/srv/irclogs.ubuntu.com/2010/11/19/#ubuntu-server.txt

ikoniaentropy4: the netbios anounce00:01
entropy4must be..00:02
* entropy4 makes a mental note for future occasions00:03
ikonia(didn't think that would work to be honest)00:03
entropy4the weird thing was that after setting up static dhcp, the dhcp server successfully entered the server's hostname into dns (confirmed by nslookup from windows box) but i still couldnt ping that hostname00:03
ikoniaentropy4: what dns service where the windows configured to use00:04
entropy4the router00:07
ikoniainteresting00:07
entropy4so ubuntu wasnt responding to pings to its hostname till samba was installed... or something..00:08
entropy4anyway thanks for your help ikonia - afk for awhile00:09
ikoniaentropy4: you fixed it yourself00:09
ikoniaI would have put money on samba not working00:10
snakealright i completly restarted my apache install (all config files and everything) plus i reset my port forwarding on my router. can anyone walk me through setting up apache? (NAT is ON)00:10
ikoniasnake: what makes you think it's not working ?00:11
snakeikonia, i try to connect and it doesn't work00:11
ikoniasnake: what was your private IP addres? 10.1.1.5 ?00:11
snake???00:11
snakeyou mean my external?00:12
ikoniasnake: you told me your private IP address earliaer00:12
ikoniano your private00:12
snakeinternal?00:12
snakei don't know where to find private00:12
ikonia 10.0.0.500:12
ikoniayou told me it was  10.0.0.5 earlier00:12
ikoniais that the right address for your internal address ?00:13
snake-_- yes but isn't that IP only on my network?00:13
snakeyes00:13
ikoniasnake: correct00:13
snakewhen i type ifconfig00:13
ikoniasnake: telnet 10.0.0.5 8000:13
snakeyes that works.00:13
snakebut00:13
snakewhat about if my friend wants to connect00:13
ikoniasnake: then it's working and the problem is your nat00:13
snake....00:13
ikoniasnake: your nat is not working/being blocked00:13
ikoniasnake: some ISP's won't allow port 80 open00:14
snakeshould i try another port?00:14
ikoniasnake: up to you, I personally think your nat is not setup00:14
snakethey don't give me very many options in NAT.00:15
snakejust 'opened' or 'secured'00:16
ikoniawhat did you chose ?00:16
ikoniachoose00:16
snakeopened00:16
snakeafter you told me about nat00:16
ikoniasnake: have you disabled the firewall on ubuntu, AND the one on the router ?00:16
snakehang on, i have to find the one for my router and DESTROY it00:17
snakeerr turn it off00:17
twbI have a drbd question00:19
twbThe example in the ubuntu server guide works by mirroring two disks, one in each host.00:20
twbIf I want a RAID1 on each host, should I do an mdadm RAID1, and then run drbd on top?  Or can/should I tell drbd to do the local mirroring, too?00:20
ikoniatwb: for me, I'd use mdadm00:21
ikoniatwb: raid1 is for local mirroring00:21
twbRight, I want a RAID1 array on each host, and then to use drbd to mirror the "master" host's array to the "slave" host's array00:22
ikoniatwb: seems reasonable00:22
ikoniatwb: it's device block level so host1@md0 -> host2@md0 seems reasonable00:22
twbNod.00:22
twbAlso, in lucid can I create a whole-disk drdb-slaved md RAID1, and then create partitions *inside* that?00:23
twbHIstorically you couldn't partiton an mdadm array, but IIRC that changed recently00:23
ikoniatwb: I wouldn't use mdadm on a disk, but only partitions, but that's just my personal experience00:23
twbPlan B is to do it the old way -- partition each disk normally, then create raid1 mirror and drdb-slaving for each partition separately00:23
ikoniatwb: I personally like plan b00:24
twbokey dokey00:24
ikonia(just personal preference though)00:24
=== dannf_afk is now known as dannf
twbikonia: do I have to compile the drbd kernel module?00:40
twbLooks like it's using DKMS and choking because I'm in a chroot :-/00:42
=== marfarma_ is now known as marfarma
twbIn lucid, what's the option to tell plymouth not to mess with my video at all?02:27
twbFor some reason I have a faulty host that stops signalling AT ALL when vga16fb/vesafb load02:27
twbI've been trying things like vga=normal, video=vga16fb, video=vesafb:disable02:28
lifelesstwb: I don't remember offhand but its on the wiki under the kernelmodeswitch stuff02:41
twbOK, so I have tried to set up drbd per ubuntu-serverguide_10.04, but I can't tell if it's working.03:36
twbIs there a channel for drbd?03:39
twbOn the primary, http://paste.debian.net/100180/03:54
twbAFAICT the primary can't see the secondary03:54
twbOK, progress: http://paste.debian.net/100181/04:02
twbFinally, I found a problem to fix! [  316.949668] block drbd0: The peer's disk size is too small!04:05
twbThat's it!04:09
twbIt's working!04:09
twbMua ha ha04:09
UndiFineDtwb, how many nodes ?04:15
twbtwo04:28
arrrghhhthree04:28
twbUndiFineD: so now I have it working for /srv, I need it to work for /04:38
UndiFineD^^ nice04:38
uvirtbotUndiFineD: Error: "^" is not a valid command.04:38
ashtrayhello05:23
eagles0513875hey guys is anyone alive in here  i need some help06:55
eagles0513875is it possible to not have ones home folder encrypted after it has been setup that way?06:56
crimynalI'm alive but I'm still a bit of a n00b06:56
eagles0513875sigh ok06:57
eagles0513875i dont wanna have to reformat my server over dovecot not liking an encrypted home dir06:57
eagles0513875nobody else here06:59
eagles0513875!encryption06:59
ubottuFor information on setting up encrypted private directories (8.10+) see https://help.ubuntu.com/community/EncryptedPrivateDirectory06:59
crimynalwhat do you know... answer found after hitting page down a couple times07:01
eagles0513875waiting on the page to load crimynal07:02
crimynalyou on a 12 boad modem or something?07:03
eagles0513875no07:03
eagles0513875university is heavily filtered :(07:03
crimynalwhy the hell would you filter help.ubuntu.com? sounds more like you got put on bandwidth restriction for too much uploading07:04
eagles0513875i dont upload07:05
crimynalodd07:05
eagles0513875we are on a 6mbps adsl connection07:05
eagles0513875for close to 450 students07:05
eagles0513875ffs07:05
crimynali'm on fios... for just me07:06
eagles0513875fios?07:06
crimynalyeah... its a verizon service, about 5-7x faster than your university's connection07:06
eagles0513875nice07:07
eagles0513875at home im on 10mbps cable business line07:08
ashtray6mbps dsl for 400 students?  That cant be right07:08
eagles0513875ashtray: ya this school has issues07:08
eagles0513875wifi infrastructure sucks major07:08
ashtrayany trouble loading web pages?07:09
eagles0513875ha some pages07:09
ashtrayi imagine youtube is out of the question07:09
eagles0513875they blocked all web based emails like gmail07:09
eagles0513875the wiki07:09
eagles0513875no07:09
eagles0513875funnily enough07:09
eagles0513875at least last i checked it wasnt07:09
eagles0513875thats messed07:10
eagles0513875i managed to get to u tube07:10
ashtrayIf you can watch videos you must be on more than a 6mbps adsl line07:10
eagles0513875they take some time to download and buffer07:10
crimynali'm getting 30Mb/s down and 25Mb/s up.... and my school encouraged forwarding your email through gmail07:11
eagles0513875im fedup of gmail07:11
eagles0513875starting my own business and i setup my own email server for my business running it on my 10mbps atm07:11
ashtraywhat email software are u running07:12
ashtrayi'm looking for some email software for linux07:12
ashtrayfor smtp07:12
ashtray& imap07:12
=== robbiew1 is now known as robbiew
crimynallamps?07:12
eagles0513875crimynal: nope07:13
eagles0513875ashtray: im using postfix + dovecot :)07:13
eagles0513875dovecot i have setup to use imaps07:13
ashtraythats web software crimynal07:13
eagles0513875then i have web based squirrelmail07:13
ashtraywhat type of linux are you running07:13
eagles0513875just make sure your home directory isnt encrypted07:13
eagles0513875ubuntu server lol07:13
eagles0513875i followed the guides07:13
eagles0513875!dovecot | ashtray07:13
ubottuashtray: IMAP and POP are protocols for fetching email. The officially-supported server in Ubuntu is Dovecot (packages "dovecot-imapd" for IMAP, and "dovecot-pop3d" for POP) - See also !MailServer for information on the SMTP protocol07:13
eagles0513875!postfix07:13
ubottupostfix is the default !MTA and !MDA on Ubuntu. For help, read https://help.ubuntu.com/community/Postfix and https://help.ubuntu.com/community/PostfixBasicSetupHowto - See also !MailServer07:13
eagles0513875thats what im using07:13
eagles0513875accounts are system accounts that are checked against the shadow file07:14
ashtray!MailServer07:14
ubottuUbuntu supports the Simple Mail Transfer Protocol (SMTP) and provides mail server software of many kinds. You can install a basic email handling configuration with the "Mail server" task during installation, or with the "tasksel" command. See also https://help.ubuntu.com/community/MailServer and https://help.ubuntu.com/10.04/serverguide/C/email-services.html07:14
eagles0513875lol07:14
eagles0513875i have them setup07:14
eagles0513875but for some reason dovecot seems to hate an encrypted home directory07:14
ashtrayI'm going to be using EC2 though.  So my ubuntu will already be setup.  I need to know what i should run for smtp07:14
eagles0513875ashtray: you can setup your own personal cloud07:15
eagles0513875using ubuntu-server07:15
ashtrayeagles, stupid question here.... home directory isn't encrypted by default is it?07:15
eagles0513875no07:15
eagles0513875its specified during installation07:15
ashtraydidnt think so.  I've been having an RSA problem and thought maybe that was it for a sec07:15
eagles0513875and i need to find out if its possible to having it not be encrypted after install07:15
eagles0513875ashtray: O_o07:15
ashtrayi can set up my own personal cloud using ubuntu-server....hmmm07:16
ashtrayumm whatchou talkin bout eagles07:16
eagles0513875!cloud07:16
eagles0513875stupid bot07:16
eagles0513875hold on ashtray07:16
ashtrayyou mean on ec2 launch an ubuntu instance?07:16
ashtrayok07:16
eagles0513875no ubuntu instance07:16
eagles0513875a private instance for your own personal cloud07:16
banker247_hey guys, just installed apache2 and mysql to host my VtigerCRM software i'm working on getting setup.. now that my server is installed and running which user should adminster this server?07:17
eagles0513875banker247_: not the root user just your user name you setup on the server then you sudo to edit the conf files etc07:18
eagles0513875mysql i would create a 2nd user thats got full permissions and not use the root user for mysql07:18
eagles0513875ashtray: http://www.ubuntu.com/cloud/private07:18
ashtrayi was reading that earlier07:19
eagles0513875if your interested in doing something at home no expense and you gain cloud experience07:19
ashtrayits on canicals server?07:19
eagles0513875no07:19
eagles0513875your own servers07:19
banker247_eagles0513875, i'm a bit confused as to who the "root user" is .. is it my login? that i sudo to root with?07:19
ashtrayI only have my desktop... is that enough?07:19
eagles0513875you need at least 2 machines :(07:19
banker247_i only have 1 login for my box.. when i want to run commands as root i sudo07:19
ashtrayfuck me07:19
eagles0513875!language | ashtray07:20
ubottuashtray: Please watch your language and topic to help keep this channel family friendly.07:20
ashtrayI guess if I want to practice or something I will have to set up a VPC in amazon?07:21
eagles0513875!sudo | banker247_07:21
ubottubanker247_: sudo is a command to run command-line programs with  superuser privileges ("root") (also see !cli ) . Look at https://help.ubuntu.com/community/RootSudo for more information. For  graphical applications see !gksu (Gnome, XFCE), or !kdesudo (KDE). If you're unable to execute commands with  sudo see: http://www.psychocats.net/ubuntu/fixsudo07:21
ashtraythats just as good right?07:21
eagles0513875banker247_: you would sudo from your current account your on lets say if its banker247_  you just run sudo COMMAND password you used to login07:21
eagles0513875ashtray: everyone has their own opinions about things07:22
ashtrayyour opinion?07:22
eagles0513875being a student and on a tight budget07:22
eagles0513875i would setup a small one on my own hardware07:22
banker247_eagles0513875, yup thats what i've been doing.. so by what you're saying when i did sudo apt-get install apache2 the apache2 installed under root?07:22
banker247_ashtray, you can build your own box fairly good quality with under 100 bux ;)07:23
eagles0513875thats the onlyw ay youll be able to install anything as there are some locations for files like /etc you cant modify without being sudo07:23
ashtrayI dont have 100.  I'm poorer than a college student.  lol07:23
banker247_ashtray, you in USA?07:23
eagles0513875lol07:24
ashtrayyeah virginia07:24
eagles0513875ashtray: i am a student with no job07:24
ashtraynear DC07:24
banker247_over 18?07:24
ashtrayyeah07:24
eagles0513875and here i am working on starting my own business07:24
banker247_calla craigslist add mow do some gen labor and you can make few hundos07:24
banker247_;)07:24
banker247_anyhow.. check craigslist sometimes people are GIVING.. away computers07:24
banker247_broken ones or what not.. just salvage em..07:25
eagles0513875thing is banker247_07:25
ashtraywhat about a ppc?07:25
ashtrayCould I just use a ppc as my second computer?07:25
eagles0513875from what i was told you need a machine that supports virtualization at the hardware level07:25
eagles0513875ppc = pocket pc07:25
ashtrayoh ok07:25
eagles0513875with out hardware virtualization performance is lacking07:25
ashtrayi didn't think older machines would support virtualization07:25
banker247_doesn't need to be older.. sometimes people give away new broken stuff07:26
banker247_or a business going out of business liquidates.. its all over just look around07:26
banker247_i'm 27... been toying with computers since i was 12 or so.. i used to build my own just from hitting up local businesses and taking their broken things.. i dont know if things have changed..07:26
banker247_but i mean.. alot of these rigs within 5 years are comming with decent vid cards in them..07:27
eagles0513875ya but you dont need a fancy graphics card for a server banker247_07:27
banker247_here's a good starting point.. go on craigslist.. check your local area.. search for free07:27
ashtraygood idea07:27
banker247_eagles0513875, yea thats what i mean.. so he shouldn't have a problem07:28
banker247_ashtray, or get a job ;)07:28
ashtrayokay and back to reality ;)07:28
eagles0513875im thinking of building a new i7 desktop and turning my core 2 quad into a server07:28
eagles0513875have to wait for its ram to return had to rma back to corsair07:28
banker247_ashtray, i gaurantee.. if you put effort into it you can find what you need via craigslist or garage sales.. if you don't want to get a job.. i mean there are ways of getting things done my friend07:29
ashtrayso what should the minimum specs be on a computer for virtualization?07:29
eagles0513875ram is key07:29
eagles0513875the more ram the more vms you can fit on it07:30
eagles0513875my quad has 8gb of ram07:30
eagles0513875so i coudl support up to 8 vms with 1gb per vm07:30
eagles0513875or less or more07:30
eagles0513875depends07:30
banker247_eagles0513875, i've been learning linux for the last 6 months or so and i have to ask.. linux power users i'll assume you'd be one.. do you guys do pretty much everything out of the CLI? or you use the GUI at all really?07:32
eagles0513875banker247_: on ubuntu there is a file called the sudoers file07:33
eagles0513875and if a user is in there then they have super user privs07:33
eagles0513875if not they are a normal user with out super users privs07:33
banker247_eagles0513875, that went above my head07:34
eagles0513875!root | banker247_07:38
ubottubanker247_: Do not try to guess the root password, that is impossible. Instead, realise the truth... there is no root password. Then you will see that it is 'sudo' that grants you access and not the root password. Look at https://help.ubuntu.com/community/RootSudo07:38
ashtrayhaha07:39
eagles0513875wb ashtray07:42
eagles0513875wait you didnt leave that was someone else07:42
ashtraynope.  i'm waiting for the movie Inception to finish unzipping.  Then I'm off to windblows because ubuntu can't play 1080 that well.07:43
ashtrayThis movie is has so far taken 10 minutes to unzip and its not finished.  insane.07:47
eagles0513875this makes no sense07:54
eagles0513875any dovecot experts in here07:56
eagles0513875hey coffeedude08:06
eagles0513875mornign twb08:06
eagles0513875any dovecot experts in here i have a question08:21
eagles0513875and something im rather puzzled about08:21
eagles0513875drwx------ 18 jonathan dovecot     4096 2010-11-19 06:41 Maildir <--- when the group is dovecot my email works like a charm when the group is jonathan like it says in the wiki i have permission issues08:22
eagles0513875my home directory where my Maildir is is encrypted im not sure if that has anythign to do with it08:22
ikoniaeagles0513875: unencypt it, or re-create the partition08:25
ikoniatwb: how did you progress with your mirroring ?08:25
eagles0513875ikonia: do you have any site i have been searching for something that will tell me how to permanently unencrypt my home directory but cant find anything08:25
twbdrbd or aoe?08:26
ikoniaeagles0513875: how did you encrypt it ?08:26
ikoniatwb: drbd08:26
eagles0513875ikonia: during install it asked me if i wanted to encrypt my home directory and i hit yes and i checked and its using encryptfs08:27
ikoniaeagles0513875: if it was me, I'd copy the data off, blank the partition and put the data back08:27
eagles0513875:-/08:27
eagles0513875how does it work though with the group as dovecot and then if i change the group to jonathan it gives me hell08:28
ikoniaeagles0513875: or your could look on the first hit on google http://virtually-a-machine.blogspot.com/2010/08/howto-disable-ecryptfs.html08:28
eagles0513875thats what im still trying to figure out and understand08:28
ikoniaeagles0513875: what are you on about "groups"08:28
eagles0513875drwx------ 18 jonathan dovecot     4096 2010-11-19 06:41 Maildir <--- if i change dovecot to jonathan i get an error which complains about the /home/jonathan/Maildir not haveing +w which it does08:29
ikoniaeagles0513875: not for the user dovecot it doesn't08:29
ikoniaor ght egroup08:29
ikoniaeagles0513875: look at your permissions only the OWNER has permissions08:29
ikoniadovegot is the group08:30
ikoniadovecot even08:30
eagles0513875i know but when i have the group set to jonathan though08:30
eagles0513875i get this error Nov 19 08:53:23 eagle dovecot: IMAP(jonathan): mkdir(/home/jonathan/Maildir/cur) failed: Permission denied (euid=1000(jonathan) egid=1000(jonathan) missing +w perm: /home/jonathan)08:30
eagles0513875the permissions are right according to the wiki i chmod 700 on that folder and all subfolders08:30
ikoniashouldn't be 700 on all sub folders08:31
eagles0513875the wiki says otherwise08:31
eagles0513875the ubuntu dovecot wiki08:31
ikoniaeagles0513875: show me the URL08:31
twbikonia: I got it working for /srv, but not booting from drbd08:32
ikoniatwb: ahhh booting, bold move.08:32
eagles0513875https://help.ubuntu.com/community/Dovecot ikonia08:32
ikoniaeagles0513875: then it's wrong08:33
eagles0513875what should the appropriate permissions on the directory be08:33
eagles0513875as well the user and group are fine as is?08:33
ikoniaeagles0513875: your running the dovecot process to delivery mail - it's the group dovecot, how can something with no access that directory be expected to deliver mail08:33
ikoniaor "read mail" I should say08:33
ikonianot deliver08:33
eagles0513875ikonia: it doesnt deliver it but when i restart dovecot it works08:33
eagles0513875which i find very odd as well08:34
eagles0513875so the way it is now is ok the way i have it?08:34
eagles0513875ikonia: the way i have it now is fine or its still not right?08:36
ikoniahang on08:36
ikoniajust taling to someone08:36
eagles0513875ok08:37
ikoniatalking even08:38
ikoniaeagles0513875: your just using dovecot for imap yes ?08:38
eagles0513875imaps yes08:39
ikoniaso the permissions on your home dirs maildir needs to be something that obviously you own, but dovecot can read/write to - what user are you running dovecot as ?08:39
eagles0513875ikonia: thats the htop past of all dovecot related threads08:42
ikonia?08:42
ikoniawhat is08:42
eagles0513875whoops08:42
eagles0513875here it is sry bout that ikonia http://pastebin.com/TNcAhrST08:42
ikoniaeagles0513875: I don't want a process list08:43
ikoniaeagles0513875: I want to know what user your running dovecot as08:43
eagles0513875how can i determine that08:43
ikoniaeagles0513875: your running your own business as an ISP and hosting provider, come on08:44
eagles0513875right now email im using for personal email nobody else08:45
ikoniaso ?08:45
ikoniaas someone who runs a hosting business for companies, you should be able to tell me what user a process is running as08:45
eagles0513875root08:45
ikoniaare you sure ?08:46
eagles0513875yes08:46
ikoniaso then the group/user permissions would not matter as root can do what it wants08:46
rdw200169heh, this is fun to watch...08:47
eagles0513875ok ikonia08:47
* eagles0513875 has to head to class08:47
eagles0513875thanks for your help ikonia08:47
ikoniaI thought you'd have to leave08:47
ikoniaand your welcome08:47
rdw200169no no, come back, i haven't finished my popcorn!08:47
* eagles0513875 slaps rdw20016908:48
eagles0513875ikonia: last question08:48
eagles0513875where would be the best place to discuss wiki updates08:48
ikoniaeagles0513875: you can change the wiki - it's public08:48
eagles0513875ok might just end up doing that08:49
ikoniachange it to what ?08:49
ikoniawhat needs changing08:49
eagles0513875not entirely but the dovecot one needs some updating08:49
ikoniafrom what I'm reading it looks fine08:49
eagles0513875what bout the cmod -R 700 the step before that08:49
ikoniawhy ? what's wrong with it08:49
eagles0513875myuser mygroup would be jonathan jonathan08:49
ikoniathat's fine, your running dovecot as root08:50
eagles0513875humm ok08:50
eagles0513875if i wasnt08:50
ikoniabut you are08:50
eagles0513875just a curiosity question here08:50
eagles0513875if i wasnt though08:50
eagles0513875the user would be jonathan jonathan or jonathan dovecot08:50
ikoniawhy would you change a guide to something your not08:50
ikoniabut you are08:50
twbI have new 2TB disks.  the installer wants me to create GPT disk labels; is there any reason I *should not* continue using msdos disk labels?08:50
ikoniaeagles0513875: think about it - something would need to write the that dir, the writing thing would need write access to mail dir to read/write to your mail box08:51
ikoniatwb: I believe msdos partitions can't support 2TB partitions08:52
ikoniatwb: I actually think eagles0513875 had his issue a while back08:52
eagles0513875ya i did08:52
twbikonia: partman seems to disagree, fwiw08:52
eagles0513875but ikonia turned out bad ram08:52
eagles0513875errors galore08:52
eagles0513875just sent it rma08:52
ikoniaeagles0513875: your disk problem turned out to be ram08:52
ikoniareally ?08:53
eagles0513875ikonia: ill see once i get the ram back if i still have issues or otherwise08:53
ikoniahow odd/interesting08:53
eagles0513875if the user and group are jonathan and the folder has rwx access shouldnt that still work08:54
eagles0513875or would the group need rwx permissions as well08:54
ikoniaeagles0513875: it doesn't matter your running as root08:55
eagles0513875ok08:55
shaunoit's not running as root08:55
ikoniaif your running as root it can go through those permissions fine08:55
ikoniashauno: he said it was ?08:55
shaunohttp://pastebin.com/CTi5QMqv  dovecot-auth and saslauthd are root, everything else is user dovecot, or user jonathan08:56
ikoniashauno: exactly08:56
shauno/usr/sbin/dovecot is running as root, but not all it's children are08:57
eagles0513875ill be back08:57
eagles0513875need to relocate08:57
eagles0513875back09:08
eagles0513875shauno:  is the user and group fine as jonathan dovecot?09:09
ikoniaeagles0513875: it depends who owns the process09:09
ikoniaif the process is owned by dovecot as your ps shows - no09:09
ikoniaas how can the user dovecot access something it has no access to09:09
ikoniaif the process is owned as Jonathan, then yes, as jonathan owns it09:10
ikoniawork it through in your head09:10
eagles0513875since the ps shows a mix what do i do?09:10
ikoniaeagles0513875: I would suggest shutting everything down, and then on restart watch what happens09:10
eagles0513875start up starts up fine im going by what is written in the logs09:11
ikoniaI didn't say it won't start up09:11
ikoniaI said watch what happens09:11
ikoniawhat processes are running at start and owned by who09:11
eagles0513875and now apache is acting up O_o cuz squirrelmail isnt loading09:11
ikoniawhat happens when you connect - who luanches that process09:12
eagles0513875parent process is started as root09:15
eagles0513875child processes are dovecot ikonia09:16
ikoniaeagles0513875: ok - so work it through, if the directory is owned by Jonathan, and only the owner has access, will they be able to read/write to your maildir ?09:16
eagles0513875so the group dovecot needs rwx permissions as well09:18
ikoniaeagles0513875: well, that's one possible solution, or make the process start as the mailbox owner (which it should do when you connect and auth)09:19
ikoniaeagles0513875: just work it through logically09:19
eagles0513875ya i am will adjust the group permissions to have rwx09:19
sorentwb: "msdos" part tables support up to 2 TB.09:20
eagles0513875thanks ikonia09:21
sorentwb: I'm not sure why the installer would switch to GPT if it's smaller than that.09:21
twbMy disks are labelled 2tb (i.e. equal, not less)09:21
sorentwb: That could mean at least 3 different things.09:21
twbSCSI1 (0,0,0) (sda) - 2.0 TB ATA WDC WD2001FASS-0                                                                                                 │09:22
twb...according to partman09:22
soren2*10^12 bytes, for instance.09:22
twbI don't think I've *ever* seen an HDD manufacturer that provided disks in GiB / TiB units09:22
sorenOr 2*1024*10^9 bytes. Or 2*1024^2*10*6 bytes.09:23
sorentwb: You mean specifically stating that it's "TiB" rather than "TB"?09:23
ikoniasoren: if the disks ship with a gpt table on them, the installer leaves it alone09:24
twbNo, I mean *delivering* 2**31 bytes when I ask for 2TiB09:24
sorenikonia: Good point.09:24
ikoniasoren: I've got a 1TB disk that came with a gpt table on and ubuntu offered up gpt09:24
sorentwb: Ah.09:24
twbikonia: I'm in priority=low and clicking on the disk, to create a new disk label09:24
sorentwb: Ah, right. Well, the part table limit is 2 TiB, so 2 TB should be fine.09:24
eagles0513875soren: you experiencing any issues with 2tb09:25
twbbtw, debian's d-i daily does the same (defaults to gpt on these disks)09:25
soreneagles0513875: Largest disk I have is 1TB, so no :)09:25
twb1953514584 is the size reported by /proc/partitions09:25
twbSo actually *less* than 2TB (SI units)09:25
eagles0513875ikonia: hopefully some new ram will fix my issues installing to my 2tb drive09:26
ikoniaeagles0513875: what made you think it was bad ram ?09:26
eagles0513875ikonia: ran memtest for 12 hrs09:26
twbPresumably they'll claim the "missing" 2% is for bad block replacement09:26
eagles0513875came up with over 400 errors09:26
ikoniaeagles0513875: ahh, a very good sign09:27
eagles0513875viva corsair  life tiem warrenty09:27
eagles0513875submitting rma request and they got back to me in 25 min that they approved my rma09:28
eagles0513875!watchdog | eagles051387509:28
eagles0513875ikonia: is there a wiki floating around for setting up watchdog?09:31
ikoniaeagles0513875: I have no idea, have a look09:31
eagles0513875im looking on google and its not turning up anything for me09:32
eagles0513875ill keep hunting09:32
eagles0513875guys i am having a funky issue with squirrelmail and apache209:36
eagles0513875sometimes it doesnt load squirrelmail09:37
eagles0513875but lets me see all the dir's i have in /var/www09:37
eagles0513875and then after 5 min it will load squirrelmail09:37
ikoniawhat does the log file say when you try to access it and it fails09:38
eagles0513875ikonia: nothing in theapache 2 logs are showing out of the ordinary09:41
ikoniaeagles0513875: do you see the access request hit the log?09:41
eagles0513875no09:42
eagles0513875wait let me look again09:42
eagles0513875not seeing anythign out of the ordinary in the log09:46
ikoniaI didn't ask for anything ordinary, I asked a clear and simple request for information09:46
ikoniaeagles0513875: do you see the hit request in the log, yes or no09:46
eagles0513875no09:46
ikoniaeagles0513875: ok - so how do you expect it to work09:47
ikoniathat is out of the ordinary09:47
ikoniayou make a request and you don't see the hit in the log09:48
ikoniathat means it's not hitting the server09:48
ikoniaso how would the server ever respond09:48
eagles0513875let me look again09:48
ikoniaas before, walk it thorugh09:48
ikoniathrough09:48
eagles0513875which apache log09:48
ikoniaeagles0513875: !!!!09:48
eagles0513875?09:48
ikoniaeagles0513875: you are running a web hosting business09:48
ikoniaeagles0513875: how can you not know this09:48
ikoniaeagles0513875: is it running off the root domain of the box09:49
eagles0513875[Fri Nov 19 10:21:44 2010] [error] [client 194.204.113.45] PHP Notice:  Undefined variable: default_folder_prefix in /usr/share/squirrelmail/include/load_prefs.php on line 109, referer: http://webmail.eagleeyet.net/src/right_main.php09:49
eagles0513875thats all i get in the erro log relateing to squirrelmail09:49
ikoniaeagles0513875: does that time stamp corrispond with your hit request ?09:49
eagles0513875yes09:49
eagles0513875from earlier havent tried again now09:50
ikoniaoh come on09:50
ikoniahelp us to help you09:50
ikoniayour saying its failing09:50
ikoniacheck !09:50
eagles0513875seems to be behaving now09:50
ikoniawhen it fails - work it through, apply common sense09:50
eagles0513875ok09:50
ikoniathen what's left is the provlem and we can work it through09:50
ikoniaproblem09:50
ikoniaI suggest clearing your logs also, so the next time you get an error, you know it's not an old entry09:51
eagles0513875ok09:51
ikoniaeagles0513875: I'd seriously thinnk about trying to run a web hosting business....seriously09:51
twbsoren: I'm going to do one scratch install, just to see how borked gpt is (particularly gpt+extlinux)09:54
twbsoren: then I'll go back to msdos because I understand it09:54
ikoniatwb: gpt has good support09:54
twbikonia: gptmbr.bin isn't exactly intuitive.09:55
ikoniayeah, I'll agree on that09:55
twbIf you can help me work it out, I'd appreciate it09:56
ikoniaI'll certainly try09:56
ikoniaI only really use GPT with IA64 HPUX and it handles it different09:56
ikoniawell, and on my mac, but I never mess with that09:57
twbhttp://git.kernel.org/?p=boot/syslinux/syslinux.git;a=blob_plain;f=doc/gpt.txt;hb=HEAD09:57
ikoniaughh, this looks fun09:58
eagles0513875sob :( think they blocked ssh port10:02
jpdsHmm.10:03
twbeagles0513875: run your sshd on 443, then10:04
eagles0513875might have to do that10:04
eagles0513875twb: but there is something not right though with the connection on campus here10:04
eagles0513875its super sluggish in general10:04
eagles0513875i think they took dns down :-/ viva windows10:05
ikoniawhat has that got to do with windows ?10:06
twbMaybe he thinks windows still uses netbios10:07
ikoniawho knows10:07
eagles0513875no it has AD10:07
ikoniaso ?10:07
halvorsHi!10:07
ikoniaagain - what has that got to do with windows10:07
eagles0513875its offtopic im not goign to continue talking bout it.10:07
halvorsI would provide simple webhosting to my users10:07
ikoniabecause you've just made a stupid comment10:07
twbeagles0513875: I don't think AD distributes the hosts database via LDAP.10:07
halvorsWeb, Email, and SSH10:07
ikoniahalvors: ok - what's up ?10:07
eagles0513875this is not home network thsi is school network its all windows mostly10:07
halvorsWhats the simples whay to create new domains on my server?10:08
ikoniaeagles0513875: so - if someone takes something down - it won't work10:08
ikoniaeagles0513875: I've just shut down my email serve "viva linux"10:08
halvorsIs there some simple hjosting panels i can use, also i will have a solotion that not need SSH to create new domains.10:09
ikoniahalvors: the hosting tools such as webmin and cpanel don't work well with the default config layouts within ubuntu10:09
halvorsikonia: So it's impossible to host simply with Ubuntu Server?10:10
twbhalvors: webmin and cpanel aren't supported here10:11
twbhalvors: you could probably make them work if you tried10:11
ikoniahalvors: I'm not aware of a tool that I'd consider good and stable (and simple) thats secure and compatible with ubuntu's layout, but I don't use such tools so may be out of touch10:11
twbhalvors: ebox is allegedly blessed by Ubuntu, but I can't vouch for it or support it myself10:11
HackeMategood morning10:27
HackeMateI beg a few help just for confirm I'm doing it well10:28
eagles0513875morning HackeMate :)10:28
eagles0513875HackeMate: just ask your question10:28
HackeMateI have this local7.* /var/log/dhcpd/dhcpd.log in rsyslog.d, it works well, but now I want to rotate the log daily and as max size 409610:30
HackeMateso in /etc/logrotate.conf I put size=4096k10:31
HackeMateand rotate daily10:31
HackeMatebut it does nothing with this file10:31
HackeMatemy question is: do I need create a /var/log/dhcpd/dhcpd.log { size=4096k }?10:31
HackeMateor the dhcpd/dhcpd.log is wrong10:32
HackeMateI swear I was reading the man logrotate for a week but I dont get this, I'm not native english10:32
anebihi, how can i check in init script which user is running the script or his uid?10:34
twbanebi: why do you want to know?10:35
anebi twb: i wan to check if the script is started with root and if is, then to run the script with su -c and use other username10:36
twbanebi: why?10:36
twbStarting your daemon with start-stop-daemon --user nobody would be a better way to go about it.10:37
anebitwb: yes, i will change the init script in this format when i get more time, but for now i need to use su - and to check for the user that is running the script10:38
ikoniaanebi: all init scripts are run as root10:39
anebiikonia: thanks10:41
www2hi i want to know suport the bind9 buld form the ubuntu repasetory DLZ as defauld?10:44
ikoniawww2: DLZ ?10:45
www2database suport in BIND e.g. mysql10:46
ikoniaooh I don't know, good question10:46
ikoniaI've never done it with bind -> mysql before10:46
www2oke10:47
mrmistthat sounds potentially painful10:47
www2i heft done one time early but on a vm10:47
www2as test10:47
twbWhy not postgres, if you have enough zones to warrant a database?10:52
sorenOr drizzle.10:53
sorentwb: Why postgres if all you need is to store simple, structured data?10:53
twbBecause I've never met a DBA that liked mysql10:54
sorenI've never met a DBA that liked any DB.10:54
sorentwb: I've always found that people use PostgreSQL because they need some of the fancier features. If you don't need them, MySQL seems the better choice (since it's (AFAIK) generally faster).10:55
www2@soren i agree with you10:55
twbThe aforementioned DBA bigots explained that mysql is faster because it doesn't implement an actual ACID RDBMS10:56
www2and i wand only use as a test server on my privet computer10:56
twbThat if you went out of our way to configure it to be reliable, it'd be slower than postgres10:56
twbOf course, I'm not a DBA, so I'm only speaking second-hand.10:57
sorentwb: a) InnoDB is ACID compliant, and has been around since forever.10:58
sorentwb: b) If this is just to store DNS entries, ACID doesn't seem like much of a concern.10:58
twbIn that case, why SQL/RDBMS instead of something from the bdb/couch/tokyocabinet line of databases?10:59
twbOops, s/couchdb//11:00
twbNever mind, I'm just being a bigot and I don't REALLY need to know the answer.11:00
www2now i heft install allready instald my sql for my older projects11:01
www2brb11:01
HackeMate:(11:01
HackeMateI just wanted to know if I should put /var/log/dhcpd/dhcpd.log or /var/log/local711:02
=== Sky[XX] is now known as Sky[X]
uvirtbotNew bug: #677411 in tomcat6 (main) "tomcat6-user should include in webapps ROOT, manager, doc etc." [Undecided,New] https://launchpad.net/bugs/67741111:31
ahaney3hi, I'm trying to get a webserver running in EC2, when I attempt to ssh via ahaney3@seelabmac1:~$ ssh -i rss.pem root@ec2-174-129-127-238.compute-1.amazonaws.com I get Connection to ec2-174-129-127-238.compute-1.amazonaws.com closed.11:35
ahaney3what's my user name?11:35
jpdsahaney3: root?11:40
uvirtbotNew bug: #677413 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5.1 failed to install/upgrade: subprocess new pre-removal script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/67741311:42
RoyKanyone here that knows a good chassis for a home NAS? preferably something compact that can take, say, 4 SATA drives...11:49
tmadeHello everybody. I´m running ubuntu server 10.10 and installed gnome. How can i disable running x? I´ve "update-rc.d -f gdm remove" and i get  "Removing any system startup links for /etc/init.d/gdm ..." but x is still starting!?12:16
tmadei want to get konsole login and beeing able to start gnome with "startx"12:17
tmadenobody has an hint?12:19
twbHas anyone written a free (e.g. Affero GPL) landscape server component?12:26
ahaney3 hi, I'm trying to get a webserver running in EC2, when I attempt to12:43
ahaney3          ssh via ahaney3@seelabmac1:~$ ssh -i rss.pem12:43
ahaney3          root@ec2-174-129-127-238.compute-1.amazonaws.com I get Connection to12:43
ahaney3          ec2-174-129-127-238.compute-1.amazonaws.com closed.           [06:35]12:43
ahaney3<ahaney3> what's my user name?12:43
twbahaney3: I imagine that depends on what OS image you're running12:55
tmadehello, i´ve installed gnome on 10.10 server. how can i start on konsole login? i already run "update-rc.d -f gdm remove" and it worked, but x is still starting!?12:59
twbtmade: gdm is not an sysvinit job in 10.0412:59
twbEr, from 10.04 onwards12:59
twbInstead, it's an upstart job, and you need to go in /etc/init/gdm.conf and modify "start on"13:00
pmatulistmade: you can also edit /etc/default/grub13:02
tmadethanks..i´ll try13:07
tmadepmatulis: how is grub related to x?13:14
tmadepmatulis: what do i have to edit in /etc/default/grub?13:15
twbtmade: btw, "konsole" is a KDE terminal emulator.  In english, the text mode is "console" or "fbcon".13:16
tmadetwb: i´m new on ubuntu...i know about upstart. below start there´s "start on (filesystem           and started dbus           and (drm-device-added card0 PRIMARY_DEVICE_FOR_DISPLAY=1                or stopped udevtrigger))". How to edit? I expected there are runlevels defined!?13:16
twbtmade: just comment out the entire "start on" line(s)13:17
tmadetwb...ok, console13:17
=== SirFiChi is now known as ihCiFriS
patdk-wkI don't think runlevels have existed for a long time now13:17
patdk-wkit's all emulated13:18
tmadeah..that easy. I´m an experianced linux user(mainly on rhel), but ubuntu is that different...13:18
twbpatdk-wk: he's quoting runlevel events, which still exist in upstart13:18
twbBut you're right that they're basically spoofed13:18
tmadewhy?13:18
tmadefor me it is great13:18
tmade..like it was :-)13:19
twbWhich, of course, leads to tmade's problem of being unable to disable gdm by simply putting "runlevel 3, please" in his bootloader13:19
twb(Which is the old RH way.)13:19
ScottKEven pre-upstart, runlevels in Ubuntu didn't work like on RH.13:20
twbtrue13:20
tmadeok13:20
tmadewhy is runlevel 2 on ubuntu the same like on all other distribution i know runlevel 3. there isn´t runlevel 3 on ubuntu?13:21
ScottKMentally I find it useful to treat RH and derivatives and Debian and derivatives like they are two different operating systems.13:21
tmadeScottk: you are right13:22
ScottKOn Ubuntu and Debian run levels 2 - 6 do the same things.13:22
twbBy default13:22
tmadewhat means rl 3 on debian /ubuntu?13:22
tmadetwb: uncommenting the "start" is working!! thanks...13:24
tmadeeverybody told me "update.rc" to edit services13:24
twbtmade: that's the Debian/old way13:25
tmadequite frustrating to execute a command and getting exit code 0 without success13:25
twbI totally agree13:25
twbAlso frustrating that you have to edit a free-form text file in order to disable a server13:26
twb*service13:26
tmadethere´s no other way?13:26
twbIf there is, I don't know it13:26
Davieyhggdh: Around?13:26
tmadeok...don´t like this13:26
tmadechkconfig is (was) just great13:27
zulhello13:27
tmadepmatulis: just because of curiousitiy: "you can also edit /etc/default/grub". how can i start/stop services there?13:28
twbIf apt dependency for me to install a service, but I NEVER want to start it, I can do13:28
twbdpkg-divert --rename /etc/init/foo.conf13:28
twbhaha13:29
twbI was trying to edit a file on a remote and getting really confused... until I realized I was in mg, not vi13:30
twb"why isn't ^[$ going to the EOL?!"13:30
uvirtbotNew bug: #677459 in samba (main) "Programs fail to install: package samba-common 2:3.4.7~dfsg-1ubuntu3.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 10" [Undecided,New] https://launchpad.net/bugs/67745913:36
sorentwb: Just delete it.13:37
patdk-wkthe file? or mg? :)13:40
twbsoren: yeah, good point.  It's a conffile13:40
sorenpatdk-wk: Or the whole server. That should stop it good.13:40
twbsoren: otoh then I can't bring it back when <users> complain that <avahi> is still needed13:40
sorentwb: Rename it.13:40
twbThat's what dpkg-divert did :-{P13:41
sorenWell, yes.13:41
sorenI thought you were asking for ways that did not involve dpkg-divert.13:41
twbSorry, no13:41
sorenI deliver. You complain :)13:41
sorenIf it's not named <something>.conf, upstart ignores it.13:42
twbWhat I want is to prevent services *auto*starting, but still allow auto-stopping and manual stop/start/restarting, *without* editing a file13:42
twbi.e. the equivalent of "update-rc.d foo disable"13:42
twbThe purpose being to allow stuff like puppet to reliably disable services without needing to know how to parse upstart's file format13:43
sorentwb: Yeah, not sure how I'd do that.13:54
sorenDaviey: So... Merge proposals would fly through when they were really simple, right?13:55
* soren twiddles thumbs13:56
Davieysoren: Sorry... i hadn't seen the mail yet... but this ping helps you queue jump.13:56
* twb points at the queue jumper13:57
sorenDaviey: https://code.launchpad.net/~soren/ubuntu/natty/nova/webob-dependency/+merge/4130013:57
twbNORK NORK!13:57
Davieysoren: seen it now!13:57
* soren points at things anyway13:57
Davieysoren: 43 mins... pah... that is no patience :)13:57
twbDaviey: need to organize an interrupt queue13:58
sorenDaviey: I am *waiting* for this build to work.13:58
sorenDaviey: This is the sort of stuff I was talking about.13:58
Davieysoren: I should probably comment that you haven't described why that is now a needed dep?13:58
twbDunno about you guys, but I wrote me an imapbiff so rt tickets IRQ me.13:58
sorenDaviey: Adding another build-dependency is hard to get wrong, and even if I did, fixing it would be a 2 second task.13:58
twbhttp://paste.debian.net/100207/13:59
Davieytwb: I can see merit in a indicator widget that pings me when there is a merge proposal waiting on me13:59
sorenDaviey: You have that, you know?13:59
twbsoren: irc doesn't count :P13:59
sorenNo.13:59
Davieysoren: This is related to the great twisted drop?14:00
sorenDaviey: No, it's related to changes in the aPI.14:01
sorenDaviey: We just happen to use webob upstream now.14:01
sorenDaviey: Without this dependency, crap fails.14:01
sorenDaviey: I added the dependency because *it was missing*.14:02
sorenDaviey: Seriously, you expect me to explain why we chose to use webob upstream?14:03
sorenDaviey: Because, srsly, then you can do this on your own. I don't need this.14:03
sorens/explain/justify/ whatever.14:03
sorenlptools has review-notifier. It tells you when you have reviews to do. It's lovely. Crashy, but lovely.14:04
Davieysoren: no... i wasn't asking you to justify why upstream adopted it14:05
Davieysoren: I'm not trying to make the process harder... really i'm not14:07
sorenDaviey: then what *are* you trying to do?14:07
Davieysoren: make it "better"14:07
sorenDaviey: Try harder.14:08
Davieysoren: We are a team, right?14:08
sorenDaviey: Yes?14:08
Davieysoren: Improving collaboration.. is what this is trying to achieve14:08
Davieysoren: I think waiting 43 mins, and getting frustrated is perhaps unfair on the rest of us.14:09
Davieysoren: Equally, you found a few things you weren't happy with on zul's branch... This is what it's all about...  we shouldn't be backing out changes, due to disagreements... it should surely be solved in the merge proposal?14:10
sorenLook, whatever. I just thought it'd be better for everyone if we all used the same packaging. *You* insisted on reviewing even the most miniscule of detils.14:10
sorendetails.14:10
Davieysoren: I can see you are frustrated, and that is not what i want at all.14:10
Davieysoren: Do minute changes need reviewing on the upstream branches?14:10
sorenThey do.14:11
hggdhDaviey: called?14:11
Davieysoren: what is the difference then?14:11
Davieyhggdh: hold fire14:11
sorenDaviey: Openstack has an implicit promise that we keep trunk clean, functional and good.14:11
Davieysoren: I'm not trying to dictate a process... i really want your input, if you have suggestions.14:12
sorenDaviey: a) Ubuntu has no such promise.14:12
Davieysoren: The server team want to try and add that :)14:12
sorenDaviey: b) This is not going to turn into a package in Ubuntu until someone rolls a package out of it.14:12
ScottKDaviey: The platform is not releasable at all times, so at least on the surface that sounds like overreaching.14:13
sorenDaviey: We expect people to be able to take any tarball of Nova and run it.14:13
sorenDaviey: I don't for a second expect people to grab half-baked Ubuntu versions of packages.14:13
Davieysoren: What is the main concern you have?14:13
zuldudes....relax14:14
sorenDaviey: That I have a job I need to do.14:14
Davieysoren: Well, we want to help with that... not getting in the way.14:14
sorenDaviey: ...and now I need to block on stuff for no good reason. A big change to the packaging would be a good reason. Adding a build-dependency is not a good reason.14:14
sorenI'm not even *adding* a build-dependency.14:15
sorenI'm documenting it.14:15
Davieysoren: If this package ever gets in main, then as you know... we need to justify each depends that isn't already in main.14:15
sorenYou were doing such a good job at keeping this constructive....14:16
uvirtbotNew bug: #677476 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5.5 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/67747614:16
Davieysoren: ugh?  Sorry, i really am trying.14:16
sorenDaviey: If upstream adds a dependency (we did), not documenting in debian/control does not "fix" that.14:17
ScottKIt sounds to me like the review point should be before upload, not at each committ to a packaging branch.14:17
sorenDaviey: If you have a problem with the dependency, take it up with upstream. We're just trying to package stuff here.14:17
DavieyScottK: Hmm... the trouble with that is bulk...  per-commit review is easy to manage... would you enjoy doing a 1000 line diff?14:17
sorenDaviey: How's this:14:18
ScottKDaviey: No, but I'd be frustrated if I was stuck waiting on reviews for a one liner.14:18
sorenWe all subscribe to changes to the packaging branch, and get to shout and scream if someone does something stupid.14:18
Davieysoren: I agree... but this is the Ubuntu package.... with UEC last cycle, we had to patch out some stuff as we didn't have the depends that upstream needed...14:18
=== thomas_s is now known as thomas_s_
DavieySo, whilst we ALWAYS want to... sometime we can't always provide the deps upstream needs.14:19
sorensubversion worked that way for years and years.14:19
ScottKDaviey: That's a problem you solve when you have it, not in advance for all possible packages.14:19
DavieyScottK: Within 2 mins of soren asking for the review, it was done and pushed :/14:19
zulsoren: i think Daviey's point is that he was just asking why it was needed.14:19
sorenzul: I realise.14:19
ScottKDaviey: Certainly, but the review really doesn't add value in this case.14:19
DavieyScottK: This isn't all packages.14:19
=== thomas_s_ is now known as thomas_s
DavieyScottK: I disagree.14:20
zuland a review was probably not needed in this case14:20
ScottKDaviey: The issue isn't the 2 minutes, it's the 45 minutes and the cost of multiple context swtiches.14:20
ScottKThat sort of thing really screws with developer workflow.14:20
sorenDaviey: So what would you have expected? A build log from a failed build? Output of "grep -r import.webob ."?14:21
DavieyScottK: Hmm..  I don't think anyone complained of context shifting here. :/14:21
sorenDaviey: Part of being a team (as you pointed out we were) is trusting each other just a tiny bit.14:21
ScottKDaviey: It sounds to me like soren isn't finding the process helpful.14:21
Davieysoren: I was confused why it wasn't a needed dep, but now is... When you said it's new upstream, then it solved that concern for me.14:21
DavieyScottK: And the reason we are talking is to try and improve it.14:22
Davieysoren: Oh... i don't want you thinking at all, that it's a lack of trust - it's really, really, not.14:22
mattiWhat are you talking about folks?14:23
* matti is trying to make a heads and tails out of the conversation ..14:23
Davieymatti: Merge code review, vs just push and maybe ask questions later.14:23
mattiAh.14:23
zulsoren Daviey: in this case it probbaly should be like done on irc saying soren: im adding a build dependency because of so so daviey: ok....there done14:23
mattiDaviey: Thanks :)14:23
Davieysoren: If I make it so merge proposals go to my inbox, and try that nifty widget - that would probably increase the speed i see it... would that help?14:24
Daviey(currently Launchpad mail goes into a subfolder)14:25
Davieysoren: I think i would benefit from knowing your ramifications of a merge proposal taking an ~hour.14:26
sorenDaviey: I'm just really, really disappointed that we can't just assume that if I add a build-dependency, it's because it's needed to build the thing.14:26
Davieysoren: Hmm.. would it help if we schedule a call?  Sometimes it's easier to thrash this stuff out verbally.14:27
sorenDaviey: We talked about this face-to-face in Orlando. I raised these concerns then.14:27
Davieysoren: I really must insist, it's not a lack of trust or confidence thing14:28
ScottKDaviey: To sort of quote Jono, this doesn't sound like a very JFDI kind of process.14:29
Davieysoren: It might be valid to note zul's merge proposal from yesterday... He didn't document why he added a dep, and you called him on it?    Whilst i'm in no mind that you know the code better, is this a similar situation?14:29
DavieyScottK: I don't think you are helping tbh.14:30
sorenDaviey: I *know* zul did not add a dependency on greenthreads upstream.14:30
sorenDaviey: So why it needs adding in the packaging isn't clear to me. At all.14:30
sorenScottK: I do.14:30
sorenfwiw14:30
smoserkirkland, ping14:31
smoserDaviey, ping14:31
ScottKThanks.14:31
smoseri'd like to put ubuntu packaging branch for euca2ools somewhere. right now i think that kirkland has that at ~core-dev, which is useless for daviey and i14:31
zulsmoser: are you a member of ubuntu-virt?14:32
Davieysmoser: put it in ~ubuntu-virt... that is what we did with euca... and is a good location IMO.14:32
smoseryes.14:32
smoserthats what i was thinking14:32
smoserok. i'm putting it htere.14:32
Davieysoren: I think we can formulate a process that can work...  lets have the weekend to ponder about it?14:33
sorenDaviey: Are you going to do it?14:34
Davieysoren: wassat?14:34
sorenDaviey: Formulate a process that can work.14:34
Davieysoren: No, i mean - lets have the weekend to think about it... and kick off a discussion on Monday?14:35
sorenDaviey: Formulating from scratch by committee is virtually impossible. Someone usually writes a draft to get started.14:35
Davieysoren: Ok, if you are happy for me to do that... i will.14:35
zulthats reasonable14:35
sorenDaviey: Hey, you can draft all you want. Doesn't mean I'll agree :)14:36
zulthats not :)14:36
uvirtbotNew bug: #677485 in tomcat6 (main) "Tomcat 6 installation failure due to sed" [Undecided,New] https://launchpad.net/bugs/67748514:36
Davieysoren: Well yes... you can do that... but it would be ideal if we can have a plan we all agree on :)14:37
sorenDaviey: That's what I'm saying. We can't actually write (as in sit down and type) the thing together.14:38
sorenDaviey: So someone must write a draft first, and have it discussed/mangled afterwards.14:38
sorenDaviey: And I'm happy for to draft it.14:41
sorenDaviey: Err... Happy for *you* to draft it.14:41
Davieysoren: Ok, i'm happy to do that14:42
sorenDaviey: ..then we will discuss that, adjust to make everyone happy (or at least equally miserable) and agree.14:42
Davieysoren: So i can better understand the issue can you send me a quick email with your main concerns, and also hilight which circumstances it blocks you as an upstream.14:43
DavieyThat'll make it easier to come to a resolution i feel14:43
sorenwhereto?14:43
Davieydave@ubuntu.com14:43
sorenok14:44
Davieysoren: It would also be useful to know what your end goal requirements are.14:44
Davieysoren: I appreciate it can also be a challenge being an upstream and a ubuntu developer at times :(14:45
sorenTo be honest... It used to be quite easy.14:47
zulsoren: i just replied to your merge review from yesterday14:49
* ttx just read backlog. Happy to contribute to the discussion when we'll have a good starting point14:56
ttxfwiw euca packaging was successful by having open branches and whoever released it was supposed to review changes (default to trusted rather than untrusted)14:57
ttxWe had way more of small incremental packaging improvements from everyone that way.14:58
ttxI think new Ubuntu releases should use peer reviewing, not necessarily each commit to a packaging branch.14:58
ttxDaviey, soren ^14:58
ballsoren!15:03
Davieyttx: yeah... the concern I have is a huge diff at the end before upload... although, regular uploads absolves this15:04
ttxDaviey: if it's a packaging branch, you just have to review packaging changes, right15:04
Davieyttx: true15:05
Davieyttx: I'm going afk, but i'll keep that in mind and send it on Monday to devel-discuss15:05
ttxso unless you review the packaging completely, that should be manageable15:05
ttxs/review/change/15:05
ttxDaviey: ack15:06
Davieyack... i really need to dash.. but thanks15:06
smosermdeslaur, did you get a response from me on the ssh thread ?15:07
sorenball: eh?15:07
ballsoren: Sorry.  I just haven't seen you for some time.15:07
sorenball: Sorry, having trouble mapping "ball" to an actual name.15:08
ballsoren: ball is my actual name ;-)15:08
mdeslaursmoser: yeah, from your gmail account?15:09
sorenball: Ah. irssi says your name is "Lay off the cookies" :)15:09
ballOh, that's so appropriate for me this morning. :-915:09
mdeslaursmoser: that's pretty much how I thought it worked, thanks for the clarification15:10
smoserugh.15:10
smoserfudge15:10
eagles0513875ikonia: there is something that squirrelmail doesnt like is if i change the permissions to rwx for the group O_o15:10
smoseri hate iphone15:10
smoser:)15:10
ikoniaeagles0513875: permissions where ?15:10
eagles0513875Maildir directory15:10
eagles0513875Nov 19 16:00:25 eagle dovecot: IMAP(jonathan): mkdir(/home/jonathan/Maildir/.INBOX.Sent/cur) failed: Permission denied (euid=1000(jonathan) egid=1000(jonathan) missing +w perm: /home/jonathan)15:11
eagles0513875just tried to login right now ikonia15:11
smosermdeslaur, so you would not suggest that we need to turn off password auth then, right ?15:11
ikoniaeagles0513875: what user id is squriell mail being launched under (unix level id - not application user)15:12
mdeslaursmoser: I still recommend we do it...it's just not critical or urgent15:12
ikonia(clearly with the correct spelling rather than the utter tosh I've just typed)15:12
mdeslaursmoser: do amazon firewall instances between each other? I'm curious now :)15:13
smoseryour instances can talk to your intsances via internal ips15:14
smoser(possibly un-firewalled, but i'm not usre)15:14
eagles0513875ikonia: would squirrelmail have a uid if its just runs of apache15:15
mdeslaursmoser: can an instance talk to another customer's instance, either using the private ips or using the public ips without going through a firewall?15:15
mdeslaursmoser: my questioning is unrelated to ssh :)15:15
smoseroh, then i can be more open :)15:16
smoserinstances can talk on internal IPs15:16
smoserso, my ugess, swithout reading, is that firewall applies to internal and external identically15:16
smoseri've just not played much with the internal IPs.15:17
smoserit would make sense though, especially given a little trick amazon plays to its customers favor15:17
ikoniaeagles0513875: it's being run as apache then15:17
smoserif you lookup a ec2 ip address from internal to ec2, you'll get an internal IP back.15:17
eagles0513875ikonia: it be haves fine with the permissions drwx and thats it15:18
smoserso that hostname based communication uses internal IP addresses, which gets you reduced rates15:18
eagles0513875any other permissions given to the Maildir give problems15:18
eagles0513875not only in squirrelmail with thunderbird15:18
ikoniaeagles0513875: ok - so think it through15:18
eagles0513875i reverted the permissions to the way they were before15:18
ikoniaeagles0513875: first of all, squrill mail does not actually read the Maildir filesystem15:18
mdeslaursmoser: I wonder if they isolate customers between each other or if the firewalling is done at the main box that does the NAT15:18
ikoniaeagles0513875: it makes an imap connect to the imap server and generates html based on that15:18
eagles0513875ok15:19
ikoniaeagles0513875: so if you re-read that error message you'll find it's dovecot that's complaining - not squirellmail15:19
mdeslaursmoser: anyway...it's something to put on my free-time to-do list :P15:19
ikoniaeagles0513875, so lets walk it through again15:19
ikoniaeagles0513875: what user is owning the dovecot process that squirellmail connects as ?15:19
smosermdeslaur, what do you mean by isolate ?15:20
mdeslaursmoser: can customer A port scan customer B via the private network15:20
smosermdeslaur, probably15:20
smoseroh15:21
smoserwait15:21
ikoniasmoser: thats a concern15:21
smoserprobably not15:21
ikoniathat's less a concern ;)15:21
eagles0513875ikonia: the parent process is root all child process are mostly dovecot with 3 imap processes being jonathan15:21
smosermdeslaur, i think not. you can check, but i'm almost certain its no. otherwise, the firewall would be too easily avoided.15:21
smoserand thus really, useless.15:22
ikoniaeagles0513875: ok - so from that, what does that tell you15:22
mdeslaursmoser: well, it limits connections from non-customers15:22
mdeslaursmoser: malicious customers are easy to punish, malicious internet, not so much :)15:22
smosermdeslaur, that works if your customer base is small15:23
mdeslaurtrue15:23
smoseryes, internet much larger than intranet15:23
smoserbut for amazon, intranet == very large15:23
mdeslauralso true15:23
eagles0513875ikonia: since the parent process is root just drwx are only needed on the Maildir not for the group as well15:24
ikoniaeagles0513875: no15:24
ikoniaeagles0513875: it means there are two different users connecting after the auth, the first one (jonathan) is probably you, the second is probably squirellmail (doevcot)15:24
ikoniaeagles0513875: do you agree/disagree with that ?15:24
eagles0513875correct15:25
eagles0513875so i probably need to tweak saslauthd15:25
ikoniaeagles0513875: ok - so if your connect (jonathan) works it's because you are the owner and has permissions, but if what permissions would you see if you where connecting as the USER dovecot15:25
eagles0513875or modify dovecot to allow the same account to access the server more then once?15:25
ikoniamany users can access the same account, it's imap15:26
ikoniaeagles0513875: look at the error - it's file system permissions, keep it simple15:26
eagles0513875its complaining about +w on /home/jonathan/Maildir15:26
eagles0513875which it has15:26
ikoniathe user jonathan can access your maildir becuse it's the owner, what would happen if the user dovecot tries to access it15:26
sorenDaviey: Sent.15:27
eagles0513875it wont be able to as the group permissions arent set15:27
ikoniaeagles0513875: there we go15:27
ikoniaeagles0513875: and what is the error complaining of ?15:27
eagles0513875ikonia: Nov 19 16:00:25 eagle dovecot: IMAP(jonathan): mkdir(/home/jonathan/Maildir/.INBOX.Sent/cur) failed: Permission denied (euid=1000(jonathan) egid=1000(jonathan) missing +w perm: /home/jonathan)15:27
ikoniaeagles0513875: ok "permission" denied15:28
eagles0513875drwx------  7 jonathan jonathan 4096 2010-11-12 11:08 jonathan <-- thats my home folder permissions15:28
ikoniaeagles0513875: so again - walk it through, the connection is coming from the user "dovecot" does that user have access, no, what is the error "permission denied" what does that tell you ?15:28
eagles0513875that i probably need sudo to access the folder15:29
ikoniaNO!15:30
eagles0513875that the groups are missing rwx permissions15:30
ikoniaeagles0513875: the user dovecot - can that access that folder, no, the error is permission deneid, what do you need to do to resolve that15:31
eagles0513875make the Maildir have the user dovecot15:31
ikoniaNO !15:32
ikoniathen your user can't access it15:32
ikonialook at "group"15:32
eagles0513875give the group dovecot rwx access15:32
ikoniaeagles0513875: is the user dovecot a member of the group dovecot ?15:33
eagles0513875your asking if jonathan in my case is a member of the dovecot group15:34
ikoniano15:34
ikoniaI'm not15:34
ikoniaI'm asking in clear english - is the USER dovecot a member of the GROUP dovecot15:35
eagles0513875and yes it is15:36
eagles0513875i think i got it O_o15:36
eagles0513875no i dont i thought i was on to something15:37
ikoniaeagles0513875: then you can change the group permissions with confidence15:37
eagles0513875ikonia: would adding the users jonathan to the group dovecot work as well?15:37
ikoniaeagles0513875: if you change the group ownership to dovecot and give it group read/write access, then the user jontahan (you) will have full control, and the webmail cilent (dovecot) will have read-write access15:37
ikoniaeagles0513875: there is nothing wrong with the user jonathan15:37
ikoniawhy are you even looking at that15:37
ikoniathink about what I'm saying15:37
ikoniathe problem is the dovecot user - not jonathan15:38
* eagles0513875 re reads again15:38
eagles0513875ok15:38
qman__chgrp dovecot /home/jonathan/Maildir; chmod g+rwX /home/jonathan/Maildir15:39
eagles0513875qman__: i think i got it solved15:40
eagles0513875thanks ikonia15:45
b0gatyrgreetings16:01
ikoniaeagles0513875: are you sorted now ?16:09
eagles0513875si senor (yes sir)16:10
ikoniaexcellent16:17
ikoniawell done16:17
kirklandmathiaz: ping16:18
mathiazkirkland: o/16:18
kirklandmathiaz: can you mumble or phone?16:18
mathiazkirkland: sure16:18
kirklandmathiaz: what's your preference?16:18
zulsoren: done16:32
kirklandmathiaz: ?16:34
kirklandmathiaz: we lost you on mumble16:35
=== mathiaz_ is now known as mathiaz
uvirtbotNew bug: #677535 in dhcp3 (universe) "package dhcp3-server (not installed) failed to install/upgrade: cannot access archive: No such file or directory" [Undecided,New] https://launchpad.net/bugs/67753516:52
twbGRAAH17:13
twblxc 0.7's lxc-ubuntu template generates a rootfs that works17:13
twbI modify it slightly, and mine doesn't work17:13
nigelbzul: hi, just wanted your take on the patch in bug 38283217:27
uvirtbotLaunchpad bug 382832 in libnss-ldap "Need comment for line added to /etc/ldap.conf by nssldap-update-ignoreusers(8)" [Wishlist,Triaged] https://launchpad.net/bugs/38283217:27
nigelbyou had +1'd it a while back17:27
zulnigelb: yeah I havent had a chance to get to it yet17:28
bluethundrwe have our sudoers stored in LDAP on our network17:28
nigelbzul: Can I help in anyway?17:28
bluethundrunder centOS this works by setting up /etc/ldap.conf to talk to the ldap server and setting up files ldap in nsswitch.conf17:29
nigelbforward it upstream, debdiff it.. anything I can do?17:29
zulnigelb: sure a debdiff would be nice :)17:29
nigelbzul: awesome! on it!17:29
bluethundrI have the same settings in ubuntu 9.10 but for some reason sudo does not work here as it does under CentOS17:29
bluethundrI thought for a moment that LDAP resolution under Ubuntu may look to /etc/ldap/ldap.conf on the client side, but putting sudoers_base in there doesn't seem to do the trick either17:30
nigelbzul: there is also bug 644632 with a patch.  Can you take a quick look so I can package it together?17:31
uvirtbotLaunchpad bug 644632 in libnss-ldap "nssldap-update-ignoreusers needs to be configurable to ignore users" [Low,New] https://launchpad.net/bugs/64463217:31
bluethundralso getent passwd and getent group talks to ldap just fine on the ubuntu box17:32
zulnigelb: im ok with it17:32
nigelbzul: cool, I'll put boht of them onto one debdiff17:33
eagles0513875ikonia: sry to bother ya again but what exactly is this telling me Nov 19 16:45:50 eagle dovecot: IMAP(jonathan): fchown(/home/jonathan/Maildir/dovecot-uidlist.tmp, -1, 114(dovecot)) failed: Operation not permitted (egid=1000(jonathan), group based on /home/jonathan/Maildir17:44
=== jean-paul_ is now known as www2
patdk-wkeagles0513875, I thought we went over that a few days ago, your using encrypted home dirs17:49
eagles0513875patdk-wk: ikonia helped me today and all permissions issues are resolved now17:49
patdk-wkah17:49
patdk-wkyou turned off encrypted home dirs?17:49
eagles0513875no17:49
eagles0513875still encrypted17:49
ikoniaeagles0513875: it doesn't work with encypted file systems17:56
eagles0513875ahh i was thinking permission issue possibly again on that particular file in the directory17:56
ikoniaeagles0513875: there are a few notes on the web that say it doesn't like encypted file systems, they may be wrong but a few people appear to be having issues with it, so I'd at least have %50 confidence that it doesn't like encypted file systems17:57
eagles0513875ya im regretting encrypting my home dir17:58
patdk-wkthe solution is pretty simple though17:58
patdk-wkdon't store your email in your home dir17:58
patdk-wkor unencrypt17:58
ikoniathe permissions issues appear to be fixed, but from what I'm reading this is beyond that17:58
eagles0513875ikonia: thing is it seems to work i can send and recieve emails just fine17:58
ikoniaeagles0513875: that's not dovecot17:59
ikoniadovecot doesn't send mail17:59
patdk-wkdovecot doesn't even receive, unless you use it's lda17:59
qman__operation not permitted generally means something being made impossible18:06
qman__apparmor/selinux, encrypted file systems, that sort of thing18:06
surajramHello! I am going to try out Ubuntu Private Cloud, and was wondering if the cloud controller can also act as a node controller.18:19
uvirtbotNew bug: #638145 in eucalyptus "metadata service returns 500 error on Lucid" [Undecided,New] https://launchpad.net/bugs/63814518:24
ScottKmdeslaur: I'm thinking the "here's what you do to SSH" stuff should be in the server guide too if it's not.18:26
mdeslaurScottK: it's liked in the server guide18:27
ScottKOK.18:27
mdeslaurs/liked/linked/18:27
=== ihCiFriS is now known as SirFiChi
talntidI can't get pptpd VPN to work. It used to work just fine, but then stopped. I am not getting errors in logs, but it doesn't connect.. any suggestions for troubleshooting?19:39
talntidon the client, it says: anon warn[open_inetsock:pptp_callmgr.c:326]: connect: Connection refused19:40
talntid| anon fatal[callmgr_main:pptp_callmgr.c:124]: Could not open control connection to SERVERIP19:40
c0nv1ct"Connection refused" implies the port is closed, can you netcat to it?19:41
talntidI have never uses netcat19:42
talntidused19:42
c0nv1ctjust try a simple connection: nc ipaddress port19:42
talntidinstalling19:42
c0nv1ctif it is refused then either it is filtered or nothing is listening19:43
talntidconn refused.19:43
c0nv1ctor it is the wrong port :)19:43
talntidlsof -i :1723 shows nothing... hmm19:44
amokpauleHello, can i dissable the login for a certain user but this user should still be able to work in the system. Same as it can be set for the root acc?20:15
remix_tjamokpaule: passwd -l user20:35
remix_tjthis command sets his password as expired and the user can not login20:35
remix_tjbut can be used as user20:36
amokpauleMany thanks :)20:43
=== Sky[xxx] is now known as Sky[x]
zulSpamapS: ping21:33
zulSpamapS: ill be adding your plymouth apache passphrase thingy tonight21:35
=== SirFiChi is now known as ihCiFriS
snake_Is there a diagnostic for checking why an apache server does not work.23:03
Picisnake_: Define 'does not work;23:05
Pici!doesntwork23:05
ubottuDoesn't work is a strong statement. Does it sit on the couch all day? Does it want more money? Is it on IRC all the time? Please be specific! Examples of what doesn't work tend to help too.23:05
SpamapSzul: cool! I think it needs a little polish.. haven't looked at it since rc23:08
zulSpamapS: we might remove it later on if plymouth gets fixed properly23:08
SpamapSzul: plymouth does the right thing I think23:08
* SpamapS is finding it hard to concentrate, as the starbucks he has selected to finish his afternoon in has become overrun with shrill high school gossip girls..gggaaahhhh23:10
snake_Pici, oh sorry. i have help somewhere else now. (but they asked the same thing lol)23:12
SpamapSomg but then like I just and like my besfriendislike omg fmliwilljusttextyouandlikeletsgo to denver23:12
SpamapS=-o23:12
Picisnake_: Yeah, I saw. ;)23:14
=== jeiworth_ is now known as jeiworth
snake_where do i change the settings of my port number and ip address for apache2?23:36
=== Eric is now known as Guest84402
SpamapSsnake_: /etc/apache2 , there are a few ways to do it depending on what you want. You want the Listen directive most likely23:40

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!