| Razican | Is there a solution? | 00:25 |
|---|---|---|
| Razican | Hello, I have a problem with Wake On Lan in Ubuntu Server 10.04. When I shutdown the computer, it doesn't keep the interfaces on. In ethtool it says wake-on: g | 00:25 |
| qman__ | Razican, I don't know about the ubuntu side of it, but you have to enable said feature in the BIOS first | 00:26 |
| qman__ | if the BIOS does not support wake on LAN, you will not be able to shut down, only sleep to RAM | 00:27 |
| qman__ | though pretty much anything 2002 or newer should support it | 00:28 |
| Razican | I have in BIOS ACPI shutdown: S3 | S5: enabled | Wake on LAN: enabled | 00:29 |
| JasonMSP1 | . | 00:55 |
| LowValueTarget | is this proper cron syntax ( the minutes designation ).... i know it can be done easier, just trying to solve an argument | 00:58 |
| LowValueTarget | 0,5,10,15,20,25,30,35,40,45,50,55 * * * * ( cd /usr/wp ; ./admin wpcron ) 2>&1 > /dev/null | 00:58 |
| JasonMSP1 | as a sudoer how do I ssh-keygen and output that for a different user? | 00:59 |
| LowValueTarget | JasonMSP1: you'll want to `su - username` then run it | 01:00 |
| JasonMSP1 | ah! thx! | 01:00 |
| LowValueTarget | then you can type exit to un-su | 01:00 |
| JasonMSP1 | wait what if the user doesn't have sudo? | 01:00 |
| === _TechAway_ is now known as _Techie_ | ||
| LowValueTarget | you are user1.... you are in the sudoers file..... you want to generate user2's ssh-keys | 01:02 |
| LowValueTarget | su - && su - user2 && ssh-keygen && exit && exit | 01:03 |
| JasonMSP1 | ok thanks! | 01:03 |
| LowValueTarget | That will sudo you to root | 01:03 |
| LowValueTarget | then you sudo to the other user | 01:03 |
| LowValueTarget | create their keys as if you were them | 01:03 |
| LowValueTarget | you could use sudo too | 01:03 |
| LowValueTarget | i just always work as root | 01:03 |
| JanC | you could just sudo to the other user, of course... | 01:05 |
| JanC | (and su doesn't work by default) | 01:06 |
| LowValueTarget | JanC: knows more than me ;) | 01:07 |
| JasonMSP1 | how bout sudo -i? | 01:07 |
| LowValueTarget | 0,5,10,15,20,25,30,35,40,45,50,55 * * * * ( cd /usr/wp ; ./admin wpcron ) 2>&1 > /dev/null | 01:08 |
| LowValueTarget | Is that minute designation correct? | 01:08 |
| LowValueTarget | i know you can specify */5 | 01:08 |
| LowValueTarget | but otherwise, is that correct? | 01:08 |
| JasonMSP1 | su - user2 says, "this account is currently not available" Is it because shell is set /usr/sbin/nologin??? | 01:09 |
| JanC | JasonMSP1: sudo -i runs the default shell for that user, so if there isn't a real shell available... ;) | 01:10 |
| JasonMSP1 | sudo -i works to get me to root. su - user2 is coming up account not available. | 01:11 |
| JanC | JasonMSP1: try "sudo -i -u <user> -s /bin/bash" or "sudo -i -u <user> ssh-keygen" or some such (or just create a key and copy it over and set the ownership & permissions correctly) | 01:16 |
| * JanC goes to sleep (have to promote Ubuntu tomorrow at a computer fair ;) ) | 01:18 | |
| === dendro-afk is now known as dendrobates | ||
| === rmk_ is now known as rmk | ||
| RudyValencia | OK, I accidentally entered the wrong partition specifier to format when doing mke2fs, I canceled it during the first part of the process (creating tables). Is there a chance I can still recover data from the partition? | 01:43 |
| === dendrobates is now known as dendro-afk | ||
| JasonMSP1 | im setting up sftp. I have a group for ssh logins and that is the only group listed in AllowGroups in sshd_config. For SFTP access does my FTP user group need to be added to that? I do not want these users to have shell access. What do I do? | 02:04 |
| maddhat1 | Hi all, i have 3 hard drives (shared through SMB) but id like to create just one share and have the files show up in one master list. is there a way to do this? i was thinking symlinks but wasnt sure how to get it to update when files are added/deleted from one of the drives | 02:50 |
| qman__ | maddhat, symlinks are by their very definition dynamic | 03:03 |
| qman__ | and therefore always up to date | 03:04 |
| qman__ | you will, however, need to enable wide links in samba on that share | 03:04 |
| qman__ | which, if the share is writable, is a security risk | 03:04 |
| qman__ | if that's a problem, you can mount them within a shared directory instead | 03:06 |
| maddhat | qman__: thanks for the additional info.! | 03:28 |
| === rmk_ is now known as rmk | ||
| wildem | Where does this command download the files to? scp -r user@host:/home/user/directory / | 04:49 |
| wildem | Note the space before the slash | 04:49 |
| ChmEarl | nowhere since you don't use sudo | 05:07 |
| === _Techie_ is now known as _TechAway_ | ||
| === _TechAway_ is now known as _Techie_ | ||
| intel352 | anyone know of a good hosted service for load testing a server? | 06:27 |
| intel352 | distributed hosted service ideally, so multiple different points hitting the server | 06:27 |
| joschi | intel352: amazon ec2 with VMs in different country zones are be practical for that purpose | 06:30 |
| intel352 | joschi, i'm looking for something hosted that will provide stats, graphs, etc, and allow to compare servers | 06:31 |
| intel352 | not manual :-) | 06:31 |
| jjk9 | looks quite here but I'l ask anyway: for samba 3.4.7 on 10.04 LTS server, to do AD authentication using LDAP do I need LDAPSAM to get ACLs working from windows or is it enough to use another passwd db and install LDAP locally to store the daya from the central LDAP? | 07:16 |
| oracle | anyone here? | 07:18 |
| jjk9 | yep | 07:21 |
| jjk9 | oracle: I think Iit's just u and me | 07:24 |
| oracle | slow channel | 07:24 |
| jjk9 | oracle: do u know: for samba 3.4.7 on 10.04 LTS server, to do AD authentication using LDAP do I need LDAPSAM to get ACLs working from windows or is it enough to use another passwd db and install LDAP locally to store the daya from the central LDAP? | 07:24 |
| oracle | never messed with that | 07:26 |
| oracle | ##linux guys may know | 07:27 |
| jjk9 | oracle: ahhh maybe I try there, but it is realy ubuntu specific as it seems ubuntu samba does not have ldapsam compiled in | 07:27 |
| masshuu | I am missing the postgres script in /etc/init.d/ Is there a way to restore this? | 07:30 |
| jjk9 | masshuu: I think I may have a copy on one of my servers if u want | 07:31 |
| masshuu | why not | 07:32 |
| masshuu | :p | 07:32 |
| jjk9 | masshuu: wait one while I go copy and pastbin... | 07:33 |
| masshuu | yay! i love copypasta | 07:33 |
| jjk9 | masshuu: arrgh mind muddle: dont have postgres sorry... :( | 07:34 |
| WinstonSmith | masshuu, look here : http://pastebin.com/3bRGqY2d | 07:36 |
| masshuu | ty | 07:37 |
| masshuu | :D | 07:37 |
| WinstonSmith | yw | 07:39 |
| loganlhp | hello, does anyone know how to find my machine's INTERNET IP address under ubuntu server? the kind of result you would get going to www.whatismyip.com, | 08:36 |
| loganlhp | anyone? | 08:37 |
| joschi | loganlhp: wget -qO - http://icanhazip.com/ | 08:38 |
| joschi | loganlhp: or just visit www.whatsmyip.com with wget/curl/... | 08:38 |
| loganlhp | hmm...its showing the same exact address my macbook is showing doing it on that..is that normal? | 08:39 |
| joschi | loganlhp: or `dig +short @208.67.222.222 myip.opendns.com` | 08:39 |
| joschi | loganlhp: if you have the same public ip address, sure | 08:40 |
| joschi | loganlhp: ie. use the same dialup account through a router | 08:40 |
| loganlhp | ok, so if i wanted to use that address for dyndns.com it would work? | 08:41 |
| joschi | loganlhp: depends on what you want to achieve. | 08:41 |
| joschi | loganlhp: that's your public ip address, so if you wanted to know that, it'll work | 08:41 |
| loganlhp | web serving..from home without having to go through static ip | 08:41 |
| joschi | but you could simply use a dyndns client which will automatically update your settings | 08:42 |
| joschi | no need to do that manually | 08:42 |
| loganlhp | im still required to signup through dyndns though, correct? | 08:43 |
| joschi | yes | 08:45 |
| loganlhp | ok i got my dyndns account and ddclient running, however when i access my dyndns url in a browser, it gets the default index.html page from my mac and not my ubuntu server..how do i get it to point only to the server and not any other device on using the same public ip address on my network? | 08:56 |
| yaboo_ | trying to rebuild my raid array getting the message no superblock, how do I overcome this??? | 08:58 |
| joschi | loganlhp: configure port forwarding on your router | 09:07 |
| joschi | loganlhp: but that's not ubuntu related at all ;) | 09:07 |
| loganlhp | haha | 09:07 |
| loganlhp | port 80? | 09:08 |
| loganlhp | is someone willing to test me web server setup for me really quick and just tell me if they see the index.html i put on there? | 10:09 |
| loganlhp | test my* | 10:09 |
| loganlhp | please? | 10:11 |
| alex_joni | without a link surely no-one will try | 10:15 |
| loganlhp | http://lhpnetwork.redirectme.net/index.html | 10:16 |
| loganlhp | tell me what the first line says | 10:16 |
| yaboo | any raid guru | 10:17 |
| yaboo | s | 10:17 |
| yaboo | about | 10:17 |
| loganlhp | what? | 10:17 |
| yaboo | rebooted my machine and got inactive md0 now | 10:17 |
| yaboo | get superblock errors | 10:18 |
| yaboo | any reason why | 10:18 |
| alex_joni | loganlhp: Uhhh hey baby huhuh | 10:25 |
| loganlhp | haha good it works | 10:25 |
| loganlhp | thanks | 10:25 |
| scar__ | my server rebooted a few hours ago, I did not tell it to do so, when I checked "last -d reboot" it shows "reboot system boot 0.0.0.0 Sun Sep 5..." how do I find out what caused it to reboot? | 10:57 |
| Pupeno | I can run the program bundler as pupeno, and as root, but when I do sudo bundler I get command not found. Any ideas why? | 11:16 |
| joschi | Pupeno: wrong $PATH when running `sudo`. try using the complete path to `bundler` | 11:26 |
| Pupeno | joschi: I cannot modify the command line. | 11:26 |
| joschi | Pupeno: the modify $PATH for the user you try to run bundler with (probably root?) | 11:27 |
| Pupeno | joschi: well, as I said, the path was correct for both my user and root, I can run bundler as both, just not using sudo. This works: sudo -i and then bundler | 11:28 |
| joschi | Pupeno: does the message say `bundler` not found or does bundler call an executable which can't be found. | 11:29 |
| Pupeno | It says: bundler: command not found | 11:31 |
| joschi | Pupeno: what's the output of `which bundler` and `sudo which bundler` | 11:32 |
| Pupeno | joschi: at the moment I'm reinstalling it... just a second. | 11:33 |
| uvirtbot | New bug: #630747 in backuppc (main) "package backuppc 3.1.0-9ubuntu1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/630747 | 11:41 |
| RoyK | scar__: check the logs | 11:46 |
| RoyK | scar__: /var/log/messages is a good start | 11:46 |
| scar__ | will do thanks | 11:48 |
| === _Techie_ is now known as _TechAway_ | ||
| scar__ | looks like someone has been trying to hack me through ebox | 11:53 |
| scar__ | not entirely sure, could also be ebox itself going crazy. I'll firewall it for now and see how it goes | 11:55 |
| RoyK | scar__: can you pastebin some of the logs? | 12:10 |
| RoyK | if someone has tried to get in there - run chkrootkit on it to see if that finds anything - download it from http://www.chkrootkit.org/ directly instead of using apt-get in case that's been tampered with | 12:11 |
| scar__ | ran krhunter right after reboot | 12:14 |
| scar__ | it didn't find anything :) | 12:14 |
| RoyK | try chkrootkit, fresh install | 12:16 |
| RoyK | rkhunter may have been tampered with.... | 12:16 |
| * RoyK is just paranoid, but paranoia can help sometimes | 12:17 | |
| scar__ | yeah rather safe... | 12:17 |
| scar__ | at lest the box is here it home, though it's only been running for a few days publicly and it's already being tested | 12:18 |
| RoyK | this lists a few tools :) http://www.cyberciti.biz/faq/howto-check-linux-rootkist-with-detectors-software/ | 12:18 |
| scar__ | sshd[833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184-106-198-140.static.cloud-ips.com user=root | 12:19 |
| scar__ | got a few of those lines, seems it's time to disable text logins | 12:19 |
| RoyK | just install fail2ban or denyhosts | 12:20 |
| RoyK | both scans logs to stop intruders | 12:21 |
| RoyK | fail2ban can use iptables or hosts.deny and can be configured to scan for intrusion on other services than ssh, whereas AFAIK denyhosts only (currently) work for ssh, but then, it can use a distributed list of denied hosts | 12:22 |
| RoyK | denyhosts uses hosts.deny | 12:22 |
| RoyK | sshd reads that | 12:23 |
| scar__ | I'll try the denyhosts think that was the simple one | 12:24 |
| RoyK | they're both quite simple to setup | 12:24 |
| RoyK | just remember to enable synchronisation with denyhosts - it's disabled by default | 12:25 |
| scar__ | I'll also monitor the connections via the firewall, it should be really easy since there's only 2 people using this box | 12:27 |
| RoyK | still, that's manual work - fail2ban/denyhosts will work automatically, and ssh attacks rarely succeed in the first few attempts unless you have bogus passwords | 12:29 |
| scar__ | awesome thanks RoyK, denyhosts is already doing it's job :) by the way the reason why I'm putting rules in place on the firewall is to check if my server tries to send out spam or tries to attack other hosts | 12:46 |
| RoyK | scar__: nice | 12:52 |
| RoyK | scar__: you might want to change denyhosts' settings - it normally bans IPs for some days, whereas the defaults in fail2ban is an hour or so. A ban for days may be bad if something goes wrong somewhere | 12:53 |
| scar__ | I'll maybe set the ban longer, since there's always someone close to the box. If push comes to shove, I've got static ips at work that I can add to hosts.allow. | 13:00 |
| scar__ | made sure that allow has higher priority than deny, so it's all good :) | 13:02 |
| uvirtbot | New bug: #630810 in apache2 (main) "package apache2.2-common 2.2.14-5ubuntu8 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/630810 | 13:41 |
| touch-e | hi all | 13:49 |
| touch-e | i need help about tomcat and ssl activation | 13:49 |
| touch-e | please :) | 13:50 |
| touch-e | (i have read the doc and do as the quick step, but i seems not be activate) | 13:50 |
| touch-e | it seems* | 13:50 |
| === xfaf is now known as zul | ||
| incorrect | other than chkrootkit what else can i use to see if my system was compromised? | 14:04 |
| joschi | incorrect: rkhunter for example | 14:18 |
| joschi | incorrect: but if you need them check your system, it's already too late actually. | 14:19 |
| joschi | incorrect: a proper IDS and IPS from the start would have been useful then | 14:19 |
| incorrect | joschi, i am not too sure how far they got | 14:20 |
| joschi | incorrect: you should check your binaries with `debsums` and a clean package db | 14:21 |
| incorrect | nothing adverse has happened, the account they got into didn't have sudo | 14:22 |
| incorrect | weird chkroot kit thinks my /sbin/init has been compromised | 14:33 |
| yaboo | ok, how do I fix a raid5 array | 14:34 |
| incorrect | yaboo, mdadm? | 14:35 |
| yaboo | incorrect: done this to no avail, getting superblock errors | 14:35 |
| incorrect | i just used sfdisk and dumped my partition table from another disk, then used --force to copy it onto the new disk | 14:37 |
| incorrect | then added the new partitions back into the array | 14:37 |
| yaboo | ah ok | 14:37 |
| incorrect | wasn't a big deal | 14:37 |
| incorrect | i guess your partitions are the wrong size or something | 14:38 |
| yaboo | incorrect: power failure, rebooted, and array went from md0 to md_d0 | 14:38 |
| incorrect | errr | 14:38 |
| incorrect | check your config | 14:38 |
| yaboo | got a inactive sdd1[2](s) in proc/mdstat | 14:39 |
| incorrect | maybe udev got screwed | 14:39 |
| yaboo | ok | 14:39 |
| yaboo | udev? | 14:39 |
| incorrect | this is weird /sbin/init still reports and infected even if i copy over one from a system that isn't infected | 14:40 |
| yaboo | incorrect: can I just use fdisk instead of sfdisk | 14:44 |
| incorrect | yaboo, depends if you want to spend 10 seconds copying over the partition table | 14:45 |
| yaboo | incorrect: ok | 14:46 |
| yaboo | incorrect: getting permission denied with sfdisk | 14:47 |
| yaboo | sfdisk -d /dev/sdb | /dev/sdd | 14:48 |
| === freeflyi1g is now known as freeflying | ||
| incorrect | weird | 14:50 |
| incorrect | i must admit i did put it to a file first | 14:50 |
| yaboo | ok | 14:50 |
| incorrect | wow this guy really tried to get into my system | 14:53 |
| yaboo | mdadm -A -f /dev/md0 /devsd[bcd]1 | 14:53 |
| yaboo | mdadm: cannot open device /devsd[bcd]1: No such file or directory | 14:53 |
| yaboo | mdadm: /devsd[bcd]1 has no superblock - assembly aborted | 14:53 |
| yaboo | incorrect: is there a fix to this | 14:53 |
| incorrect | i've not had this problem | 14:53 |
| yaboo | setup the correct partition in the sdd | 14:53 |
| incorrect | hmm, i wonder why chkrootkit thinks /sbin/init is compromised | 14:54 |
| incorrect | ah its a bug in ckrootkit, others have it too | 14:58 |
| incorrect | maybe i should leave a VM running outside of my internal network | 14:59 |
| incorrect | am i still here? | 15:05 |
| yaboo | can't find a answer to fix my raid array | 15:22 |
| yaboo | incorrect: you about | 15:30 |
| SpaceBass | hey folks | 15:52 |
| SpaceBass | rank amateur question - but how do I find out which /dev/ a pic card is assigned to? | 15:52 |
| SpaceBass | I see it when I do an lspci - v | 15:53 |
| kees | SpaceBass: I always look in /sys, but i bet there is a better way | 16:00 |
| SpaceBass | kees, thats where I started too...in /sts | 16:00 |
| SpaceBass | sys | 16:00 |
| oxi | hi | 16:08 |
| oxi | I'm having huge trouble with my neworking setup which I've been trying to solve for hours | 16:09 |
| oxi | I would very much appreciate if anyone could help | 16:10 |
| oxi | at the moment I have inbound traffic working but not outbound | 16:10 |
| oxi | this is my routing setup: http://pastebin.com/faHK6Htq | 16:11 |
| oxi | I can't ping or wget the outside from it | 16:14 |
| === oxi__ is now known as oxi | ||
| SpaceBass | oxi openvpn? | 16:22 |
| oxi_ | SpaceBass: yes | 16:23 |
| SpaceBass | oxi_, can you pastebin your ovpn config? | 16:23 |
| oxi_ | SpaceBass: thank you very much! | 16:23 |
| === oxi__ is now known as oxi | ||
| SpaceBass | dont think me yet - blind leading the blind here :D | 16:25 |
| SpaceBass | oxi, 178.63.123.9 is your local IP? | 16:25 |
| oxi | that's my vps | 16:26 |
| oxi | SpaceBass: here: http://pastebin.com/99ZTMmV2 | 16:26 |
| oxi | the exact same "proplay.conf" config file is working on osx and windows for outbound traffic (ping google.com/traceroute google.com/wget googl.com/...) | 16:27 |
| savid | Anyone know how to get mod_vhost_alias installed on apache? I can't find the package, and a2enmod says it's not found. | 16:27 |
| SpaceBass | oxi, looking now... | 16:28 |
| oxi | SpaceBass: I've been trying for hours to figure out what's wrong on my ubuntu server, why I can't achieve it there | 16:28 |
| SpaceBass | oxi, can you pastebin the ovpn logs? | 16:29 |
| oxi | SpaceBass: where do I find those? :-) | 16:29 |
| oxi | SpaceBass: from the client or from the server? | 16:29 |
| SpaceBass | oxi, not entirely sure... I use OpenVPN on BSD :D ...try /var/logs/openvpn | 16:29 |
| SpaceBass | oxi, both would be helpful, but lets start with the client | 16:30 |
| SpaceBass | savid, apt-cache search <keyword> | 16:31 |
| SpaceBass | savid, also: sudo apt-file search <filename> | 16:31 |
| savid | SpaceBass, yeah, that's what I did first :-P | 16:31 |
| SpaceBass | savid, then you are ahead of me :D | 16:32 |
| savid | SpaceBass, That's what I meant when I said I couldn't find the package | 16:32 |
| coder | hi, is there any 10.04 sparc tftp image out there? I can't find it | 16:33 |
| oxi | SpaceBass: client: http://pastebin.com/bgGvfm3E | 16:35 |
| oxi | SpaceBass: server: http://pastebin.com/DfAKkSiJ | 16:38 |
| SpaceBass | oxi, did you manually adjust the routing table? | 16:38 |
| coder | no tftp image for sparc? really? | 16:38 |
| oxi | SpaceBass: are you using OVPN on FreeBSD? | 16:38 |
| SpaceBass | oxi, yeah, and osx | 16:39 |
| oxi | SpaceBass: yes | 16:39 |
| oxi | nice | 16:39 |
| SpaceBass | oxi, mostly I use it b/t two BSD routers, for a site-to-site vpn | 16:39 |
| oxi | very nice | 16:39 |
| oxi | I'm trying to have an ubuntu box route to a vps | 16:40 |
| oxi | SpaceBass: I can give you ssh access if that helps | 16:40 |
| SpaceBass | oxi, your problem is clearly in the routing table - what happens if you don't adjust it yourself? clean reboot? | 16:40 |
| oxi | SpaceBass: the routing table of my client or my server? | 16:40 |
| SpaceBass | oxi, thanks for the vote of trust :D but I wouldn't go around offering SSH access to internet people ;) | 16:41 |
| SpaceBass | I had a buddy do that in college, long story short, he still has an FBI record b/c of what the guy did once he was in the network | 16:41 |
| oxi | SpaceBass: it's only a sandboxed VM :-) | 16:41 |
| SpaceBass | ah :D | 16:41 |
| SpaceBass | oxi, so the server is trying to push the route options to the client (which is standard ovpn) and the client is saying that the route command failed due to conflict | 16:42 |
| oxi | SpaceBass: @buddy: hehe! ... :-) | 16:42 |
| SpaceBass | my guess is that conflict is b/c you altered the routing table... which doesn't look right to begin with...gateways are all wrong | 16:42 |
| oxi | SpaceBass: ah!!!! | 16:42 |
| oxi | SpaceBass: that is extremely helpfull | 16:42 |
| oxi | now at least I realize what I'm facing | 16:43 |
| SpaceBass | in the sever logs, see lines 870 and 871 | 16:43 |
| oxi | I can't believe I was stepping into the wrong direction for so long! | 16:43 |
| oxi | I'll reboot my client | 16:43 |
| SpaceBass | on the client logs look at 2414-2417 | 16:43 |
| oxi | SpaceBass: I did a fresh reboot. Does that seem wrong?: http://pastebin.com/FWxJJ0V3 | 16:46 |
| SpaceBass | oxi, can you ping the outside world now from that box? | 16:47 |
| oxi | yes | 16:47 |
| SpaceBass | oxi, if it is a VM, is the networking setup as nat or bridged? | 16:47 |
| oxi | yes, bridged | 16:47 |
| SpaceBass | whew! nat would be a nightmare | 16:48 |
| oxi | but I have a windows bux using the exact same bridged vmware adapter and using the exact same openvpn config in the same network ... which is working | 16:48 |
| oxi | SpaceBass: yeah, NAT would be a real nightmare! | 16:48 |
| SpaceBass | try to bring up the ovpn client now | 16:49 |
| oxi | SpaceBass: the traceroute seems weird to me: http://pastebin.com/Me5tq8f6 | 16:54 |
| oxi | I'll fire up ovpn | 16:54 |
| SpaceBass | what seems odd? that the traceroute failed? | 16:55 |
| SpaceBass | whats the IP of the host that is running the VM? | 16:56 |
| oxi | SpaceBass: http://pastebin.com/frq9SPuW | 17:00 |
| oxi | SpaceBass: @traceroute: yeah, it seemed odd that it failed, but I think it doesn't have much to do with my trouble | 17:00 |
| oxi | SpaceBass: the VM Host has ip 10.0.0.14 | 17:02 |
| SpaceBass | ok, so the tunnel is up/open - can you ping across it? | 17:03 |
| oxi | yes | 17:03 |
| SpaceBass | so you can reach the server? | 17:03 |
| oxi | yes | 17:03 |
| oxi | but I can't ping the outside from it | 17:03 |
| oxi | 17:03 | |
| SpaceBass | ah | 17:04 |
| oxi | SpaceBass: 178.63.123.25 | 17:04 |
| oxi | I can get in, but not out :-) | 17:04 |
| SpaceBass | ok... one-way routing :D | 17:05 |
| oxi | hehe, yep | 17:05 |
| oxi | I trying to figure out how I can find out more about the iptables config push collision | 17:05 |
| SpaceBass | oxi, can you pastebin the openvpn config file from the server? | 17:06 |
| oxi | SpaceBass: sure, hold on :-) | 17:07 |
| oxi | SpaceBass: there's not much kungfu in there: http://pastebin.com/kdRcBxFG | 17:09 |
| SpaceBass | oxi, there are some clues, like "push redirect-gateway" | 17:10 |
| SpaceBass | whats the lan IP of the server? | 17:12 |
| oxi | SpaceBass: there's also some other iptables lines on the vps server: | 17:12 |
| oxi | http://pastebin.com/NFa3Amu8 | 17:13 |
| oxi | the server has ip 178.63.123.9 and 10.8.0.1 and 10.8.0.21 for my vm which has 178.63.123.25 and 10.8.0.22 | 17:14 |
| SpaceBass | ok | 17:14 |
| oxi | the config works for openvpn in windows and in osx | 17:14 |
| SpaceBass | try this - comment out the line server 10.8.0.0 255.255.255.0 | 17:14 |
| oxi | I guess there's something special about my ubuntu box, even though I picked a default install from a fresh iso | 17:15 |
| SpaceBass | Im not so sure it is with the ubuntu client ... windows openvpn does some stuff on the networking stack differently than linux | 17:15 |
| SpaceBass | what client are you using on osx? | 17:15 |
| oxi | Tunnelblick | 17:16 |
| SpaceBass | great app! | 17:16 |
| oxi | yeah, it's cool :-) | 17:16 |
| SpaceBass | its interesting, the tun0 is getting the right info on the client | 17:18 |
| SpaceBass | hang on, I'm setting up a new server and client similar to yours to test | 17:20 |
| oxi | I took out that line | 17:20 |
| oxi | it didn't work | 17:20 |
| oxi | SpaceBass: I'm using http://www.turnkeylinux.org/blog/core-lucid-beta | 17:21 |
| oxi | I wanted something very small and widespread supported :-) | 17:21 |
| SpaceBass | sorry, that line was correct :D | 17:21 |
| SpaceBass | brb | 17:22 |
| oxi | the server is also ubuntu, but an openvz template running in a computational centre :-) | 17:22 |
| oxi | nevermind, I'll kick that line in again :-) | 17:22 |
| SpaceBass | hummm I'm afraid I'm running out of ideas :( | 17:27 |
| SpaceBass | have you tried in #openvpn? | 17:28 |
| oxi | SpaceBass: here's a successfull connect from OS X, to the same server: http://pastebin.com/e1fcT4jb | 17:31 |
| oxi | SpaceBass: yeah, also tried #openvpn | 17:31 |
| oxi | :-) | 17:32 |
| oxi | me too - I have no idea what's going on | 17:32 |
| bjaanes | Hey, i was wondering: I got my DHCP/DNS server going now with ddns-update (updating the DNS every time i give out a lease). But now that I have reserved an IP in the DHCP - why won't it update the DNS with that info? Is that something i have to do manually, or can it be done with some configuration? | 17:36 |
| oxi | SpaceBass: I rebooted the server and it worked! | 18:21 |
| SpaceBass | oh wow! | 18:22 |
| SpaceBass | thats great news oxi | 18:22 |
| SpaceBass | wonder what changed? | 18:22 |
| oxi | it seems that there was an old iptables rule present which kept it from working | 18:22 |
| oxi | that rule was probably present from previous tries | 18:22 |
| oxi | I prabably had a typo and therefore routed ougoing traffic with the wrong rewrite | 18:23 |
| oxi | I assumed that when I enter a iptables rule again it would overreide | 18:24 |
| oxi | I guess it ne | 18:24 |
| oxi | ver overr | 18:24 |
| oxi | eide | 18:24 |
| oxi | I guess it never overrided | 18:24 |
| oxi | how do I list all present iptables rules? | 18:24 |
| oxi | SpaceBass: what's your paypal account? :-) | 18:25 |
| SpaceBass | oxi, glad it is working! | 18:25 |
| SpaceBass | I know how fustrating VPN issues can be! | 18:25 |
| oxi | yeah, I was tapping in myany wrong directions - it just seems that I was uncareful somewhere, but the configuration was fine | 18:26 |
| oxi | it had nothing to do with the client :-) | 18:26 |
| oxi | and I debugged the client for hours .-) | 18:27 |
| MrUrbanity | disablind X in 10.04 anyone? Or converting a Desktop install to a Server install ? | 18:38 |
| MrUrbanity | disablind = disable. | 18:40 |
| === alonswartz_ is now known as alonswartz | ||
| Pici | !nox | MrUrbanity | 18:49 |
| ubottu | MrUrbanity: To start your system in text-only mode append 'text' (without the quotes) to the kernel line in the grub menu. You can access the grub menu by pressing Esc (Grub legacy) or Shift (Grub2) during boot. For more info see https://help.ubuntu.com/community/BootOptions#Text%20Mode | 18:49 |
| MrUrbanity | ah ok.. well too late, i ripped gdm, xserver-xorg out via aptitude and rebooted, all works as I expected. | 18:59 |
| Patrickdk | all you have to do is a apt-get remove ubuntu-desktop :) | 19:15 |
| Patrickdk | or maybe even an: apt-get remove .*-desktop | 19:16 |
| MrUrbanity | no that didnt do it all, i did that first. Must of been a while since I messed with this because 10.04 has some weird stuff going on. I was update-rc.d -f gdm remove and it was still booting. had to try and read about the new startup stuff but not a lot on it around. | 19:19 |
| MrUrbanity | eventual had to do ubuntu-desktop, gdm and xserver-xorg to get all the junk to stop from starting.. | 19:19 |
| Patrickdk | well, that marks them all as unneeded | 19:20 |
| Patrickdk | then a apt-get autoremove will clean them up | 19:20 |
| MrUrbanity | ah ok. | 19:20 |
| Patrickdk | unless you marked something for forced install | 19:20 |
| MrUrbanity | nah, pretty much a default fresh instlal.. just didnt have a server disk handy. | 19:20 |
| Patrickdk | then you would have to do a forced uninstall | 19:20 |
| Patrickdk | I install everything as a generic, barebone install | 19:21 |
| Patrickdk | then install ubuntu-desktop, or server stuff | 19:21 |
| MrUrbanity | yeah I should have too but it is a low PC and it took about 15 minutes just to get to the install screen. | 19:21 |
| MrUrbanity | slow. | 19:21 |
| Patrickdk | that is cause you used desktop :) | 19:21 |
| MrUrbanity | lol.. yep. | 19:21 |
| Patrickdk | the netbook/minimalcd/servercd is much much faster | 19:21 |
| Patrickdk | netbook/network :) | 19:22 |
| MrUrbanity | yeah.. last time i did this (ie used the wrong disk) was a while back and i could just swap between them.. but that has been removed. | 19:22 |
| MrUrbanity | i had a 8.10 server disk sitting there.. might have been faster to use that and upgrade. lol | 19:23 |
| Pupeno | I have this content http://gist.github.com/566218 in /etc/cron.d/projectx and it seems it's not being run. Any ideas how to find out why? | 19:29 |
| uvirtbot | New bug: #631040 in samba (main) "samba share on windows: ":" bug is back/still here" [Undecided,New] https://launchpad.net/bugs/631040 | 19:51 |
| silentwater77_ | hi i ran into trouble upgrading mountal on lucid minimal. could someone pls be so kind and explain me http://paste.ubuntu.com/488861/ | 19:56 |
| uvirtbot | New bug: #631064 in apache2 (main) "connection "forbidden" on localhost after wireless connected" [Undecided,New] https://launchpad.net/bugs/631064 | 20:25 |
| Aison | hello, I have got 4 ubuntu servers, now I installed an 5th older server that should run as backup server. So all 4 server should backup their system and defined user data to the backup server nightly | 20:33 |
| Aison | is there some good backup software or do I have to create my own scripts with rsync or so? | 20:34 |
| === klaas- is now known as klaas | ||
| === tm__ is now known as tm | ||
| === billybigrigger_ is now known as billybigrigger | ||
| === ScottK2 is now known as ScottK | ||
| silentwater77_ | Hello there, is anyone willing to help me with my problem with not loading daemons after reboot? | 22:11 |
| RudyValencia | What's the easiest way to back up everything on an internal drive mounted at /srv to an external USB hard drive mounted at /media/backup ? | 22:13 |
| stgraber | RudyValencia: "sudo rsync --delete -avP /srv/ /media/backup/" that's going to copy everything that's in /srv and not in /media/backup and remove anything that's in /media/backup and not /srv (so they are going to be exact copies with anything that was only in /media/backup being removed) | 22:15 |
| RudyValencia | Ah. | 22:15 |
| RudyValencia | Can I cron that? | 22:15 |
| stgraber | sure | 22:15 |
| RudyValencia | (add it to crontab as a root job done every... maybe 48 hours?) | 22:15 |
| stgraber | yep, you should then trop the -v so it won't show you progress information (not so useful when runnning from cron) | 22:16 |
| RudyValencia | ...and also got to do something about automounting the USB drive. | 22:16 |
| === _TechAway_ is now known as _Techie_ | ||
| jjk9_ | silentwater77_: which daemons? | 22:27 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!