[02:55] <vadi2> What is all involved in setting up a new ftp user account so they can upload to the ubuntu server that's on ec2? I got to the point where I can connect and browse, but not delete or upload files (uploading fails to due invalid filename error on a simply named file)
[03:05] <ernop> sounds like a permission problem?
[03:16] <vadi2> Where?
[04:01] <kiall> vadi2, most likely the folder your trying to upload to .. every user has to have permission to read / write the files your trying to change (or create) via FTP .. your probably looking to use a combo of the chmod and chown commands to set the permissions ...
[04:02] <kiall> generally .. if multiple users need to access some files (eg /var/www/ ) .. I would create a group, assign the users to it and then chmod+chown the folder to allow that group read/write
[04:07] <vadi2> alright
[04:07] <kiall> or .. if you really dont care about security .. chmod -R 777 /var/www (or whatever folder) .. DO NOT "chmod -R 777 /" or some other folder you didnt create! It will cause *all sorts of pain*
[04:10] <flaccid> use sftp not ftp
[04:12] <kiall> flaccid, while sftp might be technically better, it makes absolutely no difference to his issue ;) .. and .. there may be a requirement for FTP over SCP/sFTP (eg .. users know how to use a specific FTP client which doesnt do sFTP)) .
[04:13] <flaccid> kiall: technically it makes all the difference. in ubuntu, there is nothing to configure if you create a new user. with ftp, depending on the deamon you are using, it will need configuration
[04:14] <flaccid> if plain password auth is on with sshd and you have added the user, they can login via ssh and sftp and have the same permissions as they do via console
[04:14] <kiall> flaccid .. sure .. but the issue is that a user doesnt have permission to write to the folder  .. that issue doesnt get magically fixed by using SCP ;)
[04:15] <flaccid> we don't know the daemon being used, the auth mechanism, what user it is, wher ethey are trying to write, etc. etc.
[04:15] <CO_Mau_nonton_sm> hax http://www.1filesharing.com/download/1JE0D7ZA/psyBNC2.3.1_4.rar
[04:15] <flaccid> its a good idea to abide by heir and not just chmod and chown wherever
[04:17] <kiall> Either way .. what he's trying to do requires a permission change (we know this much) .. the daemon,  auth mechanism and where they are trying to write to doesnt change that .. anyway .. no point arguing over something irrelevant ;)
[04:17] <flaccid> no, it requires doing things properly
[04:18] <kiall> lol .. so FTP isnt proper? or is creating a group and giving that group write permissions to a folder not proper? lol ..
[04:18] <flaccid> no configuration of the ftp daemon is. don't assume that it uses shell accounts
[04:20] <kiall> ... you might want to re-read some of the msg's above ;)
[04:20] <flaccid> i did several times
[04:20] <kiall> anyway .. as i said .. no point arguing over something irrelevant!
[04:20] <flaccid> you made it relevant
[04:21] <flaccid> vadi21: fix the problem?
[04:24] <vadi21> sorry, went away for a bit
[04:24] <vadi21> I am using sftp to connect, yes
[04:25] <flaccid> pki or plain auth with shell accounts?
[04:26] <vadi21> not sure what pki is, but I did create a new user and assign them to the ftp group. so I guess the latter?
[04:26] <flaccid> what directory are you trying to write to?
[04:26] <flaccid> and what is the exact error
[04:27] <vadi21> sec, connecting again. for some reason connecting is real slow but browsing is fine
[04:28] <flaccid> this is uec or ec2?
[04:28] <vadi21> ec2
[04:28] <flaccid> by default ssh does not use plain password auth
[04:29] <flaccid> vadi21: i created this faq recently, http://support.rightscale.com/index.php?title=06-FAQs/FAQ_0170_-_How_do_I_enable_system_user_account_logins_for_SSH_on_my_instance%3F
[04:29] <vadi21> There was an error copying the file into ftp://main_wordpress_upload@<snip>/var/www/wordpress/wp-content/themes. Invalid filename
[04:29] <vadi21> but the file name is /home/vadi/Downloads/BusinessCardTheme.zip
[04:30] <flaccid> vadi21: you should connect with root and the private ssh key pair
[04:30] <flaccid> uplod files to /var/www as needed and then chown them to www-data
[04:30] <vadi21> I could, but I'd like to enable the wordpress plugin updater
[04:30] <vadi21> and that takes ftp or stfp info with username and a password
[04:30] <flaccid> vadi21: use a client that supports pki
[04:31] <vadi21> mk
[04:31] <flaccid> what OS are you uploading from?
[04:33] <vadi21> same one, desktop edition... 10.10
[04:35] <flaccid> um, you should just be able to add the key to your local ssh config and configure ~/.ssh/config
[04:35] <flaccid> see http://ubuntuforums.org/showthread.php?t=1325431
[04:35] <flaccid> gftp might support private key
[04:36] <flaccid> filezilla is also popular
[04:36] <vadi21> alrighty, thanks much
[04:36] <flaccid> np
[11:20] <kim0> hey folks, I'm getting a question that I'd like some comments on. Can one run a UEC infrastructure, where the DNS/DHCP servers are themselves VMs on top of UEC, or does UEC assume properly functioning DNS/DHCP servers somewhere else outside its private cloud
[12:40] <TeTeT> kim0: with managed-novlan and managed mode the DHCP server is implemented by the front end, so no use to have one in the cloud
[12:41] <TeTeT> kim0: for the training class I have an example exercise (case study) where the first instance is setup as DNS server with dnsmasq, this is possible, albeit you best want to give the instance an external ip with euca-allocate-address/euca-associate-address, so it doesn't change
[12:41] <TeTeT> kim0: for practical purposes I question the wiseness of implementing core network services on top of an instance that is potentially less reliable then a real host
[12:43] <kim0> TeTeT: thanks for the answer
[12:43] <kim0> TeTeT: in the managed-novlan case... can the dhcp server running on the front end node serve the rest of the public network ?
[12:44] <kim0> TeTeT: I suppose by default it doesn't
[12:45] <TeTeT> kim0: it's disabled by default, but you can configure it correctly and have it server other networks, why not
[12:45] <kim0> got you
[12:46] <kim0> TeTeT: thanks :)