/srv/irclogs.ubuntu.com/2010/07/08/#ubuntu-server.txt

maek	anyone have any idea how to start mysql? I have no errors and "start mysql" and "service mysql start" just sit there	00:07
mathiaz	SpamapS: yop	00:08
mathiaz	SpamapS: that's what we're recommending for upstart	00:08
mathiaz	SpamapS: upstart job should be trivial enough to edit - and not require the use of a default file anymore	00:09
maek	mathiaz: so my box is up and running, network is running. I sshed to the box	00:09
maek	mathiaz: when I do "start mysql" I get notning, so its not that its waiting for a requirment right?	00:09
mathiaz	SpamapS: default files were introduced because editing init script directly were too error prone	00:09
mathiaz	maek: you're correct	00:10
mathiaz	maek: I'd look in /var/log/daemon.log to figure out why mysql is failing to start	00:10
maek	sorry for being dumb, im moving from rhel to ubuntu	00:10
maek	mathiaz: /var/log/daemon and /var/log/mysql/error.log arent showing anything when I do start mysql	00:16
=== erichammond1 is now known as erichammond
=== EvilTrek is now known as CaptainTrek
GhostFreeman_	How does one install Redmine using the version from apt	01:36
giovani	GhostFreeman_: /usr/share/doc/redmine contains configuration examples for lighttpd and apache2	02:07
=== metcalfc_ is now known as metcalfc
=== dendrobates is now known as dendro-afk
clusty	hey	02:51
clusty	how likely is it that lm-sensors cpu temperatures are totally bogus?	02:51
clusty	it's 35 deg celsius here and with 100% load for 5min temp uis 27deg	02:56
debugview	is webmin the best that i can have for my server?	02:56
clusty	..and i got no peltier cooling :D	02:56
=== dendro-afk is now known as dendrobates
giovani	clusty: quite possible that they're wrong	03:01
giovani	debugview: not sure what you're asking, but, afaik, webmin is not supported by ubuntu	03:01
giovani	!ebox	03:01
ubottu	ebox is a web-based GUI interface for administering a server. It is designed to work with Ubuntu/Debian style configuration management. See https://help.ubuntu.com/community/eBox	03:01
debugview	giovani, seriously?	03:01
debugview	lol	03:01
debugview	okie	03:01
debugview	but i had it installed anyway	03:02
clusty	giovani: bios does not have temp meter. guess i am screwed....	03:02
debugview	but thanks for letting me know about eBox	03:02
giovani	clusty: screwed? unlikelly -- do some research on your motherboard, see if others report the same thing, if not -- look at the other temps, see if they all seem off	03:03
clusty	giovani: lmsensors detects just the 2 core temps	03:03
giovani	what kind of board is this?	03:03
needhelp	can someone help me with inverse proportions ?	03:04
giovani	needhelp: this isn't #math	03:04
needhelp	for some reason it will not let me in #math	03:05
giovani	needhelp: sorry, can't help	03:05
clusty	giovani: intel 945GSE	03:06
giovani	clusty: that's a chipset -- what about the motherboard?	03:06
clusty	giovani: it's an asus atom PC	03:07
giovani	ok	03:07
clusty	http://www.newegg.ca/Product/Product.aspx?Item=N82E16883220006	03:07
clusty	no clue how would i check exact mobo	03:07
giovani	well is this a laptop or a nettop?	03:08
clusty	nettop i guess	03:08
clusty	size of 2 hdd's	03:08
giovani	well who made it?	03:08
giovani	not too many of them	03:08
clusty	asus	03:08
giovani	model number? heh	03:08
clusty	ASUS Eee Box EBXB202-BLK-X0081	03:09
clusty	thanks for help btw	03:09
giovani	well I'd go searching to see if other eeebox users have similar issues with lmsensors	03:10
clusty	ok thank	03:10
talcite	hey guys. I have 2 scripts in rc0.d. One is S35, and the other is K80. Which would be run first on shutdown?	03:14
clusty	giovani: curious why i don't have any stuff around thermal_zone, fan....	03:16
clusty	and other /proc/acpi common things	03:17
giovani	clusty: maybe the board doesn't have those sensors, or they're not supported by the version of linux you have	03:17
talcite	I'm trying to figure out why my apcupsd process isn't killing the power to the UPS. I suspect that networking is going down before the killpower step is called	03:18
debugview	hmm is using mrtg an overkill for bandwidth checks?	03:19
giovani	talcite: my understanding is that the kills run first, then the starts	03:20
giovani	talcite: so, K80 should run before S*	03:20
giovani	debugview: yes	03:20
debugview	giovani, what would you recommend for bandwidth graphs? one that monitors stuff then plot graphs..daily, weekly, monthly etc..	03:21
giovani	debugview: I'd whip something up in rrdtool, but that probably isn't the answer you want	03:21
debugview	giovani, yeah i just want a simple one	03:22
debugview	browsing through http://www.ubuntugeek.com/bandwidth-monitoring-tools-for-linux.html lots of stuff	03:22
giovani	well I don't know of anything simple that isn't overkill for a single server	03:22
talcite	giovani: ah. And I found the debian policy manual page for it. This all makes sense now. I can finally go home...	03:22
talcite	thanks!	03:22
giovani	talcite: excellent -- it's not debian-specific though	03:23
=== oubiwann is now known as oubiwann-away
giovani	talcite: if you'd like a definitive answer you can do what I just did -- read /etc/init.d/rc -- the actual script that executes these other scripts	03:24
=== needhelp is now known as new-nick
giovani	"# First run the KILL scripts."	03:24
=== new-nick is now known as loganhatesmath
giovani	"# Now run the START scripts"	03:24
talcite	giovani: hm, didn't know rc was the actual script. Anyways, is there any problem if I shutdown a machine without bringing down the network interface first?	03:25
talcite	the ups killpower command is called from the halt script, but the networking stop script is called before that. it's a SNMP ups, so naturally the signal never makes it there	03:26
talcite	I'm thinking of moving the networking entry to go after the halt command (effectively it will never get called)	03:26
giovani	what's the killpower script do, exactly?	03:27
talcite	giovani: it sends a snmp command to the ups to kill power to the outlets after 90s	03:28
talcite	pretty vital because the switches will drain the UPS battery dead otherwise	03:28
giovani	so when this machine is shut down	03:28
giovani	this script needs to be executed so that the UPS shuts down after 90 seconds?	03:28
giovani	why can't you run the script before shutting down the network stack, and then still have time to shut down gracefully before the 90 seconds?	03:29
talcite	giovani: it's pretty heavily integrated into the apcupsd package. I'd be ripping out a _lot_ of code if I did it that way	03:30
talcite	but you're right, it's an option.	03:30
giovani	I really don't understand why	03:30
talcite	the package wasn't designed with network UPSes in mind. It's making the assumption that we're using a usb or serial UPS (even though the binary fully supports network UPSes)	03:32
giovani	ok	03:32
talcite	actually, it's a bug that I should submit a report for. What is ubuntu's bug tracker called?	03:33
giovani	launchpad	03:35
giovani	not sure that this is a bug, but alright	03:35
giovani	https://launchpad.net/ubuntu/+bugs	03:36
talcite	thanks.	03:36
talcite	ah it fixed it!	03:44
talcite	aaaaah! Finally after 6 hours!	03:44
giovani	talcite: fixed how?	03:44
talcite	giovani: the UPS powered off =)	03:45
talcite	I removed the symlink for networking from /etc/rc0.d, and added a /etc/init.d/networking stop line in halt right after the ups shutdown command	03:46
talcite	still within the if/fi statement of course	03:46
giovani	gotcha	03:46
clusty	giovani: seems the kernel modules for my board have been buggered badly since 2.6.30	03:55
=== MTeck is now known as MTecknology
=== loganhatesmath is now known as EliTe
=== EliTe is now known as LyRiczZ
uvirtbot	New bug: #603001 in qemu-kvm (main) "Guest with user net can't access external network when host has static IP" [Undecided,New] https://launchpad.net/bugs/603001	07:01
twb	OK, /home is an NFS mount	07:27
twb	Why does "mount -oremount,lock /home" complain "an incorrect mount option was specified"?	07:27
kees	twb: is NEED_STATD=yes set in /etc/default/nfs-common ? i seem to remember needing that on at least the client	07:31
kees	but maybe that was something else	07:31
kaushal	hi	07:31
kaushal	when i do ./configure for memcached package on ubuntu 8.04 hardy server i get	07:32
kaushal	checking build system type... Invalid configuration `x86_64-unknown-linux-': machine `x86_64-unknown-linux' not recognized	07:32
kaushal	configure: error: /bin/bash ./config.sub x86_64-unknown-linux- failed	07:32
kaushal	Any clue ?	07:32
twb	kees: no; it should default to autodetecting whether it's necessary	07:34
twb	kees: I'll try that; if it all magically works after that, I'll be bloody pissed.	07:34
twb	(The problem is http://paste.ubuntu.com/460510/)	07:34
SpamapS	kaushal: you're trying to compile memcached 1.4.5 from upstream tarball on hardy, yes?	07:51
SpamapS	twb: can you paste the fstab line for /home?	07:55
SpamapS	twb: also, I'm not familiar with casper, whats that?	07:55
twb	casper is what makes the live CDs work	07:56
twb	echo >>/root/etc/fstab 10.128.0.1:/home /home nfs intr,bg,nodev,noexec	07:56
twb	...with, or without {no,}{bootwait,lock}	07:57
SpamapS	twb: hmm, the "auto detecting" of needing statd seems pretty different in /etc/init/statd.conf	07:59
twb	statd is started, but mountall(8) is retarded AFAICT	08:00
twb	mountall is a separate daemon that doesn't know that it needs to wait for statd/retry -olock fstab entries	08:00
SpamapS	twb: you definitely need locking right?	08:00
twb	Well, without locking users can log in on multiple hosts and potentially bust their files	08:01
twb	In practice I probably don't need it	08:01
SpamapS	twb: right its possible that mountall-net.conf needs a 'start rpc.statd'	08:01
twb	But all mountall-net.conf does is send a USR1 to the mountall daemon	08:01
SpamapS	twb: indeed, but it does that after networking has been configured	08:03
twb	But networking is configured before upstart starts	08:03
SpamapS	err	08:03
SpamapS	not really	08:03
twb	I'm booting off the network; if the network wasn't configured, it wouldn't be able to mount the root filesystem and find upstart to execute it.	08:04
SpamapS	right, so in this case, the 'start on net-device-up' should fire immediately	08:04
twb	Right -- I think it fires before the mountall daemon is even running	08:05
SpamapS	ugh	08:05
SpamapS	race condition after race condition. ;)	08:05
twb	At least, when I trace mountall-net, I can see it fails to find the mountall PID -- so either mountall hasn't started, or has already finished	08:05
SpamapS	twb: so maybe another 'start on' is necessary that makes mountall-net wait for 'mountall' to start and a net device to be up?	08:07
twb	Well, I can try it	08:07
SpamapS	start on started mountall	08:08
SpamapS	it sounds quite reasonable actually	08:08
twb	OK, that appears to have worked	08:09
SpamapS	w00t	08:09
twb	My brain hurts	08:09
SpamapS	can you report this as a bug?	08:10
twb	Yeah	08:10
twb	So what I have at the moment -- I think -- is "lock,bootwait" for /home in fstab, and "start on statd" added to mountall-net.conf	08:10
SpamapS	its SRU worthy, if we hurry it may make 10.04.1	08:10
twb	I'll turn single off and try to see if GDM dtrt	08:10
SpamapS	wait you added 'start on statd' ?	08:11
SpamapS	or 'start on started statd' ?	08:11
twb	The former	08:12
twb	And it isn't working if I turn single off	08:12
twb	(I was confused between "started" being there or not.)	08:12
SpamapS	ok, I was thinking more that mountall-net needs to wait for 'mountall'	08:14
SpamapS	and possibly statd	08:14
twb	Without "single", neither "start on statd" nor "start on started statd" work -- it just hangs there in plymouth forever	08:15
SpamapS	single meaning booting into single user mode?	08:15
twb	Single meaning I pass "single" on the boot parameter list	08:15
twb	(And friendly-recovery isn't installed.)	08:15
SpamapS	yeah ok	08:15
SpamapS	I think you need mountall-net to wait for mountall to be started, otherwise the event it sends to mountall will be missed	08:16
SpamapS	I'm actually worried that mountall won't have signal handlers in place when its job is "started" though, so I wonder if you can introduce a small delay	08:16
SpamapS	races suck. :-P	08:17
twb	Isn't the whole point of upstart to avoid "sleep 1" hacks?	08:17
SpamapS	yes	08:17
* twb gripes		08:17
SpamapS	the other way to do it is to have mountall emit a specific signal after it is ready to handle the USR1	08:18
SpamapS	s/other/right/	08:18
SpamapS	haha btw	08:19
SpamapS	the "auto detecte" mode of NEED_STATD.. is just "if its not no, set it to yes"	08:19
twb	It also seems pretty weird that Keybuk wrote mountall because upstart didn't do it internally -- but keybuk maintains upstart, too.	08:20
twb	I can't get it to work with "single" anymore, so either I accidentally had "nolock" in the ramdisk (because I forgot to update it), or that ONE TIME, I managed to miss the race	08:21
SpamapS	twb: did you try it with "start on started mountall" in mountall-net.conf ?	08:26
twb	That and statd?	08:27
twb	I'll try that now	08:27
twb	Actually, as a test, why don't I just have it issue a USR1 every second forever	08:27
twb	If that works, we can narrow down exactly when to send the USR1	08:28
twb	OK, that works with single!	08:29
SpamapS	very narrow window between when the exec will return, and the forked child handles SIGUSR1	08:31
SpamapS	but still, I suspect its possible to run into it	08:31
twb	ALRIGHTY	08:31
twb	If I change mountall-net.conf to "start on startup" and a script of "while :; do pkill -USR1 mountall \|\| :; sleep 1; done", it WORKS PERFECTLY -- the fourth USR1 succeeds	08:32
SpamapS	doh	08:32
SpamapS	I mean great, but DOH	08:32
SpamapS	this makes sense...	08:33
twb	So either mountall-net isn't triggering on statd -- which we fixed -- of its attempt to find the mountall PID is totally wrong and broken	08:33
SpamapS	well more importantly, statd could be beating mountall	08:33
twb	Well, first I'm going to change it to a single "pkill -USR1 mountall", and run that on the appropriate events.	08:34
SpamapS	entirely possible the fix for bug 506902 wasn't done right too	08:35
uvirtbot	Launchpad bug 506902 in mountall "mountall-net SIGUSR1 handling can signal the wrong process by mistake" [High,Fix released] https://launchpad.net/bugs/506902	08:35
SpamapS	twb: I need to get to bed, but I would at least give your script a try with 'start on started mountall' and see if it succeeds on the 1st or 2nd SIGUSR1	08:35
twb	I think it really needs "starting mountall && started statd" or so	08:36
twb	i.e. statd is fully up, mountall is running and waiting for events	08:36
SpamapS	started	08:37
=== erichammond1 is now known as erichammond
SpamapS	starting would be too early	08:37
SpamapS	twb: but yeah, they probably both need to be started	08:37
* SpamapS must really go now		08:37
twb	You really helped, thanks	08:37
R3cur51v3	Should the Ubuntu Server edition have django 1.0 SVN final installing by default, or is it a severely outdated mirror?	08:45
twb	R3cur51v3: ask rmadison	08:46
R3cur51v3	rmadison, Should the Ubuntu Server edition have django 1.0 SVN final installing by default, or is it a severely outdated mirror?	08:46
twb	$ rmadison python-django -uubuntu -slucid ==> python-django \| 1.1.1-2ubuntu1 \| lucid \| source, all	08:46
R3cur51v3	ah, the douches still have Intrepid installed	08:47
R3cur51v3	figures, with a $5 vps	08:48
R3cur51v3	twb, to upgrade to Lucid, do I just change all instances of intrepid to lucid in /etc/apt/sources.list, then update?	08:51
twb	No.	08:51
Jordan_U	R3cur51v3: NO	08:51
twb	!upgrade > R3cur51v3	08:51
ubottu	R3cur51v3, please see my private message	08:51
R3cur51v3	ty twb and Jordan_U	09:05
R3cur51v3	night all	09:05
=== lionel_ is now known as lionel
\|eagles0513875\|	hey guys i am having connectivity issues on a clean install of lucid server 64bit	09:09
\|eagles0513875\|	hold on	09:09
twb	\|eagles0513875\|: still there?	09:14
MasterZuFu	Hey everyone. I'm running Ubuntu Server 10.04 on a dedicated host. I'm logged in via putty. I'm running a MyBB forum on it at the moment. For some reason email isn't working. It happened after I restarted the host. I think I'm using exim4, I just restarted that service and it didn't start back up. I recently installed ebox. Could someone help me troubleshoot this please?	10:24
serverhorror	MasterZuFu: mailservers aren't exactly the easiest components. If you don't have some setup to test and learn from I really really suggest to use a hosted mail provider.	10:34
serverhorror	MasterZuFu: apart from that. Check which mailserver you have installed, then check the logs (in case of exim /var/log/exim/{main,paniclog} IIRC)	10:35
MasterZuFu	serverhorror, I don't have the option of an alternate mail server. it's built into the site software to use the email server on the server itself. I'd have to edit the core files to change that.	10:36
serverhorror	MasterZuFu: then use nullmailer and let it forward the mails for you to a real server.	10:37
MasterZuFu	hmmmm ok, let me take a look. one moment please	10:38
MasterZuFu	serverhorror, here's what the panic log says: 2010-06-01 10:00:08 socket bind() to port 25 for address ::25 failed: Cannot assign requested address: daemon abandoned	10:40
serverhorror	MasterZuFu: something is listening on port 25 already	10:40
serverhorror	(probably)	10:40
MasterZuFu	gay. let me check ebox.	10:40
Jeeves_	http://www.computerpowertest.com/	10:40
Japje	MasterZuFu: netstat -plnt	10:41
twb	ss is the new netstat	10:41
Japje	rly..	10:42
MasterZuFu	nothing's running under port 25	10:42
Jeeves_	twb: thanks! :)	10:44
Jeeves_	saves me the typos :)	10:44
MasterZuFu	I've got the following ports open: 993, 995, 389, 10023, 3306, 110, 143, 80, 22, 3128, 5432, 443, and....ummm O.o 22 whya are there two 22 running? O.o odd. Anyways..no 25.	10:47
serverhorror	MasterZuFu: paste the output of netstat -tulpen on some pastebin and tell us the link	10:47
MasterZuFu	http://pastebin.com/G2EQcXu4	10:49
serverhorror	MasterZuFu: and are you sure that log line is the one regarding the error, because since 2010-06-01 some time has past. At least in my <del>time</del>date zone...	10:49
MasterZuFu	let me check again	10:50
MasterZuFu	yeah that's the only line in it	10:50
serverhorror	I'd truncate the log files. restart exim and then see what the logs say. Just to make sure. But I'd also verify that it's indeed exim that is the mailserver. you said you believe you run exim, pls verify first which smtp server you are using...	10:52
MasterZuFu	ok, one sec	10:53
MasterZuFu	this restarts exim4 right? /etc/init.d/exim4 restart	10:57
MasterZuFu	I don't see any logs at all.	10:57
MasterZuFu	should I reinstall it?	10:57
MasterZuFu	nevermind, i sent my sysadmin an email. He'll look into this for me. thanks everyone.	11:14
MasterZuFu	:)	11:14
uvirtbot	New bug: #603091 in backuppc (main) "Have an authenticated access for personnal backups" [Undecided,New] https://launchpad.net/bugs/603091	11:51
kaushal	Hi	12:09
kaushal	I have a weird issue about disk space	12:09
serverhorror	hmmm playing around with UEC and I can't seem to connect the eucalyptus-nc to the cc. As of now I'm also blind and couldn't find some more in depth docs how I'd do that manually. Any hints/links?	12:21
serverhorror	.oO(is anybody even using UEC? - I have a feeling it's not really being used)	12:28
phretor	hi, what's wrong with this remounting? http://pastie.org/1035764	12:29
serverhorror	phretor: sound slike /dev/sda6 isn't mounted :)	12:31
phretor	serverhorror: it's mounted to /	12:32
serverhorror	looks, good to me. maybe some strange ordering issue with mount options. I'd simply iterate thru the options and see where it chokes...	12:35
adamdv	serverhorror: Never used UEC. Dont like the concept.	12:36
adamdv	Might try it sometime. heh.	12:36
serverhorror	seems everybody still stays with either home-grown scripts or closed source :)	12:39
adamdv	Closed source :)	12:43
serverhorror	heh, we run home-grown. OpenVZ with a few monitoring/management scripts on top of it	12:44
serverhorror	s/a few/	12:44
serverhorror	probably	12:44
adamdv	Well, we run somewhat home grown (due to be professionally released later this year). Its closed source however.	12:45
serverhorror	<rant>so you're going to sell me software, and I have to find some other professionals that can give me support?</rant> (sorry, couldn't resist it)	12:47
kaushal	can someone guide me about the post on https://lists.ubuntu.com/archives/ubuntu-users/2010-July/222568.html ?	13:09
adamdv	serverhorror: Haha, not at all ;)	13:12
sommer	morning all ;-)	13:23
twb	In "apt-conf dump", I see APT::Never-MarkAuto-Sections	13:25
twb	Does this mean I can tell apt that everything in, say, libs, is ALWAYS implicitly MarkAuto'd?	13:26
twb	Sigh. So it looks like something happened to pam since 8.04	13:52
twb	It wants me to use /usr/share/pam-common	13:52
twb	Ahahaha	13:54
twb	I see the problem now: pam is working, but nss isn't configured anymore because I changed my "auth-client-config" call to a "pam-auth-update" call	13:54
serverhorror	kaushal: files that are unlinked but still opened by some program do take up disk space. Most common weirdness reason is to delete large log files, while some daemon still writes to them...	14:02
twb	This fixed it: auth-client-config -plac_ldap -tnss	14:16
zul	nxvl: did you ask for a sync for augeas?	14:26
oru_work	i'm not sure why i'm getting this error when restarting mysql http://www.pastebin.org/386376	14:33
giovani	oru_work: it's fully self-explanatory	14:33
=== Guest15330 is now known as RoyK_wrk
adamdv	oru_work: The init scfript is deprecated in favor of upstart. However, init still operates as it should. (Not sure if it will in maverick though)	14:36
=== adamdv is now known as AdamDV
oru_work	i don't get it	14:37
AdamDV	oru_work: service mysql restart	14:39
AdamDV	Try that.	14:39
AdamDV	Thats the new way to do it, as opposed to manually invoking a script from path	14:40
AdamDV	More efficient as I understand.	14:40
oru_work	AdamDV, sudo service mysql restart	14:40
oru_work	mysql start/running, process 1181	14:40
AdamDV	Yes?	14:40
giovani	heh	14:41
oru_work	heh :)	14:41
giovani	oru_work: your ability to be confused is impressive	14:41
oru_work	giovani, lolz :)	14:41
oru_work	so it worked /	14:42
oru_work	?	14:42
giovani	yes	14:42
oru_work	but why is it still complaining when I do /etc/init.d/mysql restart ?	14:43
giovani	it's not complaining	14:43
AdamDV	BECUASE INIT IS DEPRECATED!	14:43
giovani	it's informing you that you're using the old method	14:43
AdamDV	Its telling you that, that its being deprectated for upstart, aka service.	14:43
AdamDV	Its not like init fails when you restart it that way, it just warns.	14:43
AdamDV	Its not fatal ffs.	14:43
=== adamdv1 is now known as AdamDV
oru_work	hmm	15:00
oru_work	phpmyadmin doesn't start	15:00
oru_work	this is what I see when I point my browser to phpmyadmin Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly.	15:01
oru_work	here is what i get. http://www.pastebin.org/386395	15:02
kirkland	ccheney: http://launchpad.net/uec-provisioning and lp:uec-provisioning	15:11
ccheney	kirkland, thanks	15:11
lau	i am trying to re-bundle an existang aws ec2 ubuntu image ami-2d4aa444 i get this same error http://developer.amazonwebservices.com/connect/message.jspa?messageID=179635	15:15
lau	I tried placing the new sources.list in sources.list.d but still the same error when re-bundling an ami any idea ?	15:15
kirkland	ccheney: i've given you commit access on that branch	15:23
ccheney	kirkland, ok	15:23
nxvl	zul: i think so	15:27
zul	nxvl: k just double checking	15:27
nxvl	zul: LP: #598862	15:35
MTecknology	How can I see what params were used to launch a command?	15:45
uvirtbot	New bug: #603192 in apache2 (main) "install of libapache2-mod-php5 may not result in enabled php" [Undecided,New] https://launchpad.net/bugs/603192	15:46
SpamapS	twb: still around?	15:51
twb	Yeah	15:51
SpamapS	twb: https://bugs.launchpad.net/ubuntu/+source/mountall/+bug/537133	15:52
uvirtbot	Launchpad bug 537133 in mountall "mountall issues with NFS root filesystem" [Medium,Confirmed]	15:52
SpamapS	twb: did you see that?	15:52
twb	Looking	15:52
twb	That sounds like my bug	15:52
SpamapS	yep	15:53
twb	What's the lp equivalent of "bts subscribe NNNNNN"?	15:54
SpamapS	click "Subscribe" ? ;)	15:55
SpamapS	actually	15:55
SpamapS	click the little ! next to "does this bug affect you?"	15:55
twb	I'm not logged in, because that would require me to maintain a distributed cookie database across a large number of browsers and hosts	15:56
SpamapS	err.. you don't have even one openid provider?	15:56
twb	I don't understand the trust model of openid, so I can't use it	15:56
twb	AFAICT it requires me to trust root on the openid provider's host	15:56
twb	Even so, that wouldn't work across multiple browsers	15:57
SpamapS	twb: as opposed to trusting root on *everybody you log in to"'s host?	15:58
SpamapS	twb: OpenID would have you logging in once on each browser.	15:58
twb	Huh? I am root on my own machines.	15:58
twb	But my own machines do not run OpenID servers	15:58
SpamapS	twb: You're saying you never log in to any web services ever?	15:58
SpamapS	btw you can run your own OpenID provider	15:59
twb	Doesn't that require me to have a public IP address?	15:59
SpamapS	and never give anybody your auth details.	15:59
Jeeves_	!launchpad-- # Freezes my browser for a second of five	15:59
ubottu	Error: I am only a bot, please don't think I'm intelligent :)	15:59
twb	And last time I looked, the only OpenID server implementations were PHP, which I sure as shit aren't going to allow on my machines...	16:00
SpamapS	twb: yes you would need to run one server that the consumers can ask for auth tokens	16:00
SpamapS	twb: thats just FUD	16:00
Jeeves_	Who needs openid if your browser can remember passwords	16:00
SpamapS	twb: http://wiki.openid.net/Run-your-own-identity-server	16:00
twb	Jeeves_: my browser can't.	16:00
Jeeves_	I don't want to sign in just once. That means if someone else somehow ever know's my password, he can do the same	16:01
SpamapS	Jeeves_: who needs a browser when a post it on your monitor can remember your one password that you use everywhere? ;)	16:01
Jeeves_	twb: You're running netscape 3?	16:01
* ccheney really hates firefox, its eating my system		16:01
Jeeves_	SpamapS: I don't use one password	16:01
twb	Rather, they can usually parse .netrc, but that's for HTTP/SSL, not for the stupid shitty form behind it	16:01
twb	Jeeves_: no, wget, curl, GET, w3m, emacs-w3m, html2ps, midori, opera, and if all else fails, firefox 1.5 -- in roughly that order.	16:02
twb	I quite liked galeon back before gnome took control of it	16:02
Jeeves_	twb: Cool. You run Gentoo right, and you love SM? :)	16:02
twb	No, I love UIs that are consistent across multiple websites, that automatically filter out useless content like images and iframe advertisements	16:03
SpamapS	twb: I like that you're using a ton of software. I do think OpenID would actually work out well for you.	16:03
SpamapS	useless	16:03
SpamapS	hahahaha	16:03
twb	The web developer isn't allowed to tell me how a page should look.	16:03
SpamapS	dude, serious lolz ..	16:04
Jeeves_	twb: You also use sciccors when reading the newspaper?	16:04
Jeeves_	Who the hell does this editor think he is! Arranging the newspaper for me!	16:04
twb	SpamapS: btw, the solution i to send a signed mail with "subscribe trentbuck@gmail.com" to NNNNNN@bugs.launchpad.net	16:04
SpamapS	twb: actually you'd like the reader plugin for chromium	16:04
twb	Jeeves_: if by "newspaper" you mean sites like lwn -- yes, I have the XSLT equivalent of greasemonkey scripts to rearrange the page for me.	16:04
ScottK	twb: OpenID is a MITM attack by design, so PHP should be the least of your concerns.	16:05
SpamapS	twb: yeah, we definitely support people who are reluctant to take the blue pill , aka web 2.0. ;)	16:05
Jeeves_	twb: No, I mean a newspaper. Made in a press, and with paper made of trees. You know, those brown/green things outside your window..	16:05
twb	Jeeves_: that would require me to have a window	16:06
twb	ScottK: yeah, I figured it was something dodgy like that	16:06
twb	ScottK: the local EFF weenie is into it, which is why I perhaps gave it more credence than normal	16:07
ScottK	twb: All the openid coolaid drinkers claim it's not, but I think they just don't actually understand anything about security.	16:07
SpamapS	ScottK: interesting. I did read about the issues with the first implementations, but haven't those been solved by changing the mechanics of the system a bit to ensure you're not ever trusting a consumer site w/ your auth credentials?	16:08
ScottK	twb: So I hand your web site my LP OpenID credentials and you check with LP and become I'm convinced I'm who I say I am. What prevents you from reusing those credentials to log into LP, donning my archive adminstrator hat and accepting arbitrary code into the archive?	16:08
twb	ScottK: hum. I assumed it was at least unidirectional	16:09
ScottK	SpamapS: How do I know I'm really talking to LP and not a forged replica?	16:09
twb	i.e. more like a kerberos tgt	16:09
ScottK	twb: It's slightly more complex since in theory the redirect me to LP and I give the information to LP directly, but I don't really know for sure where they are redirecting me too.	16:10
SpamapS	ScottK: SSL certs are the only recourse there.. but I'm more interested in your replay scenario.	16:10
twb	We should just use Kerberos to log into websites	16:10
ScottK	SpamapS: I really haven't looked at it in detail for quite some time, it may be better now.	16:10
twb	Wikipedia was talking about some next-gen replacement for openid + some other thing	16:11
SpamapS	ScottK: if you put your username/pass into a site without checking to see who owns the cert, then you pwned yourself. ;)	16:11
ScottK	SpamapS: Anything that depends on users reading SSL certs if full of fail.	16:12
ScottK	They probably wouldn't get me, but I'm unusually careful about such things.	16:12
SpamapS	ScottK: its the web. What other security paradigm is there?	16:12
twb	On that subject, is anyone else annoyed about the lack of information about the requested action in gnome's replacement for gksu?	16:13
ScottK	twb: I'm not annoyed at all.	16:13
twb	"org.gnome.dbus.rhythmbox has asked to do something!"	16:13
twb	I can't work out how to make it say "...has asked to install ffmpeg" or so	16:13
Jeeves_	twb: You're not using gnome, right?	16:13
ScottK	SpamapS: It would be much better from a security design perspective if the user went directly to the openID provider and the openID provider contacted the site they wanted to access.	16:14
twb	Jeeves_: I'm not, but I have to make SOEs for prisoners who do	16:14
SpamapS	ScottK: a lack of convenience will mean users just won't use the system.	16:14
ScottK	SpamapS: Convenience over security has got us into a mess.	16:14
SpamapS	into what mess?	16:15
SpamapS	entering a user+pass per website isn't happening because of user convenience. that is the mess.	16:15
SpamapS	users hate that	16:15
SpamapS	and they make the wrong choice every time, reusing passwords over and over	16:16
twb	What I hate is some fucker like launchpad requiring me to "log in" simply to provide them feedback about what isn't working	16:16
twb	I should be able to just give my email address. If I'm lying, let the spam system handle it.	16:16
Jeeves_	twb: Did you happen to learn about a thing called spam?	16:16
Jeeves_	I mean, a captcha won't work for you either	16:17
SpamapS	twb: anonymous feedback is great, but I think its reasonable to ask that you provide a way to contact you for more information.	16:17
twb	SpamapS: which is not the same as making me remember a password	16:17
SpamapS	twb: and you can just provide us with your OpenID URL.	16:17
SpamapS	or like you said, a signed email	16:17
twb	I can't give you a signed email until I first log into the web UI	16:18
ScottK	twb: What I find more annoying are requirements for authenticated access to just to read public data in the LP API (that may have been fixed, not sure)	16:18
SpamapS	ScottK: thats not to prevent anonymous reading, but to prevent abuse.	16:18
twb	It also annoys me how EVERY time I go from a public, read-only page on https://wiki.ubuntu.com to, say, google, my browser modally warns me I'm going ssl->non-ssl	16:19
ScottK	SpamapS: There are lots of best practices around doing that without requiring authentication.	16:19
twb	I don't know why ubuntu's wiki needs to be uncachable	16:19
SpamapS	twb: you can of course turn that message off, or play with google's new SSL access. ;)	16:19
SpamapS	ScottK: actually thats bug worthy.. file one.. on.. launchpad. ;)	16:20
twb	SpamapS: I can turn it off by main force, but not fine-grained enough to avoid false negatives	16:20
ScottK	SpamapS: It also creates security risks for me because I need to give more code more access to my ID.	16:20
SpamapS	twb: ubuntu's wiki is in SSL for the authenticated source, not for the encryption.	16:20
ScottK	SpamapS: I'm on hiatus on launchpad bugs. If I filed a bug every time LP annoyed me, I'd never do anything else. Feel free to file one and quote me though.	16:20
twb	SpamapS: eh? What does that guard against?	16:21
Jeeves_	ScottK: Indeed, Launchpad as an idea is great. But it usually just sucks :(	16:21
SpamapS	twb: well unless somebody compromises the ssl cert, you know its coming from the owners of Ubuntu.com ;)	16:21
twb	I don't need to know that.	16:22
SpamapS	twb: or of course, unless somebody compromises your CA list. ;)	16:22
twb	I'm quite happy for unreliable third parties to give me useful suggestions about fixing cock-ups in ubuntu	16:22
SpamapS	twb: well the maintainers of wiki.ubuntu.com think its important, whether you need it or not.	16:22
twb	It's not like I run stuff from wiki.ubuntu.com without testing it -- that'd be nuts	16:22
ScottK	Jeeves_: I won't even go that far. Getting Fedora related comments on bugs I'm working on because of some great integration thing has never once helped me. It just clutters my inbox.	16:23
SpamapS	twb: think about it.. MITM puts up commands for noobs to send him /etc/shadow via email in the middle of HOWTO's ..	16:23
twb	SpamapS: yes, but I'm not a noob, so I should be able to CHOOSE not to use SSL	16:23
twb	SpamapS: w.u.c actively forces me to use SSL for EVERYTHING	16:23
jpds	ScottK: You can use the Launchpad API anonymously.	16:24
Jeeves_	twb: What a life you must have.	16:24
SpamapS	twb: ohnoes	16:24
ScottK	jpds: Then maybe someone was doing it wrong, but I've been asked for credentials to read data.	16:24
Jeeves_	twb: Do you complain in the store as well? "Which *** forces me to use dollars everytime!? I'm SMART, I should be able to CHOOSE the currency I pay in!"	16:25
jpds	ScottK: >>> from launchpadlib import launchpad	16:25
jpds	ScottK: >>> lp = launchpad.Launchpad.login_anonymously("hi")	16:25
twb	Jeeves_: I haven't yet, because I haven't found a store that wouldn't take my preferred currency.	16:26
Jeeves_	twb: So you do get outdoors? :)	16:26
SpamapS	Jeeves_: play nice.	16:26
twb	SpamapS: don't worry about it, man	16:27
Jeeves_	SpamapS: I'm always nice. :)	16:27
* jpds prods Jeeves_.		16:27
SpamapS	I have a lot of respect for twb and scottk's positions. They have important things to do, and they are not interested in flowery 90% solutions.	16:27
twb	Saying "nice" when you mean "pleasant" isn't nice at all.	16:27
* twb points wildly at _Good Omens_)		16:28
twb	SpamapS: I have important things to do; I just don't do them ;-)	16:28
zul	hey mathiaz	16:29
twb	SpamapS: but I'd draw your attention to quote #3 of http://en.wikiquote.org/wiki/George_Bernard_Shaw#Sourced	16:29
RFleming	Good morning.	16:30
RFleming	Any squid/sarg proxy admins here?	16:30
ScottK	jpds: I remembered what it was. It's pull-lp-source in ubuntu-dev-tools. It needs authorization to get source from other than the current development release.	16:30
ScottK	Gotta run.	16:30
mathiaz	zul: o/ - how hot is your part of canada?	16:30
SpamapS	twb: I missed the levity. ;)	16:30
RFleming	I'm trying to figure out why sarg-reports isn't generating reports from cron :)	16:30
RFleming	mathiaz, my part of Canada is a steamy 30 at the moment.	16:31
zul	mathiaz: its pretty hot...but im down the street from you	16:31
jpds	ScottK: That seems to have been fixed.	16:31
mathiaz	zul: hm down?	16:31
mathiaz	zul: you've come all the way to montreal for air conditioning?	16:31
zul	mathiaz: well probably up the street is the more correct term	16:32
zul	mathiaz: no i had other things to do as well ;)	16:32
mathiaz	zul: cool - I'll catch up with you later today	16:33
mathiaz	zul: I'll stop by in the afternoon	16:33
zul	mathiaz: sounds good	16:33
mathiaz	zul: when do you leave?	16:33
zul	mathiaz: 4pm	16:33
uvirtbot	New bug: #603211 in apache2 (main) "Apache fails to start after reboot due to missing /var/run/apache2 direcotry when ssl is enabled " [Undecided,New] https://launchpad.net/bugs/603211	16:36
=== oubiwann-away is now known as oubiwann
alex88	hi guys, on 9.04 for share internet i type "/sbin/iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o venet0 -j MASQUERADE" now on 10.04 it says "iptables: No chain/target/match by that name." any clue?	17:00
alex88	i've installed csf firewall like on 9.04	17:00
alex88	also i'm running on a vps	17:09
serverhorror	alex88: "iptables -t nat -L" works?	17:48
SpamapS	you know.. given that Amazon charges by "the box is up" or "the box is down" ..	17:53
SpamapS	wouldn't it be a good thing to do to run seti@home niced on all EC2 instances? ;)	17:54
serverhorror	SpamapS: why would I burn my precious cpu cycles which the company pays for to seti? Just to run into some strange performance problems?	17:55
osmosis	what is the relationship between apache ServerLimit and MaxClients?	17:56
SpamapS	serverhorror: clearly you're just not ready to meet E.T. ;)	17:57
SpamapS	osmosis: Depends on which apache MPM you are working with	17:57
serverhorror	osmosis: http://httpd.apache.org/docs/2.0/mod/mpm_common.html#maxclients	17:57
SpamapS	osmosis: but in general, ServerLimit is the limit on the number of httpd processes that will be running, while MaxClients is the limit of http requests that will be serviced at one time.	17:57
SpamapS	serverhorror: and really, nice and CPU-only processes.. is it really going to give you "some strange performance problem" ? Unix has been doing nice since the Nixon administration. ;)	17:59
serverhorror	osmosis: actually http://httpd.apache.org/docs/2.0/mod/mpm_common.html#serverlimit explains that better than the previous link. Upstream docs for httpd are one of the best available...	17:59
SpamapS	serverhorror: SETI's a bad idea though, how about protein folding or something to help cancer research? :)	17:59
serverhorror	SpamapS: I just don't see a reason to put more on the server than necessary. After all it's me that has to get up at 2am for one reason or another, and once any of those boing! (or whatever they call it now) processes is the reason I can assure you they're gone in no time...	18:01
serverhorror	s/is the reason/are the reason	18:01
serverhorror	SpamapS: but I'm pretty sure you could just suggest that to google. They'll be pretty happy to use that suggestion, they have tons of computational power lying around for nothing...	18:02
SpamapS	serverhorror: do you actually run any EC2 instances?	18:02
serverhorror	nope, I run rackspace	18:02
SpamapS	right, so .. ec2 is a little different.. ;)	18:03
serverhorror	and a few hundred of our own :)	18:03
SpamapS	but really..	18:03
SpamapS	it was a joke. Thank you for taking it seriously.. I feel special. :)	18:03
serverhorror	SpamapS: not that much actually. The main difference is that if an EC2 instance goes down it's gone. rackspace keeps those persistent	18:03
zul	SpamapS: ping need your opinon on something	18:03
SpamapS	zul: bring it	18:04
serverhorror	.oO(why do I always fall for those topics - I have a feeling I'm taking computer stuff to serious lately)	18:04
zul	SpamapS: im going to be converting the apache init script to upstart which means we loose stuff like /etc/init.d/apache2 graceful, should we have a wrapper script that has the same functionality	18:04
SpamapS	zul: you can't have arbitrary arguments to 'service ' somehow passed to upstart?	18:06
zul	SpamapS: not afaik no	18:06
Kaffien	if i'm using a usb hard drive cart type device do i have to use automount? or does ubuntu mount usb devices another way now?	18:07
SpamapS	zul: I don't think a wrapper in init.d is the best thing, other than to maybe tell people "init.d is deprecated please use apachectl"	18:07
zul	SpamapS: yeah thats an option as well	18:07
zul	i was thinking of a wrapper for apachectl or something...meh	18:07
=== smoser_ is now known as smoser
SpamapS	zul: well apachectl should be in the path	18:11
serverhorror	zul: at least the manpage of service says that COMMAND can be arbitrary. Thou I have no idea about upstart yet	18:11
SpamapS	zul: /win 10	18:14
SpamapS	damnit	18:14
osmosis	how can I view the changelog for a update before installing it?	18:20
serverhorror	osmosis: apt-listchanges is your friend	18:21
osmosis	if i look at the changelog for linux-image-server ...all it says is * Lucid ABI 23	18:32
serverhorror	so?	18:33
serverhorror	bah! fck UEC...I'll just script the stuff myself	18:35
=== erichammond1 is now known as erichammond
ScottK	jpds: Good to hear it's fixed. Maybe I'll try it again.	18:38
agentbob	have anyone here ever got zend optimizer working on ubuntu?	18:42
agentbob	i'm having a problem getting zend optimizer to work on my server... i've tried removing everything possible extension and nothing seems to help... i just get lots of random segfaults with zendopt installed... anyone ever run into this? i'm thinking maybe suhosin patch is messing with zo	18:42
rsr	Hi, I have a server running ubuntu-server 10.04. I have installed squid on it and it is working fine I have now installed ebox with all its modules. My goal is to manage proxy and firewall through a web interface. Am I approacing it the right way?	18:45
rsr	it is installing 96 mb of ebox packages	18:45
milk_	can anyone help me with mysql apache and myphpadmin. when i login i just get an error Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly.	18:49
Roasted	anybody ever set up freeradius? kind of stuck @ the ntlm_auth part	18:50
RoyK	milk_: can you pastebin errors from the log file?	18:50
RoyK	!pastebin	18:50
ubottu	For posting multi-line texts into the channel, please use http://paste.ubuntu.com \| To post !screenshots use http://tinyurl.com/imagebin \| !pastebinit to paste directly from command line \| Make sure you give us the URL for your paste - see also the channel topic.	18:50
Roasted	RoyK, were you the guy I talked to late last night??	18:50
milk_	RoyK: where is the log file located ?	18:50
RoyK	milk_: /var/log/apache2	18:50
milk_	RoyK: http://pastebin.com/eDZ5aS7C	18:52
Roasted	freeradius, anybody?	18:54
sjm	RoyK, you missed milk_ 's response: http://pastebin.com/eDZ5aS7C	18:57
RoyK	milk_: [Thu Jul 08 17:45:42 2010] [error] [client 127.0.0.1] File does not exist: /usr/share/phpmyadmin/scripts <-- that should give you a hint :)	18:58
milk_	i figured it out	18:59
milk_	thanks	18:59
milk_	now i have another problem.. how do i make a new super user	18:59
milk_	?	19:00
sjm	milk_, in what context? for the linux box, for mysql, for .... ??	19:00
milk_	mysql i think	19:00
milk_	i think i accidentally deleted the root account :D	19:01
sjm	milk_, you should be able to GRANT appropriate priviledges for whatever user you want in phpmyadmin	19:01
milk_	cant log in ..	19:01
sjm	milk_, try: http://ubuntu.flowconsult.at/en/mysql-set-change-reset-root-password/	19:02
RoyK	sjm: if he has deleted root from the user table, he might want to 'grant all on . to root@localhost identified by 'newpass' with grant option' after restarting mysql	19:06
bogeyd6	i dont think there is even a need for a root user	19:08
milk_	how do i do that ?	19:08
milk_	sjm: this doesnt seem to be working	19:09
RoyK	milk_: see the url above - disable grant tables and grant all rights to a new users, root or not	19:09
RoyK	remember to restart mysql after creating the new user, or everyone can get in with full superuserrights	19:10
milk_	i still cant login	19:12
RoyK	login as an existing user - not root	19:12
milk_	i dont understand	19:13
RoyK	http://dev.mysql.com/doc/refman/5.0/en/server-options.html#option_mysqld_skip-grant-tables	19:13
RoyK	milk_: did you remove the root account from the user table?	19:14
milk_	RoyK: i think so.. stupid i know	19:16
Roasted	anybody got experience with freeradius?	19:19
RoyK	Roasted: running it, yes, but not familiar with that module you're using	19:19
Roasted	RoyK, what module are you referring to?	19:20
RoyK	ntlm_auth	19:20
Roasted	ntlm_auth is what I've been finding on every guide to set up freeradius....	19:20
Roasted	as far as adding a linux freeradius server ot a windows domain	19:21
RoyK	wouldn't it be easier to let windoze handle radius?	19:21
Roasted	sure would	19:21
RoyK	afaik it can do that from around win2k	19:21
Roasted	except theres a known issue with windows radius	19:21
Roasted	they dont reauthenticate after 30 days, they just drop the laptops	19:21
Roasted	its a known issue and no fix is in sight	19:21
Roasted	meanwhile, everybody Ive talked to swears by using freeradius. evidently it works better in a lot of aspects beyond the 30 day bug we ran into	19:22
Roasted	so here Iam, giving it a go :P	19:22
RoyK	heh - that's a bitch	19:23
Roasted	tell me about it	19:23
Roasted	I got the ubuntu box on the domain and everything	19:23
Roasted	but the next step says to run a command with ntlm_auth blah blah blah blah blah	19:24
Roasted	it fires back an error...	19:24
RoyK	what did you use? just ldap+kerberos?	19:24
Roasted	hence my sudden desire to drink heavily	19:24
Roasted	I set up samba + kerberos n this box	19:24
Roasted	I didnt see anything about ldap	19:24
RoyK	ok	19:24
RoyK	out of interest - does that use windows IDs or just mapping to unix IDs?	19:25
Roasted	what do you mean windows IDs?	19:25
RoyK	user IDs, I mean	19:25
Roasted	not sure I follow - I didnt set up any users or deal with users yet	19:25
RoyK	I mean, when users store files on samba shares, does ubuntu use windows UIDs or does it map to unix IDs?	19:26
Roasted	oh, we dont use samba for file server services	19:26
RoyK	I think it maps ... opensolaris doesn't :)	19:26
RoyK	ah	19:26
Roasted	samba has other things bundled with it that helps in the radius process	19:26
RoyK	ok	19:26
RoyK	ic	19:26
Roasted	this box Im setting up is dedicated to radius	19:26
Roasted	we have a windows storage server, blah blah	19:26
RoyK	we don't use windows for storage - too many unix (linux and (open)solaris boxes) - windows nfs isn't really very good	19:27
Roasted	well, were in a school district with windows clients	19:27
Roasted	before I started, there were no linux servers	19:27
Roasted	we dont even have any macs anymore	19:27
RoyK	well, good thing you started, then :)	19:28
Roasted	lol	19:28
Roasted	well I didnt have much involvement with our one linux server	19:28
Roasted	however	19:28
Roasted	that server + an open source free app on it has saved the district around 300,000 dollars	19:28
Roasted	so yeah, the rest of the department is starting to think more highly of linux and its capabilities - whihc is why were trying to use freeradius to patch an MS problem with their version of radius.	19:28
Roasted	its just a bit of a headache	19:28
RoyK	we're setting up this rather nice HA cluster for storage on Nexenta soon - 40TB (or 48) on the big boxes	19:28
RoyK	zfs rocks!	19:29
Roasted	we were having a dns issue a while back	19:29
Roasted	I almost wonder if thats why its failing to authenticate	19:29
Roasted	god troubleshooting sucks on 3 hrs of sleep	19:30
RoyK	heh - no use, really - get more sleep and you'll work faster	19:30
Roasted	its either this or I get back to wiring. its 91 degrees, and to save power they shut off AC in the rest of the building.	19:30
Roasted	Im a fan of AC today, which is why Im trying ot crack this bastard. :P	19:31
uvirtbot	New bug: #603285 in dovecot (main) "Please convert init script to upstart." [Undecided,New] https://launchpad.net/bugs/603285	19:31
milk_	im still having a problem	19:32
SpamapS	mathiaz: if you wanted to sponsor something for me.. https://code.launchpad.net/~clint-fewbar/ubuntu/maverick/cloud-init/glusterfs-mount-example/+merge/29490	19:35
mathiaz	SpamapS: cool	19:35
mathiaz	SpamapS: merge proposal grabbed	19:36
Roasted	NT_STATUS_NO_LOGON_SERVERS: No logon servers (0xc000005e)	19:36
Roasted	quick, someone. stab me in the face.	19:36
milk_	RoyK: will reinstalling reset everything ?	19:42
SpamapS	mathiaz: thanks! :)	19:42
RoyK	milk_: apt-get remove --purge mysql-server might help, yes, but it'll destroy any databases you have	19:42
milk_	RoyK: ok :D thanks	19:43
=== jussi is now known as jussio1
Hypnoz	It seems logrotate is rotating logs, but the apps like mysql and apache don't feel like giving up the old file handle and using the new one, and continue writing to a file that is open, but not listed with "ls" in the directory	19:53
Hypnoz	this is causing my /var mount point to grow very large, even though du -sh shows it as being fairly small, because the file handle never closes for apache and mysql logs	19:54
Hypnoz	Once i stop the mysql or apache process completely (in the case of apache, sometimes having to do a kill command), the file handle closes, and the volume regains that free space	19:54
serverhorror	Hypnoz: that is normal, most of the daemons do what you want if you send them a signal (mostly SIGHUP)	19:55
Hypnoz	I know apache needs to be reloaded after a log rotate, it's in the logrotate script for apache to to a reload afterwards	19:56
Hypnoz	but it still seems that isn't allowing it to release those open file handles	19:56
Hypnoz	I'm wondering if a apache2 restart is needed instead, which would be much more planning and work	19:57
RoyK	Hypnoz: the logrotate scripts should do this automatically - if they don't, something's wrong in them	20:00
Hypnoz	well I can even manually do an apache2 reload on the server, but that doesn't release the file handles	20:01
Hypnoz	if you do something like lsof \| grep /var/log \| grep deleted	20:01
Hypnoz	you might see a lot of files	20:01
Hypnoz	all these files that apache can't let go of until the processes is fully restarted	20:01
RoyK	Hypnoz: I haven't seen this sort of problem in a while, but it might be apache is getting a SIGUSR1 where the threads/processes won't be stopped until they're done with what they're doing, and something's hammering the server. changing that to a SIGHUP will stop them and will require a new HTTP request	20:01
RoyK	iirc apache2ctl graceful sends a SIGUSR1 whereas apache2ctl reload sends a SIGHUP	20:03
Hypnoz	hmmm ... i thought reload called apache2ctl graceful in the init.d script	20:04
RoyK	yes, it does	20:04
Hypnoz	but apache2ctl reload is different?	20:05
RoyK	and that doesn't force a restart of anything, it just tells the processes/threads to please restart when done with whatever they're doing	20:05
RoyK	erm - restart	20:05
Hypnoz	ahhh	20:05
RoyK	not reload - my failt	20:05
RoyK	restart sends a SIGHUP, closing things and restarting them	20:05
RoyK	failt - nice, new word	20:06
Hypnoz	i like it. a combination between fail and fault	20:06
RoyK	:)	20:06
RoyK	a typo saves the day :D	20:07
Hypnoz	so what you are saying, which may be true since these servers are really busy with apache, is that apache never gets a break to close it's connections, so a reload may not be enough, a restart may be needed once in a while	20:07
Hypnoz	to force the connections to close, and the new log file handle to be used	20:08
Hypnoz	if the apache connections never get to 0, then the new log file handle will never be used	20:08
RoyK	IIRC new connections aren't accepted after a SIGUSR1, but ongoing connections will remain	20:08
Hypnoz	so new connections should use the new log file, and old connections would use the old file until they die?	20:09
RoyK	I _think_ so, but I'm on rather thin ice now :)	20:09
RoyK	as on #httpd	20:09
Hypnoz	I guess I will try to move this into #httpd then	20:11
* RoyK just joined to see the discussion :)		20:12
SpamapS	mathiaz: alright, submitted to cloud-init directly instead. Thanks for the review. ;)	20:23
osmosis	error installing sun-java. http://dpaste.com/216084/	20:52
=== shade_ is now known as shade\
rsr	how can I completely remove ebox and all the things it installed?	21:08
SpamapS	smoser: http://paste.ubuntu.com/460782/	21:11
smoser	hm..	21:11
SpamapS	smoser: results in this fstab http://paste.ubuntu.com/460786/	21:12
smoser	yeah. i just verified broken ness.	21:13
SpamapS	meaning, broken code?	21:15
SpamapS	smoser: http://paste.ubuntu.com/460795/ that works, but.. bleh.. not elegant. :-P	21:31
smoser	i'll get the mounts fixed	21:31
smoser	its a bug	21:31
SpamapS	smoser: ok cool, I have plenty else to do, so no rush. :) should I report it on lp ?	21:32
smoser	sure, why not.	21:32
smoser	its not liking things that don't start with a /	21:32
SpamapS	artifacts are always nice when users go googling for the same problem. :)	21:32
smoser	in an effort to allow "sda3"	21:32
SpamapS	so its treating it like a special thing, 'ephemeral0' or whatever?	21:33
SpamapS	can't report bugs on launchpad	21:34
SpamapS	ok bug 603329	21:38
uvirtbot	Launchpad bug 603329 in cloud-init "mounts option to cloud-config refuses to mount volumes not starting with /" [Undecided,New] https://launchpad.net/bugs/603329	21:38
SpamapS	smoser: have to run for a bit, lets catch up on this tomorrow	21:38
smoser	SpamapS, yeah, theres a comment in the code.	21:39
smoser	the metadata service is really annoyhing in that sometimes a key in it will ('ephemeral0') will have a value of /dev/sda1	21:40
smoser	and other times a value of 'sda'	21:40
SpamapS	smoser: I went ahead and marked the "work" done on my side, and I'll re-visit which example to push into the package during the beta cycle. I also targetted that bug to alpha-3.	21:46
SpamapS	smoser: if you'd like, I can send a mege proposal for the workaround one now, so you can just approve/merge it if you think the bug will be too much (or I can take the bug on too)	21:47
SpamapS	anyway.. have to run.. ttyl	21:47
smoser	just assume that mnt works	21:50
ghost_	is it possible to recover the passphrase used to create a rsa or maybe dsa key?	21:53
hmca	!kubuntu 10.4 to enterprise Cloud Front-end ubuntu server	22:12
ubottu	Error: I am only a bot, please don't think I'm intelligent :)	22:12
hmca	Hi all!	22:13
hggdh	do we use to tag bugs as metabugs?	22:16
uvirtbot	New bug: #603363 in openssh (main) "sshd never stops, prevents umount of /usr partition" [Undecided,New] https://launchpad.net/bugs/603363	23:21
=== dendrobates is now known as dendro-afk
ruben23	hi guys anyone familiar with proxmox virtualization..	23:47
SpamapS	ruben23: no what is it?	23:51
ruben23	it is a virtualization platform same as paid version of vmware	23:52
ruben23	able to handle and manage KVM and OPnVZ virtualization.	23:52
ruben23	http://pve.proxmox.com/wiki/Main_Page	23:54
webPragmatist	whats the consensus on where to store apache certs for domains	23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!