[00:07] <maek> anyone have any idea how to start mysql? I have no errors and "start mysql" and "service mysql start" just sit there
[00:08] <mathiaz> SpamapS: yop
[00:08] <mathiaz> SpamapS: that's what we're recommending for upstart
[00:09] <mathiaz> SpamapS: upstart job should be trivial enough to edit - and not require the use of a default file anymore
[00:09] <maek> mathiaz: so my box is up and running, network is running. I sshed to the box
[00:09] <maek> mathiaz: when I do "start mysql" I get notning, so its not that its waiting for a requirment right?
[00:09] <mathiaz> SpamapS: default files were introduced because editing init script directly were too error prone
[00:10] <mathiaz> maek: you're correct
[00:10] <mathiaz> maek: I'd look in /var/log/daemon.log to figure out why mysql is failing to start
[00:10] <maek> sorry for being dumb, im moving from rhel to ubuntu
[00:16] <maek> mathiaz: /var/log/daemon and /var/log/mysql/error.log arent showing anything when I do start mysql
[01:36] <GhostFreeman_> How does one install Redmine using the version from apt
[02:07] <giovani> GhostFreeman_: /usr/share/doc/redmine contains configuration examples for lighttpd and apache2
[02:51] <clusty> hey
[02:51] <clusty> how likely is it that lm-sensors cpu temperatures are totally bogus?
[02:56] <clusty> it's 35 deg celsius here and with 100% load for 5min temp uis 27deg
[02:56] <debugview> is webmin the best that i can have for my server?
[02:56] <clusty> ..and i got no peltier cooling :D
[03:01] <giovani> clusty: quite possible that they're wrong
[03:01] <giovani> debugview: not sure what you're asking, but, afaik, webmin is not supported by ubuntu
[03:01] <giovani> !ebox
[03:01] <debugview> giovani, seriously?
[03:01] <debugview> lol
[03:01] <debugview> okie
[03:02] <debugview> but i had it installed anyway
[03:02] <clusty> giovani: bios does not have temp meter. guess i am screwed....
[03:02] <debugview> but thanks for letting me know about eBox
[03:03] <giovani> clusty: screwed? unlikelly -- do some research on your motherboard, see if others report the same thing, if not -- look at the other temps, see if they all seem off
[03:03] <clusty> giovani: lmsensors detects just the 2 core temps
[03:03] <giovani> what kind of board is this?
[03:04] <needhelp> can someone help me with inverse proportions ?
[03:04] <giovani> needhelp: this isn't #math
[03:05] <needhelp> for some reason it will not let me in #math
[03:05] <giovani> needhelp: sorry, can't help
[03:06] <clusty> giovani: intel 945GSE
[03:06] <giovani> clusty: that's a chipset -- what about the motherboard?
[03:07] <clusty> giovani: it's an asus atom PC
[03:07] <giovani> ok
[03:07] <clusty> http://www.newegg.ca/Product/Product.aspx?Item=N82E16883220006
[03:07] <clusty> no clue how would i check exact mobo
[03:08] <giovani> well is this a laptop or a nettop?
[03:08] <clusty> nettop i guess
[03:08] <clusty> size of 2 hdd's
[03:08] <giovani> well who made it?
[03:08] <giovani> not too many of them
[03:08] <clusty> asus
[03:08] <giovani> model number? heh
[03:09] <clusty> ASUS Eee Box EBXB202-BLK-X0081
[03:09] <clusty> thanks for help btw
[03:10] <giovani> well I'd go searching to see if other eeebox users have similar issues with lmsensors
[03:10] <clusty> ok thank
[03:14] <talcite> hey guys. I have 2 scripts in rc0.d. One is S35, and the other is K80. Which would be run first on shutdown?
[03:16] <clusty> giovani: curious why i don't have any stuff around thermal_zone, fan....
[03:17] <clusty> and other /proc/acpi common things
[03:17] <giovani> clusty: maybe the board doesn't have those sensors, or they're not supported by the version of linux you have
[03:18] <talcite> I'm trying to figure out why my apcupsd process isn't killing the power to the UPS. I suspect that networking is going down before the killpower step is called
[03:19] <debugview> hmm is using mrtg an overkill for bandwidth checks?
[03:20] <giovani> talcite: my understanding is that the kills run first, then the starts
[03:20] <giovani> talcite: so, K80 should run before S*
[03:20] <giovani> debugview: yes
[03:21] <debugview> giovani, what would you recommend for bandwidth graphs? one that monitors stuff then plot graphs..daily, weekly, monthly etc..
[03:21] <giovani> debugview: I'd whip something up in rrdtool, but that probably isn't the answer you want
[03:22] <debugview> giovani, yeah i just want a simple one
[03:22] <debugview> browsing through http://www.ubuntugeek.com/bandwidth-monitoring-tools-for-linux.html lots of stuff
[03:22] <giovani> well I don't know of anything simple that isn't overkill for a single server
[03:22] <talcite> giovani: ah. And I found the debian policy manual page for it. This all makes sense now. I can finally go home...
[03:22] <talcite> thanks!
[03:23] <giovani> talcite: excellent -- it's not debian-specific though
[03:24] <giovani> talcite: if you'd like a definitive answer you can do what I just did -- read /etc/init.d/rc -- the actual script that executes these other scripts
[03:24] <giovani> "# First run the KILL scripts."
[03:24] <giovani> "# Now run the START scripts"
[03:25] <talcite> giovani: hm, didn't know rc was the actual script. Anyways, is there any problem if I shutdown a machine without bringing down the network interface first?
[03:26] <talcite> the ups killpower command is called from the halt script, but the networking stop script is called before that. it's a SNMP ups, so naturally the signal never makes it there
[03:26] <talcite> I'm thinking of moving the networking entry to go after the halt command (effectively it will never get called)
[03:27] <giovani> what's the killpower script do, exactly?
[03:28] <talcite> giovani: it sends a snmp command to the ups to kill power to the outlets after 90s
[03:28] <talcite> pretty vital because the switches will drain the UPS battery dead otherwise
[03:28] <giovani> so when this machine is shut down
[03:28] <giovani> this script needs to be executed so that the UPS shuts down after 90 seconds?
[03:29] <giovani> why can't you run the script before shutting down the network stack, and then still have time to shut down gracefully before the 90 seconds?
[03:30] <talcite> giovani: it's pretty heavily integrated into the apcupsd package. I'd be ripping out a _lot_ of code if I did it that way
[03:30] <talcite> but you're right, it's an option.
[03:30] <giovani> I really don't understand why
[03:32] <talcite> the package wasn't designed with network UPSes in mind. It's making the assumption that we're using a usb or serial UPS (even though the binary fully supports network UPSes)
[03:32] <giovani> ok
[03:33] <talcite> actually, it's a bug that I should submit a report for. What is ubuntu's bug tracker called?
[03:35] <giovani> launchpad
[03:35] <giovani> not sure that this is a bug, but alright
[03:36] <giovani> https://launchpad.net/ubuntu/+bugs
[03:36] <talcite> thanks.
[03:44] <talcite> ah it fixed it!
[03:44] <talcite> aaaaah! Finally after 6 hours!
[03:44] <giovani> talcite: fixed how?
[03:45] <talcite> giovani: the UPS powered off =)
[03:46] <talcite> I removed the symlink for networking from /etc/rc0.d, and added a /etc/init.d/networking stop line in halt right after the ups shutdown command
[03:46] <talcite> still within the if/fi statement of course
[03:46] <giovani> gotcha
[03:55] <clusty> giovani: seems the kernel modules for my board have been buggered badly since 2.6.30
[07:27] <twb> OK, /home is an NFS mount
[07:27] <twb> Why does "mount -oremount,lock /home" complain "an incorrect mount option was specified"?
[07:31] <kees> twb: is NEED_STATD=yes set in /etc/default/nfs-common ? i seem to remember needing that on at least the client
[07:31] <kees> but maybe that was something else
[07:31] <kaushal> hi
[07:32] <kaushal> when i do ./configure for memcached package on ubuntu 8.04 hardy server i get
[07:32] <kaushal> checking build system type... Invalid configuration `x86_64-unknown-linux-': machine `x86_64-unknown-linux' not recognized
[07:32] <kaushal> configure: error: /bin/bash ./config.sub x86_64-unknown-linux- failed
[07:32] <kaushal> Any clue ?
[07:34] <twb> kees: no; it should default to autodetecting whether it's necessary
[07:34] <twb> kees: I'll try that; if it all magically works after that, I'll be bloody pissed.
[07:34] <twb> (The problem is http://paste.ubuntu.com/460510/)
[07:51] <SpamapS> kaushal: you're trying to compile memcached 1.4.5 from upstream tarball on hardy, yes?
[07:55] <SpamapS> twb: can you paste the fstab line for /home?
[07:55] <SpamapS> twb: also, I'm not familiar with casper, whats that?
[07:56] <twb> casper is what makes the live CDs work
[07:56] <twb> echo >>/root/etc/fstab 10.128.0.1:/home /home nfs intr,bg,nodev,noexec
[07:57] <twb> ...with, or without {no,}{bootwait,lock}
[07:59] <SpamapS> twb: hmm, the "auto detecting" of needing statd seems pretty different in /etc/init/statd.conf
[08:00] <twb> statd is started, but mountall(8) is retarded AFAICT
[08:00] <twb> mountall is a separate daemon that doesn't know that it needs to wait for statd/retry -olock fstab entries
[08:00] <SpamapS> twb: you definitely need locking right?
[08:01] <twb> Well, without locking users can log in on multiple hosts and potentially bust their files
[08:01] <twb> In practice I probably don't need it
[08:01] <SpamapS> twb: right its possible that mountall-net.conf needs a 'start rpc.statd'
[08:01] <twb> But all mountall-net.conf does is send a USR1 to the mountall daemon
[08:03] <SpamapS> twb: indeed, but it does that *after* networking has been configured
[08:03] <twb> But networking is configured before upstart starts
[08:03] <SpamapS> err
[08:03] <SpamapS> not really
[08:04] <twb> I'm booting off the network; if the network wasn't configured, it wouldn't be able to mount the root filesystem and find upstart to execute it.
[08:04] <SpamapS> right, so in this case, the 'start on net-device-up' should fire *immediately*
[08:05] <twb> Right -- I think it fires before the mountall daemon is even running
[08:05] <SpamapS> ugh
[08:05] <SpamapS> race condition after race condition. ;)
[08:05] <twb> At least, when I trace mountall-net, I can see it fails to find the mountall PID -- so either mountall hasn't started, or has already finished
[08:07] <SpamapS> twb: so maybe another 'start on' is necessary that makes mountall-net wait for 'mountall' to start *and* a net device to be up?
[08:07] <twb> Well, I can try it
[08:08] <SpamapS> start on started mountall
[08:08] <SpamapS> it sounds quite reasonable actually
[08:09] <twb> OK, that appears to have worked
[08:09] <SpamapS> w00t
[08:09] <twb> My brain hurts
[08:10] <SpamapS> can you report this as a bug?
[08:10] <twb> Yeah
[08:10] <twb> So what I have at the moment -- I think -- is "lock,bootwait" for /home in fstab, and "start on statd" added to mountall-net.conf
[08:10] <SpamapS> its SRU worthy, if we hurry it may make 10.04.1
[08:10] <twb> I'll turn single off and try to see if GDM dtrt
[08:11] <SpamapS> wait you added 'start on statd' ?
[08:11] <SpamapS> or 'start on started statd' ?
[08:12] <twb> The former
[08:12] <twb> And it isn't working if I turn single off
[08:12] <twb> (I was confused between "started" being there or not.)
[08:14] <SpamapS> ok, I was thinking more that mountall-net needs to wait for 'mountall'
[08:14] <SpamapS> and *possibly* statd
[08:15] <twb> Without "single", neither "start on statd" nor "start on started statd" work -- it just hangs there in plymouth forever
[08:15] <SpamapS> single meaning booting into single user mode?
[08:15] <twb> Single meaning I pass "single" on the boot parameter list
[08:15] <twb> (And friendly-recovery isn't installed.)
[08:15] <SpamapS> yeah ok
[08:16] <SpamapS> I think you need mountall-net to wait for mountall to be started, otherwise the event it sends to mountall will be missed
[08:16] <SpamapS> I'm actually worried that mountall won't have signal handlers in place when its job is "started" though, so I wonder if you can introduce a small delay
[08:17] <SpamapS> races suck. :-P
[08:17] <twb> Isn't the whole point of upstart to avoid "sleep 1" hacks?
[08:17] <SpamapS> yes
[08:17]  * twb gripes
[08:18] <SpamapS> the other way to do it is to have mountall emit a specific signal after it is ready to handle the USR1
[08:18] <SpamapS> s/other/right/
[08:19] <SpamapS> haha btw
[08:19] <SpamapS> the "auto detecte" mode of NEED_STATD.. is just "if its not no, set it to yes"
[08:20] <twb> It also seems pretty weird that Keybuk wrote mountall because upstart didn't do it internally -- but keybuk maintains upstart, too.
[08:21] <twb> I can't get it to work with "single" anymore, so either I accidentally had "nolock" in the ramdisk (because I forgot to update it), or that ONE TIME, I managed to miss the race
[08:26] <SpamapS> twb: did you try it with "start on started mountall" in mountall-net.conf ?
[08:27] <twb> That *and* statd?
[08:27] <twb> I'll try that now
[08:27] <twb> Actually, as a test, why don't I just have it issue a USR1 every second forever
[08:28] <twb> If that works, we can narrow down exactly when to send the USR1
[08:29] <twb> OK, that works with single!
[08:31] <SpamapS> very narrow window between when the exec will return, and the forked child handles SIGUSR1
[08:31] <SpamapS> but still, I suspect its possible to run into it
[08:31] <twb> ALRIGHTY
[08:32] <twb> If I change mountall-net.conf to "start on startup" and a script of "while :; do pkill -USR1 mountall || :; sleep 1; done", it WORKS PERFECTLY -- the fourth USR1 succeeds
[08:32] <SpamapS> doh
[08:32] <SpamapS> I mean great, but DOH
[08:33] <SpamapS> this makes sense...
[08:33] <twb> So either mountall-net isn't triggering on statd -- which we fixed -- of its attempt to find the mountall PID is totally wrong and broken
[08:33] <SpamapS> well more importantly, statd could be beating mountall
[08:34] <twb> Well, first I'm going to change it to a single "pkill -USR1 mountall", and run that on the appropriate events.
[08:35] <SpamapS> entirely possible the fix for bug 506902 wasn't done right too
[08:35] <SpamapS> twb: I need to get to bed, but I would at least give your script a try with 'start on started mountall' and see if it succeeds on the 1st or 2nd SIGUSR1
[08:36] <twb> I think it really needs "starting mountall && started statd" or so
[08:36] <twb> i.e. statd is fully up, mountall is running and waiting for events
[08:37] <SpamapS> started
[08:37] <SpamapS> starting would be too early
[08:37] <SpamapS> twb: but yeah, they probably both need to be started
[08:37]  * SpamapS must really go now
[08:37] <twb> You really helped, thanks
[08:45] <R3cur51v3> Should the Ubuntu Server edition have django 1.0 SVN final installing by default, or is it a severely outdated mirror?
[08:46] <twb> R3cur51v3: ask rmadison
[08:46] <R3cur51v3> rmadison, Should the Ubuntu Server edition have django 1.0 SVN final installing by default, or is it a severely outdated mirror?
[08:46] <twb> $ rmadison python-django -uubuntu -slucid ==> python-django | 1.1.1-2ubuntu1 | lucid | source, all
[08:47] <R3cur51v3> ah, the douches still have Intrepid installed
[08:48] <R3cur51v3> figures, with a $5 vps
[08:51] <R3cur51v3> twb, to upgrade to Lucid, do I just change all instances of intrepid to lucid in /etc/apt/sources.list, then update?
[08:51] <twb> No.
[08:51] <Jordan_U> R3cur51v3: NO
[08:51] <twb> !upgrade > R3cur51v3
[09:05] <R3cur51v3> ty twb  and Jordan_U
[09:05] <R3cur51v3> night all
[09:09] <|eagles0513875|> hey guys i am having connectivity issues on a clean install of lucid server 64bit
[09:09] <|eagles0513875|> hold on
[09:14] <twb> |eagles0513875|: still there?
[10:24] <MasterZuFu> Hey everyone. I'm running Ubuntu Server 10.04 on a dedicated host. I'm logged in via putty. I'm running a MyBB forum on it at the moment. For some reason email isn't working. It happened after I restarted the host. I think I'm using exim4, I just restarted that service and it didn't start back up. I recently installed ebox. Could someone help me troubleshoot this please?
[10:34] <serverhorror> MasterZuFu:  mailservers aren't exactly the easiest components. If you don't have some setup to test and learn from I really really suggest to use a hosted mail provider.
[10:35] <serverhorror> MasterZuFu:  apart from that. Check which mailserver you have installed, then check the logs (in case of exim /var/log/exim/{main,paniclog} IIRC)
[10:36] <MasterZuFu> serverhorror, I don't have the option of an alternate mail server. it's built into the site software to use the email server on the server itself. I'd have to edit the core files to change that.
[10:37] <serverhorror> MasterZuFu:  then use nullmailer and let it forward the mails for you to a real server.
[10:38] <MasterZuFu> hmmmm ok, let me take a look. one moment please
[10:40] <MasterZuFu> serverhorror, here's what the panic log says: 2010-06-01 10:00:08 socket bind() to port 25 for address ::25 failed: Cannot assign requested address: daemon abandoned
[10:40] <serverhorror> MasterZuFu:  something is listening on port 25 already
[10:40] <serverhorror> (probably)
[10:40] <MasterZuFu> gay. let me check ebox.
[10:40] <Jeeves_> http://www.computerpowertest.com/
[10:41] <Japje> MasterZuFu: netstat -plnt
[10:41] <twb> ss is the new netstat
[10:42] <Japje> rly..
[10:42] <MasterZuFu> nothing's running under port 25
[10:44] <Jeeves_> twb: thanks! :)
[10:44] <Jeeves_> saves me the typos :)
[10:47] <MasterZuFu> I've got the following ports open: 993, 995, 389, 10023, 3306, 110, 143, 80, 22, 3128, 5432, 443, and....ummm O.o 22 whya are there two 22 running? O.o odd. Anyways..no 25.
[10:47] <serverhorror> MasterZuFu:  paste the output of netstat -tulpen on some pastebin and tell us the link
[10:49] <MasterZuFu> http://pastebin.com/G2EQcXu4
[10:49] <serverhorror> MasterZuFu:  and are you sure that log line is the one regarding the error, because since 2010-06-01 some time has past. At least in my <del>time</del>date zone...
[10:50] <MasterZuFu> let me check again
[10:50] <MasterZuFu> yeah that's the only line in it
[10:52] <serverhorror> I'd truncate the log files. restart exim and then see what the logs say. Just to make sure. But I'd also verify that it's indeed exim that is the mailserver. you said you believe you run exim, pls verify first which smtp server you are using...
[10:53] <MasterZuFu> ok, one sec
[10:57] <MasterZuFu> this restarts exim4 right? /etc/init.d/exim4 restart
[10:57] <MasterZuFu> I don't see any logs at all.
[10:57] <MasterZuFu> should I reinstall it?
[11:14] <MasterZuFu> nevermind, i sent my sysadmin an email. He'll look into this for me. thanks everyone.
[11:14] <MasterZuFu> :)
[12:09] <kaushal> Hi
[12:09] <kaushal> I have a weird issue about disk space
[12:21] <serverhorror> hmmm playing around with UEC and I can't seem to connect the eucalyptus-nc to the cc. As of now I'm also blind and couldn't find some more in depth docs how I'd do that manually. Any hints/links?
[12:28] <serverhorror> .oO(is anybody even using UEC? - I have a feeling it's not really being used)
[12:29] <phretor> hi, what's wrong with this remounting? http://pastie.org/1035764
[12:31] <serverhorror> phretor:  sound slike /dev/sda6 isn't mounted :)
[12:32] <phretor> serverhorror: it's mounted to /
[12:35] <serverhorror> looks, good to me. maybe some strange ordering issue with mount options. I'd simply iterate thru the options and see where it chokes...
[12:36] <adamdv> serverhorror: Never used UEC. Dont like the concept.
[12:36] <adamdv> Might try it sometime. heh.
[12:39] <serverhorror> seems everybody still stays with either home-grown scripts or closed source :)
[12:43] <adamdv> Closed source :)
[12:44] <serverhorror> heh, we run home-grown. OpenVZ with a few monitoring/management scripts on top of it
[12:44] <serverhorror> s/a few/
[12:44] <serverhorror> probably
[12:45] <adamdv> Well, we run somewhat home grown (due to be professionally released later this year). Its closed source however.
so you're going to sell me software, and I have to find some other professionals that can give me support?</rant> (sorry, couldn't resist it)
[13:09] <kaushal> can someone guide me about the post on https://lists.ubuntu.com/archives/ubuntu-users/2010-July/222568.html ?
[13:12] <adamdv> serverhorror: Haha, not at all ;)
[13:23] <sommer> morning all ;-)
[13:25] <twb> In "apt-conf dump", I see APT::Never-MarkAuto-Sections
[13:26] <twb> Does this mean I can tell apt that everything in, say, libs, is ALWAYS implicitly MarkAuto'd?
[13:52] <twb> Sigh.  So it looks like something happened to pam since 8.04
[13:52] <twb> It wants me to use /usr/share/pam-common
[13:54] <twb> Ahahaha
[13:54] <twb> I see the problem now: pam is working, but nss isn't configured anymore because I changed my "auth-client-config" call to a "pam-auth-update" call
[14:02] <serverhorror> kaushal:  files that are unlinked but still opened by some program do take up disk space. Most common weirdness reason is to delete large log files, while some daemon still writes to them...
[14:16] <twb> This fixed it: auth-client-config -plac_ldap -tnss
[14:26] <zul> nxvl: did you ask for a sync for augeas?
[14:33] <oru_work> i'm not sure why i'm getting this error when restarting mysql http://www.pastebin.org/386376
[14:33] <giovani> oru_work: it's fully self-explanatory
[14:36] <adamdv> oru_work: The init scfript is deprecated in favor of upstart. However, init still operates as it should. (Not sure if it will in maverick though)
[14:37] <oru_work> i don't get it
[14:39] <AdamDV> oru_work: service mysql restart
[14:39] <AdamDV> Try that.
[14:40] <AdamDV> Thats the new way to do it, as opposed to manually invoking a script from path
[14:40] <AdamDV> More efficient as I understand.
[14:40] <oru_work> AdamDV,  sudo service mysql restart
[14:40] <oru_work> mysql start/running, process 1181
[14:40] <AdamDV> Yes?
[14:41] <giovani> heh
[14:41] <oru_work> heh :)
[14:41] <giovani> oru_work: your ability to be confused is impressive
[14:41] <oru_work> giovani, lolz :)
[14:42] <oru_work> so it worked /
[14:42] <oru_work> ?
[14:42] <giovani> yes
[14:43] <oru_work> but why is it still complaining when I do /etc/init.d/mysql restart ?
[14:43] <giovani> it's not complaining
[14:43] <AdamDV> BECUASE INIT IS DEPRECATED!
[14:43] <giovani> it's informing you that you're using the old method
[14:43] <AdamDV> Its telling you that, that its being deprectated for upstart, aka service.
[14:43] <AdamDV> Its not like init fails when you restart it that way, it just warns.
[14:43] <AdamDV> Its not fatal ffs.
[15:00] <oru_work> hmm
[15:00] <oru_work> phpmyadmin doesn't start
[15:01] <oru_work> this is what I see when I point my browser to phpmyadmin Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly.
[15:02] <oru_work> here is what i get. http://www.pastebin.org/386395
[15:11] <kirkland> ccheney: http://launchpad.net/uec-provisioning and lp:uec-provisioning
[15:11] <ccheney> kirkland, thanks
[15:15] <lau> i am trying to re-bundle an existang aws ec2 ubuntu image ami-2d4aa444 i get this same error http://developer.amazonwebservices.com/connect/message.jspa?messageID=179635
[15:15] <lau> I tried placing the new sources.list in sources.list.d but still the same error when re-bundling an ami any idea ?
[15:23] <kirkland> ccheney: i've given you commit access on that branch
[15:23] <ccheney> kirkland, ok
[15:27] <nxvl> zul: i think so
[15:27] <zul> nxvl: k just double checking
[15:35] <nxvl> zul: LP: #598862
[15:45] <MTecknology> How can I see what params were used to launch a command?
[15:51] <SpamapS> twb: still around?
[15:51] <twb> Yeah
[15:52] <SpamapS> twb: https://bugs.launchpad.net/ubuntu/+source/mountall/+bug/537133
[15:52] <SpamapS> twb: did you see that?
[15:52] <twb> Looking
[15:52] <twb> That sounds like my bug
[15:53] <SpamapS> yep
[15:54] <twb> What's the lp equivalent of "bts subscribe NNNNNN"?
[15:55] <SpamapS> click "Subscribe" ? ;)
[15:55] <SpamapS> actually
[15:55] <SpamapS> click the little ! next to "does this bug affect you?"
[15:56] <twb> I'm not logged in, because that would require me to maintain a distributed cookie database across a large number of browsers and hosts
[15:56] <SpamapS> err.. you don't have even one openid provider?
[15:56] <twb> I don't understand the trust model of openid, so I can't use it
[15:56] <twb> AFAICT it requires me to trust root on the openid provider's host
[15:57] <twb> Even so, that wouldn't work across multiple browsers
[15:58] <SpamapS> twb: as opposed to trusting root on *everybody you log in to"'s host?
[15:58] <SpamapS> twb: OpenID would have you logging in once on each browser.
[15:58] <twb> Huh?  *I* am root on my own machines.
[15:58] <twb> But my own machines do not run OpenID servers
[15:58] <SpamapS> twb: You're saying you never log in to any web services ever?
[15:59] <SpamapS> btw you can run your own OpenID provider
[15:59] <twb> Doesn't that require me to have a public IP address?
[15:59] <SpamapS> and never give anybody your auth details.
[15:59] <Jeeves_> !launchpad-- # Freezes my browser for a second of five
[16:00] <twb> And last time I looked, the only OpenID server implementations were PHP, which I sure as shit aren't going to allow on my machines...
[16:00] <SpamapS> twb: yes you would need to run one server that the consumers can ask for auth tokens
[16:00] <SpamapS> twb: thats just FUD
[16:00] <Jeeves_> Who needs openid if your browser can remember passwords
[16:00] <SpamapS> twb: http://wiki.openid.net/Run-your-own-identity-server
[16:00] <twb> Jeeves_: my browser can't.
[16:01] <Jeeves_> I don't want to sign in just once. That means if someone else somehow ever know's my password, he can do the same
[16:01] <SpamapS> Jeeves_: who needs a browser when a post it on your monitor can remember your one password that you use everywhere? ;)
[16:01] <Jeeves_> twb: You're running netscape 3?
[16:01]  * ccheney really hates firefox, its eating my system
[16:01] <Jeeves_> SpamapS: I don't use one password
[16:01] <twb> Rather, they can usually parse .netrc, but that's for HTTP/SSL, not for the stupid shitty form behind it
[16:02] <twb> Jeeves_: no, wget, curl, GET, w3m, emacs-w3m, html2ps, midori, opera, and if all else fails, firefox 1.5 -- in roughly that order.
[16:02] <twb> I quite liked galeon back before gnome took control of it
[16:02] <Jeeves_> twb: Cool. You run Gentoo right, and you love SM? :)
[16:03] <twb> No, I love UIs that are consistent across multiple websites, that automatically filter out useless content like images and iframe advertisements
[16:03] <SpamapS> twb: I like that you're using a ton of software. I do think OpenID would actually work out well for you.
[16:03] <SpamapS> useless
[16:03] <SpamapS> hahahaha
[16:03] <twb> The web developer isn't allowed to tell me how a page should look.
[16:04] <SpamapS> dude, serious lolz ..
[16:04] <Jeeves_> twb: You also use sciccors when reading the newspaper?
[16:04] <Jeeves_> Who the hell does this editor think he is! Arranging the newspaper for me!
[16:04] <twb> SpamapS: btw, the solution i to send a signed mail with "subscribe trentbuck@gmail.com" to NNNNNN@bugs.launchpad.net
[16:04] <SpamapS> twb: actually you'd like the reader plugin for chromium
[16:04] <twb> Jeeves_: if by "newspaper" you mean sites like lwn -- yes, I have the XSLT equivalent of greasemonkey scripts to rearrange the page for me.
[16:05] <ScottK> twb: OpenID is a MITM attack by design, so PHP should be the least of your concerns.
[16:05] <SpamapS> twb: yeah, we definitely support people who are reluctant to take the blue pill , aka web 2.0. ;)
[16:05] <Jeeves_> twb: No, I mean a newspaper. Made in a press, and with paper made of trees. You know, those brown/green things outside your window..
[16:06] <twb> Jeeves_: that would require me to have a window
[16:06] <twb> ScottK: yeah, I figured it was something dodgy like that
[16:07] <twb> ScottK: the local EFF weenie is into it, which is why I perhaps gave it more credence than normal
[16:07] <ScottK> twb: All the openid coolaid drinkers claim it's not, but I think they just don't actually understand anything about security.
[16:08] <SpamapS> ScottK: interesting. I did read about the issues with the first implementations, but haven't those been solved by changing the mechanics of the system a bit to ensure you're not ever trusting a consumer site w/ your auth credentials?
[16:08] <ScottK> twb: So I hand your web site my LP OpenID credentials and you check with LP and become I'm convinced I'm who I say I am.  What prevents you from reusing those credentials to log into LP, donning my archive adminstrator hat and accepting arbitrary code into the archive?
[16:09] <twb> ScottK: hum.  I assumed it was at least unidirectional
[16:09] <ScottK> SpamapS: How do I know I'm really talking to LP and not a forged replica?
[16:09] <twb> i.e. more like a kerberos tgt
[16:10] <ScottK> twb: It's slightly more complex since in theory the redirect me to LP and I give the information to LP directly, but I don't really know for sure where they are redirecting me too.
[16:10] <SpamapS> ScottK: SSL certs are the only recourse there.. but I'm more interested in your replay scenario.
[16:10] <twb> We should just use Kerberos to log into websites
[16:10] <ScottK> SpamapS: I really haven't looked at it in detail for quite some time, it may be better now.
[16:11] <twb> Wikipedia was talking about some next-gen replacement for openid + some other thing
[16:11] <SpamapS> ScottK: if you put your username/pass into a site without checking to see who owns the cert, then you pwned yourself. ;)
[16:12] <ScottK> SpamapS: Anything that depends on users reading SSL certs if full of fail.
[16:12] <ScottK> They probably wouldn't get me, but I'm unusually careful about such things.
[16:12] <SpamapS> ScottK: its the web. What other security paradigm is there?
[16:13] <twb> On that subject, is anyone else annoyed about the lack of information about the requested action in gnome's replacement for gksu?
[16:13] <ScottK> twb: I'm not annoyed at all.
[16:13] <twb> "org.gnome.dbus.rhythmbox has asked to do something!"
[16:13] <twb> I can't work out how to make it say "...has asked to install ffmpeg" or so
[16:13] <Jeeves_> twb: You're not using gnome, right?
[16:14] <ScottK> SpamapS: It would be much better from a security design perspective if the user went directly to the openID provider and the openID provider contacted the site they wanted to access.
[16:14] <twb> Jeeves_: I'm not, but I have to make SOEs for prisoners who do
[16:14] <SpamapS> ScottK: a lack of convenience will mean users just won't use the system.
[16:14] <ScottK> SpamapS: Convenience over security has got us into a mess.
[16:15] <SpamapS> into what mess?
[16:15] <SpamapS> entering a user+pass per website isn't happening because of user convenience. *that* is the mess.
[16:15] <SpamapS> users hate that
[16:16] <SpamapS> and they make the wrong choice every time, reusing passwords over and over
[16:16] <twb> What I hate is some fucker like launchpad requiring me to "log in" simply to provide them feedback about what isn't working
[16:16] <twb> I should be able to just give my email address.  If I'm lying, let the spam system handle it.
[16:16] <Jeeves_> twb: Did you happen to learn about a thing called spam?
[16:17] <Jeeves_> I mean, a captcha won't work for you either
[16:17] <SpamapS> twb: anonymous feedback is great, but I think its reasonable to ask that you provide a way to contact you for more information.
[16:17] <twb> SpamapS: which is not the same as making me remember a password
[16:17] <SpamapS> twb: and you *can* just provide us with your OpenID URL.
[16:17] <SpamapS> or like you said, a signed email
[16:18] <twb> I can't give you a signed email until I first log into the web UI
[16:18] <ScottK> twb: What I find more annoying are requirements for authenticated access to just to read public data in the LP API (that may have been fixed, not sure)
[16:18] <SpamapS> ScottK: thats not to prevent anonymous reading, but to prevent abuse.
[16:19] <twb> It also annoys me how EVERY time I go from a public, read-only page on https://wiki.ubuntu.com to, say, google, my browser modally warns me I'm going ssl->non-ssl
[16:19] <ScottK> SpamapS: There are lots of best practices around doing that without requiring authentication.
[16:19] <twb> I don't know why ubuntu's wiki needs to be uncachable
[16:19] <SpamapS> twb: you can of course turn that message off, or play with google's new SSL access. ;)
[16:20] <SpamapS> ScottK: actually thats bug worthy.. file one.. on.. launchpad. ;)
[16:20] <twb> SpamapS: I can turn it off by main force, but not fine-grained enough to avoid false negatives
[16:20] <ScottK> SpamapS: It also creates security risks for me because I need to give more code more access to my ID.
[16:20] <SpamapS> twb: ubuntu's wiki is in SSL for the authenticated source, not for the encryption.
[16:20] <ScottK> SpamapS: I'm on hiatus on launchpad bugs.  If I filed a bug every time LP annoyed me, I'd never do anything else.  Feel free to file one and quote me though.
[16:21] <twb> SpamapS: eh?  What does that guard against?
[16:21] <Jeeves_> ScottK: Indeed, Launchpad as an idea is great. But it usually just sucks :(
[16:21] <SpamapS> twb: well unless somebody compromises the ssl cert, you know its coming from the owners of Ubuntu.com ;)
[16:22] <twb> I don't need to know that.
[16:22] <SpamapS> twb: or of course, unless somebody compromises your CA list. ;)
[16:22] <twb> I'm quite happy for unreliable third parties to give me useful suggestions about fixing cock-ups in ubuntu
[16:22] <SpamapS> twb: well the maintainers of wiki.ubuntu.com think its important, whether you need it or not.
[16:22] <twb> It's not like I run stuff from wiki.ubuntu.com without testing it -- that'd be nuts
[16:23] <ScottK> Jeeves_: I won't even go that far.  Getting Fedora related comments on bugs I'm working on because of some great integration thing has never once helped me.  It just clutters my inbox.
[16:23] <SpamapS> twb: think about it.. MITM puts up commands for noobs to send him /etc/shadow via email in the middle of HOWTO's ..
[16:23] <twb> SpamapS: yes, but I'm not a noob, so I should be able to CHOOSE not to use SSL
[16:23] <twb> SpamapS: w.u.c actively forces me to use SSL for EVERYTHING
[16:24] <jpds> ScottK: You can use the Launchpad API anonymously.
[16:24] <Jeeves_> twb: What a life you must have.
[16:24] <SpamapS> twb: ohnoes
[16:24] <ScottK> jpds: Then maybe someone was doing it wrong, but I've been asked for credentials to read data.
[16:25] <Jeeves_> twb: Do you complain in the store as well? "Which *** forces me to use dollars everytime!? I'm SMART, I should be able to CHOOSE the currency I pay in!"
[16:25] <jpds> ScottK: >>> from launchpadlib import launchpad
[16:25] <jpds> ScottK: >>> lp = launchpad.Launchpad.login_anonymously("hi")
[16:26] <twb> Jeeves_: I haven't yet, because I haven't found a store that wouldn't take my preferred currency.
[16:26] <Jeeves_> twb: So you *do* get outdoors? :)
[16:26] <SpamapS> Jeeves_: play nice.
[16:27] <twb> SpamapS: don't worry about it, man
[16:27] <Jeeves_> SpamapS: I'm always nice. :)
[16:27]  * jpds prods Jeeves_.
[16:27] <SpamapS> I have a lot of respect for twb and scottk's positions. They have important things to do, and they are not interested in flowery 90% solutions.
[16:27] <twb> Saying "nice" when you mean "pleasant" isn't nice at all.
[16:28]  * twb points wildly at _Good Omens_)
[16:28] <twb> SpamapS: I have important things to do; I just don't do them ;-)
[16:29] <zul> hey mathiaz
[16:29] <twb> SpamapS: but I'd draw your attention to quote #3 of http://en.wikiquote.org/wiki/George_Bernard_Shaw#Sourced
[16:30] <RFleming> Good morning.
[16:30] <RFleming> Any squid/sarg proxy admins here?
[16:30] <ScottK> jpds: I remembered what it was.  It's pull-lp-source in ubuntu-dev-tools.  It needs authorization to get source from other than the current development release.
[16:30] <ScottK> Gotta run.
[16:30] <mathiaz> zul: o/ - how hot is your part of canada?
[16:30] <SpamapS> twb: I missed the levity. ;)
[16:30] <RFleming> I'm trying to figure out why sarg-reports isn't generating reports from cron :)
[16:31] <RFleming> mathiaz, my part of Canada is a steamy 30 at the moment.
[16:31] <zul> mathiaz: its pretty hot...but im down the street from you
[16:31] <jpds> ScottK: That seems to have been fixed.
[16:31] <mathiaz> zul: hm down?
[16:31] <mathiaz> zul: you've come all the way to montreal for air conditioning?
[16:32] <zul> mathiaz: well probably up the street is the more correct term
[16:32] <zul> mathiaz: no i had other things to do as well ;)
[16:33] <mathiaz> zul: cool - I'll catch up with you later today
[16:33] <mathiaz> zul: I'll stop by in the afternoon
[16:33] <zul> mathiaz: sounds good
[16:33] <mathiaz> zul: when do you leave?
[16:33] <zul> mathiaz: 4pm
[17:00] <alex88> hi guys, on 9.04 for share internet i type "/sbin/iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o venet0 -j MASQUERADE" now on 10.04 it says "iptables: No chain/target/match by that name." any clue?
[17:00] <alex88> i've installed csf firewall like on 9.04
[17:09] <alex88> also i'm running on a vps
[17:48] <serverhorror> alex88:  "iptables -t nat -L" works?
[17:53] <SpamapS> you know.. given that Amazon charges by "the box is up" or "the box is down" ..
[17:54] <SpamapS> wouldn't it be a good thing to do to run seti@home niced on all EC2 instances? ;)
[17:55] <serverhorror> SpamapS:  why would I burn my precious cpu cycles which the company pays for to seti? Just to run into some strange performance problems?
[17:56] <osmosis> what is the relationship between apache ServerLimit and MaxClients?
[17:57] <SpamapS> serverhorror: clearly you're just not ready to meet E.T. ;)
[17:57] <SpamapS> osmosis: Depends on which apache MPM you are working with
[17:57] <serverhorror> osmosis:  http://httpd.apache.org/docs/2.0/mod/mpm_common.html#maxclients
[17:57] <SpamapS> osmosis: but in general, ServerLimit is the limit on the number of httpd processes that will be running, while MaxClients is the limit of http requests that will be serviced at one time.
[17:59] <SpamapS> serverhorror: and really, nice and CPU-only processes.. is it really going to give you "some strange performance problem" ? Unix has been doing nice since the Nixon administration. ;)
[17:59] <serverhorror> osmosis:  actually http://httpd.apache.org/docs/2.0/mod/mpm_common.html#serverlimit explains that better than the previous link. Upstream docs for httpd are one of the best available...
[17:59] <SpamapS> serverhorror: SETI's a bad idea though, how about protein folding or something to help cancer research? :)
[18:01] <serverhorror> SpamapS:  I just don't see a reason to put more on the server than necessary. After all it's me that has to get up at 2am for one reason or another, and once any of those boing! (or whatever they call it now) processes is the reason I can assure you they're gone in no time...
[18:01] <serverhorror> s/is the reason/are the reason
[18:02] <serverhorror> SpamapS:  but I'm pretty sure you could just suggest that to google. They'll be pretty happy to use that suggestion, they have tons of computational power lying around for nothing...
[18:02] <SpamapS> serverhorror: do you actually run any EC2 instances?
[18:02] <serverhorror> nope, I run rackspace
[18:03] <SpamapS> right, so .. ec2 is a little different.. ;)
[18:03] <serverhorror> and a few hundred of our own :)
[18:03] <SpamapS> but really..
[18:03] <SpamapS> it was a joke. Thank you for taking it seriously.. I feel special. :)
[18:03] <serverhorror> SpamapS:  not that much actually. The main difference is that if an EC2 instance goes down it's gone. rackspace keeps those persistent
[18:03] <zul> SpamapS: ping need your opinon on something
[18:04] <SpamapS> zul: bring it
[18:04] <serverhorror> .oO(why do I always fall for those topics - I have a feeling I'm taking computer stuff to serious lately)
[18:04] <zul> SpamapS: im going to be converting the apache init script to upstart which means we loose stuff like /etc/init.d/apache2 graceful, should we have a wrapper script that has the same functionality
[18:06] <SpamapS> zul: you can't have arbitrary arguments to 'service ' somehow passed to upstart?
[18:06] <zul> SpamapS: not afaik no
[18:07] <Kaffien> if i'm using a usb hard drive cart type device do i have to use automount?  or does ubuntu mount usb devices another way now?
[18:07] <SpamapS> zul: I don't think a wrapper in init.d is the best thing, other than to maybe tell people "init.d is deprecated please use apachectl"
[18:07] <zul> SpamapS: yeah thats an option as well
[18:07] <zul> i was thinking of a wrapper for apachectl or something...meh
[18:11] <SpamapS> zul: well apachectl should be in the path
[18:11] <serverhorror> zul:  at least the manpage of service says that COMMAND can be arbitrary. Thou I have no idea about upstart yet
[18:14] <SpamapS> zul: /win 10
[18:14] <SpamapS> damnit
[18:20] <osmosis> how can I view the changelog for a update before installing it?
[18:21] <serverhorror> osmosis:  apt-listchanges is your friend
[18:32] <osmosis> if i look at the changelog for  linux-image-server ...all it says is  * Lucid ABI 23
[18:33] <serverhorror> so?
[18:35] <serverhorror> bah! fck UEC...I'll just script the stuff myself
[18:38] <ScottK> jpds: Good to hear it's fixed.  Maybe I'll try it again.
[18:42] <agentbob> have anyone here ever got zend optimizer working on ubuntu?
[18:42] <agentbob> i'm having a problem getting zend optimizer to work on my server... i've tried removing everything possible extension and nothing seems to help... i just get lots of random segfaults with zendopt installed... anyone ever run into this? i'm thinking maybe suhosin patch is messing with zo
[18:45] <rsr> Hi, I have a server running ubuntu-server 10.04. I have installed squid on it and it is working fine I have now installed ebox with all its modules. My goal is to manage proxy and firewall through a web interface. Am I approacing it the right way?
[18:45] <rsr> it is installing 96 mb of ebox packages
[18:49] <milk_> can anyone help me with mysql apache and myphpadmin. when i login i just get an error Cannot start session without errors, please check errors given in your PHP and/or webserver log file and configure your PHP installation properly.
[18:50] <Roasted> anybody ever set up freeradius? kind of stuck @ the ntlm_auth part
[18:50] <RoyK> milk_: can you pastebin errors from the log file?
[18:50] <RoyK> !pastebin
[18:50] <Roasted> RoyK, were you the guy I talked to late last night??
[18:50] <milk_> RoyK: where is the log file located ?
[18:50] <RoyK> milk_: /var/log/apache2
[18:52] <milk_> RoyK: http://pastebin.com/eDZ5aS7C
[18:54] <Roasted> freeradius, anybody?
[18:57] <sjm> RoyK, you missed milk_ 's response:  http://pastebin.com/eDZ5aS7C
[18:58] <RoyK> milk_: [Thu Jul 08 17:45:42 2010] [error] [client 127.0.0.1] File does not exist: /usr/share/phpmyadmin/scripts <-- that should give you a hint :)
[18:59] <milk_> i figured it out
[18:59] <milk_> thanks
[18:59] <milk_> now i have another problem.. how do i make a new super user
[19:00] <milk_> ?
[19:00] <sjm> milk_, in what context?  for the linux box, for mysql, for .... ??
[19:00] <milk_> mysql i think
[19:01] <milk_> i think i accidentally deleted the root account :D
[19:01] <sjm> milk_, you should be able to GRANT appropriate priviledges for whatever user you want in phpmyadmin
[19:01] <milk_> cant log in ..
[19:02] <sjm> milk_, try: http://ubuntu.flowconsult.at/en/mysql-set-change-reset-root-password/
[19:06] <RoyK> sjm: if he has deleted root from the user table, he might want to 'grant all on *.* to root@localhost identified by 'newpass' with grant option' after restarting mysql
[19:08] <bogeyd6> i dont think there is even a need for a root user
[19:08] <milk_> how do i do that ?
[19:09] <milk_> sjm: this doesnt seem to be working
[19:09] <RoyK> milk_: see the url above - disable grant tables and grant all rights to a new users, root or not
[19:10] <RoyK> remember to restart mysql after creating the new user, or everyone can get in with full superuserrights
[19:12] <milk_> i still cant login
[19:12] <RoyK> login as an existing user - not root
[19:13] <milk_> i dont understand
[19:13] <RoyK> http://dev.mysql.com/doc/refman/5.0/en/server-options.html#option_mysqld_skip-grant-tables
[19:14] <RoyK> milk_: did you remove the root account from the user table?
[19:16] <milk_> RoyK: i think so.. stupid i know
[19:19] <Roasted> anybody got experience with freeradius?
[19:19] <RoyK> Roasted: running it, yes, but not familiar with that module you're using
[19:20] <Roasted> RoyK, what module are you referring to?
[19:20] <RoyK> ntlm_auth
[19:20] <Roasted> ntlm_auth is what I've been finding on every guide to set up freeradius....
[19:21] <Roasted> as far as adding a linux freeradius server ot a windows domain
[19:21] <RoyK> wouldn't it be easier to let windoze handle radius?
[19:21] <Roasted> sure would
[19:21] <RoyK> afaik it can do that from around win2k
[19:21] <Roasted> except theres a known issue with windows radius
[19:21] <Roasted> they dont reauthenticate after 30 days, they just drop the laptops
[19:21] <Roasted> its a known issue and no fix is in sight
[19:22] <Roasted> meanwhile, everybody Ive talked to swears by using freeradius. evidently it works better in a lot of aspects beyond the 30 day bug we ran into
[19:22] <Roasted> so here Iam, giving it a go :P
[19:23] <RoyK> heh - that's a bitch
[19:23] <Roasted> tell me about it
[19:23] <Roasted> I got the ubuntu box on the domain and everything
[19:24] <Roasted> but the next step says to run a command with ntlm_auth blah blah blah blah blah
[19:24] <Roasted> it fires back an error...
[19:24] <RoyK> what did you use? just ldap+kerberos?
[19:24] <Roasted> hence my sudden desire to drink heavily
[19:24] <Roasted> I set up samba + kerberos n this box
[19:24] <Roasted> I didnt see anything about ldap
[19:24] <RoyK> ok
[19:25] <RoyK> out of interest - does that use windows IDs or just mapping to unix IDs?
[19:25] <Roasted> what do you mean windows IDs?
[19:25] <RoyK> user IDs, I mean
[19:25] <Roasted> not sure I follow - I didnt set up any users or deal with users yet
[19:26] <RoyK> I mean, when users store files on samba shares, does ubuntu use windows UIDs or does it map to unix IDs?
[19:26] <Roasted> oh, we dont use samba for file server services
[19:26] <RoyK> I think it maps ... opensolaris doesn't :)
[19:26] <RoyK> ah
[19:26] <Roasted> samba has other things bundled with it that helps in the radius process
[19:26] <RoyK> ok
[19:26] <RoyK> ic
[19:26] <Roasted> this box Im setting up is dedicated to radius
[19:26] <Roasted> we have a windows storage server, blah blah
[19:27] <RoyK> we don't use windows for storage - too many unix (linux and (open)solaris boxes) - windows nfs isn't really very good
[19:27] <Roasted> well, were in a school district with windows clients
[19:27] <Roasted> before I started, there were no linux servers
[19:27] <Roasted> we dont even have any macs anymore
[19:28] <RoyK> well, good thing you started, then :)
[19:28] <Roasted> lol
[19:28] <Roasted> well I didnt have much involvement with our one linux server
[19:28] <Roasted> however
[19:28] <Roasted> that server + an open source free app on it has saved the district around 300,000 dollars
[19:28] <Roasted> so yeah, the rest of the department is starting to think more highly of linux and its capabilities - whihc is why were trying to use freeradius to patch an MS problem with their version of radius.
[19:28] <Roasted> its just a bit of a headache
[19:28] <RoyK> we're setting up this rather nice HA cluster for storage on Nexenta soon - 40TB (or 48) on the big boxes
[19:29] <RoyK> zfs rocks!
[19:29] <Roasted> we were having a dns issue a while back
[19:29] <Roasted> I almost wonder if thats why its failing to authenticate
[19:30] <Roasted> god troubleshooting sucks on 3 hrs of sleep
[19:30] <RoyK> heh - no use, really - get more sleep and you'll work faster
[19:30] <Roasted> its either this or I get back to wiring. its 91 degrees, and to save power they shut off AC in the rest of the building.
[19:31] <Roasted> Im a fan of AC today, which is why Im trying ot crack this bastard. :P
[19:32] <milk_> im still having a problem
[19:35] <SpamapS> mathiaz: if you wanted to sponsor something for me.. https://code.launchpad.net/~clint-fewbar/ubuntu/maverick/cloud-init/glusterfs-mount-example/+merge/29490
[19:35] <mathiaz> SpamapS: cool
[19:36] <mathiaz> SpamapS: merge proposal grabbed
[19:36] <Roasted> NT_STATUS_NO_LOGON_SERVERS: No logon servers (0xc000005e)
[19:36] <Roasted> quick, someone. stab me in the face.
[19:42] <milk_> RoyK: will reinstalling reset everything ?
[19:42] <SpamapS> mathiaz: thanks! :)
[19:42] <RoyK> milk_: apt-get remove --purge mysql-server might help, yes, but it'll destroy any databases you have
[19:43] <milk_> RoyK: ok :D thanks
[19:53] <Hypnoz> It seems logrotate is rotating logs, but the apps like mysql and apache don't feel like giving up the old file handle and using the new one, and continue writing to a file that is open, but not listed with "ls" in the directory
[19:54] <Hypnoz> this is causing my /var mount point to grow very large, even though du -sh shows it as being fairly small, because the file handle never closes for apache and mysql logs
[19:54] <Hypnoz> Once i stop the mysql or apache process completely (in the case of apache, sometimes having to do a kill command), the file handle closes, and the volume regains that free space
[19:55] <serverhorror> Hypnoz:  that is normal, most of the daemons do what you want if you send them a signal (mostly SIGHUP)
[19:56] <Hypnoz> I know apache needs to be reloaded after a log rotate, it's in the logrotate script for apache to to a reload afterwards
[19:56] <Hypnoz> but it still seems that isn't allowing it to release those open file handles
[19:57] <Hypnoz> I'm wondering if a apache2 restart is needed instead, which would be much more planning and work
[20:00] <RoyK> Hypnoz: the logrotate scripts should do this automatically - if they don't, something's wrong in them
[20:01] <Hypnoz> well I can even manually do an apache2 reload on the server, but that doesn't release the file handles
[20:01] <Hypnoz> if you do something like lsof | grep /var/log | grep deleted
[20:01] <Hypnoz> you might see a lot of files
[20:01] <Hypnoz> all these files that apache can't let go of until the processes is fully restarted
[20:01] <RoyK> Hypnoz: I haven't seen this sort of problem in a while, but it might be apache is getting a SIGUSR1 where the threads/processes won't be stopped until they're done with what they're doing, and something's hammering the server. changing that to a SIGHUP will stop them and will require a new HTTP request
[20:03] <RoyK> iirc apache2ctl graceful sends a SIGUSR1 whereas apache2ctl reload sends a SIGHUP
[20:04] <Hypnoz> hmmm ... i thought reload called apache2ctl graceful in the init.d script
[20:04] <RoyK> yes, it does
[20:05] <Hypnoz> but apache2ctl reload is different?
[20:05] <RoyK> and that doesn't force a restart of anything, it just tells the processes/threads to please restart when done with whatever they're doing
[20:05] <RoyK> erm - restart
[20:05] <Hypnoz> ahhh
[20:05] <RoyK> not reload - my failt
[20:05] <RoyK> restart sends a SIGHUP, closing things and restarting them
[20:06] <RoyK> failt - nice, new word
[20:06] <Hypnoz> i like it. a combination between fail and fault
[20:06] <RoyK> :)
[20:07] <RoyK> a typo saves the day :D
[20:07] <Hypnoz> so what you are saying, which may be true since these servers are really busy with apache, is that apache never gets a break to close it's connections, so a reload may not be enough, a restart may be needed once in a while
[20:08] <Hypnoz> to force the connections to close, and the new log file handle to be used
[20:08] <Hypnoz> if the apache connections never get to 0, then the new log file handle will never be used
[20:08] <RoyK> IIRC new connections aren't accepted after a SIGUSR1, but ongoing connections will remain
[20:09] <Hypnoz> so new connections should use the new log file, and old connections would use the old file until they die?
[20:09] <RoyK> I _think_ so, but I'm on rather thin ice now :)
[20:09] <RoyK> as on #httpd
[20:11] <Hypnoz> I guess I will try to move this into #httpd then
[20:12]  * RoyK just joined to see the discussion :)
[20:23] <SpamapS> mathiaz: alright, submitted to cloud-init directly instead. Thanks for the review. ;)
[20:52] <osmosis> error installing sun-java.  http://dpaste.com/216084/
[21:08] <rsr> how can I completely remove ebox and all the things it installed?
[21:11] <SpamapS> smoser: http://paste.ubuntu.com/460782/
[21:11] <smoser> hm..
[21:12] <SpamapS> smoser: results in this fstab http://paste.ubuntu.com/460786/
[21:13] <smoser> yeah. i just verified broken ness.
[21:15] <SpamapS> meaning, broken code?
[21:31] <SpamapS> smoser: http://paste.ubuntu.com/460795/  that works, but.. bleh.. not elegant. :-P
[21:31] <smoser> i'll get the mounts fixed
[21:31] <smoser> its a bug
[21:32] <SpamapS> smoser: ok cool, I have plenty else to do, so no rush. :) should I report it on lp ?
[21:32] <smoser> sure, why not.
[21:32] <smoser> its not liking things that don't start with a /
[21:32] <SpamapS> artifacts are always nice when users go googling for the same problem. :)
[21:32] <smoser> in an effort to allow "sda3"
[21:33] <SpamapS> so its treating it like a special thing, 'ephemeral0' or whatever?
[21:34] <SpamapS> can't report bugs on launchpad
[21:38] <SpamapS> ok bug 603329
[21:38] <SpamapS> smoser: have to run for a bit, lets catch up on this tomorrow
[21:39] <smoser> SpamapS, yeah, theres a comment in the code.
[21:40] <smoser> the metadata service is really annoyhing in that sometimes a key in it will ('ephemeral0') will have a value of /dev/sda1
[21:40] <smoser> and other times a value of 'sda'
[21:46] <SpamapS> smoser: I went ahead and marked the "work" done on my side, and I'll re-visit which example to push into the package during the beta cycle. I also targetted that bug to alpha-3.
[21:47] <SpamapS> smoser: if you'd like, I can send a mege proposal for the workaround one now, so you can just approve/merge it if you think the bug will be too much (or I can take the bug on too)
[21:47] <SpamapS> anyway.. have to run.. ttyl
[21:50] <smoser> just assume that mnt works
[21:53] <ghost_> is it possible to recover the passphrase used to create a  rsa or maybe dsa key?
[22:12] <hmca> !kubuntu 10.4 to enterprise Cloud Front-end ubuntu server
[22:13] <hmca> Hi all!
[22:16] <hggdh> do we use to tag bugs as metabugs?
[23:47] <ruben23> hi guys anyone familiar with proxmox virtualization..
[23:51] <SpamapS> ruben23: no what is it?
[23:52] <ruben23> it is a virtualization platform same as paid version of vmware
[23:52] <ruben23> able to handle and manage KVM and OPnVZ virtualization.
[23:54] <ruben23> http://pve.proxmox.com/wiki/Main_Page
[23:59] <webPragmatist> whats the consensus on where to store apache certs for domains