[00:02] <progre55_> Hypnoz: is it possible to do this? "sudo tar zcvf - SOURCEDIR | ssh user1@remotehost 'cd DESTDIR; tar zxvf - '" but, preserving the file permissions and ownership?
[00:03]  * SpamapS drums his fingers as he waits for mysql to build in a PPA.........
[00:04] <progre55_> I was thinking about his approach, but couldnt preserve ownership and stuff, so I did "tar zcvf - SOURCEDIR | ssh user1@remotehost "cat > /DESTDIR/DESTFILE.tar.gz"" so now I have a huge tar file I cannot extract ))
[00:04]  * SpamapS also drums fingers waiting for mongodb to build
[00:04] <SpamapS> progre55_: that is possible, I've done it before.
[00:04] <progre55_> SpamapS: which one?
[00:04] <SpamapS> progre55_: precede your 'cat' with a touch/chmod/chown command
[00:05] <SpamapS> progre55_: oh you want the contents to have the same uid's/gid's ?
[00:05] <progre55_> yeah
[00:05] <progre55_> cause it's a huge dir
[00:05] <progre55_> with lots of files..
[00:05] <SpamapS> progre55_: are the UID's/GID's the same on the destination box? tar usually uses names so they will map right on the dest host
[00:06] <progre55_> yep
[00:06] <SpamapS> progre55_: so whats wrong then? Not sure what you want to do that the command you gave won't do
[00:08] <progre55_> SpamapS: the dir on server 1 is owned by root and mysql, but the user I'm ssh'ing it with is different.. so with the first approach all the files were under that user's ownership
[00:09] <progre55_> but with the second approach, I dont have enough space on my second server to untar the dir.. cause the dir is 19.3 Gb, the tar is 8.5 and I only have 25Gb
[00:12] <SpamapS> progre55_: well thats because you're not allowed to create files as another user unless you are root
[00:13] <progre55_> well yeah I know that )
[00:13] <SpamapS> so... be root
[00:13] <progre55_> and that's why I was asking if it's possible to do it..
[00:13] <SpamapS> progre55_: why not just use rsync?
[00:13] <progre55_> hm.. that's an idea )
[00:13]  * SpamapS realizes he is taking it for granted that you would know about rsync. :)
[00:14] <progre55_> but dont really know the syntax, never used it )
[00:15] <SpamapS> very similar to scp
[00:15] <SpamapS> rsync localdir/ user@remotehost:remotedir/
[00:15] <SpamapS> the trailing slash on the source is important
[00:15] <SpamapS> if omitted, the destination will be where to put a dir called localdir, if its there, them remotedir will be made to look like localdir. Make sense?
[00:17] <progre55_> hmm.. yeah =)
[00:17] <progre55_> but how does it connect?
[00:17] <progre55_> I mean, does it ask for password or smth?
[00:17] <zash> progre55_: it goes over ssh
[00:17] <progre55_> oh )
[00:17] <zash> progre55_: so it'll ask for ssh credentials
[00:17] <progre55_> okay )
[00:18] <progre55_> thanks man, I'll try it now..
[00:18] <SpamapS> rsync is amazing
[00:18] <SpamapS> you are a changed man now that you have discovered it
[00:18] <progre55_> haha =)
[00:18] <progre55_> let me experience it first ))
[00:19] <SpamapS> rsync is like pizza and sex.. even when its bad, its good.
[00:35] <progre55_> hmm.. rsync creates the dir itself, but doesnt copy the files, says "skipping directory ."
[00:35] <progre55_> SpamapS: ^^
[00:36] <SpamapS> progre55_: rsync -a
[00:36] <Hypnoz> I ususally do -av
[00:36] <SpamapS> progre55_: or -r
[00:36] <SpamapS> yeah, -av is good
[00:36] <SpamapS> will show progress as it goes if you add -P
[00:36] <SpamapS> (and will keep partial files which is good if you have giant files and low bandwidth)
[00:37] <SpamapS> progre55_: -a means keep permissions and ownership the same too
[00:37] <SpamapS> sort of mimics cp -a
[00:37]  * SpamapS signs off
[00:38] <progre55_> aha, cool, thanks
[00:46] <progre55_> hm.. I like rsync a lot =)
[01:16] <_Techie_> is there any reason that root would have excessive amounts of files on the hard drive,   http://i161.photobucket.com/albums/t212/xperiment62/usage.jpg
[01:17] <Hypnoz> _Techie_: is this only looking in /root/ or across the whole system?
[01:17] <_Techie_> thats looking @ /
[01:19] <Hypnoz> as root, try running   cd / && du -sh *
[01:19] <Hypnoz> maybe keep digging down into the larger foldres to find where things are getting large
[01:20] <_Techie_> ooh, i see where a ton of it is now
[01:20] <_Techie_> website backups
[01:21] <_Techie_> thanks heaps Hypnoz, i know exactly what  to do now
[01:24] <_Techie_> also is there a bug in 9.10 that causes it to cache alot to RAM
[01:25] <_Techie_> RAM was flushed of hard drive cache ~ 25 minutes ago, and now the RAM usage is at 1.08gigs, with 232.15 MB of that being processes
[01:30] <EvilPhoenix> other than chkrootkit, does anyone know other root kit checkers or similar programs?
[01:44] <JanC> EvilPhoenix: $ apt-cache search rootkit
[01:44] <JanC> chkrootkit - rootkit detector
[01:44] <JanC> rkhunter - rootkit, backdoor, sniffer and exploit scanner
[01:44] <JanC> unhide - Forensic tool to find hidden processes and ports
[01:44] <EvilPhoenix> JanC:  thanks
[01:44] <JanC> (you could have done the same apt search, of course ;)
[01:45] <EvilPhoenix> JanC:  apt-cache search is being evil on my system
[01:45] <EvilPhoenix> cant even find already installed packages
[01:46] <EvilPhoenix> i'm reinstalling it all tomorrow
[01:46] <JanC> well, if you are infected by a rootkit, no program is guaranteed to find it, of course...
[02:00] <dominicdinada> where besides the hostname file are hostnames stored  ?
[02:39] <pmatulis> dominicdinada: in the kernel
[02:39] <pmatulis> dominicdinada: or kernel-aware
[02:40] <pmatulis> dominicdinada: man sysctl
[02:40] <dominicdinada> pmatulis: ok i will check i
[04:51] <wogamycrazy> hello
[05:30] <MakX> quick newb question
[05:30] <MakX> nothing needs to be restarted for php.ini changes to take effect, right?
[06:06] <DigitalDeviant>  question: is there a way to upgrade a ubuntu server to centos remotely ?
[06:23] <lifeless> "Upgrade"
[06:26] <DigitalDeviant> is there anyone here that will help me purge out ispconfig and all the other crap that comes with it? I can setup a remote session so you can access my ssh
[07:33] <Lovetrain> Hi alll
[08:31] <oracle> hey, any service configuration utils--similar to the one on centos--on ubntu?
[11:29] <q_a_z_steve_> I installed virtualbox on my 10.04 server, and now I am stuck wondering, can I avoid installing X11 and still use it?
[11:31] <q_a_z_steve_> hey, anyone here?
[12:27] <joschi> q_a_z_steve: VirtualBox itself runs well without an X server. but I think all existing packages depend on X.org, so you'd need to repackage or compile/install vbox yourself
[13:03] <bjaanes> I have this DHCP/DNS server which i JUST got working properly with ddns-update and all (DHCP updating the DNS and such). What is not irritating me is that when I add an server to dhcpd.conf file as reserved - the DNS does not get update upon lease. Why? O_o
[15:33] <LowValueTarget> 10.04.1 x64 server -- MySQL wont start.... i see this in 'messages' .... http://pastie.org/private/vdkr4casa2zah1gnxn8o8a
[15:33] <LowValueTarget> any ideas?
[15:33] <LowValueTarget> `status mysql` => mysql respawn/post-start, (post-start) process 2385
[15:33] <LowValueTarget> the pid changes every few seconds
[15:33] <LowValueTarget> i assume its in some sort of loop
[15:35] <joschi> LowValueTarget: seems like AppArmor doesn't like your mysqld to access the new config file /usr/wp/conf/mysql/my-normal.cnf
[15:36] <joschi> you'll either need to disable the apparmor profile for mysqld (bad) or modify the existing profile to allow access to that file
[15:37] <LowValueTarget> joschi: ha! I just stopped apparmor and started mysql
[15:37] <LowValueTarget> works like a charm
[15:38] <LowValueTarget> i need to find where the mysql profile is for apparmor
[15:38] <joschi> LowValueTarget: yes, but if it's a public accessible system, you should invest some time in reading about apparmor and how to use it
[15:38] <kklimonda>  /etc/apparmor.d/usr.sbin.mysqld
[15:39] <LowValueTarget> kklimonda, joschi I just add the path in there?
[15:39] <joschi> LowValueTarget: you could do that
[15:39] <LowValueTarget> is that a list of "allowed" paths
[15:39] <joschi> LowValueTarget: it's a little bit more, but that's certainly part of it
[15:39] <LowValueTarget> then permissions for each
[15:39] <LowValueTarget> ill read up on it
[15:40] <joschi> LowValueTarget: https://help.ubuntu.com/10.04/serverguide/C/apparmor.html
[15:40] <joschi> LowValueTarget: for starters just duplicate the line for /etc/mysql/my.cnf in the apparmor profile and adjust the path of the duplicated line
[15:43] <LowValueTarget> i did. Thanks joschi
[16:13] <Psi-Jack> Bleh.
[16:14] <Psi-Jack> Now I have to figure out how to convert this fricken upstart init for libvirt-bin into a proper LSB init script.
[16:15] <Psi-Jack> Because upstart doesn't have ANY kind of proper LSB error codes at all for CRM management.
[16:38] <wildem> Hello, anyone familiar with this problem?: mysql -u root gives ERROR 1045 (28000): Access denied for user 'root'@'localhost'. I have removed all mysql packages and reinstalled them making sure I do not set a root password. Still it does not work.
[16:40] <TANATHOS> wildem : mysqladmin -u root ?
[16:40] <wildem> Cannot find an answer on the web
[16:41] <wildem> TANATHOS: mysqladmin -u root didnt work before but now it seems to work
[16:41] <TANATHOS> mysqladmin --user=root password 'my_root_password'
[16:41] <TANATHOS> actually that should be the sintax
[16:41] <TANATHOS> *syntax
[16:42] <wildem> Then i get the same error
[16:42] <wildem> or if i try to set up a database
[16:42] <TANATHOS> because
[16:42] <TANATHOS> you should use
[16:42] <TANATHOS> mysql -u root -p
[16:42] <TANATHOS> and the input the password
[16:42] <wildem> I have set password blank
[16:42] <wildem> when i installed the packages
[16:43] <TANATHOS> wildem: not a very good ideea but still
[16:43] <wildem> yeah, just for ease of development atm
[16:43] <TANATHOS> set a password and then 'mysql -u root -p'
[16:43] <wildem> with mysqladmin --user=root etc?
[16:43] <TANATHOS> yes
[16:44] <wildem> mysqladmin --user=root password 12345'
[16:44] <wildem> mysqladmin: connect to server at 'localhost' failed
[16:44] <wildem> error: 'Access denied for user 'root'@'localhost' (using password: NO)'
[16:44] <wildem> except with one more '
[16:44] <TANATHOS> :)) there is no '
[16:44] <wildem> before 12345, accidentally deleted it
[16:44] <wildem> i removed the password before pasting ^^
[16:44] <wildem> there was a ' before
[16:45] <effj> wildem, add -p and see if it'll ask you for a password
[16:45] <TANATHOS> I was thinking how to explain him that
[16:46] <wildem> effj, TANATHOS: tried that
[16:46] <wildem> still same problem edcept using password: yes
[16:46] <TANATHOS> wildem: mysql -u root -p password
[16:46] <effj> TANATHOS, oh sorry, you had already written it above, didn't see, kinda just switched to this window :/
[16:47] <wildem> TANATHOS: but there is no passowrd set :/
[16:47] <TANATHOS> effj : no problem
[16:47] <simplexio> :) my usuall advice to mysql problems is "install postgresql" :) , yes i knoe, it isnt helpful
[16:47] <wildem> Jesus
[16:47] <TANATHOS> wildem: last time, set a password with mysqladmin then try to connect with -p argument
[16:47] <wildem> I removed all mysql-related packages
[16:47] <wildem> reinstalled, without supplying a passowrd
[16:48] <wildem> and still it does not work :(
[16:48] <wildem> i cannot set a password with mysqladmin TANATHOS
[16:48] <wildem> Should I be able to do that?
[16:48] <simplexio> wildem: it probably left old db files to some dir ( usually its in /var/something/something )
[16:48] <TANATHOS> wildem: you should be able to do that if it's the first install
[16:49] <wildem> its not the first install, it's a reinstall of mysql now
[16:49] <wildem> simplexio: I'll have a look
[16:50] <TANATHOS> the initial root user has no password in mysql and you should be able to set it with mysqladmin
[16:50] <TANATHOS> there is a way of resetting the root passwd
[16:51] <wildem> simplexio: Would it leaving old DB-files keep some old root password?
[16:51] <wildem> TANATHOS: I take it that this should not happen? # mysqladmin --user=root password 'password'
[16:51] <TANATHOS> wildem: /etc/init.d/mysqld stop
[16:51] <wildem> mysqladmin: connect to server at 'localhost' failed
[16:51] <wildem> error: 'Access denied for user 'root'@'localhost' (using password: NO)'
[16:52] <wildem> stopped the service
[16:52] <TANATHOS> wildem: sudo mysqld --skip-grant-tables &
[16:52] <TANATHOS> wildem: mysql -u root mysql
[16:53] <TANATHOS> wildem: UPDATE user SET Password=PASSWORD('YOURNEWPASSWORD') WHERE User='root'; FLUSH PRIVILEGES; exit;
[16:53] <TANATHOS> that should reset your passwd
[16:53] <wildem> TANATHOS: thanks
[16:53] <wildem> hmm sudo mysqld --skip-grant-tables got me stuck in a process
[16:54] <wildem> cant even ctrl + c out of it
[16:54] <TANATHOS> it takes a while
[16:54] <TANATHOS> not too much depending on your box
[16:54] <wildem> ah
[16:54] <wildem> now
[16:55] <wildem> UPDATE user SET Password=PASSWORD('YOURNEWPASSWORD') WHERE User='root'; FLUSH PRIVILEGES; exit;
[16:55] <wildem> TANATHOS: is PASSWORD the old password?
[16:55] <TANATHOS> no
[16:56] <TANATHOS> that's a field
[16:56] <wildem> ah
[16:56] <wildem> not to used to mysql queries
[16:56] <wildem> im a front-end programmer
[16:56] <TANATHOS> wildem: you need to change online what's between ''
[16:56] <wildem> yeah
[16:57] <TANATHOS> I'm not a programmer at all
[16:57] <TANATHOS> :)
[16:57] <wildem> TANATHOS: It seems to have worked!
[16:57] <wildem> thanks a million :)
[16:57] <TANATHOS> you are very welcome
[16:57] <wildem> I'll make sure I set passwords in the future
[16:58] <TANATHOS> !ubottu
[16:58] <TANATHOS> !ubottu mysql
[16:58] <TANATHOS> I forgot how I should use her
[16:58] <TANATHOS> :)
[16:58] <wildem> hehe
[17:00] <RoyK> anyone here using denyhosts?
[17:00] <TANATHOS> RoyK: just ask
[17:01] <RoyK> I just wonder if the distributed thing - how does that work? will any login attempt or block result in the IP being blocked by all denyhosts users? if so, it's quite hard to test this without hassle
[17:02] <TANATHOS> RoyK: I'm sure you mean the package denyhosts which denies ssh access after some failed attempts
[17:04] <RoyK> indeed
[17:04] <TANATHOS> RoyK: to be honest I usually use fail2ban easier to use and apt-get-able
[17:04] <RoyK> denyhosts is apt-get-able as well
[17:04] <RoyK> in lucid, at least
[17:05] <TANATHOS> ups sorry my bad then ( as I told you I never used it) as far as I know is that you can set it to ban a ip after several failed attempts to login
[17:05] <TANATHOS> and for more you can set sshd service not to allow root logins
[17:05] <RoyK> well, I guess I'll be going back to fail2ban - that works well
[17:07] <TANATHOS> use a test box for denyhosts - that's what I do most of the time
[17:07] <RoyK> well, it's on a test box
[17:07] <TANATHOS> so hand out the ip and we'll help ya
[17:07] <TANATHOS> :))
[17:07] <RoyK> I just worry if denyhosts will ban my IP if I test a login failure
[17:07] <RoyK> 213.236.233.237
[17:07] <TANATHOS> on my way
[17:08] <RoyK> :)
[17:09] <TANATHOS> not banned so far
[17:09] <RoyK> Sep  4 18:08:53 droetker denyhosts: Added the following hosts to /etc/hosts.deny - 194.106.155.145 (unknown)
[17:09] <TANATHOS> got a ban
[17:09] <TANATHOS> :))
[17:09] <RoyK> thanks :)
[17:09] <TANATHOS> I am banned
[17:09] <TANATHOS> :)
[17:09] <TANATHOS> you are very welcome
[17:09] <RoyK> now, do you have a lucid test box?
[17:10] <TANATHOS> jesus it's been a while since I spent time in here
[17:10] <TANATHOS> RoyK: I am in the middle of changing ISP's I don't have internet for the next two days :)
[17:10] <TANATHOS> what do you need it for
[17:10] <RoyK> just try to install denyhosts and see if 194.106.155.145 is in the hosts.deny file
[17:10] <RoyK> s/see/check/
[17:11] <TANATHOS> I don't think it works that way
[17:12] <RoyK> it's supposed to be distributed - my hosts.deny file already contained 30 hosts at the time of install
[17:12] <TANATHOS> if you have the synchronize data thing installed
[17:12] <RoyK> I just apt-get install'ed it
[17:12] <TANATHOS> but 30 hosts is way too few if all users would sinchronize they'r files
[17:13] <RoyK> sure, but can you still test?
[17:13] <TANATHOS> check /var/log/denyhosts
[17:13] <TANATHOS> to see if there is any log about synchronization
[17:14] <RoyK> erm
[17:14] <RoyK> 2010-09-04 17:32:45,672 - denyhosts   : INFO     denyhosts synchronization disabled
[17:14] <RoyK> but then - why was there 30 IPs in hosts.deny?
[17:14] <WinstonSmith> RoyK, if it would be a distributed thing in your local deny.hosts you would have entries poppin up that got there from other users
[17:14] <TANATHOS> RoyK: there is a setting saying synchronization on / off
[17:15] <TANATHOS> if you want to use it
[17:16] <TANATHOS> ok guys have a good day c ya
[17:19] <RoyK> WinstonSmith: it _is_ distributed, but I didn't enable that
[17:19] <WinstonSmith> RoyK, yes i saw that later. but where did the deny.hosts entries came from then?
[17:24] <RoyK> no idea
[17:26] <RoyK> WinstonSmith: perhaps the package installer added them - if so, that's not very nice
[18:25] <RoyK> seems running alpha distros in production isn't a good idea ;)
[18:37] <slestak> anyone run the coherence upnp server on their 10.04 lts server?
[18:37] <slestak> python-coherence is the package.  it doesnt come with an init script, which i found odd
[20:22] <Datz> does a security update indicate a kernel update which will require a restart?
[20:27]  * Datz has his answer
[21:09] <_Maximo_> hello, would it be possible to install ubuntu server over a slackware install via ssh remotely?
[22:24] <lymaleal> hi
[22:24] <lymaleal> fala ae
[22:28] <lymaleal> oi
[22:32] <lymaleal> oi
[22:55] <GrUbEr111> hey, im putting ubuntu server on a laptop as a ssh server
[22:56] <GrUbEr111> so like would i ssh to the server, then ssh from the server to the desktop I want to ssh to?
[23:03] <JasonMSP> What is a good solution to give users upload/download access to files without them having shell access?
[23:04] <merlin_nl> JasonMSP : using FTP ?
[23:05] <JasonMSP> yes but from what I understand FTP isn't a great solution when it comes to security.
[23:05] <merlin_nl> true
[23:05] <merlin_nl> but easiest probably
[23:05] <merlin_nl> echo "/sbin/nologin" >> /etc/shells
[23:06] <merlin_nl> useradd -s /sbin/nologin $username
[23:06] <merlin_nl> is simplest
[23:06] <kklimonda> sftp should work with /sbin/nologin
[23:07] <merlin_nl> also an option :)
[23:10] <JasonMSP> thx
[23:10] <JasonMSP> i've got VSFTPD working on my system, but haven't been able to get a secure connection to work.
[23:12] <kklimonda> JasonMSP: sftp is for ssh ftp
[23:12] <kklimonda> well, sftp I was thinking about :)
[23:16] <JasonMSP> ssh ftp would require shell access though would it not?  I also have passwords disabled so that would require access via key which would be too much for customers.
[23:17] <JanC> JasonMSP: sftp doesn't need shell access
[23:18] <JasonMSP> hmmm... ok
[23:19] <Razican> Hello, I have a problem with Wake On Lan in Ubuntu Server 10.04. When I shutdown the computer, it doesn't keep the interfaces on. In ethtool it says wake-on: g
[23:20] <JanC> Razican: maybe BIOS issue?
[23:21] <Razican> In the BIOS I have configured WOL to enabled
[23:24] <Razican> I have in BIOS ACPI shutdown: S3 | S5: enabled | Wake on LAN: enabled
[23:40] <intel352> hey guys, is it possible to create a rule within UFW to always trust eth0, and only apply firewall rules to eth1?
[23:49] <JanC> intel352: see the manpage (maybe search for "interface")
[23:49] <JanC> (so, yes, it's possible)
[23:50] <intel352> thx
[23:50] <intel352> JanC, just a note, when i was looking at the manual, all references to interface kept referencing an IP specifically
[23:51] <intel352> I want to use the actual interface, not IP, so I can create a generic server image
[23:54] <JanC> intel352: teh example given is "ufw allow in on eth0 to any port 80 proto tcp"
[23:54] <intel352> JanC, ah, nice, thx, i missed that
[23:54] <intel352> much appreciation!