/  - I have a Hardy Heron Server and recently we had to migrate of ISP so, the public IP's of our Servers changed too, the Winbugs servers are ok resolving name from the primary and secondary DNS provided by the new ISP, but the Ubuntu server does not, in the Ubuntu Server I just can do ping to any external IP address, but if I try to ping "www.google.com" it does not work! :(...
[19:36] <TuxRacer-SV> ...actually I am using in the Ubuntu Server the old DNS's but it does not will work for much time due the old ISP will close operation in our country, some suggestion about? (please)
[19:37] <joe-mac>  /boot is a directory, the star is a bootable flag. your root partition can have that too, dependingf on how you set it up, i don't knwo the defaults but i am guessing sda1 is your root
[19:37] <TuxRacer-SV> in the /etc/resolv.conf file I have added both DNS, the old and the new ISP. Thanks in advance!
[19:38] <artillerytx> joe-mac: alright
[19:38] <artillerytx> joe-mac: sorry man im a newbie how do i get to the partition to run the fcsk -y
[19:39] <joe-mac> fsck -y /dev/sda1
[19:39] <joe-mac> i would run that on all your ext partitions
[19:39] <artillerytx> its telling me fsck: not found
[19:39] <joe-mac> great, ubuntu to the rescue
[19:39] <joe-mac> try e2fsck
[19:40] <artillerytx> alright so to e2fsck -y /dev/sda1
[19:41] <artillerytx> joe-mac: k it told me device or resource busy while trying to open /dev/sda1
[19:41] <artillerytx> filesystem mounted or opened exclusively to another program ?
[19:41] <artillerytx> by** another program
[19:42] <michazoet> ahasenack, the ldap server allows anonymous binds (and is running on the same server). But thx for your hint with strace. at least I can do a diff of some sort.
[19:43] <artillerytx> joe-mac: so do i need to unmount it?
[19:45] <joe-mac> artillerytx:
[19:45] <joe-mac> did you mount it?
[19:45] <artillerytx> no
[19:45] <joe-mac> are you inside a directory on it?
[19:45] <joe-mac> type mount
[19:45] <artillerytx> no
[19:46] <artillerytx> i don't see it when i type mount
[19:48] <artillerytx> i see rootfs on / type rootfs tmpfs on /dev/ type tmpfs devpts on /dev/pts type devpts
[19:49] <artillerytx> joe-mac: do i need to just unmount it
[19:49] <joe-mac> no those are in nvram
[19:50] <joe-mac> i mean ram
[19:50] <joe-mac> artillerytx: try lsof | grep sda, but i've got a lot going on so don't expect much respionsiveness from me for a bit
[19:51] <artillerytx> okay well when i do lsof | grep sda it says lsof: not found
[20:05] <artillerytx> hey guys my computer is telling me no boot device available
[20:05] <artillerytx> after i ran the ubuntu repair disk
[20:07] <TuxRacer-SV> sorry guys I will ask again a trouble I have with resolving names, if any can help me will be appreciated!
[20:07] <TuxRacer-SV> I have a Hardy Heron Server and recently we had to migrate of ISP so, the public IP's of our Servers changed too, the Winbugs servers are ok resolving name from the primary and secondary DNS provided by the new ISP, but the Ubuntu server does not, in the Ubuntu Server I just can do ping to any external IP address, but if I try to ping "www.google.com" it does not work! :( actually I am using...
[20:07] <TuxRacer-SV> ...in the Ubuntu Server the old DNS's but it does not will work for much time due the old ISP will close operation in our country, some suggestion about? (please)
[20:10] <artillerytx> joe-mac: why is my computer telling me it can't find any bootable drives now?
[20:14] <artillerytx> anyone have any experience with the repair ubuntu thing?
[20:16] <guntbert> artillerytx: is it a virtual machine?
[20:16] <joe-mac> artillerytx: i've repaired hundreds of boxes. if your drive was randomly booting RO, that means tehre were errors. nothing at all in the recovery broke your system if that's hwat you're getting at.
[20:16] <artillerytx> its a real machine
[20:17] <artillerytx> joe-mac: no... i wasn't sure
[20:18] <joe-mac> artillerytx: this is a desktop or laptop?
[20:18] <artillerytx> joe-mac: desktop
[20:18] <artillerytx> its a server
[20:20] <artillerytx> a rack server i mean
[20:25] <joe-mac> you could open it up and check for loose cables, though it sounds like a problem on the disk itself
[20:25] <joe-mac> or the controller possibly
[20:26] <artillerytx> yeah i was gonna try a different hd slot
[20:39] <michazoet> ahasenack, solved my LDAP problem... it was in the /etc/ldap/slapd file: "sizelimit 0". turned it into "sizelimit 10000" and everything is working again
[20:46] <Fenix|work> .j #ubuntu
[20:47] <Fenix|work> Greetings and salutations
[20:49] <smoser> erichammond, soren is it an accepted fact that "location" : "region" is 1:1 ?
[20:49] <erichammond> smoser: What do you mean by "location"?
[20:50] <smoser> s3 uses that term
[20:50] <erichammond> reference/URL?
[20:50] <smoser> http://docs.amazonwebservices.com/AWSEC2/latest/CommandLineReference/index.html?ApiReference-cmd-MigrateImage.html
[20:51] <smoser> you sent mail a while back suggesting use of <bucket>-<region> as opposed to <bucket>-US or <bucket>-EU
[20:52] <smoser> i think that there is not enough evidence to say that additional ec2 regions in the US would not be able to use manifests stored in a bucket in location US
[20:53] <erichammond> smoser: Given that I don't remember where I got my assumptions and that the document you reference implies that location "US" might include multiple regions, I think we should do more research and try to get an answer from Amazon.
[20:54] <erichammond> This is the sentence that worries me: "Amazon EC2 attempts to determine the region from the location of the Amazon S3 bucket"
[20:54] <smoser> yeah, i just dont know if amazon is takign shortcuts on location <-> region the same way we did
[20:54] <smoser> yeah, that is strange isn't it. right now thats easy
[20:54] <smoser> EU -> eu-west-1
[20:54] <smoser> US -> us-east-1
[20:54] <erichammond> Agreed.  They invented locations before regions and may have made the same problem in the interface.
[20:55] <erichammond> or it might be part of their plan.
[20:55] <smoser> i'll ask in the forums
[20:55] <smoser> but i think i'm going to go forward with the assumption that location:region is 1:N
[20:56] <smoser> (that all us regions can read from location bucket "US")
[20:56] <smoser> i think its better to be wrong that way because
[20:56] <smoser> a.) we already are
[20:56] <smoser> b.) so is everyone else
[20:57] <smoser> if we're wrong and look different than everyone else it just looks silly
[20:57] <erichammond> Gotta run.  Company's growing and we're looking at new properties for an office move.
[21:00] <occy> is there anything like "fluke network analyzer" that's Open Source?
[21:01] <joe-mac> no clue what that is
[21:01] <qman__> I've got a Fluke multimeter, but I've never used one of their network analyzers
[21:01] <occy> one of our IT guys wants to look into it for us and it's like $23k or something...  surely there should be some Open Source equivelant.
[21:02] <qman__> I don't really know what functions it provides
[21:02] <joe-mac> 23k?  jesus call up the company i work for and buyt he vulnerability assessment product if you're looking to spend that much dough
[21:02] <occy> joe-mac: lol
[21:02] <qman__> but if you're looking for an IDS, snort is one
[21:02] <Fenix|work> Anyone have any recommendations on which syslog to use in setting up a syslog server?
[21:03] <qman__> the default one gets the job done for me
[21:03] <occy> I think (as we don't really have anyone with a clue *sigh*) they are hoping to buy something that surplants actual knowledge.  Doesn't make sense to me, but I know enough about things to think it's a bad idea.
[21:04] <qman__> Fluke makes expensive, top-end hardware, so I'm guessing there is probably something cheaper that does the same thing
[21:04] <qman__> but the question is, why do they want it, what functions is it providing they want, etc.
[21:07] <Fenix|work> I have a Fluke Network Analyzer
[21:07] <Fenix|work> and a Fluke Network Tester
[21:07] <Fenix|work> awesome tools
[21:07] <Fenix|work> making network maps is super easy
[21:08] <occy> Fenix|work: I guess there are no comparable Open Source products?
[21:08] <qman__> you can't really pick another product until you decide what functions you want
[21:09] <qman__> no, there is no open source product that is identical to it, but there are plenty that probably do most of the functions
[21:09] <occy> qman__: "If you like Pepsi, you _MAY_ want to try Coke"  is what I'm looking for.
[21:10] <|rt|> any network analyzer that can tell you how much noise/interferance, and distance to any shorts is going to be expensive
[21:10] <occy> qman__: example:  "Hey I like Photoshop, what could I use on Linux that is the same?" "Oh that's easy, just use The Gimp http://gimp.org/"
[21:10] <qman__> it's not that simple
[21:10] <qman__> fluke makes hardware too
[21:11] <|rt|> yeah something like this http://cableorganizer.com/fluke-networks/fluke-cableiq.htm
[21:11] <qman__> it's an area where there is no one equivalent open source software
[21:11] <occy> figured... just wondering if someone, that used Fluke Network Analyser, might know of some sort of setup that could do the same type of thing is all.
[21:11] <qman__> but, there are plenty of other utilities that, when combined, get the same job done
[21:11] <Fenix|work> both of my analyzers are hardware
[21:11] <occy> qman__: such as snort, nmap etc...
[21:12] <qman__> yes
[21:12] <Fenix|work> with software to download onto the PC
[21:12] <qman__> so, the key here, is what functions you care about
[21:12] <|rt|> fluke makes some nice wireless analyzers too
[21:12] <qman__> fluke makes great products, that's why they're so expensive
[21:12] <occy> what was that tool Mark Spencer wrote a while back...
[21:13] <occy> it mapped machines on a network
[21:13] <Fenix|work> sounds like nmap
[21:13] <occy> I think it used it.
[21:13] <qman__> yeah
[21:13] <qman__> you could easily build a script around nmap to draw something up
[21:14] <|rt|> isn't he the guy who started asterisk?
[21:14] <occy> he wrote Pidgin (aka: gaim)
[21:14] <occy> and ahhh
[21:14] <occy> cheops
[21:14] <occy> http://cheops-ng.sourceforge.net/screenshots.php
[21:14] <occy> lol
[21:15] <occy> I remember using tha tin what 97?
[21:15] <qman__> heh
[21:15] <qman__> tools that get the job done and tools that impress the boss are often two very different things :)
[21:17] <occy> Get the imlib-1.9.13-3 RPM from (i686 version) rpmfind.net and install using the --force option in rpm. then install the cheops-ng rpm (lol @ --force)
[21:18] <qman__> haha
[21:19] <aubre> Mark Spencer wrote a thing called cheops years ago
[21:19] <occy> --force --nodeps --pleasefreakinwork
[21:19] <occy> aubre: welcome to before :)
[21:19] <aubre> me and Mark Spencer founded the East Alabama Linux User's Group together in 1999
[21:20] <aubre> oh duh
[21:20] <aubre> I fail at scrolling up
[21:20] <occy> <-- OctobrX
[21:20] <occy> aubre: ;)
[21:20] <aubre> occy: lol
[21:20] <occy> aubre: *sigh* I hated that nick after I found out all the leet kiddies had their names like that.
[21:20] <aubre> occy: I bet
[21:21] <occy> No wonder people thought I was 13
[21:21] <aubre> occy: they still have meetings EALUG that is but I don't run it any more, Bruce Gray does
[21:21] <occy> aubre: yeah... good times
[21:21] <aubre> occy: I got burned out
[21:22] <occy> I'm in GA, but 95-2000 was good times in computer world for me
[21:22] <occy>  When the money flowed.
[21:22] <aubre> occy: yeah, lots of fun, there was always that thought that it might not succeed (Linux and open source) but we kept on plugging
[21:23] <occy> aubre: it's still not out of the woods yet.
[21:23] <occy> aubre: I remember thinking the OS wars would be over by 2010
[21:23] <aubre> occy: it's a lot further along that it used to be
[21:23] <occy> I doubt we'll be much further along in 2020
[21:23] <qman__> with windows 7's outrageous pricing, I think linux is looking pretty good
[21:23] <occy> qman__: people are stupid sheep
[21:23] <occy> qman__: they will do whatever they can and will
[21:24] <qman__> yes, but people are also cheap
[21:24] <qman__> so, who knows
[21:24] <qman__> linux has definitely progressed from some techie's toy to a viable desktop system in the past few years
[21:25] <occy> qman__: I work for a City Gov't and hope we can maybe in the next 5-10 years roll out Ubuntu on the machines.
[21:25] <occy> only reason I'm staying here is to try and help spread OS to gov't
[21:25] <aubre> aubre: took me a while but I got AU to do it
[21:25] <qman__> best of luck with that
[21:26] <occy> aubre: to do what? make the switch?
[21:26] <qman__> wasting money is gov't specialty
[21:26] <aubre> aubre: start letting me move things off Solaris to Linux
[21:27] <occy> aubre: for me it was use Windows IIS vs. Something I know.  LAMP/Drupal
[21:27] <occy> LAMP/Drupal won
[21:27] <aubre> occy: nice
[21:27] <occy> I tried for about a day and said to the IT Director... "Dude screw this I'm installing linux"
[21:27] <qman__> IIS really is a disaster
[21:28] <occy> I guess if you know it back and forward perhaps it could be OK.  but I don't know jack about it
[21:28] <occy> don't care to learn it either
[21:33] <blizzkid> lo all; I have a bit of a problem. in dhcpd.conf I have host che { hardware ethernet 00:22:fa:b4:83:5e; fixed-address che; } and in my dns setup I set che to be .101 But when I do a dhclient wlan0 on that laptop, it gets the addres 105. Am I missing something?
[21:33] <qman__> AFAIK, you can't use DNS names in dhcpd.conf
[21:33] <qman__> though I could be wrong
[21:34] <blizzkid> qman__: at work we use that setup
[21:34] <qman__> try using the whole domain name
[21:34] <qman__> che.somedomain.com
[21:35] <qman__> oh, did you restart dhcpd after changing the config?
[21:35] <blizzkid> yes, I restarted both dhcpd and bind
[21:35] <qman__> ok
[21:35] <qman__> just making sure
[21:36] <blizzkid> but I'll restart both again, brb
[21:36] <blizzkid> nopes
[21:36] <blizzkid> restarted both, still get 105
[21:37] <blizzkid> not with full names though, but that shouldn't be necesary
[21:37] <qman__> does the server resolve short names properly? like if you 'ping che'
[21:38] <blizzkid> ah, I forgot about the resolv.conf on the server I guess
[21:38] <blizzkid> hold on...
[21:39] <blizzkid> ok, now when I ping che from the server it tries to ping che.home.lan
[21:40] <qman__> and that points to 101, right
[22:15] <blizzkid> if /script is 777 and /script/test.sh is 777 too, why do I getOct  5 23:13:26 mini kernel: [ 6289.832166] type=1503 audit(1254777206.371:48): operation="inode_permission" requested_mask="::x" denied_mask="::x" fsuid=118 name="/script/test.sh" pid=9552 profile="/usr/sbin/dhcpd3" ?
[22:17] <mdeslaur> blizzkid: that's apparmor blocking the request
[22:17] <blizzkid> mdeslaur: any easy fix?
[22:18] <mdeslaur> blizzkid: easies is to name your custom script /etc/dhcp3/dhclient-script
[22:18] <mdeslaur> blizzkid: else, you need to modify the /etc/apparmor.d/sbin.dhclient3 apparmor profile
[22:19] <blizzkid> let me check that first option
[22:20] <qman__> blizzkid, you can also put scripts in /etc/dhcp3/dhclient-exit-hooks.d/ and what have you
[22:20] <qman__> it's quite convenient
[22:21] <qman__> all scripts in that directory get run after a DHCP address is acquierd
[22:21] <qman__> acquired*
[22:21] <mdeslaur> blizzkid: qman__ is right also
[22:22] <blizzkid> mdeslaur: renaming it to dhclient-script still fails, so I'll try qman__ 's suggestion
[22:23] <mdeslaur> ok
[22:25] <blizzkid> hmm, moved it, got no error, but the script doesn't seem to be executed
[22:28] <blizzkid> qman__?
[22:32] <blizzkid> mdeslaur?
[22:32] <qman__> are you sure? the scripts definitely run
[22:32] <qman__> try creating one that just sets a flag or something that you'll notice
[22:33] <blizzkid> well, it's basically just an echo (as a test), but I don't see anything
[22:33] <blizzkid> not even when I echo >> file
[22:33] <qman__> odd
[22:34] <blizzkid> oh, hold on... the script expects an argument
[22:34] <blizzkid> since it's in dhclient-enter-hooks.d it doesn't have that argument
[22:36] <blizzkid> hmmz, nopes, not even a simple echo "test" >> /script/loglease.txt
[22:36] <blizzkid> and /script is 777 to test
[22:39] <blizzkid> qman__: any other suggestions?
[22:43] <mdeslaur> blizzkid: what permissions do you have on the script itself?
[22:43] <blizzkid> wtf... even dhclient-script gets a permission denied, even though it's clearly stated in /etc/apparmor.d/sbin.dhclient3
[22:43] <blizzkid> mdeslaur: on the dhclient-script 755
[22:43] <mdeslaur> blizzkid: paste the permission denied please
[22:43] <blizzkid> on the one in hooks 755 too
[22:44] <blizzkid> Oct  5 23:43:25 mini kernel: [ 8088.727158] type=1503 audit(1254779005.266:55): operation="inode_permission" requested_mask="::x" denied_mask="::x" fsuid=118 name="/etc/dhcp3/dhclient-script" pid=11027 profile="/usr/sbin/dhcpd3"
[22:44] <mdeslaur> blizzkid: oh! it's for the dhcpd3 _server_?
[22:45] <blizzkid> yes
[22:45] <mdeslaur> sorry about that, hold on, let me install it
[22:45] <blizzkid> mdeslaur: np, I guess I should have specified ;)
[22:46] <mdeslaur> blizzkid: I should have read the error message more carefully :P
[22:47] <mdeslaur> blizzkid: there is no pre-set script in the default dhcpd apparmor profile
[22:47] <mdeslaur> you need to modify /etc/apparmor.d/usr.sbin.dhcpd3
[22:47] <blizzkid> mdeslaur: I was about to find that :)
[22:47] <mdeslaur> and add a line like:  /etc/dhcp3/yourscript Uxr,
[22:48] <mdeslaur> once you've done that, do a /etc/init.d/apparmor restart
[22:51] <blizzkid> ok mdeslaur that seems to have worked
[22:51] <mdeslaur> blizzkid: cool
[22:51] <blizzkid> now I need to find out how to start rsync from that script without waiting for rsync to finish
[22:52] <blizzkid> (automatic backup at dhcp lease)
[22:52] <blizzkid> any idea on that one mdeslaur?
[22:52] <mdeslaur> blizzkid: what are you trying to do exactly?
[22:53] <blizzkid> mdeslaur: when I get a dhcp lease I want the dhcp server (which is my backup server too) to rsync my /home
[22:53] <blizzkid> but I know with execute() in dhcpd.conf it normally waits for the called script to end
[22:53] <mdeslaur> oh, cool idea
[22:54] <blizzkid> so the script "startbackup.sh" should start rsync, but not wait for rsync to finish
[22:54] <mdeslaur> write a trigger to a file, and write a daemon to monitor the file
[22:55] <blizzkid> writing a daemon.... nice idea, but I wouldn't know how :)
[22:56] <mdeslaur> blizzkid: oh, just a shell script that looks to see if the file is there, if it is, do the rsync, if not, do a sleep(5) or something
[22:56] <blizzkid> right
[22:56] <blizzkid> that sounds like a good idea
[22:57] <blizzkid> that way I can echo 1 to the file on commit
[22:57] <blizzkid> and0 on release
[22:57] <mdeslaur> blizzkid: maybe the nohup command can help you
[22:58] <blizzkid> hmmz, that still waits for the command to finish
[22:59] <mdeslaur> even with a & at the end?
[22:59] <blizzkid> no, indeed
[23:00] <blizzkid> let me test something here
[23:09] <blizzkid> ok, one more issue
[23:09] <blizzkid> mdeslaur: I can execute the script as user martijn, but not from dhcpd because I use martijn@host in the script
[23:12] <blizzkid> I guess I need to set my script to always execute as user martijn
[23:14] <mdeslaur> blizzkid: I don't remember off-hand if dhcpd runs as root, if so, you can just do a su - martijn before the rsync line in your script
[23:15] <mdeslaur> su - martijn -c rsync
[23:16] <qman__> blizzkid, ah, that was the problem, I thought you meant the client, not the server
[23:16] <blizzkid> np qman__
[23:17] <blizzkid> now I need to be able to find out how to get the rsync working when ran from dhcpd
[23:18] <blizzkid> I thought chmod+s would do the trick, but that wasn't it
[23:30] <blizzkid> qman__, mdeslaur is there a way to allow the user dhcpd to "su -l martijn" without a password even though user martijn has a password?
[23:37] <qman__> blizzkid, by running as root
[23:37] <qman__> it's complicated
[23:38] <qman__> I had to do something similar for srcds, I ended up sudoing to root, then a sudo -c or something to run as the second user
[23:39] <blizzkid> qman__: sudo as root from the script? won't that still ask for a password
[23:39] <qman__> it will normally, but you can edit the sudoers file
[23:39] <qman__> to allow that user to run that script as root with sudo
[23:39] <blizzkid> qman__: also I added dhcpd ALL=(martijn)NOPASSWD: ALL
[23:39] <qman__> without a password
[23:40] <blizzkid> and then sudo -u martijn "nohup rsync -azuvb martijn@$2:/home/martijn /backup &" in the script
[23:40] <blizzkid> but that still doesn't seem to work
[23:40] <qman__> hmm
[23:40] <qman__> that ought to work, assuming the syntax is correct
[23:42] <blizzkid> aha... with the quotes: command not found
[23:42] <qman__> it took me a good long while to get srcds running right, I ended up with two separate scripts
[23:42] <blizzkid> without the quotes: Exit 12
[23:43] <qman__> my suggestion is to put the rsync command into a script, and run the script there instead
[23:43] <qman__> as silly as that might sound, it worked in my case
[23:44] <blizzkid> gonna try that now
[23:47] <blizzkid> qman__: I still don't see an rsync firing off
[23:47] <blizzkid> when I run the script as root it works
[23:49] <qman__> hm
[23:49] <qman__> I think that's why I settled on sudoing to root first
[23:51] <qman__> or maybe not, mine's not running from root
[23:52] <qman__> here's the relevant bits from my sudoers file, which allowed me to run one script from a normal user as another user
[23:52] <qman__> # Runas alias specification
[23:52] <qman__> Runas_Alias     SRCDSRNAS = srcds
[23:53] <qman__> ryan    ALL = (SRCDSRNAS) NOPASSWD: ALL
[23:53] <qman__> where ryan is the user running the script, and srcds is the user the script runs as
[23:54] <qman__> and then here's part of the command that's run
[23:54] <qman__> sudo -u srcds ./srcds_run -console -game [etc]
[23:54] <qman__> so it does work
[23:58] <blizzkid> qman__: I forgot to change $2 to $1 in the second script
[23:59] <blizzkid> dhcpd ALL=(martijn)NOPASSWD: ALL did the trick
[23:59] <blizzkid> and in the first script sudo -u martijn script2