/srv/irclogs.ubuntu.com/2011/02/23/#ubuntu-server.txt

uvirtbot	New bug: #723480 in php5 (main) "php5-fpm uses too high value for pm.max_children by default" [Undecided,New] https://launchpad.net/bugs/723480	00:51
dravekx	Hi. I have my users jailed in their SFTP home directories. According to http://www.debian-administration.org/articles/590, the directory has to be root:root. so how do I give those users write access to their home dirs?	00:53
qman__	dravekx, the directory you set SSH to jail to is viewed as "/" to the user	01:00
qman__	so you create the user's home directory from that point	01:00
qman__	i.e. /jail/home/username	01:00
dravekx	ahhhh	01:01
dravekx	qman__ ++++	01:01
dravekx	qman__, there's no way to give them access to said / ?	01:05
uvirtbot	New bug: #723483 in rabbitmq-server (main) "Package fails to configure and hangs if hostname not resolvable" [Undecided,New] https://launchpad.net/bugs/723483	01:06
qman__	dravekx, no, but any given user shouldn't have access to / anyway	01:07
qman__	except root, of course	01:07
qman__	especially in a jail setup, you can just put files wherever you want	01:08
Patrickdk	qman, that severely limits someones attempt to escalade to root though :(	01:08
dravekx	qman__, when they login, they are at said "/", but really they are in /home/user/thisplace/	01:09
qman__	hah	01:09
qman__	dravekx, if they are at / when they log in, it's because they don't have permission to their home directory relative to the jail	01:10
qman__	so, for example	01:10
qman__	if the user is jailed to /home/user, you must create /home/user/home/user, and grant the user permission on the second 'user' folder	01:10
dravekx	that's wild. i understand it, but its wild.	01:11
qman__	yeah, it makes things a little confusing	01:12
qman__	that's why I prefer to make a separate directory for jailed users, like /jail	01:12
qman__	then you could have /jail/user/home/user	01:12
qman__	or if your users can share a jail, /jail/home/user	01:13
qman__	depends on your needs	01:13
dravekx	qman__, I understand. Now if I could grasp the permissions concept.	01:14
dravekx	qman__, basically, if I want that user and my admingroup to access his folder, I would set user1:admingroup, correct?	01:15
qman__	yes	01:16
dravekx	then if anyone needs access, I can just add them to admingroup.	01:16
qman__	and then chmod appropriately	01:16
dravekx	k	01:17
dravekx	thanks	01:17
qman__	no problem	01:17
lucaspearson	anyone here LDAP and SAMBA experts?	01:18
lucaspearson	ive been googling my life away trying to find a solution that fits my problem with LDAP/SAMBA and Profiles	01:21
lucaspearson	anyone?	01:30
dravekx	is there anyway to get rid of the "~" when users are jailed? instead of url/~user .. make it url/user?	01:31
lucaspearson	im not sure i have never looked into that but i can if youd like	01:32
JanC	dravekx: if you mean HTTP URLs, that's entirely up to your webserver configuration?	01:34
twb	When using virt-manager (for kvm) on lucid, do I need to manually configure bridges?	01:42
twb	I didn't think I had to, but experimental evidence seems to contradict me	01:42
twb	Ah, looks like libvirtd sets up the NAT bridge by default, but not bridges to physical NICs. I must be remembering the former.	01:43
benjgvps	Hello, I installed Ubuntu server 10.04, though within under a minute to five minutes, it hangs and I have to do a hard reset	02:53
benjgvps	It happened on the regular version of ubuntu too...	02:53
twb	benjgvps: run memtest86+	02:56
benjgvps	twb: I have. No problems reported after running it all night	02:57
twb	benjgvps: dunno then	02:57
benjgvps	My guess is that it's something to do with power management or something. It's actually a Neoware CA2, which uses a low power 800 MHz VIA CPU. It's odd, Windows XP ran just fine even when I pushed it hard. Some other distros, like Puppy for example work just fine on it :\|	02:58
twb	benjgvps: try googling for "acpi=off noapic"	03:00
twb	benjgvps: those two (and a bunch of others, that google should find) are things to try when you get weird behaviour	03:00
benjgvps	Thanks	03:00
Error404NotFound	can i create lucid vms using vm-builder? or is it just up to intrepid?	03:37
Xase	I'd like to build a media server, utilizing Ubuntu Server x64, and have 8 TBs, backed up by an 8tb raid...	03:44
Xase	Is this possible?	03:45
Xase	?	03:48
Xase	Lalallala	03:52
ruffdog	Xase: trying to see if you get someone to wake up? :)	03:55
Xase	Yessir.	03:55
Xase	I'm tempted to bother the CM team to ask...	03:56
ruffdog	Xase: Do you have an issue you need help with? I'm no pro at Server at all, but maybe I can help?	03:58
Xase	Well if what I want to do is possible, then it's also possible to do it on regular Ubuntu...	03:58
Xase	I want to create a Media server, that can be used as also Network Area Storage, with 8 tb, backed up by an 8tb raid	03:59
ruffdog	Xase: Sounds cool. Did you check out http://www.havetheknowhow.com/ That might help. It's a bit older article but it seems helpful. or Even http://www.geek.com/articles/chips/feature-linux-media-server-using-ubuntu-810-2009065/	04:01
Xase	Reading them	04:03
Xase	Well I know how to build a media server, my main objective is being able to have the 8TB backed up via RAID, and be able to access said backups near immediately if main drive should say.... fail?	04:04
ruffdog	Xase, understood. Maybe this article helps http://catgirlalexandria.wordpress.com/2010/12/08/setting-up-software-raid-on-ubuntu-server-8-10-10-10/ . Not super smart on the subject myself. Have dabbled in linux for a few years now but am starting a full transition over from Windows as of a couple of weeks ago.	04:08
Xase	Nice.	04:08
Xase	Well I'll google about.	04:09
Xase	nad peruse over those articles.	04:09
ruffdog	Xase, cool. Good luck.	04:09
Xase	Maybe a double raid solution...	04:23
Xase	Where one raid is just a mirror copy of the first, with hot-swappability ?	04:24
ruffdog	Xase, that sounds good. I maybe missing something but if you set up a raid, you should be good if one drive or two drives fail, right?	04:27
Xase	Well yes.	04:27
ruffdog	Xase, Is doing what you state a bit over the top? Just curious. Again, not perfect but I have a couple of storage devices set as Raid5 and I had both break once. Replaced the broken drive and all my data was still there, nothing missing. Unless you see maybe a scenario where more drives would fail than could be recovered?	04:28
Xase	What I really need is a 8tb media server with a backup clone.	04:28
ruffdog	Xase, in that case, maybe setup a second one that you can just backup to on a daily basis?	04:28
Xase	Yes, but would I be able to do it so that just new data gets stored?	04:29
Xase	If so I could just set up a Cron task correct?	04:29
Hypoglybetic	Is anyone here experienced with freeNAS and FTPs? I know it isn't ubuntu but #freenas is full of a bunch of zombies. You people are so much smart <3 -- I'm getting error 500, invalid port command when I try to connect via the internet, but my 192.168 IP works.	04:29
ruffdog	Xase, Cron may work. But maybe get a program that's specifically for backups. Something like http://www.junauza.com/2009/01/7-best-freeopen-source-backup-software.html	04:31
ruffdog	Xase, bacula looks better than Time Vault. Bacula might be better.	04:42
Xase	I was just reading about i.	04:42
ruffdog	Xase, AtomicSpark thinks it might be a bit overkill (bacula) for backing up a media server. He says possibly rsync might be better. I just through the question out in the offtopic channel while I was in there.	04:44
Xase	Hmm...	04:45
Xase	Rsync eh?	04:45
ruffdog	Yeah. But I know very little about it. It's on that web page I sent you though.	04:46
Xase	Yeah...	04:50
Xase	sounds great.	04:50
Xase	Did you mention that I'd be rsyncing 8tb of data though?	04:51
ruffdog	Xase, no I didn't tell him that. I asked and he said "ruffdog: Its hard to back up that much data. You'd probably just rsync one volume to another. Thats pretty much your ownly option. :<"	04:56
ruffdog	Xase, he also says "ruffdog: Using some type of RAID would prevent losing your media due to drive failure. It's not backup, but it helps a lot."	04:57
ruffdog	Xase, and AtomicSpark says more "ruffdog: Note that RAID 5 is sketchy on that size of a volume. You're better off doing some sort of nested raid. Like raid 1 + 0."	04:59
boxybrown	is there a fast way to create a new admin user with the same rights/groups as the original admin user created during install?	05:44
boxybrown	(basically we want to rename the admin user, but it sounds like the best way to do this is create a new acct and delete the old one)	05:44
Hypoglybetic	Can someone tell me if this works for them? ftp://173.65.117.170:2021 ?	06:22
sdollins	Hello.	06:49
sdollins	Could someone perhaps tell me what 4 dots rotating between red and white means on the screen after grub?	06:49
ruffdog	asdf	07:00
ruffdog	asdfasdf	07:00
=== airtonix is now known as argument
=== sourcode_ is now known as sourcode
sdollins	anyone? :<	07:26
dravekx	i think everyone is offline.	07:26
sdollins	My server is stuck here http://dl.dropbox.com/u/9631803/ubuntu-boot.png	07:27
sdollins	We moved the drives into a new chassis.	07:27
kklimonda	sdollins: boot it in the recovery mode - it will disable splash, and present you with more info about boot process.	07:30
sdollins	it's shift key for grub2 right?	07:31
kklimonda	yes, left shift	07:31
sdollins	hmmm	07:33
sdollins	all is fine is recovery mood	07:34
sdollins	mode*	07:34
kklimonda	then try removing quiet and splash from the default boot entry, and see if it also fixes the problem.	07:37
sdollins	mkay rebooting	07:43
sdollins	kklimonda, http://dl.dropbox.com/u/9631803/ubuntu-boot2.png	07:43
sdollins	its stuck there	07:43
kklimonda	sdollins: can you login using ssh? It does look like the boot process ends, but ttys aren't spawned for some reason	07:51
sdollins	i don't think networking is up	07:51
sdollins	let me check	07:51
sdollins	kklimonda, yes networking works.	08:05
kklimonda	sdollins: if so, I'd try logging in using ssh and checking what does ubuntu think its runlevel currently is (there is a runlevel command). The fact that nginx has started suggests that it's not that (it's started from old, sysinit scripts) but binmft-support is one of the last messages you get before the login prompt is shown. The last one comes from acpi-support which may not be	08:05
kklimonda	installed/enabled on your server.	08:05
kklimonda	(on the other hand you have pulseaudio installed so it's not that servery.. ;})	08:05
sdollins	It's not my server and I thought the same XD	08:05
sdollins	Well, I don't use it	08:05
sdollins	N 2 is the run level	08:05
kklimonda	and what does sudo service tty1 status returns?	08:05
sdollins	start/running	08:05
kklimonda	and getty is running?	08:09
kklimonda	meh, it should be	08:09
sdollins	yep	08:09
sdollins	I don't really see anything useful in that :(	08:31
SpamapS	sdollins: weird.. so plymouth should stop when rc is done...	08:32
SpamapS	sdollins: its very useful.. it tells me that rc finished	08:32
SpamapS	sdollins: which means the condition in /etc/init/plymouth-stop.conf that says 'or stopped rc RUNLEVEL=[2345]' should have been matched	08:32
sdollins	i see	08:34
sdollins	This started after we did a chassis change. I'm not sure if you read that.	08:34
SpamapS	No but did your network interface maybe change from eth0 -> eth1 ?	08:35
sdollins	i've taken care of udev rules	08:36
sdollins	networking is fin	08:36
sdollins	e	08:36
SpamapS	sdollins: what does 'status plymouth' say?	08:38
sdollins	start/running	08:38
sdollins	pid 530	08:38
SpamapS	sdollins: for giggles, try 'sudo /bin/plymouth quit'	08:39
SpamapS	sdollins: then 'status plymouth'	08:39
sdollins	stop/waiting	08:39
SpamapS	ok.. weird	08:39
sdollins	its still stalled too :(	08:40
SpamapS	ok can you boot w/ --verbose (remove the -x from /etc/init.d/rc) and then pastebin your /var/log/boot.log ?	08:40
sdollins	okay its booting up now	08:42
Zaca12	Hi there, I've got a mail server which is heavily uploading mail (imap port 993) although I can't seem to establish where exactly this mail is coming from, i.e. which box on my network is sending this mail. how would i be able to identify which computer (IP) on our network is uploading such heavy amounts on data through our mail server? Port 993	08:45
jamie_	Zaca12, you could run tcpdump on the mail server and set it to only show packets which have a destination port of 993 - this would show you which IP's were sending the data	08:46
=== jamie_ is now known as iclebyte-work
SpamapS	Zaca12: I've used 'ntop' in the past to find abusive users. :)	08:46
sdollins	http://pastebin.com/G8xvTrK2 SpamapS	08:47
iclebyte-work	SpamapS, we've just implemented ntop on our core network but since it run's in RAM it doesn't seem to keep those stats for very long	08:47
iclebyte-work	which is quite frustrating	08:47
iclebyte-work	so is the fact we bought the pro ntop with the plugins and support and don't get replies from luca derbi	08:48
SpamapS	that sux. I haven't had to use it for a while...	08:48
iclebyte-work	it's a cool product though, we were looking at it as an alternative to other commercial deep packet inspection tools	08:49
iclebyte-work	it would be perfect for a home network, we're using it to monitor a broadband network with 36000 users though	08:49
SpamapS	iclebyte-work: i used it to monitor a highschool wifi network 400 users.. didn't have much problem on old 1G boxes.	08:50
iclebyte-work	400 wifi connections is quite different to 36,000 8 meg ADSL circuits	08:51
iclebyte-work	out of interest though, which AP's did you use?	08:51
SpamapS	iclebyte-work: Cisco I forget the model #	08:53
SpamapS	iclebyte-work: very nice units..	08:53
SpamapS	iclebyte-work: had ap<->vlan<->e1000<--linux bridge-->e1000<->rest_of_network	08:54
SpamapS	iclebyte-work: also ran snort feeding into an ACID database so we could catch the script kiddiez trying to exploit the other boxes.	08:55
iclebyte-work	ah you used it inline	08:55
iclebyte-work	SpamapS, we're using a mirrored port on some cisco kit.	08:56
iclebyte-work	SpamapS, did you find many attacks?	08:56
SpamapS	iclebyte-work: no.. the admins I built the IDS network for didn't realize how hard IDS tuning was..	08:56
iclebyte-work	=)	08:56
iclebyte-work	was this an academic network?	08:56
SpamapS	iclebyte-work: instead of quieting down the ACID flags.. they just ignored it and used ntop to find the kids who were downloading stuff.	08:56
iclebyte-work	haha	08:57
SpamapS	The biggest problem on the network (unbeknownst to them) was kids running Unreal Tournament	08:57
SpamapS	these two kids were geniuses.. they figured out a way to get around the normal controls...	08:57
iclebyte-work	this was a while ago =)	08:57
SpamapS	and setup a phantom share on a linux box to serve up the game...	08:57
SpamapS	and then would SELL access to it.	08:57
iclebyte-work	awesome	08:58
iclebyte-work	i love people like that	08:58
SpamapS	the administration was mad.. but I got their contact info and still occasionally throw work their way ;)	08:58
SpamapS	they're both sysadmins now :)	08:58
iclebyte-work	that does not supprise me.	08:59
SpamapS	sdollins: any progress on that boot.log ?	09:01
sdollins	i linked you	09:01
SpamapS	about time I started thinking about sleep...	09:01
sdollins	<sdollins> http://pastebin.com/G8xvTrK2 SpamapS	09:01
SpamapS	oh sorry Imissed it	09:01
sdollins	Me too. I've slept 3 hours in the past 40.	09:01
SpamapS	sdollins: weird.. I don't see events for rc or runlevel	09:02
sdollins	I've gave up ;P	09:03
sdollins	I'll just reinstall it tomorrow.	09:03
SpamapS	sdollins: doesn't make much sense, but I understand. ;)	09:04
Error404NotFound	I have got a server with its lsb_release -a, and /etc/issue saying its maverick, while source.list has all from karmic, what would be the definite way to confirm the version?	09:17
kklimonda	Error404NotFound: either check /etc/lsb-release or /usr/share/doc/base-files/changelog.Debian.gz	09:19
Error404NotFound	first one was maverick, and a zcat on second tells maverick...	09:20
Error404NotFound	seems maverick, someone pulled a prank on me by replacing source.list to karmic	09:20
SpamapS	Error404NotFound: sounds like a half-aborted upgrade	09:20
kklimonda	SpamapS: what is half-aborted upgrade? Someone has started upgrade karmic->maverick, decided it was a bad idea, and restored all sources.list?	09:22
SpamapS	kklimonda: that, or they copied some of /etc from a maverick server onto an old karmic box	09:22
kklimonda	changelog for base-files is from maverick so it's probably the first one, or the prank :)	09:24
ikonia	Error404NotFound: the running kernel is the best clue	09:24
Error404NotFound	ikonia: Linux optrak-3 2.6.35-22-server #33-Ubuntu SMP Sun Sep 19 20:48:58 UTC 2010 x86_64 GNU/Linux	09:25
Error404NotFound	i guess its maverick	09:25
Error404NotFound	right?	09:25
ikonia	looks that way from the kernel	09:25
SpamapS	so sources.list is just screwed	09:28
SpamapS	maybe an old config management overwrote it?	09:28
uvirtbot	New bug: #723603 in vsftpd (main) "vsftpd no longer supports both anonymous_enable and local_enable " [Undecided,New] https://launchpad.net/bugs/723603	09:36
Error404NotFound	I am thinking to run KVM on my maverick box, the only external interface is eth0 which is statically assigned right now. If i create a bridge, would i need to install dhcp server and run on it? or if i am giving all the network conf parameters like ip, gateway, dns,etc to vms?	09:44
=== ogra_ is now known as ogra
lephisto	moin	10:00
Sirgado	hi, I've an 10.04 server with nfs exports, trying to mount NFS with 10.10 clientes give me error: requested NFS version or transport protocol is not supported	10:03
Sirgado	found this bug: https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/656889	10:03
uvirtbot	Launchpad bug 656889 in nfs-utils "nfs mounts no longer negotiate protocol with older servers" [Undecided,New]	10:03
Sirgado	it's strange its important is undecided because it seems to make impossible to connect server with desktops	10:04
DigitalFlux	Hi Guys	10:28
=== Nafallo_ is now known as Nafallo
DigitalFlux	I am kind of confused about apt-cacher	10:28
DigitalFlux	I need to know when does the package db get updated ?, i mean if a client requests a package that is already cached, but there is an update to this package, will the client get the older cached package from apt-cacher or will apt-cacher go and fetch the new package, cache it and serves it to the clien t?	10:28
patdk-lap	don't use apt-cacher	10:33
patdk-lap	use apt-cacher-ng	10:33
DigitalFlux	patdk-lap: :(	10:36
DigitalFlux	patdk-lap: I already started using it, configured it and it's currently downloading the packages	10:36
patdk-lap	well, apt-cacher-ng is a straight replacement for apt-cacher	10:36
DigitalFlux	patdk-lap: Would it be possible to use the same cached directory structure of apt-cacher with apt-cacher-ng ?	10:36
patdk-lap	atleast for me, apt-cacher caused it to be 10x slower than not using it at all	10:37
patdk-lap	and apt-cacher-ng is fast	10:37
patdk-lap	I dunno if the structures are the same or not	10:37
DigitalFlux	hmm	10:37
DigitalFlux	any good docs on apt-cacher-ng ?	10:37
patdk-lap	dunno, it was too simple to use, didn't need any	10:39
DigitalFlux	patdk-lap: Ok Thanks	10:39
DigitalFlux	Now what about my question at the top ?	10:39
DigitalFlux	patdk-lap: what do you think ?	10:40
zul	morning	13:39
highvoltage	morning zul	13:39
azizLIGHTS	i got cli right now, but i want to use firefox or chrome to browse internet, whats the lightest gui for this purpose	13:48
nimrod10	azizLIGHTS, you have a range of light window managers: lxde, ion, xmonad, openbox, fluxbox	14:03
azizLIGHTS	these are even less resource intense than xfce correct?	14:03
nimrod10	correct ! https://help.ubuntu.com/community/Installation/LowMemorySystems	14:04
azizLIGHTS	its telling me not to install GUI: https://help.ubuntu.com/community/ServerGUI	14:04
nimrod10	if you're on a server you shouldn't have a gui	14:04
greppy	azizLIGHTS: ratpoison is REALLY light weight. :)	14:04
nimrod10	why do you need a gui on a server ?	14:04
azizLIGHTS	because i use the server for proxying basically, and downloads are unstable and break	14:05
azizLIGHTS	so i must use chrome on the server itself	14:05
azizLIGHTS	because my connection seorver is unreliable	14:05
azizLIGHTS	my connection to server	14:05
azizLIGHTS	is there a better way	14:06
azizLIGHTS	lynx and elinks and links cannot do	14:06
highvoltage	azizLIGHTS: wget or curl	14:06
azizLIGHTS	:( nor wget	14:06
highvoltage	wget will certainly work better than chrome	14:06
azizLIGHTS	there is some sessionids and javascripting involved	14:07
greppy	azizLIGHTS: run lxde or ratpoision in a vncserver instance :)	14:07
azizLIGHTS	this sounds interesting	14:07
azizLIGHTS	i have no gui components at all right now, does this mean i need to install x-org	14:07
azizLIGHTS	or is there one single command for ratpoison that takes care of it	14:08
greppy	azizLIGHTS: apt-get install vncserver	14:08
greppy	then just use ratpoison with that.	14:08
azizLIGHTS	i mean do i have to sudo apt-get install xserver-xorg xserver-xorg-core, and then sudo apt-get install ratpoiuson	14:10
greppy	if you want to run it on the video hardware in the server, yes.	14:11
greppy	if you just want a network service that you can do x11 stuff in, use vncserver.	14:11
azizLIGHTS	i dont quite know what that means	14:12
greppy	ok	14:13
greppy	!info tightvncserver	14:14
ubottu	tightvncserver (source: tightvnc): virtual network computing server software. In component universe, is optional. Version 1.3.9-6.1 (maverick), package size 752 kB, installed size 1568 kB	14:14
greppy	then use a vnc client, on another system to connect to that.	14:15
azizLIGHTS	i can run a vnc server on the server without x-org?	14:16
azizLIGHTS	and see a gui on the vnc client display?	14:17
greppy	yes	14:17
azizLIGHTS	oh	14:17
azizLIGHTS	do i install ratpoison on the server or the client?	14:17
greppy	azizLIGHTS: it will install a small amount of xorg, apt-cache info tightvncserver will show the packages that it requires.	14:17
greppy	on the server.	14:17
greppy	azizLIGHTS: then just add 'ratpoison &' to the end of your ~/.vnc/xstartup	14:18
greppy	basically run vncserver once to create the .vnc directory and files, then shut it down and edit ~/.vnc/xstartup	14:19
RoAkSoAx	morning all	14:20
azizLIGHTS	ok greppy, so basically sudo apt-get install vncserver ratpoison; vncserver; quit vncserver' edit .vnc/xstartup to add ratpoison &, then runvncserver again and it will launch ratpoison into vnc, and connect via vnc client and enjoy?	14:21
azizLIGHTS	that all the steps? jkust want to make sure	14:22
greppy	azizLIGHTS: yes	14:24
hallyn	jdstrand: for libvirt-bin, in debian/control. Should we be keeping recommends/suggests/depends as in debian, or as in our older versions?	14:24
hallyn	jdstrand: (nm, i'll chug along and document every frigging thing i move relative to debian one)	14:29
hallyn	jdstrand: btw, I'm switching to 0.8.8 which is now in unstable. (though pull-debian-source and lp:debian/sid/libvirt don't yet show it)	14:33
zul	hallyn: wont someone please think of the children ;)	14:35
compdoc	children are best with fava beans and a nice chianti	14:36
hggdh	SpamapS: you are the expert on mountall, right?	14:38
jdstrand	hallyn: re debian/control> for this merge I think so. going forward they can be reevaluated I guess. many (some?) of those were the result of ubuntu-server changes	14:39
jdstrand	hallyn: re 0.8.8> oh, good :)	14:40
jdstrand	hallyn: I think the path of least reisistance is the best option atm	14:40
jdstrand	resistance	14:40
jdstrand	hallyn: I feel your pain with the merge	14:41
* jdstrand hugs hallyn		14:41
hallyn	jdstrand: actually one more q. For the debian changelog entries to copy over... do I start after the last version which ubuntu had in common with debian?	15:03
simonadameit	hi, how can I discover which package would provide a certain file?	15:03
hallyn	or just start after 0.8.5.1 ?	15:03
hallyn	simonadameit: dpkg -S /path/to/file	15:03
simonadameit	ah, thanks!	15:03
hallyn	np	15:03
Daviey	hallyn, If you are doing a merge, the changelog should be the original ubuntu changelog, with the newer entries from debian at the top; then for the top most entry is what remaining ubuntu changes exist between debian and ubuntu.	15:08
Daviey	hallyn, bzr merge-package should do that for you	15:08
jdstrand	hallyn: what Daviey said, with the exception of bzr, since that doesn't work with source format 3 too well	15:19
jdstrand	hallyn: basically the changelog has all the ubuntu changes that were ever made interleaved	15:20
uvirtbot	New bug: #723755 in samba (main) "When using Samba authenticating via Kerberos against a windows AD, winbind hangs on boot" [Undecided,New] https://launchpad.net/bugs/723755	15:22
hallyn	jdstrand: yes, but ubuntu's libvirt hasn't been based on debian's since 0.8.3-1. So I was wondering whether to go back to 0.8.3-1, or to 0.8.5-1	15:23
hallyn	I'm doing 0.8.3-1	15:23
jdstrand	hallyn: that isn't how it works	15:25
jdstrand	hallyn: maybe I don't understand your question	15:25
mdeslaur	Daviey: I think the server team should SRU bind 9.7.3 into lucid and maverick. It's the only sane solution to get DNSSEC working properly. I've added a comment to that effect to bug #651875	15:25
uvirtbot	Launchpad bug 651875 in bind9 "Bind 9.7.0-P1 validation errors" [Medium,Confirmed] https://launchpad.net/bugs/651875	15:25
jdstrand	hallyn: hold on, I think I know what you are asking	15:26
hallyn	jdstrand: the last time ubuntu's libvirt package was based on debian's was with 0.8.3-1ubuntuX. After that, debian had 0.8.4, 0.8.5, 0.8.7*. We had 0.8.5-0ubuntuX	15:26
jdstrand	hallyn: right, yes. I see what you are getting at	15:27
Daviey	mdeslaur, Well certainly sounds a clean solution, and if we do that it might be a good idea to A) run it past the tech board and B) let it bake i -proposed with more than just the usual verification process	15:28
jdstrand	hallyn: so, in this case, interleave all the way up to 0.8.3-1ubuntu14, then include Debian all the way to 0.8.8-X, then do 'Remaining changes'	15:29
mdeslaur	Daviey: yes, I completely agree...let me know if the server team needs anything from me	15:29
Daviey	mdeslaur, Have you looked at the diff between the two versions?	15:29
hallyn	jdstrand: interleave? thta wont' be misleading?	15:29
jdstrand	hallyn: I think that best conveys what we are doing. so Debian+Ubuntu up to 0.8.3-1ubuntu14, Debian from 0.8.4-0.8.8, then your new ubuntu1 entry with all the 'Remaining changes'	15:30
jdstrand	hallyn: is that more clear ^	15:30
hallyn	oh, and drop 0.8.5-ubuntu*?	15:30
mdeslaur	Daviey: it _humongous_, and contains a crapload of dnssec fixes: http://paste.ubuntu.com/571183/	15:30
Daviey	awesome	15:31
jdstrand	hallyn: yes. all those changes are caught in 'Remaining changes', and it conveys what actually just happened-- ie that we slurped in all the 0.8.4-0.8.8 Debian changes	15:31
mdeslaur	Daviey: I think it's time to do it, before they start releasing 9.8....I assume 9.7.3 shouldn't impact configuration files from 9.7.0	15:31
jdstrand	hallyn: what do you think?	15:31
Daviey	mdeslaur, that was one of my concerns :/	15:31
Daviey	mdeslaur, I'll draft a PPA package and email to ubuntu-devel CC'ing TB today.	15:32
jdstrand	I'm sorry, why is the TB being CC'd?	15:32
jdstrand	this is a one-time exception-- ie an SRU	15:32
mdeslaur	Daviey: cool...you may want to check with lamont to see if he's got 9.7.3 ready for natty	15:33
* jdstrand didn't read all backscroll		15:33
Daviey	jdstrand, I want the TB's comment jumping 3 minor versions in a LTS release :)	15:33
hallyn	jdstrand: i'll try. I can envision one problem case, but not sure i'tll happen. will see. thanks.	15:33
jdstrand	Daviey: that is up to the ubuntu-sru team	15:33
jdstrand	hallyn: well, this is only about documenting what we are doing. I am not saying dropping the changes, only how we represent them in the changelog	15:34
Daviey	jdstrand, Yeah, that sounds suitable.	15:35
Daviey	jdstrand, regarding bzr merge-package and deb-src 3.0, have you tried doing an interim commit with patches unapplied?	15:36
jdstrand	Daviey: we've tried all kinds of things and while it might work for 1 person doing the committing, invariably the various committers do something slightly different and it blows appart	15:36
jdstrand	apart	15:37
Daviey	standardisation++	15:37
jdstrand	hallyn: so that we are on the same page. you are: grabbing 0.8.8-X from debian. then integrating/dropping our changes in debian/, then adjusting the changelog to be Debian+Ubuntu up to 0.8.3-1ubuntu14, Debian 0.8.4-X - 0.8.8-X, then your 0.8.8-Xubuntu1 changelog entry, documenting all the remaining changes, drops, new stuff, etc like we discussed	15:39
jdstrand	hallyn: so all the 0.8.5ubuntu changes still in the package, but only discussed in the changelog in the 0.8.8-Xubuntu1 entry	15:41
jdstrand	hallyn: correct?	15:41
hallyn	jdstrand: yeah	15:42
jdstrand	hallyn: ok great, then let me leave you alone :)	15:42
laen	What could be a possible reason, that kernel updates wreck the linux-image-server or MBR? Just rewriting the MBR (/usr/sbin/grub-install /dev/disk_without_partition doesn't work. I have to reinstall the kernel as well before doing that, always both.	15:42
jdstrand	hallyn: aren't libvirt merges fun?	15:42
hallyn	i'm trying to figure out the cause of the new commandtest failure	15:42
jdstrand	hallyn: on the plus side, they really exercise ones packaging skills	15:42
jdstrand	granted, that isn't particularly desirable right before FF	15:43
jdstrand	Daviey: (thought) it might be worthwhile to send an email to #ubuntu-server as a call for testing for bind9	15:50
Daviey	jdstrand, yeah, totally	15:50
Daviey	"Please test your production DNS servers on this PPA" :)	15:51
Daviey	but yeah, hopefully we'll get some testing	15:51
jdstrand	Daviey: well, presumably -proposed, but I hear you	15:51
jdstrand	Daviey: that said, anyone interested in dnssec would want to anyway	15:51
Daviey	hallyn / jdstrand: just did a bzr merge-package on libvirt to see what it yielded for changelog... http://pb.daviey.com/YIJD/raw/	15:52
jdstrand	Daviey: you could also politely ask IS if they would as well. not sure what they'd say, but worth asking	15:52
Daviey	jdstrand, I'll dig a trench, then ask tentatively :)	15:52
Daviey	good thinking	15:52
jdstrand	Daviey (and hallyn): yeah, that doesn't reflecet what actually happened though...	15:53
jdstrand	reflect	15:53
Daviey	Oh aye, just wanted to see what it should show.	15:53
jdstrand	getting back in sync with Debian is always fun	15:53
* jdstrand nods		15:53
jdstrand	hallyn: but that paste does show that you should add 0.8.3-2+, which I had totally forgotten about :)	15:54
jdstrand	the -v to use will be weird..	15:55
hallyn	Yup, those are in. I just need to consolidate the old ubuntu log entries	15:55
jdstrand	hallyn: I vote for -v0.8.3-1ubuntu14	15:55
jdstrand	cool	15:56
laen	Anyone an idea why Ubuntu Server kernel updates result in non-bootable machines now and then?	15:56
Daviey	laen, Do you have any special kernel modules that you added?	16:04
Error404NotFound	how do i know which grub is running: http://pastebin.com/p2kHdDYz	16:13
ivoks	none is running	16:16
ivoks	grub doesn't run	16:16
ivoks	you don't have grub-pc installed, therefor, you have 'grub 1' installed	16:16
Error404NotFound	ivoks: well, by running i meant running at boot time after BIOS :)	16:17
Daviey	mdeslaur, So you are thinking 9.7.3 should go back to Lucid, Maverick and be uploaded to Natty?	16:18
ivoks	Error404NotFound: well, technically, what you have installed doesn't have to be the same thing you have on MBR	16:18
Error404NotFound	ivoks: so to run older grub, i need grub pc?	16:18
Daviey	mdeslaur, Noting that Debian doesn't even have 9.7.3 yet :o	16:18
ivoks	Error404NotFound: grub-pc is 1.98, while grub is 0.97... which one is older? :)	16:19
Error404NotFound	ivoks: hmmm	16:19
ivoks	am i confusing you?	16:20
ivoks	grub 1 = grub	16:20
ivoks	grub 2 = grub-pc	16:20
mdeslaur	Daviey: lamont is the debian maintainer...ask him when he'll have 9.7.3 packages ready.	16:20
Error404NotFound	ivoks: nah, not confusing :)	16:20
Daviey	lamont, ^^ :)	16:20
lamont	sprinting this week.	16:20
lamont	having said that, I'm currently doing my test build of 1:9.7.3.dfsg-1	16:21
Daviey	heh, lamont that is great news.	16:21
Daviey	lamont, I suppose you understand the predicament?	16:21
lamont	I've been ignoring the predicament...	16:22
Daviey	lamont, We are looking to SRU 9.7.3 into Lucid and (probably) Maverick due to the DNSSEC stuff.	16:22
lamont	er, I mean, which predicament are you referring to?	16:22
* lamont has commented on the bug, and is +50 to SRUing it into lucid		16:22
Daviey	lamont, that is great news.. thanks	16:22
uvirtbot	New bug: #723796 in qemu-kvm (main) "Enable spice in kvm" [Undecided,Confirmed] https://launchpad.net/bugs/723796	16:27
bencer_	hi, anybody from the -server team would be willing to sponsor updates of the ebox* packages?	16:29
Daviey	bencer_, It might be a good idea to raise a bug on Launchpad, "Please update ebox version XX to XX" and attach a debdiff, bzr branch or link to a dsc (and associated) files.. and subscribe ubuntu-sponsors team	16:31
Daviey	bencer_, I'm sure someone from the server team will pluck it first.	16:31
bencer_	Daviey: on bug for every package?	16:32
bencer_	s/on/one	16:32
Daviey	bencer_, Does that make sense, if you want some help along the way - feel free to ask!	16:32
Daviey	bencer_, Hmm, how many source packages are you talking about?	16:32
zul	bencer_,: there is a ebox-metapackage right?	16:32
bencer_	nope	16:32
zul	Daviey: alot	16:32
bencer_	we have a package for each module	16:32
bencer_	libebox, ebox, ebox-network, etc...	16:32
bencer_	https://launchpad.net/~bencer/+archive/zentyal-2.0	16:33
zul	bencer_: i would do it on libebox	16:33
zul	bencer_: if i have some time in the afternoon ill do it	16:33
bencer_	ebox package is the only one with bugs right now	16:33
Daviey	^^ fix released :-)	16:33
uvirtbot	Daviey: Error: "^" is not a valid command.	16:33
bencer_	packaging is far from perfect but imho is much better than existing packages :)	16:33
Daviey	bencer_, Are you still calling the packages ebox?	16:34
zul	bencer_: then do it on the ebox package and again if i find sometime to do this afternoon ill do it	16:34
bencer_	zul: that would be great, going to fill in the bug	16:34
bencer_	Daviey: yes, for 2.0 series	16:34
bencer_	2.1 which will become 2.2 was released yesterday	16:34
bencer_	and packages have been renamed to zentyal	16:34
Daviey	bencer_, So in natty+1 release you will be looking at a transition path for the new name?	16:35
bencer_	Daviey: yes	16:35
Daviey	bencer_, groovy	16:36
uvirtbot	New bug: #723807 in openssh (main) "package openssh-server 1:5.1p1-6ubuntu2 failed to install/upgrade: подпроцесс установлен сценарий post-installation возвратил код ошибки 2" [Undecided,New] https://launchpad.net/bugs/723807	16:36
bencer_	Daviey: anyway, is still not decided how we will approach the migration between ebox-* to zentyal-* packages	16:36
bencer_	but definitely we want to provide a migration path	16:36
bencer_	zentyal official release are only for lts	16:37
bencer_	but users willing to use the versions on between, should be able to use these packages too :)	16:37
Daviey	bencer_, I paid close attention to the talk at FOSDEM... :)	16:37
bencer_	it was me :)	16:37
Daviey	o/	16:37
Daviey	bencer_, Well if you want some help, it would be really good to shout out for it at the beginning of the next development cycle.	16:38
bencer_	Daviey: probably i'll be on load too, and also it's in our plans to attend to the uds	16:39
Daviey	bencer_, You have details about the next UDS?	16:39
bencer_	Daviey: for the 2.1 what i want to start working on is framework improvements so packages can deal easy with apparmor profile changes	16:39
bencer_	review policy and all that stuff	16:40
bencer_	Daviey: i have a task to submit a talk, but didn't have the time to see deadlines or anything	16:40
Daviey	bencer_, Have you been able to attend a UDS before?	16:41
bencer_	nope	16:41
bencer_	i've been on debconfs	16:41
SpamapS	hggdh: re mountall.. I have certainly spent a lot of time debugging it. Whats up?	16:42
bencer_	Daviey: i'm quite familiar with debian workflow but not with ubuntu yet	16:42
Daviey	bencer_, :), well the format is to create a blueprint, and have a session scheduled. It's often a bad idea to have it in a presentation style session, but often of a peer dicussion between interested people.	16:42
Daviey	(That is assuming the track lead approves the session)	16:43
bencer_	peer discussion fits better	16:43
bencer_	what we would like to discuss is how what we can give to ubuntu server in the smb server environment	16:44
bencer_	and how to approach this colaboration, like release cycles, policy stuff and so on	16:45
bencer_	that was my idea about, but i have to think about it	16:45
doxin	i'm trying to get an irc server working, and i got it running, but the /oper command doesn't seem to work.	16:45
Daviey	bencer_, Well that is an area we need to improve on, so i'll be listening carefully :)	16:45
bencer_	cool, Daviey any idea you have for the session, would be really welcomed	16:46
Daviey	bencer_, My brain works better with some beer.. So perhaps that would help the server teams ideas come out...	16:48
Daviey	just sayin' :)	16:48
zul	yeah thats not ...	16:48
bencer_	Daviey: i just finished all the kolsh here	16:48
bencer_	:D	16:48
bencer_	i need to go rewe to get more	16:48
Daviey	heh	16:49
lamont	Daviey: deb http://ppa.launchpad.net/lamont/ppa lucid main <-- bind9 1:9.7.3.dfsg-1~lucid1 is building there now	16:51
SpamapS	doxin: I'd suggest asking in the IRC channel dedciated to the IRC server software's support/development first.. though if its something that Ubuntu has done to the package that has broken it, then thats a different matter...	16:52
Daviey	lamont, Super.. thanks.. I'm going to link to that in an email to ubuntu-server mailing list	16:55
laen	Daviey: No added kernel modules.	17:00
laen	Daviey: The thing is, the procedure when i joined the company was that after apt-get update, apt-get upgrade, they did an apt-get dist-upgrade. Even though that is not smart, the kernels shouldn't break (even if that's the image, or the MBR).	17:01
laen	The boot error is number 13 or 24, respectively Invalid or unsupported executable format, or Attempt to access block outside partition	17:02
laen	Sometimes, we're able to boot another kernel that's still available, sometimes we're not.	17:02
Daviey	laen, Can you raise a bug and include as much detail as possible please?	17:02
Daviey	laen, It's probably going to be cjwatson looking at that.	17:03
laen	Well, i have seen bugs about it, and they're answered with "You have incorrectly specified your Windows partition" or "Try another kernel".. and i'm not really waiting for these answers.	17:03
laen	But, could give it a try.	17:03
Daviey	laen, It sounds like it could be a bug, and if we have a record of it - it makes it easier to track	17:04
laen	Weirdest thing is that it never happens on 8.04 LTS, only since we started using 10.04 LTS. Just created the launchpad account.	17:05
SpamapS	Daviey: btw, I've missed your snarks on mumble.. somebody needs to fix that in natty soon!	17:06
Bilge	Why can't I `su` as a user that has no password?	17:09
Daviey	SpamapS, heh	17:11
L-s-L	does anyone know the magic config option to set blksize for tftp-hpa?	17:12
Daviey	lamont, Would you be happy uploading your package to debian sid today? Would be nice to get it in Natty before feature freeze. :)	17:12
lamont	Daviey: that's what I've been working on	17:14
Daviey	lamont, you sir, rock	17:14
lamont	and nfc if it'll be NEW or not, so natty is getting ~build1	17:14
Daviey	lamont, NEW in Ubuntu or Debian?	17:15
lamont	debian - I figure ubuntu will happen quickly if it is	17:16
lamont	honestly, haven;t checked	17:16
Daviey	lamont, seems you have it hand!	17:18
cjwatson	laen,Daviey: generally I'm afraid I'm not going to look at GRUB Legacy bugs	17:19
cjwatson	it sounds like maybe the kernel sometimes ends up above a BIOS disk limit or something; a small /boot at the front of the disk might help	17:20
cjwatson	but this sort of thing is not going to be fixed in GRUB Legacy	17:20
Daviey	laen, With that, is there a reason to not upgrade to Grub2?	17:20
dravekx	so the only difference in 10.10 and 10.04 is support?	17:21
=== cmagina is now known as cmagina-lunch
=== sss is now known as sss314
lamont	Daviey: it's uploading to natty now	17:24
lamont	and done	17:24
Daviey	lamont, you sir, are a super hero in disguise.	17:24
lamont	would have been a bit quicker, but I kept answering questions	17:24
guntbert	tomasm-: hi	17:33
tomasm-	guntbert, i guess im trying to get my mail server set up.... is cyrus pretty standard?	17:34
guntbert	tomasm-: I still have doubts - to be able to receive internet mail you need a smtp server - and those are dangerous beasts if you don't know what you are doing	17:35
tomasm-	guntbert, i've been a linux system administrator for 6 years, and postfix is already installed	17:35
tomasm-	just new to ubuntu is all	17:35
uvirtbot	New bug: #723840 in krb5 (main) "krb5-1.8 fails to verify MS PAC Checksum when AES 256 is used" [Undecided,New] https://launchpad.net/bugs/723840	17:36
guntbert	tomasm-: I take it back - but your question comes up now and then from people who have no clue	17:36
guntbert	as for a pop/imap server: my choice is dovecot	17:37
joschi	tomasm-: I'd recommend to use dovecot rather than cyrus imap, but cyrus is also fine	17:38
Bilge	How can I run a command as a user that has no password?	17:39
joschi	Bilge: sudo -u username $command	17:39
Bilge	So I should use sudo instead of su for this?	17:40
joschi	Bilge: you can use either.	17:40
joschi	Bilge: but on ubuntu you'd probably use sudo ;)	17:40
tomasm-	what are the advantages of dovecot? i may just go with cyrus for now but change later	17:40
guntbert	Bilge: prefer sudo (on ubuntu) in any case	17:41
joschi	tomasm-: dovecot is very stable (cyrus too), dovecot supports a lot of different storage formats (cyrus doesn't), dovecot brings a well documented SASL implementation (cyrus sasl is a documentation nightmare)	17:41
joschi	tomasm-: additionally, dovecot is more actively developed, IMHO	17:42
Bilge	su doesn't work, though, it asks for a password, even as root, and always fails	17:42
guntbert	tomasm-: I tried both, found dovecot easier to set up and manage, with better readable docu	17:42
tomasm-	k... what a bout a good webmail package? and I may be also doing fancier things with mail, like serving mailing lists, sending out bulk newsletters, and receiving emails into PHP to trigger some code/database changes	17:43
* guntbert steps back, no experience here		17:44
jkg	tomasm-: roundcube is pretty good for webmail, although I can't speak to the other things.	17:44
jkg	(and while we're recommending dovecot, one thing in its favour is the existence of a pretty helpful #dovecot, plus the fact I've had good dovecot advice in here)	17:46
tomasm-	the package documentation online for ubuntu is really nice	17:47
noecc	Does pinning php to 5.2 have any effect on future apache (mod-php) updates,	17:50
smoser	hggdh, ping	17:55
hggdh	smoser: I am here	17:55
smoser	so you should be able to launch instances with the pv-grub of the most recent hardy dailiy build. and add proposed, install and reboot to test	17:56
smoser	and actually, if you could collect the baseline test, that would be good too...	17:56
smoser	we dont, i dont' think, have baselines for either a.) currently released hardy (using the PPA build) or b.) current -updates kernel for hardy	17:57
hggdh	smoser: thank you! Now, I cannot run any tests -- my laptop bricked from yesterday's updates on natty, and I have been unable to get anyone interested in the bug	17:57
smoser	it sounds like you're interested .	17:57
smoser	i nominate you to fix it	17:57
smoser	:)	17:57
hggdh	well, I would if I could. It deals with upstart, mountall, and probably plymouth and libc6	17:58
smoser	but, if we can get to where we're going for hardy, everyone's life will be much easier.	17:58
hggdh	way out of my depth	17:58
hggdh	indeed	17:58
tomasm-	guntbert, do i need to do anything to enable logging in remotely (using START/TLS IMAP)? my password doesnt seem to work	18:00
tomasm-	guntbert, using dovecot	18:00
hallyn	cmagina-lunch: feature freeze is tomorrow, so please do let me know if you get a chance to test the multipath merge before that	18:01
guntbert	tomasm-: as far as I remember it was working ootb, but have a look at /var/log/.... (also: does connecting locally work?)	18:02
axisys	every lucid64bit ubuntu server I build has the /boot partition overlaps.. how do I fix it again? last time I messed up ..	18:02
axisys	http://pastebin.com/mN3M9fia here is the problem	18:02
tomasm-	guntbert, how do i connect locally?	18:02
axisys	also is there a way to make sure prtitions are not overlapped during install ?	18:03
axisys	s/prtitions/partitions/	18:03
guntbert	tomasm-: with a mail client - I myself can speak pop and imap but not SSL :-)	18:04
tomasm-	guntbert, ok, it says mail_location not set and autodetection failed	18:04
guntbert	tomasm-: ah - that is about where you want the mail spool, in ~/mail or in /var/spool/mail or ...	18:05
tomasm-	guntbert, YES! thanks so much	18:06
guntbert	tomasm-: :-)	18:07
tomasm-	i can't believe xen.org is down. i thought redundancy was kinda the whole point of cloud servers	18:13
=== fenris is now known as Guest29209
=== Guest29209 is now known as e-jat
=== cmagina-lunch is now known as cmagina
doxin	documentation on irc services is very scarce, so i'm asking here.	18:18
doxin	when i try to start hybserv it gives me "Unable to open SETPATH (/etc/hybserv/settings.conf)", any idea how to fix this? the mentioned path does exist.	18:18
Bilge	How does this make sense: http://derp.pastebin.com/yPntPvhG	18:24
Bilge	`screen -r user/` gives me the screens for that user	18:24
Bilge	Then trying to resume it using the name given says that it doesn't exist	18:25
zul	bencer_: ok uploaded	18:27
doxin	when i try to start hybserv it gives me "Unable to open SETPATH (/etc/hybserv/settings.conf)", any idea how to fix this? the mentioned path does exist.	18:27
chiapagringo_	hey guys, I am about to install/configure my first Ubuntu server on a Dell R415. Can anyone point me to a server install check list/best practices site or document?	18:28
dbevacqua	any postfix gods in the house?	18:28
chiapagringo_	I will using RAID 1 and virtualization	18:28
bencer_	zul: what did you upload? all of them or just libebox+ebox?	18:29
zul	bencer_: all of them	18:29
ehw	Bilge, does screen -r user/ list the session as Private?	18:30
bencer_	zul: i've 3 more to update all the existing packages on the archive	18:30
bencer_	zul: do you think we are in time to include new modules?	18:30
zul	bencer_: i might be able to get to it tonight send me an email to zulcss@ubuntu.com	18:31
tomasm-	how do i setup postfix so it allows SMTP-AUTH? so i can log in as a user on the mail server and send mail out to other domains?	18:31
bencer_	zul: i'm going to upload them to my ppa and i drop you a mail	18:31
bencer_	zul: thanks a million dude	18:32
zul	bencer_: ok thanks	18:32
chrisallison	Apologies if this a truly basic question, but my Google-Fu seems to be failing me. Can anyone point me at description of the criteria that update-notifier-common uses to determine whether or not to create /var/run/reboot-required? I assume that there is some flag set on certain debs that essentially indicates "If you install me, you need to reboot for the install to take effect," but some insight into what that flag is, where/how/when (ie:	18:32
brontoeee	tomasm-, hold on...	18:34
brontoeee	tomasm-, this http://ubuntu-tutorials.com/2008/11/11/relaying-postfix-smtp-via-smtpgmailcom/ did it for me (on karmic)	18:34
tomasm-	brontoeee, i dont want a relay...i just want my new postfix server to not say 'relaying denied'... its because I dont login first, not sure how to say 'let people who login send to anywhere'	18:36
brontoeee	tomasm-, right, sorry about that	18:38
noecc	tomasm-: main.cf smtp_sasl_auth_enable = yes	18:39
chrisallison	tomasm-: https://help.ubuntu.com/community/Postfix#Authentication speaks to that, though the rest of the page may not cover exactly the setup you want if you want to do outbound but not accept inbound.	18:40
tomasm-	noecc, k, that kinda worked, but password is being rejected	18:42
chrisallison	tomasm-: Is saslauthd running? Are you using PAM or some other mechanism?	18:43
noecc	tomasm-: telnet into the server, EHLO,, look for AUTH methods supported	18:44
tomasm-	plain digest-md5 ntlm cram-md5 login	18:44
tomasm-	saslauthd is running	18:45
tomasm-	unable to open Berkeley db /etc/sasldb2: No such file or directory	18:46
tomasm-	hmmm	18:46
tomasm-	saslauthd misconfigured?	18:46
tomasm-	the file IS there	18:46
chrisallison	tomasm-: Or maybe a mechanism issue (ie: what authentication back end it's trying to use). It's been a while since I've had to poke at that, so my memory on this isn't sharp.	18:47
tomasm-	its set to PAM, i dont get it	18:47
chrisallison	tomasm-: Permissions/ownership?	18:47
chrisallison	(Of /etc/sasldb2)	18:47
tomasm-	why look in /etc/sasldb2 if MECHANISMS="pam"	18:47
tomasm-	/etc/sasldb2 = 660, root.sasl	18:48
noecc	tomasm-: cat /etc/postfix/sasl/smtpd.conf	18:48
tomasm-	noecc, nothing is under /etc/postfix/sasl	18:49
chrisallison	tomasm-: If MECHANISMS="pam" then you're right, I don't think saslauthd should be trying to read sasldb2. Have you restarted/reloaded/HUPped all relevant daemons after making these config changes?	18:49
tomasm-	chrisallison, restarted saslauthd and postfix	18:49
noecc	smtpd.conf	18:49
chrisallison	tomasm-: Hmm.	18:50
noecc	disregard that	18:50
tomasm-	noecc, where is smtpd.conf ?	18:50
=== marrusl is now known as marrusl_afk
pmatulis_	tomasm-: use find?	18:57
pmatulis_	locate smtpd.conf maybe?	18:57
tomasm-	chrisallison, noecc okay, i found a tutorial on how to get postfix working with dovecot sasl, works beautifully	18:59
noecc	tomasm-: recommend http://postfix-book.com/	19:01
Daviey	hallyn, do you still have your UEC running?	19:05
Daviey	.. or smoser	19:05
Daviey	Or infact, anyone running Eucalyptus pre-natty ?	19:06
smoser	Daviey, you can be , with a simple ec2 instance launch of maverick	19:06
hallyn	Daviey: still?	19:06
Daviey	hallyn, i thought you set it up yesterday?	19:06
hallyn	Daviey: I'm hoping to start this afternoon, if I can get libvirt compiling :)	19:06
Daviey	smoser, pah	19:06
uvirtbot	New bug: #723891 in mailman (main) "package mailman 1:2.1.13-1 failed to install/upgrade: subprocess new pre-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/723891	19:06
smoser	Daviey, i have access to a cloud running lucid uec from a non-admin	19:07
smoser	but i can't help you fix the console 64k bug	19:07
smoser	:)	19:07
hallyn	Daviey: and right about now i'm wishing i had a second spare laptop to run extra nodes on :	19:07
laen	Daviey: bad news, i had to leave work and have to file the bug friday. So, i'll take some :)	19:07
Daviey	laen, Yeah... did you respond to my question regarding upgrading to grub2?	19:08
Daviey	hallyn, heh	19:08
Daviey	smoser, heh	19:08
hallyn	Daviey: is there something you wanted me to look at, shoudl installation happen to succeed?	19:08
laen	Daviey: eeeh.. 10.04 LTS doesn't have Grub2?	19:09
=== nkv_ is now known as nkv
hallyn	yay, it built	19:10
laen	Daviey: expecting 10.04 is shipped with Grub 2, it happens on do-release-upgrades and fresh installs as well.	19:10
laen	However, i will check it out at work friday.	19:10
Daviey	laen, grub2 IS on lucid, 10.04	19:13
Daviey	laen, grub2 has been in the archive since at least dapper	19:13
=== jamespage1 is now known as jamespage
chrisallison	tomasm-: Glad to hear it!	19:20
chrisallison	Anyone know of a good place for me to ask my update-notifier-common question (if no one in here knows the answer)?	19:21
boxybrown	any idea why aptitude would work fine for an admin user but not a non-admin user with sudo access?	19:27
boxybrown	it just hangs if I run sudo aptitude as a user not part of the admin group	19:27
laen	Daviey: then if Lucid installs with grub2 by default, this is not a legacy bug.	19:29
kirkland	hallyn: i was going to tackle kim0's --enable-spice bug	19:31
kirkland	hallyn: add it to the qemu-kvm build	19:31
kirkland	hallyn: any objection?	19:32
kirkland	hallyn: hrm, or not ... http://pastebin.ubuntu.com/571315/	19:34
hallyn	kirkland: we'll need to package the libs...	19:38
kirkland	hallyn: spice.h	19:38
* hallyn waits on pastebin while tapping his fingers impatiently		19:38
kirkland	hallyn: yeah, looks like maybe spice.h is not found	19:38
kirkland	hallyn: we'd also have to get the lib into main, for qemu-kvm to build-depend on it	19:39
kim0	kirkland: that's different from the bug where libvirt doesn't know about qxl right	19:39
hallyn	kirkland: we need to grab the git trees	19:39
kirkland	kim0: yeah, i think so	19:39
hallyn	at least git://git.freedesktop.org/git/spice/spice and git://git.freedesktop.org/git/spice/spice-protocl	19:39
kirkland	hallyn: git tree of ... qemu? or spice?	19:39
kirkland	ah	19:39
kirkland	beat me to it :-)	19:39
kim0	btw I think the sync is broken http://package-import.ubuntu.com/status/qemu-kvm.html	19:39
hallyn	i think qxl might come from the same place	19:39
hallyn	see http://spice-space.org/page/Repositories	19:40
hallyn	it has:	19:40
hallyn	QXL: git clone git://git.freedesktop.org/git/spice/win32/qxl	19:40
kirkland	kim0: hallyn: okay, i see you guys are on top of this ;-)	19:40
* kirkland crawls back into his dungeon of a million things to do		19:40
kim0	I'm not on top of anything :)	19:40
hallyn	kirkland: if spice doesn't require any libs not in main, how hard will it be to get into main?	19:40
kirkland	hallyn: shouldn't be bad at all	19:41
hallyn	kirkland: not at all! i just looked at spice git trees this morning, but have no idea what to do about it :)	19:41
kirkland	hallyn: will need to just write up the MIR (takes <10 minutes, and you might be able to convince kim0 to write it ;-)	19:41
kirkland	hallyn: then we very nicely poke kees or someone on the MIR team to review it	19:41
* kim0 needs to learn a lot about packaging :/		19:41
kirkland	hallyn: possibly trade a favor :-)	19:42
kim0	I'm more than happy to test stuff though	19:42
kirkland	kim0: filing an MIR doesn't have much to do with packaging at all	19:42
kim0	throw links at me and I'll try	19:42
kirkland	kim0: https://wiki.ubuntu.com/UbuntuMainInclusionRequirements	19:42
hallyn	ok, well i'll be happy to try to whip up a package, when i'm done with libvirt	19:42
kirkland	kim0: https://wiki.ubuntu.com/MainInclusionProcess	19:42
kirkland	kim0: those two pages have everything you need	19:42
hallyn	ok	19:43
kirkland	kim0: 8 easy steps :-)	19:43
kirkland	some of which you can skip	19:43
kim0	so write a MIR to get what included in main ?	19:43
kim0	is "spice" a separate pakcage	19:44
kim0	isn't it just a kvm compile option	19:44
hallyn	it requires spice libs	19:45
kim0	so that's what the mir are for	19:45
hallyn	kim0: see http://pastebin.ubuntu.com/571315/ from kirkland :)	19:45
kim0	awesome	19:45
kirkland	kim0: step1 will be to package the library	19:48
kirkland	kim0: i think hallyn will knock that out	19:49
kirkland	kim0: after that, a new package will by default land in Universe	19:49
kirkland	kim0: to get it moved to Main, we'll need an MIR	19:49
kim0	got it	19:49
kim0	I'll do that	19:49
kirkland	kim0: which is basically just about 10-15 minutes of research, then filing a bug with your findings, and assinging to the ubuntu-mir team	19:49
kim0	and bug hallyn if I get lost	19:49
kim0	kirkland: aye aye ;)	19:50
zul	oooh...stalker alert :)	19:51
zul	hey mathiaz	19:54
mathiaz	zul: hi!	19:54
Daviey	mathiaz, !! Hello	19:55
mathiaz	Daviey: hello!	19:55
mathiaz	how are you guz doing?	19:56
mathiaz	how is featurefreeze going?	19:56
Daviey	mathiaz, can you guess? :)	19:56
mathiaz	Daviey: :) - long days??	19:56
Daviey	mathiaz, could sat that... still working at 8:00 PM :)	19:57
Daviey	mathiaz, BTW, still waiting on a book recommendation :)	19:57
* jamespage waves at mathiaz		19:58
ivoks	mathiaz: hey! :)	19:58
hallyn	kirkland: hrmph. well i'm looking at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560721 (ITP for spice in debian)	20:08
uvirtbot	Debian bug 560721 in wnpp "ITP: spice -- A SPICE (Simple Protocol for Independent Computing Environment) Client" [Wishlist,Open]	20:09
xlemming	hi, does anyone have any experience with nslcd/nss-ldap and having it authenticate using the machine account keytab in activedirectory?	20:09
=== Kiall is now known as Kiall\|AFK
hallyn	i guess the hangup was due to the related http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602143 issues with CELT	20:11
uvirtbot	Debian bug 602143 in wnpp "ITP: spice -- a remote display system for virtualized machine and desktop" [Wishlist,Open]	20:11
hggdh	smoser: ping	21:12
cmagina	hallyn: ping	21:12
smoser	hggdh, yo	21:12
hggdh	smoser: with my laptop bricked, I cannot start an ec2 instance. Could you please start one? I can then test it	21:14
smoser	hggdh, sure.	21:15
smoser	you want one of each arch ?	21:15
hallyn	jdstrand: people.canonical.com/~serge/libvirt_0.8.8-1ubuntu1-package.tgz	21:15
hallyn	cmagina: what's up?	21:15
smoser	hggdh, do you want me to run you 4 instances ? a currently released image, and a daily image for each arch ?	21:16
hggdh	yes, please. I will shut them down when I am done	21:17
smoser	k	21:18
jdstrand	hallyn: ack	21:19
cmagina	hallyn: i'm seeing the same problem as before with this new multipath package	21:20
cmagina	hallyn: it just endlessly fofb's even though the SCM's are both up and fine	21:20
hggdh	kirkland: ecryptfs needs any special support from the kernel? I am trying to recover my /home on a quite, but not completely, bricked system	21:22
hallyn	cmagina: im' at a loss	21:24
hallyn	cmagina: i guess i'll have to look more closely at the code.	21:25
hallyn	cmagina: does multipathd -v4 show that it is getting uevents?	21:25
hallyn	or, why it is thinking the paths fail over?	21:26
hallyn	well, i'll take another look at the logs from the last merge attempt. presumably it's the same problem	21:26
hallyn	cmagina: thanks for testing!	21:26
cmagina	hallyn: in the last merge logs i included what the SCMs are seeing, that information seems like it could help	21:27
jdstrand	hallyn: I'm starting with the build	21:27
jdstrand	hallyn: also been working all day on the qrt script. it was pretty hosed for natty	21:28
jdstrand	hallyn: well, part of today and a good part of yesterday	21:28
jdstrand	hallyn: looks like it passed the tests :)	21:29
smoser	hggdh, http://paste.ubuntu.com/571369/	21:29
smoser	hggdh2 should be authorized to those instances	21:30
hggdh	smoser: thank you	21:30
smoser	note, that when you install a new kernel, in the pv-grub iamges, it will load it on next boot (due to /vmlinuz and /initrd links)	21:30
Sophia23	Hello, can someone please tell me how I can change the font for apache index?	21:30
smoser	if you want to change that, you'd need to look at /boot/grub/menu.lst, hggdh.	21:31
smoser	hggdh, also, please do collect test results for current -updates kernel, released kernel, and current -proposed kernel (after install and upgrade and reboot)	21:31
hggdh	smoser: this is good enough :-)	21:32
smoser	hggdh, you rock, thanks.	21:32
RoyK	Sophia23: write a php script :P	21:32
cmagina	hallyn: here is the output from multipathd -v4 -d https://pastebin.canonical.com/43822/	21:32
Sophia23	is that the only way?	21:32
RoyK	Sophia23: or just google for it - no idea	21:32
RoyK	Sophia23: why do you want to change the font for the apache index?	21:33
Sophia23	i googled cant find anything	21:33
hggdh	smoser: roger wilco	21:33
hallyn	jdstrand: i had to shamefully comment out the commandtest test	21:33
Sophia23	because i have integrated a library via a wrapper and it does not match the background colour, impossible to read	21:34
hggdh	smoser: ec2-50-17-76-113.compute-1.amazonaws.co	21:34
hggdh	smoser: ec2-50-17-76-113.compute-1.amazonaws.com -- permission denied (public key)	21:34
jdstrand	hallyn: well, we are under the gun. do you promise to follow up on it? if so, I'll let it slide ;)	21:34
ScottK	SpamapS: I've got someone who wants to contribute an upstart init for postfix. Could I forward the email to you to review/help him get proper review as I'm totally not the right person for that.	21:35
RoyK	Sophia23: http://httpd.apache.org/docs/current/mod/mod_autoindex.html	21:35
smoser	hggdh, you are in the authorized_keys there as hggdh@xango2	21:35
RoyK	Sophia23: you can add CSS to that	21:35
smoser	(from https://launchpad.net/%7Ehggdh2/+sshkeys)	21:36
smoser	wait, yeah, it looks like i did miss 2 hosts	21:37
smoser	hold on	21:37
hallyn	jdstrand: of course :)	21:38
hallyn	cmagina: what is in /var/log/udev.log? it looks liek it really is getting all those udev events for each path going down/up	21:39
smoser	hggdh, you should be good now. please let me know if not (and remeber, 'ubuntu' is user)	21:39
cmagina	hallyn: your right, lots of add/removes for those paths	21:42
cmagina	hallyn: i just switched my system back to the current lucid multipath and all is fine, no constant fofbs	21:47
hallyn	fascinating	21:47
cmagina	hallyn: i grabed the udev logs from both runs and they are quite different	21:53
tomasm-	is there a way i can see where files from a package has been installed?	22:02
fullstop	Hi. I'm making a .deb package for something internal, and I'd like to have it replace a single file from a different package. Any idea what construct I should put in the control file to allow this to happen?	22:03
fullstop	I am trying to replace /etc/sysctl.d/10-network-security.conf	22:03
fullstop	but that is managed by the procps package.	22:04
=== RoAkSoAx is now known as 36DAA67V7
kees	fullstop: why replace it? just add a file with a higher number.	22:12
=== th0mz is now known as 5EXAB9U3T
=== air^ is now known as 50UAAA4V5
=== claw_ is now known as claw
=== bastidrazor is now known as 84XAAABLZ
=== evilmist is now known as 45PABT219
=== CensoredBiscuit_ is now known as CensoredBiscuit
=== CensoredBiscuit is now known as Guest4428
jdstrand	mdeslaur: fyi (for virt-manager and virt-install), hallyn and I are trying to get a very new libvirt (0.8.8) into natty today	22:39
jdstrand	mdeslaur_: I should have virt-install pretty well tested	22:39
=== 45PABT219 is now known as evilmist
=== Guest4428 is now known as CensoredBiscuit
mdeslaur_	jdstrand: cool	22:45
=== mdeslaur_ is now known as mdeslaur
mdeslaur	jdstrand: virt-manager and virtinst are latest versions already, so everything should just work	22:46
mdeslaur	jdstrand: I'll test it to make sure once your updates go in	22:46
jdstrand	mdeslaur: awesome, thanks	22:47
=== evilmist is now known as mrmist
uvirtbot	New bug: #723997 in samba (main) "Cannot open Xerox 7435/5755 printer properties on samba 3.4.7 using Xerox Global Print Driver" [Undecided,New] https://launchpad.net/bugs/723997	22:57
hallyn	kim0: well the good news is I have a combination that seems to compile. bad news is, it was somewhat hand-cobbled and the debian version didn't work for me, so I"ll have to build a package from scratch based on my experience. Will do so tomorrow.	23:01
kim0	hallyn: still sounds great :)	23:01
kim0	hallyn is da man :)	23:01
hallyn	I'm a little saddened that the debian package hasn't gotten further.	23:01
hallyn	though I used a patch by them to get later source to compile..	23:02
* kim0 is a packaging newbie		23:02
kim0	but can't you submit ur changes to debian	23:02
hallyn	they're still in 'intent to package' phase	23:02
kim0	a ha	23:02
=== 84XAAABLZ is now known as bastidraZor
hallyn	all right, i'm gonna sneak away from the monitor for a bit, ttyl	23:03
kim0	hallyn: btw, spice-space mentions this ppa as download source https://launchpad.net/~dev-zero/+archive/spice	23:03
hallyn	doh!	23:03
kim0	hallyn: thanks for all the awesome work	23:03
kim0	hallyn: it's old	23:03
kim0	don't worry :)	23:03
hallyn	ok good :)	23:03
kim0	hehe :)	23:03
hallyn	thx, ttyl	23:03
kim0	hallyn: let me know once I can get the package to test it a bit .. thanks again	23:04
CensoredBiscuit	can anyone here help me troubleshoot the fact that mpg123 works but no music plays and the speakers work	23:12
zul	CensoredBiscuit: no try #ubuntu	23:19
CensoredBiscuit	its for my music server	23:19
=== marrusl_ is now known as marrusl
=== popey_ is now known as popey
=== Pici` is now known as Pici

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!