[00:12] smoser: around? [00:12] smoser: can you please confirm https://bugs.edge.launchpad.net/ubuntu/+source/qemu-kvm/+bug/458201 on Lucid? [00:12] Launchpad bug 458201 in qemu-kvm "kernel stacktrace on volume detach in kvm guest" [Low,Confirmed] [00:16] New bug: #455411 in qemu-kvm (main) "Conffiles from kvm are left around on upgrade from Jaunty" [Low,Won't fix] https://launchpad.net/bugs/455411 [00:21] New bug: #530402 in openvpn (main) "openvpn 'The VPN connection failed because the VPN service failed to start' error while connecting using nm-applet" [Undecided,New] https://launchpad.net/bugs/530402 [00:26] New bug: #460542 in qemu-kvm "qemu-img complains about "Unknown option 'size'" when using host_device format" [Low,Triaged] https://launchpad.net/bugs/460542 [00:46] kirkland, i'll try reproduce tomorrow. [00:48] smoser: thanks [01:16] hola [01:16] alguien puede ayudarme en espanol? [01:17] tengo una duda y necesito apoyo [01:20] no ppl can't help me in spanish? [01:25] www, I think you will have more chances of getting help if you take the effort to explain your problem in english [01:25] ok KurtKraut [01:26] i like to shared the internet like that [01:26] this is the server ( i configure to do that ) [01:27] i like this computer conect to the intertnet and shared to a router i have ( sisco wrt54g2 [01:27] to share to all network wlan and lan [01:27] i have bad english sorry [01:27] KurtKraut: you can understand me [01:27] ? [01:29] www, thanks to my portuguese, yes, I can understand what you tried to say. You have a server with Ubuntu installed. This server has two ethernet cards: one plugged to a router that has access to the internet and other ethernet card that is pluged to a LAN. You want to the computers at LAN to access the internet. Right? [01:31] wireless lan and cable lan with the router [01:31] www, can you make a drawing, an image of your topology? [01:32] i think i can't because i don't install the xserver right now [01:33] if y like think... i can explaint you the network [01:34] www, but explaining the network by text is quite difficult. Mainly because you cannot communicate well in english. Could you create a drawing like this? http://www.antamedia.com/manuals/hotspot/topology3.jpg [01:35] www, pudes crear una image como eso? http://www.antamedia.com/manuals/hotspot/topology3.jpg [01:35] in lynx? [01:35] let me see [01:36] how i can copy paste in terminal? [01:38] KurtKraut: sorry im new in linux [01:40] im only need help to shared the internet with other computer in my network with my router [01:43] www. No, usted no entiendes. Quiero que usted crear un dibujo paraque yo y otros aquí entender cómo son las conexiones entre sus computadoras y equipos que tiene en su red. El término técnico para esto es "la topología". [01:43] KurtKraut: let me see [01:44] !english | KurtKraut [01:44] KurtKraut: The #ubuntu, #kubuntu and #xubuntu channels are English only. For a complete list of channels in other languages, please visit http://help.ubuntu.com/community/InternetRelayChat [01:44] !sp [01:44] !spanish | KurtKraut [01:45] KurtKraut: En la mayoría de canales de Ubuntu se habla sólo en inglés. Si busca ayuda en español o charlar entra en el canal #ubuntu-es. Escribe "/join #ubuntu-es" (sin comillas) y dale a enter. [01:45] !spanish | www [01:45] www: En la mayoría de canales de Ubuntu se habla sólo en inglés. Si busca ayuda en español o charlar entra en el canal #ubuntu-es. Escribe "/join #ubuntu-es" (sin comillas) y dale a enter. [01:45] ok [01:45] thnx [01:45] bogeyd6: "!es" works [01:45] yah i forgetted [01:46] just wanting to help people get to the right place for them [01:47] bogeyd6: Understood. And it's tricky to get the right code. [01:48] e.g. !el is one that takes some thinking about for most English speakers. [01:53] how do i install openssh server on my ubuntu server [01:55] `apt-get install openssh-server` ? [01:55] yep done thanks [01:55] ruben23: The parallel command likely works for everything else you want to install as well :) [01:58] persia: sudo apt-get install openssh-server [01:59] zul: I usually consider sudo to be an implementation detail, but yes, and I'll try to correct future statements. [01:59] persia: im just yanking your chain [02:00] * persia should really invest in a good container in which to keep that coiled [02:01] lol [02:02] New bug: #427876 in qemu-kvm (main) "Unable to clean package without having all build-dep" [Wishlist,Fix released] https://launchpad.net/bugs/427876 [02:02] That's not a bug. [03:13] Anyone looking for a full time Linux job in the Dallas area [03:18] hink: my arms aren't that long. [03:18] ha [03:18] twb: The Pacific isn't *that* big :p [03:18] twb: we can provide snorkel/scuba equipment [03:18] lol === FrozenIce is now known as FrozenLava [03:18] I'm not licensed to use SCUBA gear. [03:19] twb: licensed? lol just a tank and some flippers. === FrozenLava is now known as PolarBear [03:19] Maybe out in the free west [03:26] I do have a question though. Is there a way to allow multiple users to SSH into a host and have sudo privileges without knowing the remote host password and without managing more than a single public key? [03:27] Sort of like a proxy or key manager [03:28] You can give them key-based entry coupled with passwordless sudo and/or ssh forced commands. [03:28] IMO it's inevitably wrong for two users to share an SSH keypair, though. [03:29] twb: that's fine, but say i have 5 admins. How do they auth with the same key without having the key on their system. There needs to be a jumbox of some sort. So the key is never stored on their system. [03:29] Why can't they have their own keys, on their own systems? [03:29] This way I can install a key on hundreds of systems and if a sysadmin leaves. I just remove their access to the proxy instead of going through hundreds of authorized_keys files [03:29] Incidentally, ssh-agent is the proxy you're talking about. [03:30] hink: it also means the "proxy" is a SPOF for all access to all hosts [03:30] hink: Just set up a system that manages the authorised keys remotely from one known good set. [03:31] It's not hard to iterate over hosts to remove a single key, though. That would suffice to guard against post-facto malice, but not malice aforethought. [03:31] hink: So you use some server farm management tool to keep the file in sync with a central source. [03:31] persia: you mean like puppet? [03:31] Alternately, if you don't use a farm management tool, add a cron job that pulls, compares, and updates every (minute, hour, day, etc.) as needed. [03:31] twb: puppet is one of the tools that do what I describe, yes. [03:31] Nod. [03:32] persia: thats an idea [03:32] I babysit a lot of single-server SOHOs, so I'm a bit nervous to deploy a puppetmaster here and clients there, because of the relationship that implies. [03:32] But for a rack full of gear, it's fantastic. [03:32] hink: The important bit is that each admin has their *own* key, and each server has the list of keys. Otherwise you have to both patch all the servers *and* redistribute keys every time, which is bound to end in operational failure. [03:34] Incidentally, how can I get opensshd to log WHICH key was used to gain entry? [03:35] twb, persia: The only issue with a single file with authorized keys is that the client may have keys of their own on a single server. [03:36] hink: with appropriate dancing, you can leave the client's part of the authorized_keys file alone. [03:36] i love to dance [03:36] hink: Easy way to work around that is to have different accounts for service provider and client as ssh targets, and use sudo from those accounts for elevated permissions. [03:36] That, too [03:38] hi during fresh install..with ubuntu- do i need to set something on the repo..? [03:38] ruben23: Could you restate the question? [03:38] i cant update and install [03:39] ruben23: insufficient data. [03:39] :-D [03:39] ruben23: You most likely need to sudy [03:39] *sudo [03:39] im at rrot [03:40] Sir, did you powercycle your modem? [03:40] Let's find out what the error message is, rather than guessing, eh? [03:40] twb: that never works [03:40] Lots of folk don't even have "modem"s as such :) [03:40] yeah. [03:40] wait [03:40] persia: ATM is still modulated and demodulated. [03:42] Oops, no it doesn't. [03:42] twb: I have ethernet to the national grid. No modem. It all depends on where you are. [03:43] Granted. It'd be exceptional to get that in .au. [03:43] twb: Plus, folks with managed connections (building-wide, block-wide, etc.) often don't have any direct connection. [03:43] twb: Oh. Yes. In the land of wet strings, modems are more common :) [03:46] There are election promises of FTTH for 90% of the capita, but I'll believe that when I see it. [03:53] you know what would be superb? [03:53] pwnguin: a rocket that shoots kippers. [03:54] a smarter /etc merge on upgrade [03:54] Isn't that why you use git for /etc? [03:54] well, upgrade presents one big patch [03:55] it'd be nice to confirm / deny individual hunk [03:55] s [03:55] and maybe automate changes to spelling fixes in comments [03:55] That's what the "open a shell" option is for. [03:55] No, that's a limitation of etckeeper hooks. [03:55] Assuming you're talking about conffile conflict handling in dpkg [03:56] Ideally, etckeeper would be able to track each change as a potential commit, and let the admin deal with each individually. [03:56] persia: granted. [03:56] persia has my general vision [03:56] If you want to get technical, etckeeper's darcs backend defaults to interactive. [03:56] though it'd be handy to have heuristics to handle comments [03:57] pwnguin: Go implement it. It mostly just needs smarter heuristics and per-file/per-upgrade tracking. [03:57] pwnguin: that would involve etckeeper knowing what format comments take in each kind of file [03:57] twb: thats kinda what heuristics mean [03:57] Probably a small extension to dpkg and a larger extension to etckeeper to use multiple strands (how this is implemented depends on the VCS in use) [03:57] pwnguin: and THAT means you need to know what encoding the file is in. [03:58] hmm. encoding might be tricky because ive got no clue how that works [03:58] twb: No. You just need to know what set of files changed for each upgrade, and let the VCS and the user sort it. [03:58] pwnguin: I'm involved in Darcs' development, and I can tell you that what *looks* like a really trivial issue to the end user turns out to be... nontrivial to handle reliably. [03:59] for the most part /etc comments should start with ; or # [03:59] pwnguin: except when they don't, of course... [03:59] e.g. if you have an XML config file (/etc/gconf.d/gconf.xml.mandatory/%gconf-tree.xml?), or inline comments. [04:00] Why do we care about the internal representation of the files? [04:00] well, you can either use heuristics to improve user prompts or tune them to where false positives are rare. [04:01] New bug: #530468 in vlan (main) "[FFE] Build udeb for vlan" [Undecided,New] https://launchpad.net/bugs/530468 [04:01] A conventional VCS needs to at least care if they're binary or text (split on \n) files. [04:02] Only for actually performing the merge. [04:02] or displaying a diff [04:02] In terms of allowing the admin to sort through each merge separately, it doesn't matter. [04:02] A conventional VCS needs to know at commit time, because it stores commits as diffs. [04:03] Right, but the idea is to *not* commit during the dpkg run, but rather dump the admin into an interactive session to compare stuff after the dpkg run is complete. [04:04] hmm [04:05] here's a different idea [04:05] ive really only made one change to php.ini, to increase from 16 to 32 [04:05] rather than try to merge the new maintainer into the old file [04:05] That's more advanced, and gets into the much more complicated mess twb is implying. [04:06] I think the crux of pwnguin immediate issue is that dpkg is doing a two-way merge between HEADs -- not even a three-way merge between HEADs and ancestor (let alone an n-way commuting merge). [04:07] right, a 3 way merge [04:07] I think there are two issues. 1) etckeeper does a poor job of managing mass changes associated with a large upgrade and 2) dpkg merging is suboptimal [04:08] pwnguin: you can do that by dropping into a shell and comparing .dpkg-new/.dpkg-old against the etckeeper history. [04:08] persia: agreed. [04:09] twb: unfortunately, for the moment all ive been doing is letting etc-keeper collect data [04:09] at some point i should bother learning what it does [04:09] well [04:09] how to use it i mean [04:10] pwnguin: It just stores each state of config changes as a new revision in the VCS. Handy for history, but not very granular. [04:10] persia: right. i just haven't bothered working with it at all. poor writing on my part above [04:11] Our sysadmins are in the habit of using RCS for /etc/foorc [04:11] So I am trying to train them to instead call "etckeeper commit" after changing foorc [04:11] (Instead of ci -u or whatever it is.) [04:11] heh, at work im lucky if anyone knows what RCS is [04:12] * persia is glad not to have used RCS in over a decade [04:12] i have a meeting tomorrow to integrate our RCS system for students with ldap [04:12] woa [04:12] you mean, THE rcs, and not A rcs? [04:12] pwnguin: um, RCS isn't a class of systems. [04:13] Yes, we mean "the" rcs. [04:13] does UFW support configuring port redirects? ie iptables -t nat -I PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 8080 [04:13] ive commonly seen RCS to mean 'revision control system' [04:13] efleming969: if you're prepared to write iptables-restore fragments by hand, it supports anything iptables-restore can do. [04:13] pwnguin: to disambiguate, I use "VCS"> [04:13] pwnguin: "VCS" is typically used as a generic term to avoid semantic collision. [04:14] twb: ah, but not through the command interface? [04:14] we have this legacy rhel 2 system [04:14] efleming969: AFAIK, no, but I don't do ufw much [04:15] with a bunch of php and file copies for revision control [04:15] pwnguin: we have FC1 in our core network :-/ [04:15] tickets.php.ORIG1 [04:16] i haven't decided how to resolve that system [04:16] twb: i'm using server 9.10, where do you usually put your iptable rules (iptable-restore)? [04:16] the braindamage is very deep with it so I'm inclined to drop as much custom stuff in favor of open source apps [04:17] as possible [04:18] efleming969: I don't use non-LTS releases. [04:18] efleming969: but I recommend iptables-persistent. [04:19] ive been called a poor sysadmin for this, but i really hate firewalls [04:19] twb: thanks, i'll look into it. [04:21] New bug: #524447 in qemu-kvm "virsh save is very slow" [Wishlist,Confirmed] https://launchpad.net/bugs/524447 [04:29] random question that's been bugging me for years: i've removed a package without --purge, how do i remove the conf files after the fact? [04:30] pwnguin: purge does that [04:31] i understand that --purge removes the conf files, but if i try to remove a package thats already removed, --purge doesn't happen [04:31] reinstall then purge? [04:31] purge isn't remove [04:32] pwnguin: Just purge the removed package. [04:33] pwnguin: dpkg -P or aptitude purge or apt-get --purge remove or ... [04:33] doesn't work that i can see [04:33] OK. Give me a transscript of a session showing it not working. [04:34] working on it [04:34] * persia is doubtful this is possible. [04:34] Something like `dpkg -l ${PACKAGE}; dpkg -P ${PACKAGE}; dpkg -l ${PACKAGE}` should be sufficient to demonstrate that it works. [04:35] http://paste.ubuntu.com/386749/ [04:35] pwnguin: um, do you read what you paste? [04:35] rc? [04:35] hold on [04:36] same thing with sudo [04:36] Well, try with aptitude purge or dpkg -P then. [04:36] # aptitude install -yR nvi &>/dev/null && aptitude search ~n^nvi$ && aptitude remove -yR nvi &>/dev/null && aptitude search ~n^nvi$ && aptitude -yR purge nvi &>/dev/null && aptitude search ~n^nvi$ | cat [04:36] i nvi - 4.4BSD re-implementation of vi [04:36] c nvi - 4.4BSD re-implementation of vi [04:36] p nvi - 4.4BSD re-implementation of vi [04:36] I *thought* apt-get --purge remove worked, but I haven't tried that one in an immensely long time (perhaps before ever using Ubuntu) [04:36] !paste [04:36] For posting multi-line texts into the channel, please use http://paste.ubuntu.com | To post !screenshots use http://tinyurl.com/imagebin | !pastebinit to paste directly from command line | Make sure you give us the URL for your paste - see also the channel topic. [04:37] twb: did YOU read what i pasted? [04:37] looking for resources on doing x11 forwarding using ssh [04:37] pwnguin: yes. I saw that you failed to run as root. [04:37] apologies for including both the failed and successful attempt [04:37] but the successful version was there :P [04:37] Oh, mea culpa [04:38] Shrug. Use aptitude. [04:38] yea, looks like apt-get doesn't work but dpkg -P did [04:40] persia: thanks for the tips === dendrobates is now known as dendro-afk [07:21] New bug: #530513 in eucalyptus (main) "openssh-client in lucid cannot connect to openssh-server in karmic" [Undecided,New] https://launchpad.net/bugs/530513 [07:56] so my company want me to set up a service for VPS's, and i am going the ubuntu-server as host way. should i be looking into UEC or just going the familiar kvm way?? [08:12] Seems to me UEC is kinda specialized [08:14] I think it depends on what one wants. On-demand instances are fundamentally different than long-running instances. [08:16] I guess I read too much into his use of "VPS" [08:17] twb: One could implement a VPS in UEC, but it's different somehow :) [08:18] then i just go for the way i am used to. :) [08:19] I *still* can't get access to the VT-enabled hosts at work :-/ [08:19] One is running a quickbooks vmware VM on 8.04, and modprobing kvm hard-locks the whole system. The other is running... sigh... rp-pppoe. [08:25] UEC would be lots more exciting if there was a billing data source :) [08:26] i got a problem trying to authenticate from AD to the ubuntu server [08:26] We want to use the ubuntu server as a fpt server and users use their AD accounts to login to it [08:26] Daviey: How do you mean? Is this not just accounting metrics on various types of usage? [08:27] Problem is i cant get the ubuntu server to convert SID>UID [08:27] any idea how to solve this? [08:27] persia: exactly that, but currently extraction would mean a dirty world of scripts, rather than an API. [08:28] Daviey: I think an API would just sit on top of a dirty world of scripts. Maybe you'll write the scripts? [08:35] persia: well libvirt provides an API for the rest of the stack, but is more than a hacky bunch of scripts :) [08:37] Daviey: Ah, yes. Hrm. That makes it more of an integration effort :( [08:40] hi, I am conducting some tests with UEC and trying to get Landscape to recognize the CLC as a Cloud [08:40] Pierreb: FPT? [08:40] but it is giving me a fairly uninformative error: There was an error communicating with the cloud. [08:41] twb: yes its running vsfto [08:41] vsftp [08:41] Oh, FTP. [08:41] Don't do that. [08:41] http://mywiki.wooledge.org/FtpMustDie [08:42] twb: its the solution they want so... [08:43] Pierreb: it's your job to convince them not to want stupid things. [08:43] nah its good and they want it [08:44] Like when you have kids, you put the detergent on the high shelf. It is the same with customers. [08:44] im just tired of this problem and want to solve it [08:44] i dont really care if ftp/sftp/whatever is better [08:44] Pierreb: you should. [08:44] that is not for me to decide [08:51] kirkland: Ah my bad, I didn't think the order would matter and I initially added esd to match the Debian package then removed it [08:56] kirkland: I see you fixed this already, thanks === hyperlinx_ is now known as hyperlinx [09:01] Has anyone seen this message on upgrading 8.04 to 10.04? [09:01] mount: mounting none on /dev failed: No such device [09:01] Followed by: [09:01] udevd[857]: error getting socket: Invaild argument [09:01] Boot then bombs out with a segfault and drops to the initramfs. [09:04] Omahn: this is after upgrading *everything* ? [09:04] twb: Yep, 'do-release-upgrade -d' from 8.04 LTS [09:05] It's repeatable too, I've upgraded this server 3 times over the past 24 hours with the same result each time. [09:05] How can you upgrade more than once? [09:05] twb: It's a VM. [09:05] You mean you rolled back to a snapshot? [09:05] twb: I just take snapshots and roll back as required. [09:05] OK. [09:06] Just going to try again now to see if anything was pushed over night that makes a difference. [09:06] After do-r-u'ing, and before rebooting, confirm that sources.list points to lucid, then aptitude upgrade && aptitude -sy full-upgrade. Does it offer to install/remove anything? [09:06] I'll try that now. [09:06] When I tried that Ubuntu d-r-u crap the other day, it fell over completely. [09:07] So I'm not convinced that it's actually doing its job. [09:07] twb: That's quite worrying. I hope it improves before release :-) [09:07] Anyway, that kind of failure you reported could be caused by booting the wrong kernel after upgrading udev, or possibly by building the initramfs with modules=dep instead of modules=most [09:08] Omahn: if you're going to report a bug, you should include the output of "dpkg --get-selections" both before and after the d-r-u. [09:08] twb: ta. I'll take a copy this time before I start the upgrade [09:09] twb: FYI - Following the upgrade the system is attempting to boot 2.6.24-27-server - that doesn't look right does it... [09:09] Omahn: I'd also like a pastebin of your menu.lst or grub.conf both before and after. [09:10] twb: Looks like grub is failing to install/update. The grub boot menu is only show 8.04.4 entries. [09:10] Omahn: lucid/i386 currently has 2.6.32-14-server [09:10] 8.04 ships .24? Surely that's from -backports [09:10] twb: Any idea if the upgrade process should be installing grub 2 or leaving the old grub? [09:10] Omahn: last time I looked, it installed a chainload into the grub legacy menu [09:11] Omahn: that was on Debian -- Ubuntu might have played silly buggers with it [09:18] twb: Yes 8.04 has 2.6.24 as standard [09:18] Looks like 2.6.32 isn't getting installed at all. [09:18] No sign of it in /boot/ [09:27] I've just installed 8.04 LAMP on a vps - looking good so far - and am now trying to get mail up and running with postfix & dovecot. How do I get postfix to relay all mail for any dovecot user? [09:31] Aison - This is my first time here - is this a dead channel? [09:31] Omahn: you're right. My 2.6.18 scars must be from RHEL or something [09:32] twb: Yep, rhel5 ships with 2.6.18 [09:32] johngilbrough, don't think so ;) I allways idle here [09:32] Omahn: do you have a kernel metapackage installed? You should by default, but maybe an admin removed it. [09:33] twb: I'll check in a moment, just updating vmware-tools. [09:33] twb: What the kernel metapackage names? [09:33] I'm back in 8.04 now. [09:33] aptitude search ~i~smetapackage [09:33] You shouldnt' bother with vmware-tools until you've finalized your kernel. [09:34] My new users can not reach the profiles on the server, just create profiles in the local windows machine. however, the old users doesn't have any problem. somebody know what could be the reason? [09:34] Since any kernel version changes will make you have to reinstall vmware tools anyway. [09:34] iLLiZT: Not really true, we certainly want it running as often as possible to prevent VMware from swapping. [09:34] iLLiZT: even then, I found that vmware-tools was utterly useless for VMs running on a headless vmware-server host. For ESX, maybe it is useful for hgfs or something... [09:35] twb: It prevents swapping when the ESX host comes under memory pressure if the tools are installed. [09:35] twb: I have linux-image-server metapackage installed. [09:35] I can't speak for ESX, only vmware-server. [09:35] I can't speak for vmware-server, only ESX. :-) [09:36] Well, both are sort of right. [09:36] Omahn: if you open the aptitude GUI, and sources.list contains lucid entries, and you've "aptitude update"d lately, it should say that metapackage can be upgraded to depend on a .32 kernel [09:36] How to put this : "sudo ip addr add 10.100.102.233/24 dev eth0" in my /etc/network/interface (or somewhere else?) ? [09:36] Omahn: maybe this is related to the -server variant being removed from some architectures? [09:37] twb: Never used the aptitude GUI :-) I'll add the lucid entries to see what I get [09:37] twb: This box is amd64 [09:37] (As are all our machines) [09:38] Just taking another snapshot, just in case... [09:40] I have installed openldap and I am trying to add this ldif http://thomasdamgaard.dk/paste/P1494.html, using this command: ldapadd -h localhost -f sogo.ldif -x -w ********** -D cn=Manager,dc=sikkerhed,dc=org I get the error: ldap_bind: Invalid credentials (49). If I do not specify password, I get this error: ldap_bind: Server is unwilling to perform (53) additional info: unauthenticated bind (DN with no password) disallowed. My slapd.conf is he [09:40] This is what is written in the syslog, while trying to add sogo.ldiff using password: http://thomasdamgaard.dk/paste/P1495.html [09:41] Aison - when you responded, that line case across as red, making it stand out. How did you do that? [09:41] hi, My new users can not reach the profiles on the server, just create profiles in the local windows machine. however, the old users doesn't have any problem. somebody know what could be the reason? [09:42] johngilbrough, probably because it started with your username? [09:42] twb: Aptitude is reporting that linux-image-server (2.6.24.27.29 => 2.6.32.14.15) will be done. I'm going to try the upgrade again and check over the logs. [09:42] tdn - makes sense - does one need to type in the other person's user name each time? [09:43] or is there some double-click trick? [09:43] johngilbrough, if the line contains your name, this line is marked red in your irc client [09:43] johngilbrough, check your irc client's doc. [09:44] johngilbrough: I don't even type the first letter of someone's name. I just hit TAB and it completes most-recently-spake order. If I REALLY need to disambiguate, I might type just the first letter. [09:45] johngilbrough: sticking "foo:" in front of a message is a convention to indicate you're speaking to a specific person, rather than just declaiming. [09:45] twb, there we go. Alright. [10:10] twb: I suspect this is part of the problem: http://paste.ubuntu.com/386882/ [10:10] twb: The upgrade carries on though, I would have expected it to abort at that point. [10:10] Omahn: that would assume the upgrade code wasn't written by idiots [10:10] * twb rants [10:11] Note that I'm AT ALL annoyed by live-helper doing the same thing at me all day today. [10:11] :-) 613 open bugs on update-manager. ouch. [10:14] 'Upgrade complete' - The upgrade is completed but there were errors during the upgrade process. [10:14] Seems bit mild. Something more along the lines of, 'DONT REBOOT!! YOUR SYSTEM IS B0RKED' might be better. :-) [10:15] the ssh host-key has changed on one of my servers. I get the message that i need to add this key to my .ssh/known_hosts file. I don't understand the syntax though. i know where to add the public key but that is it [10:17] can someone help me out with this? [10:19] Omahn: in this case it looks like the kernel package is at fault, not upgrade-mangler [10:19] a_ok: you need to delete the referenced line from (probably) ~/.ssh/known_hosts [10:19] a_ok: that's assuming that the host key change is legitimate -- if not, someone might be trying to trick you === larsemil is now known as skeletor__ === skeletor__ is now known as larsemil [10:20] twb: no its legid checked fingerprint. I just found out how to find hashed hosts [10:30] twb: Agreed, I'm just pruning some old kernels just to make sure disk space isn't an issue then I'll be repeating the upgrade. [10:58] Can anybody improve this one liner to remove all but current running kernel? [10:58] dpkg --get-selections | grep linux-image-2.6 | grep -v `uname -r` | cut -f 1 | xargs apt-get remove [11:31] I'd never automate that [11:32] Maybe xargs aptitude --schedule-only purge, and then later manually call "aptitude install --visual-preview" to action it. [11:33] Omahn: how about this: aptitude --schedule-only purge ~i~nlinux-image && aptitude --schedule-only keep ~i~n`uname -r` && aptitude --visual-preview install [11:36] I'm not familiar with aptitude unfortunately. I should really look into it :-) [11:36] http://luv.asn.au/overheads/aptitude/aptitude-intro.html [11:41] * persia idly notes that not all ubuntu upgrade paths are aggressively tested with aptitude, and aptitude fans may want to test against new releases and file bugs where there are resolver differences [11:43] persia: meaning that upgrade-mangler uses apt-get internally? [11:43] I'll be sticking with do-release-upgrade for major upgrades [11:43] twb: Yep. [11:44] twb: No, but apt-python, which uses libept (if I remember correctly), which is also used by apt-get. [11:44] (or maybe python-apt) [11:44] * persia hasn't looked in a while [11:44] Wasn't libept introduced by aptitude? [11:45] I mean, I'm all for *trying* to use d-r-u, I just haven't seen it work yet. [11:46] twb: Hrm. Seems to be python-apt -> libapt-* [11:46] Oh, lib*E*pt was a typo? [11:46] Whatever, it doesn't matter. [11:46] twb: No, a thinko :) [11:47] But aptitude doesn't appear to use libept either. [11:47] persia: it does on Debian [11:48] And also on Ubuntu. I just got confused by line breaks :/ [11:48] * persia stops trying [11:48] $ aptitude -F%p search '?depends(libept0)' ==> aptitude aptitude-gtk debtags debtags-edit ept-cache goplay libept-dev packagesearch [11:54] * Omahn gives in a files bug #530632 [11:54] Launchpad bug 530632 in initramfs-tools "Upgrading from 8.04 to 10.04 fails on update-initramfs" [Undecided,New] https://launchpad.net/bugs/530632 === hyperlinx_ is now known as hyperlinx === hyperlinx_ is now known as hyperlinx [12:59] is there a guide somewhere specific for using ssl certificates with eucalyptus in ubuntu? [13:04] ahasenack: ubuntu-serverguide? [13:04] (Just guessing.) [13:41] morning [13:43] morning [13:52] ttx: php 5.3 is just waiting for a binary new fyi [13:55] zul: kewl [13:58] ill have to rebuild alot of the modules for php 5.3 in universe though [13:58] Hello, is there a directory service package in Ubuntu ? [14:02] New bug: #530687 in postfix (main) "updates not installing properly" [Undecided,New] https://launchpad.net/bugs/530687 [14:03] AnAnt: openldap is what you are looking for [14:05] henkjan: I was told that there is something based on LDAP (probably that includes openldap) that is easier to configure [14:05] but I dunno what it is called [14:05] ttx: for that samba gecos "bug" it should be fixed in git and i think it might be fixed in 3.4.6 which is in progress [14:06] zul: that's one for you then :) [14:12] anyways, where I can get help about configuring openldap for ubuntu ? [14:12] ah, found it [14:12] thanks [14:21] lool: sure thing, no problem ;-) [14:23] ttx were you going to sponsor bug 475354/bug 519870 and bug 520734 ? [14:24] Launchpad bug 475354 in eucalyptus "Hostname not set correctly on UEC cloud due to IP address in local-hostname manifest data (DNS)" [Undecided,Fix committed] https://launchpad.net/bugs/475354 [14:24] smoser: Bug 519870 on http://launchpad.net/bugs/519870 is private [14:24] Launchpad bug 520734 in ec2-init "error with ec2-init pkg when running apt-get upgrade" [Medium,Fix released] https://launchpad.net/bugs/520734 [14:26] smoser: it's done already === hyperlinx_ is now known as hyperlinx [14:27] (the karmic-proposed SRU) [14:27] ah. i see. thanks. [14:27] so why did it move from in progress to triaged? [14:29] smoser: the SRU team uses status in a weird way [14:30] smoser: i never completely understood it, but in most cases they don't want you near the fixcommitted/fixreleased states [14:30] since they use it in their workflow [14:36] New bug: #517300 in likewise-open (main) "[armel] likewise-open needs porting to ARM" [High,In progress] https://launchpad.net/bugs/517300 === robbiew_ is now known as robbiew [14:41] New bug: #530714 in openssh (main) "Can't sftp to directories with brackets in the name." [Undecided,New] https://launchpad.net/bugs/530714 [14:45] Hello, I have several Ubuntu machines on the same network. The issue is when there are Ubuntu updates, they get downloaded several times (once for each machine), hence wasting the internet bandwidth, is there a way to make the machines get the updates from one of them ? [14:46] AnAnt: The formal way is to run a local (potentially partial) mirror, or a caching proxy for the network. [14:46] AnAnt: The desktopy way is http://castrojo.wordpress.com/2010/02/28/zeroconfing-squid-deb-proxy/ [14:47] persia: that desktopy seems sort of fast [14:47] But kinda not what you want to do if you have an SLA to meet. [14:47] SLA ? [14:48] I don't understand what you mean by this ? [14:48] what Service Level Agreement ? [14:48] are you talking about legal issues ? [14:51] Usually just tort if legal. [14:52] To put it another way: if you've 10 systems, jcastro's hints can help. If you're managing 300, it's the wrong way to solve the problem. [14:52] Or: if you have a network that can have a dedicated mirror for a number of clients that are expected to update on some schedule and you'd like some control over the process, you want to manage a local archive or a local mirror (depending). [14:53] ah, ok [14:53] If you just have your peronal machines, or maybe some from people who don't mind if it's not quite perfect, then you can use avahi. [14:53] http://packages.ubuntu.com/lucid/ubumirror [14:53] nah, we're still small :) [14:53] ^^^ bunch of mirror scripts [14:53] jcastro: Error: "^^" is not a valid command. [14:53] * persia likes ubumirror [14:54] me too [14:54] or you could install *cough* landscape *cough* [14:55] zul: hmmm, you need Cataflam ? [14:55] zul: That's even heavier weight :) [15:00] so does that squid-deb-proxy serve users from /var/cache/apt/archives/ or what ? [15:06] New bug: #530734 in krb5 (main) "ubuntu karmic update failed" [Undecided,New] https://launchpad.net/bugs/530734 [15:07] kirkland: anything you want me to check today? I have 50 minutes before a team meeting lfet [15:21] What is a command line way, without mounting, that I can copy a file from the linux machine to another linux machines network share? [15:22] bogeyd6: scp is an option [15:29] mathiaz, ty [15:31] how can an LDAP user change his password ? [15:32] New bug: #530752 in mysql-dfsg-5.1 (main) "Package mysql test suite" [Undecided,New] https://launchpad.net/bugs/530752 [15:41] New bug: #522514 in samba (main) "package samba-common 2:3.4.0-3ubuntu5.4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 128" [Low,Incomplete] https://launchpad.net/bugs/522514 [15:42] New bug: #530753 in eucalyptus (main) "Error trying to install images from store" [Undecided,New] https://launchpad.net/bugs/530753 === dendro-afk is now known as dendrobates [15:56] mathiaz: ping are you going to package the mysql testsuite? [16:17] smoser: ping [16:19] zul: well - If you could take a look at it, it would be great [16:19] here [16:19] zul: something similar to the puppet-testsuite package [16:19] mathiaz, what state is DC UEC in [16:19] mathiaz: sure lemme work through the php5 transition stuff im working on [16:19] smoser: I'm using it to add support for multi-network install [16:19] smoser: whats your ec2 php api package called? [16:19] zul: cloudfusion [16:20] cloudfusion [16:20] yeah [16:20] mathiaz: thanks [16:20] smoser: do you need a UEC operating now? [16:20] no, it woudl be nice if it were operating at some point :) [16:21] smoser: well - a UEC setup can be spanned in half an hour [16:21] smoser: so if you really need it now you can take the rig for a few hours [16:22] nah. just please either ping me when you leave it up, or ping me when your done. [16:22] ideally done and in an operable state :) [16:23] smoser: ok [16:23] Has anyone else come across bug #530632 when upgrading 8.04 to 10.04? [16:23] Launchpad bug 530632 in initramfs-tools "Upgrading from 8.04 to 10.04 fails on update-initramfs" [Undecided,New] https://launchpad.net/bugs/530632 === dendrobates is now known as dendro-afk [16:41] cjwatson: hi! I spent some time yesterday to setup vlan in the installer [16:42] cjwatson: the first issue I ran into was the that vlan related kernel modules were not available in the installer [16:42] cjwatson: bug 530459 [16:42] Launchpad bug 530459 in linux "Include 8021q module in the installer for VLAN support" [Undecided,New] https://launchpad.net/bugs/530459 [16:42] cjwatson: what's required to get a kernel module to be included on the installer medias? [16:55] mathiaz: talk to the kernel team, debian.master/d-i/ in the kernel tree controls a lot of this stuff [16:55] cjwatson: ok - thanks. [16:55] cjwatson: the next issue I ran into was creating a udeb - bug 530468 [16:55] Launchpad bug 530468 in vlan "[FFE] Build udeb for vlan" [Undecided,New] https://launchpad.net/bugs/530468 [16:56] cjwatson: IIUC that would help in being able to install vlan-udeb in the installer [16:56] mathiaz: yes, it would be easier. with vlan-udeb in main, you could use anna/choose_modules=vlan-udeb rather than an early_command [16:57] cjwatson: basically the following script run as an early command makes vlan working in the installer: http://paste.ubuntu.com/387099/ [16:57] cjwatson: the two bugs mentioned above would help getting rid of line 1 to 12 [16:57] mathiaz: any reason you didn't add "XB-Installer-Menu-Item: 99999" so that it's listed in anna? [16:58] cjwatson: no reason - I was just trying to get something working [16:58] cjwatson: to have a proof of concept [16:58] cjwatson: I'll add XB-Installer-Menu-Item: 99999 to the vlan-udeb [16:58] mathiaz: your udeb looks OK aside from that, though you might want to depend on whatever-modules (depending on where the kernel modules go) [16:59] I don't know offhand which udeb would be appropriate for that [16:59] cjwatson: now the question is how can I get rid of the networking commands (line 14 - 25 in http://paste.ubuntu.com/387099/)? [16:59] (why is this coming up now after feature freeze? :-( ) [17:00] you would probably have to write an actual UI, give vlan-udeb a postinst, insert it into the menu in a sensible place, etc. [17:00] I would recommend doing that for lucid+1 not lucid [17:01] cjwatson: sure - that's part of automating the installation of UEC on multi networks [17:01] cjwatson: I'm not aiming at having full support of vlan in the installer [17:01] perhaps it would be appropriate to do it in eucalyptus-udeb then [17:01] cjwatson: just enough so that I can automated the installation [17:01] cjwatson: would it be possible to rerun the network configuration component in the early command? [17:01] at this point, I don't think I understand the requirements in enough generality to make good recommendations; if it's specifically for UEC, though, eucalyptus-udeb seems like a more appropriate place than vlan-udeb [17:02] no, it's not [17:02] sorry, that's seriously complicated weird stuff you're getting into if you try [17:02] cjwatson: yeah - I know [17:02] Speaking as a enterprise ubuntu user, vlan support in the installer would be very useful. [17:03] Omahn: sure, but a month and a bit before release is not the time to try and design it in general [17:03] We currently have to fiddle with switch settings, do the preseeded build and then change the switch settings back. [17:03] cjwatson: Hell no :-) Support in Lucid+1 would be good though. [17:04] perhaps somebody could put it on the UDS agenda, where we can design it properly [17:04] I would be more than happy to help testing. [17:04] cjwatson: right - so it seems that what's reasonable for lucid is to get the vlan kernel modules and the vlan udeb? [17:04] mathiaz: I'm not sure [17:04] I don't have the cycles to think about this beyond the recommendations I've made so far [17:05] cjwatson: once both are available I can tear up and down the network configuration in the early command script [17:05] I can make sort of off-the-cuff "how do I do this" comments [17:05] mathiaz: Wouldn't it be better to go in 10.04.1 ? [17:05] Omahn: no new features in point releases. [17:05] Omahn: nope - it's a new feature [17:05] but I can't do full-scale design [17:05] We've had new features in 8.04.x releases. [17:05] Omahn: I'd veto this sort of installer change. sorry [17:05] Like failed RAID boot support. [17:05] cjwatson: Ok :-) [17:05] that was a bug fix for a previous attempt to make it work [17:06] Fair point [17:06] actually maybe it was slightly more than that - but it was much simpler than this, anyway [17:08] mathiaz: having just the kernel modules and vconfig should give you enough flexibility to do ad-hoc things elsewhere, I imagine, yes [17:08] Which channel would it be best to ask about my failing 8.04 -> 10.04 upgrades failing? [17:08] cjwatson: yes - that's what I was thinking for lucid [17:09] cjwatson: bug 530459 should cover the kernel modules [17:09] Launchpad bug 530459 in linux "[FFE] Include 8021q module in the installer for VLAN support" [Undecided,New] https://launchpad.net/bugs/530459 [17:09] cjwatson: and bug 530468 should cover config [17:09] Launchpad bug 530468 in vlan "[FFE] Build udeb for vlan" [Undecided,New] https://launchpad.net/bugs/530468 [17:10] cjwatson: that's enough to bootstrap vconfig with a custom early_command script [17:10] cjwatson: integration in the installer would be discussed at the next UDS [17:11] mathiaz: ok [17:11] New bug: #530814 in postfix (main) "package postfix 2.6.5-3 failed to install/upgrade: subprocess installed post-installation script returned error exit status 75" [Undecided,New] https://launchpad.net/bugs/530814 [17:16] New bug: #530816 in euca2ools (main) "euca-run-instances help shows --keypair, should be --key" [Undecided,New] https://launchpad.net/bugs/530816 [17:27] <\sh> anyone with a clue how to say vmbuilder to use VDE instead of bridged networks? or how can someone tweak it to do use it? [17:28] <\sh> oh man...my syntax style is bad [17:40] why does nano open when I do visudo? [17:45] New bug: #530832 in vsftpd (main) "vsftpd 2.2.2-3ubuntu4 fails to upgrade because no ftp group" [Undecided,New] https://launchpad.net/bugs/530832 [18:05] oops, I did a remove --purge for a too new kernel... and now my menu.lst is gone [18:09] MatBoy: Install a replacement kernel before you reboot. [18:09] Or if it's too late, boot off something else, chroot into the target filesystem, and install a kernel, then reboot. === dendro-afk is now known as dendrobates === MagicFab33 is now known as MagicFab === dendrobates is now known as dendro-afk [19:27] New bug: #530877 in php5 (main) "E:Unable to correct problems, you have held broken packages." [Undecided,New] https://launchpad.net/bugs/530877 [19:47] New bug: #527275 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.41-3ubuntu7 failed to install/upgrade: subprocess installed post-installation script killed by signal (Interrupt)" [Low,Incomplete] https://launchpad.net/bugs/527275 [19:49] apw: hi! [19:50] apw: how should I do to create a kernel-module udeb to for 8021q (vlan) modules? [19:50] cjwatson: the $logfile thing ... I'm not understanding that [19:50] apw: see bug 530459 [19:50] Launchpad bug 530459 in linux "[FFE] Include 8021q module in the installer for VLAN support" [Undecided,New] https://launchpad.net/bugs/530459 [19:51] apw: add a stanza to debian.master/d-i/package-list and create a file under debian.master/d-i/modules/ ? [20:08] How can i remove a script after running it without running a different command [20:15] hink: There's lots of ways, from simple to complex. The name of the script is $0 which can help. [20:15] (note that this presumes POSIX shell scripts : other scripting languages have other conventions) [20:16] thanks persla.... i just got schooled in the ##linux channel. Apparently linux loads the script into mem before running so I can delete it from the script itself [20:18] I'd recommend adjusting your use case so you don't need to do that. Given other context, probably something like running the script via ssh remotely from a known clean copy. [20:27] mathiaz, about right yes [20:27] apw: yeah - I've got something working [20:27] ummm...cloudfront never made it in? [20:28] apw: I'm just struggling with git to get this properly patched [20:28] mathiaz, ok ... get it to us soon, kernel freeze is imminent, and we close the tree before to get it ready in time [20:29] hi.. need little help... with connectiong my usb WD BOOK to ubuntu server... could anyone tell me how to exactly do that? [20:30] event there are some data on USB? [20:30] *even [20:37] persia: its a setup script that sets up a newly deployed VM from a template [20:37] New bug: #475183 in bind9 (main) "host crashed with signal 7 in dst_lib_init()" [Medium,Incomplete] https://launchpad.net/bugs/475183 [20:38] some advice? [20:46] New bug: #530945 in keepalived (main) "Please backport keepalived 1.1.17-2 to Karmic from Lucid" [Low,In progress] https://launchpad.net/bugs/530945 [20:50] Hawkey: In shell, I would "tail -f /var/log/syslog", and watch for what device the disk gets. [20:50] Hawkey: Then .. [20:51] If I see it gets device /dev/sdd (and lists partitions sdd1 say), I ... [20:51] kirkland: which bit are you having trouble with? [20:51] Hi. I just bought a domain and now I want people to be able to go to www.mydomain.com and have it reach my computer. I have an account on afraid.org, and my IP blocks port 80. Whats the best way to go about getting my website available to everyone outside [20:51] New bug: #530949 in samba (main) "mount.cifs yields garbled directory listing where smbclient works" [Undecided,New] https://launchpad.net/bugs/530949 [20:52] Hawkey: "mkdir /mnt/tmp" (say) and "mount /dev/sdd1 /mnt/tmp" and access files via /mnt/tmp [20:52] Hawkey: If the disk is formatted NTFS (say), you will have to mount it using the "-t ntfs-3g" option etc. [20:54] hmm looks like some error [20:54] bcurtiswx: you need to set your domain up such that it points to the IP address (etc.) of the host your site resides on. [20:54] sherr: done that (with afirad.org) [20:55] afraid.org* === luis__lopez is now known as luis_lopez [20:56] you have to have a machine with port 80 accessible somewhere - there isn't much way around that [20:56] sherr: since I can't use port 80 (incoming) due to my IP, what the most common way done to circumvent that? [20:56] Put the site [20:56] bcurtiswx: buy a url forwarding service [20:56] http://www.dyndns.com/services/webredirect/ is one [20:56] bcurtiswx: or put th site on port 8080 (say) [20:56] (you can use an explicit port in the url, but nobody wants to do that) [20:57] When you chroot into a virtual machine from the host and run something there, what user owns the process? [20:57] bcurtiswx: get a different ISP :-) [20:57] the standard workaround is simply to host your site somewhere else [20:57] sherr: it's either verizon (expensive) vs. Cox.net (less espensive) here and i have no other options [20:57] cjwatson: yeah, i know. I'd just rather not spend the $$ [20:58] genii: chroot requires root, so any process started by it starts out as root. but you don't normally chroot into a vm ... [20:58] sherr hmm Kernel logging (proc) stopped ... i don't like that [20:59] bcurtiswx: website hosting alone is often cheaper than full isp access. I don't know your region though [21:00] cjwatson, pmatulis, sherr: ty [21:01] sherr seems something is very very wrong... === dendro-afk is now known as dendrobates [21:07] bcurtiswx: i had to do the same for a few years when i was with videotron.ca. dyndns.org is pretty cheap ($30/yr IIRC) [21:15] Hawkey: if there's an error somewhere, paste in pastebin and let's have a look [21:16] looks like some kernel error [21:18] sherr when i type tail -f /var/log/syslog [21:18] i get few lines, pop3d, postfix, cron.. [21:18] and on the last kernel: Kernel logging (proc) stopped [21:18] and everything is hanging .. waiting for something [21:21] Hawkey: but your shell is working - and the system might be working : http://paste.ubuntu.com/ [21:21] yeah, but what could i past? [21:21] that syslog has hmm 10 lines [21:23] Hawkey: well, I don't know. Check logs - dmesg, syslog.* etc. Event history. What can I say? [21:24] mmm interface setting is wrong [21:24] but [21:24] seems i cannot save file [21:35] erichammond, ping [21:35] so it looks like you've at least considered putting bucket name in 'name' [21:35] 063491364108/alestic/ubuntu-9.04-karmic-scale8x-i386-20100220e [21:41] New bug: #527264 in postfix (main) "package postfix 2.6.5-3 failed to install/upgrade: " [Medium,Incomplete] https://launchpad.net/bugs/527264 [21:46] I hate all those "postfix won't upgrade" bugs [21:56] New bug: #528936 in postfix (main) "package postfix 2.6.5-3 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 (dup-of: 523896)" [Undecided,New] https://launchpad.net/bugs/528936 [21:59] hey, what is the recommended FTPD for quick, simple and easy setup? [21:59] I have a basic Xubuntu 9.10 server. I want to achieve case insensitive urls. I have mod_rewrite installed and working with a .htaccess file inside the /www folder. But I do not know how to configure the correct apache file(s). Can someone suggest a good step-by-step tutorial? [22:01] sherr my linux FS seems to be read only.. cant do anything [22:01] persia: yeah, was allsolved no issues :) thanks [22:06] Hawkey: what makes you say that? wat are you doing? [22:06] New bug: #529004 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5 upgrade fails - cannot stop mysqld" [Medium,Incomplete] https://launchpad.net/bugs/529004 [22:08] sherr i was testing isp config tool.. seems that my problem is cos of that [22:09] hmmm [22:09] looks like i screwed it up [22:12] Hawkey: you are too vague for me to offer any advice or help. If you can be more specific, maybe I can offer advice. [22:13] i would like to [22:13] but don't know where to start [22:13] seems partition is mounted for read only [22:14] don't know how to switch it to rw [22:15] Hawkey: what partition? what directory/folder are you trying to write to? [22:16] to /dev/sda1 [22:16] primary disk [22:17] Mounted on? What is output of "mount" (pastebin) [22:19] mountpoint is / but i think about wrong options... errors=remount-ro [22:19] but no i cant change it [22:21] New bug: #520277 in puppet (main) "no provider options in package type" [Wishlist,Incomplete] https://launchpad.net/bugs/520277 [22:23] Hawkey: Output of mount? I'm not sure I can help, sorry. Maybe a reboot - but if it is a failing disk, or disk/fs problems, I'd be cautious in case it fails to come back up. But I have no idea. Sorry. [22:30] sherr ok.. lets try it different... is there a livecd which i could run read data from hdd but live cd could handle flash drive connection? [22:32] Hawkey: I hear Ubuntu do LiveCD's. Try their web site. === erichammond1 is now known as erichammond === erichammond1 is now known as erichammond [23:22] hmm some command to ignore fstab setting, i mean hot to ignore it's options .. need to remount drivi but without fstab specifics, is that possible? [23:32] anyway how to ignore fstab when using mount command? [23:32] i've wrong options there, but cant change them cos system is read-only === rberger_ is now known as rberger === robbiew is now known as robbiew_