[00:57] <ruben23> hi
[00:58] <ruben23> i have http setup on /var/www----> how do i download the folder and file i have on it. on remote area, by accesing its public Ip..
[00:59] <ruben23> be able to view and download the file adn folder in it using url
[01:00] <ruben23> anyone can suggest..?
[02:37] <CppIsWeird> hello. i've got a box running ubuntu-server. I've tried putting two different sata cards in it and it does not pick up either card. i do not even see in dmesg anything about the card. neither of the cards logos prompts during boot. this box did have an sata controller card in the past and used it just fine. any ideas?
[02:53] <CppIsWeird> hello. i've got a box running ubuntu-server. I've tried putting two different sata cards in it and it does not pick up either card. i do not even see in dmesg anything about the card. neither of the cards logos prompts during boot. this box did have an sata controller card in the past and used it just fine. any ideas?
[02:54] <benedikt> CppIsWeird: does it show up in lspci?
[02:55] <CppIsWeird> benedikt, no
[02:56] <CppIsWeird> could i have disabled something in the bios a while ago? can options in the bios prevent sata cards from loading?
[02:56] <benedikt> yes, its possible.
[02:57] <CppIsWeird> hmm, well now i have to wait a few hours... i decided to do a release upgrade
[02:58] <benedikt> took my half an hour on my 10 year old server
[03:02] <billybigrigger1> hey all
[03:02] <billybigrigger1> anyone alive?
[03:02] <CppIsWeird> benedikt, i bet your internet is faster than mine
[03:25] <qman__> CppIsWeird, could also be a dead PCI slot, it happens
[03:25] <qman__> if you have a different slot, try it
[03:26] <CppIsWeird> tried them all
[04:27] <micahg> is the -server kernel gone in karmic?
[04:28] <twb> That's what I heard
[04:31] <ScottK> For i386, yes.
[04:31] <ScottK> For amd64 there is still a server kernel.
[04:33] <micahg> ah
[04:35] <sbeattie> micahg: though in i386 land, the generic-pae sort of serves the same purpose.
[04:36] <micahg> I thought the -server kernel had other tweaks besides pae
[04:38] <twb> !pae
[04:39] <twb> micahg: you should be able to dget the amd64 .debs, dpkg -x them, and diff the .config.gzs
[04:39] <twb> That ought to tell you exactly what is different
[04:40] <twb> Oh, PAE = "I want to address all 8GiB but I can't use the native x86-64 build."
[04:46] <billybigrigger1> do i have to manually create a /Maildir for root?
[04:47] <billybigrigger1> i'm getting a bunch of permission denied errors on my mailserver
[04:47] <billybigrigger1> Nov 26 04:17:58 li127-132 deliver(root): chdir(/root) failed: Permission denied
[04:47] <billybigrigger1> they look similar to that one ^^^
[04:47] <billybigrigger1> although i have my user account setup as an alias to root, so i thought they would redirect
[04:48] <billybigrigger1> Nov 26 04:16:57 li127-132 deliver(root): stat(/root/.dovecot.sieve) failed: Permission denied
[04:49] <billybigrigger1> does dovecot need the managesieve protocol enabled? i'm not sure really what it does, but i remember last time i setup a mailserver on my home server that the only protocol i needed, or ran, was imaps
[04:57] <twb> 15:47 <billybigrigger1> Nov 26 04:17:58 li127-132 deliver(root): chdir(/root) failed: Permission denied
[04:57] <twb> billybigrigger1: who does dovecot run as?
[04:58] <twb> If it isn't the superuser, it probably won't have access to user's home directories -- including root's.
[05:06] <marcelcohrs> can anybody give me a hand with vhosts?
[05:12] <Dessan> What can we help with marcelcohrs
[05:13] <Dessan> marcelcohrs, please keep chat in channel not PM's that way more people can help/learn.
[05:14] <marcelcohrs> do you know how i set the permissions to my account to have full access r &w at my www folder?
[05:14] <marcelcohrs> im connected via sshfs
[05:15] <billybigrigger1> twb: postfix and dovecot-auth are both run as root
[05:15] <twb> Is /root o+rwx ?
[05:15] <billybigrigger1> manageseive-login, pop3-login, and imap-login are all run as dovecot
[05:16] <billybigrigger1> although, according to dovecot doc's, protocols = none in dovecot-postfix.conf = login's managed via dovecot-auth
[05:16] <marcelcohrs> Dessan: first thing, when i use sshfs to connect
[05:16] <billybigrigger1> doesn't seem to be true though
[05:16] <billybigrigger1> drwx------   4 root root  4096 Nov 26 02:22 root
[05:17] <twb> billybigrigger1: OK, so it looks like li127-132 (whatever that is) isn't running as root
[05:17] <billybigrigger1> where do you see that?
[05:17] <twb> Either that or you have some kind of separate MAC in addition to the posix permissions
[05:18] <twb> 15:57 <twb> 15:47 <billybigrigger1> Nov 26 04:17:58 li127-132 deliver(root): chdir(/root) failed: Permission denied
[05:18] <billybigrigger1> li127-132 is my hostname
[05:18] <billybigrigger1> given to me by the vps host for my node
[05:18] <twb> Oh, linode
[05:18] <billybigrigger1> i changed my hostname to timmy though
[05:19] <billybigrigger1> sudo: unable to resolve host timmy
[05:19] <twb> That was a dumb thing to do
[05:19] <billybigrigger1> could explain those messages, i get that after typing every command
[05:19] <billybigrigger1> why can't i change my servers hostname?
[05:19] <twb> Because you haven't changed your server's hostname properly
[05:20] <billybigrigger1> edit /etc/hostname and then $ hostname -F /etc/hostname
[05:20] <twb> You must edit /etc/hosts, /etc/hostname and reboot or run hostname -F /etc/hostname
[05:20] <billybigrigger1> ??? how else do you set it up?
[05:20] <billybigrigger1> oooh didn't edit hosts
[05:20] <twb> Because sudo can't resolve "timmy", it won't let you run sudo at all
[05:20] <billybigrigger1> :P
[05:21] <billybigrigger1> there we go
[05:21] <billybigrigger1> messages gone
[05:22] <billybigrigger1> now i wonder if i should change dovecot-postfix.conf to protocols = imaps
[05:22] <billybigrigger1> instead of protocols = none
[05:59] <twb> Does 8.04's d-i support the sshd option?
[05:59] <twb> I thought it did, but I can't find it.
[06:00] <twb> Oh, maybe I need to start d-i with "expert"?
[06:00] <twb> "anna-install openssh-server" didn't work, either...
[06:00] <twb> Grmph
[06:11] <billybigrigger1> does phpmyadmin not exist in jaunty anymore?
[06:11] <uvirtbot`> New bug: #488600 in php5 (main) "MySQLi Prepared Statements Not Working Correctly With UPDATEs" [Undecided,New] https://launchpad.net/bugs/488600
[06:11] <billybigrigger1> E: Couldn't find package phpmyadmin
[06:14] <crohakon> So, how can I make it so I can mount a directory on my server from my laptop?
[06:14] <crohakon> NFS?
[06:19] <twb> crohakon: any network filesystem will do
[06:20] <twb> For ad-hoc use, I recommend SSHFS, though this isn't appropriate for heavyweight
[06:21] <twb> billybigrigger1: it's in universe, because it receives no support.
[06:21] <twb> billybigrigger1: universe was (stupidly) turned on by default in some earlier releases.
[06:24] <ScottK> twb: That's a gross over-generalization.
[06:25] <ScottK> There are ignored packages both in Main and Universe.
[06:25] <ScottK> Certainly the odds are better in Main, but both are maintained.
[06:25] <ScottK> twb: Also Universe is still on by default in new installs.
[06:33] <crohakon> Okay, so I followed the server guide to install the NFS
[06:33] <crohakon> But I cannot seem to mount it from my laptop
[06:36] <qman__> crohakon, by default, ubuntu desktop doesn't have the nfs-common package installed, which is needed to mount nfs shares
[06:37] <twb> I didn't say it was unmaintained, I said it didn't receive support.
[06:37] <twb> Granted, I may still be wrong.
[06:37] <twb> But I was thinking of support contracts rather than maintenance of the package.
[06:38] <crohakon> nvm I got it working
[06:38] <twb> I also didn't realize universe on in 9.10.  I thought it was off in 9.10, partly because that'd neatly explain billybigrigger1's problem.
[06:39] <twb> crohakon: note that you shouldn't run NFS over an untrusted network (e.g. the internet).
[06:40] <crohakon> They server is in my basement
[06:40] <crohakon> =)
[06:41] <crohakon> I just got tired of using FTP... making a change to a CSS file and uploading it. Now I can just open it directly and click the save button to update it.
[06:42] <crohakon> hmmm
[06:43] <crohakon> apparently I don't have permission to SAVE the file...
[06:45] <crohakon> in exports I have: /srv *(rw,synv,no_subtree_check)
[06:47] <twb> crohakon: your UIDs must be the same on both hosts
[06:47] <twb> When using NFS, anyway
[06:47] <twb> This is why NFS is typically used with LDAP or NIS.
[06:48] <RoyK> twb: erm, sholdn't kerberos allow for different uids?
[06:48] <twb> RoyK: I guess, if he's using krb
[06:48] <twb> I assumed he was using bare NFSv3
[06:48] <RoyK> authentication with UIDs only is not really secure to put it mildly
[06:49] <twb> RoyK: that's why I mentioned this ;-) 17:39 <twb> crohakon: note that you shouldn't run NFS over an untrusted network (e.g. the internet).
[06:49] <RoyK> heh - yeah
[06:49] <RoyK> sshfs over such networks works well
[06:49] <crohakon> It is just on my LAN...
[06:50] <twb> RoyK: I suggested that, too.
[06:50] <RoyK> crohakon: does the UID in question have write access to the dir?
[06:50] <RoyK> as twb said, they must match on client and server
[06:52] <RoyK> and setting up nis or ldap should be quite quick
[06:56] <twb> I wouldn't bother to set up NIS/LDAP on a roaming laptop
[06:56] <RoyK> nah
[06:56] <twb> If it's a single-user network, just use usermod to make the UIDs of that one user match
[06:56] <twb> usermod + find /home/alice -nouser -exec chown as root
[06:56] <twb> Admittedly, I am a cowboy...
[06:57] <RoyK> useradd -u x -g y
[06:57] <RoyK> :P
[06:58] <RoyK> usermod's too modern - easier to vi /etc/passwd / grop
[06:58] <RoyK> s/grop/group/
[06:58] <RoyK> :)
[07:00] <crohakon> I figured it out... I had the file permissions set wrong.
[07:00] <crohakon> =)
[07:00] <crohakon> Thanks for all the information though.
[07:00] <RoyK> :)
[07:02] <crohakon> There, now I don't have to mess with FTP =)
[07:02] <crohakon> Beautiful
[07:34] <maxagaz> how to compile dhcp-3.0.5 with dhcp-3.0.5-ldap-patch ?
[07:34] <maxagaz> where to put he patch so that's it's taken into account ?
[07:34] <maxagaz> i can't find any readme about this
[07:45] <jmarsden> maxagaz: Are you creating a Ubuntu package, or compiling from tarball?
[07:45] <maxagaz> jmarsden, compiling from tarball
[07:45] <maxagaz> jmarsden, and i can't find any eradme file for this patch
[07:46] <jmarsden> If you do not know what it does and need a README for it, you probably should not be applying it!  But if you *want* to apply it, use the patch command just as you would for any other patch.
[07:47] <jmarsden> man patch for lots of details, usually something like patch -p0 <patchfilename.patch   is what you need.
[07:47] <maxagaz> jmarsden, i know what it does...
[07:47] <jmarsden> Then why are you looking for a README??
[07:47] <maxagaz> jmarsden, I didn't know the patch command to apply a patch
[07:47] <maxagaz> jmarsden, but I know it adds ldap support for dhcp3
[07:48] <jmarsden> If you have never used patch in your life, I would suggest doing some basic tutorials before trying to compile and use patched services on your server!
[07:48] <maxagaz> jmarsden, before i apply the patch, where should i put the patch file, in dhcp-3.0.5 dir ?
[07:49] <jmarsden> Anywhere you like... patch -p0 </some/path/to/where/you/put/the/file/dhcp-3.0.5-ldap-patch    would work if you really want :)
[07:50] <jmarsden> Have you really never used a shell input redirect either??
[07:50] <maxagaz> jmarsden, okay, but the command should be run in the dhcp-3.0.5 dir, right?
[07:50] <jmarsden> Yes.
[07:50] <maxagaz> thanks!
[07:51] <jmarsden> No problem... but please, take more time to learn about software development before patching critical services on your servers.
[08:34] <maxagaz> jmarsden, I'll try too, thank you very much
[08:34] <jmarsden> No problem :)
[09:01] <uvirtbot`> New bug: #488641 in ntp (main) "NTP client fails to install" [Undecided,New] https://launchpad.net/bugs/488641
[09:38] <maxagaz> where is set the ip address of my vpn clients ?
[09:39] <maxagaz> how does openvpn attribute an ip ?
[09:42] <jmarsden> man openvpn and read the example in there ?
[09:42] <maxagaz> with --ifconfig-pool  ?
[09:45] <jmarsden> Sure, if that's how you are using openvpn.
[09:57] <maxagaz> jmarsden, no, it's not...
[09:57] <maxagaz> i'm trying to understand the config someone else made
[09:59] <jmarsden> The most basic way would probably be openvpn --server NETWORK NETMASK   which sets up that stuff sanely for you, unless you (or "someone else")  are doing something 'clever'
[10:03] <maxagaz> jmarsden, everything is configured in /etc/openvpn/server.conf
[10:03] <maxagaz> vpn clients have addresses like 192.168.x.x
[10:03] <maxagaz> there are some "push" in the config
[10:05] <twb> Well, there are three "private use" ranges in IPv4 -- a VPN could use any of them
[10:05] <maxagaz> Ok... server 192.168.101.0 255.255.255.0
[10:06] <maxagaz> I guess it's this pool of addresses
[10:06] <jmarsden> That's what I said earlier... --server NETWORK NETMASK :)
[10:07] <jmarsden> In the config file the options drop the leading --
[10:07] <jmarsden> As the man page says.
[10:07] <maxagaz> jmarsden, yes sorry it makes sense now
[10:15] <acalvo> hello and good morning
[10:53] <maxagaz> What is the  P-t-P address ?
[10:54] <maxagaz> Why can't I ping it ?
[10:54] <maxagaz> in openvpn
[10:54] <twb> Do you have a route to it?
[10:57] <acalvo> anyone uses LTSP?
[10:57] <maxagaz> twb, yes, i have a route to hit
[10:57] <maxagaz> acalvo, i do
[10:57] <twb> !anyone
[10:58] <acalvo> twb: because if nobody uses that my question will get stuck in limbo
[10:58] <maxagaz> acalvo, if you have problem configuring it, you probably better ask in #ltsp
[10:59] <maxagaz> twb, my config is this :
[10:59] <maxagaz>  ifconfig-push 192.168.101.73 192.168.101.74          iroute x.x.1.0 255.255.255.0
[10:59] <acalvo> maxagaz: just to know your 2cents about it
[11:00] <maxagaz> acalvo, 2cents about what ?
[11:00] <acalvo> the experience with the LTSP solution
[11:01] <maxagaz> acalvo, i don't unerstand
[11:01] <acalvo> maxagaz: I mean if it suited your needs and you didn't experience any problem
[11:02] <maxagaz> acalvo, i donfigured it, but i never use it actually, it was just a test
[11:02] <acalvo> oh, ok, thanks
[11:02] <twb> I'll tell you one thing: don't try to deploy LTSP5 on OpenSuSE 10
[11:03] <twb> Or any LTSP on any SuSE
[11:03] <twb> It's a ridiculous farce
[11:08] <hagedorn> hi, while dumping huge mysql database to smb share this occours in /var/log/syslog:  CIFS VFS: Send error in SETFSUnixInfo = -11
[11:08] <hagedorn> any ideas ?
[11:09] <twb> hagedorn: CIFS is the network filesystem that Samba provides.
[11:10] <hagedorn> i know
[11:10] <hagedorn> maybe dump file too large
[11:10] <twb> Google for SETFSUnixInfo = -11, then
[11:10] <hagedorn> maybe symlink problem
[11:11] <twb> Are you saying that /var/log/syslog is mounted over CIFS?
[11:11] <twb> Because that would be bad juju
[11:12] <acalvo> twb: thanks for the advice
[11:13] <twb> LTSP5 on Ubuntu is easy to deploy, because its LTSP's target platform
[11:13] <hagedorn> twb: no ,... syslog ist not mounted over cfis
[11:13] <hagedorn> only a backup dir
[11:13] <hagedorn> its a syslink problem at cifs
[11:14] <twb> hagedorn: are both hosts running Ubuntu?
[11:14] <twb> hagedorn: or is the CIFS server a Windows server?
[11:14] <hagedorn> no
[11:14] <twb> hagedorn: if both are unix then symlinks should Just Work.
[11:15] <hagedorn> cifs server is manage trends stortrends server from ami
[11:15] <hagedorn> think its a redhat oder cent os
[11:15] <hagedorn> target server is 8.0.4.3
[11:15] <twb> Shrug
[11:15] <twb> ITYM "8.04.3"
[11:17] <hagedorn> maybe i have to use nfs
[11:19] <twb> Grr, 10.04's d-i puts grub on the wrong MBR, too
[11:19] <twb> I hate grub so much
[11:22] <acalvo> I guess LTSP can't handle windows machines, right?
[11:57] <uvirtbot`> New bug: #488712 in samba (main) "package samba-common 2:3.4.0-3ubuntu5.1 failed to install/upgrade: " [Undecided,New] https://launchpad.net/bugs/488712
[11:58] <maxagaz> i'm trying to compile "dhcp-3.0.5" with a patch for ldap, but after "./configure", when I do "make", it returns this: make[2]: *** No rule to make target `-lssl', needed by `dhcpd'.  Stop.
[11:58] <maxagaz> does someone knows why ?
[12:06] <twb> acalvo: LTSP is just an OS.  It boots on anything - it doesn't matter what's installed on the hard disk.
[12:06] <acalvo> ok, thanks twb
[12:07] <twb> acalvo: if you mean "can I use my Windows machine as an LTSP *server*", then that would depend if your Windows machine is a DHCP, TFTP and NFS server -- which it probably isn't.
[12:07] <acalvo> no, my question was if there is something similar that boots a windows-compatible os
[12:07] <twb> I suspect you could prepare LTSP disk images and serve them from some of Microsoft's high-end server OSs
[12:08] <twb> acalvo: what does "windows-compatible" mean?
[12:09] <acalvo> the LTSP idea is quite interesting, but I'd like to do that with windows OSes
[12:10] <acalvo> having an opensource server as PXE/DHCP/whatever is needed
[12:17] <twb> acalvo: you mean that you want Windows thin clients?
[12:17] <acalvo> something like that, yes
[12:17] <twb> That is called "Microsoft Windows Terminal Server"
[12:17] <acalvo> or any way to download a thin image from a server (thru pxe I guess)
[12:18] <acalvo> twb: but that means you should have "Microsoft Windows Server XXXX", right?
[12:18] <twb> No, TS is a server OS.
[12:19] <twb> You license that instead of, say, Windows SBS.
[12:19] <acalvo> in other words, you must pay for TS, right?
[12:19] <twb> You must pay for a license (or violate copyright), yes.
[12:20] <twb> If you want Windows, you're gonna have to pay for licensing.
[12:21] <twb> Of course, once you have a running TS server, you can boot LTSP5 on your workstations and use them to connect to your TS server.
[12:21] <acalvo> I'll try to find some way to auto download an image from a TFTP server
[12:22] <acalvo> twb: ok
[12:22] <twb> Note that netbooting isn't the same as a thin client -- LTSP is really the latter, but it has branched out into the former.
[12:23] <twb> AFAIK there is no way to netboot Windows -- and if there is, it's probably not legal.
[12:23] <acalvo> well, if only the community I managed will understand and swith to any form of GPL OS
[12:23] <acalvo> will be perfect
[12:23] <acalvo> but, while stucked with windows, everything is painful
[12:23] <twb> FOSS code is plenty painful, too.
[12:24] <acalvo> yes, but at least it lets you learn, understand and personalize
[12:24] <acalvo> windows just let's you "run" (however it does)
[12:25] <twb> I sure don't let my users understand or personalize their system.  Removing that functionality was one of the reasons DoJ got me to replace their existing Windows systems :-)
[12:25] <twb> But I know what you mean :-)
[12:27] <acalvo> I didn't mean to let the users do whatever they want (but they'll try however...), but for the IT dept to create a good OS which covers all the necessities
[12:27] <acalvo> stick to the topic, I think I'll end up setting up a PXE server with TFTP, and deploy a new image once every week
[12:28] <acalvo> the only thing is how to change the hostname of the windows machine...
[12:40] <twb> If you think you can deploy a new SOE every week, you are batshit insane.
[12:40] <twb> Or you are a student of the "agile development" school
[12:40] <twb> (That being is a strict subset of the former class.)
[12:56] <jetole> Hey guys. Does anyone know how I can tell which ethernet ports have an ethernet wire connected from the terminal?
[12:58] <twb> jetole: ethtool or mii-tool
[12:59] <jetole> yeah I was looking at the ethtool and ip man page but not sure what I am looking for
[13:00] <jetole> oh, the --test option maybe
[13:00] <jetole> nope
[13:05] <twb> Just run it without args?
[13:05] <jetole> ethtool: bad command line argument(s)
[13:05] <jetole> For more information run ethtool -h
[13:06] <jetole> thats what happens if I run it without args
[13:23] <soren> mdz: Hi. About your comments on https://blueprints.edge.launchpad.net/ubuntu/+spec/server-lucid-automated-testing
[13:23] <soren> mdz: Good point, I hadn't thought of that.
[13:23] <soren> mdz: I was thinking we could do that in a PPA?
[13:24] <soren> mdz: So instead of splitting it out and integrating into checkbox, we rely on the PPA's for this and just upload each package we want to test each day with no source changes.
[13:25] <soren> The PPA's would even e-mail me (or whomever owns the PPA) about failures.
[13:30] <Daviey> soren: If it's just to detect build failures, surely that would be better done locally - rather than using a PPA?
[13:31] <soren> Daviey: Why?
[13:32] <twb> soren: that abstract basically says "we gonna run tests".  Shouldn't a blueprint describe a change (e.g. "we're gonna test foo and bar from now on").
[13:32] <soren> Daviey: What would I gain by spending time setting up a build environment when Launchpad gives me one for free?
[13:33] <Daviey> soren: PPA is a limited resource, building packages just to see if they compile seems very wasteful.. not to mention slow.
[13:33] <soren> twb: Meh. There's already too much duplicated information (work items in the status whiteboard and in the actual spec on the wiki).
[13:33] <Daviey> Building a local build server isn't that difficult.
[13:33] <soren> Daviey: I know. I have two of them. That's not really the point :)
[13:34] <twb> soren: fair enough (re. "meh").
[13:34] <Daviey> soren: well can you elaborate on your point?
[13:34] <soren> Daviey: I could also build all my other packages locally and publish them somewhere.
[13:34] <soren> Daviey: Yet I don't.
[13:35] <soren> Daviey: Perhaps you can elaborate on the "limited resource" thing?
[13:35] <twb> soren: oh; I didn't realize the page you linked to wasn't the spec itself.
[13:36] <Daviey> soren: It's the same reason you build a package locally before putting it in a PPA..  it's slow, and i would have thought most people test build locally before making public.
[13:36] <soren> Daviey: I'm not sure why it's more or less wasteful to run it on Launchpad instead of a local machine. Wasteful in terms of what?
[13:37] <twb> You should farm off the compute effort to BOINC!
[13:37]  * twb ducks
[13:37] <Daviey> Unless i'm mistaken, the point of a PPA is making it easy to share things.. Using it as part of an automated test framework to look for FTBFS, seems to me, not what it was designed for.
[13:37] <soren> Daviey: I test build locally for several reasons:
[13:38] <soren> a) I'm already actively work on the package in question. Building the package locally is simply a natural step in working on the package.
[13:38] <soren> b) There's no point bothering the buildd's with needless builds (which a broken build would be).
[13:39] <soren> Neither applies in this case.
[13:39] <furom> My screen goes black after an unknown period of time. If I start typing something, the screen shows the text that was previously there. I would like to disable this, can anyone tell me how?
[13:39] <soren> a) This will happen daily, without humans being involved.
[13:39] <twb> furom: is this on the tty, or in X?
[13:39] <furom> twb: this is in the tty/shell.
[13:39] <soren> b) The exact /purpose/ of this upload is to detect failures that crept in, so it's everything /but/ pointless to have this build run.
[13:40] <twb> furom: first of all, check your cabling is secure
[13:40] <soren> It console blanking. It's always been that way.
[13:40] <Daviey> soren: I don't agree, but ho hum :)
[13:40] <furom> twb: I run this in a virtualbox as part of my development environment.
[13:40] <soren> Daviey: Which part do you disagree with, specifically?
[13:40] <twb> furom: oh, that'll probably be a virtualization issue, then
[13:41] <twb> furom: the virtual machine somehow isn't seeing that you're typing all the time.
[13:41] <soren> twb: Er.. No. It's just regular console blanking. Linux has done this for ages.
[13:41] <soren> (if not always)
[13:41] <twb> furom: or you simply aren't typing, so the tty's screen saver (i.e. blanker) enables.
[13:41] <twb> furom: the setterm manpage describes how to disable the tty screensaver.
[13:42] <furom> twb: odd.... I've never ran across this issue before.... I figured it was just a screen saver. I spend quite a bit of time not typing in the shell which I know that causes it to go black.
[13:42] <furom> twb: setterm?
[13:42] <twb> furom: setterm.
[13:42] <furom> twb: ohhh manual page for it... I see.
[13:42] <soren> setterm!
[13:42] <furom> twb: thanks.
[13:43] <twb> You may wish to put the appropriate command in /etc/profile.d/no-blanker or in ~/.profile or similar.
[13:44] <furom> I appreciate that a lot. I think the issue is solved.
[13:45] <soren> Daviey: AFAICT, whether Canonical has to throw resources (hardware and man hours for setting up and maintaining) at a completely separate build infrastructure for this or just add another machine to the PPA buildd pool seems like a reasonably easy choice.
[13:46] <twb> Presumably the choice is ultimately Canonical's anyway, since it's their kit?
[13:46] <soren> Indeed.
[13:47] <twb> Vaguely apropos: yay for dh_auto_test!  It taught me about tricking buildds into running upstream's tests
[13:47] <soren> I wasn't thinking much about where the ressources were thrown. I was really soliciting feedback on the architecture.
[13:48] <twb> (Unless they're smart enough to include "nocheck"...)
[13:48] <alvin> I see this on every machine with a 3ware RAID card (read cache disabled). Where can that cache be enabled?
[13:48] <alvin> [sda] Write cache: enabled, read cache: disabled, doesn't support DPO or FUA
[13:48] <soren> twb: Wow. I had never heard of that.
[13:49] <Daviey> soren: The fact that PPA can't easily do snapshots, makes it suboptimal IMO.
[13:49] <twb> soren: it means that now Darcs' functional tests get run on armel, which GHC (the Haskell compiler) doesn't even officially support!  Whee!
[13:49] <twb> alvin: IIRC I see that on every machine I've ever had.
[13:49] <soren> Daviey: Snapshots?
[13:50] <Daviey> soren: Archive snapshots, we did talk about this in that session :)
[13:50] <alvin> twb: without 3Ware controllers? Because other machines are showing the cache as enabled.
[13:50] <twb> alvin: I can't affore 3ware
[13:50] <soren> Daviey: Hm... Sorry, I don't remember this at all. :(
[13:51] <twb> alvin: I've had some IBM and HP kit cross my bench, but I think they had fakeraid.
[13:51] <alvin> twb: In that case, I think your cache shouldn't be disabled too. You have the same problem.
[13:51] <twb> Both times $boss was too stupid to buy the bloody RAID5 chip
[13:51] <alvin> fakeraid doesn't count.
[13:51] <Daviey> alvin: I have that on a 3ware box aswell - [   10.907602] sd 0:0:0:0: [sda] Write cache: disabled, read cache: disabled, doesn't support DPO or FUA
[13:51] <soren> [    1.212404] sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
[13:51] <soren> On my laptop :)
[13:52] <alvin> aha, I think soren's laptop has it right. Cache should be enabled.
[13:52] <twb> alvin: well, in almost all cases I am using md raid.  If there's fakeraid or hardware raid underneath, it's off or set up as one-disk RAID0 arrays.
[13:53] <alvin> Are you saying that fakeraid disables read cache?
[13:53] <twb> Buggered if I know
[13:54] <Daviey> alvin: I've just checked another 3ware box and got, [sda] Write cache: enabled, read cache: disabled, doesn't support DPO or FUA
[13:54] <twb> I just assumed that it was crap gear and didn't care -- I'm mainly dealing with glorified mail/fileservers.
[13:54] <alvin> Daviey: our experience matches mine. How's the performance?
[13:54] <twb> [    2.988006] sd 1:0:0:0: [sda] Write cache: disabled, read cache: enabled, doesn't support DPO or FUA
[13:54] <Daviey> great
[13:54] <twb> I get that on my Eee PC 701, which is an SDD without any md raid or lvm
[13:55] <Daviey> alvin: throughput has never been a problem, i always use 3ware when i want RAID5 and care about throughput.
[13:55] <alvin> ok, the question is: how can that cache be enabled. 3Ware tools, or an ubuntu setting.
[13:56] <twb> [   21.587035] sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
[13:56] <twb> ...that's a generic no-hw-raid, no-fakeraid SATA disk.
[13:56] <twb> I guess I was only remembering the DPO/FUA part
[13:56] <Daviey> pass.. i find it odd that i have two servers - both with different defaults.
[13:56] <alvin> Daviey: I did have a lot of performance issues with 3Ware. There are a lot of bug reports and forum posts about that floating around. (e.g. bug 113532)
[13:56] <uvirtbot`> Launchpad bug 113532 in linux-source-2.6.20 "3ware kernel driver 2.6.20 - 2.6.24 disk write performance extremely slow." [Undecided,Invalid] https://launchpad.net/bugs/113532
[13:57] <alvin> twb: so it is right. It's only disabled on 3Ware controllers
[13:57] <twb> I certainly would not bother with 3ware unless I needed enough throughput to justify all the extra babysitting and tuning
[13:57] <twb> alvin: well, you could see the WRITE cache was disabled on my SDD.
[13:58] <twb> I can't help thinking that if throughput is that important, I'll just hand the problem over to a big iron shop.
[13:58] <alvin> twb: Oh, right. I only looked at the read cache. Is your performance ok? (= is the cache important? Am I missing something here? In my expeerience: disabled cache = horrible performance)
[13:59] <twb> alvin: buggered if I know -- the most intensive things I deal with are tomcat, clamav, omscan (scalix), postgres, etc.  And none of those run on my Eee PC
[13:59] <twb> The write speed on my SDD isn't fantastic -- if I queue up a lot of writes it's noticably slower than a SATA disk.
[14:00] <twb> But I expected SDD to have a crap write profile
[14:00] <soren> Daviey: I'm sorry that I seem to have forgotten about this snapshotting thing. It really doesn't ring a bell. Can you elaborate a little bit to jog my memory?
[14:01] <alvin> twb: I have no experience with SDD. Too 'new' for me ;-) If I need performance, there are 15.000rpm SAS drives too.
[14:02] <twb> alvin: oh, I should add that I have also deliberately pissed about with e.g. my ext2 filesystem's commit interval on the SDD box
[14:03] <twb> alvin: that probably affects write speed
[14:04] <alvin> twb: I would like to know what happens if you enbale the write cache (if possible), and mount with 'noatime' offcourse.
[14:04] <twb> alvin: already using noatime, I dunno how to enable it
[14:04] <twb> FSVO it = write cache
[14:07] <acemo> how can i create gpt disks during the installation of ubuntu-server 9.10?
[14:09] <alvin> twb: Me neither. Probably with hdparm. i'll read the manual
[14:10] <alvin> acemo: You can't? What is going wrong? (I use lvm instead)
[14:12] <alvin> twb: Setting your write cache is: $ sudo hdparm -W 1 /dev/sdX
[14:12] <alvin> But the read cache... nowhere to be found
[14:12] <twb> Now to install hdparm...
[14:14] <alvin> Yes, it's not in the minimal installation (and that's not bad)
[14:26] <n8ature> Hi, I am interested if anyone knows advantages of using OpenNebula over Eucalyptus
[14:30] <soren> n8ature: I'd love to chat about that, but I'm on my wait out for an errand.
[14:30] <soren> I'll see if I can catch you later, otherwise I'm around tomorrow as well.
[14:30]  * soren runs
[14:31] <n8ature> no problem.. sounds good
[14:36] <soren> n8ature: Scratch that :)
[14:37] <soren> n8ature: So.. OpenNEbula vs. Eucalyptus.
[14:37] <soren> n8ature: They're both "cloudy" sorts of things, but they're really quite different, and serve different purposes.
[14:38] <soren> n8ature: What are you expecting to use it for?
[14:55] <ahasenack> is there an ec2 mirror for the security updates archive?
[14:56] <ahasenack> apparently using the same host but the *-security repository seems to work
[14:58] <twb> alvin: FYI: hdparm -W 1 /dev/sda ==> /dev/sda: setting drive write-caching to 1 (on) HDIO_DRIVE_CMD(setcache) failed: Input/output error write-caching = not supported
[14:59] <alvin> twb: aaaw. Enabling write cache really affects performance. Maybe it is no longer needed with SDD drives?
[15:00] <twb> Shrug
[15:00] <twb> It'll be a really crap SDD -- it's soldered onto the mobo
[15:01] <afeijo> can I install phpmyadmin 3 with apt-get, or only ver 2 ?
[15:01] <uvirtbot`> New bug: #485899 in lm-sensors (main) "pwmconfig generates a blank values /etc/fancontrol" [Low,Confirmed] https://launchpad.net/bugs/485899
[15:05] <lenios> afeijo, "aptitude show phpmyadmin" shows 3.2.2.1-1
[15:06] <twb> afeijo: only one version of phpmyadmin will be integrated properly with your current release, and that is what you should use.
[15:08] <afeijo> lenios: I use ubuntu 8.04, aptitude here shows 2.11.3-1ubuntu1.3
[15:09] <afeijo> twb: so I have to update my ubuntu? what command to do that?
[15:10] <lenios> afeijo : http://www.ubuntu.com/getubuntu/upgrading
[15:11] <lenios> sudo apt-get install update-manager-core && sudo do-release-upgrade
[15:12]  * twb grumbles
[15:13] <afeijo> Checking for a new ubuntu release
[15:13] <afeijo> No new release found
[15:13] <afeijo> what?
[15:13] <drmabuse_> Hello! Anyone experience with kerberos client on ubuntu?
[15:13] <twb> Yeah, it was a pain in the arse
[15:14] <twb> In the end I ran out of budget
[15:16] <drmabuse_> Hello! Anyone experience with kerberos client on ubuntu?
[15:16] <lenios> afeijo, you have to search for non LTS release, change prompt=normal in /etc/update-manager/release-upgrades
[15:17] <twb> drmabuse_: that was for you
[15:17] <lenios> ahah twb
[15:19] <afeijo> lenios: thanks, its downloading :)
[15:19] <Doorman352> drmabuse_: I can tell you it will corrupt a windows DC if you are not careful....
[15:19] <twb> Doorman352: that's a FEATURE
[15:20] <Doorman352> great......
[15:20] <twb> Undermine th' system from within!
[15:20]  * twb sells some Che shirts out of a van at 500% markup
[15:21] <Doorman352> well it put my plans to phase out microsfot on hold...so the "system" wins.....
[15:22] <twb> Obviously it didn't corrupt the DC *enough*'
[15:23] <marek_> hi, can you help me with mysql config? i want to grant access to all users from my lan to all databases...
[15:23] <marek_> i managed to do it with one user and one db, but i dont want to repeat all this stuff for every computer and db
[15:23] <Doorman352> since it can't replace a DC in a one for one scenario, it only makes replacing existing infrastructure that much more difficult, since it wont play nice......
[15:24] <soren> ahasenack: Stuff in -security is copied to -updates as well, so if you are pointing at the EC2 mirror for that, you should get the better bandwidth if the mirror is up-to-date. However, it's recommended to use security.ubuntu.com for -security so that you get security updates as quickly as possible. Just make sure you list security.ubuntu.com last (as order matters in sources.list).
[15:25] <kane_> marek_: you probably want to ask in the #mysql channel, but here's a doc pointer: http://dev.mysql.com/doc/refman/5.1/en/grant.html
[15:25]  * soren runs off for a while
[15:32] <afeijo> I have a session thru ssh, I want to control it from another ssh, its possible?
[15:32] <afeijo> to take it over?
[15:34] <n8ature> afeijo: it is possible if you are using screen on the first session
[15:34] <afeijo> I'm not :( that is the whole question, I should but I forgot lol
[15:35] <n8ature> right, i don't know of another way, but that doesn't mean there is not one..
[15:36] <afeijo> if my ssh connection is closed, the session running there will also be terminated?
[15:36] <zul> soren: is all of those non ec2 cloud providers in your spec running xen?
[15:43] <ahasenack> soren: thanks
[15:44] <drmabuse_> Oh, thank you.
[15:45] <drmabuse_> I'm trying to be very careful. Thank you for your ideas.
[15:45] <drmabuse_> Goodbye.
[15:48]  * matrix hi / selam
[16:34] <alvin> Is there an 'ubuntu-server papercuts program'?
[16:35] <zul> alvin: yes there will be one for lucid
[16:35] <alvin> cool
[17:10] <blackxored> where does drupal store its sites?
[17:12] <incorrect> how can i set the locale to be something else, dpkg-reconfigure locales didn't do what i hoped for
[17:13] <JanC> blackxored: I'm sure that is in the docs?
[17:13] <blackxored> JanC, I'm using a turnkey appliance I want a quick site backup, that's it
[17:13] <JanC> well, who provided the turnkey appliance?
[17:16] <JanC> read the docs under /usr/share/doc/drupal6/
[17:16] <JanC> especially README.Debian.gz
[17:40] <RoyK> hi all. I'm setting up a home server with wlan and psk - is there a howto for this?
[17:57] <Daviey> mathiaz: Would you have any reservations with mysql changing to upstart?
[17:57] <mathiaz> Daviey: hm - though about that.
[17:57] <Daviey> I don't know if this is something already on your radar or not
[17:57] <mathiaz> Daviey: I think it's a good idea.
[17:57] <mathiaz> Daviey: I think upstart should replace mysqld_safe
[17:58] <mathiaz> Daviey: which has the same purpose as an upstart job.
[17:58] <Daviey> exactly!
[17:58] <Daviey> Great!
[17:58] <mathiaz> Daviey: mysql init script is basically starting mysqld_safe, which takes care of  monitoring
[17:58] <mathiaz> Daviey: that being said, mysqld_safe is a big shell script
[17:58] <Daviey> Hopefully it should also get rid of the bug that keeps re-appearing of mysqld_safe respawning too fast.
[17:59] <mathiaz> Daviey: so I'd make sure to review everything that it does
[17:59] <mathiaz> Daviey: and make sure the upstart job does the same thing
[17:59] <Daviey> I'm going to work with someone else, and will ping you with a branch.
[17:59] <mathiaz> Daviey: overall I think it would be a great idea though.
[17:59] <mathiaz> Daviey: replace mysqld_safe with an upstart job
[18:00] <Daviey> wilco.
[18:15] <unit3> Anyone have a suggestion on a simple way to get the ocfs2 / o2cb init scripts to wait until networking is actually fully started before they start themselves?
[18:16] <unit3> My primary network interface is a bridge device on top of a bonding device on top of two physical nics, and apparently that takes too long to start for o2cb, it tries to start too soon, and then fails out on boot.
[18:42] <pwnguin> Mozilla's working on a 1.0 version of their full weave server; anyone interested in getting it packaged on ubuntu?
[18:46] <unit3> I think that'd be valuable, as long as it's not too much work.
[18:46] <unit3> I could definitely see a use for that at work, having an encrypted, hosted sync source for people's firefox installs.
[18:47] <pwnguin> the full server depends on apache and mysql and i think python
[18:47] <pwnguin> the minimal server ive seen published and am trying out now wants apache, php and sqlite
[18:48] <pwnguin> im not sure which would be more useful
[18:48] <pwnguin> but it cant be that hard to package up either of em
[18:49] <unit3> yeah. I think it depends on your goal. for personal use, the small install with sqlite is probably good. for corporate, you'd want mysql so you can do data replication and redundancy.
[18:50] <unit3> either way though, shouldn't be a huge deal.
[18:50] <pwnguin> i donno. people seem to think it's a huge trial to install the full version
[18:52] <unit3> well, your call I guess, since you wanna package it. :)
[18:53] <pwnguin> well, i'll try the minimal version for a short while and see if it's terrible
[18:54] <unit3> heheh
[18:54] <pwnguin> i dont really need enterprise grade sync
[18:55] <pwnguin> unit3: do you use weave currently?
[18:56] <unit3> pwnguin: no, been thinking about it, but haven't started yet.
[18:57] <unit3> I know people here at work would use it if we had a local install of the server, though.
[18:57] <pwnguin> i put it on my todo list and well, thanksgiving weekend is a big todo killer
[18:57] <unit3> heheh
[19:00] <jmarsden> unit3: Re: your startup scripts... a sleep 5 near the top of each of those two init scripts would be one (ugly, but probably effective) simple way to fix that.
[19:02] <unit3> jmarsden: yeah, but then it'll break on package upgrade. I was hoping there was something less hack-y... maybe with upstart? not have the rc script autostart, and have an upstart script to check for network and then start it after?
[19:02] <unit3> I'm not sure.
[19:03] <jmarsden> unit3: I think fixing it "properly" will take you out of the realm of "simple" :)
[19:03] <unit3> yeah. that's my feeling. damnit. :)
[19:04] <pwnguin> arg why
[19:04] <pwnguin> they wrote the create user script in php
[19:04] <pwnguin> as a CLI
[19:05] <jmarsden> pwnguin: That's a packaging problem because...?  Just Depends: php5-cli and it should be fine, I'd think?
[19:06] <pwnguin> jmarsden: not really a problem, just that im ignorant
[19:06] <jmarsden> OK :)
[19:08] <pwnguin> hmm, this is gonna be a large pita until a get a valid cert
[19:12] <billybigrig> if i can't sendmail out on my mailserver's smtp port from my house, there is a good chance my isp is blocking port 25 aren't they?
[19:13] <billybigrig> forget send mail out, i can't even connect to it on 25
[19:14] <jmarsden> billybigrig: Yes.  Just set it up to listen on 587 as well and send your mail to it that way.
[19:17] <billybigrig> that is the submission port yes?
[19:17] <jmarsden> Yes.
[19:18] <Bookman> I ssh into a remote machine, start evolution and add an account.  Then close it.  When the user opens evolution the account is no longer there!  What gives?
[19:19] <jmarsden> Bookman: Different $HOME in your login vs theirs?  if you log out, then ssh back in and run evolution is the account "still there" for you?
[19:19] <billybigrig> jmarsden: great i have it half working now :)
[19:20] <billybigrig> i can connect atleast, thank you
[19:20] <jmarsden> billybigrig: No problem.
[19:20] <billybigrig> just getting relay errors now i have to figure out, i'm positive it's not set to relay though....anywho thanks :P
[19:20] <Bookman> jmarsden: No, account disappears as well.
[19:20] <jmarsden> billybigrig: Turn on authentication in your email client so it tells the server who you are when sending.
[19:21] <billybigrig> im trying to use authentication for the smtp server
[19:22] <jmarsden> Bookman: Then... either each session gets a fresh home dir, or else someone/something is deleting that account as you log out?  If you run evo, create acct, exit evo, then in the same session run evo again is the account still there at least that long?
[19:22] <billybigrig> trying to use ssl
[19:23] <billybigrig> ill figure it out im sure
[19:24] <Bookman> jmarsden: yes
[19:24] <Bookman> jmarsden: the account is there
[19:25] <jmarsden> OK, so... is something set up so you get a different $HOME dir each time you ssh to the server?  or is there a script run a session logout that is (accidentally?) resetting your evolution configuration?
[19:26] <Bookman> jmarsden: the remote is a stock 9.10 installation.
[19:26] <Bookman> jmarsden: whatever settings are there from the installation are still there
[19:26] <jmarsden> Bookman: Aha... did you happen to specify encrypted home directories on the server?
[19:27] <Bookman> jmarsden: server is 9.04 and no
[19:27] <Bookman> Oh, sorry here.....
[19:27] <Bookman> Confusion over terminology.
[19:27] <Bookman> Remote was installed with no encryption
[19:32] <Bookman> jmarsden: you still there?
[19:32] <jmarsden> Bookman: I'm not sure what is happening, but it sounds like something is deleting or modifying ~/.evolution or wherever it sticks the config ingo
[19:32] <jmarsden> *info
[19:33] <Bookman> Ok, I will try to help the user do it himself locally and see if that sticks
[19:34] <nijaba> sommer: hi.  Happy ThanksGiving.  Let me know what you think of http://www.ubuntu.com/products/whatisubuntu/serveredition/documentation now
[19:34] <jmarsden> Bookman: Sounds like a good plan.
[19:36] <jmarsden> nijaba: Literature is not usually spelled "Litterature" -- typo on that web page?
[19:36] <nijaba> jmarsden: thanks.  fixed
[19:37] <jmarsden> You're welcome.
[19:39] <jmarsden> nijaba: Content seems fine to me.  You could make the IRC references be irc: links to the respective channels.  And whitespace around the title seems a bit odd, it might look visually better to have as much vertical whitespace above the large "Ubuntu Server Edition" as you have below it?
[19:39] <Bookman> jmarsden: works locally, not via ssh
[19:39] <Bookman> Weird
[19:40] <Bookman> Can anyone verify?  I will file a bug
[19:40] <nijaba> jmarsden: white space comes from the new template we are using.  at least it should be consistent with other server and cloud pages
[19:40] <jmarsden> Bookman: That is weird... I'd say go ahead and file the bug.
[19:40] <Bookman> Excellent, thanks for the help
[19:40] <nijaba> jmarsden: irc:// for and irc link?
[19:42] <jmarsden> nijaba: OK.  I'm a techie not a graphical designer type anyway :)  Yes.  irc://irc.freenode.net/%26ubuntu-server  or something close to that
[19:42] <jmarsden> nijaba: See http://www.mozilla.org/projects/rt-messaging/chatzilla/irc-urls.html
[19:44] <jmarsden> irc://irc.freenode.net/%23ubuntu-server   :)
[19:45] <nijaba> jmarsden: thanks, works great
[19:45] <jmarsden> No problem.
[19:50] <Bookman> I don't understand.  I go to launchpad to file a bug and when I hit Report Bug, it just takes me to a wiki
[19:50] <Bookman> Am I missing something?
[19:56] <Bookman> Ah well, I tried to help by filing a bug....
[20:01] <jmarsden> Bookman: I think there is a new system that wants you to specify a particular program/package to file the bug against... reading the wiki page should show you how to *really* file a bug.  Try https://bugs.launchpad.net/ubuntu/+source/evolution/+filebug
[20:02] <Bookman> Wow, they are making is difficult for us to help here.....or at least it seems that way.  Thanks for the link.
[20:03] <Bookman> Just have one bug page with pulldown boxes to narrow down the choices that they require.
[20:03] <Bookman> Easy Peasy
[20:03] <jmarsden> Bookman: The idea was to prevent so many bugs being filed with no packag specified, but like you. I'm not impressed with the way it turned out :)
[20:04] <Bookman> Yup, makes no sense to make it difficult to report bugs.  If you had not helped me out, and thanks again, my bug would have gone unposted.
[20:45] <soren> zul: I don't know for sure if all of them are. A lot.
[20:50] <Djannakhan> Hi,  I've strange situation here (ubuntu server 9.10). I've a perfectly running apache2 server on my machine, while I'm pretty sure I didn't installed it, aptitude, apt-get and dpkg report it as not installed ! but it looks perfectly installed (look here : http://pastebin.ca/1688619 ) any idea of how to remove it properly ?
[20:51] <uvirtbot`> New bug: #488833 in php5 (main) "php5 multiple security vulnerability :  CVE-2009-2626 CVE-2009-2687 CVE-2009-3291 CVE-2009-3292" [Undecided,Fix released] https://launchpad.net/bugs/488833
[21:37] <billybigrigger> anyone here familiar with stunnel?
[21:39] <billybigrigger> i'm trying to ssh into a remote server on port 2222 and binding to 2223, the server is using stunnel accepting on 2223 and redirecting to my secure news account on port 563
[21:39] <billybigrigger> ssh thefrozencanuck.ca -L 2222:thefrozencanuck.ca:2223
[21:40] <billybigrigger> and from stunnel.conf client=yes [nntp] accept = localhost:2223 connect = ssl-us.astraweb.com:563
[21:40] <billybigrigger> so when i fire up pan should i not be able to connect to localhost:2222
[21:41] <billybigrigger> when pan opens, it just sits there saying connecting....and times out, no errors, no errors in /var/log/stunnel4/stunnel.log on the remote server either
[21:55] <soren> nijaba: ^^
[21:56] <nijaba> soren: thanks a alot
[21:57] <soren> Sure thing.
[21:59] <nijaba> billybigrigger: I have a script that I used with pan in the past to do stunnel.  Can pastebin it for you if you want, but I would advise you to have a look at LottaNZB which is what I am using now to replace pan and supports ssl directly
[22:01] <billybigrigger> but the trick is, i need 2 seperate pc's to tunnel through a remote server i have to share the usenet account
[22:01] <billybigrigger> so we both come from the same ip
[22:01] <nijaba> sudo stunnel -c -d 127.0.0.1:563 -r news.powerusenet.com:443
[22:01] <nijaba> pan &
[22:02] <nijaba> billybigrigger: aha
[22:02] <billybigrigger> aha! :)
[22:04] <nijaba> billybigrigger: in that case launch the above on your tunnel server and tell pan to connect to it via an ssh redirect
[22:06] <nijaba> billybigrigger: ssh -f -N -L 127.0.0.1:2000:127.0.0.1:563 <yourtunnelhostip>
[22:06] <nijaba> billybigrigger: and have pan connect on 127.0.0.1:2000
[22:06] <nijaba> billybigrigger: makes sense?
[22:06] <billybigrigger> yeah
[22:07] <nijaba> of course this is all for legal downloads, right...
[22:07] <billybigrigger> of course
[22:09] <billybigrigger> bind: Address already in use
[22:09] <billybigrigger> channel_setup_fwd_listener: cannot listen to port: 2000
[22:09] <billybigrigger> Could not request local forwarding.
[22:09] <billybigrigger> that's on my machine at home
[22:11] <billybigrigger> now i'm getting a bunch of these
[22:11] <billybigrigger> 127.0.0.1:2000:127.0.0.1:
[22:11] <billybigrigger> err .... channel 1: open failed: connect failed: Connection refused
[22:11] <nijaba> billybigrigger: you may need to use another port if it is in use
[22:11] <billybigrigger> no it's not in use
[22:11] <billybigrigger> i had another instantce of ssh running
[22:11] <billybigrigger> killed it
[22:14] <billybigrigger> hmm
[22:14] <billybigrigger> this aint working too weel
[22:14] <billybigrigger> well
[22:21] <billybigrigger> nijaba, ok, well i got it working some how :)
[22:21] <billybigrigger> how do i verify that the connections between me and my server, and the server to my news server are secured?
[22:21] <nijaba> billybigrigger: great!
[22:22] <billybigrigger> channel 1: open failed: connect failed: Connection refused
[22:22] <nijaba> billybigrigger: tcpdump...  if it is gibberish, it's should be good
[22:22] <billybigrigger> im still getting a bunch of those, but pan is downloading on localhost:2000
[22:22] <nijaba> billybigrigger: you may have reach a connection limit on the other hand.  This setup is going to be fun ti debug :P
[22:23] <billybigrigger> i've got pan setup for 10 connections
[22:23] <billybigrigger> if thats what you mean
[22:23] <billybigrigger> or do you mean the connection limit on the tunnels?
[22:27] <billybigrigger> 15:26:55.497508 IP li127-132.members.linode.com.ssh > cabo.local.35378: Flags [.], seq 23756641:23758089, ack 23408, win 2003, options [nop,nop,TS val 72473767 ecr 22613269], length 1448
[22:27] <billybigrigger> doesn't look like gibberish to me nijaba
[22:28] <nijaba> billybigrigger: look at the payload, not the enveloppe
[22:28] <billybigrigger> not a networking guru
[22:28] <soren> mdz: I've set https://blueprints.edge.launchpad.net/ubuntu/+spec/server-lucid-vmbuilder-multiple-outputs to "Review" in spite of not having written a formal spec. It's basically just a bunch of work items, so it seems like unnecessary overhead to spend time on a formal spec. If you disagree, I can write one up, but I'm leaving it like this for now.
[22:28] <billybigrigger> how do i look at the payload nijaba
[22:30] <billybigrigger> nijaba, what i'm attempting to do is packet sniffing i assume?
[22:31] <nijaba> billybigrigger: yep
[22:32]  * nijaba calls it a night
[22:32] <billybigrigger> later
[22:32] <billybigrigger> nijaba, thanks!!!
[22:43] <Znuff> Hi
[22:46] <Znuff> So, I was wondering. If I have a package, let's say bind9, I messed up the config files, I ended up removing the package bind9 (wich owns /etc/bind/named.conf), removed /etc/bind completely, installed the package again... but it complains about a missing named.conf, how's that?
[23:00] <abta> Hi all
[23:01] <abta> i installed UEC, everything works fine. but i have a problem with connection to running instance
[23:02] <abta> via ssh, i am always promted for a password when executing ssh command "ssh -i mykey ubuntu@<ip>"
[23:02] <abta> any hints?
[23:07] <Znuff> remove the password from your key
[23:08] <Znuff> or create a new key without a password
[23:11] <KSid> hi guys,
[23:13] <KSid> I don't have apache or mod_php installed however aptitude is telling me an update is available for both
[23:14] <KSid> I do have php5 installed (which it also says needs updating) and apache-utils (which doesn't) but I haven't installed the actual apache server
[23:21] <abta> ok thanks, i will give it a try