[00:14] <nuno_nunes> Plz help to create this a new server to filter this net work
[00:14] <meway> How do I mount an external hardrive in ubuntu server edition?
[00:15] <nuno_nunes> I using ubuntu 10.10
[00:15] <nuno_nunes> I install in hard drive internal
[00:17] <nuno_nunes> i need help
[00:17] <nuno_nunes> :S
[02:15] <slibuntu> Hey all, having some issues with a RAID array, wondering can anyone help..
[02:17] <ignarps> post the issue
[02:19] <slibuntu> I have a server with a 5 disk RAID 1 array that's resyncing. THe resync seems to have frozen though, the speed according to /proc/mdstat is 0k/sec, a cron rsync from another server has also frozen and this is causing the load on the RAIDed server to be huge, >5 with little or no CPU
[02:19] <slibuntu> Also, if I attempt to reboot, it stops and doesn't complete because it can't unmount the drives
[02:43] <oljas> Hi all! Ubuntu server 10.04.1 Followed official documentation to setup LDAP authentication. Now if i login as a LDAP user i got "i have no name!" in command prompt. Also passwd gives error on LDAP users. /etc/ldap.conf is world readable. Anyone?
[02:46] <_Techie_> how to add a command to the end of runlevel 2, the ubuntu way?
[04:25] <sparc> Hey.. during the Ubuntu install, is there a place where the errors are logged?
[04:25] <sparc> that i can get a console and look?
[04:26] <twb> sparc: vt4
[04:26] <sparc> I'm on this out-of-band management console
[04:26] <twb> Also /var/log/syslog
[04:26] <sparc> and i can't see the right half of the screen
[04:26] <sparc> hmm ok, i did see syslog
[04:26] <twb> That is, prior to finishing the install
[04:26] <sparc> maybe i can find a way to make it wrap after 30 columns or something
[04:26] <twb> export COLUMNS=30 maybe?
[04:26] <sparc> yeah, I get No root file system dr-
[04:26] <sparc> Please correct this from -
[04:27] <sparc> heh
[04:27] <twb> Oh, you're THAT guy
[04:27] <sparc> oh :(
[04:27] <sparc> possibly
[04:31] <sparc> i'm not trying to be upsetting
[04:33] <twb> Sure, I just don't feel like dealing with your problem
[04:33] <twb> Someone else might
[04:33] <sparc> i didn't ask you specifically
[04:33] <sparc> but ok
[04:33] <sparc> have fun
[04:37] <jhansonxi> sparc: /var/log/syslog/installer/
[04:38] <sparc> fantastic, thanks i knew it was in here somewhere :)
[04:38] <sparc> i was looking under casper
[04:38] <sparc> good deal
[04:45] <twb> Uh, casper's only present on the live CDs
[04:46] <sparc> i interest you now :)
[04:56] <twb> sparc: it sounds like you installed using the desktop CD instead of the server CD
[04:56] <sparc> nope
[04:57] <sparc> thanks though
[04:59] <sparc> i'm just now testing my preseed config, and working on a system with poor console access
[04:59] <sparc> it's my fault, and i should be testing on another sytem
[05:01] <sparc> and thank you for listening to my issue yesterday
[05:02] <sparc> you probably don't often get thanks
[05:02] <sparc> maybe i should be less persistent
[05:12] <twb> Don't worry about it
[05:13] <twb> There are plenty of worse dickheads on freenode; if you annoy me enough I'll just ignore you, like I do them.
[06:03] <gobbe> :)
[06:20] <sparc> i'm reluctant to ask, but it seems like partition in Kickstart is limitted to the first-lettered disk in a system
[06:21] <sparc> so if that ends up being a usb drive or something, then we're stuck with using partition recipes in preseed
[06:22] <sparc> which isn't the end of the world, of course
[06:22] <sparc> just the end of kickstart
[06:22] <sparc> gobbe :)
[06:25] <twb> sparc: linux doesn't have "disk letters"
[06:25] <sparc> you don't have to talk down to me :(
[06:25] <sparc> it might be better if you put me on ignore
[06:26] <sparc> block devices do often have letters
[06:31] <sparc> cl
[06:33] <jmarsden> sparc: As in "A hard drive, brought to you by the letters d, e, v, s, d and a ?  Why not rephrase your comment/question in terms that are either Linux-specific or (perhaps even better) OS-independent?  Doing so might demonstrate willingness to learn... and yes, thats a known limitation of the Ubuntu "port" of Kickstart, see https://help.ubuntu.com/10.04/installation-guide/i386/automatic-install.html
[06:34] <sparc> i know i read that
[06:35] <sparc> did you also think that that wasn't linux-specific?
[06:35] <jmarsden> OK, so what exactly were you asking when you said "i'm reluctant to ask, but it seems like partition in Kickstart is limitted to the first-lettered disk in a system" ?  There's no other apparent question or uncertainty in there to address, is there?
[06:36] <sparc> i was trying get other people's opinion about a limitation in the installtion?
[06:36] <sparc> do you think that's off-topic for the channel?
[06:36] <sparc> i could go, if you'd prefer
[06:37] <sparc> i'm pretty friendly, honestly
[06:37] <sparc> which isn't really being returned in kind
[06:37] <jmarsden> No, that's on topic, I think, but I'm not sure that's what you said/asked...
[06:39] <jmarsden> I think trying to suggest that "the first-lettered disk" is anything other than Windows-specific is... unlikely, shall we say.  so I looked for a question being asked, since you said "I'm reluctant to ask"... and apparently I guessed incorrectly as to what the question was.
[06:40] <sparc> scsi disks get assigned letters, like, sd[a-z], as we all know.  maybe i should be more specific, later on...
[06:40] <sparc> i'm not asking a question, just discussing
[06:44] <sparc> i've been automating installs and working on redhat since 2001 or so.   so far this week, i'm attempting to test ubuntu on our hardware in our datacenter.
[06:44] <sparc> i thought it would be good to have a few discussions with people who also want to take ubuntu seriously
[06:44] <sparc> so i hope you don't think i'm wandering in, trying to replace vista for the first time on my desktopo
[06:45] <sparc> and asking impertinent questions
[06:45] <sparc> because that's not the case
[06:46] <jmarsden> OK.  Prefixing something that you are not asking with "i'm reluctant to ask, but" may not have been clear.  I think you're a bit late for most folks in the USA and a bit early for the Europeans, so not many folks are around right now.
[06:46] <sparc> that's okay, i'm not in any rush
[06:47] <jmarsden> I think if you need maximum flexibility in automated Debian or Ubuntu installs, you should probably avoid Kickstart entirely and use Debian-native approaches instead, but I'm not any kind of expert on that.
[06:48] <sparc> i agree, that sounds about like how it's turning out
[06:48] <sparc> the initial kickstart support seems like a good direction though
[06:48] <sparc> maybe in 11 it will look really nice
[06:49] <sparc> i was excited to hear about the upcoming Cobbler support too
[06:49] <sparc> it is very helpful to be able to provision quickly, and be able to present a gui to other admins to use
[06:51] <jmarsden> Yes.  Looks like soren has been interested in Cobbler since 2008... https://wiki.ubuntu.com/CobblerSpec
[06:53] <jhansonxi> kickstart has a "preseed" command for Debian preseed settings.
[06:55] <sparc> yeah, i've been specifying my preseed config as a boot option, but maybe putting some of them in the kickstart file will change behavior some
[06:55] <jhansonxi> The Ubuntu implementation has a lot of limits.  You only have %pre and %post sections for the most part and a few non-preseed settings like url, user, lang, timezone.
[06:56] <sparc> the partitioning was the nicest feature i saw in the kickstart section of the automated deployment guide
[06:56] <sparc> too
[06:56] <twb> I don't see why you would use the kickstart support at all
[06:56] <sparc> me either!
[06:56] <sparc> hehe
[06:57] <twb> AFAICT it just provides a strict subset of the preseed functionality, in a fugly .spec-like file format
[06:57] <sparc> it has a nice declarative syntax, which is initially appealing
[06:57] <twb> sparc: preseed is inherently declarative
[06:57] <sparc> i guess that's subjective
[06:57] <jhansonxi> I'm working on a huge kickstart script for Lucid.  99% of the effort is in the %post section.  I don't mess with the partitioning as my targets are home users with a wide variety of drives and/or RAID and/or LUKS/dm-crypt.
[06:58] <sparc> cool
[06:58] <jhansonxi> I think I used kickstart as the name reminded me of kixtart (login script processor by M$ Norway) from my Windows days.
[06:58] <sparc> haha
[06:59] <twb> kickstart is a RH knock-off of Sun's jumpstart
[07:00] <jhansonxi> Biggest annoyance is that the %post (and %pre) script sections is parsed twice before ending up in /var/spool/kickseed/parse/pre/0.script on the installer's filesystem.  Every backslash has to be double-escaped (1:4 ratio).
[07:01] <sparc> it does work well, even tho RH gets a C for creativity
[07:01] <sparc> jhansonxi: ooh, yikes
[07:02] <jhansonxi> I actually wrote a tool to check them as it is an easy mistake to make and it kept messing up installs.
[07:02] <sparc> aah what a great idea
[07:02] <sparc> maybe one day someone will make a lint for preseeds and kickstarts
[07:03] <sparc> so we know before we commit, if it's gonna blow up
[07:03] <sparc> hehe
[07:03] <sparc> i do wonder though, if there's some way to include shell from somewhere else in the %pre and %post
[07:03] <sparc> so you don't have to suffer from the escaping
[07:04] <sparc> maybe i give it a try and share here if it goes well
[07:05] <jhansonxi> I also wrote a quote checking tool as mismatches were another problem:  http://jhansonxi.blogspot.com/2010/12/quote-count-debugging-tool-for-shell.html
[07:06] <jhansonxi> I'm signing off.  It's 02:00 here in Michigan, USA and I need my beauty rest.
[07:07] <sparc> ok, thanks for talking about deploying ubuntu :)
[07:07] <sparc> have a good sleep
[07:07] <jhansonxi> I'll be posting my script mess on my blog in a few days when I get some deployment testing finished.  Bye.
[07:07] <sparc> your work with ubuntu ce looks fun too
[07:08] <sparc> hope that comes along
[07:08] <sparc> bye
[07:10] <chrislabeard> Anyone ever set up their server to work with time machine? I've followed 1 tutorial it worked for a little while then stopped.
[07:11] <twb> "time machine" the apple backup product?
[07:11] <twb> Isn't that OS X-specific?
[07:12] <sparc> no it's not, time machine can use samba share as network storage
[07:13] <sparc> chrislabeard: i did try, but i wasn't successful :(
[07:13] <chrislabeard> sparc: I got it to connect to the server and started backing up
[07:14] <sparc> mine wouldn't use the sparsefile bundle i made
[07:14] <sparc> hah way to go
[07:14] <chrislabeard> and then stopped. now I can't connect to it, It asks for a password and username then just times out
[07:14] <chrislabeard> http://www.kremalicious.com/2008/06/ubuntu-as-mac-file-server-and-time-machine-volume/
[07:26] <twb> I thought time machine was basically lvcreate --snapshot for HFS+, but whatever.
[08:28] <chrislabeard> Anyone know why my server isn't broadcasting the shared volume to my computer? I have avahi configured correctly I think.
[09:02] <soren> jmarsden: 2007. I just didn't write the spec until 2008.
[10:41] <softer> hi
[11:30] <airtonix> hi, for some reason I can't kill apache2. it's preventing a "service apache2 restart" operation
[11:30] <oCean> service apache2 stop fails? with error?
[11:32] <airtonix> oCean, no. but service apache2 start says that the port 80 is already in use, and then ps -fe | grep apache2 shows that it is still running. then an attempt of : for PID in `ps -fe | pgrep apache2`; do sudo kill $PID; done
[11:32] <twb> IIRC there are several ways to restart apache2, and -- at least in the sysvinit script -- only one of them is provided
[11:32] <airtonix> apache2 will not die
[11:32] <twb> airtonix: pastebin "ps auxf" output
[11:32] <oCean> airtonix: try a kill -9
[11:33] <airtonix> http://pastebin.com/vLajmGAK
[11:34] <twb> airtonix: that is not your entire tree.
[11:34] <airtonix> why do you need to see it all ?
[11:35] <twb> Because I'm the guru and you're the querent.
[11:35] <oCean> :s
[11:36] <oCean> airtonix: tried a 'sudo kill -9 1552' ?
[11:36] <airtonix> oCean, yes with no result
[11:36] <airtonix> apache still alive
[11:38] <oCean> ah, it's Ds, uninterruptable
[11:39] <oCean> is a server reboot an option?
[11:39] <airtonix> unfortunately not at the moment
[11:40] <oCean> uninterruptable sleep means the process will not be woken up by signals. It can be only woken up by what it's waiting for
[11:41] <airtonix> how do i determine what it's waiting for ?
[11:44] <oCean> very difficult to tell. In this case it's probably the defunct process, which will never return, since it's zombie already. A reboot is the way to go here
[11:46] <airtonix> ah think i understand now
[11:46] <airtonix> http://www.linuxquestions.org/questions/linux-general-1/kill-d-process-339750/
[11:46] <airtonix> it's because (stupidly) the /var/www is actually symlinked to a dir on a external usb storage device
[11:47] <airtonix> and i vaguely remember it being disconnected during current session
[11:50] <oCean> airtonix: that is probably it, yes
[11:56] <compdoc> I have to have a server built and ready to install by this weekend, and Im trying to decide whether to use the customers copy of windows 2000 server or ubuntu. The problem is, for this one server, about 20 ppl hammer MS Access databases all day, and samba seems to have had issues with Access in the past. Is that still the case?
[12:01] <oCean> compdoc: maybe try #samba also
[12:01] <compdoc> I have - but its early
[12:04] <compdoc> maybe I should find the samba mailing list
[12:12] <twb> Does ANYONE actually understand how quota grace times work?
[12:17] <gobbe> its documented
[12:17] <gobbe> quite well
[12:24] <pmatulis> compdoc: let me know if you find anything out about Samba/Access
[12:25] <compdoc> k
[12:27] <twb> gobbe: I guess it is, at that.
[12:28] <twb> Maybe I'm just grumpy because quota infrastructure feels so old-fashioned
[12:34] <twb> Is it a bad idea to set quotas *in advance* for all UIDs 1000 through 9999, even though I currently only have a couple dozen users?
[12:34] <twb> The aquota.users only grew from 10kB to 400kB, which is hopeful
[12:45] <airtonix> any reason why you would think it is bad ? (adduser will run /usr/local/sbin/adduser.local when it finishes creating a user account)
[12:48] <twb> airtonix: well in a naïve example, the kernel might reread that file for every write operation
[12:48] <twb> My users live in LDAP, on another host, so adduser.local won't work.
[12:49] <twb> (Unless I give the LDAP server RPC access (e.g. ssh) to the NFS server, which I'm loathe to do.)
[13:31] <ttx> Daviey: see https://code.launchpad.net/~termie/nova/db_migration/+merge/46073
[13:31] <ttx> hm, wrong channel
[14:10] <lau> i am trying to automate remote package upgrades via a fabric task such as
[14:11] <lau> run('TERM=linux aptitude -q -y safe-upgrade')
[14:11] <lau> I added the TERM=linux in order to avoid some debconf error
[14:11] <lau> but I don't exactly understand it , can anyone explain his purpose ?
[14:17] <twb> lau: what is TERM *before* you override it?
[14:25] <lau> hi twb , according to fabric run("echo $TERM") , TERM was "dumd" before I override it
[14:26] <lau> I would like to understand the relation between TERM and debconf , I am not sure I get the point
[14:26] <twb> Oh, "fabric" is some kind of automation thing
[14:26] <twb> It should be "dumb", not "dumd"
[14:26] <lau> yes dumb
[14:26] <cap_00> how can i copy /var/lib/backuppc/.ssh/ to /var/lib/backuppc.orig/.ssh/ ?
[14:26] <twb> You should fix it by setting DEBIAN_FRONTEND to noninteractive (don't prompt at all) or readline.
[14:27] <lau> you mean with DEBIAN_FRONTEND rather then with TERM=Linux ?
[14:27] <twb> Yes.
[14:27] <twb> Ugh, fabric is yet another NIH'd RPC framework.
[14:28] <lau> ok I saw DEBIAN_FRONTEND in man 7 debconf
[14:28] <twb> lau: it is definitely NOT correct to claim your terminal is linux when it only supports dumb.
[14:29] <gobbe> cap_00: with -r flag
[14:29] <RoyK> cap_00: cp -R or cp -a or even 'man cp'
[14:30] <cap_00> for some reason that's only copying the  known_hosts, but i got it, i used rsync -av
[14:30] <cap_00> i wish there was just one copy command :S
[14:31] <RoyK> that's the beauty of unix - there's always more ways to do things :)
[14:31] <gobbe> yep
[14:31] <cap_00> ok,,, new wish... i wish they all reacted the same way then
[14:31] <gobbe> uuh, my order from shop.canonical.com is arrived! need to go and pick it up from post :-)
[14:32] <lau> with DEBIAN_FRONTEND=noninterractive is dpkg impacted to ? I mean if a conf file changed does dpkg still ask to keep it or override with maintainer version ?
[14:32] <gobbe> cap_00: what you are trying to achieve?
[14:33] <cap_00> i had two external backuppc drives, i created the .ssh key for rsync backuppc, and i needed to put that same .ssh folder on the other backuppc drive
[14:34] <cap_00> for some reason cp -r only copied the known_hosts and not the id_rsa or id_rsa.pub
[14:34] <cap_00> but rsync -av did
[14:48] <gobbe> how did you run it
[14:49] <gobbe> it should copy all files
[14:53] <lau> twb: don't know if you answered my last question do you ?
[14:53] <compdoc> rsync is great
[14:54] <twb> lau: DEBIAN_FRONTEND applies to debconf, which is invoked indirectly via dpkg.
[14:54] <twb> lau: debconf is the thing that asks all the questions
[14:54] <twb> lau: I don't know if it affects dpkg's "replace local conffile with new maintainer copy?" question.. I've never thought of that before...
[14:55] <twb> lau: #debian or #debian-mentors on OFTC might know.
[15:21] <jmyles> So it's my girlfriend / partner's birthday.  The only present she is asking for is to have access to all her data in a common pathname across our network, regardless of which machine she is sitting at.  I understand that openldap can accomplish this.  Is this correct?   What exactly is this feature called?  (OK, so she actually also wants to paint our living room, so I guess that's two birthday wishes.  But I think I can accomplish
[15:21] <jmyles>  this one.)
[15:23] <compdoc> jmyles, roaming profiles is one way
[15:29] <RoyK> jmarsden: what client OS?
[15:30] <RoyK> jmarsden: sorry - wrong nick - jmyles seems to have left, and autocomplete chose you :P
[15:34] <jmyles> RoyK: I'm here - I had to reboot my gateway.  What did i miss?
[15:38] <cap_00> i'm looking at doing the same thing shortly, i have windows only clients
[15:39] <RoyK> jmyles: what client OS are you using?
[15:39] <resno> does this http://dpaste.com/313319/ mean anything bad. (from auth.log)
[15:39] <jmyles> Royk: always ubuntu
[15:40] <RoyK> then a shared nfs storage on a server should work fine
[15:40] <RoyK> either static mapping or with automount
[15:41] <RoyK> cap_00: for windows clients, see http://wiki.samba.org/index.php/Samba_&_Windows_Profiles
[15:43] <jmyles> Royk: Sounds great!  My only question is this:  I see that it's easy to use NFS to 'share' a directory on the server and then have her manually mount it on whatever client, but how can I make it mount by virtue of her logging in?  I need ldap for that, right?  (Is that what you mean by 'automount')?
[15:44] <RoyK> automount is a service for automatically mounting a filesystem when a dir is accessed
[15:44] <RoyK> ldap (or nis) is needed for a shared user and group database
[15:45] <RoyK> in a small environment, having the same (numeric) userids on local accounts should suffice
[15:45] <guhcampos> I'm trying to install dsniff on a lab machine, but it requires libdb4.6. Ubuntu tries to download/install libdb4.6_4.6.21-16_i386 but receives a 404, browsing the repository I see there's only a libdb4.6_4.6.21-17_i386, package lists are updated, how can I force it to install the other version?
[15:45] <RoyK> say, user roy has uid 110, create user roy on another machine with the same uid, and nfs will allow access to that file
[15:46] <RoyK> uid-based permissions are really simple
[15:46] <RoyK> and quite slack :P
[15:46] <RoyK> guhcampos: try another repository - probably something wrong there
[15:47] <guhcampos> RoyK, it's one of the official ones, it shoule be more reliable =(
[15:47] <RoyK> guhcampos: well, it should, but system failures happen to _all_ systems, official or not
[15:48] <guhcampos> well I agree
[15:48] <guhcampos> that's just weird
[15:48] <jmyles> Royk: Great, thank you very much.  I will endeavor now.  :-)
[15:49] <guhcampos> I thought that as libdb4.6 is quite old maybe the maintainer just neglected it
[15:50] <RoyK> guhcampos: also, if you can browse and find the file, just download it and install it with dpkg
[15:50] <resno> does this http://dpaste.com/313319/ mean anything bad. (from auth.log)
[15:52] <genii-around> resno: It just looks like what happens there when apache starts up
[15:52] <resno> genii-around: ah lol
[15:53] <resno> well, i see it happening daily.. i hadnt done that
[15:59] <RoyK> resno: iirc logrotate will restart apache for you :P
[15:59] <resno> interesting
[15:59] <RoyK> gotta do that to make apache release the old log file
[16:00] <resno> how long is apache down?
[16:00] <RoyK> otherwise it'll keep on writing to the rotated one, even with a new name
[16:00] <resno> few seconds im guessing
[16:00] <RoyK> resno: probably not even measurable
[16:00] <RoyK> an apache2ctl graceful is run iirc
[16:00] <RoyK> and that won't be noticable
[16:00] <resno> oh, even better ok
[16:00] <resno> for sure
[16:00] <resno> much better then running a restart or something
[16:01] <resno> thanks RoyK
[16:03] <mathiaz> robbiew: hi!
[16:03] <mathiaz> robbiew: how are you doing?
[16:04] <SpamapS> mathiaz: o/
[16:04] <mathiaz> SpamapS: o/
[16:05] <mathiaz> SpamapS: how is Dallas doing?
[16:05] <mathiaz> robbiew: I've finally figured out to transfer the ubuntuserver blog - should I transfer it to you?
[16:05] <mathiaz> SpamapS: ^^?
[16:05] <SpamapS> mathiaz: quite well... though karaoke last night may have slowed us down a bit today. ;)
[16:06] <SpamapS> mathiaz: I believe we're transitioning it to an atlantic.net instance
[16:07] <mathiaz> SpamapS: ok - so wordpress.com won't be used anymore?
[16:08] <SpamapS> mathiaz: that seems to be the idea yes
[16:08] <robbiew> mathiaz: yeah...you can transfer it, but we are moving away from wordpress.com....most likely this week
[16:08] <mathiaz> robbiew: ok
[16:14] <AivarasKivilius> Hello, May some one knows, why iftop don't shows anything?
[16:15] <AivarasKivilius> interface are correct (ifconfig shows that there is activity on venet0), but iftop -i venet0 don't show any thing. A bit strange?
[16:45] <lambda_x> anybody knows if theres a way to make multipath use alias directive as mapper name (alias yellow -> /dev/mapper/yellow instead of /dev/mapper/mpath0) ? /var/lib/multipath/bindings says not to edit it by hand
[16:47] <ignarps> lambda_x, this can be done via a multipath.conf file
[16:48] <lambda_x> ignarps: yup im setting multipath { wwn ... \n alias ... } but it still sets it as mpath0
[16:48] <lambda_x> ignarps: even when i do multipath -F, rm /var/lib/multipath/bindings, multipath -v2, it gets mpath0 name
[16:50] <ignarps> can you post your multipath.conf file ?
[16:50] <ignarps> do you have alias defined for a multipath ?
[16:55] <lambda_x> ignarps: woops, it just started to work, I assume
[16:56] <lambda_x> it happened because it was mapped previously as mpath0
[16:56] <ignarps> at least it is working
[16:58] <lambda_x> I still got one more question - volumes from FC array are visible as /dev/sda /dev/sdb etc, those are available under /dev/mapper/yellow now, when I try to use LVM - for instance vgdisplay I get /dev/sda: read failed after 0 of 4096 at 0: I/O error, but vgdisplay should not use /dev/sda
[16:58] <lambda_x> it is just a warning, it reports correctly, for different volume (in this case /dev/sdf1) but those warnings are a bit annoying
[17:12] <psyferre> hey folks,  I've got a windows server 2008 active directory domain with ubuntu clients joined using likewise-open.  Is there any way I can block traffic on all ports on an interface unless the remote host is a member of the domain?  Trying to configure good security for my cloud servers that I won't constantly have to change when I add a new server.
[17:32] <RoyK> psyferre: 802.1x?
[17:35] <hggdh> mathiaz: good morning, can you accept zul on uec-testing-scripts-dev?
[17:38] <psyferre> RoyK: interesting... I hadn't thought about something like that.  I'd been trying to find some sort of firewall package that would support it.
[17:38] <RoyK> it's not really a firewall thing
[17:38] <psyferre> yeah
[17:39] <psyferre> That's why my googling was coming up pretty empty :)
[17:40] <RoyK> http://www.stevens.edu/itwiki/w/index.php/Linux_802.1x
[17:40] <psyferre> So, provided I can learn enough about this to understand what I'm doing... I could setup my domain controller to be a RADIUS authentication server and then set my machines up to accept only traffic from authenticated sources?
[17:40] <RoyK> that was my thouht
[17:40] <RoyK> I've never setup such a system, though
[17:40] <psyferre> nice
[17:41] <RoyK> thought, even
[17:41] <RoyK> this keyboard isn't as sensitive as the old one :P
[17:41]  * RoyK just got a new i7-base 17" MBP :D
[17:41] <psyferre> I hadn't really thought about it, but I guess I could also just make the DC the gateway for a VPN, couldn't I?  And join the machines to that?  Or would that be more overhead that I don't need....
[17:41] <RoyK> based, even
[17:41] <gobbe> RoyK: :)
[17:41] <RoyK> damn
[17:42] <psyferre> niiiiiiiiice
[17:42] <gobbe> RoyK: our company is moving to apple (mac laptops and iphones), so i picked up 11.6" macbook air for my new machine :)
[17:42] <psyferre> It's just too fast for your fingers
[17:42] <RoyK> cute :)
[17:43] <RoyK> I'd say using radius or ldap auth for the vpn should be doable, but using the DC as a gateway won't be my first choice
[17:43] <RoyK> mickysoft tend to say those things should be dedicated, for some reason
[17:43] <psyferre> For security reasons?  Or performance reasons?
[17:43] <psyferre> i understand
[17:43] <RoyK> psyferre: just for support reasons
[17:43] <gobbe> yep
[17:44] <RoyK> dedicating expensive hardware for a DC is outright stupid imho, but I guess MS says so to avoid problems
[17:44] <gobbe> and DC's aren't even heavy cpu/memory/network usage
[17:44] <RoyK> not at all
[17:44] <gobbe> that's really stupid
[17:44] <psyferre> Exactly... I've been trying to think of other uses for the server
[17:44] <RoyK> perhaps mickysoft has deals with dell/hp/ibm etc :P
[17:44] <gobbe> i try to force people to think that opensource might provide all tools needed
[17:44] <psyferre> It's a cloud server, so I'm not wasting hardware on it, but stilll...
[17:44] <gobbe> it's so easy to just pick windows
[17:45] <RoyK> gobbe: AD doesn't run well on linux, you know
[17:45] <psyferre> Yeah... I tried and tried to get a domain controller on ubuntu with zentyal
[17:45] <psyferre> it was a nightmware
[17:45] <RoyK> and AD is a hell of a tool for managing a bunch of windows clients
[17:45] <psyferre> nightmare, even
[17:46] <gobbe> RoyK: AD in many companies are just for user database
[17:46] <RoyK> psyferre: there are some stuff in the works for samba4, but I doubt it'll stabilise this month, perhps not this year
[17:46] <gobbe> RoyK: and there are quite many opensource ones for that :)
[17:46] <RoyK> gobbe: if you have 200 windows clients, you want AD, beleive me
[17:46] <gobbe> RoyK: that's true. but if you have 200 linux/osx machines, you dont
[17:47] <RoyK> nope
[17:47] <psyferre> RoyK: yeah, I saw that and got pretty wistful
[17:47] <gobbe> but hoever still many companies build ad and try to put machines there :)
[17:48] <psyferre> Thanks for the advice, guys.  I really appreciate it.  Enjoy the new laptops :)
[17:48] <RoyK> :)
[17:49] <gobbe> i don't have my new yet
[18:54] <mathiaz> hggdh: done!
[18:54] <hggdh> mathiaz: thank you
[19:27] <axisys> why does ipmitool showing all the dimms are not readable ?
[19:29] <axisys> dmidecode shows they are installed.. do I need to modprobe any kernel for that?
[19:33] <mogaj>  headphone not working in laptop using ubuntu 10.10
[19:37] <mogaj>  headphone not working in laptop using ubuntu 10.10
[19:37] <pmatulis> mogaj: wrong channel
[19:45] <eagles0513875|2> !apt-fix
[20:38] <Wolfsherz> hi, after updating my server today (apt-get update) service apache2 start does not work anymore, the reason is obvious when looking at /etc/init.d/apache*:
[20:38] <Wolfsherz> -rwxr-xr-x 1 root root    0 2011-01-09 06:25 /etc/init.d/apache2
[20:38] <Wolfsherz> -rwxr-xr-x 1 root root 6157 2010-11-18 22:18 /etc/init.d/apache2.1
[20:38] <Wolfsherz> what has happened there? and how to fix it?
[20:55] <webroasters> why does the mailx command work from the terminal of my vps, but I cant send via Thunderbird?? Any help? I've been on the IRC for linode all day but I think they've been busy with other things. I can receive via Thunderbird. Also, I used this tutorial for setting up my vps: http://library.linode.com/email/postfix/dovecot-mysql-ubuntu-10.10-maverick
[20:55] <RoyK> webroasters: perhaps your local MTA has a problem?
[20:55] <webroasters> what do you mean
[20:57] <webroasters> i know what MTA is, but local?
[20:59] <RoyK> exim or postfix
[21:00] <webroasters> postfix
[21:00] <RoyK> check the logs
[21:00] <RoyK> mailq will list queued emails
[21:01] <webroasters> http://pastebin.com/cH7XJhdb   ..oh, the mail queue is empty
[21:01] <webroasters> that's from mail.log
[21:05] <zul> mathiaz: thanks
[21:05] <mathiaz> zul: you're welcome!
[21:12] <RoAkSoAx> kirkland: when you have the time can you sync this plz? bug #702593
[21:16] <webroasters> another question. I'll come back to the other one. How does one have 2 ssl certs on the same server? Is there something I'm missing from the virtualhosts file? I have *:443 set on both vhost files.
[21:18] <jmarsden|work> webroasters: You need each one to be on a different IP address, if they will both use port 443.
[21:18] <webroasters> is there a way to do with virtualhosts?
[21:19] <jmarsden|work> No, one port on one IP == one SSL certificate.  SSL handshake happens before any info about which virtual host is being requested is transferred, so you can't have 'virtual HTTPS hosts' sharing a port.
[21:20] <jmarsden|work> You can put one of them on port 444 and use https://example.com:444 if you want.
[21:21] <webroasters> is there a way to cover up :444 with mod_rewrite??
[21:24] <jmarsden|work> I don't think so.  You can play with SSL certs with alternate names, if you are making your own certs, so you use one cert that handles both domain names... see http://www.crsr.net/Notes/Apache-HTTPS-virtual-host.html for some ideas on that.
[21:25] <RoyK> webroasters: I think #httpd is a better place to ask for that
[21:25] <RoyK> and btw, virtualhosts with HTTP 1.1 rarely works well
[21:25] <webroasters> yeah, no worries
[21:25] <webroasters> thx guys
[21:26] <RoAkSoAx> Daviey: http://www.rabbitmq.com/pacemaker.html
[21:26] <RoyK> since the initial HTTP GET must be sent securely, it's no chance for apache to find which one to choose
[21:27] <Daviey> RoAkSoAx, thanks
[21:27] <webroasters> I appreciate it. The other question i had was; is there a way to figure out why i can't send email with thunderbird?
[21:28] <maxolasersquad> Do the current plans for Natty include having MariaDB packaged?
[21:28] <RoyK> nfi - I use postgres :P
[21:30] <jmarsden|work> maxolasersquad: use the rmadison command to find out: rmadison -s natty maria says:        maria |    1.3.5-2 | natty/universe | source, amd64, i386
[21:30] <jmarsden|work> So looks like it is already there.
[21:31] <maxolasersquad> jmarsden|work: Thanks.  Good to hear.
[21:31] <jmarsden|work> You're welcome.
[21:44] <jcastro> Daviey: want to come talk about uds?
[21:51] <jmarsden|work> maxolasersquad: Looks like maria is not the same thing as mariadb... my mistake.
[21:51] <maxolasersquad> Oh, interesting.
[21:52] <yann2> jcastro, where/when is the next uds btw?
[21:57] <Daviey> jcastro, err yeah... can do
[21:57] <Daviey> jcastro, room?
[21:58] <hallyn> zul: when you get a chance, coudl I borrow some of your debian-foo?
[22:11] <Hypoglybetic> I'm trying to setup my Apache web server and I am unable to modify/delete files.  Can someone tell me what I'm missing? Locations include /etc/ and /var/
[22:11] <thesheff17> Hypoglybetic: use sudo
[22:11] <thesheff17> Hypoglybetic: or root
[22:12] <donvito> how to backup my ubuntu server
[22:12] <donvito> ?
[22:12] <Hypoglybetic> thesheff17, I have tried that. I AM a root.  But I don't understand the concept of the terminal window.  For example, I have a terminal window open and it is sitting there at #.  Does that mean the GUI controls are also in #?
[22:13] <Hypoglybetic> thesheff17, I'm trying to use the Gui. I'm a GUI person.
[22:13] <thesheff17> Hypoglybetic: no GUI are included with ubuntu-server which is good...anyone running a server shouldn't want a GUI
[22:13] <thesheff17> Hypoglybetic: because of the overhead
[22:14] <donvito> how to backup my ubuntu server
[22:14] <Hypoglybetic> thesheff17, Well I'm special and enjoy guis. :/ This web server is very basic. I also use it as a 24-hr machine leaving my IRC channels open and IM clients, etc.
[22:15] <thesheff17> Hypoglybetic: you may want to use the desktop version of ubuntu then.  Or you can look into ubuntu-desktop package
[22:15] <Datz> sc
[22:16] <Hypoglybetic> thesheff17, I have that installed now. . . I'm sorry if that wasn't clear.  I'm also talking to you from said machine.
[22:16] <Hypoglybetic> thesheff17, I am unable to right click and delete files, rename, or create directories.
[22:16] <jmarsden|work> Hypoglybetic: For GUI support questions, you should ask in #ubuntu, not here.
[22:17] <thesheff17> Hypoglybetic: bring up a terminal and do sudo nautilus
[22:18] <Hypoglybetic> jmarsden, I'm sorry.  I thought it would be okay since nothing is going on in here and it is about a server related issue.
[22:18] <Hypoglybetic> thesheff17,  I tried that, nothing happened?
[22:19] <Hypoglybetic> thesheff17, Oh wait, this time it worked.
[22:19] <jmarsden|work> It is?  Using the GUI isn't really a server-related issue, is it?  Not a big problem, but you're more likely to find GUi experts in #ubuntu than here.
[22:19] <jmarsden|work> donvito: See https://help.ubuntu.com/10.04/serverguide/C/backups.html for some ideas
[22:20] <thesheff17> Hypoglybetic: to edit files you can do sudo gedit /etc/apache2/sites-available/default or whatever file you want to edit
[22:21] <Hypoglybetic> thesheff17 sudo nautilus was exactly what I was looking for.  It is what I wanted.
[22:46] <donvito> .nertil@Maverick:/$ sudo dd if=/dev/sda of=/home/nertil/mybackup
[22:46] <donvito> this was the answer frakers
[22:50] <eric_hill> donvito: Good thing you figured that out.  Try restoring a file sometime to make sure it works.
[23:04] <Aaronpoweruser> how long should ubuntu server saty onh the unpakoing tzdata page its been about 20 minutes with no progress?
[23:18] <Hypoglybetic> Can anyone in here help me with Apache (virtual servers)? Or at the very least with removing a symbolic link? the RM command didn't help.
[23:20] <yann2> Hypoglybetic, yuo have to ask the full question so we know if we can help
[23:22] <Hypoglybetic> I am trying to setup a virtual server.  It isn't working.  The last step I  was to create a symbolic link.  I did it wrong. I can't undo it (rm command) and Apache Fails the Start Test.
[23:22] <Hypoglybetic> So I need help undoing my error and getting the virtual server running.  I keep getting errors that the folder I've chosen does not exist.
[23:39] <thesheff17> Hypoglybetic: try sudo rm to remove the symbolic link
[23:40] <jeiworth> hi all, need some help with a cron script.. i am doing an implementation for a  client where i extract various .csv-files from his (filemaker *yuk*) db and then concatenate those files to one multiline csv. apparently this can not be run server side, so there are basically 2 solutions: a) create a share where the script is located and everyone has rx access or b) (and this is what the client prefers) to have the script run via cron every minute
[23:40] <jeiworth> or so. now, the script i created does not really handle multiple sets so i was hoping one of you guys could help me a bit...
[23:42] <Hypoglybetic> thesheff17, I fixed it.  I fixed everything.  I was in the wrong darn directory. >_< Thanks though!
[23:43] <twb> jeiworth: that would be "* * *  * *  foo"
[23:43] <jeiworth> http://pastebin.ubuntu.com/553814/
[23:43] <jeiworth> twb, hehe yes, my problem is not creating the cron job, it's the script itself handling more than one set of files at a time ;)
[23:44] <twb> That sounds more like question for #bash
[23:44] <jeiworth> on set consistes of a 3-digit prefix followed by a unique name
[23:44] <jeiworth> ok, thx ;)
[23:44] <twb> Assuming you're scripting it in bash, of course
[23:44] <twb> Otherwise #perl or #python or whatever.
[23:44] <jeiworth> as you can see in the pastebin that is the case ;)
[23:44] <twb> Oh right.