[01:23] New bug: #876116 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876116 [02:04] New bug: #876130 in facter (main) "Incorrect operatingsystem reported in puppet run" [Undecided,New] https://launchpad.net/bugs/876130 [02:38] Is there a quickstart to building a local cloud with oneiric? [02:46] hey all. i'm having a problem after install nbd-server pkg, it says nbd doesn't exist in /proc/modules. it's the exact same problem as described in this debian bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=628389 [02:46] Debian bug 628389 in nbd-client "unexpected output during upgrade" [Normal,Fixed] [02:47] however, how do i get that equiv pkg for ubuntu? [02:48] i installed the debian pkg from above but i'm just checking to see if this is something that will make it upstream into oneirc [02:49] Installing packages from Debian will explode your system [02:49] i really needed a fix for now :( [02:49] and it appeared to work [02:50] You say it's the same problem -- does that mean you have a kernel you compiled nbd =y in? [02:50] Or do you simply mean that it is the same symptoms [02:51] i mean nbd just works now [03:12] Would it be possible to set up ssh on port 4444 [03:12] philipballew: I'm not stopping you [03:13] but would something? twb [03:13] its the only open port at the school i go to. [03:17] New bug: #876168 in openssh (main) "EC2 Oneiric ssh "no-pty" triggers "PTY allocation request failed on channel 0"" [Undecided,New] https://launchpad.net/bugs/876168 === slashroot_ is now known as jMyles [04:27] New bug: #598335 in libcgroup (universe) "gnome locks up with cgroup-bin installed" [Undecided,Expired] https://launchpad.net/bugs/598335 [05:30] i'm looking for a good article about reasons why it's a good idea to notify stakeholders a week in advance about server upgrades that would take the server offline for any length of time [05:31] i'm trying to get it across to my boss that it's simply not a good idea to just perform the upgrade right now without warning clients [05:40] airtonix: when the upgrade goes south, it is more painful to inform [05:40] have personal experience as a client [05:41] Myrtti: i try to perform the upgrade on a clone of the server first [05:42] and if you do warn beforehand, don't assume clients read your blog. send an email with bcc instead, or use mailchimp or similar [05:44] have experience on getting the email afterwards with every customer in to-field [05:45] when things didnt work for some, they hit Reply All-button and vented [05:45] nasty [05:53] Myrtti: yep we send a notice out with mailchimp [06:19] hey guys i have a quick question about xen and 11.10 [06:19] seeing as there is no xen kernel can someone still run xen paravirtualized guests? [07:26] eagles0513875_: iirc all the needed Xen patches are in the default kernel, both host and guest [07:30] hello. I have a new Intel 204 chipset server here. First tried fake raid but ubuntu does not see any hard drives. why? Anyway, am struggling to get software raid to work. The machine will not boot! It is like grub is not found when UEFI tries to hand over the control. [07:31] ty RoyK :) [07:36] eagles0513875_, Using the -virtual kernel has the advantage of having the pv net and disk driver built-in instead of being modules [07:37] virtual kernel??? [07:37] ahh [07:38] There is a linux-kernel.*-virtual. Its limited down to essential modules for virtual guests. And with oneiric there is now also an extra modules packages that ships the rest of them in case they are needed. [07:41] hi all [07:41] smb: im doing some testing to see how i can interface orchestra into an existing debian squeeze xen setup with already existing xen guests [07:42] I'm having trouble setting up a 10.04 install using software raid - specifically when it comes to installing grub [07:43] I've created a raid-1 device with a partition table which has the following partitions: boot(512mb),/,/usr,/var,/home [07:44] these appear at md0p1, md0p5, md0p6, md0p7 & md0p8 respectively [07:44] (boot is the only "physical" partition) [07:44] eagles0513875_, Ah. Well I am not much help with orchestra. But I would try to get the -virtual kernel packages installed. The generic-pae and or server image would work as well but the blkfront and netfront do not get autoloaded. [07:45] grub setup failed during install of ubuntu, and now I'm not sure where I'm supposed to be installing it [07:45] ok [07:45] dhon_: the master boot record [07:45] (sorry for talking over you guys) [07:45] dhon_: your ok just brainstorming something im working on [07:46] dhon_: did you install using a pen drive [07:46] yes, but using the desktop installer actually [07:46] cuz i have had the issue where for some reason i install ubuntu on my hard disk it installs grub to the MBR of the pen drive [07:46] hmm strange [07:46] dhon_: try this put the pen drive back in and boot with it in i just want to confirm that it actually installed grub to the pen drive instead [07:47] which MBR should it be installed to? /dev/sda & /dev/sdb, or /dev/md0 maybe? [07:47] dhon_: so you have software raid setup im guessin [07:47] err, well I did have [07:47] O_O [07:48] I'm currently reattempting from the start [07:48] it's a new install [07:48] i would reformat everythign blowing away the raid setup etc [07:48] yep [07:48] is it okay to have boot on md0p1? [07:48] me grub using the net installation off a pen drive got installed to the right location [07:48] grub knows about software raid devs? [07:49] when installing when it comes to the partitioning that is when you setup software raid if your using the server installer [07:49] the strange thing is that I could chroot into the raid install, but grub-install would fail [07:50] saying something about a missing mapping for md0 [07:50] your best i think starting from scratch [07:50] well, it spat an error about that - it may have succeeded afterwards, it was unclear [07:51] i dunno if i were in ur position i woudl do a clean install from scratch [07:51] I appreciate what the grub devs have accomplished, but I've never had much luck with the software :/ [07:51] yeah maybe I should get the server installer [07:52] desktop installer doesn't mention software raid [07:52] I just manually set up the raid and selected those partitions during install [07:53] dhon_: server is where its at [07:53] is it better to have each partition as a separate raid array? [07:53] and format the raw devices (ie no partition table) [07:56] dhon_: no one raid array is best i believe [07:56] then again it depends on how many hard disks you have [07:56] my server has 2 so i have setup raid 1 mirroring [07:56] 2 disks, raid1 - yep [07:56] dhon_: i have a single raid array [07:57] !raid [07:57] Tips and tricks for RAID and LVM can be found on https://help.ubuntu.com/community/Installation/SoftwareRAID and http://www.tldp.org/HOWTO/LVM-HOWTO - For software RAID, see https://help.ubuntu.com/community/FakeRaidHowto [07:57] dhon_: ^ the first link would be of use how to set up raid :) [07:58] fake raid is not the same thing, correct? [08:01] no [08:01] you said you have software raid the first link is the onlyone you need [08:01] yep [08:01] dhon_: ill be back gonna have some breakfast really fast [08:01] okay, thanks [08:02] New bug: #876268 in mysql-5.1 (main) "Mysqld does not start: Bind on unix socket: Permission denied" [Undecided,New] https://launchpad.net/bugs/876268 [08:04] morning all === jamespag` is now known as jamespage [08:06] evening :) [08:33] hi all [08:36] hey koolhead17, morning jamespage [08:40] dhon_: you managed? [08:43] eagles0513875_: haven't progressed much, just been reading [08:43] ok [08:43] dhon_: try get started i have an hr before i leave so i can help u while im still here [08:46] cheers, I don't have the server installer, but I'll give it another try with the desktop [08:47] should I use the MBR, or GUID partion table on the raid array? [08:48] mbr is the location on the hard disk [08:49] !guid [08:49] dhon_: that has something to do with grub [08:49] grub 2 i believe uses GUID's for the partitions [08:49] I'm using Disk Utility to create the partitions on the raid array [08:50] it says I can have the following parition table types: MBR, GUID Partition Table, None, Apple Partition Map [08:51] never used the disk utility i usually let it setup the partitions on its own [08:51] you can always just setup first with no raid then seutp a raid array via the command line [08:52] as in, do a normal install on a single disk and then use those partitions to create a raid array? [08:53] correct [08:54] well that sounds like a good option [08:59] dhon_: one thing i dunno how to do is set up raid then via command line [08:59] i set it up during the ubuntu server install [08:59] dhon_: question though why are you setting up ur server with a gui [09:00] 'cause I have the install-thumb-drive already [09:00] I was just going to disable gdm [09:00] dhon_: ok [09:00] just wondering is all you will also need to install the server kernel [09:01] hmm, okay [09:01] what are the differences? scheduler? [09:01] power management maybe? [09:02] it's really sounding like I should just get the server installer [09:02] might save me another day of googling [09:02] :) [09:02] it's frustrating when things are so close, but they keep eluding you [09:04] will 12.04 be LTS? [09:06] dhon_: Yes. [09:06] lynxman: hellos [09:07] ersi: cool, thanks [09:07] dhon_: Basically, every two years there's an LTS. 8.04 10.04 12.04 :) [09:07] lynxman: i managed keystone/dashboard/nova without any effort working on virtualbox. :P [09:08] * dhon_ slaps forehead [09:08] koolhead17: good ;) [09:09] dhon_: i can tell u my server is 10.04 and its rock solid. im only trying out 11.10 on a 2tb hard disk i have in my desktop to test out some cloud solutions [09:09] lynxman: how have you been? how was party :D [09:09] hellos Daviey jamespage [09:09] koolhead17: quite busy, party was good :) [09:10] Daviey: hey there o/ [09:10] nice :) [09:10] morning koolhead17 [09:10] hey lynxman [09:10] hey koolhead17 [09:10] * jamespage just waves at everyone [09:10] jamespage: let me know if you have time will ping you for the dbconfig-common stuff [09:19] * lynxman feels waved [09:21] jamespage: I think fop is begging for a merge :) [09:21] Daviey: oh yes [09:22] might even get away with a sync TBH [09:22] * jamespage is looking at merges and syncs this afternoon [09:22] hi, I get PHP Startup: Unable to load dynamic library '/usr/lib/php5/20090626/sqlite.so' - /usr/lib/php5/20090626/sqlite.so [09:22] jamespage: awesome [09:22] <\sh> precise already open? [09:22] I used to look for it with find / -name sqlite.so but nothing found on the system [09:23] okay, I need dinner, I'm going to attempt this raid thing again tomorrow - thanks for the help eagles0513875_ [09:23] no problem dhon_ [09:23] \sh: oh yes [09:23] <\sh> Daviey, very good...thx :) [09:23] \sh: What is on your roadmap for this cycle? [09:25] <\sh> Daviey, FAI 4.x + Puppet + DC² + DC² Node Classifier eventually getting rid of NFS for FAI [09:25] \sh: ooooo, nice [09:26] lynxman: How is mcollecitve looking? :) [09:26] <\sh> Daviey, do you know if anyone has freeipa on the roadmap for debian/ubuntu? [09:27] \sh: ISTR there was some discussion a year ago, but i don't think it went anywhere :( [09:29] <\sh> Daviey, eventually someone can put it back on the table during upcoming UDS...it looks like a good thing to have it adjusted for debian/ubuntu [09:31] Daviey: https://bugs.launchpad.net/keystone/+bug/855467 needs to be closed now!! [09:31] Launchpad bug 855467 in keystone "Keystone fails to locate any configuration file." [Undecided,Incomplete] [09:32] * koolhead17 waves to kim0 [09:33] Daviey, jamespage: Do we use fop for anything in server land? [09:33] soren: Document generating I think - erlang [09:33] jamespage: Ah. [09:33] jamespage: Wow, so it's in main now? It used to be multiverse or something. [09:33] Daviey: mcollective is looking like a long and windy road :) I need to finish the whitepaper first then make sure the activemq merge is working then start on mcollective [09:34] soren: yep - I pushed it through MIR during oneiric [09:34] jamespage: Moved to universe during Intrepid. How about that. [09:35] Daviey: so I would say expect this to take me the best part of this week [09:38] wow [09:46] * kim0 waves back to koolhead17 [10:12] New bug: #876339 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876339 [10:38] jamespage: fop? [10:39] zul: yes [10:39] I'll do it in a bit [10:39] jamespage: which is.... [10:41] New bug: #850154 in ipxe (main) "qemu cannot find ipxe roms" [High,Confirmed] https://launchpad.net/bugs/850154 [11:13] hello [11:15] I have some issues in my openvpn client server connection since I have tried to tuning the performance... before it works but since I added some a parameters now nothing works ! [11:16] I got this error messages in the server side : [11:16] Mon Oct 17 10:08:36 2011 VPN-Client/196.217.199.157:51446 Bad LZO decompression header byte: 0 [11:16] Mon Oct 17 10:08:36 2011 VPN-Client/196.217.199.157:51446 FRAG_IN error flags=0xffffffff: FRAG_TEST not implemented [11:16] and Mon Oct 17 10:12:54 2011 ROUTE: route addition failed using CreateIpForwardEntry: Accès refusé. [status=5 if_index=20] [11:16] Mon Oct 17 10:12:54 2011 Route addition via IPAPI failed [adaptive] Mon Oct 17 10:12:54 2011 Route addition fallback to route.exe [11:16] in the client side [11:17] B0bby: go back to your original config and add one parameter at a time [11:18] pmatulis, I have added just two parameters : Lzo compression and fragment size [11:18] nothing else [11:20] B0bby: Remove them and try again, then. [11:21] it' seems that it's a psychological solutions rather than technical ones :P [11:21] New bug: #876378 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876378 [11:26] New bug: #876387 in php5 (main) "fuser forking uncontrollably in cron job" [Undecided,New] https://launchpad.net/bugs/876387 [11:28] zul: formatted output protocol == document generation [11:29] jamespage: ah [11:29] zul: I think erlang uses it - hence in main [11:35] hmmm: new depends - yuck [12:07] Daviey: how badly do we want erlang docs? http://tinyurl.com/6l4c53s [12:07] bug 876413 [12:07] Launchpad bug 876413 in xmlunit "[MIR] xmlunit" [Undecided,New] https://launchpad.net/bugs/876413 [12:08] erlang is self-explanatory. No need for docs. :) [12:11] New bug: #876425 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876425 [12:17] soren: that phrase... hurts in unknown ways :) [12:48] jamespage: not at all :) [12:52] bah [12:53] humbug === MagicFab is now known as Guest11006 [12:59] jamespage, could you sponsor http://people.canonical.com/~serge/bacula-gawk.debdiff for bug 645082 ? [12:59] Launchpad bug 645082 in bacula "bacula misses requirement of gawk" [High,In progress] https://launchpad.net/bugs/645082 [12:59] morning hallyn [13:03] hallyn: looking now [13:07] jamespage, thanks :) [13:07] happy monday morning to you! :) [13:08] jamespage: erlang is probably not the first thing you want to merge btw ;) [13:08] no you want to start with libvirt [13:08] zul: not touching it for the moment [13:08] it's an easy one [13:11] hallyn: i was going to poke it with a stick [13:12] zul, you were? cool [13:12] I was considering doing a few more pushes of fixes which are NOT yet in 0.9.6 first, [13:12] so that when doing the merge we don't have to think about it [13:12] (like the fix for lvm.conf having lvm_commands=1) [13:18] !upgrade [13:18] For upgrading, see the instructions at https://help.ubuntu.com/community/UpgradeNotes - see also http://www.ubuntu.com/desktop/get-ubuntu/upgrade [13:24] is vmbuilder still the preferred tool for creating vm's without building? [13:24] /building/running [13:27] jamespage, I think that's supposed to become live-build [13:27] hallyn: so is that a re-name or a different tool? [13:27] different tool [13:28] ah - I see [13:28] actually I need to do some testing of those - I haven't used them in something like a year [13:29] I wonder what smoser uses to build AMIs [13:29] different tool. [13:30] cloud-images now uses live-build. [13:30] hallyn: the power of his mind :) [13:30] but jamespage i would really suggest using cloud-images to bootstrap you. [13:30] download image, use it [13:31] smoser, good suggestion, although i do think it'd be good for everyone to play with live-build a bit, both to shake out bugs and to know how to use it off top of their heads when they need to in a pinch [13:32] hallyn, i largely disagree. [13:32] i think building images is stupid [13:32] a waste of time that will result in re-inventing something that is already done. [13:32] and if the images don't fit your needs, then we should improve them. [13:32] smoser, and i disagree, bc i've been part of a project where we needed to build a minimal, *minimal* image [13:33] i find effort on minimal to be a waste of time. [13:33] smoser, i think it's wrong to discourage people from becoming competent with tools. [13:33] smoser, sometimes you don't get to decide [13:33] oh, i decide! [13:33] what's the smallest image you have? [13:33] :) [13:34] 650M root filesystem. [13:34] i realize its not small [13:34] not just not small, completely unsuitable for the use-case we had [13:34] i just think that trading 400M for 1 hour of your time is useful. [13:34] and 1 hour is *very* conservative. [13:34] oh, now i get it [13:34] you're looking ofr job security :) [13:35] what is the use case ? [13:35] remember the second part of my suggestion to not use live-build , was "we should make the images better" [13:37] generally, my feeling is that live-build is an installer. if you build atop live-build, you're going to then add some little fixes for your little environment. and then you're going to tell people to use your tools, and you're going to get your tools into universe and or main, and then we're going to one other tool that fixes quirks found after installing a bunch of packages. [13:37] i dont like installers. [13:38] i think the cobbler-devenv avoids being an installer nicely, by just letting the server install iso do the install and preseed it. [13:38] livebuild is pretty darned flexible [13:38] soren: did you do the drawings yourself? [13:38] anyway, shock, smoser and i disagree on something :) [13:39] livebuild is very flexible. [13:39] zul: No, I had a professional art company do them. It only cost a million dollars. I thought it was a steal. [13:39] it will allow you to stuff your little "fix up this quirks" perfectly well outside of it. [13:39] and your quirks wont work in other cases [13:39] soren: good to see the startup capital go to use [13:39] zul: Oh, those graphs? YEah, I did those myself. [13:41] what drawings is this ? [13:41] so i'm willing to accep that the cloud-images dont work for *everything*, but we really want them to work for lots of things. (just as we want the ISO to work for lots of things). [13:42] smoser, what is supposed to be the most discoverable way to get the latest cloud img? [13:42] if you're going to poke around with live-buid, then please, when you find a little quirk in a package install that you ahve to work around, *please* get your changes upstream. [13:42] i would need to know what "discoverable" means. [13:43] easiest url to remember, or where to get a link [13:43] i.e. cloud.ubuntu.com -> click top link [13:43] 100% agreed on get your changes upstream, of course [13:44] cloud-images.ubuntu.com [13:44] you want ami's ? [13:44] or downloads. [13:45] downloads [13:46] ami's are efine for us, but some ppl want images without needing the euca tools [13:47] hallyn, browsing cloud-images.ubuntu.com is probably the best way for that. [13:48] but we publish data that can easily be queiried [13:48] $ echo $(ubuntu-cloudimg-query p --format "%{url}" daily) [13:48] https://cloud-images.ubuntu.com/server/precise/20111017/precise-server-cloudimg-amd64.tar.gz [13:49] ok. for some reason i'm averse to - in a url i guess :) but maybe i'll try using that more [13:51] Postfix is started before Dovecot in 11.10. Something which causes it to crash when Dovecot is providing SASL authentication to it. http://ubuntuforums.org/showthread.php?p=11354218 Any idea on how to fix it? [13:53] smoser: so if someone wanted to automate producing a virtual machine image for use on a desktop/laptop under KVM does that advice still hold true [13:53] i.e. start with the cloud image? [13:53] i would suggest 2 paths: [13:54] or... 3 [13:54] or... 2 [13:54] a.) cobberl-devenv like "seed the installer" (i think security team has a tool that does this too... hallyn uses it, mdeslaur recently updated it) [13:55] b.) use cloud-image full disk image as a starting point [13:55] what kind of image is this that you're wanting to use ? [13:55] someone == gnuoy who I noticed joined a while back [13:56] smoser, I'm just after vanilla natty to test installing openerp [13:56] mdeslaur: can i take cifs-utils off your hands [13:57] zul: what, for the dev release? [13:57] zul: yes, please do [13:57] the serverguide for natty suggests using vmbuilder [13:57] mdeslaur: yes k [13:58] dnmons, do you happen to know if that is a regression from natty? [13:58] gnuoy, i'd be honored if you would take the time to try to follow https://help.ubuntu.com/community/UEC/Images#Ubuntu_Cloud_Guest_images_on_Local_Hypervisor_Natty_onward [13:58] Daviey, so are you going to push spice-gtk now for p? [13:58] and tell me what did not work. [13:59] smoser, sure thing :-) (although it'll have to be after I've finished the day job) [14:07] mdeslaur, i think that vm-tools needs to be its own thing. and i need to improve it so it doesn't have to remaster an ISO to give a seed file. [14:07] smoser: feel free to fork it [14:08] jamespage: yes, it is. [14:09] smoser: it's very oriented to the security team, it would be great to have a tools that's more generic [14:09] smoser: (and isn't a 800 line bash script 90% composed of bad hacks) [14:09] jamespage: same system on natty did not have this problem. dovecot started about 8 seconds before postfix. now dovecot is started 2–4 seconds after postfix. which gives postfix a headache. [14:10] all right i think i'll sync qemu 0.15.0 today (maybe into tomorrow). [14:10] smoser: so, I tried to use your external initrd idea so we didn't need to remaster the iso, and wasn't successful with virt-install [14:10] then you did something wrong :) [14:10] somehow i was successful. [14:11] i think its a matter of getting the kernel params and kernel and intiramfs right. [14:11] otherwise i dont know how it could go wrong. [14:12] smoser: weren't you doing it with kvm directly? [14:12] yeah [14:13] but you can pass kernel and ramdisk and kernel params through libvirt [14:13] dnmons: not ignoring you - just looking at what changes landed in oneiric for upstart and dovecot [14:14] smoser: I haven't found a way to do that with virt-install [14:14] oh... i didn't know you were using that. [14:14] what value does it provide you? [14:14] smoser: if you specify a kernel directly, it won't let you specify a cd [14:16] smoser: anyway, I spent some time on it, but didn't manage...it would be nice if we didn't need to rebuild the iso so I hope I got it wrong [14:16] why are you using virt-install ? [14:17] smoser: I don't know...what should I be using? [14:17] i just assumed you were creating a disk image, creating a cd-rom, and laucnhing a libvirt instance with those attached. [14:18] (via specifying your own libvirt xml) [14:19] woot! precise EC2 image boots! [14:19] (i realize it is basically oneiric, but still...) [14:19] dnmons: I think I can see what change caused the issue [14:19] dovecot and postfix now start/stop on the same runlevels [14:19] whereas in natty dovecot started very early [14:21] jhunt: around? need a little upstart guidance [14:21] jamespage: yup [14:22] jhunt:great [14:22] so this is the situation - dovecot+postfix install [14:22] postfix authenticates through dovecot using SASL [14:22] zul, jdstrand, does the last comment in bug 874350 make sense to you? [14:22] Launchpad bug 874350 in libvirt "Segfault: Failed to get udev device for syspath '/sys/devices/virtual/dmi/id'" [Medium,Incomplete] https://launchpad.net/bugs/874350 [14:22] so is dependent on dovecot running [14:23] smoser: I suppose that would be the next step to get rid of the iso rebuilding [14:23] hallyn: comment #2? [14:23] in oneiric a change landed which switched dovecot's start on from rc-sysinit to runlevel [2345] [14:23] smoser: let me know if you get that working...and what did you mean by "vm-tools should be it's own thing"? [14:24] zul, yeah [14:24] hallyn: umm...no :) [14:24] jhunt: which I think is causing it to start later in the boot process alongside postfix which is a standard init script [14:24] mdeslaur, can i 'apt-add-repository some-thing && apt-get install vm-tools' & [14:24] s/&/?/ [14:25] jhunt: postfix borks as a result - is there any way to ensure that dovecot starts up before postfix bearing in mind they don't both use upstart? [14:25] basically i think what you, jdstrand and kees created is useful to a much larger audience than is going to find it or use it under a subdir of a bzr repo. [14:25] zul, ok, i'll roll with it then :) [14:25] thx [14:27] smoser: I think a larger audience should be using something that was designed better, and doesn't depend on all the security team environment [14:27] smoser: but yes, I do think we should have a tool to easily preseed test vms [14:27] smoser: maybe testdrive should gain preseeding support or something [14:27] hi guys, i'm using csf firewall and i've setup some prerouting dnat rules to redirect some ports to vm, is possible to use something different then prerouting and dnat to achieve the same result? so the firewall can filter/block also those connections? [14:28] interesting [14:28] alex88, I think that greatly depends on what you call your vm [14:29] patdk-wk: sorry, virtual machine [14:29] I know that [14:29] but what kind :) [14:29] you mean like kvm? [14:29] xen, kvm ,virtualbox, or a vps, lxc, ... [14:29] kvm [14:29] I would just use proxyarp [14:30] btw, command to dnat i used is /sbin/iptables -t nat -A PREROUTING -p tcp -i vmbr0 --dport 2223 -j DNAT --to 192.168.1.3:22 #SSH [14:30] you mean like setup proxyarp that redirects packets after firewall? [14:30] no, that is not proxyarp then [14:31] I would use proxy-arp not whatever it is your thinking of, or think I'm saying [14:31] sorry but i haven't heard about that [14:31] proxyarp would turn your firewall into a transparent system, as far as your vm knows [14:31] well, i have multiple vm, and each port goes to different vm [14:32] in other words, you don't have real ip's for your vm's? [14:32] hi all [14:32] exactly [14:32] how could I check if samba4 installed? [14:32] then your stuck with dnat [14:32] and running? [14:32] just 1 ip for the dedi [14:32] yup i think so [14:32] i just wanted to let the firewall intercept packets before going to vm [14:33] so if an ip get banned, it blocks also those packets [14:33] it should, unless you really really screwed it up [14:33] dnmons: any chance you could raise a bug for that dovecot/postfix issue - it looks like a regression [14:34] patdk-wk: would you do a test to check where the rule for your ip goes and check why packets are not blocked? [14:35] I dunno what your talking about, I don't have root on your system, so how could I check? [14:35] patdk-wk: you just try to hit a blocked port 5 times and i'll do an iptables -L | grep yourip to check where it goes, because if i do from here i won't have access to ssh anymore [14:36] still makes no sense at all to me [14:36] ok don't worry [14:37] if it's blocked on the firewall, it won't make it to the vm [14:37] unless you really really screwed it up [14:37] it does, maybe becuse packets are prerouted before passing to other rules [14:37] don't know, but i can access services into vm and not on ssh on main host [14:37] prerouting doesn't bypass the normal tables [14:38] and you only prerouted a single port [14:38] but then, you only showed a SINGLE LINE out of the whole firewall config [14:38] well, 15 ports [14:38] how should I know [14:38] i just have multiple lines like that [14:38] with different ports/ip, but it's the same [14:38] patdk-wk: you can't make out the firewall config by just reading one line? Damn the Matrix :) [14:38] hehe :) [14:39] iptables -F, now that I can from a single line :) [14:39] jamespage: do we know why that change to dovecot was made? I think now dovecot + postfix will be starting "around the same time" (ie "runlevel" - racy!) [14:39] ;) [14:39] dovecot was changed from old init.d to upstart [14:39] sounds like postfix is still upstart [14:39] postfix is still init.d I mean :) [14:39] jamespage: is there any reason postfix can't be upstartified? seems a little odd that a main pkg is using sysv and a dependent pkg in universe is using Upstart...? [14:40] jhunt: bug 820685 was the reason it was changed [14:40] Launchpad bug 820685 in dovecot "dovecot does not start again on transition from runlevel 1 to 2" [Medium,Fix released] https://launchpad.net/bugs/820685 [14:41] jhunt: I've not looks at upstart for postfix [14:41] both packages are in main I thinl [14:42] New bug: #875921 in python-stompy (main) "Please merge python-stompy 0.2.9-1 from debian wheezy " [Medium,Fix released] https://launchpad.net/bugs/875921 [14:42] jamespage: it hasnt been converted yet [14:42] jamespage: feel free ;) [14:43] * jamespage takes a deep breath [14:43] my dovecot/postfix on lucid are both upstart'd [14:43] have an issue, but rarely, but I haven't made postfix depend on dovecot [14:43] jamespage: the ebox people might have done it though [14:45] jamespage: It'd need testing of course, but "start on starting rc" (for dovecot) should give you the behaviour you're after". [14:45] jhunt: its difficult because start of [2345] is actually correct [14:46] its only in the instance here postfix+dovecot are deployed together with SASL auth that we get the issue [14:47] dnmons: please see jhunts comment above - that should sort you out (but please still raise a bug!) [14:48] changing dovecot to be "start on starting rc" should work in both cases. [14:50] jhunt: so that should start dovecot just before the runlevel itself starts? [14:50] (just trying to get my head around this) [14:51] jamespage: no - that will start dovecot "just before" the SysV scripts (including postfix) are started. [14:51] New bug: #876579 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed') during upgrade from ubuntu 11.04 to 11.10" [Undecided,New] https://launchpad.net/bugs/876579 [14:52] jamespage: since 'rc' starts on runlevel anyway, you get what you want :) [14:52] jhunt: so 'start on starting rc RUNLEVEL=[2345]'? [14:53] jamespage: event sequence will thus effectively be: runlevel, dovecot, rc, postfix. [14:53] jamespage: right. [14:54] jhunt: OK - thanks for the advice [14:54] jamespage: np. [15:03] Nagios related question. The following scenario: I have server1, connecting to server2. Server2 has an internal network. I'm trying to get server2 to ping an INTERNAL ip on the network and passing its results to server1. I'm reading about check_nrpe and check_ping, but im way too lost. Anyone can help me out ? [15:05] patdk-wk: after banning an ip address fw adds the ip in input chain but i think that it's processed after the prerouting table is processed, right? [15:06] yep [15:07] but INPUT is only processed for packets to that machine [15:07] so you need to to go to FORWARD chain, for vm's [15:08] technically, you probably want it to go to both input and forward [15:09] but it would be so much easier to put them in a seperate block list, that both input/forward used [15:09] yeah, like if it pass the input table, it's forwarded [15:09] right? [15:10] lynxman: ping [15:11] lynxman: er unping [15:11] zul: awww [15:12] lynxman: i was going to take rabbitmq-server off your hands but thought differently ;) [15:12] lynxman: but i can upload puppet for you if you want [15:12] !samba [15:12] Samba is the way to cooperate with Windows environments. Links with more info: https://wiki.ubuntu.com/MountWindowsSharesPermanently and https://help.ubuntu.com/10.04/serverguide/C/windows-networking.html - Samba can be administered via the web with SWAT. [15:13] zul: sounds good :) === smb` is now known as smb [15:14] lynxman: if you can point it to me the stuff you did for it [15:14] Hi! [15:14] How do I enable ubuntu-vm-builder (in Lucid) to create Oneirik images? [15:15] Should I just copy /usr/share/pyshared/VMBuilder/plugins/ubuntu/maverick.py to oneiric.py and change maverick in the code to oneiric? [15:15] it's quite strange, why does ubuntu server use samba-4 as default? [15:16] hallyn: You know the debdiff from https://bugs.launchpad.net/ubuntu/+source/qemu-kvm/+bug/828789 will still require the new build-depends to be in main, right? [15:16] Launchpad bug 828789 in qemu-kvm "[FFE] please enable spice support" [Medium,In progress] [15:18] I've got to roll my own php .deb file, I'm having a hell of time with it. I've managed to get debuild to use the proper configure command, and it seems to run a make and make install, but when i inspect the resulting .deb file it only contains some documentation and doesn't install the binaries. I'm probably screwing this up severely. Anybody willing to help me figure out what i borked? [15:19] patdk-wk: http://www.faqs.org/docs/iptables/traversingoftables.html as you can see it doesn't get into the input table as soon as destination changes on prerouting [15:21] zul: hmm gimme 2 mins === med_out is now known as medberry [15:35] anyone have an idea why iostat -n would show 900 ops/s but only 82 rops/s and 20 wops/s? 20 + 82 does not equal 900 [15:40] RoAkSoAx, is there a reason you did: $SNIPPET('orchestra_disable_pxe') [15:40] rather than 'cobbler_disable_pxe' [15:40] surely users of cobbler also would prefer that their installed ysstems do not remain in a reboot loop [15:40] smoser, .... [15:55] lynxman: er puppet? [15:58] hallyn: spice for P.. hell yes! [15:58] lets do it today :) [15:58] jamespage: in truth, erlang-docs don't interest ME in the slightest. [15:58] I'm tempted to say just strip them if it's easier, and re-introduce them if they turn out to be required [15:59] but TBH, in the interests of keeping the delta small.. i'd favour dropping them. [16:00] SpamapS: ping when you are around [16:01] zul: pong, but I'm preparing for my UOW session which starts in 1hr, so not going to be super responsive [16:01] SpamapS: sure just wanted to know whats up with mysql 5.5...im going to start merging php 5.3.8 [16:02] zul: just one minute! :) [16:02] zul: Norbert is still lagging.. my DD app is progressing tho, so I should be able to upload it to experimental in the next couple of weeks. [16:02] zul: please *do not* do php 5.3.8 though, there is a serious regression [16:02] Daviey: well should we push qemu-kvm-spice on 0.14.1 version just to get it pushed? (Then I can sync 0.15 tomorrow) [16:03] SpamapS: i thought 5.3.7 had the regression and 5.3.8 fixed it [16:03] nope [16:03] 5.3.7 introduced it [16:03] SpamapS: ok then... [16:03] 5.3.9 will revert it [16:03] SpamapS: k [16:03] The php team strikes again! [16:03] * zul grumbles [16:04] lynxman: how about now?...now...now...now :) [16:04] zul: your call is important to us... [16:04] lynxman: lie [16:05] hallyn: works for me. [16:05] hallyn: point me to a branch? :) [16:05] (or diff) [16:05] I wouldn't be surprised if the debian PHP has a patch to revert the is_a() behavior tho [16:05] lemme make one :) back in a few [16:06] zul: bug is #854899 [16:06] zul: branch is lp:~lynxman/ubuntu/oneiric/puppet/lp_854899 [16:06] zul: also attached to the bug [16:06] lynxman: cool...ill poke it after lunch [16:07] zul: so how about now? now now now? :D [16:07] lynxman: *grumble* :) [16:08] zul: rofl === Ursinha is now known as Ursinha-afk === Ursinha-afk is now known as Ursinha === lullabud is now known as warzauwynn [16:20] How goes? [16:21] New bug: #876640 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876640 [16:23] Daviey: it went [16:24] zul: it went? [16:24] Daviey: you asked how goes....i replied it went [16:24] ah! [16:30] Daviey: so now the question that pops to my mind is, should we switch the mcollective package from rabbitmq to activemq to reduce the delta? This is highly debatable [16:32] lynxman: I think it makes best sense to align with upstream as close as possible, if it's ossible to introduce an alternative dep then we could (and submit it to debian) [16:32] Daviey: hmm yeah, maybe a new metapackage for whoever wants to keep rabbitmq? [16:33] lynxman: hmm.. maybe. Really, just try and align as close to possible as Debian, and submit changes there. [16:33] :) [16:34] Daviey: yessir *salutes* [16:35] hah === JGJones_ is now known as JGJones [16:36] lynxman: so i have issue with the puppet merge..a whole bunch of security patches got dropped from the debian package, i know why, but it isnt mentioned in the changelog when you did the merge...also it should be set to precise now as well [16:37] (and it looks like it's now a merge from testing, not unstable) [16:37] zul: it should be in the changelog, hmmm... [16:38] zul: I think it would just be easier to drop that FFe and do a straight merge from the latest testing on 2.7.5 [16:38] lynxman: yeah also the security team might freak as well [16:38] zul: those patches come straight from the security team :) [16:38] lynxman: yeah want me to handle that? [16:38] zul: if you want, I'm swamped with the whitepaper [16:38] zul: otherwise I can handle it in 2 hours or such [16:38] lynxman: ok... [16:39] lynxman: ill take it...wanna me close that bug [16:39] zul: depends on how much do you want to exploit your minions today [16:39] lynxman: meh...its sitting right in front of me...ill invalidate that bug then [16:40] zul: okay I'll submit a new one tonight then [16:40] lynxman: k unless if i get to it first [16:40] zul: race! \o/ [16:41] zul: When you merge python-xattr, can you submittodebian dh_python2 ? [16:41] did -stompy transition get pushed back? [16:42] Daviey: not yet [16:42] k [16:44] just done [16:45] rockign! === Daviey changed the topic of #ubuntu-server to: Ubuntu Server discussion and support | For general (not server specific) support visit #ubuntu | IRC Guidelines: https://wiki.ubuntu.com/IrcGuidelines | Get involved: https://wiki.ubuntu.com/ServerTeam/GettingInvolved | Docs and resources: https://help.ubuntu.com/10.04/serverguide/C/ | Precise (12.04) roadmap bugs, http://status.qa.ubuntu.com/reports/ubuntu-server/release-bugs.html (Feel === Daviey changed the topic of #ubuntu-server to: Ubuntu Server discussion and support | For general (not server specific) support visit #ubuntu | IRC Guidelines: https://wiki.ubuntu.com/IrcGuidelines | Get involved: https://wiki.ubuntu.com/ServerTeam/GettingInvolved | Docs and resources: https://help.ubuntu.com/10.04/serverguide/C/ | Precise (12.04) roadmap bugs, http://status.qa.ubuntu.com/reports/ubuntu-server/release-bugs.html [16:48] Ursinha: around? [16:51] jamespage: asm2, is it still worth our while having a delta? [16:51] Daviey: I was looking at that earlier [16:52] it *looks* like just running the test suite at build time? [16:52] I think that is just about it [16:52] jamespage: I'd sync it, then re-introduce a delta if there is an issue :) [16:52] <-- yeehaaaa! [16:57] jamespage: how did fop turn out? [16:58] Daviey: sitting on that one for the moment [16:58] it pulls back into main a load of packages we demoted last release [16:58] ah [16:58] inc. one which has updated to use maven [16:58] 70+ MIR [16:58] do we really want erlang docs? [16:58] jamespage: Fancy opening a bug to track it? [16:58] already have [16:58] ah [16:59] bug 876413 [16:59] Launchpad bug 876413 in xmlunit "[MIR] xmlunit" [Undecided,New] https://launchpad.net/bugs/876413 [16:59] crikey o'reily. [16:59] thats not what I said :-) [17:00] jamespage: I can see you saying that James [17:00] jamespage: "gosh" ? [17:01] I think I said: "by heck thats alot of packages" - well something along those lines [17:01] jamespage: that sounds realistic too [17:01] lol [17:02] heh [17:02] actually looking at archive mismatching something already pulled in most of the know Java universe! [17:05] jamespage: is it antlr? [17:06] Daviey: I don't think so - its hard to read its so long [17:08] jamespage: something introduced ~10:00am today [17:08] yeah [17:08] (UTC) +/- 1hr [17:10] As we don't have a reliable -changes list, cannot confirm [17:10] (sigh* [17:10] letar efter php, mysql, js... programmerare... ngn intresserad? [17:10] !english [17:10] The #ubuntu, #kubuntu and #xubuntu channels are English only. For a complete list of channels in other languages, please visit https://wiki.ubuntu.com/IRC/ChannelList [17:10] tzabar: ^ [17:12] Daviey: it might be ant [17:12] Daviey: I ought to do some testing, but http://people.canonical.com/~serge/qemu-kvm-spice-oct17.2011.debdiff [17:12] hmm - or it might not be [17:12] anyway thats one for tomorrow [17:13] Daviey: can you push the spice-gtk package (from the FFE bug) in the meantime? [17:13] hallyn: sure [17:13] Daviey: I assume I can't dput it the .changes file for qemu-kvm as there is the new packagre? [17:13] package? [17:14] maybe i should re-try that sentence :) [17:15] ersi? [17:15] Daviey: taking a walk, biab [17:16] hallyn: heh, if what you are dputting has a higher version number (and obv. includes Ubuntu changes between when you did it and now), sounds good [17:16] hallyn: have fun [17:18] .wun 21 [17:18] doh [17:18] should i run lvm on a raid if i want hot swap support? [17:19] i can't get an encrypted lvm to open until i reboot if pull the drive and put it back in [17:22] Daviey: hey [17:24] dkn, heh? [17:24] dkn: iirc hotswap will work correctly regardless of lvm being there or not [17:24] lvm defently doesn't support hotswap at all [17:25] if it's missing, it's failed, and the lvm fails [17:25] patdk-wk: won't md hide that if on a redundant setup? [17:25] not sure what you mean by encrypted lvm, didn't think lvm supports encryption [17:26] md would yes, but that is another layer [17:26] hey Ursinha.. how are you doing? [17:26] patdk-wk: the only really usable for raid on linux, though [17:26] that's the odd thing, hot swap works... the lvm shows up, it's seeing the drive as the correct device, when i go to unencrypt it keeps prompting me for the pass over and over, works fine again after i reboot or if i don't put the drive out hot [17:27] dkn: is this over md or directly on disks_ [17:27] ? [17:27] dkn, what your saying doesn't make sense [17:27] lvm doesn't support encryption, so what is asking for a password? [17:27] Are you sure it's not a sudo command asking you for a password? [17:27] if it's encrypted, you would have to be using dmadm (cryptsetup) [17:27] right now i have the pv, gv, and lvm all on one disk so i could encrypt the lvm since it's a hot swap offsite backup [17:28] (I know, sounds silly, but it's bitten me once or twice) [17:28] in that case, the encryption is working, but the lvm is not [17:28] cause you have to export the lvm, then reimport it [17:28] i use the disk utitility to unlock it actually :$ [17:28] just cause the /dev/mapper exists, doesn't mean lvm is using the new one, it's still using the old one that is gone [17:28] how do i force it to update? [17:29] dkn, tell lvm to non-active, then reactivate it [17:29] dkn: I beleive what patdk-wk is trying to say, is that LVM does not support hotswap [17:29] that means unmounted all drives [17:29] hmm [17:29] ya, it sounds like he has a, harddrive -> dmadm(encryption) -> lvm, setup [17:30] i don't mind doing that [17:30] Ursinha: Did you see the changes i pushed to the reports? [17:30] i unmount, lock, just was missing that lvm non-active step [17:30] dkn, well, lvchange and vgchange will be your friends :) [17:30] sudo lvchange backup -a y ??? [17:31] that activates it :) [17:31] yo uhave to deactivate it, and probably the vg also [17:31] I haven't personally done that for a few years, I normally stay away from lvm [17:31] ugggh... [17:32] doesn't the deactivate option?? [17:32] -a n? [17:32] yep [17:32] dkn : You -always- have to deactivate [17:32] lvchange -a n vgexport -a (don't worry it will only export groups that are ready to be exported) [17:33] (two commands there) [17:33] then you can reactivate [17:33] the -drive- is hot swap, not LVM [17:33] ya... [17:33] Daviey: no, I haven't [17:33] This is why I use hot-spare solutions, and RAID [17:33] and just leave the failed drive in the array until I'm ready to do maintenance [17:33] what do you think roy?? just run them in raid1? instead of trying to swap out? [17:33] Ursinha: http://bazaar.launchpad.net/~ubuntu-reports-dev/ubuntu-reports/trunk/revision/43 [17:34] Ursinha: So, rather than using a tag for -rs and -ro, using a launchpad id.. Does that work well with you? [17:34] Daviey: you should request a code review before pushing changes, you know? :) [17:34] Ursinha: I followed the current workflow... :) [17:35] Ursinha: i did check if people were using merge proposals first :P [17:35] Daviey: there's no current workflow defined, and code reviews are a good practice, I thought that was common sense :P [17:35] Ursinha: seems to be working, http://status.qa.ubuntu.com/reports/ubuntu-server/release-bugs.html [17:36] Ursinha: Aye, which was why i checked first.. :) [17:36] omg, it seems to be working? you're lucky I like you, you know that? :) [17:36] Ursinha: So i know this is odd, but i check stuff before uploading :) [17:36] lvchange: option requires an argument -- 'a' [17:36] Daviey: lol [17:37] Daviey: I'll take a look when I have reasonable internet connection [17:37] Ursinha: sure.. on another note, the wiki output is broken.. but that was broken before i went near it :P [17:37] * RoyK just upgraded to 60Mbps symmetric, which is somewhat reasonable [17:38] http://paste.ubuntu.com/711114/ [17:38] haha [17:38] Daviey: mind filing a bug? [17:38] Ursinha: all the unit tests passed, so it can't be an issue. [17:38] it does have unit-tests, right, right? [17:39] HAHAHA [17:39] you got me [17:39] :D [17:39] I won't be a bitch and say you could have written them as well [17:39] oh wait, I just did that [17:39] :P [17:40] Ursinha: There is a bug... it needs to check if current development series has a milestone.. [17:40] Daviey, not sure i understand what you said. The new qemu-kmv has higher version #, 0.14.1+noroms-0ubuntu7, but it has a new package, qemu-kvm-spice. i should be able to dput that? [17:40] hallyn: oh sure.. the new binary package will wait in the archive binNEW queue for ~ubuntu-archive approval. [17:41] but that is standard. [17:41] Daviey, cool, then i'll push after some more testing [17:42] hallyn: did you see, bug 875001? [17:42] Launchpad bug 875001 in libvirt "please merge libvirt 0.9.6-1 from debian wheezy" [High,Triaged] https://launchpad.net/bugs/875001 [17:43] Daviey, yes i did. it was obviously my plan all along, but zul said he would try it [17:43] zul, ^ wanna take that bug? [17:43] hallyn: working on it [17:44] hallyn: Yeah, someone else opened a bug already.. I knew it was on your radar, but thought you'd want to quote the bug number in the changelog [17:45] given the amount of stuff we're changing in p, i'll need to set up a precise test system post haste [17:45] sounds good [17:45] adam_g: around? [17:45] anyone seen Ben today? [17:47] Daviey, so did you push spice-gtk? [17:47] Daviey: i am [17:48] Daviey, sorry, actually nm - spicec suffices for testing [17:48] hallyn: you want http://people.canonical.com/~serge/qemu-kvm-spice-oct17.2011.debdiff reviewed and uploaded? [17:49] adam_g: Having fun sir? [17:49] Daviey, i'm testing it right now. i can push that myself, but wouldn't mind a good review! [17:49] Daviey: trying to get thru back log of email from last week and find out whats going on. its been a while. :P [17:50] hallyn: Pre-Depends is sort of a last resort.. is that really required? [17:51] adam_g: hah [17:51] Daviey, I don't recall, but it's in qemu-kvm's right now. [17:53] Daviey, yes, it's needed for qemu-kvm. but not for qemu-kvm-spice. i'll drop that [17:53] ok, cool [17:53] (debian suggests pre-depends for a package needed during .preinst; qemu-kvm.preinst uses addgroup) [17:54] Daviey, suppose id on't need that provides: line either? [18:05] hi all, I threw this question out at one point not too long ago, but it seemed like few people were around so i'm going to try again. [18:05] I'm looking for the best way to configure a server so that once I graduate and my college no longer has me to maintain it that it is really set up in accordance with some set of best practices. Any advice on where to start? [18:08] hire the future IT firm now [18:08] let them set it up how they want [18:08] well considering they difficulty getting the administration to ok my measly $9/hr wage part-time [18:09] contracting out doesn't sound like it's one of our options [18:09] who is going maintain the security updates? replace failed parts? ... [18:10] no matter how secure it is, if it's connected to anything external, it needs security updates [18:10] My boss is pretty good overall, she'd be able to keep it going if it didn't break entirely [18:10] even if it isn't something will break eventually [18:10] like she's totally capable of updating it and things, as well as troubleshooting any issues that come up in terms of individual programs or scripts or whatnot [18:11] she just doesn't have the background to set it up the right way the first time to make sure that happens the least, and I've got some idea as to how i'd do it like on something i would use individually [18:11] but the requirements on me at this job mean i have to be a bit more precise [18:13] what kind of server? [18:15] There's two at least somewhat pressing for me [18:15] one is BigBlueButton [18:15] and the other is Kaltura [18:16] so not any of the canned solutions unfortunately [18:20] lol - from the cpufreq-set(1) man page: FREQuencies can be passed in Hz, kHz (default), MHz, GHz, or THz [18:21] Heh, THz [18:22] perhaps when someone creates an optical CPU one day..... [18:23] I thought they did [18:23] two of them [18:23] I thought they'd only made simple things, not CPUs [18:24] can't you get a 512 core atom server? [18:25] not exactly the first thing that comes to mind with THz === martyn is now known as Martyn [18:26] dkn: I'd missed that, but then, I'd love this one - http://carpetbomberz.com/2011/06/23/calxeda-software-partners/ - 480 core ARM thing in 2U [18:27] now _that's_ dense [18:27] There was some company in 2005-2006 purporting to have "quantum optical" chips but in the end it seemed like some scam. At the time they were claiming a 6 or 7 GHz laptop. Atom Chip Corporation [18:28] wonder if vmware runs on that arm server :) [18:28] patdk-wk: :) [18:28] patdk-wk: xen might work [18:29] wonder if it's still stuck to the 2 or 4gig memory limit :) [18:29] oh wait, that is arm, not atom :) [18:29] Does anyone know what is the CIL Permissions (7**) so that a folder is read only by root? [18:29] any idea how to get rid of these messages? as in how to ignore them and stop the kernel from bugging me? [100390.030872] TCP: Peer 85.228.171.248:28519/57137 unexpectedly shrunk window 3010574087:3010584391 (repaired) [18:29] royk, don't talk to outside servers? [18:30] patdk-wk: I'd rather ignore those messages [18:30] or stop them from being logged in the first place [18:31] RoyK: Make a syslog filter which matches that and logs to /dev/null [18:31] ersi: it still spams my dmesg, though... [18:33] RoyK: oh yeah, I forgot about that. heh' === madalin is now known as niladam [18:36] * RoyK considers writing a fail2ban rule to end it [18:37] anyway - packing 120 quad core CPUs into 2U is rather extreme.... [18:38] I hope you can fit enough fc/ib cards into it to make it useful :) [18:38] unless it's a pure compute node [18:38] most compute nodes needs disk space somewhat [18:39] my mythtv frontends are very happy with iscsi/nfs over 100mbit :) [18:39] but then, at least for what we're doing, the compute nodes are 99,lots% CPU and NFS over gigE is sufficient for storage [18:41] I wonder how they have setup those ARM CPUs - what sort of communication between them? local memory for all? [18:47] so much for ff 7 using less memory [18:47] mine is up to 2gigs and growing [18:53] Daviey, qemu-kvm-spice uploaded. [18:54] are you able to approve the new binary package then? [18:56] hallyn: I am not, no. [18:57] patdk-wk: Do you have like a billion tabs? [18:58] only 22 [18:58] damn, restart and it's using 600megs, firefox6 used to only use 200megs after a restart [19:00] Daviey, ok [19:06] Daviey, i'm going to be filing ITP for netcf as per bug 520386. just heads-up [19:06] Launchpad bug 520386 in libvirt "libvirt-bin hypervisor does not support virConnectNumOfInterfaces / unable to create domain with virt-manager using network bridge" [Low,Confirmed] https://launchpad.net/bugs/520386 [19:12] hallyn: cool, do you have a strategy to get it in Debian? :) [19:14] Daviey: strategy? Not so much :) I don't want to wait on the package to go into debian first; but I do want to propose my package to debian [19:15] Daviey, I'll repply to debian bug 573072 [19:15] Debian bug 573072 in wnpp "RFP: netcf -- library for configuring network interfaces" [Wishlist,Open] http://bugs.debian.org/573072 [19:15] hallyn: sounds good! [19:17] email sent [19:19] \o/ [19:20] smoser: sorry, missed your question. The drawings in question are the ones in http://alturl.com/wqqpn [19:23] quit [19:37] hi server team if you havn't already seen it #876130 blocks the use of puppet in oneric, can someone assign an importance level so this gets looked at, thanks [19:51] ohm...does oneiric not support ip aliases? [19:52] mdeslaur: why do you ask? [19:52] guntbert: I tried to add eth0:0, and it's not working on oneiric, works fine on natty and hardy [19:53] mdeslaur: (I'm trying to remember some changes in that regard, about a ear ago): how did you try to create it? [19:54] *year [19:54] guntbert: /etc/network/interfaces ... [19:54] guntbert: let me paste the config [19:54] !plastebin | mdeslaur [19:54] guntbert: yes, I know [19:54] :-/ [19:55] http://paste.ubuntu.com/711266/ [19:55] yep, someone else just tried it and confirmed [19:55] darn [19:56] mdeslaur: eth0:x is rather the old way - adding 'up ip addr add 10.100.0.200/24 dev eth0' is a bit easier these days ;) [19:57] RoyK: adding that to what? [19:57] RoyK: *that* was it, thx [19:57] mdeslaur: /etc/network/interfaces [19:57] instead of eth0:0 ...... [19:57] just that one line does all you need [19:58] and perhaps add 'down ip addr remove ...' [19:58] erm, make that ip addr del [19:58] man ip [19:58] RoyK: thanks, I'll give that a try [19:59] mdeslaur: just 'ifconfig eth0:0 down' first [19:59] or reboot :P [19:59] up ip addr add 10.100.0.200/24 dev eth0 label eth0:0, :) [19:59] the ip command can be used directly from the commandline [19:59] Patrickdk: heh [19:59] or if you want more fun [19:59] up ip addr add 10.100.0.200/24 dev eth0 label eth1 [20:00] heh - didn't know the label [20:00] the label makes it, ifconfig, compat :) [20:00] RoyK: where is this documented? [20:00] mdeslaur: no idea where I read it - google it :) [20:01] man ip :) [20:01] it's part of the iproute2 package [20:01] mdeslaur: 'up/down' just says 'whenever this in goes up/down, run this command' [20:01] RoyK: because the current debian documentation still says to do what I did [20:01] ya, I use a mix of both methods [20:01] so 'up echo WTF! I'm alive!' will probably work [20:01] royk, I can't get that to work :( [20:02] mdeslaur: has debian moved to linux 2.6 yet? ;) [20:02] ok, I still think this is broken [20:02] RoyK: you're just working around it [20:02] (i know, i know, but debian is a BIT on the conservative side) [20:05] mdeslaur: sorry, just trying to help here :) [20:06] the examples in /usr/share/doc/ifupdown/examples also say to use iface eth0:1 [20:07] I do actually think is time we did a bit of an overhaul on ifupdown best practices and docs [20:07] the manual method that RoyK is describing is far superior IMO [20:07] and ifupdown is a big 'ol mess that is hard to keep up with the times [20:08] SpamapS: that doesn't help with upgrades [20:08] SpamapS: and the iproute2 method is what, 10 years old? [20:09] SpamapS: the whole point of doing it via interfaces is to abstract away so that when iproute3 comes along, I don't have to care. [20:09] mdeslaur: great point. We should be able to effectively convert them. [20:09] sbeattie: god help us [20:10] royk, the iproute2 method is still not complete [20:10] Seriously, choice between having explicit iproute2 commands and ifupdown managing my interfaces through a long server lifecycle.. I'm choosing iproute2 commands even if I have to fix them every time [20:10] Patrickdk: what's missing there? [20:10] you can't work with arp in iproute2 yet, it's support is incomplete [20:10] still have to use the unmaintained arp package that is 7years old [20:10] Just go digging around in the source for a while [20:10] *scary* [20:11] Patrickdk: I didn't know that - thanks for the update [20:11] yep [20:12] attempted to update some firewall scripts to use iproute2 [20:12] and hit that issue [20:12] Still choosing that over ifupdown's nowebm source mess. :) [20:12] SpamapS: why bother with ifupdown at all then and not just use your own rolled rc.local? [20:13] sbeattie, going slackware method? :) [20:13] sbeattie: encapsulation is good [20:13] SpamapS: but not good enough for aliased interfaces, apparently. [20:13] and I acknowledge all the benefits of having a declarative place to contain interface configs [20:14] but ifupdown is a horrible implementation [20:14] * SpamapS goes OTP [20:15] hm... does md have something analogous to zfs scrub? as in checking every block if it's readable/correct. I somewhat doubt it, but it'd be nice [20:15] sure [20:15] it's called scrub :) [20:16] http://wiki.xdroop.com/space/Linux/Software+Raid+Scrub ? [20:17] yep, just add to cron :) [20:17] zul: if you are tackling the libvirt merge, can you assign the bug to yourself please? :) [20:18] Daviey: yeah im just about to eod so ill do it tonight...build fails right now because of the testsuite [20:19] Patrickdk: IMHO a thing like that should be added to mdadm [20:19] zul: testsuites are overated :) [20:19] indeed...stupid nc [20:20] royk, maybe, but there are already many things mdadm don't do, that I do [20:20] heh [20:20] Patrickdk: and that's probably the most stupid answer I've heard in a while :P [20:20] :) [20:21] even if I or you can do things manually, that doesn't mean it shouldn't be possible in a more user- or adminfriendly way [20:21] * Patrickdk never thought mdadm was *friendly* [20:21] well, it's adminfriendly and rather well documented [20:22] hacking around in proc or sys is like mdb/zdb hacking on solaris, it's deep nerdy and cool, but very far from admin friendly [20:22] no, proc and sys is more like /etc/system [20:22] much safer [20:23] mdb is evil :) [20:23] well, yes [20:23] evil can be used for good :P [20:23] just tread _really_ carefully :P [20:24] * Patrickdk attempts to always reboot, after finalizing the mdb adjustment [20:24] incase of random acts of corruption caused by the admin :) [20:25] first hit on mdb on google is an article named 'Solaris Things: Don't be afraid of mdb' [20:25] unless you use the -w switch [20:56] New bug: #876849 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876849 [21:00] SpamapS: SRU team favor, please? [21:00] SpamapS: could you get https://bugs.launchpad.net/ubuntu/+source/byobu/+bug/796422 promoted to -updates asap? [21:00] Launchpad bug 796422 in byobu "postinst chown can fail" [High,Fix committed] [21:00] kirkland: I actually just started reviewing SRU's 5 minutes ago. :) good timing... [21:08] kirkland: I'm going to go ahead and verify the update on maverick so that we have an unbroken chain lucid->natty->oneiric [21:08] SpamapS: \o/ [21:08] SpamapS: cool, thanks. [21:08] kirkland: released to natty, lucid/maverick will release shortly [21:08] SpamapS: ec2 instance should work just fine [21:08] kirkland: thats what I'm using. :-D [21:08] SpamapS: :-) [21:09] heh.. 10.10 , with its double motd.. :-P [21:09] oh wait, thats not double.. its just *GIANT* [21:19] Hey folks - trying to boot a VM, I'm hitting this issue here: http://ubuntuforums.org/showthread.php?t=1423305 -- is that.. seriously serious? I can't have a separate /var ? [21:20] jMCg, you don't have this issue [21:20] ureadahead message has nothing to do with it [21:21] can you paste your fstab? [21:21] I can. [21:22] I first have to kill the VM. [21:24] lenios_: http://sprunge.us/EVXX [21:27] can you try without the last line? [21:29] kirkland: maverick and lucid done as well [21:30] SpamapS: woot! [21:30] SpamapS: thanks, you da man! [21:31] np [21:35] lenios_: same thing [21:36] 23:16:58 < jMCg> And this is how far virt console gets: http://dpaste.com/636142/ [21:36] 23:18:34 < jMCg> And this here is the xml of the VM: http://sprunge.us/BOAU [21:39] i would suggest trying to mount with defaults options [21:41] (both /var and /srv) [21:46] lenios_: I have, on another machine http://sprunge.us/Ychb -- but that's run by 11.04 - haven't done the upgrade yet. Not sure I want to, anytime soon. [21:49] i once had a similar non-verbose issue using a bad fstab [21:52] jMCg, i would try to mount /var and /srv as ext4 defaults 0 2 === elz89_ is now known as elz89 [21:54] lenios_: any idea if doing this by UUID will help any? [21:54] i don't think it would help [21:55] lenios_: I'll do the same for /var - see how it does. [21:57] Same thing. [21:59] i can't seem to get cp to preserve nfs4 acls... does anyone mounting nfs4 mounts see the same thing? [21:59] jMCg, can you paste the result of fdisk -l or sfdisk -l ? [22:00] lenios_: from the host or from the not booting VM ;) [22:00] daishadar, why would cp perserve them? [22:00] from the not booting VM [22:00] lenios_: that sounds difficult. [22:01] don't you have any livecd? [22:01] patdk-lap: if you have acl inheritance on i would think it should... this is the behavior in other oses like solaris [22:01] lenios_: Well, that would be the Host system, sort of. [22:01] man cp, says to use -/ for extended attributes [22:01] * patdk-lap notes linux != solaris [22:01] what are you using to run the VM? [22:02] lenios_: libvirt/kvm [22:02] Gimme a sec to download a grml ISO. [22:03] 2.6 seconds, to be exact. [22:03] you really have a good connection [22:04] It's the small one :) [22:04] he just has a *close* connection to a grml mirror :) [22:04] 110 MiB [22:04] that's more than 40MiB/s [22:05] Well I sure hope so. The severs are connected with 100Mbps - not sure how much the grml server has I connected to. [22:05] heh, I'm connected at gigabit, but lucky to get 10mbit most of the time [22:06] but when I download from vmware servers, I get a nice 200+ mbit [22:20] lenios_: init=/bin/sh helped and was easier than trying to attach, and boot from a cdrom. [22:20] true [22:21] http://dpaste.com/636178/ [22:22] http://dpaste.com/636179/ [22:22] :/ [22:23] Iḿ not happy either. [22:23] It mounts on the host. [22:24] what about sfdisk -l ? [22:24] lenios_: that's the second paste. [22:29] Okay, so I thought, give it a shot, and this is where we part from sense and reasoning: http://dpaste.com/636182/ [22:30] # swapon -a [22:30] [ 632.178201] Adding 8388604k swap on /dev/vdb. Priority:-1 extents:1 across:8388604k [22:32] New bug: #876910 in openssh (main) "When starting open ssh server without host keys in /etc/ssh/, the keys are not automatically generated." [Undecided,New] https://launchpad.net/bugs/876910 [22:39] I just looove it when it doesn't make any sense at all [23:08] If I get this right, then I cannot boot 11.04 with a 11.10 kernel. [23:09] verifying that theory right now. [23:24] Yup. Gets me one step closer: http://dpaste.com/636205/ [23:35] Nice, reproducibl every time. Even though the bug is supposedly fixed. https://bugs.launchpad.net/ubuntu/+source/linux/+bug/613273 [23:35] Launchpad bug 613273 in udev "kernel panic on ec2 in system_call_fastpath" [Undecided,Fix released] [23:36] New bug: #876960 in samba (main) "package samba 2:3.5.8~dfsg-1ubuntu2.3 failed to install/upgrade: ErrorMessage: package samba is not ready for configuration cannot configure (current status `half-installed')" [Undecided,New] https://launchpad.net/bugs/876960 [23:38] New bug: #876959 in mysql-dfsg-5.1 (main) "no mysql-server-5.1-dbgsym for security/updates repositorires" [Undecided,New] https://launchpad.net/bugs/876959 [23:56] New bug: #876968 in lxc (main) "host Apparmor rules are applied to guests in spite of guests loading new rules" [Undecided,New] https://launchpad.net/bugs/876968 [23:58] Man, sometimes I hate computers. [23:58] I should've listen to what my momma told me.