=== shade__ is now known as \shade\
FreeNslavedhttp://www.boldvoices.tv    meme went live on channel 5 ten minutes ago00:13
kusznirHi all: I'm installing a ubuntu server without any graphics devices (xen domu, using the xm console method).  How do I add users to the system?  (when I tried using the traditional "useradd" program, the account was pretty botched; the only way I've found so far to add user accounts was through the ubuntu gui if I wanted them to work)01:08
qman__kusznir, use 'adduser'01:09
qman__it sets all the things right for the users to work01:09
kusznirOk, thanks.01:10
gbear14275hello, I've been researching pci passthrough to enable NIC passthrough to one of my VM's and believe it requires vt-d support from my motherboard.  I discovered that there is no vt-d support on my motherboard and am wondering if there is a way to do PCI (specifically NIC) passthrough without vt-d?  the reason I am investigating this is I only have 1 static public facing IP to assign to a webserver I would like to run01:50
Yosihi all01:54
YosiI just changed my IP on my ubuntu-server and I get the following error...   "apache2: Could bo reliably determine the server's fully qualified domain name, using for ServerName"  any idea of what I broke??01:58
qman__Yosi, you need to set up your hosts file correctly02:45
qman__it'll work as-is, but if you want the error to go away, the domain name you're using in apache needs to resolve to your IP02:45
Yosiqman, thanks. i think that is whats going on...some guy in #linux was saying the issue was my httpd.conf file, but in ubuntu that file is empty02:55
Yosiqman: to fix th error, what file in apache would contain that domain name?02:56
ajavidhi, I am unable to install/remove/upgrade mysql-server <-> http://pastebin.com/9pQjQivc (Ubuntu 10.04) It crashed/locked up during an upgrade process and since then aptitude fails on everything02:58
tomswartz07hi all, I just have a quick q. im looking into starting and setting up a personal apache server on my 10.04 desktop. Does anyone have any advice or good guides for a beginner?03:01
amstantomswartz07: if you already have the comp installed, and you just want apache on there03:05
qman__Yosi, /etc/apache2/sites-available/[yoursiteconfig]03:06
tomswartz07amstan: I have 10.04 desktop installed, plain vanilla. ive found some sites hosted from ubuntu, but no decent guides for beginners.03:07
tomswartz07a plain jane web site server is fine by me03:07
tomswartz07what other services could you run from a home server like this?03:08
amstantomswartz07: just install apache2 libapache2-mod-php503:08
amstantomswartz07: umm.. you probably want mysql too, so install that, and php5-mysql03:08
amstanyou can do all of this with synaptic03:08
amstanwhen you're done you put your website in /var/www03:08
tomswartz07amstan: and thats it? what does mysql do, exactly?03:09
amstantomswartz07: ok... hmm03:10
pmatulisYosi: the value for ServerName needs to resolve to an address.  set up /etc/hosts accordingly03:10
amstantomswartz07: what exactly do you want from this website?03:10
amstantomswartz07: if it's for a personal website, and you're just playing with html, then you don't need mysql and maybe not even php03:10
amstantomswartz07: so.. apache is the server, php a scripting language that makes all the pages dynamic03:11
tomswartz07just a place to host a page or two, even better if i could have file hosting.03:11
amstantomswartz07: and mysql is a place to put all the data that php has to play with, stuff like user accounts and so on, it's easier to use mysql for some stuff than files, but you need to program that retrieval03:11
amstantomswartz07: i'm not exactly sure where i can get you some guides about this, i kind of passed this stage already03:13
amstanif you have any questions just ask me03:13
tomswartz07amstan: ah, i see. Thats a bit too rich for my blood just yet. i dont think ill be having users and logins, etc. Would just plain apache be right for my needs?03:13
tomswartz07im looking to just do basic hosting, web pages and files03:13
amstantomswartz07: if you don't want to touch programming with php, just plain apache is fine03:14
amstantomswartz07: apache will provide all the things that makes your computer serve a static page/file03:14
tomswartz07amstan: excellent. Ill see what else I could dig up. I just didnt know what to look for03:15
tomswartz07amstan: thanks for the help! ill give a shout if i have anything else! :D03:16
amstantomswartz07: you could try some html tutorials03:16
amstantomswartz07: if you you're not already familiar with it03:16
tomswartz07i have the html down pat, i just dont know how to get it hosted myself for free haha03:16
amstantomswartz07: did you ever port forward/ do you know what that means?03:17
ajavidthis is a waste of time distro.03:17
tomswartz07amstan: yeah, i use it for ssh pretty often. i read that apache just uses port 8003:18
amstantomswartz07: yep, you got a domain too, right?03:18
amstanno-ip at least?03:18
tomswartz07through dyndns, i have the router set up to update with the IP, if thats what you mean03:19
amstantomswartz07: well.. you're pretty set then03:19
tomswartz07amstan: woot woot. thanks again! ill see what i could do!03:20
zulmathiaz: ping can you review the wording and make suggestion, this is the email being sent out for the sru process http://paste.ubuntu.com/451416/03:35
Jeeves_Mosshow can I fix this file error?  "dovecot: IMAP(scott@moseley.ca): Invalid data in file /mnt/raid/www_root/mail/moseley.ca/scott/.Sent/dovecot-uidlist"03:41
Yosipmatulis:  I just checked /etc/hosts and there are two entries there, the first is localhost and the seond line is cs1      (cs1 is the host name of the machine)03:49
qman__Yosi, you need the FQDN also on that second line03:51
derekshey all, might not be in the right place for this, but let me know. i am interested in setting up a linux box in my house to do dns, authentication (ldap), posibly NAS, etc. Ideally, want to run on a small atom machine. Any easy to use Small Business distros you knwo of? maybe one with a nice web UI?03:51
dereksbased on ubuntu03:51
Yosiqman: would the fqdn not just be the hostname, but the hostname.domain03:52
qman__that is what an FQDN is03:52
Yosiqman: webmin put that in there..  its so odd...03:53
ubottuwebmin is no longer supported in Debian and Ubuntu. It is not compatible with the way that Ubuntu packages handle configuration files, and is likely to cause unexpected issues with your system. See !ebox instead.03:54
Yosiqman: would having a fqdn in there fix my apache2 error?03:57
qman__as long as it's the FQDN used in the apache configuration03:59
qman__ServerName needs to be resolvable03:59
qman__whatever that happens to be03:59
Yosiqman: i looked in the directory u mentioned in apache2, but i didn't see a ServerName, all I saw was default04:00
qman__Yosi, default is a configuration file04:00
qman__ServerName is specified inside it04:00
Yosiqman: I just checked, I' read the file, and there is no ServerName field specified in the file just says VirtuaHost *.8004:03
Jeeves_MossYosi, and idea on my dovecot issue?04:08
mathiazzul: line4: add the list of SRU criteria04:16
macd_eeehaving qemu/kvm issues on 10.04, specifically, error: unable to connect to '/var/run/libvirt/libvirt-sock': Connection refused04:59
=== macd_eee is now known as macd
twbmacd: ls -l that file05:01
macdsrwxrwxrwx, I set it 777 to test, added root user to libvirtd05:02
twbOK, first undo every "test" you did, then try again.05:03
macdSure, and I get the same results from virsh -c qemu:///system list (FYI adding the root user to the libvirtd group is in the qemu documentation)05:05
twbNow, tell me the full line for ls -l on that file.05:07
twbI'm surprised the *qemu* documentation mentions libvirt at all.05:08
macdsrw-r-x--- 1 root libvirtd 0 2010-06-17 22:36 /var/run/libvirt/libvirt-sock05:08
macdI should have been more specific, the ubuntu/qemu documentation05:08
twbmacd: URL>05:08
twbWell, first of all "community" indicates that it's not Ubuntu's documentation, it's Ubuntu users' documentation -- which can be outright wrong.05:10
macdIm thinking we could focus on the problem at hand rather than the documentation that led me there, I'll remove root from the group05:10
twbI'm surprised root need to be in any group, since root generally circumvents posix DACs entirely.05:11
macdAnd logout/in, reissuing the above command virsh command yields the same results05:11
macdI tend to agree at adding root to anything, it should superseed05:12
twbAre you running things as root, or as a normal user?05:12
macdthere is no selinux either so it is definetly DAC05:12
macdI am running as root.05:12
twbAny reason you're running as root?05:12
macdI like it.05:13
macdI could login and sudo instead, I dont really see the difference05:13
twbMy understanding is that a large part of libvirt's job is to allow non-root users to use VMs (which require privileged access to e.g. brctl).05:14
twbIf the normal way of using libvirt (and Ubuntu) is to not run stuff directly as root, I suggest trying that.05:15
macdI get the same results using my user, with or without sudo.05:18
twbAnd that user was in the libvirtd group when you logged in?05:18
macdadded, logout/in, same result05:20
twbOK, at this point I would be checking the log files and asking #virt05:29
macdyeah, Im querying in @qemu as well, I appreciate your help.05:30
macdtwb, Jun 17 23:37:11 spare5 kernel: [ 3667.415428] kvm: disabled by bios05:39
macdI thnk I figured it out ;)05:39
twbGrmph.  I'd have hoped it'd just use software virtualization in that case.05:42
macdIm under the impression it only supports full virtualization, and not para05:45
twbWell, qemu sure as shit supports software virtualization, and if Ubuntu has dropped that in it's combined qemu/kvm package, I will be Pissed Off.05:47
uvirtbotNew bug: #595789 in lm-sensors (universe) "after resuming from suspend, sensors -s is required" [Undecided,New] https://launchpad.net/bugs/59578906:42
=== jo-erlend__ is now known as jo-erlend
unewbieanyone using 8.04 server as kvm virtualisation host?07:07
unewbiei can't connect guest os after install07:07
unewbiei installed with ubuntu-vm-builder07:08
lauhello, why does sudo aptitude install kvm libvirt-bin ubuntu-vm-builder bridge-utils on a fresh lucid server install09:00
lautries to install x11-common ?09:00
RoyKno idea - some dependencies - probably some X-stuff in there somewhere - why? does it matter with a few extra libs?09:01
twblau: x11-common is just a few boring files, it's not anything significant09:06
twbMost likely it is there for keyboard support.09:06
* Ng drumrolls09:09
Ngkirkland: I have good news and bad news. Actually I just have bad news, that package doesn't fix it, three of my four test VMs have been OOM killed. I'll comment as such on the bug.09:10
Ngkirkland: (at least it doesn't fix the leak I'm exposing, maybe it fixes others)09:10
lautwb: thx10:35
laujust create new vm sudo ubuntu-vm-builder kvm lucid10:51
lauwant to remove it from the system, is rm -rf ubuntu-kvm the proper way ?10:52
lauor does it exist a ubuntu-vm-builder erase kvm lucid ?10:52
twblau: did you check the manpage for ubuntu-vm-builder?10:56
lautwb: yes man vmbuilder but I only saw references to create a vm not to delete it (maybe I missed it?)11:02
twbI don't know, I'm just triaging11:04
lautwb: I also took a look at https://help.ubuntu.com/community/JeOSVMBuilder but without success11:05
sorenlau: Unless you used the --libvirt option, the VM is just the disk image. Delete the disk image, and the VM is no more.11:49
xperiahello to all. i have a small question. i am running on two ubuntu servers the apache webservice however every server has it own website. when i call the Website of the second server i get allways site not found. the domain resolves great but somehow the apache server dont return the page. i must say that on the second server i have configured thecan somebody help me to debug the problem ? site as vhost maybe that is the problem ?12:34
xperiai must say that on the second server i have configured the site as vhost maybe that is the problem ? can somebody help me to debug the problem ?12:35
twbxperia: is apache running?12:36
twbxperia: is it bound to port 80?  What happens when you browse from the local host (e.g. with w3m)?12:36
xperiayes it is running but i check it again over the local ip adress12:36
xperiatwb: when i call the server over the local ip adress it return "It Works"12:37
twbTherefore you most likely have a firewall, routing or name resolution issue.12:38
xperiaso apache is working. will check if the vhost is configured right. the thing is both servers are behind one static ip and on both servers bind is running great one time as master and one time as slave on the second server12:38
xperiahmmm will check that with the firewall12:39
twbUm, it would be exceedingly peculiar for a single (ip, port) tuple to be connected to multiple hosts.12:39
xperiaport 80 is open for the second server too in the firewall.12:40
twbA network diagram showing where your masquerading, DNATs, mod-proxying and load-balancing happen would be useful.12:40
xperiatwb: thank you a lot for your help. i have a router and behind this router the two servers are located. the router has port 80 open to both servers. if i do "dig secondserver.example.com @wanip" it resolve the domain great also if i do  "dig secondserver.example.com @lanipfirstserver" and "dig secondserver.example.com @lanipsecondserver"12:43
xperiaso bind runs on both servers great and i ca browse the sites on the first server with no problems12:43
xperiajust the second new added server dont display the sites even the hostdomain resolve great !12:44
xperiaa diagram would look like this12:45
xperiawan ip adress static | router | 2 servers12:45
xperiaat the moment only the first server works great12:45
Error404NotFoundIf i run a reverse webserver proxy, it means that everything will be loaded from the box behind proxy, right? Is there a purpose of having documentroot for a proxy host?12:52
cwillu_at_workError404NotFound, you don't necessarily have to proxy _everything_ on a particular host12:53
cwillu_at_worki.e., your static files could be served by apache12:54
Error404NotFoundcwillu_at_work, so i can actually load some of the files off the reverse-proxy webserve12:54
Error404NotFoundcwillu_at_work, great...12:54
Error404NotFoundcwillu_at_work, also if i am proxying a LAMP, do i need MySQL and PHP on the reverse proxy host? even if i am not serving any PHP content on that?12:55
cwillu_at_workError404NotFound, lamp is a marketing term :p13:00
cwillu_at_workError404NotFound, you should only ever install what you need13:00
cwillu_at_workif you don't need mysql and php on a box, don't install it13:00
Error404NotFoundcwillu_at_work, Nginx could be a possible alternate to Apache + mod_proxy + mod_proxy_html + mod_rewrite?13:01
cwillu_at_workI suppose so13:01
cwillu_at_workI tend to avoid the use of mod_rewrite myself13:01
twbIn lucid, gdm's default greeter has the same background as the default GNOME desktop, a bar along the bottom that looks like gnome-panel, and a login dialog in the middle that looks rather similar to the old gnome 2.10-ish "loading splash" -- especially since the list of users was empty (apparently it can't/doesn't enumerate LDAP accounts by default).13:19
twbThis was sufficiently confusing that it took me four reboots and a co-workers' help to realize that the system wasn't crashing in the middle of the casper "ubuntu" user's login -- it was actually the GDM theme.13:19
ttxDaviey: just popping in.. any questions on the groovy fix proposed by Chris ?13:30
ttxDaviey: looks like s/groovy/groovy-all/ in eucalyptus-java-common.links might fix it13:31
Davieyttx: It's not looking like the fix tbh.. I manually did the symlinks, and didn't produce joy13:31
DavieyJust built a package wth it done in the packaging, not expecting it to work13:31
Davieybut thought i should try13:31
Davieyttx: In other news, removing the battery in the laptop made the NIC start working again :/13:31
ttxtrying to run with groovy-all in the classpath instead of groovy doesn't fix it ?13:32
ttxDaviey: about the laptop -- hopefully just a tarnisient issue13:33
ttxtransient, even13:33
Davieyttx: Yeah, i'm investigating groovy issue as we speak13:33
Davieyttx: Not currently blocked on anything.. you should be on holiday :)13:34
xperiahello to all. how do you setup two web servers behind one wan ip to work right ?13:34
ttxok, I'll stay around for a few while reading up email -- just in case you have questions13:34
Davieyttx: thanks13:34
xperiawhat is the best way running two servers behind one wan ip ?13:35
xperiagood evening :-)13:38
xperiayes i am listening13:38
DanawarI'm no pro13:38
xperiame either :-)13:38
DanawarBut if you are trying to set up 2 servers for 2 fifferent things13:38
DanawarYou can use port forwarding on your router13:39
Danawarto send things like mail to one server and webvisits to the other13:39
Danawaris this what you are after or have i misenturpreted13:39
xperiawell i am running webservers that listen on port 80 both13:39
xperiaso i have two webservers behind a router with a static wan ip13:39
xperiaand need now to get the second server to run but somehow it wont13:40
Danawarso all traffic is going to server number 1?13:40
xperiawell in my router i opened port 80 to both servers13:41
xperiaso both servers should be able to answer13:41
Danawartricky ;/13:41
xperiabut at the moment only the first delever the page when i call up the hostdomain of the second server13:41
xperiai just get the wrong page for a host domain13:42
xperiathat should be delevered by the second server13:42
DanawarNot sure if that will help13:43
xperiawell the keyword for resolving that is as i have readed from your post "NameVirtualHost" need to study that more. thank you a lot for the help. your post descibe my problem exactly13:45
cwillu_at_workxperia, forwarding 80 to two different boxes won't work13:48
xperiawhy not if i may ask ?13:49
xperianormally it should work with no prob when vhost works13:49
cwillu_at_workvhost is different than this though13:50
cwillu_at_workwith vhosting, you've got one server answering to two different domain names13:50
cwillu_at_workin order for your router to figure out which server it's supposed to send the packets to, it would have to provide exactly that13:51
cwillu_at_worksetting up your server to forward one vhost to the other server is probably the best way to do it, if you want port 80 to work for both addresses (and assuming your router is fairly simple)13:51
xperiahmmm so if i understand you right you say me the router will probably never send any request to the second router13:52
cwillu_at_workto the second server, right.13:52
cwillu_at_workor it might just randomly choose :p13:52
jpicheI'm trying to find out the differences between the server and generic kernels, but I'm getting a 404 on http://www.ubuntu.com/products/whatisubuntu/serveredition/features/kernel, any ideas?13:53
xperiayeahh that could be the problem. then i need in my bind server to resolve to names to the wanip adress with a specific port like wanip:8081 and then redirect all trafic for this port to the second server in the router13:53
cwillu_at_workyou can't do that though13:54
cwillu_at_workdns has no concept of ports13:54
cwillu_at_worki.e.: xperia.com will resolve to your ip address, but there's no way you can also include a port in that13:54
xperiareally. i have read that bind can resolve hostnames with port number13:54
xperiaif that really is not possible with bind how can i run then two servers behind one static ip ?13:55
cwillu_at_worknow, a different approach would be to have a vhost on server A that simply redirects to xperia.com:8113:55
cwillu_at_workxperia, you use a vhost, and have one server proxy through to the other13:55
cwillu_at_workProxyPass / min=10 max=20 retry=013:56
cwillu_at_workProxyPassReverse /
xperiayeah this i have allready also thinked but redirects arent really good13:56
cwillu_at_workwould be the apache for it, (substituting the address as necessary)13:56
cwillu_at_workthe other approach would be to use a redirect13:56
cwillu_at_workeven so, you'll find at least some people won't be able to access the server on the non-standard port13:57
cwillu_at_workas many firewalls / proxies block such access13:57
xperiahmmmm did not thinked that such a small problem would need such strange fixes like redirects :-)13:57
cwillu_at_workI wouldn't recommend the redirect approach, as I said13:58
cwillu_at_workthe right solution is the reverse proxy forwarding13:58
cwillu_at_workthere are smaller servers that are dedicated to such use, although apache will work fine as well13:58
xperiaokay reverse proxy forwarding is a keaword that i need to look further13:59
xperiai am asking really how does the big hosting companys solve that problem14:00
cwillu_at_worknote that this implies all of the traffic from the second server will go through the first server as well, but that's pretty much unavoidable14:00
cwillu_at_workxperia, they have loadbalancers which basically do exactly this14:00
twbThe key words are "high availability" and "load balancing".14:01
xperiathey have hundreds of physical servers behind one ip and resolve thousend of hostdomains14:01
ttxDaviey: I'm going back to my vacation14:01
twbBut since you aren't a large corporation yourself, many of the things you find will be out of your experience/budget/feasibility range14:01
cwillu_at_workand they have several servers that are largely identical14:01
xperiawell thank you a lot for the info need to look really more into that14:01
twbFSVO largely = blade centers :-)14:02
cwillu_at_workmyself, I just use racks and racks of beagles :)14:03
twbI don't have a hard drive.  I just keep twelve thousand Indian teenagers in my basement and force them to memorize numbers.  -- http://bash.org/?quote=9814:06
Davieyttx: have fun!14:07
twbIn lucid, how do I get to the grub menu (so I can start memtest86+)?14:15
cwillu_at_workhold down the right shift key14:15
cwillu_at_worktwb, no, ugh is that they did it to save one second on the boot time :p14:16
cwillu_at_worktwb, you can change that in /etc/default/grub though14:17
twbWhat do you do about HHKBs and such, which have no RHS modifiers?14:17
cwillu_at_work... you change it in /etc/default/grub14:17
* twb rails at change. ALL change.14:17
twbcwillu_at_work: which is great unless you want to get to grub because something is wrong with the boot process14:17
cwillu_at_worktwb, silly, you should have fixed that before your boot process failed14:18
twbI'm starting to think I should install an ubuntu desktop on a scratch laptop, just so I can have experience dealing with these kinds of things before I run into them on production servers.14:19
MTecknologyI'm getting a crap load of these - Jun 17 16:42:33 incipio kernel: [25879.080753] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:63:d5:dc:54:42:49:02:8c:85:08:00 SRC= DST= LEN=40 TOS=0x00 PREC=0x00 TTL=128 ID=8990 DF PROTO=TCP SPT=65170 DPT=80 WINDOW=16227 RES=0x00 ACK FIN URGP=014:20
cwillu_at_workI'm trying to find the word to express the particular mixture of amusement, dismay and arrogance I'm feeling in response to that :)14:20
MTecknologyPort 80 from any to any is allowed into that server...14:20
twbI wish vendors wouldn't try to make the look and feel *completely different* with every point release14:20
twb(That's not a criticism of Ubuntu, but the industry in general.)14:21
MTecknologytwb: indeed14:21
twbLike how Finder.app has a completely different nonstandard toolbar every damn time.14:21
cwillu_at_worktwb, you really should have a test server of some sort to do testing on14:21
cwillu_at_workproduction servers generally aren't the place to try things for the first time14:21
twbcwillu_at_work: I do, but they're VMs14:21
jdstrandMTecknology: is is probably being denied because that packet isn't part of an existing connection (ie you were doing something, then rebooted, then the webserver sent some packets)14:22
twbAnd the production servers are a customer-owned hodge-podge, so I can't easily just dedicate one of 30 identical production machines to be my test machine.14:22
MTecknologyjdstrand: ooooh - that makes a lot of sense - thanks :)14:22
cwillu_at_workso, get a cheap laptop to do your testing on :p14:22
twbYeah, I have a 701 sitting at home14:23
twbNot that it would've found the RAID nonsense that I was running into on #ubuntu-server14:23
cwillu_at_workyou can use a raid on a single device, kinda sorta14:23
cwillu_at_workit's hard to substitute actual experience on the hardware though :/14:24
cwillu_at_workmy usual trick is to spend time figuring stuff out for people in the troubleshooting channels14:24
cwillu_at_workthat way I get the benefit of experience without the panic of having my own stuff broken :)14:24
twbYeah, I do that, too.14:24
twbI don't think too many lucid users are doing stuff with e.g. ten-year-old SCSI DDS drives, though.14:26
twbI didn't have to make that work, thankfully, but I had to transplant to 2GiB (yes, two GIG) PATA drive into another host to a new motherboard so that the lucid desktop CD wouldn't bork trying to load a framebuffer14:27
cwillu_at_worktwb, oh, you know how to pull up the real failsafe vesa x on the live cd?14:28
cwillu_at_workhit options, then escape, and then change the boot args to single;  then when the recovery menu comes up, choose failsafe x14:28
cwillu_at_workthe safe-x option in the actually boot menu doesn't do that14:28
twbWhat I want is for "textonly" to work when I append it to the boot: prompt14:28
twbI get mixed up between the various forks of casper14:29
cwillu_at_work"single" will give you that14:29
cwillu_at_workone curses menu, and then you can pull up a normal root prompt14:29
twbHum, I thought that was gone14:29
twbcwillu_at_work: erm, single *on the live CD*, before install?14:29
cwillu_at_workjust did it yesterday on a laptop that would hardlock14:30
twbWhen I did a netinst of lucid just now, I noticed that it has come full-circle and is installing and forcing me to configure an MTA (prior to tasksel), just like Debian did way back in 200614:31
twbI accidentally booted it without priority=low, so I assume it's the default behaviour14:31
nubeneed to create a file server for over 10 users of which I have found windows 7 is not a good solution. I prefer linux to any windows software, but I need to know what issues i might run into using a linux machine to manage file shareing for XP and Win 7 users15:03
nubelimitations to samba?15:04
DanawarI dont know any as of yet15:08
twbDanawar: it doesn't do AD very well yet15:09
twbi.e. you probably can't make it the master server of your hundred/thousand-seat AD-centric Microsoft-centric network15:10
DanawarWhat other software is there that can do Active Directory apart from windows server?15:10
twbThere isn't any15:11
Danawarahh i see15:11
Danawaris any one working on any?15:11
Danawarbecause i think that would be a very cool addition to linux15:11
twbnube: if you just want a place to dump files and you have a "hard shell, gooey insides" approach to network security, it'll be fine.15:11
twbDanawar: yes, the samba people are working on it15:11
Danawarideal cant wait :D15:12
nubetwb, i have 10 users at the moment that need to work off of one file server because i can't trust them to grab the files they are working on, put them on their local machine, and then when done put them back on the file server15:15
nubetwb, there will be more users and win 7 has a 10 connection limit15:15
nubetwb, thus now that my network has grown the win 7 machine that is sharing all the files used my users fails15:16
nubetwb, I think that an ubuntu server edition machine should be plenty sufficent for the purpose, but I need to research the possible issues before attempting to implement that option15:17
twbnube: samba will be fine for that15:18
nubethe only need is for all my users to work off of files on one machine...15:18
twbnube: do you have a scratch machine you can use as a test?15:19
twbIf you do, just spend an hour installing ubuntu-server on it and trying to get samba up and running.15:19
nubetwb, yes that was my intention.. use it for awhile and see if any issues arise15:19
twbIf it doesn't work, you've only lost an hour.  If it does, you have something concrete you can test with.15:19
nubei agree... just have to sell the idea to my boss15:20
nubewindows server OS seems like a waste of money and super overkill for the need15:20
twbIt will bit you on the arse if you don't have a "go to" guy who can give you Linux support for it15:22
nubetwb, at least their is plenty of documentation available for *nix...espcially ubuntu whereas a win machine is about worthless as far as docs go15:23
twbA large part of it is experience and knowing who to ask and where to look.15:24
twbThere's a SCO 5 (i.e. unix) host sitting on the desk here, and if it had ACTUALLY had bootstrap errors as the customer reported, I would have NO CLUE how to debug, let alone fix, it.15:24
nubetwb, always been able to implement it at home... have mac os X, win 7 and ubuntu working fine on one network, ssh x11 forwarding, all that good stuff15:25
smoserSpamapS, do you have a WIP that i could sneak a peak at ? on uec-run-instances15:25
twbAnd I wouldn't be much better with, say, freebsd or slackware.15:25
nubetwb, any decently spec'd standard desktop machine should be sufficient for hardware correct?15:27
twbDepends what you mean by desktpo15:27
twbBut for ten users, even a Pentium III would suffice15:28
nubetwb, 64bit dual core processor, 4 gig ram, msi platinum MB, terabyte hardrive, 650W powersupply (overkill)15:28
rgreeningScottK: hey. I'm working on packaging a web package called racksmith (http://racksmith.net). Looking for a) someone to review my package and b) possibly some assistance. Are you able or interested or point me to someone who may be interested?15:28
twbrgreening: official or third-party/ppa packaging?15:30
nubetwb, i meant ti power supply was overkill... other spec's plenty sufficient?15:30
twbnube: yeah, sure.15:30
twbnube: assuming it's not a slow (45,000?) laptop disk.15:30
rgreeningtwb: looking to get it into Maverick w/ future backport to Lucid.15:30
twbInteresting tool.15:31
cwillu_at_workdemo looks broken here;  entries in a rack display over the menu, while the racks themselves don't15:31
twbcwillu_at_work: looks OK in w3m-el, which is a nice change for a new-fangled web app :-)15:32
cwillu_at_workit's also painfully slow :p15:32
ScottKrgreening: It's made of php and mysql, so I'm really not the person.15:32
twbnube: I meant 5400rpm (bad) vs. 7200rpm (good).15:32
ScottKrgreening: I suspect zul might be a good person to review it once you have something.15:32
nubetwb, have to check but i doubt i spec'd anything under 7200..15:33
rgreeningScottK: thanks. It's a real pomising project and there's very few packages like it or close to it.15:33
twbnube: I mean, a ten-seat NAS could be handled by an 200MHz ARM with 32MB RAM.15:34
nubetwb, should be simple.. install the OS, copy the files to new machine, share folder, get users to to start working off the that shared folder, right?15:36
twbcwillu_at_work: BTW, for comparison, syslinux allows any shift, alt, caps or scroll lock to trigger the "gimme the bootloader menu"15:37
twbnube: yep15:37
nubetwb, is their any reason to use the ubuntu-server edition over the ubuntu desktop version as all it is being used for is sharing files?15:37
nubetwb, not using it as a web server or database server or any other of these common server requirements15:38
cwillu_at_worktwb, scrolllock on would be a good one actually;  you should file a feature request though15:38
twbnube: yes; it'll give you more appropriate install defaults without you needing to futz anything.15:38
twbnube: during install you'll be prompted about which services you want -- you should probably tick "file sharing" and "ssh / remote access", or whatever they're called15:39
twbcwillu_at_work: which package provides that functionality?  grub-pc?15:39
cwillu_at_worktwb, any of the grub2 packages share the same source packages;  grub-pc should work15:40
twbOK.  I meant grub-pc as opposed to one of the other bits that's involved in bootstrapping.15:40
twbcwillu_at_work: according to the changelog, either shift key will work in grub215:42
twbSilly question: does "splash" turn plymouth on/off as it did usplash?15:43
cwillu_at_worktwb, believe so, yes15:43
* twb makes note to check that15:43
cwillu_at_workactually, make that an unqualified yes15:43
Danawarwhats 'plymouth' ?15:43
cwillu_at_workDanawar, boot splash provider15:43
twbDanawar: the purple thing before the purple gnome thing15:44
cwillu_at_worktwb, note also the existence of "plymouth-log", and that "splash" without "quiet" should allow you to see most entries as well as interact with the console15:44
DanawarThe plymouth program allows you to change what the ubuntu loading screen looks like?15:45
DanawarAnd when set to quite shows you a long list of command that are being run or just a black screen?15:45
twbcwillu_at_work: at the end of the day, it's mainly about me wanting bootstrapping to be as dumb and predictable and reliable as possible.15:45
twbcwillu_at_work: so while I can understand the need for grub2 "modules" and os-prober and plymouth, I'm apprehensive about them being too clever, too early.15:46
cwillu_at_worknote that plymouth was been in use for a few years now15:46
cwillu_at_workjust new to ubuntu15:46
twbYeah, well.15:47
twbXenix was used for years, but that didn't make it any good15:47
twbMy gear usually isn't Ubuntu's core market, either.15:48
twbservers of arbitary vintage, routers, diskless PXE workstations, etc.15:48
cwillu_at_worklet me rephrase:  we took flack for not using it and instead inventing our own :p15:48
twbcwillu_at_work: you mean usplash?15:49
cwillu_at_workand xsplash15:49
twbWell, but I could trivially disable usplash in 8.04, so I didn't care.15:49
cwillu_at_workwell, you can trivially disable plymouth too15:50
twbI have yet to confirm that with my own eyes :-)15:50
cwillu_at_workcat /etc/init/plymouth.conf15:50
cwillu_at_workactually, that's a lie, the check is in plymouth itself15:51
twbcwillu_at_work: that's irrelevant, because if the root filesystem is mounted, I'm pretty much home free15:51
twbIt certainly has to at least be *installed*, because upstart Depends: mountall Depends: plymouth.15:52
twbSo I have (presumably unused) plymouth code installed on this router, which doesn't have any kind of video output at all.15:53
cwillu_at_workwhere do you see that?15:53
cwillu_at_workupstart doesn't depend on plymouth here15:53
twbcwillu_at_work: via mountall15:54
cwillu_at_workhmm, they should have made that a recommends:15:54
twbOh, cool.  "apt-cache show foo" now has a Supported: 5y field15:54
* cwillu_at_work suggests twb file another bug :)15:54
twbThat is so much easier than that old python script15:54
twbcwillu_at_work: fyi, "aptitude why plymouth mountall"15:55
cwillu_at_workyes, I saw15:55
twbI figured more people need to know about "aptitude why" ;-)15:55
cwillu_at_workaptitude why twb15:56
twbThat won't work on your system15:56
twbHuh.  It doesn't work on mine, either, despite it being installed.15:57
twb"Unable to find a reason to install twb."15:57
rgreeningzul: if you have a moment, I have some questions regarding packaging a php/mysql app and inserting via maintainer scripts some sql into the db...16:27
zulrgreening: sure16:28
rgreeningzul: so the package I am working on it racksmith from http://racksmith.net. It has an install.php, but doesn't setup the db ahead of time, so I was going to use dbconfig to manage everything instead of using the installer.16:29
zulok thats fine16:30
rgreeningI have the sql required in install.sql, but the installer has a couple of extra dynamic bits to be inserted.16:30
rgreeningcan I call mysql via maintainer scripts to insert those bits and got any example I can look at?16:31
rgreeninge.g.: "INSERT INTO `config` (`name`, `value`) VALUES('install_date', '".date("Ymd")."'),('version', '".$systemVersion."'),('ldap_auth', '0'),('ldap_server', ''),('buildingCanvasX', ''),('buildingCanvasY', ''),('ldap_basedn', ''),('ldaps_enabled', '0'),('ldap_prefix', ''),('ldap_group', '');"16:31
rgreeningthis is the PHP code for some extra bit being inserted.16:32
rgreeningthe install date is dynamic for example.16:32
rgreeningthoughts zul?16:32
zulrgreening: sure i would like at how packages like phpmyadmin do it as well16:33
rgreeningzul: phpmyadmin doesn't insert any sql via maintainer scripts16:36
zulrgreening: it was just an example but yeah what you said should be fine16:36
rgreeningzul: so, would this go in the postinst script only? The sql insert for above?16:37
zulrgreening: yes16:37
rgreeningok. I'll try it. ty zul.16:38
rgreeningzul: Can I ping you to review the package one I upload to review?16:38
zulrgreening: if i have time yes16:38
rgreeningawesome. ty zul16:38
failoverHi, i create a ubuntu guest, the network is using bridge, the ip is, i can access resources on network 10.10.2.x but can't ping these hosts, i got an error: "From icmp_seq=1 Destination Host Unreachable"16:53
failoverAny ideas ?16:53
=== JPP_ is now known as JPP
hggdhfailover: filters active on ICMP?17:29
failoverhggdh, yeap, my bad!17:37
hggdhfailover: welcome, and glad this was a simple thing ;-)17:40
failovermee too!17:41
failoverand thanks for the help17:41
uvirtbotNew bug: #596010 in ntp (main) "ntpd sementation fault using NMEA driver" [Undecided,New] https://launchpad.net/bugs/59601017:55
=== _grs80 is now known as grs80
SpamapSsmoser: sorry I just now got your message.. I'll push a branch up now18:07
smoserSpamapS, I'll  let it slide this once18:08
smoseri'm just curious. no hurry18:08
SpamapSsmoser: suer. Is the EC2PRE environment variable something that is standardized across more than just cloud-utils ?18:08
smosernot standard anywhere.18:10
smoserwe just want to provide some easy way to use euca- rather than ec2- or <insert-here>-18:10
SpamapSAh.. I like it.. seems like there should be a .cloudrc ;)18:11
smoseryeah. theres that too.18:13
smoseri stumbled upon mr.awsome recently, which looks pretty interesting18:14
Psi-JackHmm. I have just setup an Ubuntu 10.04 LTS Server with libvirt for kvm. And I have a guest OS up and running connected to my br0 physical network bridge, but when I try to ping from the guest OS to any IP outside of the physical server it's in, I get nothing. I've flushed the firewall out to make sure that wasn't causing it, and it's still happening and I'm not sure why.18:26
zulsmoser: mr.awesome is another of my aliases18:26
Psi-JackThe guest can ping the host's IP itself, but not beyond.18:26
smoseryeah, but you dont spell it as cloud-cool as he does18:27
smosermr AWSome18:27
zulDaviey: are you still around18:30
mathiazsmoser: mr AWSome <- nice - I like that :)18:30
SpamapSsmoser: lp:~clint-fewbar/+junk/uec-run-instances18:55
SpamapSsmoser: yeah mr.awsome lookw pretty cool... it might be useful to support it as an alternative to ec2-run-instances since it can do some cool setup tricks19:07
hggdhjdstrand: thank you for the comment on bug 596010, I did not know about it (and just learned a bit more)19:12
uvirtbotLaunchpad bug 596010 in ntp "ntpd sementation fault using NMEA driver" [Low,Incomplete] https://launchpad.net/bugs/59601019:12
pmatulisdoes anybody use IPSec on servers anymore?19:12
hallynjdstrand: kirkland: libvirt 0.8.1 in maverick succeeded in doing save/loadvm, fwiw.  pretty quickly, given it was nested inside kvm :)19:15
hallynjdstrand: so thx19:16
jdstrandsure thing :)19:16
kirklandhallyn: neat!19:16
jdstrandhallyn: will you be updating that bug then?19:16
kirklandhallyn: i look forward to your recipe in the wiki for that;  that's something i need to do more of19:16
kirklandDaviey: hiya19:16
hallynjdstrand: i'm going to wait until i can test a bit more (with some hw help from kirkland :)19:16
kirklandDaviey: i'm curious if you've made any progress with groovy19:16
hallynkirkland: uh, which recipe?  for save/restore?19:16
kirklandhallyn: jdstrand: should be today19:16
kirklandhallyn: yeah, all things snapshotting, in general19:17
hallynon my todo :)19:17
jdstrandfyi, the qrt test-libvirt.py does do save/restore, but obviously not in a way that would trigger the bug19:18
SpamapSanybody know the ec2 ami ID for our official lucid images? or better yet, do we maintain a page showing that?19:18
jdstrandhallyn: it would be cool if you could add a test to qrt, if feasible19:18
kirklandDaviey: i'm hoping the /usr/share/groovy/embeddable/groovy-all-1.7.0.jar  suggestion from nurmi helps?19:18
kirklandSpamapS: yeah, smoser has a page19:18
kirklandSpamapS: one sec19:18
SpamapSahh google doth provide19:19
kirklandSpamapS: http://uec-images.ubuntu.com/lucid/current/19:19
kirklandSpamapS: ack19:19
smoserSpamapS, right . there is that.19:19
smoserif you want to be fancy, there is19:19
smoserwhich is more programatic abble19:19
SpamapSwould be cool if uec-run-instances just did that query for you19:20
SpamapS--relese lucid --arch i386 --root instance19:21
hallynjdstrand: are you talking about bug 524447?19:21
uvirtbotLaunchpad bug 524447 in qemu-kvm "virsh save is very slow" [Wishlist,Confirmed] https://launchpad.net/bugs/52444719:21
hallynjdstrand: if so, i don't see how you can do save/restore so as to "not hit the bug".  unless yo usave/restore a 500k image...19:22
jdstrandhallyn: I wasn't doing timing in qrt. I was more just saying that if you have other save/restore tests, please add them19:23
hallynok (and you probably are doing a small image :) i don't have an automated test at this point.  i'll have to take a look at the qrt and see if i can tewak the existing test to detect the bug19:25
smoserSpamapS, yes, it would indeed be cool19:25
jdstrandso I guess the current test would trigger it, but it is a pretty small image19:25
smoserSpamapS, difficulty there, though19:25
smoserright now, we're19:25
jdstrandhallyn: the save/restore test is in scripts/libvirt/libvirt-apparmor.sh (to save you some time)19:26
smosera.) UEC/EC2 agnostic, by just fronting tools, we know nothing about --region. we just assume its right19:26
rgreeningzul: racksmith has jquery and jquery-ui included with the source, is that an issue, or do I need to patch to pull them out and use the system packages? Thoughts?19:26
smoserb.) there is no published data like that ofr UEC19:26
hallynjdstrand: kthx19:26
smoserbut, i really would like to do that19:26
smosererr... rather i'd like to have that support, it would be cool/19:26
smoserkirkland, ping19:27
zulrgreening: system packages please19:28
kirklandsmoser: yo19:28
kirklandccheney: any progress on that euca bug?19:29
smoserwhat do you want cloud-config-byobu to look like19:29
rgreeningzul: ok, I'll speak with upstream and see how easy it is to pull out.19:29
SpamapSsmoser: for uec it would be pretty easy for it to publish such a list by default though.19:29
smoseris the only knob that you'd want to set 'enable by default' ?19:29
ccheneykirkland, just caught up with my large email backlog and started working on updating the kernel now (back from lunch)19:29
smoserSpamapS, i dont think i follow19:29
smoserSpamapS, the issue with UEC is that those magic numbers differ for everyone's cloud19:29
SpamapSsmoser: right, so we'd have to query their cloud.. and just say "if you want this to work, you must fill in these optional metadata fields"19:30
SpamapSsmoser: long term, not short. :)19:30
SpamapSsmoser: I get a little pie in the sky sometimes... :-P19:30
smoserright. yeah., and to be consistent that query mechanism from AWS19:31
smoserthe thing that is doable *now* is naming convention19:31
smoserdescribe-images ... parse output... client side decide19:31
smoserheavy though and yucky19:31
Psi-JackOkay, I'm seriously loosing my mind here.19:31
smoserbut, our image names are consistently named, so it can be done.19:31
smoserbut describe-images without an ami id pulls > 1M of data on us-east-119:32
SpamapSsmoser: yeah thats no fun, it has to be a different metadata source19:32
Psi-JackApparently my networking issue was with my bonding. Which is really odd, cause this would be the first time that ever failed.19:32
smoserkirkland, ^^19:33
kirklandsmoser: hmm, what's cloud-config-byobu?19:33
smoserfor cloud-config syntax (in cloud-init). so you can do something like19:34
smoser--user-data "#cloud-config\nbyobu: on-by-default"19:34
ccheneykirkland, should i see this with lucid with just using the maverick kernel? or should i do a full maverick install for testing?19:34
kirklandccheney: i think full maverick install would be most accurate19:35
ccheneykirkland, ok will do19:35
kirklandccheney: reproduce the problem there19:35
kirklandccheney: then replace just maverick's kernel with lucids; reboot; should fix problem19:35
kirklandccheney: then it's a binary search of the kernels between19:36
ccheneyyea :)19:36
SpamapShmm.. is Amazon going to get mad at me for starting/terminating instances constantly? Maybe I should setup a euca here at home...19:40
wack47I currently have an ubuntu 9.04 kernel 2.62.28-19 server that loses network connection 4-6 times a week and the networking service has to be restarted to get connection back and I cant seem to figure out why19:45
smoserSpamapS, why would they get mad ?19:52
smosererr... wait. i mean... here , let me help you.19:52
smoserI'll charge you $0.03 cents for every instance you start up on my cloud19:52
smosereven if you shut it down immediately you pay for an hour.  I think they're happy with that.19:53
SpamapSgood point19:56
uvirtbotNew bug: #596034 in apache2 (main) "Please merge apache2 2.2.15-5 (main) from debian unstable (main)" [Wishlist,Fix released] https://launchpad.net/bugs/59603419:57
SpamapSClient.PendingVerification: This account is currently being reviewed by our team and verified as a valid new account. Please contact aws-verification@amazon.com if you have questions.20:02
SpamapSthey got mad at me20:02
Ichat[q] when, trying to upgrade   hardy to  10.04 -  the installer failed,  saying that it cant work out for me,  something with a missing package for LVM220:03
smoserwait , what ?20:05
smoserwow. how many instancess had you started ?20:05
SpamapSsmoser: 320:05
SpamapSI had 3 running20:05
smoseryeah, thats strange.20:05
SpamapSI had started 8 total in the last hour20:05
smoserway to little for them to care20:05
jo-erlendI had a power outage here today. Actually, I had two power outages in 15 minutes. I have /boot on a software raid1 and / on a raid5. Now, it doesn't boot, or at least, it takes a very long time. I only see a blinking cursor. Should I be worried?20:05
smoserwhen i run the image tests, i run 15 or so per ami per region20:06
SpamapSsmoser: agreed. I've run 8 before too20:06
smoserit costs about $4020:06
SpamapS3 weeks ago I had about 10 going for some puppet/elastic load balancer tests20:06
smoserthats very strange.20:07
Ichat[i] my system is set up: on   4  hdd's  (part 1  (4x mirrored  8gb = (lvm)  root )   -   part2    (4x  1gb =  4gb swap)       part 3  =  4x  0,99TB  raid 5    /home20:08
SpamapSThough then I used the console to spawn..20:08
SpamapSsmoser: maybe they don't like my newly created key/cert20:08
SpamapSanyway I have some errands to run anyway20:09
SpamapSdamnit I was so close. >:20:09
jo-erlendIchat, I've never seen the installer say "I can't work out for you. Something with a missing package for LVM2".20:09
Ichatjo-erlend    its not a clear error message -   but ill try to get it as acurate as possible...20:10
jo-erlendnever hurts.20:10
smoserSpamapS, well, push what you have.20:11
smoserkirkland, alright, so lets say i wanted to eanble byobu by default.20:11
smoserhow would i do such a thing for a single user20:11
smoserhow would i do such a thing for the system ?20:11
SpamapSsmoser: ok pushed.. ttyl20:12
smosermaybe Daviey knows that ?20:13
Ichatstep   1  inserting the disk  (ok)      2   part manager  (formatting as    ext3  (seems fine).         3    installing linux base    -    neard the end the installer says  (failed to install -   (not failed to install   %name%.deb  -   or   package corrupt .... nope just  failed to install ....20:13
smoseror any other byobu fan boys20:13
kirklandsmoser: sorry20:13
kirklandsmoser: there are two ways:20:13
Ichatin a dif terminall window  (f3)    i find some   errors about   cant install package  lvm2    not availible20:13
smoseri figured if i said "byoubu" enough times you'd come :)20:13
kirklandsmoser: a) each user can: byobu-launcher-install20:14
kirklandsmoser: b) or globally: dpkg-reconfigure byobu20:14
kirklandsmoser: does tht help?20:15
smosersure. hang on just a minute20:15
uvirtbotNew bug: #596041 in squid (main) "/var/tmp is not cleared after squid restart" [Undecided,New] https://launchpad.net/bugs/59604120:15
smoserkirkland, http://paste.ubuntu.com/451732/20:18
smoserso, the goal will be that:20:18
smosereuca-run-instances --user-data="#cloud-config\nbyoubu_by_default: user" emi-abceefg20:19
smoserwould do what you would think20:19
smosereuca-run-instances --user-data="#cloud-config\nbyoubu_by_default: system" emi-abceefg20:19
smoserfor all users20:19
Ichatso is there no mdadm for 10.04  amd64  server  (could that be it? )20:23
jo-erlendof course there is.20:23
wack47I currently have an ubuntu 9.04 kernel 2.62.28-19 server that loses network connection 4-6 times a week and the networking service has to be restarted to get connection back and I cant seem to figure out why20:25
Ichatso why is my install complainting about it not there (cant give the exact eng version of the error but it says some about it being not avail ...  i used  hardy to create the lvm volumes   and the raid devices.  they are on...20:25
ccheneykirkland, should installing the maverick nc not automatically detect the controller?20:26
* ccheney wonders if he needs to reboot his controller again or something20:26
ccheneykirkland, ping! :)20:33
ccheneygah its not running the webserver :-\20:38
ccheneythats probably why it can't find it20:39
* ccheney wonders if MaxClients = 1 is the problem20:39
MetaJakeanyone recommend good Offline reading for learning "Ubuntu-Server"?20:40
IchatMetaJake:  -   a few yah,   but id have to look up the author first...20:41
MetaJakevery new to ubuntu. but my goal is to learn server architecture for the sake of deploying Python driven websites.20:43
Ichatsorry about the nl  link  but the title is   En20:43
MetaJakelchat, gracias20:43
ScottKMetaJake: The Ubuntu Server Guide is also available as a PDF.20:43
ScottKThere's a link in /topic that I think will get you to it.20:44
hggdhsmoser: when you run the tests on EC2, do you ever have instances that fail to start?20:46
steffanMetaJake: https://help.ubuntu.com/10.04/serverguide/C/serverguide.pdf20:46
smoserhggdh, occasionally.20:46
smoseri attribute it to one of 2 things:20:47
smosera.) our kernel20:47
smoserb.) amazon's fault20:47
MetaJakesteggan, scottk thank you20:47
smoserrarely do i have a real strong feeling that it is 'b.'20:47
smoserbut sometimes i think their system just falls over20:47
MetaJakeanyone here deploy python driven sites such as Django or Pylons on servers they have built via Ubuntu-Server?20:48
* ccheney found out how to solve his problem after calling kirkland :)20:48
MetaJakeI'm sorry if thats a... too detailed question. I'm new to all this.20:48
MetaJakesteggan = steffan : \20:48
ubottuYou can use your <tab> key for autocompletion of nicknames in IRC, as well as for completion of filenames and programs on the command line.20:49
MetaJakeubottu: thanks for reminding me ! :)20:49
ubottuError: I am only a bot, please don't think I'm intelligent :)20:49
holmserI just set up my postfix/courier server, and it is all working except for the ssl/tls login.  anyone know of a good tut that covers ssl setup?20:59
holmserI've been googling for a couple days now and I can't seem to find one20:59
smoserkirkland, the above syntax is supported by cloud-init 0.5.12, which will appear shortly in an archive near you.21:00
* smoser heads out for the day21:00
jmedinaholmser: everything you need is in the postfix howto21:00
jmedinapostfix oficial documentation21:01
holmserI followed this tut to get my server set up: http://holmser.net/i21:01
jmedinaholmser: for courier afaik you need to concatenate a dh helman + publick key21:01
jmedinaholmser: do you already have the certificates?21:03
holmserI believe so... I'm double checking right now21:03
holmserI know I set up certificates in the tut21:04
holmserI'm still learning the whole mail server thing21:05
jmedinaI have my own howto:21:05
jmedinait is in spanish21:05
jmedinacheck the section ==Configurar parametros SSL/TLS para el cliente y servidor SMTP==21:06
jmedinathey are all the requiered parameters for postfix21:06
uvirtbotNew bug: #596064 in samba (main) "nmbd fails to start on boot - problem with upstart " [Undecided,New] https://launchpad.net/bugs/59606421:06
jmedinaif you want to create your own Certificate Authority check next chapter ==Creación de Autoridad Certificadora SSL/TLS==21:07
jmedinaI hope next week I finish the full howto21:08
jmedinaI already have the content, I jus need to translate it to docbook21:09
jmedinait is about 100 pages about mail servers...21:09
holmserok, I just rechecked the tut I followed, and I set up certificates21:09
holmserjust to be clear, when I check my email, I am only dealing with courier, correct?21:10
jmedinaholmser: yeap21:10
jmedinaif you use pop3 or imap you deal with courier21:10
holmserpostfix handles the sending and receiving of mail, and courier handles my logins?21:10
jmedinawell postfix is a Mail Transport Agent21:11
jmedinaits function is transporting messages via SMTP21:11
jmedinapostfix uses smtpd service to listen in the TCP/25 port21:12
jmedinaand smtp (client) service for sending mail out to other domains21:12
jmedinapostfix by itself doesnt manage logins/authentiatoion21:13
holmserok, so I should really be looking for courier ssl/tls tuts21:13
jmedinawell if you want to use a secure channel for sending mails you need to add ssl/tls to the smtpd service in postfix21:13
jmedinaif not you are going to send your user and password in plain over the wire21:14
jmedinathe same for pop3/imap21:14
holmserwell right now I have postfix set up to deliver mail through gmail through ssl21:15
jmedinaholmser: by the way Im not sure if courier is 5 years supported21:15
jmedinalast time I checked it was in multiver repository21:15
holmser5 years supported?21:15
jmedinaholmser: yeap, for the Long term Support for 10.04 server...21:16
jmedinawell time to launch21:17
jmedinadovecot is faster, secure and more flexible than courier, and is the recommended option for ubuntu21:18
jmedinawith courier I think you are on your own21:18
jmedinaI migrated most of my servers to dovecot, and they all rocks21:18
Ichatjmedina:  -  only one tiny flaw :S21:22
Ichatebox  (ubuntu's  favority webbased  managment suite (for  sbs like services)  -  still runs courier21:23
Ichatnot that i agree with them  or even the slow development of ebox ....  but its still ubuntu's (first bet -  as theres still to few support for webmin /usermin    -  specially for sbs- likes21:25
guntbertIchat: please when mentioning webmin remember that it is not supported and may break your system severely, as it cannot deal with some config files in ubuntu/debian21:27
guntbertIchat: otoh: do you have an ubuntu system with ebox? are you content with that?21:28
ccheneyso i got past the groovy bug but now it seems my nc isn't showing up it says i can run 0/021:31
hggdhccheney: is it really up?21:32
ccheneyhggdh, hmm i think so, not completely sure21:32
ccheneyi'm going to shut it down and bring it back up and see if it works21:33
hggdhtry ssh-ing there and checking; also verify KVM is loaded21:33
ccheneyhggdh, i didn't see anything that stuck out in /var/log/eucalyptus, but not sure what is wrong21:34
hggdhso eucalyptus-nc is running... what does euca_conf --list-nodes say?21:34
ccheneyeuca_conf doesn't like me21:36
* ccheney looks to see if he did something wrong in the howto21:36
hggdheuca_conf likes nobody ;-)21:36
hggdhtry (on the CC) sudo euca_conf --discover-nodes21:37
holmserI want to test my spam filter.  Where can I post my email address to make sure that I get a ton of spam?21:37
ccheneyhggdh, well it claims it can't get credentials21:37
ccheneyhggdh, http://pastebin.ubuntu.com/451768/21:38
hggdhccheney: oh, you must run it as root21:38
ccheneyhggdh, oh ok21:40
ccheneyhggdh, discover-nodes says:21:41
ccheneyINFO: We expect all nodes to have eucalyptus installed in //var/lib/eucalyptus/keys for key synchronization.21:41
ccheneyso it seems like either i botched up my maverick install or there are problems with registering on it using automated method21:42
=== oubiwann is now known as away
=== away is now known as oubiwann
hggdhseems like the keys did not get propagated21:43
ccheneyyea, going to try the package install instructions to see if that works for registering the node21:44
ccheneyshould there be a eucalyptus-nc-publication on the cloud controller in the 2 system setup?21:47
ccheneyor is that to just run on the nc?21:47
hggdhthe problem is that there is not really a way of propagating the euca keys without manual intervention of some sort21:48
hggdhat least, none that I know of21:48
ccheneyhggdh, kvm is not running on the nc btw21:49
ccheneyhggdh, i tried running: sudo -u eucalyptus ssh-copy-id -i ~eucalyptus/.ssh/id_rsa.pub eucalyptus@<IP_OF_NODE>  which did not help21:50
ccheneyit did seem to do something but didn't help make the node show up21:50
hggdhccheney: run kvm-ok -- what does it say?21:50
ccheneyhggdh, says its good21:50
ccheneyhggdh, this is the same two boxes i have been previously using on lucid and did maverick reinstall for them to test the kernel bug21:51
ccheneymaybe i should just pull the old a1 image down instead of using my synced current iso, it may have less trouble :-\21:52
hggdhccheney: the euca keys are stored under /var/lib/eucalyptus/.ssh21:53
hggdhhah, you already did iy21:53
hggdhccheney: er. Shouldn't the target be ~/.ssh/authorised_keys?21:54
hggdhdammit. authorized_keys. This s and z thing catches me every time :-(21:55
ccheneyyea its there 4 times now, heh21:56
ccheneyi'm going to give up trying to debug that issue and just download alpha 1 and see if it works21:57
ccheneyif that does then we know something else bad is happening with current21:57
ccheneyheh i just noticed there is a high bug about node reg22:00
goldinsI'm running UEC on 10.04 and when I run euca_conf --list-nodes it returns a blank line. How do I fix it?22:01
hggdhgoldins: this sounds like your node(s) did not register22:03
goldinshggdh: I tried running euca_conf --register_nodes and it seemed to work fine, but it still returns a blank line22:04
goldinsTrying rsync to sync keys with ""...done.22:05
hggdhgoldins: ssh into there, check if (1) eucalyptus is running; (2) run 'kvm-ok' and verify all is fine22:06
goldinshggdh: how do I tell if eucalyptus is running?22:07
hggdhps aux | grep eucalyptus22:07
goldinswell that returns apache's threads and avahi's publish thread22:08
goldinsis that all it takes for euca to be running?22:08
Ichatguntbert:  its not bad if it works22:08
goldinsincidentally, kvm-ok says that kvm is disabled in my bios22:09
Ichatwitch is not allways sadly to say22:09
Ichati got new info on my boot problem...22:09
guntbertIchat: up till now I tried it twice and removed it immediately from the machine - I want a manager software that works directly on the config files of the system and not on it own ones - thats why I was asking22:11
Ichati build a new set of  faikraids    1   4x 6gb  raid 1  = /root       4x  1gb   raid 10 - swap     and  the rest in raid 5..    here is the deal i get the same error bunt...22:11
Ichatguntbert - i understand yah,   - thats its real drawback - that and the slow development of it22:12
goldinsI would say that this is a bug, as it warns you while installing the CC that you must have VT turned on but doesn't warn you when installing the NCs22:12
Ichatthe error i get ;s       mdadm does not have a valid installeble candidate   it may be outdated or for a diferent system  -      even though its required by a diferent package......      base-setup  error   code 10022:14
ccheneyhggdh, i think my install might have gotten messed up due to the groovy bug and installing groovy may not have been enough to salvage it, in the process of installing the a1 version now22:41
DUEDAHLis it possible to control the bandwith on my ubuntu-gateway's NICs? so fx. dmz gets 10mbps/10mbps and LAN gets 40mbps/40mbps?22:43
jmedinaDUEDAHL: sure22:44
DUEDAHLhow? :)22:44
jmedinayou mean local traffic?22:44
jmedinaor internet?22:44
jmedinadamn I only get 2mbps XDDD22:44
DUEDAHLhaha :D22:44
jmedinaIm jelous I wont tell you22:45
jmedinawell it not that easy22:45
jmedinayou can use tc for that22:45
jmedinaI gess you already have iptables22:45
jmedinaI prefer shorewall for easy traffic shapping22:45
jmedinawith new kernels you can get egress and ingress traffic shapping22:46
jmedinaif you you can use tc command by hand22:46
jmedinaDUEDAHL: what do you use for your firewall ruleset?22:46
DUEDAHLi think im gonna try tc..22:47
DUEDAHLis shorewall gui?22:47
jmedinait its file based22:48
jmedinayou write rules and then shorewall will create iptables, ip, and tc rules22:48
hggdhgoldins: if kvm is disable on your node... are you usaing kvm for the virtualisaiton?22:48
DUEDAHLok cool22:48
hggdhccheney: yes, start fresh, probably a good idea22:48
Rigorm0rtisHello, I am having a problem with Ubuntu 10.04 server. When I transfer a  large over the network to the server hard locks during the transfer. This happens over ssh, and samba. The destination directory is an ext4 2tb hardware raid10 array. When I create a large file locally on the machine it does not crash. Memtest reports no errors after 3 passes. Does anyone have any ideas? I have a few...22:59
Rigorm0rtis...logs. I was able to set up a netconsole, and saw the output of a kernel oops (http://paste.ubuntu.com/451797/) on my logging machine. I also grabbed all of the other logs off of the machine after rebooting it.22:59
hggdhRigorm0rtis: good! Now, please open a bug on this -- make sure you add in the OOPS text in toto you captured23:02
Rigorm0rtishggdh: Where do I open the bug?23:02
hggdhon https://bugs.launchpad.net; you must have an account there23:03
Rigorm0rtisI have an account. How do I create a bug report?23:07
hggdhprobably a good idea is to run 'ubuntu-bug -f --save=<whateverNameYouWant> linux' on the server, and save & move the resulting crash file to a desktop, where you can then23:09
hggdhmove to a desktop and run 'ubuntu-bug -c <whateverNameYouWant>'23:10
hggdhRigorm0rtis: then manually attach your OOPS log (from the serial console)23:10
ccheneyhggdh, ok reinstall fixed it :)23:12
ccheneyso current maverick seems to have issues probably due to groovy that aren't fixed by just installing the old version from the ppa23:12
* ccheney now gets to testing the kernel issue23:13
Rigorm0rtisSo, is that ubuntu-bug program a part of the bug sumbission system?23:14
kirklandccheney: hey23:17
ccheneykirkland, hi23:17
kirklandccheney: Daviey confirmed that updating that symlink allows maverick's euca to start23:17
kirklandccheney: i just forwarded you a mail23:17
ccheneykirkland, ok, i tried installing the current maverick and then using the groovy from ppa but it refused to ever let me register the node, i am not sure why though23:18
ccheneykirkland, so i reinstalled back to alpha 1 and that worked for me23:18
ccheneyupgrading from alpha 1 iso install to current might work though with the change listed in the email23:20
hggdhRigorm0rtis: yes, it is the best way to report -- in your case, it will collect a lot of data (logs, etc) that will help triage23:21
Rigorm0rtishggdh: Okay, sounds good. I'm assuming at some point it will give me a chance to attach that netconsole output?23:22
hggdhRigorm0rtis: after the bug is filed, you will have to manually add it in, as an attachment23:23
Davieyccheney: fresh maverick install, sudo ln -sf /usr/share/java/groovy-all.jar /usr/share/eucalyptus/23:23
Daviey(line break fail)23:23
ccheneyDaviey, ok, will try that out later after doing the kernel testing23:23
Davieyccheney: you rock.23:23
ccheneyDaviey, on the kernel issue did you just need to revert the kernel on the nc or both?23:25
Rigorm0rtishggdh: All right, I think I'm getting it now. Unfortunately, I won't be able to access the troublesome box until Monday. Thanks for you help.23:25
Davieyccheney: just the main cloud23:27
Davieyyou don't even need an nc to test tbh23:27
ccheneyDaviey, ah ok23:27
Davieyjiboumans: Ping23:27
jiboumansDaviey: pong23:27
DBeetsWhat's the "Install minimal virtual machine" mode entail?23:29
DBeetsI'm trying google but my google-fu is apparently weak...23:30
ccheneyok this is weird23:45
ccheneyi installed 2.6.33 and now it won't give me console access anymore, just ssh23:45
Davieyccheney: i think that is a known bug23:45
* Daviey is starting to dislike maverick23:46
Davieyccheney: it's nearly middnight here.. so i'm going... have a splendid weekend.23:46
ccheneywhat do you hit to actually have grub show the menu? i thought it was hold down shift but that doesn't seem to work23:46
Davieyccheney: Oh, could you mail me your findings, when you knock off..23:46
ccheneyDaviey, have a good weekend :)23:47
Davieyccheney: i thought ANY key :/23:47
ccheneyhmm ok, it seems to hate me :)23:47
hggdhccheney: try ESC23:53
ccheneyhggdh, ok, i tried shift again and it worked, i found out i had to hold it down after it showed the grub loading message for a few seconds it seems23:54
Ichatwhat the *#$%% is wrong with ubuntu server 10.04 x64 .... it just seams like they trashed softraid rather than to 'improve'  it23:55
JackTOHi All, I have a question.. I'm new to Apache, and I have a web template that purchased, am I better installing it into the default dir /var/www directly in this folder or better creating a sub folder for every website I want to host (if I can do that?, but I don't want users to have to type the subdirectory when they come to my domain)23:56
Ichati fully zerrowed my 4 disks to exactly start all over again with new disks,  and still the installer give me unclear  unsolvable ???? -  mystery  error messages about mdadm being wrong23:56

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!