[00:02] <mealstrom> genii: vim /etc/passwd
[00:04] <genii> mealstrom: I'm aware of how to change their shell. But if you do something like try to use: script -aqf /some-logname   and call it from in /etc/passwd as their shell, it behaves like a forkbomb when ssh is used
[00:05] <mealstrom> and what about ~/.bashrc ?
[00:05] <mealstrom> if default is bash
[00:07] <genii> mealstrom: When you login from console replacing the default shell with script works. When ssh in, kaboom
[00:07] <mealstrom> genii: what the script is?
[00:08] <mealstrom> genii: if you use some command it will call your's script  -- run many times, problem with this ?
[00:09] <genii> mealstrom: There may be some confusion. I'm talking about a command whose name is "script"
[00:11] <mealstrom> genii: I can't understand exactly what you want to do. say default shell is /bin/sh or /bin/bash . And what you want to do?
[00:11] <mealstrom> make something like /bin/somescript ?
[00:12] <genii> mealstrom: If for instance at command prompt you enter exactly: script -a /somelog           everything you type as you enter commands will be recorded as like a keyboard logger into the file called /somelog
[00:12] <genii> eg: all your bash/sh/dash/ksh   etc commands
[00:13] <genii> Which is that: I want to have a record of what some users are doing at commandline when ssh in because they are deleting their bash_history files
[00:18] <mealstrom> genii: chattr +au /home/user/.bash_history
[00:21] <uvirtbot`> New bug: #510418 in dovecot (main) "Don't add user `dovecot` to group mail" [Undecided,New] https://launchpad.net/bugs/510418
[00:21] <Lns> mealstrom: wow...that's pretty awesome
[00:22] <Lns> didn't know you could do that w/chattr
[00:46] <ruben23> hi guys..
[00:46] <ruben23> i got same problem as i asked here mounting a cifs on a windows, working good but its not mounted automatically upon reboot
[00:48] <genii> ruben23: You made some fstab entry for it?
[00:49] <ruben23> yes
[00:49] <ruben23> this is my fstab entry--->//192.168.2.27/recordings2 /media/share cifs username=AGENT,password=3tr 0 0
[00:50] <genii> Probably tries to mount before network is up
[00:54] <ruben23> genii: but the winodws client is already power up before the server reboots
[00:54] <ruben23> genii:what can i do.
[00:56] <uvirtbot`> New bug: #510427 in elinks (main) "Please merge elinks 0.12~pre5-2(main) from debian squeeze(main)" [Undecided,Confirmed] https://launchpad.net/bugs/510427
[02:32] <zlx> 大家好
[02:32] <zlx> 请教一个问题，如何查看dnsmasq的日志
[03:25] <michael____> hello?
[03:26] <michael____> i was wondering if anyone can helpe me
[03:26] <j416> michael____: you should read the topic first.
[03:26] <j416> michael____: http://www.sabi.co.uk/Notes/linuxHelpAsk.html
[03:27] <j416> section two.
[03:31] <michael____> thankyou..... It it worth it to install Ubuntu Server if i am just going to use apache and MySQL? should i just stick with regular Ubuntu and install something like xampp?
[03:32] <j416> michael____: it would depend on what you're going to use it for
[03:32] <j416> if you don't need a GUI (desktop), there is no reason to install it..
[03:32] <j416> the ubuntu server setup is pretty straightforward. But you have to be familiar with the command line.
[03:32] <michael____> what is in the GUI?
[03:33] <j416> michael____: http://ubuntuserver.info/images/6.10_install/first_reboot.png
[03:33] <j416> this is what ubuntu server looks like
[03:34] <j416> michael____: http://www.appscout.com/images/ubuntu-penguin.jpg
[03:34] <j416> this is what ubuntu desktop looks like
[03:34] <j416> (google imaged to find these, they are not the latest versions)
[03:35] <j416> michael____: "GUI" means "Graphical User Interface"
[03:35] <j416> ubuntu server does not have that.
[03:35] <jmarsden> michael____: There is no GUI in the Ubuntu server install.  You *can* add one later, but it's not generally recommended practice for servers.  If you are new to Linux and Ubuntu, you will probably find it easier to use Ubuntu Desktop.
[03:36] <michael____> ahh i see, i will just install Koala with something like xampp
[03:36] <michael____> thank you
[03:36] <jmarsden> DOn't use xampp, install the LAMP stack .
[03:37] <jmarsden> XAMPP is a Windows concept not a Linux one.
[03:37] <qman__> ubuntu server is extremely well suited to this single minded purpose
[03:37] <qman__> one checkbox during install and you have a ready-to-use apache/mysql/PHP server
[03:38] <j416> qman__: but without knowing how to use it without a GUI it would be hard to set up anything more advanced...
[03:38] <j416> (not that ubuntu desktop has a GUI for setting up apache/mysql/php, does it?)
[03:38] <qman__> no, it doesn't
[03:38] <qman__> a GUI does not provide any real advantage
[03:38] <qman__> except maybe file management
[03:39] <j416> to a newbie it might.
[03:39] <qman__> the tools and configuration are all command line anyway
[03:39] <twb> j416: newbies aren't sysadmins.
[03:39] <j416> twb: good point. :D
[03:40] <qman__> I guess my point is, you have to learn the same commands and configuration with or without a GUI, so there's really no benefit to having one in this case
[03:40] <michael____> well, i am a newbie and i am a sysadmin for my robotics team. nothing big but thats why i am asking for help
[03:40] <j416> qman__: very true.
[03:40] <qman__> but some people feel better by working in a gnome-terminal than a tty
[03:40] <twb> michael____: then you have an excellent opportunity to learn how to administer a system properly, i.e. without a GUI to hold your hand.
[03:40] <j416> well, you could always ssh in from another machine with a proper terminal app..
[03:41] <michael____> ok, besides the GUI, are there any significant differences
[03:42] <j416> michael____: try ubuntu server if you have the time. :)
[03:42] <michael____> i do
[03:42] <qman__> server and desktop use the same repositories and you would be installing the same software packages
[03:43] <qman__> so no, besides the GUI and a few unrelated tweaks, they're the same
[03:43] <j416> I would guess ubuntu server is faster. It has a smaller footprint because there are fewer apps running, and no graphics to handle.
[03:43] <twb> michael____: in terms of packaging, the main differences between a stock Ubuntu Server and Desktop install are: different kernel compile-time options (sometimes), the absence of ubuntu-desktop and its dependencies, and the absence of localization for GUI apps, myspell, etc.
[03:44] <michael____> less things to go wrong
[03:44] <twb> j416: it'd only be "faster" if the hardware wasn't specced for desktop
[03:44] <j416> twb: ok :)
[03:44] <twb> Otherwise it's just a question of how much of the RAM and CPU is idle.
[03:45] <qman__> definitely less things to go wrong, especially from a security perspective
[03:45] <j416> in my case, I'm running the server inside a virtual machine, so I would think there is a difference there.
[03:45] <j416> nothing confirmed though..
[03:46] <twb> j416: well, only because your VM probably has 128MB of RAM instead of 4GB
[03:47] <j416> yep :)
[03:48] <qman__> well, there would be fewer services running, but a bunch of idle processes have very little performance impact on a fast enough system
[03:50] <twb> qman__: if you had swap, they'd be swapped out anyway.
[05:06] <uvirtbot`> New bug: #510497 in bind9 (main) "Update manager failed - package bind9 1:9.6.1.dfsg.P1-3ubuntu0.2 failed to install/upgrade: subprocess new pre-removal script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/510497
[07:31] <maxagaz> I need a cheap machine (server) in which i can plug a lot of hard drive to put backups, do you have something to suggest me (with atom proc perhaps) ?
[07:38] <foxbuntu> maxagaz, I assume from your description you are trying to build a custom NAS?
[07:38] <maxagaz> foxbuntu, yes
[07:38] <maxagaz> foxbuntu, I only need to put bacula's backup on it
[07:39] <foxbuntu> maxagaz, well the atom is a desktop based processor
[07:40] <foxbuntu> maxagaz, also are you looking a fully assembled option or build your own (bare bone type of thing)?
[07:46] <twb> Why not just buy a NAS that can run Ubuntu
[07:47] <twb> I'm thinking along the lines of the NSLU2 or the newer SheevaPlug
[07:48] <twb> foxbuntu: I think he picked atom specifically because it's relatively low power
[07:55] <maxagaz> twb, I don't understand what's SheevaPlug
[07:55] <twb> jfgi
[07:55] <maxagaz> twb, how do you plus many hard disk on it ?
[07:56] <twb> Well, yeah, that's an issue.
[07:56] <twb> I expect there's a NAS-oriented variant.
[08:01] <foxbuntu> twb, I assumed that...just wanted to point out that atom != server
[08:03] <twb> Well, as far as whiteboxes NASs go, it doesn't matter a damn what CPU it has.
[08:05] <maxagaz> i need a machine in which i can put up to 5T of hard drives
[08:06] <foxbuntu> twb, that depends on how you want to build the box, if its just for at home, I agree, if its going to be used as a critical piece of hardware (first go buy a NAS) but second if building it, it should be using enterprise class hardware at the very least
[08:06] <maxagaz> foxbuntu, it's for enterprise
[08:06] <foxbuntu> twb, just my opinion on it, wont stop me from helping someone that wants to do it
[08:07] <maxagaz> by the way, there's no repositories to install bacula 3 on karmic ?
[08:08] <foxbuntu> maxagaz, then you need to evaluate how critical this device will be to your enterprise
[08:08] <foxbuntu> martin-, that will help you to pick the correct hardware for you
[08:08] <foxbuntu> martin-, sorry, I meant maxagaz
[08:09] <twb> Eh, if you're buying enterprise-class hardware, you do it by ringing up IBM or HP or Dell and saying "hi, please send me a model NNN by next Tuesday", not by asking IRC
[08:09] <twb> (Of course, that's *my* opinion. :-)
[08:10] <foxbuntu> twb, I would agree, not my previous contention
[08:10] <foxbuntu> s/not/note
[08:13] <twb> maxagaz: I wouldn't be deploying non-LTS releases in an enterprise environment.
[08:14] <foxbuntu> maxagaz, second that
[08:15] <maxagaz> i want to test it, not to deploy it
[08:15] <twb> maxagaz: what are you testing?
[08:15] <maxagaz> twb, for instant, i have a buggy bacula 2.2.8 on hardy
[08:16] <maxagaz> twb, i would like to test bacula 3.0.3 on karmic
[08:16] <twb> maxagaz: why?
[08:17] <maxagaz> twb, to deploy it once karmic will become 9.04
[08:18] <twb> maxagaz: erm, your messages are taking a really long time to reach me.
[08:18] <twb> It's January 2010 here, and 9.04 and 9.10 were released many months ago.
[08:19] <maxagaz> twb, sorry, i meant 10.04
[08:20] <twb> maxagaz: Karmic will never be 10.04.
[08:20] <twb> maxagaz: Lucid is targeted for release in 10.04.
[08:20] <twb> If you want to see if bugs are fixed in Lucid's bacula, you should install Lucid.
[08:21] <twb> And lucid *does* have bacula 3: http://packages.ubuntu.com/lucid/bacula
[08:23] <maxagaz> twb, bacula 3.0.3 is the latest stable version while lucid isn't stable
[08:24] <maxagaz> twb, also karmic looks stable although it's not stamped LTS
[08:25] <twb> maxagaz: I've told you what you should do.  If you want to ignore me and try to run Bacula 3.0.3 on Karmic instead, I'm not going to stop you.
[08:27] <maxagaz> twb, you would install bacula 2.4 on hardy ?
[08:27] <twb> I would not deploy a non-LTS release in an enterprise environment.
[08:28] <twb> I would DEFINITELY not install non-standard packages in an enterprise environment.
[08:28] <twb> That is, I'd use whatever version of bacula came with the release.
[08:28] <twb> For pre-production right now, aiming for deployment around June, I would target 10.04 with whatever bacula it ends up with, which will probably be 3.0.2.
[08:43] <kwork> can anyone suggest is there some tool to monitor directory with svn for changes and commit them, or svn + cron script is the way to go ?
[08:44] <Jeeves_> kwork: What do you actually want to do? :)
[08:44] <twb> kwork: I think you're trying to solve a policy problem with technology, which will never work.
[08:45] <kwork> actualy i have bind configs what change few times a day, i would like to have that data in svn
[08:45] <twb> kwork: who changes them?
[08:45] <kwork> twb,  dns admins
[08:45] <kwork> i know that i cant know who made the changes with cron solution
[08:46] <twb> kwork: do they edit the files directly, or do they use some sort of shitty web front-end?
[08:46] <kwork> directly
[08:46] <twb> OK, then the solution is to teach the DNS admins how to use "svn commit".
[08:46] <twb> And to put in place a piece of policy that says "you gotta do it."
[08:46] <kwork> it would be painful to force them to use it after every change i cant be sure that i get all the changes
[08:46] <Jeeves_> kwork: What twb says :)
[08:47] <Jeeves_> kwork: Sure you can be sure.
[08:47] <Jeeves_> You create a script that periodically svn up's your bind config
[08:47] <kwork> i was thinking of hourly cron script that would commit it
[08:47] <jerico> hmm..  everytime I come here people are talking about stuff I don't understand. Is there a #ubuntu-server-noobs?
[08:47] <Jeeves_> You let the admins commit the zones in the repo
[08:47] <twb> jerico: #ubuntu is for noobs
[08:48] <Jeeves_> If they work on the files directly, your svn up will fail, and you can use the cluebat
[08:48] <Jeeves_> Or you just make sure they can't login :)
[08:48] <twb> Being smart enough to add -server is the first test
[08:48] <kwork> okey thanks for input
[08:48] <kwork> lol @ twb
[08:48] <twb> Jeeves_: oh yeah!  I forgot that svn actually enforced separation of the main repo from the working trees.
[08:49] <twb> I was imagining more like a single-repo RCS or git
[08:49] <twb> "To edit records, run co -l foo.zone, ed foo.zone, ci foo.zone'
[08:49] <kwork> i think im going to add bind dir to svn then, and then commit it daily and then i can get nice overview from websvn
[08:50] <kwork> because i dont actualy care who changed what
[08:50] <kwork> rather what was changed generally
[08:50] <twb> kwork: so basically you're going to ignore our advice and do what you originally intended :P
[08:50] <kwork> yep :P
[08:50] <twb> You may want to look at etckeeper
[08:50] <kwork> hmmmz okey thanks
[08:50] <kwork> ill check it out
[08:51] <kwork> twb,  forcing them to commit would be right choice if it would mater who changed what
[08:51] <kwork> then i would actualy have no other way
[08:51] <kwork> uu etckeeper seems cool
[08:51] <kwork> nice suggestion
[08:52] <kwork> thou it seems i need to set up git
[08:52] <j416> /etc should have a directory with _all_ default settings, and then you would just override them in new, clean files. That would be something..
[08:52] <twb> kwork: it works with a bunch of VCSs
[08:53] <kwork> git, mercurial, darcs, or bzr repository
[08:53] <kwork> actualy only one i have heard about is git there
[08:53] <twb> j416: here, have unionfs.
[08:53] <twb> kwork: if you're still using svn, that doesn't surprise me
[08:53] <j416> twb: cool
[08:54] <j416> twb: do you use it?
[08:55] <twb> I'm the Darcs Debian maintainer and upstream documentation manager, and I work with hg daily and git weekly.
[08:55] <twb> bzr is only for arch refugees and canonical employees.
[08:56] <twb> Come to think of it, most arch refugees have probably died at sea by now anyway.
[09:13] <jiboumans> good morning
[09:15] <jerico> Does anyone know of a good guide for learning iptables?
[09:17] <jerico> heh. actually I should probably just read the man pages on it.
[09:17] <twb> jerico: the PDF linked from /topic
[11:17] <uvirtbot`> New bug: #358703 in php5 (main) "Wrong/insecure configuration of PHP module" [Wishlist,Triaged] https://launchpad.net/bugs/358703
[12:28] <beric> Hello guys. Is there a solution for automatic http proxy detection so  that I won't have to enter proxy address manually for apt-get
[12:29] <beric> I know this thing called WPAD but don't know the tooling for that under ubuntu.
[12:29] <cx> man  get tor
[12:29] <cx> apt-get install tor
[12:30] <mealstrom> http://ubuntuforums.org/showpost.php?p=743244&postcount=6
[12:31] <beric> thank you both. I'm looking for something that can configure the proxy system wide automatically but getting the address from DHCP like WPAD does.
[12:31] <mealstrom> and what about transparent proxy ?
[12:32] <mealstrom> squid + portforward 80-> 3128 ?
[12:32] <beric> can't touch the network settings . think about a student in a collage
[12:34] <mealstrom> екн ершы http://linux.derkeiler.com/Mailing-Lists/Debian/2006-07/msg00916.html
[12:35] <mealstrom> *try this
[12:35] <beric> hmmm find another interesting stuff here:http://wiki.debian.org/ProxyAutodetectConf
[12:47] <ghostlines> anyone got experience with powernowd? it isn't saving changes i set
[12:47] <mealstrom> check config files permissions
[12:50] <ghostlines> i havae permissions to access it
[13:35] <sommer> morning
[13:35] <infidel> i have a laptop with a hdd raid 5 array and i'm trying to install server and it finds the raid but when i go to partition disk it wants to configure iscsi and asks for an ip address and port number. how can i get around this and create raid patitions?
[13:36] <mealstrom> is it possibele to do this with vsftpd? :
[13:36] <mealstrom> 1. incoming (anononymoyus dir with 0777 rights)
[13:36] <mealstrom> 2. pub (anonymous with read and one ftpuser with 0777 rights) ?
[13:36] <mealstrom> (1) I've done. but got troubles with second ^(
[13:36] <mealstrom> or how can I limit user access with local_enables = yes for only 1 user ?
[13:36] <pmatulis> infidel: a laptop with RAID 5?  interesting
[13:38] <infidel> ok, nice but what about the iscsi issue?
[13:44] <pmatulis> infidel: you're claiming that the installer (for what release?) is imposing an iSCSI install on you?
[13:47] <infidel> pmatulis, stand by please
[13:47] <pmatulis> standing by...
[13:48] <infidel> 9.10
[13:50] <pmatulis> infidel: provide me a picture of your screen
[13:52] <pmatulis> infidel: or open a bug (i'm assuming you've checked whether such a bug exists already)
[14:00] <infidel> can i boot this disk as a live linux disk and connect to the internet and send you the data?
[14:02] <infidel> i see you can't
[14:09] <pmatulis> infidel: take a picture
[14:15] <ttx> kirkland: you didn't commit your latest eucalyptus upload to the packaging branch, so it's out of sync now...
[14:16]  * ttx cleans up
[14:16] <lool> zul, soren: I changed the minimal seed to depend on netcat-traditional instead of netcat since I see netcat is a transitional package; however this means netcat-traditional is hard to remove; I see there are also some netcat provides, but I'm not sure how to permit this with seeds
[14:16] <lool> zul, soren: Do you two have any idea on how to best address this?
[14:16] <lool> (Or anybody else of course)
[14:16] <infidel> pmatulis, what do you want me to take a picture of?
[14:17] <soren> lool: Why did you choose that one over netcat-openbsd?
[14:17] <pmatulis> infidel: your screen
[14:17] <lool> soren: Because that's the one which is currently in the minimal task and the one netcat depends on
[14:17] <lool> On a related note, I think this ought to be higher than minimal, perhaps standard
[14:18] <soren> lool: Hm... I think netcat-openbsd is really a better default choice.
[14:18] <lool> soren: I would be fine with this; I don't know what that implies though
[14:18] <soren> lool: I made netcat depend on netcat-traditional back in the day because it was the smallest change.
[14:18] <lool> soren: Apparently you did some research on this
[14:18] <soren> Yes.
[14:18] <soren> Two years ago.
[14:18] <soren> :)
[14:18] <lool> I saw your name in the MIR and in the README.Debian
[14:19] <lool> soren: Would you mind proposing this change?
[14:19] <lool> soren: Or I can just do it for you if you think that's safe; it would be an improvement over having two netcat in mains
[14:19] <lool> And two netcats installed in the server install (at least after my latest change)
[14:19] <soren> lool: "do it" as in make the proposal?
[14:19] <lool> soren: As in do the changes
[14:19] <soren> lool: I wouldn't mind that at all.
[14:19] <lool> soren: I know how to change the default, just not whether it's safe to do
[14:19] <soren> lool: Still plenty of time to fix things if anything blows up.
[14:20] <soren> I don't expect anything to blow up. I'm just saying.
[14:20] <lool> Apparently you mention a dep on glib
[14:20] <lool> But it's already in minimal
[14:21] <infidel> pmatulis, what page would you like to see
[14:22] <lool> udev depends on libglib2.0-0
[14:22] <lool> and shared-mime-info
[14:23] <infidel> anbbl
[14:27] <lool> soren: I changed the seeds; I see we have the transitional netcat since hardy, do you think we should leave it alone, drop it, or move it to netcat-openbsd?
[14:46] <uvirtbot`> New bug: #510671 in drbd8 (main) "kernel 2.6.27.15 generic drbd8 not found" [Undecided,New] https://launchpad.net/bugs/510671
[14:48] <tue> hey guys, could someone help me how to login with roundcube in ebox? dunno no what is the user and the password :/ ...
[14:48] <tue> and btw great work with ebox loveeee it!
[14:50] <lool> soren: Hmm sorry; got netsplit; I sent an email to ubuntu-devel
[14:56]  * zul feels like a motu today
[15:04] <JimiDini> Hi. I am from midgard-project (content repository). Our next version of php-bindings is going to be php-5.3 targeted. What are the chances of 5.3 going to Lucid?
[15:04] <JimiDini> We spoke with Mathias Gug and he told us to contact server team :)
[15:05] <JimiDini> Debian has 5.3.1-2 in "experimental" and they are going to move it to "unstable" soon
[15:07] <JimiDini> ubuntu is our main deployment target (even ubuntu-lts), so this question is rather critical for us
[15:09] <ttx> kirkland: fixed.
[15:09] <zul> JimiDini: not great right now if 5.3.1 gets out of experimental then maybe
[15:11] <uvirtbot`> New bug: #510683 in likewise-open5 (universe) "'lsassd' has to be restarted in order to login" [Undecided,New] https://launchpad.net/bugs/510683
[15:12] <zul> JimiDini: i have to see what debian is doing
[15:13] <JimiDini> zul: debian maintainer recently contacted php dev-team and looks like they are serious about putting 5.3 in next stable
[15:13] <JimiDini> zul: see http://news.php.net/php.internals/46657 and http://news.php.net/php.internals/46697
[15:14] <JimiDini> I can write him email to ask "when?"
[15:14] <JimiDini> would that be useful?
[15:15] <zul> JimDini: afaik they are are doing the transition as well so if you want to send an email to ask when and cc me that would be great (to keep me in the loop)
[15:16] <JimiDini> zul: ok. will compose it now
[15:17] <zul> JimiDini: zulcss @ ubuntu.com
[15:24] <JimiDini> zul: sent
[15:25] <zul> JimiDini: thanks
[15:30] <ttx> smoser: ping
[15:30] <smoser> ttx, here.
[15:30] <ttx> smoser: what's the status on the karmic cloud image refresh ? in progress ?
[15:31] <smoser> i have ran through 2 of 6 ami tests, 1 is in progress.
[15:31] <ttx> smoser: ok, so we are still on track for delivery today or tomorrow
[15:32] <smoser> yeah, i think its good
[15:39] <tesseracter> ive got a dev box in virtualbox, and the date will not get updated for the life of me. ive got it set for a cron.hourly, but it only changes time when i do sudo ntpdate pool.ntp.org
[15:45] <infidel> anyone here know how to setup raid on u-server?
[15:46] <zul> ttx: has the server team meeting agenda been cleared yet?
[15:48] <ttx> yes
[15:49] <infidel> ok i think i solved the problem
[15:53] <Xpistos|work> how can I create my own ssh key that is say 1024-bits
[15:56] <jiboumans> Xpistos|work: man ssh-keygen will tell you. you want -b probably
[15:57] <Xpistos|work> thanks
[16:11] <marks256> When i try to LS one of my directories, i get this error: ls: reading directory .: Identifier removed. What does it mean?
[16:12] <Xpistos|work> wow 20480-bit keys take a long time to generate
[16:14] <infidel> ok i think i solved the problem i sw
[16:14] <infidel> ok i think i solved the problem i switched distros
[16:17] <zul> ttx: k
[16:22] <pmatulis> Reepicheep: all you need is: 'sudo tcpdump -i br0 -qtn -c1 src port 67'
[16:23] <pmatulis> Reepicheep: sample ouput: 'IP 10.100.100.1.67 > 10.100.100.123.68: UDP, length 300'
[16:30] <marks256> Solved the "identifier removed" problem. Basically a few group errors on my Lustre FS.
[16:38] <Baversjo> Hi! I'm very new to public / private key authentication in SSH. I've successfully setup my server and desktop so that I can access the server without a password. My question is: Is there any way to generate another private key from a public key on the server so that I can login in without a password on another machiene?
[16:41] <zul> hi mathiaz so i have a couple of mysql cluster 7 questions for you
[16:41] <mathiaz> zul: sure
[16:41] <zul> mathiaz: so its basically like a mysql server with ndb turned on right?
[16:42] <mathiaz> zul: yes - for a high level perspective
[16:42] <zul> mathiaz: so the packaging would be very similar to the mysql-dfsg-5.1 packaging right?
[16:42] <mathiaz> zul: packaging wise, you'd need two binary packages at least: one to install a managment node and one to install a data node
[16:43] <mathiaz> zul: not necessarly
[16:43] <zul> mathiaz: gotcha
[16:43] <mathiaz> zul: once packages for the cluster are available, we should also make sure that the ndb engine is enabled in mysql-server-5.1
[16:43] <mathiaz> zul: as this is the package that would used on the SQL nodes
[16:44] <mathiaz> zul: I'm using the same terminology outlined in the MySQL Cluster guide
[16:44] <mathiaz> zul: I'd recommend having a quick look at it
[16:44] <zul> im reading through it
[16:44] <mathiaz> zul: it gives a good overview on how to setup a MySQL Cluster and has a small tutorial;
[16:45] <mathiaz> zul: there are three components: Management node (1 package from mysql-cluster src pkg), Data node (1 package from the mysql-cluster src package) and MySQL node (mysql-server-5.1)
[16:45] <mathiaz> zul: I would also suggest to drop an email to the Debian maintainers
[16:46] <mathiaz> zul: they may have started to work on packaging MySQL Cluster
[16:46] <mathiaz> zul: and have some code to share
[16:46] <zul> ok
[16:46] <zul> thanks
[16:46] <mathiaz> zul: or some thoughts on how things should be done
[16:47] <soren> Baversjo: No. What you do is..
[16:47] <soren> Gah..
[16:47] <zul> too slow soren
[16:50] <soren> Story of my life.
[16:50]  * soren goes to dinner.
[16:51] <ehazlett> greetings... i'm having NFS trouble... i cannot create files/directories on an NFS mounted share using LDAP groups... (and i have less than 16 groups...)
[16:57] <mathiaz> zul: apparently php 5.3 should hit unstable soon
[16:57] <Reepicheep> pmatulis: where you looking for what server is acting as the DHCP server or what IP address the client received?
[16:58] <pmatulis> Reepicheep: the latter
[16:58] <Reepicheep> yeah that's what I thought
[16:58] <pmatulis> Reepicheep: in my example, that address would be 10.100.100.123
[16:59] <Reepicheep> pmatulis: that is interesting .. when I run it it does not show the clients assigned address on the right.. it shows the target as a broadcast address
[17:00] <pmatulis> Reepicheep: weird
[17:00] <Reepicheep> for instance  'IP 10.100.100.1.67 > 255.255.255.255.68: UDP, length 300'
[17:01] <Reepicheep> actually my length is 314 not 300 .. but that isn't the difference.
[17:02] <Reepicheep> I'm testing it with a virtualbox machine not a KVM.. but again that shouldn't matter
[17:02] <JimiDini> mathiaz: zul: and what is even more important, php-5.3 will be the version officially actively supported by php-team in next N years. while 5.2 will soon go under the carpet
[17:03] <JimiDini> and LTS release is supposed to be used for quite a long time… better not to have officially outdated stuff there
[17:03] <pmatulis> Reepicheep: maybe it depends on the DHCP server.  i believe we have a cisco unit
[17:03] <mathiaz> JimiDini: do you have any pointer where upstream explains their maintainance policy?
[17:03] <Reepicheep> pmatulis: what version of tcpdump and libcap are you using? i'm using 4.0.0 and 1.0.0
[17:03] <mathiaz> JimiDini: well - things will always get outdated on LTS
[17:04] <Reepicheep> in this instance we are using a windowz server as DHCP.. let me try it on a different vlan with a different type of DHCP server
[17:06] <pmatulis> Reepicheep: libpcap is at 1.0.0-1 on Ubuntu
[17:06] <JimiDini> mathiaz: good question. I will look for it
[17:06] <JimiDini> mathiaz: I understand that things will get outdated, but it's the question of "how fast"
[17:13] <Reepicheep> pmatulis: it is the DHCP server I get this on a bridge attached to a vlan using dnsmasq as a server:
[17:13] <Reepicheep> IP 192.168.125.254.67 > 192.168.125.96.68: UDP, length 318
[17:13] <pmatulis> Reepicheep: thanks for the confirmation, i guess the most reliable method would involve filtering on the payload
[17:14] <Reepicheep> yesterday when I was testing it.. I only used a bridge with a windows DHCP server..
[17:14] <Reepicheep> I was wondering how you where going to determine the IP address received.. that is where dnstop came in
[17:15] <Reepicheep> even when I showed the payload with -X on tcpdump.. it was not decoded
[17:31] <ehazlett> any reason why NFS won't recognize secondary groups via LDAP?
[17:47] <uvirtbot`> New bug: #510732 in openssh (main) "OpenSSH server sshd_config PermitRootLogin -> NO" [Wishlist,Incomplete] https://launchpad.net/bugs/510732
[17:56] <pmatulis> Reepicheep: what version of Windows (running DHCP) did not work for you?
[18:28] <zul> mathiaz: shouldnt the mysqladmin be in a server package?
[18:28] <mathiaz> zul: where is it now?
[18:28] <zul> mysql-client
[18:29] <mathiaz> zul: isn't mysql-client installed on every mysql-server?
[18:30] <mealstrom> no
[18:30] <mealstrom> it can be installed as recommended
[18:32] <hartwigj> Hi there
[18:33] <hartwigj> just a little question: Each apache2 process is consuming 175MB of virtual ram on my x86_64 servers (I guess this memory is shared with all other apache processes). Is that normal?
[18:34] <eagles0513875> hey guys im having issues trying to pull gutsy from its given mirror to setup on xen the log file for the vm is here
[18:34] <eagles0513875> http://pastebin.com/f8eee500
[18:34] <eagles0513875> can someone point me in the right direction of what i can do to remedy the situation
[18:35] <pmatulis> eagles0513875: gutsy is EOL
[18:35] <eagles0513875> O_o :(
[18:35] <pmatulis> eagles0513875: there is some site that hosts such things i believe
[18:35] <eagles0513875> what mirror can i use to pull any newer release of ubuntu server
[18:35] <pmatulis> oldreleases something or other
[18:35] <pmatulis> google it
[18:36] <eagles0513875> its not a big deal in that case ill use debian then, but i need something prior to karmic due to issues with grub2 and xen
[18:37] <eagles0513875> pmatulis: do you know the mirrors or anythign for hardy or intrepid?
[18:38] <eagles0513875> !mirrors
[18:39] <zul> mathiaz: re php 5.3.1 http://drupal.org/requirements
[18:39] <mealstrom> has anyone problem with mounting samba share in fstab ? (there is no cifs/smbfs type) ?
[18:39] <hartwigj> No one who experiences the same thing?
[18:42] <mathiaz> zul: well - drupal6 is available in universe
[18:43] <zul> is there popcon stats?
[18:44] <jpds> eagles0513875: All official mirrors have hardy.
[18:44] <eagles0513875> the problem is adding it to xen-tools for xen to pull and install it on the vm
[18:44] <eagles0513875> im guessing i would need the minimal install
[18:44] <jpds> eagles0513875: And intrepid.
[18:45] <eagles0513875> jpds: intrepid has grub 1 right
[18:45] <jpds> Yep, karmic was the first one with grub2.
[18:46] <eagles0513875> ok cuz from what im hearing grub 2 is giving people on xen hell
[18:46] <mealstrom> but only with clean install
[18:47] <jpds> xen isn't really supported on Ubuntu.
[18:49] <eagles0513875> im setting up ubuntu on a guest
[18:49] <eagles0513875> host os is debian
[18:54] <NotTooSmart> how do I keep my monitor from turning off?
[18:59] <hartwigj> what should be the normal apache2 VIRT mem consumption on x86_64? Can anybody tell me his / hers?
[19:01] <jjohansen> smoser: hey was there a mail thread started about booting without the ramdisk
[19:01] <smoser> yes.
[19:01] <smoser> on -devel
[19:02] <jjohansen> smoser: ah, I was looking for it on server
[19:02] <NotTooSmart> how do I keep my monitor from turning off?
[19:02] <smoser> https://lists.ubuntu.com/archives/ubuntu-devel/2010-January/thread.html#30018
[19:06] <jjohansen> smoser: indeed I found it
[19:06] <nucking> hey everyone, i'm having big problems compiling and installing a driver for my nic =(
[19:07] <nucking> it tells me that there is no rule to make kernel/bound.c
[19:07] <nucking> when i "make all" as told by the README
[19:07] <nucking> i alread got build-essentials, linux-headers and linux-source
[19:08] <nucking> nucking
[19:08] <nucking> whoops
[19:08] <nucking> i'm really clueless and in desperate need of help D=
[19:09] <jjohansen> smoser: so how do you want to proceed on testing these kernels, and deciding whether we need another flavour
[19:10] <smoser> well... you certainly have a better "feel" for how risky this is.
[19:11] <smoser> i really can't imagine any fallout from CONFIG_VIRTUAL, but if there is, we can revert it.
[19:12] <smoser> ttx's point is valid though about the scsi hardware... somehow we need to see how likely that is to cause regression
[19:13] <Disconnect> soren: so if i'm gonna submit a ton of cleanup patches for ec2-init do you have a preferred source ver to start from?
[19:14] <jjohansen> smoser: the scsi driver should only cause a regression if there is a bug
[19:15] <smoser> well, yes.
[19:15] <smoser> :) lots of things only cause problems if there are bugs
[19:15] <jjohansen> smoser: possible but unlikely, I dug around looking for a way to disable it when builtin but it looks like that I was mistaken.
[19:15] <jjohansen> smoser: it is possible to add a switch to disable if we run into problems
[19:16] <Disconnect> smoser: is ec2-init yours? soren is listed on the packages page but i'm being told you might be the actual owner
[19:16] <smoser> Disconnect, yeah, problably its me now.
[19:17] <jjohansen> smoser: do you want to test the kernels I have?  Right now I am close to saying ship it, and see what happens and if we need then spin off a new flavour
[19:17] <smoser> Disconnect, start from (heavily revised and in-progress) lp:~smoser/ec2-init/ec2-init.devel
[19:17] <Disconnect> cool
[19:18] <smoser> Disconnect, i really would be interested in feedback you have.  its definitely work in progress.
[19:18] <Disconnect> well i'm starting with typo fixing (reserveration-id) and moving on to revoking os.system privs ;)
[19:18] <smoser> jjohansen, then i saw we test it earlier rather than later.
[19:19] <smoser> so "ship it".
[19:19] <smoser> my only real draw towards -virtual as being a full flavour (maybe we'll go there eventually) is including as many other guest drivers as possible
[19:20] <jjohansen> smoser: definitely, I am going to do another round of build and test.  ie install on a couple of machines
[19:20] <smoser> if we ever did go that route, there'd probably be lots of things to change, throw out stuff that doesn't make sense.
[19:20] <smoser> jjohansen, and what about ec2 kernel ?
[19:20] <jjohansen> I am not done its refresh yet, some time today though
[19:22] <smoser> the DEVTMPFS is what i'm interested in there.
[19:23] <jjohansen> smoser: right, I won't forget it
[19:26] <smoser> just an fyi, recently ec2 kernels have been very stable
[19:26] <smoser> and console output is very stable too
[19:26] <jjohansen> hrmm, strange - though they have gone through a rebase.  It could have been a general kernel bug
[19:29] <soren> Disconnect: Yeah, smoser's your man these days, I suppose.
[19:30] <NotTooSmart> what can I do if sudo -setterm powersave off     does nothing for me?
[19:30] <Disconnect> smoser: https://bugs.launchpad.net/ec2-init/+bug/510825 you get one just like the one i gave smoser about an hour ago ;)
[19:30] <uvirtbot`> Launchpad bug 510825 in ec2-init "ec2-get-info typos (with patch)" [Undecided,New]
[19:38] <hartwigj> setterm -powersave off -blank 0
[19:42] <stickystyle> Has anyone experienced mod_proxy_html working?  I have what should be a simple swap of ProxyHTMLURLMap /magnoliaPublic/demo-project/     /  but it just doesn't seem to do anything (as in matching and replacing).  And the "ProxyHTMLLogVerbose On" does nothing either :-|
[19:46] <mdeslaur> mathiaz, zul: guess what? the mysql test certs expire again in 7 days
[19:46] <mathiaz> mdeslaur: ahhh
[19:47] <mdeslaur> mathiaz: you may scream if it'll make you feel better
[19:47] <mathiaz> mdeslaur: we should ping them asking wether they have no faith in their proejct
[19:47] <mdeslaur> they should generate them for 10 years or something...it's just for build testing
[19:47] <smoser> jjohansen, i see tim's mail about lucid pull request, will that build soon?
[19:48] <jjohansen> smoser: I can kick off a new build and have a kernel to play with soonish
[19:49] <zul> mathiaz: yay!!!!!!!
[19:49] <smoser> ok. i can test for you easily enough.
[19:49] <nucking> does really nobody have any clue what i'm missing to compile those drivers?
[19:50] <Disconnect> smoser: whats the method of turning this pile of scripts into a package? or is it not that far along yet.
[19:51] <smoser> Disconnect, i was hoping to get a new package sponsored today, but dont knwo that i'll get there.
[19:51] <mdeslaur> mathiaz, zul: is one of you going to contact them to get updates certs?
[19:51] <smoser> but the debian/ directory in the ubuntu branch will be close to working
[19:51] <smoser> ie
[19:52] <jMyles> If I mount a drive through SSHD, I get very reasonable speeds (70-100 K), but if I mount it through OpenVPN, it slows down to 12-20.  Anybody know why?
[19:52] <smoser> bzr branch lp:ubuntu/ec2-init
[19:52] <mathiaz> mdeslaur: jiboumans ^^ - can we talk about the cert expiration with mysql?
[19:52] <smoser> Disconnect, that make sense?
[19:52] <Disconnect> smoser: yah
[19:53]  * Disconnect will be going with lp:~ubuntu-on-ec2/ec2-init/ec2-init.jauntyppa since its jaunty servers anyway
[19:53] <Disconnect> also, updated within the past year
[19:53] <mathiaz> mdeslaur: I'd file a bug with the upstream bug tracker
[19:53] <mathiaz> mdeslaur: and we can take it from there
[19:54] <mdeslaur> mathiaz: you are going to file the bug?
[19:54] <Disconnect> er, scratch that. wrong branch :)
[19:54] <mathiaz> mdeslaur: I can have a look at it
[19:54] <mdeslaur> thanks mathiaz
[19:55] <nucking> this is the readme for the driver
[19:55] <nucking> http://pastebin.org/79829
[19:55] <smoser> Disconnect, yes. i recommend you not use the development for jaunty.
[19:56] <smoser> i dont know where ec2-init.jauntyppa is though. i would recommend starting at the karmic ubuntu package
[19:56] <Disconnect> smoser: yah i didn't realize the ubuntu branch wasn't listed there, the branch you listed looks to be in pretty good shape
[19:56] <smoser> lp:ubuntu/ec2-init/karmic i think is the right branch name.
[19:56] <nucking> this is what i get when i try "make all"
[19:56] <nucking> http://pastebin.org/79830
[20:13] <kpettit> I wanted to install nagios in 9.10.  Is it better to install the package that's in the ubuntu repository or download and manual install?
[20:17] <tonyyarusso> kpettit: If you want to use the open source version and don't *need* anything mentioned in the changelog between the repo version and upstream, use the repo one.  If you need a new feature, use upstream.  If you want to use the proprietary version, it's not in the repo.
[20:18] <kpettit> sounds good.  I'm wanting a easy upgrade path and don't need any of the new stuff
[20:20] <Edgan> kpettit: Or you can do what I often do. Take the source package, grab the new version, tweak it a bit, and make an updated package.
[20:20] <Edgan> kpettit: It is often not that hard
[20:21] <kpettit> DO you make the package for your own needs, or do you submit it to ubuntu?
[20:21] <kpettit> I've been wanting to learn the package system better,  just haven't go around to learning it yet
[20:21] <Edgan> I generally just do it for my own needs. They are often pretty picky about the details of what they will accept.
[20:21] <Edgan> kpettit: Often times they also get around to it.
[20:21] <Edgan> kpettit: I was just making firefox 3.6 packages that will probably be out shortly.
[20:36] <Reepicheep> pmatulis: I think it is windows server 2003.. but I'm not sure I don't maintain that box
[20:36] <pmatulis> Reepicheep: ok
[20:36] <Reepicheep> I will find out.
[20:37] <Reepicheep> pmatulis: Another guy.. that would know thinks it is 2003 also, but it's not his box either
[20:38] <pmatulis> Reepicheep: ok, i'll put it down as 2003
[21:06] <Elad> if I have the following command in /etc/sudoers -- ALL ALL=NOPASSWD: /root/script.php
[21:06] <Elad> shouldn't that allow anyone to run the script without having to log in as admin
[21:06] <Elad> or root
[21:36] <tonyyarusso> Elad: I believe that is correct.
[21:37] <tonyyarusso> Elad: however, I suspect that /root/script.php does not know how to run.  You may want to replace it with: php /root/script.php
[21:38] <Elad> I have another script that is browsed to, and thenthat script calls /usr/bin/php /root/script.php
[21:38] <Elad> but in the error.log I am seeing that www-data needs to supply a password
[21:38] <Elad> I think I am just going to re-work the way it works
[21:38] <Elad> thanks for the input
[21:42] <tonyyarusso> um, obviously that wouldn't work.  You would need your script to call 'sudo /usr/bin/php /root/script.php' and your sudoers to say 'ALL ALL=NOPASSWD: /usr/bin/php /root/script.php'
[21:51] <nucking> is anybody around that could help me with compiling a driver for my nic please? i've been trying for days to get it compiled and weeks to get my lan to work properly
[21:52] <nucking> whenever i try to "make all" the driver it tells me that there is "no rule to make kernel/bounds.c"
[21:53] <kindofabuzz> is it possible to set a dir to automatically set permissions on a file once it is put there? does that make sense?
[21:55] <kindofabuzz> System:    Host mint Kernel 2.6.31-17-generic i686 (32 bit) Distro Linux Mint 8 Helena - Main Edition
[22:03] <ghostlines> hi all, anyone has experience with powernowd? I can't get it to save my settings
[22:33] <magic_1> hi all
[22:33] <magic_1> hope everyone is having a great evening
[22:33] <magic_1> wondering
[22:34] <magic_1> would would be the best proxy server to use with ubuntu, i know its a bit of an open ended question, quite surprised ubuntu-server does come with a proxy option
[22:37] <dantalizing> magic_1: depends on your requirments ... good old squid works well
[22:38] <magic_1> that was my thinking as well
[22:38] <dantalizing> haproxy and willowng are in the repos, depending on what you need
[22:38] <magic_1> needs to integrate into AD
[22:38] <magic_1> need logging , restriction, grouping
[22:38] <magic_1> etc....