[02:31] <digitalstimulus> does anyone know how to setup a networked update server for apt in ubuntu 10.04?  would it be setup as an apt repository?
[02:47] <qman__> digitalstimulus, you can set up an apt repository, but I prefer a squid apt proxy
[02:47] <qman__> less maintenance, less disk space
[02:47] <qman__> easier to set up clients
[02:47] <qman__> no client setup if you do it transparent
[05:02] <Delerium_> Hi Guys, I'm looking to install an IRC server for a new project, there is alot of them out there, anyone would have a suggestion of which one to use?
[05:44] <dougb> i'm having an issue assinging a subdomain in apache2 on ubuntu, i set up a subdomain called showtogo in /etc/apache2/sites-available/ and ran 'a2ensite showtogo' and set up the A record for showtogo, but going to the subdomain showtogo just goes to the main site pointed at the www subdomain
[05:45] <dougb> is there a way to troubleshoot this using a utility on ubuntu? i have another subdomain and i pretty much copied the same sites-available file and changed it appropriately, but it doesn't seem to be working
[05:45] <dougb> i'm on linode if that makes any difference
[05:50] <SpamapS> dougb: the <VirtualHost> tag that a request gets assigned to is determined by the ServerName field.
[05:50] <SpamapS> dougb: so did you actually add a <VirtualHost> section with a ServerName of 'showtogo.whatever.domain.com' ?
[05:51] <dougb> i did
[05:52] <dougb> let me put it in a pastebin
[05:53] <jmarsden> dougb:   sudo apache2ctl -S    should get you a summary of currently configurede vhosts on your server... might be quicker? :)
[05:53] <dougb> thanks jmarsden and SpamapS , i got it working
[05:53] <dougb> idk how i got it working, but it's working now :)
[12:26] <sw0rdfish> hey hey hey
[12:26] <sw0rdfish> just bought a vps with ubuntu 10.04 LTS
[12:26] <sw0rdfish> is it possible that nano doesn't exist in it?
[12:27] <sw0rdfish> i tried installing it and package cannot be found
[12:29] <RoyK> it certainly should be there
[12:30] <RoyK> perhaps they're using stripped in-house repositories?
[12:30] <RoyK> check /etc/apt/sources.list
[12:33] <sw0rdfish> with what?
[12:33] <sw0rdfish> with vi
[12:34] <sw0rdfish> damn i hate it but i guess i have no choice
[12:34] <sw0rdfish> vipw is a good command man
[12:34] <sw0rdfish> i can create a user right there! right?
[12:38] <sw0rdfish> i'm connected through ssh
[12:38] <sw0rdfish> it should be there right
[12:40] <RoyK> you'll need to use vi to change it, yes
[12:40] <RoyK> but you can view it with cat or less or more
[12:42] <RoyK> or just wget the nano package and install it with dpkg -i
[12:42] <RoyK> http://packages.ubuntu.com/lucid/nano
[12:42]  * RoyK is a vim addict, but can easily understand that some people might want to use nano
[12:48] <sw0rdfish> RoyK, i see
[12:48] <sw0rdfish> vi is vim?
[12:48] <sw0rdfish> man its complicated for us beginners :)
[13:01] <sw0rdfish> well it turns out i needed the argument
[13:01] <sw0rdfish> -y
[13:01] <sw0rdfish> with apt-get install (-y)
[13:01] <sw0rdfish> now adding a user
[13:19] <RoyK> sw0rdfish: vim is "vi improved"
[13:19] <RoyK> sw0rdfish: run vimtutor :)
[13:20] <RoyK> sw0rdfish: thinkgeek.com even has a coffee cup with vim cheat sheet :)
[13:21] <RoyK> http://www.thinkgeek.com/homeoffice/mugs/7bbe/
[13:25] <RoyK> "real sysadmins don't use nano"
[13:26] <sw0rdfish> oh!
[13:27]  * RoyK er en EKTE sysadmin :D
[14:02] <Refael> hola, am attempting to prove WAN ports open with "Loopback" if anybody can assist por favor
[14:03] <Refael> the system uses a DSL modem & ufw & the modem & Firewall have already proven configured
[14:04] <sw0rdfish> i'm reading the user management chapter in a linux book to handle my 10.04 LTS vps :)
[14:06] <Refael> is there a Ubuntu 11.04 Server users manual?
[14:06] <Refael> or a Networking manual?
[14:07] <RoyK> !guide
[14:08] <RoyK> change the url to 11.04 to get the one for your version
[14:08] <RoyK> that doesn't contain everything about linux, though, and I doubt such a document exist
[14:09] <RoyK> Refael: what sort of wan connection?
[14:09] <Refael> what do you mean exactly RoyK?
[14:09] <RoyK> sw0rdfish: where did you get this VPS?
[14:10] <RoyK> Refael: is it a DSL connection?
[14:10] <Refael> si senor
[14:10] <RoyK> pppoe? pppoa? bridged?
[14:10] <Refael> ppoe
[14:11] <RoyK> so, have you setup pppd to handle it, or does the modem have a router to do this?
[14:11] <Refael> pppd?
[14:11] <Refael> not certain
[14:11] <RoyK> can you connect to the net from the server?
[14:11] <RoyK> if so, never mind :)
[14:12] <Refael> it is a "Loopback" problem within the local network. the exterior IPAddress reflects the WAN is closed
[14:13] <qman__> loopback is alocal address and is pretty irrelevant to getting on the internet
[14:13] <qman__> maybe you want routeback?
[14:14] <RoyK> !routeback
[14:14] <Refael> it is called "Loopback" according to OpenSim Grid developers
[14:14] <Refael> it pertains hosting a Server, not simply surfing the net
[14:15]  * RoyK has no idea what that might be
[14:15] <Refael> and it actually pertains connecting a local Server Instance to a Robust Server Instance
[14:15] <qman__> routeback is when you need to route traffic in from one interface, back out that same interface
[14:15] <qman__> it's usually used as a workaround for letting applications set for external use work internally
[14:16] <Refael> go to page http://www.osgrid.org/index.php/regionconnect & you shall see your personal exterior IPAddress
[14:16] <Refael> it is perhaps "Routeback" then
[14:16] <Refael> though they reference it to be called "Loopback"
[14:17] <qman__> for example, I have it set up so that when I ssh my external IP from inside my LAN, it gets routed back to my ssh server, instead of simply ignored
[14:19] <Refael> not exactly certain what you signify. that is kinda vague
[14:20] <Refael> can you describe what that is outside a private example?
[14:20] <qman__> ok
[14:21] <RoyK> Refael: what's your IP address?
[14:21] <qman__> so, you have a LAN with hosts, some servers and some clients
[14:21] <Refael> 192.168.0.25
[14:21] <qman__> and then you have a router to the internet, which forwards ports to those servers
[14:21] <Slyboots> Im curious, is there a way to install software in the install enviroemnt on ubuntu
[14:21] <RoyK> Refael: heh - you're behind a NATing router, then
[14:22] <Refael> it is actually a modem, though ok
[14:22] <Slyboots> im setting up a SSD, heard that its best to use GPT because of partition alignment
[14:22] <qman__> and on the client from inside that same LAN, you want to connect to your website hosted on one of those servers
[14:22] <qman__> but you don't want to have to go to 192.168.x.x every time, you just want to go to mysite.com
[14:22] <RoyK> Refael: what's the IP reported on the server?
[14:22] <RoyK> by ifconfig
[14:22] <qman__> so you set up rules on the router which re-route the traffic from clients on the LAN back to servers on the LAN
[14:22] <Refael> http://www.osgrid.org/index.php/regionconnect?
[14:23] <RoyK> Refael: just run 'ifconfig' on the server
[14:23] <RoyK> your own server
[14:23] <Refael> 76.242.191.0
[14:23] <Refael> ?
[14:23] <RoyK> .0?
[14:23] <Refael> is what needs to report WAN
[14:23] <RoyK> what netmask?
[14:24] <RoyK> but then - I guess your server is doing the NAT magick - iptables or just ufw? btw, does ufw have nat these days?
[14:24] <qman__> I think it does
[14:24] <Refael> does it?
[14:24] <RoyK> it doesn't on 10.04, that's for sure
[14:24] <Refael> perhaps the ufw needs to be configured
[14:24] <qman__> I have the routeback rule I use in iptables, but I don't know if/how you could do it in ufw
[14:24] <RoyK> you have to hack that into iptables rules
[14:25] <RoyK> Refael: it's simple port forwarding in iptables
[14:25] <Refael> how is that configured?
[14:25] <qman__> $CMD -A FORWARD -o eth1 -d $IP -j ACCEPT
[14:25] <qman__> $CMD -A FORWARD -i eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
[14:25] <qman__> where $CMD is /sbin/iptables, $IP is your external IP, and eth1 is your LAN interface
[14:26] <RoyK> iirc something like iptables -t nat -I POSTROUTING -d 1.2.3.4 --dport 22 --to 192.168.x.x:22
[14:26] <RoyK> qman__: yeah, that's basic NAT setup
[14:26] <RoyK> erm - no - it's not :P
[14:26] <Refael> can you explain that with more clarity por favor?
[14:26] <qman__> yeah
[14:26] <qman__> it's a hack
[14:26] <qman__> but it gets the job done
[14:27] <RoyK> qman__: it doesn't do any NATing
[14:27] <qman__> nope, just routes
[14:27] <qman__> because it already knows how to route from the external IP
[14:27] <RoyK> you'll need something like -j MASQUERADE for that
[14:27] <qman__> it just needs to know to do it form inside
[14:28] <RoyK> no... you'll need masquerading or some NAT rules
[14:28] <qman__> well, I have a standard masquerading setup already
[14:28] <RoyK> as in http://billauer.co.il/ipmasq-html.html
[14:28] <qman__> that's just the part that enables routeback
[14:28] <RoyK> ok
[14:29] <RoyK> what exactly are you trying to achive with this "routeback"?
[14:29] <RoyK> just allowing external machines to connect to your pc?
[14:29] <qman__> when I ssh qman.strangled.net from inside my LAN, it works
[14:29] <Refael> am attempting to connect a local to external
[14:29] <Slyboots> So.. anyone know how I can install something like PArted in the install enviroment?
[14:29] <qman__> just as it does from the rest of the internet
[14:29] <Refael> local server instance to external server instance
[14:30] <qman__> Slyboots, choose to drop to a shell, apt-get install parted
[14:30] <Refael> though the external server instance relates what the internal server instance displays & stores
[14:30] <RoyK> Refael: so long the connection is initiated from the inside, it shouldn't be a problem
[14:30] <Slyboots> qman__, Aye I tried that but it doesnt see apt-get as a valid command
[14:30] <Refael> it needs to be "Routeback"
[14:30] <RoyK> then wtf is routeback?
[14:30] <Refael> when doing a nmap to the external address, it returns "closed"
[14:31] <RoyK> is it simply port forwarding?
[14:31] <Refael> no
[14:31] <qman__> no, it works with port forwarding
[14:31] <qman__> but I'm not sure that's what he needs
[14:31] <Refael> it is "looping" local to external to local to external
[14:31] <Refael> it is
[14:31] <qman__> masquerading router with port forwards, from the internet you can access the server from one address
[14:31] <Refael> the OpenSim personelle just call it "Loopback"
[14:31] <RoyK> please elaborate
[14:32] <qman__> routeback allows accessing that server from inside with the same address
[14:32] <Refael> join OpenSim
[14:32] <qman__> something that doesn't normally work
[14:32] <Refael> :P
[14:32] <qman__> because the router drops the traffic, because it thinks the LAN should just pick it up
[14:32] <Refael> ok, a local Server Instance connects to a Exterior Robust Server
[14:33] <Refael> so RoyK doesn't comprehend the scenario though wishes to dispute the resolve?
[14:33] <Refael> >.<
[14:33] <qman__> Slyboots, that's probably a busybox, choose recovery mode to get a full shell
[14:34] <RoyK> Refael: please, I would really like to help, but you haven't really explained how this is supposed to work
[14:34] <Slyboots> <, okay
[14:34] <RoyK> 15:32 < Refael> ok, a local Server Instance connects to a Exterior Robust Server
[14:35] <Refael> can you research OpenSim a lil RoyK?
[14:35] <RoyK> Refael: no, I have more interesting things to do, sorry
[14:35] <Refael> have already explained the scenario
[14:35] <Refael> what is it you do not quite comprehend par example?
[14:36] <RoyK> if it is routeback you need, it should work well, if not, there's a workaround with either the local hosts file or split-horizon dns
[14:37] <Refael> if "Routeback" has not proven configured & nmap results closed port, then why should it work?
[14:38] <RoyK> if nmap results in a closed port, you probably need port forwarding at the router
[14:38] <qman__> yeah
[14:38] <Refael> already established actually
[14:38] <qman__> the port should be open from the internet whether or not routeback is configured
[14:38] <Refael> though am testing nmap on exterior address
[14:38] <RoyK> Refael: pastebin the config - iptables-save is good
[14:38] <Refael> outgoing address
[14:38] <Refael> not internal address
[14:39] <RoyK> Refael: so you nmap the external address from the internal network?
[14:39] <qman__> routeback is only a hack for internal access to internal resources from the external address
[14:39] <RoyK> if so, you need routeback
[14:39] <Refael> yes, need routeback
[14:39] <Refael> si
[14:39] <Refael> *smiles*
[14:40] <qman__> well, the two lines I posted above work on top of a working masquerading, port forwarding firewall
[14:40] <qman__> not sure ufw is capable of it
[14:40] <Refael> what is a working masquerading?
[14:40] <qman__> masquerading is also known as NAT overloading, or just NAT to some
[14:41] <RoyK> Refael: you probably have one already, since you can use the network like you do now
[14:41] <qman__> it is what allows you to share one internet IP with multiple devices
[14:42] <RoyK> Refael: if 76.242.191.0 really is your IP address, then you're not running Linux on that box :P
[14:42] <sw0rdfish> ok so i want to add user sw0rdfish with admin privileges almost as root, i'd first do: groupadd admin
[14:43] <RoyK> sw0rdfish: nope, group admin exists already
[14:43] <RoyK> sw0rdfish: useradd -m sw0rdfish
[14:43] <RoyK> etc
[14:43] <Refael> that is what the external shows for
[14:43] <sw0rdfish> and then go to /etc/group and make it: admin:x:1
[14:43] <sw0rdfish> right?
[14:43] <RoyK> then edit /etc/group and add sw0rdfish to that group
[14:43] <Refael> where else would external be displayed?
[14:44] <RoyK> Refael: pastebin 'ifconfig -'
[14:44] <RoyK> Refael: pastebin 'ifconfig -a'
[14:44] <sw0rdfish> royk?
[14:44] <qman__> sw0rdfish, or 'useradd sw0rdfish admin'
[14:44] <qman__> err
[14:45] <RoyK> sw0rdfish: the group 'admin' exists already - installation created it. you just need to add your user to that group
[14:45] <qman__> 'adduser sw0rdfish admin'
[14:46] <Refael> http://pastebin.com/HEN2eSyq
[14:46] <RoyK> qman__: man adduser
[14:46] <RoyK> Refael: then you have a NAT router in the modem
[14:47] <RoyK> http://paste.ubuntu.com/614183/
[14:48] <sw0rdfish> oh
[14:52] <sw0rdfish> RoyK, how come adm is set like this: adm:x:4
[14:52] <sw0rdfish> level 4 is high enough?
[14:52] <RoyK> 4 is the group id
[14:52] <sw0rdfish> what if i move it to group sys:x:3
[14:52] <RoyK> and adm is the wrong group, admin is right
[14:52] <sw0rdfish> oh right
[14:52] <sw0rdfish> i checked /etc/nano there is no "admin"
[14:52] <Slyboots_> 22 hours to build the array.. jesus x.x
[14:53] <RoyK> sw0rdfish: edit /etc/group and add tou username at the end - the syntax is groupname:x:groupid:user1,user2,...
[14:53] <RoyK> sw0rdfish: pastebin /etc/sudoers
[14:53] <qman__> sw0rdfish, grep admin /etc/group
[14:53] <qman__> mine is 112
[14:54] <sw0rdfish> you mean pastebinit
[14:54] <qman__> Slyboots_, that's nothing, my last array took three days to build
[14:54] <RoyK> sw0rdfish: that works as well
[14:54] <RoyK> !pastebin
[14:54] <Slyboots_> qman__, brutal
[14:54] <Slyboots_> WEll the reshape would take 5 days..
[14:55] <Slyboots_> So its a speed-boost
[14:55] <Refael> did everybody get the pastebin post?
[14:55] <qman__> did you adjust the kernel settings?
[14:55] <RoyK> Refael: which one?
[14:56] <Refael> http://pastebin.com/HEN2eSyq
[14:56] <Refael> ifconfig -a
[14:56] <RoyK> Refael: yes, and as I told you, you're behind a NAT router
[14:56] <Refael> yes
[14:56] <Refael> that is veritable
[14:56] <qman__> Slyboots_, /proc/sys/dev/raid/speed_limit_min and /proc/sys/dev/raid/speed_limit_max
[14:56] <RoyK> Refael: so you'll need to configure that to do forwarding for you
[14:57] <Refael> it already is supposedly
[14:57] <RoyK> which port?
[14:57] <qman__> the port is closed, so either the router is not set, or your server isn't listening on the port
[14:57] <RoyK> my nmap scan only shows port 113/tcp open
[14:57] <Refael> the forwarding is 9000 to 9010/tcp & /udp
[14:58] <Refael> then would not even be in IRC
[14:58] <RoyK> Refael: http://paste.ubuntu.com/614191/
[14:58] <Slyboots_> qman__, ?
[14:58] <RoyK> Refael: the IRC connection is initiated from the inside - no need for port forwarding to do that
[14:59] <sw0rdfish> root ALL=(ALL:admin) ALL
[14:59] <sw0rdfish> is that right?
[14:59] <sw0rdfish> in /etc/sudoers
[14:59] <qman__> Slyboots_, http://www.cyberciti.biz/tips/linux-raid-increase-resync-rebuild-speed.html
[15:00] <qman__> of course in ubuntu you'll have to do it a little different, echo 200000 | sudo tee /proc/sys/dev/raid/speed_limit_min
[15:00] <RoyK> sw0rdfish: looks good, but then, grep ^admin /etc/group
[15:00] <sw0rdfish> ok mate
[15:01] <Refael> Roy, what does that signify then?
[15:02] <Refael> already ascertained the port is not open to the public for reasons not certain
[15:02] <RoyK> Refael: possibly that (a) you need a TCP/IP 101, or (b) the router isn't configured to forward those ports to anything that listens
[15:02] <Refael> thought that was udp?
[15:03] <RoyK> how did you configure the router?
[15:03] <sw0rdfish> heh i just added the group admin and added my user to it and to sudo and edited /etc/sudoers to have this:    root ALL=(ALL:admin:sudo) ALL
[15:03] <RoyK> does it have a fancy gui?
[15:04] <Refael> RoyK, yes, it is a guifoo that uses internal address to forward ports, though not external
[15:04] <RoyK> sw0rdfish: the admin group should have been there in the first place - if not, add it, add your user to it, either in the file, or with 'usermod -G admin username'
[15:05] <RoyK> Refael: try adding a forward to port 22 to your server - so that we can see if that works
[15:05] <sw0rdfish> :)
[15:05] <RoyK> tcp, that is
[15:05] <Refael> the answer is right there. it does port forwarding to internal address, not the external
[15:05] <RoyK> sw0rdfish: in sudoers, you will want something like this '%admin ALL=(ALL): ALL'
[15:06] <Refael> is the reason that routeback is necessary
[15:06] <RoyK> Refael: if so, that's something you'll have to do on the router, which AFAICT, is running OpenBSD
[15:07] <Refael> ?
[15:07] <Refael> there really is no router
[15:07] <RoyK> Refael: do you know anything about RFC1918 IPs?
[15:08] <RoyK> http://en.wikipedia.org/wiki/Private_network
[15:08] <Refael> the modem suggests, "Turn NAT *off *on" & Port Forward "ports = ... to internal address"
[15:08] <Refael> RoyK, not yet
[15:08] <Refael> am willing to learn
[15:08] <RoyK> Refael: read up about that
[15:08] <RoyK> !rfc1918
[15:08] <RoyK> read the wikipeda article above
[15:09] <Refael> the wiki article references such?
[15:11] <RoyK> Refael: or google for an introduction in IP addressing - with an address of 192.168.x.x, you will _never_ be able to reach the internet unless some router is doing NAT for you
[15:11] <RoyK> beleive me on that
[15:14] <Refael> RoyK, you are suggesting that the issue results from routing the internal IPAddress to .0.25 au lieu the .0.1 for the router?
[15:14] <Refael> thought the result would be a IPAddress "Squatting" effect
[15:15] <Refael> there is a Router doing NAT
[15:17] <RoyK> Refael: it's just a NAT router doing its job
[15:17] <RoyK> Refael: you'll need to configure that
[15:17] <RoyK> Refael: and the NAT router is _not_ your linux machine
[15:18] <Refael> can you explain por favor?
[15:18] <RoyK> sw0rdfish: did you figure it out?
[15:18] <RoyK> Refael: I already did, several times
[15:19] <RoyK> Refael: use google - learn a bit about how IP routing works and what private IP addresses are and how they are used
[15:19] <Refael> It is common for packets originating in private address spaces to be misrouted onto the Internet. Private networks often do not properly configure DNS services for addresses used internally and attempt reverse DNS lookups for these addresses, causing extra traffic to the Internet root nameservers.
[15:19] <RoyK> Refael: so?
[15:20] <Refael> is that the problem wherein the situation might be resolved to reconfigure the DHCP to multiple addresses?
[15:21] <Refael> actually thought it would help to limit it to .0.25
[15:21] <RoyK> Refael: You have a NATing router in front of your server/pc. Also, keep in mind that you have a NATing router in front of your server/pc. Don't forget the NATing router, it's an OpenBSD thing. And no, you can't reach the internet from a private address, however hard you try
[15:21] <Refael> so used .0.25 for the address, then .0.1 for the Gateway
[15:21]  * RoyK gives up
[15:22] <Refael> am using the internet ahora
[15:22] <RoyK> and that's a shame
[15:23] <Refael> por que?
[15:24] <RoyK> sorry, kid, but I can't do an entire IP 101 on IRC - google for it - learn how addressing works - then - when you're done - read it again
[15:27] <Refael> soy hombre verdadero
[15:32] <Refael> what is RFC 1483?
[15:32] <Refael> could it potentially resolve the situation?
[15:35] <RoyK> "Multiprotocol Encapsulation over ATM Adaptation Layer 5" - if that can help you get through an unknown NAT gateway, then go ahead :)
[15:37] <RoyK> sw0rdfish: wb
[15:37] <sw0rdfish> thanks buddy
[15:38] <RoyK> sw0rdfish: where did you get this VPS?
[15:39] <sw0rdfish> btw i'm not sure but i think i got hacked a few minutes ago
[15:39] <sw0rdfish> my laptop shut off by itself and didn't wanna start again, i removed ethernet cable and power and externall hdd cables and then it accepted to power up haha
[15:39] <sw0rdfish> RoyK, uhhh
[15:40] <sw0rdfish> xchat2 :P
[15:40] <RoyK> :)
[15:40] <sw0rdfish> is my client version
[15:40] <RoyK> you have to do something rather stupid to get a modern linux distro hacked
[15:41] <RoyK> sw0rdfish: download a fresh copy of chkrootkit from http://www.chkrootkit.org/ and compile and run it - it should find irregularities...
[15:42] <RoyK> if they exist, that is
[15:43] <sw0rdfish> :)
[15:43] <sw0rdfish> yes sir,
[15:43] <sw0rdfish> books like Beginning Linux Command Line
[15:44] <sw0rdfish> are good to get me started right?
[15:44] <sw0rdfish> to change passwd of a user i just go like passwd sw0rdfish?
[15:44] <sw0rdfish> while i'm logged in as root that is
[15:45] <RoyK> passwd sw0rdfish
[15:45] <sw0rdfish> then it sais
[15:45] <sw0rdfish> Enter new UNIX password
[15:45] <RoyK> yes
[15:45] <sw0rdfish> thats for sw0rdfish ?
[15:45] <sw0rdfish> :)
[15:45] <RoyK> yes
[15:45] <sw0rdfish> thanks
[15:45] <RoyK> it won't echo any characters while you type
[15:47] <RoyK> sw0rdfish: the one-liner for downloading and running chkrootkit is
[15:47] <RoyK> wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz ; tar xzf chkrootkit.tar.gz ; cd chkrootkit-0.49/ ; mkae ; sudo ./chkrootkit -q
[15:47] <RoyK> wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz ; tar xzf chkrootkit.tar.gz ; cd chkrootkit-0.49/ ; make ; sudo ./chkrootkit -q
[15:47] <RoyK> even
[15:48] <tohava> Question, does CUDA run on the new Amazon EC2 Ubuntu HVM image?
[15:50] <RoyK> tohava: I don't see why not - but I guess the best would be to ask Amazon
[15:50] <RoyK> HVMs suck, btw, i/o speeds are very low
[15:50] <tohava> RoyK, mmm... any recommended IRC channel where I can ask them? Or should I just use the forum?
[15:51] <RoyK> dunno - I don't use Amazon, nor do I use Xen much anymore
[15:51] <RoyK> someone at ##xen might know
[15:52] <Patrickdk> heh? just select one of the gpu instance types
[15:53] <tohava> Patrickdk, we're already using the one with amazon linux
[15:53] <tohava> we are trying to find out if ubuntu works too or not
[15:53] <tohava> naturally, we will be running on GPU instance
[15:53] <Patrickdk> should be no difference
[15:53] <Patrickdk> besides attempting to get the version of cuda you want, installed
[15:54] <tohava> Patrickdk, that is it, the amazon linux comes with CUDA driver installed.
[15:54] <RoyK> Patrickdk: it may be a difference - redhat etc runs as PVMs, whereas ubuntu runs as a HWM
[15:54] <tohava> I hope there won't be any problems with Xen when trying to install CUDA driver manually on ubuntu image
[15:55] <Patrickdk> I dunno that you can do gpu with pvm
[15:55] <Patrickdk> last I looked at it, wasn't possible
[15:56] <RoyK> why not?
[15:56] <Patrickdk> cause pvm doesn't emulate a full machine
[15:56] <Patrickdk> where with hwm you do pci passthough for the gpu
[15:56] <RoyK> you can easily do pci passthrough with PVMs
[15:56] <Patrickdk> hmm? I thought xen didn't support at, atleast in 3.0
[15:57] <RoyK> sorry - I may be wrong - I don't know Xen that well
[15:57] <Patrickdk> it's been awhile since I used xen, since I've been converting away from it
[15:57] <RoyK> anyway - I/O with a Xen HWM, tested with Ubuntu, certainly sucks rather badly
[15:57] <Patrickdk> but I thought it was hwm only for passthough, maybe changed these days, but dunno how *updated xen* ec2 uses, doubt it's horribly new
[16:08] <RoyK> IMHO the HVM/PVM model is rather outdated
[16:15] <sw0rdfish> is should show like sw0rdfish@ip_address when i login to it right
[16:16] <sw0rdfish> frickin weird, what's the big deal with everyone saying
[16:16] <sw0rdfish> i shouldn't use it as root
[16:18] <Refael> Hola, can a "Loopback" or "Routeback" be configured locally per the Network Connections utility?
[16:19] <Refael> Am looking & referencing the ubuntu forum thread @ http://ubuntuforums.org/showthread.php?t=1429032
[16:19] <RoyK> Refael: did you read up about IP yet? how it works?
[16:19] <Refael> to a degree, yes
[16:19] <RoyK> go on
[16:19] <RoyK> you won't get anywhere without a router that can be configured
[16:19] <Refael> have not recieved a certificate for merit yet. Do you hand such out RoyK?
[16:19] <sw0rdfish> oh man
[16:20] <sw0rdfish> sw0rdfish, is using sh
[16:20] <sw0rdfish> i should've made it bash
[16:20] <sw0rdfish> right?
[16:20] <RoyK> chsh -s
[16:20] <sw0rdfish> got no idea how to
[16:20] <RoyK> or vi /etc/passwd
[16:20] <RoyK> chsh -s /bin/bash sw0rdfish
[16:20] <Refael> and am considering that the solution could be managed via the Network Connections utility, because the router is configured correctly
[16:21] <Refael> it is the way the Router recieved the Static IPAddress manually configured for it
[16:21] <RoyK> Refael: did you get into this OpenBSD router of yours to configure it?
[16:21] <Refael> si amigo
[16:22] <sw0rdfish> heh
[16:22] <sw0rdfish> what was last thing i said?
[16:22] <RoyK> this routeback must be configured in that router
[16:22] <RoyK> not on linux
[16:22] <Refael> RoyK, did you reference the forum page posted?
[16:22] <RoyK> in the router
[16:22] <Refael> no
[16:22] <Refael> look in the forum posting
[16:22] <Refael> it is configured locally within Linux
[16:22] <Refael> posteri or Priori the Router
[16:22] <Refael> *smiles*
[16:23] <RoyK> that doesn't match the ifconfig output you posted
[16:23] <sw0rdfish> royk sw0rdfish was set to be under sh shell, is that the reason when i login to it via ssh, i don't see sw0rdfish@ip_address like i did
[16:23] <sw0rdfish> with root
[16:23] <RoyK> sw0rdfish: type 'last -10'
[16:23] <RoyK> and you should see logins with hostnames
[16:24] <Refael> # The loopback network interface
[16:24] <Refael> auto lo eth0 eth1
[16:24] <Refael> iface lo inet loopback
[16:25] <Refael> references a configuration with the Network Connections Utility
[16:25] <RoyK> well, the pastebin output only showed eth0
[16:25] <sw0rdfish> RoyK, well, for sw0rdfish its: sw0rdfish pts/0                    Sat May 28....
[16:25] <Refael> it is because it was a ifconfig -a
[16:25] <RoyK> sw0rdfish: logging in locally on the console?
[16:25] <sw0rdfish> for root its: root pts/0     226.3.....    Sat May 28......
[16:26] <RoyK> Refael: ifconfig -a shows all interfaces, configured or not
[16:26] <sw0rdfish> well basically doing ssh sw0rdfish@ip_address
[16:26] <sw0rdfish> -p 22
[16:26] <sw0rdfish> but then again 22 is default but yeah
[16:26] <RoyK> sw0rdfish: a typical line in last is like this
[16:26] <RoyK> roy      pts/0        140.109-247-20.c Sat May 28 13:29   still logged in
[16:26] <RoyK> pts/0 is just the terminal, the hostname follows
[16:27] <sw0rdfish> i should change the shell from sh to bash
[16:27] <sw0rdfish> right?
[16:27] <RoyK> if you want to
[16:27] <RoyK> chsh -s /bin/bash sw0rdfish
[16:27] <sw0rdfish> yeah for sw0rdfish there is no hostname
[16:27] <Refael> http://pastebin.com/HEN2eSyq
[16:27] <Refael> is the pastebin, & it displays lo as well
[16:28] <RoyK> there is no eth1 there
[16:28] <RoyK> Refael: do you really have two network cards in this machine?
[16:28] <Refael> what you are suggesting is you don't ascertain how to configure Network Connections to reflect a loopback, nor comprehend what a loopback is, since you suggest it is called a "Routeback"
[16:29] <Refael> & Ubuntu admin call it a "Loopback"
[16:29] <RoyK> Refael: it's a loopback device, distinctively different from the routeback we were talking about earlier
[16:29]  * RoyK sends Refael back to school
[16:29] <Refael> well, the actual necessity is for a "Loopback" maneuver
[16:30] <sw0rdfish> RoAkSoAx, thanks a ton buddy
[16:30] <sw0rdfish> all is well :)
[16:30] <sw0rdfish> wohoo!
[16:31] <sw0rdfish> it was my own stupidity messing around :P
[16:31] <RoyK> sw0rdfish: did you mean RoyK ? ;)
[16:31] <sw0rdfish> i actually logged in to sw0rdfish from
[16:31] <qman__> sw0rdfish, /bin/sh is dash, so you probably want bash anyway
[16:31] <sw0rdfish> root
[16:31] <sw0rdfish> and yes i mean RoyK
[16:31] <sw0rdfish> xchat getting me in trouble again!
[16:31] <sw0rdfish> lol
[16:32] <sw0rdfish> well it didn't say anything, so how do i check if it changed to bash
[16:32] <RoyK> finger username
[16:32] <RoyK> or just 'grep ^username /etc/passwd'
[16:35] <sw0rdfish> cool
[16:36] <sw0rdfish> yep it has been changed, sir
[18:44] <RoyK> wtf - trying to install snmpd on 11.04
[18:44] <RoyK>  snmpd : Depends: libsnmp15 (>= 5.4.2.1~dfsg) but it is not going to be installed
[18:45] <druciferre> I am hoping someone can help me figure out why this is flooding my auth log:    CRON[17368]: pam_unix(cron:session): session closed for user root \n CRON[17782]: pam_unix(cron:account): could not identify user (from getpwnam(guest))
[18:52] <qronus> hello, i have a vps server with ubuntu 9.4 and i do not know how to upgrade; in #ubuntu they pointed me to https://help.ubuntu.com/community/EOLUpgrades but it does not seem to work (because of unmet dependencies)
[18:52] <qronus> any idea?
[18:53] <sw0rdfish> how do i check the users currently logged in and online
[18:54] <rewt> sw0rdfish: sudo w
[19:13] <awanti> Hi, i need some help to setup firewall for my office (plz. help i am not a linux expert). I am having 4 working pc one ubuntu server 10.04 running FTP and all pc are connected to shared internet.
[19:14] <awanti> My server having 2 NIC card. Now i want to route the internet from my server
[19:17] <qman__> while that's not too difficult to do, I very, very strongly recommend against running FTP to the internet on said server
[19:18] <qman__> hosting FTP to the internet at all is a bad idea, but on your router it's even worse
[19:19] <JanC> hosting FTP is okay for anonymous download access (although HTTP is probably a better solution for that)
[19:20] <awanti> actually i need to setup firewall and i want to share the internet.
[19:20] <SpaceBass> my 5T eSATA is showing up as a 2T drive on my 11.04 system  ? manufacturer says I need "port multiplier support" enabled ? which doesn't sound right since the only port multipliers I know are hardward devices
[19:21] <JanC> for a linux-newcomer it's probably best to use a specialized gateway distro
[19:21] <qman__> yeah
[19:22] <qman__> it's not that complicated, but doing it right requires significant knowledge of how IP works and some experience with what you need to guard against
[19:22] <JanC> ebox/zentyal is an Ubuntu-based solution that can used as a gateway, but OpenWRT might be an option too...
[19:22] <qman__> SpaceBass, the device probably uses one eSATA port, and is, itself, a port multiplier
[19:22] <qman__> so your disk controller would need multiplier support
[19:23] <SpaceBass> qman__, ahhh that would make sense
[19:23] <SpaceBass> my other option is usb 3.0, but when I plug it in, it starts sculling errors about a bad cable (tried 2 cables)
[19:23] <SpaceBass> assuming usb 3.0 is fully baked in 11.04, right?
[19:23] <qman__> not sure, but if your controller is showing up, probably
[19:24] <qman__> I'd look into which kernel versions added USB3
[19:24] <qman__> and compare
[19:24] <SpaceBass> note to self: using a drobo with linux is miserable
[19:25] <qman__> I thought drobo was supposed to be a NAS
[19:25] <qman__> with iSCSI or whatever, not eSATA or USB
[19:25] <JanC> USB3 should work in 11.04 and even older versions IIRC
[19:25] <qman__> because if it's not, that sort of defeats the whole self-contained redundant storage deal
[19:25] <SpaceBass> qman__, thats the "elite" model
[19:26] <qman__> and you might as well just get regular boxes and drives
[19:26] <SpaceBass> JanC, thanks ? must be some kind of motherboard or device issue then
[19:26] <SpaceBass> its self contained and redundant? just not usable on linux
[19:26] <JanC> although "USB3 support" doesn't mean all USB3 controller chips are supported maybe
[19:27] <qman__> yeah, if it's a new USB chip, it may not yet be supported correctly
[19:27] <JanC> linux was the first OS to support USB3 BTW  ;)
[19:27] <qman__> for practical reasons, ubuntu's kernel lags behind the latest and greatest
[19:27] <SpaceBass> figured what was the case
[19:28] <monaDeveloper> Hi
[19:28] <SpaceBass> its entirely likely that this chipset is too new? although its an intel H67
[19:28] <qman__> well, you need the exact USB3 controller model, not just the board chipset
[19:29] <monaDeveloper> Whenever I try to login to an ec2 instance I just can do that once and after that I get Permission denied (publickey)
[19:29] <qman__> because intel doesn't bundle USB3 controllers in with their chipsets
[19:29] <qman__> or at least didn't, they may now
[19:29] <JanC> "The Linux kernel has supported USB 3.0 since version 2.6.31, which was released in September 2009." --> from Wikipedia
[19:33] <SpaceBass> looking to see if I can determine which usb controller this thing is using
[19:34] <SpaceBass> Etron EJ168A
[19:35] <qman__> yep
[19:35] <qman__> new chip, no linux support as of 2.6.38
[19:36] <SpaceBass> seeing forum posts now
[19:36] <SpaceBass> humm
[19:36] <SpaceBass> thinking new motherboard
[19:36] <monaDeveloper> hello
[19:59] <monaDeveloper> Whenever I try to login to an ec2 instance I just can do that once and after that I get Permission denied (publickey)
[20:13] <monaDeveloper> Whenever I try to login to an ec2 instance I just can do that once and after that I get Permission denied (publickey)
[22:20] <annone> hi all
[22:22] <annone> people, I can not choose between Debian and Ubuntu Server, but I am inclined to US. What about stability of US?
[22:23] <annone> who can help me? and sorry for my english, I'm from Ukraine
[22:25] <annone> anybody in there?
[22:25] <annone> )
[22:27] <annone> hey! peoples!
[22:28] <annone> I NEED HELP!
[22:28] <annone> can u help me?
[22:32] <delinquentme> does "chmod 400 keypair.pen" change a publickey file to a private?
[22:32] <guntbert> delinquentme: no, certainly not
[22:33] <delinquentme> guntbert, hmmm silly aws tutorials are telling me that it would
[22:34] <guntbert> delinquentme: but it will protect your private key
[22:35] <guntbert> and so is a very important step
[22:36] <delinquentme> check. perhaps im using the wrong argument on my ssh command to specify a particular key?
[22:36] <delinquentme> "ssh -i specific_keyfile"
[22:37] <guntbert> delinquentme: does ping work now?
[22:38] <delinquentme> so i checked out the firewalls on AWS to ensure that i've got the correct ports .. however i've only got it spec'd out to use port 22
[22:38] <delinquentme> and yeah pinged .. w 100% loss
[22:39] <guntbert> delinquentme: I usually use ssh-agent on the client: ssh-add <path-to-private-key>, from then on ssh user@server
[22:41] <delinquentme> that works.. asve for its denying me because public key
[22:41] <guntbert> delinquentme: I beg your pardon?
[22:42] <delinquentme> add key with "ssh-add keyname"  returns "identity added xxx"
[22:42] <delinquentme> and then ssh unf-ubu@aws.server.addy.com
[22:42] <delinquentme> and permission denied (publickey)
[22:43] <guntbert> delinquentme: then you didn't configure your server to accept key-based logins or you didn't place the public key into .ssh/authorized_keys
[22:43] <dbgster> hi, I want to add a value to my /etc/hosts file via the command line, how can I add a record?
[22:44] <delinquentme> guntbert, public key goes into .ssh/authorized_keys of the client ?
[22:44] <guntbert> dbgster: sudo <yourfavouriteEditor> /etx/hosts
[22:44] <guntbert> delinquentme: no, on the server
[22:44] <dbgster> guntbert: no I am creating a script to automate this, so I its un-manned
[22:46] <guntbert> dbgster: on a running system? that requires root permissions - not good from a script
[22:46] <dbgster> it runs under root actually
[22:46] <dbgster> its using the cloud config
[22:48] <guntbert> dbgster: in that case echo "text in the new line" >> /etc/hosts    ( important: >>    not    >   !)
[22:49] <dbgster> i added to my hosts:  1.2.3.4 puppetm
[22:49] <dbgster> where 1.2.3.4 is an ec2 ip address (public)
[22:49] <dbgster> shoudlnt':  ping puppetm work?
[22:50] <delinquentme> guntbert, http://stackoverflow.com/questions/1454629/aws-ssh-access-permission-denied-publickey-issue  << think i got it
[22:52] <guntbert> !yay| delinquentme
[22:57] <delinquentme> MUAHAHAH!
[22:57]  * delinquentme owns amazon now
[23:14] <dbgster> why would I use 10.04 lts over say natty?
[23:14] <dbgster> its more stable?
[23:14] <dbgster> 10.04 versus 11.xx
[23:22] <qman__> it's not a matter of stability so much as a matter of not having to upgrade every 6 months
[23:22] <qman__> less work, less changes
[23:37] <Slyboots_> Hm
[23:37] <Slyboots_> Does anyone know if you can create several folders at once using mkdir?
[23:37] <Slyboots_> But folders that.. recurse? if thats the correct word
[23:38] <Slyboots_> IE, In a empty folder Create \home\user\Folder1\Folder2\Folder3
[23:39] <Slyboots_> I've tried to google it, but I cant think of the correct way to phrase it
[23:50] <shauno> Slyboots_: you're looking for mkdir -p
[23:50] <Slyboots_> Mm
[23:51] <Slyboots_> I tried another turn at google-fu, found the {folder,} command.. ish
[23:51] <shauno> -p will create the parents if they don't already exist.  so making /foo/bar should fail because /foo doesn't exist; with -p, it'll create /foo, then /foo/bar
[23:52] <Slyboots_> Cool, That'll make resetting up my server less of a pain in the ass
[23:52] <shauno> man mkdir may explain it better .. I believe it's about the only option mkdir has :)