[00:17] RoAkSoAx: if those cobbler changes get uploaded, a quick fix in orchestra-import-isos should keep the cache updated over time: http://paste.ubuntu.com/707071/ [00:33] hi guys how do i loadbalance two apache web server only..? any idea guys please [01:47] I'm in the market for a build bot. Any opinions/suggestions? My rough functional requirements are http://paste.debian.net/136152/ === med_out is now known as medberry === medberry is now known as med_out [03:25] Anyone got recommendation to any good tutorials covering mail server on Ubuntu-server? [03:28] socomm: the ubuntu server guide [03:52] twb: thx I will start there [04:25] adam_g: lol ok === passion is now known as Guest97039 [05:28] Anybody free to help diagnose a dns problem? [05:28] !anybody [05:28] A high percentage of the first questions asked in this channel start with "Does anyone/anybody..." Why not ask your next question (the real one) and find out? See also !details, !gq, and !poll. [05:36] OK. First time irc user. I have been using a server for DHCP and dynamic DNS with BIND for some time. I "demoted" the server to a dhcp client when I purchased a new server. The new server works great, al the clients are resolveable *except* the old dhcp server. I thought that I've scrubbed it clean but when restarting networking, I keep getting "DHCPREQUEST for 192.168.59.3 (192.168.59.2) from 00:06:4f:4f:59:2f via eth1" [05:36] where 192.168.59.2 was the old static ip of the old server and is now the new static ip of the new server. I've assigned 192.168.59.3 in dhcpd.conf: [05:36] host pe4400.crmeng.lan { [05:36] hardware ethernet 00:06:4f:4f:59:2f; [05:36] fixed-address 192.168.59.3; [05:36] default-lease-time 86400; [05:36] max-lease-time 86400; [05:36] } [05:37] So what's the problem [05:37] The old server's name pe4400 is not resolveable anywhere except on itself. [05:39] It gets the right ip address, but bind ignores it. I've added "send host-name "";" to the old server's dhclient.conf to no avail [05:46] You understand that host names provided by DHCP clients, don't necessarily propagate to the DNS server? [05:52] Yes, but the server is set up for dhcp/dns server with dynamic dns (see http://ubuntuforums.org/showthread.php?t=730717 for an example set up). All of the dhcp clients are resolveable by their FQDN's *except* the old server. I'm not using caching, so where is the "memory" of the old server's MAC coming from? [05:54] Is the old server acting as a DHCP client? Is it an *ubuntu* (not debian) server? [05:54] Yes [05:54] The format "" is an ubuntu-specific patch [05:54] crmccreary: OK, not sure then [05:55] I use dnsmasq, not bind, so I'm not sure how to do much more diagnostics [05:55] Ubuntu - DISTRIB_DESCRIPTION="Ubuntu 10.04.3 LTS" === newbie is now known as Guest80603 === gustav- is now known as beerbroy [07:38] Hello all [07:39] I just did 'service mysql stop' and 'service mysql start... start hung so I ctrl-Ced out of it [07:39] Then I did 'service mysql start' and it worked [07:39] but none of the php sites on this server can establish a db connection [07:40] ... okay, weird. [07:40] stopped and started the service again, now it works === kim0|holiday is now known as kim0 [08:01] New bug: #873194 in xinetd (main) "UDPINT" [Undecided,New] https://launchpad.net/bugs/873194 [08:01] New bug: #873195 in samba (main) "package samba-common 2:3.5.4~dfsg-1ubuntu8.4 failed to install/upgrade: there is no script in the new version of the package - giving up" [Undecided,New] https://launchpad.net/bugs/873195 [08:03] Hello! [08:03] i need some ideas for a (Config)-File Deployment strategie for multiple ubuntu/linux server. [08:04] morning all [08:04] has anyone an idea or a nice project? [08:05] spiekey: there are a few options - puppet or chef provide good configuration management toolsets for individual servers [08:05] if you want todo something at a higher level with co-ordination across servers you might like to take a look a juju [08:06] #873198 [08:06] bug #873198 [08:06] that's a rather annoying one [08:13] how long does it take from a bug is filed till it becomes public? [08:14] RoyK, not normally that long - was it specifically marked private? [08:17] ah. dunno why it was [08:18] bug #873198 [08:18] Launchpad bug 873198 in grub2 "grub.cfg is not updated" [Undecided,New] https://launchpad.net/bugs/873198 [08:26] RoyK: It was marked private because it was marked security. [08:27] ah [08:27] it's security-related, but not a big hole, unless you consider running a 1YO kernel a major security issue - it might be... [08:51] RoyK: Heck, running an up-to-date kernel is probably a major security issue. [08:57] :( [08:58] we should devote this release to Dennis Ritchie [08:58] Yeah, I just heards about it, too :( [09:07] hey all [09:09] i have the following problem: i have installed another ubuntu server 10.04 LTS , i had a problem connecting via putty over ssh ( always said access denied ). then i set protocol to v2 only and it worked but after a while i get a network error message and putty disconnects, then i cant connect anymore no matter what protocl version i chose i always get a access denied error after auth [09:13] chris-: If I had to guess (and I guess I do), you have another host with the same IP on the network. [09:13] chris-: ..and the fact that changing to v2 fixed it is a coincidence. [09:14] chris-: The disconnection is caused by the other host suddenly getting the network packets and sending back an RST (because it doesn't recognise the connection). [09:14] chris-: ..and now you're back to not being able to auth because you're talking to a host different from the one you're expeting. [09:14] expecting, even. [09:15] I can't quite explain why you're not getting SSH host key errors, though. [09:15] Are these machince built from an image? [09:15] chris-: So they could potentially have the same SSH host key? [09:17] soren, no its a fresh install [09:18] soren, when i reboot the server i can connect to it again until i get disconnected for some reason ( maye after about 30mins ) [09:23] soren, funny u seem to be right [09:24] i am installing the machine remote and have been given the ip configuration i should make by the admins [09:24] soren, seems like they made a mistake , i shut down the server and can still ping the ip adress, so theres probably another device here [09:29] soren, u were right just called the admin and he made a mistake - theres another device with this ip haha. funny i didnt think of this myself. thanks a lot mate ;) [09:29] * soren pats his crystal ball [09:29] Comes in handy every so often. [09:29] chris-: You're welcome. [09:30] I still wonder about those ssh host keys, though. [09:35] hehehe :) === smb` is now known as smb [10:01] New bug: #873243 in nova (main) "nova-compute-xen depends on xen-linux-system which does not exist" [Undecided,New] https://launchpad.net/bugs/873243 [10:04] morning everybody!! [10:43] koolhead17: morning [10:45] hello lynxman :) [10:53] jamespage: around? [10:53] jamespage: when you get this, how did bug 870244 go? [10:54] Launchpad bug 870244 in dovecot "mail-stack-delivery package install needs to restart dovecot" [Low,Confirmed] https://launchpad.net/bugs/870244 [10:54] Daviey: sure am [10:54] hmm - not much progress [10:54] lemme just see where I got to [10:57] cool [11:08] Daviey: sorry - dovecot fell of my list for some reason [11:09] I hit an issue with restarting dovecot - just testing again now === beerbroy is now known as beerbro [11:23] Daviey: see my comment on bug 870244 - ATM restarting or stop/starting is a bit unreliable [11:23] Launchpad bug 870244 in dovecot "mail-stack-delivery package install needs to restart dovecot" [Low,Confirmed] https://launchpad.net/bugs/870244 [11:31] jamespage: I think we need to add this to the release notes for Oneiric.. and fix it in P.. [11:31] not sure it's worth SRU'ing.. agree? [11:38] jamespage: hey. how did you associated set of floating IP to a project? Currently i been manully adding it in DB [11:38] in diablo [12:21] jamespage, ping [12:33] blimey - I pop out for lunch and see what happens [12:33] Daviey: agree on the SRU [12:33] the fix is not reliable [12:34] koolhead17: hrm - not sure - I setup a set of floating IP addresses as detailed in https://wiki.ubuntu.com/ServerTeam/Oneiric/OpenStackTestPlan [12:34] I then used euca-allocate-address and euca-associated-address to fix them to instances [12:34] smoser: pong [12:35] how can i run a tiny little images test ? with ubuntu-server-ec2-testing [12:35] i made a merge proposal last night, but completley untested and i want to attempt to test [12:35] :) [12:36] smoser: you should be able to run it from the command line [12:36] from within the bzr branch [12:36] * jamespage refreshes his memory [12:37] jamespage, i see execute_all_ec2_tests.py, run_ubuntu_ec2_multi_test.py, execute_ubuntu_ec2_test.py, run_ubuntu_ec2_test.py [12:37] all of those looked like good candidates :) [12:37] smoser: execute_ubuntu_ec2_test.py [12:37] is the one [12:38] --help has good advice [12:39] smoser: you will need a branch of lp:~ubuntu-server-ec2-testing-dev/+junk/ec2-automated-tests [12:39] yeah, and thats expected to be ~/tests by dfault ? [12:39] and to setup a ~/.ec2.yaml file containing access credentials [12:39] yes [12:40] ok. i'll run this test and then write a README or doc/ something on how to do it. [12:40] just has to keys - AWS_ACCESS_KEY_ID & AWS_SECRET_ACCESS_KEY [12:41] smoser: that would be great - there is the start of one in docs === med_out is now known as medberry [12:45] smoser: the test names are in lp:~ubuntu-server-ec2-testing-dev/+junk/ec2-automated-tests global/tests.yaml [12:45] that file pulls together metadata about the test and the actual detail of the test [12:46] morning [12:47] morning zul [12:47] hey i got 3 servers i want to connect remotely from 1 public ip but they got 3 diffrend local ip's anyone know how i can set that up ? [12:49] kainore: google nat [12:49] network access translater ? [12:49] address sorry mybad [12:50] but thanks [12:50] kainore, how exactly do you want to access them? SSH? [12:51] server01.domain.dk server02.domain.dk server03.domain.dk they just all get to server01 [12:51] Does anyone have a fresh oneiric server install to hand? [12:51] and ssh need ofc to get around as well [12:53] Daviey: i can fire up a kvm if that helps [12:54] zul: nah, no worries. [12:57] Daviey: I have quite a fresh one [12:57] as in later yesterday [12:58] Daviey: are you writing the release note for mail-stack-delivery? [13:00] jamespage: I'm not sure it's worth noting is it? [13:00] it was in Natty, and easy to work around. [13:00] think we should include it? [13:00] meh [13:00] probably not - its a minor niggle [13:01] I just noted it had a release notes task that was all [13:01] If you think we should, sure. [13:01] i think i added that task as a maybe. [13:02] as its such a minor issue lets not add it - if we get lots of post release bugs (which we won't - as you state its like this in natty) then we can consider an SRU [13:02] Daviey: ^^ - I'll pickup the bug to resolve early next cycle [13:03] we also need to fix the racey restart issue [13:03] but that prob requires some upstream co-op [13:03] jamespage: rocking! [13:03] jamespage: is the task assigned to you and targetted? :) [13:04] Daviey: it is now :-) [13:04] awesome! [13:04] I marked the oneiric task won't fix as well [13:04] sounds good. [13:23] Daviey: im going to push out an SRU for nova [13:24] hello. Do you know where we should be pointing users that looks for instruction to deploy Ubuntu Cloud Infra ? [13:25] a [13:25] the nova docs maybe? [13:25] zul: which certainly exlain how to use orchetra and juju, I am sure! [13:26] nijaba: hm, don't think there's complete docs yet :/ [13:26] nijaba: right i think RoAkSoAx was suppose to do orchestra and juju but hasnt finished yet [13:34] i wasted so many hours with role based access control :( [13:36] ooh it's on! [13:37] lynxman: the secret is out :P [13:37] koolhead17: yeah, preparing my blog post :) [13:37] * koolhead17 pokes Daviey [13:38] lynxman: i have many things to write on my blog if am allowed too, rather many failures i encountered with :P [13:38] daiblo/old auth :P [13:48] koolhead17: I'd rather try to fix those for P ;) [13:48] lynxman: its ok to say precise ;) [13:49] zul: I so much preferred the name I proposed :) [13:49] lynxman: i dont want to even know [13:50] zul: you sure? :D [13:50] Precise is going to have more name collisions than Oneiric. [13:50] context collisions, etc. [13:50] lynxman, P? [13:50] medberry: Precise Pangolin of course [13:50] medberry: at least i dont have to go to dictionary.conf to figure out how to pronounce it ;) [13:50] lynxman, that's what you wanted? [13:51] s/wanted/proposed/ [13:51] medberry: nah, mine was a bit more accurate :o) [13:51] New bug: #873358 in samba (main) "package samba 2:3.5.11~dfsg-1ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/873358 [13:51] lynxman, nod. [13:52] jamespage, ping [13:52] so, ec2-automated-tests/global/tests.yaml has 'simple-user-data' [13:54] smoser: yep [13:54] and i can probably change 'instance_type' there. [13:54] i want to run t1.micro, just for testing [13:54] jamespage: thanks. :d [13:54] buti dont know how it knows arch and such [13:55] the !@#$ is_admin table [13:55] oh, i see. i can pass that in. [13:55] never mind. i'm a dolt. [13:56] yes - the framework will then pick the right instance size of the arch from archs.yaml [13:56] in this case 'default' [13:57] * jamespage thinks he might have gone a bit over the top with yaml in this framework [14:00] why ubuntu.com shows laptop with bloody "Dell" on it :P [14:00] koolhead17: you don't like Dell? [14:00] lynxman: nopes. the morons sell with MSFT in india. [14:01] Acer is the only company which gives me linux installed lappy [14:01] :P [14:01] and then i replace limpus to ubuntu :D [14:03] koolhead17 : That might be because Dell and Canonical are partners [14:04] and that Dell will ship machines with Ubuntu pre-installed [14:04] RoAkSoAx: yo [14:05] Martyn: i doubt it happens in reality of at all. The showroom shows only 7 :D [14:05] koolhead17 : #awholenewworld :) It didn't count down to the release of Oneiric :) [14:05] koolhead17 : Could be something else :) [14:07] Martyn: i give damm to an OEM like dell, who licks MSFT ass :) [14:08] heh [14:08] Well, how do you _really_ feel P) [14:08] * patdk-wk is pretty much stuck to hp and supermicro [14:09] anyways am happy if canonical is making something from them in partnership !!! :D [14:13] only 1 day before my hardy server get hacked again... i really need to do-release-upgrade but i fear very much [14:13] why hardy doesn't offer PHP 5.3 [14:13] hi [14:13] anyone here good with SendMail? [14:14] matthew: I'm kind of good with it :) [14:14] ok…. [14:14] I am using Rapidweaver, and I have a "ContactMe" web page…. [14:14] I published my site, and on the contact page, it says mail is being sent, but … guess what… its a no go…. [14:15] I don't know if its a sendmail configuration issue or PHP5 issue… [14:15] matthew: I'd say that's not even remotely related to sendmail, you're several layers above :) [14:15] matthew: start by checking logs, writing some php script to check, etc [14:16] sadf [14:16] do-release-upgrade, y u error fatally :| [14:18] w00, you don't recommand doing a do-release-upgrade from hardy LTS? [14:19] wip: if you're running in production I'd wait for the next LTS [14:19] zul: re bug 873243, the consensus here seemed to be that it doesn't make sense to add xen-hypervisor-4.1-{amd64,i386} since that won't assure that the system is booted into dom0 [14:19] ^ [14:19] Launchpad bug 873243 in nova "nova-compute-xen depends on xen-linux-system which does not exist" [Undecided,New] https://launchpad.net/bugs/873243 [14:19] zul: I don't suppose it matters that much though [14:19] lynxman, i cannot wait my server is running PHP 5.2 (hardy version) and this version is easily hacked [14:19] wip: oops :/ [14:20] wip: maybe getting a backport? [14:20] rbasak: well ideally we would have an xen-meta package that does everything for you and just depend on that [14:20] i have 2 options: upgrade PHP to PHP 5.3 or do-release-upgrade [14:20] lynxman, can you explain how to get a backport? is it possible to upgrade PHP5.3 from hardy? [14:20] Where can i report the release-upgrade err? [14:21] wip: I'd jump from hardy to lucid for starters, you want to be in the latest LTS [14:21] zul: the argument (not mine but it makes sense to me) was that Depends: cannot describe a dependency on what is booted so it's the wrong place to define it and the sysadmin should know to do it himself (with an added helpful message if he tries to start a domU without being dom0) [14:21] lynxman, i fear the worst, never been lucky with do-release-upgrade... [14:22] wip: well, be ready, do a backup beforehand, usual precautions :) [14:22] ok, I was matthew… had issue with username…. [14:22] ok [14:22] rbasak: yeah [14:22] so sendmail… [14:22] I don't see any errors…. really I dont [14:22] zul: so Daviey asked me to request an SRU but you seem to have beaten me to it :) [14:23] rbasak: heh [14:24] this is the only thing that says fail… version=TLSv1/SSLv3, verify=FAIL [14:24] anyone did HARDY to new LTS (lucid)? [14:24] (do-release-upgrade) [14:24] wip: I've done it in the past, it works :) [14:24] wip: Yes, whats the issue? [14:24] with apache and php mysql ftp pgsql dovecot [14:24] wip: and more stuff even [14:24] wip: do a backup and go for it ;) [14:25] like i said i never been lucky when doing a do-release-upgrade [14:25] lynxman, what is the "good" way for making a back-up. right now i have all my sites, database, but not sure if i have all my apache conf, ftp user conf etc... [14:26] wip: I'd rsync the whole structure to another disc, also mysqldump your databases, keep a separate copy of /etc as well and of your user data [14:26] wip: as a paranoid that's the kind of backup I'd do [14:27] lynxman, sadly the other disk is full (the back-up disk) [14:28] what address do I need to have on my hostile? just the local private IP and the name associated with it correct? [14:28] wip: then connect another one? :) [14:29] lynxman, good advice sadly i don't want to paid my hosting cie to install a new disk [14:30] would it be possible to backup an image of my entire system within the same hd (i have plenty of space) [14:30] wip: I'd not recommend that unless you have no other choice [14:31] nm I got it…. [14:31] thanks all [14:31] i have no other choice... sadly - i'm a poor fake sysadmin [14:36] is this line ok to backup before do-release-upgrade? tar cvpzf backup.tgz --exclude=/proc --exclude=/lost+found --exclude=/backup.tgz --exclude=/mnt --exclude=/sys / [14:37] wip: do that, then also a separate tar of /etc another of your web content and a mysqldump of your BBDDs (or pg_dump in your case) [14:38] New bug: #873373 in samba (main) "error reported during do-release-upgrade to Oneiric" [Undecided,New] https://launchpad.net/bugs/873373 [14:41] kirkland: yo [14:41] kirkland: etckeeper is in -proposed [14:41] RoAkSoAx: cool, thanks! [14:41] RoAkSoAx: we probably need to talk to the upstream etckeeper devs and see if they'll take this simple patch upstream [14:41] kirkland: the ping was about that bte [14:41] btw* [14:41] lynxman, should i change release-upgrades - Prompt=lts? [14:42] kirkland: alright [14:42] RoAkSoAx: i predict a bikeshedding discussion about *where* this should be fixed [14:42] RoAkSoAx: they're going to say "fix it in bzr", and bzr is saying "fix this in etckeeper" [14:42] wip: I'd follow this doc, it's quite good (I followed it myself) https://help.ubuntu.com/community/LucidUpgrades#Upgrade_from_8.04_LTS_to_10.04_LTS [14:43] lynxman, THX!! [14:43] Anyone did a release-upgrade from natty to oneiric yet? [14:43] kirkland: agreed, but the simplicity of the patch gives us good chances, at it makes sense to set defaults as well [14:44] RoAkSoAx: heh, i wish i just had to convince you :-) [14:45] kirkland: hey o/ [14:45] lynxman, you may need to edit /boot/grub/menu.lst and change the default boot kernel to the newly installed 10.04 kernel: did you have to? i don't have access to the console... [14:46] wip: I didn't need to, but your mileage may vary [14:46] lynxman: howdy [14:50] kirkland: lol xD [14:50] anyone have any recommandation before doing a do-release-upgrade on hardy: i will backup using: tar cvpzf backup.tgz --exclude=/proc --exclude=/lost+found --exclude=/backup.tgz --exclude=/mnt | dump my mysql and pgsql database | bk /etc | bk manywebsites | ask for a kvm/ip (you may need to edit /boot/grub/menu.lst - If this step is not performed your server may attempt to boot into the 8.04 LTS kernel and will hang.)? [14:52] New bug: #873390 in dovecot (main) "dovecot restart/stop&start fails due to child processes still running" [Undecided,New] https://launchpad.net/bugs/873390 [14:52] and i am using dovecot on hardy... [14:58] lynxman: i am testing most of the nova commands and all of them are working , what would you suggest :P [14:59] koolhead17: keep testing? :o) [15:00] Please report this as a bug and include the files /var/log/dist-upgrade/main.log and /var/log/dist-upgrade/apt.log in your report. The upgrade has aborted. [15:00] :[ [15:01] lynxman: ok. sir :D [15:05] Where should i report the bug more exactly? [15:28] launchpad timeout, awesome, no upgrade for now then [15:35] <___MAX> hi, i have toshiba disk drive with usb cable i wont to install ubuntu on it with persistence [15:40] SpamapS: ping [15:40] <___MAX> can i install persistence ubuntu on 80 disk drive with usb cable [15:40] kirkland: pong! [15:41] <___MAX> any idea !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!11 [15:45] jamespage, still around ? [15:46] smoser: yep [15:47] i ran a test like : execute_ubuntu_ec2_test.py simple-user-data --tests=./ec2-automated-tests --release=oneiric --storage=ebs --region=us-east-1 --arch=amd64 --debug [15:47] having modified global/archs.yaml to say 't1.micro' for default size [15:48] the instance went to started, then to stopped, then started, but then back to stopped [15:48] it did not go to terminated [15:49] logfile? [15:49] ah - are you running that on natty or oneiric? [15:49] started-stopped-started-terminated would be normal [15:49] http://paste.ubuntu.com/707408/ [15:50] running a test of oneiric on my oneiric machine [15:50] that log is cleaned a bit... i tried to strip out boto debug [15:51] and it just now happened again [15:51] smoser: did boto get an upgrade this release? I remember having todo something hacky with terminate/stop before [15:51] infact I know it did [15:52] fwiw I've only ever run the ec2-tests from natty [15:52] so that might be making a difference. [15:53] boto did upgrade 1.9b-1ubuntu5 in natty, and 2.0-0ubuntu1 in oneiric [15:55] smoser: it looks like that part of the api has changed - there is now a terminate method which did not exist before [15:55] PHP complains that it cannot find the imagecreate() function I'm using, phpinfo() says GD is enabled, ubuntu server 10.04 with apache2 and php5 [15:55] right. [15:56] jamespage, i'll try to monkey patch the test suite to account for that [15:56] What do I need to do/install to get the php function imagecreate() ? [15:56] smoser: ack [15:56] jamespage, doc merge proposal at https://code.launchpad.net/~smoser/ubuntu-server-ec2-testing/doc-updates/+merge/79304 [15:57] smoser: thanks for that - it really needed doing [15:57] smoser: the stop command for ebs instances in PHASE_3 could also be updated as well [15:57] I'm happy to move the minimum release requirement forwards BTW [15:58] its not hassle [16:05] jamespage, so we think that boto.ec2.instance.stop() on natty would terminate ? [16:05] and on oneiric it 'stop' [16:05] right? [16:14] Can I have upstart spawn/respawn multiple processes from a single .conf? [16:17] New bug: #873423 in net-snmp (main) "please enable multiarch for net-snmp" [Wishlist,Triaged] https://launchpad.net/bugs/873423 [16:23] jamespage, ok. i think we're good now. [16:23] i have 3 things i'd like merged [16:23] https://code.launchpad.net/~smoser/+junk/ec2-automated-test/ [16:23] err.. lets number them. [16:23] 1.) https://code.launchpad.net/~smoser/+junk/ec2-automated-test/ . I can't seem to submit a merge proposal for that at all, so you'll just have to review, and pull it in. [16:24] 2.) doc fixes : https://code.launchpad.net/~smoser/ubuntu-server-ec2-testing/doc-updates/+merge/79304 [16:24] 3.) other fixes : https://code.launchpad.net/~smoser/ubuntu-server-ec2-testing/fixes/+merge/79174 [16:27] I see where I can run a separate pre-start stanza to run a process, but can I exec a command in that stanza and have upstart manage it? Will Upstart respawn the commands executed in the pre-start stanza if they terminate abnormally? === Amgine is now known as Guest74455 [16:41] donspaulding, http://paste.ubuntu.com/707441/ [16:42] i put that in /etc/init, and then ran 'sudo start testme'. that wrote to /tmp/testme.log. I got the pid that was in /tmp/testme.log and killed it (sudo kill). [16:43] and after the kill, post-stop, pre-start, start, and post-start all get called [16:43] smoser: my question regards exec'ing a daemon within the pre-start. [16:44] oh.. i see. i thoguht you were just asking if it would run pre-start on 'respawn' [16:45] i would doubt that it would handle the respawn of jobs started in a pre-start. [16:45] smoser: yeah, I can see where my question could look like that. Unfortunately, I'm trying to screw with a hammer, I think. [16:45] smoser: I think I'm just going to "do it the Upstart way" and put the two daemons in different .confs [16:57] why all sudden channel went in silence :P [16:59] Shhhh. [16:59] * donspaulding grabs the popcorn [17:00] * koolhead17 just had nice dinner!! [17:01] we're watching a movie [17:01] http://i.imgur.com/tCp90.gif [17:01] how can I get a script to run at startup? Its daemonized... I have /etc/rc.d/init.d/mpdscribble ready to go === guampa_ is now known as guampa [17:02] New bug: #871674 in apache2 (main) "Server mod_proxy_ajp Denial of Service Vulnerability " [Undecided,In progress] https://launchpad.net/bugs/871674 [17:02] symlink into the runlevel you want it, like old-style initscripts [17:02] or write an upstart script for it [17:03] josePhoenix, I remember there was a program i could call if I had an initscript, something like: program myscript defaults [17:03] i forget what its called though [17:03] donspaulding: scary movie!! :P [17:03] storrgie: update-rc.d [17:03] storrgie: update-rc.d? I don't remember if ubuntu installs it by default these days [17:03] I'm actually in fedora right now, I just usually ask questions in here [17:04] i believe you're right it is update-rc.d [17:07] New bug: #871673 in apr (main) "APR "apr_fnmatch()" Denial of Service Vulnerability " [Undecided,Fix released] https://launchpad.net/bugs/871673 [17:16] storrgie: you may get different answers here ;] [17:19] josePhoenix, right. I did find it out though. I needed to use systemctl [17:19] I'm not sure if thats in ubuntu, I think ubuntu uses upstart right? [17:21] storrgie: it's kind of a confusing landscape in ubuntu :\ [17:22] upstart scripts are installed with services, but there's no "right" way to disable services without removing them altogether [17:22] and to further complicate things, traditional rc#.d/ folders are still supported [17:25] josePhoenix, this is why I shifted over to fedora... I feel really detached from whats going on in ubuntu. Its frustrating [17:29] Aside from that weirdness I've been very happy with Ubuntu [17:30] even when the packagers make nonstandard decisions, they usually aren't bad ones [17:31] storrgie: change is good!! :D [17:33] koolhead17: I guess that depends what sort of change, the slow migrate to upstart while keeping the sysv scripts isn't too easy to handle for many sysadmins [17:34] IMHO the jump to upstart was a wee bit hurried [17:34] RoyK: things will get much better in LTS :) [17:34] koolhead17, change is great... arbitrary change is rough though [17:34] koolhead17: I'm talking about LTS, lucid [17:35] RoyK: i meant coming one!! :) [17:35] things should be _stable_ in an LTS [17:35] in Hardy it was all fine [17:35] in Lucid, things got a bit complicated [17:35] ya, too earily upstart migration :( [17:35] indeed [17:36] * RoyK just has to try 11.10 on his home server to get Xen - talking about cutting edge..... [17:36] royk, I'm bad [17:37] I haven't used anything other than maverick and lucid currently [17:37] i'm gonna put 11.10 on my server in a little bit. [17:37] only lucid on servers [17:37] i'l go to LTS w/ 12.04, and stay there a while [17:37] but I do test all iso's for all ubutu versions [17:37] just don't use them, just test [17:37] things will get fun when 12.04 comes out [17:38] I'll have to start building 10.04 and 12.04 packages for all my custom stuff [17:38] hoping 12.04 is nice, I'll upgrade to it quickly [17:38] patdk-wk: for workstations, we upgrade rather often. that may change after 12.04, but then, I beleive we said that before 10.04 came out :P [17:38] I'm still using 10.04 for workstations, (except my netbook, cause I tried maverick on it, just haven't bothered hardly use it) [17:38] RoyK: it takes time, after all we are rapidly going there :P [17:39] patience :D [17:39] and then, when 12.10 comes, the users are bound to request an update [17:39] yuk [17:39] how to I list available versions (including past versions) of a specific program using apt-get? [17:40] I can't stand to upgrade every 6 months, too quick, just geting settled in :) [17:40] shennyg, apt-get doesn't do that [17:40] still trying to find an easy way to integrate ubuntu into AD, single signon etc [17:40] royk, that is easy [17:40] been doing that since atleast hardy [17:40] shennyg: apt-cache search will show you the list of current versions [17:41] patdk-wk: really? the howtos I've come across weren't exactly simple - local user needed and whatnot [17:41] thanks RoyK [17:41] royk, local user is not needed at all [17:41] atleast the way I do it, bind it into pam [17:41] then the howto is wrong :P [17:42] I also don't use that *simple* AD intergration howto [17:42] or whatever that package is called [17:42] I don't think there is one [17:42] and with a bunch of workstations, you really want a simple one [17:42] RoyK: that didn't give me versions numbers... just the name. [17:43] shennyg: man apt-cache :P [17:43] royk, ya, I think it takes about 5min to do it, edit pam, use winbind I think, get kerberos token for machine [17:43] thanks ;) [17:43] then it should be good [17:45] royk, likewise is the same of that package that is suppost to make it simple [17:46] the one I used as a sample, though my config is alittle different is: https://help.ubuntu.com/community/ActiveDirectoryWinbindHowto [17:46] * RoyK took tomorrow off and really cba to worry about windoze integration atm [17:47] but thanks - I'll bookmark it [17:47] Hi all. Is it possible to do SSH attack throttling as explained here > http://my.opera.com/TMS/blog/show.dml/194002 using Ubuntu’s ‘Uncomplicated Firewall’? [17:47] hi everyone [17:47] dnmons: I just use denyhosts [17:48] dnmons: a bit more nazi, but works well [17:48] dnsmons, there are many ways to do it using ufw, but they aren't very smart, as they don't know a good vs bad connection [17:48] dnmons: and then, it's distributed, so the usual suspects are denied early [17:48] therefor I normally use fail2ban [17:48] patdk-wk: fail2ban < denyhosts [17:49] denyhosts isn't dynamic [17:49] or are you talking about some program? [17:49] not hosts.deny [17:49] I have a question about dovecot-auth & postfix, after a recent update (I believe) no node is made at /var/spool/postfix/private/dovecot-auth [17:49] patdk-wk: it uses hosts.deny, but it updates it dynamically for sure [17:49] patdk-wk: apt-cache search denyhosts :P [17:49] what are the advantages of fail2ban vs denyhost? [17:50] it seems 01-mail-stack-delivery.auth is not loaded anymore [17:50] I liked the method explained in that blog post because it does’t block, just drop packets and slow things down [17:50] who said you had to just block? [17:50] you can do any number of things, only limited by your creativity and time [17:51] but as that blog is not about linux iptables, not that useful [17:51] patdk-wk: and yes, denyhosts != hosts.deny even though it uses it (as fail2ban may do if you want to) [17:52] ya, I'm not a fan of hosts.deny [17:52] why not? [17:52] these days I use ipset [17:52] and just have a custom rule chain that triggered off it [17:53] hosts.deny does the same job only at a higher level [17:53] yep [17:53] higher level, depends on application support for it compiled in, ... [17:53] also only works on the machine the app runs on [17:53] patdk-wk: how many services do you really check for in fail2ban? [17:54] about 12 [17:54] across 30+ servers [17:54] I get your point.... [17:54] hi guys, i'm currently running a bunch of JeOS 8.04 VMs on this one VM server, and one app i have to deploy can't run on 8 [17:54] what version of Ubuntu is most like 8.04 in terms of footprint? [17:54] royk, the only thing I don't check with it currently is web logs :) [17:55] necromancer: with lucid (10.04) you have a "minimal virtual machine" choice in the install menu - that should be rather close to JeOS [17:55] awesome [17:55] might be a bit bigger, though [17:55] min virtual machine = JeOS [17:56] patdk-wk: in theory, yes :P [17:56] atleast according to the testing I do every month :) [17:56] i mean as long as it's really close [17:56] it's suppost to be <500MB [17:56] it's normally in the 450MB about size [17:56] necromancer: it's the smallest one from ubuntu [17:56] necromancer: a minimal debian install is likely to be half of that [17:56] it's easier for my boss to keep track of the server's size and if it needs hardware upgrades [17:56] RoyK: reeeally [17:57] debian is very minimal [17:57] now is debian difficult to configure to be very minimal? [17:57] necromancer: but really, do you need to go that low? [17:57] most - even cheap VMs - have a few gigs of space [17:59] RoyK: our VMs are 128mb RAM, 8GB HD and using 1 vCPU [18:00] necromancer: you can go a long way with 8GB [18:00] yeah [18:00] and 128MB should suffice for a small vm [18:01] well as long as ubuntu 10 can run on those specs we're good i guess [18:01] 10.04 will run well on that [18:01] even a standard install [18:01] smallest ram usage I could make ubuntu 10.04 use is 24megs [18:04] necromancer: I have a few 64MB VMs [18:04] works [18:05] necromancer: and on my home server which has plenty of software installed, it's only using 1,6GB for the root [18:06] can someone help me with dovecot sasl / mail-stack-delivery [18:06] RoyK: awesome [18:06] somehow my mail system stopped working, postfix cannot authenticat imap on dovecot is working fine [18:07] '/var/spool/postfix/private/dovecot-aut does not exist anymore it looks like 01-mail-stack-delivery.auth is not loaded, but i do not know why... [18:08] hola, where I can current software version list for 10.04 LTS [18:08] aibo: http://packages.ubuntu.com is probably the easiest way. [18:09] aibo: man apt-cache [18:09] RoyK, i am not on 10.04, thinking about migrating from 11.04 [18:12] aibo: on which version are you? [18:12] I said, 11.04 [18:12] well, my first advice is: If everything works, don't fix it [18:12] an XFS filesystem was created on /dev/sdc instead of on /dev/sdc1. does it matter? [18:13] pmatulis: hardly [18:13] pmatulis: unless there were more partitions on the drive :P [18:13] RoyK, I know [18:13] pmatulis: if there were, they are probably gone [18:15] RoyK: nah, there were no other [18:15] pmatulis: then no harm done [18:15] pmatulis: sdc now doesn't contain a partition table, but neither needs one [18:16] RoyK: ok, makes sense. thanks [18:18] New bug: #873543 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: subprocess new post-removal script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/873543 [18:18] another question, where are ufw rules stored? so I can back them up. [18:19] pmatulis, never put that drive into an openfiler system though :) [18:19] atleast the of I used would automatically put a gpt on every disk, even if you didn't want one [18:19] dnmons, /etc/ufw [18:19] you should backup /etc though [18:20] patdk-wk: no reason for a partition table on drive unless you want to split it [18:21] royk, correct, as long as no other programs think it should have one, and installs one :) [18:21] patdk-wk: ufw allow 25 [18:21] I expect to se port 25 somewhere in that directry. [18:23] patdk-wk: if you use a program that automatically installs a partition table on a drive, then either you or that program is pathologically incorrect :P [18:24] royk, yep, that is why my tests with openfiler only lasts a day :) [18:24] hehe [18:26] * koolhead17 is back homr [18:26] e [18:26] omg - duck and cover [18:34] dnmons: rules added via the ufw cli are in /lib/ufw [18:37] oh? they got moved [18:38] shouldn't those to /etc somewhere? [18:39] New bug: #873568 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/873568 [18:40] jdstrand: hey [18:43] hello [18:43] jdstrand: thanks. [18:43] can confirm that they are there in 11.04 === yizzim is now known as _yizzim [18:51] hrm.. my byobu status widgets are gone. [19:06] smoser: hey, meat mjfork [19:06] meet, even [19:06] smoser: he has some questions about cloud-images.ubuntu.com [19:07] they are the cloud-init based images that are used in EC2 as well as other envs? [19:10] smoser: gotta step away, back after bit [19:11] hey ubuntu-server [19:11] hi [19:11] free -m says I only have 18 mb of free memory. how do I see which processes are eating the most memory? [19:12] that is normal [19:12] what EXACTLY is the output of free -m [19:12] marshall: free memory is memory not used by the system. you want the system to use memory for caching.... [19:13] http://pastebin.com/2aEC6YdC [19:13] 558megs free [19:13] huh... [19:13] okay, thanks [19:13] marshall: free also gives you memory not allocated, used for buffers etc [19:14] marshall: the kernel doesn't allocate that memory, it just uses it for caching/buffering, which is good [19:14] ah [19:14] thanks RoyK, patdk-wk [19:15] basically, the ONLY thing that uses *free* memory, is interrupt drivers, to allocate memory. [19:16] At any other time, it would dump some cache, to and use that memory instead [19:16] as the cache is all unused memory, used temporarilly for speeding up disks [19:18] damn - 25Mbps is slow - I should upgrade [19:19] RoyK: I have 100/1 [19:19] \o/ [19:19] Jasonn: 25/25 [19:19] atm [19:19] where you from?> [19:19] a phonecall and I'll get 60/60 for NOK 100 more [19:19] NOK? [19:19] anybody know the package name for mt-daapd .... tried to install it, and i get a not found [19:19] norwegian kroner [19:20] RoyK: in USD?> [19:20] google it [19:20] 17.7073 U.S. dollars [19:20] oh [19:20] about $100 for 60Mbps symmetric [19:20] go for it :D [19:20] :o [19:20] I pay $52ish for 100/1 [19:20] and its dedicated to me [19:20] thats the difference [19:20] that line is not dedicated to you [19:21] meaning [19:21] * RoyK likes a good uplink [19:21] oh [19:21] I have a 10gbit dedi for that :p [19:21] this is at home [19:21] at work, we have more bandwidth [19:22] 60Mbps for $90 or so isn't really bad [19:22] _symmetric_ [19:31] I did a upgrade to 11.10 with 'do-release-upgrade'. When it was creating a initrd in /boot it crashed because my /boot was full [19:31] I'm attempting to provision natty via cobbler, but I can't seem to get a working preseed file. Can anyone direct me to one? [19:31] So i deleted some old kernels, did a 'aptitude full-upgrade' and this time it worked [19:33] but was the creating of the initrd really the last step in the upgrade proces ? (if not, which other steps should i do) [19:38] * KM0201 sighs [19:41] New bug: #873623 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/873623 [19:42] garo: bug #873198? [19:42] Launchpad bug 873198 in grub2 "grub.cfg is not updated" [Undecided,New] https://launchpad.net/bugs/873198 [19:43] man, i hate forked-daapd [19:43] grub seems fine here [19:44] it actually looks like everything works ok, but most bugs aren't immediately visible [19:46] what i fear is that the upgrade proces was planning to write some configfiles after making /boot/initrd.img-3.0.0-12-server [19:47] if those configfiles are related to things that are almost never used then it will take a long time before the bugs are visible === Guest74455 is now known as Amgine [20:04] kirkland: ping [20:06] kirkland: orchestra server feature request: orchestra should be able to run an ldap server which acts as a debconf ldap database source ... so that you can preconfigure stuff systemically across everything you're spinning up (I got to this from looking at how devstack and juju both install mysql) [20:06] which is a little assinine [20:10] if i have an lvm on a single disk, unmount the lvm, and pull that disk from the hot swap bay, how can i tell the computer where the find the disk after it's reinserted? [20:21] anybody know why rhythmbox wouldn't see a UPNP share? i can see the share fine w/ other apps. [20:21] how to install mt-daapd on 11.10... forked-daapd seems buggy [20:21] New bug: #873660 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: subprocess new post-removal script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/873660 [20:26] I'm trying to use mailman with postfix [20:26] I'm not receiveing emails on the mailman side [20:38] mtaylor: database source? [20:39] zul: is nova shipped with oneiric is diablo-milestone? [20:40] koolhead17: diablo final release+backported patches [20:40] zul: why is role based access control not working correctly then. :( [20:41] i have allready spent 48 hours on it wonder what is next :( [20:41] koolhead17: no idea i never used it, you are talking about keystone right? [20:41] zul: nopes [20:41] koolhead17: never used it [20:41] nova role based access control [20:41] okey. have to check it again for 20th time then [20:42] seems like something is there to look upon. [20:46] New bug: #873672 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: subprocess new post-removal script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/873672 [20:49] zul: yes. debconf can be told to get answers to its questions from an ldap server [20:49] mtaylor: yo [20:50] kirkland: yo! I'm all making suggestions about shit again [20:50] mtaylor: ooh, that's interesting [20:50] mtaylor: orchestra ldap server [20:50] yup. [20:50] mtaylor: you have a favorite ldap server in ubuntu? [20:50] could be helpful/useful [20:51] I do not ... I don't really know much about anything that isn't openldap [21:15] any pam experts? I have a question about autocreating home directories [21:15] this has a pretty good description of it: https://help.ubuntu.com/community/LDAPClientAuthentication [21:15] but I have a question about what happens if the home directory is an NFS mount and it happens to not be mounted when a user logs in... [21:26] New bug: #873697 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/873697 [21:26] New bug: #873699 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/873699 [21:34] All the sudden I've started getting these errors when I try to access the GUI: [21:34] TGT NOT FORWARDABLE: [21:34] so the gui complains "did not receive kerberos credentials" [21:43] oops, just realized those last posts were to the wrong room... my bad [21:44] No harm done :) [21:44] him I am still struggeling with mail-stack-delivery, SMTP SASL authentication fails, IMAP is accessible. I believe after an update /var/spool/postfix/private/dovecot-auth disappeared /etc/dovecot/auth.d/01-mail-stack-delivery.auth is not included anywhere I believe === medberry is now known as med_out [22:04] I really do not understand why the socket at /var/spool/postfix/private/dovecot-auth suddenly disappeared, the /etc/dovecot/auth.d section seems to be includen nowhere, and that's the only place dovecot-auth is mentioned (except foor in postfix' config of coursr) [22:10] back home, time to do a do-release-upgrade from hardy to lucid... wish me luck! [22:14] oh... This session appears to be running under ssh. It is not recommended to perform a upgrade over ssh currently because in case of failure it is harder to recover. If you continue, an additional ssh daemon will be started at port '9004'. - Should i wait for the kvm/ip? [22:14] but tomorrow is friday night... i wish i could party not do-release-upgrade... [22:16] wip: the additional ssh daemon should help with recovering, and in any case I hope you're running the upgrade script in a screen session? === smw_ is now known as smw [22:16] New bug: #873722 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/873722 [22:16] JanC: what do you mean "screen session" - i am connected from my ubuntu box via ssh to my server located somewhere in the world [22:17] wip: do you use 'screen' or 'byobu' on the server? [22:17] I believe /etc/dovecot/auth.d/01-mail-stack-delivery.auth should be included in dovecot's auth default {....} section right? [22:17] (byobu being an andvanced config for screen, actually) [22:18] JanC: i'm using Gnome Terminal... not sure if it's a stupid answer [22:18] wip: I mean server-side [22:19] JanC: hardy default via ssh [22:19] JanC: no gui just pure ssh [22:19] what are the chance of successfully do-release-upgrade from hardy to lucid (i'm choking) [22:20] > 60% or < 40% [22:20] not sure [22:21] but using screen on the server will certainly help a lot [22:21] what i fear the most: you may need to edit /boot/grub/menu.lst and change the default boot kernel to the newly installed 10.04 kernel. If this step is not performed your server may attempt to boot into the 8.04 LTS kernel and will hang. [22:22] if you run do-release-upgrade from the plain ssh session, it will most likely be killed when the connection gets lost, leaving you with a halfway upgraded system... [22:23] wip: that sounds like something you can check before reboot [22:24] JanC: yes [22:24] wip: and you should certainly read about screen if you don't know it yet ☺ [22:24] * wip is reading http://www.howtoforge.com/linux_screen [22:25] (and 'byobu' too, but I don't think it existed at hardy time) [22:25] 'byobu' makes 'screen' easier to use [22:26] * kirkland high fives JanC ;-) [22:27] sorry to be a bit of e nuisance, but I cannot fix my postfix/dovecot setup, /var/spool/postfix/private/dovecot-auth does not get created since today [22:27] so SASL does not wrk for postfix [22:27] wip: kirkland is byobu's main author ;-) [22:28] * wip high fives kirkland [22:28] kirkland: I think byobu isn't available in the hardy repositories, right? [22:29] in any case, plain screen should be [22:30] 9.04 [22:31] JanC: wip: there is an older, backport of byobu available in ppa:byobu/ppa [22:31] JanC: wip: it's not the latest/greatest, but it should be functional [22:34] kirkland: that reminds me, I have a little "script" in ~/.byobu/bin that might be useful for other people too; it just runs 'wget -q -O - http://www.myexternalip.com/raw', which fetches the "external" IP when you are behind a NAT (sometimes that's useful...) [22:35] not sure if that would be useful as one of the default status items? [22:35] (default = included) [22:36] JanC: oh, neat [22:36] not sure if querying a third party without asking is a good idea anyway [22:37] and that site only supports IPv4 [22:37] JanC: i could make that a configuration option [22:38] JanC: as currently, the ip_address item supports a few different methods to get that [22:38] for dovecot/postfix/sasl with mail-stack-delivery installed should I just include auth.d/*.auth in conf.d/10-master.conf? [22:38] JanC: would you file a bug against byobu with that info? [22:38] JanC: i know how we could do that cleanly [22:40] what do you want the bug report named? ☺ [22:48] kirkland: https://bugs.launchpad.net/byobu/+bug/873736 [22:48] Launchpad bug 873736 in byobu "get external IP listed in status area" [Undecided,New] [22:51] JanC: cheers === SanbarComputing is now known as sanbar