[00:34] i have natty server installed on an aws instance, i noticed that mod_fastcgi is no longer there, anyone have any idea how to get it back? [00:35] compubomb: might be called fcgi? [00:35] twb: they are not the same.. [00:35] Oh, OK [00:35] compubomb, install libapache2-mod-fastcgi [00:35] my problem is i only know how to setup php-fpm with apache using mod_fastcgi not fcgi [00:35] Well, there's no mod_fastcgi in Debian at this time, at any rate. [00:36] There is always libapache2-mod-fcgid :-\ [00:36] smw: yeah, that one [00:36] I think when I was forced to deploy PHP, on a lucid box, that was the only cgi-based interface that was available [00:36] wy did they remove it? [00:37] compubomb: I would guess because it was unmaintained; the changelogs probably say [00:37] how do you configure php-fpm using fcgid [00:37] I don't know, ask #php [00:38] IMO if you are using PHP, you have lost. [00:38] you are entitled to your opinion. [00:40] I don't imagine it's any harder to point mod-fcgid at php5-fpm than it is to point mod-fastcgi at php5-fpm... [01:35] Hey guys. I added a new disk to one of our mail servers today for storing users mail and I am about to format it however I am looking to add some inode configuration to allow many many many mail files. Can anyone help me with how I should configure the filesystem for this? [01:36] I wouldn't bother [01:36] how come? [01:37] However mke2fs in /etc/mke2fs.conf has something like -T small or -T news [01:37] jetole: because it's never been an issue for me [01:38] twb: do you mind if I ask how much space one of your mail servers use for mail storage and what file system you use? [01:38] For example, look at this filesystem configured normally, storing only maildirs:http://paste.debian.net/135873/ [01:39] one sec, want to take another look at /etc/mke2fs.conf [01:39] It looks like if I use -T news I will have one inode for each per block [01:40] Goddamn kernel packages [01:40] at least on my system it shows the default blocksize as 4096 and news has inode_ratio set to 4096 [01:40] Recommends: grub-pc | grub | lilo (>= 19.1) [01:40] twb: did I understand that right [01:40] ^^ gee thanks, I really need a kernel upgrade to try blowing away my working bootloader with a broken one [01:40] twb: Error: "^" is not a valid command. [01:41] lilo. heh, that takes me back through nostalgia [01:41] * twb looks at pinning again to prevent same [01:42] hmmmm [01:42] I didn't realize I could view inodes used with df [01:42] which turns out not to be the problem I thought it was [01:42] Now you do [01:44] my /home/vmail partition is using 43G out of 200G and has ocfs2 file system (though I was going to implement ext3 or 4 on the new disk) and I started receiving out of disk space errors today [01:44] twb: any idea what may have caused that? [01:44] oh and I am using 11M out of 50M inodes [01:44] I know nothing of OCFS [01:44] But my first guess would be per-user or -group quotas [01:44] Try repquota -a [01:45] twb: fair enough but do you know of any common reasons that may happen on other FS's? [01:45] * jetole looks [01:45] Otherwise df -h and df -hi, see if anything is full [01:45] I don't have a requota command [01:45] *repquota [01:45] rep: replace report-hw [01:46] both disk space and inode usage, both are 22% [01:46] Obviously you'll need to use repquota on the host that has the filesystem mounted, not e.g. an NFS client, and probably needs to run as root. But if it's not installed and there's no mention of quota in /proc/mounts, then I guess you don't have quotas set up [01:46] If OCFS is anything like btrfs, it could also simply have gotten its knickers twisted about something else, filesystem-specific [01:46] yeah I don't hve quota installed [01:46] I did a apt-file search then used dpkg --get-selections to check [01:47] That's great, whatever [01:47] twb: I was explaining how I found out what package it is and then how I... ah nevermind. you're right @ whatever [01:48] twb: it may have gotten it's knickers twisted about god knows what but worth checking the generic causes first since people who know ocfs2 may be harder to track down [01:48] twb: btw, ocfs2 is a clustered FS from oracle [01:49] a free one that's in the packages but that's what it does and who makes it [01:49] Shrug [01:49] meh, in case you had cared [01:50] FFS, does pinning even work AT ALL in ubuntu [01:52] twb: what are you talking about at pinning [01:52] http://paste.debian.net/135875/ <-- fucked [01:53] hey watch your language [01:53] I personally don't give a fuck but everyone always says that [01:53] and yeah, don't know about pinning. read something about it a year or more ago but I haven't really needed to use it [01:54] jetole: I don't expect *you* to, but I hoped someone else was awake. [01:54] twb: don't supposed you can dpkg -i thispkg.deb for the version you need then echo thispkg hold | dpkg --set-selections [01:54] would that work? [01:55] jetole: as I said, I need grub to NEVER EVER EVER be installed, and the kernel packages are doing their best to break that. [01:55] oh [01:55] Pinning it to -1 should be the trivial solution. [01:55] again, can't you place a hold on the package? [01:55] You can't hold non-installed packages [01:57] yep. guess you're right === medberry is now known as med_out [01:58] however you can hold uninstalled packages if that helps === kentb is now known as kentb-out [02:01] Doesn't help [02:01] As at lucid, anyway [02:02] http://paste.debian.net/135876/ === PleXuS is now known as PleXs [02:09] twb: it works well. it's aptitude that doesn't: http://pastebin.com/E65sNwHA [02:09] * jetole goes for a smoke, bbiab [02:18] twb: did you notice that aptitude didn't actually place a hold on the package? [02:18] I didn't [02:18] 22:09 < jetole> twb: it works well. it's aptitude that doesn't: http://pastebin.com/E65sNwHA [02:18] I saw that, yes [02:19] aptitude didn't place a hold on the package in that paste but dpkg --set-selections did [02:22] twb: every file needs a inode and needs only one inode. right? [02:23] Every object in the filesystem requires one inode [02:23] e.g. a directory has an inode [02:23] Hard links share one inode between all their copies, IIRC [02:24] also, do you know a quick way I can see how many files exist on a file system? I tried `find /home/vmail -type f | wc -l` | wc -l but this is taking forever [02:24] I can't think of a case where one object would need more than one inode [02:24] df -i [02:25] damn. 11072746 [02:26] I've decided to go with the new disk and ext4 and using -T news it only created 250k inodes [02:27] That's an order of magnitude more than you are using [02:27] I'm using 11 million according to df -hi [02:28] Oh sorry, misread [02:28] I know of the top of my head one user has 25k files in his inbox plus he has a bunch of other maildir's / folders [02:28] Fiddle with -i or so, I guess [02:29] yeah I'm looking into it [02:29] It does seem odd that you're hitting this, though [02:30] it's a mail server for our entire corporation as well as other domains outside our company [02:31] Yes, but the number of inodes is proportional to the filesystem's overall size [02:31] 43GB of mail [02:31] both the current disk and the new one are 200GB [02:32] and if I understand everything right, 250k inodes means we can only store 250k files and directories. Is that right? [02:32] Yes [02:34] Hmm, that's odd [02:34] I'm checking my workstation and my home machine and I see different specs on inode counts so going to play with mkfs and the options and see what I can come up with [02:35] http://paste.debian.net/135878/ [02:35] I don't suppose the fact that the mail server is Ubuntu server 9.04 would have anything to do with it? [02:35] Doubt it [02:36] I'll figure it out [02:37] did you have any luck using echo grub-pc hold | dpkg --set-selections then running aptitude? [02:38] hmmm, changing from ext4 to ext3 I can see mkfs is using a much higher inode count in mkfs and I think ext4 was still pretty new @ 9.04 [02:38] I didn't do that because I want pinning to work [02:39] I didn't think ext4 was available as at 9.04 [02:39] oh. so even if a hold works you still want to see it work with pinning? [02:40] yeah I don't think it was on a fresh install and may have been through a upgrade. or maybe it was but it wasn't even an option to format / and other partitions with it during install [02:40] but yeah, point being ext4 is new under 9.04 [02:42] oh wtf. df -hi /dev/vda1 still showed only 249k inodes after mkfs was done but I used tune2fs -l like you pasted and it shows the 52 million that mkfs said [02:42] I'm betting it was the same shit for ext4 too and df was the app shitting bricks. not the FS [02:43] I dunno man, all I really know is I've never actually run out of inodes in normal usage [02:44] yeah I don't think I have either but it was saying that only 249k existed and I know I am already using more then that [02:53] Question: how do I shut down Ubuntu server from the login prompt? [02:54] I forgot my username and password, and I'm running it on VMWare, and I just want to turn it off but can't seem to figure out how [02:55] I can restart it through VMWare's settings, but can't shut it down properly [03:00] rhb5d, push the power button :) [03:01] Is there a power button in VMware? [03:03] Probably [03:03] patdk-lap: unfortunately acpid isn't installd by default so that won't work >:-/ [03:04] rhb5d: unless you've installed acpid, your best bet will be to hit Ctrl+Alt+Del, which will trigger a clean *reboot*; then do a hard power off once you get to the bios or grub stage, where it is safe to do so. [03:04] rhb5d: if acpid was installed, you could simply tell VMware to hit the (virtual) power button, which would trigger a clean shutdown [03:05] Apparently ubuntu servers don't install acpid by default because "you could accidentally bump the power button when waddling through the machine room" [03:06] twb, odd, works on mine :) [03:06] but then acpid probably got installed for the monitoring software (cpu/temp/fan/....) [03:07] patdk-lap: right [03:07] works for me :) don't care about you :) [03:07] but then he is using vmware, so no powerbutton to hit [03:08] ctrl + alt + del doesn't do anything.. i can restart it through VMware, but can't get it into grub [03:08] it just loops back to the login prompt [03:08] you have to hold right shift for grub2 to load up [03:09] it has to be the right shift key? [03:09] yes [03:09] maybe that's why it hasnt worked :) [03:09] except for grub1 it's left control key, I think [03:09] rhb5d: unfortunately in their infinite wisdom, the ubuntu developers made it nearly impossible to get into grub on fast machiens [03:10] ya, my normal thing is to set grub to 2second timeout, and enable the menu [03:10] rhb5d: unlike extelinux, where you can leave the scroll lock or num lock key down to get into it, with grub you have to hit shift or alt EXACTLY when grub expects it [03:10] yes! made it into grub! [03:10] you have no idea how happy that alone makes me :) [03:10] rhb5d: OK, now pick single and break in [03:10] twb, heh, openindiana does a default 30second grub timeout and menu on every boot [03:10] that annoys me the other way :) [03:10] Oh, if you have a root password you'll need to init=/bin/sh [03:17] grub1 it's escape [03:17] and it gives you a 3 second prompt to do so [03:20] thank you for your help! [03:49] where could be the bottleneck, when I can get a maximum of 1MB/s transferrate through one connection? [05:01] New bug: #872553 in orchestra "upon creating a node via juju & orchestra, etckeeper hangs" [High,Confirmed] https://launchpad.net/bugs/872553 [08:19] hey everyone, I am having trouble with an ubuntu server I have running in as virtualbox guest. I cloned this ubuntu server from another virtual machine that is running for a long time already without problems. [08:20] But with this vm, I there seems to be a cronjob or something that makes the machine crash somehow. [08:21] the machine runs fine during the day, but if I try to login the next morning through ssh, I immediately get asked for my password, but after entering it, nothing seems to happen, untill I hit ctrl-c [08:21] then the server load and other login info is displayed and I get a bash prompt on the machine [08:21] but then it doesn't react anymore to keystrokes or anything else. [08:22] If I check the host OS. the virtualbox process doesn't have any cpu load or very high memory usage. Other vm's on the same host, and the host itself are also working normally [08:23] so I am suspecting that the ubuntu server guest os somehow becomes unresponsive due to some cronjob that starts at night. [08:23] does anyone have any clues as to what could cause this behaviour [08:25] the same unresponsive behaviour exists when I log in directly to the machine (using vbox rdp to the host os), so it also isn't a problem with ssh [08:25] SmokeyD: Did you check syslog? [08:26] memoryleak, I did on the host, and I am about to reset the guest os so I can log in again and check syslog on the machine. Right now I can't do anything on it [08:26] on the host I couldn't see anything out of the ordinary [08:26] tail to syslog and try to login [08:27] memoryleak, after the reset you mean? I am very certain that when I reset the guest os (tried that friday and tuesday) it will work as expected again, untill tomorrow. But I can check syslog on the guest os to see if some cronjob got stuck or something [08:28] but I do need to reset the guest os before I can do anything on it again [08:32] memoryleak, I just reset the guest os, and am checking syslog, but there are no messages between 05:29:02 this morning and 10:29:11 (which is right now when I reset the machine) [08:32] Well what about sshd log? [08:32] while normally there is a dhcp request every five minutes in the syslog, there is not syslog message in the 6 hours this morning [08:33] SmokeyD: /var/log/auth.log ? [08:34] memoryleak, there is a CRON login message in auth.log at 05:17 (30 minutes before the last dhcp request log in syslog), and then no more messages untill 10:29 [08:35] so something is causing the machine to freeze at around 05:49 this morning (almost 6 hours ago) [08:35] correction: 5 hours ago [08:35] Whit what you virtualize ? [08:35] virtualbox [08:36] but there are other machines on the same host in virtualbox (including the one the problem os was cloned from) that run without any trouble [08:36] and I checked syslog on the host os (also ubuntu server) and there is nothing out of the ordinary there. [08:39] the strange thing is that cron.daily on the guest os is not started untill 6:25 while the freeze seems to occur at 05:49, so it doesn't seem to be triggered by the daily cronjobs either === smb` is now known as smb [09:14] Daviey: around? [09:31] jamespage: hola [09:31] Daviey, morning [09:31] I'm just sweeping up any outstanding ISO tests [09:32] having an issue with i386 RAID test [09:32] install fine, boot fine, boot degraded from the first disk [09:33] won't boot from the second disk - it looks like grub bombs out because it just resets itself [09:33] and goes back to the grub menu - any ideas? [09:33] i can't even run any commands from the grub command line - it just dies and resets [09:34] I've complete torn down and re-setup my test VM - but its still not happy [09:49] hi all [09:49] jamespage: Daviey: morning o/ [09:49] koolhead17: morning to you too :) [09:49] moring all [09:49] hey lynxman :P [09:49] morning jamespage Daviey too :P [09:50] news of the day http://www.tehelka.com/story_main50.asp?filename=Ws101011MICROSOFT.asp :D [09:50] <_ruben> interesting .. postfix 2.8.5 in lucid-backports .. guess i should dust off my apt-pinning skills :p [09:56] Daviey: hmm I get the same on amd64 - wonder it its something about my vm [10:01] jamespage: eeek [10:01] Daviey: hmm [10:02] I get the same issue with the amd64 install [10:02] I've tried switching between virtio and default disk types [10:02] and ensuring that the disk is always presented as the first ie. vda or hda [10:02] but no success [10:02] jamespage: so if I did an install with kvm and two disks, would I probably be able to reproduce this? [10:03] pull one then the other [10:03] cjwatson, well unless its something specific to where I'm running the test - yes [10:03] thats exactly the configuration I use [10:03] jamespage: could you summarise your partitioning layout for me? [10:04] I'm using 2 x 2GB qcow2 images to back virtio disks [10:04] each disk is partitioned with three primary volumes - 1.5GB, 512M and the remainder - all set as type raid [10:04] The 1.5GB's are RAID-1 into / as ext4 [10:05] the 512M as swap [10:05] all raid-1? [10:05] and the remainder as /home as ext4 [10:05] yep [10:05] ok, let me have a go [10:05] I can pull the second disk OK [10:05] and restore it and resync [10:05] I just can't pull the first and get it to boot [10:05] amd64 or i386 [10:06] cjwatson, ta [10:08] jamespage: 1.5GB, 512M, and the remainder - but you're using 2GB disks, isn't the remainder nothing? [10:08] or is there a bit of rounding error at the end? [10:11] cjwatson, hmm - now that is odd [10:11] qemu-img info reports the disk a 2.0GB [10:12] fdisk from within the kvm reports 2147 MB [10:12] ok, so different GB [10:13] i.e. GB vs. GiB [10:13] ah [10:13] so rounding error at the end I guess [10:14] anyway - I end up with a 124MB /home [10:15] is there a "what next" document to read after installing ubuntu-orchestra-server? the packages only include the changelog & copyright in /usr/share/doc [10:16] * jamespage coffee - biab [10:18] tjaalton: not yet, we're on it though :) [10:18] lynxman: ok, any pointers in the meantime? I noticed that the orchestra-provisioning "site" is not enabled by default [10:19] tjaalton: hmm you mean the web ui? [10:19] lynxman: right, though any ui would do :) [10:20] tjaalton: don't think we have one active yet :( it's all command line [10:20] ok that's fine [10:21] tjaalton: let me see if I can find my notes for you, one sec [10:21] lynxman: thanks [10:24] I all, I have register a new domain with godaddy, now I can tell it to go to my server when I go to that site? [10:24] bau-: hmm wrong channel? :) [10:24] tjaalton: Once you have orchestra installed and the isos imported (it does that automatically on the background the first time) [10:25] tjaalton: it's time to tell cobbler to get to configure that machine by adding it to a profile [10:25] tjaalton: your orchestra server needs to be the next-server for PXE boot [10:26] tjaalton: then collect MAC address, give it a node name [10:26] tjaalton: and run this on your orchestra server [10:26] tjaalton: sudo cobbler system add --name="node01.internal.domain" --mac-address="AA:BB:CC:DD:EE:FF" --ip-address="AA.BB.CC.DD" --dns-name="node01.internal.domain" --hostname="node01.internal.domain --profile="profilename" [10:27] lynxman: thanks, I'll try that.. after lunch :) [10:28] tjaalton: good luck :) [10:47] https://bugs.launchpad.net/ubuntu/+source/linux/+bug/856417 [10:47] Launchpad bug 856417 in linux "Dead loop on virtual device br100, fix urgently." [Undecided,Confirmed] [10:48] i am still finding the same behavior of it on oneiric [10:52] koolhead17, what else do you have running on that server? nova per chance? [10:56] and if so which networking mode are you using? [10:56] jamespage: currently to do all my testing am running natty/daiblo setup. [10:57] koolhead17, surely oneiric based on the kernel version? [10:57] jamespage: yes the system has nova running and we are running managed vlan mode [10:57] jamespage: $ cat /var/log/installer/media-info Ubuntu-Server 11.10 "Oneiric Ocelot" - Beta amd64 (20111009) [10:58] 09/10/2011 [10:58] i have dismentaled the machine to try newest built [10:58] koolhead17: right - unfortunately I don't have a dual nice setup to reproduce on [10:58] /nice/nic/ [10:59] but on my all-in-one I don't create the br100 interface - I create a br0 interface onto eth0 and use that for the private networking [10:59] jamespage: the same setup works well for the natty/daiblo setup. Am trying the newest image which just downloaded to see if this issue is resolved [10:59] * jamespage scratches his head [11:00] koolhead17, I guess it may be a difference in the kernel handling of duplicate ops on br100 [11:01] jamespage what would you suggest to not come out of this then. :D [11:02] i mean am creating br100 on eth0 or eth1 should not make a difference [11:02] :P [11:03] koolhead17, I don't think you need to create br100 at-all [11:03] I only do that in my all-in-one to work around not having two interfaces [11:04] jamespage: so how will i assign IP to my internal network ? [11:04] and communicate with internal machines :( [11:05] jamespage: brb. trying out newest release [11:05] koolhead17, firing in the dark a bit here - http://tinyurl.com/3c6fay8 [11:05] try configuring eth1 normally and then specifying --vlan_interface=eth1 [11:05] I think nova will then create the br100 interface using eth1 [11:05] *I think* [11:06] actually I can test this [11:06] jamespage: cool [11:09] how do i do grub-install on a kvm guest? [11:09] damn - anyone here ever succeded in setting up AD-based authentication for Linux clients? [11:11] RoyK: pam-ldap? Or just stuff like http auth? Kerberos integration? Or just.. blah blah blah.. There's a whole slew here. You can go from just using ldap to.. well.. complete integration. [11:12] pam-ldap should do. I just wonder if I have to lock the config to a fixed context... [11:12] * RoyK thinks LDAP is largely confusing [11:18] hrmf - failed to bind to LDAP server ldap://192.168.0.3/: Invalid credentials - but the same creds work with ldapsearch [11:19] meaning kerberos must be setup? [11:48] Suddenly my server has stopped booting, it just sits with a flashing cursor waiting to boot. [11:49] Suddenly my server has stopped booting, it just sits with a flashing cursor waiting to boot. It's an EFI machine, and the disk seems to be GPT, but I don't know what's wrong: http://paste.ubuntu.com/706649/ Can anyone help? [11:51] koolhead17: I think that works [11:51] jamespage: is it working for you the way you mentioned? [11:52] OK - so lemme run this through [11:52] eth0 - public interface [11:52] jamespage: yes [11:52] eth1- private interface [11:52] --vlan_interface=eth1 in /etc/nova/nova.conf [11:52] RoyK: winbind + pam_krb5 should do [11:52] k [11:53] jamespage: and you assigned IP to eth1 [11:53] koolhead17, yes - well dhcp did - I know that is not that normal in server deployments [11:54] I'm running this in a kvm so bear with me [11:54] thank goodness for ssd [11:54] jamespage: what i did is assigned a static ip to eth1 [11:54] so i have ip for eth1 and eyh1 [11:54] *eth1 [11:54] I think thats spot-on [11:55] I generated a set of networks - sudo nova-manage network create private 10.0.0.0/8 3 16 [11:55] and then uploaded a image and ran one [11:55] nova-network created: [11:56] br100, vlan100@eth1 and veth0 with is on br100 [11:56] I can access the instance using its private address from the nova server [11:57] I don't get any of those loop messages but I do see the br100 being setup [11:58] koolhead17: make sense so far? [11:59] Does anyone know how to get GRUB working with a GPT partition on a UEFI machine? [12:00] qemu-img: Error while formatting '/dev/data_disk/fliep' [12:01] That's when I try to qemu-img convert to an lvm-device [12:01] Any known fixes for that? [12:01] jamespage: indeed :) [12:01] koolhead17, it may be you get those loop messages because nova-compute is trying todo something to the bridge you already have setup [12:02] k [12:02] let me try as you mentioned [12:03] koolhead17, I've not tried running nova + lxc in a kvm before - actually worked quite well! [12:04] koolhead17, fwiw even if this does resolve your issue - I think that there might still be a bug in oneiric which you did not hit in natty [12:04] jamespage: so sumthing has changed in oneiric because we are still using the same old config creating br100 manually and it all works well [12:11] 11.10 countdown... [12:14] koolhead17, agreed - but I don't think that creating the br100 interface is required any more [12:17] jamespage: am still in same proble. [12:17] problem [12:18] is your eth1 and sudo nova-manage network create private 10.0.0.0/8 3 16 in same ip range [12:18] lynxman: actually, i got the cobber web-ui login screen up, but the password doesn't seem to work [12:18] koolhead17, no - they don't need to be [12:19] koolhead17, the address on eth1 will be on the native vlan [12:19] whereas the private network ranges will sit on different vlans [12:21] koolhead17: can you post /var/log/nova-*.log and your syslog and kern.log on the bug report [12:21] we might be able to identify what is causing the issue from that [12:25] http://paste.ubuntu.com/706669/ [12:28] jamespage: kernel log http://paste.ubuntu.com/706670/ [12:29] koolhead17, can we get more of nova-network.log [12:31] koolhead17, hmm - what parameters did you use with nova-manage network create? [12:32] in my setup I see vconfig operating on eth1 not br100 [12:33] yes [12:33] cjwatson: any progress on reproducing my raid issue? [12:37] nova-manage network create --bridge_interface=br100 --fixed_range_v4=192.168.3.0/29 --label=proj nova-manage floating create --ip_range=10.10.10.224/27 [12:38] this is what we used diablo plus natty [12:39] lynxman: I just get 'httpd does not appear to be running and proxying cobbler' when trying to add a system [12:39] same thing with 'cobbler check' [12:40] tjaalton: is apache running? [12:41] koolhead17: yep [12:41] morning [12:43] zul: morning o/ [12:43] morning zul [12:43] tjaalton: try restarting the orchestra server once [12:43] jamespage: should i dump whole network log along with the bug report? [12:45] koolhead17: what's it called? can't find anything with that name [12:46] hi all. giving btrfs a try again, now on the soon-to-be-released Ubuntu 11.10 - now, is there a way to do something similar on that as what I do on solaris/openindiana with 'beadm create'? that will create a clone of the root and allow me to boot into that, potentially after an upgrade (of that) [12:47] koolhead17, this is creating the issue - --bridge_interface=br100 [12:48] but I don't understand why it worked OK with diablo on natty [12:48] * jamespage scratches his head [12:49] jamespage: i am cleaning everything and this time not give the br100 flag. [12:49] jamespage: same is my situation/scarchy :) [12:49] koolhead17, worth a try [12:50] i have working natty/diablo running with same commands :) [12:51] koolhead17, I suggest you pastebin the log for the time being [12:52] tjaalton: pas-ef|grep orchestra gives notthing :( [12:52] jamespage: i dont think the network log has anything more relevant to this issues besides http://paste.ubuntu.com/706669/ [12:53] * ps -ef | grep orchestra [12:53] koolhead17, OK - so try with the --vlan-interace set in /etc/nova/nova.conf and don't specify the bridge_interface when creating the network with nova-manage [12:53] koolhead17: nope [12:54] jamespage: sure cleaning up all the the installs and try as yuo mentioned. :) [12:55] koolhead17, ok - lemme know how it goes. [12:55] sure [12:55] lynxman: hellos [12:56] * koolhead17 pokes RoAkSoAx: [12:56] koolhead17: hey hey [12:56] jamespage: the only problem/confusion i have if its working on natty/diablo what have we changed in in oneiric :P [12:57] lynxman: what is default orchestra process, tjaalton needs some help :) [12:57] koolhead17: cobbler [12:57] right, restarting cobbler didn't help [12:59] lynxman: am having nightmares in understanding RBAC of nova/ [12:59] i created like 15 users and added like 5-6 projects [12:59] :P [12:59] jamespage: I've reproduced it; I'm working on debugging it (amid other things) [13:01] cjwatson, great - let me know if I can help in anyway [13:02] will do [13:18] jamespage: good morning, to which Jenkins test we map the tracker "Ubuntu Server EC2 HVM (US-East) amd64"? [13:19] hggdh: we don't [13:19] ah [13:19] normally utlemming or smoser run that one by hand [13:22] tjaalton: check if there is allready a question with same else post one with all details, am sure someone will look into it and answer back. :) [13:29] koolhead17: i suspect the network settings are somehow screwed, will fix them first [13:31] jamespage: k, I will wait for utlemming or smoser [13:48] jamespage: success finally :P [13:49] but need to get 100% sure first :) [13:49] koolhead17, \o/ [13:51] jamespage: you made my day for me [13:51] jamespage: so what should i do to the reported bug? [13:52] koolhead17, so it looks like the bridge was getting in a right twist with the config you where using [13:56] * jamespage has another look at the bug [13:57] jamespage: yes. indeed [13:58] jamespage: shall i request for its clouser then? [13:58] koolhead17: still thinking [13:58] :( [13:58] i mean only thing i don`t understand why it was working with natty and not with oneiric [14:00] koolhead17: are you sure that the nova configuration was identical on natty? [14:01] jamespage: same configuration to be precise. :) [14:04] Daviey: ping [14:04] koolhead17: hey [14:05] koolhead17: Its an odd edgecase; lets document what we have found out today and mark it as a priority low.... [14:05] I'll update the report now [14:05] jamespage: cool [14:06] i have all logs/details added to it. hardware make was allready provided to it [14:07] Daviey: keystone/diablo will have no role based access control [14:11] TeTeT: hellos :) [14:11] koolhead17: oh? [14:12] utlemming: Hey, around? [14:12] Daviey: sir, I am [14:12] utlemming: Great! Is the /current AMI's from your perspective final? [14:12] anything concerning you? [14:13] I'm doing some final digging around, but 20111011 is the one that smoser and I tagged as the candidate [14:14] the tests look good (other than EC2 being EC2) [14:15] Daviey: also, the desktop images are functional too [14:15] utlemming: rocking! [14:16] jamespage: you also smoked the ec2 images? [14:16] https://jenkins.qa.ubuntu.com/job/oneiric-server-ec2/ [14:16] Daviey: that link ^^ [14:16] but looked good to me as well [14:16] the only tests not covered are hvm [14:17] good o' [14:17] thanks! [14:24] koolhead17, lynxman: ok I got cobbler moving, had a wrong ip for the server :/ [14:25] tjaalton: cool! [14:26] now the old one is still at least in the profiles [14:26] tjaalton: awesome. [14:27] i wonder if we should comeup with new section in launchpad and assign section per project mentioning "common typos" :D [14:27] hmm maybe I'll just reinstall the stack, to get a fresh start [14:27] that way we can read few allready created typos beffore filling bugs :) [14:27] * koolhead17 just an idea :P [14:28] the problem here was that the machine used dhcp provided by the router, so when I switched to a static ip things were messed up [14:32] does anyone know of a photo program, that has a PNP plugin, so i can browse a share? --- xbmc works for this, but I was hoping to use something designed just for pics [14:33] ha, purging cobbler doesn't remove /etc/apache2/conf.d/cobbler*.conf symlinks, so restarting apache2 fails [14:34] tjaalton: pass me the blog page once your done with your documented the typo :) [14:37] hm, wasn't http://thisisthecountdown.com/ supposed to 'expire' today? [14:37] koolhead17: maybe i'll just file this one bug ;) [14:37] * koolhead17 kicks tjaalton :D [14:38] tjaalton: file it as a questions and another add as answer as comment. it will be cool :) [14:38] koolhead17: which one? [14:38] messing with the ip? [14:39] tjaalton: yes [14:39] jamespage, yellow is failure ? [14:40] smoser: yellow indicates one or more tests failed [14:40] hello all. who am I best bothering about Orchestra and OpenStack deployments? [14:40] smoser: red is something really bad happened [14:40] uksysadmin: to all of us [14:40] :D [14:40] :) koolhead17 [14:41] Every time I try to install Ubuntu Server, it successfully installs but then my UEFI system will just stay with a blinking cursor waiting to boot. I've formatted the disk in MBR format but this still happens. How can I get my system bootable? [14:41] uksysadmin: shoot your question :) [14:43] jamespage, so https://jenkins.qa.ubuntu.com/job/oneiric-server-ec2/10/ARCH=amd64,REGION=ap-northeast-1,STORAGE=instance-store,TEST=multi-instance,label=ubuntu-server-ec2-testing/testReport/i-dc3438dd_test_remote/RemoteEC2Test/testRootSSH/? that test failed, where would the output fo the ssh be ? [14:43] smoser: its in the console output [14:43] Where can I find information on using Orchestra to do OpenStack deployments? Recent events in Paris teased me with people talking about Juju and OpenStack installs... point me in the direction and you've got a willing volunteer for testing and development [14:47] uksysadmin: howdy, we are in the process of finishing up the documentation [14:47] uksysadmin: the orchestra part so far is documented here: https://help.ubuntu.com/community/Orchestra [14:47] though its still in process [14:48] Excellent RoAkSoAx - I appreciate things are developing at a fast pace and OpenStack is also a moving target - patience is a virtue I'm told - but where's the fun in that? [14:51] ehhe [14:51] indeed [14:51] jamespage, https://code.launchpad.net/~ubuntu-server-iso-testing-dev/+junk/ec2-automated-tests is the tests for ec2 ? [14:52] RoAkSoAx: hey!! [14:54] koolhead17: o/ [14:56] New bug: #872892 in cobbler (universe) "should remove /etc/apache2/conf.d/cobbler*.conf on postrm" [Undecided,New] https://launchpad.net/bugs/872892 [14:57] I can't get Ubuntu Server installed on my UEFI-based system, it just won't boot after installing grub (supposedly succesfully) at the end of the installation. How can I get it booting? :( [14:59] hggdh, do you know ? [15:01] hey ubuntu-server [15:01] whenever I try to run this script, it immediately just says "Killed" [15:02] "this script" [15:03] koolhead17: it's asf_mapready, the GIS software [15:04] koolhead17: I was able to run it before, but now even when I try to do `asf_mapready --help` it just says "Killed". I was wondering if it's a thing in linux or ubuntu that kills it before anything happens. [15:07] uksysadmin: kim0|holiday has some blog posts on the matter [15:08] thanks kirkland [15:11] I've just googled his blog - I'll go poking around it. cheers. [15:18] smoser: sorry OTP [15:18] smoser: https://code.launchpad.net/~ubuntu-server-ec2-testing-dev/+junk/ec2-automated-tests [15:20] ey guys im having trouble connecting to my ssh server from outside of my network. [15:21] my firewall is showing that it is passing the connection through [15:21] but im not sure what to do with tcpdump data ive collected (dont know howto interpret it) any one willing to spend some time helping me on this === med_out is now known as medberry [15:24] RoAkSoAx: Daviey: any idea what the current status of bug 850880 is? If it's not fixed, we should retarget. [15:24] Launchpad bug 850880 in cobbler "cobbler-ubuntu-import does not pull from -updates" [High,In progress] https://launchpad.net/bugs/850880 [15:26] hmm is it just me, or aren't the cobbler repo urls all broken? (http://archive.ubuntu.com/ubuntudists//oneiric) [15:27] * koolhead17 is happy!!! :) [15:29] * RoAkSoAx looks [15:30] RoAkSoAx: looking at the bug or tjaalton's issue...or both? :) [15:30] kirkland: around? [15:30] Daviey: eeellloooooooo [15:30] robbiew: both [15:31] :) [15:31] kirkland: have you seen bug 872553? [15:31] Launchpad bug 872553 in orchestra "upon creating a node via juju & orchestra, etckeeper hangs" [High,Confirmed] https://launchpad.net/bugs/872553 [15:31] tjaalton: yeah that's something we just noticed too and which I'll look at [15:31] Daviey: he's aware [15:31] RoAkSoAx: ah, good :) [15:31] RoAkSoAx / kirkland: Is there a plan? [15:32] Daviey: im gonna nlook at it today, SpamapS seems to have found the cause [15:33] RoAkSoAx: well right now, it's feeling safer to pull out the recommends of etckeeper and resolve it in P-Series properly [15:33] +1 [15:33] Daviey: indeed [15:35] Daviey: it should be trivial to solve via sru, either a) (preferably) lowering priority of debconf question, or (b) preseeding the value in orchestra itself [15:35] Daviey: i asked RoAkSoAx to look at it yesterday, i think he's on it [15:35] kirkland: Well right now juju+orchestra deployments are blocked. Do you disagree that ripping out the recommends is safer at this stage? [15:36] Hello to everybody [15:36] Daviey: seems a little on the heavy handed side, but I can see why you're asking for it [15:37] Daviey: it was a late addition (at my urging), and I take responsibility for this breakage [15:37] Daviey: gimme 10 minutes to take a look [15:37] can't we remove it, and then once fixed, SRU it back in? [15:37] Oh sure, i agreed with the rational to add it. [15:37] kirkland: there's no debconf question for installtion though [15:38] robbiew: 0-day SRU IMO should either remove it, or fix it. I don't think it's a good idea to have a later SRU reintroducing the recommends. [15:38] Daviey: right -- I'm with you -- SRU'ing a recommends will almost certainly be nacked by the SRU team [15:38] Daviey: fair enough [15:39] interestingly, etckeeper has debconf questions, but no debian/config [15:40] the only db_input I see in etckeeper's source is [15:40] postrm: db_input critical etckeeper/purge || true [15:40] kirkland: etckeeper has no debconf options :) [15:41] kirkland: yeah that's what I was saying, it only has debconf questions for the postrm [15:41] kirkland, thanks for point me in the direction of kim0|holiday - gets me passed the first hurdle at least and seems the right place to keep an eye on for following developments towards OpenStack with Orchestra [15:41] New bug: #872926 in cobbler (universe) "Cobbler repo URL's are broken" [High,In progress] https://launchpad.net/bugs/872926 [15:42] uksysadmin: kim0|holiday is awesome :-) [15:43] he really should power off his computer though. save energy and all that ;-) [15:44] aha! [15:44] Daviey: okay, i'm on it [15:45] Daviey: it's not the installation of etckeeper itself [15:45] Daviey: its that juju installs a package that modifies /etc, and these changes need to be committed to etckeeper [15:45] Daviey: we just need to configure etckeeper to do that automatically when etckeeper is installed by orchestra [15:47] I am in desperate need of help, and if this is not the right chat can you please advise me which channel to go to [15:48] kirkland: can you provide some more detail? [15:48] Will do [15:48] Ok this is the problem that i am pulling my hair out [15:48] I have installed Ubuntu Server 10.04 LTS [15:49] I am setting up the server for domain logons [15:49] Everything is going 100%, until i want to add a Windows 7 machine [15:49] The windows 7 machine logs on to the domain 100% [15:50] Untill i restart then the windows 7 machine says can't find the domain [15:50] I just re-installed the server again from scratch [15:50] Daviey: hang on, let me get this fixed, and i'll explain it to you [15:51] I also applied the windows 7 registry settings etc [15:51] But no luck at all [15:52] kirkland: ok, i have an upload in the queue backing out etckeeper.. if you can get a better fix today, i'm happy to run with yours. [15:52] jamespage, so i'm missing something. [15:52] Daviey: i'm working as fast as i can [15:52] where is the stuff that runs those tests... ie launches an instance and collects console output. [15:53] kirkland: rocking [15:54] quick question about fdisk [15:54] after creating a partition and writing it [15:54] is there anything special i need to do to format the drive? [15:54] before I can mount it? [15:55] you need to put a file system on the partition [15:55] smoser: https://code.launchpad.net/~ubuntu-server-ec2-testing-dev/ubuntu-server-ec2-testing/ubuntu-server-ec2-testing [15:55] sorry - misunderstood your question [15:56] iclebyte-work: okay yeah, looks like i need to run mkfs [15:57] yea. mkfs.ext3 /dev/sdaX [15:58] iclebyte-work: ext3 or ext4, seems like the new ubuntus are using ext4... [16:00] utlemming: around? [16:00] any reason why ssh server works internally but not from any internet based ips [16:01] firewall :) [16:01] isp blocking it with their firewall? :) [16:01] no and no [16:02] i think its something with pfsense [16:02] pfsense people say its the server [16:02] i dont freaking know [16:02] pfsense is a firewall [16:02] wich the rules are there and its is allowing that connection and routing it to the proper port [16:03] if it's not a firewall, then there is only one thing it could be, you modified sshd_config to not listen to the external ip [16:03] i have to nics in the server [16:03] eth0 is 192.168.1.32 [16:03] eth1 is 192.168.1.33 [16:03] inthe sshd_conf listen ip is 192.168.1.32 [16:04] hi [16:06] patdk-lap is that not correct? [16:06] if you are connecting to ssh using that ip, yes [16:06] Daviey, Jamespage: HVM AMI's passed too. So I'm happy with the 20111011 images. [16:07] utlemming: did you see my Questions in -release? === scar[w]_ is now known as skarr [16:07] Daviey: just did...switching channels [16:09] a [16:09] ta [16:11] RoAkSoAx: SpamapS: do you guys have an easy/quick way to reproduce this outside of orchestra (preferably in an EC2 instance)? I have a fix i'd like to test [16:16] kirkland: i wasn't able to reproduce it outside orchestra [16:16] kirkland: maybe pass cloud-init config [16:17] i'm new to systems administration so sorry if this is a basic quesiton. i was wondering why when some packages are built/installed from source, they put themselves in the right place in the FHS, [16:17] and others just stay right where you extract them [16:17] does xen support some sort of failover? I mean, afaik uec does, but with a rather rigid setup with hard to do a simple/clean setup without a single point of failure. software like vmware or hyper-v run in mesh mode, which is better [16:18] is there a reason for that, other than the package maintainer didn't have a part of the installation script that knows about your distro so it just defaults to not installing in a place that makes sense? [16:18] and if a package doesn't put itself in the right place, how do i know what that place should be? [16:25] royk, xen doesn't support failover, but it has the ability for you to do it [16:25] Does anybody know where installer finds out that it has been a "md-raid" (I have removed partions, dd 'ed 512 zeros to /dev/sdX, created new empty dos partion table and even created and formated a new ext2 partion on 20G), I want to start from scratch but installer only put a iscsi-thing in my face (it's with an "11.10 111010 server cd")? [16:26] it has a way to move running domu's [16:26] And of course have I removed superblocks with --zero-superblock.... [16:27] ClaesBas, wouldn't wiping the partition table be easier and faster? [16:27] cause superblocks is a fs thing [16:28] patdk-wk: I think I've done everything except dd'ing zero to whole disks (4x750G) [16:30] RoAkSoAx: do you have an orchestra setup right now where you can reproduce it? would you be willing to give a fix a quick test? [16:30] Someone who coded this part of the "deb-installer" have been a bit to "clever"... [16:30] claesbas, no, normally it uses blkid to find and locate drive configs [16:30] and normally just writing 0's to the first meg of the drive is enough to remove that :) [16:32] patdk-wk: I will try that, thanks... [16:32] you didn't use gpt did you? [16:32] if you did, you probably have to wipe out the first and last 1mb of the drive [16:32] as gpt is redundant :) [16:36] jamespage: i was disconnected. [16:38] utlemming, it would appear that you have not started the promote-daily, is that correct ? [16:38] smoser: I ran the promote daily yesterday. It's staged up and ready to go [16:41] patdk-wk: moving domu's is nice, but do you know if there's a way to failover a domu to another dom0 in case of a dom0 failure? [16:42] patdk-wk: by failover, I meen to administratively move it to another dom0 and boot it [16:42] not true failover - afaik only vmware support that (and probably IBM zSeries, but that's another ballpark) [16:43] oh, isn't that easy? [16:43] just issue xm create domu on the other machine [16:43] (and for vmware to support that, it needs infiniband or at least 10Gbps ethernet...) [16:43] patdk-wk: automatically without risking collisions? [16:43] heh? vmware supports that on anything, [16:43] royk, that depends on you HA setup, I assume you used proper fencing and stuff from linux-ha [16:44] patdk-wk: for a VM to be HA, vmware needs very high speed networking between the hosts to transfer the memory contents as it is changed [16:44] royk, if the dom0 is down, there is no memory to move [16:44] patdk-wk: vmware normally reboots a VM if the host it's on dies [16:45] and I do move ram, gigs of it at a time, over gigabit with vmware [16:45] but I think the way vmware moves ram is different from xen [16:45] does that work ok? I mean - isn't gigE far too slow for that? [16:45] as vmware will do like a double rsync to move it, and xen is all at once, locked [16:45] royk, vm is only down for a few seconds for me, with 8gig+ ram vm's [16:46] patdk-wk: that's moving a VM, yes [16:46] with infiniband, it's down for a few seconds also [16:46] kirkland: sure I have my own setup [16:46] patdk-wk: but if you have the VM running on host A and you pull host A's plug [16:46] RoAkSoAx: okay [16:46] royk, then you will have to wait for the vcenter timeout [16:46] RoAkSoAx: have you recreated the problem? [16:46] patdk-wk: then the only way for that VM to survive, is to run on two hosts at the same time [16:46] royk, and why would it move the ram then anyways? cause host A is gone [16:47] royk, no, it won't [16:47] patdk-wk: are we talking about the same thing? [16:47] kirkland: on the process.. BW is not helping today [16:47] what plug did you pull on host A? [16:47] I assumed power :) [16:47] the Big One [16:47] then it's not running on Host A anymore is it? cause the power is off :) [16:48] so it's only running on the new host [16:48] patdk-wk: yes, that's why HA VMs can be set to run on two machines in parallel [16:48] otherwise, you'll need to boot it up on host B [16:48] oh, hmm, I know what your talking about now [16:48] heh? [16:49] wait [16:49] your not using shared storage for the vm's? [16:49] not for their memory [16:49] dunno, my vmware HA clusters don't share memory across systems, probably cause I don't need that [16:50] very few do [16:50] your not talking HA [16:50] your talking FT [16:50] and then, that wasn't what I was asking about for Xen [16:50] fault tolerance [16:50] I sometimes get lost in those terms [16:50] they are used for different uses across vendors :P [16:50] no support for that in xen, as far as I know, but I dunno what xen 4.x does [16:51] ya, HA just means the vm is running, on some host [16:51] FT means, no reboots to do HA [16:51] again, that wasn't the question, it was just a divert [16:51] so can I do HA with Xen without scripting it myself? [16:51] * patdk-wk has no idea what the question is, due to lack of terms :) [16:51] find someone else that scripted it? or buy the xen enterprise? [16:52] patdk-wk: I know xenserver etc - I was merely asking...... [16:52] I don't think it's that hard, to use pacemaker to do that [16:52] should work.. [16:53] * RoyK can't beleive it's 2011 and Hyper-V still doesn't support memory overcommit [16:53] but, they are working on it :) [16:53] kvm doesn't [16:53] yeah, wait till 2020 or so [16:53] Question - can anybody make out what's going on here? This is my syslog from my DHCP/LTSP server. My client (connected via cat5) is hanging on boot. Here's the syslog: http://pastebin.com/Cg7qEMFv [16:53] kvm does [16:54] when did it get it? [16:54] I know it had some mem dedup [16:54] some time back [16:54] but that is hardly overcommit [16:54] hm... seems I might be wrong (again) [16:55] I was _told_ it supported it, but it may seem there are some other methods used [16:55] or ... http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Virtualization/sect-Virtualization-Tips_and_tricks-Overcommitting_with_KVM.html [16:55] I will have to look some [16:56] I'm reading the page from the kvm website on it [16:56] I know kvm did kindof support memory ballooning [16:56] but that doesn't work on high memory pressures, like xen/vmware do [16:56] ok [16:56] ballooning is like sharing the ram between vm's, depending on need [16:57] but fails if they all need ram [16:57] ic [16:57] Daviey: RoAkSoAx: okay, i have a simple way to reproduce this outside of orchestra [16:57] and that works better on xen? [16:57] sudo apt-get -y etckeeper && sudo env -i PATH=$PATH TERM=$TERM apt-get install -y juju [16:58] Daviey: RoAkSoAx: basically, just ensure that LANG is unset [16:58] xen supports overcommit, it won't completely fail, it will get painfully slow though [16:58] where vmware will maintain it's speed better [16:59] I'm like a year out of date on kvm/xen though [16:59] I guess it's time to test xen again, nevertheless [17:01] ah, there it is [17:01] looks like kvm does support overcommit now [17:01] patdk-wk I had to wipe the disks in the end too as you proposed! (could be very tired for less) [17:01] it's just so unbelievably painfully slow, it's not practical :) [17:02] ClaesBas, ya, must of gotten setup with gpt partitions then [17:02] normally only needed for >2tb drives, but I tent to do it on >1tb myself [17:02] sudo apt-get -y etckeeper && sudo env -u LANG apt-get install -y juju [17:02] slightly simpler ^ [17:02] ClaesBas: why? [17:05] gpt? I've only used Ubunt server CD's (advanced) install... (I don't really understand what you mean with gpt) [17:05] global partition table [17:05] I'm not sure, but I think ubuntu uses gpt by default these days [17:05] gpt instead of mbr [17:06] patdk-wk: not on small drives [17:06] My disks is 750G [17:06] 4x750G [17:07] all data drives? [17:07] for raid? [17:07] if so, don't partition them, just give them to md as they are [17:07] simplifies extending later [17:08] as in when you want to swap them for 2TB drives to add more to the array without moving the data [17:08] patdk-lapfigured out my problem... hdd dying/died [17:08] fun [17:08] if you partition them and try to replace them with larger ones, you'll have a small ordeal to go through to fix the partition tables [17:09] One more stupid thing is that if you setup a "big" software raid the with the installation CD, it tells you to reboot and the grub has "quite", what happens with your not yet fully initiated raid then.... [17:11] ClaesBas: it'll initiate in the background [17:11] ClaesBas: it'll even continue over reboots [17:11] not start over - continue [17:11] 'cept you get an unexpected reboot - that may break it [17:11] unexpected as in someone pulled the power cord [17:12] or best case, it just starts the resync over, unless bitmap is turned on [17:12] You get a blank screen after the reboot.... [17:12] ClaesBas: are you using a separate drive for the root? [17:12] ClaesBas: if not, I'd _strongly_ suggest you do [17:12] get some old 10GB ATA drive or something [17:13] or you will need to setup partitions [17:13] then use the big drives for data [17:13] patdk-wk: bingo [17:13] No, but an own raid1 over 4 disks and no lvm for that partion [17:13] * patdk-wk is a fan of 80-160gig drives for boot [17:13] raid1? or raid10? [17:13] ClaesBas: please, beleive me on this :) [17:13] use separate _drives_ [17:14] A stupid 4 disk raid1 [17:14] it makes life a lot easier when you want to extend that disk set [17:14] heh, you will defently need to use partitions, and leave a good 1-2mb free at the start [17:14] ClaesBas: even a couple of USB sticks may do the job [17:14] I would just use a boot drive though, or boot usb stick [17:14] RoyK But if your "server" is a machine with only 4 disks (I payed for it)! [17:14] ClaesBas: then an usb stick [17:15] no need for a terabyte for the root [17:15] you only need boot/mbr on the usb sticks [17:15] 8GB should do for most [17:15] you don't even need root on it [17:15] zul: how did you get on with bug 871278 [17:15] Launchpad bug 871278 in nova "Cannot attach volumes to instances if tgt is used" [High,Triaged] https://launchpad.net/bugs/871278 [17:15] ? [17:15] patdk-wk: it helps for setting up things [17:15] royk, ya helps, but not needed [17:15] I do my laptop that way, for security [17:16] remove usb stick, no booting the encrypted laptop [17:16] kirkland: http://me.roaksoax.com/etckeeper.png [17:16] patdk-wk: plain raid5 md on the disks, simple root fs on the plug [17:16] KISS [17:16] RoAkSoAx: yep, cool [17:17] jamespage: still around? [17:17] * RoyK has an old 60GB ATA drive for the root in his home server [17:17] yuk, ata [17:17] well, it works just as well as sata [17:17] Daviey: sruable [17:17] except I don't own a motherboard with ata on it :) [17:17] a bit slower, but hell, I don't write data to the root nayway [17:17] zul: yes, but how far through fixing it are you? :) [17:18] I do have like 80 250gig wd ata drives, if you want me to ship them :) [17:18] Daviey: working on it [17:18] kirkland: so where's the fix [17:18] patdk-wk: I have a dozen or so 500GB ATA drives - works well for making coasters [17:19] my family and friends tend to like shiny costers :D [17:20] RoAkSoAx: http://paste.ubuntu.com/706853/ [17:20] Daviey: RoAkSoAx: FYI, etckeeper fix works like a champ [17:20] !etckeeper [17:21] kirkland: enough to state your name against it in an SRU? [17:22] kirkland: looks good to me gonna try to setup a local repo and get it tested [17:23] SpamapS: what was the name of the tool you use to create repos? [17:24] RoAkSoAx: reprepo? [17:24] local repos [17:24] kirkland: ahh yes couldn't remember it . thanks [17:24] why default it to en_US? === lullabud is now known as warzauwynn [17:28] zul: the critical part is the UTF8 [17:28] zul: defaulting to en_US.UTF8 because that's what ubuntu defaults to [17:28] zul: without the UTF8 bit, etckeeper (actually, bzr) chokes on filenames that contain UTF8 characters [17:29] zul: our /etc has some of those (most obviously in the /etc/ssl certificates, but could be anywhere) [17:29] Daviey: a bit [17:29] zul: and if LANG is already set in your env, then that'll override [17:30] k [17:30] kirkland: LANG=C didn't work ? [17:31] SpamapS: let me test with that ... [17:31] that would be the least opinionated .. [17:31] SpamapS: does C imply UTF8? [17:31] SpamapS: i'm firing up a new instance now [17:31] C implies byte ordering and no encoding [17:31] it will never mangle anything [17:32] and really, bzr should be defaulting to C if there's none set === allison_ is now known as wendar [17:34] hi, is it possible to install imagemagick without X? [17:34] Daviey: whoops [17:34] aibo: shouldn't be a problem - it might install some x libs, but the command line tools should work [17:35] aibo: and the x libs won't hurt unless you're _really_ low on disk space [17:35] it's VPS, i have 4.5 gigs free [17:35] not a problem [17:36] doesn't seem to be a -nox package for it, so just try, and apt-get will tell you how much it'll use [17:36] _before_ installing it [17:37] okay [17:38] that's the fun serving VPSes - you charge close to nothing for 4GB and then when the customer wants another 4GB (retail cost ~zero) you add another $10 a month :P [17:39] SpamapS: no-go with LANG=C, same breakage [17:39] kirkland: very interesting! [17:39] http://paste.ubuntu.com/706867/ [17:39] SpamapS: ^ [17:40] kirkland: what distro? [17:40] RoyK, yep, that's exactly what happens [17:40] erm [17:40] versjon [17:40] RoyK: tamulinux [17:40] heh [17:40] wtf? :-) Ubuntu [17:40] RoyK: 11.10 :-) [17:41] kirkland: well that does sound like a bug in bzrlib, but the "default to en_US" seems your only recourse [17:41] kirkland: I just setup 10.11 with etckeeper without issues.... [17:41] RoyK: it happens only when installing on a non-interactive shell [17:41] oh [17:41] such as via cloud-init on first boot [17:42] ic [17:42] kirkland: another option is to try and pick up the machine's locale. [17:43] SpamapS: sounds overly complex; this "fix" should handle 99.99% of the use cases [17:43] SpamapS: shouldn't C work for them all? [17:43] SpamapS: we're talking about etckeeper here [17:43] SpamapS: and we're talking about the file encoding of /etc [17:43] SpamapS: nothing else === martyn is now known as Martyn [17:44] SpamapS: it affects nothing else in the distro, AFAICT [17:44] New bug: #872987 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/872987 [17:44] RoyK: thats what I was thinking, but bzrlib seems to be doing something wrong with C [17:44] kirkland: yeah I'm not worried about it breaking stuff.. just wondering if there's a simple way to pick up the right LANG [17:45] kirkland: that said.. if bzr requires UTF-8 specifically.. then yeah.. give it what it wans. [17:45] wants even [17:45] * kirkland reboots [17:47] howdy. I'm trying to set up this T-Mobile Rocket 4G USB modem. I've gotten usb_modeswitch to do the right thing and present me with a proper modem. Now I'm stumped about how to get the thing online. It has a usbnet interface as well as the standard AT-commands. I'm not sure how they relate (if at all). [17:48] the modem is a ZTE MF591 [17:48] Daviey: SpamapS: RoAkSoAx: I'm uploading the etckeeper fix [17:48] Daviey: do you want it in -proposed? [17:48] Daviey: or oneiric? [17:49] kirkland: release pocket is still ok. [17:50] Daviey: uploaded, fixes 2 different-but-similar etckeeper bugs, including our orchestra one [17:51] kirkland: ok cool [17:51] Daviey: RoAkSoAx: SpamapS: I'll leave it to the Ubuntu Server Team to decide if they want etckeeper recommended or not on Orchestra Clients [17:51] ill wait for that one to be released them [17:51] kirkland: Daviey I think we should keep it [17:52] I'd like to see it -- but I understand if you guys take a conservative stance at this point [17:52] will be a good way to find more errors for 12.04 and besides it is still in universe [17:52] personally, I'd be happy to SRU fixes, as necessary [17:52] +1 [17:52] RoAkSoAx: you think the benefit makes it worth while having a potential busted juju+orchestra deployment. [17:52] but that's up to you blokes (/me puts in language that daviey understands :-) [17:52] where busted = useless? [17:52] Daviey: right now it is busted. The fix uploaded by kirkland makes it useful again [17:53] * kirkland finds lunch before his meeting in 7 minutes [17:53] RoAkSoAx: how is it busted? [17:53] The fact this pckage is in universe is not relevant, it's essentially supported. [17:54] Daviey: busted in a way that it fails to create the necessary stuff, but from the testing I did today, it doesn't prevent juju from deploying a machine [17:54] Daviey: in fact, the machine is up and running normally [17:55] Daviey: the only issue is that etckeeper was unable to commit for the bug above [17:55] Daviey: whchi should be fixed now and we should not have any problems [17:55] RoAkSoAx: i've already backed etckeeper out. [17:55] I'm not sure we should reintroduce it at this stage. [17:56] Daviey: oh ok, so then nope, if it has been removed as recommends, then we should probbaly not reintroduced it [17:56] Daviey: i thought it still was [17:56] cause the installation i just did pulled etckeeper [17:57] Daviey: queued [17:58] RoAkSoAx: yeah, i really didn't want juju busted for the minimal feature improvement TBH. [17:58] RoAkSoAx: i only uploaded it an hour or so ago [17:58] Daviey: ok [17:58] Daviey: that's fine then [18:11] New bug: #873001 in ntp (main) "ntp fails to cross-build" [Undecided,New] https://launchpad.net/bugs/873001 === medberry is now known as med_out [18:15] i've been hacked... i am using ubuntu hardy LTS that still runs PHP 5.2.4 which have a security issue. how can i upgrade PHP on ubuntu hardy!? [18:16] here's what is installed: http://paste.ubuntu.com/706895/ [18:16] i think it's not a good idea to make a dist-upgrade?! [18:19] or should i use a PPA thsat provide PHP 5.3? [18:20] hmm, that php shouldn't have a security issue, if you update it [18:20] what exact security issue? [18:22] patdk-wk, here's my source.lists is everything good? http://paste.ubuntu.com/706899/ [18:22] * wip finding information about the hack [18:22] well, you have the most current php [18:23] so either it was a issue in the php script, or a new issue that hasn't been fixed yet [18:24] SpamapS: do you have time to help negronjl push the cloudfoundry charms to the "best" place in LP? [18:24] SpamapS: I'm thinking somewhere like lp:~cloudfoundry/charm/oneiric/cloudfoundry-* [18:24] SpamapS: negronjl said he was getting some permission denied errors [18:24] SpamapS: I suspect this is something you can help him nail very quickly [18:24] patdk-wk, here's what happened to me... http://www.jorgepablos.com/2011/03/watch-out-php-5-2-vulnerability-google-results-finditnow-osa-pl/ [18:25] patdk-wk, the article say to upgrade to PHP 5.3 [18:25] that isn't a hack [18:25] that is what they did AFTER they hacked [18:26] right, sorry english is not my first language [18:26] the php 5.3 fix, isn't so much a fix as, it breaks code that used older insecure default settings for php [18:27] so while 5.3 would fix it, it would break those applications your using that caused the issue [18:27] it's really the applications fault though [18:27] kirkland: ack [18:27] i cannot check all the sites installed (many artists that doesn't know a thing about wordpress, dupral etc...) so basically i can't do nothing? [18:28] oh heh, ya, all it takes is any out of date wordpress install, wordpressed has all kinds of issues [18:28] I would recommend 5.3 there yes [18:28] but your customers probably won't be happy about that [18:29] cause that WILL break somethings for them [18:29] how many, all depends [18:29] patdk-wk: is there a way to install PHP 5.3 and be able to downgrade easily? [18:30] installing via a .deb would be easy, just remove those .deb and reinstall the old .deb [18:30] that goes for ppa/... too [18:30] but I have never attempted to install 5.3 on 8.04 though, so that, I can't answer where to get a nice clean good source of php 5.3 for that [18:30] first aptitude remove libapache2-mod-php5, php5, php5-mysql etc... [18:31] then find a good source for php 5.3 dpkg -i php5.3 [18:31] if you install from ppa, to downgrade, remove the php 5.3 ppa, update, then remove/reinstall those :) [18:31] well, to upgrade, you shouldn't need to remove [18:31] patdk-wk, in ubuntu i never found a complete way to remove a PPA?! [18:32] Daviey: stilla round? [18:32] zul: yuppers [18:32] comment it out, or delete the file, from /etc/apt/sources.list.d [18:32] then you have to remove those packages from that ppa manually (I think, atleats how I do it) [18:32] Daviey: i have the nova branch queued up with the iscsitarget fixes and smosers database pool fix [18:32] zul: have a diff? [18:32] patdk-wk: ok looking for a PPA for hardy (php 5.3) [18:32] Daviey: should i upload to -proposed? [18:33] Daviey: uhhhh gimme a sec [18:33] * RoyK just started kismet to log traffic in case his network goes down :P [18:35] zul: I think this needs to be -proposed. Also not certain we need to 0-day it. [18:35] Daviey: http://pastebin.ubuntu.com/706909/ [18:35] or maybe if i am lucky i won't be hack again... [18:36] wip, unlikely [18:36] once it's hacked once, it gets onto many websites it was, and then other hackers do it to get their name/reputation out there also [18:36] Hi guys, im running the linux-image-2.6.32-29-scst (Debian 10.04) and I have issues inserting the arcmsr module, it states "FATAL: Error inserting arcmsr (/lib/modules/2.6.32-29-server/extra/arcmsr.ko): Invalid module format". I've downloaded the linux-headers-scst (which basically is the 2.6.32.29-server generic + scst). The output of the building of the module can be read here : [18:36] http://pastebin.com/JCkBE3A2. Any Pointers/tips :)? [18:37] so either i brake things by installing PHP 5.3 or i get hack... wow [18:37] am i the only admin having this issue? [18:37] zul: can you propose your fix to upstream trunk asap? [18:37] Daviey: the iscsitarget one? [18:37] yah [18:38] Daviey: taken from it [18:38] +Description: Fix iscsi target path issues. [18:38] +Author: Chuck Short [18:38] +Upstream: no [18:38] wip, for your case yes [18:38] cause your using mod_php [18:38] Daviey: gah.. [18:38] so all it takes is one of your customers/sites to get hacked to infect the rest [18:39] patdk-wk: even if i set the user / group of apache different from the directory of my sites [18:39] zul: where did you get the Upstream tag from? :) [18:39] my arse [18:40] wip, guess that depends on pache mode, and I know your apache in 8.04 is too old [18:40] that user/group thing is only for use when running cgi's, mod_* is not a cgi [18:41] patdk-wk: thank you for your time! when you say "cause your using mod_php" what should i use? [18:41] to keep users seperate? only two options, cgi :) or fastcgi, where fastcgi needs a php instance running per user [18:42] there are patchs and hacks somewhat to make it easier [18:42] php-ftm? or whatever is suppost to help [18:42] but that is only in php 5.3 I think [18:42] patdk-wk, no i mean - what are you using if you don't use mod_php? [18:43] fastcgi, it's much faster than mod_php [18:43] and a lot less resource intensive [18:43] isn't that what I just said though? [18:44] patdk-wk, sorry yes! are you on ubuntu server hardy? [18:44] patdk-wk, what version of PHP [18:44] no, as hardy life is almost over [18:45] that is quite funny, i installed hardy like 2 years ago because LTS and now people say the life of hardy is almost over [18:45] lts is good for 5 years [18:45] wow, a server is suppose to stay up and running for decades ;) [18:45] it has 18 months left? [18:45] hardy came out in 2008 [18:46] just cause you just installed it doesn't mean it lasts longer :) [18:52] patdk-wk, what will happen after LTS, PHP will not get updated? [18:52] nothing will get security patchs, or updates [18:52] anyone ever done apt-get dist-upgrade from hardy? [18:52] you would need to upgrade the server [18:52] this is dangerous i guess? [18:53] you should be doing dist-upgrades all the time [18:53] or else your kernel will never get security updates [18:53] you mean, do-release-upgrade [18:53] to upgrade to 10.04 LTS [18:53] oups sorry yes do-release-upgrade [18:54] * patdk-wk has been known to go directly from 7.04 -> 10.04 doing that, without issue [18:54] defently not recommended or supported though [18:54] wip: I have [18:54] it worked fine [18:55] * wip is scared to death === Japje_ is now known as Japje [18:55] wip, backup your data [18:55] thesheff17, yes i have back-up, but this server have many stuff installed, it's a mail server, http server, sftp server etc... [18:56] wip, how cleanly the upgrade goes, depends mainly on how you customized the configs, and how you modified the system [18:56] well there is a number of things you can do [18:57] it should work pretty nicely [18:57] take an image of the whole thing [18:57] or drive [18:57] but it all depends on what is going on in that system :) [18:57] or clone the drive to another one test upgrade [18:57] * patdk-wk clones systems to vm instances, upgrade that many times, then upgrades the real system [18:58] by the way 10.04 LTS have what version of PHP? [18:58] 5.3 [18:58] any suggestions on a simple logger for a channel on ircd-hybrid? just logging to a text file on the irc server is desired [18:58] PHP 5.3.2-1ubuntu4.9 with Suhosin-Patch (cli) [18:58] 5.3.6 is released awhile ago... oh well [18:59] wip, you have no idea how security updates work, do you [18:59] or any distribution [18:59] oups 5.3.8 is release - ok yes the backport thing [18:59] wip would make a good security auditor [19:00] it's a bit misleading calling php 5.3.2 when it's patched (backport) [19:00] that's all [19:00] but it doesn't have the features 5.3.8 has, so that would be misleading also === momoz_ is now known as momoz [19:07] argh, stop being invaldid module format! [19:20] Daviey: im gonna upload fixes for lp #872926 nad lp #872892 [19:20] Launchpad bug 872926 in cobbler "Cobbler repo URL's are broken" [High,In progress] https://launchpad.net/bugs/872926 [19:20] Launchpad bug 872892 in cobbler "should remove /etc/apache2/conf.d/cobbler*.conf on postrm" [High,Confirmed] https://launchpad.net/bugs/872892 [19:21] Daviey: and take care of adam's fix [19:29] adam_g: ping [19:31] err adam not her ethis week [19:31] How do you make samba a member of a domain? [19:33] smoser: ping [19:36] RoAkSoAx, here. [19:38] smoser: did you re-review https://code.launchpad.net/~gandelman-a/ubuntu/oneiric/cobbler/lp850880-850866 ? [19:38] smoser: did it satifsy all your concerns? [19:42] RoAkSoAx, reading [19:42] a couple things i would comment [19:42] * debug() should go to stderr, not stdout [19:43] i guess thats it [19:44] smoser: cool I guess I can fix that myself and get it uploaded [19:44] thanks [19:47] what's the way to 'disable' the left slot in a pagetemplate or BrowserView? [19:47] disregard, wrong irc [19:51] Daviey: fyi, the etckeeper upload was rejected [19:51] Daviey: please advise [19:51] New bug: #873042 in apache2 (main) "unable to build against apr -- undefined reference to `apr_initialize'" [Undecided,New] https://launchpad.net/bugs/873042 [19:52] * RoAkSoAx will be back later [19:53] anyone recommend some mysql benchmarking software? i need to find what settings and engines will work best in our applications [19:58] skrite: dunno - there are several - but the real thing is to test it [19:59] skrite: I'd recommend using postgres, though - less hassle with broken parts and better support for most of the stuff you want (or don't want) [19:59] my main idea now is just writing some scripts that will hammer it and measure the times, but was looking for a more professional (read knowledgeable way) [20:00] any particular reason for using mysql? [20:00] mysql is generally a hack, not a good DBMS [20:00] but then, if you're using stuff like wordpress, you're stuck with it [20:01] kirkland: infinity rejected it because it is a shipped package, which doesn't warrant a respin. He felt that it should be a tradional SRU. [20:01] Daviey: okay [20:02] so reupload to -proposed [20:02] Daviey: i'll reupload to -proposed [20:02] cool [20:02] Daviey: does it need the whole SRU blob in the bug reports, etc.? === med_out is now known as medberry [20:03] Daviey: uploaded [20:07] RoyK, well, i would be open to another database, but have so much code written and in place that i kinda cant [20:08] RoyK: what db do you like? [20:08] Daviey: ill do the nova upload tomorrow [20:10] zul: cool, that doesn't need to be 0-day IMO.. we'll do the normal 7 day SRU process. [20:10] kirkland: probably should. [20:10] Daviey: arg [20:10] kirkland: not really my call, you want to check that against the sru team :) [20:10] RoAkSoAx: any chance you can do that? [20:11] Daviey: i really have a million other things i need to work on today [20:11] skrite: I use all sorts of DBMSes, from sqlite to oracle, but I really fancy postgres [20:11] kirkland: well i don't think it matters if it is in the archive for release day? [20:11] * Daviey goes AWOL [20:11] Daviey: that's kinda what i was thinking [20:11] RoyK: , yeah if i could pick today, that is what i would use [20:12] postgesql [20:12] postgresql, even [20:12] Daviey: which segway into my next question should we have a schedule for os sru [20:14] yawns [20:15] kirkland: sure [20:15] kirkland: will do as soon as I get back [20:15] kirkland: could you either attache a debdiff to the bug report or send me the pastbinit [20:15] again [20:16] * RoAkSoAx will be back in 45 mins [20:31] RoAkSoAx: im checking irc periodically. if you /msg me ill respond eventually [20:36] RoAkSoAx: just pushed to lp:~gandelman-a/ubuntu/oneiric/cobbler/lp850880-850866/ to address scotts comments on debug() [20:49] * RoyK just pissed off some people from #zimbra, and it feels good [20:50] heheheh [20:51] whast that? [20:52] a rather good email or groupware server [20:52] ohhh [20:52] ok [20:52] built on postfix and a bunch of other software [20:52] but they don't want to explain what they do [20:58] they dont wan to explain? [20:59] how did you come to that final theory [20:59] ? [21:27] adam_g: cool thanks [21:27] adam_g: i'll prepare SRU then === a3dbox is now known as oakbox [21:57] I've got ubuntu server up and running, now I'm starting to install virtuals, but I don't see an option for vmbuilder or virt-install to use an img file that I created (pre-allocated disk space file) to install the os on vs. default. is there any way to make virtbuilder use a specific img file? I created a pre-allocated file to help with i/o, I'd like to have the vm that is created to [21:57] use it [22:02] Daviey: ping [22:03] soren: What would it take to make uvirtbot ignore eucabot in #eucalyptus so they can't accidentally trigger one another? [22:08] gholms: I had no idea it was even in there. [22:08] It isn't yet. [22:08] But it will be. [22:08] Says who? [22:08] Me. I'm adding it. [22:08] And how do you expect to do that? [22:08] Running a supybot instance on projects.eucalyptus.com [22:09] Err.. [22:09] There can be only one uvirtbot. [22:09] I'm not looking to replace it. [22:09] * soren is confused [22:10] uvirtbot isn't in #eucalyptus, but it will be, because you'll run another bot on p.e.c? [22:10] soren: Error: "isn't" is not a valid command. [22:10] uvirtbot: Thanks, that's really helpful. I appreciate it. [22:10] soren: Error: "Thanks," is not a valid command. [22:10] so im trying to build this .deb file of php. when i run dpkg-buildpackage -rfakeroot it actually runs my configure which i set with dh_override_auto_configure, and it seems to run a make as well, but it doesn't run make install. Does this not happen automatically? Do i need to specify in the debian/rules to run a make install? [22:10] No, eucabot will be in #eucalyptus, so uvirtbot, which is already there, should ignore it. [22:10] gholms: Ah. [22:11] gholms: What will eucabot do? [22:11] Bug listing with meetbot [22:11] s/with/and/ [22:11] gholms: If it does bug listing, why do you need uvirtbot? [22:11] ¯\(°_o)/¯ [22:12] It's already there, which is why I'm asking. [22:12] * soren is confused again [22:12] Maybe when eucabot is completely set up it won't be necessary? [22:13] I don't think I understand the problem :) [22:13] uvirtbot's primary job is to announce bugs and look up bugs. [22:14] eucabot is a copy of an internal bot that, among other things, responds with bug links and summaries when someone runs ".lp 12345". [22:14] Launchpad bug 12345 in isdnutils "isdn does not work, fritz avm (pnp?)" [Medium,Fix released] https://launchpad.net/bugs/12345 [22:14] You're concerned that a coming bot will say things that'll trigger this behaviour. [22:14] If uvirtbot sees that it will then respond. [22:14] Yeah [22:14] ...but if this other bot can say such things, why do you still need uvirtbot? [22:14] I doubt we will. [22:14] I have no particular desire to keep it in there. If it's in your way, I'll gladly remove it. [22:14] * gholms runs off to ask obino [22:15] You guys work it out. You can just let me know when you want to have it removed. [22:15] I need to sleep. [22:15] * soren heads bedwards [22:16] Daviey: orchestra1.1 which has the removal of etckeeper has been rejected btw [22:17] soren: Ok; thanks [22:26] RoAkSoAx: no, i uploaded to both -proposed and release pocket [22:27] the -proposed was rejected at my request [22:27] and the release pocket one is now published [22:28] Daviey: ohh ok [22:29] Daviey: alright gonna test fixes for lp #850880 and then I'll sru to -proposed [22:29] Launchpad bug 850880 in cobbler "cobbler-ubuntu-import does not pull from -updates" [High,In progress] https://launchpad.net/bugs/850880 [22:30] RoAkSoAx: great, i don't care if that is there at release time fwiw. I think that can be a normal SRU, but importiant for the future. [22:31] Daviey: i'm closing couple other bugs with the SRU [22:31] RoAkSoAx: if you wanted to add the love to the bug, but still keep it a sponsored package for adam_g - it might be helpful. [22:31] bug #872926 and bug #872892 [22:31] Launchpad bug 872926 in cobbler "Cobbler repo URL's are broken" [High,In progress] https://launchpad.net/bugs/872926 [22:31] Launchpad bug 872892 in cobbler "should remove /etc/apache2/conf.d/cobbler*.conf on postrm" [High,Confirmed] https://launchpad.net/bugs/872892 [22:32] Daviey: i couild 0-day sru those two, and then close adam's later [22:32] ooo, more fixes \o/ [22:32] when I can test it throughtly [22:33] does it warrant 0-day? [22:33] Daviey: well to save uploads 1 woyuld be enough [22:35] RoAkSoAx: I think it's a god compromise to have multiple fixes, following the otherwise normal SRU process. [22:35] We aren't rushing in fices into -updates, but closing multiple bugs. [22:35] That is the approach i would recommend [22:35] Daviey: yeah that's what I'm saying that I'd rather do a single upload [22:35] Yeah, i think that is a good compromise.. do that :) === medberry is now known as med_out