[00:01] <WinstonSmith> john have a look here : http://linux.byexamples.com/archives/101/mount-a-samba-point/
[00:03] <John> WinstonSmith: well I should be more specific.  I have some experience with this.  I've been using this mount for a while now and it suddenly became ver very slow about 2 weeks ago
[00:04] <John> this is the line in /etc/fstab for instance //192.168.1.107/demigod /mnt/demigod cifs auto,file_perm=0666,dir_perm=0777,uid=1000,gid=1000,username=John,password=********,iocharset=utf8 0 0
[00:04] <John> woked fine for months
[00:04] <WinstonSmith> john if you mount it via CLI for testing do you have the same behavior?
[00:05] <WinstonSmith> or if you access the share with a windows client... just to see where the problem lies....
[00:05] <John> hrmmm yes i think so.  let me double check.  I did try it with smbclient cli and had the saem speed problems.  let me mount it using those instructions and see what happens
[00:06] <John> ok will try with a windows client as well.
[00:06] <WinstonSmith> kk
[00:09] <fundacion> hi
[00:10] <fundacion> do sombody know a program to work php visual?
[00:11] <John> WinstonSmith: still with me?
[00:11] <WinstonSmith> john yep
[00:11] <John> WinstonSmith: on a windows client through explorer, copy ran at 4+ MB/s (wireless)
[00:12] <John> WinstonSmith: mounting with mout -t cifs, it runs at about 30 KB/s
[00:12] <WinstonSmith> john ouch
[00:12] <John> WinstonSmith: with cp from the ubuntu server box
[00:12] <John> and like i sadi, everything worked fin until about 2-3 weeks ago
[00:13] <WinstonSmith> john if you write on the share is it also slow?
[00:14] <John> WinstonSmith: heh... i dont think I have any large files on the ubuntu box... let me hunt around
[00:14] <WinstonSmith> kk
[00:15] <John> WinstonSmith: um wow... no it was hella fast in fact
[00:16] <John> WinstonSmith: i copied a 1.5 MB file in a blink
[00:16] <John> WinstonSmith: will look for something bigger
[00:16] <WinstonSmith> john after doing some google-fu i found a lot of people with this error - reading is slow but writing ok ill look further
[00:19] <John> WinstonSmith: i've run into this before with OSX on one of my other machines, but I fixed that with... hrrrm I think I fixed it by changing some TCP wetting on the mac box
[00:19] <John> WinstonSmith: setting*
[00:21] <John> WinstonSmith: it was "sudo sysctl -w net.inet.tcp.delayed_ack=0"  had to do with some disagreement between windows and macs about how to do tcp
[00:21] <WinstonSmith> john do you have the socket options  =  TCP_NODELAY  SO_RCVBUF=8192 SO_SNDBUF=8192 in your smb.conf?
[00:22] <John> WinstonSmith: hah! that must be the linux way of doing that mac osx command. :-)  I will check
[00:22] <WinstonSmith> john im not sure
[00:22] <WinstonSmith> john just do a testparm and you will see right away
[00:24] <John> ugh test parm is letting me know that it does not recognize a bunch of options.
[00:24] <John> WinstonSmith: one more moment please
[00:25] <John> WinstonSmith: it is there, but commented out
[00:26] <WinstonSmith> john well you could give it a try
[00:27] <John> WinstonSmith: will do.  right now in fact
[00:28] <WinstonSmith> john do you have a GUI on your linux box?
[00:28] <John> nope
[00:28] <WinstonSmith> john you could also try to add rsize=4k to your mount options
[00:29] <WinstonSmith> as suggested here : http://ubuntuforums.org/showthread.php?t=1213688
[00:30] <WinstonSmith> look at post #5
[00:30] <John> WinstonSmith: i will try that first... looks less intrusive :-)0
[00:31] <WinstonSmith> john yes :P
[00:31] <dominicdinada> ugh need help finding a host by name ?
[00:33] <John> WinstonSmith: that made it slower by half :-(  now getting 15 KB/s
[00:34] <WinstonSmith> john did you use rsize=4096,wsize=4096?
[00:34] <John> WinstonSmith: yes
[00:34] <WinstonSmith> john eg you could try 16384 to see what happens
[00:34] <John> WinstonSmith: i was just thinking of doing that
[00:35] <WinstonSmith> 16384 FTW !!!
[00:35] <John> WinstonSmith: lol
[00:37] <John> WinstonSmith: meh... 40ish KB/s  ima try editing smb.conf
[00:38] <dominicdinada> WinstonSmith: hmmm still cant block 75.29.24.192 :O the eff is up with that
[00:38] <WinstonSmith> dominicdinada, i think you got something wrong there ;)
[00:39] <WinstonSmith> john, did you ask your question in #samba?
[00:39] <dominicdinada> WinstonSmith: yeah but i am trying to figure out who it is.... I tracked it etc. but still no aval... i wondered if it is to the ubuntu servers ? or something
[00:39] <John> WinstonSmith: thanks for all your help... i will try there next
[00:40] <WinstonSmith> John you are welcome :)
[00:42] <dominicdinada> WinstonSmith: maybe i need to rebuild my entire firewall blocking every single packet and connection then opening 1 by 1 because allows take presidance ? :/
[00:42] <WinstonSmith> dominicdinada, your were not discussing your problem with me :O
[00:48] <dominicdinada> that no matter what i block i am getting suspicious connections even when i set iptables to drop packets from specified ports
[00:49] <dominicdinada> you know i thought it might be the core os communicating but googling the IP results almost no results.... so there is a flag. then when i whois the addy i get a hit for the provider but scanning and pinging the host fails
[00:49] <dominicdinada> WinstonSmith: ^^
[00:52] <EvilPhoenix> dominicdinada:  what ports are you getting these suspicious hits on?
[00:52] <EvilPhoenix> and in or outbound
[00:52] <dominicdinada> udp 1249
[00:52] <dominicdinada> outbound
[00:53] <dominicdinada> reguardless something should not be going external like that behind 2 firewalls and a router. maybe ISPs changed there policies that they are breaking into computers to check what is there lol
[00:53] <EvilPhoenix> dominicdinada:  you could filter out all outbound traffic...
[00:53] <EvilPhoenix> but i dont recommend it...
[00:54] <EvilPhoenix> or
[00:54] <EvilPhoenix> you could do...
[00:54] <WinstonSmith> dominicdinada,  netstat -vaup | grep 1249 gives you what?
[00:54] <EvilPhoenix> ehh let WinstonSmith help you
[00:54]  * EvilPhoenix checks on that port number
[00:54] <dominicdinada> WinstonSmith: since the machine in question was taking so many hits i shut it down. well not shut it down but pulled the hardline....
[00:55] <WinstonSmith> dominicdinada, im a bit confused here... i mean outbound means you are sending those packets ... explain plz
[00:57] <dominicdinada> WinstonSmith: The machine should not have any external connections let lone 10000 packets sending data outbound. Then I set the ruleset to block the IP via -j DROP I set it to Drop outbound udp and tcp and the connections still persist
[00:57] <WinstonSmith> dominicdinada, yes but did you find out which process was actually sending those packets?
[00:57] <dominicdinada> noticed total network performance drop recently and checked and that is an active connection sending outbound
[00:58] <dominicdinada> WinstonSmith: ugh no i didnt maybe i will try once again
[00:58] <WinstonSmith> dominicdinada,  netstat -vaup | grep 1249 gives you what?
[00:58] <EvilPhoenix> i wonder what exactly you do on your server...
[00:58] <EvilPhoenix> because if its shells or something... it might be a rouge user
[00:59] <dominicdinada> EvilPhoenix: just a local development server i never have fileshared or anything alike. I really would like to block every single external connection except updates
[00:59] <EvilPhoenix> heh
[00:59] <dominicdinada> EvilPhoenix: i didnt see anything in the logs suggesting such let me go over to the machine and check brb
[00:59] <EvilPhoenix> ehh
[00:59] <WinstonSmith> dominicdinada, well then dont give it a gateway & dns and there you are
[00:59] <EvilPhoenix> where'd i put my iptables manpages...
[01:01] <EvilPhoenix> hmm
[01:01] <EvilPhoenix> dominicdinada:  you could always block the port itself on outbound...
[01:02] <dominicdinada> netstat -vaup | grep 1249 returned nothing
[01:02] <EvilPhoenix> dominicdinada:  you could try adding two rules into OUTPUT...
[01:02] <EvilPhoenix> like...
[01:02] <dominicdinada> literally nothing just passed the command and returned to prompt no error
[01:02] <WinstonSmith> dominicdinada, that is strange ... is it sending right now?
[01:03] <EvilPhoenix> dominicdinada:  you could add these: iptables -A OUTPUT -p udp --dport 1249 -j DROP  and  iptables -A OUTPUT -p udp --dport 1249 -j DROP
[01:03] <WinstonSmith> dominicdinada, you could do just the netstat -vaup and look by hand
[01:03] <dominicdinada> as soon as i plugged it in the links went haywire
[01:03] <EvilPhoenix> should drop any traffic on that port
[01:04] <EvilPhoenix> er
[01:04] <EvilPhoenix> not 2 dports
[01:04] <EvilPhoenix> one of those should be sport
[01:05] <WinstonSmith> dominicdinada, because if its a legitimate process sending on port 1249 udp it should show up. or you may have something really fishy going on there
[01:05] <EvilPhoenix> mmm sounds fishy
[01:05] <WinstonSmith> yes it does... not showing on netstat .....
[01:06]  * WinstonSmith hears it hacking somewhere
[01:06] <EvilPhoenix> could always just add port blocking rules
[01:06] <dominicdinada> of course it is WinstonSmith
[01:06] <EvilPhoenix> you could*
[01:07] <dominicdinada> Netstat vaup only returned 3 entries... one of being 192.168.122.1 which is a bridge. also after blocking those ports now instead of 1249 the same ip is using 1279 and 1125
[01:08] <EvilPhoenix> o.o
[01:08] <EvilPhoenix> sounds like you have bad things
[01:08] <WinstonSmith> dominicdinada, did u try something like this : sudo apt-get -y install chkrootkit
[01:08] <dominicdinada> funny how iptables doesnt drop all packets
[01:08] <dominicdinada> no i didnt lol why would i install a root kit
[01:08] <EvilPhoenix> dominicdinada:  you'd need to do iptables -P OUTPUT DROP or whatever it is
[01:08] <EvilPhoenix> dominicdinada:  someone could have hacked you and put it on there
[01:08] <EvilPhoenix> s/it/one
[01:08] <dominicdinada> since i specified to block everything from the dam IP
[01:08] <WinstonSmith> dominicdinada, check for rootkits
[01:08] <dominicdinada> search chroot ?
[01:09] <dominicdinada> chrootkit ?
[01:09] <EvilPhoenix> chkrootkit
[01:09] <WinstonSmith> dominicdinada, its a script that checks for rootkits
[01:09] <dominicdinada> ok
[01:09] <dominicdinada> make sure i dont have it ?
[01:09] <WinstonSmith> dominicdinada, yes
[01:10] <WinstonSmith> dominicdinada, cause you seem to have a hidden process around there ergo rootkit
[01:10] <dominicdinada> ok and to EvilPhoenix idea about removing the gateway ? hmmm that is an idea but i would rather block all packets except from local ips, etc
[01:10] <EvilPhoenix> you mean outbound>
[01:10] <EvilPhoenix> or inbound
[01:10] <EvilPhoenix> because...
[01:11] <EvilPhoenix> if you want outbound traffic to local net ips
[01:11] <dominicdinada> Ugh brb phone i will check and report back
[01:11] <EvilPhoenix> you can allow it to those destination local net ips
[01:11] <EvilPhoenix> speaking of which
[01:11] <EvilPhoenix> WinstonSmith:  you did me a favor and reminded me to run a routine check on my servers for rootkits x]
[01:11] <WinstonSmith> dominicdinada, blocking traffic doesnt help if the box is still infected no? so you have to clean or reinstall it
[01:12] <WinstonSmith> EvilPhoenix, hehehe
[01:12] <EvilPhoenix> yay i'm clean!
[01:12]  * EvilPhoenix kicks his ssh for failing though
[01:12] <EvilPhoenix> bah
[01:12]  * EvilPhoenix will return
[01:13] <EvilPhoenix> okay restarting my internet helped x]
[01:16] <WinstonSmith> dominicdinada, so will you try the sudo apt-get -y install chkrootkit ?
[01:39] <dominicdinada> ok chkroot is not installed
[01:39] <dominicdinada> now that ip is using another network addy instead of .192 it is trying to connect via port 4314 from .196
[01:40] <dominicdinada> netstat -vaup | grep 4314 returns nothing and i pulled the plug
[01:42] <dominicdinada> WinstonSmith:
[01:42] <WinstonSmith> dominicdinada, obviously you have to install  chkrootkit and then run it
[01:42] <dominicdinada> i asked if i should or should not have it you said not. I guess communication error about how i asked  and you answered
[01:45] <WinstonSmith> dominicdinada, well sry i thought that was obvious since i gave you a apt-get install line
[01:46] <dominicdinada> it scrolls to fast but it is picking up an xrl autoreg something or other and thats it :O
[01:48] <dominicdinada> WinstonSmith: /usr/lib/pymodules/python2.6/.path /usr/lib/xulrunner-1.9.2.8/.autoreg
[01:51] <dominicdinada> WinstonSmith: /usr/lib/pymodules/python2.6/.path /usr/lib/xulrunner-1.9.2.8/.autoreg
[02:16] <WinstonSmith> dominicdinada, but did you get any positives?
[02:17] <dominicdinada> WinstonSmith: yes what i posted showed positive as suspicious so i removed the package. now it is showing pymodules/.path as positive
[02:18] <dominicdinada> so i nano'd all the contents out
[02:18] <WinstonSmith> well sledgehammer
[02:19] <dominicdinada> sledgehammer ?
[02:20] <WinstonSmith> zeroing out i mean
[02:20] <WinstonSmith> maybe its a false positive
[02:21] <dominicdinada> WinstonSmith: true.
[02:36] <RoyK^> does fsck check the contents of the filesystem  or just its metadata?
[02:43] <WinstonSmith> RoyK, explain plz
[02:59] <Hopsa> RoyK: Filesystem checks does as many checks as they possibly can unless the user wants it to go --faster or so and then it skips some tests.
[03:00] <Hopsa> Most do header or db checks againt the files present on the media.
[04:05] <Jordan_U> RoyK: Just the metadata, most filesystems don't store checksums of the data and without those you can't confirm the integrity of the data.
[08:52] <Dusty> Hey all! Quick question!
[08:52] <Dusty> If.. Anyone has a moment?
[08:54] <Dusty> Hmm ,well simply.. If your hardware does not support hardware virtualization.. Does that mean you can't use virtual machines? That might sound like a dumb question but none of the guides clarify yes or no really..
[08:55] <Dusty> "kvm-ok" A message will be printed informing you if your CPU does or does not support hardware virtualization. - On most computer whose processor supports virtualization, it is necessary to activate an option in the BIOS to enable it.  - ...
[09:17] <pwnguin> # set PATH so it includes user's private bin if it exists
[09:17] <pwnguin> if [ -d ~/bin ] ; then
[09:17] <pwnguin>     PATH=~/bin:"${PATH}"
[09:17] <pwnguin> fi
[09:18] <lifeless> Dusty: qemu can run non hardware virtualised vms
[09:18] <lifeless> but its a lot slower
[09:19] <pwnguin> i have a ~/bin, and yet PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
[09:22] <pwnguin> hmm
[09:24] <pwnguin> i guess gnome / X fixes PATH for me helpfully
[09:25] <lifeless> no
[09:25] <lifeless> it will be rc vs profile, I suspectr
[09:25] <pwnguin> it is
[09:25] <pwnguin> but im wondering
[09:25] <Dusty> That's cool. Thanks lifeless.
[09:25] <Dusty> >.< Not seeing many guides for 10.09 server however. most are for 9.10
[09:25] <pwnguin> 10.09?
[09:26] <pwnguin> why is there supposed to be a 10.09?
[09:26] <Dusty> Sorry, 10.04
[09:26] <Dusty> Been a long day.
[09:28] <pwnguin> lifeless: i'm trying to figure out the difference between a login shell and every other one, and my best guess right now is that login(1) has to call bash, and that gdm/X doesn't do that
[09:30] <pwnguin> which raises a small annoyance
[09:31] <pwnguin> the above excerpt comes from .bash_profile
[09:31] <pwnguin> so that it only runs and tacks onto PATH once
[09:32] <pwnguin> anyways, this is server unrelated now, since it involves desktops
[16:27] <gasbakid> what is the entry password for the root
[16:27] <gasbakid> ???
[16:28] <Patrickdk> none :)
[16:28] <Patrickdk> unless you set one
[16:28] <Patrickdk> you can't login as root, ever
[16:31] <gasbakid> so how could i do for accessing
[16:31] <gasbakid> ???
[16:32] <Patrickdk> sudo
[16:34] <gasbakid> nn the first time
[18:03] <Thorn> hello
[18:04] <reisi> is there a common way to use a "normal" smtp account for all administration (mdadm, cron, smartd, etc.) mails generated by a server installation?
[18:04] <reisi> normal as in username/login and single From: address
[18:04] <Thorn> any guides/tips on installing ubuntu server as a kvm host? I'd like as minimal install as possible
[18:05] <Patrickdk> thorn, I like to do pxe/net installs, they are pretty basic
[18:06] <Thorn> well I did manage to find a 7 year old blank cd and burn the iso to it :)
[18:07] <Thorn> do I need X in the host for example?
[18:14] <pmatulis> Thorn: no
[18:40] <dev001> I'm migrating a bunch of Xen DomUs to 10.04.1 LTS Server.  I've easily found & DL'd the .iso.  Where online can I find downloadable vmlinuz/initrd for DomU booting?  Iiuc, Ubuntu has pvops-enabled kernels, so I don't need xen-specific imgs -- just the 'normal' kernel/initrd will do.
[19:15] <WinstonSmith> hi all :) what command do i use to tell a certain service to start at boot ? thx
[19:17] <RoyK> if the service is using upstart, "start service" wiill do
[19:17] <WinstonSmith> RoyK, i know but at boot?
[19:17] <RoyK> if not,  use the script in /etc/init.d
[19:17] <RoyK> make a symlink in /etc/rc2.d to the script
[19:18] <RoyK> cd /etc/rc2.d; ln -s ../init.d/somescript S99somescript
[19:19] <WinstonSmith> RoyK, cause i just upgraded from 8.04 to 10.04 and now a lot of servies just wont start at boot anymore eg apache & webmin
[19:20] <WinstonSmith> RoyK, but  i have the S99apache2 in rc.2 :(
[19:20] <RoyK> WinstonSmith: do you have their init scripts woring?
[19:20] <WinstonSmith> ?
[19:20] <WinstonSmith> RoyK, plz explain?
[19:20] <RoyK> does it work to start them with their init scripts?
[19:21] <RoyK> /etc/init.d/apache2 start
[19:21] <WinstonSmith> RoyK, yes sure .... the services are ok eg if i service start webmin it comes up but not at boot anymore
[19:22] <guntbert> WinstonSmith: you do know that webmin is not supported on ubuntu?
[19:22] <RoyK> !webmin
[19:23] <WinstonSmith> RoyK, its really weird ... the link in rc.2 points to the right file too
[19:23] <guntbert> although ebox is in no way a replacement ....
[19:23] <WinstonSmith> royk thx for the info but thats another issue... what about all the other services i have not booting?
[19:24] <WinstonSmith> guntbert, and i have a vbox control made in webmin which i would be missing VERY much :(
[19:25] <guntbert> WinstonSmith: I know those feelings - just a word of warning - webmin *can* break your system
[19:26] <WinstonSmith> guntbert, i will disable it sniff ... but any idea why the apache for example doesnt start if i ls the link in rc2.d it gives S99apache2 -> /etc/init.d/apache2 which is right no?
[19:27] <george_> I need to somehow connect users form google apps standard edition to the unix users system ? any ideas ?
[19:27] <guntbert> WinstonSmith: sorry, I sort of lost track of the numerous ways how to start different services (upstart vs runlevels vs ??)
[19:38] <WinstonSmith> guntbert, saved myself ==> update-rc.d -f apache2 remove && update-rc.d apache2 defaults did the trick
[19:39] <WinstonSmith> guntbert, ths for your help anyway have a nice day :D
[19:39] <WinstonSmith> RoyK, thx too :)
[19:40] <guntbert> WinstonSmith: I didn't really give any help, but thx for reporting back  - I'll try to remember  :-)
[20:30] <Mp3> hi guys and gals
[20:31] <Mp3> im having some issues with a new server install and i cant find any helpful things on the forums... so i figured i might be able to ask here
[20:31] <Mp3> for some reason, i can access my server over the LAN just fine, and DNS works great.. but it apparently cant connect to anything outside of the lan.
[20:32] <Mp3> it was working fine just after install, and after i setup my wireless card with ndiswrapper, i get to it this morning and nothing as far as internet works.
[20:32] <Mp3> any ideas?
[20:34] <Thorn> Mp3: ping, tcpdump, tracepath, dmesg, ip route. find where the packets die and why
[20:36] <Mp3> ping gets no replies back, (resolves the host just fine as stated) just tried tracepath (was trying to install traceroute heh) and it gets to my router, twice... and then no reply
[20:37] <Mp3> everything looks fine in ip route
[22:05] <Crankygeek> I have just done a fresh install of egroupware 1.6. I have Apache2 installed, and I am using Postgresql for my database. I have completed all the configurations and built the database. All checks are passing....But I am getting an error when I try and load the site..."Fatal Error: It appears that you have not created the database tables for eGroupWare.  Click here to run setup." I have searched high and low for a resolution w
[22:05] <Crankygeek> ith no luck.....I am hoping someone here can help.
[22:15] <Crankygeek> I have just done a fresh install of egroupware 1.6. I have Apache2 installed, and I am using Postgresql for my database. I have completed all the configurations and built the database. All checks are passing....But I am getting an error when I try and load the site..."Fatal Error: It appears that you have not created the database tables for eGroupWare.  Click here to run setup." I have searched high and low for a resolution,
[22:15] <Crankygeek> I am hoping someone here can help?
[22:21] <Crankygeek> I have just done a fresh install of egroupware 1.6. I have Apache2 installed, and I am using Postgresql for my database. I have completed all the configurations and built the database. All checks are passing....But I am getting an error when I try and load the site..."Fatal Error: It appears that you have not created the database tables for eGroupWare.  Click here to run setup." I have searched high and low for a resolution,
[22:21] <Crankygeek> I am hoping someone can help
[22:35] <kklimonda> !weekend | Crankygeek
[22:37] <stlsaint> kklimonda: that doesnt make sense really when there are 268 nicks in the room...
[22:39] <kklimonda> stlsaint: why? most people just never turn off their irc client
[22:40] <stlsaint> kklimonda: meh, idling doesnt make sense to me regardless
[22:40] <stlsaint> if your not at your system why just waste resources?
[22:40] <kklimonda> stlsaint: to make it possible for others to ping you and keep a scrollback of all channels you are on.
[22:40] <kklimonda> it
[22:41] <kklimonda> it's usefel to be able to take a look back at what the discussion is about before you join it ;)
[22:41] <stlsaint> kklimonda: but if you are not at your machine how is it possible for someone to ping you and get a response?
[22:41] <kklimonda> stlsaint: you'll be able to get back to him once you read it
[22:42] <stlsaint> kklimonda: yea that makes sense, but then again thats where there is the /memo function
[22:42] <kklimonda> stlsaint: no one uses it
[22:42] <stlsaint> kklimonda: haha, well thats a whole different issue
[22:43] <stlsaint> kklimonda: im also wondering about the ubuntu-server wiki not being touched since last year
[22:43] <stlsaint> kklimonda: and how the mentoring process doesnt actually work (or it seems it doesnt)
[22:45] <kklimonda> mentoring process?
[22:48] <stlsaint> kklimonda: https://wiki.ubuntu.com/ServerTeam/Mentoring
[22:48] <stlsaint> kklimonda: ^^ untouched since 2008
[22:50] <kklimonda> well, we obviously could use a spare hand to update it ;)
[22:55] <stlsaint> kklimonda: undertandable but its not seeming like a updated process to get involved with the team...
[22:55] <stlsaint> kklimonda: this is my third go-round at joining the team...i finally just went ahead and tried joining lp team
[23:27] <Crankygeek> I have just done a fresh install of egroupware 1.6. I have Apache2 installed, and I am using Postgresql for my database. I have completed all the configurations and built the database. All checks are passing....But I am getting an error when I try and load the site..."Fatal Error: It appears that you have not created the database tables for eGroupWare.  Click here to run setup." I have searched high and low for a resolution w
[23:27] <Crankygeek> ith no luck.....I am hoping someone here can help.