=== medberry is now known as med_away
=== jjohansen is now known as jj-afk
=== nerens_ is now known as nerens
ScottKkirkland: When server people said they wanted an improved boot experience, I don't think it was the colors they were concerned with.02:10
kirklandScottK: thank you for the constructive comment02:11
twbI would like the boot process not to hang if I make an LVM LV read-only and it has a fsck pass defined in /etc/fstab02:11
ScottKkirkland: I'm serious.  I'm sure it's lovely and all, but ^^^ is what's important.02:11
twbJust as an example02:12
Saturn2888hi all. How do I remove sit0 and sit1 adapters? I had them in there a long time ago and haven't ever been able to remove them. I was wondering if anyone else knows. They were Link encap:IPv6-in-IPv4 and should be pretty easy to delete for someone that knows better.03:07
fxhpI want to specify the disk image path in vmbuilder04:33
fxhpAnd I cannot find any docs that give examples04:34
eagles0513875any webmin users in here out of curiosity07:02
greppyeagles0513875: probably not, it's not really supported on ubuntu07:06
eagles0513875greppy: then why is it in the repo O_o07:08
greppyeagles0513875: which repo?07:10
greppyI don't find it in mine07:10
jmarsdeneagles0513875: rmadison webmin shows nothing at all... i.e. it is not there.07:10
eagles0513875my apologies07:10
eagles0513875now how to uninstall it from source :(07:11
_rubensome makefiles offer a 'make uninstall' option07:12
_rubenif not, then it'll be a manual process07:13
_rubenand if your lucky, all its files reside under for instance /usr/local/webmin/07:13
eagles0513875found it07:19
eagles0513875the uinstall script was in /etc/webmin07:19
eagles0513875another question for you guys07:19
eagles0513875sudo: unable to resolve host EagleEyeT <---- i have that name in the /etc/hostname file yet its still complaining07:19
eagles0513875what have i set incorrectly in that file07:19
greppyis it in /etc/hosts?07:20
eagles0513875let me look07:24
eagles0513875greppy: http://pastebin.com/F9aPs6aV07:25
greppythen no you don't.07:27
greppyyou need to add EagleEyeT to /etc/hosts07:27
eagles0513875problem fixed07:27
eagles0513875the name was something different before the bmit-internal it was called before07:28
eagles0513875and i had changed that and didnt change it in hosts07:28
eagles0513875thanks greppy :)07:33
maxillusionisthi ilea08:05
tuxinatorhi all09:24
tuxinatorhow to achieve that snmpd does monitor interface traffic?09:24
tuxinatormy snmpwalk output: http://pastebin.com/8dgPdH8P09:25
_rubenoh, change the public community from paranoid to ehm, the other one09:25
_rubenin /etc/snmp/snmpd.conf09:26
tuxinatori plan to use cacti later, but first i have to ensure that it gets interface statistics from snmpd09:26
tuxinator_ruben: thanks man, looks better :D it's long time since i last worked with snmpd :D09:27
=== ogra is now known as Guest78603
=== Guest78603 is now known as ogra_
GeneralKSo I have an issue where I am unable to mount an NTFS partition on a drive that uses a gpt partiton table... It's like the partition doesn't exist outside of parted or whataver tool I use to look at it in... eg. I can't mount it from /dev/sda or /dev/dm-0 Any ideas would be appreciated10:48
iclebyte_workanyone noticed any BGP issues with British Telecom?10:49
DavidBI have a File sharing problem on our Ubuntu File Server can someone please help me out?  We have 15 station running Windows Xp and Windows 7 and our File Server running Ubuntu, I configured 3 shares with full access, restarted Samba but some of the stations can not agges the server11:27
DavidBCan someone please help?11:28
DavidBIIs there someone willing to help?11:31
Aisonmaybe you should provide some more information11:31
Aisoneg. pastebin your samba config11:31
Aisonthat don't mean that I can help, but maybe11:32
DavidB#======================= Global Settings =======================  [global] workgroup = COTTONTEXDOM ;netbios name = GrafUBU server string = %h server (Server) ;wins support = no ;   wins server = w.x.y.z dns proxy = no ;   name resolve order = lmhosts host wins bcast  #### Debugging/Accounting ####  log file = /var/log/samba/log.%m max log size = 1000 ;syslog only = no syslog = 0 panic action = /usr/share/samba/panic11:33
ubottuFor posting multi-line texts into the channel, please use http://paste.ubuntu.com | To post !screenshots use http://imagebin.org/?page=add | !pastebinit to paste directly from command line | Make sure you give us the URL for your paste - see also the channel topic.11:34
DavidBsorry for that11:35
DavidBmy first time here11:35
Aisoncan you do11:39
Aisontestparm -s smb.conf > smb.conf.tested11:39
Aisonand paste this?11:39
RoyKDavidB: can you connect to the server via IP address from the clients that can't see the server - as in \\x.x.x.x ?11:42
DavidB@RoyK I can see the shares , acces some of them but not others11:42
Aisonquite strange11:46
DavidBi need to also specify that the computer that cant brows one share is in a domain11:47
Aisonwell, I never used this security = SHARE option11:47
DavidBI need open access to all shares11:49
DavidBits an internal server so dont need security higher than local11:49
DavidBDoes it conflict maybe with the Main Domain server rules?11:50
Aisoni've got a problem also here: some of my ubuntu servers have got a higher resolution in console than others, why? where can I change that? some framebuffer thingie?11:52
DavidBAison I added a virtual device with a resolution setting on mine http://paste.ubuntu.com/582053/12:02
DavidBI dont have a monitor attached to the server12:03
DavidBThe link is my custom xorg.conf12:03
Aisonwell, here i've got 6 servers with a switchbox connected to one screen12:03
AisonI don't have got X here ;)12:03
Aisonbut somehow my consoles have got different resolutions12:05
DavidBMaybe you have diferent resolutions in grub's menu.lst12:06
Aisonyeah, but on ubuntu 10.10 I can't find the menu.lst12:06
Aisonit's defined somewhere else12:06
DavidBBut be carefull it sais it might fail :)12:08
DavidBAny ideas on my problem? :P12:11
AisonDavidB, I guess your problem is located at the client (windows) side12:24
Aisonbecause everything else looks ok12:24
DavidBwell I have 2 similare shres on the same server but both are accesible12:25
DavidBAison I found the culprit12:54
DavidBI needed a Read Only = no on the last share that was not accesible12:55
Aisonoh :)13:02
RoAkSoAxmorning all13:04
=== dendro-afk is now known as dendrobates
=== dendrobates is now known as dendro-afk
=== dendro-afk is now known as dendrobates
orudieAt boot of 10.04 I get error: disk not found, followed by disk check, telling me that disk is not properly mounted/unmounted, then the system starts and everything seems normal. Any help for me how to fix this ?14:41
patdk-wkdon't yank the power cable out?14:44
mdeslaurkirkland: FYI, qemu-kvm isn't installable right now because it FTBFS on i386...are you looking into that?14:46
kirklandmdeslaur: yes14:46
=== ogra_ is now known as ogra
mdeslaurkirkland: ok, cool....thanks14:46
kirklandmdeslaur: jdstrand reported in ubuntu-devel14:46
compdocorudie, type:  'smartctl -a /dev/sda'  (or whatever device your hard drive is)14:47
mdeslaurkirkland: ah, cool14:47
orudiecompdoc, smartctl not recognized14:49
compdocsorry, I thought smartmontools was included with the OS14:50
orudiecompdoc, i'll install it14:51
compdocyou need to read the SMART data onthe drive. look for reallocated sectors and pending sector count14:51
compdocsee if either are greater than zero14:51
patdk-wkand don't do it over usb cable14:54
RoAkSoAxkirkland: /win 215:09
RoAkSoAxkirkland: howdy!! please don't forget to review python-ethtool for the new queue when you have the time :)15:09
kirklandRoAkSoAx: aha, sure, thanks15:12
=== SquishyNotHere is now known as squishy
zultime to do some deweeding again15:28
compdocjust say no! to deweed15:37
iclebyte_workanyone running puppet?15:47
zulRoAkSoAx: where are with 619712?15:57
RoAkSoAxzul: huh?15:58
RoAkSoAxoh bug#15:58
RoAkSoAxzul: well I was never able to reproduce the "race" as specified in the bug #61971216:00
uvirtbotLaunchpad bug 619712 in keepalived "keepalived vrrp race condition and fix (versions 1.1.17 and 1.2.0 but perhaps all?)" [High,Won't fix] https://launchpad.net/bugs/61971216:00
RoAkSoAxzul: however, it is supposed to be "fixed" upstream16:00
RoAkSoAxin the latest release16:01
zulRoAkSoAx: can you add the info to the bug and do the approiate thing plesase? :)16:01
RoAkSoAxzul: sure. We can also try to get the latest into natty, but that will also mean that we'd need to get ipvsadm2.616:03
zulRoAkSoAx: wouldnt it be easier to backport the supposed fix from upstream?16:04
RoAkSoAxzul: that too, though the newest releases have better support for IPV616:05
zulRoAkSoAx: any known regressions with it?16:05
RoAkSoAxzul: none so far. I'm gonna evauluate either to patch it, or get FFe's over this weekend16:06
RoAkSoAxand by monday I should have a clearer picture of what to do16:06
uvirtbotNew bug: #370874 in exim4 (main) "package exim4-base 4.69-5ubuntu2 failed to install/upgrade: short read in buffer_copy (backend dpkg-deb during `./usr/share/doc/exim4-base/spec.txt.gz')" [Undecided,Invalid] https://launchpad.net/bugs/37087416:12
zulRoAkSoAx: cool thanks16:20
=== dendrobates is now known as dendro-afk
=== dendro-afk is now known as dendrobates
bbeckDoes anyone have experience creating their own EC2 AMI of ubuntu server that is preconfigured with certain packages?  I'm trying to build an image for some software that I've written and having troubles figuring out how to get started.16:32
patdk-wkhmm, I thought that was pretty simple16:32
patdk-wkinstall ubuntu into ec216:33
patdk-wkinstall software you want, configure it how you want16:33
patdk-wkthen back it up to s316:33
patdk-wkpublish backup in s3 as ami, done16:33
bbeckwell that certainly does sound easy.16:36
patdk-wkI'm sure there are a few catchs :)16:36
patdk-wklike first time run scripts to configure the ip and machine name when it's installed from the ami, that would be lost doing it that way16:37
patdk-wkbut otherwise, yep16:37
bbeckwhy would that matter?  i'm assuming EC2 has a DHCP server to provide IPs16:38
patdk-wkI didn't think it used dhcp16:38
patdk-wkbeen awhile since I last used ec2 though16:38
xuruwhat's a good channel to ask some fiber channel/multipath questions on ubuntu?16:44
patdk-wkthis one?16:47
xuruok, I'm getting a lot of these errors:  sd 3:0:2:5: reservation conflict16:53
xuruI have 5 ESX servers hooked up to a Pillar 30016:53
xuruand I'm hooking up this backup server to it as well16:54
xuruRunning ubuntu 10.04 lts16:54
xurueverything looks good running multipath -v3 and multipath -ll16:54
xurubut the paths seem to go down and then become active again16:55
xuruI'm guessing this is because the esx servers are issuing a scsi reserve?16:55
patdk-wknot sure :(17:00
patdk-wkI haven't attached any linux machines to the fiber esx stores17:00
patdk-wkonly done that on windows, and haven't bothered to see if it complains17:00
xuruyeah, it's kind of weird...   I've been trying to get vmware's vixDiskLib SDK to work over SAN...  been a long road so far17:02
owen1i try to change my timezone to utc but can't find it in tzselect. any tips?17:28
genii-aroundowen1: Pick 11 and then put maybe just GST    ?17:31
owen1genii-around: `GST' is not a conforming Posix time zone string.17:31
genii-aroundGMT perhaps then. I think it takes the "GST-#" and converts it to the 3 letter codes17:33
genii-aroundGST-0  seems to work17:33
owen1genii-around: ok. thanks!17:41
zulsorry about the spam17:48
=== dendrobates is now known as dendro-afk
* RoAkSoAx off to lunch18:38
FroshI have setup some of our Ubuntu servers using KInit, Winbind, and Samba (following a guide i read) and setup authentication against our Active Directory; this has (seemingly) worked fine for several months, but newly created AD users are unable to login (they get "access denied") - I was wondering if anyone could help me troubleshoot (turn on appropriate logging, debugging, etc..) - if this is the wrong venue, can someone point 19:19
RoAkSoAxkirkland: ping20:07
RoAkSoAxkirkland: is the setvtrgb /etc/vtrgb supposed to change background colors too?20:08
kirklandRoAkSoAx: yo20:08
kirklandRoAkSoAx: if i understand your question correctly, yes20:08
RoAkSoAxkirkland: cause the only thing I get change in both my laptops is the letters from grey to white20:09
kirklandRoAkSoAx: are you on the console, ctrl-alt-f1?20:09
RoAkSoAxkirkland: yes20:09
kirklandRoAkSoAx: the background color change is not noticeable20:10
kirklandRoAkSoAx: it goes from 0,0,0 black to 1,1,1 black20:10
kirklandRoAkSoAx: goto http://tldp.org/HOWTO/Bash-Prompt-HOWTO/x329.html20:10
kirklandRoAkSoAx: grab the bash script at the end of that page20:10
kirklandRoAkSoAx: and run it before an after you do:20:10
kirklandsudo setvtrgb vga20:11
kirklandsudo setvtrgb /etc/vtrgb20:11
RoAkSoAxlet's see20:11
RoAkSoAxkirkland: i though it would change the color to aubergine though :)20:13
kirklandRoAkSoAx: run debconf20:13
kirklandRoAkSoAx: dpkg-reconfigure <something>20:14
kirklandRoAkSoAx: or press F9 in byobu20:14
RoAkSoAxkirkland: ahh I see it now!! cool!!20:15
RoAkSoAxkirkland: thanks ;)20:15
kirklandRoAkSoAx: you could, however, change your background to aubergine, though, easily :-)20:15
kirklandRoAkSoAx: do this ....20:15
kirklandRoAkSoAx: sudo vi /etc/vtrgb20:17
kirklandRoAkSoAx: and change the first number in the 3 lines to:20:17
kirklandRoAkSoAx: and then sudo start setvtrgb20:17
* RoAkSoAx tries20:17
RoAkSoAxkirkland: much better! I think that should be default :)20:18
kirklandRoAkSoAx: the beauty is that you can now configure this easily20:18
RoAkSoAxkirkland: indeed!! But personally I was expecting to see it by default :)20:19
kirklandRoAkSoAx: heh.  that's up to the design team, not me :-)20:21
RoAkSoAxkirkland: as long as we can change it with no hassle is all good :)20:21
RoAkSoAxkirkland: though, idk if this is because of the new color changes, but byobu's color scheme has changed20:24
=== dendro-afk is now known as dendrobates
RoAkSoAxkirkland: dude this new colors (and the console with aubergine is just amazing!! it's awesome that you've done this!!20:36
koltrollRoAkSoAx, url? (just joined but you sound so excited that I got interested)20:36
RoAkSoAxkoltroll: http://fossplanet.com/f10/call-testing-aubergine-love-server-folks-114677/20:37
kirklandRoAkSoAx: thanks, man;  it's nice to hear something kind from someone every once in a while :-)20:38
kirklandRoAkSoAx: b/c there are some gripey people out there!20:38
RoAkSoAxkirkland: thanks to you!! :) (and indeed!!)20:38
=== ogra is now known as Guest95250
=== dendrobates is now known as dendro-afk
=== Negative is now known as negativeOne
=== negativeOne is now known as anadon
=== erichammond1 is now known as erichammond
RoyKhttp://transport.nilu.no/products/fukushima <-- seems California is getting some .jp air soon21:25
Patrickdknever did need that state anyways21:26
=== garfieldairIines is now known as Myst
david5345I ran nmap on my ubuntu box. I did the 4 different scans, default, xmas tree, FIN, null and UDP Scan21:41
david5345Every time it said "1000 scanned ports are open|filtered". Except on the UDP scan, it caught ntp as being "closed".21:42
david5345Are my iptables secure enough ? or is there another test I should run ?21:42
RoyKdavid5345: iptables is secure enough for L3/L421:42
david5345For the sake of this conversation, I am only talking about TCP, UDP and IP21:43
RoyKfor that, iptables is secure21:43
david5345ok, I guess my question was if my rules were strong enough.21:43
RoyKpastebin them21:43
ubottuFor posting multi-line texts into the channel, please use http://paste.ubuntu.com | To post !screenshots use http://imagebin.org/?page=add | !pastebinit to paste directly from command line | Make sure you give us the URL for your paste - see also the channel topic.21:43
david5345sorry ubottu, I am used to msn messenger21:44
david5345Do I need to worry about security lower than L3 ?21:44
RoyKunless you're afraid of attacks on the LAN21:44
RoyKbut then, arptables can do filtering as well21:45
david5345It's in a data centre, I assume they will protect against local attacks21:45
RoyKfor any sysadmin, a pinch of paranoia is good, but don't add too much of it21:45
david5345I am beyond a pinch :D21:45
RoyKdavid5345: I'm quite sure you will be sharing the network with others in the same datacentre21:46
david5345Yes, but would any of them launch an attack against me ?21:46
RoyKdavid5345: you never know - one can be hacked and try to do so, but if they do, they would probably try on IP, L3, so it shouldn't be much of a problem21:47
david5345Do I need to worry about 5, 6, and 7 ? Does 7 include installing secure programs and keeping them patched ?21:47
RoyKL2 and down is pretty well secured already, unless there's a bad driver somewhere21:47
RoyKL7 is application protocols - they should be fairly secure - but "L8+" (no such thing, but still) is usually the problem - some bad code and suddenly you have an XSS or DoS or even local exploit21:49
RoyKHTTP is a good example of a L7 protocol21:49
david5345HTTP is only as secure as the backend such as apache or PHP21:50
RoyKHTTP is secure, and so is apache, but adding PHP or CGI or something to that (all of which uses HTTP for transport) can open doors21:50
guntbertRoyK: L8  = you and me ;-)   so what might L8+ really be?21:51
RoyKI'd call php and the gang L8, you and me comes a wee bit further up :)21:52
RoyKL>7 is highly subjective :)21:52
guntbertindeed :-)21:53
david5345apache = L821:53
david5345PHP = L9, MySQL = L10 :D21:53
RoyKapache = L5-721:53
RoyKapache doesn't do much >L721:53
david5345I dislike apache, I now use lighttpd. It uses up less resouces :)21:53
RoyKbut it can call PHP etc, which is on a higher level21:54
RoyKlighty is nice, but Apache works too21:54
RoyKI guess that's just a matter of taste21:54
david5345I also wrote a apparmor.d profile for my PHP code, I figure that should help me keep things secure21:55
david5345Actually, I really like apparmor.d now that I understand it.21:57
bezaohow do i enable iptables on my vps? i dont have eth0, ifconfig shows me "lo" "venet0" "venet0:0" i tried using venet0 and venet0:0 on iptables, but it doesnt work, it block everything! i'm trying this "iptables -N TRUSTED" and "iptables -A TRUSTED -i venet0 -p tcp -m tcp --dport 22 -j ACCEPT" but it blocks me.22:12
=== erichammond1 is now known as erichammond
bezaohow do i enable iptables on my vps? i dont have eth0, ifconfig shows me "lo" "venet0" "venet0:0" i tried using venet0 and venet0:0 on iptables, but it doesnt work, it block everything! i'm trying this "iptables -N TRUSTED" and "iptables -A TRUSTED -i venet0 -p tcp -m tcp --dport 22 -j ACCEPT" but it blocks me.22:22
=== dendro-afk is now known as dendrobates
ehwbezao: a) define "block everything!" do you get an error message? and b) this sounds like an OpenVZ container; have you asked the company you're renting it from about the error?22:27
bezaoehw i cant access it from my home. i can only access by the openvz console at my hosting website to reset iptables, then i can access i again from my home.22:29
bezaoi enabled port 22 to ssh, but i cant connect, ping timeout/connection refused22:29
bezaoehw i have an ubuntu vbox at home, that i tested it, but at home i have eth0, which it works the iptables rules! but on the vps, i dont have eth0, so i search on ifconfig and tested the possibilits and got nothing! :/22:32
ehwbezao: OpenVZ uses a different name for the interfaces.  What you might want to check is if your rules ever get to TRUSTED; if you don't have a jump to TRUSTED at the end of e.g. INPUT, then it won't be reached22:33
bezaosorry i did not udnerstood.. let me pastebin the file22:35
bezaoplease can you check ehw http://pastebin.com/idinWvT4 ?22:36
=== Guest95250 is now known as ogra
ehwbezao: also paste bin the output of iptables-save after you're run the script?22:39
bezaoneed to change venet0:0 to venet022:40
bezaoit was saying it was wrong22:40
bezaoehw http://pastebin.com/K1Mj4Yb622:41
bezaoafter i run, i cant ping anymore my vps ip, and cant connect to ssh, to i go the vps-url and tell it to disable iptables. then i can use ssh and ping again22:42
bezaoany ideias ehw ?22:46
ehwhave a look, bezao22:46
azizLIGHTShow do i undo the command "adduser dropbox ubuntu" ?22:46
ehwbezao: if i just run the script, it works fine in a normal vm (using KVM); you can't use aliases like eth0:0 or venet0:0 for interface names, that's for sure22:50
bezaoehw i pasted you before i change, i'm now using venet022:52
ehwbezao: it's been a while since I saw openvz in action; doesn't venet0 have an internal address?22:53
bezaoehw venet0 doesnt have an ipv4, venet0:0 has an ipv422:54
ehwbezao: can you put venet+ as the interface name and give it a try?22:54
bezaoon the iptables file?22:55
bezaosure, let me try22:55
ehwright, after -i in the iptables commands22:55
bezaoit works, i have access to ssh but i cant ping, even if i comment the line about ping22:57
bezaocomment or uncomment, ping doesnt work.22:58
ehwbezao: might want to check if /proc/sys/net/ipv4/icmp_ech_ignore_all is set to 1; should be 0 if you want to be able to piing22:58
bezaoi dont have that file ehw22:58
bezaoi think you mean ech = echo22:59
bezaothat i have22:59
bezaoit's 0.22:59
ehwbezao: sorry yes, that was a type22:59
ehwtypo (typing on ipad is hit-or-miss)22:59
bezaohehe, np.23:00
bezaoi have 0, it should be able to ping?23:00
ehwbezao: should do normally...23:01
bezaoit doesnt, hehe, np ehw iptables works;) thanks dude23:02
ehwbezao: glad at least ssh works :-D23:02
bezaoit's everythin that i need :)23:03
=== dendrobates is now known as dendro-afk
nzfishhi chan, anyone using openpanel?23:25
=== dendro-afk is now known as dendrobates
erichammondIs it possible to create an upstart task that only runs after the file system has been mounted and before mysql starts?  Or would I have to modify the mysql upstart configuration to tell it to wait for my new task to complete?23:52

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!