=== bc_ is now known as bc === robbiew is now known as robbiew_ === LyonJT_ is now known as LyonJT [00:36] New bug: #494804 in vm-builder (universe) "lacks ext4 support" [Undecided,New] https://launchpad.net/bugs/494804 [01:11] New bug: #494808 in eucalyptus (main) "Eucalytus-cc motd announces the wrong url for the CLC" [Low,Triaged] https://launchpad.net/bugs/494808 [01:11] New bug: #494811 in image-store-proxy (main) "image-store-proxy restart does not kill the existing process" [Undecided,New] https://launchpad.net/bugs/494811 [01:12] does anyone know what "owner" the cerficate for the dovecot-postfix package is generated with? [01:14] ahh, $HOSTNAME [01:16] New bug: #494812 in eucalyptus (main) "NC avahi announcement should be unified" [Undecided,New] https://launchpad.net/bugs/494812 [01:25] does anyone know how to get dovecot-postfix to generate a certification with the FQDN and not just the host part? [01:26] s/certification/certificate [01:41] jbernard: i suggest you generate your certs yourself :) === erichammond1 is now known as erichammond [02:36] Quick problem: sshfs is giving me an error reading "option allow_other only allowed if 'user_allow_other' is set in /etc/fuse.conf", even after I modified the specified file as requested and then logged out and logged back in. [02:36] Is there something else I need to start, some module I need to remove and readd to the kernel? [02:43] gpasswd -a fuse was my problem. === astechgeek is now known as techgeek [03:01] is there a good alternative to bacula for server backups ? [03:06] I use VCSs and rsnapshot. [03:07] Amanda is mentioned a lot, usually in the context of "how the hell do I make amanda work?" [03:31] Is there any virtualbox guest startup scripts? [03:32] Try virt-manager [03:32] I want a virtualbox vm to start like a init.d service but it doesn't seem virtualbox comes with any [03:32] Maybe it has virtualbox support by now [03:32] ok I'll take a look thanks [03:34] nope, doesn't look like it === david is now known as Guest58481 [03:39] I can't remember who it was that I was talking to earlier about my random server halts, but if anybody was curious, it turned out that one of the RAM sticks was faulty [03:46] jumbers: were you the guy with the possibly dodgy switch? [03:47] twb: Nah, just a faulty RAM stick that was causing halts after reboots [03:48] Probably wasn't me, then [04:15] question: trying to compile an old version of php5-ffmpeg. ./configure tells me use --enable-shared. where would i put that? [04:22] castis, './configure --enable-shared' === fenris__ is now known as ejat [04:35] castis: is there a good reason you're not using the standard packages? [04:38] jumbers: nice. [04:38] Sam-I-Am: Aha, thanks for the halps [04:38] sure [04:38] i looked around a whole lot. in trying to compile php5-ffmpeg v0.5.1 i get " ffmpeg headers not found. Make sure ffmpeg is compiled as shared libraries using the --enable-shared option" so my original question was a bit misleading. [04:38] castis: so the way that works is you get to compile all the dependencies first [04:38] and to answer your question. php5-ffmpeg 0.6 removed the resize() function. [04:39] THEN you can build php-ffmpeg [04:39] or you can install the development libs from packages if they're the versions you need [04:39] castis: is there another way around it? like... changing your code. [04:39] you could also try installing an older version... sometimes works. [04:40] tried apt-getting it, no previous versions exist. if i cant get it working by tonight ill just change the other code around. figured it would be fun to dive in and try this though. [04:40] theres probably a reason resize went away [04:41] maybe theres a mailing list for it you can ask [04:48] hmm, i appreciate your help but i do believe im just going to rewrite the php to work around what the extension author is doing.. [05:41] kpettit: http://libvirt.org/drvvbox.html # Sure looks like libvirt has virtualbox support to me :) [05:42] jmarsden: nice [05:42] kpettit: Also, have you looked at the vboxmanage command for writing scripts that stop and start virtualbox VMs ? [05:42] Will LXC be a well-supported virtualization method in 10.04? [05:42] I [05:43] Specifically, will it be better supported than bloody OpenVZ, which I am sick of? [05:43] I'm not sure, I keep hearing more and more about it, but I'm not sure who supports lxc yet. [05:43] Well, there's at least http://libvirt.org/drvlxc.html :-) [05:43] One cool thing about LXC is you can pick which resources to virtualize. [05:44] e.g. in a one-liner I ran a dhclient3 process with a virtual networking stack, but the rest not virtualized, and I successfully got a DHCPACK from the server. [05:44] That was really cool (if useless) [05:45] Hmmm, I see what you mean :) [05:46] I'd have played further but I only have a 512MB device runnign >=2.6.30 [05:46] 512MB disk, I mean [05:49] any security gurus around? [05:49] !ask [05:49] Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) [05:49] :) === sjr__ is now known as SJrX [05:50] jmarsden: !anyone would be more pertinent [05:50] Yes, I think that's what I intended :) === erichammond1 is now known as erichammond [05:52] http://pastebin.ca/1709276 [05:52] I'd be more inclined to deploy a normal OpenBSD, Debian or OpenWRT box as the bastion [05:54] ok well i was wondering through awstats output on my server, and found a wierd connection from ::1 which i found out later was one of apache's internal connections, which led me to discover the output of that pastebin, definitely a bunch of attempts to slip into my system, anyway to block these attempts, besides stopping apache and port 80 since they're all https requests... [05:54] iptables could block the ips, but i wouldn't know an ip address until after the attack... [05:55] billybigrigger: As long as you are not running any of the old buggy software those scans look pretty boring... you can look at things like mod_security if you want to harden Apache itself, not sure where getting that into Ubuntu got to, licencing woes I think... [05:55] ok, so as far as you can tell they're harmless... [05:55] fair enough [05:56] billybigrigger: with a bit of luck Morfeus is as loud once he attacks .-) [05:57] billybigrigger: Well, Morfeus is a bot-based scanner, constantly being updated, but I can see that those are looking for OLD exploits, such as the Roundcube one from about six months ago... [05:57] it's an up to date jaunty server, with no self compiled packages, all security updates and services are installed from ubuntu repos [05:57] i was going to say, maybe a script kiddie? [05:58] ::1 is an IPv6 localhost address [05:58] billybigrigger: Any "web apps" or self made PHP scripts would be more of a worry to me than being scanned by a bot. if you allow others to upload PHP stuff, then if they upload and run and older version of some app you can get caught out... [05:59] Oops, that "bastion" comment was for #netfilter. [05:59] only "web apps" i run are roundcube 0.31 and whatever is the latest phpmyadmin package [06:00] any php scripts were made by me and highly doubt any security risks there :) pretty basic php stuff...still learning :P [06:00] Heh. "The only app I run is one that gives superuser privileges to the database to anyone who can brute-force a password." [06:00] jmarsden, well thanks for the re-assurance [06:00] :) [06:00] my passwords are pretty secure [06:00] billybigrigger: well, Roundcube *used* to have holes, but seems to be Ok at the moment, so keep a watchful eye on that. BTW if you want to check, use the web scanners from http://sectools.org/web-scanners.html against yourself and see if you find any issues :) [06:00] billybigrigger: password-based authentication is INHERENTLY insecure. Always. [06:00] any db passwords are md5 generated and only written down on a peice of paper in front of me [06:01] have fun brute forcing those [06:01] billybigrigger: And the pws are also in the config files of the apps that use them, so if those files become read accessible... [06:01] :) [06:02] My point is that if you use password-based auth, brute-force guessing WILL eventually work. [06:02] just double checked, but only readable by root and www-data, just like i suspected :P [06:02] twb, point taken [06:02] Whereas assymetric authentication can't be brute-forced [06:03] oooh...a new term :P [06:03] * billybigrigger googles assymetric authentication [06:03] billybigrigger: http://en.wikipedia.org/wiki/Asymmetric_encryption [06:04] billybigrigger: also http://en.wikipedia.org/wiki/Multifactor_authentication [06:04] * billybigrigger bookmarks [06:05] too much reading for this guy tonight :P take it easy guys im going to bed thanks again for the useful information [06:06] Which is why ssh -t mysql with key-based auth would be better than a phpmysqladmin protected by a mere password. === erichammond1 is now known as erichammond === erichammond1 is now known as erichammond === erichammond1 is now known as erichammond [07:03] hi folks! having trouble mounting /dev/md1 as my home partition. md1 is a raid 1 device across two hard drives. running karmic. i changed nothing except for the locatoin of the PC (moved it without dropping it). now when i try to mount /dev/md1 i see: "EXT3-fs: unable to read spuerblock; mount: wrong fs type, bad option, bad superblock on /dev/mda1" .... what should i do now? [07:16] New bug: #494380 in bacula (main) "mtx-changer.conf is missing in bacula-sd" [Low,Incomplete] https://launchpad.net/bugs/494380 [07:18] anyone know how to check which processes are using the most disk io in linux? [07:21] New bug: #494888 in apache2 (main) "Please merge apache2((2.2.14-3)(main) from debian testing(main)" [Undecided,Confirmed] https://launchpad.net/bugs/494888 [07:41] cell0: iotop [07:47] i've used "sar" to identify high %util on a given disk. How do i translate this into a offending process? [07:48] cell0: If you run iotop you don't see the processes near the top of the list being the one causing the high % util ??? [07:49] the processes switch very rapidly, between postgres, apache and freeradius [07:50] it's very difficult to isolate the problem like this, is that another way? someone suggested iostat to me, but not sure how to use it [07:52] run iotop with a larger -d delay interval? [07:54] You have postgres, apache and freeradius all on the same disk? You could also see if iotop -a mode will show you the real culprit. [07:55] Obviously one way is to stop each of the 3 services in turn and see when the io goes away... but that has consequences if this is a production server :) [07:55] yip, its a production server. iotop doesn't have -a option [07:59] does iotop -d 10 -o work better for "by eye" analysis of who is causing all the i/o ? BTW I need to go to bed... interesting problem, but I need to get some sleep :) [08:00] My host apparently provides 2 IPs for my server. How would I take advantage of this second IP address? [08:01] jumbers: Use it for a second ssl web server, for example. If both IPs are public, that is -- some places have an internal interface for doing backups, plus the external Internet-facing interface. [08:02] Er, what I meant is how would I get the IP to resolve to the machine [08:02] There's only 1 NIC on the box [08:02] Oh, one NIC can have many IPs assigned to it at once. Virtual interfaces... [08:03] I haven't had any experience with virtual interfaces :p [08:04] I forget the syntax that is currently used... used to be eth0:0 and eth0:1 and so forth, but I think that was years ago and there is now a "better" way... good it and man ifconfig and you should get somewhere... usually I'd help more but I was already /away'ed and abou to go to sleep when you asked your question... [08:07] jumbers: http://74.125.155.132/search?q=cache:UtPC36ohgBEJ:ubuntuforums.org/showthread.php%3Ft%3D555319+ubuntu+virtual+interface&cd=1&hl=en&ct=clnk&gl=us has an old example you can probably use as a basis for what you want... and goodnight :) [08:08] Night, thanks [08:49] nick alex88 === alex88[sleep] is now known as alex88 [08:59] hey how do you install a font on a ubuntu server so my css can use it? [09:01] thenetduck: copy it into ~/.fonts/ [09:01] twb: that's it? it almost seems to easy [09:01] That's on the client side [09:01] ok will do :) [09:01] oh [09:01] AFAIK you can't install fonts on a web server and export them to end users [09:01] oooh... so I have to use an image I guess then [09:02] Other than saying "you must install this font to view my page" [09:02] for my logo [09:02] Logos shouldn't contain text [09:02] ya I wouldn't wanna do that ... ok that's good to know [09:02] Becaus blind users can't see the logos, and thus can't see your text [09:03] Unless you're going to write proper ALT tags, which would be great. [09:03] oh .. thats intersting I never hought of that [09:03] thought* [09:04] tidy --accessibility-check 3 is your friend! [09:21] how do i find which files are read/written to the most on my system? [10:26] New bug: #494958 in mysql-dfsg-5.0 (universe) "package mysql-server-5.0 5.1.30really5.0.75-0ubuntu10 failed to install/upgrade: el subproceso post-installation script devolvi? el c?digo de salida de error 1" [Undecided,New] https://launchpad.net/bugs/494958 [10:26] cell0: why do you want to do that? [10:40] hi all, i'm stuck trying to set up a git server [10:41] i'm reading this: [10:41] http://batterypowered.wordpress.com/2008/07/04/deploying-a-git-repository-server-in-ubuntu/ [10:41] at some point it says "Next copy your public key, i.e the rsa_id.pub file, to the server", and i have no idea what he's talking about. [10:45] Have you even run ssh-keygen? [10:45] actually, i just found that part, and no i hadn't [10:45] but now i have, and the error i get on the next step isUsername contains not allowed characters: 'SockPants@mbp_wifi.local' [10:46] I don't know about git, I only knew what he meant with 'public key' [10:46] ok. [10:47] i've got that now, it hink [10:47] except i think it doesn't like the @ [10:57] New bug: #494968 in ntp (main) "package ntp 1:4.2.4p6+dfsg-1ubuntu5.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/494968 === ogra_ is now known as ogra [11:57] SockPants: I found http://blog.drewolson.org/2008/05/remote-git-repos-on-ubuntu-right-way.html to be an easier guide to installing git (more basic, without gitosis) [12:03] twb: trying to find the process which is doing the most disk io [12:05] iotop [12:05] But it'll either be your RDBMS or your kernel's software RAID5 handler, IME [12:19] hi I'm using zeroshell distro with 2 pc's but when I reach to enter in configuration webpage by https://192.168.0.75 can't find this ip [12:37] New bug: #488835 in irqbalance (universe) "MIR for irqbalance" [Undecided,New] https://launchpad.net/bugs/488835 [12:41] twb: ideally i would like to know which file/s have been accessed the most within say the last hour === dendro-afk is now known as dendrobates [13:01] New bug: #494513 in samba (main) "package samba 2:3.4.0-3ubuntu5.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/494513 [13:04] hello [13:04] is it possible that samba pdc LDAP is not dereferencing aliases? [13:14] jiboumans: hmm, so the diskthing in the frankenbox doesn't get detected with the lucid amd64 kernel. Works with i386. So I cannot test UEC/amd64 for alpha1 [13:14] * ttx looks for a relevant bug, but I think it might be frankenbox-specific [13:14] ttx: i thought the frankenbox was an intel one.. [13:15] would we expect it to work with an amd64 kernel? [13:15] jiboumans: yes. The "amd64" is x86_64 and the frankenbox has some variation of a Core2Duo [13:15] worked in karmic [13:16] New bug: #495027 in bacula (main) "package bacula-sd 2.4.4-1ubuntu9 failed to install/upgrade: " [Undecided,New] https://launchpad.net/bugs/495027 [13:16] ttx: understood. all the more reason to get some different hardware in i suppose. what are we losing right now in terms of test coverage? [13:17] We are losing the 64-bit UEC image, the UEC/node and UEC/instace run tests [13:18] I'm reasonably confident that they should be alright though, which could be sufficient for alpha1 [13:19] ttx: i assume switching with the dell box isn't possible? [13:19] no, frankenbox doesn't do VT :) [13:19] of course [13:19] ok, not much we can do on the really short term; let's get you some more decent hardware [13:20] mdz seems to be in favour of more laptops. if we can get the ethernet-over-usb confirmed working, i'm happy with that [13:20] ok. [13:21] Is setting 'ForwardX11 Yes' in ~/.ssh/config the same as 'ssh -X'? I'm getting the error: 'Bad yes/no argument' [13:21] smoser: could you set up a UEC/amd64 for tests ? [13:21] zul: could you run the EC2 image tests ? [13:22] alvin: your /etc/ssh/ssh_config should give youa good overview of the syntax [13:22] alvin: could be a simple matter of case sensitivity [13:24] jiboumans: thx, it is indeed case sensitivity! [13:26] ttx: sure besides amd64 is overrated ;) [13:27] hi, how can I identify the Ethernet Controller brand and size and capacity (w/o lshw) ? [13:27] I tried dmesg, lspci, /var/log/messages w/o any success [13:29] lau, maybe "lscpi -vv" [13:31] oh yes ! i remember it now [13:32] :( same output 0000:00:19.0 Ethernet controller: Intel Corporation Ethernet Controller (rev 02) [13:32] i am trying with dmidecode but do not know how to translate manufacturer codes [13:32] jiboumans, ttx, Daviey has one and might be able to do a quick test [13:33] but we've confirmed the module is available and that's really all that's needed [13:33] right. [13:33] mdz: So two options here: [13:33] Go for a 5-laptop setup (i.e. order two more, + two USB Ethernet adapters) [13:33] (see #-devel) [13:33] will do.. gonna be odd PXE booting to get to d-i then swapping the cat5 cable to the usb module. [13:33] Go for 4 laptops and use the Dell workstation (noisy, but working) as part of the setup (i.e. order one more laptop, one USB Ethernet adapter, and one PCI NIC) [13:33] mdz: The test cases needing 5 machines are sufficiently rare that I can bear the occasional blower noise. [13:34] Daviey, a test with kvm -usb -usbdevice host:... would be sufficient if that's more convenient [13:34] oo [13:35] ttx, you might even be able to do a test without the hardware at all using kvm -usb -usbdevice net: but I didn't know that existed until just now [13:36] ttx, having an extra machine in the mix would be a good idea (e.g. if one fails we can ship it out as a replacement) [13:36] mdz: so i should aim for option 1 and keep the dell as a wildcard ? [13:37] ttx, that's my suggestion [13:37] jiboumans, thoughts? [13:37] * jiboumans reads back [13:37] mdz: I'm perfectly happy with that if you approve it :) [13:38] i agree with ttx there [13:38] if ethernet-usb works, let's go with that [13:42] * ttx tests -usb -usbdevice net: [13:47] ttx, you want me to run the image tests in uec ? or in ec2? [13:47] or both [13:47] install UEC cluster, install UEC node, test UEC instance run with UEC image [13:48] smoser: ^ [13:49] freaking eh, ttx! :) [13:49] i can do that, yeah. the 64 bit ? [13:49] smoser: yes [13:49] ah, and you asked zul to run the ec2, then i'm ok with that. [13:49] i thought i was on both those request above. [13:50] smoser: I think that's the optimal use of our currently limited resources ;) [13:50] did you see my comment in bug regarding "don't boot" ? [13:50] smoser: I tested the UEC/i386 image alright [13:50] i have no idea why it was failing on 'small' for me. [13:51] smoser: I didn't test that. The test case says "c1.medium" :) [13:51] there might be some size check that fails only on 64bit [13:52] i was on 64 bit host testing 32 bit instance, but the 32 bit karmic release instance booted. [13:59] mdz: installer doesn't seem to pick up the USB NIC when run from "kvm -usb -usbdevice net:" [14:01] ttx, can we have this conversation on #ubuntu-installer or #ubuntu-devel with cjwatson? [14:01] sure === dendrobates is now known as dendro-afk [14:15] is there some ubuntu docu about bind9 and zones in ldap? cant find a good one :( [14:16] for me it looks like there are 2 different possibilities [14:36] ttx, to be clear, you want me to run http://testcases.qa.ubuntu.com/Install/ServerECluster (intsall from iso for server and node, then test uec images, right) [14:37] where is that URL linked from ? ie where do i record results of UEC intsall test === robbiew_ is now known as robbiew [14:37] smoser: yes. That should also take care of the amd64 UEC cloud image test [14:37] smoser: I'll paste the testcases here [14:38] http://iso.qa.ubuntu.com/qatracker/result/3436/334 [14:38] http://iso.qa.ubuntu.com/qatracker/result/3436/336 [14:38] http://iso.qa.ubuntu.com/qatracker/result/3436/361 [14:38] http://iso.qa.ubuntu.com/qatracker/result/3470/342 [14:39] how do i find those tests from navigation ? [14:40] in case i forget the numbers 3436/334 [14:41] smoser: drill down from http://iso.qa.ubuntu.com/qatracker/build/ubuntuserver/all [14:42] smoser, from http://iso.qa.ubuntu.com/ click on Ubuntu Server [14:42] ttx, ok. i see it now as a test for the server iso. i had previously thought there wsa a separate 'uec install' at that top level. [14:50] smoser, hi [14:52] rickspencer3, hi. [14:53] smoser, https://blueprints.edge.launchpad.net/ubuntu/+spec/desktop-lucid-desktop-cloud [14:53] we should probably get started on this [14:53] other than saying "I think we should use the nx server from Google" is there anything else you need from me? [14:54] i think i'm a couple hours away from having desktop builds available... i did a bunch of work on it last few days but didn't want to push it to the build system before we tested alpha1 [14:54] so i think i'm a couple hours from having the first 3 TODOs done. [14:55] couple hours of work time, not clock. got to test uec now. [15:02] can I configure my pppoe connections in interfaces? [15:03] man 5 interfaces is quite spare [15:05] ttx, did the node controller find the cloud controller automatically for you? [15:07] smoser: no. [15:07] bug? [15:07] smoser: it's because the new UEC installer is half-landed [15:07] smoser: known issue [15:07] so is there a bug for that? should i open one ? [15:08] smoser: there is no bug for that, you can, but don't need to, file a bug about it === dendro-afk is now known as dendrobates [15:09] smoser: enter the cloud IP adress and insist on installing a node :) [15:09] yeah. thats what i did. [15:11] what are my options for iface eth0 inet manual [15:11] so when I use manual? [15:26] I did ifdown [mydevice] [15:26] now I called ifup [mydevice] [15:26] eth3.100: ERROR while getting interface flags: No such device [15:26] Failed to bring up eth3.200. [15:27] why do I get this error? [15:27] of course I can do /etc/init.d/networking restart [15:27] but then everything is restarted [15:28] Is there a way to see why my server says it needs rebooted? [15:32] smoser, thanks [15:56] ttx, maybe this is user error, but [15:56] euca-run-instances -k mykey $EMI -t c1.medium [15:56] FinishedVerify: Not enough resources available: addresses (try --addressing private) [15:56] $ grep "^VNET_PUBLICIPS=" /etc/eucalyptus/eucalyptus.conf [15:56] VNET_PUBLICIPS="192.168.1.224-192.168.1.131" [15:56] smoser: hm [15:57] 224>131 [15:57] that probably translates to 0 [15:58] smoser: fix VNET_PUBLICIPS and sudo stop eucalyptus CLEAN=1 / start eucalyptus CLEAN=1 [15:58] i read that several times before i pasted [15:58] :) [15:58] each time replacing that '1' with a '2' [15:58] or you can test with private addressing) === Authority_ is now known as Authority [16:05] on jaunty i've made an lvm snapshot (of a kvm guest disk/volume) and then tried to mount the snapshot but was unsuccessful. mount complains about filesystem [16:16] smoser: non-double-base64-encoding euca2ools is now in karmic-proposed [16:16] whoowhoo [16:21] are iptables settings stored/restored on shutdown/boot? [16:21] aison: that's what iptables-save & iptables-restore is for [16:21] not by default I believe [16:22] aison: you'll have to make the changes permanent yourself [16:22] jiboumans, yes I know those. But I also know several linux distributions and some have got init scripts that store/restore iptables rules [16:22] ok, what's best way to go? create my own init script? [16:23] pre-up / post-down in interfaces maybe a problem ,because I've got over 15 LAN devices ^^ [16:24] aison: i'm not sure off the top of my head. a quick google comes up with a very recent: https://help.ubuntu.com/community/IptablesHowTo [16:24] yes, I already reading this nowto ;) [16:25] they do it with interfaces pre-up post-down [16:25] that is the intuitive way i'd say [16:27] ok, there's also some small script for if-post-down [16:27] nice [16:31] ok, now the hardcore test, rebooting my router ^^ there are so many rules, devices, routes, etc... [16:31] I hope everything is setup nice [16:36] I have a 100mb /boot partition which has now filled up (100% full). What can i do ? [16:36] hi all [16:36] benedikt: Remove some stuff from it :) Is there an older kernel package you can now safely remove, for example? [16:36] people, I have a old app that use -lboost_date_time. And today I try to compile and I have this message: g++ -o simple_server ServerSocket.o Socket.o simple_server_main.o -lboost_date_time /usr/bin/ld: cannot find -lboost_date_time. I have installed libboost-date-time. Any idea? [16:37] jmarsden: wasnt sure if i woulc ro right ahead and just remove the older kernels, wouldnt grub turn grumpy about that [16:37] I'm using 9.10 [16:37] i have kernels from 2.6.28 it looks like [16:37] benedikt: Do you need them all? [16:37] nope [16:38] it just installed 2.6.31-16 today but i am running 2.6.31-14 (server is at a remote location and i really dont want to reboot in case it doesnt come up again) [16:39] anyone? [16:39] jmarsden: rm /boot/*2.6.2* [16:39] find /usr/lib -name libboost_date_time-mt.so [16:39] /usr/lib/libboost_date_time-mt.so [16:39] and then run grub-install [16:40] is that safe? [16:40] benedikt: No.... sudo apt-get remove all the unwanted old kernels (leave one older one just in case) [16:40] ill leave one below the running one [16:41] dont know why i didnt think about the package manager.. [16:42] benedikt: Do it as packages not rm, so you get everything related to each kernel and keep things clean... OK :) [16:42] smoser: you should mark http://iso.qa.ubuntu.com/qatracker/result/3436/361 as passed as well, I guess, since you ran a UEC image [16:42] removing linux-image-2.6.28-15-server saved 14 mb.. yay [16:43] why did i have a separate /boot , again? [16:45] done [17:11] Im haveing quite hard time setting up something as rudementary as a samba server [17:12] the file permissions are set at 700, testparm tells me the cfg is fine...however user1 can look at user2s folder contents and vice versa [17:16] dru: how are you accessing these shares? [17:16] hey pmatulis [17:16] umm they are accessed via afp i think its called ....via macs [17:17] using smb://address [17:17] they are accessed locally as well as via vpn [17:17] afp != smb [17:17] kool [17:18] afp:// is afp [17:18] but there really isn't much reason to use that anymore [17:23] in the "global" section of the cfg i have a list of all users under "valid users, read list, write list... [17:28] dru: that shouldn't be necessary [17:29] yeah ....i removed it but it still dosnt help to secure the single sares from "other" users [17:29] just allow "public access" and the users will be allowed access after authenticating [17:30] dru: samba specific stuff is best answered at #samba, btw, but most of the stuff is in man smb.conf [17:30] awsomeo ...thanks RoyK [17:58] I have a server with 7.10 but somes sources.list not works.. are there another server (old server) with ubuntu 7.10 ? [18:01] How I use http://old-releases.ubuntu.com/releases/ in sources.list? [18:01] #ubuntu-server [18:01] 09:58 < J_P> I have a server with 7.10 but somes sources.list not works.. are [18:01] there another server (old server) with ubuntu 7.10 ? [18:01] sorry [18:03] J_P: You don't. [18:04] J_P: You use: http://old-releases.ubuntu.com/ubuntu/ [18:05] J_P: And seriously consider upgrading your server if you want it to be secure. [18:07] jpds: what is woring with this? deb http://old-releases.ubuntu.com/ubuntu/dists/ gutsy main restricted [18:07] J_P: The "dists" bit. [18:07] Not suppose to be there. [18:08] jpds: ahh ok just deb http://old-releases.ubuntu.com/ubuntu/ gutsy main restricted [18:08] works ;-) [18:09] :) === erichammond1 is now known as erichammond === erichammond1 is now known as erichammond === erichammond1 is now known as erichammond === astechgeek is now known as techgeek === robbiew is now known as robbiew-afk === dendrobates is now known as dendro-afk [20:58] I would like to use quota with ldap lookup [20:58] I don't know here to start ;) [20:58] ldap is working === dendro-afk is now known as dendrobates [21:10] crap quota :( [21:10] it's not even working with lvm here [21:10] quotaon: quotactl() on /dev/mapper/vg0-lv0: Function not implemented === robbiew-afk is now known as robbiew === david is now known as Guest83268 [21:54] sudo apt-get install girlfriend-generator === erichammond1 is now known as erichammond [22:08] good night all. === erichammond1 is now known as erichammond [22:33] hi is it possible to have to wan connection on my ubuntu router gaetway, form different ISP. [22:33] mostl likely 4 port of ethernet- 2 for wan and 2 for local [22:34] ruben23: uh, yes. [22:35] benedikt: any guides how to do it, [22:36] just assign the appropriate ip addresses to each interface (eth0-3) and connect them to the right ports [22:38] benedikt: how about the routing and the gateway..? [22:38] the iptable rules for it [22:38] just use the approrirate eth names in the rules [22:42] benedikt: should NAT still be used..? [22:42] if you want to NAT a private ip network then yes [22:42] but if you are routing an ip network (and not NAT-ing) then no [22:42] ruben23, I think what you're really wanting to know is how to load balance two internet connections [22:43] that's a bit more complicated than just connecting them [22:45] qman: i have a pc client need to directly registered on a public hosted server. what you think i need, i think NAt is problem, but another problem is, it is not only one client pc but its multiple client pc [22:46] ruben23, sorry, I don't follow -- if you just need port forwarding, that's easily done through iptables [22:49] qman`: i have voice traffic form my client pc generated form soft phones, whihc the server or system runs it is hosted on a remote location, multiple client pc are using it..if i used my gateway server the linux router i have, would it be ok, [22:50] my client pc is in private IP, so basically they need NAt, can it be possible without NAT on my linux router [23:27] Night guys === robbiew is now known as robbiew_