/srv/irclogs.ubuntu.com/2010/11/23/#ubuntu-server.txt

uvirtbotNew bug: #680301 in eucalyptus "DNS Search Domain in instance /etc/resov.conf should be set by DHCP" [Undecided,New] https://launchpad.net/bugs/68030100:17
ScottKnigelb: With lots of pain.00:31
nigelbScottK: that seems to be the general opinion :(00:32
nigelbI tried letting the debian/rules run, but that didn't really untar it.00:33
LowValueTargetmy apt is screwed00:38
DSpairOh, BTW...00:38
DSpairGot my server fixed.00:38
DSpairThe Ubuntu 10.04.1 "rescue broken system" options let me do everything I needed. Thanks Ubuntu!!!00:39
DSpairSteps I had to take::00:39
DSpair1. Had to resize my LVM to make room for a raw partition to hold the /boot volume.00:39
DSpair2. Had to format that partition and restore the contents of /boot00:40
DSpair3. Booted from the rescue option on the server install disc.00:40
DSpair4. Opened a shell on the root FS of the machine.00:40
DSpair5. Mounted all filesystems00:40
DSpair6. Performed an aptitude dist-upgrade (which failed because of the chroot environment).00:40
DSpair7. cd'd to /var/cache/apt/archives and performed a 'dpkg -i --force-all *.deb'00:41
DSpair8. Rebooted.00:41
DSpair9. Logged in and obtained root00:41
DSpair10. Performed another dist-upgrade.00:41
DSpair11. Danced a little jig!00:41
databitsI'm having some issues, with some virtual server's with apache.  Everything was working perfectly, before I left town.  Now when I bring up the url in a browser, it is listening the root web directory for the server.02:05
databitsDoes anyone know what might be causing this issue ?02:05
databitsfigured it out.02:17
=== Squirrely|BNC| is now known as Squirrely
WALoeIIIhow/why does a package have a name like 2:02:30
WALoeIIIlike redis-server02:30
WALoeIII2:1.2.002:30
twbWALoeIII: that is the "epoch number".02:35
twbWALoeIII: it is used when upstream's version number decreases, because Debian versions MUST increase monotonically.02:35
twbWALoeIII: for most purposes you can ignore the epoch number.02:35
WALoeIIIugh02:36
fuhojoin02:37
fuhoHi02:37
fuhoIs this the right place to have a question about how to install VNC server on my VPS running Ubuntu Server 10.04?02:38
ScottKnigelb: What's the patch system for the package?  If you've got a patch, you can just add it to the patch system without untarring the interior tarball.  Just check other patches to make sure you've got the right path in the patch..02:38
twbfuho: yes; install vncserver4 or so02:39
fuhotwb: dO i have to install Gnome or something like that?02:39
twbfuho: only if you want to run gnome inside your VNC session02:39
fuhotwb: I thought VNC is always graphical, and for terminal we have Putty.02:40
twbVNC *is* graphical, but you could run, say, xlogo or xterm in it instead of GNOME.02:40
fuhotwb: Tried installing the whole ubuntu-desktop metapackage, took over 4 hours and then when installing VNC it didnt created ".vnc" folder, so i reformatted the whole box, so now i have clean installation again, dont want to do the same mistake again :(02:41
twbThe linuxvnc package, for example, appears to export the text console over VNC.02:41
twbfuho: I don't know what a ".vnc folder" is.02:41
twbfuho: why can't you just use the command line over SSH (putty) ?02:42
fuhotwb: It was part of the server, i think it didnt create the directory because i didnt run the vnc....i will show you the link, just a moment. But anyways I would like to avoid installing the whiole ubuntu-desktop again, is there a way to get graphical UI with less resources?02:43
twbfuho: why do you want a graphical UI?02:43
fuhotwb: I could, its just that i kinda want to have the option too, I never had VPS before and since i think its possible I would like to figure it out02:44
fuhotwb: And to be honest i think it could make things a little bit faster sometimes02:44
twbWe will have to disagree on that point.02:44
fuhotwb: I for exmple dont know how to use vim at all.02:45
fuhotwb: faster for me as a noob, with very basic if any knowledge of terminal02:45
twbIt is much faster in the long term to invest a little time know learning the CLI02:45
twbIf you insist, I can help you install a GUI, but we discourage it.02:46
fuhotwb: Thanks. I should probably know why  do you discourage it. isn't it just another option? And in my eyes options are always better than no options.02:48
Datzfuho: there are other options to vim02:49
twbWe discourage it because, like I said, learning the CLI will make you more efficient and powerful in the long run.02:49
fuhotwb: Also, I plan to learn CLI (if that means using terminal), really, I just think it would be great t have the UI too02:49
fuhodatz: I believe there are, I think one is called VI,I just found it difficuilt to use. I am sure in the long run it is better solution, but as a long time Windows user it is very diffiuilt to give away everything I am use to.02:52
shaunogui can be useful, just not so much on a vps, where you tend to be paying for a fairly small slice of ram02:52
twbfuho: vim is an implementation of vi.02:53
Datzfuho: I personally use emacs, but there are perhaps better options for you02:53
twbfuho: you might try "nano", which is more like NOTEPAD.EXE02:53
twbfuho: it's very limited, but easier for beginners02:54
fuhotwb: I found the tutorial i was following before: http://nuclear-imaging.info/site_content/2010/04/19/vnc-server-setup-for-ubuntu-10-04-lucid-lynx/02:54
twbLike Datz, I use Emacs.  Not just for editing files, but also for email and IRC and web browsing and a bunch of other things :-P02:54
Datzfuho: shauno has a good point.02:54
* Datz remembers now that there is an emacs irc client :po02:55
fuhodatz: I trust you guys I just want to try it02:55
twbDatz: emacs *ships* with two IRC clients, but there are at least three more you can install separately :-)02:55
Datzhumm02:56
fuhoI have 2GB RAM on the server, hope that will be enough02:56
Datzfuho: that is plenty for a GUI02:56
shaunothat's not half bad for a vps.  I get 360Mb on mine :)02:56
Datztwb: I installed emacs-nox11 does that ship with IRC too?02:56
twbDatz: yes, M-x irc (rcirc) and M-x erc (ERC).02:57
shaunoemacs ships with everything but a kernel.  I believe they're working on that tho02:57
fuhotwb:So first I did this : "apt-get install x-window-system-core xserver-xorg gnome-desktop-environment" to install the ubuntu-desktop, i dont think i need the whole DESKTOP package though02:57
twbfuho: how much *do* you need?02:57
Datztwb: humm, have to try it sometime. right now I use irssi02:57
twbDatz: stop by #emacs sometime if you want to talk about it02:58
Datztwb: sure, thanks02:58
fuhooh by the way this is not ad, can i recommend VPS here? its really cheap02:58
twbfuho: I don't care either way; I suppose if you get too annoying an op will yell at you.02:59
fuhotwb: I would like to be able to use synaptics and edit files in some normal text editor with ui02:59
twbfuho: your local machine is Windows?02:59
fuhojust so you know,cause i think i got a pretty good deal on this its 160GB HDD, 1GB RAM (2GB peak) 600GB bandwith for $13.5/ month03:00
twbIf your local machine was unix, you could "ssh -X example.net synaptics" to just run the synaptics GUI, without needing VNC or gnome.03:00
twbYou can do it on Windows, too, if you can work out how to run an X server on the Windows machine.03:00
fuhotwb: Yes, right now it is, my T23 died, I used to have ubuntu on it, but now I only have W7 desktop box.03:01
fuhotwb: I was really hoping to be able toaccess it from anywhere, therefore some sort of java environmebt03:02
twbI dunno about that, sorry.03:02
fuhotwb: I dont need that, I just thought it would be cool if possible. So lets just stick with windows and RealVNC client.03:03
twbFWIW I would recommend you learn aptitude's TUI instead of synaptic03:03
Datzyea, vnc is slow and consumes too much bandwidth03:05
fuhotwb: What is the advantage of Aptitude to synaptic?03:05
twbfuho: it runs in putty03:05
fuhotwb: Synaptic doesnt?03:06
twbAn ssh CLI connection uses much less bandwidth than a GUI, regardless of whether it's VNC, RDP or X11.03:06
fuhotwb: I thought that when i do apt-get install something                it is synaptic03:06
twbfuho: no, that's apt-get.03:06
twbfuho: synaptic is a GTK2 GUI wrapper around apt.03:07
twbAptitude is a different wrapper, and it has a GUI, a TUI and a CLI03:07
* Datz did not know about aptitudes GUI03:07
twbDatz: it's relatively new; it wasn't around in 8.0403:08
twbDatz: personally, I've never run it :-)03:08
Datzah03:08
Datzhaha, I see03:08
Eric_ubuntu server is bad!03:08
twbaptitude-gtk - terminal-based package manager (GUI and terminal interfaces)03:08
fuhotwb: CLI connection is just pure text putty?03:08
=== Eric_ is now known as talntid
twbfuho: yeah03:08
Datztalntid: yea, bad to the bone03:08
twbCLI = command-line interface03:08
talntid=D03:08
Datz;)03:09
twbtalntid: did you want help with something, or are you just venting?03:09
fuhotwb: Oh :) thanks03:09
talntidi'd love help, but it's above the level of expertise of most of the people in here... so I don't ask.. I'm not here to vent.. just watching :)03:10
fuhotwb: So which one would you suggest X11 (which i think is the one that can do Java magic) or VNC or RDP (i didnt even know you can d that on linux, i thought thats purely windows)03:10
twbThere isn't an RDP *server* for Linux.03:10
fuhotwb: so X1 or VNc? Advantages?03:11
twbWell, technically there's an RFB (VNC) to RDP bridge, but using it defeats the purpose of using RDP -- namely, that it operates on a higher level than raster damage rectangles.03:11
twbfuho: X11 (or NX, I suppose) is what you should use for Linux <--> Linux.  VNC is the "lowest common denominator", it works everywhere but it's crap.03:12
twbNX is a recent X11 protocol compressor, I haven't used it much myself, but it seems to make X11 much more bandwidth-efficient.03:12
fuhotwb: Oh, well unfortunately most of the owlr has Windows so I will go with VNC for now, then when i get a new laptop with linux i will install X11 too03:13
fuhotwb: BNut can you help me install it ?03:13
twbSure.03:14
twbYou will need to install vnc4server plus whatever app/desktop you want to run.03:14
fuhotwb: Only if there is no way to install X11 client on windows machine03:14
twbfuho: there are X servers for Windows, but I don't know if any are any good.  xming is a recent port of Xorg to w32.03:15
twb(X calls the client side the "server" and the GUI apps the "clients".  Don't worry about why.)03:15
fuhotwb: Just found Xming, reding wiki, not sure if this is the wy to go yet.03:16
fuhotwb: It definitely looks usable and they are still working on it, last release is fron november, screnshots look fine and if you say its less resource hungry i would go that way03:18
fuhotwb: So X11 it is, now how do we start?03:19
twbfuho: I think you will get VNC up easier than xming03:19
fuhotwb: Do you think you can help me with X11?03:19
twbfuho: for X11, on the Ubuntu side you just need to ensure that xauth and the app (e.g. synaptic) are installed.03:19
fuhotwb: OMG you were right, it looks like x11 is for connecting to applications not whole desktops,03:25
twbfuho: X11 is for everything.03:26
fuhotwb: i just jum from one to the other :(03:26
twbfuho: when you run an app on your unix desktop, it's talking X11 on the local machine.03:26
shaunovnc's probably a much better idea if you're doing this over the internet.  the only thing X has ever done well, is survive where it shouldn't have03:27
fuhotwb,shauno: Okay, I played with xming a bit, id much rather use VNC now, I am ueśed to it.03:28
fuhoSo now I have to pick what UI I want? Gnome or the the other one?03:28
Slugs_can you start a virtualized hardy session w/o a gui, only conosle?03:29
Slugs_using kvm03:29
fuhotwb: Also is it possible to not have the Gnome running all the time, to only swith iton when i need it (when I am connecting)?03:30
Slugs_skitter@vagabond:/ubuntu-kvm/ubuntu-kvm$ virsh start ubuntu error: Failed to start domain ubuntu error: monitor socket did not show up.: Connection refused03:30
fuhoshauno: Thanks, I barely even heard aof Xming today, and now when i installed it I dontthink i want to know more atleast for couple weeks :)03:31
shaunothey're nothing scary .. remote X is how it was designed from day one.  It's just not particularly efficient.03:32
Datzfuho: you sould be able to do something like "sudo service gdm start/stop"03:33
fuhodatz: letme first see what gdm does03:34
twbfuho: if you have ssh as well, sure.  Just manually start VNC by sshing in and running "xinit /usr/bin/gnome-session -- /usr/bin/Xvncserver" or something03:34
twbDatz: that assumes the gdm upstart job is configured to use Xvncserver is Xorg isn't installed -- I'm not sure if that's the case.03:35
Datztwb: ah, ok.03:35
twbshauno: X is actually quite efficient if you're using contemporary toolkits (i.e. xlib or xaw).03:35
twbshauno: it's just REALLY slow if you're using bloaty toolkits/apps that were only designed and tested on local connections, especially gtk/qt and firefox/oo.org03:36
Slugs_anybody have exp with virsh?03:36
fuhotwb: What should i install first?03:36
twbFor example, for me emacs21 worked quite happily over 256kbps lines, but oo.org 2.0 crawls on a 100mbps lan03:37
fuhoBTW what does logmein use, that seem very fast even on pretty slow connections?03:38
twbSlugs_: there's a dedicated channel for libvirt, but I can't remember its name.  #virt or #libvirt?03:38
Slugs_oh ty03:38
twbSlugs_: you can wait here, too.  Some people know about libvirt here03:38
StrangeCharmi just set up a new ubuntu install, but when i try to boot into the new system, my machine halts after 'verifying dmi pool data' what's going on? [i'm certain that i'm booting from the right disk]03:38
Slugs_yeah #ubuntu-virt redirected me here03:39
twbshauno: of course, NX makes it a lot faster, as should xcb :-)03:39
twbStrangeCharm: when booting, hold shift or alt to get into grub.  Edit the boot options and change "quiet splash" to "single".  That will boot with more information, so you can see what's happening03:40
fuhotwb, shauno: So is anuone wilingto point me in the right direction, or even push me to the finish?03:40
twbfuho: I'm better at specific questions03:40
fuhovanilla ubuntu serve with ssh I am connected to right now03:40
StrangeCharmtwb, i don't think that my bios is actually loading grub. at no point do i get the 'grub loading' line, just halt on/after verifying the dmi pool03:41
fuhotwb: Do I need to install vnc server first?03:41
twbfuho: you will need to install a VNC server (e.g. vnc4server) before you can do VNC03:41
twbStrangeCharm: then it's a hardware problem and you need to isolate the faulty component or take it back to your vendor and have them do so03:41
fuhotwb: So i dont need the UI manager (its probably not called UI manager, but I mean Gnome probably)03:42
twbfuho: you will need to install whatever GUI app or environment you want to run inside VNC03:42
twbfuho: to begin with, you could just use xterm or xlogo to test that the VNC part is working, and *then* install whatever app/DE you really want03:43
StrangeCharmtwb, i don't think it's a hardware problem. it booted just fine with the pervious os, and the only hardware change was connecting the usb drive with the install media03:43
twbStrangeCharm: if it isn't getting as far as grub, then surely the bios or hardware is at fault03:44
twbStrangeCharm: that or you haven't installed grub correctly, I guess.03:44
StrangeCharmtwb, i wasn't exactly involved when installing grub - the install disk did that all on its own. i'm concerned that the install disk did something odd, because i can boot from removable media, and could boot under the previous os03:45
twbStrangeCharm: I've had lots of problems with d-i installing grub onto the wrong disk (e.g. onto the USB key)03:46
StrangeCharmtwb, d-i? i used the partition editor on the install disk. surely it put grub at the start of the disk with /boot on it?03:47
twbStrangeCharm: d-i is the installer for Ubuntu Server03:47
StrangeCharmtwb, why is it called d-i?03:47
twbBecause it's the debian-installer program that Ubuntu, uh, borrowed from Debian03:48
twbcf. ubiquity03:48
fuhotwb: Just want to ask you before I press eneter "sudo apt-get install ubuntu-desktop" I am going to isntall this and then i will install the vnc server, is that correct?03:48
twbfuho: installing ubuntu-desktop is probably overkill03:49
fuhotwb: https://help.ubuntu.com/community/ServerGUI Looks like I only have two options, X11 or  this.03:50
twbfuho: what is "this"?03:51
fuhogwb: ubuntu-desktop03:51
twbfuho: ubuntu-desktop is a metapackage that pulls in EVERYTHING that a normal Ubuntu desktop has03:52
twbIt'll work, but do you really want to install e.g. rhythmbox?03:52
fuhotwb: nope i just want gnome, so i acan conenct to it using vnc03:52
twbfuho: try "gnome-core" or "gnome-desktop-environment"03:54
fuhotwb: gnome-desktop-environment03:55
twbgnome-core is the gnome desktop, but none of the apps.  If I were you, I'd install that and specific apps03:55
fuhotwb: ha, I jsut found it too!03:55
fuhotwb: ok I will do taht03:55
StrangeCharmtwb, so, the fix here is probably to reinstall grub on the right disk?03:57
fuhotwb: Ok, that is 650MB to install. After this finishes do I ahve to REstart the server? This is kinda generic question, do I have to restart the server every time i install something?03:57
twbfuho: no restart necessary04:01
twbStrangeCharm: *if* that's the problem04:01
twbStrangeCharm: your first step should be to diagnose the issue04:01
StrangeCharmtwb, what could i do to rule out issues?04:02
uvirtbotNew bug: #680358 in openldap (main) "ldapadd -w password parameter causes assertion failure" [Undecided,New] https://launchpad.net/bugs/68035804:02
twbStrangeCharm: boot something else and inspect the MBR and the partitions04:02
twbStrangeCharm: pull out the USB key and see if that helps04:02
twbStrangeCharm: check the BIOS boot order04:02
StrangeCharmtwb, options b & c already investigated. i have no idea what i'd be looking for on the mbr & boot partitions.04:03
twbStrangeCharm: file -s /dev/sda would be a start -- check that they're bootable MBRs04:04
StrangeCharmtwb, bootable mbrs? you mean uncorrupt?04:05
twbIt should say /dev/sda: x86 boot sector; ...04:05
twbIf it doesn't say "boot sector", it's not bootable04:05
StrangeCharmtwb, so, file -s will read the mbr of a disk, and tell me something meaningful about it?04:06
twbBasically, yes04:07
fuhotwb: Do you have any experience with x11vnc? http://www.karlrunge.com/x11vnc/04:09
twbfuho: x11vnc exports an existing X session.  It's not what you want.04:10
fuhotwb: oh ok, i will keep looking. people seem to run into lot of problems installing vn4server, so I ama a bit scared.04:11
WALoeIIIcan anyone proficient with debhelper/debuild help me diagnose an issue with dh_auto_install04:17
twbWALoeIII: I can, but -devel might be a better channel04:19
twbWALoeIII: or #debian-mentors on OFTC04:19
WALoeIIItwb: ok, https://gist.github.com/711240 - it seems when it does the make install it has a permissions issue?04:20
WALoeIIIseems totally weird to me, the 2.0.0rc2 stuff I'm basing this off of wokrs04:21
WALoeIIIworks*04:21
fuhotwb: Okay, so gnome-core is installed, now I plan to do this "sudo apt-get install vnc4server xinetd"04:21
twbI don't know why you'd want xinetd04:21
fuhotwb: Apparently its more secure and can keep better logs.04:22
twbfuho: keep better logs *than what*?04:22
twbfuho: why do you think you need *any* inetd implementation?04:22
twbWALoeIII: cp: cannot create regular file `/usr/bin/redis-server': Permission denied04:23
twbWALoeIII: upstream is ignoring $DESTDIR04:23
WALoeIIItwb: correct04:23
WALoeIIIuhrrm is that set by dh_something?04:23
twbWALoeIII: patch upstream's makefile, or override dh_auto_install with a custom invocation.04:23
fuhotwb: io have no clue, i dont even know what it is. Do you think vnc4server is enough?04:23
twbWALoeIII: upstream is in the wrong to ignore DESTDIR, but it might not be feasible to fix it04:23
WALoeIIItwb: I know where it is now04:24
WALoeIIImakefile04:24
twbWALoeIII: yep04:24
twbfuho: yes04:24
WALoeIIIINSTALL_TOP= /usr04:24
icekAnyone know any cvs server front ends?04:24
WALoeIIIok thanks, I can do that04:24
icekI want to be able to minitor like checkouts and committs and such04:24
twbWALoeIII: try override_dh_auto_install: \n\t dh_auto_install -- INSTALL_TOP=$(CURDIR)/debian/tmp/usr04:25
RoAkSoAxkirkland: ping?04:25
icek??04:26
fuhotwb: vnc4server is installed, from what i read online people tend to edit .vnc/xstarup file. I tried to connecto to the server using VNC Viewer with no luck, do you know whati s that file for?04:33
twbfuho: no.  I would try "xinit /usr/bin/xterm -- /usr/bin/Xvncserver"04:34
twbSorry, make that "xinit /usr/bin/xterm -- /usr/bin/Xvnc4"04:34
fuhoerror opening security policy file /etc/X11/xserver/SecurityPolicy Could not init font path element /usr/share/fonts/X11/Speedo/, removing from list! Could not init font path element /usr/share/fonts/X11/Type1/, removing from list! Could not init font path element /usr/share/fonts/X11/CID/, removing from list! Could not init font path element /usr/share/fonts/X11/75dpi/, removing from list! Could not init font path element /usr/sh04:36
twbThose aren't errors04:38
twbX is looking for fonts in obsolete places, it is OK that it can't find them04:38
fuhotwb: It still didn't connect04:38
twbpastebin the full transcript04:39
fuhotwb: http://pastebin.com/tvmQpyEJ04:40
twbfuho: the error is: xinit:  No such file or directory (errno 2):  no program named "/usr/bin/xterm" in PATH04:41
twbfuho: you don't have xterm installed04:41
twbTry "xinit /usr/bin/gnome-session -- /usr/bin/Xvnc4"04:42
buntuanybody ever installed 10.04 amd64 on ibm blade HS22 ?04:43
twb!anybody04:43
ubottuA large amount of the first questions asked in this channel start with "Does anyone/anybody..."  Why not ask your next question (the real one) and find out?04:44
nigelbScottK: That's a relief.  Its using quilt.  I'll need to unpatch to just figure out the directory system.04:44
fuhotwb: now it accepts connection, client asks fro password (not username) i type it says in client"No password configured for VNC Auth"04:45
buntumy problem on IBM HS22 is fail to boot after finished installation on /dev/sde04:45
fuhotwb: And in terminal : "Tue Nov 23 04:44:09 2010  Connections: accepted: 0.0.0.0::59016  SConnection: Client needs protocol version 3.8  SConnection: Client requests security type VncAuth(2)  Tue Nov 23 04:44:10 2010  SSecurityFactoryStandard: neither Password nor PasswordFile params set  SConnection: AuthFailureException: No password configured for VNC Auth  Connections: closed: 0.0.0.0::59016 (No password configured for VNC Auth04:46
twbfuho: I don't remember how to do the password bit.  I think you're supposed to use vnc4passwd -- try reading its manpage04:47
fuhotwb: http://pastebin.com/JK4kDtHr04:47
billybigriggeri keep getting an emails from root@xxxxx (xxxxx being my server) with the Subject: [ -x /usr/lib/php5/maxlifetime ] && [ -d /var/lib/php5 ] && find /var/lib/php5/ -type f -cmin +$(/usr/lib/php5/maxlifetime) -print0 | xargs -n 200 -r -0 rm and the message only contains...Warning: Directive 'register_long_arrays' is deprecated in PHP 5.3 and greater in Unknown on line 004:48
billybigriggeri've had this message spamming my inbox for months now hoping that there would be an update that would resolve it...but i'm really sick of seeing it spam my inbox, so how do i get rid of it? as the message isn't really clear as to what file is the culprit04:49
UndiFineDgrep -r -i register_long_arrays /var/www04:51
UndiFineDor it might have been set in your php.ini ?04:52
fuhotwb: It was "vnc4passwd" i set up password, then ran "xinit /usr/bin/gnome-session -- /usr/bin/Xvnc4" gain and it still wont connect, with the same error: http://pastebin.com/kjzQRFdv04:53
buntuanybody experience grub problem upon installed on /dev/sde ?04:53
twbfuho: NFI, sorry04:53
fuhotwb: not even why it shows 0.0.0.0 instead of my ip?04:59
twbfuho: 0.0.0.0 means "all interfaces"05:00
nigelbScottK: err, s/unpatch/untar05:00
zwanghello05:38
Datzgreetings05:39
twbLXC question05:44
twbSuppose my lxc rootfs is on LVM05:44
twbCan I use lxc.mount.entry /dev/mapper/lxc-barserv /srv/lxc/fooserv ext4 default ?05:45
twbCan I use "lxc.mount.entry = /dev/mapper/lxc-barserv /srv/lxc/fooserv ext4 defaults", rather -- in /etc/lxc/fooserv.conf, that is.05:45
* twb tries05:50
SpamapSa blockdevice is a blockdevice05:53
twbSpamapS: I thought maybe the root filesystem was special as far as lxc.mount.entry was concerned05:53
twbi.e. I couldn't mount it on-demand during lxc-start05:54
SpamapStwb: I've only booted two lxc containers ever, but the root fs seems to be the easy part. ;)05:57
uvirtbotNew bug: #680371 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5.4 failed to install/upgrade: subprocess new pre-removal script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/68037106:16
twbSpamapS: doesn't work06:33
twbhttp://paste.debian.net/100515/06:33
databitsWhat is a good SMTP server to run to use from accepting php mail form's ?06:53
twbpostfix06:57
databitsthat is what I'm looking into right now ... thanks07:03
=== SirFiChi is now known as ihCiFriS
lateniteHi folks, I want to manage my contacts and adresses serversided. So any client on my LAN can access these contacts. Is there a "contactserver-tool" in any form? I am looking for tools. thanks :)08:27
twblatenite: address book ("yellow pages") data is typically stored in LDAP nowadays.08:27
twbYou could set that up, but I don't think there's a "turn key" solution for it in Ubuntu08:28
=== whaley is now known as SirLoins
latenitetwb, would you know a nice tuorial on ldap and adressbooks? I never got my hands on ldap. I feel like its a big monster...*scared*08:39
twblatenite: nope08:39
latenitetwb, is ldap hard t learn?08:40
twbLDAP itself isn't complicated, but it's messy and some of the edge stuff like auth can be confusing08:40
latenitetwb, what do you meen by "edge stuff"? *brand new*?08:41
=== ruben231 is now known as ruben23
MTecknologyWhat would you guys suggest using if I wanted to pump out a quick and easy 'planet'09:21
MTecknologyI know there's PlanetPlanet - but that doesn't seem like an 'easy' solution09:21
MTecknologyI'm looking for something that's easy for users to add onto as well09:22
Callum__okay, so I am shutting down my web server remotely and then using my remote file server to kick it back up via my custom ipmitool frontend for the first time...09:25
Callum__let's see if it works09:25
twbCallum__: do you have a backup plan? :-)09:31
Callum__twb: well, it worked fine, but the backup plan was just to work with ipmitool manually if the thing didn't work, the program isn't finished yet =P09:33
Callum__anyway09:34
Callum__SELinux is giving me troubles with remote CUPS printing (over the Internet)09:34
twbCallum__: I just ssh example.net lpr <foo.pdf :P09:34
Callum__actually, its probably been causing me problems with even local printing via PostScript as well because I haven't been able to print all the time locally09:35
Callum__kernel spams something like this: [  248.167806] type=1503 audit(1290504722.212:60):  operation="open" pid=897 parent=1 profile="/usr/sbin/cupsd" requested_mask="r::" denied_mask="r::" fsuid=0 ouid=0 name="/var/run/samba/gencache.tdb" , when I try to print09:35
Callum__if SELinux is even running on this thing09:37
Callum__none of the SELinux utils are installed, so this may be AppArmor being an asshole09:39
Callum__twb: any ideas?09:39
twbdunno09:39
twbThat says cupsd can't read /var/run/samba/gencache.tdb09:39
twbAnd yes, that's an apparmor message09:40
twbOn ubuntu apprmor is on by default, selinux is not09:40
Callum__ugh, it looks just like SELinux apparently09:40
Callum__so do I have to change a rule or something?09:40
twbHm, actually, maybe it's a generic LSM message, so it could be either09:40
Callum__I have no experience with AppArmor OR SELinux09:40
twbCallum__: only if you want it to work :P09:40
twbCallum__: look in /etc/apparmor for cupsd stuff09:41
Callum__/etc/apparmor.d/usr.sbin.cupsd, /etc/apparmor.d/cache/usr.sbin.cupsd and/etc/apparmor.d/abstractions/cups-client...09:41
twbCallum__: also, talk to #ubuntu-hardened about it09:42
Callum__what for?09:42
twbBecause they're the ones that know about apparmor09:42
MTecknologyok.. so I'm going to try to use PlanetPlanet - Any chance I could get some help figuring out how to set it up?09:42
Callum__ah09:42
Callum__well, there are no permissions defined for /var/run/samba/gencache.tdb in /etc/apparmor.d/usr.sbin.cupsd09:44
twbIIUC apparmor is "default deny" for specific apps09:45
Callum__to be honest I never understood why we needed SELinux or twb09:46
Callum__ooops twb09:46
twbhaha09:46
Callum__I meant AppArmor09:46
Callum__wth09:46
Callum__I saw your name and wrote it down09:46
Callum__DAMN, that happens on IRC as well as IRL09:46
Callum__what is wrong with me09:46
Callum__anyway, changed it, let's see what happens09:46
MTecknologyOH! Is PlanetPlanet a python app that gets run on a cron and then just outputs static content?09:47
Callum__heh, I probably need to go down to the station to restart the printer09:50
Callum__they kind of lock up when this happens09:50
Callum__damn09:50
Callum__Let's try my OTHER printer there09:50
Callum__HP LaserJet 5Si from the mid 1990s =D still prints brilliantly at 600dpi even when its this old, plenty of toner left in it too09:51
Callum__sure it needs a little bit of time to warm up, but what other large printer doesn't these days apart from huge photocopiers09:51
joschiMTecknology: yes, it is10:18
Tiibiidiiuhm i have a doubt... about my virtualbox setup... it's working fine, but i'm wondering if i could setup things better11:07
Tiibiidiii mean: my issue is with the hostname resolution11:07
Tiibiidiii have this ubuntu server vm...11:07
Tiibiidiifrom this i can ping fine the ip address of the host and vice-versa11:07
Tiibiidii(the network is bridged)11:08
Tiibiidiibut the hostname resolution doesn't work11:08
Tiibiidiii mean... the local name resolution should be done by the local wifi router11:09
Tiibiidiii can obviously setup statically the ip address inside the /etc/hosts file11:09
MTecknologyIs there anyone around that knows much about PlanetPlanet? I'm trying to separate the config directory from the template directory.. I have /opt/planet/nginx and /opt/planet/nginx-data. In nginx/config.ini I have template_files = nginx-data/index.html.tmpl  -  planet.py spits this out when I try to run that - planet.htmltmpl.TemplateError: Htmltmpl error: IO error while reading template 'index.html.tmpl': (2) No such file or11:41
sorenMTecknology: I use absolute paths.11:56
sorenMTecknology: Works great.11:56
MTecknologysoren: that must get to be one massive line11:56
soren349 characters.11:56
sorenI'm a big boy. I can handle it.11:57
MTecknology:P11:57
MTecknologysoren: how hard is it to make a nice theme for this when I'm all done? I think that's all I really have left11:57
MTecknologyI won't do it now - it's 05:58 - sleepy time - that'll be a task for after my break11:58
sorenMTecknology: As hard as html and css.12:00
MTecknologysoren: I'm screwed..12:00
sorenMTecknology: Me too. I stole mine.12:00
twbsoren: HTML *is* hard.  Look how many people end up using tables for alignment rather than doing it properly12:00
sorentwb: People fail at the simplest tasks. it's common.12:01
sorentwb: I'm reasonsably good with html, but I still can't make anything that doesn't look like crap. Frustrating, really.12:02
sorenI have the technical skills, but completely lack the aesthetic skills.12:02
twbBah12:02
MTecknologysoren: where did you steal yours from?12:02
MTecknologyI know what this needs to look like in the end - and I'm not excited for it..12:03
twbThe content provider is supposed to provide *content*, not style.12:03
sorenMTecknology: Planet Ubuntu, I believe. It's ok, it was for planet.ubuntu-dk.org12:03
twbThat's why I use w3m, since it doesn't implement CSS, I get a consistent style across all sites :-P12:03
MTecknologyoh12:03
MTecknologysoren: even an absolute path doesn't work...12:04
sorenMTecknology: What's the error now?12:04
MTecknologyhttp://dpaste.com/278785/12:05
sorenMTecknology: index.html.tmpl doesn't look like an absolute path to me.12:05
MTecknologytemplate_files = /opt/planet/nginx-data/index.html.tmpl /opt/planet/nginx-data/atom.xml.tmpl /opt/planet/nginx-data/rss20.xml.tmpl /opt/planet/nginx-data/rss10.xml.tmpl /opt/planet/nginx-data/opml.xml.tmpl /opt/planet/nginx-data/foafroll.xml.tmpl12:06
sorenThat's fine. You must not be using that configuration file.12:06
MTecknologyhttp://dpaste.com/278786/12:07
MTecknology:(12:09
sorenMTecknology: grep template_files  nginx/config.ini12:09
MTecknologysoren: only the one line shows up..12:09
soren-v?12:10
MTecknology.....12:10
MTecknologyrm -r nginx-data/*tmplc nginx-data/cache12:10
MTecknologythat made it work..12:10
sorenAwesome.12:10
MTecknologywell... learned something new :P12:11
MTecknologythanks :)12:11
MTecknologyNow I just need to add feeds and make it look pretty12:12
MTecknologyeasy peasy12:12
MTecknologyand the fact that it generates static content - amazing12:13
sorenDaviey: Ok, just so we're clear.. We can all commit stuff to the nova packaging branch now, but we review things before commit. Is that accurate?12:28
Davieysoren: If that is good for you?12:28
sorenDaviey: That sounds perfect.12:28
Davieysoren: \o/12:28
sorenBlimey, i have a lot of nova branches.12:29
Davieylol12:29
soren52 of them.12:29
* soren cleans house12:30
=== BlackZ_ is now known as BlackZ
=== Error404NotFound is now known as Error401Unauthor
=== Error401Unauthor is now known as Error404NotFound
shaunoseem to be having problems routing from eth0 to ppp0; ufw is disabled and ip_forward is set in sysctl - what else am I missing?13:37
sorenshauno: What are you trying to do?13:38
sorenshauno: ...and what makes you say it doesn't work?13:38
shaunotrying to pass traffic from a device on eth0 to a modem.  everything the device tries to reach times out13:39
shauno(it's an embedded device that hits a http server on a regular basis, but unfortunately doesn't have any settings for a http proxy)13:40
sorenshauno: You (very likely) need masquerading set up.13:43
=== ihCiFriS is now known as SirFiChi
shaunosoren: masq turned out to be just the google-fodder I needed, ty14:01
sorenshauno: Sure14:05
shaunoluckily I just need to capture a few minutes worth of traffic from it, so it doesn't have to be tidy - just functional14:07
zulsoren: why is there two urls in the watch file?14:21
sorenzul: One has snapshots, the other has releases.14:21
sorenClick 'em :)14:22
zulsoren: gotcha14:22
zulsoren: so you should be able to do a uscan and it will download the tarballs for you?14:22
sorenzul: Yes. that's what "debian/rules get-orig-source" does.14:24
zulsorry i never used uscan before14:24
sorenzul: "bzr bd -S" also does it for you.14:24
zulok...duh...need more caffine :)14:25
sorenzul, Daviey: We need better defaults for networking.14:32
zulsoren: like?14:32
sorenzul: Something that doesn't suck.14:33
sorenzul: What's the default in Eucalyptus?14:33
Davieysoren: I agree :)14:33
sorenMANAGED-NOVLAN?14:33
zulsoren: yeah :)14:33
Davieysoren: asking for avaliable IP addresses :)14:33
zulsoren: having never touched eucalyptus i dont know :)14:33
sorenDaviey: Oh. Which network mode?14:33
Davieyrange, notation or comma separated :)14:34
Davieysoren: lemme confirm14:34
sorenDaviey: Ta.14:34
Davieysoren: Interesting, http://pb.daviey.com/3vQ8/raw/ :)14:35
Davieysoren: but yes, MANAGED-NOVLAN14:36
sorenDaviey: Ok.14:36
sorenWe don't have that :)14:37
sorenIt's on my TODO, though.14:37
hggdhJamesPage: I found the issue with my couchdb -- an interesting side effect14:37
Davieysoren: hmm14:37
Davieysoren: what does nova call the default?14:38
sorenDaviey: VlanManager.14:38
JamesPagehggdh: yep - I found a few issues as well.....14:38
Davieysoren: How does VlanManager differ from Managed-novlan ?14:38
sorenDaviey: It uses VLAN's :)14:38
Daviey:P14:39
sorenDaviey: Other than that, it's mostly the same, IIRC.14:39
sorenDaviey: ..but the choice of -NOVLAN over just MANAGED was intentional.14:39
Davieythen using that makes sense IMO.14:39
sorenLet me think about it. The goal is simply to have something that works as well as possible out of the box with as few questions asked as possible.14:40
Davieysoren: Well... asking what IP addresses should be used (to the user), is pratical IMO.14:40
sorenI'm unsure how valuable it really is. Sure, it should be debconfable, but if we can provide some defaults that give you a working cloud setup without asking any questions in 98% of the cases, that's a major win.14:42
Davieytotally14:43
sorenWe have a benefit over Eucalyptus, though.14:43
sorenEucalyptus didn't work well on a single box.14:43
Davieysoren: Ok... That would mean we need to expect a dhcpd to be avaliable on the network... ?14:43
sorenDaviey: No.14:43
sorenNova works just fine on a single box, so the impact of choosing the VLANed option isn't big.14:44
Davieysoren: Ideally, we work well on one box - but equally work well on (n)14:44
sorenDaviey: Sure. It's just that when you're going to n boxes, you need to do things differently anyway.14:45
Davieysoren: Are there doc's on the network settings nova currently supports?14:45
[diablo]guys is the default dns server in 10.10 server BIND or PowerDNS please? When choosing "DNS Server" in the installation process14:49
* [diablo] hopes its PDNS14:50
Daviey[diablo]: Bind14:51
[diablo]doh14:51
[diablo]ah well :)14:51
RoyK[diablo]: apt-get install pdns-server .....14:52
[diablo]nod14:52
[diablo]damn I soooo love ubuntu server over RHEL14:52
RoyKhm... powerdns looks promising14:53
RoyKbut then, bind works too :þ14:53
Davieypowerdns has a bounty on it, doesn't it?14:53
Davieyif you find a security bug14:53
RoyKdunno14:54
RoyKcouldn't find one on first google14:54
[diablo]I like pdns cos I backend it to openldap14:54
DavieyNo, i was thinking of djbdns.14:57
Daviey(tinydns)14:57
sorenDaviey: Good question.15:02
sorenDaviey: /me checks15:02
sorenDaviey: The stuff on http://nova.openstack.org/nova.concepts.html looks accurate enough to me.15:10
sorenDaviey: At a glance, at least.15:10
Davieysoren: thanks!15:11
HackeMatehello15:17
HackeMateis there a way to restart the dhcp3 server and modify the dhcpd.conf without being root or executing sudo?15:17
pmatulisHackeMate: no15:20
HackeMatea part of give 777 permissions15:20
HackeMatewhat about give the user a certain group?15:20
HackeMatei dont know what group is required for dhcpd15:21
=== diehaai is now known as thefish
pmatulisHackeMate: trying to circumvent standard security measures is not the way to go15:23
HackeMatethat's why I find a best way15:23
pmatulisHackeMate: state why you are trying to do that15:23
HackeMateI have created a cgi that need restart the server15:23
HackeMateand I wont give 77715:24
HackeMatethe cgi is a web-based app to add mac addresses to the dhcpd.conf15:24
pmatulisHackeMate: so allow the user that the cgi is run under to issue the commands you want without a password15:25
pmatulisHackeMate: do this by editing /etc/sudoers (ideally with visudo) and using NOPASSWD (man sudoers)15:26
HackeMatebut then I will let the www-data to run everything sudo can execute15:27
pmatulisHackeMate: no.  you specify the commands he can issue15:28
HackeMateoh, that's exactly what i want15:28
HackeMateso i modify in sudoers what www-data can execute without password15:28
HackeMateperfect15:28
highvoltagestgraber: ^^^ now /that's/ completely insecure :)15:29
HackeMateanother strange question, I get timeout in ssh when idle15:48
HackeMateI have configured the TCPKeepAlive and ServerAliveInternal but still die15:48
=== SirLoins is now known as whaley
sorenzul, Daviey: Ok, do you want to review https://code.launchpad.net/~openstack-ubuntu-packagers/ubuntu/natty/nova/ubuntu/ now?16:16
zulsoren: sure16:16
zulsoren: what about --FAKE_subdomain?16:17
zulis it still needed?16:17
sorenzul: The docs say it is.16:18
sorenzul: But they're lying.16:18
zulsoren: k16:18
sorenzul: Feel free to nuke it.16:18
zulsoren: ack16:19
zulsoren: looks good to me...im guessing daviey will look at it after the meeting and ill upload it16:20
Davieytwo eyes is enough IMO.16:21
sorenDaviey: I have two eyes.16:21
Davieyerr, 4 eyes - perhaps :)16:21
sorenDaviey: Yeah, that I don't have :)16:21
sorenzul, Daviey: It will use r412. That seems fine to me.16:21
zulsoren: ack16:21
zulsoren: ill start the new changelog after i upload it?16:22
sorenzul: So to build it, just check out the packaging branch and do "bzr bd -S".16:22
zulsoren: right16:22
zulsoren: already did it a couple of times ;)16:22
sorenzul: Alright, just making sure :)16:22
sorenUsing "bzr bd" just may provide different results than dpkg-buildpackage directly. "bzr bd" is reproducable and consistent, so it's preferred.16:23
sorenI know you know, I'm just elaborating in case someone is following along at home :)16:23
MTecknologysoren: so.. 10:24 - I'm considering a nap... but the css and template editing it coming along :)16:24
sorenMTecknology: masochist.16:25
MTecknologysoren: You know how often I hear that?...16:25
MTecknologyI'm starting to think it might be true. :(16:25
sorentmi16:25
soren:)16:25
MTecknologysoren: wanna see it?16:26
sorenOh, the planet?16:26
sorenphew. My mind was elsewhere.16:26
sorenMTecknology: Sure.16:26
MTecknologysoren: You'll have to add it to your hosts file - waiting on someone to decide if we're going to actually do it and update dns - 69.168.53.33 planet.nginx.org16:27
MTecknologywoah... were you thinking something you shouldn't be thinking?16:27
sorenMTecknology: WEll, you just revealed that people call you a masochist a lot.16:28
sorenMTecknology: http://planet.nginx.org/ looks decent. I coudln't have done it better myself.16:28
sorenAnd with that, I bid you all a good day.16:28
sorenI must eat.16:28
MTecknologyI should nap... or do homework16:28
MTecknologysoren: thanks - I'll ttyl16:28
yann2what is the preferred disk format for windows VMs under KVM - raw, qcow2?16:29
soren/dev/null :)16:29
MTecknologysoren: hey.. our ip's are incredibly close.. where do you live?16:29
sorenDenmark.16:29
MTecknologyoh.. nowhere near then16:30
reggie_hey folks I am having a permissions issue with synaptic can anyone help?16:31
yann2soren, if only...16:32
zulDaviey: can you review the packaging branch?16:33
reggie_can anyone help me figure out my permissions issue with synaptic16:36
ScottKreggie_: synaptic is a desktop package.  You should ask in #ubuntu.16:36
zulhow is it different running servers on vm any different from running servers on bare metal other than hardware16:37
reggie_lol well I installed gui on top of serverso my first thing was to try and play with synaptic but for some odd reason it will not accept my password16:37
reggie_ubuntu tells me to come here since this is server16:38
ScottKOnce you've installed the GUI, it's not.16:38
reggie_I have no issues installing from the command line but trying to use synaptic is a no go16:38
ScottKSo the server solution would be don't use synaptic.16:39
reggie_ScottK, if you dont want to help I can understand but I would still like to find out the root of this problem16:39
ScottKreggie_: Fine, but it's off topic for this channel.16:40
reggie_I understand16:41
reggie_I will try back in ubuntu then16:41
ScottKGood luck.16:41
reggie_ikonia?16:46
reggie_i am here ikonia16:46
ikoniahello16:46
ikoniado you want to explain the issue for me a bit please ?16:46
reggie_hey how are you thank you for helping me out16:47
reggie_yes sir16:47
reggie_first i'm a win admin tryingt o incorporate ubuntu server into my network16:47
ikoniaok16:47
reggie_so i am fairly new with all of this but i know a little bit of the basics16:47
reggie_so being a win admin my first gut instinct was to install the gui even though it is frowned upon16:48
reggie_so i did that and went to try out synaptic and it is giving me a no go with my password even though the password is correct16:48
ikoniareggie_: ok, so lets step back and run a few tests16:49
reggie_so we looked at my permissions with the groups command and it does appear that I have admin rights16:49
ikoniareggie_: firstly can you run "sudo apt-get update" ?16:49
reggie_yes sir16:49
reggie_i can16:49
reggie_i can install with no issues from command line16:49
ikoniareggie_: ok, can you do gksudo synaptic16:49
ikonia"gksudo synaptic" sorry16:49
reggie_one sec let me try16:50
reggie_yea it seems to come up when i run that command16:50
reggie_wow16:50
reggie_so what the heck is the issue from accessing from the gui directly16:51
ikoniareggie_: ok, so hang on, wait 20 minutes, then ping me and we'll run some more tests16:51
reggie_ohh ok thank you16:51
reggie_will do16:51
hallynSpamapS: wanna chat upstart for a second?16:52
hallyni think ivoks might join in too16:52
hallynSpamapS: you hae a bp on making upstart more server-capable right?16:53
zulsoren Daviey: upload done16:58
zulsoren Daviey: i started a new release in the bzr branch as well16:58
SpamapShallyn: yes!17:00
SpamapShallyn: are you trying to upstart-ify something?17:00
hallynsorry, need three ins now17:01
hallynthree minutes now17:01
hallynSpamapS: ok.  so, no, not trying to upstart-ify anything,17:06
hallynSpamapS: rather, we're wondering about the upstart behavior when stopping a service17:06
hallynapparently, it doesn't just kill the service, but also all its children?17:06
hallynwhich of course can prevent a service from doing an orderely shutdown17:07
SpamapShallyn: upstart has no notion of "children"17:09
SpamapShallyn: it tracks a process ID as the "job"17:09
SpamapShallyn: and sends TERM then KILL to that pid17:10
hallynivoks: ^17:10
ivoksyeah17:10
ivoksupstart is an as***17:10
SpamapShallyn: if the process dies and it has children, they get assigned to init (upstart) as zombies and handled17:10
hallynSpamapS: i wanted to see if you'd run into that, for starters.  all right, lemme pull down the code17:10
hallynbc i think you are wrong :)17:10
SpamapSivoks: this is no different than an init script17:10
ivoksinit script sends TERM to parent17:11
ivoksand waits17:11
ivoksupstart does massacre17:11
ivoksanyway, i worked around that... so, i'm not that angry any more17:11
SpamapSivoks: massacre in what way?17:12
ivoksit kills children before it kills parent17:12
hallynivoks: i wasn' ttyring to soothe your anger, but rather wonderng whether there is something platform should do for usptart on server17:12
\shivoks: should we change to systemd? ;-)17:12
ivoksi have a specific parent17:12
SpamapSivoks: that would be crazy17:13
ivoksthat is terminating children for a minute17:13
ivoksbut it can't finish cause someone sends term to kids17:13
SpamapSivoks: what I think you're hitting is the kill timeout17:13
ivoksit's not17:13
ivoksit's TERM, -1517:13
smoseranyone able to help me. i'm a dolt. https://launchpad.net/~awstools-dev/+archive/awstools/+build/206021417:13
ivoksi get children writting that they received -1517:13
SpamapSivoks: was the *parent* killed though?17:13
SpamapSivoks: see if it sends SIGKILL to the parent, then the children get assigned to init and it kills them off.17:14
ivoksSpamapS: i'm in the meeting right now, let me get back when that finish17:14
SpamapSivoks: try raising kill timeout17:14
ivoksparent doesn't exit until all kids terminate17:14
SpamapSwould bet thats the issue.17:14
\shsmoser: chmod 755 ec2-activate-license when it's there?17:14
ivoksthis isn't apache or something simple17:14
ivoksthese kids need to be terminate in a specific order17:15
ivoksterminated17:15
hallynivoks: thanks, let us know when you're out of the mtg, ttyl17:15
=== oubiwann is now known as oubiwann-away
ivoksthose kids also fork, so... it's mess :)17:15
SpamapSI can't find in upstart's code where it sends SIGTERM to anything except the main job pid17:16
smoser\sh, yes. thank you. i was tihnking it was a different error.17:16
smoserhttp://launchpadlibrarian.net/59504186/buildlog_ubuntu-maverick-i386.ec2-api-tools_1.3.57419-0ubuntu2%7Emaverick2_FAILEDTOBUILD.txt.gz is what i intended to point at17:16
smoserbut never mind. i have to run i'll sort it out somtime.17:17
\shsmoser: Package java6-runtime-headless is a virtual package provided by: <- no candidates17:18
smoserright. but why ?17:18
\shsmoser: looks like no package provides java6-runtime-headless17:18
smoserhm..17:19
\shsmoser: default-jre-headless should provide that package (at least on maverick)17:19
smoserhttp://packages.ubuntu.com/maverick/java6-runtime-headless17:19
SpamapShallyn: have to run out for a bit, but you should try asking keybuk as well.17:19
reggie_hey ikonia17:19
hallynSpamapS: thx, ttyl17:20
SpamapSivoks: I'd also be interested in what daemon.log says that upstart did.. whether it says it sent TERM/KILL to the main process and such17:20
* SpamapS will bbl17:20
\shsmoser: yes..but the buildd does think it's not provided anyhow..17:21
=== rbniknej is now known as jenkinbr
=== jenkinbr is now known as squishy
progre55hi guys. I've set up exim4 on a server, but some emails I send from it are returned with error "550-Verification failed for <me@mysite.com>\n550-Unrouteable address\n550 Sender verify failed". Any suggestions, please?17:43
=== NG_ is now known as ng_
blackxoredhello guys, I can't remember the name of this app, so I ask, a LAMP application which was intended for streaming audio/video, along with a pretty management interface, pops up some suggestions???17:44
blackxoredi'm getting some scaped html i shouldn't17:45
blackxoredups sorry17:45
RoyKtry apt-cache search or freshmeat or even google17:46
ScuniziI'm trying to scp from /var/www on one machine to /var/www on another machine and am prompted for the password to the remote machine. After entering it all files/directories respond with "Permission Denied" when trying to copy. Any assistance appreciated.17:46
b0gatyrsalutations17:48
ivoksSpamapS: i'm back17:49
* pmatulis wonders why his freshly installed maverick server shows a load of 0.9017:49
ivoksSpamapS: it sent TERM, but to all the processes17:54
progre55Scunizi: your user doesnt have permissions for the /var/www directory17:56
progre55and I'm guessing, on both servers17:56
Scuniziprogre55: how do I add the user to www-data via cli?17:56
Scuniziprogre55: would it be ... #useradd -g <user> www-data ?17:57
ivoksadduser user group17:58
Scunizior #useradd -g www-data <user>17:58
progre55Scunizi: umm.. useradd17:58
Scunizino -g ?17:58
ivoksadduser user group17:58
Scunizik17:58
ivoksnotice *adduser*, not useradd17:58
Scuniziivoks: does it take effect immediately?17:58
ivoksuser needs to log out17:59
Scuniziok.. thanks.17:59
ivoksif you are adding user to www-data, you are probably doing something wrong17:59
progre55Scunizi: btw, why would you add a user to www-data just to scp?17:59
progre55Scunizi: just scp it to some other location, and then ssh into the server and mv it into /var/www18:00
=== cmagina is now known as cmagina-lunch
Scuniziprogre55: I was just trying to avoid that18:00
progre55that's a bad idea18:00
Scuniziprogre55: why18:01
progre55for security reasons18:01
Scuniziprogre55: so you don't want any other users to be listed in the www-data group other than apache?18:01
progre55www-data can run some critical processes, that you wouldnt want your ordinary user to run18:02
progre55or have access to18:02
Scuniziprogre55: ok.. that makes sense.. then how do you remove a user from a group?18:03
progre55anyways, can anyone help out with exim4, please? )18:03
progre55Scunizi: hmm.. sec18:03
hggdhzul: I am in doubt about samba bugs 678498,659854,393012 -- are the first two really duplicates of the last one?18:04
uvirtbotLaunchpad bug 678498 in samba "Ubuntu fails to copy any files on windows share with "Invalid Argument" error" [Undecided,Confirmed] https://launchpad.net/bugs/67849818:04
uvirtbotLaunchpad bug 659854 in samba "Nautilus 2.32.0: Copy to SMB  (dup-of: 393012)" [Undecided,New] https://launchpad.net/bugs/65985418:05
uvirtbotLaunchpad bug 393012 in autofs "[SRU] smb: Error while copying file, "Invalid argument"" [Undecided,Confirmed] https://launchpad.net/bugs/39301218:05
zulfirst one and last one are probably duplicates18:05
hggdhzul: and, if they are, is it not a good idea to open a task for samba(Ubuntu) on 393012?18:06
Scuniziprogre55: I could directly edit /etc/group and remove the user from there on the line that reads www-data:x:33:<user>18:06
zulhggdh:probably :)18:06
ivoksSpamapS: http://pastebin.com/n709p8pZ18:06
hggdhzul: doing it18:06
zulhggdh: merci18:07
hggdhzul: mon plaisir18:07
progre55Scunizi: usermod -G theNeededGroup username18:08
Scuniziprogre55: thanks18:08
progre55wait18:08
Scunizik18:08
progre55Scunizi: the needed group is the group that the user actually belongs to, not the want you want to remove18:09
zulhggdh: have you tried to run the test rig on natty since the last time we did it?18:09
progre55after this comman, the user will only belong to the group you specified here18:09
hggdhzul: no, I was waiting for the new Natty kernel. I will try it today18:09
progre55you have have a list of comma-separated groups18:09
progre55Scunizi: ^^18:09
zulhggdh: cool...18:10
Scuniziprogre55: ah.. so that command re-associates a user to one group or several groups in a comma-separated list?18:10
progre55yep18:10
Scuniziprogre55: ok.. thanks18:11
progre55you can also : "id -nG username" to find out which groups the user belongs to18:11
Scuniziprogre55: yea.. I was just thinking that I didn't know all the groups that the primary user on the server belonged to..18:11
ScuniziOn a side note.. when logged into a headless server via ssh.. how do you log the user out?  log off the ssh session?18:16
=== Tweeda_ is now known as Tweeda
uvirtbotNew bug: #393012 in autofs "[SRU] smb: Error while copying file, "Invalid argument"" [Undecided,Confirmed] https://launchpad.net/bugs/39301218:18
progre55Scunizi: "exit"?18:18
hggdhDaviey: any news from the euca bug?18:18
Scuniziprogre55: that's what I though.. just shutdown the ssh session.18:19
progre55but what's a headless server?18:19
PiciA server without a monitor.18:19
progre55ah )18:20
progre55makes sense =)18:20
progre55so, I've configured exim4 on my headless server, and sending email works fine, except I get error 550 for some email addresses. Any ideas, please?18:21
progre55"550-Verification failed for <me@mysite.com>\n550-Unrouteable address\n550 Sender verify failed"18:21
hggdhzul: natty still does not recognise the NetXtreme II card...18:22
zulhggdh: crap18:23
hggdhaye...18:23
zulhggdh: there is a bug number for this isnt it?18:23
hggdhzul: 6 machines rendered useless :-(18:23
hggdhzul: yes, there is, just a sec18:24
zul https://bugs.launchpad.net/ubuntu/+source/linux/+bug/67624518:26
uvirtbotLaunchpad bug 676245 in linux "Broadcom NetXtreme II BCM5709 not recognised on install" [High,New]18:26
hggdhaye18:27
Piciprogre55: It could be a few things: invalid/missing reverse dns, spf record missing18:28
=== cmagina-lunch is now known as cmagina
=== cmagina is now known as cmagina-meeting
=== ng_ is now known as NG_
=== NG_ is now known as ng_
progre55Pici: where do I check the reverse-dns settings?18:32
Piciprogre55: Wherever you have your dns setup.18:33
progre55Pici: somewhere in resolv.conf?18:34
Piciprogre55: no. You have a domain name right?18:35
progre55yep18:35
progre55Pici: saplo.com18:35
Piciprogre55: The reverse dns entry for 79.125.15.2 doesn't point there though.18:37
PiciSo wherever you update your dns records, you should have an option to set a reverse dns entry.18:37
progre55but it's an amazon server, and I'm using the default amazon dns18:37
oru_workgreetings how to tell which php version i have installed. php --version returns some weired stuff18:38
progre55oru_work: php -version18:39
Piciprogre55: From a little googling it looks like there is a way to setup reverse dns within Amazon's AWS, but since I don't have one or have access to one, I don't know where that setting would be.18:42
=== oubiwann-away is now known as oubiwann
=== maxb_ is now known as maxb
progre55Pici: oh thanks, I'll try googling then )19:03
progre55thanks for all the support19:03
WALoeIIIPici: don't try to send email from AWS, its not worth it19:12
WALoeIIIuse some relay19:12
WALoeIIIauthsmtp.net19:12
WALoeIIIsendgrid19:12
PiciWALoeIII: Don't tell me, tell progre55 (who just quit)19:12
WALoeIIIoh :\19:12
WALoeIIIwell, he'll figure it out the hard way :()19:13
oru_workcan someone have a look at this please http://pastebin.com/702fYJ3Q19:28
=== oru_work is now known as orudie
orudiephp -version returns the following complaints/errors and i'm not sure how to fix them m http://pastebin.com/702fYJ3Q19:36
navanjrhelp.... "mvn (Apache Maven >= 2.2.0) is not in the path" what have i missed?19:40
navanjrim attempting to install zenoss from source19:40
\shwhoosa mcollective + puppet == production rollout in less then 15 minutes...world record (rollout of 25 SOA services on live servers)19:47
Daviey\o/19:50
navanjris this room a good place to find general server support?19:51
navanjrim new to ubuntu and having, what i think is, a path or version issue installing Zenoss19:52
Daviey\sh: How was your mcollective setup experience?19:54
Davieynavanjr: it is a pretty good place, but you sometimes find more active support in #ubuntu19:56
navanjrthanks!19:56
\shDaviey: not good...we are working on it...it's sometimes not straight forward as it should19:59
Daviey\sh: That was my thought when i looked into it a while ago20:00
Daviey(I didn't finish setting it up)20:00
dbowlbyI have a ubuntu 10.10 server that I use for a firewall.  It currently only uses about 3gb of disk space.  I'd like to move this from a hard disk to a usb key.  What steps would I have to perform to copy my installation to usb key and make sure it boots20:04
\shDaviey: but the idea behind mcollective is awesome...I'm thinking about implementing something similar like that in python + rabbitmq + python-carrot / python-celery20:05
dbowlby\sh, cluster talk?20:07
\shdbowlby: link? :)20:07
dbowlby\sh, using mq to pass stuff onto the cluster is an interesting notion20:08
Davieydbowlby: rsync the files from the server to the usb pendrive, run grub-install on pendrive, and change /etc/fstab to point to new disks20:08
Davieyi think that is all20:08
dbowlbyDaviey, cool, I'll give it a shot20:09
Daviey\sh: Oh aye... that is interesting... keep me posted if you get your hands dirty with code.20:09
dbowlbyI already have a java mq sender and consumer20:09
Daviey\sh: I would love puppet to natively discover the puppetmaster :)20:10
\shDaviey: well, it will be a part of my (DC)² project (launchpad.net/dc2)20:10
Daviey\sh: I am aware of your project :)20:10
dbowlbywould you require the same software on each box, or have components located on a nfs share (depends on the app I assume)20:11
=== _TechAway_ is now known as _Techie_
dbowlby\sh, Daviey, have you guys played around with perceus?20:18
Davieycommon NFS defeats the purpose IMO20:18
Davieydbowlby: no20:18
dbowlbyDaviey, well you have to confirm that apps are loaded, and seems kinda silly to waste repetitive space for executables20:19
dbowlbyDaviey, server specific space I'd understand20:20
dbowlbyNot like the NFS couldn't be mirrored20:21
=== _TechAway_ is now known as _Techie_
\shdbowlby: nope...20:24
dbowlbyare you guys looking at this from a cloud perspective or from a clustered perspective20:25
\shdbowlby: I'm looking from a bare metal datacenter perspective :)20:26
binBASHhi sh ;)20:26
\shbinBASH: hey :)20:26
binBASHyour tool sounds intressting ;)20:27
dbowlby\sh: what kind of things are you looking to manage?  Are you looking to plug in a server and have it autoconfigured once you enter the mac address?20:27
\shdbowlby: that already works ;)20:27
dbowlby\sh: yeah I guess with dhcp in the mix you don't need to do even the mac step20:28
dbowlby\sh: so what are you looking to manage then, just event calls across the platform?20:28
\shdbowlby: well, what we do is FAI for OS Deployment (which means, MACs maintained via mysql/couchdb enabled tftp server), auto inventarisation works already, and deployment too...now we are working on integrating puppetd single runs inside the FAI deployment, after reboot, we should have a working production system with apps etc. fully fledged...now we are looking at rolling app deployment with puppet and mcollective (eventually not mcollective but20:31
\shthe idea behind it)20:31
\shdbowlby: when everything works here, we can increase the focus to VMWare ESX (which already works with PXE enabled VMs) and UEC (XEN/KVM etc.20:32
\shdbowlby: amazon style cloud servers are different20:36
dbowlby\sh: nice20:36
toast018afternoon everyone!20:36
orudieis there a way to back one version in php from php 5.3.x to 5.2.x ?20:36
dbowlby\sh: yeah, it is different20:36
dbowlby\sh: I like the idea of making it work UEC :)20:37
\shdbowlby: the FAI maintainer is working to integrate gpxe into FAI but I doubt, that amazon or rackspace will support bootps over internet ;)20:37
dbowlby\sh: awwww, why not ;)20:37
dbowlby\sh: I could put up a pptp :)20:37
dbowlby\sh: and hope it doesn't catch on fire20:37
\shdbowlby: well...time is here my enemy...;) and right now, I'm the only one here @office who is working on the topic "bastard automation from hell"20:38
toast018how can I temporarily unblock .exe files in my mail server? I use ubuntu 8.04 with sendmail, spam assassian, and clamav20:38
toast018is it in spam assassain?20:38
\shdbowlby: eventually I'll find the time in 2011 to attend another UDS and present the DC² project :)20:39
jmgallowayanyone here know how to use hsql?20:39
sorenzul: In the future, I'd appreciate it if a release was done like so: "dch --release && debcommit --release && bzr bd -S && dput", and then, if it's accepted, "bzr push".20:40
dbowlby\sh: definitely an interesting thing to play with, you've got me thinking :)20:40
toast018anyone? :)20:44
\shdbowlby: the real problem is sell automation to your management, 'cause in the beginning it costs time and money, but in the end it saves you money and time and (human) resources20:45
dbowlby\sh: in my world I have no problem selling that.  I have a particular use case that it would be VERY useful.20:46
=== ng_ is now known as NG_
\shdbowlby: actually the use case is already starting at no. of servers >= 2 ;)20:47
=== Patrickdk is now known as PatrickDK
dbowlby\sh: yeah, I was thinking selfishly :)20:48
zulsoren: ack20:51
orudieis there a way to back one version in php from php 5.3.x to 5.2.x ?20:51
orudieanyone ?20:52
zulno20:52
dbowlbytoast018: from what I've found from googling, "SpamAssassin does not block, it only scores according to configured rules. "20:52
toast018yea I found that as well just now. Seems that in version 2 you could choose to block it.20:52
toast018thats no good. :( lol20:53
toast018my surpervisor has an email with an exe in it coming from a legit company and needs to file to update a program.20:54
toast018o well just found out I got a bigger problem...20:55
toast018I changed my eth ports from eth0 to eth1 because it was going bad and even though everything works (email, client page, etc) I cant putty into the system any more it times out. Also the external IP times out as well.20:56
=== NG_ is now known as ng_
pindemonsomebody here using zarafa+exim?21:00
zulSpamapS: there is a mysql merge with your name on it21:02
dbowlbytoast018: sounds like you're toast ;)  Just have them rename the exe to a .hateemail21:03
dbowlbytoast018: you could buy some time with management if you told them e-mail is so 80s and everyone sends their files via SMS now.  They'll spend hours trying to figure it out.21:04
toast018dbowlby: That was my suggestion. I hope they do that instead of forcing me to change all the rules to allow one email. lol. I wished that would work21:05
toast018I have adjusted the firewall to allow ssh but still cant connect on port 22 while using eth121:21
toast018it works fine on eth021:21
RoyKpastebin ufw status21:22
RoyKand also dmesg output21:22
toast018the ufw status is showing that all traffic from my subnet is allowed to port 2221:24
RoyKtoast018: what's your ip?21:25
RoyKI might try to do an ssh connect from here if you like21:25
RoyKufw iptables rules won't usually deal with which interface the traffic comes from21:26
toast01812.52.251.7221:29
=== ng_ is now known as NG_
toast018I think its a firewall issue. It was not enabled. when I enabled it port 22 opened but all others closed.21:29
RoyKno contact with 12.52.251.72:22 from here21:32
toast018I blocked it from outside my subnet. Try port 2521:32
toast018I just looked on mxtoolbox.com and it shows it open but always like a second look... lol21:33
RoyKdoesn't make ssh debugging easier21:33
toast018I got it working on my network now. sorry...21:33
toast018thanks for the help... :)21:33
RoyKI'd use fail2ban or denyhosts for blocking bots21:33
RoyKand just leave it open elsewhere21:33
RoyKufw is usually down, if you enable it, it'll block everything not specifically allowed21:34
=== squishy is now known as rbniknej
toast018Ill look into fail2ban and denyhosts. I am still learning as I go here.21:36
toast018total newb...21:36
RoyKnothing bad in being a newbie21:36
RoyKI was a linux newbie myself 15 years ago....21:37
toast018im forcing myself to not install any gui at all on the servers ... Im hoping that will help me in the long run21:38
RoyKit will21:38
RoyKyou can be certain of that21:38
=== NG_ is now known as ng_
toast018even setup a box at home with no gui so I can log into it and mess around. if I would start keeping better notes I would be doing alot better... lol21:39
* RoyK is teaching his boss vi these days21:40
toast018nice21:40
toast018what is the diffference between vi and vim?21:40
\shRoyK: wasn't emacs for the bosses and VIs for the others? ;)21:40
RoyKvim is "improved"21:40
RoyK\sh: boss isn't really a bossy style21:40
RoyKwhich is good21:41
RoyKtoast018: most distros use vim these days - for good reason21:41
toast018Thats what I use on our systems. took a min to get use to and still learning. lol21:41
RoyKtoast018: try 'set -o vi' in bash21:42
toast018what will that do?21:43
RoyK<esc>/whatiwroteyesterday21:43
RoyKit'll turn bash into vi21:43
toast018what would the benefits be?21:44
guntbertRoyK: and how to revert that step?21:44
RoyKwell, if you like vi syntax, it's greeat21:44
RoyKguntbert: set -o emacs21:45
RoyKbut then, it will only affect the current shell, so you can just quit the shell21:45
guntbertRoyK: thats understood :-) - but I always ask for/tell the way out :-)21:46
=== rbniknej is now known as jenkinbr
* RoyK really wants this issue with his controllers to get fixed so he can get 2x110TB online21:47
EgonisI have a basic ufw configuration to masquerade traffic from eth1 to ppp0 -- however I have a /28 subnet from my ISP, which I am using on br0 successfully from a shorewall configuration previously. How do I add a route to allow traffic from the /28 subnet to pass through the bridge to ppp0?21:58
Egonisi.e., should I be using route add, or a direct arp command? I used to use 'proxyarp' in shorewall, which did the job nicely, but wanted to try to achieve this through ufw and alittle hard-coding22:00
=== ng_ is now known as NG_
uvirtbotNew bug: #680687 in samba (main) "samba share refuses to authenticate login attempt" [Undecided,New] https://launchpad.net/bugs/68068722:11
EgonisI'm going to rephrase my question -- sorry: I have a /28 subnet from my ISP which I use for a few servers that are attached to eth1, eth1 is also serving 10.0.0.0 for LAN PC's. How do I add a route for my subnet to route through my ppp0 interface?22:13
EgonisI am using UFW22:13
rimphello22:45
rimpis there anyone here who can help me22:46
PiciWe won't know until you ask a question.22:48
SpamapSzul: I'll get started on the mysql merge tonight. :)23:08
SpamapSivoks: ack, just got your pastebin message (sorry been away from IRC for a bit) ... I don't see any upstart messages there. upstart should log what its doing in daemon.log23:10
ivoksSpamapS: that's all i have in daemon.log23:11
ivoksSpamapS: but you can see that all forks got TERM signal23:12
ivoksSpamapS: corosync is the parent that should stop crmd, lrmd, cib, pengine...23:14
ivoksSpamapS: but, those just die before it gets the chance to terminate them23:14
ivoksSpamapS: this is with 'expect fork'23:15
SpamapSivoks: yes, but what I don't see is if anything got KILL first.23:15
ivoksthey didn't get KILL23:15
ivoksthey got TERM23:15
SpamapSivoks: did corosync get KILL ?23:15
ivoksno23:15
SpamapShm ok23:15
ivoksSpamapS: on line 119 is example how it should look like23:16
SpamapSI spent a little of the time digging around in upstart's code and I still haven't seen where anything except the single, forked main process is sent any signals23:16
ivoksSpamapS: well, lines 0 -> 117 are result of 'stop corosync, shilw lines 121 -> 409 are result of pkill -TERM corosync23:17
ivoksshilw?23:17
ivoksit must be getting late :)23:17
ivoks^ while23:17
uvirtbotivoks: Error: "while" is not a valid command.23:17
SpamapSivoks: Indeed, it does seem that they all got sent TERM's .. can you pastebin the upstart job too?23:18
ivokssure23:18
ivoksSpamapS: http://pastebin.com/sb4By88x23:19
ivoksSpamapS: i've tried without expect fork, 'service' and all i could find23:19
SpamapSivoks: did you try 'expect fork 1' ?23:25
SpamapSI think thats the default..23:25
SpamapSbut not sure23:25
SpamapSivoks: actually, 'expect daemon' might be more appropriate w/ corosync23:26
ivoksSpamapS: i can try23:27
ivoksSpamapS: same results23:29
ivoksSpamapS: this is lucid23:29
SpamapSivoks: interesting.. corosync might not daemonize in the usual way..23:33
SpamapSivoks: I believe if you take out 'expect fork' it may actually work properly23:34
ivoksi think i've tried that23:34
ivoksbut i can try it again23:34
SpamapSivoks: the problem is corosync seems to just close its stdin/stdout/stderr, drop the controlling terminal, and then declare itself the leader of its process group, without ever forking23:34
ivoksSpamapS: hm.... just noticed:23:34
ivokscorosync start/running, process 119423:35
ivoks 1195 ?        Ssl    0:00 /usr/sbin/corosync23:35
SpamapSivoks: ok maybe strace deceived me23:35
SpamapSivoks: corosync actually calls clone, I wonder if upstart can't handle clone23:37
* SpamapS is preparing a stack of questions for keybuk on Thursday. :)23:38
ivoks:)23:38
ivoksthat's his last day?23:38
* ivoks needs some sleep23:39
ivoksSpamapS: without expect fork it doesn't work (cause, i guess, there's no pid 1194)23:39
SpamapSivoks: not sure, but I am going to be chatting with him about upstart.23:39
SpamapSivoks: right, it may need to be 'expect clone'23:40
ivoks:)23:40
ivoksok, i really have to go23:40
ivoksSpamapS: thanks you23:40
ivoksthank23:41
SpamapShttp://paste.ubuntu.com/535702/23:41
SpamapSthats the startup sequence..23:41
ivoksyeah, it clones23:42
* SpamapS will be especially happy when upstart supports chroots23:43
ivoksSpamapS: good night23:43
ivoks:)23:43
SpamapSivoks: I feel a new upstart bug report coming. :)23:46
SpamapSivoks: there's a new "proc adapter" that is coming, that will probably be far more reliable than the ptrace method used to implement "expect fork"23:47
SpamapSivoks: but for now, I'd say if a process clones instead of forks to daemonize, it cannot be managed via upstart in the regular way23:47
SpamapSivoks: HOWEVER, you *can* manage it with tasks23:47
SpamapSivoks: which will at least let you start it, and pkill it, based on upstart events23:48
jiboumanssmoser: what's the right way to set a hosts hostname via cloud-init? http://ubuntu-smoser.blogspot.com/2010/03/introducing-cloud-inits-cloud-config.html implies there's currently no 'proper' way23:55
SpamapSjiboumans: o/ !23:55
jiboumansSpamapS: o/23:55
SpamapSjiboumans: couldn't you just shove the hostname into /etc/hostname and run 'hostname' ?23:55
jiboumansspamaps: i can via runcmd: but i happen to know cloud-init is already setting it to the value of the ec2 metadata service23:56
jiboumansi want it to use a different value though (a hostname from my domain not, ec2s)23:56
jiboumansruncmd: - ["cat my.host > /etc/hostname"] - ["hostname"] would probably do it23:57
jiboumansbut seems... ugly :)23:57
gl1d3rHi23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!