/srv/irclogs.ubuntu.com/2011/09/26/#ubuntu-server.txt

nomadicusHello how can I reconfigure a desktop with Ubuntu 10.04 to function as a headless server?  What I would like to do is connect it to a laptop via crossover cable and interact with it using SSH, RDP, VNC, LTSP, or any combination fo those as well as use it as a file server?  I have configured the grub to boot to console, how do I ensure that those services will start without me loggin into the machine locally?00:15
VampsDaBeasthey guys.. i'm using Ubuntu Server 10.04 to try to setup a cloud, when i enter the cmd "sudo -u eucalyptus ssh-copy-id -i ~eucalyptus/.ssh/id_rsa.pub eucalyptus@" i get "RROR no identities found". any idea what i need to do00:17
=== nomadicus is now known as Technicus
uvirtbotNew bug: #859322 in php5 (main) "php5 crashed with SIGILL in initialize_imagick_constants()" [Undecided,Invalid] https://launchpad.net/bugs/85932202:42
uvirtbotNew bug: #859341 in bacula (main) "Bacula default config flawed" [Undecided,New] https://launchpad.net/bugs/85934103:21
JohnA1i have a question about ubuntu servers, particularly postfix-dovecot,  I keep seeing things like "mail_location = maildir:~/Maildir" in which I understand  that the tild/~ refers to the users home directory. But if this is a server how can the mail recipient have a home directory on the server. Surely the only user with an account on the server is/are the  admin03:48
twbJohnA1: users with shell accounts will have home directories03:48
twbJohnA1: if your users exist only in the mail system, then ~ probably doesn't make sense03:48
JohnA1But surely there maust not be any users with shell accounts, other than the admins, and they should not be logging on to the server except to perfom main functions!!!03:49
twbThat all depends03:50
JohnA1twb: on what?03:50
twbOn what your server is for03:50
twbI think it is more common for a server to have normal unix accounts than for them to have mail-only accounts.03:50
JohnA1twb: email, web, file, webdav ....03:51
twbe.g. a corporation or a university would (usually) be the former; an ISP would usually configure their customers only for the latter03:51
twbJohnA1: well, if you're going to be doing file sharing with NFS or Samba, the users' accounts must exist in that subsystem, too.  The easiest way to integrate such things is just to give them conventional accounts.03:52
JohnA1twb: why bother they can never log on to the server.03:53
Anon2553Quick question if anyone can give me a hand...I'm in my server right now, having an issue I've had once or twice, it resolved itself last time(or rather, I accidentally fixed it I assume). I can't see anything I'm typing. It's making wget a headache03:54
JohnA1twb: i am also trying to work out to put such things as "~/.dovecot.sieve" on a system where all the email user are virtual!03:56
twbSorry, I don't know have experience with virtual users03:56
twbYou can wait here for someone else to respond, and/or try #dovecot and #postfix as appropriate.03:56
JohnA1TWB: thats ok I'll work it out. Just its very puzzleing when you are told that there should be no users on a server, hence no home dirs, and then lots of config stuff anchors itself to the home directories of users who should not exist!!!03:59
twbI don't know who told you that, but IMO it is wrong04:00
twbIf you don't want users logging into the system, create normal accounts, but revoke their SSH access04:00
twb(e.g. AllowGroups in sshd_config)04:00
JohnA1twb: whats the point in having user account on a server if the users cannot log on to access them.04:03
twbJohnA1: er, so they have a home directory04:03
twbSo that dovecot and samba and friends can all just see the users by looking in the normal place, instead of having to be told about separate "virtual" users04:04
qman__virtual users are best suited when you have a web server with lots of domains you want separate mail-only users for04:06
qman__if you've got other services like that, you should use normal users04:07
qman__makes configuration a lot simpler, and as twb said, it's easy to restrict access to the stuff you want them to use04:08
JohnA1twb: I was about to we are gong round in circles when I saw you last comment, we have several domains04:08
twbAh, well, I don't have that problem.04:08
twbI guess if it were me I would be operating each domain inside an LXC gaol anyway.04:08
twbDepends if you have 10 domains or 10,00004:09
Anon2553Can anyone tell me how to get what I'm typing into the kernel to show up as I'm typing it again? I'm in Ubuntu Server 11.04 and anything I type is hidden, but still works when I enter it. All I need to do is a simple wget but it's difficult to keep track of the url while I can't see what I'm typing...04:09
Anon2553Relatively new to server04:10
JohnA1TWB: about 15 domains, some are aliases of others, so we wind up with about 8 silos.04:11
JohnA1twb: we were using samba, but switched to webdav as this makes things easier when our purchasing/sales people are travelling particularly in China!04:12
twbThen get 8GB of RAM and just run each domain as a gaol, with a separate apache and dovecot instance inside it, and conventional unix users inside it04:27
twbYou want to do that anyway for apache if they're doing fucked-up things like PHP, to stop one customer's bad PHP code from allowing attackers to bork other domains04:27
twbOh FFS, zenity --help won't give you help output unless you start X05:24
twbWhich is a big help when I'm dialled in to an airgapped prison over a 56k modem :-/05:25
blinkizHello. I monitor some files on my servers like the checksum of sshd. It has changed this morning and it is probably just a security update. Anyway, can I verify the current checksum against a value on the Internet somewhere?06:13
twbblinkiz: debsums, debsecan06:16
twbPossibly something heavier-weight, like tripwire06:17
blinkiztwb, Thanks for the suggestions.06:18
=== jpds_ is now known as jpds
uvirtbotNew bug: #859444 in irqbalance (main) "irqbalance crashed with SIGSEGV in readdir64() (dup-of: 739364)" [Undecided,New] https://launchpad.net/bugs/85944407:31
RoyKmorning07:56
jamespagemorning all08:08
=== sh1ny is now known as shiny_home
Davieytwb: DO you have it sorted?08:46
twbDaviey: er, context?08:47
Davieytwb: zenity --help?08:47
twbOh, sorry08:47
twbThe problem was I ran zenity --question --test not --text08:48
Davieyah08:48
twbAlthough I did get the --help output by finding a locale lucid box08:48
twb*local08:48
Davieygroovy08:52
koolhead11hi all09:10
jamespageDaviey: could you review/accepted the nominations on bug 84370109:32
uvirtbotLaunchpad bug 843701 in tomcat7 "CVE-2011-3190 Apache Tomcat Authentication bypass and information disclosure" [Undecided,Fix released] https://launchpad.net/bugs/84370109:32
Dramaturg_Hey all! I need your advice - I have a root-server running Ubuntu Server 11.04. I need to set up some special software there (Wine + Software) for other people to connect over VNC/RDP and use the PC. Now my question is what's the best way to set it up. I installed x11vnc, xorg, unity and started all but I still cant connect.10:10
twbYou shouldn't have X on a server10:16
Dramaturg_twb: The "server" should be just a remote desktop - the software is 60 GB big and people use it very rarely - so I want to have a dedicated pc only for this task10:19
PleXsHi, can anyone tell me how to work with KVM on Ubuntu system? is it just installing ubuntu server and then the kvm packages?10:19
twbPleXs: you probably want libvirt-bin on the server and virt-manager on a desktop10:19
Dramaturg_twb: and the hoster I use gives only Ubuntu Server version10:20
twbDramaturg_: I've stopped caring10:21
Davieyjamespage: looking10:22
jamespageta: bug closed itself when fixes landed in Oneiric10:22
jamespagebut needs SRU/security fix -> lucid10:22
jamespage(and maybe hardy - but that is backports - not done that before)10:23
x404xserver with no x ? how do i run gui admin utils then ?10:23
Davieyjamespage: I assume you know that security will have to sponsor that10:24
Daviey?10:24
jamespageDaviey, yes - as they have to go through -security10:24
Davieysuper10:25
x404xin my experience its a lot easyer to run x on the server and use vnc to connect remotely10:30
x404xI tryed running x remotely but it did not work well10:30
PleXstwb, is there also a web managable manager?10:30
twbIf you are doing system administration via a web UI, you have already lost.10:31
twbx404x: you were probably using fancy-pants modern toolkits that assume you have a fat pipe (like, DMA) between the X server and the app server10:32
PleXstwb, I just want to be able to do the administration on multiple platforms10:32
twbpuppet10:33
jamespageDaviey: ta10:47
x404xim not sure what u consider a fat pipe, but I was remotely admining this from crappy internet cafees in thailand, 50 people sharing a 512 kb line10:59
x404xit can be tuned to use very little bandwith10:59
twb10GiB/s11:05
twbAnd yes, it can be tuned, but stuff like firefox absolutely suck at it11:05
twbcf. the environment X was designed for: xterm, xclock and xload11:06
x404xI used it with about 20 kb /sec11:14
twbx404x: what, firefox?11:16
x404xvnc and remote admin11:42
=== smb` is now known as smb
RoyKx404x: why not freenx?11:49
Davieyrbasak: How is the console conundrum looking?12:02
x404xwhat is the advantage of freenx ?12:02
x404xsounds a bit familiar, I might have tried it and it sucked12:02
DavieyNX is far superior to vnc.12:02
Davieyvnc = bitmaps / tiles, NX is an interactive X12:03
rbasakDaviey: AFAICT it should work now save for the apparmor restriction that jdstrand is looking at. If I write to the generated fifo manually then it goes into console_output OK.12:03
Davieyrbasak: Fancy pushing to a PPA, so we can try on the lab?12:03
rbasakDaviey: it won't work without the apparmor fix12:04
Davieyrbasak: we'll teardown apparmor to prove it DTRT without apparmor?12:05
Davieyrbasak: can you push it with version string 2011.3-0ubuntu3~ppa0 ?12:05
rbasakDaviey: it'll be quicker for me to demo to you with the PPA, do you still want a PPA anyway or just a demo?12:05
rbasaks/with/without12:05
* rbasak has a system that'll give him a test virtual nova installation in one command now12:06
Davieyrbasak: either way.. :)12:06
Davieyrbasak: do share.12:06
x404xhm maybe ill try freenx then, i guess im thinking of free vnc12:08
x404xdoes it use less bandwith than vnc and runs fine on crappy modems ?12:08
Daviey!wfm12:09
ubottuCommon Sense: Just because you can, does not mean you should (and especially recommend to others). Think before you do. "Works for me" does not mean it is ok. The latest version of everything is not always useful if you aim for stability. Please see http://geekosophical.net/random/worksforme/12:09
rbasakThat's the main improvement in NX - performance - less bandwidth, fewer round trips, etc.12:09
Davieybah, i hate that defintion.12:09
nigelbDaviey: Contrary to what you were thinking? :)12:13
DavieyWould seem that way12:14
ersiOptimize to the maaax! *screams*12:14
MatBoyhi guys! I'm wondering if the red5 install using apt-get install red5-server is 100% OK12:40
spajderixhi12:50
spajderixdoes any one know how to force fetchmail to use SOCKS5?12:50
* airtonix looks up what red5 is, sees that it is something written in java, walks away12:51
jdstrandDaviey: fyi, while it is in universe, I thought you guys might be interested in CVE-2011-1926 for cyrus-imapd-2.2 (http://www.debian.org/security/2011/dsa-2242)13:01
uvirtbotjdstrand: The STARTTLS implementation in Cyrus IMAP Server before 2.4.7 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1926)13:01
=== med_out is now known as medberry
lynxmanmorning everyone o/13:29
koolhead11hey lynxman13:30
lynxmanhey koolhead1113:30
tjaaltonstgraber: hey, mind if I fix a couple of bugs on sssd, upstream pinged me on #sssd about them13:42
negronjladam_g: ping13:43
stgrabertjaalton: feel free :)13:44
tjaaltonstgraber: thanks13:45
uvirtbotNew bug: #859658 in postfix (main) "Add SSMTP entry" [Undecided,New] https://launchpad.net/bugs/85965813:56
hallynDaviey: you're pushing the fix for 857746 today?13:59
hallynbug 857746 that is13:59
uvirtbotLaunchpad bug 857746 in qemu-kvm "Drop capabilities bit in emulated e1000" [Undecided,Confirmed] https://launchpad.net/bugs/85774613:59
Davieyhallyn: Do you want to review and sponsor it? :)14:10
hallynDaviey: ok14:40
kev009_anyone else think Ubuntu's init system sucks so bad?  like, it completely fails to /etc/init.d/memcached restart has no effect.  or slapd doesn't start on boot with the freaking default installed scripts?14:58
ikoniakev009_: it's not ubuntus, most other distros use it too14:58
Davieykev009_: slapd not starting was intentional.. iirc you need to edit /etc/default/slapd14:59
Daviey(same goes with puppet.)14:59
cariboukev009_: not all the init scripts support the 'restart' statement14:59
kev009_caribou: for memcached I've also added stop then start, but it seems to fail under very fast succession (i.e. from a shell script)15:00
cariboukev009_: that can happen if the 'stop' sequence is not completed when the 'start' sequence is called upon15:01
Davieystart and stopping memcache often suggests you are doing it wrong.15:01
kev009_just to stir up some flame, Gentoo's OpenRC never gave me these problems.  would expect the incumbent to get something like this right.15:01
kev009_the slapd default thing is known.  best I can tell, it's choking on DNS not being up or something.  circular dependency?15:02
kev009_11.04 on two systems with that problem fwiw15:03
storrgieis there a log for what rm does? I've accidentally run it on a file with many symlinks and I'm not sure what it deleted on my system...15:05
=== aurigus is now known as aurigus_
=== aurigus_ is now known as aurigus
lynxmanadam_g: ping15:26
Davieyhallyn: was it ok?15:38
hallynDaviey: the qemu-kvm patch?  yeah, it looked good and i pushed it15:39
hallyn(compile-tested fine015:39
Davieyhallyn: If it compiles, ship it - my mantra aswell.15:39
Davieyhallyn: accepted btw.15:40
hallynDaviey: for the one-liner, signed off by aliguori, yeah that was good enough for me :)15:40
Davieyheh15:40
hallynaccepted?15:40
Davieyhallyn: package uploads are on manual approval.15:41
Davieyramping up to release!15:41
hallynDaviey: oh right.  thanks then :)15:47
hallynbiab15:47
semiosisi am trying to upload to my launchpad ppa, which i do regularly, and today I am getting a rejection error from dput stating that the GPG signature verification on my .changes file is not valid.  Full output from dput here: http://paste.ubuntu.com/697339/15:55
bigjoolsignore it, it's bug 79895715:55
uvirtbotLaunchpad bug 798957 in launchpad "Uploads are seemingly (but not actually) rejected" [Critical,Triaged] https://launchpad.net/bugs/79895715:55
semiosisbigjools: thank you very much!15:55
bigjoolsI am in the middle of diagnosing it so I've not cleared the error justyet15:55
bigjoolsnp15:56
Davieybigjools is EVERYWHERE.. waiting to ponce.16:01
bigjoolsworst typo ever16:01
Davieyerr, pounce.16:01
bigjools)16:01
diogo_79hi16:02
diogo_79how can i see witch version package as instal?l16:03
adam_glynxman: pong16:03
adam_gnegronjl: ^16:04
lynxmanadam_g: morning16:04
diogo_79from the command line16:04
negronjlhi adam_g:  I was looking for your openstack branches but, lynxman sent them my way.  Thanks anyway :)16:04
diogo_79i have install the freetds package in ubuntu-server 1.10 64bits but i donĀ“t know what version as install16:14
diogo_79ubuntu server 10.10 64 bits16:15
adam__hey, im using Ubuntu Server 10.04 and trying to automate everything..  how do i use mysql to set a shell script variable? (IE USER='SELECT username FROM table WHERE id=1')16:17
PleXsanyone having corrupt gfx on bootscreen with Ubuntu Server 10.04 ?16:23
ioadam__: #mysql16:24
adam__io: im there but i cant say anything  :(16:25
RoyKadam__: echo "select name from table_name where name = 'asdf';" | mysql --disable-column-names -pyourpassword database_name16:26
RoyKand then16:26
RoyKusername=`echo "select name from table_name where name = 'asdf';" | mysql --disable-column-names -pyourpassword database_name`16:26
RoyKetc16:26
RoyKkeep in mind that if that column doesn't have a unique index, you may be in trouble...16:27
RoyKadam__: if you can't say anything, the channel may be accepting only authenticated users - try /msg nickserv register|identify16:27
ioadam__: "/msg nickserv help register"16:28
RoyKadam__: the topic on #mysql specifically says you have to register to post anything16:28
adam__:s16:29
adam__thanks, i see the topic now! didnt notice it :o16:29
RoyKadam__: anyway - that oneliner I posted will probably do the job16:31
DavieyRoAkSoAx: Are you around?16:46
Davieyadam_g: and you?16:46
DavieyNg: Are you going to be upset if i WON'T FIX bug 249443 ?16:49
uvirtbotLaunchpad bug 249443 in asterisk "Asterisk goes into a catastrophic log rotation loop when a conference recording hits max file size" [High,Incomplete] https://launchpad.net/bugs/24944316:49
NgDaviey: I imagine that would depend on why you WONTFIX it :)16:51
=== adam__ is now known as Dori922
DavieyNg: because nobody other than you seems to care about it. :)16:53
RoAkSoAxDaviey: yes I'm around what's up? Im in boston though16:53
DavieyRoAkSoAx: Groovy! With bug 827496, it seems that template expansion isn't working with debian style preseeds?16:54
uvirtbotLaunchpad bug 827496 in cobbler "cobbler kickstart metadata dont affect ubuntu preseed " [High,Incomplete] https://launchpad.net/bugs/82749616:54
DavieyCan you confirm?16:55
Davieyhallyn: Are you still working on bug 703811 ?16:55
uvirtbotLaunchpad bug 703811 in kvm "kvm guest's cpu usage with virtio storage driver goes up to 100% because of flush process" [High,Incomplete] https://launchpad.net/bugs/70381116:55
jamespageanyone else seeing this error on fresh oneiric server installs? http://paste.ubuntu.com/697380/16:55
RoAkSoAxDaviey: i don't think that's the case cause I was working with ksmeta parameters all along and it worked16:56
RoAkSoAxDaviey: the only thing is that he needs to manually edit the preseed to reflect those paramters, but each parameter gets inot a variable16:56
smoserhallyn, so that lxc-oneiric does hang up pretty fast after 'euca-run-instances'16:56
smoserit must be shutting off networking somehow16:56
RoAkSoAxDaviey: like USER="ubuntu"16:56
smoserbut i dont know why it did not do that before...16:56
RoAkSoAxDaviey: i'll assign it to myeslf and verify though16:56
jamespagemight be restricted to folk with a en_GB locale16:57
DavieyRoAkSoAx: Fancy askig a suitable question to move it forward / incomplete?16:57
RoAkSoAxDaviey: yes will do once I get myself some hardware to play with16:57
Davieysmoser: *awesome*16:57
DavieyRoAkSoAx: thanks16:57
DavieyAnyone seen zul?16:57
NgDaviey: fine :(16:58
DavieyRoAkSoAx: I thought you had more hardware this week than you knew what to do with?16:58
Davieyrbasak: Before you EOD, can you push a branch regarding the console fix?16:58
Davieyor ideally, PPA it?16:58
Davieyjdstrand is working on the apparmour issue as we speak.16:59
hallynsmoser: yeah16:59
smoserjamespage, you're seeing that on oneiric server instance ?16:59
hallynDaviey: no16:59
smoseror install ?16:59
smosers/server instance/cloud-iamge instance/16:59
DavieyNg: Sorry.. :(16:59
jamespagesmoser: instances - both in ec2 and running on my openstack install16:59
adam_gDaviey: im here, lost in an email but here16:59
DavieyNg: We both know nobody is actually going to fix it... no point it just staying active for another few years.16:59
hallynDaviey: it's incomplete...16:59
hallyni couldn't reproduce16:59
jamespagedon't get in on an install - sorry that was not clear16:59
NgDaviey: it's ok, if upstream doesn't care then we might as well ditch it too16:59
jamespageand I said install17:00
smoserjamespage, cloud-init is not running 'locale'17:00
Davieyhallyn: I think if you unassign yourself, the bug will be able to die.17:00
hallynah17:00
smoserjamespage, look at /var/log/cloud-init.log you probably have some trace17:00
DavieyNg: Sorry :(17:00
hallyni had no idea it wouldn't with an assignee!  will do17:00
jamespagesmoser: http://paste.ubuntu.com/697382/17:02
jamespageseems to be running OK17:02
uvirtbotNew bug: #249443 in asterisk "Asterisk goes into a catastrophic log rotation loop when a conference recording hits max file size" [High,Incomplete] https://launchpad.net/bugs/24944317:02
rbasakDaviey: I can do a bzr push now and I'll do a PPA in the morning. Where should I push to? ~racb/ubuntu/nova/832507?17:02
Davieyrbasak: works for me. :)17:03
jamespagesmoser: I can fix it up with a locale-gen for the missing locale but that does not seem right17:03
Davieyjamespage: blame smoser.17:04
rbasakDaviey: push location? I don't think I understand the LP magic bzr path stuff yet.17:04
smoserjamespage, open a bug please.17:06
jamespagesmoser: ack  - on it now17:06
Davieyrbasak: bzr push lp:~racb/ubuntu/oneiric/nova/832507?17:12
jamespagesmoser: bug 85981417:13
uvirtbotLaunchpad bug 859814 in cloud-init "Locale issues with beta-2 cloud-images" [Undecided,New] https://launchpad.net/bugs/85981417:13
* rbasak just managed to crash bzr :-/17:16
Ursinhanot that hard to do that :P17:17
Davieyrbasak: crikey.. stop breaking stuff17:18
rbasakDaviey: I always manage to make everything complicated, don't I? :)17:18
uvirtbotNew bug: #859814 in cloud-init (main) "Locale issues with beta-2 cloud-images" [Undecided,New] https://launchpad.net/bugs/85981417:21
uvirtbotNew bug: #859816 in bind9 (main) "package bind9 1:9.7.0.dfsg.P1-1ubuntu0.3 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/85981617:21
rbasakDaviey: OK, it's in lp:~racb/ubuntu/oneiric/nova/83250717:31
Davieysuper!17:32
rbasakDaviey: revisions 46, 47 and 49 can probably be dropped17:32
rbasak(or whatever you do in the bzr world!)17:32
Davieyheh17:33
=== koolhead11 is now known as koolhead11|bot
smoserjamespage, i cannot reproduce your silly bug17:35
Davieyadam_g: How did you get on with libvirt certs?17:37
=== PleXuS is now known as PleXs
Davieysmoser: probably because you are on a Yank Locale?17:37
smoserah. yeah, and LC_ is slipping through.17:37
methods1does ubuntu server log sudo access ?17:38
SpamapSmethods1: yes, in /var/log/auth.log17:39
adam_gDaviey: began looking at it friday PM, gonna work on it today. thinking of using the controller node as a CA that is responsible for distributing keys of new compute nodes to the existing pool17:39
Davieyadam_g: groovy!17:39
Davieyadam_g: I don't believe migrations works over an ssh tunnel, but if it does - is that easier?17:40
adam_gDaviey: need to configure it manually once tho and the libvirt docs a bit RH specific. did you get it working manually with SSL  or did you just disable auth?17:40
Davieyadam_g: I used noauth...17:40
DavieyI have previously setup certs and it was a royal pain :)17:40
* Daviey wishes he mde notes17:41
adam_gok17:41
methods1thanks17:43
smoserjamespage, Daviey can you verify or refute that that behavior will be the case on any remote system that does not have the locale's installed ofr your local locale?17:46
Davieysmoser: Hmm.17:54
Davieyjamespage: what ami-foo did you get that on?17:54
jamespageDaviey: well I use the most recent oneiric images in eu-west17:54
jamespagewith juju17:54
jamespagebut I also got it on a local openstack install17:55
jamespagebeta-1 and beta-2 do the sa,e17:55
jamespagesame17:55
Davieysmoser: so, smoser-ubuntu-images/ubuntu-oneiric-11.10-beta2-amd64-server-20110921.1.manifest.xml ?17:55
smoserwhat about it17:57
Davieythat should have this bug?17:58
Davieysmoser / jamespage: oddly, i got a US locale17:59
smoserDaviey, you might have to set LC_ALL explicitly18:01
smoserat least i did to recreate18:01
Davieysmoser: ah, yes18:03
smoserbut i think this is just functioning as intended.18:03
Davieysmoser: we only ship US locale?18:04
utlemmingsmoser: is this a purely a cloud-init bug, or is this an image bug?18:04
smoseri think it is neither18:05
smoserwe ship no generated locales.18:05
smoseron firt boot, cloud-init generates en_US.UTF-818:05
smoserat one point possibly 10.04, possibly prior, it would look at the ec2 region and eecide the locale to genrate and set as the default18:06
smoser(which is broken behavior i think, and i must have "fixed" that)18:06
smoseri believe this is mostly similar install behavior from CDs18:06
smoserwell. sort of. i'm not sure how the installer decides which locales to generate.18:06
Davieysmoser: What is the cost to do all the common ones?18:09
smoserthere is a real cost every time you do an upgrade in time.18:10
smoserlocale-gen takes real time to run18:10
DavieyProbably too late for this cycle, but i wonder if it's worth catching the Locale on first login and generating that?18:11
smoserDaviey, i would think that would be a general server issue18:17
smoserand we could follow it on the cloud instances18:17
smoserand not "probably too late", but "too late"18:17
JasonnIs there any way to resize partitions without formatting?18:19
Jasonnor losing data18:19
jamespagesmoser, Daviey: I get that on a natty image as well18:21
smoserright.18:21
smoseri commented18:21
smoseri suspect its an issue back to 10.04 or before18:21
smoserJasonn, yes, but it is complex.18:22
Davieyjamespage: Should we blame smoser ?18:22
jamespageDaviey: yep!18:22
smoserDaviey, jamespage the real bug, is that i fyou get into the situation that jamespage is in18:23
smoseryou cannot get out18:23
smoserwith 'sudo locale-gen en_US.UTF-8'18:23
smoseror at least i could not18:23
Jasonnsmoser: so better off just to reinstall?18:23
Davieysmoser: like a cage?18:23
jamespagesmoser: hmm - not sure about that18:23
smoserJasonn, you might try resizing with a live parted image18:23
smosers/image/disk/18:23
smoserhttp://gparted.sourceforge.net/livecd.php18:24
smoserid' give that a try18:24
smoserbut it will tell you to back up your data18:24
jamespagesmoser: 'sudo locale-gen en_GB.UTF-8' worked good for me18:24
smoserhm..18:24
smoserit didn't work fo rme when i was in already.18:24
smoseroh well.18:24
smoserjjohansen, could you build me a kernel of lucid-updates current with http://people.canonical.com/~smoser/lucid-loaders/dl/README.txt applied ?18:27
smoseryou'd done that once for me before.18:27
jjohansensmoser: sure amd64, i386 or both18:27
smoseri think i'm only using amd64, so that is fine18:27
jjohansenokay18:27
hallynachiang: hi18:31
achianghallyn: hi, we're playing around with a setup where we want to run ubuntu in a chroot18:31
achianghallyn: right now, we do this the traditional way: set up some bind mounts, do some other stuff in the chroot, then chroot into it18:32
achiangit's a graphical environment so we start up gdm with autologin, etc.18:32
achianghallyn: it works fine for now. but there will be a need to suspend/resume this chroot in the future, not just tear it down/set it up every time18:32
achianghallyn: we're based on natty18:33
hallynso you mean gdm on the host, as it's .xsession or whatever, calls a script which sets up the chroot?18:33
hallynor do you mean gdm is running in the chroot?18:33
achianghallyn: more the latter. gdm is running in the chroot18:34
hallynis that in vnc or xnest then?  or where/how do you start the thing up and connect?18:34
hallynwell maybe that's not yet so important,18:34
achiangwe start gdm on the 2nd display output18:34
hallynhave you seen lifeless' pages on setting up containers for a launchpad dev environment?18:35
achiangno, haven't seen them. i don't think we ever considered containers, but then i saw your planet post and realized that's probably what we need... just trying to get a better idea of how this problem might be solved18:35
hallynok, 'this problem' - what's the shortcoming with what you've got?18:36
achiangthe short coming is, "achiang doesn't know how to suspend/resume a chroot" :)18:36
achiangstarting up a chroot can be expensive, especially if gdm has to start up, unity has to start, etc.18:37
hallynwhat exactly do you mean by suspend/resume?  there is no (yet) checkpoint/restart, you can only freeze a container18:37
achiangfreezing would be good enough for our purposes, i think18:37
hallynok, you can do that without containers if that's preferable,18:38
achianghallyn: sorry for the sloppy terminology, container stuff is pretty new for us18:38
hallynjust put them into their own cgroup, and freeze with 'echo FROZEN > /cgroups/gdm/freezer.state'18:38
hallynbut switching to containers might make for better reproducability etc anyway18:39
achiangis this well supported in natty?18:39
hallynyup18:39
hallynit's purely a kernel feature, CGROUP_FREEZER18:40
achianghm, i'm sorry, we have a natty userspace, but i need to double-check which kernel we're using18:40
achiangnot good18:40
achiang2.6.35.718:40
hallyni think lucid has it too18:40
hallynyeah18:40
hallynlucid only disabled NET_NS.  freezer should be there18:40
hallynto confirm, 'mkdir /cgroup; mount -t cgroup cgroup /cgroup; ls /cgroup/freezer*'18:41
achiangoutside the chroot, right?18:41
hallyni'm being silly.  just grep -i freezer /proc/cgroups18:41
hallynshould still work in a chroot, but yeah on the host18:41
achiangwe don't seem to have a /proc/cgroups18:41
hallynthat's bad18:41
hallynare you in control of your kernel by chance?18:42
achiangwe can influence some Kconfig settings, but i wouldn't say we're really in control of it, no18:42
hallynKconfig settings is good enough18:42
achiangif there's a general backgrounder on cgroups vs containers, that's probably all i need for now18:43
hallynyou mean a tutorial18:43
hallyn?18:43
hallynyour kernel just needs CONFIG_CGROUPS=y and CONFIG_CGROUP_FREEZER=y18:43
achiangyeah, or a whitepaper or even a readme in Documentation/ would be fine18:43
achiangwell, we need to make a technology choice, i guess and i'm not really informed about pros/cons18:43
hallynDocumentation/cgroups18:44
hallyncgroups.txt and freezer-subsystem.txt18:44
hallynachiang: ping me if you have any more questions.  (I'll be on another screen)18:46
achianghallyn: thanks, clearly i need to go do some more homework before asking you questions18:46
StaticHello, I have setup a Ubuntu 10.10 Server but it seems to sleep if I leave it a while. Then, obviously, my servers stop responding. How can I stop it from doing this?18:48
robosyou have X installed on a server?18:50
zulRoAkSoAx: something we might want to pull in: http://git.fedorahosted.org/git/?p=cobbler;a=blobdiff;f=cobbler/pxegen.py;h=32c8f01ef246d46e31451676e0b87a6443834497;hp=889f363d4e35472d2a55e79751f698a1e80c7887;hb=8f217f054d274b801e7b8ba68fa1b7909968233b;hpb=9a2220b750a4f835f60e022e510952feed85402b18:50
roboshello: If I do an iostat -x -n I see ops/s at 153, r/ops at 35 and 0 w/ops. How can there be 153 ops/s when read ops + write ops is only 35?18:51
Staticrobos: No, I don't.18:51
zulsmoser: ill pull in the hostname fix18:52
zulivoks: ill pull in the gateway fix18:52
Staticrobos: I installed it onto a laptop and it keeps sleeping.18:52
robosSorry, Static, i've never seen such a thing unless X was installed18:52
robosoh18:52
smoserzul,  iw as about to prpose it.18:52
robosa laptop...18:52
TheEvilPhoenixis there a way to assign the FQDN as the hostname of an ubuntu server instance?18:52
TheEvilPhoenixFQDN of the server*18:52
zulsmoser: cool beans18:52
zulsmoser: ill pull in the branch then ;)18:53
StaticYes, it's an old one that I could find no better use for. :)18:53
robosStatic, i only know how to fix that one from the gui18:53
smoserbut actually... i'll let you do it18:53
smoseras it looks like the branch is broken to me, zul18:53
=== shiny_home is now known as sh1ny
zulsmoser: broken as in how?18:53
smoserwait.. maybe not. jsut aminute18:53
Staticrobos: Ah, okay.18:53
zulDaviey: is there anything else on your list that we need to backport for?18:55
Davieyzul: Nothing has jumped out at me, but if you wanted to go through all the core projects trunk and see if there is anything you think?19:00
zulack19:00
zulill probably do an upload on wednesday19:01
RoAkSoAxzul: alright.. thought u were doing another git import19:01
zulRoAkSoAx: i was...19:01
zulRoAkSoAx: but you guys were doing the ense...i mean juju stuff and didnt want to screw you over :)19:01
adam_gzul: are the nova-compute-* packages the only ones that make use of an additional --flagfile?19:02
smoserzul, where should i push this for you to pull ?19:02
zuladam_g: yeah...ill pull in your fix for that as well19:02
smosershould i just push to lp:ubuntu/nova ?19:03
zul~ubuntu-server-dev/nova/diablo is the branch i do uploads for19:03
smoserso push there?19:03
adam_gzul: no wait19:03
zulsmoser: yes please19:03
adam_gzul: i think we can fix it in packaging. ill get something prepared later today19:03
zuladam_g: k19:04
RoAkSoAxzul: hehe ok19:04
zulRoAkSoAx: i could schedule one for friday though19:05
sh1nyTheEvilPhoenix, yes you can19:06
TheEvilPhoenixsh1ny:  how?19:06
TheEvilPhoenixand no i dont mean RDNS :P19:06
sh1nyin /etc/hostname put the name part19:08
sh1nyin /etc/hosts put the ip that you want to be resolvable and the hostname19:08
sh1nyi got something like this19:08
sh1ny127.0.0.1localhost19:08
sh1ny83.148.126.67blackwing.dodo.bgblackwing19:08
TheEvilPhoenixi see19:09
TheEvilPhoenixthanks19:09
sh1nyyou might need to19:09
sh1ny/etc/init.d/hostname start19:09
smoserzul, ok. i pushed there.19:10
zulsmoser: cool thanks :)19:10
smoserpushed as UNRELEASED though19:10
zulsmoser: sweeet19:11
RoAkSoAxzul: alright19:11
Davieyzul: So something that is apparent, is merging of the conf files isn't so hot.19:12
zulDaviey: how so?19:12
Davieyzul: In euca, we has a 'distro default' and a user overides file.. some didn't like that, but it wasn't so bad19:12
Davieyperhaps we should have used ucf or something19:13
zulDaviey: so maybe something like ucf19:13
zulim not a big fan of ucf19:13
zulbut sure19:13
Davieywell /something/.19:14
uvirtbotNew bug: #859914 in tomcat6 (main) "package tomcat6 6.0.28-10ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/85991419:16
Davieysmoser: Something the OSAPI has added is ability to change your mind for X seconds if you terminate an instance, would it be abuse to consider adding that feature next cycle to ec2?19:17
DavieySo if enabled, terminate puts it in stopped status for X seconds, before really terminating?19:17
Davieyor show terminating, but allow it to be rebooted.19:18
Davieyutlemming: Have thoughts? ^19:18
smoseri think openstack api is garbage in a lot of places19:18
smoseramazon has a solution , which i think is sufficient19:19
smoseryou modify-instance-attribute and turn on "disableApiTermination"19:19
smoserthen it wont die19:19
smoseressentially the same as 'rm' versus 'rm -f'19:19
sh1nysmoser that flag saved my ass a few times when i wasn't paying attention - very useful to have19:20
smoserI think the 'X' seconds part of it is somewhat "fanatical"19:21
smosersillyness19:21
smoserbut... i just learned of it now.19:21
Davieysmoser: Ok19:22
zuldoesnt amazon has a api call saying yes keep my images alive or something?19:22
smoserzul read above19:24
smoserDaviey, don't you think that is a bit silly?19:24
smoserdo you think there is real value in "protect me from my self for X seconds" more so than "protect me from myself" ?19:25
smoseri'd think it would be useful to have make map disableapitermination in the ec2 api to setting that timeout to 2^32 or something.19:25
zulsmoser: we need to go through the ec2 api doc and see whats missing and see whats not kosher19:28
Davieyzul: ack19:30
Davieysmoser: Sure, but i can see it being a nice optional feature19:30
zulwhich means i have to start reading this week19:30
robbiewutlemming: ping19:36
Davieyzul: Hah.. it isn't compliant, and getting it so before release = fat chance.19:37
DavieyAlthough aws isn't ec2 compliant either. :)19:37
zulthank god for standards....*grin*19:38
sorenDo you guys care about strict EC2 compliance?19:40
DavieyAnyone want to tackle a FTBFS?19:40
ikoniaDaviey: what do you need ?19:41
Davieysoren: I think compatiable is more importiant than total compliance, which means there is an overlap.. as someone using it in an odd fashion might expose fail.. which leans towards strict being good.19:41
Davieyikonia: bug 83112119:42
uvirtbotLaunchpad bug 831121 in dovecot-antispam "dovecot-antispam version 1.4~rc3-1 failed to build in oneiric" [High,Confirmed] https://launchpad.net/bugs/83112119:42
ikonialet me have a look19:42
Davieyikonia: bug 83117919:42
uvirtbotLaunchpad bug 831179 in dovecot-metadata-plugin "dovecot-metadata-plugin version 0.0.1~hg144-0ubuntu1 failed to build in oneiric" [High,Confirmed] https://launchpad.net/bugs/83117919:42
Davieysuper!19:42
sorenDaviey: It's sort of an odd situation. The rule about being liberal in what you accept and conservative in what you give back is sound in the general case, but if someone were to use OpenStack as a way to test if their stuff will work with EC2, we need to be strict/liberal in the exact same way as EC2. Which sounds like boring, tedious work.19:43
ikoniaI'll setup some VM's, Daviey whats time lines/urgency ?19:43
ikonia831121 certainly looks do-able19:43
Davieysmoser / zul: worth us cherrypicking bug 854614?19:43
uvirtbotLaunchpad bug 854614 in nova "metadata service local-hostname is not fqdn" [Undecided,In progress] https://launchpad.net/bugs/85461419:43
ikoniasorry 831179 I meant19:44
Davieysoren: agreed.. then do you make the same non-compliant things that AWS does, or follow the spec?19:44
sorenDaviey: Oh, that's easy. Always do what EC2 does.19:44
Davieyikonia: as soon as possible, ideally before this thursday.19:45
Davieysoren: EC2 doesn't 'do', it's a spec. :)19:45
sorenDaviey: I don't consider it an API specification as much as I consider it documentation of how things are (supposed to be).19:45
ikoniaDaviey: I'll set something up now and see if it's something I can help with19:45
ikoniaDaviey: may need a few "process" advice tips if I can get this working19:45
Davieyikonia: Rocking, feel free to ask questions in here, -motu or -devel if you want a hand. :)19:46
ikoniaDaviey: sure.19:46
sorenDaviey: There's no use in implementing what's in the "spec" if EC2 doesn't. We won't win any friends by claiming to be "the more correct EC2".19:46
smoserDaviey, that is already cherry picked.19:46
Davieysmoser: gah19:46
Davieysoren: Hmm, are you using EC2 to talk about AWS's implementaion?19:47
sorenWe should do exactly what EC2 does. It just so happens that they've been nice enough to document what they do pretty well. Occasionally, they get their docs wrong, but we're not implementing an open spec.19:48
sorenI am indeed.19:48
* Daviey finds that confusing19:48
DavieyThat is like saying, lets do what HTTP does, when they are talking about apache.19:48
sorenWhat would you call the thing that I call EC2, then?19:49
sorenI don't care much about the exact nomenclature as long as we can share it.19:49
Davieysoren: AWS19:49
soren"AWS" in my dictionary is the collection of the various services: EC2, S3, etc.19:51
sorenBut whatever.19:51
sorenLet's call it AWS. As long as we share the terminology, we can talk :)19:51
DavieyHmm, you could be right19:51
Davieysoren: so with bug 715443, i made it stricter than AWS's EC2 - but matching the EC2 published spec AIUI19:52
uvirtbotLaunchpad bug 715443 in nova "EC2 APIs Create Keypairs/Security Groups etc above database column limits gives weird results" [Low,Fix released] https://launchpad.net/bugs/71544319:53
Davieyyou think that was wrong?19:53
sorenDid it just truncate those names before?19:54
sorenAnyways: I'd prefer to do what AWS does. If that means accept arbitrarily long names for stuff, so be it. However, imposing a 255 char limit, but in the process ensuring that if someone creates a security group by some name, they can retrieve it again by that name, then that's an improvement.19:56
* soren needs to spend time elsewhere19:56
sorena) my office is super dusty because a painter was here today sanding the walls, and b) I'm traveling tomorrow so shoud be spending time with the missus.19:57
Davieysoren: I believe amazon lets you have other stuff, rather than just spaces, dashes, and underscores.. but the spec states just that20:01
DavieyThe length AWS handles correctly20:01
Davieysoren: have fun o/20:01
zulDaviey: smoser just did20:02
Davieyzul: did what?20:03
Davieyah, bug 85461420:04
uvirtbotLaunchpad bug 854614 in nova "metadata service local-hostname is not fqdn" [Undecided,In progress] https://launchpad.net/bugs/85461420:04
zulsorry had to pick up liam from the bus20:05
Davieysmoser: It would be really good if you included LP: #BUGNUM syntaxt in changelogs :)20:05
smoserwhich changelogs ?20:06
smoseroh suck.20:06
smosersorry. yeah. i thought i did.20:06
zuldont worry ill do it right i forgot to do one for i did20:07
zulDaviey: i agree we should do what ec2 supposedly do do20:09
=== Jasonn is now known as Jasonn|NotHere
=== Jasonn|NotHere is now known as Jasonn
Davieyzul: does the patch you added have a bug num?20:10
Davieyi just pushed smosers20:10
zulDaviey: it does now :)20:10
Davieywait, i didn't.. you beat me zul :)20:10
zulDaviey: did you get any traction on that keys disapearing bug?20:12
TheEvilPhoenixhey Daviey, any idea how uvirtbot is configged to just find the bug informations and then display new bugs here?20:12
* TheEvilPhoenix was wonderingi how the bots do that20:12
Davieyzul: I am leaning towards it being a bad merge, where --deprecuated-auth was lost20:13
Davieydeprecated*20:13
Davieyzul: Once i enabled that on all the componets, it seemed to come back20:13
DavieyTheEvilPhoenix: Uses the LP api.. there are three different bots, uvirtbot, ubottu (and clones) and mup.20:14
TheEvilPhoenixDaviey:  ah.  i assume just some kind of timer to routinely check, or something?L20:14
zulDaviey: ack20:14
DavieyTheEvilPhoenix: there is actually an atom feed, but i suspect it processes via bug mail.20:15
TheEvilPhoenixi see20:15
DavieySpamapS: Are you looking to get those transition bugs resolved this cycle, or is it one for next?20:16
TheEvilPhoenixDaviey:  who manages uvirtbot?  and do you know what its framework is?20:18
* TheEvilPhoenix assumes python/supybot but isnt sure20:19
SpamapSDaviey: runlevel1 ? those can wait20:19
DavieySpamapS: yeah, thanks20:20
SpamapSDaviey: they're a necessity next cycle, but its not worth spending valuable resources on anymore for 11.1020:20
DavieyTheEvilPhoenix: soren manages uvirtbot20:20
TheEvilPhoenixthanks, i'll ask questions to soren then when i have them.20:21
TheEvilPhoenixon another note, Daviey, got any more beta ISOs you need tested?20:21
TheEvilPhoenix:P20:21
DavieyTheEvilPhoenix: testing the latest daily is always appreciated, but no candidate images which need acceptance testing.20:22
TheEvilPhoenixDaviey:  link to the dailies?20:22
DavieyTheEvilPhoenix: bug triage is something that we really need help with :)20:23
DavieyTheEvilPhoenix: http://cdimage.ubuntu.com/ubuntu-server/daily/current/20:23
TheEvilPhoenixwtfh... slow laggy system today >.>20:25
* TheEvilPhoenix has a download speed of 5KBps >:(20:25
TheEvilPhoenixehh20:26
TheEvilPhoenixi'll download it from a campus computer and throw the image onto a usb drive in about an hour20:26
TheEvilPhoenixthen i'll start testing the daily iso :P20:27
DavieyTheEvilPhoenix: rocking!20:27
Davieyzul: seen bzr commit -m "foo" --fixes=lp:bugnumber ?20:28
zulno i havent20:28
DavieyIt logs the bug number in the bzr metadata, and links it to the bug report.20:29
zulah sweet....20:30
* zul puts it in his notebook20:30
Davieyi dscovered it by accident20:31
uvirtbotNew bug: #860019 in mysql-5.1 (main) "package mysql-server-5.1 5.1.58-1ubuntu1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/86001920:57
Davieysmoser: yeah, probably right21:03
smoserDaviey, zul both of you, use 'debcommit'21:03
smoserthen it just works21:03
smoser(but obviously not if you do not type LP: # in the commit message)21:03
smoserDaviey, did you mean to milestone https://bugs.launchpad.net/bugs/85981421:04
uvirtbotLaunchpad bug 859814 in cloud-init "Locale issues with beta-1/2 cloud-images" [Low,Incomplete]21:04
Davieysmoser: debcommit when we are fixing your mess?21:04
smoseri really have better things to do than fix a bug that existed for 2 years in the final week of this release.21:04
Daviey22:02 < Daviey> smoser: yeah, probably right21:04
smoserwhy wouldn't you use debcommit when fixing a mess.21:04
Davieyi prempted your question by 2 mins, i am GOOD>21:04
smoseri dont know what "probably right" meant.21:04
smoserah.21:04
dknneed help recovering my raid 10 array21:32
jjohansensmoser: http://people.canonical.com/~jj/smoser/21:35
dkni have 4 disks in raid 10 software using mdadm, i was recovering one disk, when i lost another, i seemed to luck in as i could still access the files on the device, so i figured i had lost one of each of the raid 1 mirror disks, instead of two on one side of the raid 0 part21:35
jjohansensorry I forgot about it after I kicked of the build21:36
dknso i removed the failed disk's, and re added them to get mdadm to re sync again, then the mount for the raid 10 device went invalid, and isn't starting back up when i reboot21:37
PleXshmm why do my linux raid get recognised as /dev/md127 instead of md0? :O21:38
dkntry sudo mdadm --help21:42
rcsheetsWhat is the reasoning behind USERGROUPS=yes in /etc/adduser.conf ?22:04
rcsheetsall i have been able to find is that changing it to no is not recommended, but not why22:04
tipharescan someone help me get dropbox working on my US 11.0422:17
tipharesi've followed the guide on the site, but when i run it it just freeze :(22:18
tipharesnvm22:28
dkndid u get it working tiphares?23:04
tipharesye23:04
dknwhat was the problem?23:04
tipharesfunny how everything magically works once you ask for assistance23:04
tipharesdon't know, don't care:P working now23:05
SpamapSm_3: hey I have a fix for bug 854866 that I'm about to upload.. I just ran into it myself. :P23:21
uvirtbotLaunchpad bug 854866 in ganglia "some ganglia packages won't install because of useradd" [High,Confirmed] https://launchpad.net/bugs/85486623:21
SpamapSm_3: I see your patch, which looks more "correct" than my fix, but I'm concerned about changing that much all at once this late.23:23
adam_gzul: ping23:30
dknhow do i get rid of a raid array? it's stalled and won't let me access any information about it in mdadm23:41
josheee12hey guys.  i just pulled the hdd out of my old server and put it in a newer server, the hdd having ubuntu server installed.  now, none of the network interfaces appear under /etc/network/interfaces or ifconfig.  ideas?23:42
dkn@josheee12 try ip addr show23:44
josheee12i see lo, eth1, eth2 (which is presumably correct.  i have the onboard ethernet plus a usb ethernet adapter for testing).  what do now?23:45
dknok so what do you do see in ifconfig ?23:47
josheee12just lo23:48
dknok so just add the auto eth1 and auto eth2 lines to your /etc/network/interfaces files23:49
dknfile*23:49
josheee12then ifup eth1?23:50
dkni think so23:51
josheee12thank you dearly23:53
dkn:)23:53
dknnow if i could just reset this stubburn raid array23:53
josheee12and NOW, to move all my MAC-configuration over23:53
josheee12*mac-based23:54
josheee12i'd offer to assist if i didn't break my own raid array last time i tried fixing it23:54
josheee12thank god i has 3 drives on raid 123:54

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!