/srv/irclogs.ubuntu.com/2010/06/01/#ubuntu-server.txt

deslectorjulianc, ok, thanks00:00
cloakablednsmasq is great :)00:11
gop_how do I mount a freenas smb share, and keep it mounted even after reboot00:19
deslectorgop_, hmm.. /etc/fstab ?00:30
gop_thanks00:47
gop_deslector what do you mean /etc/fstab00:51
deslectorgop_, sorry, you should edit /etc/fstab so that the share gets mounted automatically at startup00:51
deslectorgop_, https://help.ubuntu.com/community/Fstab00:52
gop_k00:52
gop_thaknks00:52
gop_smbfs00:52
=== bogeyd6- is now known as bogeyd6
=== bogeyd6 is now known as Guest9330
=== Guest9330 is now known as bogeyd6-
edwin-svhello, how can i repair a bad superblock error in a ubuntu dapper server (sorry, i know that it's a too old release, but i am new in this place :p )02:08
MTecknologyAny of you ever try to put centos on top of kvm? It mostly works but the networking part is being a massive pita...02:09
edwin-svthe HD has errors and after pass a fsck -p command, do not recognize the filesystem and grub presents an error 17 :(02:10
MTecknologyedwin-sv: http://docs.sun.com/app/docs/doc/805-7228/6j6q7uf0i?a=view02:10
MTecknologyedwin-sv: seems to be what you're looking for02:10
edwin-svthanx MTecknology, i will try :)02:10
MTecknologyif grub is complaining - You may need to reinstall grub after fixing this02:10
MTecknologyalso... get a new drive - drive errors are usually a bad omen02:11
edwin-svok, i will try that too...02:11
MTecknology!grub02:11
ubottugrub is the default boot manager for Ubuntu releases before Karmic (9.10). Lost GRUB after installing Windows? See https://help.ubuntu.com/community/RestoreGrub - GRUB how-tos: https://help.ubuntu.com/community/GrubHowto - See !grub2 for Karmic onwards.02:11
MTecknologycheck out the restore link02:11
edwin-svMTecknology: the command newfs isn't present in ubuntu :(  (Display the superblock values with the newfs -N command)02:14
edwin-svwhat can i use instead of newfs?02:14
MTecknologylemme research google :P02:15
MTecknologyedwin-sv: what's the exact error02:17
MTecknologyhttp://www.cyberciti.biz/faq/recover-bad-superblock-from-corrupted-partition/02:18
edwin-svi try to mount the /dev/sda2 where the system is but it says that i must specify the type of filesystem and when i do that says that there is a bad superblock error02:21
edwin-sva bad superblock on /dev/sda202:21
edwin-svMTecknology: when i run dumpe2fs /dev/sda2 says "couldnt find valid filesystem superblock" and it suposed says the number of my superblock /dev/sda202:31
edwin-svi didn't get the output (or similar) like in the example :s02:32
MTecknologyedwin-sv: replace the drive and restore from backup would probly make the most sense..02:33
MTecknologyi'm not much of a recovery expert - best i could say is spinrite might save you long enough to recover data02:34
edwin-svthe last employee that was watching linux server didn't backup of this drive, as i mentioned early i am new here and i found everything as is :S :$02:35
MTecknologyspinrite is probably your best save - but it takes a while02:36
=== MTeck is now known as MTecknology
MTecknologyIf any of you are smart with kvm - I could really really use some help03:15
failoverMy fastcgi with php on lucid, crash after a few hours of use.03:35
twbfailover: did you check the logs?03:36
failoveri 'm not sure at what log file should i look...03:37
twbEverything in /var/log03:38
twbSort by time to see what logs have been updated recently.03:38
twbAnd try looking for keywords like "php" or "apache" or whatever.03:38
skriteis there a way, if i have a server running a few different services, that i can give resource priority to one service? i run a web, mail, and ivr server. when the system is busy, the ivr gets jittery.03:41
failoverok,  twb, i will check the logs03:42
twbskrite: you probably want nice(1) for CPU and ionice(1) for I/O.03:43
twbThese can and should be assigned indirectly via start-stop-daemon(8) where the init script uses that layer.03:43
skritetwb, thanks03:44
skriteif nice is not declared for a service, is there a nice level that Linux assumes for it?03:44
twbIIRC the default niceness is 0 or 1003:45
twbThe manpage should say so03:45
skriteof course, thanks03:45
failoverNothing relevant on logs. My fcgi crash on lucid, but when i was using karmic the same happen.03:51
uvirtbotNew bug: #588104 in bacula (main) "package bacula-director-mysql 5.0.1-1ubuntu1 failed to install/upgrade: ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2)" [Undecided,New] https://launchpad.net/bugs/58810404:02
tucemiuxis this a good line to have in your /etc/passwd: nobody:x:65534:65534:nobody:/nonexistent:/bin/s05:02
twbThat's normal.05:03
twbWhy d you ask?05:03
twbtucemiux: why do you ask?05:03
tucemiuxtwb, because I'm looking at some tips on how to secure my ubuntu server and theyre talkinb about making sure user nobody doesnt have a shell05:03
twbAnd why do they say to do that?05:04
tucemiuxtwb, because user nobody is not supposed to have a shell and I am wondering if that's true and if I should remove the shell from user nobody on my server05:05
twbWhy do you think nobody shouldn't have a shell?05:05
twbOh, sorry, I miread you05:05
tucemiuxyeah thats ok05:06
twbI think you could set it to /bin/false and nothing would break05:06
twbBut I wouldn't bother -- there are doubtless far more important things to lock down05:06
tucemiuxtwb, im thinking on setting it to /dev/null - would that break anything?05:07
twbLike: don't run PHP applications, don't allow password-based SSH access, etc.05:07
twbtucemiux: I believe /bin/false is the convention05:07
tucemiuxtwb, but what if a hacker creates a /bin/false? I would rather use /dev/null but I dont know if that'll break anything, i just installed ubuntu server and am learning along the way, my ssh and web server are up and running flawlessly05:08
tucemiuxI am also very worried about this line: Successful su for www-data by root05:08
tucemiuxtwb, i guess Successful su for ww-data by root is nothing to worry about?05:13
twbThat sounds like you started apache and it relinquished its root privileges05:15
tucemiuxI'm using lighthtpd by the way, lighthttpd uses www-var05:18
tucemiuxtwb, what's the password for root?  Since it looks like there is a root user on my server: root:x:0:0:root:/root:/bin/bash05:20
twbroot has no password.05:20
tucemiuxdawn05:21
tucemiuxgood thing i disabled passwordless ssh logins but unfortunate for me, I didnt disable root login unti an hour ago and restarted my ssh server05:22
SpamapStucemiux: you should have a user capable of sudoing to root though.05:35
tucemiuxSpamapS,  yes i can sudo to root, im just wondering why there is a root user and what is the password, thats all05:36
SpamapStucemiux: oh there's usually not a root password... its designed to reduce your risk and teach you not to do things as root mostly. ;)05:37
tucemiuxSpamapS, basically, if an unauthorized user is able to gain access to my machine, would they be able to grant themselves root access, im new at this, if you know of any resources thatll help me explain that stuff i will greatly appreciate it05:37
SpamapStucemiux: you'd have to really screw things up to make that possible.05:38
tucemiuxSpamapS, i actually did, the good thing is that i didnt allow empty passwords for ssh but I did allow root logins :-(  At least I changed the default port05:41
twbpam shouldn't allow empty passwords from insecure ttys in any case05:42
twbBut root's password isn't the null (empty) password -- it DOESN'T HAVE a password.05:42
tucemiuxtwb, thanks for the clarification, i can sleep well now -- im going to research about denyhosts and keep reading a tutorial i found to secure my ubuntu server05:43
twbdenyhosts blows.05:43
twbIMO it's better for netfilter rules to recognize and tarpit brute-force attacks, than to periodically scan log files for attackers and append to an ipset table.05:44
tucemiuxtwb, netfilet rules?  Is it like ip tables?05:49
twbiptables is the user interface to netfilter.05:50
SpamapSI like denyhosts.05:51
SpamapSI believe it can be changed to execute any command you want to update the local deny listing05:51
SpamapShosts.deny is just its default05:51
SpamapSI do wonder if this starts to hurt performance at some point...05:52
SpamapS$ wc -l /etc/hosts.deny05:52
SpamapS44289 /etc/hosts.deny05:52
twbWell, Wietse's tcpwrappers will complete more of the handshake before hanging up05:53
twbCompared to an ipset(8) IP hash, I mean.05:54
tucemiuxtwb, can i use netfilter through ssh?  My server is headless05:54
twbtucemiux: sure.05:54
tucemiuxtwb, im already using fail2ban,  should I use netfilter as well?06:06
twbThey do the same job.06:07
twbIt's just a matter of having a hard-coded netfilter rule, vs. having an active log-scanner that edits netfilter (or ipset) rules.06:08
tucemiuxtwb, thanks I guess I'll stay with fail2ban then06:08
tucemiuxtwb, do you have any recommendations or any resources I can read or for someone who plans on using ubuntu server to have his own ssh, web, and maybe e-mail server @ home?06:09
twbthe ubuntu server guide06:12
twbHosting your own mail server is almost certainly not worth the effort06:12
twbUnless you're doing it for pedagogical reasons, of course...06:12
tucemiuxtwb, hosting your own e-mail server is not worth the effort? what makes you say that?06:13
twbBecause it's a major pain in the arse.06:13
tucemiuxand that's a big mighty word you used back there you got me lost in the middle somewhere :-(06:13
twbI'm sure you can find a dictionary if you care enough06:14
tucemiuxtwb, so if I create my own domain as in, mineown.com,  how am I supposed to get e-mail addresses in the form of someone@mineown.com and where would the e-mail server be?06:15
twbYou pay someone like google to do it for you.06:16
tucemiuxtwb,  ok so what is the part that is difficult with a e-mail server ?06:17
twbHosting your MX records somewhere, setting up a secondary MX, setting up greylisting, making sure you're not an open relay, dealing with being RBLd, etc.06:19
twbOh, and don't forget dealing with ISPs that block 25 on residential plans06:19
twbIf you had 100 users it might be worth it; for a single-user home network it isn't.06:20
tucemiuxtwb, optimum online offers a service where they open port 80 and port 25 for you and it only costs about $10 a month06:22
twbShrug06:22
twbA whole VPS doesn't cost much more than that, IIRC06:23
SpamapSthese days I still host my vanity domains, but I do not do the MX work.. I leave that up to a barracuda anti-spam appliance that my hosting company provides06:23
twbOh yeah, another issue is of course that when your home network goes down, you lose mail (unless/until the other MTAs resend it).06:23
SpamapSyeah I don't believe having servers at home is a) fun or b) ecologically friendly06:24
SpamapSUnless they're "servers"06:24
SpamapSor you have green power at home.. :)06:24
twbSpamapS: I got rid of mine when I realized it was a glorified NAS with an internet-facing httpd on it.  Now I just plug the disk into the back of my OpenWRT and (ab)use busybox httpd.  Nice and solid-state.06:24
tucemiuxSpamapS,  I have a headless pentium III dua processor machine, does that count ?06:25
SpamapStwb: nice. :)06:26
SpamapStucemiux: no, probably chomping down 1kw of power just to spin those old fans and disks. ;)06:26
twbPentium IIIs do have a relatively good power profile, though06:27
SpamapStucemiux: though reusing it *does* prevent waste.. so it may be a wash.06:27
twbProbably not as good as a modern MIPS or ARM or Atom/Geode, though.06:27
SpamapSTrue I recall the P3 just died because it was too inflexible to be moved up in clock rate or down in interconnect size.06:27
tucemiuxtwb, i can use a router to host a web site?  I''m using tomato on my router, can I use that to host a web site?06:28
twbtucemiux: you can do anything with anything.06:28
tucemiuxtwb, i mean, what youre doing nowadays, youre using your router to host a web site? How does that work?  Itll be awesome if I can do it at home with my router as well, it has the capabilities06:29
twbtucemiux: er, you just run an httpd06:30
tucemiuxtwb, ok so i just a daemon on the server and then what?  I plug a USB device into the router?  Or can I point the router to use a HD in another machine?06:31
twbThat's something you'll have to discuss with the tomato people06:33
tucemiuxtwb, I was talking about what you do, I can actually flash my router with OpenWRT06:34
joebobI have a degraded raid array. i don't know if the disk is bad. do I risk bad things if I try to add the drive back into the array?06:42
joebobraid 1 btw06:42
SpamapSjoebob: probably06:42
SpamapSjoebob: what caused the drive to be marked as bad?06:43
joebobSpamapS, not sure. mdadm detail shows Spare Devices : 0 Failed Devices : 006:43
SpamapSjoebob: look in your kernel log.. maybe just try 'dmesg' first06:44
joebobsays the second drive was "removed"06:44
joebobSpamapS, what am I looking for?06:44
SpamapSjoebob: anything about the drive06:44
SpamapSjoebob: you can also try 'sudo less /var/log/syslog' ... possible that mdadm or smartd printed messages that won't be in dmesg06:45
joebobSpamapS, http://pastebin.com/3r6CUQBj06:45
SpamapSjoebob: ahh, so did you forcibly turn off your machine or have a kernel panic, anything like that?06:46
SpamapSjoebob: its entirely possible that things are fine given that scenario.. you just need to re-add it.06:46
joebobSpamapS, had some power outages recently. just noticed tonight. could have been this way for a month06:47
joebobSpamapS, do I need to do : sfdisk -d /dev/sda | sfdisk /dev/sdb? or can I just try to add it again?06:47
SpamapSjoebob: you only need to do that sfdisk step if you are afraid that the partition tables got out of sync for some reason06:48
joebobSpamapS, no not. so how do I add it back in?06:49
twbjoebob: you should first be asking smartctl and hdparm/sdparm for info about the drive06:49
twbParticularly, run a short test and maybe a long test over the dodgy drive.  If they come back with any errors, get a new drive.06:50
SpamapShonestly if the data is worth any money at all, just buy a new drive. ;)06:51
twbIf you're physically proximal, also check that the drives have proper airflow and are separated by a gap.  I see a lot of RAID1 arrays where the drives are one atop the other, and the top one dies.06:51
twbSpamapS: certainly a good rule of thumb.06:51
joebobSpamapS twb , ok will do thx06:51
SpamapSOne of my favorite WTF's of all time was when I started at [insert previous employer] and notied a yellow drive light on a very expensive disk array..06:52
SpamapSthe admin I was replacing goes "Oh yeah, they do that sometimes, just do this" and pulls it out, counts to 3, pushes it back in. "We'll make sure its green again when we leave, usually takes just a few minutes"06:53
twbWe do that :-(06:53
twbIf it comes up bad twice in a row, then you are confident that its *really* hosed, not just a stupid firmware06:54
SpamapSBest part was two weeks later when he was gone and I contacted the drive array maker to get 3 replacement drives, they informed me that the company had fallen off support, the drives had special firmware, and w/o support the drives would be $3k each.06:54
twbahaha06:54
SpamapSI informed the president of the company that we needed to spend $9k plus $1k for a tech to come out and verify the array, or the db server might die at any moment.06:54
twbMy customers "can't justify" the expense of support contracts06:54
SpamapSGuess what happened 4 months later, when we were still on the bad drives?06:55
twbWhich is why I always tell them "OK, first you should call your support number and ask them.  Otherwise I'll charge time and materials and be RTFSing all week."06:55
twbSpamapS: fortunately your tape backup was only two, not five years, out of date!06:55
SpamapSA new admin was in the cage, brought a new SCSI disk with him, went to replace 1 of the two failed drives (it was a 6 disk RAID5 w/ 1 hot spare)... but he accidentally pulled one of the green drives.06:56
SpamapSso the array supporting the database, but not the transaction logs, failed....06:56
SpamapSwhich would have been *FINE*06:56
twbahaga06:56
SpamapSthere was a snapshot from 2 days earlier... and transaction logs up to the point in time of idiocy06:57
twbI love when the monkeys do that06:57
SpamapSbut then he makes is REAL genius move06:57
twbcf. molly-guard06:57
SpamapS"the Array won't come up, I'm rebooting the array"06:57
SpamapSmeanwhile I'm at home w/ 103F fever.. I'm like "sounds like a bad idea, call the mfgr, pay the support cost and get them out there dude"06:57
SpamapSnope, he reboots the array, which he discovers is impossible, because it has battery backups..06:58
SpamapSso he disconnects the power06:58
SpamapSwiping out the disk configuration..06:58
SpamapSand the binlogs06:58
SpamapS2 days of database transactions, lost06:58
SpamapSand actually, 3 more days of another database's transactions lost because it was 'less important' and only backed up once per week06:59
twbOut of curiosity, what was this, db2?06:59
SpamapSMysql06:59
twbAhahahaha06:59
SpamapSon Sun06:59
SpamapSbut Sun was not the mfgr of the array07:00
twbI'll never understand how mysql worms it way into enterprise environments.07:00
SpamapSanyway... the best part was how they recovered the "less important" data, which was usernames + passwords07:00
SpamapSmysql is simple07:01
SpamapSif you understand its limitations, its fine07:01
twbHmph07:01
SpamapSthe way they recovered the usernames/passwords that were added / changed was genius.. they had support respond "Oh I'm sorry you can't access the account you created last week. Whats your email address? Ok, yes it seems the account data was locked, I can create a temporary password for you and have it emailed to the address on file." and then just sign them up right on the spot.07:03
SpamapSIf people knew it was happening they could have gotten free accounts, but who cares? nobody knew.07:04
SpamapS6 months there felt like 6 years07:04
SpamapStwb: oh I forgot to laugh really hard at you calling them "enterprise" ;)07:04
twbIt means the women wear miniskirts, and the hardware looks expensive but is actually just painted sheets of plywood07:05
SpamapS:)07:06
kaushalhi07:14
trapmaxi have a referer to our website material, which is no longer in use. i also get some log-data regarding to this linking. any ideas on how to get te referring site to drop the link?07:18
twbUnless you're talking about HTTP, it's "referrer"07:21
kaushalcan someone help me about https://lists.ubuntu.com/archives/ubuntu-server/2010-May/004246.html ?07:22
SpamapSkaushal: when you say it doesn't start, what do you mean?08:00
kaushalSpamapS: when i run it by hand using /etc/init.d/resqueweb start it works as expected but does not comeup automatically after boot up08:01
SpamapSkaushal: does the service listen on a specific IP?08:02
kaushalnope08:02
SpamapSkaushal: anything in the boot log?08:02
kaushalnope08:03
SpamapSkaushal: so the service isn't even mentioned in /var/log/boot.log ?08:05
Jeeves_kaushal: Ah, back again! :)08:05
kaushalSpamapS: cat /var/log/boot08:05
kaushal(Nothing has been logged yet.)08:05
SpamapSkaushal: /var/log/boot.log08:06
e_t_kaushal: you probably need to use the update-rc.d command to tell the computer to start it at boot. Take a look at this - http://www.debuntu.org/how-to-manage-services-with-update-rc.d08:06
Jeeves_SpamapS: The init-script gets executed, it's just the service called from the init-script that doesn't work08:06
Jeeves_e_t_: That's done.08:06
SpamapSthe mail formatting screwed up the scripts..08:08
SpamapSimpossible to tell where #'s are preceding a line if the next line is part of the comment or meant to be executed08:09
SpamapSkaushal: again, nothing in /var/log/boot.log ?08:15
kaushalSpamapS: nope08:16
kaushalSpamapS: mail formatting ?08:16
kaushalshall i pastebin all the scripts ?08:16
SpamapSkaushal: It might help.. but I'd love to see some logs .. thats weird08:26
kaushalsure08:26
kaushalSpamapS: please give me a moment08:26
alktorsHello! I have a spare computer and I would like to install ubuntu server version on it. Does it have a gui or it is text based?08:35
kaushalSpamapS: http://fpaste.org/L5BY/08:41
e_t_alktors: Ubuntu Server is text-based, though you are free to install a gui if you want. Alternately, you can add server packages to Ubuntu desktop.08:46
alktorse_t_,  Thanks for replying, I want to make a nexuiz server out of it. For example what do you type to get gnome?08:47
e_t_alktors: I am not familiar with nexuiz. The easiest way to get a desktop is to install one of these: ubuntu-desktop, kubuntu-desktop,xubuntu-desktop. Either ubuntu or xubuntu will give you a GNOME desktop, though xubuntu will be somewhat lighter on resources.08:49
SpamapSalktors: what is nexuiz?08:50
alktorse_t_,  Ok, thanks so much! It's a open source shooter.08:50
SpamapSkaushal: ok, thats a normal init script sure08:50
alktorsSpamapS,  It's an open source shooter.08:51
alktorsSpamapS, http://en.wikipedia.org/wiki/Nexuiz08:51
SpamapSkaushal: however, if rc had run it, you'd see "Starting ResqueServer: " in /var/log/boot.log08:51
alktorsSpamapS,  It's really fun :)08:51
* SpamapS has been placating his gaming need w/ quakelive08:51
alktorsThanks for the help e_t_08:51
SpamapSalktors: for running as a server, just use ssh08:51
SpamapSalktors: you don't need or want gnome. :)08:51
alktorsSpamapS,  I need to get used to the terminal...I'm not an advanced user:(08:52
SpamapSalktors: its easier than you think08:53
SpamapSalktors: and I'd be willing to bet that all you're going to be able to do with gnome is open a terminal08:53
SpamapSalktors: to help w/ nexuiz I mean08:53
kaushalSpamapS: i dont see anything in /var/log/boot file08:53
alktorsSpamapS,  :)08:53
SpamapSalktors: whereas if you just run it w/ regular server settings, you can use putty from windows, or ssh from a mac/linux box, and you don't need to waste time connecting your server to any keyboard/mouse/video08:54
SpamapSkaushal: */var/log/boot.log*08:54
SpamapSkaushal: boot.log != boot08:54
alktorsSpamapS,  Ok, thanks. Well I will use ssh then, I migrated to linux for windows....and I have to say I'm so happy.08:55
alktorsSpamapS,  :)It's a bit hard until I get good enough to help myself but it shure deserves the effort.08:55
e_t_alktors: I have to agree about SSH. It's amazing. Also, the best way to get practice on the command line is to use the command line.08:55
alktorse_t_,  Hehehehe, yes I think you are right.08:56
kaushalws status08:57
SpamapSkaushal: ?09:01
SpamapSkaushal: I need to get some sleep.. unless you've got anymore?09:01
kaushalSpamapS: yeah09:02
kaushalI did replied to all your questions09:02
kaushalDo you have something for me ?09:02
SpamapSkaushal: I need you to look in /var/log/boot.log  not /var/log/boot09:10
SpamapSkaushal: that should show the messages from your init script. If it doesn't, then your init script isn't running.09:11
SpamapSkaushal: if they do show, then there's something broken in your start script that is requiring a terminal, and you should contact the resque developers. :-/09:14
* SpamapS passes out09:14
kaushalSpamapS: is there a way to generate boot.log file ?09:14
SpamapSkaushal: if its not there, then I don't know what to do. :-P09:15
tdnI have set up a server with apt-proxy. I experience a few problems with it. (Using depricated Python modules, hangs sometimes, etc.) This made me read a bit up on the application. I got the impression that apt-proxy is a discontinued project. Is this the case? If so, what should I use instead? Apt-cacher? Or something else?09:36
e_t_tdn: I think the latest is apt-cacher-ng09:37
tdne_t_, ok. So is apt-proxy considered depricated?09:37
e_t_I guess so.09:38
tdnOk.09:38
kaushalis there a way to generate boot.log file on 8.04 server09:45
kaushalI see /var/log/boot09:45
kaushalhttp://ubuntuforums.org/showthread.php?t=4992509:46
kaushalchecking in again for my query10:18
kaushalis /var/log/boot the same as /var/log/boot.log ?10:18
alvinkaushal: no, it isn't.10:28
alvinkaushal: see /etc/default/bootlogd, but read the comments in bug 328881 first10:29
uvirtbotLaunchpad bug 328881 in upstart "init: support logging of job output" [Medium,Invalid] https://launchpad.net/bugs/32888110:29
dns53i'm trying to help someone, they are trying to use bootlogd, we have enabled it in /etc/default/bootlogd,   is there anything else required?10:35
jargon-i'm trying to find a backport of squid2.7 for hardy. anyone know where i can find it? doesn't seem to be anything for squid in http://packages.ubuntu.com/hardy-backports/web/10:36
alvindns53: I think that bug report contains a remark about /etc/default/bootlogd not being safe to enable. What's the trouble?10:44
alvinSince lucid, Ubuntu has a small bit of boot logging (mountall output), but it's not complete yet.10:44
dns53alvin it is on 8.0410:46
alvindns53: 8.04 has no boot logging at all.10:46
dns53ok10:47
alvinWhat's the nature of the problem you're trying to solve?10:47
dns53it's not my problem but a person from #ubuntu-au trying to debug his own init script10:48
dns53his script works correctly when run by himself but does not work as an init.d script10:50
alvinenvironment variables are different during boot. Be careful to give full paths to executables10:56
alvinhmm, no. I'm talking about cron, but I gues the boot environment will be somewhat restricted too10:57
twbI just created, stopped, and restarted a RAID5 array of: --create /dev/md1 --level 5 -x 0 -n 3 /dev/sd[abc]211:09
twbWhen I start it, I get mdadm: /dev/md1 has been started with 2 drives (out of 3) and 1 spare.11:09
twbDoes that seem right to you?11:10
dns53raid 5 should be using all 3 drives11:11
RoyKraid5 on two drives - heh11:12
RoyK-x 0 == no spares11:12
twbExactly!11:13
RoyKtwb: what does /proc/mdstat say?11:13
twbmd1 : active raid5 sda2[0] sdc2[3] sdb2[1] 1464645888 blocks level 5, 64k chunk, algorithm 2 [3/2] [UU_]11:13
dns53yes has it rebuilt the array?11:13
twbdns53: not yet; it's a large array11:13
twbwhere "large" is "more than 256MB"11:13
* RoyK pats his 50TB opensolaris box11:14
dns53yes, so it is doing that, you need [UUU]11:14
twbdns53: any idea how to do so, given that I'm already supplying -n3 -x0?11:15
RoyKtwb: looks like a bug to me - check dmesg for errors11:15
dns53twb wait for it to build i think, it's been a while since i used raid 511:15
RoyKdns53: I really don't think it should show that11:16
dns53you may be right11:16
dns53but it does say that it has all 3 drives in the array11:16
twbI suspect it's just because it won't start syncing to the third drive until the first two are in sync11:17
RoyKerm11:17
twbthe three-disk RAID1 array for /boot did something similar.11:17
RoyKthat's not how raid5 works11:17
RoyKraid5 spreads all data across all drives11:18
RoyKhttp://en.wikipedia.org/wiki/Raid5#RAID_511:18
twbBut you can lose up to one drive11:18
RoyKyes, I know, but it should start all drives at once11:18
twbRoyK: even when CREATING the array?11:18
dns53you basically get half on one, half on the second and a checksum on the third, you can loose one of the drives and you have enough info to create the third again11:19
RoyKyes11:19
dns53no it creates the two halves on all drives then goes through and creating the checksums for all the blocks11:19
twbWell, since I have no way to tell it to behave differently, I'll see what happens and check on it tomorrow.11:20
twbThe entire server is just a hot spare for the "real" server, so I don't care too much if it's out of commission for an extra day or two11:20
RoyKtwb: did you check dmesg?11:25
twbRoyK: yes, there was nothing useful there.11:25
RoyKk11:25
RoyKtwb: doing some testing here - give me 10 minutes11:25
RoyKtwb: which ubuntu version is this?11:26
twb8.0411:26
RoyKk11:26
twbProbably about 8.04.111:26
RoyKthen apt-get update && apt-get dist-upgrade before trying further11:27
RoyKthat'll take you up to 8.04.411:27
twbI'd prefer not to do that yet, because it's 8:30PM and it's in another suburb11:27
twbJust in case it becomes unbootable as a result11:28
RoyKyour choice - but I've never seen that happen on a minor upgrade with ubuntu 8.04, and I've probably been across > 100 such servers11:28
twbWell, that and I *know* the bootloader and the network configuration were hosed the last time it booted, and it was set up with static config long enough for me to get in.  I haven't tested my fixes for those yet, either :-)11:29
* dns53 has upgraded his server while on the bus11:30
RoyKtwb: you don't need a reboot after such an upgrade11:30
twbNot normally, but sometimes it fucks up11:30
RoyKthere'll be a new kernel, but the old one will work well until you get there11:30
twbI remember vividly repeatedly getting into nis vs. screen spinlocks when libc was being upgraded11:31
RoyKanyway - upgarde before doing more raid stuff11:31
RoyK8.04.1 is quite old11:31
twbNot spinlocks, deadlocks11:31
RoyKthat's a bitch11:32
twbBasically (IIUC) libc would try to restart nis, but the "finished restarting nis" output would be blocks while screen tried to talk to nis to find out who I was.11:32
twbOne more reason to drop NIS ;-P11:33
RoyKyeah11:33
twbThat would've been around 200511:34
RoyKwe're still using nis11:36
RoyKtwb: perhaps try not to upgrade in screen next time :รพ11:41
twbRoyK: but then if your SSH session is killed, you could (worst case) corrupt dpkg's database11:42
RoyKthen login as a local account11:43
RoyKthen use screen with that11:43
RoyKtwb: I can test VM here if you like11:47
twbRoyK: it won't hurt :-)11:48
=== oubiwann is now known as oubiwann_
RoyKtwb: http://pastebin.com/UT6ne0Sm12:20
twbThanks12:20
twbApart from algo 2 vs. 4, it certainly looks the same12:21
RoyKwill test with 5 drives12:26
RoyKsee how that works12:26
=== oubiwann_ is now known as oubiwann
twbNow I check again, it says algo 2.12:28
twbI must've misremembered it as 412:28
RoyKwtf can I delete an md?12:35
RoyKhttp://pastebin.com/KRaLBTGg12:36
RoyKtwb: from https://raid.wiki.kernel.org/index.php/Mdstat <-- represents the status of each device, either U for up or _ for down. So examples 2 and 6 show 'degraded' arrays with some devices 'down'.12:39
* RoyK sticks to (open)solaris for storage12:39
zulmorning13:04
pmatulismorning13:05
ttxzul: yo13:08
ttxzul, team, everyone: please nominate your favorite server-papercuts before the meeting today.13:09
zulsure..13:09
uvirtbotNew bug: #280421 in ethtool "ethtool not available in post-ifup script" [Wishlist,Triaged] https://launchpad.net/bugs/28042113:27
sommermorning13:30
MasterZuFuwhat firewalls are available in ubuntu 10.04 server version? I'm looking for the most secure one that's also the easiest to figure out as I'm new to using ubuntu, especially in a no-GUI manor.13:43
pmatulisMasterZuFu: there is only one f/w and it is called iptables13:44
pmatulisMasterZuFu: but there are several utilities/frontends to configure it13:44
MasterZuFuhmmmmmm ok13:44
pmatulisMasterZuFu: we recommend "uncomplicated firewall" (ufw)13:44
MasterZuFualright, i'll look at that up13:45
pmatulisMasterZuFu: good.  it is installed in the base system13:45
MasterZuFuoh, really? it's already there?13:45
pmatulisMasterZuFu: yes.  try 'man ufw'13:46
MasterZuFuroot@li116-92:~# man ufw13:46
MasterZuFuNo manual entry for ufw13:46
MasterZuFuroot@li116-92:~#13:46
pmatulisMasterZuFu: did you install with the standard ISO?13:46
MasterZuFui'm using linode.com, it's a standard VPS install.13:47
pmatulisMasterZuFu: oh13:47
MasterZuFuyeah, i'm having to learn slowly but surely how to set this thing up13:47
pmatulisMasterZuFu: well then, do 'sudo aptitude install ufw'13:47
MasterZuFufor example, my email wasn't working. couldn't send activation emails with my forum. turns out i had to install the mail functionality first, then a mail front end, and then realize the mail front end (exim4 or something like that), is set default to "local only". yeah...frustrating. lol13:48
MasterZuFuok, regarding ufw, or really, the linux firewall...anyone know the best settings to: A) prevent/slow down/stop a DDoS. B) Block all ports but SSH, HTTP, SSL, Webmin, phpmyadmin, and...uh, i guess whatever else I need, and also filter those ports so that they are secure? basically I really want my server to be secure, it doesn't look like it came secure out of the box though.13:51
ttxsmoser: yo14:00
smoserhey14:00
ttxsmoser: no good news ?14:00
ttxok14:00
smoserno good news to share. so smoser works today. (/me's wife is expecting "any day now")14:02
smoserso, what is the correct response to the last comment to this bug: https://bugs.launchpad.net/eucalyptus/+bug/45004414:11
uvirtbotLaunchpad bug 450044 in eucalyptus "euca-bundle-vol does not create essential tmpfs mounts when bundling Ubuntu images" [High,Fix committed]14:11
smoserthe comment is completely not related to the bug.14:11
ccheneygood morning guys :)14:13
zulttx: right now its pulling out the following info from launchpad: http://paste.ubuntu.com/442803/14:24
zulhey smoser14:25
ttxsmoser: send ----- MARK ----- every 5 min so that we know you didn't have to leave in a hurry :)14:26
zulsmoser: for that bug ask the user to open a new bug14:26
zulhey ccheney14:26
uvirtbotNew bug: #588293 in qemu-kvm (main) "Memory leak" [Undecided,New] https://launchpad.net/bugs/58829314:31
laui am installing kvm on my fresh lucid server x64 install14:34
lauhttps://wiki.ubuntu.com/kvm14:34
lausudo aptitude install qemu-kvm14:34
lauThe following NEW packages will be installed: ... x11-common{a}14:35
lauI do not want any x11 stuff on my server, how can I handle this ?14:35
qbitzaHi guys14:36
qbitzaWill Ubuntu Server 64bit runon an Intel-3450?14:36
qbitzaI've been trying to figure out if Intel's latest 64bit chips are compatible with AMD's 64bit14:37
qbitzabut, the relevant info seems a bit obscured14:38
lauqbitza: try egrep -c ' lm ' /proc/cpuinfo14:38
qbitzaI haven't actually bought the machine yet14:38
lauIf 0 is printed, it means that your CPU is not 64-bit.14:38
lauso check manufacturer specification14:38
qbitzaI'm doing an investigation to make sure that what we're buying will run what we want14:38
qbitzaIt says it's 64bit14:38
qbitzaI'm just not sure about the AMD / Intel instruction sets14:39
qbitzaThere's something about Intel's EM64T being compatible with AMD's 64 bit14:39
qbitzaBut EM64T is at end-of-life14:39
qbitzaSo, just wondering - who here is runnign 64bit on Intel processors?14:40
qbitzaAnd is it as good as AMD?14:41
ccheneyqbitza, EM64T is end of life? you sure you aren't thinking of ia64?14:41
qbitzaThat's what my vendor told me14:41
* ccheney is running amd64 on intel i714:41
qbitzaOkay, that should do it then, thanks ccheney.14:42
ccheneyqbitza, http://en.wikipedia.org/wiki/EM64T#Intel_64  that gives some info about the different names intel used for the amd tech14:42
qbitzaHey, another Q, since I have your attention14:42
TeTeTsmoser: Hi Scott, did you have a minute to look at the uec-describe-cloud tool I wrote? Would be nice if it got go to the standard uec tools :) If this is not too ambitious14:43
qbitzaVirtualization: Xen / KVT / VirtualBox?14:43
ccheneyqbitza, it appears ia64 may getting ready for EOL though, that is a completely different arch14:43
qbitzaThat's the one that's NOT AMD compatible, right?14:43
qbitzaKVT = KVM, sorry14:44
smoserTeTeT, i'm sorry that i've ignored that so far.14:44
smoserI don't have any real objections to putting it in cloud-utils14:44
ccheneyqbitza, yea ia64 is the VLIW design Intel did with HP, etc and that never really took off, microsoft finally announced it was dropping support in april14:44
smoseri haven't read over it though. just what you wrote in the email.14:44
qbitzaccheney, Okay. I was just worried there that they might've started switching to something else again when this Vendor told me EM64T is EOL.14:45
ccheneyqbitza, vendor was most likely confused14:45
ccheneyqbitza, or intel just renamed amd64 yet another time14:46
qbitzaccheney, Probably teh vendor's confused14:46
qbitzaccheney, They ARE a WinTel house ...14:46
ccheneyok14:47
TeTeTsmoser: ok, you want to look at the code for sure, it's one of the first python scripts I wrote14:47
oru_workgreetings. With postfix/dovecot can someone please remind me how to blacklist domains? I remember there is a file you can edit to do so I just don't remember which file14:49
lauwhy do I need some libpulse0, vorbis, x11-common packages when aptitude install qemu-kvm on a lucid server install ?14:57
laueven sudo aptitude install -s -R qemu-kvm needs these packages15:00
elb0wwould have to look at the source code to know how to answer than question15:13
alvinAre you sure qemu-kvm is the right package? Using taksel, ubuntu-virt-server will be installed, and that contains kvm, libvirt-bin and openssh-server15:16
alvinlau: ok, digging a bit further, you are right. It's qemu-kvm. I guess you can install it with the -R switch to disable installation of recommended packages if you don't need them15:18
oru_workgreetings. With postfix/dovecot can someone please remind me how to blacklist domains? I remember there is a file you can edit to do so I just don't remember which file15:29
AivarasKiviliusHello, I have something bad with ubuntu server, then i try to access file myip/testing.php (<? phpinfo(); ?>) it works, but if only myip/ it wont show index file, just give ne a download something phtml file with random name... What to do?15:33
lauhello alvin, point is even with -R switch, the qemu-kvm package installation requires libpulse0, x11-common and others15:34
lauwhere should I dig to understand why qemu-kvm needs them ? (I am trying to install on a server)15:35
AivarasKiviliusHere is my server info: http://82.135.231.154/testing.php I think it can help for someone say, whats wrong in my server.15:35
pmatulisoru_work: have postfix inspect the mail headers15:36
uvirtbotNew bug: #586546 in byobu "Byobu should be enabled by default for initial login to Ubuntu Server" [Wishlist,Triaged] https://launchpad.net/bugs/58654615:46
* kirkland notes he didn't file this; but only triaged it wishlist15:47
hggdhheh15:48
hggdhkirkland: BTW -- I tested trying to create more than 512 volumes on UEC, got an OOM there15:49
kirklandhggdh: did you bump up the loop devices?15:49
hggdhkirkland: yes, to 512, using Etienne's rig15:50
hggdhkirkland: but I still do not have console access, so cannot open a bug right now15:50
alvinlau: on what distribution?15:52
alvinlau: I can't confirm the x11-common. You're probably mistaken. Another package will want to install it.15:52
kaushalhi15:57
kaushalhttps://lists.ubuntu.com/archives/ubuntu-server/2010-June/004247.html15:58
kaushalis there a way to create boot.log ?15:58
kaushalI have deleted it15:58
oru_workI'm trying to blacklist a domain by editing /etc/spamassassin/local.cf and adding something like blacklist_from *@gmail.com as well as user@gmail.com and it has no effect. The mail still gets delivered to maildir16:00
jiboumansmorning folks16:07
=== ogra_ is now known as ogra
sommerhigh16:16
kaushalchecking in again for my query ?16:18
kaushalhttps://lists.ubuntu.com/archives/ubuntu-server/2010-June/004247.html16:18
RoyKkaushal: you should find the boot log in /var/log/messages16:21
kaushalRoyK, it was there already i deleted it16:21
RoyKyou deleted what?16:22
kaushalboot file under /var/log16:23
RoyKwtf? http://pastebin.com/JCTP2DAX16:24
_tydeas_When i login in ubuntu server i get a pretty nice header about temprature etc of the machine? where is this located? And how can i call it after being logged in?16:25
RoyK_tydeas_: it's in /etc/motd, a file generated by the system - grep through /etc to find where16:27
laualvin: it is lucid server x64, I just http://paste.ubuntu.com/442851/16:27
laualvin I sudo aptitude update && sudo aptitude safe-upgrade just before16:28
lau$ cat /etc/issue16:28
lauUbuntu 10.04 LTS \n \l16:28
simplexio_tydeas_: lanscape_sysinfo16:28
simplexio_tydeas_: landscape-sysinfo16:29
binBASH2 typos in one command ;)16:29
binBASHjdstrand: Btw. I found out why I couldn't clone in virt-manager.16:30
oru_workhow can I check which version of spamassassin I have installed ?16:30
lauhttp://doc.ubuntu.com/ubuntu/serverguide/C/libvirt.html#virtual-networking (I just replaced kvm by qemu-kvm for lucid install)16:31
jdstrandjdstrand: oh?16:31
jdstrandheh16:31
jdstrandbinBASH: oh?16:31
binBASHjdstrang: I had to change directories in host settings, because I didn't store the virtual machine images in the default folder.16:31
binBASHjdstrand btw. :)16:32
jdstrandinteresting16:32
binBASHjdstrand: it defaults to /var/lib/libvirt/images16:33
* jdstrand nods16:33
binBASHand I had my images in /srv/virtual-machines16:33
binBASHso it didn't find them and was unable to clone.16:33
jdstrandoh, I see, the xml had a different path and it didn't exist16:33
Davieykirkland: The only other merge blocker is http://paste.ubuntu.com/442852/ .  Which looks like simply the handling of axis2_svc_generated.patch..  Can this be dropped do you think?16:34
binBASHI just rightclicked the machine host in the virt-manager and there you can change Host Details16:34
binBASHnot the vm itself16:34
binBASHthere I add the other directory and then it worked16:35
jdstrandcool16:35
binBASHyeah, I'm quite happy now ;)16:35
oru_workcat /etc/issue only shows ubuntu version, but not release name is that normal ?16:40
binBASHoru_work: you can type lsb_release -a instead16:42
=== mathiaz_ is now known as mathiaz
kirklandDaviey: i think we can take upstream on that one too16:48
Davieykirkland: Cool, in that case i have 16/17 patches to carry16:49
Davieywhich all apply cleanly16:49
corpsedoes anyone know if  i can use transition to download files directly to my fileserver?16:56
Davieykirkland: Do you have a moment to review the delta?17:02
ayiI recently upgraded a hardy server install to lucid. Afterwards, openssh became unreachable through a port forwarded NAT router, although accessible on the local network. Does lucid introduce some sort of blocking mechanism for non-local IPs?17:40
SpamapSayi: unreachable as in it times out, or refuses connection?17:42
ayiit hangs forever17:43
SpamapSayi: ok are you sure your IP didn't change?17:47
ayiyes, other port forwards work fine.. also changing the port forward to a different machine works17:48
ayimight there be some sort of apparmor trickery going on?17:48
jdstrandayi: not unless you created an apparmor profile for openssh. Ubuntu does not ship one17:49
SpamapSI am still not very familiar with apparmor17:49
jdstrandsudo aa-status17:49
jdstrandthat ^ will tell you if it is confined, and looking in kern.log will tell you if apparmor is blocking stuff17:50
elb0wif I have an up and down statement in /etc/network/interfaces why when I bring it down then up using ifconfig it removes the routes?18:04
RoyKelb0w: static routes?18:11
elb0wyeah18:11
RoyKhttp://www.ubuntugeek.com/howto-add-permanent-static-routes-in-ubuntu.html18:12
elb0wI have done this RoyK18:13
elb0whowever if I do ifconfig eth3 down18:13
elb0whowever if I do ifconfig eth3 up18:13
elb0wit does not reapply the routes18:13
elb0wonly removes them18:13
elb0whowever /etc/init.d/networking restart18:13
elb0wwill apply the routes18:13
RoyKok - sorry - no idea18:13
elb0wnp not a major issue18:14
elb0wjust inconvenient18:14
RoyKtry ifdown/ifup18:14
RoyKinstead of ifconfig18:14
=== nxvl_ is now known as nxvl
elb0wAny idea why I get this when trying to stop service? http://pastebin.org/29873518:17
elb0wAny idea why I get this when trying to stop service? http://pastebin.org/29873518:19
pmatulisno18:20
pmatulisno18:20
RoyKelb0w: try /etc/init.d/postfix stop18:21
elb0wnow I get those errors whenever I run insserv18:22
kirklandccheney: ping18:29
incorrectso where is it that ethx gets mapped to ethy?18:34
ccheneykirkland: sorry my xchat crashed18:41
ccheneykirkland, whats up? :)18:42
kirklandccheney: hey18:43
kirklandccheney: was wondering if you have your cloud up and running18:43
kirklandccheney: and also if you have a fix in testing for https://bugs.edge.launchpad.net/ubuntu/+source/eucalyptus/+bug/57994218:43
uvirtbotkirkland: Error: Could not parse data returned by Launchpad: list index out of range18:43
ccheneykirkland, not yet, i still have no AC should get it fixed today or tomorrow morning, also have been busy with the OOo security update this morning18:43
kirklandccheney: kees added a comment to that bug with instructions on fixing18:43
=== nxvl_ is now known as nxvl
* ccheney checks to see if he has any ports available upstairs as its only place with semi-working air conditioning18:44
kirklandDaviey: smoser: https://bugs.edge.launchpad.net/ubuntu/+source/eucalyptus/+bug/43215418:44
uvirtbotLaunchpad bug 432154 in qemu "dynamic block device attach/detach not functional with karmic KVM" [High,Fix committed]18:44
ccheneykirkland, i should be able to fix 579942 on my laptop, will have to see if the systems can take the heat in the room where the switch is though18:46
ccheneykirkland, otherwise i might not be able to test it until i get my ac working again18:46
ccheneyi have a portable ac unit but it seems to not work too well in mid day, but i could probably get it tested tonight using it18:47
kirklandccheney: do you have mumble access?18:48
ccheneykirkland, yea let me see if i can get it to log in18:48
ccheneyi haven't used it in a month or so18:48
ccheneyhmm claims i don't have right password, looking it up now18:49
SpamapSanybody have a good solution for mumble feedback?18:54
SpamapSwhenever I use it.. it just loops all over itself until all I hear is chirping and screeches18:54
SpamapSunless I use my noise cancelling bluetooth18:54
mathiazSpamapS: I'm using push-to-talk18:54
SpamapSmathiaz: right at least when I do that, it stops when I let go.. but in a long sentence, it gets worse and worse18:56
mathiazSpamapS: hm - usually it's an issue with the settings in mumble18:57
mathiazSpamapS: you may wanna redo the settings correctly18:58
SpamapSmathiaz: I have been through the audio wizard a few times, thats usually where the worst feedback manifests. :-P18:58
SpamapSmathiaz: but when I go through w/ the bluetooth.. everything is nice and quiet.18:58
ccheneykirkland, can you hear me? i think i need to determine how to do push to talk18:58
mathiazccheney: we can hear you for the time bein18:58
mathiazccheney: being18:58
ccheneyccheney, ok18:58
mathiazccheney: hm - *can't*18:59
mathiazccheney: we cannot hear you18:59
ccheneymathiaz, ok will try testing again18:59
zulumm...meeting now?19:01
mathiazzul: yes19:01
uvirtbotNew bug: #588410 in eucalyptus "dynamic block storage should use virtio" [High,Triaged] https://launchpad.net/bugs/58841019:07
Nicd^I'm trying to install Ubuntu Server 10.04, but it complains that my CD is malformed. I dowloaded the image a second time and burned it again and verified (with OS X's Disk Utility), but it still complains. Can there be a problem with the 32-bit image on the website?19:07
ThomasG33KWhats the best method to send email reports to your external email? Do I have to install an smtp server just for that?19:14
ThomasG33KI meant log reports19:14
EtienneGThomasG33K, nullmailer, perhaps?19:15
EtienneGI do not know it much, but it seems to do the job for send-only19:15
* ThomasG33K looks it up on google19:15
EtienneGThomasG33K, apt-cache show nullmailer19:16
ThomasG33Ksudo apt-cache show nullmailer19:16
EtienneGwill give you a bit of info19:16
ThomasG33Kgot it19:16
cloakableYou don't need to run apt-cache using sudo :)19:17
ThomasG33Kyeah forgot about that xD19:18
ThomasG33KWhen it gives me configure nullmailer, it asks for smart hosts. What does it mean?19:19
ThomasG33KIs it for specifying an smtp server to use?19:21
ThomasG33Kthought nullmailer was a basic smtp or MTA server19:21
ThomasG33Ksudo apt-get remove nullmailer19:24
ThomasG33Ksorry dont like it19:24
ThomasG33Kthanks for idea thought19:25
* ccheney wishes he lived somewhere cold right now19:25
Nicd^on my computer the md5sums of ./install/netboot/ubuntu-installer/i386/initrd.gz and its entry in md5sum.txt match, but my server says the file failed md5 checksum verification. what could this be? I've already tried with two different cd's and verifying the result after burning19:36
ItalicBoldgreetings, can someone help me with an apache2 issue?19:41
funkyHat!ask | ItalicBold19:45
ubottuItalicBold: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-)19:45
ccheneyttx, 551901 SRU doesn't seem to make much sense (at least to me) by the time 10.04.1 comes out 2000 SP4 will be no longer supported for for extended support by Microsoft19:45
ccheneyttx, though if its a more generic fix for something perhaps its still useful19:45
ttxccheney: that's an interesting point -- though we had quite a few people bitten by that, so that would prove a lot of people still run W200019:46
ccheneyok19:46
ttxccheney: and it used to work alright19:47
ccheneyok :)19:47
ttxccheney: but I didn't know the deadline was so close19:47
ttxa *lot* of DCs are running W2000SrvSP419:48
ttxthat should hurt them badly :)19:48
ccheneyits apparently july 1319:48
ccheneyhttp://support.microsoft.com/lifecycle/?LN=en-us&x=17&y=11&p1=727419:48
ccheneyheh more money to microsoft or conversions to linux soon :)19:49
ItalicBoldsorry :P ok i have just done a new server intallation with lamp and i have edited /etc/apache2/apache2.conf and added the following lines:19:50
ItalicBoldServerSignature Off19:50
ItalicBoldServerTokens Prod19:50
ItalicBoldI have restarted the apache service however I am still getting "ServerApache/2.2.14 (Ubuntu)" in the response header. the above shoule make it just return "ServerApache".19:50
* ccheney found out that the AC repair will be done tomorrow morning at 11am, a full week without working AC, ugh :(19:51
EtienneGccheney, you have my sympathy19:54
ccheneyEtienneG, thanks :) it'll be up to 37C later this week, so hopefully it really is fixed tomorrow19:55
EtienneGouch!19:55
EtienneGthat gives you the urge to go to the mall!19:55
EtienneGccheney, if I where in your shoes, I would be working at Starbucks!19:55
EtienneGand all my sympathy for wife, the timing couldn't be worse for her ... :(19:56
ccheneyEtienneG, yea19:56
hggdhsmoser: let's talk about your request to marjo in a few? Right now I have to recover EtienneG's rig19:56
smoserk19:56
ccheneyEtienneG, yea, not good for her, and getting my server stuff running only works at night when i can get my little portable ac to work good enough19:57
ccheneyEtienneG, i had to do a lot of security work for OOo today so luckily didn't lose any work time due to the outage19:57
EtienneGand I was complaining about my 32C last week ...19:59
hggdhEtienneG: come to Texas... Dallas is a nice place also, with 37+ expected this week20:00
EtienneGhggdh, I bet20:01
EtienneGI like it cool20:01
EtienneGexcept during the holidays20:01
EtienneGI mean, the summer one20:01
hggdhheh20:01
Nicd^on my computer the md5sums of ./install/netboot/ubuntu-installer/i386/initrd.gz and its entry in md5sum.txt match, but my server says the file failed md5 checksum verification. what could this be? I've already tried with two different cd's and verifying the result after burning20:03
oru_workcan anyone recommend a ticket support software that would let me create statistics possibly in the form of charts/graphs after some period of time ?20:03
alexmItalicBold: instead of editing apache2.conf maybe you can try with /etc/apache2/conf.d/security ?20:04
alexmi see there's a servertokens value there (at least on lucid) that probably overrides your previous value in apache2.conf20:04
ItalicBoldah20:05
ItalicBoldthanks20:05
ItalicBoldi see20:05
ItalicBoldwill try now20:05
hggdhEtienneG: the euca 1.6.2-0ubuntu30.1 seem to have already vanished from -proposed, probably on their way to -updates20:05
hggdhEtienneG: so we will have to wait to update them. Meanwhile, I will bounce euca on the CLC, Walrus, CC, and SC to recover the memory20:06
EtienneGhggdh, glad to hear that20:06
EtienneGhggdh, feel free to reboot the entire cloud if it is faster for you20:06
hggdhEtienneG: will reboot, then, faster20:07
ItalicBoldthanks alexm, that worked20:07
alexmcool :) i didn't know that security file, i just grep -ri servertokens /etc/apache2 ;)20:08
hggdhEtienneG: rebooting now (CLC, Wlarus, CC, and SC). NCs were not affected20:09
funkyHatItalicBold: look in /etc/apache2/conf.d/security -- that is probably where you should make your server signature settings20:12
funkyHatItalicBold: oh, someone already answered -_-20:12
oru_workhow would I extract .tar.gz file ?20:26
Picioru_work: tar xzvf file.tar.gz20:26
ccheneyoru_work, tar xvf is good enough on newer versions of tar to extract any compression format it happens to know about20:35
ccheneyoru_work, z specifies gzip in particular20:35
=== oubiwann is now known as oubiwann_
uvirtbotNew bug: #588442 in backuppc (main) "backuppc: Missing dependency to rrdtool" [Undecided,New] https://launchpad.net/bugs/58844220:36
=== oubiwann_ is now known as oubiwann
corpsedoes anyone know if  i can use transition to download files directly to my fileserver?20:54
RoyKtransition?20:55
corpseerr sorry, transmission20:55
RoyKtransmissioncli works for me20:55
VadimCKtransmission-daemon also will work, has a built in web-gui20:56
hggdhkirkland: wasn't there a bug on memory leak on qemu-kvm?20:57
kirklandhggdh: libvirt20:57
hggdhkirkland: ah, thank you20:57
kirklandhggdh: i need to re-upload that20:57
hggdhkirkland: k20:58
kirklandhggdh: how late are you around today?20:58
hggdhkirkland: as late as you need me to be ;-)20:58
kirklandhggdh: heh, okay, i want to catch up with you on one thing in a bit20:59
kirklandhggdh: but i need to have 2 other conversations first20:59
hggdhkirkland: np20:59
sommermathiaz: I have an openldap-dit-package ready for review: https://launchpad.net/~asommer/+archive/ppa/+packages, I probably missed something, but if you could take a look :)21:00
sommeror advise on the next step21:00
mathiazsommer: do you have everything in a bzr branch?21:07
sommermathiaz: yep, I've just been updating https://code.launchpad.net/~asommer/openldap-dit/openldap-dit-split21:08
mathiazsommer: ok - I'll have a look at it then21:08
sommermathiaz: coolio, thanks21:08
=== MrPancake is now known as KB1JWQ
NativeAngelshello has anyone here installed ubuntu on a sunfire v10021:15
hggdhsmoser: there?21:46
smoseryes21:46
hggdhsmoser: so, what do you need to get done? marjo asked me to follow up with you21:47
smoseri think we're set21:48
smoserslangasek took care of it.21:48
hggdhoh, OK.21:48
smoserhggdh, are you on release team ?21:49
hggdhsmoser: me poor humble self? no...21:49
smoserand are you likely to be the person who would be asked to popuulate http://iso.qa.ubuntu.com/qatracker/build/ubuntuserver/all in the future for the ec2 images ?21:49
hggdhsmoser: I *might* be, but I never did it, and am unsure if I have the access. I would say ara, though21:50
smoserok. yeah, i was going to say that if you did end up with that job (and had access) that you would want to get the script to do it from slangasek21:51
hggdhat least it is good to know which door to knock if needed :-)21:52
mikelHey all - I'm having some difficulty with sudo-ldap. Most LDAP functionality is working fine, users can login and so on, but they can't sudo at all - auth.log reports '3 incorrect password attempts' rather than 'you're not allowed sucka', but the passwords work just fine for the purpose of logging in via ssh in the first place.22:02
uvirtbotNew bug: #588481 in tomcat6 (main) "Init script fails to start when run via ssh with pty" [Undecided,New] https://launchpad.net/bugs/58848122:06
=== schmidtm_ is now known as schmidtm
NativeAngelshas anyone here used a sunfire v10022:57
EladI am attempting to create a cert and I am at the part where I create a .csr, and it is not liking my common name, which I put as *.mydomain.com <--- Isn't this legit?22:58
sorenElad: I believe it is, yes.22:58
sorenElad: What's the error message?22:58
EladThe name entered in the CN(Common Name) field of the CSR MUST be the fully-qualified domain name for the Web site you will be using the certificate for (e.g., \"www.domainnamegoeshere.com\"), or a valid Intranet domain name. Do not include the \"http://\" or \"https://\" prefixes in your common name. The common name cannot include spaces. Do NOT enter your personal name in this field.22:59
Eladand I'm not including that stuff... so I am confused as to why it is angry with me22:59
sorenNativeAngels: What's your question?22:59
sorenElad: What are you using to create it?22:59
Eladopenssl req -new -key domain.key -out domain.csr23:00
Eladvia, godaddy23:00
EladI mean, the cert I am attempting to get is via godaddy23:00
EladI am generating everything on my ubuntu server23:01
sorenElad: openssl happily accepts *.foobar.com for me.23:02
Eladit accepts it from me23:02
sorenElad: ....so what's the problem again?23:03
Eladit is when I go to request my cert from godaddy that I am getting problems23:03
sorenElad: Ah.23:03
Eladso I was making sure that I was creating it correctly23:03
sorenElad: They may not accept such requests. Not all do. Some do, but demand a higher fee for *.example.com style certs.23:04
Eladwhen I click on the help file it tells me I can do *.example.com23:04
Eladk, I will take it up with them; Thanks for the help23:04
sorenElad: Looking at their website, they do support it, but you need to choose "single domain with unlimited subdomains (wildcard)".23:05
=== bogeyd6 is now known as Guest27712
ajmitchsoren: you probably know better than I - what's the reason for adding netbase to dependencies? it's the only change to heimdal that we're carrying at the moment23:08
Eladsoren, right you are; I will just register the 2 I need since I bought the 5 pack23:09
sorenajmitch: Hm.... That sounds vaguely familiar. Let me check.23:10
ajmitchit seems to have been added quite awhile ago, so I'm trying to find out if I need to keep it :)23:11
kirklandhggdh: around?23:11
kirklandhggdh: do you have time to mumble?23:12
uvirtbotNew bug: #588506 in php5 (main) "fastcgi daemon failing" [Undecided,New] https://launchpad.net/bugs/58850623:12
hggdhkirkland: I sound like a chipmonk on mumble23:12
hggdhwhat about calling my cell?23:12
kirklandhggdh: sure23:12
kirklandhggdh: pm your number23:12
sorenajmitch: I think it may be a mistake, but I'm still looking.23:22
ajmitchI've found some old bugs about netbase in debian & ubuntu being different with regards to depending on an inetd23:23
ajmitchbut that doesn't seem relevant anymore23:23
ajmitch& the last mention of netbase with heimdal was a merge where it was unsure why it was kept :)23:24
sorenajmitch: I think what really happened is that when Debian dropped the netbase dependency, whoever did the next merge messed it up.23:30
ajmitchok, as long as I can convince the archive admins of that, it'll get synced then23:31
ajmitchthanks for checking up on it23:31
sorenajmitch: Sure thing.23:32
ajmitchlooks like the other change carried was fixed in debian more than 2 years abgo23:36

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!