| MichelleQ | itnet7: when you get a minute, PM me please sir? | 01:30 |
|---|---|---|
| Chloric | good evening florida | 02:00 |
| xfGolden | One pit here in florida .. wooden decks rot out in record time .. | 02:41 |
| tiemonster | Anyone around this morning? | 13:05 |
| mhall119 | morning tiemonster | 14:53 |
| tiemonster | mhall119: hey there | 14:53 |
| tiemonster | can I get your opinion on something? | 14:53 |
| tiemonster | how secret should load data for a server be? | 14:54 |
| tiemonster | I'm thinking of exposing uptime, load averages, memory and CPU usage via a web service | 14:54 |
| mhall119 | what do you mean? | 14:54 |
| mhall119 | oh | 14:54 |
| tiemonster | and I'm wondering how much I should worry about security | 14:54 |
| mhall119 | well, it might tell a potential attacker when their attacks are having an impact | 14:59 |
| mhall119 | in theory it could expose information about what versions of software you're running | 14:59 |
| tiemonster | I have HTTP basic auth on there | 15:00 |
| mhall119 | for example, if there's an apache bug that causes CPU usage to spike for a certain kind of HTTP request, they can use that to know that you're running a version prior to that being fixed | 15:00 |
| mhall119 | ok, so you have to log in to see it | 15:00 |
| tiemonster | yeah | 15:00 |
| mhall119 | then there's not much harm, I would think | 15:00 |
| tiemonster | ok | 15:00 |
| tiemonster | so how do I accurately determine CPU and memory usage on linux? | 15:01 |
| mhall119 | /proc/cpuinfo and /proc/meminfo | 15:01 |
| tiemonster | CPU = (user + sys) / (user + sys + idle) ? | 15:01 |
| mhall119 | or /proc/loadavg | 15:02 |
| tiemonster | I'm displaying load averages as well | 15:03 |
| tiemonster | but I'm trying to get percentages for memory and CPU used like when you log into Ubuntu server | 15:03 |
| mhall119 | tiemonster: the scripts that ubuntu server uses for those stats are in /usr/lib/byobu | 15:16 |
| tiemonster | thanks! | 15:16 |
| === locobot_4_2 is now known as locobot_4 | ||
| === mhall119_ is now known as mhall119 | ||
| reya276 | Morning everyone | 15:36 |
| tiemonster | mhall119: I humbly submit for peer review: https://github.com/tiemonster/monitor.js | 15:54 |
| mhall119 | nice | 15:56 |
| mhall119 | I haven't played with Node.js yet | 15:56 |
| maxolasersquad | If I run a command in bash followed by an ampersand, and then log out of my session, the program should still be running, right? | 16:16 |
| maxolasersquad | tiemonster: I hope node.js convinces other languages to implement call backs, and create libraries that embrace non-blocking theory. | 16:17 |
| tiemonster | maxolasersquad: I'll be working on a non-blocking python application server next year | 16:18 |
| === jtatum_ is now known as jtatum | ||
| mhall119 | maxolasersquad: depends on whether the tty stays alive when you log out or not | 16:19 |
| mhall119 | tiemonster: using twisted? | 16:20 |
| maxolasersquad | I'm logging in to a remote server to kick off a ruby script, that should just keep on running. | 16:20 |
| maxolasersquad | I want to be able to log out of my remote session and still have it running. | 16:20 |
| jtatum | maxolasersquad: man nohup | 16:20 |
| maxolasersquad | Yay, python errors in my IRC! | 16:21 |
| jtatum | (closing terminal = hangup) | 16:21 |
| maxolasersquad | jtatum: Come again. | 16:21 |
| jtatum | when you close a terminal, a signal is sent to all processes descended from the terminal (SIGHUP). starting a process with nohup makes it immune to that signal. | 16:22 |
| maxolasersquad | ahh, ok | 16:22 |
| tiemonster | maxolasersquad: yes | 16:22 |
| jtatum | from the wikipedia article: nohup ./myprogram > foo.out 2> foo.err < /dev/null & | 16:23 |
| maxolasersquad | jtatum: nohup ruby sql2git.rb >> sql2git.log | 16:24 |
| maxolasersquad | nohup ruby sql2git.rb >> sql2git.log 2> sql2git.err < /dev/null & | 16:24 |
| jtatum | the reason you want to redirect stdin, stdout and stderr is because those handles will no longer exist after you log out | 16:24 |
| jtatum | 'course, i suppose most people would use screen to do this | 16:25 |
| maxolasersquad | I really just need this to be background process. It doesn't need to be attached to any session. | 16:26 |
| maxolasersquad | Cool, I detached my session and it is clearly still running. | 16:27 |
| jtatum | you mentioned ruby. mongrel? | 16:28 |
| maxolasersquad | jtatum: We have two developers that code all their background stuff in ruby. | 16:32 |
| maxolasersquad | All our web stuff is in PHP, so if we could move to ruby that would be a good step up. | 16:33 |
| jtatum | ahhh, gotchya | 16:33 |
| jtatum | well, at some point probably want to write an upstart script for it | 16:33 |
| jtatum | upstart has process monitoring and junk which is better for a daemon that needs to do real work | 16:34 |
| maxolasersquad | jtatum: This is on a Solaris machine. Our server team is a few miles away. Things like that are not easily accomplished. | 16:38 |
| jtatum | i see | 16:38 |
| maxolasersquad | There's a sliver of a chance we may move at least on of our Unix machine to Ubuntu server running as a VM in the server farm. | 16:38 |
| maxolasersquad | A small sliver. | 16:38 |
| === polomonster is now known as tiemonster | ||
| reya276 | do any of you know of a good Linux hosting and that is not too expensive? | 17:15 |
| tiemonster | reya276: for what? | 17:34 |
| tiemonster | like VPS? | 17:34 |
| mhall119 | reya276: Amazon's cloud service gives you a free year of their "Micro" instance, I've been running that for my sites since November | 17:35 |
| tiemonster | mhall119: can I bounce some ideas off of you? | 17:35 |
| mhall119 | reya276: http://aws.amazon.com/free/ | 17:36 |
| mhall119 | tiemonster: sure | 17:36 |
| tiemonster | so I'm trying to make a web services aggregator | 17:36 |
| tiemonster | should I simply proxy server-side, or should I actually store credentials? | 17:36 |
| tiemonster | I'm trying to make the dashboard to end all dashboards | 17:36 |
| tiemonster | to integrate with every tool I use on a daily basis | 17:37 |
| mhall119 | do the credentials contain private/secret data? | 17:37 |
| reya276 | no just simple regular webhosting | 17:37 |
| tiemonster | yes | 17:37 |
| mhall119 | tiemonster: is it all internal? | 17:37 |
| tiemonster | no | 17:37 |
| mhall119 | so you've have to store someone's password in clear text (or some form that you can get clear text from) | 17:38 |
| tiemonster | AES 256-bit | 17:38 |
| mhall119 | but then you'd have to store the decryption key somewhere the server can access it | 17:38 |
| tiemonster | or I could simply delegate all authentication to the browser | 17:38 |
| mhall119 | if that's an option, it'd be more secure | 17:38 |
| tiemonster | ok. let me explain my idea. | 17:39 |
| tiemonster | if I delegate, you'll get a pop-up modal authentication box for every web service | 17:39 |
| tiemonster | you'd have to log into each service one after the other | 17:39 |
| tiemonster | if I store them on the server, then the username for the site is the configuration filename, and their password is the encryption key | 17:40 |
| tiemonster | if the config file doesn't exist, authentication fails | 17:40 |
| tiemonster | if I don't get valid plaintext back (JSON in this case) then authentication fails | 17:40 |
| tiemonster | then you have one login for the dashboard, and all your credentials are stored in encrypted form on the server | 17:40 |
| mhall119 | okay, so you don't store the decryption key, the user supplies it, that sounds good | 17:41 |
| tiemonster | yep | 17:41 |
| tiemonster | mhall119: I guess I can try it with delegation for a while and see how annoying it is | 18:03 |
| === cjohnston_ is now known as cjohnston | ||
| zoopster | mhall119: t -10 days saw your name on email today....nice. | 18:29 |
| mhall119 | zoopster: yeah, my first company-wide email :) | 18:30 |
| rmcbride | mhall119: yea I was just going to say what zoopster said | 18:30 |
| zoopster | yup...allhands...you are more famous than you know | 18:30 |
| mhall119 | because of the email, or before it? | 18:30 |
| maxolasersquad | mhall119: Are you working for Canonical now? | 18:44 |
| mhall119 | maxolasersquad: I will be in a little over a week | 18:44 |
| maxolasersquad | Congratulations. | 18:44 |
| mhall119 | thanks | 18:44 |
| maxolasersquad | What are you to be working on? | 18:45 |
| mhall119 | websites and webapps | 18:46 |
| maxolasersquad | Cool. | 18:46 |
| mhall119 | yeah, I'm excited | 18:47 |
| === danstone1 is now known as danstoner | ||
| === zbrown_ is now known as zbrown | ||
| === locobot_4_2 is now known as locobot_4 | ||
| mhall119 | tiemonster: you around? | 19:48 |
| polomonster | mhall119: when I'm not netsplitting | 20:18 |
| === polomonster is now known as tiemonster | ||
| tiemonster | mhall119: are *you* around? | 20:21 |
| mhall119 | tiemonster: lightning project talks in #ubuntu-classroom going on now | 20:21 |
| mhall119 | if you want to plug your monitor.js | 20:22 |
| tiemonster | nah | 20:22 |
| mhall119 | ok, thought I'd offer | 20:22 |
| tiemonster | thanks | 20:22 |
| tiemonster | I'll watch, though | 20:22 |
| tiemonster | mhall119: so how does your project differ from AWN? I almost entirely missed your talk. | 20:42 |
| mhall119 | tiemonster: mostly in the fact that mine is very small | 20:43 |
| mhall119 | and very narrow in scope | 20:43 |
| mhall119 | it's not a dock, or a window switcher, or anything like that | 20:43 |
| mhall119 | just launchers from the menus | 20:44 |
| mhall119 | the only fancy thing it does is scale down the size of the icons as you add more | 20:45 |
| tiemonster | I need to figure out how to package node applications as debs | 20:46 |
| tiemonster | I need to figure out how to package node itself as a deb | 20:46 |
| mhall119 | is node.js in the repos? | 20:46 |
| tiemonster | unfortunately not | 20:46 |
| tiemonster | the workflow is very git centric right now | 20:47 |
| mhall119 | that's okay, launchpad can import and track git branches i think | 20:47 |
| tiemonster | so just import it and create a PPA? | 20:47 |
| tiemonster | I'd have to throw an init script in there somewhere | 20:47 |
| mhall119 | yeah,there'd be setup | 20:48 |
| mhall119 | you'd have to create all the debian control files, for example | 20:48 |
| tiemonster | mhall119: so about this dashboard project I'm working on | 21:04 |
| tiemonster | it would make way more sense as a desktop application, wouldn't it? | 21:04 |
| Epidemic | anyone ever check out damnyouautocorrect.com? :) | 21:19 |
| RoAkSoAx | mhall119: congratulations | 21:24 |
| RoAkSoAx | itnet7: ping | 21:31 |
| reya276 | hey what is the sudo command to completely remove OpenOffice? | 22:43 |
| reya276 | is it sudo apt-get remove --purge openoffice? because every time I try it I get the package cannot be found | 22:44 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!