[00:04] can someone think of a good name to give to someone who specializes in both high availability and disaster recovery? [00:05] master? [00:06] "Jedi" [00:06] I like Jedi but I am thinking for a help wanted ad [00:07] presence availability architect? [00:07] lol [00:07] just use his nick XD [00:12] HA & DR sound like opposite goals ;) [00:12] well, opposite sources maybe ;) [00:14] jetole: maybe "wanted: Jedi" (to attract attention) is a good title (with the qualities of HA & disaster recovery listed in smaller print) [00:16] although I think you might be looking for a white knight, and maybe two people who can do one of those well will be cheaper combined ;) [00:33] JanC: I already broke the one person the boss asked for into three [00:33] lol [00:33] but thanks for the idea === cloakable_ is now known as cloakable [00:50] anybody here know kerberos? #kerberos channel seems to be pretty inactive [00:51] New bug: #401107 in xorg-server (main) "Software runs as root" [Wishlist,Won't fix] https://launchpad.net/bugs/401107 [01:15] mgw: maybe its because kerberos is so awesome, it just configures itself. ;) [01:15] SpamapS : definitely [01:15] it's the most intuitive, user friendly system.. since ldap [01:16] Which is why they work so nicely together [01:16] Do you have much experience with it? [01:16] in particular kerberos+ldap [01:17] mgw: no I've never fully experienced the shimmering beauty of kerberos+ldap without the glorious addition of Microsoft's AD on top of it. ;) [01:17] ah, i'm sure that makes it so much easier ;-) [01:17] #kerberos has a hard-on for AD anyway [01:18] They aren't interested in helping MS haters [01:18] Is there a better alternative? [01:18] mgw: AFAIK kerberos is the only secure way to run a network filesystem, for example [01:19] mgw: but hey, if you trust your LAN, it doesn't matter so much [01:19] we're using it for user auth [01:19] supposedly ldap alone isn't so great [01:19] mgw: FWIW I use a homogeneous openldap network with ldaps and slapo-ppolicy(5), which is OK [01:20] I wouldn't run ldap-only in the conventional layout, where root on the client machines has read access to the password hashes [01:20] Not in a security-sensitive network, anyway. [01:21] ok [01:24] Broadly speaking if you aren't using TGTs (i.e. kerberos), you can either have everyone send cleartext passwords (over TLS) all the way back to the LDAP server, OR you can have the individual authenticators get the hash from the LDAP server and then compare it to the password themselves [01:25] The latter approach means the password is never transmitted cleartext (over TLS) over the wire, but IMO it's better to trust TLS than to trust whatever lowest-common-denominator hashing algo you can get all the authenicators to sign off on, since that's probably MD5 or worse [01:27] oi.. mysql cluster server and mysql 5.5 just don't want to play together [01:30] twb: I'll stick with kerberos, but I need to figure out where this syntax error is coming from while initializing the realm [01:31] mgw: oh sorry, didn't realize you already had krb [01:31] mgw: what's the error? [01:33] kdb5_ldap_util: Invalid syntax while creating realm 'FOO' [01:33] kdb5_ldap_util create -s -D cn=admin,dc=foo -H ldap://127.0.0.1 [01:33] Hum [01:33] -H ldapi:/// ? [01:34] tried that too [01:34] i'm successfully authenticating either way [01:34] That's probably not the actual problem tho, it's just better to use a socket if you've got it [01:34] k [01:34] Incidentally I use o=Company instead of dc=foo,dc=bar,dc=baz because the former is shorter :-) [01:35] You will be prompted for the database Master Password. [01:35] It is important that you NOT FORGET this password. [01:35] Enter KDC database master key: [01:35] Re-enter KDC database master key to verify: [01:36] mgw: if you have a multi-line transcript, pastebin it [01:39] https://gist.github.com/ce3013240c5abb9d240b [01:39] shall I paste my krb5.conf too? [01:40] https://gist.github.com/9662de14724a0526bd77 [01:41] twb: ^ [01:45] I can't see what's wrong there [01:45] Except maybe [domain_realm]is supposed to be [FOO] or something? [01:45] No I'm thinking of line 8, FOO= [01:50] twb: i've got it working fine on another sandbox, and I can't see anything significant different [01:51] krb likes to be magic wrt DNS -> krb domain [01:52] Maybe the DNS settings are slightly different, or e.g. "hostname --fqdn" doesn't give the same thing -- something like that === Ursinha-lunch is now known as Ursinha [01:57] my fqdn is admin02.xxx.internal [02:36] .win 11 [02:36] RoAkSoAx: bzzt, I'm not irssi [02:37] lol [02:55] New bug: #898927 in apache2 (main) "apache2-mpm-prefork+mod_perl crashes on start" [Undecided,New] https://launchpad.net/bugs/898927 [03:29] Question: Where is a good guide on setting up my own vpn server? [03:30] can someone reccomend me a good "howto" for setting up master/slave Bind9 servers? [03:31] philipballew, the server guide [03:31] !vpn [03:31] For more information on vpn please refer to https://wiki.ubuntu.com/VPN [03:31] https://help.ubuntu.com/10.04/serverguide/C/openvpn.html [03:32] qman__, thanks. This looks easy enough [03:32] as long as you're vaguely familiar with generating certificates, it is [03:33] there's a few choices to make like tap/tun, routed/bridged [03:33] and some networks require pushing extra routes or whatever, but it's pretty simple [03:33] i have never set up a vpn before [03:34] But I have done RSA ssh keys before [03:34] you can use openvpn to make just about anything [03:34] the biggest advantage of it is, no mtu limits, vs other vpn methods [03:35] it can also be a disadvantage, but easy to compensate for if you want [03:35] patdk-lap, what does that mean? [03:35] IMO the biggest advantage is ease of use [03:35] runs on single port, clients with GUI for windows and linux [03:35] qman__, ya, and it's easier to use cause of the lack of mtu limit [03:36] hmm, I have never seen gui clients for it [03:36] I know they made that shell wrapper for it on windows [03:36] has a module for network-manager-gnome, and there's the openVPN GUI for windows [03:37] those all just wrap the commandline thing though [03:37] installed by default on ubuntu now, makes it real easy [03:37] windows is still a pain though, have to set, run as admin [03:38] yeah, UAC puts a hitch in [03:38] but there's also the option of enabling the service for an automatic connection in the background [03:38] just with the GUI could communicate with it [03:38] wish* [03:38] So I cant change the port it uses> [03:38] ? [03:38] you can [03:39] 1194 is just the default [03:39] lots of people use 443 [03:39] alright. ill need to see if i can open that remotely [03:39] I have mine setup to try a udp port first, then fallback to 443 tcp [03:39] it can run over tcp, but udp is the default, and bridge mode only works over udp [03:40] qman, not true [03:40] everything about openvpn works no matter what it's over [03:40] be it udp or tcp [03:40] recent change? all the documentation I read said as such [03:40] the issue with tcp comes with tcp inside of tcp [03:40] well, it will work, defently won't be optimal [03:41] cause packets that are made to have loss, and stuff, will retry over tcp forever basically [03:41] mine at home is set as a bridge over a tap device [03:41] I rarely use bridge mode, I don't see the point [03:42] why do I want broadcast/multicast traffi hogging the vpn [03:42] I use it to connect wireless clients to the LAN, as my wireless APs are on a different network [03:42] operating a public wifi here [03:43] while not absolutely needed, it's convenient for games and printers and other weird and/or old software [03:43] well, if it's local, that is one thing [03:43] I was thinking normal vpn usage, at crappy hotel/hotspot [03:43] I use it from the internet too, but that's where the majority of the use is [03:44] So after I make all the keys I'll need to move the privite one to my desktop huh? [03:44] no [03:44] na [03:45] you need the private/public + ca [03:45] you need to copy the CA certificate and the client key and certificate [03:45] the server key stays on the server only [03:45] the private one is the only one that must be secured though [03:45] both for the server and clients [03:45] well I will do all this on my server and then ill have a key i need to use to connect to the vpn with correct? [03:46] correct [03:46] you will need four files for the client [03:46] CA cert, client cert, client key, openvpn config [03:46] the client key is confidential to the client and should be transmitted securely and kept private [03:46] and maybe a tls key [03:46] or what do they call it, for the dh [03:46] ill use sftp or ssh [03:47] both certs are safe to post publicly, the config technically could be but you probably don't want to [03:47] https://help.ubuntu.com/10.04/serverguide/C/openvpn.html under client certificates is what I enter into my desktop then? [03:48] yes [03:48] my setup doesn't have a ta.key [03:48] ah, the tls-auth dh stuff [03:49] I didn't have pkitool either [03:49] it's really only useful if someone dos/ddos you [03:49] looks like it makes it easier to add clients [03:49] I'm using easypki I think, that is pretty painless [03:49] so [03:49] cd /etc/openvpn/easy-rsa/ [03:49] source vars [03:49] ./pkitool hostname [03:50] mine I just look up my history and grab the openssl commands [03:50] . ./vars [03:50] should be entered into my desktop and not the server? [03:50] no [03:50] all of that is done on the server [03:50] okay [03:50] you simply copy the resulting files to the desktop [03:50] ah, alright [03:51] my VPN server was set up with and still runs 8.04 [03:51] so it was a little different [03:52] qman__, Mines 10.04 [03:52] I just upgraded my main firewall/vpn hub server 2 weeks ago from 8.04 xen domu to 10.04 [03:52] just did an rsync, and it was running :) [03:53] freaking iptables on that machine has over 3k lines [03:53] ha [03:53] it has 14 interfaces [03:53] I've got a little script on mine to handle port forwarding, 4 interfaces [03:54] oh, this is no nat at all, or port forwardings [03:54] just access restrictions between interfaces [03:55] heh [03:55] so with what im setting up i need to have Bridging enabled as well? [03:55] I just have the house LAN, cordoned off wifi with internet-only access, and restricted LAN for the business point of sale machines [03:56] put the script together because I used to be on DHCP, so I had to make it easier when the IP would change === bladernr_ is now known as bladernr_afk === ben_ is now known as utlemming_home === nonotza_ is now known as nonotza === TeTeT_ is now known as TeTeT === jibel_ is now known as jibel === gema_afk is now known as gema [08:50] morning all === jodh is now known as jodh_ [09:01] hi all [09:16] jamespage: morning o/ [09:41] New bug: #819251 in dbconfig-common (main) "package phpmyadmin 4:3.3.10-1 failed to install/upgrade: le sous-processus script post-installation installé a retourné une erreur de sortie d'état 10" [Undecided,Confirmed] https://launchpad.net/bugs/819251 === smw is now known as Guest32774 [10:44] hi all [10:50] * uksysadmin feels sorry for koolhead11 as nobody is saying hi [10:50] hi koolhead11 [10:53] hey uksysadmin :D [10:57] when pxe booting precise from orchstra - I presume that glaringly big bug of having no feedback during install apart from tailing the logs on the orchestra server is a known one? [11:00] uksysadmin: best answer will be check at launchpad and see if its there [11:00] if not file one :P [11:01] I'm not entirely sure what bug I'm filing - whether its a bug in Orchestra, a bug in Precise installation, or whatever the pxe boot image I'm using [11:01] certainly can't find a bug related to it [11:03] uksysadmin: so orchestra works without error when u using onekenthomas [11:03] oops [11:03] oneiric [11:04] yes - I can pxe boot stuff in Orchestra in Oneiric and do some stuff [11:04] I've just done a fresh install of Precise, updated and install Orchestra [11:04] Booting a machine using it and during the package installation the screen is just black [11:04] uksysadmin: i am not sure if precise is currently even in alpha or not [11:04] tailing the logs on orchestra I see it doing deboostrap stuff etc [11:04] its alpha-1 [11:05] I'm aware of it being buggy - but do Ubuntu devs want to know about this stuff? [11:05] its the difference between known issues and unknown ones [11:09] uksysadmin: file a bug then. what are you waiting for? [11:09] linking it to precious alpha :D [11:17] lol ok ok ;-) [11:23] There - someone will reply "You're expecting an alpha-1 release of some software booting more pre-alpha code and you expect what?" ;-) [11:24] * koolhead11 kicks uksysadmin [11:24] * koolhead11 wonders if eveyone is having beer early weekend today [11:27] in 30 mins, yes... [11:28] It's Friday - thought it was the law to go the pub at lunch? [11:28] well i have 3 more hours at work [11:29] pub 30 mins, 1 hour lunch, 3 hours left, then I'm off for a week :) === funkyHat2 is now known as funkyHat [11:54] Daviey: can I get a second opinion on SRU'worthness of bug 659439 [11:54] Launchpad bug 659439 in rsyslog "Installing rsyslog-mysql on 10.04 installs mysql-server by default" [Medium,Confirmed] https://launchpad.net/bugs/659439 [12:07] jamespage: right, so some people will be using it together. [12:07] If they didn't install mysql-server, they'd have a working setup now.. [12:08] If it gets dropped from a Recommends to Suggests, for example, it would be freed up for removal as an update [12:12] Daviey: well they would have that problem on release upgrade anyway [12:14] jamespage: Hmm, i'd say the fact that people can work around it by doing, apt-get --no-install-recommends install rsyslog-mysql , says to me that it isn't High Impact enough. [12:15] Daviey: I tend to agree [12:15] (i'd say also, not obviously safe.) [12:16] I mean, you might expect something to go wrong between distro upgrades, but not sru updates. [12:16] yeah - agreed; I'll mark that as won't fix and comment appropriately [12:18] jamespage: I'm not blocking it, you understand.. Just the verification process work involved, and potential excitement of breaking systems concerns me. [12:21] Daviey: gotcha [12:38] <`-`> #ubuntu ops are nazi fags. please remember to use your brain not that other bit of the anatomy the #ubuntu team appears to think is best. [12:41] I need some aws help but ##aws is a bit sleepy. I'm going mad trying to work out why an ELB healthcheck is failing. When I curl the page via {public DNS}:80{healthcheck URL} I get a perfectly fine response. Why could it be? [12:42] is it TCP or HTTP healthcheck? [12:42] and if it's HTTP, what status code do you get for your response? [12:48] onre It's HTTP. I get 200 when I use curl [12:50] if you just want to make it work right now, change it to TCP :p [12:50] ok will try [12:51] onre yeah, now it says in service! [12:51] yes :) TCP check only tries to connect to that port without any request, so if that works, it marks the instance as healthy :) [12:52] jdstrand: can you review the openstack in binary new today im getting some flack because of it [12:52] i recommend, though, that you take a look at your http server logs to see whether these check requests get logged and possibly filter them away somehow [12:52] so that you avoid having the healthcheck flooding your logs :p [12:54] onre Actually - i just checked the logs and I see "[02/Dec/2011:12:50:40 +0000] "GET / HTTP/1.1" 301 538 "-" "ELB-HealthChecker/1.0"" [12:54] so there's a 301 going on [12:56] allright! [12:56] that explains [12:56] http statuscheck will fail if the response code is not 200 [12:56] you might consider putting an empty test file in place and requesting that with the check [12:56] or something similar [12:56] possibly a piece of code that checks for db connectivity etc [12:57] so that you get a good idea of whether your frontend instance actually is really in service, or if it only responds to port 80 :p [12:58] onre It's a shame I can't actually see the headers from the last healthcheck. then i'd know where it's redirecting to! [12:58] well if you request / using curl and some verbose flag or something, you should see them? [12:59] onre Yeah but using curl, I was getting 200, not 301. [13:00] yes but curl probably didn't show you the redirect phase [13:00] onre This is a wordpress site so maybe it's PHP redirecting, not apache. I'm trying a plain HTML file in the docroot now as the target [13:00] ah [13:00] but instead only gave you the "end result" of the redirect [13:01] onre No actually I think I am seeing the truth, I was using curl -I to just get the headers [13:02] OK looks like using a plain html file is working. before I was requesting a wordpress page, so god knows what was going on. so many plugins etc [13:04] oh yeah :) [13:04] onre Thanks a million. Looking in the logs was the clue i needed :-) [13:05] no prob :p [13:05] success by accident [13:10] how to delete files older than 30 days? I try find -atime +30 | ls -laht, but it returns all files [13:10] I mean -ctime param [13:10] why ctime? [13:10] ctime = creation time [13:10] yes, I want to delete old files ... [13:10] atime = access time [13:10] mtime = modification time [13:10] those files are logs [13:10] normally a file isn't OLD if it was created awhile ago, but updated today [13:10] no access nor moditifation [13:11] all files have all 3 times [13:11] dunno, I always use mtime :) [13:11] oh ya, doesn't time = minutes? not days [13:11] ok, I try with mtime +30, it still returns today files? [13:11] na, time = days, mmin = minutes :) [13:12] works for me [13:12] find . -mtime +1 -delete [13:13] Hi. I have following errors when using apt-get: http://pastie.org/2954797 [13:13] patdk-wk, thanks, it worked [13:14] I tried many tips from the internet, dpkg-reconfigure locale, export LC_* in .bashrc none of it helped permanently [13:14] afeijo, I bet your logs contain several days of stuff, and that is why ctime isn't working, cause the log was made several days ago [13:14] default is 1week per log file [13:14] find | ls -lah output weird results tho [13:15] why wouldn't it be? [13:15] no idea [13:15] patdk-wk: Well, isn't ctime really short for change time, and not create time? [13:15] try, find . -mtime +5 -ls [13:15] no, ctime = creation, mtime = modification/change [13:15] don't you know how to use man find? [13:16] :$ I will [13:18] patdk-wk: Well, in my book ctime counts when the underlaying inode was most recently changed, which of course in my cases happended during the file's creation. [13:18] heh? what manual did you read that defined it like that? it's always been creation time, according to stat [13:19] hmm, maybe by change they mean inode change [13:20] noticing it says change also, my history it was always creation [13:20] patdk-wk: Trying doing something like chmod on a file, and see what it does to your ctime. [13:21] that would update the inode [13:21] patdk-wk: Exactly [13:21] and I'm guessing that is what it means, time since last inode change [13:21] but then, my history of this comes from the 80's [13:22] During the 80's I hadn't even heard about ctime, or mtime either for that matter :) [13:22] used to it being called creation, but ya, that is since inode changed [13:55] good morning [13:56] zul: good morning === bladernr_afk is now known as bladernr_ [14:16] New bug: #899173 in sysstat (main) "iostat/kernel output for dm devices broken" [Undecided,New] https://launchpad.net/bugs/899173 [14:33] * koolhead11 needs some cyber-cake [14:34] * koolhead11 heard people are having party tonight [14:54] zul: bug 372001, do you have any objection to my pushing a patch to have libvirt upgrades not install /etc/libvirt/qemu/networks/autostart/default.xml ? [14:54] Launchpad bug 372001 in libvirt "default network autostart symlink recreated" [Low,Triaged] https://launchpad.net/bugs/372001 [14:54] anybody know of utility scripts to both add a principle vi kadmin and add the user to ldap? [14:55] as well as delete [14:55] hallyn: im good with it [14:55] thx - did you have any other changes to queue up? [15:04] oh mysql.. why must you hard code /etc/mysql in your code base? [15:04] * SpamapS shakes mysql-cluster-7.0 like a polaroid picture [15:05] SpamapS: welcome to hell population you [15:05] hallyn: nope [15:05] zul: your support is appreciated Mr. Demon ;) [15:06] heh i liked it when homer goes to hell and his punishment was to eat all the donoughts in the world [15:08] SpamapS: hardcoding paths, the way of the future... not [15:09] lynxman: hardcoding paths is webscale [15:09] SpamapS: it's totally webscale, it has scaling juice written all over it [15:10] SpamapS: i think the libmyslclient is bit different in mysql-cluser as well fyi [15:17] zul: its not [15:18] zul: all special sauce is confined to libndbclient [15:18] SpamapS: cool [15:18] zul: I'm slicing mysql-cluster-7.0 down to just the server [15:18] i would just rather drop mysql-cluser all together myself but thats another matter [15:18] SpamapS: gotcha [15:19] zul: but unfortunately, it doesn't understand 5.5's my.cnf .. so have to *not* read /etc/mysql/my.cnf [15:19] easy enough, I'm patching that to be /etc/mysql-cluster [15:19] SpamapS: hah hah... [15:34] hi to all [15:35] i installed imagemagick on a new ubuntu server... when trying to use convert, i got an error [15:35] convert: no decode delegate for this image format `/tmp/magick-daFyRHfn' @ error/constitute.c/ReadImage/566. [15:35] what does it mean? i missed some lib? [15:38] interesting... mysql cluster 7.2 will be mysql 5.5 based.. [15:40] I wonder if it will be GA by April.. might be worth moving to it [15:44] really screws everything up that libmysqlclient and mysqld have to share the same stupid config file [15:46] SpamapS: are you sure on that [15:46] jdstrand: have you had any time to look at the (tiny) patch on bug 869553 ? [15:46] Launchpad bug 869553 in libvirt "Apparmor prevents KVM tunnelled migration" [High,Confirmed] https://launchpad.net/bugs/869553 [15:47] I'd like to push it along with the fix for bug 372001 [15:47] Launchpad bug 372001 in libvirt "default network autostart symlink recreated" [Low,Triaged] https://launchpad.net/bugs/372001 [15:50] ikonia: sure on what? that libmysqlclient and mysqld have the same config file? yes I'm certain they both read /etc/mysql/my.cnf [15:50] ikonia: that they read different sections is only a consolation prize [15:50] SpamapS: I thought you could seperate out client/server options in my.cnf though [15:54] eh, nm, i'll push the one for now [15:58] ikonia: yes you can, but that doesn't matter because the [mysqld] for mysql-server 5.5 break mysql-cluster-server-5.1, and both have to use /etc/mysql/my.cnf [15:59] in what way does it break it ? [16:07] * Daviey spies Horizon in NEW queue [16:09] (nice one zul) [16:09] Daviey: hopefully it will get out of there today [16:12] * zul reminds himself to help jdstrand drunk in budapest [16:13] heh [16:14] zul: I haven't looked, but are you handling the rename from dashboard? [16:15] i will when it gets through [16:15] rocking [16:18] Daviey: pushing netcf today? [16:19] hallyn: on it [16:20] \o/ [16:24] hallyn: done, wedged in NEW queue [16:24] (just wait now) [16:50] zul, were you going to send something to boto on connect_nova ? [16:50] or connect_ec2_endpoint [16:55] jamespage, how do I twiddle cobbler so that I can get a Precise ISO as one of the PXE install choices? is it by editing the profiles from the cobbler_web/profile/list menu ? [16:57] tgardner: its a bit more involved than that [16:57] * jamespage digs for docs... [16:59] tgardner, try cobbler-ubuntu-import [16:59] see its usage [17:00] smoser, cool, thanks. [17:00] jamespage, ^^ I can likely figure it out from here. [17:01] smoser,tgardner:: might need a tweak to work on oneiric for precise; I had to hack the cobbler import process on aldebaran todo that (not elegnant but works) [17:02] oh? jamespage ? [17:02] smoser: yeah - I found that yesterday [17:02] * jamespage looks at his notes [17:04] smoser: --os-version=precise is not recognised as a supported release in cobbler on oneiric. [17:04] for cobbler import xxxx that is [17:05] jamespage: SRU :) [17:05] RoAkSoAx, agreed [17:06] who had/has the hard coced list ? [17:06] coded even. [17:06] hrm - cobbler does - codes.py and manage_import_debian_ubuntu.py have lists of recognised releases for ubuntu [17:07] and when we fix, please fix with: ubuntu-distro-info --supported [17:07] as that (i think) will get SRU'd [17:07] lemme report the bug at least [17:08] jamespage, please lemme know what the bug number is so that I can follow it. [17:09] jamespage: gonna prepare the SRU then [17:10] RoAkSoAx: I'll stick it on my list :-) [17:11] smoser: the orchestra script that imports the mini iso does that [17:12] jamespage, does what ? [17:12] uses ubuntu-distro-info --supported [17:12] oh. uses that tool. [17:12] right. [17:13] so we need to make coces.py and/or manage_import_debian_ubuntu.py do it aslo [17:13] jjajaq! [17:14] baaah [17:14] hi all [17:14] smoser: well maybe [17:14] smoser: I don't agree with you because other distros do no have ubuntu-distro-info --supported [17:15] what is someone wants to deploy an unsupported distro version? [17:15] well, that would be a ubuntu patch then :) [17:15] smoser: but we could make use of it, and if doesn't exists, fallback to the real list [17:15] but either way, can "if available use it, otherwise hard coded list" [17:15] the list of ubuntu releases is stupidly hard coded *way* too many places. we need to not have that. [17:16] smoser: yeah [17:17] zul: another tiny q (you are my libvirt sanity check :) - do you see any reason not to add a Suggests: cgroup-lite | cgroup-bin to libvirt-bin? [17:17] smoser: well that's precise, for oneiric I'll just hardcode the release [17:17] tgardner, RoAkSoAx, smoser: bug 899276 [17:17] Launchpad bug 899276 in cobbler "Release versions of cobbler don't automatically support the next development release" [Undecided,New] https://launchpad.net/bugs/899276 [17:18] jamespage: what/'s the bug number? [17:18] jamespage, thanks [17:21] ugh. roaksoax, if you hard code the release for oneiric, then you'll have to touch it again in 6 months. [17:23] smoser: ubuntu-distro-info --all would be better [17:23] right. [17:24] its argubable if you should complain about "not supported, sorry" or not [17:24]