paranoidi | as a kernel parameter? | 00:00 |
---|---|---|
WinstonSmith | menu.lst? | 00:00 |
RoyK | paranoidi: just add it to the bootup | 00:01 |
RoyK | F6 if on the installer | 00:01 |
paranoidi | it's already running system | 00:01 |
WinstonSmith | i thought that was the old grub? | 00:01 |
paranoidi | and yes, still running old grub | 00:01 |
WinstonSmith | ah ok :) | 00:01 |
WinstonSmith | \o/ | 00:02 |
paranoidi | the new one looks much more confusing :) | 00:02 |
RoyK | paranoidi: just add it to the kernel line | 00:02 |
paranoidi | RoyK: I'll try next time I boot, time for sleep soon | 00:02 |
WinstonSmith | i never understood how you can go from easy understandable to such a crap as the new grub.... | 00:02 |
paranoidi | yeah, I lost all desire to switch after reading about it for 10 minutes | 00:03 |
WinstonSmith | one of the great points of linux for me was always the readable config files | 00:04 |
paranoidi | anyway, this graphics mode is least of my worries, much worse is the fact that my crappy RocketRaid 2340 is not working anymore since some moron (me) accidentally uninstalled the kernel it was working with .. | 00:05 |
paranoidi | I had about 10 different kernel versions so I thought to clean up a bit .. | 00:05 |
WinstonSmith | well new grub has it too but totally complicated plus you have to run update-grub every time you change something... :( | 00:05 |
WinstonSmith | \o/ for uninstalling stuff and wishing later one had just shot himself in the foot | 00:06 |
paranoidi | I was under assumption that it would've been supported with latest kernel instead of that propietary crap but apparently not .. so I'm SOL | 00:06 |
paranoidi | and I'm 99% sure it will not go into latest kernel | 00:07 |
WinstonSmith | yes that happened to me with my old old motherboard. had a raid controller with a horrible binary blob driver. then came kernel 2.6 and they dropped support | 00:08 |
* WinstonSmith was really pleased | 00:08 | |
paranoidi | I kind of feel bad for driver developers though since kernel api is changing so rapidly compared to windows .. | 00:09 |
paranoidi | what's even worse this card has possibly a bug that non-raid drives (called "legacy") are corrupted in certain places of the disk | 00:10 |
WinstonSmith | heh | 00:10 |
paranoidi | and it's in the bios .. and latest is from 2007 | 00:10 |
=== skrewler_ is now known as skrewler | ||
lifeless | SpamapS: hey another lxc q | 00:50 |
lifeless | SpamapS: can a 32 bit lucid be contained on a 64 bit natty ? | 00:50 |
SpamapS | lifeless: it should work, since it is little more than a wrapper around the syscalls, and the 32-bit binaries work fine on 64-bit systems. | 00:51 |
SpamapS | lifeless: I could see there being holes where somebody gets "cute" and thinks their on a 64-bit system and does the wrong thing in userland.. but that seems like a corner case that could be worked around. | 00:52 |
SpamapS | lifeless: basically what works in chroots, works in lxc | 00:53 |
SpamapS | lifeless: building one will take modifications to the templates it seems | 00:55 |
SpamapS | arch=$(arch) | 00:55 |
lifeless | is this worth a bug, or will you JFDI fix it ? | 00:56 |
disorbtion1 | I'm running 11.04 Server LTS. Has anyone seen the error <restart: Unknown instance:> when trying to restart nmbd? I had it working fine on my last install before I broke it and had to re-install (linux noobie here) | 00:56 |
SpamapS | lifeless: its non trivial so a bug would be good, I'm not sure what options there are for passing arguments into the templates. | 00:58 |
lifeless | lxc-create ? | 00:58 |
SpamapS | disorbtion1: you mean 10.04 LTS, or 11.04 .. 11.04 is not an LTS | 00:58 |
lifeless | bah | 00:58 |
lifeless | https://bugs.launchpad.net/ubuntu/+source/lxc ? | 00:58 |
SpamapS | lifeless: yes | 00:58 |
SpamapS | lifeless: /usr/lib/lxc/templates is where they live | 00:59 |
disorbtion1 | yes sorry 10.04 LTS I was running 11.04 the first time (nonLTS) and everything was fine, blew it up and re-installed used LTS since I figured it would probably be more stable... | 01:00 |
SpamapS | They seem a bit whacky to me... all the ubuntu ones should be nearly identical for 90% of the code.. probably just copy and pasted | 01:00 |
SpamapS | disorbtion1: you can't restart something that isn't running | 01:00 |
SpamapS | disorbtion1: service stop nmbd ; service start nmbd | 01:00 |
lifeless | SpamapS: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/798476 | 01:00 |
uvirtbot | Launchpad bug 798476 in lxc "it would be really useful to be able to make i386 lxc containers on a amd64 machine" [Undecided,New] | 01:00 |
SpamapS | lifeless: indeed, I'll take a look at it tomorrow.. just about EOD here | 01:01 |
lifeless | cool | 01:01 |
lifeless | that arch=i386 is the only thing needed in the template? | 01:01 |
SpamapS | (tomorrow meaning later on when the family is asleep and I "can't sleep") ;) | 01:01 |
SpamapS | lifeless: yep | 01:01 |
SpamapS | lifeless: so you could probably just make an lxc-lucid-i386 | 01:01 |
SpamapS | which is probably what most people do | 01:02 |
SpamapS | anyway, have to run.. good luck | 01:02 |
disorbtion1 | it looks like it won't stay running. I start it and then go to restart and get the same error message... | 01:02 |
disorbtion1 | also stop returns stop: unknown instance: | 01:03 |
lifeless | SpamapS: zomg | 01:05 |
lifeless | SpamapS: first line of man lxc-create makes me want to buy someone a grammar book | 01:05 |
lifeless | disorbtion1: I'd look in the logs, figure out why its failing | 01:05 |
lifeless | disorbtion1: does it get going at all? | 01:06 |
disorbtion1 | remember total linux noob, had to look up how to view logs. which log should I be focusing on? | 01:15 |
disorbtion1 | It was so simple once I looked in the logs, thanks for the help! | 01:28 |
smoser | wonder if anyone has a solution. | 01:47 |
smoser | i have a system that has an ssh port open to the public internet | 01:47 |
smoser | and another system on the private network that it is connected to | 01:48 |
smoser | i'd like to give someone access to the second system (not externally addressable), but ideally only after having acled through the first. | 01:48 |
smoser | i know i can do this by letting them set up their ~/.config to use ProxyCommand and nc | 01:49 |
smoser | however, that means | 01:49 |
smoser | a.) they could "stop" at the middle system | 01:49 |
smoser | b.) they have to deal with .ssh/config | 01:49 |
smoser | i'm sure i could coble together some solution where a user on the public facing system had a shell of 'nc' or something, but it seems hacky and i don't want to do any work. | 01:50 |
smoser | so i'm wondering if this is a problem that is already solved (and likely better than i woudl solve it) | 01:50 |
erichammond | smoser: Perhaps prepend command="ssh ..." to authorized_keys file on the first system? It could be on an account dedicated to them, or really any user so long as it was on the line that contained their public ssh key. | 02:05 |
smoser | ah. yeah, maybe. | 02:06 |
smoser | well done, mr hammond. | 02:06 |
erichammond | testing... | 02:07 |
virusuy | smoser: so, sorry for the question, but, why you should do that? | 02:18 |
virusuy | isn't easier to just let the uer log in into the second one? | 02:18 |
virusuy | instead of connect to first one and then connect to second one? | 02:19 |
smoser | the first one is not connected to "public internet" | 02:20 |
smoser | only private. | 02:20 |
smoser | wait. | 02:20 |
smoser | sorry | 02:20 |
smoser | the system i want the user to get to exists only on private network. | 02:20 |
smoser | the system i want them to hop through has only a single port open to internet | 02:20 |
erichammond | smoser: Yep, command= approach works, but you may need to fiddle with ssh options to get things to work cleanly. | 02:24 |
erichammond | For example, I needed to use command="ssh -p NNNN USERNAME@HOSTNAME" | 02:24 |
smoser | ssh is freaking awesome | 02:25 |
erichammond | And, in the initial connect, I used "ssh -t -A" to force pseudo-tty allocation and to pass on my user agent. | 02:25 |
smoser | hm.. i wouldnt have thoght you would have to use -t | 02:28 |
twb | Agent forwarding blows. | 02:31 |
twb | -oProxyCommand is where it's at | 02:32 |
smoser | well, i think you use the combined trick | 02:34 |
smoser | the command would be 'nc -q0 HOSTNAME', but then you probably have ot have the same username on both systems. | 02:34 |
smoser | hm... maybe not though. have to play with it a bit. | 02:35 |
brianthelion | Hola! Anybody want to field some krb5/nfs4 questions? | 02:40 |
brianthelion | I'm dealing with an office full of wedged clients | 02:41 |
erichammond | smoser: If your authorized_keys command= uses "nc" that would be like telnet'ing to the remote ssh server. Your local ssh client would not be authenticating itself again once it's done with the first hop. | 02:48 |
smoser | yeah. i realized that. | 02:51 |
erichammond | smoser: The first ssh could set up an ssh tunnel from the user's local computer through the gateway to the ssh port on the inner computer. Then they could initiate a second ssh to localhost that goes through the tunnel to the inner computer. This avoids problems with agent forwarding (which can be a security risk). | 02:51 |
twb | erichammond: you'll want to disable other port forwarding techniques and such | 02:51 |
erichammond | twb: You could assume that authenticating yourself on the gateway gives you authorization to connect to any port on the internal network. It's up to smoser's particular situation if this policy makes sense. | 02:56 |
twb | erichammond: in that case you don't need a command= | 02:57 |
smoser | yeah, for me, they're in, they're in. | 02:57 |
twb | I assumed you were using command= to forcibly restrict the connecting user to ONLY hop from the bastion to somewhere specific | 02:57 |
erichammond | twb: You still need to authenticate yourself with the gateway and prevent command line access on that machine. | 02:57 |
smoser | i want the command = because i dont want to have to set up .ssh/config | 02:57 |
twb | erichammond: ah, OK | 02:57 |
smoser | and also, i dont really want them to be able to "stop" on the intermediate | 02:57 |
erichammond | (according to the original requirements) | 02:57 |
smoser | i want only access to the second internal system. | 02:57 |
twb | erichammond: so broadly you want -fNL -NW | 02:58 |
smoser | so the command= was nice. | 02:58 |
twb | *or -NW | 02:58 |
twb | And to enforce that usage in authorized_keys | 02:58 |
erichammond | twb: Can the gateway authorized_keys enforce -N on the original client? | 02:59 |
twb | Not sure, possibly command=/bin/sh | 03:01 |
twb | Er, /bin/false | 03:01 |
twb | Normally what I would do is either set up the bastion with normal users, or DNAT traffic to (say) 2022 from the bastion to the users' shell bastion | 03:03 |
twb | Or give them a VPN, with an endpoint terminating on the bastion | 03:03 |
erichammond | yikes, Just read "man authorized-keys" and it seems to imply that port-forwarding is allowed by default even when command= is used. Time to add "no-port-forwarding" to some servers. | 03:04 |
brianthelion | I've got a sweet krb5/ldap/autofs/nfs4 stack.... except that it's broken. Anybody? | 03:04 |
erichammond | ahhh, our svn setup already includes: "no-port-forwarding,no-agent-forwarding,no-X11-forwarding,no-pty" | 03:05 |
erichammond | smoser: Might be a good idea to add those qualifiers to /root/.ssh/authorized_keys command= line in Ubuntu AMIs. | 03:07 |
smoser | well... you're still getting in as root with the authorized keys | 03:08 |
smoser | with legit authorized keys | 03:08 |
smoser | being able to forward traffic isn't htat big of a deal | 03:08 |
erichammond | smoser: You have no idea what they do with the ubuntu user's ssh configuration after they start the instance. Might as well make the original ssh key have as little permission as possible over in that root@ account they forgot about and maybe never even knew allowed people in. | 03:09 |
erichammond | smoser: Submitting a bug. Would that be "cloud-init" or some other package? | 03:12 |
smoser | cloud-init | 03:12 |
erichammond | bug 798505 | 03:25 |
uvirtbot | Launchpad bug 798505 in cloud-init "Tighten permissions on root@ ssh with EC2/UEC images" [Undecided,New] https://launchpad.net/bugs/798505 | 03:25 |
smoser | ok, erichammond here is what i settled on. | 03:28 |
smoser | pubhost has publicly open port X | 03:28 |
smoser | user 'toprivhost' exists on pubhost | 03:28 |
smoser | toprivhost .ssh/authorized_keys has the external user's public key in it with line like: | 03:29 |
smoser | command="ssh ubuntu@privhost ssh-rsa AAAAB3NzaC1yc2EAAAAB.... thatuser@theirhost | 03:29 |
smoser | command="ssh ubuntu@privhost" ssh-rsa AAAAB3NzaC1yc2EAAAAB.... thatuser@theirhost | 03:30 |
smoser | i also generated a ssh private/public key as toprivhost@pubhost and put it in .ssh/id_rsa and .ssh/id_rsa.pub | 03:31 |
erichammond | to avoid agent forwarding? | 03:31 |
smoser | toprivhost@pubhost's public key is copied to ubuntu@privhost:~/.ssh/authorized_keys | 03:31 |
uvirtbot | New bug: #798505 in cloud-init (main) "Tighten permissions on root@ ssh with EC2/UEC images" [Undecided,New] https://launchpad.net/bugs/798505 | 03:32 |
smoser | and that .ssh/authorized_keys has a 'host=pubhost' option on the key | 03:32 |
smoser | yeah, now we dont need ssh agent forwarding, and its all passwordless. | 03:32 |
erichammond | So you trust root users on pubhost with ssh access to that user on privhost, including somebody who gains root illegitimately. | 03:33 |
smoser | i suppose, yeah. | 03:33 |
smoser | but yo uwoudl do that too with ssh agent forwarding | 03:34 |
erichammond | smoser: good point. | 03:34 |
erichammond | and, ssh agent forwarding gives the root user access to any other hosts that like my agent. | 03:35 |
erichammond | Would be cool if the agent forwarding could be dropped after the second connection was made. | 03:36 |
amit | Hello all. Seeking assistance in finding procedure for updating /etc/motd w/o reboot: | 03:37 |
amit | distro: ubuntu server 10.04 | 03:37 |
amit | /etc/motd gets modified to the value of /etc/lsb-release:DISTRIB_DESCRIPTION. But this only takes effect after rebooting (more specifically, I think it's already modified before the reboot, when switching to RUNLEVEL 1). | 03:37 |
amit | Can /etc/motd be auto-modified w/o a reboot? | 03:37 |
devilinthedetail | can anybody help with setting up a router in exim4? | 04:04 |
=== devilinthedetail is now known as CrunchyChewie | ||
=== medberry is now known as med_out | ||
=== smb` is now known as smb | ||
uvirtbot | New bug: #798555 in cloud-init (main) "package grub-legacy-ec2 0.5.10-0ubuntu1.5 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/798555 | 08:56 |
=== marienz is now known as 92AAC5BT0 | ||
=== 92AAC5BT0 is now known as marienz | ||
uvirtbot | New bug: #798587 in augeas (main) "Sync augeas 0.8.1-2 (main) from Debian unstable (main)" [Wishlist,Confirmed] https://launchpad.net/bugs/798587 | 10:21 |
kobrien | I'm installing 10.04 on a P4 with 2x2Tb SATA drives in RAID 1 config. The install goes fine until it tries to install grub where it fatally fails. Any idea why this'd happen? | 10:38 |
twb | kobrien: are the using 4kb blocks or 512b blocks? | 10:52 |
kobrien | block size is not specified for RAID 1 | 10:52 |
kobrien | ( mirror config ) | 10:52 |
twb | When grub fails, switch to vt4 and see what the error is | 10:53 |
twb | kobrien: not block size of the raid, block size of the disks' controllers | 10:53 |
twb | kobrien: 2TiB is the largest size that traditional BIOS/MBR systems can address, so some 2TB disks have adopted the new 4kB block, GPT scheme. | 10:54 |
twb | kobrien: Grub2 SHOULD handle those just fine, but maybe it's confusing the installer | 10:54 |
kobrien | twb: good tip to jump to vt. Not sure of the controllers block size. I'm not using GPT. I probably should. | 10:55 |
twb | kobrien: ah, I bet you chose manual partitioning, right? | 10:55 |
kobrien | yes | 10:55 |
twb | With GPT you need these stupid extra, special parittions to make it work | 10:55 |
twb | Without those grub will shit itself, which is probably what happened | 10:55 |
kobrien | I see. will a livecd of gparted do it? | 10:55 |
twb | What you should do is choose "automated partitioning (entire disk)", and see if it wants to create little grub partitions at the start | 10:56 |
twb | If it does, then blow away the root and boot partitions (but not the grub one), and reallocate the free space as you want | 10:56 |
twb | That's what I've done in the past and it worked | 10:56 |
kobrien | aha! It did want to make a grubbios one when I was exploring that menu | 10:57 |
kobrien | and I should mirror that partition too | 10:57 |
kobrien | ? | 10:57 |
twb | I have no idea | 10:57 |
twb | I left those the hell alone | 10:57 |
twb | GPT is retarded and OpenFirmware should've won, but worse is better :-( | 10:58 |
kobrien | heh, ok, well that's plenty info for another attempt at this. thanks | 10:58 |
twb | Oh, actually.. | 10:58 |
kobrien | yes? | 10:58 |
twb | It may be that you don't have 4kB blocks, but d-i is helpfully defaulting to that because it's 2TB | 10:59 |
twb | I got them to fix it so it would only do that for >=2TiB (1024s) instead of >=2TB (1000s), but that was post-lucid | 10:59 |
twb | So if you struggle enough you might be able to manage BIOS+MBR style | 11:00 |
kobrien | cool | 11:00 |
kobrien | ok, I'll give this a go | 11:00 |
twb | If you google for the model and make, it'll tell you if you have 4k or 512 blocks | 11:01 |
kobrien | will do | 11:01 |
paranoidi | I'm trying to put in binary blob drivers and it would seem to be easiest if I had current kernel headers setup under /lib/modules/`uname -r`/build .. which is supposed to be often the case, why is it not on my stock ubuntu server kernel (10.04 - latest kernel) | 11:03 |
paranoidi | do I need to install headers package for them to be in there? and which is it called? | 11:04 |
twb | paranoidi: you probably want linux-...-headers and/or -source | 11:06 |
paranoidi | yeah, just found out I don't have it .. it seems that there are few different kernel variations from each version though .. | 11:07 |
paranoidi | generic, preempt, server | 11:08 |
paranoidi | maybe the generic I have in now is good enough .. | 11:09 |
twb | paranoidi: you want the one that's for the kernel you're running | 11:10 |
paranoidi | twb: yeah, I got that .. unsuprisingly the propietary crap does not want to go in as easily .. ;P | 11:14 |
twb | I recommed not using it | 11:16 |
paranoidi | seems to be only choice .. | 11:16 |
twb | Loongsons are pretty open | 11:17 |
paranoidi | you lost me | 11:17 |
twb | Loongson is a type of CPU | 11:17 |
twb | https://secure.wikimedia.org/wikipedia/en/wiki/Loongson | 11:18 |
paranoidi | not a motherboard, 16-port sata controller .. | 11:19 |
twb | Yes, well | 11:20 |
Daviey | zul: Are you looking at doing an ipxe MIR? | 12:55 |
uvirtbot | New bug: #798663 in samba (main) "package samba-common 2:3.5.8~dfsg-1ubuntu2.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 10" [Undecided,New] https://launchpad.net/bugs/798663 | 13:16 |
sommer | morning all | 13:20 |
RoyK | good localtime(); | 13:21 |
zul | Daviey: no | 13:28 |
Daviey | zul: it's a build dep of xen | 13:32 |
zul | oh....fu...fudge | 13:33 |
Daviey | heh | 13:34 |
speakman | receiving netconsole with netcat doesn't make any line breaks. Is it possible to fix? | 13:52 |
speakman | sorry, I was listening on syslog data :p | 13:55 |
pythonirc101 | when i install guest additions on a new ubuntu guest, vbox complains that it cant find kernel headers. But I do have correct kernel headers installed. Anyone has seen this problem with the latest ubuntu-server machines? | 14:17 |
patdk-wk | nope | 14:20 |
pythonirc101 | is anyone using a ubuntu server as a guest virtualbox machine here? | 14:20 |
pythonirc101 | http://paste.pocoo.org/show/410202 | 14:23 |
pythonirc101 | This is what I'm getting when I install guest additions...please see the complaint on "The headers for the current running kernel were not found..." | 14:23 |
RoyK | pythonirc101: there's an ubuntu package for vbox addons | 14:27 |
RoyK | should work | 14:27 |
RoyK | that is, works for me | 14:27 |
pythonirc101 | RoyK: http://paste.pocoo.org/show/410204/ | 14:27 |
pythonirc101 | so you install ubuntu vbox guest additions and not the one that comes with vbox? I'm using virtualbox 4.0.8 under the host, and ubuntu-server is installed as a guest | 14:27 |
RoyK | apt-get install virtualbox-ose-guest-x11 | 14:27 |
RoyK | apt-get install virtualbox-ose-guest-utils | 14:28 |
RoyK | x11 if using X | 14:28 |
RoyK | but for a server, you probably don't | 14:28 |
pythonirc101 | RoyK: I did install ubuntu-desktop on my server (which is a guest) | 14:29 |
RoyK | apt-get install virtualbox-ose-guest-x11, then | 14:29 |
pythonirc101 | is there a way to uninstall guest additions? | 14:30 |
RoyK | apt-get remove? | 14:30 |
pythonirc101 | I installed the guest additions that came with virtualbox 4.0.8 | 14:30 |
RoyK | if that installer has an uninstaller, yes | 14:30 |
pythonirc101 | See here: http://paste.pocoo.org/show/410204/ | 14:30 |
RoyK | but Ubuntu obviously can't remove something it hasn't installed | 14:31 |
pythonirc101 | indeed | 14:31 |
pythonirc101 | k - found the uninstaller | 14:33 |
pythonirc101 | the x isnt still working quite right...the login screen is not centered for instance | 14:35 |
pythonirc101 | + In seamless mode, its display becomes a small screen on the first monitor | 14:35 |
pythonirc101 | Terminal fonts wont increase in size when i do ctrl+Shift++ | 14:36 |
pythonirc101 | will reboot | 14:36 |
pythonirc101 | and see | 14:36 |
pythonirc101 | RoyK: Any other ideas? | 14:39 |
Daviey | Ursinha: o/ | 14:56 |
RoyK | pythonirc101: X and desktop questions aren't topic in here | 14:57 |
Ursinha | Daviey: :) | 14:57 |
pythonirc101 | what is the network gui on ubuntu-server? I want to switch off ip version 6 | 15:05 |
alamar | pythonirc101: why would you want to switch it off? and there is generally no gui on aserver | 15:08 |
alamar | because there is no need for it | 15:08 |
alamar | if you can't manage a server in a way you are supposed to, maybe you should arrange for a real admin to do so | 15:08 |
RoyK | pythonirc101: normally there isn't a gui on a server | 15:08 |
RoyK | !guide | 15:09 |
ubottu | The Ubuntu server guide may be found at http://help.ubuntu.com/10.04/serverguide/C/ | 15:09 |
pythonirc101 | how do i switch off ipv6 on ubuntu server? | 15:24 |
RoyK | pythonirc101: as a first, why? | 15:26 |
pythonirc101 | RoyK: Because my system - administrator wants me to? | 15:27 |
pythonirc101 | RoyK: I'm connected to someone else's local network | 15:27 |
pythonirc101 | My other system is complaning that "System not running to use fully qualified hostnames" "Hostname xx.xxx.com is illegal" -- I think my /etc/hosts is fixed, and have no clue why the other system still complains | 15:28 |
RoyK | pythonirc101: http://kurl.no/v280 | 15:30 |
brianthelion | Anybody want to help me debug my krb5/ldap/autofs/nfs4 stack? | 15:34 |
brianthelion | I've got some wedged clients | 15:34 |
zertyuio | hello there | 15:42 |
zertyuio | what is the default mail server on ubuntu ? | 15:42 |
pmatulis | zertyuio: postfix is well regarded | 15:44 |
zertyuio | postfix seems too complicate to manage | 15:46 |
brianthelion | anybody know where one goes for support on this krb5/nfs4 combo? | 15:46 |
zertyuio | just for smtp | 15:46 |
pmatulis | !ask | brianthelion | 15:48 |
ubottu | brianthelion: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) | 15:48 |
pmatulis | zertyuio: well, you asked | 15:48 |
shauno | I've never seen 'just smtp' in the real world. I think a simple smtpd doesn't exist, because smtp is never simple | 15:49 |
zertyuio | let me explain you mail problem | 15:50 |
brianthelion | Cool, thanks. My nfs4 clients are wedging when a logged-in user's Kerberos ticket expires. I assume this is not intended behavior. | 15:50 |
brianthelion | Everything is on Natty | 15:50 |
brianthelion | syslog: "Jun 17 07:44:48 carina kernel: [78074.876438] Error: state manager encountered RPCSEC_GSS session expired against NFSv4 server 192.168.0.2." | 15:51 |
zertyuio | i m hosting a cms website on my personel server, where the form for contact detail working perfectly without since i unistalled postifx , submit form not working | 15:52 |
zertyuio | what i have to do ? | 15:53 |
brianthelion | I've got a bug report up: https://bugs.launchpad.net/ubuntu/+bug/794112 | 15:54 |
uvirtbot | Launchpad bug 794112 in ubuntu "Kerberos + LDAP + NFSv4 on Natty - Unable to recover unattended client" [Undecided,New] | 15:54 |
brianthelion | yeah, that's me | 15:54 |
brianthelion | Flat response so far, though | 15:55 |
pmatulis | brianthelion: maybe try the same on the LTS release for comparison? | 15:56 |
brianthelion | good idea, but probably not an option in this case | 15:58 |
paranoidi | well this is annoying, I cannot stop ubuntu server with latest kernels to stay in the damn text mode, tried vga=normal, vga=711 (or so), nofb and vga16fb.modeset=0 | 16:03 |
=== failover is now known as tarzxvf | ||
RoyK | paranoidi: for most installs, personally, I think the framebuffer is unnecessary and may lead to more problems than it fixes | 16:34 |
paranoidi | RoyK: I agree, but I cannot seem to get rid of it .. | 16:34 |
RoyK | paranoidi: try vga=normal nomodeset | 16:35 |
RoyK | from https://wiki.ubuntu.com/FrameBuffer | 16:35 |
paranoidi | I'll try it, maybe, seems that I need to rescue old kernel from old drive anyway since I cannot get my sata card to work with current ones | 16:38 |
RoyK | paranoidi: very often, new cards have the same chipset, but new PCI IDs | 16:40 |
RoyK | on which version are you? | 16:40 |
paranoidi | RoyK: trying to get same crappy card work (RocketRaid 2340) | 16:42 |
paranoidi | I don't think linux has any built in support for it | 16:42 |
paranoidi | it might go in if I was skilled enough to tweak the opensource adaptation layer between kernel and binary driver of the card | 16:45 |
RoyK | paranoidi: use lspci and then lspci -vn to find its PCI ID | 16:45 |
paranoidi | which part is PCI ID? | 16:47 |
RoyK | erm | 16:48 |
paranoidi | 06:04.0 0100: 1103:2340 (rev 09) Subsystem: 11ab:11ab | 16:48 |
paranoidi | would be my guess | 16:48 |
RoyK | seems the producer apparently released a driver in source, so it is, or was, possible to compile that manually | 16:49 |
RoyK | but since it never made it into kernel, the chances are prominent that the code sucked, and that it won't be compatible with current kernel versions | 16:50 |
uvirtbot | New bug: #798788 in nagios3 (main) "package nagios3-common 3.2.3-1ubuntu1.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/798788 | 16:51 |
paranoidi | RoyK: I don't thinkt here is full sources of the driver, it's just binary blob with opensource wrapper | 16:51 |
paranoidi | anyway, i tried to compile it for latest kernels and it seemed to work fine .. but when loading it just stalls | 16:52 |
RoyK | that sucks even more :P | 16:52 |
RoyK | get a new controller, then | 16:52 |
paranoidi | new one costs at least $500 .. | 16:53 |
RoyK | paranoidi: you get pretty cool controllers for even $100 on ebay | 16:53 |
paranoidi | 16 ports ... | 16:53 |
RoyK | do you need 16 physical ports? why not a sas expander? | 16:53 |
paranoidi | that might work, but those cost pretty much too .. and severely cut bandwidth? | 16:54 |
RoyK | with 6Gbps SAS, there'll be quite sufficient of bandwidth, especially for slow spinning drives | 16:55 |
paranoidi | it probably works only in 3Gbps mode with sata 2 drives | 16:55 |
RoyK | or two of htese http://cgi.ebay.com/LSI-SAS3081E-R-8-Port-3Gb-s-SAS-RAID-Controller-/270765091146?pt=COMP_EN_Networking_Components&hash=item3f0adb694a | 16:55 |
RoyK | s/htese/these/ | 16:56 |
paranoidi | that's actually pretty cheap | 16:56 |
RoyK | yep | 16:56 |
RoyK | and it's a good card | 16:57 |
RoyK | I have a few of those in OpenIndiana machines | 16:57 |
paranoidi | although I would have to find new display card since it would use 2 slots compared to one | 16:57 |
* RoyK prefers ZFS for storage | 16:57 | |
RoyK | paranoidi: I thought this was a server...? | 16:57 |
paranoidi | yes, but at home :) | 16:57 |
RoyK | still, a badass graphics card in a - server? | 16:58 |
paranoidi | no, but I need some output since motherboard has none | 16:58 |
paranoidi | dunno if I have any PCI cards laying around, anyway, not a huge problem | 16:58 |
paranoidi | I was actually looking 16 port version from LSI earlier | 16:58 |
=== med_out is now known as med | ||
=== med is now known as medberry | ||
paranoidi | LSI Logic SAS 9201-16i .. any word on that? | 16:59 |
RoyK | very good | 16:59 |
RoyK | 6Gbps SAS | 16:59 |
RoyK | I have a few of those as well | 17:00 |
paranoidi | I could get that in some decent price from here (well, ~470$ still) | 17:00 |
paranoidi | RoyK: it's supported with kernel without any problems whatsoever? | 17:00 |
RoyK | if on a budget, and if bandwidth isn't too important, this one is very stable http://cgi.ebay.com/Supermicro-8-Channel-Pcix-Sata-Adapter-Aoc-Sat2-Mv8-/270765097465?pt=LH_DefaultDomain_0&hash=item3f0adb81f9 | 17:01 |
RoyK | paranoidi: I haven't tried it on linux | 17:01 |
paranoidi | I couldn't find verification if that card is supported on linux out of the box or not | 17:01 |
RoyK | paranoidi: You'll have to check - I haven't tried | 17:05 |
RoyK | paranoidi: using software RAID on linux for the storage? | 17:05 |
RoyK | if you haven't installed it yet, then I'd recommend looking at openindiana / ZFS | 17:06 |
paranoidi | software raid | 17:07 |
paranoidi | last time I checked ZFS couldn't be grown like software raid | 17:08 |
RoyK | it's not as flexible as linux software raid is, no | 17:08 |
RoyK | you can add VDEVs to ZFS | 17:08 |
RoyK | or you can replace drives with bigger ones | 17:08 |
RoyK | and when all drives in a VDEV are replaced, it'll grow (given you've set autoexpand=yes) | 17:08 |
RoyK | but you can't add drives to a RAIDz VDEV | 17:09 |
paranoidi | right, and I start my packs with few drives and then expand as needed | 17:09 |
RoyK | ic | 17:09 |
* RoyK just setup a server like that for his brother - two drives in RAID-5 | 17:09 | |
RoyK | paranoidi: but then, do you really need 16 ports already? | 17:10 |
paranoidi | no, but there's room for growth :D | 17:10 |
RoyK | just get an 8-port controller now, and get something bigger when you need it :P | 17:10 |
paranoidi | but I have already more than 8 .. and I don't like to fiddle with the hardware too much | 17:11 |
RoyK | kk | 17:11 |
RoyK | >8 with data? | 17:11 |
RoyK | how big are these, btw? | 17:12 |
paranoidi | 8x1TB and 3x2TB | 17:12 |
RoyK | k | 17:12 |
paranoidi | if everything else fails I can ressurrect at least the 8 disk pack with some motherboard ports and old PCI sata card | 17:12 |
patdk-wk | heh | 17:17 |
paranoidi | let's hope the old 2.6.31-14 copied from old drive works properly .. | 17:17 |
patdk-wk | I just went with 16 ports :) | 17:17 |
patdk-wk | and a 4 port controller | 17:17 |
patdk-wk | I'm hoping I like channel bonded sas | 17:18 |
paranoidi | patdk-wk: what kind of write/read speeds are you getting? | 17:18 |
paranoidi | if you're using them in raid | 17:18 |
patdk-wk | I haven't received it yet | 17:18 |
RoyK | patdk-wk: which controller? | 17:18 |
patdk-wk | an lsi 8port | 17:19 |
RoyK | 9201 or 6801? | 17:19 |
patdk-wk | sas2 one | 17:19 |
RoyK | 9201, then | 17:20 |
pythonirc101 | I'm trying to setup a static ip box - ubuntu-server - for some reason, when i restart the box, i still get the dhcp ip, any ideas on how to fix this? | 17:22 |
RoyK | heh - http://linuxhcl.com/browse/search?offset=0&category=12 <-- doesn't even list LSI | 17:22 |
pythonirc101 | I edited the / /etc/network/interfaces /etc/hosts and /etc/resolv.conf | 17:22 |
pythonirc101 | changed the hostname | 17:22 |
pythonirc101 | any other things i need to do? | 17:22 |
pythonirc101 | if config still says my old dhcp ip | 17:22 |
patdk-wk | looks like 6261 | 17:23 |
patdk-wk | 9261 I mean | 17:23 |
patdk-wk | paranoidi, it will only give me about 1100MB/sec | 17:24 |
patdk-wk | but insane iops | 17:24 |
paranoidi | I highly doubt that is the performance when writing to a file | 17:24 |
patdk-wk | why not? | 17:25 |
RoyK | patdk-wk: because the drives will be slow | 17:25 |
paranoidi | Ì get about 100MB/s at tops with software raid-6 | 17:26 |
patdk-wk | they better be able to handle that | 17:26 |
paranoidi | 70MB/s over samba | 17:26 |
patdk-wk | using what drives? | 17:26 |
RoyK | seems the LSI drivers are available as a download | 17:26 |
RoyK | binaries and source | 17:26 |
paranoidi | hahaa, so same crap as with my rocketraid | 17:27 |
paranoidi | well, except they might actually release updates | 17:27 |
paranoidi | and with some luck the kernel would support it | 17:27 |
patdk-wk | only ever needed to download the binaries for userspace management of the raid | 17:27 |
RoyK | paranoidi: not really, it's opensource drivers AFAICS | 17:27 |
RoyK | GPLed | 17:28 |
paranoidi | anyway, time to boot and see what happens with the old kernel I glued back into ... | 17:28 |
patdk-wk | 16 10krpm 2.5" sas2 drives | 17:28 |
patdk-wk | the thing should scream | 17:29 |
patdk-wk | not as much as the 50 drive array of the same drives I have, but enough | 17:29 |
RoyK | patdk-wk: database system? | 17:29 |
patdk-wk | mainly database | 17:29 |
RoyK | striped mirrors, then? | 17:30 |
patdk-wk | ya raid10 | 17:30 |
patdk-wk | I just can't find myself ever doing raid6 | 17:30 |
=== lullabud is now known as warzauwynn | ||
RoyK | patdk-wk: depends what you need... | 17:30 |
RoyK | but raid6 for databases isn't quite optimal | 17:31 |
uvirtbot | New bug: #798824 in unixodbc (main) "package odbcinst 2.2.14p2-2ubuntu1 failed to install/upgrade: Package is in a very bad inconsistent state - you should reinstall it before attempting a removal." [Undecided,New] https://launchpad.net/bugs/798824 | 17:36 |
patdk-wk | hmm, drives substain 170MB/sec, so about 1400MB/s max, if the sas bus could handle that much | 17:37 |
brianthelion | Anybody know who on the Security Team is handling krb5/nfs4 integration? | 17:38 |
SpamapS | jamespage: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=630822 | 17:48 |
uvirtbot | Debian bug 630822 in ftp.debian.org "RM: zookeeper -- NPOASR; orphaning all hadoop related packages" [Normal,Open] | 17:48 |
bens | Need to setup blocking of social media and junk for my office. gateway is ubuntu server/iptables. IPcop had a great squid interface with a big database of known site groups. Any similar canned solultions available to Ubuntu? | 17:48 |
jamespage | SpamapS: hmm - that was coming TBH | 17:49 |
jamespage | So are you up for the challenge of helping maintain it? | 17:50 |
calzifer | hi, i need help installing mysql, because it always fails and there is no existing account http://img121.imageshack.us/img121/6616/screenshot1706.jpg | 17:52 |
SpamapS | jamespage: definitely | 17:54 |
SpamapS | jamespage: I think Thomas is being over zealous, and zookeeper is quite stable. | 17:54 |
jamespage | SpamapS: agreed - so how do we go about adopting the package? respond to the bug above? | 17:55 |
SpamapS | jamespage: I'm looking into it, but basically yes. | 17:58 |
jamespage | great - lemme know if i need todo anything | 18:00 |
SpamapS | jamespage: if you could mention our interest to the debian-java team ASAP, that would be good | 18:02 |
paranoidi | didn't work with the old kernel .. gave some weird communication error which I think I already saw once. That raised few alarm bells as I did take whole machine appart. So I took the card out and cleaned all contacts and put it into other card slot. Works now! | 18:04 |
paranoidi | pretty weird, thought to come back and report :) | 18:04 |
paranoidi | hard to say which was the reason, but it wasn't likely software | 18:06 |
=== Ursinha is now known as Ursinha-lunch | ||
maccam94 | is it possible for apt-cache/apt-cache-ng to cache package lists, rather than just packages? | 19:05 |
zul | SpamapS: ping have you gotten anywhere with mysql 5.5 in debian? | 19:20 |
SpamapS | zul: nowhere. :( | 19:20 |
zul | SpamapS: bugger.. | 19:21 |
SpamapS | zul: I'll turn up the volume a bit for Norbert. I'm also going to see if he'll be my DD advocate. At this point that is all I need. | 19:21 |
zul | SpamapS: k i think we are going to have merge mysql 5.1 until we 5.5 in debian or we do it in ubuntu | 19:22 |
* zul starts to get annoyed | 19:23 | |
SpamapS | zul: is there a pressing reason? | 19:23 |
zul | SpamapS: no just getting annoyed :) | 19:23 |
SpamapS | zul: agreed, but I think we can make this happen well before Debian Import Freeze | 19:25 |
uvirtbot | New bug: #798874 in postfix (main) "package postfix 2.8.1-1~lucid1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/798874 | 19:36 |
h4lfl1ng | Hello All! | 19:40 |
h4lfl1ng | What's with sudo /etc/init.d/networking start not working in 10.04? | 19:41 |
h4lfl1ng | I also tried the alternative "sudo start networking" or "sudo service start networking" (not sure if that last one was the exact one i used..lol) | 19:42 |
ChmEarl | xen: are there any plans to package a kernel-3.0-0 that has xen config options =y? so dom0 works? | 19:44 |
ChmEarl | it works now if about 10 xen modules get loaded at startup | 19:45 |
ChmEarl | on 11.10 xen 4.1.1 (built on natty) works with linux-image-server 3.0-0 | 19:46 |
=== Ursinha-lunch is now known as Ursinha | ||
calzifer | hi, i need help installing mysql, because it always fails and there is no existing account http://img121.imageshack.us/img121/6616/screenshot1706.jpg | 20:54 |
guntbert | calzifer: did you try to connect to mysql? | 21:27 |
calzifer | guntbert: yes, but it fails with a ERROR 2002 (HY000): Can't connect to local MySQL server though socket '/var/run/mysqld/mysqld.sock' (111) | 21:38 |
calzifer | but i deffenitly started mysql, i tried it when its stopped too, but same problem | 21:38 |
guntbert | calzifer: well I never had those problems - lets start from the beginning: what ubuntu version? how did you install mysql? | 21:40 |
calzifer | 10.04 LTS | 21:40 |
calzifer | aptitude install mysql-server | 21:40 |
calzifer | i already tried to remove and purge mysql and to reinstall, but it always fails after the root password setup for mysql with the above screenshot | 21:42 |
guntbert | calzifer: hmm (just fishing around...): does mysql start at all ? look into /var/log/mysql/... | 21:42 |
calzifer | it tries to start | 21:42 |
guntbert | reinstalling usually doesn't help under linux | 21:42 |
calzifer | hm, ok | 21:42 |
guntbert | calzifer: it tries? what do the logs say? there should be an error message... | 21:45 |
uvirtbot | New bug: #798946 in openldap (main) "package slapd 2.4.23-6ubuntu6 failed to install/upgrade: le sous-processus script post-installation installé a retourné une erreur de sortie d'état 1" [Undecided,New] https://launchpad.net/bugs/798946 | 21:47 |
calzifer | guntbert: http://paste.pocoo.org/show/413974/ | 21:47 |
guntbert | calzifer: ouch - I admit: no idea what is going on, sorry | 21:48 |
calzifer | ok, no but thanks for you help | 21:48 |
calzifer | do you know where i could try it too? | 21:48 |
guntbert | calzifer: try #mysql ? | 21:49 |
calzifer | ok | 21:49 |
calzifer | maybe i should use postgresql ... | 21:51 |
adam_g | has anyone been using glance on oneiric? | 21:56 |
soren | adam_g: Sort of. | 21:58 |
adam_g | soren: any luck? running into an issue where all is well except images stored in the local file store are of zero-length. | 22:01 |
soren | adam_g: I haven't seen that. | 22:05 |
=== unreal_ is now known as unreal | ||
soren | adam_g: You're very welcome to come chat about it in #openstack. | 22:11 |
adam_g | soren: thanks, i have. figured i wuld check here as well. | 22:13 |
adam_g | hm, tested exact nova+glance configuration on natty and works fine. | 22:18 |
zleslie | Hi | 22:24 |
RoyK | zzzz | 22:25 |
zleslie | I am trying to get reprepro to talk to gpg agent and having trouble. | 22:26 |
zleslie | Anyone know something about setting up apt repos? | 22:26 |
jMCg | zleslie: the wiki does. | 22:34 |
jMCg | s/.*// | 22:35 |
jMCg | Ignore me. | 22:35 |
RoAkSoAx | zul: ping? | 22:42 |
=== medberry is now known as med_out | ||
=== Ursinha is now known as Ursinha-afk | ||
uvirtbot | New bug: #798975 in postfix (main) "package postfix 2.8.2-1ubuntu2.1 failed to install/upgrade: subprocess new pre-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/798975 | 22:51 |
=== alamar is now known as julian | ||
h4lfl1ng | What's the best way to start the networking daemon? | 23:53 |
h4lfl1ng | in 10.04 | 23:53 |
h4lfl1ng | Because I heard that it's easy to corrupt the config files, is that true? | 23:54 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!