[00:00] <Ronnie> where can i find good and easy documentation about running a testserver in virtualbox with subdomains. The testserver is for testing settings and apps before launching on the real server (no vm). currently i have one website (django+apache) running in the vm and edited my /etc/hosts with the guest IP and hostname. But running into problems with the second site
[02:33] <lenios> Ronnie, what's the problem with the second site?
[06:44] <fastveg> could anyone help me out with a couple beginner questions?
[06:44] <fastveg> first, I'd just like to fgure out the version of ubuntu server I'm running...
[06:45] <fastveg> I tried uname-a and got back this: Linux ubuntu 2.6.38.3-linode32 #1 SMP Thu Apr 21 20:08:53 UTC 2011 i686 GNU/Linux
[06:46] <fastveg> but 2.6 doesn't sound correct at all..
[06:47] <fastveg> shouldn't it be like 10 or something?
[06:50] <fastveg> nevermind, logged into linode and apparently it's 10.10.
[06:50] <fastveg> Is there a way to check this from the command line though?
[07:07] <jmarsden> fastveg: cat /etc/lsb-release    or    lsb_release -ircd
[07:08] <jmarsden> fastveg: 2.6.38-3-linode32 is the kernel version, not the distribution version.
[07:16] <fastveg> jmarsden; totally worked, thank you.
[07:17] <jmarsden> You're welcome.
[07:21] <fastveg> jmarsden:  One more question if you are still on, I am trying to install postgres 9.0.4 -- but if I do apt-get install postgresql it tells me that the newest version is installed (8.4.8).  How do I install 9.0.4?
[07:22] <jmarsden> fastveg: You dont in 10.10, unless you want to (a) backport it from oneiric or (b) install it by hand outside the packaging system.
[07:23] <jmarsden> What apps do you run that *need* 9.0.4 and will not work with 8.x ?
[07:23] <fastveg> ugh, I don't know, I'm a little new to all this, and trying to learn django and postgres.  Current prblem is that my mac has 9.02 and the server has 8.4.8.
[07:23] <jmarsden> Since you say you are a beginner, I'd strongly advise you install the postgresql that comes packaged by Ubuntu for your distro, i.e. for 10.10
[07:24] <fastveg> So I'm not entirely sure, but I'd assume that I want to keep developement and server synched up
[07:24] <fastveg> version wise
[07:24] <jmarsden> I don't know enough about 9.x to know if it can pg_dump files that 8.x will import, but I'd hope it can.
[07:24] <fastveg> makes sense..
[07:25] <jmarsden> fastveg: Then develop in Ubuntu 10.10 in a virtual machine on the mac, or something, if you really need the two 'in sync' :)
[07:25] <fastveg> so is running two different versions in development and production not a huge deal / fairly common?
[07:25] <jmarsden> If you are doing basic web stuff, the db version shouldn't matter hugely.
[07:25] <fastveg> it's pretty basic yeah'
[07:25] <jmarsden> If you are doing serious database work and using the latest db features... you care about versions.
[07:25] <fastveg> right on
[07:26] <fastveg> thanks for the help and info
[07:26] <jmarsden> I'd try using the one 10.10 has packaged, it is easy and you will get security updates for it, etc.  Only do more work if you find out that more work to get 9.x is really needed.
[07:26] <jmarsden> You're welcome.
[07:42] <Ronnie> fastveg: for syncing the database you can also use django's dumpdata and loaddata: http://docs.djangoproject.com/en/dev/ref/django-admin/#django-admin-dumpdata
[07:42] <Ronnie> i have used that to port my data from mysql to postgres
[09:18] <ruben23> hi does ubuntu server have deafult iptables..?
[09:21] <jmarsden> ruben23: sudo /sbin/iptables -L -n     # to find out :)
[09:22] <ruben23> http://pastebin.com/K9794iei
[09:23] <ruben23> jmarsden: where do i set the iptables to make it permanent
[09:27] <ruben23>  jmarsden: si that an indicator i have one..? where do i set it on text file to make it permanent
[09:28] <jmarsden> ruben23: If you don't know what you are doing, use ufw instead of raw iptables.   man iptables-save and man iptables-restore for one way to save and restore iptables information
[09:29] <ruben23>  jmarsden: i just wanted to make it permanent - tried with rules when rebooted its gone
[09:52] <atdprhs> anyone uses ubuntu 11.04 here and synaptic multi touch click pad here?
[10:06] <jmarsden> synaptic multi-touch click pads?  On a *server* ?
[10:16] <greppy> jmarsden: I can see that being done :) touch pads in a rack mount keyboard/mouse setup :)
[10:17] <twb> I know a few idiots who repurpose their old netbooks are bastion routers
[10:17] <twb> Putting a USB ethernet card in or some shit
[10:18] <jmarsden> twb: Yes, but they you don't care if the touchpad isn't working, you ssh into them :)
[10:18] <twb> oh right
[10:18] <twb> I didn't read the scrollback
[10:48] <RoyK> https://bugs.launchpad.net/ubuntu/+source/upstart/+bug/592114 <-- anyone seen this?
[11:06] <Shadow_aok> hello
[11:06] <Shadow_aok> Does someone has its do-release-upgrade stopped by an error with ubuntu-minimal which can't be found although its already installed ?
[11:07] <Shadow_aok> (running maverick x64)
[12:04] <bigDog> sorry - my 3G internet disconnected
[12:07] <Shadow_aok> nobody tried to upgrade to natty around here ?
[12:08] <andygraybeal> my desktop is natty, my server is 10.04
[12:08] <bigDog> i'm on 11.04 - but did a fresh install
[12:08] <andygraybeal> yea, i'm still afraid of upgrades :)
[12:10] <Shadow_aok> well, it doesn't work on my server
[12:10] <Shadow_aok> complaining about ubuntu-minimal
[12:10] <Shadow_aok> alhtough this package is installed
[12:11] <Shadow_aok> but do-release-upgrade can't find it :(
[12:11] <Shadow_aok> i found nothing useful on the forums, so i'm trying here
[12:12] <bigDog> no ops here now?
[12:12] <Shadow_aok> seems not
[12:12] <bigDog> weird.... spooky
[12:17] <bigDog> on installing dnsmasq i get: failed to create listening socket for port 53: Address already in use do i need to worry?
[12:20] <qman__> mine are all 10.04, if it ain't broke, don't fix it
[12:26] <greppy> bigDog: do you have another dns server installed?
[12:26] <bigDog> only bind9
[12:27] <greppy> so yes :) they are both trying to use port 53 to serve dns
[12:28] <bigDog> but need dnsmasq for IP masquerading - unless bind9 can be used with iptables MASQUERADE
[12:28] <greppy> I don't think you need dnsmasq for setting up NAT
[12:28] <bigDog> ok
[12:29] <greppy> dnsmasq is just a lightweight dns proxy and dhcp/tftp server
[12:31] <bigDog> hi everyone - i have successfully installed ubuntu server 11.04 without a problem. i use iptables for nat (sudo iptables -t nat -A yadda yadda yadda -j...) the problem is, every time the server reboots, the custom iptables commands are lost. i tried an ubuntu iptables tutorial and it didn't work - so i reformatted the server and started again. tried another tutorial - still no joy so i
[12:31] <bigDog> am now on my 3rd reformat & reinstall (almost finished now). has anyone succsessfully been able to do an auto-executing startup script for custom iptables setup at boot? could you share how you did it? the server is just a firewall, squid server, and IP masquerading (internet connection sharing) box.
[12:34] <nijaba> bigDog: https://help.ubuntu.com/community/IptablesHowTo#Configuration on startup
[12:34] <greppy> bigDog: two steps, do an "iptables-save > /etc/firewall-rules", then in /etc/network/interfaces, add "pre-up iptables-restore < /etc/firewall-rules" before the auto eth0 line
[12:35] <bigDog> ahhh, ok!
[12:37] <bigDog> finally - a straight answer from someone who knows what they are talking about! humanity lives on!
[12:37] <greppy> sorry, I'm just a shell script running as an IRCII bot :)
[12:40] <fastveg> Is there a way to change the default user on ubuntu-server?
[12:40] <fastveg> I just used my first name when I first set it up and that's not ideal anymore... ;)
[12:41] <greppy> just add another user and give it access to sudo
[12:41] <fastveg> k thanks greppy
[12:45] <bigDog> so, i do sudo -s and get a root shell. I type in custom commands line-by-line: ** iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth0 -j MASQUERADE** {ENTER} iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 ! -s 192.168.0.254 -j REDIRECT --to-port 3128 {ENTER} then do the iptables-save command including quotation marks?
[12:55] <greppy> don't have to have the quotes
[13:08] <bigDog> in squid, is this the correct squid.conf syntax - http_port 3128 transparent
[13:08] <bigDog> i am trying to make a transparent proxy
[13:12] <progre55> hi guys. I've just updated/upgraded a remote lucid server, but after a restart, it still says "xx packages can be updated." on ssh-logon, although there's nothing more to update. Any suggestions, please?
[13:13] <bigDog> apt-get update
[13:14] <progre55> bigDog: yeah I've already done that, and even "apt-get dist-upgrade", and even restarted the server
[13:15] <progre55> but it still says there are packages to be updated, and you run "apt-get update" again, there's nothing to updated
[13:15] <bigDog> hmmm
[13:15] <progre55> to be*
[13:17] <progre55> apparently I'm not the only one http://ubuntuforums.org/showthread.php?t=1473965
[13:17] <progre55> let me read on =)
[13:18] <bigDog> 11.04?
[13:18] <progre55> nope, lucid
[13:18] <progre55> server
[13:19] <bigDog> sorry man i'm new to linux - maybe someone here can help...
[13:20] <progre55> no problem, thanks for the attention
[13:25] <andygraybeal> progre55, i have the same problem, i just ignored it :)
[13:26] <progre55> andygraybeal: I've just fixed it =)
[13:26] <andygraybeal> but yea, i'm sure someone else here can elaborate, and i would be interested
[13:26] <andygraybeal> oh nice
[13:26] <progre55> just clean /etc/motd.tail
[13:26] <andygraybeal> aah nice
[13:27] <andygraybeal> i've not heard of the clean command
[13:27] <progre55> no no, I mean, just clean the contents =)
[13:27] <progre55> echo "" > /etc/motd.tail
[13:27] <andygraybeal> ah like.. rm /etc/motd.tail ?
[13:27] <andygraybeal> aah ok
[13:28] <andygraybeal> nice
[13:28] <andygraybeal> nice
[13:28] <andygraybeal> will this have to be cleaned often?
[13:28] <progre55> no, just once afain
[13:28] <progre55> afaik*
[13:56] <pythonirc101> does anyone use canonical here for their servers?
[13:56] <pythonirc101> I just selected it, and not sure if i have to pay for anything?
[14:21] <pythonirc101> does anyone know of a tool that will help me manage 10 ubuntu-servers from 1, mostly patches and package installs...
[14:26] <twb> pythonirc101: puppet
[14:27] <pythonirc101> twb: Thanks. Looking it up
[14:27] <twb> You may just want the unattended-upgrades and a ssh loop
[14:27] <pythonirc101> twb: is there a good gui for puppet?
[14:27] <twb> 10 is not a big number
[14:27] <twb> No, GUIs are for wankers
[14:28] <pythonirc101> twb: i selected canonical landscape while installation, no idea how that works...doesit?
[14:28] <Pici> Well thats a bit of a harsh way of putting it.
[14:28] <twb> pythonirc101: landscape only works if you buy a support contract from canonical or something
[14:28] <twb> pythonirc101: basically, don't pick it unless you routinely add an extra zero when charging your client
[14:28] <pythonirc101> sucks
[14:29] <pythonirc101> I selected it, can i uninstall it?
[14:29] <twb> Oh, and the landscape hub is proprietary software, so don't pick it if you're a longhair treehugger lefty like me
[14:29] <twb> pythonirc101: dunno; I know a fresh install will fix it :-)
[14:29] <pythonirc101> damn
[14:30] <pythonirc101> i hope they dont use my resources using a timer
[14:30] <twb> Eh?
[14:30] <pythonirc101> well to contact their server
[14:30] <pythonirc101> how can i not uninstall it...lemme see if i can find that package
[14:30] <twb> It'll surely use your internet connection to TRY to talk to the internet
[14:31] <pythonirc101> how can i uninstall it, without reinstalling?
[14:31] <twb> Unless you're a UUCP jarhead, the bandwidth is probably minimal
[14:31] <twb> I don't know.  There is probably a package like "landscape-client", but I don't know if removing it will suffice
[14:31] <pythonirc101> i dont want it on my machine -- if they charge for managing 10 machines... :)
[14:31] <bigDog> anyone remember where squidGuard.conf lives? /etc?
[14:32] <alamar> bigDog: find does
[14:32] <twb> pythonirc101: unless you gave them your credit card, they will probably just ignore you, rather than charging you
[14:32] <alamar> or locate
[14:32] <twb> bigDog: probably /etc/squid; IIRC it hooks into squid's post-hook doohickey
[14:32] <pythonirc101> landscape-client/common
[14:35] <bigDog> how do i enable root login?
[14:35] <twb> bigDog: set priority=low during install, and pick "yes" when prompted
[14:36] <twb> bigDog: otherwise I *think* you can simply run "passwd" as root
[14:36] <bigDog> i'll try that
[14:39] <bigDog> that worked!
[14:50] <bigDog> interesting... CTRL + ALT + DEL will reboot an ubuntu server at the login prompt - yet shutdown -r now requires root privaleges...
[14:51] <Pumpkin-> bigDog: CTRL-ALT-DEL requires physical console access. Shutdown doesn't. I think thats the logic on things like that.
[14:54] <bigDog> i get that, guess when your dell poweredge 2850 is in a rack in a locked room with no keyboard attached - a non sysadmin has a problem rebooting the thing
[14:55] <patdk-wk> heh, contrl-alt-del will not reboot my servers
[14:56] <patdk-wk> they all have a keyboard password lock on them
[14:56] <patdk-wk> keyboard will not work, without the password
[14:57] <bigDog> opensuse 11.4 has NOTHING on ubuntu 11.04!
[14:57] <bigDog> can't believe i put up with that crap
[15:47] <bigDog> linux is case sensitive right? /usr/bin/myProgram is different to /usr/bin/MyProgram
[15:48] <patdk-wk> depends on the fs used, but basically yes
[15:48] <bigDog> ext4
[15:51] <bigDog> what does this mean at login? System informaton disabled due to load higher than 2.0? CPU is running beyond 100%?
[16:01] <zoopster> bigDog: yup
[16:02] <bigDog> hmmm what command shows system load
[16:04] <zoopster> bigDog: I use "top"
[16:04] <Pici> uptime will show it as well.
[16:10] <bigDog> 99.8%id = idle?
[16:10] <Pici> Yes.
[16:11] <bigDog> might put 2 more GB in the box - seems unstable atm
[16:11] <shauno> that text is a little misleading; it doesn't mean the load is too high when it prints that message.  it means the load was too high when the motd was regenerated (iirc)
[16:13] <bigDog> can i ask 1 more final question?
[16:13] <Pici> Ask as many questions as you want.
[16:14] <bigDog> i need to forward some ports to masqueraded IP addresses. what iptables syntx can achieve this?
[16:14] <bigDog> *syntax
[16:16] <bigDog> for example: a packet arrives on eth0 (port 8888) it needs to be forwarded to 192.168.0.18 on eth1
[18:07] <hobbsc> i had a server running server 10.04, did do-release-upgrade to 10.10 without any problems, then to 11.04 and my networking stopped.  `ip link show` states that all interfaces are down and 'lshw -class network' shows all links down even when i plugin each interface one by one (i get link lights on most interfaces)
[18:08] <hobbsc> any ideas as to why ubuntu isn't catching those links?
[18:08] <hobbsc> the nic that this was connected with is a pci nic and it won't give me link lights anymore, so i'm trying to work off embedded nics
[18:08] <hobbsc> i set all interfaces for dchp, hoping one of them would pick something up, but no dice
[18:16] <ddw17> Hello...anyone have experience w/ vsftpd on an Ubuntu server that could help me real quick? Uploads are failing from the client and I'm not sure how to configure
[18:24] <RoyK> hobbsc: sounds like a bad driver to me
[18:24] <ddw17> hm
[18:25] <ddw17> i've gotten this far
[18:25] <ddw17> maybe?
[18:25] <ddw17> whoops, nevermidn
[18:25] <alamar> someone asked earlier what to use for central management for a bunch of ubuntu servers (to keep them in synch in regards of installed packages and updates etc.) I'd be interested in that too, and further what's a good way to automatically install security updates? (cron-apt?)
[18:27] <alamar> (is puppet a good idea for central management?)
[18:29] <hobbsc> RoyK: i think it's my persisten rules in udev, actually.  chasing that one down right now
[18:29] <hobbsc> alamar: we've been looking at both puppet and cfengine here at work, i think both are decent
[18:30] <RoyK> hobbsc: what does ifconfig -a tell you?
[18:30] <hobbsc> RoyK: not what it should :D
[18:30] <RoyK> lol
[18:31] <hobbsc> shows me the interfaces in question are up, lshw and ip link shows differently
[18:31] <hobbsc> i think i'm on the right track here, though
[18:31] <RoyK> hobbsc: but does it show eth0/eth1 etc, or does it skip a few?
[18:31] <hobbsc> it shows them all
[18:31] <hobbsc> as well as my virtual interfaces
[18:32] <hobbsc> does lshw list devices in order?
[18:32] <RoyK> hobbsc: if ifconfig shows from eth0 and on, it shouldn't be udev
[18:34] <hobbsc> RoyK: noted
[19:08] <Pici> Anyone happen to know if its possible to move the location of byobu's status notifications?
[19:08] <Pici> Or change their order?
[20:21] <resno> lxc is the approved hypervisor right?
[21:04] <xcalibur> hello guys, can someone help me on a mail server wich is not recieving any mails?
[21:06] <The-Kernel_> xcalibur, what email deamon?
[21:06] <xcalibur> postfix
[21:06] <xcalibur> i can telnet to my domain on port 25 and port 110
[21:07] <The-Kernel_> run this command, paste the output to pastebin and send it:
[21:07] <The-Kernel_> tail -f /var/log/mail.err & tail -f /var/log/mail.info
[21:07] <The-Kernel_> when that is running, try to replicate the issue and put the output into pastebin
[21:08] <xcalibur> one sec then ;)
[21:09] <xcalibur> nothing is logged, only old output......
[21:10] <xcalibur> maybe my records arent good?
[21:10] <The-Kernel_> try another command
[21:10] <The-Kernel_> tail -f /var/log/mail.log
[21:10] <xcalibur> ps i'm just a amateur
[21:10] <The-Kernel_> thats fine
[21:10] <The-Kernel_> you gotta learn somehow
[21:12] <xcalibur> http://pastebin.com/c4SBpdyy
[21:12] <xcalibur> thats right
[21:13] <xcalibur> by the way, when sending mail internaly (to me@localhost) it works good
[21:13] <xcalibur> but when sending mail from the outsite (in this example from gmail) it doesnt work like it is supposed to be :
[21:15] <The-Kernel_> xcalibur, that indicates incorrect MX settings usually
[21:16] <k3strel> xcalibur, when telneting to server is that from inside the firewall? Or publicly?
[21:17] <xcalibur> http://www.mxtoolbox.com/SuperTool.aspx?action=mx%3ahoornfive.nl
[21:17] <xcalibur> from inside but with the outside adres (hoornfive.nl)
[21:18] <k3strel> I suspect your firewall is blocking 25/110.
[21:18] <xcalibur> ill try from outside, one sec please
[21:18] <k3strel> my telnet to 25 is not connecting.
[21:18] <BrixSat> i need some help, i have a server with lamp, and i have defined 3 users each one has its site on their public_html but apache keeps geting 403 :S what permissions should the folder have and apache group should have the user in it?
[21:19] <xcalibur> ok telnet to port 110 works
[21:19] <xcalibur> telnet to port 25 doesnt :(
[21:20] <The-Kernel_> BrixSat, drwxr-xr-x
[21:20] <xcalibur> can i test if port 26 is closed by my provider?
[21:20] <BrixSat> The-Kernel_:  and about groups?
[21:20] <xcalibur> port 25 i mean
[21:20] <The-Kernel_> BrixSat, 755
[21:20] <The-Kernel_> BrixSat, any group should work
[21:21] <BrixSat> The-Kernel_:  but with 755 if the user installs like joomla on it then php wont be able to create folders or files
[21:21] <guntbert> xcalibur: a word of caution: please don't run a publicly vailable mail server when you have no experience
[21:21] <guntbert> ISPs close port 25 with good reasons :)
[21:22] <xcalibur> yes i understand
[21:22] <xcalibur> port 25 is for sending out mails....
[21:22] <xcalibur> ?
[21:22] <The-Kernel_> BrixSat, then that means you'll need to change it to 775 or even 777
[21:22] <The-Kernel_> BrixSat, its a security risk, but if thats what it takes
[21:22] <BrixSat> The-Kernel_:  Not the best option 777 :(
[21:22] <xcalibur> i'm just using it for programming (php)
[21:23] <BrixSat> do you know how does cpanel manages users and groups?
[21:23] <xcalibur> my server is not always available and i added a few limitations for sending mails
[21:23] <The-Kernel_> BrixSat, probably googling for what joomla wants/needs is best
[21:23] <guntbert> xcalibur: then keep it strictly within your network
[21:25] <BrixSat> The-Kernel_:  regular cpanels for hosting takes files to 644 and folders to 755 and it works but i dont know the users and groups (who bellongs to who)
[21:26] <xcalibur> guntbert i understand the risks i take
[21:26] <xcalibur> guntbert: but i still want to be able to receive mail from outside my domain
[21:27] <guntbert> xcalibur: do you also understand the risks the internet community takes? (look up under "mail relays") :-)
[21:27] <xcalibur> yes i understand
[21:27] <xcalibur> im working in the email business and know how bad spam is!
[21:28] <xcalibur> trust me ;)
[21:29] <xcalibur> but i got smtp working, only pop3 is not working atm
[21:29] <xcalibur> and that port should not be closed by my isp
[21:34] <The-Kernel_> BrixSat, all mine are owned by root
[21:35] <xcalibur> can you guys please help me on the "not recieving mail" issue?
[21:36] <BrixSat> The-Kernel_:  but that is not very secure
[21:36] <BrixSat> and about uploading files trought ftp, can the user make it?
[21:40] <BrixSat> The-Kernel_:  files at 764 i get on firefox 403 - Forbidden :( (file is owned by user1 and group www-data
[22:30] <xp2> Holla, Is anyone here ever played with SNMP on Ubuntu Server 10.10?
[22:32] <xp2> Im trying to setup a monitoring solution for my asterisk with SNMP trap but I always get: Cannot find module (SNMPv2-TC) when I try to connect with snmpwalk. I tried to google this error with out any luck!