/srv/irclogs.ubuntu.com/2011/01/18/#ubuntu-server.txt

twbe_t_: why?00:17
e_t_I've got a multi-homed server. I'd like to set up Active Directory integration on one interface while leaving the configuration alone on the other interfaces.00:18
twbHum, OK.00:23
twbSurely you can just have two upstart jobs, each calling smbd -C /etc/samba/smb-foo.conf?00:24
twbNot that I know much about samba specifically...00:24
e_t_I was looking at upstart-job, but I didn't see where I could introduce options. That's why I asked earlier about the pre-Upstart init script.00:26
twbe_t_: you add them to the exec line00:57
twbIt's just passed to /bin/sh -c00:57
fluvvellI need to reallocate a bad sector of this 640G drive so I can clone the data off.  What ubuntu programs do the job01:04
e_t_twb: I'm looking at /lib/init/upstart-job, but I don't see any exec. To what are you referring?01:05
twbe_t_: uh?01:08
twbe_t_: you should be looking at /etc/init/samba.conf01:09
twbOh, apparently as at lucid, samba is not using upstart.01:09
e_t_Oh. I was looking at /etc/init.d/smbd, which is a link to upstart-job.01:09
twbNooo, it is.  /etc/init/{smbd,nmbd}.conf01:09
twbThe file /etc/init.d/smbd is a backwards-compatibility thing so that "/etc/init.d/foo restart" does the same as "restart foo"01:10
twbAnd the scripts /etc/init.d/samba{,4} are there in case you want/need to do it the old way, I guess...01:10
twbSo yeah: you need /etc/init/[sn]mbd.conf01:11
e_t_OK. I did not know about /etc/init. I never read anything that referenced that.01:12
twbe_t_: that's upstart01:13
e_t_twb: Will any script I put in /etc/init be run by upstart, or do I need update-rc.d?01:15
twbIf you read the upstart manpages, they cover the format of /etc/init/foo.conf entries01:16
twbAnd no, update-rc.d only applies to sysvinit jobs01:16
twbBasically any job in /etc/init/foo.conf will be started/stopped in response to the events it's declared to care about, e.g. "stop on runlevel [06]"01:17
e_t_OK. This will be easier than I thought.01:18
twbHOORAY01:23
arrrghhhhey all.  i have access to  my server via ssh, but only on my windows box.  how can i add access if i've already disabled password auth?  seems there's no 'good' way to update the key, but i guess that's the price i pay for security?  haha01:25
twbarrrghhh: unless you use OTP instead of an asymmetric key.01:26
arrrghhhwell i have access to the box from windows01:27
arrrghhhcan i just add it to the known_hosts?01:27
twbOK, I no longer have any clue what you're talking about.01:29
twbknown_hosts is a client-side MITM defense -- what does it have to do with anything?01:29
fluvvelltwb, you don't need any gumboots sent over?01:58
twbI do not.01:59
fluvvellgood to hear02:00
uvirtbotNew bug: #704245 in pptpd (main) "caller station id (remotenumber) for pppd" [Undecided,New] https://launchpad.net/bugs/70424502:16
arrrghhhtwb, sorry, got a little sidetracked there.  obviously i don't know much about ssh or more specifically how keys work with ssh.  i understand there's a public and a private key, and that i need to put my private key from the client onto the server so i can authenticate.  i'm just wondering how i can do that manually if you will.02:27
twbarrrghhh: ssh-copy-id?02:28
twbOr just add it to ~/.ssh/authorized_keys on the server02:28
twbAnd it's the *public* key you upload, *not* the private key02:28
arrrghhhah, figures i'd get that backwards.02:29
arrrghhhthat's what i'm looking for02:29
twbThe private key must be kept secret -- if somone gets it, it is GAME OVER02:30
arrrghhhtwb, understood.02:30
twbi.e. it is the weakest link of the asymmetric crypto mode02:30
twb*model02:30
arrrghhhyea02:30
arrrghhhtwb, i don't seem to have an authorized_keys in my .ssh folder.02:31
arrrghhhon the server02:31
twbarrrghhh: you must create one02:33
twbarrrghhh: if you can ssh in with a password, the ssh-copy-id program does all this for you02:33
arrrghhhi have password logins disabled02:35
arrrghhhi thought that was part of the point of using keys02:35
arrrghhhi guess i need to get all clients configured before i disable password logins?02:35
arrrghhhhrm.  i thought it just appended to the authorized_keys file02:36
twbIt *is* part of the pint02:37
twb*point02:37
twbOften they're still turned on during migration, though02:37
arrrghhhyea02:38
arrrghhhso what's the "best practices" method of adding clients after the fact?02:38
arrrghhhtacacs?  lol02:38
twbYou *can* do it by hand, but newbies tend to forget to chown or chmod or whatever02:38
arrrghhhalright.  i guess i'll just re-enable password logins and get this client up02:41
arrrghhhi just know that i'll have more02:41
jmarsdenarrrghhh: You can create a group called say hasnosshkey and then use a Match block in sshd_config so folks in that group can use password login.  Then remove people from that group once they have a public key pair in place and tested.02:51
arrrghhhjmarsden, i'm the only one that logs into it, but that is a good solution for multi-user setups.02:52
jmarsdenI though you said "I just know I'll have more"?  I thought that meant "more users"?02:53
twbI think he means more hosts02:53
arrrghhhsorry.  different devices that i want to connect into the box.02:54
CppIsWeirdim having some strange issues with a mdadm raid5. i have two raid 5's. every time i reboot my computer, mdadm seems to have some device called md_d1 that is associated with one of the drives from the first array. the second weird issue is that it has started to rebuild the second raid every time i boot up.03:32
ignarpsCppIsWeird, you need to setup proper entries in mdadm.conf03:34
CppIsWeirdjust to clear up my understanding. i recently reinstalled from scratch ubuntu. one of the raids ive had for a while (prior to the new install), the other has been made since. when i installed ubuntu the old one poped right up and worked without any issues so i assumed no further configuration was required. is this an incorrect assumption?03:36
ignarpsyes,  always have an up to date mdadm.conf whenever the raid changes03:37
CppIsWeirdok. further, for some strange reason my device associations keep changing (/dev/sda, /dev/sdb) etc. is this also reason for the trouble?03:38
ignarpsI don't understand.  you can verify the settings in mdadm.conf with03:39
ignarpsmdadm --examine --scan --config=mdadm.conf03:39
CppIsWeirdok, i will work with that, thank you.03:39
s2s2d2hello I have installed ubuntu server on ec2 via official ami image04:23
s2s2d2but I am not able login into ssh with importing my ssh  certificate04:25
s2s2d2is possible04:25
s2s2d2lo login without that darned ssh certificate ...with username and password only04:26
s2s2d2pl tell me asap04:27
s2s2d2anybody there04:28
s2s2d2yoooooooo hooooooooooooooooooooooooooooooooooo04:28
s2s2d2dead channel04:33
s2s2d2??04:33
e_t_Oh no. This channel is quite lively. Please be patient. If someone knows the answer to your question, they will answer.04:34
=== SquishyNotHere is now known as squishy
jmarsdens2s2d2: Doesn't https://help.ubuntu.com/community/EC2StartersGuide have enough info to get you started?  Are you talking about an SSH login to ec2, or to your resulting Ubuntu server image once it is started?04:56
Datz!seen suihkulokki06:28
ubottuI have no seen command06:28
Datzdarn06:28
uvirtbotNew bug: #704283 in cloud-init (main) "insufficient details for "a newer build available" message" [Undecided,New] https://launchpad.net/bugs/70428306:36
FlamHey, I've almost got rsnapshot but I'm a little confused with backing up my MySQL DB.  I've googled around and come up with this command: "backup_script   /usr/bin/ssh -i /home/rsnapshot/.ssh/id_rsa -p 12341 rsnapshot@host.com 'mysqldump -u root -pXXXXXXXXXXX --all-databases | gzip > ~/all.sql.gz'         relative/path/here" to be put in my /etc/rsnapshot.conf, but what is the point of07:50
Flamthe "relative/path/here" part at the end?07:50
e_t_It looks to me like it would be the local directory to which backup_script transfers the all.sql.gz once it is created on the remote machine.07:57
FlamIt isn't in /home/rsnapshot dir on the remote machine, and my mysqldump specifies gzip > ~/all.sql.gz'08:02
Flamand on the destination machine /home/rsnapshot/hourly.0/mysqldump    (mysqldump being what i put for relative/path/here) is empty08:03
Flambut it created that folder itself08:03
FlamI think it's just a required argument to be passed into a rsnapshot function perhaps?  Even if it isn't needed by the function08:04
twbHuh, look at that.08:06
twbsadms appears to be a turnkey packaging for being a client in an AD network08:06
gobbeyes08:16
Zeu5hi there, i have installed a ubuntu server on amazon web services ec2 successfully08:49
Zeu5i need to create another user called deploy08:50
Zeu5i did sudo useradd -d /home/deploy -m deploy08:50
Zeu5and i copied the .ssh folder over from the initial user to deploy home folder08:50
Zeu5however, when i logged in via ssh i do not see deploy@ip-123-123-12-1208:51
Zeu5please advise08:51
e_t_Zeu5: So you were able to log in, you just didn't see deploy@... ?08:54
Thornhello09:30
ThornI have a tested and working exim.conf which I need to move to an ubuntu server09:31
Thornis it possible to use it with the ubuntu exim package or will I have to install exim from sources?09:32
gobbeif the versions are not too far away it should be09:37
gobbeusually configs are usable thru versions09:37
Thornbut there's no /etc/exim/exim.conf or similar in ubuntu, is it?09:38
StrangeCharmhow can i make a symlink in . to each file in /some/dir ?09:39
ThornStrangeCharm: ln -s /some/dir/* .09:40
Thornthere's some kind of autoconfiguration system instead which generates the actual config09:40
StrangeCharmthanks Thorn09:40
Thornand I can't find a way to plug my exim.conf into it09:41
gobbeThorn: well, configuration is somewhere09:41
gobbeThorn: i don't use exim so cannot answer where the file is located09:41
Thornit's in /var and is rewritten on every startup09:41
gobbehttps://help.ubuntu.com/community/Exim409:41
gobbeok, so you need to do it otherway09:41
gobbeor compile your own exim09:41
ThornI've read that already, and several forum threads too09:42
Thornall they advise is to run dpkg-reconfigure exim4-config and answer some questions09:43
Thornunfortunately my config is somewhat more complicated than that09:44
Thornthat's right, exim -bP configure_file says /var/lib/exim4/config.autogenerated09:49
Thornlooks like I'll have to hack /etc/init.d/exim to add -C /etc/exim4/exim.conf09:52
lauThorn: may be look at /etc/default/exim4 first ?10:08
Thornlau: I'm installing exim from source now10:11
uvirtbotNew bug: #704338 in samba (main) "package samba-common 2:3.4.7~dfsg-1ubuntu3.2 failed to install/upgrade: subproses installed post-installation script menghasilkan kesalahan status 'exit': 10" [Undecided,New] https://launchpad.net/bugs/70433810:16
a7ndrewThis is a bit of a long shot, but would anyone know if there is a way to rate-limit the network bandwidth used by a process while keeping it running?10:32
twister004hi guys.. i have ipsec tunnels setup on my Ubuntu server 10.0410:42
twister004I am implementing destination NAT for the first time.. i.e. .. I am creating a new tunnel (other VPN endpoint is a sonicwall) where the destination subnet is NATed.. i activated the tunnel , key exchange takes place, but Im not able to communicate with the destination subnet.. any idea if IPsec is capable of NAT?10:43
a7ndrewI think it is but I haven't done that on linux, only cisco gear, sorry :(10:45
a7ndrewIs there a route in your gateweay that points to the destination subnet?10:45
twister004a7ndrew... what route?.. could you elaborate pl;ease?10:46
a7ndrewtwister004: if you type the route command on your machine, is the subnet you want to connect to listed? Also is it a private ip address ie 192.168.X.X or 172.3X.X.X or 10.X.X.X ?10:49
a7ndrewalso are you trying to pass all your traffic through this tunnel, or only traffic to particular subnet(s)?10:50
twister004a7ndrew.. the remote subnet is(192.168.1.0/24).. im NATin it to (192.168.25.0/24).... on my gateway, the route is such that any traffic to 192.168.25.0/24 goes through my gateway10:51
twister004all traffic is not going through the tunnel10:51
a7ndrewSo you should have an entry in your routing table that says 192.168.1.0   <end point of IPSEC tunnel>  <255.255.255.0>10:56
RnoHello, sorry to ask my question about apparmor here, it's not related to ubuntu server but ubuntu. I'm using the guest login of ubuntu, and so the guest aparmor profile and I'm not able to use google chrome within a guest session. I would like to know if it's possible to add a sub profile to the guest apparmor profile which has no security rule for google chrome?10:57
=== Rno is now known as _Rno_
twister004a7ndrew... i didnt get you.. what's the point of NATing... 192.168.1.0 is getting NATed to 192.168.25.0/24 at the other end.. so my endpoint should see it as 192.168.25.0/2411:10
a7ndrewok as I understand it you have one network, 192.168.25.0 which you are trying to connect to 192.168.1.0. Each of these networks has a gateway, which would have a public interface. NAT translates all traffic from the inside to that on the outside. When you set up your IPSEC tunnel you need to define the interesting traffic to go through the tunnel, and it needs to know where to go.11:15
a7ndrewYou can't send your traffic to 192.168.1.0 out your default gateway because 192.168.25.0 won't be in any internet routing tables.11:16
a7ndrewYou need to specify that it needs to use the tunnel.11:16
=== Kiall|AFK is now known as kiall
uvirtbotNew bug: #704377 in nagios3 (main) "nagios3 requires smbclient, tries to uninstall samba4-clients" [Undecided,New] https://launchpad.net/bugs/70437711:56
freddy__Hi - I have a probelm with my ubuntu server - suddenly the filesystem is mounted ro without my doing anything ...11:58
freddy__is it possible to see when it was mounted ro, mabe why, and how to get back in rw ?12:00
=== oubiwann is now known as oubiwann_
patdk-lapfreddy, that would be the, erros=remount-ro option12:19
patdk-lapuse dmesg12:19
patdk-lapand it means something is probably really screwed up12:19
patdk-lapI've only ever had that issue so far, due to a wifi driver gone wrong, and corrupting the ext3 driver12:20
s2s2d2hello I have installed ubuntu server on ec2 via official ami image12:24
s2s2d2is possible12:24
s2s2d2lo login without that darned ssh certificate ...with username and password only12:24
a7ndrewI've had a crappy power supply cause that issue. At least I'm pretty sure it was the power supply.12:24
s2s2d2??12:25
a7ndrews2s2d2: try looking up the man page for sshd_config I think its in there12:26
a7ndrew/etc/ssh/sshd_config is probably a good place to start12:27
=== oubiwann_ is now known as oubiwann
s2s2d2a7ndrew: what to change in that12:35
freddy__patdk-lap: ok12:49
freddy__patdk-lap: dmesg says EXT3-fs error (device md0) in ext3_new_inode: IO failure12:50
freddy__patdk-lap: and: EXT3-fs error (device md0): read_inode_bitmap: Cannot read inode bitmap - block_gr                                                                                                           oup = 532, inode_bitmap = 1743257712:54
a7ndrews2s2d2: I've got a line in mine that says: PasswordAuthentication no13:06
a7ndrewperhaps try changing that to yes and restarting sshd ;)13:07
binBASHpasswords are overrated :)13:07
binBASHlo patdk-lap btw.13:07
a7ndrewwhy not use certificates though? It is a little harder to set up but once that's done its much nicer13:08
a7ndrewnot to mention safer!13:08
binBASHhere I'm using OpenVPN and ssh is only possible when OpenVPN is connected ;)13:08
=== oubiwann is now known as oubiwann_
tsarlesAnyone here able to help with an IET / ISCSITarget problem?13:31
pmatulis!ask | tsarles13:31
ubottutsarles: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-)13:31
tsarlesI had been running the ubuntu repo version 1.4.19 for a while, but kept getting reservation conflicts, so I decided to update to the current 1.4.20.2...... and now when i start the service it says it can't find the target13:33
tsarlesfortunately I was able to failover to my backup DRBD node, which is still running the old version13:34
tsarlesbut, I would like to get this thing figured out13:34
pmatulistsarles: how did you update to the new version?13:34
tsarlesapt-get build-dep iscsitarget. make. make install13:35
pmatulistsarles: not supposed to do that13:36
HackeMatehello, I have installed the webdav server, and using cadaver i can access it but from windows i cant using the connect to a shared folder13:36
tsarlesoh...13:36
HackeMatei can access it from an iphone tough13:36
HackeMatedo i need enable something i missed in somewhere?13:36
tsarlesis there an updated .deb or something like that?13:37
HackeMatetalking to me?13:37
pmatulistsarles: what release are you using?13:37
tsarles10.04 64 server13:38
tsarlesnope, sorry, never used webdav13:38
HackeMatek13:38
pmatulistsarles: no, unless you want to run 10.1013:39
tsarleshmm13:40
tsarlesguess i'm not completely opposed13:40
pmatulistsarles: did you check the changelogs of the upstream source to see if that version would help you?  is there a known bug related to your initial problem?13:40
zulDaviey: do how did you extract the java stuff?13:43
tsarlesI did look at the release notes, and it did seem to make me think it would help13:43
pmatulistsarles: are you able to reproduce the problem in a test environment?13:44
tsarleswell... unfortunately I don't have a deticated test environment, but yes, I can reproduce it13:44
tsarlesI have two VMWare nodes accessing this iscsitarget, and ocassionally, the iscsi service will come to a complete lock, and my switch LEDs go nuts. I wiresharked the thing, and it was giving reservation conflict errors. temporary fix is to restart the iscsitarget service when this happens13:46
tsarlesit is semi-random, but the one thing I have found that will reproduce this condition fast is trying to load Solaris inside VMWare to a disk on the iscsi service13:48
pmatulistsarles: and a bug?13:48
tsarlesi believe it is a bug with the iscsi service, which is why i was trying to update...... and of course, you never know until you try it13:49
pmatulistsarles: what i mean is, did you search for an existing bug?  and if there isn't one, it should be reported13:50
=== oubiwann is now known as oubiwann_
tsarlesi have been searching google for related information, but i havn't reported it to canonical13:53
tsarlesI was going to check ubuntu forums, but it seems my login is broken - unrelated13:53
tsarleswhere should i report this?13:54
zoopstertsarles: report the bug on launchpad.net!14:02
tsarlesWill do14:03
tsarlesuntil then, i guess the only solution i'm going to get here is to upgrade to 10.10?14:03
patdk-wktsarles, why bother with iscsi for that?14:07
patdk-wknfs will make your life simpler, and probably even make backups easier14:08
tsarlesI guess I'm not opposed to that line of thinking14:09
tsarlesNFS will multi-access? I can still V-Motion between boxes without one machine locking the file?14:10
=== _Rno_ is now known as Guest70271
=== cs278 is now known as Guest50212
tsarlesWell, got a service call to run to. Thanks for the advice14:13
henkjan__with 2.6.35 in repo for lucid, is it easy to install that kernel from the installer?14:14
pmatulishenkjan__: i don't see a 2.6.35 kernel available for lucid unless you're talking about the lts backports kernel14:19
henkjan__% apt-cache policy linux-image-server-lts-backport-maverick14:20
henkjan__linux-image-server-lts-backport-maverick:14:20
henkjan__  Installed: (none)14:20
henkjan__  Candidate: 2.6.35.22.3414:20
henkjan__  Version table:14:20
=== AntORG_ is now known as AntORG
pmatulishenkjan__: 'xactly, so what's the problem?14:21
henkjan__     2.6.35.22.34 014:21
henkjan__        500 http://nl.archive.ubuntu.com/ubuntu/ lucid-updates/main Packages14:21
henkjan__pmatulis: its in lucid-updates14:21
pmatulishenkjan__: what's the problem?14:21
henkjan__new fujitsu servers have unsupported (in 2.6.32) sascontrollers14:21
henkjan__currently i'm booting maverick, and debootstrapping lucid14:21
=== WaVeR` is now known as WaVeR
pmatulishenkjan__: what's the problem?14:21
pmatulishenkjan__: install it if you want it14:22
pmatulishenkjan__: oh, from the installer14:22
henkjan__i would like to do that from the installer yes :)14:22
pmatulishenkjan__: not 'till 10.04.2 i'm afraid.  pretty sure there will be a special question whether you want this kernel14:23
pmatulishenkjan__: that's in a couple of weeks14:24
henkjan__ah14:24
henkjan__i'll wait a couple of weeks and whine again if its not in the installer ;)14:24
pmatulishenkjan__: i'm sure you can hack something up if you really need it that badly14:25
zulDaviey: i re-added debmirror in cobbler just now14:27
=== oubiwann is now known as oubiwann_
uvirtbotNew bug: #704435 in xinetd (main) "xinetd init script - reload terminates redirected services" [Undecided,New] https://launchpad.net/bugs/70443514:51
skorvi wonder how to share usb printer for both windows and linux clients using nothing but the shell15:03
skorv(so far i resisted installing ubuntu-desktop in my servers15:03
evdvelde Hi all, does anybody have experience with zoneedit or another free DNS service? I would like to start using one, but dont know how to choose...15:19
hallynevdvelde: i use zoneedit.  no complaints.  works well15:20
evdveldethx hallyn, i found there site too, but did not want to start using it without a bit of info and such15:21
zulJamesPage: hi can you rebase your cobbler-4j branch please?15:21
JamesPagezul: already on it15:21
zulJamesPage: thanks15:22
evdveldehallyn: do they have e-mail forwarding? i have mail with google at the moment and would like to keep it there15:22
JamesPagezul: done15:23
zulJamesPage: thanks15:23
JamesPagezul: just spotted some cruft in the diff - don't review yet...15:24
andreserlkirkland_: howdy!! The InputMonitor works amazingly!!15:24
freddy__exit15:25
freddy__exit15:25
freddy__exit15:25
kirkland_andreserl: that's great to hear :-)15:25
zulJamesPage: ack15:25
andreserlkirkland_: btw.. I don't yet have acces to the powernap branch right?15:25
hallynevdvelde: yes, they do15:26
JamesPagezul: OK - it looks a bit odd because I used wrap-and-sort to order the Depends but should be OK for review now.15:27
zulJamesPage: merci15:28
JamesPagezul: np ping me if anything needs a change15:28
kirkland_andreserl: huh?  i thought you did15:35
Davieyzul, is git needed as a build dep?15:35
andreserlkirkland_: nope, couldn't upload :/15:36
kirkland_andreserl: i'll fix that15:37
kirkland_andreserl: gimme a minute, i'm working on somehting for zul at the moment15:37
andreserlkirkland_: sure, It is not urgent :)15:43
=== kirkland_ is now known as kirkland
Thirtysixwayignore -channels #ubuntu-server * JOINS PARTS QUITS NICKS16:02
Thirtysixwayoops16:02
kirklandandreserl: okay, lp:powernap now points to lp:~powernap/powernap/trunk which you have access to16:21
andreserlkirkland: awesome, thanks!16:22
zulJamesPage: *cough* http://pastebin.ubuntu.com/555452/ *cough*16:32
JamesPagezul: ta16:33
kpettithow to do a search like "apt-cache search apache" but be able to tell which of those packages is installed?16:33
kpettitI know how to tell if a individual one is there, but not how to do a wildcard type of search to see what's installed16:34
baggar11kpettit: dpkg -l | grep apache16:35
kpettitah, thanks.  exactly what I was looking for16:36
JamesPagezul: just sorting the one in debian/control as well16:39
zulJamesPage: k i would like to finish this today16:40
zulkirkland: i put the debmirroring back in cobbler last night as well16:40
=== kiall is now known as Kohana-Bot
=== Kohana-Bot is now known as Kiall
JamesPagezul: all good - let me test that the binary package was OK as well so good to go16:51
zulJamesPage: cool ill hunt you down after lunch if anything goes wrong16:51
JamesPagezul: sorry but build time is going to go up as java pulls in a load of extra deps....16:53
zulJamesPage: grrrrrrr...;)16:54
uvirtbotNew bug: #704505 in nagios3 (main) "no service recovery notifications after host-check was just in soft-state" [Undecided,New] https://launchpad.net/bugs/70450516:57
uvirtbotNew bug: #704509 in cloud-init (main) "syslog logging is broken in natty" [Undecided,New] https://launchpad.net/bugs/70450917:02
JamesPagezul: I just spotted a mistake - arch for libcobbler4j-java is incorrect17:02
JamesPagezul: fixed in proposed merge17:06
zulJamesPage: thanks17:47
zuldie java die!17:57
andreserlzul: +1 lol17:58
oCean:)17:58
andreserlzul: hold up the cluster-agents bug fix  couple more days I wanna see if upstream commits few patches for the RA's I'm patching17:59
zulandreserl: consider it done17:59
andreserlzul: but you can take a look at bug #525287 though :)18:00
uvirtbotLaunchpad bug 525287 in lvm2 "Add support for corosync based clusters in clvm" [High,Confirmed] https://launchpad.net/bugs/52528718:00
zulandreserl: i rather have someone on foundations look at that18:01
andreserlzul: ok :)18:03
zulJamesPage: looks good18:03
zulSpamapS: ping18:05
SpamapSzul: pong, wazzzzzahhhhhh18:07
zulSpamapS: hi, the jar file in cobbler is gone now does have to be renamed dfsg?18:07
SpamapSzul: good question. Given that we are building the orig tarball from the git repository, I think we should say no, and just report it as a bug upstream (or get a license clarification for the jar file, at which point we don't have to strip it out)18:09
zulSpamapS: okies18:09
SpamapSactually.. hmm18:09
SpamapSIf its built from entirely GPL software, then it has a license and doesn't have to be removed (though we still have to build it for the binary packages)18:10
zulmeh...well see what jdstrand says18:14
zulSpamapS: just uploaded it18:15
SpamapSzul: ok.. cool :)18:20
jdstrandzul, SpamapS: so, does cobbler have an 'official' release tarball or is it just git?18:26
jdstrandzul, SpamapS: I realize you are just using git, but in general18:26
zuljdstrand: its just git for now SpamapS is talking to them about cutting a 2.1 tarball in the futre18:26
jdstrandzul: those files are all DFSG compatible?18:27
zuljdstrand: i believe so18:27
zulSpamapS: ^^^18:27
jdstrandzul: well, this isn't like stripping out swf files, per se, it is that the jar should be buildable from source18:28
zuljdstrand: it is...18:28
jdstrandzul: as such, I don't think it needs dfsg18:28
zuljdstrand: k cool18:28
jdstrandzul: if you are using a 'get-orig' type thing in the Makefile, then perhaps you can exclude the jar file18:29
jdstrandzul: s/Makefile/rules file/18:29
zuljdstrand: ok i think we can do that in the futre18:29
jdstrandzul: just a suggestion18:29
zuljdstrand: sure18:29
SpamapSjdstrand: the jar file will be in the release tarballs when they arrive.18:31
SpamapSso stripping in get-orig means altering the release tarballs, which I'm hoping we can avoid.18:31
SpamapSzul: I think there are some files that don't have a license that were supposed to be manually removed from .orig.tar.gz .. but I don't recall actually telling you which files.18:32
SpamapSzul: like the pres/ directory18:32
SpamapSzul: is get-orig-source from git working again? Like.. can I modify that bit to remove those files?18:33
zulSpamapS; no it got removed18:34
* jdstrand wonders why the jar can't just be built during the build18:36
SpamapSjdstrand: it is!18:36
jdstrandso why are they shipping it?18:36
SpamapSjdstrand: because jdk's are hated in the sysadmin community. ;)18:37
SpamapSso yeah already I can see a few files that need stripping .. guess we got unsynced on that one18:43
SpamapSzul: how do you want to do this? I have some files that needs tripping out of that orig tarball? should I just bzr rm them from the build branch and tag the rev as a new upstream-XX ?18:46
zulSpamapS: yes please and document them in the commit so we know going forward18:47
SpamapSzul: should I start working in a side branch and do MP's like James and Dave did?18:52
zulSpamapS: sounds like a plan18:53
SpamapSzul: actually I think all we need to do is use setup.py dist19:02
SpamapSsdist rather19:03
SpamapSzul: that is the method they use to produce the source rpms upstream, and so is likely all we'll need.19:06
zulSpamapS: really sweet..19:06
SpamapSwish I'd thought of that sooner the copyright file would have been a lot smaller and easier to generate. ;)19:06
andreserlkirkland: ok, integration with the monitors is pretty much done. Just need to figure out some things out first.19:07
andreserlkirkland: if I use a RemoteMonitor in port7, and we are the selected action is PowerSave. then the WoL Monitor won't work given that it listens to Port7. What do you think should be done here? I was thinking something like "If action is powersave, then don't use RemoteMonitor in port 7"19:08
kirklandandreserl: hmm, i don't think i understand yet ...19:10
kirklandandreserl: can you clarify19:10
andreserlkirkland: ok, so at the Rally, you saw that when entering to Powersave method, PowerNap started a WoL Monitor to be able to "wakeup" and un-do what pm-powersave did. This WoL monitor listens at port udp 7.19:11
kirklandandreserl: right19:11
kirklandandreserl: and why did you choose port 7?19:11
andreserlkirkland: WoL, it is either 7 or 919:12
kirklandandreserl: okay19:12
andreserlkirkland: and powerwake by default sends to port 719:12
andreserlkirkland: ok so anyways, I have integrated Adams RemoteMonitor. What this monitor does is listen for *any* traffic in a given port (Can be 7, 9, 80, or all at once)19:13
kirklandandreserl: awesome,19:13
kirklandandreserl: that's very cool19:13
patdk-wkhmm, wol doesn't use ports, the port is just to make it easier to send the packet19:15
andreserlkirkland: indeed... it is limited to UDP only though. But anyway, if we select action method as powersave (which will start a WoL monitor in udp7 when entering to powersave), and if we have a RemoteMonitor listening in port7, the WoL monitor will fail to bind the port19:15
patdk-wkwouldn't the wol monitor be useless? as that udp that did the wol would be lost anyways19:16
andreserlpatdk-wk: a WoL datagram is a UDP datagram sent to either port 7 or 919:16
patdk-wkactually, no :)19:16
patdk-wkit's a packet that contains a specially crafted stream of bytes19:17
andreserlkirkland: so the solution I was thinking is "If ACTION_METHOD is PowerSave, then ignore a RemoteMonitor in port 7 to be able to launch the WoL Monitor"19:17
patdk-wknothing to do with what port19:17
patdk-wkit doesn't even need to be IP :)19:17
andreserlpatdk-wk: yes but they are still sent to an specific port, which is usually 7 or 9, but can be any port19:19
kirklandandreserl: sounds reasonable, i think19:20
andreserlpatdk-wk: and in what we are doing, we need to know the port and having a RemoteMonitor and a "WoLMonitor" are two different things used for two different purposes19:21
andreserlkirkland: alright, other than the The InputMonitor (tracks usb/mouse input), ProcessMonitor, and IOMonitor also work. Will be uploading it in a while for your testing ;)19:21
kirklandandreserl: saaaaweeeeet19:21
kirklandandreserl: looking forward to it19:22
zuljdstrand: did you reject the upload?19:46
jdstrandzul: I haven't done anything with the upload. is it there now?19:50
zuljdstrand: not yet gimme a few can you reject the upload that is the queue now please?19:50
jdstrandzul: rejected20:00
larsemilhey! anyone here used amazon s3 in any way?20:00
zuljdstrand: thanks20:00
larsemiland by using s3 i mean amazon s320:01
b0gatyrlarsemil: i host some images for a website20:01
zulSpamapS: *cough*20:12
SpamapSwha?20:12
SpamapSjdstrand: so there are a few python files in the upstream tarball that were copied direct from python 2.4 .. but we don't install them in binary packages..20:13
SpamapSjdstrand: should we strip them out of the tarball, or document their license in the debian/copyright file, or just ignore them?20:14
jdstrandSpamapS: just document their license20:19
SpamapSjdstrand: ok cool20:22
hallynzul: hey, do you have strong feelings on ntp package?20:42
zulhallyn: not really20:43
hallynzul, i'm trying to decide what to do with bug #69767620:43
uvirtbotLaunchpad bug 697676 in ntp "ntp kills polar bears" [Low,Triaged] https://launchpad.net/bugs/69767620:43
hallyndebian ntp maintainers want someone to work a real fix upstream, which seems sensible to me20:44
hallynbut with kirkland feeling all save-the-world-like with powernap, i wasn't sure whether we'd want to have a patch to reduce power usage in our package :)20:44
zulhallyn: did you file a bug with debian?20:45
kirklandhallyn: :-)  +1 for sensible defaults20:45
hallynzul: i emailed the package maintainers20:45
hallynkirkland: yeah, but this isn't just defaults, it hacks the code20:46
andreserllol20:46
kirklandhallyn: looking at the patch ...20:46
hallynpatch is used in fedora, but i didn't feel qualified to ack it by eye20:46
* kirkland reading20:47
zulhallyn: i rather have it in debian if it changes the functionaily then i would say nack20:47
kirklandhallyn: yikes20:47
kirklandhallyn: that's um, invasive20:47
kirklandhallyn: yeah, zul is right ... we'll follow or work with debian on this one20:47
hallynkirkland: :)  yeah, i don't *usually* admit to being unqualified to judge a patch, but in my email to ntp maintainers i did20:47
hallynthanks, guys20:48
kirklandhallyn: are you joining us at Opal D's?20:48
kirklandhallyn: -> pm20:48
zulhallyn: besides fedora isnt always right even though they may think that20:49
hallynzul: i wasn't saying that :)20:51
hallynzul: just that they apparently think it's at least safe20:52
patdk-wkI vote, kill the polar bears20:53
patdk-wk:) not that I can vote :)20:53
zulhallyn: i know i was joking :020:59
hallynkirkland: d'oh, i shoulda left teh reply to you :)21:02
kirklandhallyn: ?21:03
kirklandhallyn: oh, to that bug?21:03
kirklandhallyn: i was just "supporting" you21:03
hallynyeah21:03
kirklandhallyn: i haven't seen yours yet21:03
hallynmuch more diplomatically :)21:03
kirklandhallyn: my experience is a) thank them profusely for their bug report/patch, etc, b) explain why we are advising against it, c) leave room for changing that opinion if $SOMETHING happens in the future to change that, d) thank them over again :-)21:07
SpamapSkirkland: reading cobbler devel? They just accepted a patch to query APC power switches for On/Off status.21:10
SpamapSadds a "power_status" api call. kind of cool21:10
kirklandSpamapS: rock!21:10
kirklandSpamapS: that is cool21:10
andreserlkirkland: if for example, for whatever reason, the WoL monitor is unable to start but the "powersave" action is taken, should the powersave be reverted?21:17
SpamapSandreserl: no more RoAkSoAx ? ;)21:19
andreserlSpamapS: hehe RoAkSoAx is still there though I've been trying to figure out if I use this nick instead for quite a while now lol :P21:21
kirklandandreserl: yeah, we don't want to enter a situation that we can't get out of21:21
kirklandSpamapS: heh, yeah, we have to type a lot more letters to tab complete :-)21:21
* SpamapS tried to shake off SpamapS a couple years ago. It felt like shaking off a piece of my soul.21:22
andreserlkirkland: yeah, though we could fallback to a different port though. Btw.. does powerwake support using a different port?21:22
kirklandandreserl: it does not currently21:24
kirklandandreserl: i suppose it could though ....21:24
andreserlkirkland: I guess it will make more sense to use a fallback port when powerwaked exists, so it can keep track of that info21:24
andreserlkirkland: so that powerwake knows what port to use when sending the magic packet21:25
andreserlSpamapS: I know what you mean!! I'21:25
andreserlbeen using RoAkSoAx for quite a while now21:26
kirklandandreserl: right21:27
fluvvell24th of June, world IPv6 day.  How ready are people for IPv6 testing?21:36
bittinfluvvell: that sounds awesome, maybe i should switch to IPv6 at home by then :p21:37
fluvvellbittin, I'm not even sure if my home router is configured for it!21:37
bittini have a FON with OpenWRT so i think i can do it21:38
nkvHello all.  I need to replace an outbound mailserver for the service provider I work for.  Back, 5 or so years ago I used Postfix to fill this role.  Is that still a fairly sane choice, or has something new and shiny come up and replaced it?  This has no local delivery, just queuing mail from authorized subnets and relaying it to external mail servers.21:39
fluvvellbittin, yeah mines more of just a gateway, the main routing is done by ubuntu server. Allocating addresses? Won't we need addresses allocated?21:40
SpamapSnkv: postfix is the preferred choice in ubuntu server as it is the one MTA in main21:44
SpamapSoops21:44
SpamapSI lied21:44
SpamapSnkv: rather, its the better one in main21:44
* SpamapS didn't realize exim4 was in main21:44
* nkv shudders... Exim.... :)21:46
nkvOk... Well I figured a fairly solved problem like SMTP servers wouldn't have shifted much in the last 5 years.21:48
patdk-lapheh, when ever I install a package that needs mail21:51
patdk-lapubuntu always recommends exim21:51
kirklandzul: yo22:09
zulkirkland: whats up?22:10
kirklandzul: just checking on the cobbler upload22:10
zulkirkland: im waiting for SpamapS22:10
kirklandzul: coolio22:10
andreserlkirkland: done! Monitors integrated. Though, need to update the packaging! but it is still testable without having to really install it22:17
hallynall right, time to try an online ext4fs resize.  wish me luck22:18
kirklandandreserl: cool22:19
kirklandhallyn: hmm, check with kees22:19
keeshallyn: wait wait22:20
* hallyn waits22:20
keeshallyn: make *sure* you're running .37-12 or later22:20
keesotherwise it will _destroy_ your filesystem22:20
hallynkees: 2.6.37-12-generic22:20
hallyndefine destroy :)22:20
kees-12 you'll be fine. destroy, as in, fills the extended area with arbitrary bitmap entries and the fs starts writing all over the place22:21
keesas in, fsck CANNOT fix it in some cases.22:21
hallynjinkeys22:21
keesI was extremely lucky in that I only destroy my apt mirror. easy to find the wrecked directories and files since there's a separate db of hashes to compare against :)22:22
kees*destroyed22:22
hallynkees: funny thing is, i was doing this to make room for a btrfs partition to test a fast lxc-based schroot alternative to show you :)22:22
keesbut -12 has ted's fixes22:22
keeshaha22:22
hallynkees: rockin', i'll do an extra rsync and then give it a shot then, thanks22:22
keeswell, i'm certainly excited about that, but yeah, the online resize regress was scary :)22:22
keescool22:22
* hallyn goes to rsync22:22
hallyndrat: Filesystem at /dev/sda1 is mounted on /; on-line resizing required22:27
hallynresize2fs: On-line shrinking not supported22:27
* hallyn scratches his head and goes to look at the source22:27
GrubulousI have an ubuntu 10.04 server running on vmware and I notice that after 48 days of uptime the server appears to become unresponsive. I can ping it, but I cannot ssh in or access any other services (apache on 80, couchdb on 5984, etc). nothing seems amiss in the logs22:28
=== Kiall is now known as Kiall|AFK
ideamanI have a basic networking question. How can I get from subnet to subnet?22:47
nkvThat is the canonical job of a router.22:48
nkvideaman: I was replying to you, in case it wasn't clear :)22:50
AdamDVI'm running Ubuntu 10.10. php5-gd is listed as installed. I'm getting "The function imageantialias() is not available in your PHP installation. Use the GD version that comes with PHP and not the standalone version." when using jpgraph. Any one wanna lend a hand?23:13
Devo-KunAdamDV: did you just install php5-gd?23:41
AdamDVYes.23:41
Devo-KunAdamDV: did you restart Apache after install PHP-gd?23:41
AdamDVYes. I'm not a noob. I think its because the maintainers dont want to use the gd version bundled with PHP and insist on using the ainstream one?23:42
Devo-KunAdamDV: can you create a quick PHP script with the phpinfo function in it: <?php phpinfo(); ?>23:45
Devo-KunThen paste the results of the GD section here23:45
AdamDVYea one sec23:48
AdamDVhttp://pastebin.com/kSApU6VA23:48
AdamDVDevo-Kun: See above23:50
Devo-KunAre you able to run the Examples?23:54
AdamDVhmm?23:55
Devo-KunWhen I run the jpgraph examples I get font errors23:55
skorvcan a usb printer be shared on ubuntu server for windows & linux clients using nothing but the console (using gui is easy, same as desktop)23:56
Devo-KunAdamDV: http://paste.ubuntu.com/555596/23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!