[00:00] setting up an outgoing email server is much much harder [00:00] that's not what i want it to do [00:00] email relay? [00:00] yes [00:00] but filtering [00:00] accept email from users and set to other email servers [00:00] also handle th eincoming mail, but have it forward to the primary mail server afterwards [00:01] we've got an exchange 2010 server which it should forward incoming mail to [00:01] hmm, looks like that example, has it filter all email [00:01] no matter where it goes [00:02] that's what i want [00:02] in my setups I only have it filter incoming email to me, and virus scan all email [00:02] looks pretty straight forward to me [00:02] that's great, not to me [00:03] well, email has been nothing but more and more complex every few years [00:03] due to different ways of protecting from virus and spam [00:03] the postfix guide details a single type of setup, but doesn't explain much about what other setups are possible [00:03] I don't see anything in there about other things for outgoing email, like spf, dkim, hostnames, dns entries [00:05] spf and dkim are hanled in the mail filtering guide [00:06] nagchampa: Look at this http://beginlinux.com/server_training/mail-server/1044-postfix-mail-gateway [00:06] na, I only see receive dkim checking, not outgoing signing [00:07] i'm sure i'm not the first, but I find postfix completely overwhelming... [00:07] same for spf, but that just reqiures dns entries :) [00:07] na, postfix is very simple, and flexable [00:07] it's the flexability that makes it alittle confusing at first [00:07] nagchampa: Try to configure sendmail [00:07] patdk-lap: i'm sure it's simple once you understand how it works [00:07] Wahahaha [00:08] to me it seems overly complex [00:08] heh, I grew up on sendmail, writing cf files, before m4 came around [00:08] The good of sendmail is it flexibility. The bad: it's flexibiity. [00:09] well, it's the monolithic flexability :) === Pilif12p|afk is now known as Pilif12p [00:09] thanks for the link k5673 [00:09] atleast postfix breaks it down into parts, incoming smtp, outgoing smtp, .... === _Techie_ is now known as _TechAway_ [00:09] nagchampa: You're wellcome! === _TechAway_ is now known as _Techie_ [00:11] k5673: that looks like an outgoing filter only [00:12] you don't want my setup :) [00:12] nagchampa: but aren't you trying to send the emailz to an Exchange server? [00:12] it consists of 8 postfix installs running on one machine :) [00:12] essentially i want it to sit between the internet and the mail server, when the mail server sends mail out it goes through the filter to be scanned and then sent on, and incoming mail should be received by the gateway, scanned and forwarded to exchange [00:13] do i need to have seperate postfix instances? [00:13] ya, one works fine [00:13] one sec, I have 2 postfix installs doing just htat for exchange 2007 === _Techie_ is now known as _TechAway_ [00:14] I don't think you'll need two instances [00:15] But, for convenience, you can virtualize them [00:15] If you like [00:15] KVM [00:15] heh, you can run postfix on the same machine as many times as you want, no need for two seperate ones :) [00:15] the server is already running on ESXi [00:15] patdk-lap: that's what i thought [00:15] Ah! Right [00:17] my master.cf file: http://userv.pastebin.com/91xmSLq6 [00:17] you probably just want to use one content filter, just set them all to the same port [00:18] I use different amvisd rules for outgoing and incoming [00:19] the problem i'm having is finding clear documentation on the configuration options [00:19] google :) [00:19] trust me, i'm googling [00:20] exim seems to have a crapload more documentation and examples [00:20] I didn't have any issues, and I only started using postfix 4 years ago [00:20] i'm starting to think it's a better option [00:20] I've installed >20 postfix setups since them now [00:21] you've come from sendmail though, which has a lot of similarities (from what i've heard) [00:21] I actually came from the rfc's [00:21] I always normally read the rfc's before I attempt to do something [00:21] kind of hard to do something, if you dunno how it's suppost to work [00:22] subtle [00:22] ya, I'm insane like that [00:23] ah, I see that ubuntu doc does have spamassassin disabled finally though :) [00:23] oh wait, it says enable it, heh, still screwed up [00:23] you have a problem with spamassassin? [00:24] ya [00:24] why use it when it's included in amavisd? [00:24] it just eats memory, and never used [00:24] i thought amavisd used spamassassin [00:24] it does [00:24] why you don't need spamd === Pilif12p is now known as Pilif12p|afk [00:25] amavisd does not use spamc [00:25] therefor no need for spamd to use memory [00:25] amavisd runs it's own version of spamd inside itself === Pilif12p|afk is now known as Pilif12p [00:26] it's like a waste of 100megs of memory [00:26] example of what i'm having problems with http://www.postfix.org/STANDARD_CONFIGURATION_README.html#firewall [00:27] they've got a block of config with a translation following [00:27] well, a ffew [00:27] one of them has this in the thranslation [00:27] Lines 1-7: Accept mail from local systems in $mynetworks, and accept mail from outside for "user@example.com" but not for "user@anything.example.com". The magic is in lines 4-5. [00:28] of course, they don't explain what the magic is in lines 4-5, and reading the documentation for the two options that are linked leaves me none the wiser [00:28] dunno, I don't use it [00:29] but I don't have an issue with that [00:29] care to explain then? [00:31] I'm pretty sure relay reciepient map handles that [00:32] i'm not asking what handles it [00:32] i'm asking what the hell the options mean :P [00:32] parent_domain_matches_subdomains? [00:32] i get that, kind of, only match subdomains to parent domains for these things [00:33] it means, if someone uses, myname.example.com, postfix will treat it as example.com, if there isn't a match for myname.example.com [00:33] why do they have it enabled for debug_peer_list and smtpd_access_maps is what i dont' get [00:35] the default is: parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,relay_domains,smtpd_access_maps [00:36] well, it does fix the case when you send email from that server itself [00:36] cause it will add it's name as default [00:36] so you will get, root@email-gateway.example.com by default [00:36] so which of the two is that handled by? [00:36] debug_peer_list or smtpd_access_maps? [00:45] i think i'm starting to get some of this, the master.cf defines which of the postfix processes you have running (although i don't get why many are here that don't seem to be runnin gwhen postfix is running [00:46] man maildrop [00:46] woops [00:46] :P [00:54] well, that doesn't just define daemons [00:54] it defines interactions between programs [00:54] some of them are daemons [00:55] some of them are just for handling mail, so are only started when there is email to handle [01:00] I'm trying to run mysql inside of a jail.... it doesn't like me - any ideas what I'm doing wrong? [01:00] I try to start it and get "start: Unknown job: mysql" [01:01] MTecknology: have you installed mysql-server package in the chroot? [01:01] k5673: ya [01:02] k5673: I'm starting to think that maybe runnign things inside of a jail is not the best idea... [01:02] MTecknology: Have you tried KVM? [01:02] k5673: i have - but this system has 1GB RAM [01:02] And? [01:02] MTecknology: You can do it each one with 128 MB RAM [01:03] For tests, of course [01:03] MTecknology: For production, more RAM [01:03] this is production and won't get more ram [01:03] Ah, right [01:04] What ar you trying to achieve, chroot-jailing all those services? [01:04] ya [01:04] k5673: I think I' [01:05] k5673: I think I'm just going to not do the chroot jails... it'll just be easier [01:05] MTecknology: But, what are you trying to do? [01:05] k5673: I was tring to have one chroot for everything I wanted to run on the system [01:06] MTecknology: But why, for security reasons? [01:07] k5673: just to keep things neat and tidy, I'm combining a lot of different servers into one little desktop [01:07] MTecknology: Ah right. [01:08] k5673: company is liquidating so I'm downsizing what I have [01:08] MTecknology: If that the case, keep in mind the backups. Desktops aren't too much reliable. [01:08] k5673: ya, I'll plug in an external and use rsnapshot [01:09] MTecknology: Budgets are a trouble for all. I have too much luck. [01:10] MTecknology: Last week, i got approved a budget for two Supermicro servers. Dual Quad-core, 16 GB RAM, 4 TB RAID 5 each. [01:10] lifeless: heh.. uds is going on? [01:10] k5673: nice- our issue is some morons up top... [01:11] MTecknology: Ha! [01:11] MTecknology: I think you must install each service normally [01:12] MTecknology: Not in chroot-jails. [01:12] k5673: that's the one thing I wanted to avoid :P [01:12] MTecknology: Jails are most for sandboxing and development [01:12] k5673: I'll just toss it all only the one system - i guess with the whole downsizing thing, I'll be trimming the stuff I used to do a lot [01:12] MTecknology: Instead, use virtual domains, with a MySQL backend for the accounts. [01:13] MTecknology: I think that will be a solution for you [01:13] Patrickdk: thanks, i've been reading the manual pages, slowly piecing it all together... [01:13] k5673: not really :P [01:13] k5673: thanks for the help [01:13] OK [01:14] k5673: I'm kinda biting the bullet and I think in the end I'll realize it's not that big of a deal [01:15] MTecknology: It's not a big deal. [01:16] k5673: in whose opinion ;) [01:16] :P [01:16] I'm kinda phsychotic when it comes to neat and clean [01:18] MTecknology: That's right! [01:24] hi guys any idea on this i cant apt-get update afetr i install ubuntu-server ----------->http://pastebin.com/ph97fr5r [01:33] ruben23: do you have tried nslookup us.archive.ubuntu.com [01:33] ruben23: ? [01:33] ruben23: Or, just remove all the us. from your /etc/apt/sources.list to use the main server archive.ubuntu.com [01:35] k5673: yay... now the only issue seems to be either php or mysql - assuming php [01:37] MTecknology: test your php installation, creating a file named test.php and add this http://pastebin.com/k7pA8LfX [01:37] k5673: :P I always do that on one line [01:38] k5673: but ya, all I get is a white screen [01:39] MTecknology: so, the problem is php. Check the permissions and owner of the file you just created. Quick and dirty, set to 0777 and nobody:nogroup [01:40] k5673: I created it as www-data [01:41] MTecknology: if that dazent work, can be php or the interaction with nginx [01:41] MTecknology: http://www.howtoforge.com/nginx_php5_fast_cgi_xcache_ubuntu7.04 [01:42] k5673: holy crap that looks ugly === _TechAway_ is now known as _Techie_ [01:42] it really suggests using lighty for php!? [01:42] MTecknology: It is. It is. [01:43] that page is horrible [01:43] no offense to the link [01:43] I think it's just php5-fpm not wanting to behave itself [01:43] hence the reason I tend to run with php5-cgi instead [01:43] I'd rather not this time though.... [01:44] I'm going to go have supper with my fiancee - back in a bit [01:57] k5673: hi sorry i got disconnected this is my nslookup--------->http://pastebin.com/DzAue9Ct [01:59] ruben23: the last time i got that issue, just removed the subdomain and worked.... Try it for just one. Remove the us. [01:59] ruben23: and apt-get update again. [02:01] ok ill try thanks [02:07] k5673: unusual still the same...:-( [02:08] ruben23: try apt-get clean apt-get autoclean [02:09] yep same thing i guess ill try to re-install [02:09] the server again [02:10] ruben23: nah! [02:11] ruben23: I can't remember the procedure to get that work again [02:14] ruben23: look at this http://ubuntuforums.org/archive/index.php/t-922471.html [02:36] hey folks [02:36] since upgrading my server box to 10.10, my server won't accept inbound web connections to its apache server, etc [02:37] any thoughts? === _Techie_ is now known as _TechAway_ [03:00] is it possible to run ubuntu server by flash driver? [03:00] is it possible to run ubuntu server installer by flash driver? [03:02] I don't know what a "flash driver" is. [03:03] You can certainly boot an installer from an MTD device, like a USB key or CF card. [03:06] Andre_Gondim: Yes, many people run Ubuntu server from a flash drive*. [03:06] twb, what I need to do? Just extract iso file in a pen driver? [03:09] Andre_Gondim: no, download and install an hd or net install medium [03:10] IIRC the hd medium expects you to also then copy an .iso file into its root directory. === harrisonk is now known as harrisonk_away === Pilif12p is now known as Pilif12p|afk [04:35] isn't there iwconfig in ubuntu maverick server? [04:38] whats the best book to read about networking and its proto' [04:42] What's the cost per mips/flops "sweet spot" for a VT-enabled LGA775 right now? === Andre_Gondim is now known as Andre_Gondim-afk === _TechAway_ is now known as _Techie_ === _Techie_ is now known as _TechAway_ [07:48] hello, i was wondering if there were package lists for the ubuntu server releases [07:48] i'm trying to find out what's changed between 10.04 and 10.10 [07:50] EspadaV8_W: the archive contains a Packages database mapping each file to a package. [07:50] Er, not Packages. [07:51] Contents-.gz [07:51] e.g. http://archive.ubuntu.com/ubuntu/dists/maverick/Contents-amd64.gz [07:51] You'd probably be better off getting installing apt-listbugs and apt-listchanges or so [07:51] New bug: #666152 in openssh (main) "package openssh-server 1:5.3p1-3ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 127" [Undecided,New] https://launchpad.net/bugs/666152 [07:52] twb: i don't have any ubuntu installs handy, i was wondering if there was any reason to use 10.10 instead of the lts release [07:53] EspadaV8_W: there isn't [07:53] I suppose there are also release announcements that give a summary of areas of major progress. [07:54] https://lists.ubuntu.com/archives/ubuntu-announce/2010-October/000139.html [07:55] That seems to just link to a "wow, clouds r kool!" news article. [07:55] is lts -> lts upgrade supported? or would i need to go from 10.04 -> 10.10 -> 11.04 ... ? [07:55] lol [07:55] Yes, LTS-to-LTS is supported. [07:55] EspadaV8_W: lts→lts is supported. [07:58] awesome, thanks [07:58] i guess i'll just use the 10.04 then [08:01] thanks for the help guys :) [09:50] hi, how to manage apache2 vhost in mysql db with ubuntu server? [10:14] neuro666: you'll have to install mod_vhost_mysql (http://fabienne.tc2.utelisys.net/~skinkie/mod_vhost_mysql2/) or mod_myvhost (http://code.google.com/p/mod-myvhost/) [10:15] neuro666: but there's no package for either of them in Ubuntu's package tree [10:17] joschi : thanks, is it working in your servers under ubuntu & apache2? [10:17] no [10:17] ok === airtonix_ is now known as airtonix === _TechAway_ is now known as _Techie_ === _Techie_ is now known as _TechAway_ [11:14] i need to put up a reverse proxy, where every request to www.example.com/wiki/ would be proxied to http://wiki.backend.com/. how would i do about doing this? [11:15] xampart: install varnish or squid or something? [11:16] http://httpd.apache.org/docs/2.0/misc/rewriteguide.html search for the proxy [11:20] "Varnish is an HTTP accelerator designed for content-heavy dynamic web sites. In contrast to other HTTP accelerators, many of which began life as client-side proxies or origin servers, Varnish was designed from the ground up as an HTTP accelerator." [11:21] I've also seen nginx used as a reverse proxy to SSL-tunnel traffic to a "dumb" httpd === AstralSt is now known as AStorm [11:30] <_ruben> xampart: kinda depends on what kind of system www.example.com runs on and if it has any proxy capabilities [11:32] And what he wants the proxy FOR [11:34] wiki.backend.com is a confluence tomcat-webapp. i need to make it so, that users can securely (sslproxy + clientcerts) browse our wiki from outside our lan [11:35] xampart: we used pound+nginx for that [11:35] <_ruben> i've used apache+mod_proxy for that [11:36] xampart: is sslproxy something that can act like gpg-agent/ssh-agent, but for HTTPS challenges? [11:36] I've wanted such a thing for aaaages [11:36] Currently I have to hand-write a script for each site, that uses curl to acquire a session cookie and dump it into the browser [11:38] don't really know what you're asking =) but i found this sslproxyengine directive in apache and tested it with my ca + clientcert inside lan [11:40] _ruben: i would like to know our configuration for apache+mod_proxy. i tried "proxypass /wiki/ http://wiki.backend.com/ proxypassreverse /wiki/ http://wiki.backend.com/" [11:50] Grah! [11:50] Why, when I ssh into a lucid server running lshd (instead of sshd) as root, is PATH=/bin:/usr/bin ? [11:51] Do universe programs have to "opt in" to ubuntu's crack-addled replacement of /etc/profile with whatever GUI-happy pam-based is used now? [12:04] hey guys, how can I create a new user on my ubuntu-server ? [12:04] lycan-work: "adduser fred" [12:05] twb so how do i add the user to all main groups / default and root accessible ? [12:05] i want the new user with admin power [12:05] To add an existing user to an existing group, "adduser fred dip" [12:05] You will want to consult documentation to learn which groups are appropriate for any given user. [12:05] ah [12:06] thought there was a lil console gui to add new users easier [12:06] ("dip" provides access to modems and ATM.) [12:06] There probably is, but here we expect you to learn to do things properly [12:17] twb yea [12:18] hi all [12:19] I try to install ubuntu server 10.04, Is there recommanded on swapfile size? [12:20] drcode i would do default [12:20] 512m usually fine [12:21] k [12:21] thanx lycan-work [12:23] I don't run with swap [12:24] I don't think I've ever seen a 2.6 system that was actully utilizing the same while still being responsive enough that you could manually kill off the misbehaving process [12:24] I prefer to just leave that job to the OOM-killer [12:25] s/the same/swap/ [12:25] (Oh, and a swapFILE will have worse performance than a swap partition.) [13:47] New bug: #666253 in libpam-ldap (main) "Make password change prompts translatable" [Undecided,New] https://launchpad.net/bugs/666253 === zul_ is now known as zul [14:50] hello guys, sadly I still have some servers using windows, I wanted to know if creating a CA with openssl on one on my boxes, will be compatible with the windows servers (by compatible I mean, I know the certs are the same, but it will allow me to choose from the CA as for windows-based ones whenever I'm installing a windows service which requires a CA)? [14:52] blackxored: yeah, it should be fine...I have done it before...I seem to recall having to package certs as pkcs12 to import them into windows though [14:52] but that's just manipulation [14:52] mdeslaur, ok great ;) [14:53] but whenever I install a windows service (which I wont' but my coworkers will), it will allow them to automatically request a new certificate for the service, or I'll have to do it manually [14:53] arent' we all lazy? :P [14:54] blackxored: I'm not quite sure what you mean by that...if it's webservers, they will need to send you their CSR and you will need to sign it with openssl [14:55] when you install most of window servers that require ssl, it prompts you for a CA, and it automatically asks for the certificate and imports it [14:56] blackxored: hmm...I'm not aware of what would do that...do you have a specific example? [14:56] Office Communication Services, Lync, IIS I believe [14:57] blackxored: well, last time i installed IIS, it was a manual process [14:57] which version? [14:58] blackxored: a long time ago... [14:58] well i'm talking about iis 7.x or something [14:58] I won't use iis [14:58] hehehe [14:58] luckly [14:58] apache with haproxy [14:58] :P [14:58] but still [14:58] blackxored: well, then I don't know, sorry [14:58] I've cited an example === RoAkSoAx is now known as andreserl === RoAk is now known as RoAkSoAx [16:02] Hey guys. If I compile my own app (in this case it's libldap linked against openssl). Is there a way I can uninstall it and revert? Do you know how I can tell dpkg/apt-get/aptitude between them aside from the initial dpkg -i? === jdstrand_ is now known as jdstrand [16:25] Hello, can any one help me plz? I'm installing ubuntu 10.04 server, booting from usb flash disk, when I get to partition menue, it doesn't recognize the hard disk, just the the flash disk. [16:27] Hi guys [16:27] I am trying to do apt-get install libvirt-bin [16:28] But it gets stuck [16:28] like so: http://dpaste.org/VtkJ/ [16:28] When I try to kill the process, it tells me to run dpkg --configure -a which gets stuck again [16:28] So Im running in a circular loop [16:28] Any way I can resolve this problem? [16:28] ramseyd, do: "sudo dpkg --configure -a" [16:29] RoAkSoAx: root@webhost:~# sudo dpkg --configure -a dpkg: status database area is locked by another process [16:29] oh my bad, i ran that command and it got stuck [16:29] root@webhost:~# sudo dpkg --configure -a Setting up hal (0.5.14-0ubuntu6) ... invoke-rc.d: ---------------------------------------------------- invoke-rc.d: WARNING: invoke-rc.d called during shutdown sequence invoke-rc.d: enabling safe mode: initscript policy layer disabled invoke-rc.d: ---------------------------------------------------- [16:29] http://dpaste.org/VtkJ/ [16:31] ramseyd, seems that other process is running and it is locking it. You might wanna check that [16:33] RoAkSoAx: Yea, how do I unlock that process? (The process in question being: sudo dpkg --configure -a) [16:34] during my last `aptitude safe-upgrade` I noticed that I pulled down linux-image-2.6.32-309-ec2{a}. Should I plan on upgrading my kernel instances or does that happen automatically? [16:34] errr, wrong channel, sorry :) [16:34] how do I set the locale to something decent? === Andre_Gondim-afk is now known as Andre_Gondim [16:37] hehe, looks like the uds-connectivity is broken :) [16:39] Hello, can any one help me plz? I'm installing ubuntu 10.04 server, booting from usb flash disk, when I get to partition menue, it doesn't recognize the hard disk, just the the flash disk. [16:39] any tips [16:40] Mankdim: Are your disks SATA? [16:40] yes [16:42] Mankdim: In the BIOS, try to change the mode of the SATA controller to Compatible, or something different to AHCI [16:42] Then, try again. [16:42] aha [16:42] ok I'll try [16:42] thanks [16:43] Mankdim: That because the installer maybe can't recognice the controller in AHCI [16:43] IC [16:43] ok [16:47] Hello Yo! I'm having an issue with samba. Ubuntu 9.04 server. Some folders and files names are corrupted, like M9DPK0~T, when browsing from Windows Explorer and Nautilus. But in the server's console, i can see the names normally. [17:01] New bug: #666363 in unixodbc (main) "unixodbc should not require x11" [Undecided,New] https://launchpad.net/bugs/666363 [17:11] Hello Yo! I'm having an issue with samba. Ubuntu 9.04 server. Some folders and files names are corrupted, like M9DPK0~T, when browsing from Windows Explorer and Nautilus. But in the server's console, i can see the names normally. [17:19] k5673: note that 9.04 is now EOL [17:20] k5673: I've seen that when browsing from Windows to files shared over samba that contain invalid characters for Windows files. [17:20] Like colons. [17:20] I'm not sure why nautilus would be doing it, unless you're connecting via samba too. === oubiwann-away is now known as oubiwann [17:46] New bug: #666383 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.41-3ubuntu12.6 failed to install/upgrade: " [Undecided,New] https://launchpad.net/bugs/666383 [17:46] It doesn't have invalid chars [17:47] hi all [17:47] how I can run update in console? [17:48] like auto update that I got in gui? [17:50] drcode: apt-get update [17:50] it only update pkg list [17:50] apt-get upgrade [17:50] it dosn't install auto update [17:51] upgrade will not upgrade the ubuntu ver? [17:51] Let's start over. What do you want to do? [17:52] in ubuntu gui , I got automticly info on new update pkg [17:52] when I installed ubuntu server it ask me if I want to get auto update [17:52] I said no [17:53] how can I do it manualy [17:53] install unattended-upgrades [17:53] its same like in gui? [17:54] It doesn't offer a gui. [17:54] So no. [17:54] It doesn't offer a ui at all. [17:54] It's *unattended*. [17:54] it run auto or I can run it manualy, I prefer manauly [17:55] You *specifically* asked for auto update. [17:55] ..and I already told you how to do it manually. [17:55] 16:50 < soren> drcode: apt-get update [17:55] 16:50 < soren> apt-get upgrade [17:55] Done. [17:55] I want to run auto update manualy [17:56] a min [17:56] for manualy I run apt-get upgrade? [17:58] ok [17:58] I undrstand [17:58] thanx [18:12] New bug: #659854 in samba "Nautilus 2.32.0: Copy to SMB " [Undecided,New] https://launchpad.net/bugs/659854 [18:22] hey folks [18:22] I upgraded from 10.4 to 10.10 and now when I run sudo su - ... or screen... I get a seg fault - any ideas? [18:33] SpaceBass: uh - can you strace that? [18:34] SpaceBass: also, keep in mind that most servers should be kept on 10.04 LTS if you don't really need 10.10 (10.10 isn't LTS) [18:35] RoyK, will strace and report back. [18:35] k [18:35] re: LTS vs 10.10 - its a "home server" so I dont mind being on the edge...as long as the core functions work :/ [18:35] ok [18:35] your choice :) [18:36] (it was a poor choice, for the record) === amarcolino__ is now known as amarcolino [19:04] SpaceBass: no strace yet? === _TechAway_ is now known as _Techie_ === kiu_ is now known as kiu === _Techie_ is now known as _TechAway_ [19:55] RoyK, kinda got side tracked - also managed to break my ldap auth === AStorm is now known as AstralStorm [19:55] ouch [19:55] hope you have a good backup, then [19:56] yeah, no data loss [19:56] just config errors [19:56] i was running dpkg-reconfigure postfix when my ssh session died. now i have logged in again but dbdriver config is locked by another process. can i kill it safely, or what should i do to run dpkg-reconfigure postfix again? [19:58] consumerism, I would kill the process and run it again [20:01] I'm building a preseed file, and I'd like to automatically do the lvm step like so: [20:01] d-i partman-auto/disk string /dev/sda [20:01] d-i partman-auto/method string lvm [20:02] my problem comes when I later do this: [20:02] d-i partman-auto/choose_recipe select home [20:02] which produces a / that is too small (6.5 GB) [20:02] so I'm left doing an expert string [20:02] is there (a) an alternative where I could _just_ tell it that I want a bigger / [20:03] or (b) anything I should be aware of in producing my expert string? [20:03] whoohooo! fixing ldap auth fixed sudo and screen [20:03] I have this, which I have not tried: http://dpaste.org/FQsn/ [20:04] feedback most welcome [20:05] next challenge - no web services are responding to traffic from other hosts - can view http://localhost fine, but other hosts on same subnet get denied === oubiwann is now known as oubiwann-away === oubiwann-away is now known as oubiwann [20:09] SpaceBass: are you running ufw and/or did you set a Listen directive on a specific IP? [20:09] SpaceBass: also, do a "sudo netstat -plnt" to see what's listening where [20:09] anybody in here have experience with preseed? [20:09] coxn, no firewall, unless the 10.04->10.10 installed and activated one. it could be listen directives, I'll check - natstat shows port 80 listening [20:10] SpaceBass: what is it listening on? "0.0.0.0:80" or "127.0.0.1:80" or what? [20:10]