[00:12] <x404x> I can connect to ftp locally but it dont work remotely , do i need to add a remote host to hosts file ?
[00:17] <SpamapS> x404x: you might have a firewall between you making life difficult
[00:17] <SpamapS> x404x: honestly, why other with FTP? just use HTTP or SSH
[00:21] <qman__> yeah, FTP is, always was, and always will be utter crap
[00:24] <x404x> i love qualoty adsl modems
[00:24] <x404x> quality
[00:24] <x404x> always exilarating to have them random reboot or crash every 5 mins
[00:26] <x404x> is ubuntu setup to only allow lan connections by default ?
[00:30] <SpamapS> x404x: um, what do you mean?
[00:31] <x404x> well it seems to block anything coming from outside the lan
[00:31] <x404x> all services work fine on local ips but are dead outside
[00:32] <x404x> just get connection refused
[00:32] <x404x> im using same settings as before on the router and it worked before
[00:33] <x404x> but im using a new built  server, its been so long since i setup the old that i cant remember the settings now
[00:33] <x404x> is there a hosts or firewall setting that block remote access ?
[00:34] <SpamapS> ufw might be doing it.. not sure
[00:40] <x404x> if i run nmap on the local ip it shows the correct ports open, but running on the remote ip it says all are closed
[00:43] <x404x> ufw is inactive
[00:44] <SpamapS> maybe stuff just isn't listening on those ips
[00:44] <SpamapS> some stuff is by default 127.0.0.1 only
[00:48] <x404x> it works from other ips on same local net
[04:38] <leandrounb> Test
[05:08] <Zanzacar> Hi I setup my IP address on the computer side instead of the router side and I think it is causing some problems with IP address now. I dont remember how I did this and was hoping someone might be able to help me out.
[05:09] <Zanzacar> I actually cant connect to it since there are problems so I guess I will have to pull out a monitor and keyboard or something
[06:15] <trimeta> Hmm. My RAID5 array is suddenly telling me it's in a "clean, recovering" state. But I never knew that one of my drives died; apparently it did, and now it's being restored. How worried should I be, and should I be purchasing a new drive right now?
[06:15] <trimeta> Also, how do I know which drive failed?
[08:13] <spat> can someone explain why a grep with a \s in the patern is not matching when launched from the cron (took me an hour to find that out)
[08:20] <spat> think i found it... locale in cron is screwed up...
[08:37] <spat> /etc/default/locale is set why is cron not using that?
[09:02] <jasonmchrist0s> Hi folks would just like to give thanks to those that prepared this https://help.ubuntu.com/10.04/serverguide/C/serverguide.pdf
[09:02] <jasonmchrist0s> I feel that good printable documentation is important.
[09:43] <jasonmchrist0s> I know thanksgiving is over but better late than never, right?
[10:31] <philipsmatto> hello
[10:31] <philipsmatto> can you help me?
[10:34] <philipsmatto> can you help me?
[10:35] <greppy> philipsmatto: just ask your question, if someone can help, they will.
[10:36] <philipsmatto> okok
[10:37] <philipsmatto> today i have installed Ubuntu Server 11.10
[10:37] <philipsmatto> i have ip static
[10:37] <philipsmatto> *dinamic
[10:38] <philipsmatto> So change always
[10:41] <philipsmatto> i install lamp, apache ecc... Now I insert on the browser 127.0.0.1 but browser say : Firefox can't establish a connection with the server
[10:41] <philipsmatto> why? What i must doing for put my server on the internet?
[10:42] <philipsmatto> *do
[10:44] <philipsmatto> ??
[11:28] <airtonix> philipsmatto: ubuntu server doesn't come with a desktop environment or firefox. so your statements make no sense.
[11:29] <philipsmatto> ?
[11:29] <philipsmatto> why, i have a pc with ubuntu server
[11:29] <airtonix> and l.a.m.p. is an acronym for Linux Apache Mysql PHP
[11:30] <airtonix> philipsmatto: ok i'm going to assume you can't be bothered to type out your full situation properly. so we'll assume you're using firefox on another machine. 127.0.0.1 is a network address to the current machine you're accessing it from.
[11:31] <airtonix> philipsmatto: ie: 127.0.0.1 will only ever give you access to the apache server if you access 127.0.0.1 from the same machine that apache is installed on
[11:32] <philipsmatto> ops i don't have open port 80, okok all ok
[11:32] <philipsmatto> trnk u
[11:32] <airtonix> i doubt that is your problem
[16:01] <virusuy> howdy
[17:08] <Duvrazh> Hello, has anyone successfully configured Netatalk and Avahi-Daemon to function as a TimeMachine for Apple products?
[17:10] <Duvrazh> If anyone got avahi and netatalk to work on 10.04 lts as TimeMachine I would appreciate a pm or reply of some form, thank you.
[17:10] <JanC> Duvrazh: hm, I never tried that on Ubuntu, but I think my ReadyNAS uses those for that purpose  ;)
[17:11] <JanC> (I have no Apple hardware, so no way to try)
[17:11] <Duvrazh> Is it running on them?
[17:11] <Duvrazh> I'd love to see your config files
[17:11] <JanC> let me check
[17:13] <Duvrazh> I would be interested in /etc/default/netatalk, /etc/netatalk/afpd.conf, and /etc/netatalk/AppleVolumes.default
[17:22] <JanC> http://paste.ubuntu.com/759498/ = /etc/netatalk/afpd.conf
[17:23] <JanC> http://paste.ubuntu.com/759499/ = /etc/default/netatalk (you're lucky this NAS is based on Debian ;) )
[17:23] <JanC> http://paste.ubuntu.com/759503/ = /etc/netatalk/AppleVolumes.default
[17:23] <JanC> Duvrazh: ^^^
[17:24] <JanC> I'm not using netatalk BTW
[17:24] <JanC> so this is probably just some default values
[17:24] <Duvrazh> :) well something is better than nothing… lets have a look
[17:26] <Duvrazh> Not default, but doesn't look like a time machine… more like iTunes server (also good to know, copy paste)
[17:28] <Duvrazh> Recent room joiners, if you've succeeded at getting avahi-daemon and netatalk to function as a Bonjour-based TimeMachine, please let me know; I'm having configuration problems with error message.
[17:34] <JanC> Duvrazh: I know there are some ways to make this ReadyNAS work as a Time Machine, but as said before, I don't need it, so I never investigated in-depth  ☺
[17:34] <Duvrazh> do you have links to any documentation?
[17:35] <Duvrazh> gooogle-ing the ubuntu server time machine 10.04 lts pattern of thought doesn't usually generate something that actually works.
[17:35] <Duvrazh> in fact it never has… :*(
[17:35] <JanC> I remember reading stuff about it on their site/forum  ;)
[17:35] <Duvrazh> on ReadyNAS'?
[17:35] <JanC> yes
[17:35] <JanC> and ReadyNAS is based on Debian, with some changes
[17:36] <JanC> so should apply to Ubuntu to some degree too
[17:36] <Duvrazh> I could always take the easy way and virtualize readynas in ubuntu lol
[17:36] <JanC> eh
[17:37] <JanC> I doubt their firmware works virtualised  ;)
[17:37] <JanC> especially mine (it has a SPARC CPU...)
[17:37] <Duvrazh> hmmmm
[17:38] <JanC> newer ones have an Atom, so that might work virtualised, maybe  ;)
[17:38] <JanC> I never tried
[17:38] <Duvrazh> On your ReadyNAS, is TimeMachine enabled in your guy frontend? (per their instructions)
[17:39] <Duvrazh> gui*. DAMN YOU AUTOCORRECT
[17:39] <JanC> probably not
[17:39] <JanC> actually, I hope not  ;)
[17:40] <JanC> I'm not even sure there is a UI option like that specifically
[17:41] <JanC> but IIRC if you enable certain sharing options, a Mac OS X desktop can do the rest
[17:41] <Duvrazh> http://www.readynas.com/?p=1097
[17:41] <Duvrazh> Mine see it, I've got it broadcasting via Bonjour protocols
[17:42] <Duvrazh> I can't mount it though
[17:42] <JanC> maybe a permission issue?
[17:44] <jamilbk> hi peeps -- is anyone else getting a 403: Forbidden error when running 'apt-get update' on their Ubuntu EC2 instance?
[17:44] <jamilbk> us-west1 region
[17:45] <Duvrazh> JanC: I swear it's a configuration issue.
[17:45] <Duvrazh> Error message is:
[17:46] <Duvrazh> The version of the server you are trying to connect to is not supported. Please contact your system administrator to resolve the problem.
[17:47] <jamilbk> AHHH! fixed it with `service dns-clean restart`
[17:48] <Duvrazh> jamilbk: you ever made avahi-daemon and netatalk into a functional TimeMachine for a Mac?
[17:49] <jamilbk> Duvrazh: nope, sounds like a sweet idea actually. i do have a spare netbook just lying around
[17:49] <rafael> i need to connect in the server the same way i do with vnc because a need to set the server to process someting sometimes how can i get this ?
[17:50] <jamilbk> Duvrazh: is that what you're wrestling with?
[17:50] <Duvrazh> yup
[17:50] <jamilbk> good luck
[17:50] <Duvrazh> lol thank you
[17:51] <Duvrazh> I think the only problem is version checking. My iMac says "The version of the server you are trying to connect to is not supported. Please contact your system administrator to resolve the problem."
[17:51] <Duvrazh> otherwise it appears to be okay.
[17:55] <JanC> Duvrazh: recent OS on that iMac?
[17:56] <Duvrazh> newest
[17:56] <Duvrazh> Lion
[17:57] <Duvrazh> apparently all the documented methods worked on older versions… Something changed
[17:57] <JanC> hm, I wonder if that iMac has a setting for supporting older Apple "Time Machines"?  ;)
[17:58] <Duvrazh> if its made by Apple, probably does without issue
[17:58] <Duvrazh> getting it to go to this spare computer though is a beast of a problem. Right now all the computer does is Folding@home via the Origami package (nice for clustered webmin status calls)
[18:00] <JanC> eh
[18:00] <JanC> webmin...
[18:00] <ersi> ew
[18:00] <Duvrazh> ew all you want, it's a hell of a convenience
[18:01] <JanC> a long as you don't use webmin on debian/ubuntu machines  ;)
[18:02] <Duvrazh> webmin from sarge repository runs fine on 10.04 to 11.10 ubuntu server
[18:02] <Duvrazh> postfix and samba has to be modified but otherwise recognizes and properly manages config files
[18:04] <JanC> webmin has a long history of trampling over the configuration policies in Debian/Ubuntu, and thus causing resulting in difficult to debug issues
[18:04] <Duvrazh> *fingers crossed* so far so good ;)
[18:04] <Duvrazh> bbl need rental car
[18:05] <JanC> it also means you're less like to get support  ;)
[18:17] <youlysses> Hey guys, how are ya?! I just set up my first home server on ubuntu 11.10, and haver alot of files to copy over from a external drive... So I want to mount it on my server and copy iy over to my home directory, is there an easy way to do this? Like is there some program that will automatcally mount my drives for me when I plug them in, like in a desktop os, becasue i'm having issuses doing it manually ...
[18:19] <patdk-lap> nope, manual is the way to go :)
[18:24] <youlysses> ...So, I want to "mount /dev/sdf1 /media/external" but the flags are killing me... it keeps tellling me they're invalid. :(
[18:29] <patdk-lap> whay are you using flags?
[18:31] <youlysses> I'm using the defualt ones in the tutorial "sudo mount -t vfat /dev/sdb1 /media/external -o uid=1000,gid=1000,utf8,dmask=027,fmask=137"
[18:32] <youlysses> Oh wait a sec, maybe i got it?!
[18:34] <youlysses> Sweet! Ok so I was using the fat16/32 intrustions, when I needed the ntfs.
[18:34] <youlysses> But, got it.
[19:02] <N3> I need some serious help
[19:02] <pmatulis> N3: ok
[19:02] <qman__> youlysses, no options are really needed by default, the only catch is that the kernel NTFS support is read-only, and you need ntfs-3g for rw
[19:02] <N3> My server got messed up when I tried to uninstall ubuntu-xen-server
[19:02] <N3> anyways
[19:03] <N3> I got knoppix running on it, re-assembled the raid, unencrypted it, and set up the lvm
[19:03] <N3> But whenever I make changes to it, it does not seem to save it
[19:03] <N3> Like in /etc/crypttab
[19:03] <N3> or /etc/lilo.conf
[19:03] <N3> nothing seems to "save"
[19:03] <N3> its not mounted read only
[19:03] <qman__> you're likely working on the knoppix live environment
[19:03] <qman__> did you chroot into your mounted system?
[19:04] <N3> I did not "chroot", I just basically mounted it
[19:04] <N3> how do I chroot it?
[19:04] <qman__> well, if you're not chrooted, /etc/crypttab is knoppix's /etc/crypttab
[19:04] <N3> nah, its /mnt/wat/etc/crypttab
[19:04] <N3> Ok, actually it looks like it saved it
[19:05] <N3> but lilo does not honor the changes AFAIK
[19:05] <qman__> I don't know enough about how lilo works in ubuntu, but chances are you need to run the equivalent of update-grub
[19:06] <N3> yeah I looked into that
[19:06] <N3> kinda
[19:06] <pmatulis> N3: why do you think you're using LILO?  and what ubuntu release are you working on?
[19:07] <qman__> grub has been the ubuntu default since before I started using it, with 5.10
[19:07] <qman__> so if you have lilo, you must have done it yourself
[19:08] <pmatulis> N3: it would also be good to know what happened when you removed ubuntu-xen-server
[19:09] <N3> I did it myself
[19:09] <N3> pmatulis, I tried to remove it, but a "df" said that /boot was @ 100%
[19:10] <N3> (it was trying to install linux-server, or either I tried to re-install linux-server)
[19:10] <Duvrazh> has anyone succeeded at getting avahi-daemon and netatalk to function as a Bonjour-based TimeMachine, 10.04 lts
[19:10] <N3> anyways, it did not have enough room
[19:10] <N3> so I deleted some of the old images
[19:10] <N3> and it shat a brick
[19:10] <qman__> yeah, that's the wrong thing
[19:10] <qman__> you need to apt-get remove old kernel versions
[19:10] <N3> Yeah I know that now
[19:11] <qman__> touch the old file names, then chroot in, and apt-get remove should work
[19:11] <qman__> and that will probably also fix your bootloader for you automatically
[19:12] <qman__> at least with grub, the post-install and post-remove scripts regenerate the config
[19:13] <qman__> here's a pretty thorough process on arch, but it applies generally to linux: http://superuser.com/questions/111152/whats-the-proper-way-to-prepare-chroot-to-recover-a-broken-linux-installation
[19:17] <N3> f this returns an error chroot: cannot run command '/bin/bash': Exec format error, this usually indicates that you booted with one architecture (e.g. 32bit) and are trying to chroot into another (e.g. x86_64).
[19:17] <N3> great
[19:17] <N3> :(
[19:21] <N3> can grub RAID?
[19:22] <ikonia> grub isn't anything to do with raid
[19:23] <patdk-lap> unless your boot drive is raid5
[19:23] <N3> k
[19:24] <ikonia> you can't boot from raid 0 or raid 5
[19:25] <jamilbk> anyone else running on EC2? getting a 403: Forbidden with `apt-get update`
[19:26] <qman__> jamilbk, I'm not, but that means one of your sources is broken
[19:29] <ikonia> jamilbk: what repo is it hitting ?
[19:29] <ikonia> jamilbk: manually check that repo see if it's online
[19:30] <jamilbk> us-west-1.ec2.archive.ubuntu.com has address 10.161.51.124 us-west-1.ec2.archive.ubuntu.com has address 10.162.150.127
[19:30] <jamilbk> yeah it's online:
[19:30] <jamilbk> the .127 address was giving problems. manually setting it to the .124 address in /etc/hosts fixed the problem
[19:30] <jamilbk> must be an ubuntu mirror issue
[19:31] <jamilbk> sysadmin fail
[19:31] <ikonia> jamilbk: those sites are showing down to me
[19:32] <jamilbk> yeah it's a private address
[19:32] <ikonia> oops, so it is
[19:33] <jamilbk> only accessible from within the cloud ;-)
[19:33] <ikonia> just saw it was a 10 address
[19:33] <ikonia> idiot
[19:38] <N3> Ok so I got somewhere
[19:38] <N3> I've almost got lilo to install
[19:38] <N3> But now I'm getting "Fatal: open /vmlinuz: No Such file or directory"
[19:39] <ikonia> N3: why are you using lilo ?
[19:41] <N3> RAID
[19:41] <N3> and crypto
[19:41] <N3> and lvm
[19:41] <patdk-lap> hmm, I remember doing all thos eon grub
[19:41] <patdk-lap> hell, I still do :)
[19:42] <ikonia> again.....why are you using lilo
[19:42] <ersi> It's classic! Traditional!
[19:42] <N3> Ok so I can, for sure, use grub?
[19:42] <ikonia> it's dead
[19:43] <patdk-lap> using lilo, is like using grub in dumbed down mode
[19:44] <ikonia> it's nothing like using grub
[19:44] <ikonia> the whole way it works is different, it's not any "dumber" it's just a different way of doing things
[19:45] <patdk-lap> lilo has no understanding of anyhting, it just a point and execute
[19:45] <patdk-lap> grub can do that also, but makes much more sense to understand the filesystem and stuff, like it does
[19:46] <ikonia> yes, it's totally different approach
[19:46] <N3> So grub?
[19:47] <ikonia> I'd use grub, it's the current main option within ubuntu
[19:52]  * pmatulis wonders what happens to a system that is running lilo when a kernel is upgraded
[19:58] <Dulcin> Can anyone take a look at this screenshot taken from my remote console: http://dulcin.nl/temp/s.jpg
[19:58] <Dulcin> my server won't boot up anymore after a reboot
[19:58] <ikonia> looks like a kernel dump
[19:58] <Dulcin> what could be the cause?
[19:58] <ikonia> normally hardware
[19:58] <ikonia> but it's very very hard to say
[19:59] <Dulcin> I was trying to install bugzilla with at on of perl modules, and then did a reboot
[19:59] <Dulcin> and then this happened :(
[19:59] <ikonia> got an older kernel on the machine ?
[19:59] <ikonia> (see the grub list/menu)
[19:59] <Dulcin> it's completely up to date
[19:59] <Dulcin> ubuntu 11.10
[20:01] <ikonia> that's not what I asked
[20:01] <ikonia> do you have an older kernel still installed ?
[20:01] <Dulcin> I'm not sure then? I thought when you install ubuntu 11.10 it has the latest kernel
[20:02] <Dulcin> I did not specifically change anything
[20:03] <ikonia> look in the grub boot menu, see if there is an older one there, try booting it, see if you get a kernel panic with that too
[20:04] <Dulcin> the thing is, it's completely unresponsive so I guess I have to ask the provider to do it
[20:04] <Dulcin> it does not respond to 'send ctrl-alt-del' either
[20:04] <ikonia> what ?
[20:04] <ikonia> it's a kernel panic, it will not do anything
[20:05] <ikonia> try booting an older kernel from the grub menu, see if that panics also
[20:05] <Dulcin> yes, but how do I do that? The machine is not here physically
[20:06] <Dulcin> and it's not responding to any key input from the remote console
[20:06] <ikonia> well, if you're using a remote console to boot it and see this before it's on the network, you must be able to use the remote console to select options from the grub menu
[20:06] <ikonia> then ask someone on site
[20:06] <Duvrazh> Opinion: latest kernel sucks
[20:07] <ikonia> then your opinion is wrong
[20:07] <ikonia> and totally based on nothing
[20:07] <Dulcin> yeah I will ask someone, but I guess I'll have to wait till tomorrow
[20:07] <Duvrazh> Twonky doesn't run on it well, and that's very important to me
[20:07] <Duvrazh> I had to drop back to 10.04 lts to keep functionality for my media box
[20:08] <Duvrazh> newer is not always equivalent to better. usually, but not always
[20:08] <ikonia> Duvrazh: why is the newer kernel "bad"
[20:08] <ikonia> Duvrazh: please explain your reasoning ?
[20:08] <Duvrazh> ^^^ right there
[20:08] <ikonia> Duvrazh: how do you know that's a kernel problem
[20:08] <ikonia> Duvrazh: it could be a hardware issue
[20:09] <ikonia> Duvrazh: it could be a user error
[20:09] <Duvrazh> nope, same box no hardware change, older kernel it runs perfectly. newer one, doesn't run at all
[20:09] <Duvrazh> nope, I thought about that too, had a friend try it, same luck
[20:09] <ikonia> Duvrazh: which kernel versions are you comparing
[20:10] <Duvrazh> current for 10.04 lts and current for 11.10
[20:10] <ikonia> Duvrazh: ok, so between those two versions there are massive differences in more than just the kernel
[20:10] <Duvrazh> oh yes i know
[20:10] <ikonia> ....ok, so again, why are you sure the new kernel "sucks"
[20:10] <Duvrazh> why are you sure it doesn't? are you a spokesperson? do you get pleasure in proving people wrong? it's my opinion.
[20:11] <ikonia> I'm not sure it doesn't, but I'm not in a channel making statements like "new kernel sucks"
[20:11] <Duvrazh> I don't like the newer Ubuntu, and the kernel included with it.
[20:11] <Duvrazh> even though ubuntu is by far my favorite
[20:11] <Duvrazh> of all the lovely little distros
[20:11] <Duvrazh> s
[20:11] <ikonia> if I was going to state that the new kernel was a problem, I'd certainly try to have something to validate that
[20:12] <Duvrazh> okay how about the main software I use for specific purposes does, in practice, not work in the new environment.
[20:12] <ikonia> "enviornment" not "kernel"
[20:12] <Duvrazh> as mentioned before
[20:12] <Duvrazh> omg, you're one annoying child
[20:12] <Duvrazh> environment encompasses kernel
[20:12] <nebajoth> CHANGE IS BAD MKAY
[20:12] <ikonia> Duvrazh: yes, it does include the kernel, but you're stating the new kernel is a problem
[20:12] <Duvrazh> I've tried upgrading to newer kernel on older systems, environments in your terms, and it still doesn't function
[20:13] <Duvrazh> therefore, kernel = at least some part of the problem
[20:13] <ikonia> Duvrazh: the new kernel was not designed to work with the older ubuntu versions
[20:13] <ikonia> Duvrazh: (within the ubuntu packages)
[20:13] <ikonia> that's why mixing component versions between distros isn't advised
[20:13] <Duvrazh> it WILL work, but it's not stable, the procedure calls are different in a few areas
[20:14] <ikonia> Duvrazh: ok, so then it's not a fair test if you know it's not stable
[20:14] <Duvrazh> you're missing the point, and i will no longer continue this in public chat. if you're really that passionate about not listening at all, you'll want to send me a private message instead of flooding this channel with useless back and forth banter
[20:15] <N3> Ok
[20:15] <EvilResistance> anyone able to recommend any php-based bug trackers?  bugzilla is a pain to configure for nginx, because i dont have perl set up
[20:15] <ikonia> I'm not missing the point, you're just making ill thought through statments that "new kernels suck" without anything to back it up beyond bad designed tests
[20:15] <N3> I'm getting lvm device name (***) does not begin with /dev/mapper
[20:15] <ikonia> EvilResistance: is trac php or perl ?
[20:16] <ikonia> N3: where are you getting that ?
[20:16] <N3> boot
[20:16] <Duvrazh> EvilResistance: don't know if it has the features you need but try phpBugTracker @ phpbt.sourceforge.net
[20:16] <ikonia> N3: what part ?
[20:16] <nebajoth> trac is python
[20:16] <N3> after lilo loads linux
[20:16] <ikonia> sorry, I'm not helping you with lilo
[20:16] <ikonia> again, I don't know why you are not using grub
[20:17] <N3> lol ok
[20:17] <EvilResistance> ikonia:  i dont think its PHP, but i'm not certain its perl either
[20:17] <EvilResistance> cant tell
[20:17] <ikonia> EvilResistance: python
[20:18] <EvilResistance> yeah...
[20:18] <EvilResistance> i dont have python configged with nginx either
[20:18]  * EvilResistance never had a need to configure it
[20:18] <nebajoth> EvilResistance: look at mantis
[20:18] <nebajoth> or flyspray
[20:21] <Dulcin> well I've sent them a mail, hopefully it will be solved tomorrow
[20:21] <Dulcin> thanks for your input ikonia
[20:22] <EvilResistance> ah cool
[20:22] <EvilResistance> nebajoth:  i think mantis will work
[20:22] <EvilResistance> flyspray might work too
[20:22] <EvilResistance> i'll fiddle with both later before i decide ;P
[20:23] <Duvrazh> has anyone been successful with avahi-daemon and netatalk to use ubuntu server as TimeMachine backup device?
[20:33] <Duvrazh> has anyone been successful with avahi-daemon and netatalk to use ubuntu server as TimeMachine backup device?
[20:37] <hsmod> hey all.  i'm sshing TO a oneiric box and from it i'm ssh X forwarding back to my workstation (oneiric workstation).
[20:37] <_johnny> hi, i'm running my own CA (for internal use in my company), and for fun i've been meaning to get EV on certain domains to get green bars with names (like https://github.com/ has). i've added businessCategory and a few others, and they're in the signed certificate - however it doesn't display. so: can anyone verify that this is the right way to go about this?
[20:37] <hsmod> when i do that, my workstation is pretty unresponsive
[20:37] <hsmod> becomes VERY slow
[20:37] <hsmod> not internet slow but entire cpu anything i do locally is very slow
[20:38] <hsmod> top shows compiz is taking about 25-50% cpu
[20:39] <Duvrazh> _johnny: have you added your CA as a recognized CA in the browser your business is using? github's certificate comes from a rather large organization that's already included in those browsers, that's a lot of back&forth checking to make sure those certificates are valid, just to display that green bar. (have you seen the cost of those? outrageous prices.)
[20:39] <_johnny> Duvrazh: yes, the ca is added on all laptops including the one i'm testing on
[20:39] <_johnny> certificates are valid (and green)
[20:40] <Duvrazh> but the bar still doesn't show?
[20:40] <_johnny> it's a luxury problem going for the EV
[20:40] <_johnny> sorry, i wasn't clear
[20:40] <Duvrazh> oh
[20:40] <_johnny> i mean like: https://github.com/
[20:40] <_johnny> in chrome it'll display company info
[20:40] <_johnny> like http://i.imgur.com/hByjz.png
[20:41] <_johnny> which, from what i can tell, is from being an EV cert - which in turn seems to require a businessCategory property
[20:43] <Duvrazh> Those EV certificates are by recognized authorities… They've made it difficult to replicate on purpose. The names are from go daddy, to global sign, to wells fargo....
[20:44] <Duvrazh> some light reading to help you, because they're special certs
[20:44] <Duvrazh> http://cabforum.org/Guidelines_v1_2.pdf
[20:45] <Duvrazh> to get green bar, you have to be audited against the WebTrust EV Program
[20:45] <_johnny> i'm not trying to replicate (immitate) github, i'm trying to add it to my own certs :p
[20:45] <_johnny> but i see. so chrome does it only from the CA's it deems in WebTrust i guess
[20:45] <Duvrazh> I think the same is true of chrome and most other name-brand browsers
[20:46] <Duvrazh> remember this was commercialized by fortune 500's.
[20:46] <N3> ikonia, ok plz help me install grub
[20:49] <_johnny> Duvrazh: your suspecions were correct according to http://blog.sidstamm.com/2009/04/roll-your-own-ev.html
[20:50] <_johnny> "regular SSL root certificates can be added easily to any browser, but the EV root certs can't."
[20:50] <Duvrazh> I had looked into it once for a Windows Remote Troubleshooting website I used to run… pain in the ass, and VERY expensive
[20:50] <Duvrazh> I gave up pretty quickly, too lazy for that mess
[20:51] <Duvrazh> sorry to bust your bubble sir
[20:53] <_johnny> not at all. it's not a necessity. and the more you know.. ;)
[20:53] <Duvrazh> you're right :)
[20:58] <SockPants> hi all
[20:58] <SockPants> all of a sudden my webserver is broken. sounds unspecific but ive never seen anthing like it
[20:59] <SockPants> i was developing in wordpress and it went down (its a virtual machine) so i reboot it, now it keeps getting stuck at * Starting the web server apache2
[20:59] <SockPants> it won't boot.
[20:59] <Duvrazh> it's virtual?
[20:59] <SockPants> yep
[21:05] <SockPants> ok shit virtualbox is falling apart as soon as i touch the data on that drive, off to #virtualbox
[21:07] <EvilResistance> first, !language
[21:07] <EvilResistance> ;P
[21:07] <EvilResistance> SockPants:  and two, what're you trying to do in virtualbox?
[21:08]  * EvilResistance runs 6 windows server instances virtually, and 5 *nix servers virtually
[21:09] <SockPants> EvilResistance: sorry :) well, i have a server vm and a desktop vm, both ubuntu, and after the ubuntu one crashed randomly i decided to copy my websites off of the drive using the desktop vm. only the vm unexpectedly killed itself mid-copy, so now i'm suspecting something's wrong either with the virtual drive or with the filesystem
[21:09] <SockPants> oh rats, it might have to do with having 0 bytes free on the host fs *facepalm*
[21:10] <EvilResistance> that might be the issue ;P
[21:12] <Duvrazh> simplest explanation :)
[21:13] <SockPants> heheh yeah it often takes me a trip to irc to formulate the exact problem before i realize the simplest things
[21:13] <SockPants> and everything is up and running again
[21:32] <xlinkerz> #metasploit
[23:59] <blkperl> adam_g: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/802367