[01:19] <rougeleaf> How do I setup ownership of a folder, so when a user via ftp or webaccess creates a folder it is not root? Every time a FTP or www-data user makes a new folder it is owned by root
[01:21] <twb> You can't.
[01:23] <rougeleaf> So every time they make a file I have to go to command line and chmod to give them permission?
[01:23] <twb> Or fix your FTP server.
[01:24] <rougeleaf> How can I go about that?
[01:24] <twb> My preference would be to stop using FTP altogether and start using SFTP
[01:25] <PatrickDK> sounds like your using ftp as root
[01:25] <PatrickDK> cause it makes the files owned by the user
[01:25] <PatrickDK> and so the user would have to be root
[01:25] <PatrickDK> running ftp and web as root?
[01:25] <rougeleaf> I made a new user for it
[01:26] <PatrickDK> you have the sticky bit on for the parent dir?
[01:26] <twb> I don't think the sticky bit does what you think it does.
[01:26] <rougeleaf> I don't know sticky
[01:26] <PatrickDK> I think I'm thinking of group sticky
[01:27] <PatrickDK> not sticky :)
[01:27] <PatrickDK> the suid/sgid bits for directory
[01:27] <rougeleaf> How do I check how the programs are running?
[01:28] <rougeleaf> rather what user they are running under
[01:28] <PatrickDK> normally via ps axu
[01:28] <PatrickDK> but depends
[01:28] <PatrickDK> like ftp normally will run as root, and change to the user that logs in
[01:31] <rougeleaf> I don't see the proftpd, but apache is running under www-data
[01:34] <rougeleaf> there it is... It is running under proftpd for user
[01:50] <eriksson25> Hi, how can I set so that a folder created in a sub folder gets its rw persmisson for the group automaticly
[02:01] <eriksson25> Anyone in that could give a hint?
[02:10] <qman__> eriksson25, umask
[02:11] <qman__> depending on how you create the subfolders, there are ways to force the create mask
[02:13] <eriksson25> Well, It one folder /hdd/temp And my user eriksson creats folders there automaticly. They are created with 744 permissions. But I want them to be 777. How would I set that up?
[02:14] <qman__> you could set your umask, but that will affect things globally
[02:15] <qman__> the best way would be to configure whatever it is that is creating them to set the permissions the way you want
[02:15] <eriksson25> how do you meen globaly? is umask efecting everything? not just one folder and sub folders?
[02:16] <qman__> setting your umask changes the default permissions for all files created by your user
[02:16] <eriksson25> Ohh, oki I see.
[02:17] <eriksson25> Well, its rtorrent making this subfolders.
[02:19] <eriksson25> Well, its time to sleep, but will take a look closer to umask tomorrow. Thanks for the help.
[02:19] <qman__> ah, I had a similar issue with torrentflux
[02:19] <qman__> I ended up setting a cron job to change the group periodically
[02:20] <qman__> there's definitely a better way, I just didn't bother to dig
[02:20] <eriksson25> =)
[02:49] <Psi-Jack> During setup of Ubuntu 10.04.1, I setup iSCSI, not for the /, but for /home. Since doing that, the network setup completely ignores /etc/network/interfaces and uses DHCP instead of the static IP I specifically assigned it.
[03:15] <twb> Psi-Jack: "set up iscsi" how?
[03:15] <twb> Psi-Jack: also pastebin "cat /etc/network/interfaces; ip l; ip a; ip r"
[03:15] <Psi-Jack> From the disk manager during installation.
[03:17] <Psi-Jack> As I said, /etc/network/interfaces is correct, I gotta run to work, but I can make a screenshot of the actual kvm screen of the bootup, which shows what's going on.
[03:17] <twb> Did you do the install using the server CD?
[03:17] <Psi-Jack> Yep
[03:17] <twb> I haven't dealt with iscsi before; I might need to grovel through the code in places in /usr/share/initramfs-tools/
[03:20] <Psi-Jack> What's a good quick image paste site? ;)
[03:21] <twb> NFI; I don't do images as a rule
[03:22] <twb> With kvm -console or -nographic or ptys, you can get its output as text.
[03:22]  * Psi-Jack shrugs. "Can't really give you the exactness that I need then. This is a kvm guest, and I have a snapshot of the kvm boot up process.
[03:23] <twb> Psi-Jack: no problem; I'll just go back to what I was doing :-P
[03:23] <Psi-Jack> You do that.
[03:23] <Psi-Jack> *coughs*jerk*coughs*
[03:27] <twb> Well, yes.
[03:28] <twb> The nice thing about being a volunteer is I don't have to be polite.
[04:37] <euphoria1> how do install wireles tools when i have no internet connection on ubuntu-server
[04:40] <ruben231> hi guys is it possible like for ruben user my home directory is MIR3 another folder..
[04:41] <ruben231> because if i creatre user ruben the home directory will still be like ruben also...is it possible to rename but still home direcoty of ruben..?
[04:47] <twb> ruben231: I don't understand the question.
[05:01] <Psi-Jack> And no, twb, you don't /have/ to be polite, but it would sure be nicer. I mean, if you don't want to help, volunteer, why the hell bother attempting and end up being a douche about it? Seriously.
[05:02] <twb> Psi-Jack: plonk.
[05:03] <Psi-Jack> What I am experiencing is obviously a VERY serious bug in Ubuntu 10.04.1, the way it's designed or what it does specifically during setup to cause this issue.
[05:03] <Psi-Jack> It only happends WHEN I setup iSCSI during the partitioning phase of the installation. If it's done afterwards, it doesn't happen.
[05:03] <Psi-Jack> Done post-install that is, manually installing open-iscsi, etc.
[05:29] <cappicard> hey folks. i'm trying to get xen to work in ubuntu maverick.  If I follow the instructions, i dont get the initrd created unless i do mkinitramfs. And when I boot, i get a kernel panic.
[05:30] <cappicard> during make linux-2.6-pvops-install, I get dpkg: version '/boot/xen.gz' has bad syntax: invalid character in version number
[05:38] <Psi-Jack> cappicard: Xen is no longer really supported. Recommend kvm.
[05:42] <veovis1> Can anyone please recommend a command line application to convert flacs to both mp3 and aac?  One application for each task would be fine as well.  I want to point it at my music folder, have it read the subdirectories and convert everything in them, and put the results, with the same structure, in an aac folder and an mp3 folder respectively.
[06:02] <MrPPS> hi all, apparently Ubuntu's php packages are still running a vulnerable version? < php v5.3.3 i believe
[06:02] <MrPPS> is this the case?
[06:05] <andol> MrPPS: What vulnerability would that be?
[06:05] <lifeless> andol: 'php'
[06:06] <andol> lifeless: Yes, but I have a feeling that MrPPS is referring to something more specific.
[06:10] <meatflag> MrPPS: my php5 package is showing 5..2-1ubuntu4 as the version.
[06:10] <MrPPS> meatflag, andol: php 5.3.2 and before are known to have multiple vulns, including RCE
[06:14] <andol> MrPPS: Yes, but say Ubuntu 10.04 for example. It doesn't provide PHP 5.3.2. It provides 5.3.2-1ubuntu4, which is PHP 5.3.2 plus a set of security fixes.
[06:14] <ajmitch_> MrPPS: security fixes are backported & applied to 5.3.2
[06:16] <MrPPS> andol, ajmitch_ - thanks for letting me know, i wasn't aware of the situation/setup
[06:17] <MrPPS> much appreciated, and thank you for your time!
[06:18] <cappicard> Psi-Jack, there. kvm is running so much better. I'm now installing XP into it. kvm is on my server. I Have the virtual manager on one of my desktops.
[06:18] <Psi-Jack> kvm IS much better, in every way.
[06:18] <ruben231> hi guys if i have a sers whihc belongs to the 2 groups - how do i specify the home directory..of taht user..?
[06:19] <cappicard> how's it with actual usb devices?
[06:19] <Psi-Jack> That's why Red Hat is going with it, Canonical is too.
[06:19] <Psi-Jack> cappicard: How's your IOMMU support?
[06:19] <cappicard> well, i don't know. i have a phenom quad4. how can i check?
[06:22] <cappicard> ah ok. i see it. i should be fine. looked in /etc/apparmor.d/abstractions/libvirt-qemu
[06:23] <cappicard> xp setup is taking abit longer than normal, but it's copying files.
[07:11] <twb> Is there any real alternative to puppet (for lucid)?
[07:12] <joschi> twb: depends on what you want to do and why exactly you are looking for an alternative
[07:13] <twb> I want configuraton management
[07:13] <joschi> twb: e.g. cfengine3 is also in the package tree
[07:13] <twb> preferably something that doesn't feel like it's maintained by cowboys
[07:14] <twb> I guess I should try cfengine; the only reason I haven't is because everyone seems to enthusiastic about replacing it with puppet or chef
[07:14] <joschi> twb: well, take a look at cfengine3 or bcfg2 then
[07:14] <twb> There's also landscape, but it's no good for me because I can't control the server side
[07:15] <joschi> twb: landscape has a different scope
[07:18] <twb> http://en.wikipedia.org/wiki/Comparison_of_open_source_configuration_management_software
[07:22] <twb> ubuntu-serverguide doesn't endorse any implementation
[08:33] <mvo> hey, good morning. I'm working on screen integration for the release upgrader, and have a (hopefully simple) question. when doing "screen ls" (as a example) it will run but then print "[screen is terminating]". is there a way to keep it from cleaning the screen on exit?
[08:43] <lifeless> mvo: the man page is usually win
[08:44] <lifeless> mvo: I can't see anything there
[08:46] <twb> mvo: set zombie mode on
[08:47] <mvo> lifeless: thanks, I looked there first but did not find anything
[08:47] <mvo> twb: thanks! let me try this
[08:47] <twb> You may prefer something designed for that role, e.g. nohup script -c 'f x y' &, where f is your program and x and y are its arguments.
[08:52] <mvo> twb: right, the "ls" was a bad example, my idea is to run the text-mode release upgrader inside screen and that requires that the user is able to interact with the window
[08:53] <twb> Why inside screen?
[08:55] <mvo> as a safeguard if e.g. network drops during the upgrade briefly
[08:59] <twb> Fair enough
[08:59] <twb> I guess zombie is most appropriate
[09:03] <mvo> thanks twb, zombie works nicely
[09:06] <uvirtbot`> New bug: #682581 in mysql-dfsg-5.0 (universe) "package mysql-server-5.0 5.1.30really5.0.75-0ubuntu10.5 failed to install/upgrade: le sous-processus post-installation script a retourné une erreur de sortie d'état 1" [Undecided,New] https://launchpad.net/bugs/682581
[09:20] <twb> In squid, the default appears to be "cache up to 100MB"
[09:21] <twb> But du -smx /var/spool/squid shows it using 116MB when it filled the disk
[09:21] <twb> So: WTF?
[09:27] <veovis1> Sorry about the frequent re/disconnects from veovis_muaddib.  I'm trying to set up ZNC.  I have it working for the most part, but for some reason the webadmin isn't working.  I'm connecting on the port I assigned, and I keep getting an error saying that the server unexpectedly dropped the connection in my browser.
[09:32] <twb> To answer my own question: looks like the problem was dropping CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH before starting upstart
[09:33] <twb> So squid was creating spool dirs with "rwxr-x--- proxy proxy", which it wasn't able to search/delete.
[09:33] <twb> "adduser root proxy" fixed it
[09:34] <twb> (That and dialling the cache cap down to 50M, leaving 50M to 70M of the disk unused.)
[09:47] <uvirtbot`> New bug: #682592 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5.5 failed to install/upgrade: subproces installed post-installation script gaf een foutwaarde 1 terug" [Undecided,New] https://launchpad.net/bugs/682592
[10:03] <milligan> Does anyone here have any experience with amavisd-new? I'm trying to set @spam_kill_level_maps = (read_hash("/etc/amavis/conf.d/kill_level") .. but it appears to just ignore the hashes I define in the file .. ? The content of my kill_level file is { "user@domain.tld" => 5.0 }.
[10:06] <kai> hi folks
[10:06] <kai> on what basis does landscape decide that a system requires a restart?
[10:11] <lieuwe[49ft]>  i'm trying to get ampache set up, but it says "Ampache.cfg.php Exists [ERROR]" and "Ampache.cfg.php Configured? [ERROR]", any idea what i'm doing wrong
[10:11] <lieuwe[49ft]> ?
[11:02] <lieuwe[49ft]> hey, i installed ubuntu-server with php support, but it doesnt seem to work, it just gives 404s for each and every php file
[11:04] <mrmist> that would normally suggest that it's not looking where you think it should be looking for the files
[12:51] <milligan> Does anyone here have any experience with amavisd-new? I'm trying to set @spam_kill_level_maps = (read_hash("/etc/amavis/conf.d/kill_level") .. but it appears to just ignore the hashes I define in the file .. ? The content of my kill_level file is { "user@domain.tld" => 5.0 }.
[12:54] <pmatulis> milligan: missing semicolon at the end?
[12:54] <milligan> pmatulis, guessing, or does each line require a semicolon ?
[12:54] <milligan> or after the } ?
[12:55] <pmatulis> milligan: yes
[12:55] <pmatulis> ...5.0};
[12:55] <milligan> testing
[12:56] <milligan> If that's the solution, I don't know if I should celebrate or kill myself
[12:56] <pmatulis> milligan: you can also start it in debug mode.  maybe will help?
[13:00] <milligan> didn't help :(
[13:03] <pmatulis> milligan: actually, i believe you always need the following form:
[13:03] <pmatulis> @spam_kill_level_maps = (\%some_hash, $sa_kill_level_deflt);
[13:04] <milligan> how do I define %some_hash ?
[13:04] <pmatulis> milligan: like you did before
[13:05] <pmatulis> milligan: but the file would contain "user@domain.tld 5.0" (no quotes)
[13:05] <milligan> I've tried writing one entry pr line, but that generates errors.
[13:06] <milligan> so, instead of \%some_hash, I would put @spam_kill_level_maps = (\read_hash("myfile"), $sa_kill_level_deflt); ..and put one entry pr line, space separator for the score?
[13:07] <pmatulis> milligan: yeah
[13:07] <pmatulis> milligan: you can hardcode the default value if you want (or use the variable)
[13:08] <pmatulis> ($sa_kill_level_deflt)
[13:08] <milligan> yep. doesn't accept one entry pr line with space though
[13:08] <pmatulis> milligan: what version are you running?
[13:08] <milligan> amavisd-new-2.6.4
[13:09] <milligan> the only syntax I have made work is 'user@domain.tld' => X.X, where x = score.
[13:10] <pmatulis> milligan: maybe try without an external file for now
[13:10] <milligan> well, "work" is relative :P
[13:10] <pmatulis> @spam_kill_level_maps = (
[13:10] <pmatulis> { '.domain1.com.au' => $sa_tag2_level_deflt, '.domain2.com.au' => $sa_tag2_level_deflt }, \$sa_kill_level_deflt
[13:10] <pmatulis> );
[13:12] <milligan> that works
[13:12] <pmatulis> milligan: ok, good
[13:13] <milligan> Any idea why the read_hash doesn't work though ?
[13:14] <milligan> Maybe missing some perl module or something ?
[13:14] <pmatulis> milligan: did you try starting in debug mode?
[13:14] <milligan> the config is set to debug mode ..
[13:14] <milligan> plus this is a live server, so there's quite a lot of traffic on it :p
[13:15] <pmatulis> milligan: yeah, restarting amavisd-new constantly is not great then
[13:15] <milligan> I guess there's no significant gain in having the pr user rules in a separate file .. ? I would be fine maintaining an array in my config file for the few times it's needed?
[13:16] <pmatulis> milligan: it's a matter of organization.  subjective
[13:17] <milligan> yep
[13:17] <pmatulis> milligan: but i know the amavisd-new ML is pretty helpful.  i would send your question there
[13:18] <milligan> Is there any way I could easily maintain such a list via a database, without involving creating separate classification groups .. ?
[13:18] <milligan> yeah, I've signed up for the ML. Waiting for approval :)
[13:18] <pmatulis> milligan: i'm pretty sure you can put anything in MySQL
[13:18] <milligan> that's what I thought as well .. just wondering if you know from the top of your head to do it for this specific need :)
[13:18] <pmatulis> milligan: no, i never did it
[13:19] <patdk-wk> seperate classification group?
[13:19] <milligan> it would be great to have a dynamically maintainable list, instead of having to restart amavis for every user that wants personal settings.
[13:19] <patdk-wk> I maintain per domain settings in mysql for amavisd
[13:20] <milligan> I need pr user .. and the server is strictly relaying. Just a filter, nothing more.
[13:20] <patdk-wk> I also have amavisd rip out a whitelist based on the horde address book :)
[13:20] <patdk-wk> well, amavisd documentation is all about per user database usage
[13:21] <milligan> I have been reading up on it lately .. but I found mostly stuff involving pretty heavy config changes to start using it.
[13:21] <patdk-wk> just write your own sql, and it's all good
[13:22] <milligan> I can write my own query for each lookup .. ?
[13:24] <patdk-wk> http://pastebin.com/KxxFDSCr
[13:24] <patdk-wk> pretty much all you need to adjust the basic stuff per user, or domain, or whatever you put in the address field
[13:26] <milligan> Fair enough .. and where do I tell amavis to do a DB lookup ?
[13:26] <patdk-wk> ok, you really need to read the amavisd docs
[13:38] <cappicard> hey folks. when i try installing xp pro, kvm is freezing when i try booting it after text-based setup completes.
[14:06] <andy> hey guys what do you guys recommend for server monitoring
[14:06] <andy> i am currently looking at ebox
[14:07] <Pici> andy: Monitor or control?
[14:07] <andy> Pici, monitor
[14:07] <jpds> Nagios/sysstat/cacti/munin/...
[14:07] <jpds> I personally like sysstat.
[14:07] <Pici> andy: For long term stuff I use munin/cacti
[14:07] <andy> haha thans again jpds
[14:08] <andy> Pici, by long term stuff you mean for servers running for a long time?
[14:09] <Pici> andy: For analyzing trends over a long period of time.
[14:10] <andy> Pici, so you use multiple softwares to monitor and control. Ebox (zentayl) claims to be like an all in one
[14:11] <Pici> andy: I don't use any dashboard for server control.  I prefer the console.
[14:34] <hggdh> mdeslaur: ping re. test of JDK
[14:34] <mdeslaur> hggdh: hi!
[14:35] <hggdh> mdeslaur: morning sir. Do you still need it tested (AMD64)?
[14:35] <mdeslaur> hggdh: Daviey is currently testing it. Thanks!
[14:36] <hggdh> mdeslaur: roj, sorry for being on vacation ;-)
[14:36] <Daviey> slacker :)
[14:36] <mdeslaur> hggdh: don't apologize for that! :)
[14:36] <hggdh> Daviey: slacker, and happy!
[14:36] <Daviey> :)
[14:36]  * mdeslaur likes turkey too :)
[14:36] <hggdh> Daviey: BTW...
[14:36] <zul> i like turkey in october
[14:36] <andy> hey guys. I need to run diagnostics on a hard disk which may be faulty on one of my server boxes. Can you guys recommend which tool to use?
[14:36] <hggdh> Daviey: do you want me to re-run the euca update?
[14:37] <Daviey> hggdh: might be a good idea, did you see my comments?
[14:37] <Daviey> (on the bug)
[14:37] <hggdh> Daviey: yes, I did. I really wonder who is caching it...
[14:37] <hggdh> will run it again
[14:38] <Daviey> hggdh: I'd also like you to check the From field, please.
[14:39] <Daviey> andy: "badblocks" -- might be the tool you want.
[14:40] <patdk-wk> andy, well, smartctl, then badblocks
[14:40] <patdk-wk> but first I would back it up probably with dd_rescue
[14:40] <andy> thanks guys
[14:41] <hggdh> Daviey: will do
[14:42] <uvirtbot`> New bug: #522725 in bind9 (main) "host crashed with signal 7 in dns_rdataset_init()" [Low,Incomplete] https://launchpad.net/bugs/522725
[15:28] <burntoutlamp> hey folks, I just set up a samba file share and I have force group 770 etc all the way I wanted on Ubuntu 10.04 and when users of a group created files and folders everything was fine. now, I have the same access denied issue. as I did before groupshare
[15:29] <burntoutlamp> group force*
[16:41] <uvirtbot`> New bug: #682736 in samba (main) "package samba-common 2:3.4.7~dfsg-1ubuntu3.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/682736
[17:11] <XeNoT_> anyone knows how to bind iSCSI on 1 specific NIC?
[17:12] <SpamapS> XeNoT_: for listening?
[17:13] <XeNoT_> for connecting
[17:13] <XeNoT_> at the moment it keeps trying to connect to the target with all my interfaces which is annoying
[17:14] <syn-ack> SpamapS, Got a second for a /pm?
[18:12] <zul> ttx: ping
[18:13] <SpamapS> zul: <accent>le pong!</accent>
[18:16] <arrrghhh> maybe you guys will be the better crowd to ask...
[18:17] <arrrghhh> i have a failing hard disk that i'm trying to recover data from for a friend, and it's spewing a ton of stuff into my logs... it actually filled my root partition, because /var encompasses it...
[18:17] <arrrghhh> is there any way to get the logs to calm down while i trouble shoot the disk?
[18:17] <SpamapS> arrrghhh: stop rsyslogd
[18:17] <arrrghhh> oh ok
[18:19] <arrrghhh> and can i just delete kern.log and syslog.1, or should i just append nothing to the file...?
[18:20] <arrrghhh> i'd rather not reboot if i can help it...
[18:20] <SpamapS> arrrghhh: safer to just purge them
[18:20] <arrrghhh> k
[18:20] <SpamapS> arrrghhh: meaning cp /dev/null /var/log/kern.log
[18:20] <arrrghhh> ah ok
[18:20] <arrrghhh> i was going to > /dev/null
[18:20] <arrrghhh> but i guess they're both the same eh?
[18:20] <SpamapS> arrrghhh: though I *think* rsyslogd will recreate them, I don't know that for 100% sure
[18:20] <zul> SpamapS: est-que tu savois le test due likewise-open?
[18:20] <SpamapS> arrrghhh: yeah same thing ;)
[18:21] <arrrghhh> awesome.  thanks :D
[18:21] <SpamapS> zul: non, merde!
[18:21] <zul> SpamapS: sacre bleu!!!
[18:21] <arrrghhh> lol
[18:21] <highvoltage> lol!
[18:22] <SpamapS> zul: c'est la vie
[18:22] <zul> SpamapS: pas rien
[18:22] <highvoltage> (I learned lots of new french swear words recently if anyone needs it)
[18:22] <zul> highvoltage: quebecqouis french or french french
[18:23] <highvoltage> zul: well, quebecqouis french (but some french french too)
[18:23] <zul> highvoltage: oh so like collis and tabernac?
[18:24] <arrrghhh> crap, i keep getting permission denied even with sudo..?
[18:24] <arrrghhh> sudo cat /dev/null > /var/log/syslog.1, then bash: /var/log/syslog.1: Permission denied
[18:25] <arrrghhh> i've never had to blow up my logs before.
[18:25] <SpamapS> arrrghhh: sudo is just calling cat .. your shell is doing the >
[18:25] <arrrghhh> oh right.
[18:25] <SpamapS> arrrghhh: sudo sh -c 'cat > blah'
[18:25] <arrrghhh> i see why your command is more straightforward now :P
[18:26] <jpds> arrrghhh: echo "" | sudo tee /var/log/syslog.1
[18:27] <arrrghhh> jpds, cool.  i think i'm good now...
[18:28] <air^> or just "sudo -s" and it will give you an root shell :)
[18:28] <arrrghhh> ah right
[18:28] <arrrghhh> so many ways to skin a cat...
[18:28] <arrrghhh> :D
[18:28] <air^> indeed :)
[18:41] <resno> im adding anew drive to my ubuntu server, how do i go about getting it setup to be used as a /home drive?
[18:47] <SpamapS> resno: you'll need to partition it first, then add a filesystem, then sync the existing /home data onto it, and then add it to /etc/fstab
[18:48] <SpamapS> resno: unless you're using LVM, if thats the case, its a little more complex
[18:48] <resno> i dont believe i am using lvm
[18:48] <resno> i want to continue using the current drive... just add this one on SpamapS
[18:49] <SpamapS> resno: right, so first step is partitioning which you can do with parted or fdisk
[18:50] <resno> right, ive had a ltitle experince with that
[18:50] <resno> SpamapS: should i use ext3?
[18:51] <resno> err, ext4
[18:55] <SpamapS> resno: for simplicity sake, ext4 is probably the right choice
[18:55] <euphoria1> how to get wifi tools when i have no internet? on ubuntu server
[18:55] <euphoria1> ?
[18:55] <euphoria1> damn
[18:55] <SpamapS> euphoria1: USB key?
[18:55] <euphoria1> yes
[18:55] <euphoria1> its usb
[18:55] <SpamapS> Cromulent: ++ for that nick. :)
[18:56] <Cromulent> ha :)
[18:56] <resno> SpamapS: im checking out the /etc/fstab file. do i need the uuid when i add the new drive?
[18:56] <euphoria1> SpamapS ?
[18:57] <euphoria1> weird
[18:57] <euphoria1> no one uses ubuntu server
[18:57] <euphoria1> all guides say apt get apt get but
[18:57] <SpamapS> euphoria1: I'm saying, put them on a USB key
[18:57] <euphoria1> ok
[18:57] <euphoria1> stupit ubuntu server
[18:58] <euphoria1> no wifi on ubuntu server
[18:58] <euphoria1> weird and stupido
[18:59] <SpamapS> resno: yeah, you can get it after you mkfs with dumpe2fs -h /dev/XXX
[18:59] <SpamapS> euphoria1: wifi on a server? ;)
[18:59] <SpamapS> euphoria1: do you have broadcom wifi?
[18:59] <euphoria1> i dont have another internet source
[18:59] <euphoria1> im sharing internet with guy next door
[18:59] <euphoria1> so no other solutions bro
[18:59] <resno> SpamapS: broadcoms are the worest :(
[19:00] <resno> SpamapS: so, should i make the option "/home" like the current drive? or how do i tell it that it can spill onto the new drive?
[19:01] <SpamapS> resno: you should first mount it somewhere else and copy all of the files with rsync
[19:02] <SpamapS> resno: so, 'mount /dev/XXX /mnt' then 'rsync -a /home/ /mnt/'
[19:02] <euphoria1> SpamapS how to access usb key
[19:02] <euphoria1> on ubuntu server bro
[19:02] <SpamapS> resno: then when you've verified its all there, mv /home /home.old and mkdir /home and mount -a
[19:03] <SpamapS> euphoria1: 1st, not your bro. ;) second, it should be mounted automatically I think.. not sure about on a server.
[19:03] <resno> lol
[19:03] <euphoria1> pff
[19:03] <euphoria1> SpamapS
[19:03] <euphoria1> stupido
[19:03] <euphoria1> just like server :))
[19:04] <resno> SpamapS: im curious why should i rsync everything to that drive?
[19:05] <SpamapS> euphoria1: thanks for letting me know that you don't want any more help from me.
[19:06] <SpamapS> resno: because when you mount it, it will overlap the old stuff, so it will all disappear
[19:08] <resno> SpamapS: ah... really?
[19:08] <qman__> SpamapS, nope, no automount on server, have to do it manually
[19:08] <qman__> that's provided by gnome/KDE apps
[19:10] <wieshka> ey - how can i allow user foo to run /etc/init.d/bar with /etc/sudoers file? foo ALL=NOPASSWD:/etc/init.d/bar ?
[19:10] <SpamapS> qman__: ah that makes sense
[19:11] <qman__> wieshka, yes
[19:11] <qman__> let me find the guide
[19:13] <wieshka> hmmm, still does not works - do i need to add maybe something to $PATH ?
[19:14] <qman__> user      ALL = (ALL) NOPASSWD: /etc/init.d/bar
[19:14] <qman__> full guide http://www.sudo.ws/sudo/sudoers.man.html
[19:14] <wieshka> qman__ thx, i will give a try
[19:14] <wieshka> i was close :)
[19:16] <wieshka> huh, it still asks for password
[19:16] <wieshka> after closing visudo screen, sudoers file is reloaded and active ?
[19:16] <qman__> yes
[19:16] <wieshka> strange
[19:16] <qman__> you may need to re-log
[19:16] <qman__> it should just take effect but I would try that before banging your head against the wall
[19:17] <wieshka> yeah, i already tried even new ssh session
[19:17] <RoyK> qman__: shouldn't be necessary to re-login
[19:17] <wieshka> so my line is zabbix ALL=(ALL) NOPASSWD: /etc/init.d/zimbra
[19:18] <RoyK> wieshka: is zabbix listed other places in sudoers?
[19:18] <wieshka> whno
[19:18] <wieshka> no
[19:18] <wieshka> it last on only empty
[19:19] <wieshka> it is last and only entry
[19:19] <RoyK> k
[19:20] <wieshka> I just wrote .sh script for zabbix agent what monitors via zabbix Zimbra services for me
[19:20] <wieshka> but now i have problems with running this script
[19:20] <RoyK> wieshka: perhaps it'll need the full command with arguments - I have solved that with a shell script that does restarts
[19:20] <wieshka> as user "zabbix"
[19:20] <RoyK> icinga  ALL=(ALL) NOPASSWD:/usr/local/bin/tw_cli, NOPASSWD:/usr/local/icinga/libexec/restart_mail_system.sh
[19:21] <qman__> according to the manual, the commands can simply be comma separated
[19:21] <qman__> don't need two NOPASSWD:s
[19:22] <wieshka> RoyK ok - lets try little workaround with shell script
[19:22] <RoyK> qman__: oh, ok
[19:28] <wieshka> so, according to tips and guide this line should allow to user zabbix run this to shell scripts with no asking passwword: zabbix ALL=(ALL) NOPASSWD:/etc/zabbix/zimbra/zimbra_status.sh, /etc/zabbix/check_zimbra.sh
[19:28] <wieshka> i am correct ?
[19:53] <ruben23> hi guys i want to create different directory with that setup of permission on user, any siggestion steps how to implement it on my case -------------------->http://i51.tinypic.com/24pcadu.jpg
[20:09] <zul> hggdh: can you bring up that kernel bug in the weekly meeting?
[20:24] <hggdh> zul: yes, I can and will. Just tested with today's ISO, no luck
[20:24] <zul> freaking hell
[20:24] <hggdh> zul: this means no testing for alpha1 as of now :-(
[20:25] <RoyK> which bug is this?
[20:26] <hggdh> https://bugs.launchpad.net/ubuntu/+source/linux/+bug/676245
[20:26] <uvirtbot`> Launchpad bug 676245 in linux "Broadcom NetXtreme II BCM5709 -- no network found on ISO install" [High,New]
[20:26] <hggdh> RoyK: ^
[20:27] <RoyK> k
[20:32] <solid_snake> what is everything that I need to have an online webserver?
[20:32] <Pici> !lamp
[20:33] <solid_snake> Pici, so using tasksel to install that should do fine? correct?
[20:33] <Pici> Short version: sudo tasksel install lamp-server
[20:33] <Pici> solid_snake: Yes
[20:33] <solid_snake> Nice!
[20:35] <RoyK> solid_snake: for a simple webserver, apache or lighttpd will do, lamp is mysql+php in addition to that
[20:45] <syn-ack> lighttpd is actually one heck of a webserver too.
[20:45] <syn-ack> Anymore I prefer it over Apache in a lot of cases.
[20:46] <SpamapS> lighttpd sits somewhere between apache and nginx in the scalability game.. but its code is actually readable, so it wins the maintenance war against nginx IMO. ;)
[20:46] <syn-ack> haha
[20:46] <syn-ack> SpamapS++
[21:31] <uvirtbot`> New bug: #682865 in vsftpd (main) "memory leak in vsftpd" [Undecided,New] https://launchpad.net/bugs/682865
[21:38] <Daviey> SpamapS: Does nginx still not have a code repository ?
[21:40] <SpamapS> Daviey: dunno about that, I just recall that it was developed mostly in secret.
[21:40] <SpamapS> Daviey: its been crazy popular, so I'd be surprised if it hasn't gotten a little better since 18 months ago when I last checked.
[21:42] <Daviey> SpamapS: hope so!
[21:46] <uvirtbot`> New bug: #600783 in euca2ools "euca-bundle-vol, euca-bundle-image use invalid sha1sum" [Undecided,Fix committed] https://launchpad.net/bugs/600783
[22:37] <ZacharyNewb> hi
[22:38] <IrishWristwatch> hi
[22:38] <ZacharyNewb> I need a bit of help
[22:39] <SpamapS> ZacharyNewb: we can probably help you, maybe you can ask a specific quesetion?
[22:39] <ZacharyNewb> I'm a rather new user to ubuntu
[22:39] <ZacharyNewb> I've install server
[22:39] <ZacharyNewb> got the firewall working
[22:39] <ZacharyNewb> web server
[22:39] <ZacharyNewb> print server
[22:40] <ZacharyNewb> however, trying to setup ftp I'm having trouble with permissions
[22:40] <ZacharyNewb> vsftpd
[22:40] <ZacharyNewb> is what I'm using
[22:40] <ZacharyNewb> it's not allowing users to creates folders
[22:40] <ZacharyNewb> I get a 550 error
[22:41] <ZacharyNewb> in the ftp client
[22:42] <SpamapS> ZacharyNewb: do you get any errors in /var/log/daemon.log and/or /var/log/syslog ?
[22:43] <eriksson25> Hi, anyone using rtorrent and know how you make it to create folders with diffrent permissons.
[22:44] <ZacharyNewb> That's a no.
[22:44] <ZacharyNewb> There are log files, but they're blank with nano
[22:45] <IrishWristwatch> ZacharyNewb, does the user you are logging in with have the proper permissions in the directory you're writing to?
[22:45] <IrishWristwatch> you can check the permissions with ls -l
[22:45] <IrishWristwatch> and you can change the permissions with sudo <user>:<user> (-R for recursive) /path/to/directory
[22:47] <ZacharyNewb> I did have to chown the folder to be able to write files to it
[22:47] <ZacharyNewb> but I can't make folders
[22:47] <ZacharyNewb> using ls -l
[22:47] <ZacharyNewb> I get "drwxr-sr-x" for the folder
[22:48] <ZacharyNewb> my folder in blue text
[22:48] <IrishWristwatch> but it is owned by the user you're logging in with your ftp
[22:48] <ZacharyNewb> ah, no
[22:48] <ZacharyNewb> um
[22:48] <ZacharyNewb> yes, actually
[22:48] <IrishWristwatch> I see
[22:49] <IrishWristwatch> What is this FTP for anyway, are you sure you want to use something that's that insecure?
[22:49] <IrishWristwatch> unsecure*
[22:49] <ZacharyNewb> it's a personal server, I'm okay with this for now for certain means
[22:50] <ZacharyNewb> actually
[22:50] <ZacharyNewb> what would you suggest that's easy to set up?
[22:50] <ZacharyNewb> I can't get any friggin torrent daemon to work
[22:51] <ZacharyNewb> I use my network, Windows 7 to connect to the server using putty
[22:51] <ZacharyNewb> ftp seems like the easiest way to manage large amounts of folders/files
[22:52] <IrishWristwatch> you want a nice torrent server with a webui I suggets deluge
[22:52] <IrishWristwatch> deluge + deluge-webui
[22:52] <ZacharyNewb> I was trying deluge
[22:52] <ZacharyNewb> but it doesn't seem to work
[22:52] <patdk-lap> zachary, scp or sftp :)
[22:53] <ZacharyNewb> sudo apt-get install deluge deluged deluge-webui
[22:53] <ZacharyNewb> and nothing, can't access it
[22:53] <ZacharyNewb> I know it was installed, but completely unable to interface, do ANYthing with it
[22:55] <IrishWristwatch> ZacharyNewb, patdk-lap is right, SFTP is the best way to go
[22:55] <IrishWristwatch> It uses the OpenSSH server to encrypt your file transfers.
[22:55] <IrishWristwatch> Unlike FTP, which everything including the username and password are transported in cleartext.
[22:56] <ZacharyNewb> Yes, I know, susceptible to man in the middle
[22:56] <ZacharyNewb> but I'm a home user
[22:56] <IrishWristwatch> I know, but still.
[22:56] <IrishWristwatch> It's the principle of the thing.
[22:56] <IrishWristwatch> Also it's in my opinion easier to set up.
[22:57] <IrishWristwatch> As for the deluge webui, http://blog.bsodmike.com/articles/installing-and-configuring-deluge-1-0-7-in-ubuntu-8-10-with-web-ui-interface/
[22:57] <ZacharyNewb> My problem is that these things seem to be very hard to setup
[22:57] <IrishWristwatch> That is the guide I followed a few years ago to set it up.
[22:57] <IrishWristwatch> And it works flawlessly.
[22:58] <ZacharyNewb> I don't see how any of this is user intuitive
[22:58] <IrishWristwatch> And with Deluge you can make an autoadd directory, so all you have to do is save a torrent file to your autoadd directory over something like a Samba share
[22:58] <ZacharyNewb> sounds good
[22:59] <ZacharyNewb> First thing first
[22:59] <ZacharyNewb> what would you suggest for sftp?
[22:59] <SpamapS> So you guys are mostly just doing this to share, what, ISO's of free software?
[22:59] <IrishWristwatch> SFTP is already installed if you have OpenSSH server installed.
[22:59] <jiboumans> smoser: ping?
[22:59] <IrishWristwatch> But, for a client I recommend Filezilla
[23:00] <IrishWristwatch> Which is available for Linux/Win/Mac
[23:00] <IrishWristwatch> You log in using the same credentials as your Unix user.
[23:02] <jiboumans> smoser: have a moment to help me debug that cloud-init thing we spoke about last week?
[23:02] <IrishWristwatch> Now I don't know if you want to do this, since you said this was only a local server, but if you want to add extra security you can setup a chroot for the user, which pretty much locks them into their home directory so they can't browse the root directory from their client
[23:02] <zacharynweb> sorry about that
[23:02] <zacharynweb> clear
[23:02] <zacharynweb> IrishWristwatch: What would you suggest for sftp?
[23:02] <IrishWristwatch> server or client?
[23:03] <IrishWristwatch> GUI Client, FileZilla, CLI Client, just plain "sftp"
[23:03] <klaas> lftp :)
[23:04] <zacharynweb> IrishWristwatch: Newb Question, does the server need another daemon installed for me to use filezilla to connect to it with sftp?
[23:04] <IrishWristwatch> no, the sftp daemon is actually OpenSSH server
[23:04] <zacharynweb> I like filezilla
[23:04] <zacharynweb> awesome
[23:04] <IrishWristwatch> SFTP is FTP over SSH
[23:05] <zacharynweb> and putty provides the ssh
[23:05] <zacharynweb> I have filezilla installed and putty
[23:05] <zacharynweb> how would I make this work?
[23:05] <IrishWristwatch> putty provides ssh, but you don't need putty for sftp
[23:05] <IrishWristwatch> filezilla does it all
[23:05] <zacharynweb> awesome, I'll try it
[23:06] <IrishWristwatch> zacharynweb, you should also check this out if you want to add extra security
[23:06] <IrishWristwatch> http://www.ericstockwell.com/?p=54
[23:07] <zacharynweb> what do I need to do with filezilla to connect to my server?
[23:07] <IrishWristwatch> Because basically, with SFTP the user could view any file he/she could with plain ssh
[23:07] <IrishWristwatch> which in some cases causes security problems
[23:07] <IrishWristwatch> chroot makes it so with sftp they are locked to their home directories, or directory of your choice
[23:07] <zacharynweb> ah
[23:07] <zacharynweb> I use chroot
[23:07] <IrishWristwatch> and are not free to roam your entire hard drive
[23:08] <IrishWristwatch> ah, perfect then
[23:08] <zacharynweb> I noticed that problem.
[23:08] <IrishWristwatch> you can make a group "sftponly" and add these users to them
[23:08] <IrishWristwatch> then make a rule in your sshd_config
[23:09] <zacharynweb> I was making users to access the console/terminal remotely through putty
[23:09] <IrishWristwatch> ah
[23:09] <zacharynweb> bt didn't want extra people, ftp users to be able to login with putty as well
[23:09] <zacharynweb> and basically view the entire drive
[23:09] <IrishWristwatch> you can change that by changing their shell
[23:10] <zacharynweb> found the configuration file responsible for users able to connect via ssh and modified it
[23:10] <IrishWristwatch> /usr/sbin/nologin or /bin/false
[23:10] <zacharynweb> yeah
[23:10] <zacharynweb> So what do I need to do to connect with filezilla?
[23:11] <IrishWristwatch> you need the port number of your OpenSSH server, and the users credentials
[23:11] <zacharynweb> have
[23:12] <zacharynweb> Response:	SSH-2.0-OpenSSH_5.5p1 Debian-4ubuntu4
[23:12] <zacharynweb> Error:	Cannot establish FTP connection to an SFTP server. Please select proper protocol.
[23:12] <IrishWristwatch> don't use quick connect
[23:12] <IrishWristwatch> go to File > Site Manager and create it there
[23:13] <zacharynweb> successful
[23:14] <IrishWristwatch> :]
[23:14] <zacharynweb> cool
[23:14] <zacharynweb> finally, an easier way to edit text files
[23:14] <zacharynweb> lol, or transfer things
[23:14] <zacharynweb> That was indeed easier
[23:14] <zacharynweb> I'm with you, fuck FTP
[23:15] <zacharynweb> sudo apt-get autoremove vsftpd
[23:15] <IrishWristwatch> FTP is an old protocol that needs to go away.
[23:15] <zacharynweb> I was using it because it felt easy
[23:17] <IrishWristwatch> Yeah, and you can feel comfortable using it over the internet, no need for those passive/active mode bs, and it's as secure as SSH
[23:18] <zacharynweb> for some reason
[23:18] <zacharynweb> users I added using "adduser" aren't showing with the command  "users"
[23:20] <jiboumans> looks like there's a problem with the us-east1 mirror in aws:
[23:20] <jiboumans> W: Failed to fetch http://us-east-1.ec2.archive.ubuntu.com/ubuntu/dists/lucid-updates/main/source/Sources.bz2  Hash Sum mismatch
[23:20] <jiboumans> W: Failed to fetch http://us-east-1.ec2.archive.ubuntu.com/ubuntu/dists/lucid-updates/universe/source/Sources.bz2  Hash Sum mismatch
[23:20] <IrishWristwatch> zacharynweb, what do you mean
[23:21] <IrishWristwatch> the command "users" just show who's currently logged in
[23:21] <zacharynweb> ah
[23:21] <zacharynweb> IrishWristwatch: I want to remove all the current users but two
[23:21] <IrishWristwatch> eh, don't
[23:22] <zacharynweb> don't... know?
[23:22] <IrishWristwatch> some of those users are "system users", which the system uses for daemons
[23:22] <IrishWristwatch> if you delete them you might break stuff
[23:22] <zacharynweb> hehe.
[23:22] <zacharynweb> I think I may have already
[23:22] <IrishWristwatch> welp
[23:23] <zacharynweb> alright, I want to delete all but two of the users I've created
[23:23] <IrishWristwatch> if you do "cat /etc/passwd" you can see all the users on your system, as well as their shell
[23:23] <zacharynweb> delete all the users I've created except for two I want to stay
[23:23] <IrishWristwatch> most of these system accounts are locked anyway, so you can't log in through ssh or su
[23:23] <IrishWristwatch> Delete the users you created, or delete the users that were created with the server installation?
[23:24] <IrishWristwatch> Because the system doesn't need the users you've created.
[23:24] <IrishWristwatch> Also, you can explicitly deny everyone (except the users you want) from accessing ssh
[23:25] <zacharynweb> delete what I created
[23:25] <IrishWristwatch> that's easy
[23:25] <IrishWristwatch> userdel user
[23:25] <zacharynweb> I created extra users for that damned ftp application, nonprivliged and blah blah blah
[23:25] <IrishWristwatch> or deluser
[23:28] <zacharynweb> IrishWristwatch: I've tried following various tutorials, or explanations online, I also can't deluge to work
[23:28] <IrishWristwatch> http://blog.bsodmike.com/articles/installing-and-configuring-deluge-1-0-7-in-ubuntu-8-10-with-web-ui-interface/
[23:28] <IrishWristwatch> did you follow that one
[23:29] <IrishWristwatch> also, did you open a port in your firewall?
[23:29] <zacharynweb> I'm inside my network right now
[23:30] <zacharynweb> even using the network ip, I'm unable to connect, inside the firewall
[23:30] <ikonia> IrishWristwatch: who gave you that link
[23:30] <IrishWristwatch> google
[23:30] <zacharynweb> I haven't followed your recent link yet
[23:30] <IrishWristwatch> And it's what I used to set it up.  Why?
[23:30] <IrishWristwatch> Is it not correct anymore, ikonia ?
[23:30] <zacharynweb> waiting for deluge and various other crap to uninstall before I follow instructions
[23:31] <ikonia> IrishWristwatch: I just know the guy who writes that page
[23:31] <IrishWristwatch> Oh, interesting.
[23:31] <IrishWristwatch> His site went down a while back
[23:31] <IrishWristwatch> I'm glad it's now online again.
[23:31] <IrishWristwatch> zacharynweb, what user did you set it up to run as
[23:31] <zacharynweb> don't remember
[23:32] <zacharynweb> I don't think I even got that far
[23:32] <IrishWristwatch> lol
[23:32] <ikonia> I'm surprised he's writing it as he's not really a linux guy,
[23:33] <IrishWristwatch> zacharynweb, I don't know what to say, really.  Just follow that site to the letter and it should work.
[23:33] <zacharynweb> IrishWristwatch: Could you link me to those instructions again?  I had to refresh my irc a few minutes ago, it was cleared
[23:33] <IrishWristwatch> http://blog.bsodmike.com/articles/installing-and-configuring-deluge-1-0-7-in-ubuntu-8-10-with-web-ui-interface/
[23:33] <IrishWristwatch> ikonia, his stuff has been helpful
[23:33] <zacharynweb> I disconnected from the ethernet cord at my dock area, it switched to wireless and reset my irc, thanks
[23:34] <IrishWristwatch> no problem
[23:35] <zacharynweb> IrishWristwatch: My server is guiless
[23:35] <IrishWristwatch> zacharynweb, that shouldn't be a problem
[23:35] <IrishWristwatch> those instructions are all over commandline
[23:35] <IrishWristwatch> and then the gui stuff is through the web browser of your comupter
[23:35] <IrishWristwatch> since it's a web ui
[23:37] <zacharynweb> Are you interested in photography?
[23:38] <IrishWristwatch> a little.
[23:44] <zacharynweb> Following your instructional link,
[23:44] <zacharynweb> Where it says "deluged -d"
[23:44] <zacharynweb> I get the error message, "deluged is not installed"
[23:44] <zacharynweb> do I need to install it?
[23:45] <zacharynweb> because it seems unusual for linux that I would have to go around searching for multiple things to install
[23:46] <zacharynweb> IrishWristwatch: problem
[23:46] <IrishWristwatch> What is it?
[23:46] <IrishWristwatch> oh
[23:46] <IrishWristwatch> try
[23:47] <IrishWristwatch> sudo aptitude install deluged deluge-webui
[23:47] <zacharynweb> what does that do?
[23:48] <IrishWristwatch> installs the proper packages
[23:49] <IrishWristwatch> it seems like you're missing deludge
[23:50] <zacharynweb> running it again
[23:50] <zacharynweb> deluged -d
[23:51] <zacharynweb> "There is a deluge daemon running with this config directory"
[23:51] <zacharynweb> "you cannot run multiple daemons with the same config directory set"
[23:52] <IrishWristwatch> ohh, seems like it's already running
[23:52] <zacharynweb> "if you believe this is an error you can force a start by deleting /home/%user%/.config/deluge/deluged.pid.
[23:52] <IrishWristwatch> try killall deluged
[23:52] <zacharynweb> lolsy
[23:52] <IrishWristwatch> although
[23:52] <IrishWristwatch> you shouldnt run it from the command line anyway
[23:52] <IrishWristwatch> you should set up the user config file
[23:52] <IrishWristwatch> and then make the init script and start it through that
[23:53] <zacharynweb> I now just enetered "deluge -u web"
[23:53] <zacharynweb> and it seems like it's frozen
[23:53] <zacharynweb> in the blackness
[23:53] <IrishWristwatch> press ctrl+c
[23:53] <zacharynweb> the little green box, hanging below the command I just made
[23:53] <zacharynweb> ah, lol
[23:54] <zacharynweb> ...
[23:54] <zacharynweb> "unable to connect"
[23:54] <zacharynweb> 192.168.1.250:8112
[23:54] <IrishWristwatch> look
[23:55] <IrishWristwatch> don't start it over the command line
[23:55] <IrishWristwatch> First make the /etc/default/deluge-daemon and the /etc/init.d/deluge-daemon files
[23:55] <zacharynweb> ah, missed that
[23:57] <IrishWristwatch> When you create your /etc/default/deluge-daemon file, then specify the user you want it to run as
[23:59] <IrishWristwatch> Also zacharynweb , the reason it was unable to connect is because when you press ctrl+c, it kills the program
[23:59] <IrishWristwatch> if you want to send a program to the background you just add an & at the end